Plans for D7.7 The Security Report on the Final Project Release Linda Cornwall, RAL.

Slides:

Advertisements

Similar presentations

24-May-01D.P.Kelsey, GridPP WG E: Security1 GridPP Work Group E Security Development David Kelsey CLRC/RAL, UK

Advertisements

WP2: Data Management Gavin McCance University of Glasgow November 5, 2001.

Single Sign-On with GRID Certificates Ernest Artiaga (CERN – IT) GridPP 7 th Collaboration Meeting July 2003 July 2003.

29 June 2006 GridSite Andrew McNabwww.gridsite.org VOMS and VOs Andrew McNab University of Manchester.

Andrew McNab - Manchester HEP - 24 May 2001 WorkGroup H: Software Support Both middleware and application support Installation tools and expertise Communication.

Data Management Expert Panel - WP2. WP2 Overview.

1 CS 446 – Tutorial 6 Frid. Nov. 6 th, 2009 Implementation Tutorial.

Testing and Quality Assurance

Andrew McNab - EDG Access Control - 14 Jan 2003 EU DataGrid security with GSI and Globus Andrew McNab University of Manchester

Lab Report Expectations

Cracow Grid Workshop, November 5-6, 2001 Towards the CrossGrid Architecture Marian Bubak, Marek Garbacz, Maciej Malawski, and Katarzyna Zając.

CSE 471/598, CBS 598 Intelligent Agents TIP We’re intelligent agents, aren’t we? Fall 2004.

Andrew McNab - Manchester HEP - 6 November Old version of website was maintained from Unix command line => needed (gsi)ssh access.

CSE 471/598 Intelligent Agents TIP We’re intelligent agents, aren’t we? Spring 2004.

Specification Formalisms Book: Chapter 5. Properties of formalisms Formal. Unique interpretation. Intuitive. Simple to understand (visual). Succinct.

1 Introduction to System Engineering G. Nacouzi ME 155B.

EC Review – 01/03/2002 – G. Zaquine – Quality Assurance – WP12 – CS-SI – n° 1 DataGrid Quality Assurance Gabriel Zaquine Quality Engineer - WP12 – CS-SI.

Commodity Grid (CoG) Kits Keith Jackson, Lawrence Berkeley National Laboratory Gregor von Laszewski, Argonne National Laboratory.

GridPP9 – 5 February 2004 – Data Management DataGrid is a project funded by the European Union GridPP is funded by PPARC WP2+5: Data and Storage Management.

Integration of DataGrid Software for Testbed 1 Goal: combine the DataGrid middleware and the Globus core services. Phases: Preparation for Integration.

DATAGRID Testbed release 0 Organization and working model F.Etienne, A.Ghiselli CNRS/IN2P3 – Marseille, INFN-CNAF Bologna DATAGRID Conference, 7-9 March.

5 November 2001F Harris GridPP Edinburgh 1 WP8 status for validating Testbed1 and middleware F Harris(LHCb/Oxford)

EMI INFSO-RI EMI SA2 Report Quality Assurance Alberto Aimar (CERN) SA2 WP Leader.

Thoughts on the ATF of the DataGrid 24 th –25 th May 2001 Steve Fisher / RAL.

EMI INFSO-RI EMI Quality Assurance Processes (PS ) Alberto Aimar (CERN) CERN IT-GT-SL Section Leader EMI SA2 QA Activity Leader.

Feasibility Study.

4/2/03I-1 © 2001 T. Horton CS 494 Object-Oriented Analysis & Design Software Architecture and Design Readings: Ambler, Chap. 7 (Sections to start.

Ákos FROHNER – DataGrid Security Requirements n° 1 Security Group D7.5 Document and Open Issues

INFSO-RI Enabling Grids for E-sciencE SA1: Cookbook (DSA1.7) Ian Bird CERN 18 January 2006.

CERN – Roberta Faggian Marque, Jan Fiete Grosse-Oetringhaus GRACE General Meeting, September 2004, Brussels 1 D6.1 Integration with the European DataGrid.

Security Area in GridPP2 4 Mar 2004 Security Area in GridPP2 “Proforma-2 posts” overview Deliverables – Local Access – Local Usage.

Planning: Hardening the rabbit Steve Fisher / RAL 5/3/2004 WP3.

GridShib: Grid/Shibboleth Interoperability September 14, 2006 Washington, DC Tom Barton, Tim Freeman, Kate Keahey, Raj Kettimuthu, Tom Scavo, Frank Siebenlist,

Scientific Communication

LHCb planning for DataGRID testbed0 Eric van Herwijnen Thursday, 10 may 2001.

Quick Introduction to NorduGrid Oxana Smirnova 4 th Nordic LHC Workshop November 23, 2001, Stockholm.

WP3 Information and Monitoring Steve Fisher / RAL 23/9/2003.

1 CS Tutorial 5 Frid. Oct 23, 2009 Design Document Tutorial.

10-May-01D.P.Kelsey, Security Workshop Summary1 DataGrid Security Workshop 29/30 March 2001 SUMMARY David Kelsey CLRC/RAL, UK

German Cancio/ WP4 -1 WP4 comments for the TestBed German Cancio / WP4

NA-MIC National Alliance for Medical Image Computing UCSD: Engineering Core 2 Portal and Grid Infrastructure.

Update on the Grid Security Vulnerability Group Linda Cornwall, MWSG7, Amsterdam 14 th December 2005

Security Vulnerabilities Linda Cornwall, GridPP15, RAL, 11 th January 2006

3-Jul-02D.P.Kelsey, Security1 Security meetings Report to EDG PTB 3 Jul 2002 David Kelsey CLRC/RAL, UK

WP3 Authorization and R-GMA Linda Cornwall WP3 workshop 2-4 April 2003.

30-Sep-03D.P.Kelsey, SCG Summary1 Security Co-ordination Group (WP7 SCG) EDG Heidelberg 30 September 2003 David Kelsey CCLRC/RAL, UK

Preparation for Integration Organized access to the code WP6 infrastructure (MDS-2, RC, …) Input from WPs on requirements,... Acquire experience with Globus.

Grid Security Vulnerability Group Linda Cornwall, GDB, CERN 7 th September 2005

Andrew McNabSecurity Middleware, GridPP8, 23 Sept 2003Slide 1 Security Middleware Andrew McNab High Energy Physics University of Manchester.

Automated Certificate Management ACME + Let’s Encrypt Richard

Effective Business Communication The structure of effective Presentations and Reports.

5b. ESA & WP9: effort and recovery plan ESA DataGrid Review Frascati, 10 June Welcome and introduction (15m) 2.WP9 – Earth Observation Applications.

CSE 471/598 Intelligent Agents TIP We’re intelligent agents, aren’t we?

Security Middleware Andrew McNab University of Manchester.

WP3 Security and R-GMA Linda Cornwall. WP3 UserVOMS service authr map pre-proc authr LCAS LCMAPS pre-proc LCAS Coarse-grained e.g. Spitfire WP2 service.

Organisations – Groups and Teams

WP7 Security Coordination 23/24 Jan 2002 David Kelsey CLRC/RAL, UK

B.Jones– July n° 1 Software Release Testing u Draft document prepared and attached to the agenda page for this meeting u Explains the testing steps.

CERN Certification & Testing LCG Certification & Testing Team (C&T Team) Marco Serra - CERN / INFN Zdenek Sekera - CERN.

CERN 1 DataGrid Architecture Group Bob Jones CERN.

Fall CS-EE 480 Lillevik 480f06-l6 University of Portland School of Engineering Senior Design Lecture 6 Other development processes Technical documents.

Dave Newbold, University of Bristol14/8/2001 Testbed 1 What is it? First deployment of DataGrid middleware tools The place where we find out if it all.

DataGrid Security Wrapup Linda Cornwall 4 th March 2004.

Dave Newbold, University of Bristol21/3/2001 (Short) WP6 Update Where are we? Testbed 0 going (ish); some UK sites being tried out for production (mostly.

J Jensen / WP5 /RAL UCL 4/5 March 2004 GridPP / DataGrid wrap-up Mass Storage Management J Jensen

WP3 Security and R-GMA Linda Cornwall, RAL. WP3 Linda Cornwall, RAL - 02/09/2002Security and R-GMA,DataGrid Workshop, Budapest 2 Current Status Currently,

Software Documentation in an Agile Environment

WP3: D3.1 status, pending comments and next steps

Gavin McCance University of Glasgow GridPP2 Workshop, UCL

Formal reports are distinguished from informal letter and memo reports by their length and by their components. Though long reports can vary in format.

Presentation transcript:

Plans for D7.7 The Security Report on the Final Project Release Linda Cornwall, RAL

What we should do Let them know what a lot we’ve done – even though we haven’t solved everything! State which Security middleware tools have been developed within EDG. State which Security Middleware tools have been integrated with the various WP’s software Tell them admin type stuff we’ve done – e.g. CA Indicate progress from the first testbed – I.e. more requirements satisfied! Say where work still needs to be done in future projects.

What we shouldn’t do Say we have a perfectly secure testbed (cos we haven’t) Say we have satisfied all the requirements (which we haven’t) Only describe what’s turned on in the final testbed. (It’s about the final project release – not just the testbed – and we have the tools to potentially do a lot more than the final testbed will do.)

Requirements Satisfaction Not as simple as yes and no. E.g AUT-02 “Mutual Authentication between principals must be possible via use of certificates” Globus tools may satisfy (developed externally to edg) edg-java-security may satisfy (developed within edg) A WP may have more than 1 component, each of which may be integrated with 0 or 1 authentication method.

Suggested structure 1 Introduction (As EU spec) 2 Executive summary (As EU spec) 3 Externally developed Grid Security tools –A sentence or two to say what they are, and a ref. –Which requirements they address (and in which programming language or environment if applicable) –Which WPs use them. –Refer to the design and where they fit in 4 Grid security tools developed within the EDG project –As externally developed tools, but –Include even if not deployed or integrated with an other SW. 5 DataGrid Security Operations –Not only about tools – but a big admin effort too. –E.g.CA

sections contd 6 Requirements discussion by area. – Table of Requirements for each area, and which tools can satisfy them –And whether the tools are fully integrated. –Discussion. 7 Is the Testbed secure? –Formal analysis? Can any be done? –Is the implementation secure? 8 Conclusion and future work. –Possibly include e.g. Browser Standard vs Proxy Service cert –Possibly include how combination of tools available could be used to e.g. satisfy WP10 req. Appendix – Possibly 1 requirement table per WP? Or 1 table for each language? E.g. 1 for java? Or repeat the line for each language if applicable? Or just 1 table in chapter 6?

To progress I could just get on with it – do everything as I think. Appropriate person to check I.e. –Those who developed a tool check I’ve got it right Check e.g. references and which req are addressed. –Each WP check I’ve got their tool integration right and not missed anything. Include checking which requirements are satisfied. Or - If you prefer – each WP could give me –A list of which tools they developed. Preferred reference to the documentation about that tool. Which requirements it addresses. –Which security tools are integrated into your S/W Which requirements are satisfied.