JRA3 Introduction Åke Edlund EGEE Security Head

Slides:



Advertisements
Similar presentations
Roadmap for Sourcing Decision Review Board (DRB)
Advertisements

State of Indiana Business One Stop (BOS) Program Roadmap Updated June 6, 2013 RFI ATTACHMENT D.
Software Quality Assurance Plan
INFSO-RI Enabling Grids for E-sciencE JRA3 2 nd EU Review Input David Groep NIKHEF.
EGEE is a project funded by the European Union under contract IST NA2 Dissemination John DYER Activity Leader All Activity Meeting, CERN 18.
08/11/908 WP2 e-NMR Grid deployment and operations Technical Review in Brussels, 8 th of December 2008 Marco Verlato.
LCG Milestones for Deployment, Fabric, & Grid Technology Ian Bird LCG Deployment Area Manager PEB 3-Dec-2002.
GRACE Project IST EGAAP meeting – Den Haag, 25/11/2004 Giuseppe Sisto – Telecom Italia Lab.
The Preparatory Phase Proposal a first draft to be discussed.
EGEE is a project funded by the European Union under contract IST JRA1 Testing Activity: Status and Plans Leanne Guy EGEE Middleware Testing.
INFSO-RI Enabling Grids for E-sciencE SA1: Cookbook (DSA1.7) Ian Bird CERN 18 January 2006.
SacProNet An Overview of Project Management Techniques.
Security Area in GridPP2 4 Mar 2004 Security Area in GridPP2 “Proforma-2 posts” overview Deliverables – Local Access – Local Usage.
EGEE is proposed as a project funded by the European Union under contract IST EU eInfrastructure project initiatives FP6-EGEE Fabrizio Gagliardi.
EGEE is a project funded by the European Union under contract IST JRA3 Security Åke Edlund Security Head PEB All-Activity Meeting, June 18,
© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Gathering Network Requirements Designing and Supporting Computer Networks – Chapter.
SA1/SA2 meeting 28 November The status of EGEE project and next steps Bob Jones EGEE Technical Director EGEE is proposed as.
JRA Execution Plan 13 January JRA1 Execution Plan Frédéric Hemmer EGEE Middleware Manager EGEE is proposed as a project funded by the European.
EGEE is a project funded by the European Union under contract IST Collaboration Board F.Gagliardi Project Director Cork Conference, 20 th April.
EGEE is a project funded by the European Union under contract IST WBS/ Execution Plan Alistair Mills Grid Deployment Group
EGEE-III INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks SA1: Grid Operations Maite Barroso (CERN)
Grid Security Vulnerability Group Linda Cornwall, GDB, CERN 7 th September 2005
EGEE MiddlewareLCG Internal review18 November EGEE Middleware Activities Overview Frédéric Hemmer EGEE Middleware Manager EGEE is proposed as.
INFSO-RI Enabling Grids for E-sciencE EGEE SA1 in EGEE-II – Overview Ian Bird IT Department CERN, Switzerland EGEE.
INFSO-RI Enabling Grids for E-sciencE EGEE is a project funded by the European Union under contract INFSO-RI Grid Accounting.
6/23/2005 R. GARDNER OSG Baseline Services 1 OSG Baseline Services In my talk I’d like to discuss two questions:  What capabilities are we aiming for.
LCG LCG Workshop – March 23-24, Middleware Development within the EGEE Project LCG Workshop CERN March 2004 Frédéric Hemmer.
Open Science Grid & its Security Technical Group ESCC22 Jul 2004 Bob Cowles
JRA2: Quality Assurance Overview EGEE is proposed as a project funded by the European Union under contract IST JRA.
DTI Mission – 29 June LCG Security Ian Neilson LCG Security Officer Grid Deployment Group CERN.
Security Policy: From EGEE to EGI David Kelsey (STFC-RAL) 21 Sep 2009 EGEE’09, Barcelona david.kelsey at stfc.ac.uk.
Security Policy Update WLCG GDB CERN, 14 May 2008 David Kelsey STFC/RAL
Project Discovery – Monday Holyoke 561 Most updates will only have 30 minutes maximum for their presentations. At least 10 minutes should be left for Q&A.
EGEE is a project funded by the European Union under contract IST EGEE Summary NA2 Partners April
EGEE is a project funded by the European Union under contract IST Roles & Responsibilities Ian Bird SA1 Manager Cork Meeting, April 2004.
SA2 : Network Resource Provision All Activity Meeting – 17 March SA2 Execution Plan for the first year Jean-Paul Gautier SA2 Manager CNRS/UREC.
INFSO-RI Enabling Grids for E-sciencE Technical Overview Bob Jones, Technical Director, CERN EGEE 1 st EU Review 9-11/02/2005.
EGEE Project Review Fabrizio Gagliardi EDG-7 30 September 2003 EGEE is proposed as a project funded by the European Union under contract IST
Javier Orellana JRA4 Coordinator Face to Face Partners Meeting University College London 11 December 2003 EGEE is proposed as a project funded by the European.
EGEE-III INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks SA2 Networking support for EGEE III Xavier.
EGEE is a project funded by the European Union under contract IST EGEE Security Åke Edlund Security Head EU IST-FP6 Concertation, 17 th September.
12 March, 2002 LCG Applications Area - Introduction slide 1 LCG Applications Session LCG Launch Workshop March 12, 2002 John Harvey, CERN LHCb Computing.
Grid Deployment Technical Working Groups: Middleware selection AAA,security Resource scheduling Operations User Support GDB Grid Deployment Resource planning,
EGEE-II INFSO-RI Enabling Grids for E-sciencE EGEE Security Ake Edlund for JRA3 EGEE EU Review (CERN) May 23-24, 2006.
Javier Orellana EGEE-JRA4 Coordinator CERN March 2004 EGEE is proposed as a project funded by the European Union under contract IST Network.
EGEE is a project funded by the European Union under contract IST Global Security Architecture Olle Mulmo Chief Security Architect Cork, 6/26/2016.
15-Jun-04D.P.Kelsey, LCG-GDB-Security1 LCG/GDB Security Update (Report from the LCG Security Group) CERN 15 June 2004 David Kelsey CCLRC/RAL, UK
Project Management PTM721S
Bob Jones EGEE Technical Director
Next Steps.
Regional Operations Centres Core infrastructure Centres
EGEE Middleware Activities Overview
SA1 Execution Plan Status and Issues
LCG Security Status and Issues
Ian Bird GDB Meeting CERN 9 September 2003
GGF OGSA-WG, Data Use Cases Peter Kunszt Middleware Activity, Data Management Cluster EGEE is a project funded by the European.
HellasGrid CA & euGridPMA
EGEE and Induction Mike Mineter NeSC Training Team
R-GMA Security Stephen Hicks UK Cluster Security
JRA1 (Middleware) Overview
EGEE support for HEP and other applications
Infrastructure Support
Gonçalo Borges on behalf of LIP
SWIM Common PKI and policies & procedures for establishing a Trust Framework                           Kick-off meeting Patrick MANA Project lead 29 November.
Leigh Grundhoefer Indiana University
Project Information Management Jiwei Ma
1 Stadium Company Network. The Stadium Company Project Is a sports facility management company that manages a stadium. Stadium Company needs to upgrade.
e-Invoicing – e-Ordering 20/11/2008
Data collection and validation support for the management of the ESF
Executive Project Kickoff
Presentation transcript:

JRA3 Introduction Åke Edlund EGEE Security Head EGEE First Conference, Cork, April 19, 2004 JRA3 Introduction Åke Edlund EGEE Security Head www.eu-egee.org EGEE is a project funded by the European Union under contract IST-2003-508833 Cork - 2004-04-19 - 1

Contents Objectives Milestones Work Breakdown Structure (WBS) Execution plan Effort summary Resource Indicators Relations to other activities Initial Risks Assessment Summary Cork - 2004-04-19 - 2

Objectives JRA3 Overview EGEE will construct an integrated and scalable infrastructure that will facilitate various types of applications and access patterns, ranging from single transactions to long-lived batch jobs. Security must be included in the architecture from the start, and not inserted at a later point. Security considerations must be present in all activities. The JRA3 security group will define a Security Framework and Architecture and a set of high-level policies that will act as guidance to the other activities. This will ensure consistency and provides one of the more visible value-adding services of the Grid: transparent security and single sign-on. The security architecture will be based on requirements from both Grid users and suppliers. JRA3 will assist in defining and validating the EGEE security architecture in line with these requirements. Cork - 2004-04-19 - 3

Objectives JRA3 Overview (cont.) To date, the following areas have been identified as being on the critical path for large-scale deployment: Basic Security Policy and Incident Response CA Trust Establishment and Policy Management VO Definition, Rights Delegation, and Scalability OGSA Web Services Security and site service access, control and auditing Site Usage Control and Budgeting Secure Credential Storage Cork - 2004-04-19 - 4

The tasks of this activity have one common goal: Objectives Scope of the work The tasks of this activity have one common goal: Enabling the deployment of production- quality Grid that includes resources and applications that are security-conscious and handle sensitive information. Cork - 2004-04-19 - 5

Milestones Cork - 2004-04-19 - 6

Work Breakdown Structure (WBS) Cork - 2004-04-19 - 7

Execution plan - JRA Overview - GANTT Cork - 2004-04-19 - 8

Execution plan - Overview The execution plan for the initial period of 9 months: Project start: To ensure a quick start-up phase, almost all staffing was in place by the start of the project. Also, the initial plans were well advanced at the start of the project. PM3: the first two milestones are at the end of project month 3: first, a completed users requirements survey will help to further refine the distribution of effort over action lines; and second, the set up of the Policy Management Authority (PMA) for European CAs. The PMA will also liaison with non-European CAs as necessary. PM6: at the end of project month 6, two more milestones have been met and the first deliverable is completed. The first milestone is a manual with initial recommendations for OGSA SEC services reengineering. The second is a document for security operational procedures and incident handling and a common Grid incident format. The deliverable is the initial Global security architecture document. Cork - 2004-04-19 - 9

Execution plan - Tasks Task 1: User requirements survey Liaise with European bodies for authentication and PKI Identify user communities and contact people Acquire background information on EDG security architecture Collect and sort security requirements Perform user survey Identify authorization requirements Task 2: Setup of the PMA for European CAs Write and adopt the EUGridPMA Charter Operating and sustaining the EUGridPMA Task 3: OGSA security reengineering recommendations Liaise with other activities of EGEE such as the Architecture Requirements collection and categorization AuthZ and AuthN infrastructure GGF connection (OASIS+WS) Cork - 2004-04-19 - 10

Execution plan - Tasks (cont.) Task 4: Global Security Architecture Security Architecture workshop Participate in work on Global Architecture Security Architecture document Task 5: Security operational procedures Inventory of incident reporting practices and report formats Definition of a common incident report format Task 6: Secure Credential Storage procedures Task 7: Site access control architecture Prototyping and refactoring of site access tools for architecture development Describe site access control architecture in documentation Cork - 2004-04-19 - 11

Execution plan - Recurring Tasks Recurrent tasks Support of existing tools and software Support of new software Operation of the EUGridPMA Quality Assurance Cork - 2004-04-19 - 12

Effort summary Cork - 2004-04-19 - 13

Effort summary Cork - 2004-04-19 - 14

Relations to other activities, e.g. JRA1 Cork - 2004-04-19 - 15

Initial Risks Assessment Cork - 2004-04-19 - 16

Summary EGEE Security will enable the deployment of production-quality Grid that includes resources and applications that are security-conscious and handle sensitive information. The project has started successfully with the intended “hit the ground running” approach. A number of risks has been identified and are to be discussed during the this kickoff. Identified collaborations with other activities has been initiated. (Next slide, LCG Sevice Time-line. Our first application.) Cork - 2004-04-19 - 17

LCG Service Time-line computing service physics 2003 2004 2005 2006 2007 open LCG-1 (achieved) – 15 Sept Testing, with simulated event productions LCG-2 - upgraded middleware, mgt. and ops tools principal service for LHC data challenges Second generation EGEE middleware prototyping, development Computing models LCG-3 – second generation EGEE middleware validation of computing models Phase 2 service acquisition, installation, commissioning TDR* for the Phase 2 grid Phase 2 service in production experiment setup & preparation first data * TDR – technical design report Cork - 2004-04-19 - 18