Incident Response Plan for the Open Science Grid

Slides:



Advertisements
Similar presentations
LCG/EGEE/OSG Security Incident Response Grid Operations workshop CERN, 2 November 2004 David Kelsey CCLRC/RAL, UK
Advertisements

INFSO-RI Enabling Grids for E-sciencE Update on LCG/EGEE Security Policy and Procedures David Kelsey, CCLRC/RAL, UK
Trust and Security for FIM (Sirtfi/SCI) David Kelsey (STFC-RAL) FIM4R at CERN 4 Feb 2015.
INFSO-RI Enabling Grids for E-sciencE Incident Response Policies and Procedures Carlos Fuentes
Operational Security Working Group Topics Incident Handling Process –OSG Document Review & Comments:
OSG Operations and Interoperations Rob Quick Open Science Grid Operations Center - Indiana University EGEE Operations Meeting Stockholm, Sweden - 14 June.
EGEE ARM-2 – 5 Oct LCG Security Coordination Ian Neilson LCG Security Officer Grid Deployment Group CERN.
Publication and Protection of Site Sensitive Information in Grids Shreyas Cholia NERSC Division, Lawrence Berkeley Lab Open Source Grid.
GGF12 – 20 Sept LCG Incident Response Ian Neilson LCG Security Officer Grid Deployment Group CERN.
GGF Fall 2004 Brussels, Belgium September 20th, 2004 James Marsteller Pittsburgh Supercomptuing Center
Apr 30, 20081/11 VO Services Project – Stakeholders’ Meeting Gabriele Garzoglio VO Services Project Stakeholders’ Meeting Apr 30, 2008 Gabriele Garzoglio.
INFSO-RI Enabling Grids for E-sciencE EGEE/LCG Joint Security Policy Group David Kelsey, CCLRC/RAL, UK EGEE.
Incident Response Plan for the Open Science Grid Grid Operations Experience Workshop – HEPiX 22 Oct 2004 Bob Cowles – Work.
Security Policy Update LCG GDB Prague, 4 Apr 2007 David Kelsey CCLRC/RAL
LCG/EGEE Security Operations HEPiX, Fall 2004 BNL, 22 October 2004 David Kelsey CCLRC/RAL, UK
15-Dec-04D.P.Kelsey, LCG-GDB-Security1 LCG/GDB Security Update (Report from the Joint Security Policy Group) CERN 15 December 2004 David Kelsey CCLRC/RAL,
9-Oct-03D.P.Kelsey, LCG-GDB-Security1 LCG/GDB Security (Report from the LCG Security Group) FNAL 9 October 2003 David Kelsey CCLRC/RAL, UK
Grid Security Vulnerability Group Linda Cornwall, GDB, CERN 7 th September 2005
Summary of AAAA Information David Kelsey Infrastructure Policy Group, Singapore, 15 Sep 2008.
Enabling Grids for E-sciencE EGEE Applications Registry Current status & latest developments Marios Chatziangelou.
Open Science Grid & its Security Technical Group ESCC22 Jul 2004 Bob Cowles
Opensciencegrid.org User Support in/and OSG Doug Olson, LBNL 2 nd EGEE/LCG Operations Workshop CNR, Bologna 25 May 2005.
The OSG and Grid Operations Center Rob Quick Open Science Grid Operations Center - Indiana University ATLAS Tier 2-Tier 3 Meeting Bloomington, Indiana.
DTI Mission – 29 June LCG Security Ian Neilson LCG Security Officer Grid Deployment Group CERN.
Sergiu April 2006June 2006 Overview of TeraGrid Security Working Group Activities James Marsteller CISSP, Working Group Chair.
EGI-InSPIRE RI EGI-InSPIRE EGI-InSPIRE RI EGI SPG future work EGI Technical Forum Lyon, 21 Sep 2011 David Kelsey, STFC/RAL.
Enabling Grids for E-sciencE EGEE Applications Registry Current status & latest developments Marios Chatziangelou.
EGEE ARM-2 – 5 Oct LCG/EGEE Security Coordination Ian Neilson Grid Deployment Group CERN.
26/01/2007Riccardo Brunetti OSCT Meeting1 Security at The IT-ROC Status and Plans.
INFSO-RI Enabling Grids for E-sciencE Joint Security Policy Group David Kelsey, CCLRC/RAL, UK 3 rd EGEE Project.
LCG User, Site & VO Registration in EGEE/LCG Bob Cowles OSG Technical Meeting Dec 15-17, 2004 UCSD.
Security Bob Cowles
INFSO-RI Enabling Grids for E-sciencE Update on LCG/EGEE Security Policy and Procedures David Kelsey, CCLRC/RAL, UK
Project Execution Methodology
Overview of Structure General Data Protection Regulation (GDPR)
Regional Operations Centres Core infrastructure Centres
Jan 2016 Solar Lunar Data.
Operations Interfaces and Interactions
Open Science Grid Consortium Meeting
Incident Response Plan for the Open Science Grid

LCG/EGEE Incident Response Planning
Japan proposal on schedule
Please Click the following link to view
David Kelsey CCLRC/RAL, UK
Q1 Jan Feb Mar ENTER TEXT HERE Notes
Service Delivery and Support Program Update – April 25, 2018
Jul Aug Sept Oct Nov Dec Jan Feb Mar Apr May Jun
Japan proposal on schedule
Project timeline # 3 Step # 3 is about x, y and z # 2
Average Monthly Temperature and Rainfall
Leigh Grundhoefer Indiana University

North Carolina Piedmont Region Consortium Timeline
Gantt Chart Enter Year Here Activities Jan Feb Mar Apr May Jun Jul Aug
Jul Aug Sept Oct Nov Dec Jan Feb Mar Apr May Jun
ICANN Implementation Timeline – Proposals Delivered in Dec. 2015

Text for section 1 1 Text for section 2 2 Text for section 3 3
Text for section 1 1 Text for section 2 2 Text for section 3 3
Text for section 1 1 Text for section 2 2 Text for section 3 3
Text for section 1 1 Text for section 2 2 Text for section 3 3
Text for section 1 1 Text for section 2 2 Text for section 3 3
Text for section 1 1 Text for section 2 2 Text for section 3 3
Text for section 1 1 Text for section 2 2 Text for section 3 3
Text for section 1 1 Text for section 2 2 Text for section 3 3
Text for section 1 1 Text for section 2 2 Text for section 3 3
Text for section 1 1 Text for section 2 2 Text for section 3 3
Project timeline # 3 Step # 3 is about x, y and z # 2
TIMELINE NAME OF PROJECT Today 2016 Jan Feb Mar Apr May Jun
Presentation transcript:

Incident Response Plan for the Open Science Grid 2nd EGEE Conference Den Haag, Netherlands 25 Nov 2004 Bob Cowles – bob.cowles@slac.stanford.edu

Principles OSG is a with little central control or resources – almost everything has to be done by the sites or the VOs Sites security personnel will need to feel comfortable with grid use of resources limited additional risks local control over decisions Coordinate with EGEE/LCG efforts KISS or “Simplify and add lightness” 25 Nov 2004 OSG Incident Response

Centrally Provided List of site security points of contact Email communications Filter standard email addresses security@opensciencegrid.org abuse@opensciencegrid.org Coordinate with other Grid Operation Centers (GOC) 25 Nov 2004 OSG Incident Response

Site Responsibilities – 1 Report grid-related incidents (hi-priority list) Remove compromised servers Release only summary information Have a site incident response plan in place (logs, evidence) 25 Nov 2004 OSG Incident Response

Site Responsibilities – 2 Provide security contact information Follow-up to email discussion list Take appropriate care with sensitive material collected Provide appropriate law enforcement with materials for coordination, investigation and prosecution 25 Nov 2004 OSG Incident Response

Incident Classification Potential to compromise grid infrastructure Potential to compromise grid service or VO Potential to compromise grid user 25 Nov 2004 OSG Incident Response

Response Teams Self-organized body of volunteers Mailing list maintained by GOC Team organized for severe or complex incidents Team leader to coordinate efforts 25 Nov 2004 OSG Incident Response

Incident Handling – 1 Discovery and reporting local procedures & GOC list notified Initial analysis and classification verify incident and perform classification Containment remove resources, services, users Notification and escalation notify grid management for more severe 25 Nov 2004 OSG Incident Response

Incident Handling – 2 Analysis and Response Post-incident analysis Resource tracking (response costs) Evidence collection Removal and recovery – regular communication on the discussion list Post-incident analysis Close-out report following incident 25 Nov 2004 OSG Incident Response

Timeline Jun 04 – Security TG formed Jul 04 – IR Activity formed Sep 04 – First draft of plan reviewed Oct 04 – Coordinate with EGEE/LCG Nov 04 – Presentation – 2nd EGEE Conf Dec 04 – Implementation Jan 05 – Implementation & testing Feb 05 – OSG; EGEE Review 25 Nov 2004 OSG Incident Response

The Plan www.opensciencegrid.org click on “Documents” http://computing.fnal.gov/docdb/osg_documents//Static/Lists//FullList.html www.opensciencegrid.org click on “Documents” click on “Search the database and read documents” click on “OSG Security Incident Handling and Response” 25 Nov 2004 OSG Incident Response

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com. Inc. All rights reserved.