Incident Response Plan for the Open Science Grid Grid Operations Experience Workshop – HEPiX 22 Oct 2004 Bob Cowles – Work.

Slides:



Advertisements
Similar presentations
LCG/EGEE/OSG Security Incident Response Grid Operations workshop CERN, 2 November 2004 David Kelsey CCLRC/RAL, UK
Advertisements

SL21 Information Security Board Mission, Goals and Guiding Principles.
Grid Security Users, VOs, Sites OSG Collaboration Meeting University of Washington Bob Cowles August 23, 2006 Work supported.
INFSO-RI Enabling Grids for E-sciencE Update on LCG/EGEE Security Policy and Procedures David Kelsey, CCLRC/RAL, UK
Sandia is a multi-program laboratory operated by Sandia Corporation, a Lockheed Martin Company, for the United States Department of Energy’s National Nuclear.
Fermi Computer Incident Response Team Computer Security Awareness Day March 8, 2005 Michael Diesburg.
INFSO-RI Enabling Grids for E-sciencE Incident Response Policies and Procedures Carlos Fuentes
Operational Security Working Group Topics Incident Handling Process –OSG Document Review & Comments:
CILogon OSG CA Mine Altunay Jim Basney TAGPMA Meeting Pittsburgh May 27, 2015.
OSG Operations and Interoperations Rob Quick Open Science Grid Operations Center - Indiana University EGEE Operations Meeting Stockholm, Sweden - 14 June.
EGEE ARM-2 – 5 Oct LCG Security Coordination Ian Neilson LCG Security Officer Grid Deployment Group CERN.
Publication and Protection of Site Sensitive Information in Grids Shreyas Cholia NERSC Division, Lawrence Berkeley Lab Open Source Grid.
GGF12 – 20 Sept LCG Incident Response Ian Neilson LCG Security Officer Grid Deployment Group CERN.
GGF Fall 2004 Brussels, Belgium September 20th, 2004 James Marsteller Pittsburgh Supercomptuing Center
Office of the CIO EITS The University of Georgia.
Security Policy Update LCG GDB Prague, 4 Apr 2007 David Kelsey CCLRC/RAL
EGEE-III INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks David Kelsey RAL/STFC,
CU – Boulder Security Incidents Jon Giltner. Our Challenge.
LCG/EGEE Security Operations HEPiX, Fall 2004 BNL, 22 October 2004 David Kelsey CCLRC/RAL, UK
15-Dec-04D.P.Kelsey, LCG-GDB-Security1 LCG/GDB Security Update (Report from the Joint Security Policy Group) CERN 15 December 2004 David Kelsey CCLRC/RAL,
9-Oct-03D.P.Kelsey, LCG-GDB-Security1 LCG/GDB Security (Report from the LCG Security Group) FNAL 9 October 2003 David Kelsey CCLRC/RAL, UK
Grid Security Vulnerability Group Linda Cornwall, GDB, CERN 7 th September 2005
Summary of AAAA Information David Kelsey Infrastructure Policy Group, Singapore, 15 Sep 2008.
Open Science Grid & its Security Technical Group ESCC22 Jul 2004 Bob Cowles
Opensciencegrid.org User Support in/and OSG Doug Olson, LBNL 2 nd EGEE/LCG Operations Workshop CNR, Bologna 25 May 2005.
The OSG and Grid Operations Center Rob Quick Open Science Grid Operations Center - Indiana University ATLAS Tier 2-Tier 3 Meeting Bloomington, Indiana.
DTI Mission – 29 June LCG Security Ian Neilson LCG Security Officer Grid Deployment Group CERN.
Sergiu April 2006June 2006 Overview of TeraGrid Security Working Group Activities James Marsteller CISSP, Working Group Chair.
Operations Activity Doug Olson, LBNL Co-chair OSG Operations OSG Council Meeting 3 May 2005, Madison, WI.
EGI-InSPIRE RI EGI-InSPIRE EGI-InSPIRE RI EGI SPG future work EGI Technical Forum Lyon, 21 Sep 2011 David Kelsey, STFC/RAL.
EGEE ARM-2 – 5 Oct LCG/EGEE Security Coordination Ian Neilson Grid Deployment Group CERN.
Planning for LCG Emergencies HEPiX, Fall 2005 SLAC, 13 October 2005 David Kelsey CCLRC/RAL, UK
26/01/2007Riccardo Brunetti OSCT Meeting1 Security at The IT-ROC Status and Plans.
INFSO-RI Enabling Grids for E-sciencE Joint Security Policy Group David Kelsey, CCLRC/RAL, UK 3 rd EGEE Project.
LCG User, Site & VO Registration in EGEE/LCG Bob Cowles OSG Technical Meeting Dec 15-17, 2004 UCSD.
Opensciencegrid.org Operations Interfaces and Interactions Rob Quick, Indiana University July 21, 2005.
Incident Response Christian Seifert IMT st October 2007.
Security Bob Cowles
Baseline The baseline at July Previously there was a lack of consistency for: Pathways into specialist clinics; Policies, procedures and guidelines.
New OSG Virtual Organization Security Training OSG Security Team.
Overview of Structure General Data Protection Regulation (GDPR)
Jan 2016 Solar Lunar Data.
Implementation Review Team Meeting
Open Science Grid Consortium Meeting
Incident Response Plan for the Open Science Grid
Incident Response Plan for the Open Science Grid

LCG/EGEE Incident Response Planning
Japan proposal on schedule
David Kelsey CCLRC/RAL, UK
Q1 Jan Feb Mar ENTER TEXT HERE Notes
Japan proposal on schedule
Average Monthly Temperature and Rainfall
Leigh Grundhoefer Indiana University

Gantt Chart Enter Year Here Activities Jan Feb Mar Apr May Jun Jul Aug
ICANN Implementation Timeline – Proposals Delivered in Dec. 2015

Safety Group Program Timeline
Text for section 1 1 Text for section 2 2 Text for section 3 3
Text for section 1 1 Text for section 2 2 Text for section 3 3
Text for section 1 1 Text for section 2 2 Text for section 3 3
Text for section 1 1 Text for section 2 2 Text for section 3 3
Text for section 1 1 Text for section 2 2 Text for section 3 3
Text for section 1 1 Text for section 2 2 Text for section 3 3
Text for section 1 1 Text for section 2 2 Text for section 3 3
Text for section 1 1 Text for section 2 2 Text for section 3 3
Text for section 1 1 Text for section 2 2 Text for section 3 3
Text for section 1 1 Text for section 2 2 Text for section 3 3
Safety Group Program Timeline
Presentation transcript:

Incident Response Plan for the Open Science Grid Grid Operations Experience Workshop – HEPiX 22 Oct 2004 Bob Cowles – Work supported by U. S. Department of Energy contract DE-AC02-76SF00515

22 Oct 2004 OSG Incident Response 2 Principles OSG is a with little central control or resources – almost everything has to be done by the sites or the VOs Sites security personnel will need to feel comfortable with grid use of resources –limited additional risks –local control over decisions

22 Oct 2004 OSG Incident Response 3 Centrally Provided List of site security points of contact Secure communications Incident Tracking system Functions of the Grid Operations Center (GOC) Coordinate with other GOCs

22 Oct 2004 OSG Incident Response 4 Site Responsibilities – 1 Have a site incident response plan in place (logs, evidence) Report grid-related incidents (hi- priority list) Remove compromised servers Refer press contacts to OSG Public Relations

22 Oct 2004 OSG Incident Response 5 Site Responsibilities – 2 Report follow-up to discussion list and Incident Tracking System Take appropriate care with sensitive material collected Provide appropriate law enforcement with materials for coordination, investigation and prosecution

22 Oct 2004 OSG Incident Response 6 Incident Classification Potential to compromise grid infrastructure Potential to compromise grid service or VO Potential to compromise grid user

22 Oct 2004 OSG Incident Response 7 Response Teams Self-organized body of volunteers Mailing list maintained by GOC Team organized for severe or complex incidents Team leader to coordinate efforts and maintain information flow with GOC and public relations

22 Oct 2004 OSG Incident Response 8 Incident Handling – 1 Discovery and reporting –local procedures & GOC list notified Triage –verify incident and perform classification Containment –remove resources, services, users Initial notification –record known information in tracking system Analysis and Response

22 Oct 2004 OSG Incident Response 9 Incident Handling – 2 Tracking and progress notification –updates on discussion list & tracking system Escalation –form IRT if complex or widespread Reporting –CERTs, law enforcement, other GOCs, etc. Public Relations Post-incident analysis

22 Oct 2004 OSG Incident Response 10 Timeline Jun 04– Security TG formed Jul 04– IR Activity formed Sep 04– First draft of plan reviewed Oct 04– Coordinate with EGEE/LCG Nov 04– Present plan at 2 nd EGEE mtg Dec 04– Implementation Jan 05– Implementation & testing Feb 05– OSG-0; EGEE Review

22 Oct 2004 OSG Incident Response 11 The Plan st.html click on “Documents” click on “Search the database and read documents” click on “OSG Secuirty Incident Handling and Response”

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.