DataGrid WP6/CA CA Trust Matrices Trinity College Dublin (TCD) Brian Coghlan CERN DEC-2002.

Slides:



Advertisements
Similar presentations
What is the capital of the UK? London What is the capital of France? Paris.
Advertisements

5-Dec-02D.P.Kelsey, GridPP Security1 GridPP Security UK Security Workshop 5-6 Dec 2002, NeSC David Kelsey CLRC/RAL, UK
11-Dec-01D.P.Kelsey, Authentication1 Authentication 11 Dec 2001 David Kelsey CLRC/RAL, UK
Directorate General for Energy and Transport European Commission Directorate General for Energy and Transport Progress in the Electricity and Gas Single.
UNIVERSITY OF JYVÄSKYLÄ INTERNATIONAL COOPERATION.
GSI – Grid Security Infrastructure and the EU DataGrid Authentication Infrastructure For the EDG CACG: David Groep.
Authentication Policy David Kelsey CCLRC/RAL 15 April 2004, Dublin
Welcome to CERN Research Technology Training Collaborating.
DataGrid WP6/CA CA Acceptance/Feature Matrices Trinity College Dublin (TCD) Brian Coghlan Paris MAR-2002.
Knowledge Management LXV International Council Meeting Qawra, Malta 16 th - 23 rd of March 2014.
Directive 95/50/EC TDG Checks Application of Annexes Erkki Laakso EUROPEAN COMMISSION DG ENERGY & TRANSPORT TDG Checks Riga June 2006.
13-May-03D.P.Kelsey, WP8 CA and VO organistion1 CA’s and Experiment (VO) Organisation WP8 Meeting EDG Barcelona, 13 May 2003 David Kelsey CCLRC/RAL, UK.
12-May-03D.P.Kelsey, SCG Online Authentication1 Online Authentication SCG Meeting EDG Barcelona, 12 May 2003 David Kelsey CCLRC/RAL, UK
EUROPEAN UNION. WHAT Coalition of 30 countries united in ECONOMY World’s largest trading bloc. World’s largest exporter to the world 16 TRILLION *Biggest.
Countries of Europe France Spain Italy Germany Which country is this?
The European Union. “Original” 15 members of the EU 1. Austria 9. Italy 2. Belgium 10. Luxemburg 3. Denmark* 11. Netherlands 4. Finland12. Portugal 5.
DOE Grids New subordinate CP/CPS v2.3 New subordinate CP/CPS v2.3 New name DOEGrids.org New name DOEGrids.org Old name DOESciencegrid.org Old name DOESciencegrid.org.
THE EUROPEAN UNION. HISTORY 28 European states after the second world war in 1951 head office: Brussels 24 different languages Austria joined 1995.
Capitalist. Main Points In a capitalist or free-market country, people can own their own businesses and property. People can also buy services for private.
10-Jun-03D.P.Kelsey, LCG-GDB-Security1 LCG/GDB Security (Report from the LCG Security Group) CERN, 10 June 2003 David Kelsey CCLRC/RAL, UK
ESnet PKI Developed for the DOE Science Grid and SciDAC.
Strength in Numbers Mar The Delian League  Countries do not want to be dominated by other countries.  But there are many advantages to be gained.
3-Jul-02D.P.Kelsey, Security1 Security meetings Report to EDG PTB 3 Jul 2002 David Kelsey CLRC/RAL, UK
Security Mechanisms The European DataGrid Project Team
Retirement in Europe Annika Sundén Presentation at 16th Annual Meeting of the Retirement Research Consortium “Social Security and the Retirement Income.
SPORTS MEDICINE SPECIALIZATION – 24 countries 1)Belarus 13)Romania 2) Bosnia & Herzegovina 14)Serbia 3) Bulgaria 15)Slovenia 4) Czech Republic 16)Spain.
Natural gas, and oil sectors in Europe Vaidotas Levickis Fort Worth, Texas 2015.
23-Oct-02D.P.Kelsey, Grid Security, HEPiX, FNAL1 LCG/EDG Security - update and plans HEPiX/HEPNT - FNAL 23 Oct 2002 David Kelsey CLRC/RAL, UK
The European Union 1 THE EUROPEAN UNION Lesson 2 Where in the world is the European Union?
Map - Region 3 Europe.
2-Sep-02D.P.Kelsey, WP6 CA, Budapest1 WP6 CA report Budapest 2 Sep 2002 David Kelsey CLRC/RAL, UK
Description of the flag given by The Council of Europe in 1986: "Against the blue sky of the Western world, the stars represent the peoples of Europe.
Time line By: Shirley Lin. The story of European Union
UNION EUROPÉENNE DES MÉDECINS SPÉCIALISTES EUROPEAN UNION OF MEDICAL SPECIALISTS U.E.M.S. ORL Section and Board RATIO OF ENT-SPECIALISTS TO POPULATION.
The creation of a only coin was approved in 1992 for the necessity to make easy the commercial exchanges to avoid the change of the coin.
The United States of Europe
8-Mar-01D.P.Kelsey, Certificates, WP6, Amsterdam1 WP6: Certificates for DataGrid Testbeds David Kelsey CLRC/RAL, UK
WFD Art. V Groundwater Body Data Gap Analysis ETC/Water.
Geography Review On Map 1, please identify: -Spain -France -England -Russia -Ottoman empire -Persia -China -Mughal India -Songhai Empire.
The Mission of CERN  Push back  Push back the frontiers of knowledge E.g. the secrets of the Big Bang …what was the matter like within the first moments.
10-May-01D.P.Kelsey, WP6 Security1 Certificates/Authorisation for DataGrid Testbeds David Kelsey CLRC/RAL, UK
7-May-03D.P.Kelsey, LCG-GDB-Security1 LCG/GDB Security Issues and Planning or Report from the Security Group CERN, 8 May 2003 David Kelsey CCLRC/RAL, UK.
11-May-01D.P.Kelsey, Security Update1 GRID Security Update David Kelsey CLRC/RAL, UK
Maps of Topic 2B Multilingualism in Europe Europe A Story of Empire (a united Europe) & Language.
European Innovation Scoreboard European Commission Enterprise and Industry DG EPG DGs meeting, May 2008.
Table 1. Number and rate of Legionnaires’ disease cases per population by country and year, EU/EEA, 2010–2014 ASR: age-standardised rate, C: case-based.
CONFIDENTIAL 1 EPC, European Union and unitary patent/UPC EPC: yes EEA: no EU: no (*) (*) Also means no unitary patent Albania, Macedonia, Monaco, San.
INTERNATIONAL BUSINESS Unit 2 Business Development GCSE Business Studies.
NSO data collections of subjective well-being
David Kelsey CLRC/RAL, UK
DataGrid WP6/CA CA Trust Matrices
European Union Duy Trinh.
DISTRIBUTION AUTOMATIC - GENERATION
Label on the Map Countries: Cities: Portugal 24) Rome Spain 25) Paris
The European Parliament – voice of the people
The European Parliament – voice of the people
Намалување на загадувањето на воздухот со електромобилност
European survey respondents by region.
The International Dimension
EU: First- & Second-Generation Immigrants
Adriatic Persian Gulf Map Test #1 Answers.
European Union Membership
Adoption, adaptation and applicability of the Global Curriculum in Medical Oncology. Adoption, adaptation and applicability of the Global Curriculum in.
Today is a special day ... It is the 10 year anniversary of ...
Adriatic Persian Gulf Map Test #1 Answers.
European representation of respiratory critical care HERMES participants. European representation of respiratory critical care HERMES participants. Countries.
New voting rules in Regulatory Committe
Where in the world is the European Union?
LAMAS Working Group June 2018
Prodcom Statistics in Focus
Presentation transcript:

DataGrid WP6/CA CA Trust Matrices Trinity College Dublin (TCD) Brian Coghlan CERN DEC-2002

DataGrid WP6/CA Matrix of Trust

CERN DEC-2002 DataGrid WP6/CA CA Feature Matrix

CERN DEC-2002 DataGrid WP6/CA CAs in Trust Matrices European EDG CERN CERN France France Italy Italy Netherlands Netherlands UK UK Czech Czech Hungary Hungary NorduGrid NorduGrid Spain Spain Russia Russia Portugal Portugal Ireland Ireland PPDG FusionGRID IVDGL NERSC PNNL ANL LBNL ORNL DOESG ESG North American added Jun’02: added Jun’02: DOE Science Grid DOE Science Grid European X# also in EDG: also in EDG: Portugal Portugal Spain Spain Netherlands Netherlands Italy Italy Ireland Ireland added Jun’02: added Jun’02: Germany Germany added Dec’02: added Dec’02: Poland Poland Greece Greece Slovakia Slovakia to be added: to be added: Cyprus Cyprus Austria ? Austria ?

CERN DEC-2002 DataGrid WP6/CA Autoevaluation little progress since Sep’02 little progress since Sep’02 Compiler works, but ruleset is restricted Compiler works, but ruleset is restricted extra manpower: extra manpower: David O’Callaghan David O’Callaghan next steps: next steps: port compiler port compiler create ruleset create ruleset

CERN DEC-2002 DataGrid WP6/CA Autoevaluation: current compiler

CERN DEC-2002 DataGrid WP6/CA Autoevaluation: current ruleset

CERN DEC-2002 DataGrid WP6/CA THE END Trust Matrices

CERN DEC-2002 DataGrid WP6/CA Matrix of trust How to establish the trust ? How to establish the trust ? CA Mgrs check each other against agreed list of minimum requirements CA Mgrs check each other against agreed list of minimum requirements currently require inspection of each CA’s CPS by each other CA currently require inspection of each CA’s CPS by each other CA software being developed to aid this process software being developed to aid this process CP/CPS important CP/CPS important audit of CA procedures will help audit of CA procedures will help none done yet none done yet use 3 rd party ? use 3 rd party ? GGF GridCP and CA-Operations WG’s considered important GGF GridCP and CA-Operations WG’s considered important

CERN DEC-2002 DataGrid WP6/CA Matrix of trust Scaling problems Scaling problems how many CA’s can we cope with [soon ~20] ? how many CA’s can we cope with [soon ~20] ? the process is very manual the process is very manual personal contacts are fundamental personal contacts are fundamental WANT TO MAKE EVALUATION MORE AUTOMATIC WANT TO MAKE EVALUATION MORE AUTOMATIC software being developed to aid this process software being developed to aid this process based on evaluation of the CA Feature Matrix based on evaluation of the CA Feature Matrix

CERN DEC-2002 DataGrid WP6/CA Basic Concepts Issues: Issues: postulate:(condition)  (issue) postulate:(condition)  (issue) e.g. (BasicConstraints_value ne ‘CA’)  (major issue) e.g. (BasicConstraints_value ne ‘CA’)  (major issue) Grading: Grading: i.e. assign an issue a weight i.e. assign an issue a weight Constraint: Constraint: issues of a certain class should be constrained to that class issues of a certain class should be constrained to that class e.g. many minor issues do not make a major issue e.g. many minor issues do not make a major issue Aggregation: Aggregation: aggregate graded issues in a measure of ‘severity’ aggregate graded issues in a measure of ‘severity’ e.g. major) =  (graded major issues)  limit=1.0 e.g. major) =  (graded major issues)  limit=1.0

CERN DEC-2002 DataGrid WP6/CA Currently [JUL-2002] per class: class) =  (graded class issues)  limit=1.0 per class: class) =  (graded class issues)  limit=1.0 max_severity: (severity) for most critical class with issues max_severity: (severity) for most critical class with issues postulate: acceptance_level = T acceptance – (max_severity) postulate: acceptance_level = T acceptance – (max_severity) where:T acceptance == (worst-case max_severity) where:T acceptance == (worst-case max_severity) e.g, assume: T acceptance = 3.0 e.g, assume: T acceptance = 3.0 therefore:max_severity = [ ] therefore:max_severity = [ ] and:acceptance_level = [ ] and:acceptance_level = [ ] This is the WORKING BASIS for manual evaluation This is the WORKING BASIS for manual evaluation

CERN DEC-2002 DataGrid WP6/CA Auto-evaluation move to extract issues automatically move to extract issues automatically from what ? from what ? initially from Feature Matrix initially from Feature Matrix later from CA certs & CRLs ? later from CA certs & CRLs ?

CERN DEC-2002 DataGrid WP6/CA Extraction from Feature Matrix since: (condition)  (graded issue) since: (condition)  (graded issue) then must define condition per feature  {rules} then must define condition per feature  {rules} e.g.: (name eq ‘NIL’)  (graded issue) e.g.: (name eq ‘NIL’)  (graded issue) thus:if (name eq ‘NIL’) (graded issue) == class) thus:if (name eq ‘NIL’) (graded issue) == class) per class:(severity) ==  (graded issues)  limit=1.0 per class:(severity) ==  (graded issues)  limit=1.0 EDG can define its common rule set EDG can define its common rule set each CA could define its own overrides to the rule set each CA could define its own overrides to the rule set ultimately each VO could define its own rule set ultimately each VO could define its own rule set

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com. Inc. All rights reserved.