OSG Area Coordinators Meeting Security Team Report Mine Altunay 11/02/2011.

Slides:

Advertisements

Similar presentations

OSG Technology Area Brian Bockelman Area Coordinators Meeting November 30, 2011.

Advertisements

OSG Area Coordinators Meeting Security Team Report Mine Altunay 04/02/2014.

OSG Area Coordinators Meeting Security Team Report Mine Altunay 05/15/2013.

May 9, 2008 Reorganization of the OSG Project The existing project organization chart was put in place at the beginning of It has worked very well.

Budget Prep Budget Prep Dates Budgets will be released mid-May Budgets will be due to the Budget Office on June 18 th Budget will be finalized and.

FNAL Configuration Management Jack Schmidt Cyber Security Workshop May th 2006.

EGI-Engage Recent Experiences in Operational Security: Incident prevention and incident handling in the EGI and WLCG infrastructure.

Key Accomplishments and Work Plans OSG Security Team July 11, 2012.

OSG Area Coordinators Meeting Security Team Report Mine Altunay 01/29/2014.

OSG Area Coordinators Meeting Operations Rob Quick 2/22/2012.

OSG PKI Grid Admin (GA) Training Mine Altunay, Jim Basney OSG PKI Team October 8, 2012.

OSG Area Coordinators Meeting Operations Rob Quick 2/22/2012.

OSG Area Coordinators Meeting Security Team Report Kevin Hill 08/14/2013.

OSG Operations Rob Quick July 10th, 2012 OSG Staff Retreat.

OSG Security Review Mine Altunay June 19, June 19, Security Overview Current Initiatives  Incident response procedure – top priority (WBS.

OSG Area Coordinators Meeting Security Team Report Mine Altunay 12/21/2011.

OSG Security Program Review OSG Security Team M. Altunay, FNAL, OSG Security Officer, D. Olson LBNL, Ron Cudzewicz FNAL J. Basney NCSA, Anand Padmanabhan.

OSG Operations and Interoperations Rob Quick Open Science Grid Operations Center - Indiana University EGEE Operations Meeting Stockholm, Sweden - 14 June.

OSG Area Coordinators Meeting Security Team Report Mine Altunay 06/25/2014.

Integration and Sites Rob Gardner Area Coordinators Meeting 12/4/08.

FNAL System Patching Design Jack Schmidt, Al Lilianstrom, Andy Romero, Troy Dawson, Connie Sieh (Fermi National Accelerator Laboratory) Introduction FNAL.

OSG Security Kevin Hill. Goals Operational Security – Identify software vulnerabilities – observing the practices of our VOs and sites, and sending alerts.

Blueprint Meeting Notes Feb 20, Feb 17, 2009 Authentication Infrastrusture Federation = {Institutes} U {CA} where both entities can be empty TODO1:

J OINING OSG Suchandra Thapa Computation Institute University of Chicago.

OSG Area Coordinators Meeting Security Team Report Mine Altunay 04/3/2013.

Report on the state of OSG Software Alain Roy. OSG Year 6 Planning, July 2011 Points to discuss 1.State of RPM transition 2.State of last scheduled Pacman.

OSG Project Manager Report for OSG Council Meeting OSG Project Manager Report for OSG Council Meeting October 14, 2008 Chander Sehgal.

Evolution of the Open Science Grid Authentication Model Kevin Hill Fermilab OSG Security Team.

OSG Security Review Mine Altunay December 4, 2008.

Rob Quick OSG Operations Area Coordinator Manager High Throughput Computing Indiana University Integrating OSG Operational Services Rob Quick OSG Operations.

OSG Area Coordinators Meeting Security Team Report Mine Altunay 8/15/2012.

Evolution of Grid Projects and what that means for WLCG Ian Bird, CERN WLCG Workshop, New York 19 th May 2012.

OSG PKI Contingency and Recovery Plans Mine Altunay, Von Welch OSG Council August 23, 2012.

OSG PKI Contingency and Recovery Plans Mine Altunay, Von Welch October 16, 2012.

March 11, 2008 USCMS Tier-2 Workshop Oh Dear God Alain made a PowerPoint presentation 1.

Introduction to OSG Security Suchandra Thapa Computation Institute University of Chicago March 19, 20091GSAW 2009 Clemson.

Mine Altunay July 30, 2007 Security and Privacy in OSG.

OSG Area Coordinators Meeting Security Team Report Mine Altunay 6/6/2012.

OSG PKI Transition: Transition Phase Report Von Welch OSG PKI Transition Lead Indiana University Center for Applied Cybersecurity Research.

Grid Operations Lessons Learned Rob Quick Open Science Grid Operations Center - Indiana University.

Meeting Minutes and TODOs TG has no distributed monitoring. During incident response, use a manual twiki page to distribute information TG monitors the.

9 Oct Overview Resource & Project Management Current Initiatives  Generate SOWs  8 written and 6 remain;  drafts will be complete next week 

G Z LIGO's Physics at the Information Frontier Grant and OSG: Update Warren Anderson for Patrick Brady (PIF PI) OSG Executive Board Meeting Caltech.

The OSG and Grid Operations Center Rob Quick Open Science Grid Operations Center - Indiana University ATLAS Tier 2-Tier 3 Meeting Bloomington, Indiana.

OSG Area Coordinators Meeting Operations Rob Quick 1/11/2012.

OSG Area Report Production – Operations – Campus Grids Jan 11, 2011 Dan Fraser.

OSG Area Coordinators Meeting Security Team Report Mine Altunay 4/11/2012.

Preparing your accreditation documents Accreditation 104.

OSG Area Coordinators Meeting Security Team Report Mine Altunay 02/13/2012.

Identity Management in Open Science Grid Identity Management in Open Science Grid Challenges, Needs, and Future Directions Mine Altunay, James Basney,

OSG Area Report Production – Operations – Campus Grids June 19, 2012 Dan Fraser Rob Quick.

User Support of WLCG Storage Issues Rob Quick OSG Operations Coordinator WLCG Collaboration Meeting Imperial College, London July 7,

OSG Security: Updates on OSG CA & Federated Identities Mine Altunay, PhD OSG Security Team OSG AHM March 24, 2015.

Fermilab / FermiGrid / FermiCloud Security Update Work supported by the U.S. Department of Energy under contract No. DE-AC02-07CH11359 Keith Chadwick Grid.

Open Science Grid Security Activities D. Olson, LBNL OSG Deputy Security Officer For the OSG Security Team: M. Altunay, FNAL, OSG Security Officer, D.O.,

The Great Migration: From Pacman to RPMs Alain Roy OSG Software Coordinator.

Development of the Fermilab Open Science Enclave Policy and Baseline Keith Chadwick Fermilab Work supported by the U.S. Department of.

OSG Area Coordinators Meeting Security Team Report Mine Altunay 8/15/2012.

Ruth Pordes, March 2010 OSG Update – GDB Mar 17 th 2010 Operations Services 1 Ramping up for resumption of data taking. Watching every ticket carefully.

OSG Facility Miron Livny OSG Facility Coordinator and PI University of Wisconsin-Madison Open Science Grid Scientific Advisory Group Meeting June 12th.

Certificate Security For Users Obtaining and Using Your Personal Certificate using the OSG PKI Kyle Gross – OSG Operations Support Lead Elizabeth Prout.

News from EUGridPMA EGI OMB, 22 Jan 2013 David Kelsey (STFC) Using notes from David Groep 22/01/20131EUGridPMA News.

New OSG Virtual Organization Security Training OSG Security Team.

OSG PKI Transition: Status and Next Steps (and Lessons Learned) Von Welch OSG PKI Transition Lead Indiana University Center for Applied Cybersecurity Research.

DOE S&S Audit and Tune IT Up Campaign Mark Leininger August 26, 2009.

보안 취약점 비교 Linux vs. Windows

EGI-InSPIRE RI EGI-InSPIRE EGI-InSPIRE RI SA1.2 Plans 2013 Security Operations David Kelsey (STFC) 26/02/2013 Operations.

New Tools Used by the Scientific Linux Team

OSG Security Kevin Hill.

Figure 6-4: Installation and Patching

Presentation transcript:

OSG Area Coordinators Meeting Security Team Report Mine Altunay 11/02/2011

Ongoing Work Operational Security Kevin Hill replaced Jim Barlow. – Getting up to speed quickly. Took over all of Jim’s responsibilities: REN-ISAC, grid-sec, vulnerability bulletin boards, risk assesment, and so on Software Vulnerabilities – Off-the-shelf software Apache, Tomcat, Java vulnerabilities – 3 aspects to evaluate: GOC servers, VDT servers, VDT content – VDT content: no worries. VDT team does an excellent job of releasing necessary patches – GOC servers: no worries. GOC personnel is alert and very responsive. – VDT servers: some concerns

Operational Security Security of VDT servers – Managed by Batlab and CSLab teams at Wisconsin. – No patching or update policy. Servers are patched and upgraded when there is a pressing need. Depends on the admin’s view. No regular yum update windows etc. – Working with Alain to understand new build infrastructure, comparing this to Scientific Linux build system at Fermilab – Kernel.org and LinuxFoundation.org compromises WLCG Security officer visit. Focused on common policies. Non-osg people signing up for operational security announcement. Shows value to the community

Operational Security New CA layout RPM package is released to ITB. It is set as default CA package and will go through ITB tests with all other new rpm packages Once software tests are over, work with Production group to make a plan for transition

Operational Security Work with Operations team to understand what the CA release process for the rpm packages – The security team have produced rpm and deb packages for CAs. We have an existing process with Ops team – With new build structure (Koji etc) we want to make sure the release process still works.

WBS Items for ID Management Create new project plans So far on-track Pilot with Digicert will start this week. Ends in 3 months – Will decide final contract based on pilot performance. – Pilot Project Plan is laid out. – Will pull in some of Anand’s time. – Biggest concern is testing the new Digicert CA in ITB against the VDT stack

WBS Items Execute Security Test and Controls – Plan is to start in March and prepare the report by July retreat. – Nothing to report yet.

New items IGTF is telling all accredited CAs to stop using SHA-1 by mid-2012 Different than naming changes in the CA packages Individual certificate contents will be changed. Must be tested in ITB.