1 François Fluckiger ISS e G I ntegrated S ite S ecurity for G rids EGEE04-Pisa-25 October 2005 ISS e G Integrated Site Security for Grids EU-FP6 Project.

Slides:

Advertisements

Similar presentations

Existing tools for cooperation – WG 2 1 Regional Policy Dialogue Capacity building seminars WORKING GROUP MEETINGS HIGH LEVEL SEMINAR SERIES 4 working.

Advertisements

Federated Digital Rights Management Mairéad Martin The University of Tennessee TERENA General Assembly Meeting Prague, CZ October 24, 2002.

An overview of the EGEE project Bob Jones EGEE Technical Director DTI International Technology Service-GlobalWatch Mission CERN – June 2004.

Identification of critical success factors for implementing NLLS, through collaboration and exchange of expertise IDENTIFY LLP-2008-RO-KA1-KA1NLLS.

Connecting People With Information DoD Net-Centric Services Strategy Frank Petroski October 31, 2006.

23 June Strategy Proposal Heinz Stockinger on behalf of the Executive Board SwiNG Assembly Meeting Berne, 23 June 2008.

Enabling, facilitating and delivering quality training in the UK and Internationally The challenge of grid training and education David Fergusson, Deputy.

EGEE-III INFSO-RI Enabling Grids for E-sciencE EGEE-III Program of Work Erwin Laure EGEE-II / EGEE-III Transition Meeting CERN,

GEM Presentation April 29`th Global Education in Manufacturing GEM.

Education and Culture Main initiatives and events 2013 Multilingualism.

Near East Rural & Agricultural Knowledge and Information Network - NERAKIN Food and Agriculture Organization of the United Nations Near East and North.

European Life Sciences Infrastructure for Biological Information ELIXIR

What is OMII-Europe? Qin Li Beihang University. EU project: RIO31844-OMII-EUROPE 1 What is OMII-Europe? Open Middleware Infrastructure Institute for Europe.

VIRTUAL RIJEKA E-MuniS Project. VIRTUAL RIJEKA: STRATEGIC DEVELOPMENT PLAN E-MuniS Project: Electronic Municipal Information Services VIRTUAL RIJEKA:

AARC Overview Licia Florio, David Groep 21 Jan 2015 presented by David Groep, Nikhef.

FP I-6 Contract October, 2005EGEE04 Pisa Baltic Grid SIXTH FRAMEWORK PROGRAMME RESEARCH INFRASTRUCTURES COMMUNICATION NETWORK DEVELOPMENT.

INFSO-RI Enabling Grids for E-sciencE NA3 Training and induction Malcolm Atkinson & David Fergusson NA3 Leader & Activity Manager,

Enabling Grids for E-sciencE EGEE III Security Training and Dissemination Mingchao Ma, STFC – RAL, UK OSCT Barcelona 2009.

EGEE-II INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks Related Projects Dieter Kranzlmüller Deputy.

FP6−2004−Infrastructures−6-SSA E-infrastructure shared between Europe and Latin America Grid projects in Europe Giuseppe Andronico.

The Knowledge Exchange Presentation to CNI April 2005 Bas Cordewener, SURF Sigrun Eckelmann, DFG Norman Wiseman, JISC.

EU-IndiaGrid (RI ) is funded by the European Commission under the Research Infrastructure Programme The EU-IndiaGrid Project Joining.

EGEE is proposed as a project funded by the European Union under contract IST EU eInfrastructure project initiatives FP6-EGEE Fabrizio Gagliardi.

INFSO-RI Enabling Grids for E-sciencE EGEE and Industry Bob Jones EGEE-II Project Director Final EGEE Review CERN, May 2006.

Responsibilities of ROC and CIC in EGEE infrastructure A.Kryukov, SINP MSU, CIC Manager Yu.Lazin, IHEP, ROC Manager

EGEE-II INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks EGEE – paving the way for a sustainable infrastructure.

INFSO-RI Enabling Grids for E-sciencE Plan until the end of the project and beyond, sustainability plans Dieter Kranzlmüller Deputy.

Bob Jones Technical Director CERN - August 2003 EGEE is proposed as a project to be funded by the European Union under contract IST

INFSO-RI Enabling Grids for E-sciencE NA3 Training and induction Malcolm Atkinson & David Fergusson NA3 Leader & Activity Manager,

INFSO-RI Enabling Grids for E-sciencE External Projects Integration Summary – Trigger for Open Discussion Fotis Karayannis, Joanne.

TERENA update Karel Vietsch TERENA CEO Internet2 Fall Meeting, Atlanta 30 October 2000.

EGEE-III INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks SA1: Grid Operations Maite Barroso (CERN)

INFSOM-RI WP NA2 Dissemination, Training and Certification Isabel Matranga Engineering Ingegneria Informatica S.p.A. ETICS 2 Kick.

Olivier MartinThe BETEL Project 28/11/1997 Slide (1) BETEL (Broadband Exchange over Trans-European Links) u Presentation Outline: l Background l Partners.

FP OntoGrid: Paving the way for Knowledgeable Grid Services and Systems WP10: Dissemination, Transfer and Exploitation Review.

Authentication and Authorisation for Research and Collaboration Licia Florio AARC Workshop The AARC Project Brussels, 26 October.

Project Overview Dr Fredrik Hedman Royal Institute of Technology (PDC/KTH)

The DEER The Distributed European Electronic Resource.

1 I ntegrated S ite S ecurity for G rids © Members of the ISSeG Collaboration, EU-FP6 Project ISS e G Integrated Site Security for.

Information Technology Services Strategic Directions Approach and Proposal “Charting Our Course”

DTI Mission – 29 June LCG Security Ian Neilson LCG Security Officer Grid Deployment Group CERN.

1 I ntegrated S ite S ecurity for G rids © Members of the ISSeG Collaboration, EU-FP6 Project ISS e G Integrated Site Security for.

EGEE is a project funded by the European Union under contract IST Generic Applications in EGEE-NA4 Roberto Barbera NA4 Generic Applications.

INFSO-RI Enabling Grids for E-sciencE Policy and International cooperation Fotis Karayannis, NA5 activity leader All Activity Meeting.

1 I ntegrated S ite S ecurity for G rids cern.ch/isseg François Fluckiger IT seminar -EU Projects 13 March 2006 ISS e G EU-FP6 Project Overview.

SEE-GRID-2 The SEE-GRID-2 initiative is co-funded by the European Commission under the FP6 Research Infrastructures contract no

Guy Wormser IN2P3/CNRS, EGEE Applications Manager September 2003 EGEE is proposed as a project funded by the European Union under contract IST

INFSO-RI Enabling Grids for E-sciencE The EGEE Project Owen Appleton EGEE Dissemination Officer CERN, Switzerland Danish Grid Forum.

EGEE is a project funded by the European Union under contract IST Roles & Responsibilities Ian Bird SA1 Manager Cork Meeting, April 2004.

EGEE Project Review Fabrizio Gagliardi EDG-7 30 September 2003 EGEE is proposed as a project funded by the European Union under contract IST

1 I ntegrated S ite S ecurity for G rids WP2 – Site Assessment Methodology, 20 June 2007 WP2 - Methodology ISS e G Integrated Site Security.

EMI is partially funded by the European Commission under Grant Agreement RI NA2 : Outreach and Training Emidio Giorgio, INFN NA2 Leader 2 nd EMI.

WP5 – Flagship Deployment Period 1 Review Phil Evans – Logica/CGI 1.

Planning for LCG Emergencies HEPiX, Fall 2005 SLAC, 13 October 2005 David Kelsey CCLRC/RAL, UK

EGEE-II INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks NA5: Policy and International Cooperation.

EGEE-II INFSO-RI Enabling Grids for E-sciencE Training in EGEE-II Mike Mineter (Some slides from Brendan Hamill)

1 Integrated Site Security Project Denise Heagerty CERN 22 May 2007.

Ian Bird LCG Project Leader Status of EGEE  EGI transition WLCG LHCC Referees’ meeting 21 st September 2009.

1 I ntegrated S ite S ecurity for G rids © Members of the ISSeG Collaboration, EU-FP6 Project ISS e G Integrated Site Security for.

EGEE-II INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks NA5: Policy and International Cooperation.

COST Action and European GBIF Nodes Anne-Sophie Archambeau.

ETICS, EU-OMII and the Software Repository Andrea Caltroni, INFN Padova ETICS 1 st All-Hands Meeting, Budapest - May 29-31, 2006.

Co-ordination & Harmonisation of Advanced e-Infrastructures for Research and Education Data Sharing Grant.

Bob Jones EGEE Technical Director

Managing the Delivery of Information Services

Integrated Site Security for Grids

Communications and development Francois Grey, CERN openlab development Enterasys Networks visit 23/01/03.

BioMedBridges – Work Packages 2 & 12

Hsin-Yen Chen 29 Aug APAN24 ASGC

ITDG meeting of of October 2011

Presentation transcript:

1 François Fluckiger ISS e G I ntegrated S ite S ecurity for G rids EGEE04-Pisa-25 October 2005 ISS e G Integrated Site Security for Grids EU-FP6 Project François Fluckiger CERN

2 François Fluckiger ISS e G I ntegrated S ite S ecurity for G rids EGEE04-Pisa-25 October 2005 Integrated Site Security for Grids  Overall aim  “Contribute to the consolidation of the European Grid infrastructure in the field of computer security”  Focus  Site Security to complement Grid security  Key concept  Integration of all security components  Project Objective: a.Create expertise b.Disseminate expertise

3 François Fluckiger ISS e G I ntegrated S ite S ecurity for G rids EGEE04-Pisa-25 October 2005 ISSeG Facts and Figures  Four Partners  CERN (coordinator)  CCLRC, UK  FZK, Germany  CS-SI, France  Budget: 1086 K€  Start: 01/01/06  Two years project years

4 François Fluckiger ISS e G I ntegrated S ite S ecurity for G rids EGEE04-Pisa-25 October 2005 Site vs Grid Security  Grid Security  Authentication / Authorization in VOs  Traveling Data integrity  Specific security incident  Site Security  Technical Security  Policy, Regulation, Administration  Training and sensitization

5 François Fluckiger ISS e G I ntegrated S ite S ecurity for G rids EGEE04-Pisa-25 October 2005 Site vs Grid Security GRID Infrastructure Site A R Site 8 H H Site C H R R GRID Security Site Security H H HH HH

6 François Fluckiger ISS e G I ntegrated S ite S ecurity for G rids EGEE04-Pisa-25 October 2005 ISS: The Three Dimensions Technical Infrastructure Network En-user systems Servers Mission-critical systems Policy Regulation Administration Policy formation \ enforcement User registration Rules and Regulations Training Sensitization End-users System managers Application developers

7 François Fluckiger ISS e G I ntegrated S ite S ecurity for G rids EGEE04-Pisa-25 October 2005 Integrated Approach  “Actions or decisions affecting one security component should be checked against other components likely to be affected, which in turn may have to be adapted”  “Good synchronization necessary between changes affecting transversally multiple components”  Examples of poor synchronization include:  New anti-spam or virus detection measures translated with delay into end-user information / training material  New security policy published whilst technical components necessary to their enforcement are not yet fully operational Technical Infrastructure Network En-user systems Servers Mission-critical systems Policy Regulation Administration Policy formation User registration Rules/Regulations Training Sensitization End-users System managers App. developers

8 François Fluckiger ISS e G I ntegrated S ite S ecurity for G rids EGEE04-Pisa-25 October 2005 ISSeG Methodology  Expertise Creation  ISS deployment at CERN  ISS adaptation and export at FZK  Expertise Dissemination  Recommendations for ISS generalization  Training and disseminations actions M1- 3 M4- 6 M7- 9 M M M M M Deployment at CERN Deployment at FZK Recommendations for Generalization Training and Dissemination

9 François Fluckiger ISS e G I ntegrated S ite S ecurity for G rids EGEE04-Pisa-25 October 2005 ISSeG Methodology (cont) Formulation and Dissemination of Expertise Documentation on Raw Expertise MethodologiesRecommendations Training Material and Activities Creation and Capture of Expertise on ISS

10 François Fluckiger ISS e G I ntegrated S ite S ecurity for G rids EGEE04-Pisa-25 October 2005 Expertise Formulation: Outcomes  Recommendations for ISS Generalization Separate site-specific from generic aspects  Technical architecture  Policies  Organization  Training plans  Methodologies  For security auditing of new sites Formulation of Expertise Training Material and Activities MethodologiesRecommendations

11 François Fluckiger ISS e G I ntegrated S ite S ecurity for G rids EGEE04-Pisa-25 October 2005 Expertise Dissemination: Outcomes  Training and dissemination Web Site  Pilot topical school on site security  Workshop on ISS with EGEE Site Security Officers  Participation in (educational) events  Specific dissemination actions to user communities Dissemination of Expertise MethodologiesRecommendations Training Material and Activities

12 François Fluckiger ISS e G I ntegrated S ite S ecurity for G rids EGEE04-Pisa-25 October 2005 Synergies with other EU projects BioInfoG. ISSeG ETICS 6DISS BELIEF BalticGrid IceAge

13 François Fluckiger ISS e G I ntegrated S ite S ecurity for G rids EGEE04-Pisa-25 October 2005 Synergies with other EU projects  Liaison with Grid Security structures  Involvement of User Communities  Astrophysics  Bio-Informatics  Computational Chemistry  Fusion Physics  Hearth Sciences  High-Energy Physics Formulation of Expertise Training Material and Activities MethodologiesRecommendations  EGEE Security Policy Group  via EGEE Application Activities  via Other Grid-related projects

14 François Fluckiger ISS e G I ntegrated S ite S ecurity for G rids EGEE04-Pisa-25 October 2005 Synergies with other EU projects  Training and dissemination Web Site  Pilot topical school on site security  Workshop on ISS with Site Security Officers  Participation in educational events  Specific actions to user communities Dissemination of Expertise MethodologiesRecommendations Training Material and Activities  Web site Cross- referencing  Partnership with other project event  Co-located with other project event  Provision of lecturers, content  via Grid-related projects

15 François Fluckiger ISS e G I ntegrated S ite S ecurity for G rids EGEE04-Pisa-25 October 2005 Towards Joint Actions Agreement on the principle of joint actions IceAge  Cross referencing  Share of education material  Exploitation of IceAge dissemination channels for educational material

16 François Fluckiger ISS e G I ntegrated S ite S ecurity for G rids EGEE04-Pisa-25 October 2005 Towards Joint Actions Agreement on the principle of joint actions BalticGrid  Cross referencing of education material  (ISSeG) presenting at BalticGrid workshops and seminars  (ISSeG) lecturing at BalticGrid summer schools / tutorials

17 François Fluckiger ISS e G I ntegrated S ite S ecurity for G rids EGEE04-Pisa-25 October 2005 Towards Joint Actions Agreement on the principle of joint actions BELIEF  Include the ISSeG training plan in some of BELIEF events Two workshops, two international conferences  Use the BELIEF portal to identify new partners interested in deploying the ISS User community database for trying and forge alliances with industry & research in the fields of eInfrastructures

18 François Fluckiger ISS e G I ntegrated S ite S ecurity for G rids EGEE04-Pisa-25 October 2005 Towards Joint Actions Agreement on the principle of joint actions 6DISS  Identify technical areas of mutual interest which overlap the wide-area networking domain of 6DISS and the site security domain of ISSeG  Organize as appropriate actions of mutual benefits such as cross-reference of educational material and cross-participation to dissemination events

19 François Fluckiger ISS e G I ntegrated S ite S ecurity for G rids EGEE04-Pisa-25 October 2005 Beyond ISS e G  ISSeG is a two-year project  Too short to achieve wide-scale ISS generalization  Sufficient to create the conditions for it  methods  recommendations  training all validated by the two deployments  ISS generalization … … may be the subject of a second phase