Presentation is loading. Please wait.

Presentation is loading. Please wait.

King of France, Louis XVI Restorer of French Liberty

Published byTrương Văn Modified over 6 years ago

Similar presentations

Presentation on theme: "King of France, Louis XVI Restorer of French Liberty"— Presentation transcript:

1 King of France, Louis XVI Restorer of French Liberty
Security in the OSG King of France, Louis XVI Restorer of French Liberty Place d'Armes, 78000 Versailles, France

2 The Real King Louis XVI? Nope, he was a decoy because I’m not about those guillotines

3 Brian Lin OSG Software Team University of Wisconsin - Madison
Security in the OSG Brian Lin OSG Software Team University of Wisconsin - Madison

4 What is Trust? Trust: reliance on the integrity or surety of a person or thing Obtaining trust: Prior knowledge and/or experience Appeal to authority Chains of trust Photo by wfryerCC BY-SA

5 Identity and Identification
Identity: who someone is, Willie the Cat Identification: proof of who someone is, Willie’s collar Real word ID: photos, SSN, driver’s license, passport, etc. Internet ID: usernames (kinglouis16), certificates Photo by NeONBRAND on Unsplash

6 Authentication (AuthN)
Authentication: trusting identification Username + password, shared secret (public key cryptography), two-factor, etc. Authentication online often goes both ways Photo by expertinfrantry BY-SA

7 Authorization (AuthZ)
Authorization: trusting identities A description of the privilege level of an identity What are you authorized to do on our submit nodes? Photo by jmv BY-SA

8 HTCondor AuthN and AuthZ
Many different authentication methods (Unix file system, SSL, Kerberos, etc) Fine grained control over authorization levels and who belongs to each authorization level Not just any server can join the pool Not just any user can submit jobs Jobs run as your Unix user on the execute servers

9 Is Your Data Secure? You are using a shared computer so take basic precautions (no world- writable files)! Save strong login credentials in a password store NO sensitive data (e.g. HIPAA) Otherwise, relatively low risk Photo by sebastiaan stam on Unsplash

10 Security in the OSG Certificate-based security for pilots jobs and servers Pilot jobs run under the same Unix user, Singularity containers provide some separation between VO users VOs vet users; system administrators vet servers The OSG Security Team tracks software vulnerabilities and responds to security incidents Certificate revocation of compromised machines Site administrators keep audit logs for traceability in case of security issues

11 Questions?

Download ppt "King of France, Louis XVI Restorer of French Liberty"

Similar presentations

EGEE-II INFSO-RI-031688 Enabling Grids for E-sciencE www.eu-egee.org EGEE and gLite are registered trademarks MyProxy and EGEE Ludek Matyska and Daniel.

EGEE-II INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks MyProxy and EGEE Ludek Matyska and Daniel.
Overview of local security issues in Campus Grid environments Bruce Beckles University of Cambridge Computing Service.

Overview of local security issues in Campus Grid environments Bruce Beckles University of Cambridge Computing Service.
Overview Network security involves protecting a host (or a group of hosts) connected to a network Many of the same problems as with stand-alone computer.

Overview Network security involves protecting a host (or a group of hosts) connected to a network Many of the same problems as with stand-alone computer.
Access Control Chapter 3 Part 3 Pages 209 to 227.

Access Control Chapter 3 Part 3 Pages 209 to 227.
The Kerberos Authentication System Brad Karp UCL Computer Science CS GZ03 / M030 17 th November, 2008.

The Kerberos Authentication System Brad Karp UCL Computer Science CS GZ03 / M th November, 2008.
Experience Building and Supporting Secure Ad Hoc Collaborations Deb Agarwal Lawrence Berkeley National Laboratory Ad Hoc Collaboration - Internet2 Fall.

Experience Building and Supporting Secure Ad Hoc Collaborations Deb Agarwal Lawrence Berkeley National Laboratory Ad Hoc Collaboration - Internet2 Fall.
Grid Security. Typical Grid Scenario Users Resources.

Grid Security. Typical Grid Scenario Users Resources.
National Center for Supercomputing Applications Integrating MyProxy with Site Authentication Jim Basney Senior Research Scientist National Center for Supercomputing.

National Center for Supercomputing Applications Integrating MyProxy with Site Authentication Jim Basney Senior Research Scientist National Center for Supercomputing.
EUropean Best Information through Regional Outcomes in Diabetes Privacy and Disease Registries Technical Aspects Peter Beck JOANNEUM RESEARCH, Austria.

EUropean Best Information through Regional Outcomes in Diabetes Privacy and Disease Registries Technical Aspects Peter Beck JOANNEUM RESEARCH, Austria.
Using Digital Credentials On The World-Wide Web M. Winslett.

Using Digital Credentials On The World-Wide Web M. Winslett.
Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 2 Operating System Security Fundamentals.

Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 2 Operating System Security Fundamentals.
Access Control in IIS 6.0 Windows 2003 Server Prepared by- Shamima Rahman School of Science and Computer Engineering University of Houston - Clear Lake.

Access Control in IIS 6.0 Windows 2003 Server Prepared by- Shamima Rahman School of Science and Computer Engineering University of Houston - Clear Lake.
Designing Security In Web Applications Andrew Tomkowiak 10/8/2013 UW-Platteville Software Engineering Department

Designing Security In Web Applications Andrew Tomkowiak 10/8/2013 UW-Platteville Software Engineering Department
Air Force Association (AFA) 1. 1.Access Control 2.Four Steps to Access 3.How Does it Work? 4.User and Guest Accounts 5.Administrator Accounts 6.Threat.

Air Force Association (AFA) 1. 1.Access Control 2.Four Steps to Access 3.How Does it Work? 4.User and Guest Accounts 5.Administrator Accounts 6.Threat.
Bill Gates’ RSA 2006 Keynote presentation Questions and answers.

Bill Gates’ RSA 2006 Keynote presentation Questions and answers.
Session 11: Security with ASP.NET

Session 11: Security with ASP.NET
Database  A database is an organized collection of data for one or more purposes, usually in digital form. The data are typically organized to model.

Database  A database is an organized collection of data for one or more purposes, usually in digital form. The data are typically organized to model.
CN1260 Client Operating System Kemtis Kunanuraksapong MSIS with Distinction MCT, MCITP, MCTS, MCDST, MCP, A+

CN1260 Client Operating System Kemtis Kunanuraksapong MSIS with Distinction MCT, MCITP, MCTS, MCDST, MCP, A+
©2011 Quest Software, Inc. All rights reserved. Patrick Hunter EMEA IDAM Team Lead 7 th February 2012 Creating simple, effective and lasting IDAM solutions.

©2011 Quest Software, Inc. All rights reserved. Patrick Hunter EMEA IDAM Team Lead 7 th February 2012 Creating simple, effective and lasting IDAM solutions.
TeraGrid Science Gateways: Scaling TeraGrid Access Aaron Shelmire¹, Jim Basney², Jim Marsteller¹, Von Welch²,

TeraGrid Science Gateways: Scaling TeraGrid Access Aaron Shelmire¹, Jim Basney², Jim Marsteller¹, Von Welch²,

Similar presentations

Ads by Google