Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 François Fluckiger ISS e G I ntegrated S ite S ecurity for G rids EGEE04-Pisa-25 October 2005 ISS e G Integrated Site Security for Grids EU-FP6 Project.

Published byLillian Barton Modified over 9 years ago

Similar presentations

Presentation on theme: "1 François Fluckiger ISS e G I ntegrated S ite S ecurity for G rids EGEE04-Pisa-25 October 2005 ISS e G Integrated Site Security for Grids EU-FP6 Project."— Presentation transcript:

1 1 François Fluckiger ISS e G I ntegrated S ite S ecurity for G rids EGEE04-Pisa-25 October 2005 ISS e G Integrated Site Security for Grids EU-FP6 Project 026745 François Fluckiger CERN

2 2 François Fluckiger ISS e G I ntegrated S ite S ecurity for G rids EGEE04-Pisa-25 October 2005 Integrated Site Security for Grids  Overall aim  “Contribute to the consolidation of the European Grid infrastructure in the field of computer security”  Focus  Site Security to complement Grid security  Key concept  Integration of all security components  Project Objective: a.Create expertise b.Disseminate expertise

3 3 François Fluckiger ISS e G I ntegrated S ite S ecurity for G rids EGEE04-Pisa-25 October 2005 ISSeG Facts and Figures  Four Partners  CERN (coordinator)  CCLRC, UK  FZK, Germany  CS-SI, France  Budget: 1086 K€  Start: 01/01/06  Two years project 20062007 2 years

4 4 François Fluckiger ISS e G I ntegrated S ite S ecurity for G rids EGEE04-Pisa-25 October 2005 Site vs Grid Security  Grid Security  Authentication / Authorization in VOs  Traveling Data integrity  Specific security incident  Site Security  Technical Security  Policy, Regulation, Administration  Training and sensitization

5 5 François Fluckiger ISS e G I ntegrated S ite S ecurity for G rids EGEE04-Pisa-25 October 2005 Site vs Grid Security GRID Infrastructure Site A R Site 8 H H Site C H R R GRID Security Site Security H H HH HH

6 6 François Fluckiger ISS e G I ntegrated S ite S ecurity for G rids EGEE04-Pisa-25 October 2005 ISS: The Three Dimensions Technical Infrastructure Network En-user systems Servers Mission-critical systems Policy Regulation Administration Policy formation \ enforcement User registration Rules and Regulations Training Sensitization End-users System managers Application developers

7 7 François Fluckiger ISS e G I ntegrated S ite S ecurity for G rids EGEE04-Pisa-25 October 2005 Integrated Approach  “Actions or decisions affecting one security component should be checked against other components likely to be affected, which in turn may have to be adapted”  “Good synchronization necessary between changes affecting transversally multiple components”  Examples of poor synchronization include:  New anti-spam or virus detection measures translated with delay into end-user information / training material  New security policy published whilst technical components necessary to their enforcement are not yet fully operational Technical Infrastructure Network En-user systems Servers Mission-critical systems Policy Regulation Administration Policy formation User registration Rules/Regulations Training Sensitization End-users System managers App. developers

8 8 François Fluckiger ISS e G I ntegrated S ite S ecurity for G rids EGEE04-Pisa-25 October 2005 ISSeG Methodology  Expertise Creation  ISS deployment at CERN  ISS adaptation and export at FZK  Expertise Dissemination  Recommendations for ISS generalization  Training and disseminations actions M1- 3 M4- 6 M7- 9 M10 -12 M13 -15 M16 -18 M19 -21 M22 -24 Deployment at CERN Deployment at FZK Recommendations for Generalization Training and Dissemination

9 9 François Fluckiger ISS e G I ntegrated S ite S ecurity for G rids EGEE04-Pisa-25 October 2005 ISSeG Methodology (cont) Formulation and Dissemination of Expertise Documentation on Raw Expertise MethodologiesRecommendations Training Material and Activities Creation and Capture of Expertise on ISS

10 10 François Fluckiger ISS e G I ntegrated S ite S ecurity for G rids EGEE04-Pisa-25 October 2005 Expertise Formulation: Outcomes  Recommendations for ISS Generalization Separate site-specific from generic aspects  Technical architecture  Policies  Organization  Training plans  Methodologies  For security auditing of new sites Formulation of Expertise Training Material and Activities MethodologiesRecommendations

11 11 François Fluckiger ISS e G I ntegrated S ite S ecurity for G rids EGEE04-Pisa-25 October 2005 Expertise Dissemination: Outcomes  Training and dissemination Web Site  Pilot topical school on site security  Workshop on ISS with EGEE Site Security Officers  Participation in (educational) events  Specific dissemination actions to user communities Dissemination of Expertise MethodologiesRecommendations Training Material and Activities

12 12 François Fluckiger ISS e G I ntegrated S ite S ecurity for G rids EGEE04-Pisa-25 October 2005 Synergies with other EU projects BioInfoG. ISSeG ETICS 6DISS BELIEF BalticGrid IceAge

13 13 François Fluckiger ISS e G I ntegrated S ite S ecurity for G rids EGEE04-Pisa-25 October 2005 Synergies with other EU projects  Liaison with Grid Security structures  Involvement of User Communities  Astrophysics  Bio-Informatics  Computational Chemistry  Fusion Physics  Hearth Sciences  High-Energy Physics Formulation of Expertise Training Material and Activities MethodologiesRecommendations  EGEE Security Policy Group  via EGEE Application Activities  via Other Grid-related projects

14 14 François Fluckiger ISS e G I ntegrated S ite S ecurity for G rids EGEE04-Pisa-25 October 2005 Synergies with other EU projects  Training and dissemination Web Site  Pilot topical school on site security  Workshop on ISS with Site Security Officers  Participation in educational events  Specific actions to user communities Dissemination of Expertise MethodologiesRecommendations Training Material and Activities  Web site Cross- referencing  Partnership with other project event  Co-located with other project event  Provision of lecturers, content  via Grid-related projects

15 15 François Fluckiger ISS e G I ntegrated S ite S ecurity for G rids EGEE04-Pisa-25 October 2005 Towards Joint Actions Agreement on the principle of joint actions IceAge  Cross referencing  Share of education material  Exploitation of IceAge dissemination channels for educational material

16 16 François Fluckiger ISS e G I ntegrated S ite S ecurity for G rids EGEE04-Pisa-25 October 2005 Towards Joint Actions Agreement on the principle of joint actions BalticGrid  Cross referencing of education material  (ISSeG) presenting at BalticGrid workshops and seminars  (ISSeG) lecturing at BalticGrid summer schools / tutorials

17 17 François Fluckiger ISS e G I ntegrated S ite S ecurity for G rids EGEE04-Pisa-25 October 2005 Towards Joint Actions Agreement on the principle of joint actions BELIEF  Include the ISSeG training plan in some of BELIEF events Two workshops, two international conferences  Use the BELIEF portal to identify new partners interested in deploying the ISS User community database for trying and forge alliances with industry & research in the fields of eInfrastructures

18 18 François Fluckiger ISS e G I ntegrated S ite S ecurity for G rids EGEE04-Pisa-25 October 2005 Towards Joint Actions Agreement on the principle of joint actions 6DISS  Identify technical areas of mutual interest which overlap the wide-area networking domain of 6DISS and the site security domain of ISSeG  Organize as appropriate actions of mutual benefits such as cross-reference of educational material and cross-participation to dissemination events

19 19 François Fluckiger ISS e G I ntegrated S ite S ecurity for G rids EGEE04-Pisa-25 October 2005 Beyond ISS e G  ISSeG is a two-year project  Too short to achieve wide-scale ISS generalization  Sufficient to create the conditions for it  methods  recommendations  training all validated by the two deployments  ISS generalization … … may be the subject of a second phase

Download ppt "1 François Fluckiger ISS e G I ntegrated S ite S ecurity for G rids EGEE04-Pisa-25 October 2005 ISS e G Integrated Site Security for Grids EU-FP6 Project."

Similar presentations

Existing tools for cooperation – WG 2 1 Regional Policy Dialogue Capacity building seminars WORKING GROUP MEETINGS HIGH LEVEL SEMINAR SERIES 4 working.

Existing tools for cooperation – WG 2 1 Regional Policy Dialogue Capacity building seminars WORKING GROUP MEETINGS HIGH LEVEL SEMINAR SERIES 4 working.
Federated Digital Rights Management Mairéad Martin The University of Tennessee TERENA General Assembly Meeting Prague, CZ October 24, 2002.

Federated Digital Rights Management Mairéad Martin The University of Tennessee TERENA General Assembly Meeting Prague, CZ October 24, 2002.
An overview of the EGEE project Bob Jones EGEE Technical Director DTI International Technology Service-GlobalWatch Mission CERN – June 2004.

An overview of the EGEE project Bob Jones EGEE Technical Director DTI International Technology Service-GlobalWatch Mission CERN – June 2004.
Identification of critical success factors for implementing NLLS, through collaboration and exchange of expertise IDENTIFY 147742-LLP-2008-RO-KA1-KA1NLLS.

Identification of critical success factors for implementing NLLS, through collaboration and exchange of expertise IDENTIFY LLP-2008-RO-KA1-KA1NLLS.
Connecting People With Information DoD Net-Centric Services Strategy Frank Petroski October 31, 2006.

Connecting People With Information DoD Net-Centric Services Strategy Frank Petroski October 31, 2006.
23 June 20081 Strategy Proposal Heinz Stockinger on behalf of the Executive Board SwiNG Assembly Meeting Berne, 23 June 2008.

23 June Strategy Proposal Heinz Stockinger on behalf of the Executive Board SwiNG Assembly Meeting Berne, 23 June 2008.
Enabling, facilitating and delivering quality training in the UK and Internationally The challenge of grid training and education David Fergusson, Deputy.

Enabling, facilitating and delivering quality training in the UK and Internationally The challenge of grid training and education David Fergusson, Deputy.
EGEE-III INFSO-RI-222667 Enabling Grids for E-sciencE www.eu-egee.org EGEE-III Program of Work Erwin Laure EGEE-II / EGEE-III Transition Meeting CERN,

EGEE-III INFSO-RI Enabling Grids for E-sciencE EGEE-III Program of Work Erwin Laure EGEE-II / EGEE-III Transition Meeting CERN,
GEM Presentation April 29`th 2002 1 Global Education in Manufacturing GEM.

GEM Presentation April 29`th Global Education in Manufacturing GEM.
Education and Culture Main initiatives and events 2013 Multilingualism.

Education and Culture Main initiatives and events 2013 Multilingualism.
Near East Rural & Agricultural Knowledge and Information Network - NERAKIN Food and Agriculture Organization of the United Nations Near East and North.

Near East Rural & Agricultural Knowledge and Information Network - NERAKIN Food and Agriculture Organization of the United Nations Near East and North.
European Life Sciences Infrastructure for Biological Information www.elixir-europe.org ELIXIR www.elixir-europe.org.

European Life Sciences Infrastructure for Biological Information ELIXIR
What is OMII-Europe? Qin Li Beihang University. EU project: RIO31844-OMII-EUROPE 1 What is OMII-Europe? Open Middleware Infrastructure Institute for Europe.

What is OMII-Europe? Qin Li Beihang University. EU project: RIO31844-OMII-EUROPE 1 What is OMII-Europe? Open Middleware Infrastructure Institute for Europe.
VIRTUAL RIJEKA E-MuniS Project. VIRTUAL RIJEKA: STRATEGIC DEVELOPMENT PLAN E-MuniS Project: Electronic Municipal Information Services VIRTUAL RIJEKA:

VIRTUAL RIJEKA E-MuniS Project. VIRTUAL RIJEKA: STRATEGIC DEVELOPMENT PLAN E-MuniS Project: Electronic Municipal Information Services VIRTUAL RIJEKA:
Www.geant.org AARC Overview Licia Florio, David Groep 21 Jan 2015 presented by David Groep, Nikhef.

AARC Overview Licia Florio, David Groep 21 Jan 2015 presented by David Groep, Nikhef.
FP6-2004 I-6 Contract 026715 25 October, 2005EGEE04 Pisa Baltic Grid SIXTH FRAMEWORK PROGRAMME RESEARCH INFRASTRUCTURES COMMUNICATION NETWORK DEVELOPMENT.

FP I-6 Contract October, 2005EGEE04 Pisa Baltic Grid SIXTH FRAMEWORK PROGRAMME RESEARCH INFRASTRUCTURES COMMUNICATION NETWORK DEVELOPMENT.
INFSO-RI-508833 Enabling Grids for E-sciencE www.eu-egee.org NA3 Training and induction Malcolm Atkinson & David Fergusson NA3 Leader & Activity Manager,

INFSO-RI Enabling Grids for E-sciencE NA3 Training and induction Malcolm Atkinson & David Fergusson NA3 Leader & Activity Manager,
Enabling Grids for E-sciencE www.eu-egee.org EGEE III Security Training and Dissemination Mingchao Ma, STFC – RAL, UK OSCT Barcelona 2009.

Enabling Grids for E-sciencE EGEE III Security Training and Dissemination Mingchao Ma, STFC – RAL, UK OSCT Barcelona 2009.
EGEE-II INFSO-RI-031688 Enabling Grids for E-sciencE www.eu-egee.org EGEE and gLite are registered trademarks Related Projects Dieter Kranzlmüller Deputy.

EGEE-II INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks Related Projects Dieter Kranzlmüller Deputy.
FP6−2004−Infrastructures−6-SSA-026409 www.eu-eela.org E-infrastructure shared between Europe and Latin America Grid projects in Europe Giuseppe Andronico.

FP6−2004−Infrastructures−6-SSA E-infrastructure shared between Europe and Latin America Grid projects in Europe Giuseppe Andronico.

Similar presentations

Ads by Google