1 / 7

OSG Security Activities and Interfaces: Enhancing Grid Security Collaboration

Dive into the realm of grid security activities and interfaces within the Open Science Grid (OSG) environment. Explore the partnerships, incident response procedures, recent challenges, and security duties to enhance collaboration and fortify security measures.

hallkenneth
Download Presentation

OSG Security Activities and Interfaces: Enhancing Grid Security Collaboration

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Open Science Grid Security Activities Mine Altunay, FNALOSG Security Officer For the OSG Security Team:Doug Olson, Deputy Security Officer, LBNL, Jim Basney NCSA, Ron Cudzewicz FNAL, Grid Deployment Board July 9, 2008

  2. OSG Security: Organization and Interfaces OSG VO and Site Security Contacts Partner Grids Incident Response Intl Grid Trust Federation M. Altunay Wartel (EGEE-OSCT), Marsteller (TG), NDGF, … OSG Security Team Basney EUGridPMA Olson TAGPMA J.Basney Joint Security Policy Group Altunay co-chair with Witzig VDT Security & OSG Operations & OSG Core Assets Altunay: VDT Security Officer Dave Kelsey WLCG Security Coordinator Middle ware Security Group WLCG Altunay & Witzig Altunay, OSG Security, GDB July, 2008

  3. Interfaces between OSG and WLCG • Some questions: • Only through JSPG and MWSG ??? • Should there be a separate direct arrow between OSG Security and WLCG • What about VDT Security Officer • Another direct arrow from VDT to WLCG? • Any additions to the previous picture, any mistakes? Altunay, OSG Security, GDB July, 2008

  4. Interfaces between OSG and JSPG • New JSPG Mandate • JSPG reports to WLCG • Dave Kelsey -- also WLCG Security Coordinator • No WLCG Security Officer • OSG only gives feedback for the policies – no mandatory inclusion of JSPG policies • OSG ED is part of WLCG MB and relays OSG concerns at MB Altunay, OSG Security, GDB July, 2008

  5. Recent WLCG Security Challenge • USCMS received pretty poor scores • OSG is actively working on it • Held a meeting on 6/27 with USCMS • Discovered policy problems • Unawareness of WLCG incident response procedure • Policy enactment issues: lack of CMS security contacts at FNAL • Going back to tie between OSG and WLCG • Should OSG Security be involved with next challenges? • Are we missing a link here? Altunay, OSG Security, GDB July, 2008

  6. A Recent Incident at Atlas • We had a security incident at AGLT2 (Atlas) • Have not completed the post-mortem and no operational disruption • Take-home messages: What we learned • Good test for Atlas security officers: • John Hover USAtlas Security Officer • Atlas Security Officer: Alessandro de Salvo (OSG did not have his contact before) • Very important for VOs to identify Security Officers. • We worked with CMS (Marie-Christine Sawley) • Other VOs ? Altunay, OSG Security, GDB July, 2008

  7. VO Policies & Security Duties • Urged and educated VOs for their security policies and work at OSG Users meeting • A VO must have • Security Officers: intl and local levels • Operations and Management contacts • local contacts (in USA) are registered with OSG • A clear user registration workflow – presented a sample policy template to OSG VOs • A clear AUP – presented a template to OSG VOs • 5 VOs are preparing their policies: CMS, USAtlas, Edu, OSG VO, Engage • More VOs to come • Essential for Incident Response Altunay, OSG Security, GDB July, 2008

More Related