Difference between revisions of "EGI CSIRT:IRTF"
Jump to navigation
Jump to search
(IRTF-Section of https://twiki.cern.ch/twiki/bin/view/LCG/EGI_CSIRT) |
|||
Line 19: | Line 19: | ||
** Advise the project mitigation solutions | ** Advise the project mitigation solutions | ||
=== Coordinator === | |||
Additional requirement to the Coordinator: Ideally, the coordinator should have track record of coordinating computer security incident response across multiple Grids/countries. | Additional requirement to the Coordinator: Ideally, the coordinator should have track record of coordinating computer security incident response across multiple Grids/countries. | ||
Revision as of 12:53, 6 May 2010
| Mission | Members | Contacts
| Incident handling | Alerts | Monitoring | Security challenges | Procedures | Dissemination
Objective
Handle day to day operational security issues and coordinate Computer-Security-Incident-Response across the EGI infrastructure.
Tasks
- Replace OSCT-DC
- Swift response to any reported computer security incident affecting EGI infrastruture
- Security Incident Management
- Existing communication channel (mail list/security wiki) migration
- New communication channel (if needed) setup
- Incident response tools development, evaluation and adaptation
- Incident handling procedures update/maintainence
- Adapt the current EGEE computer security incident response procedures to EGI framework.
- Establish addtional operational and/or escalation procedures when required
- a procedure to suspend a site from the EGI infrastructure
- a procedure and agreed criteria to ban (blacklist) a user, a group of users and/or a VO
- vulnerability assessment
- Regularly monitor vulnerability databases
- Assess impact of vulnerabilities on the EGI infrastructure
- Advise the project mitigation solutions
Coordinator
Additional requirement to the Coordinator: Ideally, the coordinator should have track record of coordinating computer security incident response across multiple Grids/countries.
Persons
Coordinator
- TBC
Volunteers
class="sortable"Name | NGI | Home Organization | Effort Avalible (PM) |
---|---|---|---|
Leif Nixon | - | NDGF | |
Ake Sandgren | - | NDGF HPC2N | |
Daniel Kalici (for Malware Analysis) | - | NDGF | |
Daniel Kouril | - | CESNET | |
Michal Prochazka | - | CESNET | |
Dorine Fouossong | France NGI | ||
David O'Callaghan | Irland NGI | TCD | |
Mingchao Ma | UK NGI | STFC - RAL | |
Christos Triantafyllidis | Greek NGI | ||
Ursula Epting | German NGI | KIT-GridKa | |
Tobias Dussa | German NGI | KIT-GridKa | |
Michael Hausding | Switzerland NGI | SWITCH | |
Carlos Fuentes | Spanish NGI | RedIris | |
Sven Gabriel | Dutch NGI | NIKHEF | |
Nuno Dias | Portugal NGI | LIP |
Vulnerability assessment (part of incident response task force)
class="sortable"Name | NGI | Home Organization | Effort Available (PM) |
---|---|---|---|
Leif Nixon | - | NDGF | |
Michael Hausding | Switzerland NGI | SWITCH | |
Xander Jansen | Dutch NGI | SURFcert | |
Detlev Matthies | German NGI | DFN | |
Dorine Fouossong | France NGI |