Difference between revisions of "SEC05 Security Resource Centre Certification Procedure"
Line 3: | Line 3: | ||
{{Ops_procedures | {{Ops_procedures | ||
|Doc_title = Security | |Doc_title = Security Resource Centre Certification | ||
|Doc_link = [https://wiki.egi.eu/wiki/EGI_CSIRT:Security_Certification|https://wiki.egi.eu/wiki/EGI_CSIRT:Security_Certification] | |Doc_link = [https://wiki.egi.eu/wiki/EGI_CSIRT:Security_Certification|https://wiki.egi.eu/wiki/EGI_CSIRT:Security_Certification] | ||
|Version = 1.1 - 30 September 2014 | |Version = 1.1 - 30 September 2014 |
Revision as of 11:27, 6 November 2014
EGI-CSIRT web site | EGI-CSIRT Public wiki | EGI-CSIRT Contacts | EGI-CSIRT Activities | EGI-CSIRT Private wiki |
Title | Security Resource Centre Certification |
Document link | [https://wiki.egi.eu/wiki/EGI_CSIRT:Security_Certification |
Last modified | 1.1 - 30 September 2014 |
Policy Group Acronym | Provide the acronym of the group creating this procedure ! |
Policy Group Name | EGI CSIRT |
Contact Group | EGI CSIRT |
Document Status | Draft |
Approved Date | Provide date of the approval! |
Procedure Statement | Operational security requirements to certify new Resource Centres (sites) in the EGI infrastructure. The steps also apply to re-certification of suspended Resource Centres (sites). |
Owner | Owner of procedure |
Introduction
This step of the certification checks that the resources under certification do not contain known CRITICAL software vulnerabilities.
Overview
This page provides instructions on how to enable security monitoring of Resource Centre that is being certified for EGI as requested by the PROC09 Resource Centre Registration and Certification procedure. The monitoring is performed using the tools used by the EGI CSIRT and enabled upon request of Resource Centre.
N.B. The steps below are under development and may change until the process is discussed inside EGI CSIRT and with the EGI operations team.
Steps
HTC Resource Center
Responsible | Action | Prerequisites, if any | |
---|---|---|---|
1 |
RC |
Ask the EGI CSIRT to enable monitoring of the site. It is done by opening a ticket in "csirt" queue of EGI RT or sending a mail to csirt@rt.egi.eu. The mail must contain:
|
The Centre must be configured to accept jobs from the ops VO. |
2 | EGI CSIRT |
Activate the monitoring of the site After monitoring has been activated the EGI tools will start gathering data and will keep it for evaluation. The monitoring has to run for at least 3 consecutive calendar days. |
|
3 | EGI CSIRT | If no security alert is raised via the monitoring over 3 consecutive calendar days period, the EGI CSIRT will communicate back a positive assesment. |
Cloud Resource Center
Responsible | Action | Prerequisites, if any | |
---|---|---|---|
1 |
RC |
Fill the EGI security survey and inform EGI Operations (operations@egi.eu)
|
|
2 | EGI Operations |
Send filled in surver to EGI CSIRT |
|
3 |
EGI CSIRT |
Communicate back an assesment result. In case of issues EGI CSIRT contact RC to better understand situation. |