|Main||EGI.eu operations services||Support||Documentation||Tools||Activities||Performance||Technology||Catch-all Services||Resource Allocation||Security|
|Inspire reports menu:||Home •||SA1 weekly Reports •||SA1 Task QR Reports •||NGI QR Reports •||NGI QR User support Reports|
1. Task Meetings
|Date (dd/mm/yyyy)||Url Indico Agenda||Title||Outcome|
|21/02/2013||https://www.egi.eu/indico/conferenceDisplay.py?confId=1337||EGI SVG Monthly meeting||Review activities of the previous month and plan for the coming month|
|21/02/2013||https://www.egi.eu/indico/conferenceDisplay.py?confId=1336||EGI CSIRT team Monthly meeting||Review activities of the previous month and plan for the coming month|
|22/03/2013||https://www.egi.eu/indico/conferenceDisplay.py?confId=1370||EGI SVG Monthly meeting||Review activities of the previous month and plan for the coming month|
|26/03/2013||https://www.egi.eu/indico/conferenceDisplay.py?confId=1371||EGI CSIRT team monthly meeting||Review activities of the previous month and plan for the coming month|
|18/04/2013||https://www.egi.eu/indico/conferenceDisplay.py?confId=1415||EGI SVG Monthly meeting||Review activities of the previous month and plan for the coming month|
|24-25/04/2013||https://www.egi.eu/indico/conferenceDisplay.py?confId=1432||EGI CSIRT team face to face meeting (Linkoping, Sweden)||Review all activities, discuss current issues, collaborate with PRACE and EUDAT and plan for the coming months|
|Weekly Video conference meetings (every Monday)||Minutes recorded in EGI CSIRT private wiki (not publicly accessible)||IRTF weekly meeting||Operational security issues are reviewed weekly|
2. Main Achievements
This was a very quiet quarter with no security incidents reported or handled. The IRTF tracked various new security vulnerabilities and 3 advisories were issued to all site security contacts on those classified as high risk.
For the Security Service Challenge (SSC) activity, improvements were made to RT/RTIR ticketing system and the reporting modules. The final report for the recent SSC6 run is still to be produced. Plans were made for two NGI SSC runs. An SSC of 11 sites in the UK NGI was successfully carried out. All sites performed well and detailed feedback is under preparation.
Work continued during the quarter on requiring the timely migration from unsupported software, this time for the retirement of EMI 1 middleware and services, by the end of April 2013. Much of the work is now done by the general operations staff but the CSIRT has been active in providing the appropriate monitoring tools.
The new release (an alpha release) of Pakiti will take place this next quarter. Developments will be made to security monitoring to track all SVG and CSIRT alerts and advisories as required.
A new release of the updated EGI CSIRT operational procedure for compromised certificates was produced and dicussed at the OMB. The SVG handling procedure for post EMI/IGE was also prepared and presented at the EGI Community Forum.
Security training was given at the ISGC2013 conference in Taipei in March 2013 and SA1.2 staff attended the EGI Community Forum to facilitate discussions on security issues.
3. Issues and Mitigation
|Issue Description||Mitigation Description|