Difference between revisions of "EGI CSIRT:SDG"
Jump to navigation
Jump to search
(→Tasks) |
|||
Line 5: | Line 5: | ||
== Tasks == | == Tasks == | ||
* Design and set-up realistic | * Design and set-up realistic simulations of computer security incident scenarios. | ||
** Address various grid middleware components (ex: VO Job submission framework (SSC4)) | ** Address various grid middleware components (ex: VO Job submission framework (SSC4)) | ||
** Assess the capabilities/suitability of fabric management tools for operational security. | ** Assess the capabilities/suitability of fabric management tools for operational security. | ||
** Assess security related software ( | ** Assess security related software (manageability) ex: glexec, central banning. | ||
** New tools for [[IRTF]] could first be tested here. | ** New tools for [[IRTF]] could first be tested here. | ||
* Run/evaluate/disseminate the security drills on the project level. | * Run/evaluate/disseminate the security drills on the project level. | ||
* Collect the sites feedback, ex. which tools are needed to improve the response. | * Collect the sites feedback, ex. which tools are needed to improve the response. | ||
* Provide a | * Provide a framework so that NGIs can run a particular security drill at some or all of their sites. | ||
* Set up a "Sites-Readiness" web page were the results of the security drills are collected. Access restricted to [[EGI-CSIRT]], [[IRTF]], EGI/NGI Management. | * Set up a "Sites-Readiness" web page were the results of the security drills are collected. Access restricted to [[EGI-CSIRT]], [[IRTF]], EGI/NGI Management. | ||
=== Role of the coordinator === | === Role of the coordinator === |
Revision as of 10:08, 3 June 2010
| Mission | Members | Contacts
| Incident handling | Alerts | Monitoring | Security challenges | Procedures | Dissemination
Objective
Provide an overview of the various CSIRTs readiness' to react to an computer security incident and challenge the inter CSIRT communication channels.
Tasks
- Design and set-up realistic simulations of computer security incident scenarios.
- Address various grid middleware components (ex: VO Job submission framework (SSC4))
- Assess the capabilities/suitability of fabric management tools for operational security.
- Assess security related software (manageability) ex: glexec, central banning.
- New tools for IRTF could first be tested here.
- Run/evaluate/disseminate the security drills on the project level.
- Collect the sites feedback, ex. which tools are needed to improve the response.
- Provide a framework so that NGIs can run a particular security drill at some or all of their sites.
- Set up a "Sites-Readiness" web page were the results of the security drills are collected. Access restricted to EGI-CSIRT, IRTF, EGI/NGI Management.
Role of the coordinator
Coordinate the project wide runs with the various involved (VO) CSIRTs. Coordinate with the NGI Security Officers local runs in order to have a optimal coverage of the challenged sites and by this getting a map of the sites readiness to respond to an computer security incident.
Persons
Coordinator
- Sven Gabriel, The Netherlands NGI
Volunteers
class="sortable"Name | NGI | Home Organization | Effort Available (PM) |
---|---|---|---|
Detlev Matthies | German NGI | DFN | |
Riccardo Brunetti | Italy NGI | INFN | |
Guiseppe Misurelli | Italy NGI | INFN | |
Sven Gabriel | Dutch NGI | NIKHEF | |
Christos Triantafyllidis | Greek NGI | ||
Edgars Znots | Latvia NGI | ||
Bartlomiej Balcerek | Poland NGI | ||
Emir Imamagic | MD NGI |