Alert.png The wiki is deprecated and due to be decommissioned by the end of September 2022.
The content is being migrated to other supports, new updates will be ignored and lost.
If needed you can get in touch with EGI SDIS team using operations @ egi.eu.

Difference between revisions of "EGI CSIRT:TDG-NEW"

From EGIWiki
Jump to navigation Jump to search
Line 24: Line 24:
==== Incident Handling ====
==== Incident Handling ====
[https://wiki.egi.eu/wiki/EGI_CSIRT:TDG/Incident-handl Suggestions] on the way an incident should be handled in EGI
[https://wiki.egi.eu/wiki/EGI_CSIRT:TDG/Incident-handl Suggestions] on the way an incident should be handled in EGI
==== Incident Handling Site Checklist ====
A useful [https://wiki.egi.eu/wiki/EGI_CSIRT:TDG/Site-Checklist checklist] for the main actions that should be performed by the site administrators and security teams in case of a security incident.
==== Incident Handling with RTIR ====
Incidents and follow up of all the security issues handled by the EGI-CSIRT (including the security service challenges) is done in EGI using a dedicated ticketing system called [[http://bestpractical.com/rtir/ RTIR]]. End users do not have direct access to the RTIR system, but can exchange messages using e-mail.
A comprehensive guide on the usage of RTIR can be found [http://www.ja.net/services/csirt/wp-content/uploads/rtir-incident-handling.pdf here]


==== EMI Community Service Reference Cards ====
==== EMI Community Service Reference Cards ====

Revision as of 14:49, 19 June 2012

EGI-CSIRT Public wiki EGI-CSIRT Private wiki


EGI-CSIRT Contacts | Back to TDG Main

EGI-CSIRT Training and Dissemination Group (TDG)

The EGI-CSIRT Training and Dissemination Group objective is to rise security awareness among Grid users and Grid Resource Providers and act as a a collection point for best practices, tutorials and trainings both internal and external to the EGI-InSPIRE project.

Training Events

Upcoming Events

Past Events

Events Organized by the NGIs

Security events, tutorials and workshops, are often organized inside the NGIs or international forums and contain useful information for the community. The material linked here has not officially been validated by the EGI-CSIRT and is provided as it is for users convenience.

Guides, Best Practices and Technical Advices

Incident Handling

Suggestions on the way an incident should be handled in EGI

EMI Community Service Reference Cards

The Service Reference Cards are a collection of short guides on the middleware services provided by the developers. Each card contains also a security paragraph with useful suggestions about configuration and operational procedures.

Resource Access Control

How to control the access to grid resources.

Monitoring

Monitoring Tools used in EGI-InSPIRE and recommended to the Resource Centers

Intrusion Detection and Integrity Checking

When correctly configured and tuned, Intrusion Detection Systems (IDS) and Integrity Checkers are very useful tools to promptly discover system compromise or even prevent it. In this section some of the most used IDS are listed together with links to the documentation

Best Practices (General)

A collection of small feeds and suggestions to improve the security of our sites.

SPG (Security Policy Group) Official Documents for EGI

The Security Policy Group (SPG) aims to provide policies that define the expected behaviour of sites and users to ensure a secure distributed computing infrastructure. The list of approved EGI policies can be found [here]

External Material

ISSeG training material

The project Integrated Site Security for Grids (ISSeG) produced training and dissemination site. The site contains practical site security recommendations that are based on the lessons learnt from Integrated Site Security deployment at ISSeG target sites.