Alert.png The wiki is deprecated and due to be decommissioned by the end of September 2022.
The content is being migrated to other supports, new updates will be ignored and lost.
If needed you can get in touch with EGI SDIS team using operations @ egi.eu.

Difference between revisions of "SEC05 Security Resource Centre Certification Procedure"

From EGIWiki
Jump to navigation Jump to search
Line 36: Line 36:
| RC<br>  
| RC<br>  
|  
|  
Follow  instructions  on [https://wiki.egi.eu/wiki/EGI_CSIRT:Pakiti_client Pakiti client wiki]. Install and run pakiti client on random WN. In case of re-certification on node subject to suspension.
Follow  instructions  on [https://wiki.egi.eu/wiki/EGI_CSIRT:Pakiti_client Pakiti client wiki]: install and run pakiti client on random WN. In case of re-certification on node subject to suspension.
|  
|  
|- valign="top"
|- valign="top"
Line 42: Line 42:
| RC
| RC
|  
|  
check results for the RC in question https://pakiti.egi.eu/. Notify EGI-CSIRT when the problem is solved.
Check results for the RC in question https://pakiti.egi.eu/. Notify EGI-CSIRT when the problem is solved.
| <br>
| <br>
|- valign="top"
|- valign="top"

Revision as of 09:42, 26 October 2016

Main EGI.eu operations services Support Documentation Tools Activities Performance Technology Catch-all Services Resource Allocation Security


Documentation menu: Home Manuals Procedures Training Other Contact For: VO managers Administrators


Title Security Resource Centre Certification Procedure
Document link https://wiki.egi.eu/wiki/SEC05_Security_Resource_Centre_Certification_Procedure
Last modified 1.2 - 28 March 2016
Policy Group Acronym CSIRT
Policy Group Name EGI CSIRT
Contact Group EGI CSIRT
Document Status Approved
Approved Date November 27 2014
Procedure Statement Security Resource Centre Certification Procedure applies to Resource Centres under certification process and re-certification of suspended Resource Centres (sites). This step of the security certification procedure checks that the resources under certification do not contain known CRITICAL software vulnerabilities.
Owner Owner of procedure


Introduction


This page provides steps to certify Resource Centre from security point of view, as part of PROC09 Resource Centre Registration and Certification procedure. The monitoring is performed using the tools used by the EGI CSIRT and enabled upon request of Resource Centre.

This step of the security certification procedure checks that the resources under certification do not contain known CRITICAL software vulnerabilities.

Steps

HTC (Grid) Resource Center


Responsible Action Prerequisites, if any
1
RC

Follow instructions on Pakiti client wiki: install and run pakiti client on random WN. In case of re-certification on node subject to suspension.

2 RC

Check results for the RC in question https://pakiti.egi.eu/. Notify EGI-CSIRT when the problem is solved.


3 EGI CSIRT EGI CSIRT verifies the results and communicate back a positive assessment, PROC09 can continue

Cloud Resource Center


Responsible Action Prerequisites, if any
1
RC

Fill the EGI security survey  (using the editable pdf file) and and send it to the own Operations Centre

  • This survey contains the basic security related checks which must be carried out with Cloud Resource providers offering “Infrastructure-as-a-Service” clouds based on the execution of virtual machine images.
2 OC

Check and send by email filled in survey to EGI CSIRT


3
EGI CSIRT

the EGI CSIRT will communicate back an assessment result.

In case of issues EGI CSIRT contact RC to better understand situation.


Revision history

Version Authors Date Comments
Alessandro Paolini 2016-03-22 modified the steps 1 and 2 for CLOUD RCs: the survey is sent to the NGI which forward it to EGI CSIRT