Alert.png The wiki is deprecated and due to be decommissioned by the end of September 2022.
The content is being migrated to other supports, new updates will be ignored and lost.
If needed you can get in touch with EGI SDIS team using operations @

SPG:Drafts:VO Registration

From EGIWiki
Revision as of 23:05, 31 October 2016 by Dkelsey (talk | contribs)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigation Jump to search

1 VIRTUAL ORGANISATION REGISTRATION SECURITY POLICY: INTRODUCTION This policy defines a set of security-related responsibilities placed on the Grid implementing a procedure to register a VO with the Grid, and on the VO and its managers. All terms are defined in the Glossary (


To satisfy Grid security requirements a VO registration procedure must capture and maintain at least the following information:

    • 1. VO name. For new VOs this name must conform to the standard described in Appendix A. Existing VOs are not required to change their registered VO name.
    • 2. VO Acceptable Use Policy (see example provided in Appendix B).
    • 3. A signed copy of the VO Operations Policy ( document.
    • 4. Contact details and certificates for the VO Manager and at least one Alternate:
      • o Name
      • o Employing Institute
      • o VO Role (Manager or Alternate)
      • o Email address
      • o Telephone number
      • o X.509 certificate issued by a Certification Authority approved for use on the Grid
    • 5. A single email address of the security contact point to be used for reports of suspected identity compromises, misuse of resources or other security events related to the VO. Messages to this address should be handled confidentially and promptly.
    • 6. The name of the Site, Infrastructure or other body responsible for running the VO Membership service, together with the URL of one or more VO Membership Servers.

If a VO wishes to leave the Grid or the Grid decides to remove the VO, the registration information must be kept by the Grid for a minimum period consistent with the Traceability and Logging Policy ( Personal registration information must not be retained for longer than one year. Additional operational requirements may be documented in the Grid-specific document describing the implementation of the VO Registration Procedure.


The VO Acceptable Use Policy (AUP) is a statement which, by clearly describing the goals of the VO, defines the expected and acceptable usage of the Grid by the members of the VO. By requiring that all members of the VO who participate in the Grid agree to act within the constraints of the VO AUP the VO Manager defines a community of responsible users with a common goal. This definition enables Site Managers to decide whether to allow VO members to use their resources.