ormand
Uploaded by
5 SLIDES
199 VUES
50LIKES

Update on JRA1 Security Work and Joint Collaboration with MWSG and OSCT

DESCRIPTION

This update provides a brief overview of the current security initiatives within JRA1 following the latest EGEE-OSG coordination meeting. It includes progress on authorization work and the coordination between the Middleware Security Group (MSWG) and the Operations Security Coordination Team (OSCT). Key points include the development of a common security-related command-line toolbox, updates on user banning tools, traceability needs, and the ongoing work plan to implement pattern matching rules and modifications to the authorization services.

1 / 5

Télécharger la présentation

Update on JRA1 Security Work and Joint Collaboration with MWSG and OSCT

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Update JRA1 Security Work C.Witzig / J.White

  2. Content • Update on • Joint work between MWSG and OSCT • Security coordination work after latest EGEE-OSG coordination meeting • Update on authorization work • Purpose: • Give a short update on current security work within JRA1 • For purely informational purpose To change: View -> Header and Footer

  3. Joint Work MSWG - OSCT • Follow up on CSRF • As pointed out by OSCT • 2nd iteration now - to be reported in ≈ 1 month • Documentation on “how to ban users” • Template from OSCT • To be filled by JRA1 • Tools for traceability needed (from OSCT) To change: View -> Header and Footer

  4. EGEE-OSG Coordination Meeting • Discussed need for common security related command line toolbox • In line with recommendation #3 from authZ study (see https://edms.cern.ch/document/887174/1) • Discussed command line tools for • Checking credentials • Find out how credentials are being mapped (proxy w/ VOMS AC --> uid, gid) • Banning tool • etc • Internal draft exists, to be distributed by the end of this week to • JRA1 developers for feedback on feasibility and work involved • Site administrators for feedback on usefulness and requirements To change: View -> Header and Footer

  5. Follow-up on authZ Study • Need to finalize work plan for implementing • Pattern matching rules • LCAS/LCMAPS modification (“most significant match”) • And corresponding change in WMS • Design on new authZ service on-going • With current focus on PAP-PDP • With EES somewhat on the back burner • Draft available in early July To change: View -> Header and Footer

More Related
SlideServe
Audio
Live Player
Audio Wave
Play slide audio to activate visualizer
Slide 1

Sea Ice

Slide Player

AI NARRATOR Slide 1 of 12

Sea Ice

0:00 0:15