• Home

  • Documents

  • Training and Dissemination Enabling Grids for E-sciencE Jinny Chien, ASGC 1 Training and...
17
Training and Dissemination Enabling Grids for E-sciencE www.eu-egee.org Jinny Chien, ASGC 1 Training and Dissemination Jinny Chien Academia Sinica Grid Computing OSCT EGEE 08 Conference

Training and Dissemination Enabling Grids for E-sciencE Jinny Chien, ASGC 1 Training and Dissemination Jinny Chien Academia Sinica Grid

Embed Size (px)

Citation preview

Page 1: Training and Dissemination Enabling Grids for E-sciencE Jinny Chien, ASGC 1 Training and Dissemination Jinny Chien Academia Sinica Grid

Training and Dissemination

Enabling Grids for E-sciencE

www.eu-egee.org

Jinny Chien, ASGC1

Training and Dissemination

Jinny ChienAcademia Sinica Grid ComputingOSCT

EGEE 08 Conference

Page 2: Training and Dissemination Enabling Grids for E-sciencE Jinny Chien, ASGC 1 Training and Dissemination Jinny Chien Academia Sinica Grid

Jinny Chien, ASGC

Enabling Grids for E-sciencE

Training and Dissemination2

Current Status

• Many Security materials • How to find clear information easily

OSCT ISSeG Wiki LCG security IGTF GSVG

• How to train site managers or new comers (ex: good tutorial)• Do we have good materials are covered with grid security

Page 3: Training and Dissemination Enabling Grids for E-sciencE Jinny Chien, ASGC 1 Training and Dissemination Jinny Chien Academia Sinica Grid

Jinny Chien, ASGC

Enabling Grids for E-sciencE

Training and Dissemination3

How should we do

• - Identify what security training/dissemination material is available to the sites on the various EGEE websites and Wikis

- Identify the most important security risks for the EGEE infrastructure

- Review the material as appropriate, identify unnecessary information and possible missing parts

- Propose a strategy for the material dissemination, in order to deliver relevant security information to the sites

• - Put information on OSCT public website

Page 4: Training and Dissemination Enabling Grids for E-sciencE Jinny Chien, ASGC 1 Training and Dissemination Jinny Chien Academia Sinica Grid

Jinny Chien, ASGC

Enabling Grids for E-sciencE

Training and Dissemination4

Conception

Page 5: Training and Dissemination Enabling Grids for E-sciencE Jinny Chien, ASGC 1 Training and Dissemination Jinny Chien Academia Sinica Grid

Jinny Chien, ASGC

Enabling Grids for E-sciencE

Training and Dissemination5

Diagram

Page 6: Training and Dissemination Enabling Grids for E-sciencE Jinny Chien, ASGC 1 Training and Dissemination Jinny Chien Academia Sinica Grid

Jinny Chien, ASGC

Enabling Grids for E-sciencE

Training and Dissemination6

Trust

Site manager

Trust Authentication

Authorization

PKI

Certificate

Account management

VO management

Access right management

Page 7: Training and Dissemination Enabling Grids for E-sciencE Jinny Chien, ASGC 1 Training and Dissemination Jinny Chien Academia Sinica Grid

Jinny Chien, ASGC

Enabling Grids for E-sciencE

Training and Dissemination7

Policies

Site manager

Policy

Security Policy

Risk Assessment Policy

Incident Response Policy

Page 8: Training and Dissemination Enabling Grids for E-sciencE Jinny Chien, ASGC 1 Training and Dissemination Jinny Chien Academia Sinica Grid

Jinny Chien, ASGC

Enabling Grids for E-sciencE

Training and Dissemination8

Network Access Control

Site manager

Network

•Configuration

•Firewall

•TCP Wrapper

•M/W port

•Tool•Nmap, Nessus, •Netstat, iptables

•Maintenance•Disabling and uninstalling unneeded services•Control network bandwidth•Secure e-mail communication•Spam filter tool•Network Traffic

•Attack methods•XSS•SQL Injection

Page 9: Training and Dissemination Enabling Grids for E-sciencE Jinny Chien, ASGC 1 Training and Dissemination Jinny Chien Academia Sinica Grid

Jinny Chien, ASGC

Enabling Grids for E-sciencE

Training and Dissemination9

Monitoring

Site managerMonitoring

•Software Maintenance•Security patch Maintenance•Service status •Backup•CRLs/CAs•SW alteration

•Physical Maintenance•HD failure•Network failure•Electrical failure•Air conditioning failure

•Tool

• Nagios

• SAM

• Pakiti

Page 10: Training and Dissemination Enabling Grids for E-sciencE Jinny Chien, ASGC 1 Training and Dissemination Jinny Chien Academia Sinica Grid

Jinny Chien, ASGC

Enabling Grids for E-sciencE

Training and Dissemination10

Operating System

Site manager

OS

•Password Management

•Good Password

•SSH key

•Patch Management

•Update

•Log Management

•central log server

•Disk Management

•The permission of File / Directory

•Anti-Virus

•IDS( Intrusion Detection System)

Page 11: Training and Dissemination Enabling Grids for E-sciencE Jinny Chien, ASGC 1 Training and Dissemination Jinny Chien Academia Sinica Grid

Jinny Chien, ASGC

Enabling Grids for E-sciencE

Training and Dissemination11

Middleware

Site manager

M / W

•Maintenance•security patch•Host certificate•System backup•Update CRL and CA rpm

•Configuration•Port / Service •Host certificate•User mapping (UID/GID)

Page 12: Training and Dissemination Enabling Grids for E-sciencE Jinny Chien, ASGC 1 Training and Dissemination Jinny Chien Academia Sinica Grid

Jinny Chien, ASGC

Enabling Grids for E-sciencE

Training and Dissemination12

Forensics

Site manager

Forensics

•Execution•Check the system and related log file

Anti-Virus

Toolkits

•Collect problematic Log files•Inform related members refer to the incident response procedure

•Avoid more disaster

•Prevention•How to prevent the same problem to happen again

Page 13: Training and Dissemination Enabling Grids for E-sciencE Jinny Chien, ASGC 1 Training and Dissemination Jinny Chien Academia Sinica Grid

Jinny Chien, ASGC

Enabling Grids for E-sciencE

Training and Dissemination13

Procedure

Site manager

Procedure

•Incident Response Procedure

•How to block users

•How to identify VO users

•Risk assessment Procedure

•Access control Procedure

•Strong password Modification

•How to control user jobs

•System documents

Page 14: Training and Dissemination Enabling Grids for E-sciencE Jinny Chien, ASGC 1 Training and Dissemination Jinny Chien Academia Sinica Grid

Jinny Chien, ASGC

Enabling Grids for E-sciencE

Training and Dissemination14

Audit

Site manager

Audit

•Provide the Checklist - Users - System Admin - Developers - Managers

Page 15: Training and Dissemination Enabling Grids for E-sciencE Jinny Chien, ASGC 1 Training and Dissemination Jinny Chien Academia Sinica Grid

Jinny Chien, ASGC

Enabling Grids for E-sciencE

Training and Dissemination15

EGEE III Training and Dissemination

Site manager

Forensics

Procedure

AuditTrust

M / W

OS

Monitor

Network

Policy

Useful

Page 16: Training and Dissemination Enabling Grids for E-sciencE Jinny Chien, ASGC 1 Training and Dissemination Jinny Chien Academia Sinica Grid

Jinny Chien, ASGC

Enabling Grids for E-sciencE

Training and Dissemination16

Future Plan

• OSCT website (~ Nov)– Provide clear information to users– Find information easily– Use OSCT web pages effectively and friendly

• Available information– What is missing– What should be added – What should be removed

• Training and dissemination– Workshop, tutorial– How to improve the security course

• Contributions: (Thanks)APROC (4 PM), ITALY (4 PM), SWE (4 PM), DECH (3 PM), FRANCE (2 PM)

Page 17: Training and Dissemination Enabling Grids for E-sciencE Jinny Chien, ASGC 1 Training and Dissemination Jinny Chien Academia Sinica Grid

Jinny Chien, ASGC

Enabling Grids for E-sciencE

Training and Dissemination17

Question ?


Chien - Cielo

Chien - Cielo

Documents
Potomac Charm - Jinny Beyer Studio · Jinny created two simple quilts using the fabric squares available during the Quest. Each quilt is a charm quilt: no fab-rics are duplicated

Potomac Charm - Jinny Beyer Studio · Jinny created two simple quilts using the fabric squares available during the Quest. Each quilt is a charm quilt: no fab-rics are duplicated

Documents
Dr. Norman and Jinny Loomis Interview By Bob Mogray

Dr. Norman and Jinny Loomis Interview By Bob Mogray

Documents
Vermifuger son chien au naturel - Chien Vie et Santé

Vermifuger son chien au naturel - Chien Vie et Santé

Documents
Penseesquiontdu Chien

Penseesquiontdu Chien

Health & Medicine
LE CHIEN MON AMI - seevad.fr · Ce concept LE CHIEN MON AMI, ... Comment le chien nous perçoit, nous analyse, ... éduquer les humains dès l’école . chien

LE CHIEN MON AMI - seevad.fr · Ce concept LE CHIEN MON AMI, ... Comment le chien nous perçoit, nous analyse, ... éduquer les humains dès l’école . chien

Documents
Petit Chien et Grand Chien

Petit Chien et Grand Chien

Travel
The Insider - Enghouse Networks...Jinny Mobile Advertising application for ring back tones, the sneak peek at the Jinny IP SM Gateway interface, the Jinny 4G Messaging Centre, which

The Insider - Enghouse Networks...Jinny Mobile Advertising application for ring back tones, the sneak peek at the Jinny IP SM Gateway interface, the Jinny 4G Messaging Centre, which

Documents
Author Genre Quilting in the Garden You're Invited- Quilts & Homes … · 2019-04-17 · Patchwork Portfolio Beyer, Jinny Sampler Quilter's Album of Blocks & Borders, The Beyer, Jinny

Author Genre Quilting in the Garden You're Invited- Quilts & Homes … · 2019-04-17 · Patchwork Portfolio Beyer, Jinny Sampler Quilter's Album of Blocks & Borders, The Beyer, Jinny

Documents
Vie de chien n∞224.qxp Vie de chien

Vie de chien n∞224.qxp Vie de chien

Documents
Chien Amour

Chien Amour

Documents
Northern Lights - Jinny Beyer · Northern Lights is an original Jinny Beyer design, featuring fabrics from her Northern Lights fabric collection. The dra-matic design glows with the

Northern Lights - Jinny Beyer · Northern Lights is an original Jinny Beyer design, featuring fabrics from her Northern Lights fabric collection. The dra-matic design glows with the

Documents
33 Chien Luoc Cua Chien Tranh 21062012

33 Chien Luoc Cua Chien Tranh 21062012

Documents
Chien luoc_san_pham_va_dich_vudiendanmarketing.vn

Chien luoc_san_pham_va_dich_vudiendanmarketing.vn

Documents
Hydrocarbons Assignment Jinny

Hydrocarbons Assignment Jinny

Documents
Letter to Author/Illustrator 3 rd grade Jinny Miller & Melissa Gayton

Letter to Author/Illustrator 3 rd grade Jinny Miller & Melissa Gayton

Documents
MGX Team Sadashivudu Basani Jinny Sebastian Carlton Vaz Elizabeth Xu

MGX Team Sadashivudu Basani Jinny Sebastian Carlton Vaz Elizabeth Xu

Documents
Jinny Las Olas

Jinny Las Olas

Documents
Jinny S. Ditzler - Cel mai bun an.doc

Jinny S. Ditzler - Cel mai bun an.doc

Documents
Chien Edited

Chien Edited

Documents
Le chien guide ou le chien d’assistance

Le chien guide ou le chien d’assistance

Documents
Fais une description de ton animal. Voici mon chien Mon chien est petit. Mon chien est grand

Fais une description de ton animal. Voici mon chien Mon chien est petit. Mon chien est grand

Documents
Jinny s. Ditzler - Cel Mai Bun An

Jinny s. Ditzler - Cel Mai Bun An

Documents
Jinny Jiang's Portfolio

Jinny Jiang's Portfolio

Documents
Adverbs of Frequency CEP 811 Jinny Kim Han Let’s begin!

Adverbs of Frequency CEP 811 Jinny Kim Han Let’s begin!

Documents
Jinny Claim

Jinny Claim

Documents
1 ASGCCA Self-Audit Report APGridPMA Jinny Chien March 08 2008

1 ASGCCA Self-Audit Report APGridPMA Jinny Chien March 08 2008

Documents
Chien Kuang

Chien Kuang

Documents
Chien Wang

Chien Wang

Documents
Tu Chien Dich Viet Bac Den Chien Dich Bien Gioi

Tu Chien Dich Viet Bac Den Chien Dich Bien Gioi

Documents