EGI CSIRT Face to Face meeting in Prague, CZ

15 Dec 2014, 13:00 → 17 Dec 2014, 14:00 Europe/Prague

nr CESNET (Prague)

For logistics and video information see the EGI CSIRT private wiki. Timings and even the order of topics may change.

Monday, 15 December

13:00 → 19:00 Session 1

13:00 Welcome, agenda agreement, note takers

13:10 EGI Federated Clouds and Security

Setting the scene

Speaker: Boris Parak (CESNET)

13:45 EGI Clouds discussion

15:00 Coffee/Tea

15:30 Back to EGI Federated Clouds

Planning for January meeting

Tuesday, 16 December

09:00 → 12:30 Session 2

09:00 Review agenda

09:05 Plans for ISGC 2015 training workshop

09:30 Security Service Challenges

NGI/Site communication challenges. Argus/emergency suspension challenge. Federated Cloud challenge.

10:30 Coffee/Tea

11:00 Admin issues

Action list and where to store them. EGI CSIRT Terms of Reference. How to count incidents and vulnerabilities handled. Can we measure our response time? Which video conferencing technology do we use in 2015? Support for other projects

12:30 → 14:00 Lunch

14:00 → 18:50 Session 3

14:00 Evolving security for the Long Tail of Science

User registration. AAI. Traceability. Risks. LoA.

14:45 Security Monitoring

Joint use of Pakiti - EGI CSIRT and WLCG middleware readiness. perfSONAR configuration

15:30 Coffee/Tea

16:00 Reports from sub-tasks

Please report on activities in last 3 months and plans for next year. You have 15 minutes each. IRTF (Leif) Monitoring (Daniel) SSC (Sven) SVG (Linda) Central user suspension (Sven)

Wednesday, 17 December

09:30 → 12:30 Session 4

09:30 Review agenda

09:35 Current ongoing vulnerabilities

10:00 Collaboration with other infrastructures

10:30 Coffee/Tea

11:00 CSIRT, incidents and the Press

And article about unauthorised use

11:30 Security Policy changes

Including: Sharing of incident information Changes to AUP Clouds LToS Requirements for isolation (pilot jobs and VMs)

12:00 Review decisions and actions

12:15 AOB and dates of next meetings