EGI-CSIRT Face2Face meeting in Prague

Name: EGI-CSIRT Face2Face meeting in Prague
Start: 2016-04-04T13:00:00+02:00
End: 2016-04-06T15:25:00+02:00
Location: Prague

4–6 Apr 2016

Prague

Europe/Amsterdam timezone

Contribution List

7. Intro / Agenda

Dr Sven Gabriel (NIKHEF)

04/04/2016, 13:00

Procedures

6. EGI Security Threat Risk Assessment

Linda Cornwall (STFC)

04/04/2016, 13:30

Procedures

Security requirements and risk assessment for new services, technology, and deployments The new developments and evolving usage scenarios in EGI-Engage will involve trust models different from the core infrastructure used in EGI-InSPIRE. The task will ensure that the security requirements and the trust model are defined. Any security problems will be addressed and risk assessment associated...

10. IPv6 Security

David Kelsey (STFC)

04/04/2016, 15:30

Procedures

8. Security Policy update and issues

David Kelsey (STFC)

04/04/2016, 16:00

Procedures

Develop a new trust framework and develop new policies In collaboration with other infrastructures, we will define new additions to a new policy framework to handle the new deployment and usage scenarios as they evolve in EGI-Engage.

9. Security procedures updates

Vincent Brillault (CERN)

04/04/2016, 16:45

Procedures

The evolution of operational security procedures, including forensics Refine and extend the current security procedures and tools for incident response and forensics, for example: to take into account new kinds of players (e.g. cloud resource providers), or to extend the emergency suspension mechanism to cover new kinds of services. The security procedures related to other EGI operational...

0. RT-IR Status

Michal Stava (CESNET)

05/04/2016, 09:00

CESNET guests

1. Masstickets

Mr Tobias Dussa (KIT-CERT)

05/04/2016, 09:30

CESNET guests

How to go about this? Possible goal: be able to grab a list of all EGI-Critical vuln hosts out of Pakiti, drop it into a script, and presto, the script creates a ticket per site. Reasonable? There would be some prereqs: * As reference, there must be a unified URL format, ideally something like https://wiki.egi.eu/wiki/EGI_CSIRT:Alerts/CVE-XXXX-YYYY. (I'd actually like to have the ability...

2. RT-IR in IRTF, useage

Vincent Brillault (CERN)

05/04/2016, 10:00

CESNET guests

RT-IR usage in IRTF, Discussion with Maintainer, what do we want to do with rt-ir, hww can this be done with rt-ir, what is needed / who does it

3. User/VM Management in FedCloud

Boris Parak (CESNET)

05/04/2016, 11:00

CESNET guests

4. Integration to IRTF

Vincent Brillault (CERN)

05/04/2016, 11:30

CESNET guests

5. VM Management/SSC

Dr Sven Gabriel (NIKHEF)

05/04/2016, 11:50

CESNET guests

Needed bits fur SSC-FC VM Management: Start/Stop/Contextualisation How to get the SSC Payload into the VMs What would be needed to control it from SSC-Monitor

Back to the event