In both higher Research and Education (R&E) as well as in research-/ e-infrastructures (in short: infrastructures), federated access and single sign-on by way of national federations (operated in most cases by NRENs) are used as a means to provide users access to a variety of services. Whereas in national federations institutional accounts (e.g. provided by a university) are typically used to...
OpenID Connect is widely used in modern Authentication and Authorization Infrastructures including the infrastructures of multiple EU projects like the European Open Science Cloud and also EGI. Also in the non-academic world everyone moves to OpenID Connect (e.g. Google, Apple, IBM).
Despite its wide adoption OpenID Connect is very complex. OpenID Connect is an identity...
Earlier this year, our communities have been the victims of attacks that managed to compromise systems in different sites and infrastructures. Without going into details, this presentation aims at explaining the mechanisms that were used to spread and at drawing the parallel with clouds and cloud federations: Does moving into the cloud change anything?
Every system administrator is affected by a security incident sooner or later. The timing of such events is invariably right on the spot: Your service is hit exactly at the moment when it is needed most urgently for your project. In this short presentation we will show examples of when this happened within our environment, give some guidelines on how to reduce the likelihood as well as the...
