Alessandro Paolini
Andrzej Zemla
Matthew Viljoen
Dave Kelsey
Baptiste Grenier
Catalin Condurache
David Cohen
Daiv Crooks
Emir Imamagic
Jan Astalos
Linda Cornwall
Ignacio Lamata Martinez
Renato Santana
Gianfranco Sciacca
Oxana Smirnova


=======================
Introduction
Matthew Viljoen (EGI.eu)
=======================

- NGI Liaison Meetings status

- Next phase for EGI Core Services delivery (after EGI-ACE)

- Migration from X509 personal certificates to token based authz

=====================
Security report
David Crooks (STFC)
=====================
(slides in the agenda)

- report about recent incidents


- Vulnerabilities monitoring
using Shodan

- Service security challenge postponed to later this year

Status about the training of new people in the team?
- to check with the members of the CSIRT team


==================================
The EGI Software Vulnerability Group Issue handling procedure - EGI ACE revision
https://documents.egi.eu/document/3867
Linda Cornwall (STFC)
========================
(slides in the agenda)

Why revision: more variety of services, greater amount of services and software,
more level of expertise is now required

Scope to include EGI and EGI-ACE services
at certain point maybe also the EOSC Core

Change in the Deployment Expert Group
plan to involve more people experts in a particular software deployed in the infrastructure

Description of the activities of Deployment Expert Group

New location where the advisories are published

Requesting the OMB approval of the new version of the procedure
- maybe to provide in details the changes so people can have look at them before giving the approval


Q: were the changes done for EOSC-hub reverted?
- something was proposed even though the complexity of EOSC-hub wasn't completely clear
now it is clear what is the EOSC and the scope is better defined



==========================
Cloud badging updates
Catalin Condurache (EGI.eu)
=====================================
(slides in the agenda)

this report will be given to the FedCloud TF meetings rather then to the OMB



================================================
Discussion about the notifications from ARGO
Speaker: Alessandro Paolini (EGI.eu)
=====================================

It was proposed to add additional flags in GOCDB to decide for which statuses receive a notification, but this would add more complexity to the system

It was agreed to circulate a message to inform the sites about including the WARNING status in the notification system
If this generates to many notifications, the change can be always reverted.


============
AoB
============

next meeting in June