EGI2024

Session

Trust & Security

3 Oct 2024, 09:00

Barocco (Hilton Garden Inn)

Conveners

Trust & Security

• Valeria Ardizzone (EGI.eu)

Description

Trust is a critical pillar of information security, and mastering its concepts is essential for protecting against security threats and ensuring the confidentiality, integrity, and availability of information and resources.
By comprehensively understanding the components of trust, including authentication, authorization, trust models, trust boundaries, and trustworthiness is possible to effectively mitigate security risks and safeguard valuable information assets.

174. Session Introduction

Valeria Ardizzone (EGI.eu)

03/10/2024, 09:00

11. Notify me: Updates about mytoken

Gabriel Zachmann (Karlsruhe Institute of Technology), Dr Marcus Hardt (KIT-G)

03/10/2024, 09:05

Long Talk

We present updates about the mytoken service, giving a short overview of the mytoken service, its idea and concept, and then focusing on the newest developments and future work.

These include the new notification feature, which allows user to obtain email notifications for various things, e.g. to be notified before a mytoken expires to easily create a new one. Also mytoken expirations can...

113. Perun Authentication and Authorization Infrastructure

Peter Balcirak (CESNET)

03/10/2024, 09:30

Long Talk

To conduct research and foster innovation, collaboration and resource sharing have become the primary focus for research communities and national e-infrastructures. It can reduce duplication of work, leading to reduced costs, while opening possibilities for achieving common goals by combining data, skills, and efforts. However, offering such functionalities brings complex challenges to...

9. Establishing and Verifying Trust for Data Products and Processing

Dr Andreas Matheus (Secure Dimensions GmbH)

03/10/2024, 09:55

Long Talk

Establishing and Verifying Trust for Data Products and Processing

Motivation and Challenge

In today's infrastructures, the collection, exchange and continues processing of geospatial data takes place at pre-defined network endpoints of a spatial data infrastructure. Each participating operator hosts a predefined static functionality at a network endpoint. Some network endpoints of an...

30. Recent developments in Account Linking - ALISE

Dr Marcus Hardt (KIT-G)

03/10/2024, 10:20

Short Talk

Account linking may be usefule at different places in the AAI
Architecture. Over the past years, we have seen account linking at the
Community-AAI, where multiple Home-Organisation logins may be used to log
in to a single account at the Community. This typically allows linking
attributes of services such as ORCID or Google. More recently this type
of account linking is being integrated...

175. Real-World Authorisation: Case Studies from LETHE and EUreka3D

Ignacio Lamata Martinez

03/10/2024, 11:00

An overview of EGI Check-in use cases, such as EUreka3D and LETHE

35. Exploring token authorization enforcements on Grid middleware with Open Policy Agent

Mrs Federica Agostini (INFN)

03/10/2024, 11:25

Short Talk

Open Policy Agent (OPA) is an open-source, general-purpose authorization engine that provides a high-level declarative language, called Rego, which allows the expression of policies as code, using a combination of data manipulation and logical operators. OPA takes policy decisions by evaluating the query input against policies and data. The OPA RESTful APIs allow the service to be integrated...

24. Updates on SSH with OpenId Connect

Diana Gudu (KIT)

03/10/2024, 11:35

Short Talk

The Secure Shell (SSH) Protocol is widely recognized as the de-facto standard for accessing remote servers on the command line, across a number of user cases, such as: remote system administration, git operations, system backups via rsync, and high-performance computing (HPC) access.

However, as federated infrastructures become more prevalent, there is a growing demand for SSH to operate...

176. EGI Check-In: Evolving the Infrastructure for European Research

Nicolas Liampotis (GRNET)

03/10/2024, 11:45

178. Q&A

03/10/2024, 12:10