Diamond Light Source is implementing MFA for SSH and No Machine. This is a story of our trials with PAM, RADIUS, Microsoft and Google Authenticator. I'll present the solutions considered as well as the pros and cons of each, particularly with regard to the difficulties faced regarding MFA for facility users.
In the current research and education environment, the threat from cybersecurity attack is acute having grown in recent years. We must collaborate as a community to defend and protect ourselves. This requires both the use of detailed, timely and accurate threat intelligence alongside fine-grained monitoring.
We report on the development of a security operations centre for the Rutherford...
Many years ago, the Joint WLCG/OSG/EGEE security policy group successfully developed a suite of Security Policies for use by WLCG, EGI and others. These in turn formed the basis of the AARC Policy Development Kit, published in 2019. Many infrastructures have since used the template policies in the AARC PDK but found they had to modify them to meet their needs. The Policy Templates are now...
