Middleware Security Group Meeting

27 Mar 2008, 09:00 → 28 Mar 2008, 17:30 Europe/Zurich

CNAF, Bologna

Christoph Witzig (SWITCH)

Thursday 27 March

09:00 → 13:00 Session 1: Feedback from Our Customers: Tier1, Operational Security

09:00 Introduction, Agenda

Speaker: Christoph Witzig (Eidgenossische Technische Hochschule Zurich/ETH (ETH))

09:10 Experiences from Running a Tier1 Center

D.Salomoni reports on his views and experiences of running a Tier1 center using gLite 20 in presentation, 20 min discussion

Speaker: Davide Salomoni (INFN-CNAF)

Slides infn_tier1_middleware_security_080327.pdf

09:50 OSCT and MWSG

Input from OSCT to MWSG: 1. logging and tracing 2. requirements from OSCT to MWSG 3. use-cases based on incidents

Speaker: Mr Romain Wartel (CERN)

Slides 20080325Wartel.pdf

10:35 break

11:00 Operational Security and Middleware Developement: the OSG view

11:30 Roundtable Discussion: How to Close the Link between Operational Security and Middleware?

12:00 Lunch

13:00 → 16:45 Session 2: Authorization

13:00 Recommendations authorization study and new authorization service in EGEE-III

Speaker: Christoph Witzig (Eidgenossische Technische Hochschule Zurich/ETH (ETH))

Paper https://edms.cern.ch/document/887174/1

Slides

• 080327_authz_study_chw.pdf
• 080327_authz_study_chw.ppt
• 080327_MWSG_authz_srv_chw.pdf
• 080327_MWSG_authz_srv_chw.ppt

13:30 EGEE View on Shares

Speaker: Christoph Witzig (Eidgenossische Technische Hochschule Zurich/ETH (ETH))

Slides 080327_MWSG_shares_chw.pdf 080327_MWSG_shares_chw.ppt

13:45 OSG View on Shares and Privileges

Speaker: Mine Altunay (FNAL)

14:00 Authorization Interoperability

Interoperability: status and plans: Gabriele Status of Profile Document: Oscar OpenSAML2 Library and Extensions: Chad Use of OpenSAML2 in Globus: Frank We try a new format in this session: each presenter will send a short summary to the MWSG mailing list ahead of time. You must read this mail ahead of the meeting.The audience can then ask questions to the summary and we embark on an interactive discussion between the presenters and the audience.

Speakers: Chad Loren Lajoie (Unknown), Frank Siebenlist (Argonne National Laboratory), Gabriele Garzoglio (FNAL), Oscar Koeroo (Unknown)

Slides

• garzoglio_authz_interop.ppt.pdf
• garzoglio_authz_interop.ppt.ppt
• koeroo_authz_interop.pdf
• koeroo_authz_interop.ppt

15:00 Discussion authorization

15:30 break

16:00 gLExec Accounting Solutions

Speaker: Gabriele Garzoglio (FNAL)

Slides MWSG_gLExec_Monitoring_Mar_08.pdf MWSG_gLExec_Monitoring_Mar_08.ppt

16:15 Dynamic Connectivity Service

Speaker: John White White (Helsinki Institute of Physics HIP)

Slides white_mwsg0803_dcs.pdf

Friday 28 March

09:00 → 13:50 Session 3: Globus Security, Policies

09:00 JSPG: Update on Policies for Logging and Tracing and Pilot Jobs

Speaker: Dr David Kelsey (RAL)

Slides kelsey28mar08-jspg.pdf kelsey28mar08-jspg.ppt

09:40 Authorization Activities at EuGridPMA

Speaker: Dr David Kelsey (RAL)

Slides kelsey28mar08-authz.pdf kelsey28mar08-authz.ppt

10:20 break

10:50 Cross Site Request Forgery (CSRF)

20 min presentation, 10 min discussion

Speaker: Dr Andrew McNab (UNIVERSITY OF MANCHESTER)

Slides mcnab-csrf-mar08.odp mcnab-csrf-mar08.pdf

11:30 Castor2 Plans

Speaker: Akos Frohner (CERN)

Slides EGEE-MWSG-Castor2_Security_Plans-2008-03-28.odp EGEE-MWSG-Castor2_Security_Plans-2008-03-28.pdf

12:00 Lunch

13:30 → 17:30 Session 4: CE, DM, VO and Identity Management

slides 080327-Pseudodemo.pdf

13:30 VOMS Status

update on httpg/https and support for SAML

Speaker: Dr Vincenzo Ciaschini (INFN CNAF)

Slides MSWG-Bologna.pdf MSWG-Bologna.ppt

13:50 Identity Registration

Speaker: Gabriele Garzoglio (FNAL)

Slides MWSG_VOMRS_and_VOMS_Mar_08.pdf MWSG_VOMRS_and_VOMS_Mar_08.ppt

14:10 Pseudonymity Service - Live Demostration

Slides mikkonen_pseudodemo.pdf

14:40 Closure