Speaker
Mr
Bruno Hoeft
(Forschungszentrum Karlsruhe)
Description
While many fields relevant to Grid security are already covered by existing
working groups, their remit rarely goes beyond the scope of the Grid
infrastructure itself. However, security issues pertaining to the internal set-up
of compute centres have at least as much impact on Grid security. Thus, this
talk will present briefly the EU ISSeG project (Integrated Site Security for Grids).
To complement groups such as OSCT (Operational Security Coordination Team)
and JSPG (Joint Security Policy Group), the purpose of ISSeG is to provide a
holistic approach to security for Grid computer centres, from strategic
considerations to an implementation plan and its deployment. The generalised
methodology of Integrated Site Security (ISS) is based on the knowledge
gained during its implementation at several sites as well as through security
audits, and this will be briefly discussed. Several examples of ISS
implementation tasks at the Forschungszentrum Karlsruhe will be presented,
including segregation of the network for administration and maintenance and
the implementation of Application Gateways. Furthermore, the web-based
ISSeG training material will be introduced. This aims to offer ISS implementation
guidance to other Grid installations in order to help avoid common pitfalls.
Summary
While many fields relevant to Grid security are already covered by existing
working groups, their remit rarely goes beyond the scope of the Grid
infrastructure itself. However, security issues pertaining to the internal set-up
of compute centres have at least as much impact on Grid security. Thus, this
talk will present briefly the EU ISSeG project (Integrated Site Security for Grids)
Author
Mr
Bruno Hoeft
(Forschungszentrum Karlsruhe)
Co-author
Mrs
Ursula Epting
(Forschungszentrum Karlsruhe)
