© 2006 Open Grid Forum Security Area OGF19 Standard All Hands.

Slides:

Advertisements

Similar presentations

© 2006 Open Grid Forum Firewall Models Firewall Issues Research Group - OGF 19 Chapel Hill - Januari 30th 2007 Inder Monga, Leon Gommans.

Advertisements

© 2006 Open Grid Forum OGF20 LoA-RG Monday 11:00am Charter Suite 4 Chairs: Ning Zhang and Yoshio Tanaka.

©2010Open Grid Forum OGF28 OGSA-DMI Status Chairs: Mario Antonioletti, EPCC Stephen Crouch, Southampton Shahbaz Memon, FZJ Ravi Madduri, UoC.

Oct, 26 th, 2010 OGF 29, FVGA-WG: Firewall Virtualization for Grid Applications Firewall Virtualization for Grid Applications - Status update

June 2 nd, 2008 OGF 23, FVGA-WG-BoF: Firewall Virtualization for Grid Applications Firewall Virtualization for Grid Applications BOF

© 2006 Open Grid Forum Build, Test and Certification of Grid and distributed software Community Group Overview and Status update Marc-Elian Bégin ETICS.

OGSA-WG charter discussion Dec. 3, 2003 F2F meeting at ANL.

World Class Standards OGF20 OGF-ETSI MoU BoF and ETSI GRID STF 2007 call for expert Introduction to 11th May OGF-ETSI Grid testing workshop and ETSI TC.

Oct 15 th, 2009 OGF 27, Infrastructure Area: Status of FVGA-WG Status of Firewall Virtualization for Grid Applications - Working Group

© 2007 Open Grid Forum DMTF-OGF Work Register Current and Proposed Items OGF 22 Boston, MA 26 February 2008.

© 2006 Open Grid Forum Network Services Interface OGF29: Working Group Meeting Guy Roberts, 19 th Jun 2010.

© 2007 Open Grid Forum OGSA-RUS Specification Update, Adoption and WS-RF Profile Discussions (Molly Pitcher) Morris Riedel (Forschungszentrum Jülich –

© 2007 Open Grid Forum CAOPS-WG Christos Kanellopoulos - Yoshio Tanaka Security Area coordination & outreach OGF25, Catania March 2 nd – 3 rd, 2009.

GT 4 Security Goals & Plans Sam Meder

GGF16, Athens AuthZ Interoperability Here and Now Workshop, 16 Feb 2006.

Practical Digital Signature Issues. Paving the way and new opportunities. Juan Carlos Cruellas – DSS-X co-chair Stefan Drees - DSS-X.

UDDI v3.0 (Universal Description, Discovery and Integration)

May 2010 Slide 1 SG Communications Boot Camp Matt Gillmore 03/07/11.

Russ Housley IETF Chair 23 July 2012 Introduction to the IETF Standards Process.

IRTF - AAAARCH - RG Authentication Authorisation Accounting ARCHitecture RG chairs: C. de Laat and J. Vollbrecht RFC 2903, 2904, 2905,

TechSec WG: Related activities overview Information and discussion TechSec WG, RIPE-45 May 14, 2003 Yuri Demchenko.

Hannes Tschofenig (IETF#79, SAAG, Beijing). Acknowledgements I would like to thank to Pasi Eronen. I am re- using some of his slides in this presentation.

Authz work in GGF David Chadwick

Levels of Assurance OGF Activity Michael Helm ESnet/LBNL 27 Feb 2007.

Authorization architecture sketches draft-selander-core-access-control-02 draft-gerdes-core-dcaf-authorize-02 draft-seitz-ace-design-considerations-00.

Authorization Infrastructure, a Standards View Hal Lockhart OASIS.

OGSA SEC WG [OGSA= Open Grid Services Architecture] Co-chairs: Nataraj Nagaratnam, IBM, USA Marty Humphrey University of Virginia, USA GGF9.

S&I Framework Architecture Refinement & Management (ARM) 01/07/2013.

Certification and Accreditation CS Phase-1: Definition Atif Sultanuddin Raja Chawat Raja Chawat.

OpenSG Conformity IPRM Overview July 20, ITCA goals under the IPRM at a high level and in outline form these include: Organize the Test and Certification.

© 2005 Global Grid Forum The information contained herein is subject to change without notice Leading the pervasive adoption of grid computing for research.

NSIS IETF 56 MONDAY, March 17, 2003: Morning Session TUESDAY, March 18, 2003: Afternoon Sessions I.

EMI AAI Strategy & Plans John White / Helsinki Institute of Physics Federated Identity Systems for Scientific Collaborations Workshop , CERN,

© 2006 Open Grid Forum Security Activities at OGF24 Security Area Meeting.

© 2007 Open Grid Forum Data Grid Management Systems: Standard API - community development Arun Jagatheesan, San Diego Supercomputer Center & iRODS.org.

Andrew McNab - GGF Authz - 16 Dec 2003 GGF Authorization work Andrew McNab, University of Manchester

1 Globus Toolkit Security Rachana Ananthakrishnan Frank Siebenlist Argonne National Laboratory.

OGSA Security Roadmap Discussion GGF5 – 7/24/02. Outline l Introduction l Architecture Goal l Roadmap Goal l Proposed Specs l Challenges l Next Steps.

Hannes Tschofenig, Blaine Cook. 6/4/2016 IETF #77, SAAG 2 The Problem.

Manish Mehta, CS 590L Authentication Services in Open Grid Services by Manish Mehta April 27, 2004.

“Trust me …” Policy and Practices in PKI David L. Wasley Fall 2006 PKI Workshop.

National Computational Science National Center for Supercomputing Applications National Computational Science GSI Online Credential Retrieval Requirements.

Authentication and Authorisation for Research and Collaboration Licia Florio REFEDS Meeting The AARC Project I2 Technology Exchange.

Authorization GGF-6 Grid Authorization Concepts Proposed work item of Authorization WG Chicago, IL - Oct 15 th 2002 Leon Gommans Advanced Internet.

XCON BOF IETF 57 Vienna, Austria July 15, Administriva Conscripting a Scribe Note Well announcement (Read Section 10 of RFC 2026) Blue Sheets.

SLRRP BoF 62 nd IETF Scott Barvick Marshall Rose

Transforming Government Federal e-Authentication Initiative David Temoshok Director, Identity Policy and Management GSA Office of Governmentwide Policy.

Update on Consumer Choice, Competition and Innovation (CCI) WG Rosemary Sinclair.

EGI-InSPIRE RI EGI-InSPIRE EGI-InSPIRE RI Evolution of AAI for e- infrastructures Peter Solagna Senior Operations Manager.

AuthZ WG Conceptual Grid Authorization Framework document Presentation of Chapter 2 GGF8 Seattle June 25th 2003 Document AID 222 draft-ggf-authz-framework pdf.

Automate Blue Button Initiative Pull Workgroup Meeting December 13, 2012.

May 2010 Slide 1 SG Communications Boot Camp Matt Gillmore 11/1/2010.

Page 1 R2AD *** DAY 1 (May 23) *** 10:00 Agenda bashing, role call, note taker & time keeper. (KF; 30 min) 10:40 ACS Overview (10 minutes) 11:00 Security.

Firewall Issues Research Group First meeting yesterday, GGF 14 Mailing list: Projects page:

GGF - © Birds of a Feather - Policy Architecture Working Group.

Firewall Issues BoF 5:00 Agenda bashing, find note-taker, sign-up sheets, IPR. 5:05 Introduction - Leon Gommans UvA 5:20 SOAP Routing Issues - Frank Siebenlist.

OGSA-WG Basic Profile Session #1 Security

Levels of Assurance OGF Activity

JRA3 Introduction Åke Edlund EGEE Security Head

Sessions 1 & 3: Published Document Session Summary

Grid Scheduling Architecture – Research Group

Hiro Kishimoto, OGSA-WG co-chair GGF16 in Athens February 13, 2006

Naming service BoF #2 & report session

University of Virginia, USA GGF9, Chicago, Illinois, US

Stephen McCann, Siemens Roke Manor

IETF 57 Vienna, Austria July 15, 2003

HIMSS National Conference New Orleans Convention Center

Network Services Interface Working Group

Global Grid Forum (GGF) Orientation

Security Area OGF22 Programme.

Presentation transcript:

© 2006 Open Grid Forum Security Area OGF19 Standard All Hands

© 2006 Open Grid Forum 2 Security Area Groups OGSA-AuthZ(Monday) FI-RG(Tuesday) New initiatives OGSA-AuthN Charter BoFThursday, 14.00hrs levels of Assurance Activity BoFToday, 14.00hrs Related CAOPS-WGThursday, 09.00hrs

© 2006 Open Grid Forum 3 OGSA-AuthZ define the specifications needed to allow for interoperability and plug-ability of authorization components from multiple authorization domains in the OGSA framework. Recently re-chartered, new slate of documents defined Interaction with authorization systems – improving on the previous doc, delving deeper into the interactions between AuthZ components which protocols are to be used within the internals of the AuthZ system, if you want to plug-and-play these internals: WS-Trust, XAMLS Request/response,… at times, relevant external specs are being deprecated by OASIS, … participate via frequent phone conferences (also needs a new WG co-chair)

© 2006 Open Grid Forum 4 Firewall Issues RG The research group will document the type of issues that Grid applications experience when the need arises to control data transport policy enforcement devices. Firewall Issues Overview: published as GFD-I.083 Combined docs: Middlebox Technology Inventory andGrid Evaluation of Middlebox Tech target: by Sept 2007 vendor input welcome (also to feed back to IETF)

© 2006 Open Grid Forum 5 New: OGSA-AuthN BoF The group focus will be on the drafting the roadmap for authentication technologies, documentation of existing authentication community practices, and look at the issues surrounding AuthN delegation. OGF19 BoF Animated by Alan Sill (Texas Tech) Scope still to be defined Tomorrow afternoon first BoF

© 2006 Open Grid Forum 6 OGSA-AuthN scope and docs Symmetrical to OGSA-AuthZ Look at technical issues, not policy Some immediate actions needed for OGSA-WG! short-term use cases and AuthN profiles for these Currently proposed work refine use of reusable tokens over secure channels Roadmap New, richer use cases to drive AuthN work, such as delegation groups like OGSA-WG need the short-term output

© 2006 Open Grid Forum 7 New: Levels of Assurance BoF Targeted as an activity BoF strength of authentication required for a service degree of confidence in an authentication process Example questions to be discussed are existing LoA definitions suited to Grid environment? how to apply LoA to safeguard Grid services/resources? are some onerous registration requirements or special condition stipulations due to perceived inadequacies in the strength of authentication? are there any limitations in terms of user accessibility, scalability and interoperability? BoF this afternoon!

© 2006 Open Grid Forum 8 CAOPS: related activities Documents on best practices Experience doc on grid certificate profiles OCSP models for grid Authentication Profiles: authN policy criteria classification Audit Guidelines Subject entity name uniqueness policy International Grid Trust Federation Sessions tomorrow morning