 |
 |
Dear All, I am forwarding this for general awareness. If you would like to get involved please let me know. David Crooks will be looking at these areas within our GridPP core-ops security work (and getting involved in the WG), but additional input is always welcome. Kind regards, Jeremy Begin forwarded message: From: Michel Jouvin <[log in to unmask]<mailto:[log in to unmask]>> Subject: Call for volunteers for a traceability gap analysis WG Date: 12 October 2014 00:24:23 BST To: GDB Cloud discussion list <[log in to unmask]<mailto:[log in to unmask]>> Hi, As mentioned at the September GDB (and presented in more details at the pre-GDB on clouds, https://twiki.cern.ch/twiki/bin/view/LCG/20140910PreGDB#Security), full traceability of user activity in a cloud infrastructure remains a critical piece for incident handling and response, as it is in the grid infrastructure. There is a feeling that nothing prevents this level of traceability in clouds but that the partial shift of responsibility from sites to VOs in clouds will require even more collaboration between them for incident handling and that there is a need that every party is collecting the necessary information. Grid experience (cf. glexec saga) demonstrated that this is much easier and with a lower cost to engineer traceability from the beginning than to try to add it on a production platform. Our security experts propose to create a short-term task force to do a traceability gap analysis in the cloud context and to come with some proposals and recommendations compatible with the diminishing manpower available at sites and in VOs (no room for a big project!). This message is a call for volunteers from sites and VOs. Both must be represented and for sites, European sites as OSG sites. Please, could you send me an email by end of October if you are ready to participate and forward this message to any expert that you know and may be a good candidate for this task force. Cheers, Michel