Pending Actions (deadline is the next meeting)

Below is a list of actions on the ROC Security Contacts from the last meeting, which are expected to be completed before the next meeting.

• All ROCs:
  • Monitor the SAM security tests and contact the sites/users or VOs to address possible issues.
  • OSCT-DC handover now done both through an email report and IM meeting 30 min before the operations meeting on Mondays afternoon (on the OSCT conference room)

• CERN:
  • [Background activity] Coordinate SAM security tests development (Romain)
  • [Background activity] Recommend, design and implement more SAM security tests (Romain)
  • [In progress] Provide two views for the RSS items: by priority or by topic (Louis)
  • [Background activity] Maintain Pakiti (Romain)
  • [In progress] Add more items to the feed (Louis)
  • Prepare a draft self-auditing questionnaire to help the sites checking their compliance with best practice and policy documents. Each question should be directly map to one (or more) items from the RSS feed (Louis)
  • Produce packages for the tool enabling Grid host to know what remote hosts are part of our Grid
  • Ask the LCG Security Contacts for input to the RSS feed
  • [In progress] Provide early versions of SSC3 "Stop that job and block that ID" (using real IR channels) (Pal)
  • Prepare a framework for experts/developers to provide security recommendations per node type on common grid services (Remi)

• RUSSIA:
  • [Background activity] Maintain the OSCT websites

• Asia Pacific (could not attend the meeting)

• FRANCE:
  • [In progress] Host and improve the EGEE Incidents reporting channels, in particular by aiming at reducing the amount of SPAM

• UKI:
  • Add more items to the RSS feed (with a specific emphasis on Grid security)
  • Recommend, design and implement more SAM security tests
  • Contact the dissemination group (NA3) and ask support for the security training/best practice
  • Prepare a framework for experts/developers to provide security recommendations per node type on common grid services (joint action with CERN)

• DECH:
  • Follow-up on the findings from the Web applications campaign

• ITALY:
  • Test the new version of SSC3 against one or two sites
  • Recommend, design and implement more SAM security tests

• CE:
  • [In progress] Recommend, design and implement more SAM security tests, with a specific emphasis on patching monitoring
  • [In progress] Investigate ways to improve the traceability, based on the LB and syslog

• NE:
  • [Background activity] Review any candidate item for the RSS feed and provide feedback to the author
  • Recommend, design and implement more SAM/Nagios security tests

• SEE:
  • [Background activity] Follow-up monthly with sites providing no or incorrect CSIRTs details

• SWE:
  • [Background activity] Review any candidate item for the RSS feed and provide feedback to the author
  • [In progress] Investigate (and possibly implement) new features in RTIR
  • [Background activity] Provide and maintain the OSCT IM channel
  • Review and complete the current set of incident scenarios, propose new cases, and possible ways to resolve them. Highlight possible changes needed in the EGEE Incident Response Procedure

- * Romain Wartel