SourceForge : View Wiki Page: ReqNF6

This is a static archive of the previous Open Grid Forum GridForge content management system saved from host forge.ogf.org file /sf/wiki/do/viewPage/projects.pgi-wg/wiki/ReqNF6 at Fri, 04 Nov 2022 17:46:46 GMT SourceForge : View Wiki Page: ReqNF6

User

Password

Logins Disabled

Search Wiki Pages Project: pgi-wg Wiki > ReqNF6 > View Wiki Page

wiki2251: ReqNF6

Req. Nb	ID	Description	Source	Areas	Dependencies	Status	Date
NF6	162	Software components (Services and Clients) MUST implement the Security Policies defined by the JSPG (Joint Security Policy Group), in order to be resilient to attacks	Etienne Urbah	Resilience	NF3, NF4	Open	2010-04-28

Etienne Urbah proposed this requirement on 2010-03-26

Etienne Urbah's position on 2010-04-01

Grid resources are very valuable for criminal organizations, and are constantly under attack
In order to mitigate this risk, JSPG (Joint Security Policy Group) has defined Security Policies approved by WLCG, in particular :
Grid Policy on the Handling of User-Level Job Accounting Data
Traceability and Logging Policy
These Security Policies are easily readable and summarize well known best practices
So I vote FOR this requirement

Morris, Balazs and Etienne on 2010-04-27

dropped, because too specific

Etienne Urbah's position on 2010-04-28

JSPG is NOT specific to 1 grid infrastructure, but defines Security Policies which are really :
- enforced inside EGEE, NorduGrid, OSG
- appreciated and used inside other grid infrastructures (EELA, India, ...)
Therefore, re-propose this requirement with same title
Change the requirement status from 'Rejected (Too specific)' to 'Re-proposed'

Amsterdam meeting on 2010-04-28

Spreadsheet ID = 162
Open (clear, but NO agreement found yet)

Hide Details

	Versions		Associations		Attachments		Back Links

Version	Version Comment	Created By
Version 9		Etienne URBAH - 05/04/2010
Version 8		Etienne URBAH - 05/04/2010
Version 7		Etienne URBAH - 04/29/2010
Version 6		Etienne URBAH - 04/28/2010
Version 5		Etienne URBAH - 04/28/2010
Version 4	!Etienne Urbah's position on 2010-04-28 * This requirement was first proposed on 2010-03-26 * JSPG is NOT specific to 1 grid infrastructure, but defines Security Policies which are really :\\ - enforced inside EGEE, ~NorduGrid, OSG\\ - appreciated and used inside other grid infrastructures (EELA, India, ...) * Therefore, re-propose this requirement with same title * Change the requirement status from 'Rejected (Too specific)' to 'Re-proposed'	Etienne URBAH - 04/28/2010
Version 3	!Etienne Urbah's position on 2010-04-28 * This requirement was first proposed on 2010-03-26 * JSPG is NOT specific to 1 grid infrastructure, but defines Security Policies which are really :\\ - enforced inside EGEE, NorduGrid, OSG\\ - appreciated and used inside other grid infrastructures (EELA, India, ...) * Therefore, re-propose this requirement with same title * Change the requirement status from 'Rejected (Bad prerequisite on Architecture)' to 'Re-proposed'	Etienne URBAH - 04/28/2010
Version 2		Morris Riedel - 04/27/2010
Version 1		Etienne URBAH - 04/02/2010

The Open Grid Forum

Contact Webmaster | Report a problem | GridForge Help

SSL Certificates

This is a static archive of the previous Open Grid Forum GridForge content management system saved from host forge.ogf.org file /sf/wiki/do/viewPage/projects.pgi-wg/wiki/ReqNF6 at Fri, 04 Nov 2022 17:46:53 GMT