10 th EUGrid. PMA Meeting graciously hosted by ULAKBIM Istanbul, TR
Welcome at the Bogazici University, Faculty of Engineering Welcome from the Organisers David Groep – davidg@eugridpma. org 10 th EUGrid. PMA ‘Istanbul’ meeting – May/June 2007
A historic moment · 20 th grid CA coordination meeting in Europe From: Kelsey, DP (David) Sent: Monday, November 20, 2000 8: 10 PM To: Francois Etienne (E-mail); 'Kors Bos' Subject: CA/Security contacts (Data. Grid) Dear Francois, Kors, I have had no nominations for security contacts for the meeting on "Certificates for Testbed 0" for CNRS or NIKHEF yet. Please let me know who I should invite. Regards, Dave ------------------------Dr David Kelsey Computing & Resource Management Particle Physics Department Rutherford Appleton Laboratory Chilton, DIDCOT, OX 11 0 QX, UK e-mail: XXXXX@XXX Tel: [+44](0)1235 XXXXXX (direct) Fax: [+44](0)1235 XXXXXX ------------------------ David Groep – davidg@eugridpma. org 10 th EUGrid. PMA ‘Istanbul’ meeting – May/June 2007
Still the same issues, but we have learnt much! 0. Aims of meeting. Agreement of agenda. Notes/minutes? 1. Roundtable status report. 2. Authentication vs Authorisation I see this to be a major architectural decision. … What should the certificate verify? Just the identity … or also something about membership of particular experiements? 3. How many CA's should be used in the Data. Grid testbed? 4. Does a hierarchy add value? Should/can we sign national certificates by a single HEP-root CA? 5. What is the scope of the certificates? 6. Revoking certificates. 7. Naming. What constraints are there on the name fields? 8. What can we learn from other GRID projects or other PKI initiatives? - input to Terena PKI meeting (6 th December)? 9. Procedures for running CA's and issuing certificates. We need to convince each other that our certificates can be "trusted". 10. Other issues Period of Validity (CA's, Servers, Users) Key lengths User education Instructions for system managers 11. Who is doing authorisation if we don't? WP 2? 12. Storage of certificates? LDAP? David Groep – davidg@eugridpma. org agenda 1 st EDG CACG meeting, December 2000 10 th EUGrid. PMA ‘Istanbul’ meeting – May/June 2007
Teleconferencing capabilities · VRVS room “Plane”, access code “PMA 2007” · H 323 via the ESnet gateway (dial “ 88 IGTF”) Istanbul is at GMT+3!! · Aid remote participants – upload your presentations · http: //www. eugridpma. org/agenda/full. Agenda. php? ida=a 063 · Password: ******* David Groep – davidg@eugridpma. org 10 th EUGrid. PMA ‘Istanbul’ meeting – May/June 2007
Agenda Overview 0900 MONDAY Introduction Agenda Chair Election AEGIS ROSA TUESDAY transport WEDNESDAY transport hardware tokens robot cert progress Contentious Issues: • levels of assurance OCSP Update 1 SCPs Grid Cert Profile Signing Party/TACAR RP Requirement harmonization Update APGrid. PMA CA Update: Future directions Profiles Overview MICS Profile Update: Grid. Ireland NTUU/KPI Reserved Morocco 1400 Auditing Guidelines Change Management 19. 30 Meeting Planning NIST PKI Conference Highlights & reflections transport 1600 1730 Golden Age 1! David Groep – davidg@eugridpma. org 10 th EUGrid. PMA ‘Istanbul’ meeting – May/June 2007
Tonight · Meet at 19. 30 hrs at the Golden Age 1 hotel lobby For dinner · "Degüstasyon" at Istiklal-Taksim (close to the hotel) where there will be traditional Turkish food, drink and music! · Note that google maps is updated also indicating the restaurant at local pages. David Groep – davidg@eugridpma. org 10 th EUGrid. PMA ‘Istanbul’ meeting – May/June 2007
Round of Welcome and Introduction David Groep – davidg@eugridpma. org 10 th EUGrid. PMA ‘Istanbul’ meeting – May/June 2007
Minutes from the Last Meeting Thanks to Mike Helm, Emir Imamagic · Comments and modifications? · New volunteers for this time? · Agenda bashing … David Groep – davidg@eugridpma. org 10 th EUGrid. PMA ‘Istanbul’ meeting – May/June 2007
EUGrid. PMA members and applicants Green: EMEA countries with an Accredited Authority · 24 of 27 EU member states (all except LU, MT, RO) · + AM, CH, HR, IL, IS, NO, PK, RU, TR Other Accredited Authorities: · Do. EGrids (. us), Grid. Canada (. ca), CERN, SEE catch-all David Groep – davidg@eugridpma. org 10 th EUGrid. PMA ‘Istanbul’ meeting – May/June 2007
The story so far … Foundation of the IGTF allows migration of CAs to Regional PMA David Groep – davidg@eugridpma. org 10 th EUGrid. PMA ‘Istanbul’ meeting – May/June 2007
Membership by type · Under “Classic X. 509 secured infrastructure” authorities · accredited: 39 (recent additions: BG. ACAD) · active applicants: 5 (Serbia, Romania, Morocco, Ukraine, Macedonia) · Under “SLCS” · accredited: 1 (SWITCH-aai) · active applicants: 0 · Under MICS draft · none yet of course · Major relying parties · EGEE, DEISA, SEE-GRID, LCG, TERENA David Groep – davidg@eugridpma. org 10 th EUGrid. PMA ‘Istanbul’ meeting – May/June 2007
IGTF Global Status per December 2006 David Groep – davidg@eugridpma. org 10 th EUGrid. PMA ‘Istanbul’ meeting – May/June 2007
TAGPMA Status and Updates New Chair: Vinod Rebello, UFF, Brazil New Vice-Chair: Jim Marsteller, PSC, USA New Secretary: Marg Murray, TACC, TX, USA information from Darcy Quesnel and Alan Sill David Groep – davidg@eugridpma. org 10 th EUGrid. PMA ‘Istanbul’ meeting – May/June 2007
TAGPMA Status and Updates Currently Operating CAs • Do. EGrids • Grid. Canada • BRGrid (Brazil) Recently passed (now completing operational review) • EELA Catch-All • TACC Root and Classic (TX, USA) • REUNA (Chile) • Venezuela • Mexico information from Darcy Quesnel David Groep – davidg@eugridpma. org 10 th EUGrid. PMA ‘Istanbul’ meeting – May/June 2007
Round Table Updates David Groep – davidg@eugridpma. org 10 th EUGrid. PMA ‘Istanbul’ meeting – May/June 2007
Скачать презентацию 10 th EUGrid PMA Meeting graciously hosted by
44822f9bb6cfa36ed2bc163c8ab28789.ppt