| Size: 1401 Comment:  | Size: 1408 Comment:  | 
| Deletions are marked like this. | Additions are marked like this. | 
| Line 3: | Line 3: | 
| * '''CampusGrid Workshop.''' Paul Jeffreys and Peter Clarke June 16/17 2005 NeSC. http://www.nesc.ac.uk/talks/556/CampusGrid1617June2005b.pdf | * '''!CampusGrid Workshop.''' Paul Jeffreys and Peter Clarke June 16/17 2005 NeSC. http://www.nesc.ac.uk/talks/556/CampusGrid1617June2005b.pdf | 
| Line 13: | Line 13: | 
| * Auditing is vital to support your security policy–Use system’s auditing facilities wherever possible–Intrusion Detection Systems can have too many false positives * Have as few access points as possible•Centrally manage workstations; keep all software on workstations up-to-date | * Auditing is vital to support your security policy–Use system's auditing facilities wherever possible–Intrusion Detection Systems can have too many false positives * Have as few access points as possible * Centrally manage workstations * Keep all software on workstations up-to-date | 
Project notes about All-party Parliamentary Internet Group. Minutes of proceedings at a Parliamentary hearing held in Room 19 Committee Corridor on Thursday 29 April 2004 Before: Mr Richard Allan (Chairman), Earl of Erroll, Earl of Northesk, Brian White, Derek Wyatt. http://www.apig.org.uk/Oral%20Evidence%20Transcript.doc
- CampusGrid Workshop. Paul Jeffreys and Peter Clarke June 16/17 2005 NeSC. http://www.nesc.ac.uk/talks/556/CampusGrid1617June2005b.pdf 
- Deploying Grids on Campus Networks (Campus Network World: - Service oriented28 minutes to be hacked on average
- Local security issues in CampusGrid envs - Very helpful Security Checklist - Automate deployment, monitoring and security –only way
- Use your existing authentication infrastructure–Avoid digital certificates and GSI;
- else make it transparent to users(this was contentious –can you have authentication for CampusGrid and external?) 
 
 
- Very helpful Security Checklist 
- Authorisation: –must scale well–Decide between central control and delegated control
- Auditing is vital to support your security policy–Use system's auditing facilities wherever possible–Intrusion Detection Systems can have too many false positives
- Have as few access points as possible
- Centrally manage workstations
- Keep all software on workstations up-to-date
- Control local environment as much as you can