Changes between Initial Version and Version 1 of CompSec-QSR-2Q2011

08/05/11 12:03:20 (11 years ago)
Adam Slagell



  • CompSec-QSR-2Q2011

    v1 v1  
     3= !CompSec Project Status Report =
     5Period: Q1 2010 (Nov 19, 2010 - Apr 1, 2011)
     7== I. Major accomplishments ==
     9=== A. Milestones achieved ===
     12We created the following documents
     14  1. Operational Security Plan v. 0.5.1
     15  2. GENI Clearinghouse Policy v. 0.1
     16  3. GENI Clearinghouse Policy v. 0.2
     17  4. GENI Clearinghouse Policy v. 0.2.1
     19=== B. Deliverables made ===
     20The milestones were specifically the documents we delivered, as listed above.
     22== II. Description of work performed during last quarter ==
     24=== A. Activities and findings ===
     25Primarily, I worked on creating a concept of a clearinghouse and a base policy for its operation. After I had that, I conferred with Aaron Falk of the GPO several times to come to a common conception of the clearinghouse, though we were never far off besides terminology. The multiple version reflect the changing terminology and structure of a clearinghouse as Aaron was getting feedback on his concept from other GENI stakeholders. The changes in terminology where also the reason for the small update to the Operational Security Plan.
     27The overall purpose of the security plan and its basic structure was presented at the GEC 11. Much of it is not actionable until funding for operating a security team is established, though one can still comment on the proposed way to create and run such a team. More immediately, people where asked to comment on the recommendations that came from a risk assessment of GENI. It became apparent that no one had looked at this document even though it was mentioned at the GEC. However, Ted Faber and the GMOC will review it in the near future. The real struggle then will be communicating the ideas in this and the other agreements to all stakeholders as it should impact the current development and operations. This is the perennial problem with creating policies for GENI, especially now since we have multiple tracks and not everyone will see my presentations.
     29There are many details that need to be filled in on the clearinghouse policy. It was hard to get feedback at the short GEC 11 session because it came before the big federation/clearinghouse discussion. Hopefully the clearinghouse conception can solidify in the near future and allow the clearinghouse agreement to be updated. This is unlikely to happen without a prototype implementation and another round of discussions at GEC 12. Therefore, it is probably best to focus on other policies and plans in the interim.
     31One problematic issue was raised at the GEC 11. Many agreements and plans assume that an activity or problem can be associated with a particular slice and hence slice owner. This is not necessarily true for openflow deployments. It remains to be seen how problematic this will be in practice and whether or not this is a rare exception.
     33I believe there should be a shift in focus on the work to be done before the next GEC. Currently, the only thing is a 1.0 version of the Operational Security Plan, but I don't think much remains to be done with that unless there is significant feedback. That seems unlikely, though. Also, it can't really be implemented until there is funding to establish a security team. The clearinghouse agreement could see minor updates as there are lots of small questions that could be answered before the GEC, but I don't see potential for filling in the major questions such as the attributes needed without stronger use cases.
     38=== B. Project participants ===
     39Adam Slagell
     41=== C. Publications (individual and organizational) ===
     42The only related publications are the documents we created as the deliverables, specifically "Legal and Law Enforcement Process and Procedure document"  and the Operational Security Plan
     44=== D. Outreach activities ===
     45There have no been substantial out reach activities beyond those already within the GENI community.
     47=== E. Collaborations ===
     49Other collaborations were just conversations and phone calls with other GENI participants (e.g., Steve Schwabb, Ted Faber, Justin Cappos and John-Paul Herron). These were mostly discussions and reviews of the documents and agreements we have been producing.
     52=== F. Other Contributions ===