The Security Operational Baseline provides a reference set of minimum expectations and requirements of the behaviour of those offering services to users, communities, and other paricipants participants in a distributed proxy ecosystem leveraging a federated AAI, and of those providing access to services or assembling service components. It aims to establish a sufficient level of trust between all Participants in the Infrastructure participants to enable reliable and secure Infrastructure operation.
This document is being re-imported into part of the PDK ( version 2) , based on both the PDK and the UK-IRIS and EOSCF variants.
Older drafts:
- ShareMD version: https://sharemd.nikhef.nl/6PnNbLYOQH2bDHTiqi6mwA#6PnNbLYOQH2bDHTiqi6mwA (published version at https://sharemd.nikhef.nl/s/2XxQ59RtG)
The FAQ and Guidance document is at https://wiki.geant.org/display/AARC/Security+Operational+Baseline+FAQ+and+Recommendations and is updated periodically.