The Security Operational Baseline provides a reference set of minimum expectations and requirements of the behaviour of those offering services to users, communities, and other participants in a distributed ecosystem leveraging a federated AAI, and of those providing access to services or assembling service components. It aims to establish a sufficient level of trust between all participants to enable reliable and secure operation.
This document is part of the PDK version 2, based on both the PDK and the UK-IRIS and EOSCF variants.
Older drafts:
- ShareMD version: https://sharemd.nikhef.nl/6PnNbLYOQH2bDHTiqi6mwA (published version at https://sharemd.nikhef.nl/s/2XxQ59RtG)
The FAQ and Guidance document is at https://wiki.geant.org/display/AARC/Security+Operational+Baseline+FAQ+and+Recommendations and is updated periodically.