As a major, global and identity federation service, security is at the very foundation of the trust model supporting eduGAIN and its participants.

Operational Security and Incident Response

eduGAIN has a small, dedicated CSIRT to manage its security operations and incident response at the inter-federation level providing a unique point of coordination.  It is supported and defined by its RFC2350 statement and its Terms of Reference.

Constituency

The eduGAIN-CSIRT closely collaborates with the Identity Federations’ security operators and the National Research and Education Network CSIRTs and CERTs in eduGAIN to ensures that all security incidents are investigated as fully as possible.

As such, Sirtfi, the Security Incident Response Trust Framework for Federated Identity is a crucial building block in order to assist the participants through their federations in all operational security activities.

External collaborations

The eduGAIN-CSIRT values collaborations and international cooperation as key assets, and is both highly connected and largely overlapping with e-infrastructures, for instance represented in WISE, and international scientific user communities.

The eduGAIN-CSIRT seeks to engage with external entities on incident response, in order to protect affected organisations, identities and individuals.  Joining forces and information sharing are essential in order to tackle global threats.

Team Members

  • Tobias Dussa <dussa@dfn-cert.de>
  • Sven Gabriel <sveng@nikhef.nl>
  • Daniel Kouril <kouril@ics.muni.cz>
  • Sascha Kriebitzsch <kriebitzsch@dfn-cert.de>
  • Davide Vaghetti <davide.vaghetti@garr.it>
  • Martin Waleczek <waleczek@dfn-cert.de>

Contacts

For computer security emergencies or in case a security incident is suspected:
Contact the eduGAIN-CSIRT: abuse@edugain.org
<eduGAIN CSIRT PGP key file>
PGP key fingerprint: 0497 8576 D7A6 3151 5401 DB98 697A 900B 7C8E 095E

eduGAIN participants: please follow the Security Incident Response Procedure for Federation Participants

References

All relevant documents supporting the eduGAIN-CSIRT can be found in the security references section.