BEGIN:VCALENDAR
VERSION:2.0
PRODID:Linklings LLC
BEGIN:VTIMEZONE
TZID:America/New_York
X-LIC-LOCATION:America/New_York
BEGIN:DAYLIGHT
TZOFFSETFROM:-0500
TZOFFSETTO:-0400
TZNAME:EDT
DTSTART:19700308T020000
RRULE:FREQ=YEARLY;BYMONTH=3;BYDAY=2SU
END:DAYLIGHT
BEGIN:STANDARD
TZOFFSETFROM:-0400
TZOFFSETTO:-0500
TZNAME:EST
DTSTART:19701101T020000
RRULE:FREQ=YEARLY;BYMONTH=11;BYDAY=1SU
END:STANDARD
END:VTIMEZONE
BEGIN:VEVENT
DTSTAMP:20210402T160153Z
LOCATION:Track 6
DTSTART;TZID=America/New_York:20201117T100000
DTEND;TZID=America/New_York:20201117T103000
UID:submissions.supercomputing.org_SC20_sess290_sotp111@linklings.com
SUMMARY:Extending an Open-Source Federated Identity Management System for 
 Enhanced HPC Security
DESCRIPTION:State of the Practice Talk\n\nExtending an Open-Source Federat
 ed Identity Management System for Enhanced HPC Security\n\nBuchmüller, Raf
 feiner, Simon, Obermaier, Weisbrod...\n\nStrengthening the security infras
 tructure around HPC systems has become an urgent and important task, drive
 n especially by the impact of a recent large-scale attack on the world-wid
 e HPC community by a yet unknown party. Multiple European HPC systems had 
 to be shut down for several weeks in mid-May of 2020 after backdoors were 
 found on the systems. In the aftermath of the attack, two core security is
 sues were identified: the absence of strong authentication, and a wide-spr
 ead practice of insecure handling of SSH key pairs. \n\nWe present our app
 roach for extending an existing, open source, federated identity managemen
 t system with user-friendly two-factor authentication (2FA) using Time-Bas
 ed One-Time Password (TOTP) and centralized, secure SSH key management. A 
 special focus will be put on how we integrated scientific workflows and au
 tomation with the new security measures by combining 2FA, SSH key manageme
 nt and security policies in an elegant, secure and user-friendly way.\n\nT
 ag: Best Practices, System Management\n\nRegistration Category: Tech Progr
 am Reg Pass
END:VEVENT
END:VCALENDAR