Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Table of Contents

#Use this template to capture proposal for a new Incubator Activity - delete this line after using the template#


Participants

Panel
titleProposers



Name Organisation
Alan LewisGÉANT Association


...

Activity overview

#Please describe the high-level goal of the incubator Activity, provide an overview of the anticipated work and needed resources and skills. Please also describe how commitment from various partners is warranted. - delete this line after using the template#
Panel
titleDescription

The GN4-3 WP5 T2 (Incubator - Preparatory Phase) investigated the applicability of a low-cost open-source HSM appliance developed by Diamond Key Security (https://www.dkey.org/) and based on Cryptech (https://cryptech.is/) modules to a set of use cases consisting of GÉANT and other community T&I services.  It concluded that the capability of the appliance was suited to support a range of  GÉANT use cases encompassing, principally, CA key storage and certificate signing together with metadata and code signing., although the current capabilities of the appliance was insufficient for some services that needed higher performance , such eduGAIN MDQ . The Diamond Key enterprise has ceased operating, however the GN4-3 project has already acquired two of the Diamond Key appliances and these have been installed in a datacentre at SURFnet. The objective of this activity is to investigate the demand for an HSM testbed service using these appliances to enable interested projects and services who wish to investigate the use of an HSM to  improve the security and integrity of their offerings to do so. Assuming there is such demand, this activity will define the goals and scope of such a service, and how the infrastructure should be configured to support it, with the intention of transferring  the on-going management and maintenance to a suitable entity within the GN4-3 project.


Panel
titleActivity goals
  • To setup a technical trial of the appliances with in order to verify information from the Preparatory phase and validate its suitability;
  • To define the scope of the testbed service that could be offered given the verified capabilities of the appliance and likely organisational support available;
  • To engage with the community to identify the level of interest and estimate the likely demand for such a service;
  • To develop the necessary materials for the operators and users of the service;
  • To identify an entity within the GN4-3 project willing and capable to support the operation of the testbed on a longer term basis.

#Please describe the goals of Activity, including what needs to be delivered, participants, the community(ies) that require a solution. Describe when the Activity is done and how to measure the success of it, in a SMART way. - delete this line after using the template#

<Enter here>

Activity Details

Panel
titleTechnical details
  • Verification
#Please describe
  • Verify that the
technical details for the Activity. - delete this line after using the template#<Enter here>
  • documented technical capabilities of the appliance are as understood from the documentation that was reviewed in the Preparatory phase by testing its performance and support for the required cryptographic algorithms.. Although not quoted in the specification it will also be important to understand the overall reliability of the appliance. It will be important to verify the connectivity of the appliance and its usability with standard PKCS #11 operations.
  • Operational Validation
    Determine how suitable the appliances are for deployment as a testbed by exercising them with some relevant test services in order to understand the 'real-time' performance and how many transactions can be supported concurrently. It is assumed this will have a limiting factor defined by the context switching overhead,
    Investigate the overall security of the appliance in order to determine the necessary hosting requirements that will be needed to keep test users data secure. In particular we should check that the tamper -detection mechanisms of the HSM operate and there is adequate protection of the management interface to prevent unauthorized access. Check that the outputting of plain text data is prevented and no plain text data appears on the network connection. 
  • Community Need
    Contact those services who expressed an interest during the Preparatory phase to see if they are still interested in using the testbed service (given the changed circumstances).  Prepare a presentation and infoshare on the testbed offering and discuss this with NRENS to gauge the level of interest.
    • Supporting documentation
      Create a draft usage policy for the service
      Create suitable draft documentation for the operators and users of the service


Panel
titleBusiness case

Many organisations are working on projects or developing T&I services for the R&E sector that need to securely store and use secret key material to ensure trust in the operations they perform is not undermined. Operations such as issuing and signing certificates used by a PKI, signing of SAML assertions, OIDC tokens is crucial to the operation of identity federations. Promoting best security practice among such organisations is in accord with the needs of GDPR - "organisations must implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including the pseudonymisation and encryption of personal data”, will enable them to gain exposure to HSM usage and (hopefully) will increase the number of services using HSMs in the future.

#What is the business case for the Activity? Who would be beneficiaries of the results of the Activity and what would potential business case look like if applicable? - delete this line after using the template#

<Enter here>


Panel
titleData protection & Privacy

#How do data protection and privacy impact the Activity? Think about e.g. handling of personal data of users - delete this line after using the template#

<Enter here>

This HSM testbed does not deal directly with personal data, however depending on how access to the service is decided upon it may process such data.


Panel
titleDefinition of Done (DoD)

This activity will be considered complete when:

  • A testbed specification document is delivered;
  • A estimate of the demand for the testbed is produced, and if sufficient;
  • Documentation to enable administration and use of the service is ready for handover to the entity that will run the testbed.

#Please describe here the set of criteria that the product must meet in order to be considered finished. - delete this line after using the template#

<Enter here>


Panel
titleSustainability

#How are the results of the Activity intended to be used? If this requires further engagement, can you describe how you intent to sustain it? - delete this line after using the template#

<Enter here>The aim of this activity is to make a testbed service available to interested services and projects within the community.

Activity Results

Panel
titleResults
#Please provide pointers to completed and intermediary results of this activity - delete this line after using the template#

...