<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"> <html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en"> <head> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /> <link rel="stylesheet" href="/style.css" type="text/css" /> <script type="text/javascript" src="/jquery.min.js"></script> <title>CERN Computer Security Information</title> <script type="text/javascript"> $(document).ready(function(){ // Menu highlight var path = location.pathname.split("/"); if ( path ) { $('#main_menu a[href*="' + path[1] + '"][class!="noselect"]').addClass('selected'); // path[3] = /security/<xxxxx>/ $('#sidebar ul.sidemenu li[class!="noselect"]:has(a[href$="' + path.reverse()[0] + '"])').addClass('selected'); } // Add icon to external links $('a[id!=logo-img]').filter(function() { return this.hostname && this.hostname !== location.hostname;   }).after(' <img src="/images/external_link.png" alt="external link" title="external link"/>'); }); </script> </head> <body> <div id="wrap"> <div id="top-bg"></div> <!--header --> <div id="header"> <div id="logo-text"> <a id="logo-img" href="https://home.cern/"><img src="/images/CERNLogo2.png" width="59" height="59" style="margin: 10px" alt="CERN Logo"/></a><div id="logo-text-big"><a href="/home/en/index.shtml" title="">CERN Computer Security</a></div> </div> <div id="header-logo"><a href="/services/en/emergency.shtml"><img width=335 src="/images/emergency.png" alt="Computer Emergencies"/></a></div> </div> <!--header ends--> <div id="header-photo"></div> <!-- navigation starts--> <div id="nav"> <ul id="main_menu"> <li><a class="noselect" href="/home/fr/index.shtml"><img src="/images/fr.png" alt="FR"/></a></li> <li><a href="/home/en/index.shtml">Home</a></li> <li><a href="/rules/en/index.shtml">Computing Rules</a></li> <li><a href="/recommendations/en/index.shtml">Recommendations</a></li> <li><a href="/training/en/index.shtml">Training</a></li> <li><a href="/services/en/index.shtml">Services</a></li> <li><a class="secured" href="/reports/en/index.shtml">Reports &amp; Presentations</a></li> </ul> </div> <!-- navigation ends--> <!-- content-wrap starts --> <div id="content-wrap"> <div id="main"> <h2>CERN Computer Security Announcements</h2> <em class="titledate">(<a href="/reports/en/announcements.shtml">Previous announcements are here.</a>)</em> <p></p> <center> <table> <tr> <td style="text-align: justify;"> <h4>New CERN Single Sign-On (SSO) Portal</h4> <p> One fundamental pillar for securing CERN and its digital assets is their protection against any unauthorized accesses. For any web application, this protection is since long centrally governed by CERN’s Single Sign-On (SSO) webpage asking for your one and only CERN password. The new year 2020 will bring a new look (and functionality) to that Single Sign-On page. </p><p> In order to avoid that you confuse the new CERN SSO page with fake & malicious <a href=”https://cern.ch/security/recommendations/en/bad_mails.shtml”>phishing sites</a>, have a look, here it is: </p> <center><img style="padding-left:5px;" width=95% src="/images/NewSSO.JPG"></center> <p> As most important security feature, as the look & feel can easily be spoofed, check the URL bar in the top of your browser. The URL should start with “auth.cern.ch” or, ideally, “https://auth.cern.ch” and be accompanied with a small lock icon showing that your communication is encrypted and that the corresponding certificate is valid. Any other webpage asking for your CERN password but this new one as well as the current “old” one (https://login.cern.ch) should be treated with caution and be reported to us <a href="mailto:Computer.Security@cern.ch">Computer.Security@cern.ch</a>. Similarly, if you see any error message popping up before that page displays, please let us know, too. </p> <!--p style="text-align: right;">(Read more in the <a href="">CERN Bulletin</a>)</p--> </td> </tr> <tr> <td style="text-align: justify;"> <!--img style="float:right;padding-left:5px;" width=200 src="/home/en/DG_en.jpg"/--> <h4>Security needs you</h4> <p>"Academic freedom is a valuable thing, but like any kind of freedom, it comes with responsibility... It is the responsibility of all of us, not just the experts in the IT Department, to protect our IT infrastructure while striking the right balance between security, academic freedom and the unfettered operation of our facilities... At CERN, security is not complete without you."</p> <p style="text-align: right;">(Read more in the <a href="http://cdsweb.cern.ch/journal/CERNBulletin/2010/23/News%20Articles/1269299?ln=en">CERN Bulletin</a>)</p> </td> </tr> </table> </center> <h2>Overview</h2> <p>At CERN, due to its unique academic environment and the associated academic freedom, <b>computer security has been delegated to CERN's users:</b></p> <p> <center> <table> <tr> <th><b>At CERN, the individual users are in first instance responsible for securing their computers, networks, data, systems & services.</a></b></th> </tr> </table> </center> </p> <p>The Computer Security Team - and the IT department - are ready to help users assuming this responsibility assist you in this. On this Web site, you can find</p> <ul> <li>The CERN <b><a href="/rules/en/index.shtml">Computing Rules</a></b>, i.e. the "Dos" and "Don'ts" for using CERN's computing facilities; <li><b><a href="/recommendations/en/index.shtml">Recommendations</a></b>, i.e. tips, hints & best practises intended to helping you to properly assume this responsibility;</li> <li><b><a href="/training/en/index.shtml">Training</a></b> courses and material for starters & experts;</li> <li>Security <b><a href="/services/en/index.shtml">Services</a></b> provided for you by the Computer Security Team; and</li> <li><b><a href="/reports/en/index.shtml">Reports & Presentations</a></b> featuring monthly reports, theses, reports from conferences, dedicated presentations & much more.</li> </ul> </div> <!-- main ends --> <!-- SIDEBAR --> <!-- sidebar menu starts --> <div id="sidebar"> <ul class="sidemenu"> <li class="noselect"><b><a href="/home/fr/index.shtml"><img src="/images/fr.png"/> Vous pr&eacute;f&eacute;rez le fran&ccedil;ais ?</a></b></li> </ul> <h3>Emergency Response</h3> <ul class="sidemenu"> <li><a href="/services/en/emergency.shtml">What to do in an emergency</a> </ul> <h3>Contact</h3> <ul class="sidemenu"> <li><a href="/home/en/csirt.shtml">How to contact the Computer Security Team</a> <li><a href="/home/en/cvd.shtml">Coordinated Vulnerability Disclosure</a> <li><a href="/home/en/CERN/liaisons.shtml">Departmental & experiment liaisons <img src="/images/bullet_lock.png" alt="CERN login required"/></a> </ul> <h3>About CERN Computer Security</h3> <ul class="sidemenu"> <li><a href="/advisories/advisories.shtml">Advisories</a></li> <li><a href="/home/en/data_sharing.shtml">Data Sharing Guidelines</a></li> <li><a href="/home/en/about.shtml">Security is not complete without you</a></li> <li><a href="/home/en/privacy_statement.shtml">Privacy Statement</a></li> <li><a href="/home/en/kudos.shtml">Kudos!</a></li> </ul> </div> <!-- sidebar menu ends --> <!-- content-wrap ends--> </div> <!-- footer starts --> <div id="footer-wrap"> <div id="footer-bottom"> &copy; Copyright 2024<strong> <a href="https://cern.ch/security">CERN Computer Security Office</a></strong> <table> <tr> <td id="footer-info-left"> e-mail: <a href="mailto:Computer.Security@cern.ch">Computer.Security@cern.ch</a><br/> Please use the following PGP key to encrypt your messages:<br/> ID: 0x954CE234B4C6ED84<br/> <a href="https://keys.openpgp.org/vks/v1/by-fingerprint/429D60460EBE8006B04CDF02954CE234B4C6ED84">429D 6046 0EBE 8006 B04C DF02 954C E234 B4C6 ED84</a> </td> <td id="footer-info-right"> Phone: +41 22 767 0500<br/> Please listen to the recorded instructions. </td> </tr> </table> </div> </div> <!-- footer ends--> </div> <!-- wrap ends here --> <!--img height=30px src="/home/en/CERNfooter_800.png"--> </body> </html>