Author: Computer Security Office

With the roll-out of 2-factor authentication for the CERN Single Sign-On now concluded, the next step required by the 2023 CERN cybersecurity audit is to streamline all methods for remotely connecting to CERN

Explore →

International collaboration and incident response is key. Because an incident in the Antipodes might directly affect the IT services at CERN. And has done so

Explore →

It should be common knowledge among software developers that writing software with as few weaknesses, vulnerabilities and flaws as possible is the most cost-efficient solution

Explore →

Let’s give up the complexity rules (letters, symbols, numbers) and go for long passwords, i.e. “passphrases”, instead. Long but easy to remember

Explore →

Recently, the Computer Security Office reported on a cybersecurity incident at a remote Tier 2 site of the Worldwide LHC Computing Grid (WLCG)

Explore →

The Legal Service, the Computer Security team and stakeholders from the FAP and IT departments have produced a Data Handling Policy (DHP) setting out how all CERN professional data must be handled

Explore →

The Computer Security Office has been attempting to plug obvious holes in CERN’s computer security stance since well before the 2023 cybersecurity audit, and it will continue to do in 2025 and beyond

Explore →

Before using any cloud service, software or application, check its licence conditions…

Explore →

Data confidentiality, while not paramount for CERN’s physics data, is still important when it comes to protecting sensitive contractual, financial, personal, radiation- and science-related documents and files…

Explore →

Today, we stand on the shoulders of giants, of giant teams, of collaborations, and only jointly can we reach our (research) goals

Explore →