SRM over SSL Paul Millar, on behalf of Alex Sim, Jean-Philippe Baud, Ricardo Rocha, Giuseppe LoPresti, Patrick Fuhrmann.

Slides:



Advertisements
Similar presentations
Jens G Jensen CCLRC/RAL hepsysman 2005Storage Middleware SRM 2.1 issues hepsysman Oxford 5 Dec 2005.
Advertisements

DPM Name Server (DPNS) Namespace Authorization Location of physical files DPM Server Requests queuing and processing Space Management SRM Servers v1.1,
10 May 2007 HTTP - - User data via HTTP(S) Andrew McNab University of Manchester.
16 th May 2006Alessandra Forti Storage Alessandra Forti Group seminar 16th May 2006.
Heads in the cloud? GSM-WG at OGF31, Taipei Jens Jensen, RAL.
A. Sim, CRD, L B N L 1 Oct. 23, 2008 BeStMan Extra Slides.
The GridSite Security System Andrew McNab and Shiv Kaushal University of Manchester.
A. Sim, CRD, L B N L 1 OSG Applications Workshop 6/1/2005 OSG SRM/DRM Readiness and Plan Alex Sim / Jorge Rodriguez Scientific Data Management Group Computational.
Data Management The GSM-WG Perspective. Background SRM is the Storage Resource Manager A Control protocol for Mass Storage Systems Standard protocol:
D C a c h e Michael Ernst Patrick Fuhrmann Tigran Mkrtchyan d C a c h e M. Ernst, P. Fuhrmann, T. Mkrtchyan Chep 2003 Chep2003 UCSD, California.
PVSSProxy The first piece of the MACS procedure framework (ProShell) Angela Brett.
Ryan Hemmy.  The ultimate goal is to create a single efficient and lightweight program that both unifies features of existing programs and offers unique.
Enabling Grids for E-sciencE Introduction Data Management Jan Just Keijser Nikhef Grid Tutorial, November 2008.
Grid Security in a production environment: 4 years of running Andrew McNab University of Manchester.
Owen SyngeTitle of TalkSlide 1 Storage Management Owen Synge – Developer, Packager, and first line support to System Administrators. Talks Scope –GridPP.
WLCG Grid Deployment Board, CERN 11 June 2008 Storage Update Flavia Donno CERN/IT.
WebFTS File Transfer Web Interface for FTS3 Andrea Manzi On behalf of the FTS team Workshop on Cloud Services for File Synchronisation and Sharing.
Maarten Litmaath (CERN), GDB meeting, CERN, 2006/06/07 SRM v2.2 working group update Results of the May workshop at FNAL
Grid Technology CERN IT Department CH-1211 Geneva 23 Switzerland t DBCF GT DPM / LFC and FTS news Ricardo Rocha ( on behalf of the IT/GT/DMS.
INFSO-RI Enabling Grids for E-sciencE Introduction Data Management Ron Trompert SARA Grid Tutorial, September 2007.
Globus and PlanetLab Resource Management Solutions Compared M. Ripeanu, M. Bowman, J. Chase, I. Foster, M. Milenkovic Presented by Dionysis Logothetis.
C O M P U T A T I O N A L R E S E A R C H D I V I S I O N SRM Basic/Advanced Spec Issues Arie Shoshani, Alex Sim, Junmin Gu Scientific Data Management.
CERN IT Department CH-1211 Geneva 23 Switzerland GT HTTP solutions for data access, transfer, federation Fabrizio Furano (presenter) on.
Grid Technology CERN IT Department CH-1211 Geneva 23 Switzerland t DBCF GT Upcoming Features and Roadmap Ricardo Rocha ( on behalf of the.
EGI-Engage Data Services and Solutions Part 1: Data in the Grid Vincenzo Spinoso EGI.eu/INFN Data Services.
Grid Technology CERN IT Department CH-1211 Geneva 23 Switzerland t DBCF GT Overview of DMLite Ricardo Rocha ( on behalf of the LCGDM team.
EWS Redesign Business Case A look at creating a reports client for new or small market participants.
A. Sim, CRD, L B N L 1 SRM Collaboration Meeting, Sep , 2005 SRM v3.0 LBNL Implementation Status Report Scientific Data Management Research Group.
EMI is partially funded by the European Commission under Grant Agreement RI Common Authentication Library Daniel Kouril, for the CaNL PT EGI CF.
Storage Element Security Jens G Jensen, WP5 Barcelona, May 2003.
DPM: Future Proof Storage Ricardo Rocha ( on behalf of the DPM team ) EMI INFSO-RI
Open Science Grid Consortium Storage on Open Science Grid Placing, Using and Retrieving Data on OSG Resources Abhishek Singh Rana OSG Users Meeting July.
Grid Technology CERN IT Department CH-1211 Geneva 23 Switzerland t DBCF GT Standard Protocols in DPM Ricardo Rocha.
EMI is partially funded by the European Commission under Grant Agreement RI Future Proof Storage with DPM Oliver Keeble (on behalf of the CERN IT-GT-DMS.
Security Area Christoph Witzig (SWITCH) on behalf of John White (HIP)
Pledged and delivered resources to ALICE Grid computing in Germany Kilian Schwarz GSI Darmstadt ALICE Offline Week.
Implementation of GLUE 2.0 support in the EMI Data Area Elisabetta Ronchieri on behalf of JRA1’s GLUE 2.0 Working Group INFN-CNAF 13 April 2011, EGI User.
EMI and dCache: the vanguard of standards adoption Paul Millar.
INFSO-RI Enabling Grids for E-sciencE Ákos Frohner, Ricardo Brito Da Rocha (CERN) EGEE Delegation 1.1.
dCache Paul Millar, on behalf of the dCache Team
Argus EMI Authorization Integration
Mehran Ahsant, PDC, Joni Hahkala, HIP on behalf of JRA3
By: Raza Usmani SaaS, PaaS & TaaS By: Raza Usmani
Ricardo Rocha ( on behalf of the DPM team )
Business Directory REST API
Delegation methods in EMI
Vincenzo Spinoso EGI.eu/INFN
Status of the SRM 2.2 MoU extension
Example: Rapid Atmospheric Modeling System, ColoState U
Data Bridge Solving diverse data access in scientific applications
dCache – protocol developments and plans
John Gordon EDG Conference Barcelona, May 2003
StoRM Architecture and Daemons
Introduction to Data Management in EGI
SRM Developers' Response to Enhancement Requests
Towards an Integrated Information system: the EMI view
SRM2 Migration Strategy
Encrypted Data Store, Hydra & Delegation Interface
GFAL 2.0 Devresse Adrien CERN lcgutil team
EGI UMD Storage Software Repository (Mostly former EMI Software)
Interoperability & Standards
DCache things Paul Millar … on behalf of the dCache team.
dCache, towards Federated Identities and Anonymized Delegation
dCache: new and exciting features
Data Management cluster summary
GIN-Data : SRM Island Inter-Op Testing
New Types of Accounting Beyond CPU
lundi 25 février 2019 FTS configuration
INFNGRID Workshop – Bari, Italy, October 2004
Condor-G: An Update.
Presentation transcript:

SRM over SSL Paul Millar, on behalf of Alex Sim, Jean-Philippe Baud, Ricardo Rocha, Giuseppe LoPresti, Patrick Fuhrmann.

V similar to SSLv3 but incompatible Clients can delegate Delegation Setting the scene SRM for managing storage GSI V similar to SSLv3 but incompatible Clients can delegate Delegation Allows SRM server to act “on behalf of” end- users Creates key-pair on server 2011-04-11 EMI-TC 2011 - Vilnius

Everything except srmPing. Why delegate? 3rd party copy srmCopy Reserving bandwidth srmPrepareTo(Get|Put), srm(Get|Put)Done, srmCopy X.509 backed tape SrmBringOnline, srmPrepareTo(Get|Put), srm(Get|Put)Done, srmCopy Federated SRM Everything except srmPing. 2011-04-11 EMI-TC 2011 - Vilnius

Why switch from GSI to SSL? GSI is not a standard (SSLv3 is) Coupling delegation with transport negotiation is inflexible. It's not widely used outside of Grid Only libraries are coming from a single vendor: Globus Hard to add advanced features; e.g., no hardware acceleration. 2011-04-11 EMI-TC 2011 - Vilnius

What to do about delegation? If delegation isn't needed then SSLv3 works fine. Delegation requires extra functionality Solution is a “service” that allows delegation. (NB. we're not talking about a single, per-site shared service; rather, each service has a common extra API) 2011-04-11 EMI-TC 2011 - Vilnius

Delegation Services Tech. SOAP Y N REST M Name C / Native Java / JVM Supported Client Server Globus Credential Delegation Service SOAP Y N GridSite Delegation Service Globus New Delegation Service REST IVOA Delegation Service M 2011-04-11 EMI-TC 2011 - Vilnius

Agreement on SRM-over-SSL Servers: Available in EMI-1 as prototype Current status Agreement on SRM-over-SSL Servers: Available in EMI-1 as prototype No delegation support. Initially dCache, DPM in 2011Q4 Due to some refactoring, StoRM starting work in May. Clients: Prototype support in dCache clients 2011-04-11 EMI-TC 2011 - Vilnius

Remain backwards compatible: Servers will run both GSI and SSL Future plans Remain backwards compatible: Servers will run both GSI and SSL SSL support in all SRM servers software Move from prototype to production Add delegation support All clients to support SSL Everything ready for EMI-2 (April 2012) 2011-04-11 EMI-TC 2011 - Vilnius

Thank you! 2011-04-11 EMI-TC 2011 - Vilnius

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.