WP4 Security Update For WP4: David Groep

Slides:

Advertisements

Similar presentations

GT 4 Security Goals & Plans Sam Meder

Advertisements

TSpaces Services Suite: Automating the Development and Management of Web Services Presenter: Kevin McCurley IBM Almaden Research Center Contact: Marcus.

The Anatomy of the Grid: An Integrated View of Grid Architecture Carl Kesselman USC/Information Sciences Institute Ian Foster, Steve Tuecke Argonne National.

Gridification Task Development Plan for Release 1.1 – 2.0 For Gridification: David Groep

Andrew McNab - EDG Access Control - 14 Jan 2003 EU DataGrid security with GSI and Globus Andrew McNab University of Manchester

WP4 Gridification Subsystem overlap Globus & existing systems LCAS and AAA in WP4 for Gridification Task: David Groep

Collaborative Campus Grid - Practices and experiences in Leiden University Campus Grid (LUCGrid) Hui Li Feb 4, 2005.

WP4 Gridification Subsystem overlap & existing systems for Gridification Task: David Groep

Massimo Cafaro GridLab Review GridLab WP10 Information Services Massimo Cafaro CACT/ISUFI University of Lecce, Italy.

WP4 Security Update For WP4: David Groep

WP4 Gridification Security Components in the Fabric overview of the WP4 architecture as of D4.2 for Gridification Task: David Groep

WP6: Grid Authorization Service Review meeting in Berlin, March 8 th 2004 Marcin Adamski Michał Chmielewski Sergiusz Fonrobert Jarek Nabrzyski Tomasz Nowocień.

Active Security Infrastructure Stuart Kenny Trinity College Dublin.

Module 10: Designing an AD RMS Infrastructure in Windows Server 2008.

Andrew McNab - Manchester HEP - 26 June 2001 WG-H / Support status Packaging / RPM’s UK + EU DG CA’s central grid-users file grid “ping”

WP-8, ZIB WP-8: Data Handling And Visualization Review Meeting Report Felix Hupfeld, Andrei Hutanu, Andre Merzky, Thorsten Schütt, Brygg Ullmer Zuse-Institute-Berlin.

WP4 Security and AA(A) issues For WP4: David Groep

Scalable Systems Software Center Resource Management and Accounting Working Group Face-to-Face Meeting October 10-11, 2002.

ISYS 562 Microcomputer Business Applications David Chao.

Shannon Hastings Multiscale Computing Laboratory Department of Biomedical Informatics.

EU BON Meeting, Joensuu, March 2015 WP2 Task 2.3: Data sharing tools – Action Point MS232 : Technical workshop, review of documents, test versions of data.

GUMS Gabriele Carcassi PPDG Collaboration meeting June 27, 2004.

NA-MIC National Alliance for Medical Image Computing UCSD: Engineering Core 2 Portal and Grid Infrastructure.

DataGrid Fabric Management (WP4) Gridification of Large Farms, a very brief overview David Groep, NIKHEF

TIDEN Node Management Texas Integrated Data Exchange Node Partnered with.

INFSO-RI Enabling Grids for E-sciencE LCAS/LCMAPS and WSS Site Access Control boundary conditions David Groep NIKHEF.

INFSO-RI Enabling Grids for E-sciencE LCAS/LCMAPS and WSS Site Access Control boundary conditions David Groep et al. NIKHEF.

07/10/2007 VDCT Status Update EPICS Collaboration, October 2007 Knoxville, Tennessee

Presented by Vishy Grandhi.  Architecture (Week 1) ◦ Development Environments ◦ Model driven architecture ◦ Licensing and configuration  AOT (Week 2)

1 Service Creation, Advertisement and Discovery Including caCORE SDK and ISO21090 William Stephens Operations Manager caGrid Knowledge Center February.

Security Middleware Andrew McNab University of Manchester.

Ákos FROHNER – DataGrid Security n° 1 Security Group TODO

VOX Project Status T. Levshina. 5/7/2003LCG SEC meetings2 Goals, team and collaborators Purpose: To facilitate the remote participation of US based physicists.

Interaction classes Record context Custom lookups.

Gridification progress report David Groep, Oscar Koeroo Wim Som de Cerff, Gerben Venekamp Martijn Steenbakkers.

CMS Experience with the Common Analysis Framework I. Fisk & M. Girone Experience in CMS with the Common Analysis Framework Ian Fisk & Maria Girone 1.

ACGT Architecture and Grid Infrastructure Juliusz Pukacki ‏ EGEE Conference Budapest, 4 October 2007.

A Presentation Presentation On JSP On JSP & Online Shopping Cart Online Shopping Cart.

Overview of the New Security Model Akos Frohner (CERN) WP8 Meeting VI DataGRID Conference Barcelone, May 2003.

Dynamic Accounts: Identity Management for Site Operations Kate Keahey R. Ananthakrishnan, T. Freeman, R. Madduri, F. Siebenlist.

Argus EMI Authorization Integration

Massimo Sgaravatto INFN Padova

Introduction ITEC 420.

David Hatten Developer, UrbanCode 17 October 2013

WP4 meeting Heidelberg - Sept 26, 2003 Jan van Eldik - CERN IT/FIO

Internet Made Easy! Make sure all your information is always up to date and instantly available to all your clients.

(on behalf of the POOL team)

Duncan MacMichael & Galen Deal CSS 534 – Autumn 2016

WP4 Fabric Management 3rd EU Review Maite Barroso - CERN

The European DataGrid Project Team

Global Banning List and Authorization Service

Resource monitoring and discovery in OGSA

Fast App Creation with APEX Blueprints

Dirk Düllmann CERN Openlab storage workshop 17th March 2003

Online Steering in gLite with RMOST

WooCommerce Refund and Exchange with RMA

Gridification Gatekeeper LCAS: Local Centre AuthZ Service LCAS

What’s changed in the Shibboleth 1.2 Origin

Gridification progress report

Software Engineering Lecture #14.

Abraham Elmahrek Software Engineer at Cloudera

Role Models and Lifecycles in IoT and their Impact on the W3C WoT Thing Description Michele Blank.

Learning about Database Systems Yahya Alhawsawi Hani Alqaffas CSCI 152.

Information Providers

Introduction of Week 11 Return assignment 9-1 Collect assignment 10-1

PitchBook For MS Dynamics Plugin

COSMOS i7 & i8 Roadmap and Features

David Cleverly – Development Lead

Speaking the language of publishing. Worldwide

Presentation transcript:

WP4 Security Update For WP4: David Groep hep-proj-grid-fabric-gridify@cern.ch

A Job lifecycle within the Fabric

Some WP4 security components Plug-able system for authorization (LCAS) plug-in (PAM-like) framework Use as an engine for policy-driven authorization LCMAPS local credentials Credential generation plug-in framework Logical place to add role support Additional modifications to gatekeeper required error&status handling Getting a useful message to the user

More components Configuration database Local ID service The CDB should keep all relevant configuration/policies Can publish to information services (and integrate with WP3 tools) High-level description language to be defined in June workshop Local ID service To elimitate confusion: primary role is inside fabric Secure install services, etc.

Status and plans Progress on LCAS LCMAPS Added hook in gatekeeper  edg_gatekeeper Early prototype in Release 1.2: shipped as shared object with three components (allow, ban, timeslot) Dynamic plugin frameworknow being unit tested within WP4/gridification To be released in 1.3 More plug-in components can be developed independently (is simple) LCMAPS Release planning changed to provide it earlier (1.4) Keep all the useful functionality from Andrew Extend with role support (interaction with client side TBD)