Firewall Virtualization for Grid Applications FVGA-BOF: Enabling the dynamic VO imonga@nortel.com.

Slides:

Advertisements

Similar presentations

Oct, 26 th, 2010 OGF 29, FVGA-WG: Firewall Virtualization for Grid Applications Firewall Virtualization for Grid Applications - Status update

Advertisements

June 2 nd, 2008 OGF 23, FVGA-WG-BoF: Firewall Virtualization for Grid Applications Firewall Virtualization for Grid Applications BOF

Oct 15 th, 2009 OGF 27, Infrastructure Area: Status of FVGA-WG Status of Firewall Virtualization for Grid Applications - Working Group

19/02/2006 The NESSI European Technology Platform 2nd Workshop – Shanghai Feb 2006 Stefano De Panfilis R&D Laboratories Engineering Ingegneria.

The Internet2 NET+ Services Program Jerry Grochow Interim Vice President CSG January, 2012.

Standards Certification Education & Training Publishing Conferences & Exhibits Using Outbound IP Connections for Remote Access EXPO 2005 Chicago, IL.

VMware Virtualization Last Update Copyright Kenneth M. Chipps Ph.D.

CoreGRID Workpackage 5 Virtual Institute on Grid Information and Monitoring Services Authorizing Grid Resource Access and Consumption Erik Elmroth, Michał.

Asper School of Business University of Manitoba Systems Analysis & Design Instructor: Bob Travica System architectures Updated: November 2014.

Identity and Access Management IAM. 2 Definition Identity and Access Management provide the following: – Mechanisms for identifying, creating, updating.

Windows Server 2012 Certification and Training June 2012.

Open Cloud Sunil Kumar Balaganchi Thammaiah Internet and Web Systems 2, Spring 2012 Department of Computer Science University of Massachusetts Lowell.

Cloud Computing Myths and Realities Towards a policy Framework for Arab countries.

Plan Introduction What is Cloud Computing?

Extreme Networks Confidential and Proprietary. © 2010 Extreme Networks Inc. All rights reserved.

Report from Breakout Session 1.2 Secure Consumerization: the Genuine Trustworthiness Revolution Chair: Craig Lee Rapporteur: Paolo Mazzetti.

UK GRID Firewall Workshop Matthew J. Dovey Technical Manager Oxford e-Science Centre.

AHM /09/05 AHM 2005 Automatic Deployment and Interoperability of Grid Services G.Kecskemeti, Yonatan Zetuny, G.Terstyanszky,

Climate Sciences: Use Case and Vision Summary Philip Kershaw CEDA, RAL Space, STFC.

Presented by Xiaoyu Qin Virtualized Access Control & Firewall Virtualization.

© 2008 Open Grid Forum Independent Software Vendor (ISV) Remote Computing Primer Steven Newhouse.

McGraw-Hill/Irwin Copyright © 2013 by The McGraw-Hill Companies, Inc. All rights reserved. Business Plug-In B17 Organizational Architecture Trends.

Chapter 5 McGraw-Hill/Irwin Copyright © 2011 by The McGraw-Hill Companies, Inc. All rights reserved. Enterprise Architectures.

Enabling the Future Service-Oriented Internet (EFSOI 2008) Supporting end-to-end resource virtualization for Web 2.0 applications using Service Oriented.

RESERVOIR RESERVOIR Resources and Services Virtualization without Barriers Philippe Massonet (CETIC)

Wavetrix Changing the Paradigm: Remote Access Using Outbound Connections Remote Monitoring, Control & Automation Orlando, FL October 6, 2005.

5 th DataGrid Project Conference, - Piliscsaba, HUNGARY, 1-5 September Tomorrow’s future, Today’s Reality - Grids deployment in Europe - Kyriakos.

© Copyright AARNet Pty Ltd PRAGMA Update & some personal observations James Sankar Network Engineer - Middleware.

Introduction to Avaya’s SDN Architecture February 2015.

Enterprise Requirements: Industry Workshops and OGF Robert Cohen, Area Director, Enterprise Requirements.

Windows Server 2012 Certification and Training

Firewall Issues Research Group First meeting yesterday, GGF 14 Mailing list: Projects page:

GGF 17 - May, 11th 2006 FI-RG: Firewall Issues Overview Document update and discussion The “Firewall Issues Overview” document.

Agenda  What is Cloud Computing?  Milestone of Cloud Computing  Common Attributes of Cloud Computing  Cloud Service Layers  Cloud Implementation.

Interface of “The Grid” to “The Fabric” Rich Baker Brookhaven National Lab.

Clouding with Microsoft Azure

Dr. Ir. Yeffry Handoko Putra

Chapter 1 Computer Technology: Your Need to Know

Use of Cloud Computing for Implementation of e-Governance Services

Instructor Materials Chapter 1: Explore the Network

Clouds , Grids and Clusters

Affinity Depending on the application and client requirements of your Network Load Balancing cluster, you can be required to select an Affinity setting.

SuperComputing 2003 “The Great Academia / Industry Grid Debate” ?

Build a low-touch, highly scalable cloud with IBM SmartCloud Provisioning Academic Initiative © 2011 IBM Corporation.

Service Virtualization via a Network Appliance….

Federated IdM Across Heterogeneous Clouding Environment

Chapter 1: Explore the Network

Hiro Kishimoto, OGSA-WG co-chair GGF16 in Athens February 13, 2006

Connected Vehicle Technology

Working at a Small-to-Medium Business or ISP – Chapter 7

Red Hat User Group June 2014 Marco Berube, Cloud Solutions Architect

Cloud Computing.

Single Point of Entry (SPOE)

Working at a Small-to-Medium Business or ISP – Chapter 7

Ebusiness Infrastructure Platform

Working at a Small-to-Medium Business or ISP – Chapter 7

IS4680 Security Auditing for Compliance

Goals Introduce the Windows Server 2003 family of operating systems

Service Oriented Architecture (SOA)

Grid Services B.Ramamurthy 12/28/2018 B.Ramamurthy.

Chapter 17: Client/Server Computing

KNOWLEDGE MANAGEMENT (KM) Session # 34

Cloud computing Technology: innovation. Points  Cloud Computing and Social Network Sites have become major trends not only in business but also in various.

Cloud computing Technology: innovation. Points  Cloud Computing and Social Network Sites have become major trends not only in business but also in various.

The Anatomy and The Physiology of the Grid

The Anatomy and The Physiology of the Grid

Review of grid computing

NFV and SD-WAN Multi vendor deployment

OU BATTLECARD: Oracle Identity Management Training

Presentation transcript:

Firewall Virtualization for Grid Applications FVGA-BOF: Enabling the dynamic VO imonga@nortel.com

Firewall Issues – RG: OGF History Formally started in GGF Inspiration through the GHPN-RG Background Network - a first-class GRID Citizen Firewalls a big impediment to dynamic resource sharing Balance security with dynamic access Asymmetric access 2

Summary of Issues (FI-RG BOF) Enable the network-part of the “VO” Sharing of critical resources across the WAN Security enforcement at different layers Application level Network level Multiple policy/security enforcement points Host Lab Site EPR address resolution Firewall Performance for high-speed grid interconnects Support different mid-box architectures 3

What did we learn? A set of representative use-cases (GFD.83) Summary of Firewall requirements from Grid Applications Capabilities and shortcomings of existing firewalls and dynamic solns. 4

Why standards track? Firewall vendors product ALG for Grid Applications Likelihood of vendors to implement this specifically for grids not very strong Lots of researchers have contributed solns Lots of pros to Virtualization approach Avoid expensive “upgrades” Large vendor/product choice Interoperability assured Grid understanding 5

What skill sets do we need? Network Administrators Security Experts Grid Administrators Grid Middleware and application designers Virtualization experts …. 6

Is this contrary to industry trend? Services Oriented Infrastructure (SOI) Virtualization of all infrastructure Cloud Computing Virtual organizations the norm (though not in the pure Grid way) Web 2.0 application service providers Host multiple organizations Automation needed 7

Proposed Solution Make middleware and network resources known to each other Dynamic network resource management Grid middleware is network-aware End-to-end applicability Local authorization/authentication Independence of the Firewall vendor/implementation Capabilities may be different 8

Questions and discussion 9