Future Internet Infrastructures FIWARE is a middleware platform for development of FI applications www.fiware.org Driven and funded by the Future Internet Public-Private Partnership (FI-PPP) of the EU Provides a set APIs that ease app development in many areas including eHealth, Environment, Industry, IoTs .. Public, free, open source FIWARE community: independent, open whose members are committed to FIWARE mission (industry, research and academic institutions) 19/10/16 Future Internet Infrastructures

The aim of FI-WARE is to be useful for Europe Other Usage areas eHealth Tourism Smart Grid Transport E- business Utilities and environment FI-WARE platform will serve objectives of usage areas and will have the ambition of fulfilling the needs of a broader market The aim of FI-WARE is to be useful for Europe 19/10/16 Future Internet Infrastructures

Apps/Services Provider The VISION FI-WARE will be a technological foundation to satisfy the demands of application/services providers and consumers across various usage areas, stimulating and cultivating a sustainable FI service ecosystem Consumers People Businesses Apps/Services Provider Platform Provider

Future Internet Infrastructures Non-commercial environment where innovation and experimentation takes place FIWARE Lab is deployed over a geographically distributed network of federated nodes Federation of data centers across the EU running OpenStack Their operation is powered by the FIWARE Ops suite CRETE (TUC) is FIWARE LAB member FIWARE Academy (http://edu.fiware.org ): training courses, lessons etc. regarding FIWARE technology Catalogue of GEs offered as services (http://catalogue.fiware.org) 19/10/16 Future Internet Infrastructures

Future Internet Infrastructures FIWARE LAB Federation 19/10/16 Future Internet Infrastructures

Future Internet Infrastructures FIWARE OPs A collection of tools that eases deployment, setup and operation of FIWARE instances Tools for use, build, operate and expand FIWARE Lab by connecting additional datacenters Allowing cooperation of multiple Platform providers 19/10/16 Future Internet Infrastructures

Future Internet Infrastructures FIWARE OPs 19/10/16 Future Internet Infrastructures

Future Internet Infrastructures CRETE node Joined FIWARE Lab on January 25, 2015 Stable, fully operational node System administrator: Spyros Argyropoulos Provides all basic OpenStack services (Nova, Neutron, Heat, Glance …) Connection with FIWARE Lab through GRNET, 1Gbps to GRNET, upgradable to 10Gbps (10Gps intercore communication) Other services: HD RAID support, help support (9-5pm) 19/10/16 Future Internet Infrastructures

Future Internet Infrastructures CRETE Node Resources 19/10/16 Future Internet Infrastructures

FIWARE Labe Sanity Check Status 19/10/16 Future Internet Infrastructures

Future Internet Infrastructures Performed Test Cases 19/10/16 Future Internet Infrastructures

Future Internet Infrastructures FIWARE Catalogue Rich library of general purpose functions offered as APIs (Generic Enablers or GEs) with reference implementations Organized in chapters in FIWARE catalogue (http://catalogue.fiware.org ) Public, royalty-free, open source GEs Applications are implemented as combination of GEs, remote function calls, as RESTful architectures Domain Specific Enablers (DSEs): complex or domain specific functionality Are combined with GEs to build applications in specific domains (energy, media, smart manufacturing, health, wellbeing, agrifood) 19/10/16 Future Internet Infrastructures

Future Internet Infrastructures FIWARE Chapters Data/Context: Easing access, processing, analysis of context information Internet of Things (IoT): connect things Web-based User interface Security: trustworthy delivery and usage of services Network: build communication efficient distributed applications Architecture: Create, publish, consume services Cloud Hosting: computation storage 19/10/16 Future Internet Infrastructures

Security: Identity Management (IdM KeyRock) IdM is key on any architecture, supports users' access to networks, services and applications, Secure authentication from users to devices, networks, services, Authorization management, user profile management, privacy-preserving disposition of personal data Single Sign-On (SSO) to service domains Unique authentication/authorization system of all actions, several applications can be linked to IdM, benefit for users is a single sign-on (SSO) to all these applications Offers hosted user profile storage: Applications do not have to run and manage their own user data stores, but instead, can use the IdM user profile storage as a Software as a Service (SaaS) FIWARE IdM complies with the OAuth2 standard described in RFC 6749 Service Endpoint (URL): http://cloud.lab.fiware.org:4730 19/10/16 Future Internet Infrastructures

Future Internet Infrastructures OAuth 2.0 Main Idea Allows Internet users to login to 3rd party Web sites/services using their accounts in Google, Facebook, etc. but without exposing their password The response includes an access token which the application can use to gain direct access to the provider's services Works over HTTP Access tokens are issued by an authorization server, the 3rd party uses the tokens to access the protected resources hosted by the resource server 19/10/16 Future Internet Infrastructures

Future Internet Infrastructures “OAuth Roles Resource Owner: the service who authorizes an application to access its account Resource server: the resource server hosts the protected accounts, data or services Client: is the application that wants to access the user’s account Authorization server: verifies the identity of the user and issues access tokens https://www.digitalocean.com/community/tutorials/an-introduction-to-oauth-2 https://developers.google.com/identity/protocols/OAuth2 19/10/16 Future Internet Infrastructures

Future Internet Infrastructures Oauth 2.0 Protocol Flow 19/10/16 Future Internet Infrastructures https://fhirblog.files.wordpress.com/2014/06/oauth2sequencediagram.png

Detailed Oauth2.0 Protocol Flow client Resource owner 19/10/16 Future Internet Infrastructures

Data/Context: Publish/Subscribe Context Broker (Orion) In a Data/Context scenario, this component mediates between consumer producers (e.g. sensors) and the context consumer applications (e.g. an smartphone applications reading information like measurements provided by the sensors) Implementation of NGSI9, NGSI10 interfaces Register context producer applications, e.g. a temperature sensor within a room Update context information, e.g. send updates of temperature Being notified when changes on context information take place (e.g. the temperature has changed) or with a given frequency (e.g. get the temperature each minute) Query context information: The Orion Context Broker stores context information updated from applications, so queries are resolved based on that information. Service Endpoint (URL): http://orion.lab.fiware.org:1026 19/10/16 Future Internet Infrastructures

Future Internet Infrastructures Context Services, NGSI A protocol developed by OMA (Open Mobile Alliance) to manage context information Context information: describes status of applications, environment and situation Context aware services adapt to user needs NGSI provides operations like Manage context entities Access (query/subscribe) context entities NGSI 9/10 protocol (RESTful interface) for exchanging context information Registration of context information One time queries for context information Subscriptions for context information updates, Notifications 19/10/16 Future Internet Infrastructures

NGSI-9 Resources Summary 19/10/16 https://fiware-orion.readthedocs.io/en/master/index.html

NGSI-9 Resources POST (in green) Context Registration Resource /registerContext Generic context registration Discovery resource /discoverContextAvailability Generic discovery of context information providers. Availability subscription resource /subscribeContextAvailability Generic subscription to context availability information. Availability subscription update resource /updateContextAvailabilitySubscription Generic update of context availability subscriptions. Availability subscription deletion resource /unsubscribeContextAvailability Generic deletion of context availability subscriptions. 19/10/16 Future Internet Infrastructures

NGSI-9 Operations - resources (in yellow) Individual context entity /contextEntities/{EntityID} Retrieve information on providers of any information about the context entity Attribute container of individual context entity /contextEntities/{EntityID}/attributes Attribute of individual context entity /contextEntities/{EntityID}/attributes/{attributeName} Retrieve information on providers of the attribute value Attribute domain of individual context entity /contextEntities/{EntityID}/attributeDomains/{attributeDomainName} Retrieve information on providers of information about attribute values from the domain Context entity type  /contextEntityTypes/{theName} Retrieve information on providers of any information about context entities of the type 19/10/16 Future Internet Infrastructures

NGS-9 Operation resources (in yellow) Attribute container of entity type /contextEntityTypes/{typeName}/attributes Retrieve information on providers of any information about context entities of the type Attribute of entity type /contextEntityTypes/{typeName}/attributes/{attributeName} Retrieve information on providers of values of this attribute of context entities of the type Attribute domain of entity type /contextEntityTypes/{typeName}/attributeDomains/{attributeDomainName} Retrieve information on providers of attribute values belonging to the specific domain, where the entity is of the specific type 19/10/16 Future Internet Infrastructures

Data/Context: Complex Event Processing (CEP) CEP GE analyses event data in real-time, generates immediate insight and enables instant response to changing conditions CEP GE reacts to situations rather than to single events A situation is a condition that is based on a series of events that have occurred within a dynamic time window called processing context Eg., temperature must be within [LowTemp, HighTemp] Situations include composite events (e.g., sequence), counting operators on events (e.g., aggregation) Allows for definition of CEP applications using a web user interface Service Endpoint (URL):http://130.206.81.23:8080/AuthoringTool/Main.html 19/10/16 Future Internet Infrastructures

Context/Data: BigData Analysis (by Cosmos) Is indented to deploy means for analyzing batch and stream data (get insights on data) Mainly of interest to service providers aiming to expose a BigData Analysis services Batch analysis is supported by Cosmos Hadoop as a service (HAAS) engine, various authentication, authorization tools, Map/Reduce APIs, tools for connecting Context Broker with data stores 19/10/16 Future Internet Infrastructures

Future Internet Infrastructures JSON Storage GE Developed by Alexandros Preventis (apreventis@intelligence.tuc.gr ) NoSQL Database system for JSON-style documents. Accessible through a RESTful API Interaction types are CRUD (Create – Read – Update – Delete) operations on the following resources: Users Databases Collections Records Service Endpoint (URL):http://147.27.50.85:3000 19/10/16 Future Internet Infrastructures

IoT Chapter: IoT Discovery Allows context producers to register IoT objects and context consumers to discover them using search techniques Provides two modules: Sense2Web: db for IoT providers to register and manage (CRUD using SPAQL) RDF descriptions of Things (ioT-A descriptions) NGSI-9 server: db for NGSI entities, allows clients to register context information about Sensors and Things and discover them using their ID, attribute, entity type Service Endpoint (Sense2Web URL): http://iot-discovery.lab.fiware.org/s2w Service Endpoint (NGSI-9 URL): http://iot-discovery.lab.fiware.org/ngsi9 19/10/16 Future Internet Infrastructures

Practical IoT / Cloud Architecture 19/10/16 Future Internet Infrastructures

Monitoring Atmospheric Conditions http://147.27.50.51/clientfiles/test_index 19/10/16 Future Internet Infrastructures

Monitoring Health Status 19/10/16 Future Internet Infrastructures