The EARNEST Foresight Study 2006 - 2007 Results from the EARNEST Technical Study Licia Florio, TERENA EARNEST Workshop, Amsterdam, 8.

Slides:



Advertisements
Similar presentations
Routing Routing in an internetwork is the process of directing the transmission of data across two connected networks. Bridges seem to do this function.
Advertisements

1 European Research Networking Development Activities Karel Vietsch TERENA
On the Education And Research Networking Evolution STudy – EARNEST – a foresight study follow-up of SERENATE Presentation at the CCIRN meeting in Xi an.
Joining eduroam Wireless Roaming for Education and Research.
Steve Joiner, Technical Committee Chair John McDonough, Member OIF Board of Directors Optical Internetworking Forum.
Terena Mobility Taskforce update Klaas Wierenga SURFnet.
Licia Florio EUNIS05, Manchester 1 Eduroam EUNIS Conference, June Licia Florio.
Connect. Communicate. Collaborate TNC Bruges, 22 May 2008 GÉANT2: The Good the Bad and the Ugly - What worked and what didn’t work? Robin G. Arak.
Multihoming in IPV6 Habib Naderi Department of Computer Science University of Auckland.
Trends in Identity Management Nate Klingenstein Internet2 EDUCAUSE Security Professional 2007.
TF Mobility Group 22nd September A comparison of each national solution was made against Del C – “requirements”, the following solutions were assessed.
TechSec WG: Related activities overview Information and discussion TechSec WG, RIPE-45 May 14, 2003 Yuri Demchenko.
EuroCAMP Ljubljana, 3-5 March 2006 TERENA Server Certificate Service Towards the large-scale use of affordable popup-free server certificates for the European.
TF-EMC2 February 2006, Zagreb Deploying Authorization Mechanisms for Federated Services in the EDUROAM Architecture (DAME) -Technical Project Proposal-
Federated Identity Management for the context of storage Bart Kerver - TERENA Storage-meeting, Amsterdam,
Looking in EARNEST for future directions in European Research and Education Networking APAN 26 6 August 2008, Queenstown, New Zealand.
COS 420 Day 20. Agenda Group Project Discussion Protocol Definition Due April 12 Paperwork Due April 29 Assignment 3 Due Assignment 4 is posted Last Assignment.
Dutch Tier 1 SARA/NIKHEF & SURFnet Erik-Jan Bos Director of Network Services SURFnet, The Netherlands To/T1 networking meeting, Geneva, Switzerland July.
Connect. Communicate. Collaborate The Technological Landscape of GÉANT2 Roberto Sabatino, DANTE
GGF16-ghpnD. Simeonidou Lambda User Controlled Infrastructure For European Research LUCIFER.
John Dyer Business & Technology Strategist TERENA Business & Technology Strategist December 2013 European NRENs Evolution.
EuroPKI 2008 Manuel Sánchez Óscar Cánovas Gabriel López Antonio F. Gómez Skarmeta University of Murcia Levels of Assurance and Reauthentication in Federated.
NORDUnet NORDUnet The Fibre Generation Lars Fischer CTO NORDUnet.
Developments and challenges in authentication and authorisation Klaas Wierenga Berlin, 23 May 2006.
Security in Virtual Laboratory System Jan Meizner Supervisor: dr inż. Marian Bubak Consultancy: dr inż. Maciej Malawski Master of Science Thesis.
Valentino Cavalli Workshop, Bad Nauheim, June Ways and means of seeing the light Technical opportunities and problems of optical networking.
Connect. Communicate. Collaborate Building and developing international future networks Roberto Sabatino, DANTE HEANET conference, Athlone, 10 November.
Connect. Communicate. Collaborate VPNs in GÉANT2 Otto Kreiter, DANTE UKERNA Networkshop 34 4th - 6th April 2006.
Chapter 1. Introduction. By Sanghyun Ahn, Deot. Of Computer Science and Statistics, University of Seoul A Brief Networking History §Internet – started.
John Dyer Business & Technology Strategist TERENA Business & Technology Strategist 4 October 2013 European NRENs Evolution.
Helsinki Institute of Physics (HIP) Liberty Alliance Overview of the Liberty Alliance Architecture Helsinki Institute of Physics (HIP), May 9 th.
High-quality Internet for higher education and research do you like to puzzle, build an AAI ! xxx AA systems 2nd EuroCAMP - Porto November 8, 2005
Slide 1 John Dyer TERENA ASPIRE Project Manager TF-MSP 28 September 2012 ASPIRE Foresight Study
High-quality Internet for higher education and research GigaPort  Overview SURFnet6 Niels den Otter SURFnet EVN-NREN Meeting Amsterdam October 12, 2005.
High-quality Internet for higher education and research AAI from the NREN perspective Schiphol, October 17, 2005
John DYER 2 nd NREN – Grids Workshop 17 October 2005, Schiphol. 1 Second NREN – Grids Workshop John DYER TERENA Schiphol, Amsterdam 17 October 2005.
Serving society Stimulating innovation Supporting legislation Danny Vandenbroucke & Ann Crabbé KU Leuven (SADL) AAA-architecture for.
EARNEST Technical Study Kevin Meynell TERENA Bratislava 27 April 2007.
Semantic Web Technologies Research Topics and Projects discussion Brief Readings Discussion Research Presentations.
SURFnet. We make innovation work0. 1 State-of-the-art Network IT InnovationLicensing.
Erik Radius Manager Network Services SURFnet, The Netherlands Joint Techs Workshop Columbus, OH - July 20, 2004 GigaPort Next Generation Network & SURFnet6.
Claudio Allocchio TERENA Technical Programme - Update General Assembly, 21 October 2005, Budapest 1 TERENA Technical Programme Update Claudio Allocchio.
TERENA Activities Internet2 Members Meeting, International Task Force 8 October 2007.
SERENATE WP3 Equipment Study. WP3 (Equipment) Mission A study of into the availability and characteristics of equipment for next-generation networks More.
Advanced Networks: The Past and the Future – The Internet2 Perspective APAN 7 July 2004, Cairns, Australia Douglas Van Houweling, President & CEO Internet2.
Connect. Communicate. Collaborate AAI scenario: How AutoBAHN system will use the eduGAIN federation for Authentication and Authorization Simon Muyal,
The SERENATE project Strategic studies into the Future of Research and Education Networking in Europe Karel Vietsch TERENA Secretary General SERENATE Project.
Connect. Communicate. Collaborate Universität Stuttgart A Client Middleware for Token- Based Unified Single Sign On to eduGAIN Sascha Neinert, University.
Connect. Communicate. Collaborate Deploying Authorization Mechanisms for Federated Services in the eduroam architecture (DAMe)* Antonio F. Gómez-Skarmeta.
Authentication and Authorisation in eduroam Klaas Wierenga, AA Workshop TNC Lyngby, 20th May 2007.
Europe ’ s EARNEST recommendations: Innovation, Integration and Deployment 26 th APAN Meetings Queenstown (NZ), 5 August 2008 Karel Vietsch TERENA Secretary.
Deploying Authorization Mechanisms for Federated Services in eduroam Klaas Wierenga, EuroCAMP Helsinki, 17&18th April 2007.
Claudio Allocchio - VP Technical Programme TERENA GA - Zagreb May Report from the TAC Claudio Allocchio VP Technical Programme TERENA GA - Zagreb.
John Dyer Business & Technology Strategist TERENA ASPIRE Project Manager TF-MSP February 2013 ASPIRE Foresight Study
June 9, 2009 SURFfederatie: implementing a multi- protocol federation Hans Zandbelt & Joost van Dijk, SURFnet.
Programme ›TERENA ›Overview of the middleware initiatives in the European Higher Education ›What is eduroam: the technology and how to set up eduroam ›eduroam-in-a-box:
IETF 78 Maastricht 27 July 2010 Josh Howlett, JANET(UK)
Dai Davies : General Manager : DANTE Ltd TERENA Networking Conference 7-10 June 2004 Rhodes, Greece GÉANT 2: A NEW.
Technical Programme, GA, 20 October TERENA Technical Programme Update Claudio Allocchio & John DYER TERENA
Connect. Communicate. Collaborate Applying eduGAIN to network operations The perfSONAR case Diego R. Lopez (RedIRIS) Maurizio Molina (DANTE)
Implementing Cisco IP Routing (ROUTE v2.0)
© 2006 Open Grid Forum George Zervas, Reza Nejabati, Dimitra Simeonidou University of Essex Update on Grid User Network Interface (GUNI) Draft.
Evolution of storage and data management
Bob Jones EGEE Technical Director
Applying eduGAIN to network operations The perfSONAR case
TERENA Organisation A not-for-profit association of European National Research and Education Networks Based in Amsterdam, The Netherlands Membership: 36.
SURFnet6: the Dutch hybrid network initiative
The SURFnet Project Bram Peeters, Manager Network Services
The DAMe’s First Steps: eduroam and NAS-SAML
Multi-Domain User Applications Research (JRA3)
Presentation transcript:

The EARNEST Foresight Study Results from the EARNEST Technical Study Licia Florio, TERENA EARNEST Workshop, Amsterdam, 8 May 2007

The EARNEST Foresight Study Agenda Technical study – Lower layers preliminary results – Middleware preliminary results More details on this part of the study

The EARNEST Foresight Study Technical Study Transmission technologies –Equipment evolution, next-generation standards, transmission protocols & fibre provisioning. Operations and performance –End-to-end performance, network management (optical & IP), VPN provisioning & PERT. Control plane technologies –Switching & routing matrices (optical & IP), multicasting, IPvX, QoS provisioning. Middleware (new element) –Authentication and authorisation infrastructures, identity federations and related technologies, mobility, support for network infrastructure, virtual organisations.

The EARNEST Foresight Study Technical Study Panel Lower layers: –Lars Fischer (Nordunet) – Transmission –John Graham (Indiana University) - Transmission Otto Kreiter (DANTE) - Transmission –Gigi Karmous-Edwards (MCNC) - Control Plane (Optical) –Alexander Gall (SWITCH) - Control Plane (IP routing) –Stig Venaas (Uninett) - Control Plane (Multicast) –Dimitra Simeonidou (University of Essex) – Operations & Performance (Optical) –Luca Deri (University of Pisa/Netikos) - Operations & Performance (IP) –Simon Leinen (SWITCH) - Operations & Performance (IP) Middleware: –Diego Lopez (RedIRIS) - Middleware –Milan Sova (CESNET) - Middleware –Klaas Wierenga (SURFnet) - Middleware (Mobility)

The EARNEST Foresight Study Lower Layers First Results

The EARNEST Foresight Study This part of the study was conducted by my colleague, Kevin Meynell > 2. Study conducted via interviews with some major vendors: > So far only router & ethernet switching vendors interviewed. > Some results could different after talking to the network operators Disclaimer

The EARNEST Foresight Study Lower Layer First Results Currently only a few OC-768 (40 Gbps) customers, mostly in oil and gas industries Reluctance to upgrade transport network to support 40 Gbps, as expensive (x20 the cost of 4 x 10 GE) and seen as interim step before higher speed standards. SUN seem to move away from 40Gbps Running into problems with n x 10 Gbps, due to link aggregation and load-balancing performance. Cisco, Juniper and Force10 pushing for 100 Gigabit Ethernet standard. –100 GE standard expected by 2009, with implementations by –Copper standard for 100 GE being considered.

The EARNEST Foresight Study Lower Layers First Results Routing scalability becoming problematic (again) –Huge rise in number of hosts, fragmentation of service provider hierarchy, and amount of traffic. –Global routing table now >200,000 entries, which is causing memory and processing problems (0.5-1 GB memory required). –Other reasons – more multihoming, traffic engineering, plus IPv6. –Proposed to split IP addresses into identifiers and locators. [Possible implications for AAA as well] Improvements to TCP for sustained high-bandwidth transmissions Juniper pushing (G)MPLS, but Cisco less interested

The EARNEST Foresight Study Middleware First Results

The EARNEST Foresight Study Why a middleware sub- study? It is not just the current ‘buzzword’ :-) NRENs mission broader: –Not only network provisioning, but also services provisioning NRENs more involved in middleware developments/deployment over the last years –Federations, eduroam, Grid –TERENA EuroCAMPs GEANT2/JRA5 working to create a European middleware framework –All NRENs are moving in the same direction –Not all NRENs move at the same pace EARNEST will look at how middleware technologies are expected to evolve in the next couple of years

The EARNEST Foresight Study What is Identity Management? Identity Management = IdM = – Giving each user an electronic identity – Set of technologies and policies to control users’ access to resources

The EARNEST Foresight Study IdM Life Cycle Res1

The EARNEST Foresight Study IdM Life Cycle basicAuthN Res1

The EARNEST Foresight Study IdM Life Cycle basicAuthN Res1 Res2

The EARNEST Foresight Study IdM Life Cycle basicAuthN Res1 Res2 Res1 Res2 SSO

The EARNEST Foresight Study IdM Life Cycle basicAuthN Res1 Res2 Res1 Res2 SSO Resources…

The EARNEST Foresight Study IdM Life Cycle Res1 Res2 SSO basicAuthN Res1 Res2 FederationFederation Resources…

The EARNEST Foresight Study IdM Life Cycle Res1 Res2 SSO basicAuthN Res1 Res2 Resources… FederationFederation

The EARNEST Foresight Study Key Federation Technology SAML, in particular SAML2.0 –Security Assertion Markup Language

The EARNEST Foresight Study IdM in the European higher education In Europe different technologies used for higher education federations: –Liberty Alliance (ID-FF) Norway –Shibboleth (SAML-based) UK, Switzerland, Finland, Under development: Denmark, Italy, Germany –PAPI Spain –A-Select The Netherlands In US: –Mainly Shibboleth Many IdM solutions –Interoperability one of the key factors SAML (2.0) the way to go

The EARNEST Foresight Study Identity Federation Model Identity Provider Service Provider SAML request SAML response Trust redirect

The EARNEST Foresight Study IdM from the vendors perspective Identity Management is definitely a big area of interest for vendors Different approaches for SSO: –Identity Federations: Liberty Alliance and SUN –User centric Identity model Fairly new concept Implemented by Microsoft and OpenID –Abstract identity framework (Higgins, IBM) Close to the usercentric identity Some alliances between vendors Probably to compete/cooperate with Microsoft Trust is a big concern for vendors –The user centric approach seems to guarantee more privacy to the users

The EARNEST Foresight Study User Centric Identity Model Service Provider User = Identity provider –Resource request for user identity information is handled by the user –Users decide which credentials and other personal information to present to the resource In the same way users choose which credit card to use for payment Identity Provider 1 2 3

The EARNEST Foresight Study Middleware Sub-Study Preliminary Findings IBM and Microsoft seem to be working on the same track OpenId has announced cooperation with Microsoft –It seems like something will appear on the market in the next ~6 months Shibboleth developers are also talking to Microsoft It is likely that there will be two major tracks: –User-centric identity model –SAML2-based IdM federations How will these two approaches evolve?

The EARNEST Foresight Study Middleware Sub-Study Preliminary Findings Grid –Sufficient interest from vendors in what is happening in the ‘Grid space’ The new user-centric model might fit Grid requirements, but no concrete plans in this direction Middleware to support lightpaths –Middleware can be used, for instance, to create lightpaths –Different lightpaths for different users

The EARNEST Foresight Study Conclusions Some interviews to be finalised on the control-plane and performances side A report will contain all the findings on the technical study –Initial report is expected to be available in July 2007

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.