Demonstrations at PRAGMA 13 10 demos are nominated by WG chairs Did not call for demos. We will select the best demo(s) Criteria is under discussion. Notes.

Slides:

Advertisements

Similar presentations

© 2007 Cisco Systems, Inc. All rights reserved.ISCW-Mod3_L7 1 Network Security 2 Module 6 – Configure Remote Access VPN.

Advertisements

Resource WG Breakout. Agenda How we will support/develop data grid testbed and possible applications (1 st day) –Introduction of Gfarm (Osamu) –Introduction.

Lousy Introduction into SWITCHaai

Reports from Resource Breakout PRAGMA 16 KISTI, Korea.

Resources WG Report Back. Account Creation Complaint –Too difficult to obtain user account on all resources Observations –Just ask Cindy and she will.

Resource WG Update PRAGMA 14 Mason Katz, Yoshio Tanaka, Cindy Zheng.

GEO WG updates Resource WG established the GEO group in PRAGMA VO GEO WG members easily make registration Registered members can access.

Satellite Database Federations on GEO Grid Portal Naotaka YAMAMOTO AIST Taiwan Mar. 12,

Reports from Resource Breakout PRAGMA 15 USM, Malaysia.

Resource WG Update PRAGMA 14 Mason Katz, Yoshio Tanaka, Cindy Zheng.

Resource WG PRAGMA Mason Katz, Yoshio Tanaka, Cindy Zheng.

Resource/data WG Summary Yoshio Tanaka Mason Katz.

Resource WG Summary Mason Katz, Yoshio Tanaka. Next generation resources on PRAGMA Status – Next generation resource (VM-based) in PRAGMA by UCSD (proof.

PRAGMA BioSciences Portal Raj Chhabra Susumu Date Junya Seo Yohei Sawai.

Security Design and Solution in ARC1 Weizhong Qiang University of Oslo April 9, 2008.

EGEE-II INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks Interoperability AAI and Grids Christoph.

EGEE-II INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks MyProxy and EGEE Ludek Matyska and Daniel.

Scaling TeraGrid Access A Testbed for Attribute-based Authorization and Leveraging Campus Identity Management

MyProxy Jim Basney Senior Research Scientist NCSA

Open Grid Forum 19 January 31, 2007 Chapel Hill, NC Stephen Langella Ohio State University Grid Authentication and Authorization with.

Combining the strengths of UMIST and The Victoria University of Manchester Adapting to Federated Identity SHEBANGS Shibboleth Enabled Bridge to Access.

Grid Tech Team Certificates, Monitoring, & Firewall September 15, 2003 Chiang Mai, Thailand Allan Doyle, NASA With the help of the entire Grid Tech Team.

GT 4 Security Goals & Plans Sam Meder

The National Grid Service and OGSA-DAI Mike Mineter

Current status of grids: the need for standards Mike Mineter TOE-NeSC, Edinburgh.

VO Support and directions in OMII-UK Steven Newhouse, Director.

EGI-InSPIRE RI EGI-InSPIRE EGI-InSPIRE RI AAI in EGI Status and Evolution Peter Solagna Senior Operations Manager

DOE’s PKI service for Grids Tony J. Genovese Malaga, Spain November 2003.

MTA SZTAKI Hungarian Academy of Sciences Grid Computing Course Porto, January Introduction to Grid portals Gergely Sipos

National Center for Supercomputing Applications Integrating MyProxy with Site Authentication Jim Basney Senior Research Scientist National Center for Supercomputing.

EDINA 20 th March 2008 EDINA Geo/Grid - Security Prof. Richard O. Sinnott Technical Director, National e-Science Centre University of Glasgow, Scotland.

1-2.1 Grid computing infrastructure software Brief introduction to Globus © 2010 B. Wilkinson/Clayton Ferner. Spring 2010 Grid computing course. Modification.

Sergey Belov, LIT JINR 15 September, NEC’2011, Varna, Bulgaria.

EGEE Security Area 13 May 2004 EGEE Security Area Stakeholders JRA3 middleware Architecture What we have for Unix and Java What.

National Computational Science National Center for Supercomputing Applications National Computational Science MyProxy: An Online Credential Repository.

Riccardo Bruno INFN.CT Sevilla, Sep 2007 The GENIUS Grid portal.

FIM-related activities and issues being discussed in Japan 1.GEO Grid Yoshio Tanaka (AIST) 2.HPCI, GakuNin Eisaku Sakane, Kento Aida (NII)

How Grid Security works in GEO Sciences N. Yamamoto, Y. Tanaka, I. Kojima, S. Sekiguchi AIST Oct. 28, 2009.

TeraGrid Science Gateways: Scaling TeraGrid Access Aaron Shelmire¹, Jim Basney², Jim Marsteller¹, Von Welch²,

Resource WG PRAGMA 18 Mason Katz, Yoshio Tanaka.

2005 © SWITCH Perspectives of Integrating AAI with Grid in EGEE-2 Christoph Witzig Amsterdam, October 17, 2005.

GEON meeting - May 22, 2006 GAMA 2.0 Features and Status Kurt Mueller SDSC.

PRAGMA 17 – PRAGMA 18 Resources Group. PRAGMA Grid 28 institutions in 17 countries/regions, 22 compute sites (+ 7 site in preparation) UZH Switzerland.

National Computational Science National Center for Supercomputing Applications National Computational Science NCSA-IPG Collaboration Projects Overview.

GridShib: Grid/Shibboleth Interoperability September 14, 2006 Washington, DC Tom Barton, Tim Freeman, Kate Keahey, Raj Kettimuthu, Tom Scavo, Frank Siebenlist,

1 For understanding the earth - Concept and System to integrate Global Earth Observation data - The 4 th ADC meeting May 14 th, 2007 National.

JISC Middleware Security Workshop 20/10/05© 2005 University of Kent.1 The PERMIS Authorisation Infrastructure David Chadwick

23-Oct-03D.P.Kelsey, LCG Security Update, HEPiX1 LCG Security Update HEPiX-HEPNT, TRIUMF, 23 October 2003 David Kelsey CCLRC/RAL, UK

EDG Security European DataGrid Project Security Coordination Group

Holding slide prior to starting show. A Portlet Interface for Computational Electromagnetics on the Grid Maria Lin and David Walker Cardiff University.

All Hands Meeting 2005 BIRN Portal Architecture: Security Jana Nguyen

OGF22 25 th February 2008 OGF22 Demo Slides Prof. Richard O. Sinnott Technical Director, National e-Science Centre University of Glasgow, Scotland

VO. VOMS 1. Authentication2. Credentials 3. Authentication Client Resource.

Getting started DIRAC Project. Outline  DIRAC information system  Documentation sources  DIRAC users and groups  Registration with DIRAC  Getting.

National Computational Science National Center for Supercomputing Applications National Computational Science GSI Online Credential Retrieval Requirements.

Leveraging the InCommon Federation to access the NSF TeraGrid Jim Basney Senior Research Scientist National Center for Supercomputing Applications University.

INFSO-RI Enabling Grids for E-sciencE LCAS/LCMAPS and WSS Site Access Control boundary conditions David Groep et al. NIKHEF.

Shibboleth & Grid Integration STFC and University of Oxford (and University of Manchester)

Ad Hoc VO Akylbek Zhumabayev Images. Node Discovery vs. Registration VO Node Resource User discover register Resource.

1 Earth System Grid Center for Enabling Technologies ESG-CET Security January 7, 2016 Frank Siebenlist Rachana Ananthakrishnan Neill Miller ESG-CET All-Hands.

DTI Mission – 29 June LCG Security Ian Neilson LCG Security Officer Grid Deployment Group CERN.

Standards driven AAA for Job Management within the OMII-UK distribution Steven Newhouse Director, OMII-UK

Security Solutions Rachana Ananthakrishnan University of Chicago.

The GRIDS Center, part of the NSF Middleware Initiative Grid Security Overview presented by Von Welch National Center for Supercomputing.

Gridification progress report David Groep, Oscar Koeroo Wim Som de Cerff, Gerben Venekamp Martijn Steenbakkers.

Overview of the New Security Model Akos Frohner (CERN) WP8 Meeting VI DataGRID Conference Barcelone, May 2003.

EGI-InSPIRE RI EGI-InSPIRE EGI-InSPIRE RI EGI Services for Distributed e-Infrastructure Access Tiziana Ferrari on behalf.

Antonio Fuentes RedIRIS Barcelona, 15 Abril 2008 The GENIUS Grid portal.

Update on EDG Security (VOMS)

Grid Computing Software Interface

Presentation transcript:

Demonstrations at PRAGMA demos are nominated by WG chairs Did not call for demos. We will select the best demo(s) Criteria is under discussion. Notes for presenters Please focus on demonstration 20 minutes including Q&A and margins 15 minutes for the demo followed by few minutes Q&A Keep your time! Schedule is tight.

Demonstrations Session 1 (Mon. 15: :15) X-SIGMA CSF4 Meta-Scheduler Account Mgmt. using GAMA and VOMS Amber 8 on PRAGMA Gfarm Datagrid Session 2 (Tue. 9: :10) The Avian Flu Grid CSE-Online with PRAGMA and Thailand National Grid Session 3 (Tue 10: :00) 3D High-Resolution GIS Taiwan Platform Prompt satellite image processing on GEO Grid portal Data Mgmt. at Kenting s Underwater Ecological Observatory GEON: Networking Indian Geoscience Community through iGEON

National Institute of Advanced Industrial Science and Technology Account Management using GAMA and VOMS Yoshio Tanaka Grid Technology Research Center, AIST, Japan

Two objectives of this demonstration To demonstrate technologies used in GEO Grid Security infrastructure. Prologue of Nakamura-san s GEO Grid demo (tomorrow morning). To introduce VOMS for possible use on PRAGMA Grid. Reduce administrative work at each site.

Overview and usage model of the GEO Grid system

Requirements for the Security Infrastructure AuthN & AuthZ for computing services, data services, and their integrations. Respecting data/computing service provider s publication policies. Ease of use For end users For service providers For VO admins

Implementation Based on GSI Use GAMA for accounts/certificates management Use VOMS for Group/role-based flexible access control Reducing service provider s administrative works All services are expected to support GSI/VOMS- enabled AuthN+AuthZ OGSA-DAI for data OGSA-DAI v3.0 will support VOMS for AuthZ GRAM for computation Apache + mod_gridsite for W*S

CA Account DB VOMS server MyProxy X.509 long-lived certificates X.509 proxy certificates w/ VOMS attributes GEO Grid Admin login by username / password account creation Project Admin User A w/o certificate User B w/ certificate B login by certificate AB B X.509 proxy certificates Anonymous User anonymous login request Service Provider GEO Grid Portal Security credential repository GAMA Data / Computation Service PEP GridMapAuthZ PDP BlackList PDP PDP #n WhiteList PDP VOMS PDP PDPs Decision request Decision Result Access Control by Account Mapping All members are mapped to a single account Users are mapped to local account based on groups (and role) Users are mapped to pool account based on groups (and role) Data / Computation

Demonstration Prerequisites GAMA server + GridSphere + GridPortlet VOMS server GridFTP server + LCAS/LCMAPS Pre-WS GRAM + LCAS/LCMAPS Login and submit jobs by an existing user Create a new account (and add to VOs) Request an account (by an end user) Approve the request (by a VO admin) Add the user to the VO (by a VO admin) Login and submit jobs by a new user

Still many issues to do Enrich GAMA-VOMS interface Display credential info with VOMS attr. Link GAMA admin tool and VOMS admin tool Enable to specify roles for generation of a VOMS proxy Improve account request procedures of GAMA Build and package a toolkit for easy installation/configuration Draft an Authentication Profile for Portal- based Credential Services