Fraunhofer-Institute for Algorithms and Scientific Computing SCAI Licence Management in Grid - A result from the BEinGRID Project.

Slides:

Advertisements

Similar presentations

Instant JChem - current status and what's coming soon. Tim Dudgeon Solutions for Cheminformatics.

Advertisements

ITCR Success through Innovation iTCR Success through Innovation CiTRs DECADE Strategy ä DECADE vision integrated electronic customer access.

1 From Grids to Service-Oriented Knowledge Utilities research challenges Thierry Priol.

Legacy code support for commercial production Grids G.Terstyanszky, T. Kiss, T. Delaitre, S. Winter School of Informatics, University.

1 Towards Building Generic Grid Services Platform A component oriented approach Jeyarajan Thiyagalingam Stavros Isaiadis, Vladimir Getov Distributed and.

25 July, 2014 Hailiang Mei, TU/e Computer Science, System Architecture and Networking 1 Hailiang Mei Remote Terminal Management.

University of Southampton Electronics and Computer Science M-grid: Using Ubiquitous Web Technologies to create a Computational Grid Robert John Walters.

©Ian Sommerville 2004Software Engineering, 7th edition. Chapter 12 Slide 1 Distributed Systems Design 2.

Metering and Licensing of Resources: Kala ’ s General Purpose Approach by Sergiu S. Simmel and Ivan Godard Review by Seung Jun Lee ABSTRACT “ This paper.

CGW 2009 Vine Toolkit A uniform access and portal solution to existing grid middleware services P.Dziubecki, T.Kuczynski, K.Kurowski, D.Szejnfeld, D.Tarnawczyk,

Cross Platform Single Sign On using client certificates Emmanuel Ormancey, Alberto Pace Internet Services group CERN, Information Technology department.

CoreGRID Workpackage 5 Virtual Institute on Grid Information and Monitoring Services Authorizing Grid Resource Access and Consumption Erik Elmroth, Michał.

Rheeve: A Plug-n-Play Peer- to-Peer Computing Platform Wang-kee Poon and Jiannong Cao Department of Computing, The Hong Kong Polytechnic University ICDCSW.

Design of Web-based Systems IS Development: lecture 10.

Extensible Scalable Monitoring for Clusters of Computers Eric Anderson U.C. Berkeley Summer 1997 NOW Retreat.

Presenting a JUnit Testing Framework to a Multi-University Community Romerl Elizes May 4, 2007.

Lesson 11-Virtual Private Networks. Overview Define Virtual Private Networks (VPNs). Deploy User VPNs. Deploy Site VPNs. Understand standard VPN techniques.

Accounting & Billing System for the WEB Centre GDP 19 Donna Crawford (dc899) Chris O’Neill (ckjon101) Amit Shah (ams401) David Newman (drn101) Supervisor.

Integration of Applications MIS3502: Application Integration and Evaluation Paul Weinberg Adapted from material by Arnold Kurtz, David.

GLAM: Global Access Management Sally Chambers University of London TF-AACE Workshop, Malaga: 20 th – 21 st November, 2003 What e-learners and e-librarians.

Sage CRM Developers Course

Designing Efficient Systems Services and Primitives for Next-Generation Data-Centers K. Vaidyanathan, S. Narravula, P. Balaji and D. K. Panda Network Based.

Copyright © cs-tutorial.com. Introduction to Web Development In 1990 and 1991,Tim Berners-Lee created the World Wide Web at the European Laboratory for.

Riccardo Bruno INFN.CT Sevilla, Sep 2007 The GENIUS Grid portal.

Computing services for the Traveling Physicist Alberto Pace CERN – Information Technology Division.

©Ian Sommerville 2006Software Engineering, 8th edition. Chapter 12 Slide 1 Distributed Systems Architectures.

Jaeki Song ISQS6337 JAVA Lecture 16 Other Issues in Java.

Cloud Computing.

Presented by Xiaoyu Qin Virtualized Access Control & Firewall Virtualization.

Flexibility and user-friendliness of grid portals: the PROGRESS approach Michal Kosiedowski

SOFTWARE DESIGN AND ARCHITECTURE LECTURE 09. Review Introduction to architectural styles Distributed architectures – Client Server Architecture – Multi-tier.

Algoval: Evaluation Server Past, Present and Future Simon Lucas Computer Science Dept Essex University 25 January, 2002.

Software Project Documentation. Types of Project Documents  Project Charter  Requirements  Mockups and Prototypes  Test Cases  Architecture / Design.

1 st December 2003 JIM for CDF 1 JIM and SAMGrid for CDF Mòrag Burgon-Lyon University of Glasgow.

Fundamentals of Proxying. Proxy Server Fundamentals  Proxy simply means acting on someone other’s behalf  A Proxy acts on behalf of the client or user.

1 Resource Provisioning Overview Laurence Field 12 April 2015.

Hands-On Microsoft Windows Server Implementing Microsoft Internet Information Services Microsoft Internet Information Services (IIS) –Software included.

NA-MIC National Alliance for Medical Image Computing UCSD: Engineering Core 2 Portal and Grid Infrastructure.

SEE-GRID-SCI The SEE-GRID-SCI initiative is co-funded by the European Commission under the FP7 Research Infrastructures contract no.

Grid Execution Management for Legacy Code Applications Grid Enabling Legacy Applications.

Experiment Management System CSE 423 Aaron Kloc Jordan Harstad Robert Sorensen Robert Trevino Nicolas Tjioe Status Report Presentation Industry Mentor:

INFSO-RI Enabling Grids for E-sciencE EGEE is a project funded by the European Union under contract INFSO-RI Grid Accounting.

Grid and Cloud Computing Alessandro Usai SWITCH Sergio Maffioletti Grid Computing Competence Centre - UZH/GC3

International Symposium on Grid Computing (ISGC-07), Taipei - March 26-29, 2007 Of 16 1 A Novel Grid Resource Broker Cum Meta Scheduler - Asvija B System.

Adrian Jackson, Stephen Booth EPCC Resource Usage Monitoring and Accounting.

WEB SERVER SOFTWARE FEATURE SETS

DTI Mission – 29 June LCG Security Ian Neilson LCG Security Officer Grid Deployment Group CERN.

The SEE-GRID-SCI initiative is co-funded by the European Commission under the FP7 Research Infrastructures contract no Workflow repository, user.

Data Communications and Networks Chapter 9 – Distributed Systems ICT-BVF8.1- Data Communications and Network Trainer: Dr. Abbes Sebihi.

Integration integration of all the information flowing through a company – financial and accounting, human resource information, supply chain information,

What the $#*! IS my password? Secure Online Password Storage Lon Smith Aaron Gremmert.

Accounting in DataGrid HLR software demo Andrea Guarise Milano, September 11, 2001.

VPN. CONFIDENTIAL Agenda Introduction Types of VPN What are VPN Tokens Types of VPN Tokens RSA How tokens Work How does a user login to VPN using VPN.

Distributed Systems Ryan Chris Van Kevin. Kinds of Systems Distributed Operating System –Offers Transparent View of Network –Controls multiprocessors.

Grid Activities in CMS Asad Samar (Caltech) PPDG meeting, Argonne July 13-14, 2000.

Grid Execution Management for Legacy Code Architecture Exposing legacy applications as Grid services: the GEMLCA approach Centre.

Mobile Analyzer A Distributed Computing Platform Juho Karppinen Helsinki Institute of Physics Technology Program May 23th, 2002 Mobile.

TAKE CHARGE OF YOUR FINANCES Submitted by- Ankita Pabale WRO ONLINE BANKING.

IT 5433 LM1. Learning Objectives Understand key terms in database Explain file processing systems List parts of a database environment Explain types of.

DGAS Distributed Grid Accounting System INFN Workshop /05/1009, Palau Giuseppe Patania Andrea Guarise 6/18/20161.

Antonio Fuentes RedIRIS Barcelona, 15 Abril 2008 The GENIUS Grid portal.

Distributed Systems Architectures. Topics covered l Client-server architectures l Distributed object architectures l Inter-organisational computing.

Advanced Higher Computing Science

Unit 3 Virtualization.

Business System Development

The Client/Server Database Environment

Pipeline Execution Environment

Distribution and components

Introduction to Cloud Computing

Presentation transcript:

Fraunhofer-Institute for Algorithms and Scientific Computing SCAI Licence Management in Grid - A result from the BEinGRID Project

Fraunhofer-Institute for Algorithms and Scientific Computing SCAI BEinGRID

Fraunhofer-Institute for Algorithms and Scientific Computing SCAI License Management BEinGRID License management in BEinGRID Use-case and requirements analysis. Design patterns and component descriptions. License management architecture for Grids. Requirements Flexible –must be usable in different scenarios Generic – Support for every middleware Needs to support all currently existing client server license management mechanisms. Local use (Cluster, workstation)

Fraunhofer-Institute for Algorithms and Scientific Computing SCAI LM - Current Situation Commercial applications in the industry are commonly used together with a fixed client server licence management system. The authorization of currently used client-server based license mechanisms relies on an IP-centric scheme. Any user of a shared (Grid) resources may access the exposed license server. Secure and authorized access to a local or remote license server in grid environments has not been possible so far. The use of commercial ISV applications in grid environments therefore was not possible either.

Fraunhofer-Institute for Algorithms and Scientific Computing SCAI Use case Organisation BSYS owns a certain number of licenses for an ISV Code, runs a corresponding FlexNet License Server wants to use these licenses for calculations at a grid resource provider. BSYS requires cost-unit accounting The resource provider might not be known at job submission time. In order to perform the calculation with the ISV Code, organization BSYS would have to open its firewall and allow any potential remote grid site to access its license server.

Fraunhofer-Institute for Algorithms and Scientific Computing SCAI Goals Grid-friendly license management Accepted by ISVs Compatible with different grid middlewares Adjustment of existing client-server license management systems to the grid: Allows the usage of existing solutions in the grid, e.g. Flexnet Idea: PIN/TAN concept

Fraunhofer-Institute for Algorithms and Scientific Computing SCAI PIN/TAN Concept Similar to Online-Banking a user that wants to submit jobs to the grid receives: a list of one time passwords (TANs) a license account (PIN) When a user submits a job, he provides these as additional parameters. Validation of PIN/TAN is done on the provider site. If the validation was successful the user can access the licenses via a license proxy.

Fraunhofer-Institute for Algorithms and Scientific Computing SCAI Solution Authorize the upstream proxy access with one-time passwords in order to provide a generic secure solution for hostile environments. Transparently reroute the proprietary encrypted socket- based communication between application and license server via a SOCKS proxy-chain.

Fraunhofer-Institute for Algorithms and Scientific Computing SCAI License Management Architecture

Fraunhofer-Institute for Algorithms and Scientific Computing SCAI Capabilities Provider: Detailed accounting and billing through license accounts. Customer: License accounting web service. Self-imposed budget-control. Web service for handling of the one-time passwords (generation of tan lists, license accounts and their properties) ISV: No need to modify their software.

Fraunhofer-Institute for Algorithms and Scientific Computing SCAI GUI

Fraunhofer-Institute for Algorithms and Scientific Computing SCAI Server components Grid Middleware Socks5 proxy: tsocks Tan management: via pam_sotp Accounting records: mySQL Database Webserver: Tomcat + Axis2 Client server license management, i.e. FlexNet

Fraunhofer-Institute for Algorithms and Scientific Computing SCAI Conclusion and outlook We have designed and implemented a novel license management architecture which supports the entire class of client-server based license mechanisms in grid environments. This support is a pre-requisite for the use of commercial ISV applications in grid environments. The solution will hence substantially enlarge the grid market size in the area of on-demand computing by industry. The license management architecture supports the required non-interruptive transition towards a pay-per-use business model for licenses.

Fraunhofer-Institute for Algorithms and Scientific Computing SCAI Conclusion and outlook Availability Can be downloaded in the next view weeks from Exploitation Requests from T-Systems Spain (Automotive), HWW, German Institute for Reactor Safety (GRS), German Aerospace Research (DLR)