London e-Science Centre Imperial College London Making the Grid Pay Economic Services - Pricing and Payment William Lee.

Slides:



Advertisements
Similar presentations
Abstraction Layers Why do we need them? –Protection against change Where in the hourglass do we put them? –Computer Scientist perspective Expose low-level.
Advertisements

GT 4 Security Goals & Plans Sam Meder
Mobile Agents Mouse House Creative Technologies Mike OBrien.
Web Service Ahmed Gamal Ahmed Nile University Bioinformatics Group
SOA and Web Services. SOA Architecture Explaination Transport protocols - communicate between a service and a requester. Messaging layer - enables the.
Latest techniques and Applications in Interprocess Communication and Coordination Xiaoou Zhang.
FREMA: e-Learning Framework Reference Model for Assessment David Millard Yvonne Howard IAM, DSSE, LTG University of Southampton, UK.
Application Architectures Vijayan Sugumaran Department of DIS Oakland University.
Secure Systems Research Group - FAU Web Services Standards Presented by Keiko Hashizume.
Globus 4 Guy Warner NeSC Training.
Component Software: A New Software Engineering Course H. Conrad Cunningham, Yi Liu, Pallavi Tadepalli, and Mingxian Fu Software Architecture Research Group.
Object and component “wiring” standards This presentation reviews the features of software component wiring and the emerging world of XML-based standards.
Web services: Why and How OOPSLA 2001 F. Curbera, W.Nagy, S.Weerawarana Nclab, Jungsook Kim.
An XMPP (Extensible Message and Presence Protocol) based implementation for NHIN Direct 1.
Accounting for the Grid Usage Records and a Resource Usage Service.
Lecture 23 Internet Authentication Applications modified from slides of Lawrie Brown.
The GRIMOIRES Service Registry Weijian Fang and Luc Moreau School of Electronics and Computer Science University of Southampton.
WS-Security: SOAP Message Security Web-enhanced Information Management (WHIM) Justin R. Wang Professor Kaiser.
ANSTO E-Science workshop Romain Quilici University of Sydney CIMA CIMA Instrument Remote Control Instrument Remote Control Integration with GridSphere.
Web Services Part II Yongqun He. J2EE-based Web Services.
GT Components. Globus Toolkit A “toolkit” of services and packages for creating the basic grid computing infrastructure Higher level tools added to this.
International Telecommunication Union Geneva, 9(pm)-10 February 2009 ITU-T Security Standardization on Mobile Web Services Lee, Jae Seung Special Fellow,
Grid-enabling OGC Web Services Andrew Woolf, Arif Shaon STFC e-Science Centre Rutherford Appleton Lab.
SAMANVITHA RAMAYANAM 18 TH FEBRUARY 2010 CPE 691 LAYERED APPLICATION.
Web Services Kanda Runapongsa Dept. of Computer Engineering Khon Kaen University.
Computer Security: Principles and Practice First Edition by William Stallings and Lawrie Brown Lecture slides by Lawrie Brown Chapter 22 – Internet Authentication.
COMP3019 Coursework: Introduction to GridSAM Steve Crouch School of Electronics and Computer Science.
17 March 2008 © 2008 The University of Edinburgh, European Microsoft Innovation Center and University of Southampton IT Innovation Centre 1 NextGRID Security.
Random Logic l Forum.NET l Web Services Enhancements for Microsoft.NET (WSE) Forum.NET ● October 4th, 2006.
© Copyright IONA Technologies 2002 Colby Dyess Senior Engineer, XMLBus Hacks, cracks and 13 year olds! Avoiding Web Services Security Nightmares Preparing.
An Ontological Framework for Web Service Processes By Claus Pahl and Ronan Barrett.
GridSAM - A Standards Based Approach to Job Submission Through Web Services William Lee and Stephen McGough London e-Science Centre Department of Computing,
Secure Systems Research Group - FAU Patterns for Web Services Security Standards Presented by Keiko Hashizume.
Semantic Web Technologies Research Topics and Projects discussion Brief Readings Discussion Research Presentations.
Practical Access Control Using NDG Security e-Science All Hands Meeting 11 September 2007 Philip Kershaw BADC Bryan Lawrence BADC Jon Blower ESSC.
NA-MIC National Alliance for Medical Image Computing UCSD: Engineering Core 2 Portal and Grid Infrastructure.
XML and Web Services (II/2546)
Copyright © 2003 Jorgen Thelin / Cape Clear Software 1 A Web Services Security Framework Jorgen Thelin Chief Scientist Cape Clear Software Inc.
Kemal Baykal Rasim Ismayilov
Utility Computing: Security & Trust Issues Dr Steven Newhouse Technical Director London e-Science Centre Department of Computing, Imperial College London.
Service Proforma Middleware Workshop. Notes Please complete as much of this proforma as possible – it will help make the workshop more informative & productive.
1 G52IWS: Web Services Chris Greenhalgh. 2 Contents The World Wide Web Web Services example scenario Motivations Basic Operational Model Supporting standards.
Java Web Services CSCI 4300 Diagrams from the Sun Java Web Services Tutorial,
Resource Brokering on Complex Grids EUROGRID and GRIP Presented by John Brooke ESNW October 3/4 UK/Japan N+N.
Providing web services to mobile users: The architecture design of an m-service portal Minder Chen - Dongsong Zhang - Lina Zhou Presented by: Juan M. Cubillos.
Service Proforma Middleware Workshop. Notes Please complete as much of this proforma as possible – it will help make the workshop more informative & productive.
Intro to Web Services Dr. John P. Abraham UTPA. What are Web Services? Applications execute across multiple computers on a network.  The machine on which.
GRID ANATOMY Advanced Computing Concepts – Dr. Emmanuel Pilli.
GESA: Grid Economic Services Architecture Steven Newhouse Jon MacLaren
Policy-Based Dynamic Negotiation for Grid Services Authorization Ionut Constandache, Daniel Olmedilla, Wolfgang Nejdl Semantic Web Policy Workshop, ISWC’05.
INFSO-RI Enabling Grids for E-sciencE Web Services Mike Mineter National e-Science Centre, Edinburgh.
User Authentication  fundamental security building block basis of access control & user accountability  is the process of verifying an identity claimed.
Rights Management for Shared Collections Storage Resource Broker Reagan W. Moore
1 OGSA-DAI: Service Grids Neil P Chue Hong. 2 Motivation  Access to data is a necessity on the Grid  The ability to integrate different data resources.
The GT 4 GRAM Service Sam Meder Middleware Workshop.
A service Oriented Architecture & Web Service Technology.
Frascati, 2-3 July 2008 Slide 1 User Management compliance testing for G-POD HMA-T Phase 2 KO Meeting 2-3 July 2008, Frascati Andrew Woolf, STFC Rutherford.
J2EE Platform Overview (Application Architecture)
SuperComputing 2003 “The Great Academia / Industry Grid Debate” ?
Sabri Kızanlık Ural Emekçi
Web Ontology Language for Service (OWL-S)
Web services, WSDL, SOAP and UDDI
Inventory of Distributed Computing Concepts
SAMANVITHA RAMAYANAM 18TH FEBRUARY 2010 CPE 691
The Anatomy and The Physiology of the Grid
The Anatomy and The Physiology of the Grid
Grid Systems: What do we need from web service standards?
Presentation transcript:

London e-Science Centre Imperial College London Making the Grid Pay Economic Services - Pricing and Payment William Lee

London e-Science Centre Imperial College London Introduction  In the Grid, we want to “Decouple hosting and software provision to enable shared and flexible access to resource across multiple administrative domains”

London e-Science Centre Imperial College London From Sharing to Trading  Accessing shared grid resources without any pre-existing trust relationship.  Why should I trust that service?  Why should the service trust you?  How services differentiate themselves?

London e-Science Centre Imperial College London Four Fundamental Steps in a Trade  Introduction  Discovery / Semantic Grid  Price Agreement  Negotiation as a process to agree a price  Settling a Contract  Ends negotiation process with a monetary commitment  Executing a Trade  Service Invocation  Usage Logging  Monetary Transaction

London e-Science Centre Imperial College London Application Service Provider Software Provider Payment Provider Hosting Provider Client Negotiate and pay for access to a single service Negotiate Price and QoS Invoke Service NegotiationPortTypeAppSpecificPortType PaymentPortType Authorise Payment Check Payment

London e-Science Centre Imperial College London Sessional Activities NegotiationPortType Activity Diagram ClientNegotiationPortType getNegotiableTerms() NegotiableTerms Price:(Integer, 10,2000) Param1:(Float, 1, 100) Param2:(Set, {a, b, c}) negotiate(Proposal) Param1 > 20 and Param1 < 40 and Param2 = {a} Param1 = 30 and Param2 = {a} Price = 400 Proposal Reasoning on internal constraints and objectives commit() Once all terms have been instantiated and client satisfies Agreement Commit on the last proposed terms in the session Signed document containing agreed terms negotiate(Proposal) Proposal … AppSpecificPortType serviceOp() Send Agreement in SOAP header as ticket

London e-Science Centre Imperial College London Making Service Negotiable  Decorator Pattern AppSpecificPortTypeNegotiationPortType serviceOp() Assert agreed usage negotiate() commit()

London e-Science Centre Imperial College London Current Design  Proposals are defined as constraints on terms.  Commit operation can carry payment information to specify client’s monetary commitment.  Session information is carried by a unique id element in the proposal document. Might consider other Web Service standards for session.

London e-Science Centre Imperial College London Payment Service Requirements  Abstraction, Abstraction, Abstraction  Realisation with multiple Payment Systems  Identity Delegation  Commodity Security  Extensive use of WS-Security, XML- Signature  Resists Replay Attack

London e-Science Centre Imperial College London PaymentPortType Activity Diagram ClientChargeableServicePaymentPortType commit(PaymentInfo) PaymentInfo S: Client authoriseTransaction(PaymentInfo) PaymentInfo S: Client, Service Acknowledgement ID#, PaymentInfo S: PaymentProvider Agreement Terms, ID#, PaymentInfo S: PaymentProvider, Service serviceOp() Agreement carried in SOAP header S: PaymentProvider, Service, Client completeTransaction(PaymentInfo) ID# S: Client, Service

London e-Science Centre Imperial College London PaymentPortType  getPaymentSystem  Input: None  Output: informational document on supported payment system  Faults: None  authoriseTransaction  Input: Account Information, Amount, max transactions, expiry  Output: signed acknowledgement of transaction ID#  Faults: FromAccountDoesNotExist, ToAccountDoesNotExist, SignatureFailed, InsufficientFund  completeTransaction  Input: signed transaction ID#  Output: none  Faults: SignatureFailed, InsufficientFund, TransactionAlreadyComplete, TransactionDoesNotExist, TransactionHasExpired, etc..

London e-Science Centre Imperial College London Foiled Attacks  Charging without Permission  Service invocation requires client signed authorisation, which the PaymentProvider recognises  Replay  Once and only once. Invocation includes transaction ID# + signed timestamp. Service detects replay by keeping a cached list of recent messages.  PaymentProvider knows maximum number of transactions, allows micro-payment.

London e-Science Centre Imperial College London Current Implementation AppSpecificPortTypeNegotiationPortType WS-Security JAX-RPC Handler Instrumented Service Logic to ensure terms are not violated NegotiationSessionStore AgreementStore RDBMS NegotiationStrategy Reasoning Engine / Human Operator Term Assertion API

London e-Science Centre Imperial College London Current Implementation AccountPortTypePaymentPortType WS-Security JAX-RPC Handler PaymentPortTypeImpl BACS, VISA, etc.. AccountEJB

London e-Science Centre Imperial College London How ‘standard’ is the service?  Interface Design  WSDL to describe interface - WS-I (1)  SOAP for messaging (1)  WS-Security to sign message body with client/service certificate (2)  XML-Signature and XML-Encryption to sign and encrypt payment information (1) Risk: Low

London e-Science Centre Imperial College London Service Dependencies  Implementation  Java J2EE 1.4 Specification  Currently using Sun Application Server v.8.0. Follow standard J2EE API and deployment model to achieve high portability across compliant containers.  Take advantage of persistence and security role mapping.  RDBMS: storing agreement  Verisign TSIK toolkit: WS-Security

London e-Science Centre Imperial College London AAA & Security  What authentication mechanism do you use?  WS-Security X509 Certificate Profile  What authorisation mechanism do you use?  J2EE Role-based System  What accounting mechanism do you use?  Java Logging  Does service interaction need to be encrypted?  Yes

London e-Science Centre Imperial College London The Shape of Things to Come  Evaluation of monetary Payment Systems  Complex pricing strategy  Tradable contracts  Composition of Chargeable Services  Workflow Optimisation  Compensation if the service does not deliver?  Brokering - e-Science North West  True decoupling of software and hosting

London e-Science Centre Imperial College London Conclusion  Economic Services enable a public shared resource grid. Not just a scheduling mechanism.  Discovery and Introduction can reuse existing WS standards.  Settlement and Execution requires session feature. Can use any off-the-shelf specifications once available.

London e-Science Centre Imperial College London A Market for Computational Services  UK core e-Science Programme project  Explore interface and protocols for trading grid services  Funded by the Department of Trade and Industry  Collaborators  London e-Science Centre  e-Science Centre North West  Southampton e-Science Centre  UK Grid Support Centre  Astrophysics at LJM 

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.