Presentation is loading. Please wait.

Presentation is loading. Please wait.

Tutorial on Science Gateways, Roma, 03.06.2013 Riccardo Rotondo Introduction on Science Gateway Understanding access and functionalities.

Published byBritton Griffin Modified over 8 years ago

Similar presentations

Presentation on theme: "Tutorial on Science Gateways, Roma, 03.06.2013 Riccardo Rotondo Introduction on Science Gateway Understanding access and functionalities."— Presentation transcript:

1 Tutorial on Science Gateways, Roma, 03.06.2013 Riccardo Rotondo Introduction on Science Gateway Understanding access and functionalities

2 Riccardo Rotondo Tutorial on Science Gateways, Roma, 03.06.2013 Outline  What is a Science Gateway ?  The Catania Science Gateway Framework  General Architecture  Authentication, Authorisation and Roles  Catania Grid Engine  Roles  Use Case:  The DECIDE Science Gateway  The GARR Science Gateway

3 Tutorial on Science Gateways, Roma, 03.06.2013 Riccardo Rotondo

4 Reference Model Riccardo Rotondo Tutorial on Science Gateways, Roma, 03.06.2013 Science Gateway Science Gateway Scientific Application E-Collaboration Social Application Standard Services Users of different Institutions members of GARR and/or international partners involved in European Projects of the Consortium GRID CLOUD Local Cluster

5 Reference Model Riccardo Rotondo Tutorial on Science Gateways, Roma, 03.06.2013 Science Gateway Science Gateway Scientific Application E-Collaboration Social Application Users of different Institutions members of GARR and/or international partners involved in European Projects of the Consortium Standard-based (SAGA) middleware-independent Grid Engine Standard-based (SAGA) middleware-independent Grid Engine

6 Requirements  Authentication and Autorisation  SAML, LDAP  Application middleware indipendent  jSAGA, SAGA  Standard Java Technology  JSR 168/286  Web Technology  Web CMS  Wiki, Blog, Messages Board, Vconf, Adobe Connect  Portal Framework  Standard Adoption  Reusability  Simplicity  Easy usage and access Tutorial on Science Gateways, Roma, 03.06.2013 Riccardo Rotondo

7 Tutorial on Science Gateways, Roma, 03.06.2013 Riccardo Rotondo

8 Terena Identity Federations Riccardo Rotondo Tutorial on Science Gateways, Roma, 03.06.2013 http://www.terena.org/about/terena-members- map.html

9 Federated Identity Management (FIdM) Riccardo Rotondo Tutorial on Science Gateways, Roma, 03.06.2013  In the web technology arena many approaches are available to federate authentication  A standard provided by OASIS defines the Security Assertion Markup Language (SAML)  Several tools are available, e.g.:  Shibboleth  SimpleSAMLphp  Organisations can rely on traditional tools to manage users:  LDAP, CAS, plain text, etc.  Free and Open Source

10 Enabling SGs to FIdM Riccardo Rotondo Tutorial on Science Gateways, Roma, 03.06.2013  Access to e-Infrastructure services requires authentication.  The distributed/cross-domain nature of resources requires, in some case, strong security mechanisms  SGs willing to provide easy access to these services  Some institutions want to maintain the control of their own users’ authentication

11 So a federation is made of…  A collection of Identity Providers that follows a defined set of rules and policy.  Identity providers (IdPs) are responsible for authenticating a closed group of users (i.e. of the same organisation)  Each IdPs regulate access to a set of Service Providers (i.e. mail server of the mentioned organisation) Riccardo Rotondo Tutorial on Science Gateways, Roma, 03.06.2013

12 Federated User Science Gateway Tutorial on Science Gateways, Roma, 03.06.2013 Riccardo Rotondo

13 Social User Science Gateway Tutorial on Science Gateways, Roma, 03.06.2013 Riccardo Rotondo

14 Authorisation request  The first time users access the Science Gateway their IdP authenticates them  LDAP server connected to the Service Provider (SP) cannot authorise the users  SP leads users automatically to the registration form  A part from them data, users can request for a specific role Riccardo Rotondo Tutorial on Science Gateways, Roma, 03.06.2013

15 Riccardo Rotondo Tutorial on Science Gateways, Roma, 03.06.2013 Authorisation request

16 Authorisation Managment Riccardo Rotondo Tutorial on Science Gateways, Roma, 03.06.2013

17 Registration  Users not belonging to any of the enabled federation can register to the catch all Identity Provider of the GrIDP federation Riccardo Rotondo Tutorial on Science Gateways, Roma, 03.06.2013

18 Riccardo Rotondo

19 Integrated Services Riccardo Rotondo Tutorial on Science Gateways, Roma, 03.06.2013 GRID CLOUD JSR 168/286 Catania Science Gateway Framework Local Cluster

20 Catania Science Gateway Framework Riccardo Rotondo Tutorial on Science Gateways, Roma, 03.06.2013 Catania Science Gateway Framework Grid Engine Data On Grid Services Cloud Services JSAGA Adaptors

21 Usage Workflow Riccardo Rotondo 1. Sign in eTokenServer User Tracking DB 3. Proxy request 4. Proxy transfer 5. Grid Submission 5. Tracking 6. Getting Results Tutorial on Science Gateways, Roma, 03.06.2013 2. Grid Request

22 Access Riccardo Rotondo Tutorial on Science Gateways, Roma, 03.06.2013

23 Applications accessing grid services Riccardo Rotondo  12 applications developed among 5 different countries and 3 continents (Europe, Latin America and Asia);  4 scientific domains:  Life Science;  Mathematic & Computer Science;  High Energy Physics;  Cultural Heritage. Tutorial on Science Gateways, Roma, 03.06.2013

24 Job Submission Riccardo Rotondo Tutorial on Science Gateways, Roma, 03.06.2013

25 Job Submission Riccardo Rotondo Tutorial on Science Gateways, Roma, 03.06.2013

26 My Workspace – Active Job List Riccardo Rotondo Tutorial on Science Gateways, Roma, 03.06.2013

27 My Workspace - Done Job List Riccardo Rotondo Tutorial on Science Gateways, Roma, 03.06.2013

28 My Workspace – MyJobsMap Riccardo Rotondo Tutorial on Science Gateways, Roma, 03.06.2013

29 My Data Riccardo Rotondo Tutorial on Science Gateways, Roma, 03.06.2013 Sharing features among users will soon be added

30 Roles & Privileges  Surfing a Science Gateway changes according different roles  Mapping between Liferay roles and LDAP group  Similar mapping available on grid (i.e. voms roles)  Liferay allows administrator to fully customize users experience assigning different roles to each components (pages, wikis, plugins, data) Riccardo Rotondo Tutorial on Science Gateways, Roma, 03.06.2013

31 Facebook Integration Riccardo Rotondo Tutorial on Science Gateways, Roma, 03.06.2013

32 References  GARR Science Gateway: https://sgw.garr.ithttps://sgw.garr.it  GARR Science Gateway Facebook Community Page: https://www.facebook.com/GarrScienceGatewayCo mmunity https://www.facebook.com/GarrScienceGatewayCo mmunity  Training Material: https://gilda.ct.infn.it/wikimainhttps://gilda.ct.infn.it/wikimain  Catania Science Gateways: http://www.catania- science-gateways.ithttp://www.catania- science-gateways.it Riccardo Rotondo Tutorial on Science Gateways, Roma, 03.06.2013

33 Questions ? Riccardo Rotondo Tutorial on Science Gateways, Roma, 03.06.2013

Download ppt "Tutorial on Science Gateways, Roma, 03.06.2013 Riccardo Rotondo Introduction on Science Gateway Understanding access and functionalities."

Similar presentations

Lousy Introduction into SWITCHaai

Lousy Introduction into SWITCHaai
Www.gisela-grid.eu Grid Initiatives for e-Science virtual communities in Europe and Latin America The VRC-driven GISELA Science Gateway Diego Scardaci.

Grid Initiatives for e-Science virtual communities in Europe and Latin America The VRC-driven GISELA Science Gateway Diego Scardaci.
EGI-InSPIRE RI-261323 EGI-InSPIRE EGI-InSPIRE RI-261323 AAI in EGI Status and Evolution Peter Solagna Senior Operations Manager

EGI-InSPIRE RI EGI-InSPIRE EGI-InSPIRE RI AAI in EGI Status and Evolution Peter Solagna Senior Operations Manager
Federated access to e-Infrastructures worldwide

Federated access to e-Infrastructures worldwide
Introduction on Science Gateway Understanding access and functionalities Catania, 09/06/2014Riccardo Rotondo

Introduction on Science Gateway Understanding access and functionalities Catania, 09/06/2014Riccardo Rotondo
CGW 2009 Vine Toolkit A uniform access and portal solution to existing grid middleware services P.Dziubecki, T.Kuczynski, K.Kurowski, D.Szejnfeld, D.Tarnawczyk,

CGW 2009 Vine Toolkit A uniform access and portal solution to existing grid middleware services P.Dziubecki, T.Kuczynski, K.Kurowski, D.Szejnfeld, D.Tarnawczyk,
Access Control Patterns & Practices with WSO2 Middleware Prabath Siriwardena.

Access Control Patterns & Practices with WSO2 Middleware Prabath Siriwardena.
2006 © SWITCH Authentication and Authorization Infrastructures in e-Science (and the role of NRENs) Christoph Witzig SWITCH e-IRG, Helsinki, Oct 4, 2006.

2006 © SWITCH Authentication and Authorization Infrastructures in e-Science (and the role of NRENs) Christoph Witzig SWITCH e-IRG, Helsinki, Oct 4, 2006.
Dorian Grid Identity Management and Federation Dialogue Workshop II Edinburgh, Scotland February 9-10, 2006 Stephen Langella Department.

Dorian Grid Identity Management and Federation Dialogue Workshop II Edinburgh, Scotland February 9-10, 2006 Stephen Langella Department.
Beispielbild Shibboleth, a potential security framework for EDIT Lutz Suhrbier AG Netzbasierte Informationssysteme (http://www.ag-nbi.de)http://www.ag-nbi.de.

Beispielbild Shibboleth, a potential security framework for EDIT Lutz Suhrbier AG Netzbasierte Informationssysteme (
Shibboleth & IMPETUS 1.What are they? 2.Demo. Shibboleth - A system to support the sharing of Web resources among organisations IMPETUS - Infrastructure.

Shibboleth & IMPETUS 1.What are they? 2.Demo. Shibboleth - A system to support the sharing of Web resources among organisations IMPETUS - Infrastructure.
WebFTS as a first WLCG/HEP FIM pilot

WebFTS as a first WLCG/HEP FIM pilot
Catania Science Gateway Framework Motivations, architecture, features Catania, 09/06/2014Riccardo Rotondo

Catania Science Gateway Framework Motivations, architecture, features Catania, 09/06/2014Riccardo Rotondo
SOA & BPM Business Architecture, SOA & BPM Learn about SOA and Business Process Management (BPM) Learn how to build process diagrams.

SOA & BPM Business Architecture, SOA & BPM Learn about SOA and Business Process Management (BPM) Learn how to build process diagrams.
Co-ordination & Harmonisation of Advanced e-Infrastructures for Research and Education Data Sharing Research Infrastructures – Proposal n. 306819 A Standard-based.

Co-ordination & Harmonisation of Advanced e-Infrastructures for Research and Education Data Sharing Research Infrastructures – Proposal n A Standard-based.
Seamless Medical Image Processing on the Grid on the Example of Segmentation and Partition of the Airspaces Andrzej Rutkowski 1, Michał Chlebiej 1, Marcelina.

Seamless Medical Image Processing on the Grid on the Example of Segmentation and Partition of the Airspaces Andrzej Rutkowski 1, Michał Chlebiej 1, Marcelina.
The EPIKH Project (Exchange Programme to advance e-Infrastructure Know-How) Grid Engine Riccardo Rotondo

The EPIKH Project (Exchange Programme to advance e-Infrastructure Know-How) Grid Engine Riccardo Rotondo
1.The portal sends, under the user approval, user’s attribute retrieved from IDP to CA bridge 2.CA bridge module requests to a CA-online a certificate.

1.The portal sends, under the user approval, user’s attribute retrieved from IDP to CA bridge 2.CA bridge module requests to a CA-online a certificate.
Federated Identity Management for HEP David Kelsey WLCG GDB 9 May 2012.

Federated Identity Management for HEP David Kelsey WLCG GDB 9 May 2012.
GILDA testbed GILDA Certification Authority GILDA Certification Authority User Support and Training Services in IGI IGI Site Administrators IGI Users IGI.

GILDA testbed GILDA Certification Authority GILDA Certification Authority User Support and Training Services in IGI IGI Site Administrators IGI Users IGI.

Similar presentations

Ads by Google