Presentation is loading. Please wait.

Presentation is loading. Please wait.

Web Service Grids: Progress in the Standards Arena David Snelling Fujitsu Laboratories of Europe EGEE 2 nd Conference November 2004.

Published byDerick Bridges Modified over 8 years ago

Similar presentations

Presentation on theme: "Web Service Grids: Progress in the Standards Arena David Snelling Fujitsu Laboratories of Europe EGEE 2 nd Conference November 2004."— Presentation transcript:

1 Web Service Grids: Progress in the Standards Arena David Snelling Fujitsu Laboratories of Europe EGEE 2 nd Conference November 2004

2 Fujitsu Laboratories of Europe © 2004 Path Toward Pervasive Adoption

3 Fujitsu Laboratories of Europe © 2004 OGSA Design Philosophy Service Oriented Architecture Interface Extension (WSDL 2.0 ‘extends’ attribute) Resources as First Class Entities Expressed as WSRF-Resources with Properties Data type extensibility and introspection Dynamic service/resource creation and destruction Component Based Elements of the Architecture are pluggableCustomizable Support for dynamic, domain-specific content,... Within the same standardized framework

4 Fujitsu Laboratories of Europe © 2004 Architecture Overview SYSTEMS MANAGEMENT UTILITY COMPUTING GRID COMPUTING Core Services Base Profile WS-Addressing Privacy WS-Base Notification CIM/JSIM WSRF-RAP WSDM WS-Security Naming OGSA-EMSOGSA Self Mgmt GFD-C.16 GGF-UR Data Model HTTP(S)/SOAP GRID Computing, Distributed Computing and Utility Computing are different views of the same important problem domain. Discovery SAML/XACML WSDL WSRF-RL Trust WS-DAI VO Management Information Distributed query processing ASP Data Centre Use Cases & Applications CollaborationMulti MediaPersistent Archive Data Transport WSRF-RP X.509

5 Fujitsu Laboratories of Europe © 2004 OGSA Use Cases – Examples: Severe Storm Prediction and Tracking Crisis Management and loss containment Online Media and Entertainment Production, sales, and online delivery Distributed Query Processing Heterogeneous DBMS Persistent Archives Digital Libraries, Government, Law, Medicine,... Distributed Learning Staff training to Higher education. Application Steering Drug discovery, Decision support,...

6 Fujitsu Laboratories of Europe © 2004 Grid Application Service Provision “Middleware is about bringing applications to users.” - A. Geiger, T-Systems Multi-party Interactions: User, Application Service Locator, Application Service Provider, Application Creator, Resource Provider Key Requirements: Discovery: Locate resources, SLA Terms,... Deployment Install application is line with SLA Metering and Monitoring SLA Management and Accounting Negotiation, violation detection, and compensation, billing,... Security enforcement, Orchestration, Notification, Legacy support...

7 Fujitsu Laboratories of Europe © 2004 Requirements 1 State Reference and Management Standards, More Standards, Open Standards Dynamism Resource Virtualization Common Management Infrastructures Discovery and Query [Creation | Destruction] of [short | long] lived [services | resources] Soft state garbage collection Distributed reference counting and explicit destruction are untenable Distribution, management, and logging of events Monitoring and archival of Grid information (events) Provenance and auditing of systems, services and applications

8 Fujitsu Laboratories of Europe © 2004 Requirements 2 Quality of Service Assurance Detection of violation, enforcement and compensation Support for Data Sources and Content Access, Consistency, Persistency, Integration and Location TransparencySecurity Authentication and Authorization (Separated!) Integration with heterogeneous legacy infrastructure Perimeter protection and internal isolation Delegation and policy exchange Intrusion detection and containment

9 Fujitsu Laboratories of Europe © 2004 Requirements 3 Execution Management Jobs, Services, Operations support,... Total Cost of Ownership Reduction ScalabilityAvailability Ease of Use Users and ProvidersExtensibility Supply-Side Optimization

10 Fujitsu Laboratories of Europe © 2004 Core Services Build Out OGSA Base Extends Uses VO MgmtWS-DAI InformationWSDM OGSA-EMSSelf Mgmt.Discovery

11 Fujitsu Laboratories of Europe © 2004 OGSA Base Profile OGSA Base Naming WSRF-RP WSRF-RL WSRF-RAP WS-Addressing Fabric: WSDL 1.1, SOAP/HTTPS, X.509 Extends Uses WS-Security Data Model SAML/XACML Transport CIM/JSIM GFD.16 GGF-UR Trust Privacy WS-BaseNt

12 Fujitsu Laboratories of Europe © 2004 Status Legend Standard Existing, adopted specification from a recognized Standards Development Organization.Evolving Emerging specifications with reference implementations and standardization in processGap Identified architectural component with no existing specifications complete, but work is in progress somewhere.Hole Identified architectural component without apparent activity.

13 Fujitsu Laboratories of Europe © 2004 OGSA Base Profile - 1 FacilityStatusCurrent Specification Comments Service DescriptionStandardWSDL 1.1Move to WSDL 2.0 in later versions of OGSA, primarily for ‘extends’ support. AddressingEvolvingWS-Addressing 08/04Firewall traversal, Scalability, Support for resources with reference data structure (EPR). Standardization started in W3C. Last call planned for January 05. Resource AccessEvolvingWSRF-RAP (Embodiment 1) Stable now. Committee Draft expected April 05. Control ChannelStandardHTTP(S)/SOAP 1.2Data volume assumed small. Lightweight (performant) implementations required. Some use cases may require reliable delivery, e.g. WS-Reliability. Data TransportHoleUse HTTP(S)/SOAP 1.2 with attachments, which fails to meet current performance requirements. Future options: MTOM, GridFTP,...

14 Fujitsu Laboratories of Europe © 2004 OGSA Base Profile - 2 FacilityStatusCurrent Specification Comments NotificationEvolvingWS-BaseNotification 06/04 Seeking unification with WS-Eventing due to significant overlap. Some functionality depends on WSRF-RP. Brokered Notification and Topics to follow later in OGSA. Committee Draft expected April 05. State and PropertiesEvolvingWSRF-RP 06/04Super-set of WS-Transfer. Committee Draft expected April 05. LifetimeEvolvingWSRF-RL 06/04Committee Draft expected April 05. NamingGapEvaluation in progress in OGSA-WG and a new WG to form in early 2005, if required. Resource Model (Storage & Compute) EvolvingCIM v2 including JSIMThe models are mature, but the XML schema is under development. Resource Model (Data) GapThe CGS-WG is developing an extension to CIM for databases and other data sources.

15 Fujitsu Laboratories of Europe © 2004 OGSA Base Profile - 3 FacilityStatusCurrent Specification Comments AuthenticationStandardWSS-SOAP-Mess-Sec 1.0, X.509, GFD-C.16 Authentication is not conflated with authorization or delegation in OGSA. Authentication services and identity mapping are future developments in OGSA. AuthorizationStandardSAML, XACML (PIP, PAP, PDP, PEP) Initially, authorization is a local issue. By basing description and distribution on standards OGSA facilitates migration to dynamic, distributed authorization. Accounting/AuditGapGGF/URCurrent focus is on “jobs”; we need service level accounting and audit. Extensions to CIM and JSIM, and “Grid Economies” GGF/GESA- WG. ConfidentialityStandardWSS-SOAP-SecNegotiated, lightweight protocols will be developed in coming versions of OGSA. PrivacyHoleThe focus here is on the individual person. TrustGapThere are proprietary and open specifications that start to address this area, e.g. WS-Trust, WS-Federation, WS-Delegation.

16 Fujitsu Laboratories of Europe © 2004 OGSA Core Services Profile FacilityStatusCurrent Specification Comments DiscoveryGapUDDI is generally thought to be too static. Registry and discovery services built on WSRF-SG seem likely, but no activity yet. Data Access (Files and Databases) EvolvingWS-DAIOGSA-DAI project will encompass files as well as databases and will feed specifications into DAIS. Generic ManagementEvolvingWS-DM 0.5WSDM acts as a basis for all other management functions in OGSA. Move to V1.0 in late 2004. Execution Management GapOGSA-EMS Design Team expects to form a WG in 2005, working with the GRAAP and JSDL WGs. Self ManagementGapFoundation infrastructure for self managed systems. Design team creation on hold. Related activity in CCDLM-WG. VO ManagementHoleBuild on WSDM and authentication and authorization specifications. No working group activity yet. InformationHoleInfrastructure for information distribution, storage, and monitoring.

17 Fujitsu Laboratories of Europe © 2004 WSRF/WSN/WSDM: Status WSRF Resource Properties and Lifetime near Committee Draft. Service Group and Renewable References in processWSN Base Notification stable and seeking synergy with WS- EventingWSDM Committee Draft by 2004/Q5 HP/Globus/Apache Announcement Apollo, Hermes, Muse incubators http://wiki.apache.org/incubator/ Proposal

18 Fujitsu Laboratories of Europe © 2004 JSDL: Status Job Submission Description Language Pre-stage, Execute, Post-stage. Uniformity across batch subsystems. Support for multiple file transfer protocols. Not a Job Management Interface Capabilities Optional data sources/sinks, with different credentials possible Seamless or restricted resource description Suitable for resource brokers and schedulers too.

19 Fujitsu Laboratories of Europe © 2004 Schema Overview <JobDefinition> ? ? * * ? ? ? ? * * ? ? * *</JobDefinition>

20 Fujitsu Laboratories of Europe © 2004 Architecture: Status SYSTEMS MANAGEMENT UTILITY COMPUTING GRID COMPUTING Core Services Base Profile WS-Addressing Privacy WS-BaseNotification CIM/JSIM WSRF-RAP WSDM WS-Security Naming OGSA-EMSOGSA Self Mgmt GFD-C.16 GGF-UR Data Model HTTP(S)/SOAP Discovery SAML/XACML WSDL WSRF-RL Trust WS-DAI VO Management Information Distributed query processing ASP Data Centre Use Cases & Applications CollaborationMulti MediaPersistent Archive Data Transport WSRF-RP X.509 StandardEvolvingGapHole

21 Fujitsu Laboratories of Europe © 2004 Grid-based Commercial Data Centre The Japanese Government is spending 78 M$ to develop open source infrastructure for GCDCs. “Customers” of GCDCs: Centre Administrators: Manageability & Automation, Location Transparency,... IT Systems Integrator: Complexity reduction, Meeting availability targets,... IT Business Activity Manager: Focus on the business proposition to end users, not operations. Heterogeneous Platforms GCDC provisioning without lock-in. Provision to supplier’s strengths.

22 Fujitsu Laboratories of Europe © 2004 Focus on Security: Baseline PKI-Based Infrastructure X.509 + PKI, see models in GFD.16 Authenticated Connections Client-authenticated HTTPS WS-Security-based Payload Protection WSS-Sec, 2004/01 Authorization, Roles, and Access Privileges Locally (site) managed SAML and XACML Basis Credential mapping provided by implementations

23 Fujitsu Laboratories of Europe © 2004 Focus on Security: Long Term Security Function Points Policy Enforcement Policy Decision Policy Information Policy Administration Grid Specifics Cross Organizational Rights Delegation Dynamic Management Trust Framework Required “Orthogonal Grid” Codification of Trust Manageable

24 Fujitsu Laboratories of Europe © 2004 Security: Interim Approaches Globus Grid Security Infrastructure Limited-time Proxy Certificates Authorization by “impersonation” of original userUnicore Explicit Trust Delegation Trusted Agents Authorization-based explicitly-declared trust in the agent Identity from user’s public certificateGRIA Business Process Driven Authorization Authorization established as part of the workflow Application and business process instance dependant

Download ppt "Web Service Grids: Progress in the Standards Arena David Snelling Fujitsu Laboratories of Europe EGEE 2 nd Conference November 2004."

Similar presentations

0 McLean, VA August 8, 2006 SOA, Semantics and Security.

0 McLean, VA August 8, 2006 SOA, Semantics and Security.
Fujitsu Laboratories of Europe © 2004 What is a (Grid) Resource? Dr. David Snelling Fujitsu Laboratories of Europe W3C TAG - Edinburgh September 20, 2005.

Fujitsu Laboratories of Europe © 2004 What is a (Grid) Resource? Dr. David Snelling Fujitsu Laboratories of Europe W3C TAG - Edinburgh September 20, 2005.
©2006 University of Southampton IT Innovation Centre and other members of the SIMDAT consortium A SIMDAT Perspective on Grid Standards and Specifications.

©2006 University of Southampton IT Innovation Centre and other members of the SIMDAT consortium A SIMDAT Perspective on Grid Standards and Specifications.
Abstraction Layers Why do we need them? –Protection against change Where in the hourglass do we put them? –Computer Scientist perspective Expose low-level.

Abstraction Layers Why do we need them? –Protection against change Where in the hourglass do we put them? –Computer Scientist perspective Expose low-level.
GT 4 Security Goals & Plans Sam Meder

GT 4 Security Goals & Plans Sam Meder
Supporting further and higher education Grid Security: Present and Future Alan Robiette, JISC Development Group.

Supporting further and higher education Grid Security: Present and Future Alan Robiette, JISC Development Group.
The Open Grid Services Architecture, Version 1.0 I. Foster, H. Kishimoto, A. Savva, D. Berry, A. Djaoui, A. Grimshaw, B. Horn, F. Maciel, F. Siebenlist,

The Open Grid Services Architecture, Version 1.0 I. Foster, H. Kishimoto, A. Savva, D. Berry, A. Djaoui, A. Grimshaw, B. Horn, F. Maciel, F. Siebenlist,
Internet Technologies (Grid Computing (OGSA, WSRF) )

Internet Technologies (Grid Computing (OGSA, WSRF) )
Federated Digital Rights Management Mairéad Martin The University of Tennessee TERENA General Assembly Meeting Prague, CZ October 24, 2002.

Federated Digital Rights Management Mairéad Martin The University of Tennessee TERENA General Assembly Meeting Prague, CZ October 24, 2002.
Seminar Grid Computing ‘05 Hui Li Sep 19, 2005. Overview Brief Introduction Presentations Projects Remarks.

Seminar Grid Computing ‘05 Hui Li Sep 19, Overview Brief Introduction Presentations Projects Remarks.
The OGSA Vision for Service Oriented Architectures Dave Berry Research Manager, NeSC Co-chair, GGF OGSA Data WG European Grid Technology Days 2005 Concertation.

The OGSA Vision for Service Oriented Architectures Dave Berry Research Manager, NeSC Co-chair, GGF OGSA Data WG European Grid Technology Days 2005 Concertation.
CoreGRID Workpackage 5 Virtual Institute on Grid Information and Monitoring Services Authorizing Grid Resource Access and Consumption Erik Elmroth, Michał.

CoreGRID Workpackage 5 Virtual Institute on Grid Information and Monitoring Services Authorizing Grid Resource Access and Consumption Erik Elmroth, Michał.
Grid Architecture: Representing NextGRID David Snelling Fujitsu Labs Europe.

Grid Architecture: Representing NextGRID David Snelling Fujitsu Labs Europe.
4b.1 Grid Computing Software Components of Globus 4.0 ITCS 4010 Grid Computing, 2005, UNC-Charlotte, B. Wilkinson, slides 4b.

4b.1 Grid Computing Software Components of Globus 4.0 ITCS 4010 Grid Computing, 2005, UNC-Charlotte, B. Wilkinson, slides 4b.
GFIPM Web Services Concept and Normative Standards GFIPM Delivery Team Meeting November 2011.

GFIPM Web Services Concept and Normative Standards GFIPM Delivery Team Meeting November 2011.
Globus 4 Guy Warner NeSC Training.

Globus 4 Guy Warner NeSC Training.
Kate Keahey Argonne National Laboratory University of Chicago Globus Toolkit® 4: from common Grid protocols to virtualization.

Kate Keahey Argonne National Laboratory University of Chicago Globus Toolkit® 4: from common Grid protocols to virtualization.
1 Modeling Stateful Resources with Web Services ICE 0534 - Ph.D lecture 20042068 Byung-sang Kim.

1 Modeling Stateful Resources with Web Services ICE Ph.D lecture Byung-sang Kim.
● Problem statement ● Proposed solution ● Proposed product ● Product Features ● Web Service ● Delegation ● Revocation ● Report Generation ● XACML 3.0.

● Problem statement ● Proposed solution ● Proposed product ● Product Features ● Web Service ● Delegation ● Revocation ● Report Generation ● XACML 3.0.
Cardea Requirements, Authorization Model, Standards and Approach Globus World Security Workshop January 23, 2004 Rebekah Lepro Metz

Cardea Requirements, Authorization Model, Standards and Approach Globus World Security Workshop January 23, 2004 Rebekah Lepro Metz

Similar presentations

Ads by Google