Presentation is loading. Please wait.

Presentation is loading. Please wait.

Andy Bavier, David Cheperdak, Rick McGeer

Published byCornelius Fields Modified over 7 years ago

Similar presentations

Presentation on theme: "Andy Bavier, David Cheperdak, Rick McGeer"— Presentation transcript:

1 Andy Bavier, David Cheperdak, Rick McGeer
SFA and ABAC Andy Bavier, David Cheperdak, Rick McGeer

2 Key Points Prototype of ABAC – SFA integration
Working to incorporate into SFA mainline Plan to deploy on GENICloud OK to support it on PlanetLab Wait for admin, user tool support Not pushing for this

3 ABAC – SFA Integration Work by David Cheperdak at UVic
Potential benefits Easy to set up federation with other aggregates Specify fine-grained access policies Separate policy and mechanism in SFA impl. Auditing of policy decisions On track to include ABAC as an experimental feature in a future SFA release

4 ABAC on GENICloud History of GENICloud:
V1: Eucalyptus V1.5: PlanetLab V2: Rebuilding GENICloud using OpenStack PlanetLab tools to manage physical nodes OpenStack to manage virtualization SFA to expose virtual resources Plan: Currently down, back up by April 15 Accept ABAC credentials Continue to accept “legacy” credentials

5 ABAC on PlanetLab We have really simple policies
Not clear that there is a strong case for ABAC Practical ramifications of a switch unclear Still trying to understand David’s prototype Tentatively OK with supporting ABAC if: Adopted by the GENI community Good admin tools support for configuring Good user tools for handling credentials

Download ppt "Andy Bavier, David Cheperdak, Rick McGeer"

Similar presentations

DiCloud and ViSE Cluster D Session November 2 nd, 2010.

DiCloud and ViSE Cluster D Session November 2 nd, 2010.
PlanetLab Workshop May 12, 2006. Incentives Private PLs are happening… What direction for “public” PL? –Growth? Distributing ops? Incentives to move in.

PlanetLab Workshop May 12, Incentives Private PLs are happening… What direction for “public” PL? –Growth? Distributing ops? Incentives to move in.
Resource specification update for PlanetLab and VINI Andy Bavier Princeton University March 16, 2010.

Resource specification update for PlanetLab and VINI Andy Bavier Princeton University March 16, 2010.
The Instageni Initiative

The Instageni Initiative
Jennifer Rexford Princeton University MW 11:00am-12:20pm Network Virtualization COS 597E: Software Defined Networking.

Jennifer Rexford Princeton University MW 11:00am-12:20pm Network Virtualization COS 597E: Software Defined Networking.
PlanetLab Architecture Larry Peterson Princeton University.

PlanetLab Architecture Larry Peterson Princeton University.
PlanetLab Control Framework (Cluster B) Wrap-up Andy Bavier Princeton University March 18, 2010.

PlanetLab Control Framework (Cluster B) Wrap-up Andy Bavier Princeton University March 18, 2010.
Network Rspecs in PlanetLab and VINI Andy Bavier PL Developer's Meeting May 13-14, 2008.

Network Rspecs in PlanetLab and VINI Andy Bavier PL Developer's Meeting May 13-14, 2008.
Internet In A Slice Andy Bavier CS461 Lecture.

Internet In A Slice Andy Bavier CS461 Lecture.
1 July 2005© 2005 University of Kent1 Seamless Integration of PERMIS and Shibboleth – Development of a Flexible PERMIS Authorisation Module for Shibboleth.

1 July 2005© 2005 University of Kent1 Seamless Integration of PERMIS and Shibboleth – Development of a Flexible PERMIS Authorisation Module for Shibboleth.
Apache Chemistry face-to-face meeting April 2010.

Apache Chemistry face-to-face meeting April 2010.
James the GIANT killer: evaluating locking schemes in 2010-02-27 james francis toy iv David Hemmendinger.

James the GIANT killer: evaluating locking schemes in james francis toy iv David Hemmendinger.
Andy Bavier, PlanetWorks Scott Baker, SB-Software July 27, 2011.

Andy Bavier, PlanetWorks Scott Baker, SB-Software July 27, 2011.
Sponsored by the National Science Foundation PlanetLab and PLFED Spiral 2 Year-end Project Review Princeton University PI: Larry Peterson Staff: Andy Bavier,

Sponsored by the National Science Foundation PlanetLab and PLFED Spiral 2 Year-end Project Review Princeton University PI: Larry Peterson Staff: Andy Bavier,
External Identity and Authorization in GENI. Topics Federated identity and virtual organizations ABAC Creating and transporting attributes.

External Identity and Authorization in GENI. Topics Federated identity and virtual organizations ABAC Creating and transporting attributes.
Information Assurance Research Group 1 NSA Security-Enhanced Linux (SELinux) Grant M. Wagner Information Assurance.

Information Assurance Research Group 1 NSA Security-Enhanced Linux (SELinux) Grant M. Wagner Information Assurance.
Scalable Cluster Management: Frameworks, Tools, and Systems David A. Evensky Ann C. Gentile Pete Wyckoff Robert C. Armstrong Robert L. Clay Ron Brightwell.

Scalable Cluster Management: Frameworks, Tools, and Systems David A. Evensky Ann C. Gentile Pete Wyckoff Robert C. Armstrong Robert L. Clay Ron Brightwell.
I2Q & WMnet Pilot Presented by Jason Rousell – i2Q Jay Neale - i2Q.

I2Q & WMnet Pilot Presented by Jason Rousell – i2Q Jay Neale - i2Q.
1 Supporting the development of distributed systems CS606, Xiaoyan Hong University of Alabama.

1 Supporting the development of distributed systems CS606, Xiaoyan Hong University of Alabama.
1 ©2010 HP Created on xx/xx/xxxxof 222 Nick Bastin, Andy Bavier, Jessica Blaine, Joe Mambretti, Rick McGeer, Rob Ricci, Nicki Watts PlanetWorks, HP, University.

1 ©2010 HP Created on xx/xx/xxxxof 222 Nick Bastin, Andy Bavier, Jessica Blaine, Joe Mambretti, Rick McGeer, Rob Ricci, Nicki Watts PlanetWorks, HP, University.

Similar presentations

Ads by Google