Presentation is loading. Please wait.

Presentation is loading. Please wait.

Virtual Organizations By the Rules

Published byEmily Kennedy Modified over 6 years ago

Similar presentations

Presentation on theme: "Virtual Organizations By the Rules"— Presentation transcript:

1 Virtual Organizations By the Rules
Carl Kesselman Industrial and Systems Engineering University of Southern California Ian Foster Computation Institute Argonne National Lab & University of Chicago Quan Pham Computer Science University of Chicago

2 Why We Are Here “With the establishment of large scale multidisciplinary production Grid infrastructures such as the EGEE, OSG, DEISA, TeraGrid, or NAREGI, the concept of Virtual Organizations (VO) has been constantly refined and efficient management of VOs and their policies is becoming one of the central topics for these infrastructures.”

3 “The Anatomy of the Grid,” 2001
The … problem that underlies the Grid concept is coordinated resource sharing and problem solving in dynamic, multi-institutional virtual organizations. The sharing that we are concerned with is not primarily file exchange but rather direct access to computers, software, data, and other resources, as is required by a range of collaborative problem-solving and resource -brokering strategies emerging in industry, science, and engineering. This sharing is, necessarily, highly controlled, with resource providers and consumers defining clearly and carefully just what is shared, who is allowed to share, and the conditions under which sharing occurs. A set of individuals and/or institutions defined by such sharing rules form what we call a virtual organization (VO).

4 What is an Organization?
A organization has an identity and a purpose, which it seeks to fulfill within its environment The organization’s purpose influences its participants, structure, activities, and deliverables, whether products or services The organization’s performance can be evaluated with respect to various metrics Is a virtual organization any different?

5 From the Organizational Behavior and Management Community
“[A] group of people who interact through interdependent tasks guided by common purpose [that] works across space, time, and organizational boundaries with links strengthened by webs of communication technologies” — Lipnack & Stamps, 1997 Yes—but adding cyber-infrastructure: People  computational agents & services Communication technologies  IT infrastructure Collaboration based on rich data & computing capabilities

6 Enterprise Architecture
Model structure and operation of business from perspective of achieving business objectives Codify in terms of business rules and processes Many tools exist to capture this (e.g. UML, BPMN) Processes and rules Business processes capture business objectives Business rules determine when to apply processes Identify which functions map into IT Model core business functions as services (SOA) Compose services into business processes WS-CDL (choreography), BPEL (orchestration)

7 Identity Legal aspects. Credentials. Purpose Anything legal … Environment Available service & resource providers. Legal &organizational constraints Participants Identity-based or attribute-based. People, services, resources, sensors. Structure Centralized, decentralized, … Activities Business processes. Workflows. Deliverables Data products. Services. Instrument operations. … Performance Throughput, responsiveness, growth, happiness, security, …

8 VO as a Service (VOaaS) Function Resource Virtual organizations integrate participants and resource providers Participants are selected or self assemble Select “best of breed” providers for VO services Much of this process can be automated Provisioning of enabling services, at least

9 VO Policy at a Service VO ATA ATA: Attribute Authority AZA: Authorization Authority Resource AZA Resource ATA WS-Subject WS Resource GT4 authorization and delegation services provide first implementations

10 Policy, Revisited Traditionally policy is enforced at end points, integrated with application E.g., PDP call-out in GT container We can also apply policy at the VO level Define interactions between services at the organizational level Factor policy out of service implementations Policy is broader then access control

11 Policy-Driven Service Oriented Architecture
Need stand-alone policy engine to coordinate at VO level Connection between application policy and infrastructure policy (dynamic provisioning) Policy extension points designed into services allow Coordination at VO level Dynamic policy enforcement across services and service oriented infrastructure Web Services 2.0: Policy-driven Service Oriented Architectures Thomas B Winans and John Seely Brown

12 Establishing VO-Wide Policy
ATA: Attribute Authority AZA: Authorization Authority VO ATA VO AZA Subject ATA Resource AZA Subject AZA Resource ATA VO Policy Enforcement WS-Subject WS Resource

13 Policy Driven VO? Question: can we use a “generic” rules engine to organize science based VO? Advantage would be Better adaptability to address VO lifecycle evolution More sophisticated policy E.G. composibility with local participant polices, for example with regard to SLA Less special built software Disadvantages Complexity of writing and maintaining rules Performance of rules engine

14 Data Replication In LIGO
Pull “missing” files to a storage system Data Location Data Movement GridFTP Local Replica Catalog Replica Location Index Reliable File Transfer Service GridFTP Local Replica Catalog Replica Location Index Data Replication List of required Files Data Replication Service “Design and Implementation of a Data Replication Service Based on the Lightweight Data Replicator System,” Chervenak et al., 2005

15 Data Replication In LIGO
Pull “missing” files to a storage system Data Location Data Movement GridFTP Local Replica Catalog Replica Location Index Rules Engine GridFTP Local Replica Catalog Replica Location Index Data Replication Policy

16 Rules Engines Use DROOLS Forward chaining (if conditions then actions)
Preconditions on current state called working memory Actions can update state or initiate business process (i.e. make Java method call) Timed rules Implemented in Java Can be wrapped into a service itself Implements JSR 94 rules engine interface

17 System Design – System Core

18 Functionality - Operation
Add new replication site. Remove existing replication site. Add new directories for replication monitoring once a directory is added for monitoring, any file changes in the directory (and its subdirectories, recursively) will be updated to the replicas of that file. Remove directories from monitoring pool

19 Functionality - Query Query for file replication status
Number of replications Location of replications Query for replication site status Site availability Number of files replicated on that sites Stored in working memory of rules engine

20 System Rule – Sample Rules
Rule "New Replication Site" new site add new site to the session add this site to a site selector (currently a RoundRobin object) Rule "New DataCatalog" data STATUS_AVAILABLE the site selector selects a site no DataTransfer for this site and data number of DataTransfer is less than required create a DataTransfer (data, site) inform the site selector of this usage Rule "Site Became Error" site has STATUS_ERROR there is a DataTransfer to this site (finished or not) change data as needed remove the DataTransfer Rule "DataCatalog Updated" data has STATUS_MODIFIED exists DataTransfer for this data clean up and delete that DataTransfer

21 Replication Rule rule "New DataCatalog" dialect "java" when
# total number of replicas does not meet requirement $data : DataCatalog( status == DataCatalog.STATUS_AVAILABLE, requiredReplicaCount > replicaCount ) # the round robin controller $roundRobin : RoundRobin(site == $site) # site still has free resources $site : ReplicationSite ( available == ReplicationSite.STATUS_AVAILABLE ) # site does not has this replica yet not DataTransfer( data == $data && site == $site ) then insert ( new DataTransfer ( $data, $site, $session ) ); modify ( $data ) { addReplicationSite ($site) }; modify ( $site ) { addDataCatalog ($data) }; modify ( $roundRobin ) { use( $site ) }; end

22 Summary Have created a prototype Interesting questions
Performance studies Reliability studies Interesting questions Complexity of building reusable policy Composition of different types of policy, e.g. replication and site availability Smooth coupling of traditional VO security policy with business rules How to build a scalable and robust VO wide policy cloud

23 NSF Workshops on Building Effective Virtual Organizations
[Search “BEVO ”]

Download ppt "Virtual Organizations By the Rules"

Similar presentations

Multi-level SLA Management for Service-Oriented Infrastructures Wolfgang Theilmann, Ramin Yahyapour, Joe Butler, Patrik Spiess consortium / SAP.

Multi-level SLA Management for Service-Oriented Infrastructures Wolfgang Theilmann, Ramin Yahyapour, Joe Butler, Patrik Spiess consortium / SAP.
The Anatomy of the Grid: An Integrated View of Grid Architecture Carl Kesselman USC/Information Sciences Institute Ian Foster, Steve Tuecke Argonne National.

The Anatomy of the Grid: An Integrated View of Grid Architecture Carl Kesselman USC/Information Sciences Institute Ian Foster, Steve Tuecke Argonne National.
ASCR Data Science Centers Infrastructure Demonstration S. Canon, N. Desai, M. Ernst, K. Kleese-Van Dam, G. Shipman, B. Tierney.

ASCR Data Science Centers Infrastructure Demonstration S. Canon, N. Desai, M. Ernst, K. Kleese-Van Dam, G. Shipman, B. Tierney.
High Performance Computing Course Notes 2007-2008 Grid Computing.

High Performance Computing Course Notes Grid Computing.
Seminar Grid Computing ‘05 Hui Li Sep 19, 2005. Overview Brief Introduction Presentations Projects Remarks.

Seminar Grid Computing ‘05 Hui Li Sep 19, Overview Brief Introduction Presentations Projects Remarks.
Service Oriented Architecture Concepts March 27, 2006 Chris Armstrong

Service Oriented Architecture Concepts March 27, 2006 Chris Armstrong
© 2006 IBM Corporation IBM Software Group Relevance of Service Orientated Architecture to an Academic Infrastructure Gareth Greenwood, e-learning Evangelist,

© 2006 IBM Corporation IBM Software Group Relevance of Service Orientated Architecture to an Academic Infrastructure Gareth Greenwood, e-learning Evangelist,
Introduction and Overview “the grid” – a proposed distributed computing infrastructure for advanced science and engineering. Purpose: grid concept is motivated.

Introduction and Overview “the grid” – a proposed distributed computing infrastructure for advanced science and engineering. Purpose: grid concept is motivated.
Understanding Active Directory

Understanding Active Directory
Globus 4 Guy Warner NeSC Training.

Globus 4 Guy Warner NeSC Training.
Kate Keahey Argonne National Laboratory University of Chicago Globus Toolkit® 4: from common Grid protocols to virtualization.

Kate Keahey Argonne National Laboratory University of Chicago Globus Toolkit® 4: from common Grid protocols to virtualization.
Ian Foster Computation Institute Argonne National Lab & University of Chicago A Sociology of the Grid? Carl Kesselman Information Sciences Institute, University.

Ian Foster Computation Institute Argonne National Lab & University of Chicago A Sociology of the Grid? Carl Kesselman Information Sciences Institute, University.
Managing Service Metadata as Context The 2005 Istanbul International Computational Science & Engineering Conference (ICCSE2005) Mehmet S. Aktas

Managing Service Metadata as Context The 2005 Istanbul International Computational Science & Engineering Conference (ICCSE2005) Mehmet S. Aktas
Data Management Kelly Clynes Caitlin Minteer. Agenda Globus Toolkit Basic Data Management Systems Overview of Data Management Data Movement Grid FTP Reliable.

Data Management Kelly Clynes Caitlin Minteer. Agenda Globus Toolkit Basic Data Management Systems Overview of Data Management Data Movement Grid FTP Reliable.
Presenter: Dipesh Gautam.  Introduction  Why Data Grid?  High Level View  Design Considerations  Data Grid Services  Topology  Grids and Cloud.

Presenter: Dipesh Gautam.  Introduction  Why Data Grid?  High Level View  Design Considerations  Data Grid Services  Topology  Grids and Cloud.
DISTRIBUTED COMPUTING

DISTRIBUTED COMPUTING
CONTENTS Arrival Characters Definition Merits Chararterstics Workflows Wfms Workflow engine Workflows levels & categories.

CONTENTS Arrival Characters Definition Merits Chararterstics Workflows Wfms Workflow engine Workflows levels & categories.
ARGONNE  CHICAGO Ian Foster Discussion Points l Maintaining the right balance between research and development l Maintaining focus vs. accepting broader.

ARGONNE  CHICAGO Ian Foster Discussion Points l Maintaining the right balance between research and development l Maintaining focus vs. accepting broader.
Grid Computing - AAU 14/11-051 Grid Computing Josva Kleist Danish Center for Grid Computing www.dcgc.dk.

Grid Computing - AAU 14/ Grid Computing Josva Kleist Danish Center for Grid Computing
GT Components. Globus Toolkit A “toolkit” of services and packages for creating the basic grid computing infrastructure Higher level tools added to this.

GT Components. Globus Toolkit A “toolkit” of services and packages for creating the basic grid computing infrastructure Higher level tools added to this.

Similar presentations

Ads by Google