Presentation is loading. Please wait.

Presentation is loading. Please wait.

BBMRI Competence Centre Status Report

Published byJerome Gilbert Modified over 6 years ago

Similar presentations

Presentation on theme: "BBMRI Competence Centre Status Report"— Presentation transcript:

1 BBMRI Competence Centre Status Report
genome-wide association study Jim Dowling, KTH – Royal Institute of Technology

2 BiobankCloud EU General Data Protection Regulation Biobankers
IT-Admins Ethics/Auditors Biobankers/Bioinformaticians Store your big genomic data securely and reliably Fast data intensive analyses and pipelines Support for open-source and commercial tools Secure sharing of data sets  IT organizations Reduced barrier of entry Reduced total cost of ownership Minimal Administration, Commodity hardware, Compliance with regulatory and ethical standards Scalable and Secure Genomic Data Bioinformaticians

3 Bringing together Biobankers & Bioinformaticians
NGS data producers Collections, samples Non-programmers Bioinformaticians NGS data analysts Programmers Python, R, Matlab, scripts Hops-HDFS Hops-YARN Web Application CharonFS Cuneiform/HiWAY Karamel IT Admins

4 Goal: Multi-Tenancy and Data Sharing
Study NSA No Unauthorized Copying/Cross-Linking of Data Member of authorize access Dynamic Roles is what I am talking about for the white-hat and black-hats out there. Member of Study Lifegene DataSet owns

5 Users, DataSets, and Projects
In-Place Data Sharing - not Copying!

6 User Authentication Provider JDBC Realm 2-Factor Authentication LDAP

7 Project Members DataSets Roles: Owner, Data Scientist Home project
Can be shared Privileges – upload/download data, run analysis jobs Like RBAC solution. All access via HopsWorks.

8 Project Roles Owner Privileges Data Scientist Privileges
Import/Export data Manage Membership Share DataSets Data Scientist Privileges Write code Run code Request access to DataSets Fixed set of privileges for the roles No need for administrator to manage roles -> Users mapping We delegate administration of privileges to users

9 Sharing DataSets between Projects
The same as Sharing Folders in Dropbox

10 Global Search: Projects and DataSets

11 Project Search: Files, Directories

12 Design your own Extended Metadata

13 MetaData Entry

14 PaaS support with Chef/Karamel
Support for EC2 and Bare Metal.

15 Hops Perimeter Security J2EE Web Application Server Authentication
Network Isolation J2EE Web Application Server Glassfish 4.1.1 Authentication JDBC Realm 2-Factor Authentication LDAP EGI Federated Cloud? Hops Hadoop can run in secure-mode or non-secure mode. Hadoop contradicted the maxim that security must be designed into a system in its inception. Perimeter = Network isolation + authentication Access = permissions + authorization Visibility = audit log + lineage + provenance Data = encryption, tokenization, data masking Multi-tenancy = resource management and access control 4 pillars: Authentication, Authorization, Accounting, Data Protection. Authentication for REST APIs to Hadoop Services (Apache Shiro) Multi-cluster support REST API auditing Also data governance – compliance adherence. Cross-site Request Forgery built-in to J2EE Vulnerability Plugin Filters in Knox WebApp

16 Roadmap for BiobankCloud
In 2015: Release Documented Workflows Documentation for User Interface Documentation for Hadoop Platform Documentation for Installation In 2016 Integration with EGI Federated Cloud Distributed Search among BiobankCloud sites

Download ppt "BBMRI Competence Centre Status Report"

Similar presentations

Implementing Tableau Server in an Enterprise Environment

Implementing Tableau Server in an Enterprise Environment
EIONET Training Beginners Zope Course Miruna Bădescu Finsiel Romania Copenhagen, 27 October 2003.

EIONET Training Beginners Zope Course Miruna Bădescu Finsiel Romania Copenhagen, 27 October 2003.
FI-WARE Testbed Access Control temporary solution.

FI-WARE Testbed Access Control temporary solution.
System Center 2012 R2 Overview

System Center 2012 R2 Overview
FIspace Security Components FIspace Security Components NetFutures 2015 FIspace project Javier Romero Negrín Javier Hitado Simarro ATOS Serdar Arslan KoçSistem.

FIspace Security Components FIspace Security Components NetFutures 2015 FIspace project Javier Romero Negrín Javier Hitado Simarro ATOS Serdar Arslan KoçSistem.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 1: Introduction to Windows Server 2003.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 1: Introduction to Windows Server 2003.
27. to 28. March 2007 | Geneva, Switzerland. Fabrice Romelard ilem SA Level 200.

27. to 28. March 2007 | Geneva, Switzerland. Fabrice Romelard ilem SA Level 200.
Understanding Active Directory

Understanding Active Directory
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 1: Introduction to Windows Server 2003.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 1: Introduction to Windows Server 2003.
© 2008 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. HP Automates Infrastructure Outsourcing.

© 2008 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. HP Automates Infrastructure Outsourcing.
Making Apache Hadoop Secure Devaraj Das Yahoo’s Hadoop Team.

Making Apache Hadoop Secure Devaraj Das Yahoo’s Hadoop Team.
A Brief Overview by Aditya Dutt March 18 th ’ 2014 1Aditya Inc.

A Brief Overview by Aditya Dutt March 18 th ’ Aditya Inc.
Chapter-4 Windows 2000 Professional Win2K Professional provides a very usable interface and was designed for use in the desktop PC. Microsoft server system.

Chapter-4 Windows 2000 Professional Win2K Professional provides a very usable interface and was designed for use in the desktop PC. Microsoft server system.
IPlant Collaborative Tools and Services Workshop iPlant Collaborative Tools and Services Workshop Collaborating with iPlant.

IPlant Collaborative Tools and Services Workshop iPlant Collaborative Tools and Services Workshop Collaborating with iPlant.
Www.egi.eu EGI-Engage www.egi.eu EGI-Engage Engaging the EGI Community towards an Open Science Commons Project Overview 9/14/2015 EGI-Engage: a project.

EGI-Engage EGI-Engage Engaging the EGI Community towards an Open Science Commons Project Overview 9/14/2015 EGI-Engage: a project.
Designing Group Security Designing security groups Designing user rights.

Designing Group Security Designing security groups Designing user rights.
ArcGIS Server for Administrators

ArcGIS Server for Administrators
Planning a Microsoft Windows 2000 Administrative Structure Designing default administrative group membership Designing custom administrative groups local.

Planning a Microsoft Windows 2000 Administrative Structure Designing default administrative group membership Designing custom administrative groups local.
1 © 2014 Cloudera, Inc. All rights reserved. Preventing a Big Data Security Breach.

1 © 2014 Cloudera, Inc. All rights reserved. Preventing a Big Data Security Breach.
JISC Middleware Security Workshop 20/10/05© 2005 University of Kent.1 The PERMIS Authorisation Infrastructure David Chadwick

JISC Middleware Security Workshop 20/10/05© 2005 University of Kent.1 The PERMIS Authorisation Infrastructure David Chadwick

Similar presentations

Ads by Google