Presentation is loading. Please wait.

Presentation is loading. Please wait.

Dynamic Creation and Management of Runtime Environments in the Grid Kate Keahey Matei Ripeanu Karl Doering.

Published byAugust Holland Modified over 9 years ago

Similar presentations

Presentation on theme: "Dynamic Creation and Management of Runtime Environments in the Grid Kate Keahey Matei Ripeanu Karl Doering."— Presentation transcript:

1 Dynamic Creation and Management of Runtime Environments in the Grid Kate Keahey Matei Ripeanu Karl Doering

2 10/08/03Dynamic Runtime Environments in the Grid Overview l An execution in a Grid environment requires support for dynamic actions l Current state u Statically configured user accounts l Administrative burden l Statically created, do not reflect dynamically changing VO policies l We propose u Runtime environments l Dynamically created and managed l Leverage OGSI abstractions to implement them u Show how this concept can be applied l Planet Lab

3 10/08/03Dynamic Runtime Environments in the Grid Driving the Design l Requirements u Protection l User protection l Resource protection u Controlled resource usage l Fine-grain enforcement u Authorization u Audit l Objectives u Automating administration l Enables dynamic management u Formalizing creation and management l Enables a variety of underlying implementations based on need and availability (sandboxes, VMs)

4 10/08/03Dynamic Runtime Environments in the Grid Key abstractions l RTEFactory: creates RTE services u Creates both a service and underlying implementation u Invokes initialization/configuration procedures u Writes access policy l Currently simply gives the request initiator the right to use the account l Implemented in the GT3 gridmapfile l RTEService u Interface to the dynamically created runtime environment u Identified by a GSH u SDEs: l RTE_Implementation l Local name l Termination Time (with default settings) l RTE properties (currently: quota) u Termination implies account destruction and policy update u Using soft-state termination and defining termination semantics ensures that the account will be properly terminated

5 10/08/03Dynamic Runtime Environments in the Grid An Interaction Scenario User (1) DN (4) GSH local RTE implementation setuid (3) gridmapfile (5) GRAM (6) Request+GSH (2) RTESservice PEP RTEFactory Service PEP

6 10/08/03Dynamic Runtime Environments in the Grid PlanetLab l A testbed for a class of networked services u DHTs, CDNs, Fast data transfers, RONs, etc. l Deployed over 180 nodes, 70 sites, 5 continents l Allocation unit: a slice = a set of virtual machines, one at each node. Sounds like a good starting point for a Grid Services testbed! OS Slice N OS Slice N OS Slice N OS Slice N

7 10/08/03Dynamic Runtime Environments in the Grid So, what is missing? l Need to authenticate users and allocate resources independent of PlanetLab mechanisms. l No sharing between VMs on same node. Solution: Work within one slice: a GSLab user gets an account on each VM in GSLab slice. Also: show how GT3 can be used to manage PlanetLab resources. OS GSLab OS GSLab OS GSLab OS GSLab Management account GT3 Account 1Account 2

8 10/08/03Dynamic Runtime Environments in the Grid GSLab - Functionality l Manage user accounts across a set of VMs l Additional functionality provided to users: u Submit jobs to and login on these accounts u Create fresh, start, stop, restart GS containers across a set of accounts (scripts). u Deploy services in containers (more scripts).

9 10/08/03Dynamic Runtime Environments in the Grid GSLab - Overall architecture User RTEFactory Service 1. Request (user, RTE attributes) 2. Reply: credentials signed by AP (policy statement) 3. CreateRTE request (includes credentials obtained in step 2) 6. RTE lifetime expires 4. Extend RTE lifetime; change RTE parameters; destroy RTE  User authentication and authorization  Resource allocation  Monitoring and management of the testbed Admin Point (AP) Local nodes 0. Registration (soft-state) gsisshd 5. Login to user account; Scripts RTEService User RTE

10 10/08/03Dynamic Runtime Environments in the Grid Current Work and Status l Prototype implementation available u Dynamic accounts l www.mcs.anl.gov/~keahey/DS/DynamicSessions.htm u GSLab (matei@cs.uchicago.edu) l Current work u Research l Exploring sandboxing and VMs l Relationship to WS-Agreement u Deployment l Offer GSLab as a service to the community: obtain account on GSLab for a short time

11 10/08/03Dynamic Runtime Environments in the Grid Conclusions l Were GS abstractions useful: yes l Lessons Learned u Expose GS containers as grid services. u Ability to deploy any service dynamically u Authorization service u Canonical form for GSH u GT3: more documentation, maturity

Download ppt "Dynamic Creation and Management of Runtime Environments in the Grid Kate Keahey Matei Ripeanu Karl Doering."

Similar presentations

Wei Lu 1, Kate Keahey 2, Tim Freeman 2, Frank Siebenlist 2 1 Indiana University, 2 Argonne National Lab

Wei Lu 1, Kate Keahey 2, Tim Freeman 2, Frank Siebenlist 2 1 Indiana University, 2 Argonne National Lab
From Sandbox to Playground: Dynamic Virtual Environments in the Grid Kate Keahey Argonne National Laboratory Karl Doering University.

From Sandbox to Playground: Dynamic Virtual Environments in the Grid Kate Keahey Argonne National Laboratory Karl Doering University.
Virtual Workspaces in the Grid Kate Keahey Argonne National Laboratory Ian Foster, Tim Freeman, Xuehai Zhang, Daniel Galron.

Virtual Workspaces in the Grid Kate Keahey Argonne National Laboratory Ian Foster, Tim Freeman, Xuehai Zhang, Daniel Galron.
Scaling TeraGrid Access A Testbed for Attribute-based Authorization and Leveraging Campus Identity Management

Scaling TeraGrid Access A Testbed for Attribute-based Authorization and Leveraging Campus Identity Management
Open Grid Forum 19 January 31, 2007 Chapel Hill, NC Stephen Langella Ohio State University Grid Authentication and Authorization with.

Open Grid Forum 19 January 31, 2007 Chapel Hill, NC Stephen Langella Ohio State University Grid Authentication and Authorization with.
Abstraction Layers Why do we need them? –Protection against change Where in the hourglass do we put them? –Computer Scientist perspective Expose low-level.

Abstraction Layers Why do we need them? –Protection against change Where in the hourglass do we put them? –Computer Scientist perspective Expose low-level.
Interaction model of grid services in mobile grid environment Ladislav Pesicka University of West Bohemia.

Interaction model of grid services in mobile grid environment Ladislav Pesicka University of West Bohemia.
Dynamic Sessions OASIS Security Services Face to Face #3 June 25, 2001.

Dynamic Sessions OASIS Security Services Face to Face #3 June 25, 2001.
Resource specification update for PlanetLab and VINI Andy Bavier Princeton University March 16, 2010.

Resource specification update for PlanetLab and VINI Andy Bavier Princeton University March 16, 2010.
PlanetLab Architecture Larry Peterson Princeton University.

PlanetLab Architecture Larry Peterson Princeton University.
H28.1 6-Apr-01 Clark Thomborson Software Security CompSci 725 Handout 28: Report Writing #2 (Sample Titles & Abstracts) Clark Thomborson University of.

H Apr-01 Clark Thomborson Software Security CompSci 725 Handout 28: Report Writing #2 (Sample Titles & Abstracts) Clark Thomborson University of.
Xen , Linux Vserver , Planet Lab

Xen , Linux Vserver , Planet Lab
Monitoring and performance measurement in Production Grid Environments David Wallom.

Monitoring and performance measurement in Production Grid Environments David Wallom.
Dorian Grid Identity Management and Federation Dialogue Workshop II Edinburgh, Scotland February 9-10, 2006 Stephen Langella Department.

Dorian Grid Identity Management and Federation Dialogue Workshop II Edinburgh, Scotland February 9-10, 2006 Stephen Langella Department.
CoreGRID Workpackage 5 Virtual Institute on Grid Information and Monitoring Services Authorizing Grid Resource Access and Consumption Erik Elmroth, Michał.

CoreGRID Workpackage 5 Virtual Institute on Grid Information and Monitoring Services Authorizing Grid Resource Access and Consumption Erik Elmroth, Michał.
A Model for Grid User Management Rich Baker Dantong Yu Tomasz Wlodek Brookhaven National Lab.

A Model for Grid User Management Rich Baker Dantong Yu Tomasz Wlodek Brookhaven National Lab.
GridScape Ding Choon Hoong Grid Computing and Distributed Systems (GRIDS) Lab. The University of Melbourne Melbourne, Australia www.gridbus.org WW Grid.

GridScape Ding Choon Hoong Grid Computing and Distributed Systems (GRIDS) Lab. The University of Melbourne Melbourne, Australia WW Grid.
UNICORE UNiform Interface to COmputing REsources Olga Alexandrova, TITE 3 Daniela Grudinschi, TITE 3.

UNICORE UNiform Interface to COmputing REsources Olga Alexandrova, TITE 3 Daniela Grudinschi, TITE 3.
Globus Computing Infrustructure Software Globus Toolkit 11-2.

Globus Computing Infrustructure Software Globus Toolkit 11-2.
Minerva Infrastructure Meeting – October 04, 2011.

Minerva Infrastructure Meeting – October 04, 2011.

Similar presentations

Ads by Google