Presentation is loading. Please wait.

Presentation is loading. Please wait.

LCG User Level Accounting John Gordon CCLRC-RAL LCG Grid Deployment Board October 2006.

Published byHarold Harrison Modified over 9 years ago

Similar presentations

Presentation on theme: "LCG User Level Accounting John Gordon CCLRC-RAL LCG Grid Deployment Board October 2006."— Presentation transcript:

1 LCG User Level Accounting John Gordon CCLRC-RAL LCG Grid Deployment Board October 2006

2 LCG John Gordon – GDB 04 October 2006 History  Dave Kelsey presented a draft outline on a User-Level Accounting Data Policy at GDB in Rome, April 2006  I presented subsequent policy proposals in June  Asked for VO feedback

3 LCG John Gordon – GDB 04 October 2006 Reminder  Dave proposed that the following issues needed to be covered in such a policy:-  User Consent  In the Grid AUP the user consents to accounts being stored.  What is stored and where?  log files and accounting records derived from them  user identification (DN, FQAN)  Access rights - Who can read?  authorised people including the user  Access for what purposes?  accounting only, keep confidential

4 LCG John Gordon – GDB 04 October 2006 Five Actors  VO Resource Manager  VO Member  User  GOC developers  Site Admin

5 LCG John Gordon – GDB 04 October 2006 VO Resource Manager  The VO Resource Manager is a new role we are proposing. They are the only person who has access to all data in the accounting database belonging to her VO including the DN.  Not the person who authorises membership of the VO  It is the responsibility of the VO Resource Manager to use the DN related information appropriately and make sure this information does not proliferate beyond the circles where it is needed.  Should see:  aggregated user data F(site, time)  No of jobs, cputime  Individual job details (for a period of time)

6 LCG John Gordon – GDB 04 October 2006 VO Member  The general member of the VO  Should see:  Aggregated CPU usage per Group/Role  No information belonging to other identifiable user  Anonymised aggregates  Eg cpu use by top ten users

7 LCG John Gordon – GDB 04 October 2006 User  The person who ‘owned’ the jobs  Should see:  aggregated information about their jobs.  Job level records (for a period of time).

8 LCG John Gordon – GDB 04 October 2006 GOC developers  Have necessary access to data as part of their job  Should see:  Everything  But governed by similar acceptable use policy as VO Resource Manager

9 LCG John Gordon – GDB 04 October 2006 Site Admin  At each site  Should see:  nothing  They do not need access to grid accounting to do their job (an assertion)  the admin staff have access to their local batch records under their existing legal and ethical guidelines.  Can trace jobs to investigate problems

10 LCG John Gordon – GDB 04 October 2006 Is Everybody Happy?

11 LCG John Gordon – GDB 04 October 2006 Implementation progress  APEL update in gLite 3.0.3 RC1  Main features:  Support for gLiteCE using a BLAH accounting log parser  1024 RSA encryption  Captures GlobalJobId and UserFQAN from gLiteCE  Support for publishing data via DGAS HLR  Improved reliability of publisher for large datasets

12 LCG John Gordon – GDB 04 October 2006 DN information  The encryption module is in the updated publisher  Anyone using the publisher can send encrypted data to the GOC. This includes data captured by the DGAS HLR.  This publisher is not yet widely distributed across EGEE (only a few test sites, RHUL, QMUL, GRIF).  Rosario Piro has successfully implemented the publisher and published test records via the DGAS HLR (DGAS2APEL)  The publisher has two publish options: either "don't publish userDn", or "publish userDN".  Its not possible to publish an unencrypted UserDn. The default is "don't publish userDn".  Any site using this version of the publisher can republish ALL their data to the GOC and send ALL the UserDN data.  Once the data are published into RGMA, it must be processed. Processing is "extract from RGMA, decrypt, write to a private database, build summary by User"  This work is mostly completed.  Visualisation of user data will be authorised through GridSite by DN and/or FQAN

13 LCG John Gordon – GDB 04 October 2006 Next Steps  Once gLite 3.0.3 released  Get a number of sites to install and publish DN information  Tier1s? GridPP? INFN?  Accounting on role/group requires use of VOMS proxies (encourage)  Finish display of user level information  Perhaps just simple database query to start with  Have a policy document that sites and people can sign (or accept)

14 LCG John Gordon – GDB 04 October 2006 Issues  Storing job level information centrally may not scale forever.  Push back to sites and only store summaries centrally  DGAS already does this.  Does Pilot jobs and GLEXEC break user-level accounting?

15 LCG John Gordon – GDB 04 October 2006 Other Accounting Issues/Status  Both APEL and DGAS should work in gLiteCE  Storage  New GIPs for DPM and Castor are in beta test  Alternative dCache GIP being tested in UK  Added SRMtype to schema  Worldwide  Working with Condor to improve accounting information from history file  OGF RUS to receive summary information under test  Preferred solution for receiving information from other grids

Download ppt "LCG User Level Accounting John Gordon CCLRC-RAL LCG Grid Deployment Board October 2006."

Similar presentations

29 June 2006 GridSite - www.gridsite.org - Andrew McNabwww.gridsite.org VOMS and VOs Andrew McNab University of Manchester.

29 June 2006 GridSite Andrew McNabwww.gridsite.org VOMS and VOs Andrew McNab University of Manchester.
Andrew McNab - EDG Access Control - 14 Jan 2003 EU DataGrid security with GSI and Globus Andrew McNab University of Manchester

Andrew McNab - EDG Access Control - 14 Jan 2003 EU DataGrid security with GSI and Globus Andrew McNab University of Manchester
Accounting in LCG Dave Kant & John Gordon CCLRC, e-Science Centre.

Accounting in LCG Dave Kant & John Gordon CCLRC, e-Science Centre.
Accounting Update Dave Kant Grid Deployment Board Nov 2007.

Accounting Update Dave Kant Grid Deployment Board Nov 2007.
Storage Accounting John Gordon, STFC GDB June 2012.

Storage Accounting John Gordon, STFC GDB June 2012.
LCG Accounting Reporting Update John Gordon, CCLRC LCG Grid Deployment Board 5 th April 2006.

LCG Accounting Reporting Update John Gordon, CCLRC LCG Grid Deployment Board 5 th April 2006.
John Gordon CCLRC RAL Grid Operations Centre Update Trevor Daniels LCG Grid Deployment Board 10 th November 2003.

John Gordon CCLRC RAL Grid Operations Centre Update Trevor Daniels LCG Grid Deployment Board 10 th November 2003.
Summary of Accounting Discussion at the GDB in Bologna Dave Kant CCLRC, e-Science Centre.

Summary of Accounting Discussion at the GDB in Bologna Dave Kant CCLRC, e-Science Centre.
A.Guarise – F.Rosso 1 Enabling Grids for E-sciencE INFSO-RI-508833 Comprehensive Accounting Views on large computing farms. Andrea Guarise & Felice Rosso.

A.Guarise – F.Rosso 1 Enabling Grids for E-sciencE INFSO-RI Comprehensive Accounting Views on large computing farms. Andrea Guarise & Felice Rosso.
JSPG: User-level Accounting Data Policy David Kelsey, CCLRC/RAL, UK LCG GDB Meeting, Rome, 5 April 2006.

JSPG: User-level Accounting Data Policy David Kelsey, CCLRC/RAL, UK LCG GDB Meeting, Rome, 5 April 2006.
Security Policy Update LCG GDB Prague, 4 Apr 2007 David Kelsey CCLRC/RAL

Security Policy Update LCG GDB Prague, 4 Apr 2007 David Kelsey CCLRC/RAL
EGEE-III INFSO-RI-222667 Enabling Grids for E-sciencE EGEE and gLite are registered trademarks David Kelsey RAL/STFC,

EGEE-III INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks David Kelsey RAL/STFC,
Maarten Litmaath (CERN), GDB meeting, CERN, 2006/02/08 VOMS deployment Extent of VOMS usage in LCG-2 –Node types gLite 3.0 Issues Conclusions.

Maarten Litmaath (CERN), GDB meeting, CERN, 2006/02/08 VOMS deployment Extent of VOMS usage in LCG-2 –Node types gLite 3.0 Issues Conclusions.
Accounting in LCG Dave Kant CCLRC, e-Science Centre.

Accounting in LCG Dave Kant CCLRC, e-Science Centre.
8-Jul-03D.P.Kelsey, LCG-GDB-Security1 LCG/GDB Security (Report from the LCG Security Group) RAL, 8 July 2003 David Kelsey CCLRC/RAL, UK

8-Jul-03D.P.Kelsey, LCG-GDB-Security1 LCG/GDB Security (Report from the LCG Security Group) RAL, 8 July 2003 David Kelsey CCLRC/RAL, UK
Grid Operations Centre LCG Accounting Trevor Daniels, John Gordon GDB 8 Mar 2004.

Grid Operations Centre LCG Accounting Trevor Daniels, John Gordon GDB 8 Mar 2004.
Some Title from the Headrer and Footer, 19 April 2004 - 1 Overview Requirements Current Design Work in Progress.

Some Title from the Headrer and Footer, 19 April Overview Requirements Current Design Work in Progress.
EGEE-II INFSO-RI-031688 Enabling Grids for E-sciencE www.eu-egee.org EGEE and gLite are registered trademarks JSPG Status and plans EGEE’06 Conference.

EGEE-II INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks JSPG Status and plans EGEE’06 Conference.
GDB March 07 2007 - 1 User-Level, VOMS Groups and Roles Dave Kant CCLRC, e-Science Centre.

GDB March User-Level, VOMS Groups and Roles Dave Kant CCLRC, e-Science Centre.
Summary of AAAA Information David Kelsey Infrastructure Policy Group, Singapore, 15 Sep 2008.

Summary of AAAA Information David Kelsey Infrastructure Policy Group, Singapore, 15 Sep 2008.

Similar presentations

Ads by Google