Presentation is loading. Please wait.

Presentation is loading. Please wait.

INFSO-RI-508833 Enabling Grids for E-sciencE www.eu-egee.org gLite Overview Riccardo Bruno, Salvatore Scifo gLite - Tutorial Catania, dd.mm.yyyy.

Published byUrsula Haynes Modified over 7 years ago

Similar presentations

Presentation on theme: "INFSO-RI-508833 Enabling Grids for E-sciencE www.eu-egee.org gLite Overview Riccardo Bruno, Salvatore Scifo gLite - Tutorial Catania, dd.mm.yyyy."— Presentation transcript:

1 INFSO-RI-508833 Enabling Grids for E-sciencE www.eu-egee.org gLite Overview Riccardo Bruno, Salvatore Scifo gLite - Tutorial Catania, dd.mm.yyyy

2 Enabling Grids for E-sciencE INFSO-RI-508833 EGEE Tutorial, Roma, 02.11.2005 2 Grid Aim Grid Systems & Applications aim is to: Integrate Virtualise Manage RESOURCEs and SERVICEs across different VOs. VO – Individuals and/or Institutions having direct access to resources.

3 Enabling Grids for E-sciencE INFSO-RI-508833 EGEE Tutorial, Roma, 02.11.2005 3 Grid Requirements Heterogeneous (OSes, Devs, Apps.) VO Resource Sharing (Management, Security and Accounting) Resource Utilisation (Reservation, Metering, Monitoring and Logging) Job Execution (VO access, QoS, LCM, WFM, SLA) Data Services (Integration, Provisioning, Cataloguing) Security (Authentication, Authorisation and Auditing) Administrative Costs (Provisioning, Deploiment and Configuration) Scalability Availability (Disaster Recovery, Fault Management) Specific Requirements: (EGEE: HEP, BioMed) https://savannah.cern.ch/support/?group=egeeptf https://savannah.cern.ch/support/?group=egeeptf

4 Enabling Grids for E-sciencE INFSO-RI-508833 EGEE Tutorial, Roma, 02.11.2005 4 gLite - Middleware Many VOs need sharing of resources through services Accessing Allocating Monitoring Accounting Grid Middleware - Layer between services and physical resources gLite - Lightweight Middleware for Grid Computing

5 Enabling Grids for E-sciencE INFSO-RI-508833 EGEE Tutorial, Roma, 02.11.2005 5 gLite - Background Other Grid Projects: Global Grid Forum - GGF Open Grid Services Architecture – OGSA EU DataGrid AliEn Globus Condor …

6 Enabling Grids for E-sciencE INFSO-RI-508833 EGEE Tutorial, Roma, 02.11.2005 6 gLite – SOA Compliant Now: Applications and Services on Distributed Environments Through the Network The Past: Single Centralised System SOA - Distributed Systems as Services loosing coupling between interactive services. Coupling makes hard CRs. SOA further abstraction of Code Reuse. Error ProneSimple control CostlyFlexible ReuseFlexible ModificationsExtensible SW Quality Productivity

7 Enabling Grids for E-sciencE INFSO-RI-508833 EGEE Tutorial, Roma, 02.11.2005 7 gLite – SOA Services Functions Well-Defined Self-Contained Independent Message Based Interface Messaging Service interaction by messages having a common messaging infrastructure SOAP (Web Services) – Std Protocol to manage Messaging among Services WSDL - A language that expose the service interface. Policies Security, QoS, Management State (Business Logic) Consistent, Accurate and Durable

8 Enabling Grids for E-sciencE INFSO-RI-508833 EGEE Tutorial, Roma, 02.11.2005 8 gLite – Service Decomposition 5 High level services + CLI & API

9 Enabling Grids for E-sciencE INFSO-RI-508833 EGEE Tutorial, Roma, 02.11.2005 9 gLite – Security Services

10 Enabling Grids for E-sciencE INFSO-RI-508833 EGEE Tutorial, Roma, 02.11.2005 10 gLite – Security Services Authentication Identify entities (users, systems and services) when establishing context for message exchange (Who are you?). Aim - Provide a Credential having a universal value that works for many purposes across many infrastructures, communities, VOs and projects. gLite uses the PKI (X.509) infrastructure using CAs as thrusted third parties. MyProxy (http://grid.ncsa.uiuc.edu/myproxy/) Trust domain: The set of all EGEE CAs is our Trust Domain. Revocation: Identities must be revocated timely Credential Storage: Local or delegated credential (Services or Users) Privacy Preservation: Use of personal data Security Consideration: Trusted computing env. Do not serve a whole VO.

11 Enabling Grids for E-sciencE INFSO-RI-508833 EGEE Tutorial, Roma, 02.11.2005 11 gLite – Security Services Authorization Allows or denies access to services, based on policies. Agent: The user interacts with a centralized Authorization Server Push*: Authorization Services issue Tokens. Pull: The resource asks to the Authorization Services. Authorization Sources: Attribute Authority (AA): User Set of Attibutes. (VOMS) Policy Assertions: Third party policies. (CAS) Policy combination and Evaluation: Combine policy information from a number of different sources. (XACML) Mutual Authorization: Client-Service (i.e. issuing sensitive data)

12 Enabling Grids for E-sciencE INFSO-RI-508833 EGEE Tutorial, Roma, 02.11.2005 12 gLite – Security Services Auditing, Delegation, Sandboxing Auditing - Monitoring and Post-Mortem analysis of security related events. In computational grids It goes hand by hand with the accounting. Who did what? Where and when? In case of accounting: For how long? For how much? Delegation: The need of delegate privileges to other entities is done by Proxy Certificates. This is the most widely adopted mechanism by Grid communities. (Also: Single Sign-On, Dynamic entity identification). Sandboxing - Grid applications need the isolation of assigned resources in a transparent fashion by Security services: AuthN and AuthZ. (Virtualisation).

13 Enabling Grids for E-sciencE INFSO-RI-508833 EGEE Tutorial, Roma, 02.11.2005 13 gLite – Grid Access Two possibilities: APIs and CLI. The use of web-services allows the automatic generation of APIs (error prone, lack of tools).

14 Enabling Grids for E-sciencE INFSO-RI-508833 EGEE Tutorial, Roma, 02.11.2005 14 gLite – Information and Monitoring Services Information services are vital low level component of Grids.

15 Enabling Grids for E-sciencE INFSO-RI-508833 EGEE Tutorial, Roma, 02.11.2005 15 gLite – Information and Monitoring Services Basic info and monitoring services (RGMA) Information is provided by a Publish and Consume mechanism. Appearance of a single federated database to query through the SQL. Each VO has a VDB. Schema - Contains tables (GLUE) Registry – List of available sources of information (Mediation) Producers – Source of information (Primary, Secondary, On-demand) Consumers – Make queries against tables (Continuous, Latest, History)

16 Enabling Grids for E-sciencE INFSO-RI-508833 EGEE Tutorial, Roma, 02.11.2005 16 gLite – Information and Monitoring Services Job Monitoring, Service Discovery, Network performance Monitoring Job Monitoring – Java logging service, log4j, Apache/Chainsaw (for other languages). Service Discovery – Locates suitable services to both users and services (Library!). Network Performance Monitoring – Many network monitoring frameworks. Aim: perform a standard interface to those frameworks.

17 Enabling Grids for E-sciencE INFSO-RI-508833 EGEE Tutorial, Roma, 02.11.2005 17 gLite – Job Management Services

18 Enabling Grids for E-sciencE INFSO-RI-508833 EGEE Tutorial, Roma, 02.11.2005 18 gLite – Job Management Services Accounting Accumulates information about the resource usage done by users or groups of users (VOs). Information on Grid Services/Resources needs sensors (Resource Metering, Metering Abstraction Layer, Usage Records). Records are collected by the Accounting System (Queries: Users, Groups, Resource) Grid services should register themselves with a pricing service when accounting for billing purposes.

19 Enabling Grids for E-sciencE INFSO-RI-508833 EGEE Tutorial, Roma, 02.11.2005 19 gLite – Job Management Services Computing Element Service that represent the computing resource that is responsible of the job management: (submission, control, etc.) CEs refer to a set or a cluster of computational resources (WN) managed by LRMS, to dispatch jobs matching users requests. Open issue: common interface among different LRMSes. Two job submission models (accordingly to user requests and site policies) : PUSH(jobs pushed to CE queue), PULL(jobs coming from WMS when CE queue is empty) CE responsible to collect accounting information.

20 Enabling Grids for E-sciencE INFSO-RI-508833 EGEE Tutorial, Roma, 02.11.2005 20 gLite – Job Management Services Workload Management WMS set of middleware components responsible of distribution and management of jobs across Grid resources. Two core components of WMS: WM: accept and satisfy requests for job management. Matchmaking is the process of assigning the best available resource. L&B: keep track of job execution in term of events: (Submitted, Running, Done,...)

21 Enabling Grids for E-sciencE INFSO-RI-508833 EGEE Tutorial, Roma, 02.11.2005 21 gLite – Job Management Services Job Provenance, Package Manager JP - Keeps track of submitted jobs for long periods (months, years). PM – Helper service to automate: installing, configuring, updating and removing of software components. (RPM, dpkg/APT, Portage, …)

22 Enabling Grids for E-sciencE INFSO-RI-508833 EGEE Tutorial, Roma, 02.11.2005 22 gLite – Data Services

23 Enabling Grids for E-sciencE INFSO-RI-508833 EGEE Tutorial, Roma, 02.11.2005 23 gLite – Data Services Storage Element Needed Service are at least: Storage back-end (Drivers and Hardware) SRM Interface (Storage Specific) Transfer service (GridFTP) Native POSIX like file I/O API (gLite-I/O) Auxiliary Accounting and Logging services

24 Enabling Grids for E-sciencE INFSO-RI-508833 EGEE Tutorial, Roma, 02.11.2005 24 gLite – Data Services Catalogs OS like file access metaphor. LFN (Logical file name) GUID (Grid unique identifier) SimLinks SURL (Site URL) TURL (Transfer URL) Catalogs: Authorization Base Metadata Base Metadata Schema Replica Catalog File Catalog File Authorization Metadata Combined Catalog Storage Index gLite - (FireMAN)

25 Enabling Grids for E-sciencE INFSO-RI-508833 EGEE Tutorial, Roma, 02.11.2005 25 gLite – Data Services Data Movement Data Scheduler (DS) Keep track of user/service transfer requests File Transfer/Placement Sercice (FTS/FPS) Transfer Queue (Table) Transfer Agent (Network)

26 Enabling Grids for E-sciencE INFSO-RI-508833 EGEE Tutorial, Roma, 02.11.2005 26 gLite – Helper Services Configuration and Instrumentation Service – Query service state. Agreement Service – Implements a communication protocol for the SLAs. Bandwidth Allocation & Reservation service (BAR) – Controlling, Balancing and Manage Network flows.

Download ppt "INFSO-RI-508833 Enabling Grids for E-sciencE www.eu-egee.org gLite Overview Riccardo Bruno, Salvatore Scifo gLite - Tutorial Catania, dd.mm.yyyy."

Similar presentations

INFSO-RI-508833 Enabling Grids for E-sciencE www.eu-egee.org EGEE and gLite Slides by: Erwin Laure EGEE Deputy Middleware Manager.

INFSO-RI Enabling Grids for E-sciencE EGEE and gLite Slides by: Erwin Laure EGEE Deputy Middleware Manager.
Abstraction Layers Why do we need them? –Protection against change Where in the hourglass do we put them? –Computer Scientist perspective Expose low-level.

Abstraction Layers Why do we need them? –Protection against change Where in the hourglass do we put them? –Computer Scientist perspective Expose low-level.
GT 4 Security Goals & Plans Sam Meder

GT 4 Security Goals & Plans Sam Meder
Current status of grids: the need for standards Mike Mineter TOE-NeSC, Edinburgh.

Current status of grids: the need for standards Mike Mineter TOE-NeSC, Edinburgh.
Www.eu-eela.eu E-science grid facility for Europe and Latin America gLite Overview Vanessa Hamar Universidad de Los Andes.

E-science grid facility for Europe and Latin America gLite Overview Vanessa Hamar Universidad de Los Andes.
EGEE-II INFSO-RI-031688 Enabling Grids for E-sciencE www.eu-egee.org www.glite.org The gLite middleware distribution OSG Consortium Meeting Seattle, 21-23.

EGEE-II INFSO-RI Enabling Grids for E-sciencE The gLite middleware distribution OSG Consortium Meeting Seattle,
FP7-INFRA-222667 Enabling Grids for E-sciencE www.eu-egee.org EGEE Induction Grid training for users, Institute of Physics Belgrade, Serbia Sep. 19, 2008.

FP7-INFRA Enabling Grids for E-sciencE EGEE Induction Grid training for users, Institute of Physics Belgrade, Serbia Sep. 19, 2008.
High Performance Computing Course Notes 2007-2008 Grid Computing.

High Performance Computing Course Notes Grid Computing.
The EPIKH Project (Exchange Programme to advance e-Infrastructure Know-How) gLite Grid Services Abderrahman El Kharrim

The EPIKH Project (Exchange Programme to advance e-Infrastructure Know-How) gLite Grid Services Abderrahman El Kharrim
1 Software & Grid Middleware for Tier 2 Centers Rob Gardner Indiana University DOE/NSF Review of U.S. ATLAS and CMS Computing Projects Brookhaven National.

1 Software & Grid Middleware for Tier 2 Centers Rob Gardner Indiana University DOE/NSF Review of U.S. ATLAS and CMS Computing Projects Brookhaven National.
Www.eu-eela.org E-science grid facility for Europe and Latin America gLite Overview User and Site Admin Tutorial Riccardo Bruno – INFN Sez. Catania Dublin.

E-science grid facility for Europe and Latin America gLite Overview User and Site Admin Tutorial Riccardo Bruno – INFN Sez. Catania Dublin.
4b.1 Grid Computing Software Components of Globus 4.0 ITCS 4010 Grid Computing, 2005, UNC-Charlotte, B. Wilkinson, slides 4b.

4b.1 Grid Computing Software Components of Globus 4.0 ITCS 4010 Grid Computing, 2005, UNC-Charlotte, B. Wilkinson, slides 4b.
Makrand Siddhabhatti Tata Institute of Fundamental Research Mumbai 17 Aug 2009 1.

Makrand Siddhabhatti Tata Institute of Fundamental Research Mumbai 17 Aug
INFSO-RI-508833 Enabling Grids for E-sciencE www.eu-egee.org Comparison of LCG-2 and gLite Author E.Slabospitskaya Location IHEP.

INFSO-RI Enabling Grids for E-sciencE Comparison of LCG-2 and gLite Author E.Slabospitskaya Location IHEP.
SOS EGEE ‘06 GGF Security Auditing Service: Draft Architecture Brian Tierney Dan Gunter Lawrence Berkeley National Laboratory Marty Humphrey University.

SOS EGEE ‘06 GGF Security Auditing Service: Draft Architecture Brian Tierney Dan Gunter Lawrence Berkeley National Laboratory Marty Humphrey University.
INFSO-RI-508833 Enabling Grids for E-sciencE www.eu-egee.org gLite Data Management Services - Overview Mike Mineter National e-Science Centre, Edinburgh.

INFSO-RI Enabling Grids for E-sciencE gLite Data Management Services - Overview Mike Mineter National e-Science Centre, Edinburgh.
Www.consorzio-cometa.it FESR Consorzio COMETA Grid Introduction and gLite Overview Corso di formazione sul Calcolo Parallelo ad Alte Prestazioni (edizione.

FESR Consorzio COMETA Grid Introduction and gLite Overview Corso di formazione sul Calcolo Parallelo ad Alte Prestazioni (edizione.
GT Components. Globus Toolkit A “toolkit” of services and packages for creating the basic grid computing infrastructure Higher level tools added to this.

GT Components. Globus Toolkit A “toolkit” of services and packages for creating the basic grid computing infrastructure Higher level tools added to this.
1 Grid Computing Middleware Presenter: Xon Xay Nguyen Tuan Viet Tram The Phien.

1 Grid Computing Middleware Presenter: Xon Xay Nguyen Tuan Viet Tram The Phien.
The EPIKH Project (Exchange Programme to advance e-Infrastructure Know-How) Riccardo Rotondo

The EPIKH Project (Exchange Programme to advance e-Infrastructure Know-How) Riccardo Rotondo

Similar presentations

Ads by Google