Presentation on theme: "NSF Middleware Initiative: Focus on Collaboration Kevin Thompson, NSF Ken Klingenstein, Internet2 John McGee, Grids Center Mary Fran Yafchak, SURA Ann."— Presentation transcript:
NSF Middleware Initiative: Focus on Collaboration Kevin Thompson, NSF Ken Klingenstein, Internet2 John McGee, Grids Center Mary Fran Yafchak, SURA Ann West, EDUCAUSE/Internet2
Copyright Kevin Thompson, Ken Klingenstein, John McGee, Mary Fran Yafchak, and Ann West This work is the intellectual property of the authors. Permission is granted for this material to be shared for non-commercial, educational purposes, provided that this copyright statement appears on the reproduced materials and notice is given that the copying is by permission of the authors. To disseminate otherwise or to republish requires written permission from the authors.
Topics NMI Overview and New Awards NMI-EDIT GRIDS Center NMI Integration Testbed NMI and NMI-EDIT Outreach
NSF Middleware Initiative Purpose To design, develop, deploy and support a set of reusable, expandable set of middleware functions and services that benefit applications in a networked environment
To allow scientists and engineers the ability to transparently use and share distributed resources, such as computers, data, and instruments To develop effective collaboration and communications tools such as Grid technologies, desktop video, and other advanced services to expedite research and education, and To develop a working architecture and approach which can be extended to Internet users around the world. Middleware is the stuff that makes “transparently use” happen, providing persistency, consistency, security, privacy and capability A Vision for Middleware
NMI Status 21 Active Awards (Prior to new awards) –3 Cooperative Agreements –18 individual research awards Focus on integration and deployment of grid and middleware for S&E –Near-term deliverables (working code) –coordination and persuasion rather than standards –Significant effort on interoperability, testing, inclusion NMI Software Releases, best practices, white papers –NMI Release 1 – May, 2002 –NMI Release 2 – Oct, 2002 –NMI Release 3 – Apr, 2003 –NMI Release 4 - est. Dec, 2003
NMI Organization –GRIDS Center ISI, NCSA, U Chicago, UCSD & U Wisconsin –EDIT Team (Enterprise and Desktop Integration Technologies) EDUCAUSE, Internet2 & SURA –Several additions in 2003 Core NMI Team Grants for R & D –Year grants –Year grants –Year 3 (New) grants
2003 NSF Middleware Initiative Program Awards 20 awards totaling $9M –10 “System Integrator” awards Focus – to further develop the integration and support infrastructure of middleware for the longer term Themes - extending and deepening current activities, and expanding into new areas –10 smaller awards focused on near-term capabilities and tool development Focus – to encourage the development of additional new middleware components and capabilities for the NMI program
2003 New System Integrator Awards Butler (UIUC) Disseminating and Supporting Middleware Infrastructure: Engaging and Expanding Scientific Grid Communities Kesselman (USC/ISI) Designing and Building a National Middleware Infrastructure (NMI-2) Klingenstein (UCAID) Extending Integrated Middleware to Collaborative Environments in Research and Education Livny (U Wisc) An Integrative Testing Framework for Grid Middleware and Grid Environments McMullen (Indiana) Instruments and Sensors as Network Services: Instruments as First Class Members of the Grid Pierce, Alameda, Severance, Thomas, and von Laszewski Collaborative Proposal: Middleware for Grid Portal Development
Other New Awards in 2003 Chase (Duke), Ramakrishnan (MCNC) Collaborative Research: A Grid Service for Dynamic Virtual Clusters Gemmil (UAB) NMI-Enabled Open Source Collaboration Tools for Virtual Organizations Karonis (Northern Illinois) Critical Globus-enabled Implementation of the MPI-2 Standard Lumsdaine (Indiana) Scalable Fault Tolerance for MPI Ramachandran (Ga Tech) Exploration of Middleware Technologies for Ubiquitous Computing with Applications to Grid Computing Saltz (Ohio St. URF) GridDB-Lite: Database Support for Data-Driven Scientific Applications in the Grid Wright (U Wisc.), Linderoth (Lehigh) Collaborative Research: MW: Master-Worker Middleware for Grids Arzberger (UCSD) Pacific Rim Application and Grid Middleware Assembly
Looking Ahead There will be an NMI solicitation in 2004 Exact funding level not set NMI program is expected to be a primary focus area under CISE’s new division - Shared CyberInfrastructure October 23 Review at NSF for existing activities among the Grids Center and EDIT teams
Enterprise and Desktop Integration Technologies (EDIT) Consortium Ken Klingenstein Director, Internet2 Middleware Initiative
Overview NMI-EDIT Overview Research Findings NMI Release Components Building on the Future
NMI-EDIT Consortium Enterprise and Desktop Integration Technologies Consortium –Internet2, EDUCAUSE, SURA –Almost all funding passed through to campuses for work Project Goals –Create a common, persistent and robust core middleware infrastructure for the R&E community –Provide tools and services in support of inter- institutional and inter-realm collaborations
A Map of Middleware Land
NMI-EDIT Findings Consensus on inter-institutional middleware standards and maturing architecture to support collaborative applications Widespread interest in Shibboleth within R&E communities Credential mapping from core enterprise to Grid service Grid adoption of SAML in Open Grid Services Architecture (OGSA)
NMI-EDIT Findings (cont.) Creation and maintenance of a heavily referenced set of design and best practices documents Effective linkages with International research communities Discovery and development of campus IT staff, leading to Influence on both federal and commercial standards Direct outreach to over 320 institutions
NMI-EDIT Components from Three NMI Releases Authentication: –WebISO solution, credential mapping from Kerberos to PKI, policy documents, registry service Enterprise Directories: –Schemas; operational monitoring and schema analysis tools; practices in design, groups, and metadirectories Authorization: –Architecture and related software and libraries for multi-institution collaboration
NMI-EDIT Components from Three NMI Releases (cont.) Integration Activities: –Credential mapping from campus to Grid environment, GLUE schema analysis tool Education: –Venues for learning about enterprise middleware including CAMPs and on-line deployment materials for directories
The Upcoming Work Generalizing the Stanford authority system Middleware diagnostics Virtual organizations
Stanford Authz Model
Stanford Authz Goals Simplification of authority policy, management and interpretation. We should be able to summarize the full rights and privileges of an individual "at a glance" or let departmental administrators view and manage together all authority in their department or division. Consistent application of authority rules via infrastructure services and synchronization of administrative authority data across systems.
Stanford Authz Goals (cont.) Integration of authority data with enterprise reference data to provide extended services such as delegation and automatic revocation of authority based on status and affiliation changes. Role-based authority, that is, management of privileges based on job function and assignments rather than attached to individuals.
Deliverables The deliverables consist of A recipe with accompanying case studies of how to take a role-based organization and develop appropriate groups, policies, attributes etc to operate an authority service Templates and tools for registries and group management Web interface and program APIs to provide distributed management (to the departments, to external programs) of access rights and privileges Delivery of authority information through the infrastructure as directory data and authority events.
Middleware Diagnostics Problem Statement The number and complexity of distributed application initiatives and products has exploded within the last 5 years Each must create its own framework for providing diagnostic tools and performance metrics Distributed applications have become increasingly dependent not only on the system and network infrastructure that they are built upon, but also each other
Cisco NetFlow Events RMON Events Event Record Standard Normalization of each diagnostic data feed type (SHIB, HTTP, Syslog, RMON, etc.) into a common event record The tagging of specific events to help downstream correlation processes DB Access Log SHIB log HTTP Access log GRID Application Log Normalization And Event Tagging NETFLOW:TIME:SRC:DST:… RMON:HOST:TIME:DSTPORT.. DB:TIME:HOST:REQ:ASTRON SHIB:TIME:HOST:UID… GRIDAPP:TIME:HOST:UID:… Variable Star Catalog DB Application
EnterpriseFederation Alerting apps, filtering data to federation and API to NMS Reporting, Performance, and Forensic apps Application Host Diagnostic Host Federation specific reporting, performance and Forensic apps Massive collection, normalization, filtering or tagging Archive, querying Topological Architecture
Collection Management TLS App (Shibboleth) Log Unix/WIN Log Http Log Filter Anonymizer Aggregation Normalization Data to diagnostic host Instructions from Diagnostic host Lightweight module that exists on application host or diagnostic host Four data operators, each optional for a given stream Normalization operator is specific to each input stream Network (SNMP,NetFlow) Operators Input Stream Examples
NMS API Diagnostic Applications Rich tool platform and API that enables rapid development of diagnostic applications Control and Diagnostic Application Platform Security Risk Analysis Alerting and Notification Historical Analysis Reporting Tracing Forensic SHIB HTTPS Shell Diagnostic HostRemote or Local Applications
Involved Groups and Organizations Internet2 End-to-End Performance Initiative Specific Middleware and GRIDS working groups SHIB, P2P, I2IM, etc. IETF working groups SYSLOG RMOMMIB Efforts in academic and research
Virtual Organizations Geographically distributed, enterprise distributed community that shares real resources as an organization. Examples include team science (NEESGrid, HEP, BIRN, NEON), digital content managers (library cataloguers, curators, etc), life-long learning consortia, etc. On a continuum from interrealm groups (no real resource management, few defined roles) to real organizations (primary identity/authentication providers) A required cross-stitch on the enterprise trust fabric
Leveraging V.O.s Today VO Target Resource User Enterprise Federation
Leveraging V.O.s Tomorrow VO Target Resource User Enterprise Federation Authority System
New Collaborations Work with JISC on Virtual Organizations –A key cross-stitch among enterprises for inter- institutional collaborations –VO’s range from Grids to digital libraries, from earthquake engineering to collaborative curation, from managing observatories to managing rights Interworkings with Australian, Swiss, French universities Corporate interactions with MS, Sun, Liberty Alliance, etc
NMI-EDIT: Next Generation Architecture
The pieces fit together… Campus infrastructure –Developing and encouraging the deployment of identity management components, tools, and support services Inter-realm infrastructure –Leveraging the local organizational infrastructure to enable access to the broader community though Building on campus identity management infrastructures Extending them to contain standard schemas and data definitions Enabling the exchange of access information in a private and secure way Developing diagnostic tools to make complex middleware interactions easier to understand
The GRIDS Center: Defining and Deploying Grid Middleware John McGee University of Southern California Information Sciences Institute
NSF Middleware Initiative (NMI) GRIDS is one of two original teams, the other being EDIT New NMI teams just announced (Grid portals and instrumentation) GRIDS releases well-tested, deployed and supported middleware based on common architectures that can be extended to Internet users around the world NSF support of GRIDS leverages investment by DOE, NASA, DARPA, UK e-Science Program, and private industry
GRIDS Center GRIDS = Grid Research Integration Development & Support Partnership of leading teams in Grid computing –University of Chicago and Argonne National Lab –Information Sciences Institute at USC –NCSA at the University of Illinois at Urbana-Champaign –SDSC at the University of California at San Diego –University of Wisconsin at Madison –Plus other software contributors (to date: UC Santa Barbara, U. of Michigan) GRIDS develops, tests, deploys and supports standard tools for: –Authentication, authorization, policy –Resource discovery and directory services –Remote access to computers, data, instruments
The Grid: What is it? “Resource-sharing technology with software and services that let people access computing power, databases, and other tools securely online across corporate, institutional, and geographic boundaries without sacrificing local autonomy.” Three key Grid criteria: –coordinates distributed resources –using standard, open, general-purpose protocols and interfaces –to deliver qualities of service not possible with pre- Grid technologies
GRIDS Center Software Suite Globus Toolkit ®. The de facto standard for Grid computing, an open-source "bag of technologies" to simplify collaboration across organizations. Includes tools for authentication, scheduling, file transfer and resource description. Condor-G. Enhanced version of the core Condor software optimized to work with GT for managing Grid jobs. Network Weather Service (NWS). Periodically monitors and dynamically forecasts performance of network and computational resources. Grid Packaging Tools (GPT). XML-based packaging data format defines complex dependencies between components.
GRIDS Center Software Suite (cont.) GSI-OpenSSH. Modified version adds support for Grid Security Infrastructure (GSI) authentication and single sign-on capability. MyProxy. Repository lets users retrieve a proxy credential on demand, without managing private key and certificate files across sites and applications. MPICH-G2. Grid-enabled implementation of the Message Passing Index (MPI) standard, based on the popular MPICH library. GridConfig. Manages the configuration of GRIDS components, letting users regenerate configuration files in native formats and ensure consistency. KX.509 and KCA. A tool from EDIT that bridges Kerberos and PKI infrastructure.
E-Science Benefits Substantially from GRIDS Components Large-scale IT deployment projects rely on GRIDS components and architecture for core services –BIRN, the Bioinformatics Research Network –GEON, the Geoscience Network –GriPhyN, Particle Physics Data Grid, International Virtual Data Grid Laboratory –NEESgrid, part of the Network for Earthquake Engineering and Simulation –International projects such as the UK e-Science Program and EU DataGrid GRIDS standard tools let projects avoid building their own infrastructure –Increases interoperability, efficiency –Prevents “balkanization” of applications BIRN MRI Data for Brain Imaging
Industrial and International Leaders Move to Grid Services GRIDS leaders engage a worldwide community in defining specifications for Grid services –Very active working through Global Grid Forum –Over a dozen leading companies (IBM, HP, Platform) have committed to Globus-based Grid services for their products NMI-R4 in December will include Globus Toolkit 3.0 –GT3 is the first full-scale deployment of new Open Grid Services Infrastructure (OGSI) spec –Significant contributions from new international partners (University of Edinburgh and Swedish Royal Institute of Technology) for database access and security –UK Council for the Central Laboratory of the Research Councils (CCLRC) users rank deployment of GT3 as their #1 priority
Acclaim for GRIDS Components On July 15, the New York Times noted the “far-sighted simplicity” of the Grid services architecture The Globus Toolkit has earned: –R&D 100 Award –Federal Laboratory Consortium Award for Excellence in Technology Transfer MIT Technology Review named Grid one of “Ten Technologies That Will Change the World” InfoWorld list of 2003’s top 10 innovators includes two GRIDS PIs GRIDS co-PI Ian Foster named “Innovator of the Year” for 2003 by R&D Magazine
Future GRIDS Plans GRIDS is completing its second year in October –Original three-year award, through Fall 2004 –Very successful in establishing processes, meeting twice/year release schedule, defining broadly accepted Grid middleware standards, and increasing public awareness of Grid computing GRIDS Center 2 plans –Further develop and refine core NMI releases and processes –Deploy tools based on Open Grid Services Architecture –Expand testing capability –Create a federated bug-tracking facility –Public databases: Grid Projects and Deployments System and Grid Technology Repository –Increase outreach to communities at all levels: Existing major Grid projects (e.g., TeraGrid, NEESgrid) Major projects that should use Grid more (e.g., SEEK, NEON) New communities not yet using Grid (e.g., Computer-Aided Diagnosis)
Upcoming Tutorials GRIDS is extremely well-represented at SC03, the supercomputing conference –Tutorials, technical papers, BoFs, demonstrations –Phoenix, AZ, November –http://www.sc-conference.org/sc2003 GlobusWORLD 2004 conference –Co-sponsored by GRIDS –San Francisco, CA, January –Academia and Industry both well-represented –http://www.globusworld.org
For More Information The GRIDS Center NSF Middleware Initiative The Globus Alliance
NMI Integration Testbed Mary Fran Yafchak NMI Integration Testbed Manager SURA IT Program Coordinator Southeastern Universities Research Association
USERS Implementers Target Communities NMI Integration Testbed About the NMI Testbed NMI Participation Developed and managed by SURA Evaluate NMI components upon release Real life contexts - research projects, enterprise applications and infrastructure DEVELOPERSSUPPORTERSCONTRIBUTORS ? future expansion UAB UAH UFL FSU GSU UMich TACC UVA Sites NMI Integration Testbed (USC) REU Students Testbed Grid
Activities to date Evaluation of NMI Releases 1, 2 & 3 Project & enterprise integration Addition of REU student positions Workshops & Presentations Firing up of intra-Testbed grid
Evaluation of NMI R2 & R3 Once upon a time… NMI R1, completed September components, 61 reports, focused “across the board” This past year… NMI R2, completed February components, 59 reports, focused “across the board” NMI R3, completed August components, 57 reports, heavy on grids and newer authn/authz components Trend towards more “practical” evaluation
Project/Enterprise Integration Catalyzing advanced infrastructure –Seven sites with centralized identity and authentication for directories & multiple active applications –Four sites implementing campus grids UMich’s MGridMGrid USC’s USCGridUSCGrid TACC in UTGrid & TIGRETIGRE GSU’s
Project/Enterprise Integration Extending access for existing projects Examples: UAH: Grid-based applications with NCSA MEAD expedition and NASA Marshall Space Flight CenterMEAD expedition UMich, GSU: Access for physicists to DOE experiments (Particle Physics Data Grid, ATLAS, CERN LHC)Particle Physics Data GridATLASLHC Expanded access for new audiences Examples: GSU: Student access to graphic rendering capability GSU: Distributed muon detector in collaboration with GSU physicists and Georgia state high schools.
NSF REU in NMI SURA provides administration; sites provide experience and mentoring Five positions at four sites:Five positions at four sites –GSU Muon particle detector GRID for K-12 GRID-enabled Applications Catalog –UMich NMI components in ATLAS and MGRID –TACC/UVA Grid Portals for the NMI Integration Testbed
Intra-Testbed Grid Rationale - Sites’ interest, expertise and position to contribute Two foci Demonstration *, led by Art Vandenberg, GSU Research, led by Marty Humphrey & Jim Jokl, UVa Key deliverables (through August 2004) –Develop and publish grid application catalog –Establish working inter-institutional grid with “plumbing” to enterprise infrastructure (where possible) –Identify cross-campus issues (barriers to scalability) and recommendations for resolution Demonstration Definition 1. the act of proving with evidence. Source: *
NMI Testbed Workshops 1st Testbed Results workshop –April 2003 at Internet2 Spring Meeting 2nd Testbed Results workshop –This past Monday, preceding EDUCAUSE 2003 SURA NMI PACS workshops –Small group training in enterprise directories and related applications (Aug & Sept. 2003)
NMI Testbed Presentations I2 Members’ meetings (Spring 2003, Fall 2003)I2 Members’ meetings EDUCAUSE 2003 “Experiences in Middleware Deployment: Teach a Man to Fish…,” Thursday, 11/6, 3:55 - 4:45 p.m., 303D GlobusWorld 2004 “Taking Grids out of the Lab and onto the Campus”, Thursday, January 22, 10:30 a.m p.m. Tomorrow!
NMI and NMI-EDIT Outreach Ann West EDUCAUSE/Internet2
Topics NMI participation model NMI-EDIT goals, products, and results Education opportunities
NMI-EDIT Outreach Goals Creating awareness Encouraging deployment Creating middleware communities Serving the middleware R&D community Establishing information and support persistence
NMI-EDIT Outreach Products Awareness presentations –22 presentations last year Workshops and tutorials –1060 total attendance. –718 distinct participants –323 distinct organizations
NMI-EDIT Outreach Products Content development –Articles –Directory roadmap Community work –Minority-serving institutions and small colleges –Registrars (AACRAO) and CFOs (NACUBO) –Higher-education systems
Education Opportunities Directory CAMP –Feb 3-6, 2004 in Tempe AZ EDUCAUSE regional meetings –Look for NMI-EDIT branded session Getting started? –www.nmi-edit.org Check out Getting Started section Enterprise Directory Implementation Roadmapwww.nmi-edit.orgGetting Started Roadmap
More Information… NMI –nsf-middleware.orgnsf-middleware.org NMI-EDIT –www.nmi-edit.orgwww.nmi-edit.org –middleware.internet2.edumiddleware.internet2.edu –www.educause.edu/eduperson/www.educause.edu/eduperson/ GRIDS Center –www.grids-center.orgwww.grids-center.org