We think you have liked this presentation. If you wish to download it, please recommend it to your friends in any social system. Share buttons are a little bit lower. Thank you!
Presentation is loading. Please wait.
Published byGabriel McDermott
Modified over 2 years ago
Grid Mean Business: Security Management in Grids – A new challenge? Mike Boniface OGF21, Manchester Wednesday 9 May 2007
© University of Southampton IT Innovation Centre, 2007 IT Innovation An applied research centre, complementing the academic research groups in the School of Electronics and Computer ScienceAn applied research centre, complementing the academic research groups in the School of Electronics and Computer Science Our objective is the innovative application of ITOur objective is the innovative application of IT We carry out applied research and development with and for industry and commerceWe carry out applied research and development with and for industry and commerce –collaborative research (supported by EC and UK programmes) –client-funded research, development and consulting We deliver proofs-of-concept, demonstrators and novel operational systemsWe deliver proofs-of-concept, demonstrators and novel operational systems
© University of Southampton IT Innovation Centre, 2007 Do You Remember… Probabilistic design environment Sensitivity to uncertainties –manufacturing tolerances –modeling assumptions Example applications –satellite antennae deployment –crash modeling Distributed resources –7 sites (3 with firewalls) –over 100 processors
©2007 University of Southampton IT Innovation Centre and other members of the SIMDAT consortium Where are we today? Acoustics Service Design Optimisation Service Structures Service Aerodynamics Service (Matlab, OGSA-DAI, Condor, GRIA) (Model Center, SunGridEngine, GRIA) (iSightFD, Torque, GRIA) (Patran, GRIA)
©2007 University of Southampton IT Innovation Centre and other members of the SIMDAT consortium Contextual Collaboration: Virtual Employee Single Controlling Partner
©2007 University of Southampton IT Innovation Centre and other members of the SIMDAT consortium Extended Enterprise: Business Cooperative Virtual Organisation Prime Contractor
©2007 University of Southampton IT Innovation Centre and other members of the SIMDAT consortium Extended Enterprise: Business Partnership
©2007 University of Southampton IT Innovation Centre and other members of the SIMDAT consortium Infrastructure Accreditation Collaboration patterns Operational security policies Business Requirements Technology Capabilities Infrastructure Accreditation Technology Gaps Dynamic trust and security (GRIA) SLA management and accounting (GRIA) E2E Toolkit (NEC) Dynamic Access Control (NEC, IT Innov) Transatlantic Secure Collaboration Programme (www.tscp.org) Risk analysis Grid Technology Uptake
©2007 University of Southampton IT Innovation Centre and other members of the SIMDAT consortium Operational Security Policies: ISO27001:2005 ControlSummary of GapProcedure update Existing TechnologyTechnology Gap A.6Increased complexity of third party risk assessments. A.7Classification of information and labelling across domains Info Labelling, Monitoring info flows. A.8Propagation of user information domains CAs, SLA and Client management services Monitoring A.10Need for secure and trusted audit logs.Auditing, Monitoring, Fault Logging. A. 10Shared operational procedures and responsibilities A.11Addition complexity of user management Certificate authorities, PKI, Token services Integration with existing identity schemes. A.12Security in development and support process Grid infrastructure release processes. Auditing A.12Grid vulnerability analysisVulnerability analysis tools, Intrusion tolerance A.13Reporting of security events in a Grid system. Monitoring and Reporting tools. A. 15ComplianceAudit
©2007 University of Southampton IT Innovation Centre and other members of the SIMDAT consortium SIMDAT Industrial Grid Profile Adoption analysis of key Web Service and Grid interoperability specifications Motivation to –understand adoption issues when applied to industrial applications (security, operational, performance) –recommend how the specifications can be safely adopted by SIMDAT applications –publish Industrial Grid Profile to wider community e.g. OGF white_papers Thursday 10 th May Standards Alignment Report-Out Charter Suite 5
©2006 University of Southampton IT Innovation Centre © University of Southampton IT Innovation Centre, 2007 GRIA: A Grid for business Open Source Grid middleware for supporting B2B collaborations based on a service-oriented architecture Easy to use yet powerful functionality –business-to-business accounting and service level agreements –dynamic trust and security –distributed file transfer, storage and processing –distributed database access using OGSA-DAI –distributed inter-domain workflow composition, enactment and publication using Taverna/Freefluo –cross-platform, running on Windows XP and various Linux distributions –developers kit for new managed application services Available free and open source from
©2006 University of Southampton IT Innovation Centre © University of Southampton IT Innovation Centre, 2007 Characteristics of Business Grids Customers control which services they consume, how much they are used, and by whom Service providers operate independently and maintain control of their own resources Service providers operate within the terms of relevant application software licenses Services are subject to Service Level Agreements Security to commercial standards Heterogeneous infrastructures Maintenance should be cost-effective
© University of Southampton IT Innovation Centre, 2007 Securing Multi-Organisational SOA Traditional systems are easy to secureTraditional systems are easy to secure –system components are known in advance –threats can be anticipated and defences included –deployments can be configured to manage threat levels within the system Dynamic distributed systems cannot be made secure this wayDynamic distributed systems cannot be made secure this way –system components and configurations change dynamically –system boundaries change as organisations join and leave the application –administration is distributed with no overarching threat assessment or management
© University of Southampton IT Innovation Centre, 2007 Virtual Organisations: Trust, Dependency, Intrusion Tolerance Org AOrg B Org E Org D Org C
© University of Southampton IT Innovation Centre, 2007 Business Partnerships: Trust, Security,Intrusion Tolerance Org AOrg B Org E Org D Org C
© University of Southampton IT Innovation Centre, 2007 Conclusions Is security management in Grids a new challenge? Yes
© University of Southampton IT Innovation Centre, 2007 Thank you for listening
©2007 University of Southampton IT Innovation Centre and other members of the SIMDAT Consortium Grid-based Collaborative Product Design: The SIMDAT Grid.
©2006 University of Southampton IT Innovation Centre and other members of the SIMDAT consortium A SIMDAT Perspective on Grid Standards and Specifications.
Manchester Computing Cross Council ICT Conference For e-Science & GRID May 2004 End to End Services to support an e-Science Community Professor M.
EGEE-III INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks Experiences with using the EGEE grid infrastructure.
Tecnologia dei Servizi Grid e cloud computing - Lezione 002a 0 Lezione 2a - 14 ottobre 2009 Il materiale didattico usato in questo corso è stato mutuato.
OMII-UK Steven Newhouse, Director. © 2 OMII-UK aims to provide software and support to enable a sustained future for the UK e-Science community and its.
© Fraunhofer Institute SCAI and other members of the SIMDAT consortium Data Grids for Process and Product Development using Numerical Simulation and Knowledge.
INFSO-RI Enabling Grids for E-sciencE Overview of e-Infrastructure Mike Mineter Training Outreach and Education National e-Science.
Supporting further and higher education 19th APAN Meetings in Bangkok Innovative Uses of Pervasive Broadband Network Is adoption of technology running.
© 2006 OpenGridForum Standards Orientation OGF-19, Tuesday, January 30, 2007 Lee, Cohen, Subramanian.
Copyright © 2005 SOA Software, Inc. All Rights Reserved. Specifications Subject to Change Without Notice. Overcoming the SOA Network Fallacy Roberto Medrano.
Current status of grids: the need for standards Mike Mineter TOE-NeSC, Edinburgh.
1 2 nd Shanghai, 19/02/06 Architecture for Next Generation Grids Kostas Tserpes, NTUA Shanghai, 20th of February 2006.
Promoting and Standardizing Grid Computing Defining the Grid: Open Grid Services Architecture Current and Future Generation Grid Technology Summer School.
Kyriakos Baxevanidis Deputy Head Unit of Research Infrastructures European Commission, DG Information Society and Media Research Infrastructures Info Event,
Presentation Title | Date | Page 1 The Road to SOA.
Dr. Daniel Sabbah Vice President of Strategy & Technology IBM Software Group Bringing Grid & Web Services Together Globus World San Francisco, CA Tuesday,
Information Society and Media Directorate-General Unit Grid Technologies Workshop - Beijing, June EU Grid Research – Priorities.
SIMDAT TMB, 15 December 2004 AMD-1 SIMDAT V-GISC/SIMDAT project – a Virtual GISC Alfred Hofstadler, Matteo DellAcqua ECMWF.
Abstract Cloud Computing is being projected by several major IT companies such as IBM, Google, Yahoo, Amazon and others as fifth utility where clients.
World Wide Web Conference May 2006 Global utilities for the 21st century Franco Accordino – DG INFSO/F2 Global utilities for the 21st century.
V © 2009 IBM Corporation Systems & Technology Group Cloud computing for System z.
© 2006 Open Grid Forum Workflow Management Research Group - WFM-RG OGF 22 Ian Taylor, Andrew Harrison and Ewa Deelman.
Invitation to Join Open Health Tools Draft by Skip McGaughey
NCeSS International Conference Manchester Progress with e-Science? Malcolm Atkinson e-Science Institute & e-Science Envoy 29 th June 2006.
Spotlight On Active Directory Interoperability Kim Saunders Director, Interoperability Programs Andreas Luther Group Program Management, Microsoft Identity.
© 2016 SlidePlayer.com Inc. All rights reserved.