Presentation is loading. Please wait.

Presentation is loading. Please wait.

HEXAA e-Science gateways with external attribute authority István Tétényi, MTA SZTAKI 21-May-2014 Co-Authors: Mr. Héder, Mihály (MTA SZTAKI); Mr. BAJNOK,

Published byPhilip Stanley Modified over 8 years ago

Similar presentations

Presentation on theme: "HEXAA e-Science gateways with external attribute authority István Tétényi, MTA SZTAKI 21-May-2014 Co-Authors: Mr. Héder, Mihály (MTA SZTAKI); Mr. BAJNOK,"— Presentation transcript:

1 HEXAA e-Science gateways with external attribute authority István Tétényi, MTA SZTAKI 21-May-2014 Co-Authors: Mr. Héder, Mihály (MTA SZTAKI); Mr. BAJNOK, Kristóf (NIIF); Dr. FARKAS, Zoltán (MTA SZTAKI); Mr. KAROCZKAI, Krisztián (MTA SZTAKI); Mr. KOTCAUER, Péter (MTA SZTAKI)

2 2 Connect | Communicate | Collaborate Outline Introduction Overview of HEXAA project HEXAA for e-Science gateways Conclusions

3 3 Connect | Communicate | Collaborate Project background HEXAA = Higher Education eXternal Attribute Authority HEXAA is a GEANT3plus Open Call project Participants: SZTAKISZTAKI (Institute for Computer Science and Control) NIIFI/HungarnetNIIFI/Hungarnet (Hungarian Academic and Research Network Organization) SZTAKI and NIIFI/Hungarnet have a long successful history of cooperation This included: identity management federated identity service (eduID) day-to-day working relationship

4 4 Connect | Communicate | Collaborate HEXAA motivation HEXAA is the outcome of a successful integration of OpenNebula and federated identity management in 2012 HEXAA answers two critical questions: where could we store attribute information that does not suit well with institutional identity management procedures? how could we provide external attributes in a standard way for web applications? Our answers: External Attribute Authority SAML 2 (attribute request)

5 5 Connect | Communicate | Collaborate HEXAA vision Already in the field: VO management software for managing groups Attribute Authorities to provide group information federated applications to use group information HEXAA aims to: ship a VO and profile management interface that is capable to register any attribute handle consent of attribute release if & when required tie it to a SAML2 Attribute Authority offer custom hooks that are invoked on changes (provisioning, etc.) API for legacy applications interworking with other AA-s Apache licence

6 6 Connect | Communicate | Collaborate HEXAA workplan and status 1.Interviews with several research projects do they need VOs? do they need custom profile attributes? special requirements (expiration, targeting)? 2.Requirements survey – has been issued 3.Legal analysis and guideline document for AAs - progressing with respect to inter-federation (eduGAIN) 4.Software development – progressing well Streamlined profile and group management Implement back-channel attribute queries and an attribute server for SimpleSAMLphp Integration for the most important e-Science applications/platforms Feedback byproducts to open communities – Attribute Aggregator for SSP – Liferay integration plugin

7 7 Connect | Communicate | Collaborate Empowering scientific communities: HEXAA – SCI-BUS – EGI integration European Grid Federated Cloud Community specific user environments Community specific software deployments Community specific user attributes

8 8 Connect | Communicate | Collaborate HEXAA as VO manager

9 9 Connect | Communicate | Collaborate Quick demo: HEXAA + WS-PGRADE Federated login

10 10 Connect | Communicate | Collaborate Quick demo: HEXAA + WS-PGRADE Login at home organization

11 11 Connect | Communicate | Collaborate Quick demo: HEXAA + WS-PGRADE Logged in WS-PGRADE with entitlements from VO + AAI federation

12 12 Connect | Communicate | Collaborate Quick demo: HEXAA + WS-PGRADE

13 13 Connect | Communicate | Collaborate HEXAA in application area context Scope – hierarchy relatedTarget community LocalUniversity / research institute NREN federationeduID /HU/ Con-federationeduGAIN * Scientific federationsEGI science gateways + Scope – platform relatedTarget application area Content managementLiferay, MediaWiki, Drupal CloudOpen Nebula, Open Stack, Cloud Stack OtherIcinga, AjaxPlorer * planned

14 14 Connect | Communicate | Collaborate HEXAA plans Planned for near future: OpenStack integration NREN applications (e.g. NIIFI / high-performance computing portal) Complete requirement survey: http://survey.hexaa.euhttp://survey.hexaa.eu software development / system integration Known open questions: handling of Level of Assurance scoped attributes / responses - e.g. affiliation attribute release policy issues and user consent handling Inter-federation opportunities /PERUN, OpenConext, HEXAA, etc./ discovery service for HEXAA and other AA-s Partnering in H2020 projects to support more e-Science gateways

15 15 Connect | Communicate | Collaborate Conclusions HEXAA as a project is progressing well Please, spread the word of the survey: http://survey.hexaa.euhttp://survey.hexaa.eu The HEXAA concept is proved; e-Science gateways are reachable from eduGAIN using a SAML2 AA Solutions of inter-federation interworking issues are to be consolidated H2020 opens room for this activities

16 16 Connect | Communicate | Collaborate www.geant.net www.twitter.com/GEANTnews | www.facebook.com/GEANTnetwork | www.youtube.com/GEANTtv Connect | Communicate | Collaborate Thank you! http://www.geant.net/MediaCentreEvents/news/Pages/GEANT_Open_Call_awards_EC_funding.aspx Please, fill in the survey: http://survey.hexaa.eu

Download ppt "HEXAA e-Science gateways with external attribute authority István Tétényi, MTA SZTAKI 21-May-2014 Co-Authors: Mr. Héder, Mihály (MTA SZTAKI); Mr. BAJNOK,"

Similar presentations

EGI-InSPIRE RI-261323 EGI-InSPIRE EGI-InSPIRE RI-261323 AAI in EGI Status and Evolution Peter Solagna Senior Operations Manager

EGI-InSPIRE RI EGI-InSPIRE EGI-InSPIRE RI AAI in EGI Status and Evolution Peter Solagna Senior Operations Manager
2006 © SWITCH Authentication and Authorization Infrastructures in e-Science (and the role of NRENs) Christoph Witzig SWITCH e-IRG, Helsinki, Oct 4, 2006.

2006 © SWITCH Authentication and Authorization Infrastructures in e-Science (and the role of NRENs) Christoph Witzig SWITCH e-IRG, Helsinki, Oct 4, 2006.
Toward the Clouds, Together ! Collaboration effort of European NRENs in Cloud Computing Branko Radojević, Deputy Director, CARNet/GEANT TF-MSP Budapest,

Toward the Clouds, Together ! Collaboration effort of European NRENs in Cloud Computing Branko Radojević, Deputy Director, CARNet/GEANT TF-MSP Budapest,
SCI-BUS is supported by the FP7 Capacities Programme under contract nr RI-283481 WS-PGRADE/gUSE Supporting e-Science communities in Europe Zoltan Farkas.

SCI-BUS is supported by the FP7 Capacities Programme under contract nr RI WS-PGRADE/gUSE Supporting e-Science communities in Europe Zoltan Farkas.
Climate Sciences: Use Case and Vision Summary Philip Kershaw CEDA, RAL Space, STFC.

Climate Sciences: Use Case and Vision Summary Philip Kershaw CEDA, RAL Space, STFC.
SCI-BUS is supported by the FP7 Capacities Programme under contract nr RI-283481 CloudBroker Platform integration into WS-PGRADE/gUSE Zoltán Farkas MTA.

SCI-BUS is supported by the FP7 Capacities Programme under contract nr RI CloudBroker Platform integration into WS-PGRADE/gUSE Zoltán Farkas MTA.
AAI-enabled VO Platform “VO without Tears” Christoph Witzig EGI TF, Amsterdam, Sept 15, 2010.

AAI-enabled VO Platform “VO without Tears” Christoph Witzig EGI TF, Amsterdam, Sept 15, 2010.
European Grid Initiative Federated Cloud update Peter solagna Pre-GDB Workshop 10/11/2015....1.

European Grid Initiative Federated Cloud update Peter solagna Pre-GDB Workshop 10/11/
Identity Federation Policy Marina Vermezović, AMRES Federated Identity Technology Workshop Sofia, Bulgaria, 20. Jun 2014.

Identity Federation Policy Marina Vermezović, AMRES Federated Identity Technology Workshop Sofia, Bulgaria, 20. Jun 2014.
2005 © SWITCH Perspectives of Integrating AAI with Grid in EGEE-2 Christoph Witzig Amsterdam, October 17, 2005.

2005 © SWITCH Perspectives of Integrating AAI with Grid in EGEE-2 Christoph Witzig Amsterdam, October 17, 2005.
EGEE-II INFSO-RI-031688 Enabling Grids for E-sciencE www.eu-egee.org EGEE and gLite are registered trademarks Interoperability Shibboleth - gLite Christoph.

EGEE-II INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks Interoperability Shibboleth - gLite Christoph.
From P-GRADE to SCI-BUS Peter Kacsuk, Zoltan Farkas and Miklos Kozlovszky MTA SZTAKI - Computer and Automation Research Institute of the Hungarian Academy.

From P-GRADE to SCI-BUS Peter Kacsuk, Zoltan Farkas and Miklos Kozlovszky MTA SZTAKI - Computer and Automation Research Institute of the Hungarian Academy.
GILDA testbed GILDA Certification Authority GILDA Certification Authority User Support and Training Services in IGI IGI Site Administrators IGI Users IGI.

GILDA testbed GILDA Certification Authority GILDA Certification Authority User Support and Training Services in IGI IGI Site Administrators IGI Users IGI.
EMI AAI Strategy & Plans John White / Helsinki Institute of Physics Federated Identity Systems for Scientific Collaborations Workshop 09.06.2011, CERN,

EMI AAI Strategy & Plans John White / Helsinki Institute of Physics Federated Identity Systems for Scientific Collaborations Workshop , CERN,
GridShib: Grid/Shibboleth Interoperability September 14, 2006 Washington, DC Tom Barton, Tim Freeman, Kate Keahey, Raj Kettimuthu, Tom Scavo, Frank Siebenlist,

GridShib: Grid/Shibboleth Interoperability September 14, 2006 Washington, DC Tom Barton, Tim Freeman, Kate Keahey, Raj Kettimuthu, Tom Scavo, Frank Siebenlist,
EGEE-II INFSO-RI-031688 Enabling Grids for E-sciencE EGEE and gLite are registered trademarks Next steps with EGEE Gergely Sipos

EGEE-II INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks Next steps with EGEE Gergely Sipos
Géant-TrustBroker project overview Slides assembled by the Géant-TrustBroker team at Leibniz Supercomputing Centre, Germany for a short presentation by.

Géant-TrustBroker project overview Slides assembled by the Géant-TrustBroker team at Leibniz Supercomputing Centre, Germany for a short presentation by.
Federation as a Service Marina Vermezović, AMRES Federated Identity Technology Workshop Sofia, Bulgaria, 20. Jun 2014.

Federation as a Service Marina Vermezović, AMRES Federated Identity Technology Workshop Sofia, Bulgaria, 20. Jun 2014.
Connect. Communicate. Collaborate AAI scenario: How AutoBAHN system will use the eduGAIN federation for Authentication and Authorization Simon Muyal,

Connect. Communicate. Collaborate AAI scenario: How AutoBAHN system will use the eduGAIN federation for Authentication and Authorization Simon Muyal,
Https://aarc-project.eu Authentication and Authorisation for Research and Collaboration Peter Solagna Milano, AARC General meeting Current status and plans.

Authentication and Authorisation for Research and Collaboration Peter Solagna Milano, AARC General meeting Current status and plans.

Similar presentations

Ads by Google