Grid Network Services: Lessons from SC04 draft-ggf-bas-sc04demo-0.doc

Slides:

Advertisements

Similar presentations

Intra-Carrier Solutions Enabled by the OIF NNI Erning Ye Nortel Networks.

Advertisements

Electronic Visualization Laboratory University of Illinois at Chicago EVL Optical Networking Research Oliver Yu Electronic Visualization Laboratory University.

All rights reserved © 2006, Alcatel Grid Standardization & ETSI (May 2006) B. Berde, Alcatel R & I.

All rights reserved © 2005, Alcatel Grid services over IP Multimedia Subsystem  Antoine Pichot, Olivier Audouin, Alcatel  GridNets ’06.

Application-Based Network Operations (ABNO) IETF 88 – SDN RG

The Anatomy of the Grid: An Integrated View of Grid Architecture Carl Kesselman USC/Information Sciences Institute Ian Foster, Steve Tuecke Argonne National.

© 2006 Open Grid Forum Network Service Interface in a Nut Shell GEC 19, Atlanta, GA Presenter: Chin Guok (ESnet) Contributors: Tomohiro Kudoh (AIST), John.

An Architecture for Application-Based Network Operations Adrian Farrel - Old Dog Consulting Daniel King –

Omniran TG 1 Cooperation for OmniRAN P802.1CF Max Riegel, NSN (Chair OmniRAN TG)

An evolutionary approach to G-MPLS ensuring a smooth migration of legacy networks Ben Martens Alcatel USA.

Authorization of a QoS path based on Generic AAA SC2002 Baltimore NOV Bas van Oudenaarde Advanced Internet Research Group University of Amsterdam.

OLD DOG CONSULTING Traffic Engineering or Network Engineering? The transition to dynamic management of multi-layer networks Adrian Farrel Old Dog Consulting.

Optical networking research in Amsterdam Paola Grosso UvA - AIR group.

DWDM-RAM: DARPA-Sponsored Research for Data Intensive Service-on-Demand Advanced Optical Networks DWDM RAM DWDM RAM BUSINESS WITHOUT BOUNDARIES.

Generic AAA based provisioning Of Network Elements Status update EVL 9/10/03 Leon Gommans University of Amsterdam.

Feb On*Vector Workshop Semantic Web for Hybrid Networks Dr. Paola Grosso SNE group University of Amsterdam The Netherlands.

Architectural Design Principles. Outline  Architectural level of design The design of the system in terms of components and connectors and their arrangements.

ESnet On-demand Secure Circuits and Advance Reservation System (OSCARS) Chin Guok Network Engineering Group Thomas Ndousse Visit February Energy.

Abstraction and Control of Transport Networks (ACTN) BoF

TERENA Networking Conference 2004, Rhodes, Greece, June Differentiated Optical Services and Optical SLAs Afrodite Sevasti Greek Research and.

A Framework for Internetworking Heterogeneous High-Performance Networks via GMPLS and Web Services Xi Yang, Tom Lehman Information Sciences Institute (ISI)

OIF NNI: The Roadmap to Non- Disruptive Control Plane Interoperability Dimitrios Pendarakis

PART II BoD server prototype Implementation & technical details MB-NG UCL 20/21 - Feb Bas van Oudenaarde Advanced Internet Research Group.

OGF DMNR BoF Dynamic Management of Network Resources Documents available at: Guy Roberts, John Vollbrecht.

Lucy Yong Young Lee IETF CCAMP WG GMPLS Extension for Reservation and Time based Bandwidth Service.

Optical Architecture Invisible Nodes, Elements, Hierarchical, Centrally Controlled, Fairly Static Traditional Provider Services: Invisible, Static Resources,

A DVANCE AND I MMEDIATE R ESERVATIONS OF V IRTUALIZED N ETWORK R ESOURCES Laia Ferrao Fundació i2CAT

Problem Scope Objective To demonstrate/determine clearly the need for an edge protocol that allows a user to interact with an agent in the network for.

The concepts of Generic AAA are described in RFC2903 [1] (Generice AAA Architecture) and RFC2904 [2] (Authorization Framework). Several.

Authorization GGF-6 Grid Authorization Concepts Proposed work item of Authorization WG Chicago, IL - Oct 15 th 2002 Leon Gommans Advanced Internet.

Omniran IEEE 802 Scope of OmniRAN Date: Authors: NameAffiliationPhone Max RiegelNSN

TeraPaths: A QoS Enabled Collaborative Data Sharing Infrastructure for Petascale Computing Research The TeraPaths Project Team Usatlas Tier 2 workshop.

Moving towards an IRS WG Charter Ross Callon IETF 85, Atlanta.

15 Apr RoN meetingResource Brokering and Modeling Jeroen van der Ham & Paola Grosso UvA - AIR group

Omniran IEEE 802 Scope of OmniRAN Date: Authors: NameAffiliationPhone Max RiegelNSN

Towards a High Performance Extensible Grid Architecture Klaus Krauter Muthucumaru Maheswaran {krauter,

An evolutionary approach to G-MPLS ensuring a smooth migration of legacy networks Ben Martens Alcatel USA.

Instructor Materials Chapter 6: Quality of Service

VPN Extension Requirements for Private Clouds

Multi-layer software defined networking in GÉANT

Grid Optical Burst Switched Networks

Daniel King, Old Dog Consulting Adrian Farrel, Old Dog Consulting

Firewall Issues Research Group GGF-15 Oct Boston, Ma Leon Gommans - University of Amsterdam Inder Monga - Nortel Networks.

Inter domain signaling protocol

Implementation Considerations in an On-Demand Switched Lightpath Network Adapting the Network to the Application Rob Keates Optical Architecture and PLM.

IEEE 802 OmniRAN Study Group: SDN Use Case

Daniel King, Old Dog Consulting Adrian Farrel, Old Dog Consulting

SLR, SLS and SLA issues Afrodite Sevasti SA2 participant

Virtual Active Networks

Similarities between Grid-enabled Medical and Engineering Applications

StarPlane: Application Specific Management of Photonic Networks

Daniel King, Old Dog Consulting Adrian Farrel, Old Dog Consulting

Establishing End-to-End Guaranteed Bandwidth Network Paths Across Multiple Administrative Domains The DOE-funded TeraPaths project at Brookhaven National.

Cloud Management Mechanisms

Integration of Network Services Interface version 2 with the JUNOS Space SDK

EMV® 3-D Secure - High Level Overview

OmniRAN Introduction and Way Forward

Network Services Interface

Interface to Routing System (I2RS)

The Globus Toolkit™: Information Services

Virtual Active Networks

Brief Introduction to OmniRAN P802.1CF

Key concepts of authorization, QoS, and policy control

IEEE 802 Scope of OmniRAN Abstract

AAA: A Survey and a Policy- Based Architecture and Framework

OmniRAN Introduction and Way Forward

Resource and Service Management on the Grid

SURVIVABILITY IN IP-OVER-WDM NETWORKS (2)

IEEE MEDIA INDEPENDENT HANDOVER DCN:

Single path routing in most of the servers

Presentation transcript:

Grid Network Services: Lessons from SC04 draft-ggf-bas-sc04demo-0.doc Bas Oudernaarde (UvA) Madhav Srimadh (Nortel) Inder Monga (Nortel) (presenter)

Agenda Scenario Description Services Model Components AAA DRAC Discussion points Conclusion draft-ggf-bas-sc04demo-0.doc

Scenario Grid application in Amsterdam Data in Chicago Requirement: Need the data from Chicago ASAP with best QoS (low latency, dedicated, high bandwidth) Solution: Provision the fastest path from Amsterdam to Chicago Money no objection  Collaborative effort across institutions (administrative domains) draft-ggf-bas-sc04demo-0.doc

Multi-domain setup UvA Amsterdam GridFTP Client GridFTP Server Chicago OMNInet ODIN Chicago Data AAA HOME Network Service Plane AAA DRAC Starlight DRAC AAA Netherlight DRAC AAA DRAC Internet 2/ Canarie draft-ggf-bas-sc04demo-0.doc

Highlights Network Service Plane Multi-domain Service setup Driven by Grid application Service Authorization Multi-domain Service setup Inter-domain service recovery Network virtualization Multiple Control Planes Different layers and network elements L2 switch, optical crossconnect, photonic switch draft-ggf-bas-sc04demo-0.doc

Network Services Plane Layered above legacy network control planes: Turns network into a virtualized manageable resource Bridges disparate network domains Exposes programmatic interfaces to authorized users/applications. Automates network resource allocation requests by user applications (ex. Grid) Bridges the gap between networks and Grid Services Architecture Two ingredients in each administrative domain AAA Network Services Manager draft-ggf-bas-sc04demo-0.doc

AAA (UvA) Network AAA is one facet of its functionality Dual role Handle other resource types Dual role Authorization to use it’s own domain’s resources Manage trust between administrative domains for peering Peer model Trust your direct neighbor Non-transitive trust Can’t necessarily trust neighbor’s neighbor Authorization hierarchy User obtains authorization within domain Organization obtains authorization across domains Intermediate domains unaware of requesting application or user User billed by its own organization draft-ggf-bas-sc04demo-0.doc

Network Services Manager (DRAC) http://www.nortel.com/drac Network services provider to apps Represents resources in its domain Decentralized architecture Works with variety of control plane/configuration protocols Ability to make end-to-end domain-path decisions based on requested service (QoS) Source-routed Abstract API for applications/AAA Path Setup Error Notification Various interaction models with AAA draft-ggf-bas-sc04demo-0.doc

DRAC-AAA Operational Models P-DRAC App Peer Proxy Agent DRAC Peer Token first, then request DRAC Proxy Proxy-DRAC has interface to application. AAA is hidden Agent AAA authorizes request and relays to DRAC DRAC communication between domains embedded between AAA to AAA server communication draft-ggf-bas-sc04demo-0.doc

Discussion Points Resource reservation mechanism for Service Plane Commit on the way out Commit on the way back Deadlock and starvation avoidance Hungry applications can starve later requests Two applications waiting for the same network resource Service request arbitration/SLA enforcement Resource request, release and pre-emption policies need to be provided Inter-domain network failure, restoration and accountability How to propagate network failure and restoration to members of the established path(s) in other domains? Best way to compute an alternate path when inter-domain route fails, iterative process? Should the application be made aware? draft-ggf-bas-sc04demo-0.doc

Discussion Points (contd.) Trust, Privacy and Roles (AAA) User information or application details not propagated across domains. Roles-based authorization considered, consistency required across domains. Should roles be used to guarantee a certain QoS? Policy framework for admission control (AAA) Critical in managing resource allocation Combination of trust tokens, auth tokens and role-based policies Rule based policy engine can combine attributes like time, role to provide differentiated network resource usage Source based routing versus traditional routing Inter-domain path setup Service tolerance of services provided and expected behaviors – SLA? Software/Middleware failures Connectivity breaks due to partial network failures draft-ggf-bas-sc04demo-0.doc

Conclusion Demonstrated a new provisioning plane/model for networks Independent of control planes technology adopted by adjacent domains Inter-domain failures and restoration can be handled at a different layer than intra-domain failures Other Network knowledge services can be exposed through the same plane: Topology Network failures Good fit as GNS/NS modeule being specified by GNSA? draft-ggf-bas-sc04demo-0.doc