All Hands Meeting 2005 BIRN Portal Architecture: Security Jana Nguyen

Slides:

Advertisements

Similar presentations

Demonstrations at PRAGMA demos are nominated by WG chairs Did not call for demos. We will select the best demo(s) Criteria is under discussion. Notes.

Advertisements

PRAGMA BioSciences Portal Raj Chhabra Susumu Date Junya Seo Yohei Sawai.

Case Study 2: User Registration for the Earth System Grid.

Building Portals to access Grid Middleware National Technical University of Athens Konstantinos Dolkas, On behalf of Andreas Menychtas.

MyProxy Jim Basney Senior Research Scientist NCSA

Data Management Expert Panel - WP2. WP2 Overview.

Using the Collaborative Tools in NEESgrid Charles Severance University of Michigan.

CGW 2009 Vine Toolkit A uniform access and portal solution to existing grid middleware services P.Dziubecki, T.Kuczynski, K.Kurowski, D.Szejnfeld, D.Tarnawczyk,

National Center for Supercomputing Applications Integrating MyProxy with Site Authentication Jim Basney Senior Research Scientist National Center for Supercomputing.

OxGrid, A Campus Grid for the University of Oxford Dr. David Wallom.

GGF Toronto Spitfire A Relational DB Service for the Grid Peter Z. Kunszt European DataGrid Data Management CERN Database Group.

Data Grids: Globus vs SRB. Maturity SRB  Older code base  Widely accepted across multiple communities  Core components are tightly integrated Globus.

Metadata Server system software laboratory. Overview metadata service in Grid environment Grid environment Metadata server User query data search information.

Catania Science Gateway Framework Motivations, architecture, features Catania, 09/06/2014Riccardo Rotondo

Web-based Portal for Discovery, Retrieval and Visualization of Earth Science Datasets in Grid Environment Zhenping (Jane) Liu.

TeraGrid ’06 National Center for Supercomputing Applications Managing Credentials on the TeraGrid with MyProxy Jim Basney.

Sergey Belov, Tatiana Goloskokova, Vladimir Korenkov, Nikolay Kutovskiy, Danila Oleynik, Artem Petrosyan, Roman Semenov, Alexander Uzhinskiy LIT JINR The.

Grid Computing, B. Wilkinson, a.1 Grid Portals.

National Computational Science National Center for Supercomputing Applications National Computational Science MyProxy: An Online Credential Repository.

Holding slide prior to starting show. A Grid-based Problem Solving Environment for GECEM Maria Lin and David Walker Cardiff University Yu Chen and Jason.

How Grid Security works in GEO Sciences N. Yamamoto, Y. Tanaka, I. Kojima, S. Sekiguchi AIST Oct. 28, 2009.

Introduction to Internet Programming (Web Based Application)

Long Term Ecological Research Network Information System LTER Grid Pilot Study LTER Information Manager’s Meeting Montreal, Canada 4-7 August 2005 Mark.

Grids and Portals for VLAB Marlon Pierce Community Grids Lab Indiana University.

23:48:11Service Oriented Cyberinfrastructure Lab, Grid Portals Fugang Wang April 29

GEON meeting - May 22, 2006 GAMA 2.0 Features and Status Kurt Mueller SDSC.

1 All-Hands Meeting 2-4 th Sept 2003 e-Science Centre The Data Portal Glen Drinkwater.

Production Data Grids SRB - iRODS Storage Resource Broker Reagan W. Moore

National Computational Science National Center for Supercomputing Applications National Computational Science NCSA-IPG Collaboration Projects Overview.

GUMS Gabriele Carcassi PPDG Collaboration meeting June 27, 2004.

CYBERINFRASTRUCTURE FOR THE GEOSCIENCES GEON 2007 Workshop at the University of Auckland, New Zealand, November 26-28, GEON Architecture:

Profile for Portal-based Credential Services (POCS) Yoshio Tanaka International Grid Trust Federation APGrid PMA AIST.

1 Grid Portal for VN-Grid Cu Nguyen Phuong Ha. 2 Outline Some words about portals in principle Overview of OGCE GridPortlets.

Rob Allan Daresbury Laboratory A Web Portal for the National Grid Service Xiaobo Yang, Dharmesh Chohan, Xiao Dong Wang and Rob Allan CCLRC e-Science Centre,

Holding slide prior to starting show. A Portlet Interface for Computational Electromagnetics on the Grid Maria Lin and David Walker Cardiff University.

NA-MIC National Alliance for Medical Image Computing UCSD: Engineering Core 2 Portal and Grid Infrastructure.

The MyProxy Online Credential Repository Jim Basney NCSA

ICalendar Compatible Collaborative Calendar- Server (CCS) Web Services Ahmet Fatih Mustacoglu Indiana University Computer Science Department Community.

GCRC Meeting 2004 BIRN Coordinating Center Software Development Vicky Rowley.

Glite. Architecture Applications have access both to Higher-level Grid Services and to Foundation Grid Middleware Higher-Level Grid Services are supposed.

1 e-Science AHM st Aug – 3 rd Sept 2004 Nottingham Distributed Storage management using SRB on UK National Grid Service Manandhar A, Haines K,

Biomedical Informatics Research Network BIRN Workflow Portal.

Development of e-Science Application Portal on GAP WeiLong Ueng Academia Sinica Grid Computing

1 Gateways. 2 The Role of Gateways  Generally associated with primary sites in ESG-CET  Provides a community-facing web presence  Can be branded as.

Security Solutions Rachana Ananthakrishnan University of Chicago.

Auditing Project Architecture VERY HIGH LEVEL Tanya Levshina.

1 AHM, 2–4 Sept 2003 e-Science Centre GRID Authorization Framework for CCLRC Data Portal Ananta Manandhar.

Isograph Reliability Software Isolib Project Management.

Partnerships in Innovation: Serving a Networked Nation Grid Technologies: Foundations for Preservation Environments Portals for managing user interactions.

1 Egrid portal Stefano Cozzini and Angelo Leto. 2 Egrid portal Based on P-GRADE Portal 2.3 –LCG-2 middleware support: broker, CEs, SEs, BDII –MyProxy.

Shibboleth, SRB, PGL & Plone Russell Sim. MyProxy client uses portal with Web SSO protected with an SP transformation of attributes to certs by MyProxy.

Introduction to Portals.

Biomedical Informatics Research Network BIRN Workflow Portal Shawn Murphy Michael Mendis.

1 Further information and next steps Further information and next steps Gergely Sipos MTA SZTAKI

The GRIDS Center, part of the NSF Middleware Initiative Grid Security Overview presented by Von Welch National Center for Supercomputing.

Holding slide prior to starting show. Lessons Learned from the GECEM Portal David Walker Cardiff University

Database Form Processing Made Easy Chad Killingsworth Web Projects Coordinator.

VOX Project Status T. Levshina. 5/7/2003LCG SEC meetings2 Goals, team and collaborators Purpose: To facilitate the remote participation of US based physicists.

Site Authorization Service Local Resource Authorization Service (VOX Project) Vijay Sekhri Tanya Levshina Fermilab.

Tutorial on Science Gateways, Roma, Catania Science Gateway Framework Motivations, architecture, features Riccardo Rotondo.

Preservation Data Services Persistent Archive Research Group Reagan W. Moore October 1, 2003.

Overview of the New Security Model Akos Frohner (CERN) WP8 Meeting VI DataGRID Conference Barcelone, May 2003.

Biomedical Informatics Research Network BIRN Workflow Portal.

BIRN: Where We Have Been, Where We are Going. Carl Kesselman BIRN Principal Investigator Professor of Industrial and Systems Engineering Information Sciences.

Academic Technology Services The UC Grid Project OSG Consortium All-Hands Meeting Bill Labate & Joan Slottow Research Computing Technologies UCLA Academic.

International Grid Trust Federation Session GGF 19 Chapel Hill, NC, USA Thursday, Feb CAOPS-WG session #1.

Content Management Systems

Cloud Management Mechanisms

Signet & Privilege Management

Presentation transcript:

All Hands Meeting 2005 BIRN Portal Architecture: Security Jana Nguyen

Current BIRN Portal Architecture  Based on Perl  Limited extensibility  Not easy to setup distributed collaborative environment development

How can BIRN portal benefit from GridSphere?  With portlets easy to extend  Modular development model  Built-in features including user management, role based access control  Supports credential management Interfaces to on-line credential repositories  Community development of portlets, e.g. gridportlets, GAMA (GEON/Telescience/BIRN)  Credential management provides distributed development environment

BIRN Portal Architecture Portal server 2 BIRN Portal server retrieve credential DB gridportlets gama GridSphere Servlet container projectportlets siteportlets Grid Account Management Architecture (GAMA) server gridportlets

Account Management Goals  Currently centralized user management Done through BIRN CC  Move to distributed Registration Authority (RA’s) Local site to add, modify and delete its users  Why we need RA’s? Avoid bottleneck Local sites know their users Improves auditing Local sites have control of their users

Site Registration  Site Registration & Management Site tracking system Require approval

Site Management

Portal Security  Why GAMA? Complete GSI credential management system Dedicated security server Portlets for handling accounts  Releases 3.0 – Accounts approved as in current Portal 4.0 – Distributed RA’s

Online Credential Repository  Myproxy Online Credential Repository  Component of GAMA  Stores credentials securely online  Credentials available at anytime or anywhere

Myproxy usability

Portal Security / GAMA Architecture Portal server 2 GAMA server CA MyProxy AXIS Web Services wrapper …. Servlet container import user retrieve credential Stand-alone applications retrieve credential DB BIRN Portal Java keystore Servlet container create user Java keystore

Storage Resource Broker (SRB) Portlets  SRB Portlets Adapted from Telescience Provides a uniform interface Auditing: Logs, read, and writes

What has been done?  Setup Gridsphere and GAMA Hibernate mapping to Postgres database persists gridsphere and GAMA data  Data Migration Users won’t need to apply for new accounts  Site Registration and Project Management Portlets developed