Cloud Service Provisioning Jens Jensen (STFC), Piyush Harsh (INRIA) et al contrail is co-funded by the EC 7th Framework Programme under Grant Agreement.

Slides:

Advertisements

Similar presentations

© 2006 Open Grid Forum Federated Identity in the Cloud OGF 32, Salt Lake City.

Advertisements

GT 4 Security Goals & Plans Sam Meder

Multi-level SLA Management for Service-Oriented Infrastructures Wolfgang Theilmann, Ramin Yahyapour, Joe Butler, Patrik Spiess consortium / SAP.

Integrated Lifecycle of IT Services in a Cloud Environment Karuna P Joshi Ebiquity Research Group, Computer Science and Electrical Engineering Dept, UMBC.

1/16 Distributed Systems Architecture Research Group Universidad Complutense de Madrid An Introduction to Virtualization and Cloud Technologies to Support.

© Copyright 2012 Hewlett-Packard Development Company, L.P. Contrail: SLAs for Cloud Federations Lorenzo Blasi, Hewlett Packard 1 contrail.

Canada-EU Future Internet Workshop Waterloo, Canada March 24th, 2011 Ignacio M. Llorente DSA-Research.org Distributed Systems Architecture Research Group.

Implementing Federated Security with ConSec Jens Jensen, STFC OGF40, Oxford, 16 Jan 2014.

Contrail and Federated Identity Management

CLOUD COMPUTING AN OVERVIEW & QUALITY OF SERVICE Hamzeh Khazaei University of Manitoba Department of Computer Science Jan 28, 2010.

Infrastructure layer Massonet Philippe, CETIC RESERVOIR Dissemination Activity Leader John Kennedy, INTEL Infrastructure Leader.

CONTRAIL Security Open Computing Infrastructures for Elastic Services Call FP7-ICT Proposal Number FP Dr Jens Jensen jens.jensen.at.stfc.ac.uk.

SmartER Semantic Cloud Sevices Karuna P Joshi University of Maryland, Baltimore County Advisors: Dr. Tim Finin, Dr. Yelena Yesha.

Design Aspects. User Type the URL address on the cell phone or web browser Not required to login.

NextGRID & OGSA Data Architectures: Example Scenarios Stephen Davey, NeSC, UK ISSGC06 Summer School, Ischia, Italy 12 th July 2006.

Towards Cloud Federations: what we have; what we want OGF 31, Taipei Cloud security session Jens Jensen Science and Technology Facilities Council Rutherford.

Be Smart, Use PwrSmart What Is The Cloud?. Where Did The Cloud Come From? We get the term “Cloud” from the early days of the internet where we drew a.

DESIGN OF A PLATFORM OF VIRTUAL SERVICE CONTAINERS FOR SERVICE ORIENTED CLOUD COMPUTING Carlos de Alfonso Andrés García Vicente Hernández.

Cloud Federations Patrizio Dazzi (ISTI-CNR) [Overall Presentation] Gaetano Anastasi (ISTI-CNR) [Hands-On]

© 2013 HP development company L.P. The Contrail Demonstrator and other use cases Christian Temporale, Hewlett Packard 1 contrail.

Software to Data model Lenos Vacanas, Stelios Sotiriadis, Euripides Petrakis Technical University of Crete (TUC), Greece Workshop.

PhD course - Milan, March /09/ Some additional words about cloud computing Lionel Brunie National Institute of Applied Science (INSA) LIRIS.

Building service testbeds on FIRE D5.2.5 Virtual Cluster on Federated Cloud Demonstration Kit August 2012 Version 1.0 Copyright © 2012 CESGA. All rights.

Objective 1.2 Cloud Computing, Internet of Services and Advanced Software Engineering Arian Zwegers European Commission Information Society and Media Directorate.

EGI-Engage EGI-Engage Engaging the EGI Community towards an Open Science Commons Project Overview 9/14/2015 EGI-Engage: a project.

Interoperability in the Cloud By Alex Espinoza

© CaaSt Consortium. All rights reserved. The research leading to these results has received funding from the European Union's Seventh Framework Programme.

Differentiated Access to Virtual Resources in Cloud Environments M. Fazio and A. Puliafito Euro-TM Workshop.

1 Multi Cloud Navid Pustchi April 25, 2014 World-Leading Research with Real-World Impact!

Deploying Trust Policies on the Semantic Web Brian Matthews and Theo Dimitrakos.

Climate Sciences: Use Case and Vision Summary Philip Kershaw CEDA, RAL Space, STFC.

SCI-BUS is supported by the FP7 Capacities Programme under contract nr RI CloudBroker Platform integration into WS-PGRADE/gUSE Zoltán Farkas MTA.

OpenPASS Open Privacy, Access and Security Services “Quis custodiet ipsos custodes?”

Advanced Techniques for Scheduling, Reservation, and Access Management for Remote Laboratories Wolfgang Ziegler, Oliver Wäldrich Fraunhofer Institute SCAI.

JASMIN and CEMS: The Need for Secure Data Access in a Virtual Environment Cloud Workshop 23 July 2013 Philip Kershaw Centre for Environmental Data Archival.

1 Outline Introduction –Cloud Computing Aneka –Features –Architecture –Programming Models Aneka Node Management.

EGI-InSPIRE RI EGI-InSPIRE EGI-InSPIRE RI EGI Towards H2020 Tiziana Ferrari/EGI.eu WLCG Collaboration Workshop.

Authorisation Jens Jensen, Phil Kershaw (STFC) et al. contrail is co-funded by the EC 7th Framework Programme under Grant Agreement nr contrail-project.eu.

GridShib and PERMIS Integration: Adding Policy driven Role-Based Access Control to Attribute-Based Authorisation in Grids Globus Toolkit is an open source.

Diego R. Lopez, RedIRIS JRES2005, Marseille On eduGAIN and the Coming GÉANT Middleware Infrastructure.

GRID ANATOMY Advanced Computing Concepts – Dr. Emmanuel Pilli.

1 - Genias and Contrail - WP14 Communication and Dissemination Ad Emmen, Genias Benelux bv contrail is co-funded by the EC 7th Framework Programme under.

1 FedCloud Task Force Demo EGI CF2012 – Munich 28/29 March Matteo Turilli

Automated System of the Federal Treasury of the Russian Federation: Development and Operation V.V. Tkachenko.

StratusLab is co-funded by the European Community’s Seventh Framework Programme (Capacities) Grant Agreement INFSO-RI StratusLab Collaborations.

Research and innovation Research and innovation 1 STEPMAN The project Development of a STEP and STEP-NC standard based integrated product lifecycle management.

WP4 – Cloud Platform & Provisioning Technical Review Period 1 This document produced by Members of the Helix Nebula consortium is licensed under a Creative.

The FI-WARE Project – Base Platform for Future Service Infrastructures FI-WARE OCTOBER 2011 Presentation at proposers day.

Servizi di brokering Valerio Venturi CCR Giornata di formazione dedicata al Cloud Computing 6 Febbraio 2013.

StratusLab is co-funded by the European Community’s Seventh Framework Programme (Capacities) Grant Agreement INFSO-RI Demonstration StratusLab First.

INDIGO – DataCloud Security and Authorization in WP5 INFN RIA

StratusLab is co-funded by the European Community’s Seventh Framework Programme (Capacities) Grant Agreement INFSO-RI Technical Overview StratusLab.

SCI-BUS is supported by the FP7 Capacities Programme under contract nr RI Accessing cloud resources through the WS-PGRADE/gUSE and CloudBroker integrated.

StratusLab is co-funded by the European Community’s Seventh Framework Programme (Capacities) Grant Agreement INFSO-RI StratusLab: Enhancing Grid.

The StratusLab Distribution and Its Evolution 4ème Journée Cloud (Bordeaux, France) 30 November 2012.

StratusLab is co-funded by the European Community’s Seventh Framework Programme (Capacities) Grant Agreement INFSO-RI StratusLab: Overview & Collaboration.

The Mapper project receives funding from the EC's Seventh Framework Programme (FP7/ ) under grant agreement n° RI EGI and PRACE ecosystem.

Next-Generation Cloud Management

RESERVOIR Service Manager NickTsouroulas Head of Open-Source Reference Implementations Unit Juan Cáceres

EGI-InSPIRE RI EGI-InSPIRE EGI-InSPIRE RI Developing Horizon 2020 projects January 2014 EGI FedCloud F2F, Oxford.

New Paradigms: Clouds, Virtualization and Co.

Understanding The Cloud

Federated Cloud Computing

FedCloud Blueprint Update

StratusLab Final Periodic Review

StratusLab Final Periodic Review

EMI Interoperability Activities

Cloud Computing Dr. Sharad Saxena.

In-Class Activity… Cloud Computing.

Presentation transcript:

Cloud Service Provisioning Jens Jensen (STFC), Piyush Harsh (INRIA) et al contrail is co-funded by the EC 7th Framework Programme under Grant Agreement nr contrail-project.eu 01

Background Federated cloud services – Using OpenNebula for underlying cloud – And Amazon EC2 – And (eventually) Nimbus, OpenStack... Single “provider” interface to multiple services – IaaS – PaaS: database, key/value store – PaaS: – Distributed filesystem – GAFS (based on XtreemFS) XtreemFS demonstrated at OGF in Chicago (previous) – Virtual (secure) networks

Provider Responsibilities SLA negotiation using WS-Agreement/Negotiation – Publish SLA templates – Publish QoS and QoP (Quality of Service and Protection) User account management Access control (based on user attributes (XACML)) Service state (internal/external control) Monitoring information Accounting data returned to fed level

Provider Responsibilities – Service Service features, advertising/discovery Advance Reservation Service Level Agreements Service integrity Constraints – environment, geography

Provider Access Control 1.Extract SAML assertions from certificate 2.Pass assertions to PDP 3.Enforce decision... 4.Listen for updates from PDP (volatile attrs.: “Usage Control”) 5.Track/Enforce service states

Service State (IaaS, VM state)

Architecture – where to adapt Federation: Provider Manager

Adaption – Anatomy of an Arrow Shared Advertising service/discovery SLA negotiation Monitoring Accounting User management Specific *aaS

Adapter services – stack slice Socket (TCP/IP, TLS) Web Services (REST) Access Control (SAML) Request Handler (*aaS)

Applicable Standards (for IaaS) OVF, CIMI (DMTF) XACML, SAML (OASIS) General questions Complexity? Putting pieces together, pragmatically Plus some pieces of innovation... Fed id management framework (EUDAT, EGITF)

Summary List of provider responsibilities Can we reach a state of single interface for all aspects? Or should we have an abstraction layer (cf jcloud) Lots of common interfaces for shared activities

Funded under: FP7 (Seventh Framework Programme) Area: Internet of Services, Software & virtualization (ICT ) Project reference: Total cost: 11,29 million euro EU contribution: 8,3 million euro Execution: From untill Duration: 36 months Contract type: Collaborative project (generic) contrail is co-funded by the EC 7th Framework Programme contrail-project.eu 012