Grid Security work in 2004 Andrew McNab Grid Security Research Fellow University of Manchester.

Slides:



Advertisements
Similar presentations
Security middleware Andrew McNab University of Manchester.
Advertisements

5-Dec-02D.P.Kelsey, GridPP Security1 GridPP Security UK Security Workshop 5-6 Dec 2002, NeSC David Kelsey CLRC/RAL, UK
Particle physics – the computing challenge CERN Large Hadron Collider –2007 –the worlds most powerful particle accelerator –10 petabytes (10 million billion.
29 June 2006 GridSite Andrew McNabwww.gridsite.org VOMS and VOs Andrew McNab University of Manchester.
Level 1 Components of the Project. Level 0 Goal or Aim of GridPP. Level 2 Elements of the components. Level 2 Milestones for the elements.
Tony Doyle GridPP2 Proposal, BT Meeting, Imperial, 23 July 2003.
Current status of grids: the need for standards Mike Mineter TOE-NeSC, Edinburgh.
Andrew McNab - Manchester HEP - 22 April 2002 EU DataGrid Testbed EU DataGrid Software releases Testbed 1 Job Lifecycle Authorisation at your site More.
Data Management Expert Panel - WP2. WP2 Overview.
Andrew McNab - Manchester HEP - 2 May 2002 Testbed and Authorisation EU DataGrid Testbed 1 Job Lifecycle Software releases Authorisation at your site Grid/Web.
Middleware technology and software quality issues Andrew McNab Grid Security Research Fellow University of Manchester.
Andrew McNab - EDG Access Control - 14 Jan 2003 EU DataGrid security with GSI and Globus Andrew McNab University of Manchester
The GridSite Security Framework Andrew McNab University of Manchester.
20 March 2007 VOMS etc Andrew McNabwww.gridsite.org VOMS etc Andrew McNab University of Manchester.
Andrew McNab - Manchester HEP - 6 November Old version of website was maintained from Unix command line => needed (gsi)ssh access.
30-Jan-03D.P.Kelsey, GridPP Security1 Security GridPP6 30 Jan 2003 Coseners House David Kelsey CLRC/RAL, UK
Joining the Grid Andrew McNab. 28 March 2006Andrew McNab – Joining the Grid Outline ● LCG – the grid you're joining ● Related projects ● Getting a certificate.
Andrew McNab - Manchester HEP - 22 April 2002 UK Rollout and Support Plan Aim of this talk is to the answer question “As a site admin, what are the steps.
EGEE Security Area 13 May 2004 EGEE Security Area Stakeholders JRA3 middleware Architecture What we have for Unix and Java What.
14 July 2004GridPP Collaboration BoardSlide 1 GridPP Dissemination Sarah Pearce Dissemination Officer
Andrew McNab - GACL - 16 Dec 2003 Grid Access Control Language Andrew McNab, University of Manchester
3 May 2006 GridSite Andrew McNabwww.gridsite.org Web Services for Grids in Scripts and C using GridSite Andrew McNab University of.
Security Middleware and VOMS service status Andrew McNab Grid Security Research Fellow University of Manchester.
Andrew McNab - GridPP Security - 24 Feb 2003 GridPP Security Middleware Andrew McNab, University of Manchester
Andrew McNab - GridSite/G-HTTPS - 17 Feb 2003 GridSite and G-HTTPS update Andrew McNab, University of Manchester
Grid Security work in 2006 Andrew McNab Grid Security Research Fellow University of Manchester.
INFSO-RI Enabling Grids for E-sciencE Federated Network Performance Monitoring for the Grid K. Kavoussanakis, EPCC, The University.
Grid Security and VO Management Andrew McNab University of Manchester.
INFSO-RI Enabling Grids for E-sciencE SA1: Cookbook (DSA1.7) Ian Bird CERN 18 January 2006.
The GridSite Security System Andrew McNab and Shiv Kaushal University of Manchester.
2005 © SWITCH Perspectives of Integrating AAI with Grid in EGEE-2 Christoph Witzig Amsterdam, October 17, 2005.
Security Area in GridPP2 4 Mar 2004 Security Area in GridPP2 “Proforma-2 posts” overview Deliverables – Local Access – Local Usage.
3 June 2004GridPP10Slide 1 GridPP Dissemination Sarah Pearce Dissemination Officer
INFSO-RI Enabling Grids for E-sciencE EGEE and Industry Bob Jones EGEE-II Project Director Final EGEE Review CERN, May 2006.
Δ Storage Middleware GridPP10 What’s new since GridPP9? CERN, June 2004.
Security Middleware in GridPP2 5 Feb 2004 Security Middleware in GridPP2 Current Status – GridSite GridPP2 Themes – libgridsite.
Andrew McNab - GridSite/EDG/GGF - 29 Sept 2003 GridSite, EDG and GGF Andrew McNab, University of Manchester
EGEE-II INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks Security Token Service Valéry Tschopp - SWITCH.
Grid Security in a production environment: 4 years of running Andrew McNab University of Manchester.
GridPP Presentation to AstroGrid 13 December 2001 Steve Lloyd Queen Mary University of London.
GridPP Building a UK Computing Grid for Particle Physics Professor Steve Lloyd, Queen Mary, University of London Chair of the GridPP Collaboration Board.
GridSite Web Servers for bulk file transfers & storage Andrew McNab Grid Security Research Fellow University of Manchester, UK.
INFSO-RI Enabling Grids for E-sciencE OSG-LCG Interoperability Activity Author: Laurence Field (CERN)
…building the next IT revolution From Web to Grid…
Tony Doyle - University of Glasgow 8 July 2005Collaboration Board Meeting GridPP Report Tony Doyle.
15-Dec-04D.P.Kelsey, LCG-GDB-Security1 LCG/GDB Security Update (Report from the Joint Security Policy Group) CERN 15 December 2004 David Kelsey CCLRC/RAL,
Grid Security Vulnerability Group Linda Cornwall, GDB, CERN 7 th September 2005
Andrew McNabSecurity Middleware, GridPP8, 23 Sept 2003Slide 1 Security Middleware Andrew McNab High Energy Physics University of Manchester.
INFSO-RI Enabling Grids for E-sciencE The gLite File Transfer Service: Middleware Lessons Learned form Service Challenges Paolo.
Shibboleth & Grid Integration STFC and University of Oxford (and University of Manchester)
Andrew McNab - Manchester HEP - 17 September 2002 UK Testbed Deployment Aim of this talk is to the answer the questions: –“How much of the Testbed has.
Andrew McNabGrid in 2002, Manchester HEP, 7 Jan 2003Slide 1 Grid Work in 2002 Andrew McNab High Energy Physics University of Manchester.
Andrew McNab - EDG Access Control - 17 Jun 2003 EU DataGrid and GridPP Authorization and Access Control Andrew McNab, University of Manchester
Security Middleware 3 June 2004 Security Middleware Current Status – GridSite deployments – Architecture GridPP2 – Web services.
Security Middleware Andrew McNab University of Manchester.
INFSO-RI Enabling Grids for E-sciencE Web Services Mike Mineter National e-Science Centre, Edinburgh.
Andrew McNab - HTTP/HTTPS extensions HTTP/HTTPS as Grid data transport 6 March 2003 Andrew McNab, University of Manchester
INFSO-RI Enabling Grids for E-sciencE The EGEE Project Owen Appleton EGEE Dissemination Officer CERN, Switzerland Danish Grid Forum.
EGEE Project Review Fabrizio Gagliardi EDG-7 30 September 2003 EGEE is proposed as a project funded by the European Union under contract IST
LHC Computing, SPC-FC-CC-C; H F Hoffmann1 CERN/2379/Rev: Proposal for building the LHC computing environment at CERN (Phase 1) Goals of Phase.
INFSO-RI Enabling Grids for E-sciencE Joint Security Policy Group David Kelsey, CCLRC/RAL, UK 3 rd EGEE Project.
11-May-01D.P.Kelsey, Security Update1 GRID Security Update David Kelsey CLRC/RAL, UK
DataGrid Security Wrapup Linda Cornwall 4 th March 2004.
Overview of the New Security Model Akos Frohner (CERN) WP8 Meeting VI DataGRID Conference Barcelone, May 2003.
GridSite status Andrew McNab University of Manchester.
Bob Jones EGEE Technical Director
Collaboration Board Meeting
Shiv Kaushal, University of Manchester
LHC Computing, RRB; H F Hoffmann
Presentation transcript:

Grid Security work in 2004 Andrew McNab Grid Security Research Fellow University of Manchester

4 January 2005A.McNab – Grid Security Outline ● Status in January 2004 ● e-Security Centre ● GridSite ● GridPP Website ● CERN + AHM Awards ● EGEE ● Secure web services ● GridPP + JISC funding ● Future plans

4 January 2005A.McNab – Grid Security January 2004 ● I was still finishing off some Testbed Support work ● eg I still ran the UK HEP grid monitoring map ● Had just publish GridSite software ● Had written security section of GridPP-2 proposal to PPARC ● Were discussing some kind of security group in Manchester, with MC, HEP, CS and Salford ISI ● Were still unsure how we would fit into CERN's LHC Computing Grid (LCG) and the EU's “Enabling Grids for e-Science” (EGEE) projects ● Still unsure how to fit in with move to Web Services

4 January 2005A.McNab – Grid Security e-Security Centre ● Formed in January 2004 as a joint initiative between groups within the universities of Manchester and Salford: ● “University of Manchester, Department of Computer Science; University of Salford, Information Systems Security Research Centre; University of Manchester, High Energy Physics group; and Manchester Computing” ● So far, used as a platform for joint bids (eg our successful bid to JISC) and for “cross-advertising” at conferences, and for organising joint meetings

4 January 2005A.McNab – Grid Security GridSite ● GridSite remains our key piece of grid security technology ● Adds support for grid security “objects” to Apache web server ● Identity certificates and GSI proxies ● VOMS attribute certificates for group membership ● GACL policy language ● Used by about 10 sites in HEP and UK Grid as the basis of their website ● Components in libgridsite are used by all sites in GridPP/LCG/EGEE

4 January 2005A.McNab – Grid Security GridPP Website ● GridSite originally developed for managing ● This has been extended and redesigned during 2004 as part of GridPP-2 preparations ● Now about 100,000 page requests per month ● GridPP has ~50 active members by comparison

4 January 2005A.McNab – Grid Security Awards ● In June, I got the CERN-UK award for “outstanding achievement in Grid development” ● Largely a recognition of the GridSite work, and also some security work during EDG ● In September, GridPP won the Best e-Science Project Website award at the UK e-Science All Hands Meeting ● Largely a recognition of the new design for the GridPP website done by people at QMUL, with the technical implementation done at Manchester

4 January 2005A.McNab – Grid Security EGEE ● EGEE (“Enabling Grids for e-Science”) is a large EU- funded collaboration involving almost all EU countries, and led by CERN ● The aim is to get LHC Computing Grid technology into the hands of researchers in other sciences ● EU sees EGEE as similar to the GEANT academic network in Europe, which links JANET etc ● We have joined EGEE JRA3, which is developing security middleware ● We're providing the support for grid services not written in Java – so C/C++/Perl/Python etc

4 January 2005A.McNab – Grid Security Web services ● Major trend in grids is away from binary protocols to use Web Services ● That is, that clients talk to services use a stream of XML (“SOAP”), with the interface itself defined in XML using the WSDL language. ● We are providing an implementation that supports the EGEE/JRA3 security architecture, based on GridSite/Apache ● Compatible with EGEE's own work for services in Java ● We've developed some of the EGEE specifications (eg the WSDL for the credential delegation protocol)

4 January 2005A.McNab – Grid Security Funding + future plans ● We've received funding for 2.5 FTE from GridPP-2 for security middleware development ● To continue the GridSite and GACL work, as part of EGEE ● We've received funding for 0.5 FTE from GridPP-2 for security operations ● To operate and act as an “in-house” client for software developers ● We've received funding of 0.5 FTE from JISC for security middleware development ● Interoperation with other e-Sec Centre projects

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.