Presentation is loading. Please wait.

Presentation is loading. Please wait.

Grid Mean Business: Security Management in Grids – A new challenge? Mike Boniface OGF21, Manchester Wednesday 9 May 2007.

Published byGabriel McDermott Modified over 10 years ago

Similar presentations

Presentation on theme: "Grid Mean Business: Security Management in Grids – A new challenge? Mike Boniface OGF21, Manchester Wednesday 9 May 2007."— Presentation transcript:

1 Grid Mean Business: Security Management in Grids – A new challenge? Mike Boniface (mjb@it-innovation.soton.ac.uk) OGF21, Manchester Wednesday 9 May 2007

2 © University of Southampton IT Innovation Centre, 2007 IT Innovation An applied research centre, complementing the academic research groups in the School of Electronics and Computer ScienceAn applied research centre, complementing the academic research groups in the School of Electronics and Computer Science Our objective is the innovative application of ITOur objective is the innovative application of IT We carry out applied research and development with and for industry and commerceWe carry out applied research and development with and for industry and commerce –collaborative research (supported by EC and UK programmes) –client-funded research, development and consulting We deliver proofs-of-concept, demonstrators and novel operational systemsWe deliver proofs-of-concept, demonstrators and novel operational systems

3 © University of Southampton IT Innovation Centre, 2007 Do You Remember… Probabilistic design environment Sensitivity to uncertainties –manufacturing tolerances –modeling assumptions Example applications –satellite antennae deployment –crash modeling Distributed resources –7 sites (3 with firewalls) –over 100 processors

4 ©2007 University of Southampton IT Innovation Centre and other members of the SIMDAT consortium Where are we today? Acoustics Service Design Optimisation Service Structures Service Aerodynamics Service (Matlab, OGSA-DAI, Condor, GRIA) (Model Center, SunGridEngine, GRIA) (iSightFD, Torque, GRIA) (Patran, GRIA)

5 ©2007 University of Southampton IT Innovation Centre and other members of the SIMDAT consortium Contextual Collaboration: Virtual Employee Single Controlling Partner

6 ©2007 University of Southampton IT Innovation Centre and other members of the SIMDAT consortium Extended Enterprise: Business Cooperative Virtual Organisation Prime Contractor

7 ©2007 University of Southampton IT Innovation Centre and other members of the SIMDAT consortium Extended Enterprise: Business Partnership

8 ©2007 University of Southampton IT Innovation Centre and other members of the SIMDAT consortium Infrastructure Accreditation Collaboration patterns Operational security policies Business Requirements Technology Capabilities Infrastructure Accreditation Technology Gaps Dynamic trust and security (GRIA) SLA management and accounting (GRIA) E2E Toolkit (NEC) Dynamic Access Control (NEC, IT Innov) Transatlantic Secure Collaboration Programme (www.tscp.org) Risk analysis Grid Technology Uptake

9 ©2007 University of Southampton IT Innovation Centre and other members of the SIMDAT consortium Operational Security Policies: ISO27001:2005 ControlSummary of GapProcedure update Existing TechnologyTechnology Gap A.6Increased complexity of third party risk assessments. A.7Classification of information and labelling across domains Info Labelling, Monitoring info flows. A.8Propagation of user information domains CAs, SLA and Client management services Monitoring A.10Need for secure and trusted audit logs.Auditing, Monitoring, Fault Logging. A. 10Shared operational procedures and responsibilities A.11Addition complexity of user management Certificate authorities, PKI, Token services Integration with existing identity schemes. A.12Security in development and support process Grid infrastructure release processes. Auditing A.12Grid vulnerability analysisVulnerability analysis tools, Intrusion tolerance A.13Reporting of security events in a Grid system. Monitoring and Reporting tools. A. 15ComplianceAudit

10 ©2007 University of Southampton IT Innovation Centre and other members of the SIMDAT consortium SIMDAT Industrial Grid Profile Adoption analysis of key Web Service and Grid interoperability specifications Motivation to –understand adoption issues when applied to industrial applications (security, operational, performance) –recommend how the specifications can be safely adopted by SIMDAT applications –publish Industrial Grid Profile to wider community e.g. OGF http://www.gria.org/ white_papers 16.00 Thursday 10 th May Standards Alignment Report-Out Charter Suite 5

11 ©2006 University of Southampton IT Innovation Centre © University of Southampton IT Innovation Centre, 2007 GRIA: A Grid for business Open Source Grid middleware for supporting B2B collaborations based on a service-oriented architecture Easy to use yet powerful functionality –business-to-business accounting and service level agreements –dynamic trust and security –distributed file transfer, storage and processing –distributed database access using OGSA-DAI –distributed inter-domain workflow composition, enactment and publication using Taverna/Freefluo –cross-platform, running on Windows XP and various Linux distributions –developers kit for new managed application services Available free and open source from http://www.gria.org

12 ©2006 University of Southampton IT Innovation Centre © University of Southampton IT Innovation Centre, 2007 Characteristics of Business Grids Customers control which services they consume, how much they are used, and by whom Service providers operate independently and maintain control of their own resources Service providers operate within the terms of relevant application software licenses Services are subject to Service Level Agreements Security to commercial standards Heterogeneous infrastructures Maintenance should be cost-effective

13 © University of Southampton IT Innovation Centre, 2007 Securing Multi-Organisational SOA Traditional systems are easy to secureTraditional systems are easy to secure –system components are known in advance –threats can be anticipated and defences included –deployments can be configured to manage threat levels within the system Dynamic distributed systems cannot be made secure this wayDynamic distributed systems cannot be made secure this way –system components and configurations change dynamically –system boundaries change as organisations join and leave the application –administration is distributed with no overarching threat assessment or management

14 © University of Southampton IT Innovation Centre, 2007 Virtual Organisations: Trust, Dependency, Intrusion Tolerance Org AOrg B Org E Org D Org C

15 © University of Southampton IT Innovation Centre, 2007 Business Partnerships: Trust, Security,Intrusion Tolerance Org AOrg B Org E Org D Org C

16 © University of Southampton IT Innovation Centre, 2007 Conclusions Is security management in Grids a new challenge? Yes

17 © University of Southampton IT Innovation Centre, 2007 Thank you for listening www.nextgrid.orgwww.nextgrid.org www.simdat.euwww.simdat.eu www.gria.orgwww.gria.org

Download ppt "Grid Mean Business: Security Management in Grids – A new challenge? Mike Boniface OGF21, Manchester Wednesday 9 May 2007."

Similar presentations

1 The Networked Learning Environment. 2 Blackboards Product Strategy Leading institutions are harnessing the power of information networks to connect.

1 The Networked Learning Environment. 2 Blackboards Product Strategy Leading institutions are harnessing the power of information networks to connect.
The Access Grid Ivan R. Judson 5/25/2004.

The Access Grid Ivan R. Judson 5/25/2004.
Delivering User Needs: A middleware perspective Steven Newhouse Director.

Delivering User Needs: A middleware perspective Steven Newhouse Director.
Neil Geddes CCLRC Director, e-Science Director, Grid Operations Support Centre The UK National Grid Service.

Neil Geddes CCLRC Director, e-Science Director, Grid Operations Support Centre The UK National Grid Service.
Tom Sugden EPCC OGSA-DAI Future Directions OGSA-DAI User's Forum GridWorld 2006, Washington DC 14 September 2006.

Tom Sugden EPCC OGSA-DAI Future Directions OGSA-DAI User's Forum GridWorld 2006, Washington DC 14 September 2006.
© 2012 Open Grid Forum Simplifying Inter-Clouds October 10, 2012 Hyatt Regency Hotel Chicago, Illinois, USA.

© 2012 Open Grid Forum Simplifying Inter-Clouds October 10, 2012 Hyatt Regency Hotel Chicago, Illinois, USA.
©2007 University of Southampton IT Innovation Centre and other members of the SIMDAT Consortium Grid-based Collaborative Product Design: The SIMDAT Grid.

©2007 University of Southampton IT Innovation Centre and other members of the SIMDAT Consortium Grid-based Collaborative Product Design: The SIMDAT Grid.
Project Overview Daniel Mallmann, Research Centre Juelich Alistair Dunlop, University of Southampton.

Project Overview Daniel Mallmann, Research Centre Juelich Alistair Dunlop, University of Southampton.
©2006 University of Southampton IT Innovation Centre and other members of the SIMDAT consortium A SIMDAT Perspective on Grid Standards and Specifications.

©2006 University of Southampton IT Innovation Centre and other members of the SIMDAT consortium A SIMDAT Perspective on Grid Standards and Specifications.
1 2 nd Shanghai, 19/02/06 Architecture for Next Generation Grids Kostas Tserpes, NTUA Shanghai, 20th of February 2006.

1 2 nd Shanghai, 19/02/06 Architecture for Next Generation Grids Kostas Tserpes, NTUA Shanghai, 20th of February 2006.
Gilbert Kalb B ilateral R esearch and I ndustrial Development enhancing and integrating G rid E nabled technologies Bridge Project Presentation Third

Gilbert Kalb B ilateral R esearch and I ndustrial Development enhancing and integrating G rid E nabled technologies Bridge Project Presentation Third
The Next Generation Grid Kostas Tserpes, NTUA Beijing, 22 of June 2005.

The Next Generation Grid Kostas Tserpes, NTUA Beijing, 22 of June 2005.
© Fraunhofer Institute SCAI and other members of the SIMDAT consortium Data Grids for Process and Product Development using Numerical Simulation and Knowledge.

© Fraunhofer Institute SCAI and other members of the SIMDAT consortium Data Grids for Process and Product Development using Numerical Simulation and Knowledge.
Inetrconnection of CNGrid and European Grid Infrastructure Depei Qian Beihang University Feb. 20, 2006.

Inetrconnection of CNGrid and European Grid Infrastructure Depei Qian Beihang University Feb. 20, 2006.
CoreGRID European Research Network on Foundations, Software Infrastructures and Applications for large scale distributed, GRID and Peer-to-Peer Technologies.

CoreGRID European Research Network on Foundations, Software Infrastructures and Applications for large scale distributed, GRID and Peer-to-Peer Technologies.
DG INFSO- Grid Research & Infrastructures: W. Boch, M. Campolargo 1 Delivery of Industrial-strength Grid Middleware: establishing an effective European.

DG INFSO- Grid Research & Infrastructures: W. Boch, M. Campolargo 1 Delivery of Industrial-strength Grid Middleware: establishing an effective European.
© 1998-2003 ITU Telecommunication Development Bureau (BDT) – E-Strategy Unit.. Page - 1 Seminar on Standardization and ICT Development for the Information.

© ITU Telecommunication Development Bureau (BDT) – E-Strategy Unit.. Page - 1 Seminar on Standardization and ICT Development for the Information.
Public B2B Exchanges and Support Services

Public B2B Exchanges and Support Services
The National Grid Service Mike Mineter.

The National Grid Service Mike Mineter.
Research Councils ICT Conference Welcome Malcolm Atkinson Director www.nesc.ac.uk 17 th May 2004.

Research Councils ICT Conference Welcome Malcolm Atkinson Director 17 th May 2004.

Similar presentations

Ads by Google