Presentation is loading. Please wait.

Presentation is loading. Please wait.

Climate Sciences: Use Case and Vision Summary Philip Kershaw CEDA, RAL Space, STFC.

Published byCharity Franklin Modified over 8 years ago

Similar presentations

Presentation on theme: "Climate Sciences: Use Case and Vision Summary Philip Kershaw CEDA, RAL Space, STFC."— Presentation transcript:

1 Climate Sciences: Use Case and Vision Summary Philip Kershaw [philip.kershaw@stfc.ac.uk]philip.kershaw@stfc.ac.uk CEDA, RAL Space, STFC

2 Overview Update on developments since last workshop Federated Identity for the Cloud – Use case from two contrasting scenarios Vision Summary – What is the vision for this community – What are the issues we face and challenges we wish to address Philip Kershaw [philip.kershaw@stfc.ac.uk]philip.kershaw@stfc.ac.uk

3 Update from Last Workshop Earth System Grid Federation (ESGF): – a software infrastructure deployed in the first instance to support CMIP5 CMIP5, a globally co-ordinated set of climate model experiments organised under the WCRP ESGF – Globally federated archive ~2.5Pb – 25k users worldwide (not just CMIP5) Security Architecture – Dual SSO methods supported: OpenID and MyProxyCA – SAML interfaces for attribute and authorisation queries ESGF now being deployed for other Earth science data – Earth observation and regional model data EGI – INSPIRE: – Project to enable access to ESGF resources via EGI – An inter-federation trust challenge Philip Kershaw [philip.kershaw@stfc.ac.uk]philip.kershaw@stfc.ac.uk

4 Federated Identity for Cloud: two contrasting scenarios CEMS (Climate and Environmental Monitoring from Space) – A UK facility for climate change and environmental science using satellite data and services. – Builds on ISIC (International Space Innovation Centre) public private partnership – A focal point for science, government and commercial user communities. – Data quality and integrity services and expertise – Data hosting and processing facilities FP7 funded project over three years Develop Federated cloud infrastructure: – An abstraction layer to manage resources over multiple cloud providers Platform as a Service solutions Virtual Infrastructure Networks Federated file system SLA negotiation Federated security Build on Open Source cloud solutions Philip Kershaw [philip.kershaw@stfc.ac.uk]philip.kershaw@stfc.ac.uk

5 CEMS Architecture Public and Commercial Cloud Infrastructure Hardware – data storage [NCEO and Commercial Data] and processing App 2 App 3 App N App 1 … Business and research user communities Data Access Quality Services Core Services Applications Cloud Management Services Data Processing

6 CEMS: Federated Identity Challenges Access control is needed to enforce: – Licence agreements – Project restrictions – pay-for services? Federate identity needed to bridge: – academic and commercial organisations Bridging independent domains: – How to manage trust? – Communication of levels of assurance – Middleware to bridge independent access control infrastructures Integration with off-the-shelf cloud infrastructure Philip Kershaw [philip.kershaw@stfc.ac.uk]philip.kershaw@stfc.ac.uk

7 CONTRAIL: Federated Identity Challenges Layered architecture: federation abstracts individual providers and their resources Single sign-on on two axes: external to federation and federation to provider Credential management challenge: Resources may be long lived (e.g. a VM) but dynamically provisioned – Virtual infrastructure networks may require dynamic creation of CAs Philip Kershaw [philip.kershaw@stfc.ac.uk]philip.kershaw@stfc.ac.uk

8 Climate Sciences: Vision Statement Project-oriented vs. ‘national’ federated identity management infrastructure – Projects require attributes scoped within the project’s domain covering multiple IdPs and possibly federations – Can IdPs be expected to support attributes needed for multiple projects? – Project-wide attribute authorities needed to manage project attributes – Challenging to leverage national infrastructure for international projects! Inter-federation and bridging technologies – Management of levels of assurance between independent domains – Provenance of credentials Policies and trust – The lack of clear policy statements can inhibit the ability to interoperate with other established systems. – Newer communities need to see the value of policies Cloud and virtualisation are creating new challenges – Dynamic provision of credentials for long lived resources Philip Kershaw [philip.kershaw@stfc.ac.uk]philip.kershaw@stfc.ac.uk

Download ppt "Climate Sciences: Use Case and Vision Summary Philip Kershaw CEDA, RAL Space, STFC."

Similar presentations

Identity Network Ideals – Heterogeneity & Co-existence

Identity Network Ideals – Heterogeneity & Co-existence
EGI-InSPIRE RI-261323 EGI-InSPIRE EGI-InSPIRE RI-261323 AAI in EGI Status and Evolution Peter Solagna Senior Operations Manager

EGI-InSPIRE RI EGI-InSPIRE EGI-InSPIRE RI AAI in EGI Status and Evolution Peter Solagna Senior Operations Manager
The role of the ISIC facility for Climate and Environmental Monitoring from Space (CEMS) in the development of Quality Assured Datasets and Downstream.

The role of the ISIC facility for Climate and Environmental Monitoring from Space (CEMS) in the development of Quality Assured Datasets and Downstream.
Contrail and Federated Identity Management

Contrail and Federated Identity Management
The Internet2 NET+ Services Program Jerry Grochow Interim Vice President CSG January, 2012.

The Internet2 NET+ Services Program Jerry Grochow Interim Vice President CSG January, 2012.
The EGI – a sustainable European grid infrastructure Michael Wilson STFC RAL.

The EGI – a sustainable European grid infrastructure Michael Wilson STFC RAL.
SCD in Horizon 2020 Ian Collier RAL Tier 1 GridPP 33, Ambleside, August 22 nd 2014.

SCD in Horizon 2020 Ian Collier RAL Tier 1 GridPP 33, Ambleside, August 22 nd 2014.
Cloud Computing Special Interest Group Cloud Computing for the UK Research Community Workshop 28-29 December 2013 Philip Kershaw, STFC Rutherford Appleton.

Cloud Computing Special Interest Group Cloud Computing for the UK Research Community Workshop December 2013 Philip Kershaw, STFC Rutherford Appleton.
VO Sandpit, November 2009 NERC Big Data And what’s in it for NCEO? June 2014 Victoria Bennett CEDA (Centre for Environmental Data Archival)

VO Sandpit, November 2009 NERC Big Data And what’s in it for NCEO? June 2014 Victoria Bennett CEDA (Centre for Environmental Data Archival)
Www.egi.eu EGI-InSPIRE RI-261323 EGI-InSPIRE www.egi.eu EGI-InSPIRE RI-261323 EGI - Identity Management Steven Newhouse Director, EGI.eu Federated Identity.

EGI-InSPIRE RI EGI-InSPIRE EGI-InSPIRE RI EGI - Identity Management Steven Newhouse Director, EGI.eu Federated Identity.
Federated Identity Management for Research Communities (FIM4R) David Kelsey (STFC-RAL) EGI TF, AAI workshop 19 Sep 2012.

Federated Identity Management for Research Communities (FIM4R) David Kelsey (STFC-RAL) EGI TF, AAI workshop 19 Sep 2012.
1 Issues in federated identity management Sandy Shaw EDINA IASSIST 24-27 May 2005, Edinburgh.

1 Issues in federated identity management Sandy Shaw EDINA IASSIST May 2005, Edinburgh.
Agenda Project beginnings and funding. Purpose of the federation. Federation members. Federation protocols. Special features in our federation. Pilot.

Agenda Project beginnings and funding. Purpose of the federation. Federation members. Federation protocols. Special features in our federation. Pilot.
Towards Cloud Federations: what we have; what we want OGF 31, Taipei Cloud security session Jens Jensen Science and Technology Facilities Council Rutherford.

Towards Cloud Federations: what we have; what we want OGF 31, Taipei Cloud security session Jens Jensen Science and Technology Facilities Council Rutherford.
Modelling and Data Centre Requirements: CEDA ESGF UV-CDAT Conference 09-11 December 2014 Philip Kershaw, Centre for Environmental Data Archival, RAL Space,

Modelling and Data Centre Requirements: CEDA ESGF UV-CDAT Conference December 2014 Philip Kershaw, Centre for Environmental Data Archival, RAL Space,
Constellation Technologies Providing a support service to commercial users of gLite Nick Trigg.

Constellation Technologies Providing a support service to commercial users of gLite Nick Trigg.
FIM-ig Federated Identity Management Interest Group.

FIM-ig Federated Identity Management Interest Group.
DESIGN OF A PLATFORM OF VIRTUAL SERVICE CONTAINERS FOR SERVICE ORIENTED CLOUD COMPUTING Carlos de Alfonso Andrés García Vicente Hernández.

DESIGN OF A PLATFORM OF VIRTUAL SERVICE CONTAINERS FOR SERVICE ORIENTED CLOUD COMPUTING Carlos de Alfonso Andrés García Vicente Hernández.
Cloud Computing Cloud Security– an overview Keke Chen.

Cloud Computing Cloud Security– an overview Keke Chen.
The Cloud Identity Security Leader. © 2012 Ping Identity Corporation Nair the twain shall meet Enterprise Social Mobile.

The Cloud Identity Security Leader. © 2012 Ping Identity Corporation Nair the twain shall meet Enterprise Social Mobile.

Similar presentations

Ads by Google