Presentation is loading. Please wait.

Presentation is loading. Please wait.

Access Control for Federation of Emulab-based Network Testbeds Ted Faber, John Wroclawski 28 July 2008

Published byValentine Wesley Perry Modified over 8 years ago

Similar presentations

Presentation on theme: "Access Control for Federation of Emulab-based Network Testbeds Ted Faber, John Wroclawski 28 July 2008"— Presentation transcript:

1 Access Control for Federation of Emulab-based Network Testbeds Ted Faber, John Wroclawski 28 July 2008 faber@isi.edufaber@isi.edu, jtw@isi.edujtw@isi.edu

2 Outline Testbed Federation DETER federation model and architecture Access control in the DETER architecture Access control implementation: fedd

3 Federation of Network Testbeds Federation: Independent testbeds working together Testbeds maintain local control of shared resources Inherent tension: Experimenters' needs Testbeds' constraints Inherent power: More resources More kinds of resources More environments

4 Federation's Power: not just more resources Federation enables Combining testbed resources Hardware Tools Combining testbed environments Operational features – security properties Combining testbed communities Collaborative experiments Competitive exploration Individual testbed properties come from testbed independence

5 The Critical Capabilities Helping experimenters federate Fitting experiments into federation Fitting federation into experiments Letting testbeds control their resources Sharing information about experimenters Controlling access to resources Supporting federated experiments Powerful tools Usable environments

6 DETER Federation Model Experiments are created from federated resources Minimal prior agreements between testbeds Specifically humans are not involved per-experiment Testbeds have emulab interfaces Federated experiments are conducted in emulab-like environment Ssh logins Shared filesystems Emulab event system Model Goal: create a familiar environment appropriate for the experiment from independent testbeds

7 DETER Federation Architecture Flow: Experimenter: think, design, experiment Federator: decompose, embed, connect Testbed: authenticate, allow, allocate Federated Experiment Creator Federator Testbeds Federated Experiment Creator User Standard Experiment Representation “Assembly Code” testbed configuration operations

8 Making an Experiment Experimenter has hypothesis Turning a hypothesis to an experiment: Selecting appropriate topology Positioning experimental elements in it Mapping those to physical elements Mapping complicated by federation Resource discovery Access requirements Experimental effects Each automated phase improves access

9 Experiment Creation: Mapping an Experiment User assisted decomposition: User understands federation and experiment Suggests possible splittings to tools Automated decomposition: Tools detect areas of homogeneity and split Domain-specific definitions of homogeneity Experiment generation: Loose description in domain specific-language Generate and split experiment from it Pipeline into decomposition

10 Access Control: Putting global users into local scope Resources are controlled locally Federated users must be integrated into local: Representations Policies Accounting After access control exchange: Federated experimenter can authenticate to testbed Testbed knows experimenter's rights in local terms Analogous to getting an account on a system

11 DETER Access Control Architecture Based on single-emulab structures: Projects control resource access User's project membership determines access DETER federation architecture: Users, projects, testbeds have global names Federants permit accesses (create accounts) based on: Proof of name Attested facts (evaluated wrt name)‏ Local information bound to name Federants assign federated experiments to local projects

12 Access Exchange Access key: SSH public key Project/User has rights to requested resources Project/User configured to be accessible by Access key FederatorTestbed

13 Global Entities: Users, Projects, Testbeds Basis of a three-level access control system Each has different attestation abilities Testbeds about itself, its projects, and its users Projects about itself and its users Users about themselves A user making a request can Ask directly Ask its project to ask for it (use a project name)‏ Ask its testbed to ask for it (use a testbed name)‏ Attestation improves scalability

14 Self-certifying Names Properties: Holder can prove identity interactively Others agree on holder's identity Many implementations (self-signed PGP key)‏ Provide a global decentralized naming system Scale Federants access info tied to names Flexibility

15 Fedd: Platform for Access Control Implementation of the DETER access control arch. Open interfaces: WSDL/SOAP descriptions We have 2 interoperable implementations Prototype implementation of global identifiers for federation Flexible access control descriptions in emulab terms Dynamic project allocation

16 Federation ID Implementation ID is hash of a public key Hash obscures key format, length for versatility Passed between Federator and testbed as X.509 certificatates Self-signed certificate – self-certifying name NB: name as hash provides more assurance Can use certification chain as introducer Binding information to ID through trusted chain Direct TLS/SSL implementation

17 Access Control Configuration Map from (testbed, project, user) to local (project, user)‏ Abstractly: Maps from global namespace -> local namespace Realizes access control decisions as local rights Concretely Provides access using familiar access controls Maintains local control over resources An access control request may result in local project creation

18 Expressing Access Decisions Fedd access rules Known user to static project: (deter, DeterTest, faber) -> (fDeter, faber)‏ Any user from testbed to static project, new user: (deter,, ) -> (fDeter, )‏ Project annotated with access: (deter,, ) -> (fDeter:special_type, )‏ Anonymous users: (,, ) -> (lockdown, anon)‏

19 Dynamic Project Allocation Fedd can create projects for federated experiments Dynamic projects: Precise allocation of rights to federated experiment Clear accounting of federated actions More system resources & startup time Static projects: Amortize system costs for federation support Naturally support discrete access classes No human intervention required

20 Future Work: Realizing more of the Architecture Tools for experiment creation Network topology-based embedders Domain specific embedders Experiment Creation/Topology Generation tools Resource advertisements Experiment Environment More scalable file system More natural model for experimentation in the large

21 Conclusions Presented model for experiments that supports Larger experiments New kinds of experiments DETER federation architecture Framework for creating such experiments Particular piece of that architecture: Access Control Abstract framing Current implementation

22 Attestation and Amplification Projects and Testbeds May have more privileges than users May be more constrained than users “DETER testbed may use any hardware, but only 10 total machines” Users negotiate with project & testbed agents Agent will make request with its credentials Agent may impose additional constraints

Download ppt "Access Control for Federation of Emulab-based Network Testbeds Ted Faber, John Wroclawski 28 July 2008"

Similar presentations

TIED: A Cluster of One TIED: Trial Integration Environment DETER built on.

TIED: A Cluster of One TIED: Trial Integration Environment DETER built on.
802.1AF - directions define requirements to find and create connections in terms of Discovery - Authentication - Enable 1.Discover of what can be done.

802.1AF - directions define requirements to find and create connections in terms of Discovery - Authentication - Enable 1.Discover of what can be done.
Web Services Architecture An interoperability architecture for the World Wide Service Network.

Web Services Architecture An interoperability architecture for the World Wide Service Network.
The Next Generation Grid Kostas Tserpes, NTUA Beijing, 22 of June 2005.

The Next Generation Grid Kostas Tserpes, NTUA Beijing, 22 of June 2005.
SelfCon Foil no 1 Dynamic component systems 1. SelfCon Foil no 2 Pre-structured systems vs. dynamic component systems Pre-structured – emphasis on content.

SelfCon Foil no 1 Dynamic component systems 1. SelfCon Foil no 2 Pre-structured systems vs. dynamic component systems Pre-structured – emphasis on content.
Software Modeling SWE5441 Lecture 3 Eng. Mohammed Timraz

Software Modeling SWE5441 Lecture 3 Eng. Mohammed Timraz
Identity Management Based on P3P Authors: Oliver Berthold and Marit Kohntopp P3P = Platform for Privacy Preferences Project.

Identity Management Based on P3P Authors: Oliver Berthold and Marit Kohntopp P3P = Platform for Privacy Preferences Project.
Introduction and Overview “the grid” – a proposed distributed computing infrastructure for advanced science and engineering. Purpose: grid concept is motivated.

Introduction and Overview “the grid” – a proposed distributed computing infrastructure for advanced science and engineering. Purpose: grid concept is motivated.
Web Services Andrea Miller Ryan Armstrong Alex. Web services are an emerging technology that offer a solution for providing a common collaborative architecture.

Web Services Andrea Miller Ryan Armstrong Alex. Web services are an emerging technology that offer a solution for providing a common collaborative architecture.
Unified Modeling (Part I) Overview of UML & Modeling

Unified Modeling (Part I) Overview of UML & Modeling
Software Requirements

Software Requirements
Using Architecture Frameworks

Using Architecture Frameworks
Emerging Research Dimensions in IT Security Dr. Salar H. Naqvi Senior Member IEEE Research Fellow, CoreGRID Network of Excellence European.

Emerging Research Dimensions in IT Security Dr. Salar H. Naqvi Senior Member IEEE Research Fellow, CoreGRID Network of Excellence European.
Web Service Architecture Part I- Overview and Models (based on W3C Working Group Note Frank.

Web Service Architecture Part I- Overview and Models (based on W3C Working Group Note Frank.
Architectural Design Establishing the overall structure of a software system Objectives To introduce architectural design and to discuss its importance.

Architectural Design Establishing the overall structure of a software system Objectives To introduce architectural design and to discuss its importance.
Web Services Michael Smith Alex Feldman. What is a Web Service? A Web service is a message-oriented software system designed to support inter-operable.

Web Services Michael Smith Alex Feldman. What is a Web Service? A Web service is a message-oriented software system designed to support inter-operable.
Business Rules: The Promise of Data Warehousing. In the Beginning: Formulating Business Rules The Business Objectives The Promise (Data Warehousing) –

Business Rules: The Promise of Data Warehousing. In the Beginning: Formulating Business Rules The Business Objectives The Promise (Data Warehousing) –
What is Software Architecture?

What is Software Architecture?
Software Architecture in Practice (3rd Ed) Introduction

Software Architecture in Practice (3rd Ed) Introduction
Methodology and Tools for End-to-End SOA Configurations By: Fumiko satoh, Yuichi nakamura, Nirmal K. Mukhi, Michiaki Tatsubori, Kouichi ono.

Methodology and Tools for End-to-End SOA Configurations By: Fumiko satoh, Yuichi nakamura, Nirmal K. Mukhi, Michiaki Tatsubori, Kouichi ono.

Similar presentations

Ads by Google