Cargando…
Managing Dynamic User Communities in a Grid of Autonomous Resources
One of the fundamental concepts in Grid computing is the creation of Virtual Organizations (VO's): a set of resource consumers and providers that join forces to solve a common problem. Typical examples of Virtual Organizations include collaborations formed around the Large Hadron Collider (LHC)...
Autores principales: | , , , , , , , , , , , , , , , , , , , , , , |
---|---|
Lenguaje: | eng |
Publicado: |
2003
|
Materias: | |
Acceso en línea: | http://cds.cern.ch/record/851976 |
_version_ | 1780906996600406016 |
---|---|
author | Alfieri, R Cecchini, R Gianoli, A Spataro, F Ciaschini, Vincenzo dell'Agnello, L Bonnassieux, F Broadfoot, P Lowe, G Cornwall, L Jensen, J Kelsey, D Frohner, A Groep, DL Som de Cerff, W Steenbakkers, M Venekamp, G Kouril, D McNab, A Mulmo, O Silander, M Hahkala, J Lhorentey, K |
author_facet | Alfieri, R Cecchini, R Gianoli, A Spataro, F Ciaschini, Vincenzo dell'Agnello, L Bonnassieux, F Broadfoot, P Lowe, G Cornwall, L Jensen, J Kelsey, D Frohner, A Groep, DL Som de Cerff, W Steenbakkers, M Venekamp, G Kouril, D McNab, A Mulmo, O Silander, M Hahkala, J Lhorentey, K |
author_sort | Alfieri, R |
collection | CERN |
description | One of the fundamental concepts in Grid computing is the creation of Virtual Organizations (VO's): a set of resource consumers and providers that join forces to solve a common problem. Typical examples of Virtual Organizations include collaborations formed around the Large Hadron Collider (LHC) experiments. To date, Grid computing has been applied on a relatively small scale, linking dozens of users to a dozen resources, and management of these VO's was a largely manual operation. With the advance of large collaboration, linking more than 10000 users with a 1000 sites in 150 counties, a comprehensive, automated management system is required. It should be simple enough not to deter users, while at the same time ensuring local site autonomy. The VO Management Service (VOMS), developed by the EU DataGrid and DataTAG projects[1, 2], is a secured system for managing authorization for users and resources in virtual organizations. It extends the existing Grid Security Infrastructure[3] architecture with embedded VO affiliation assertions that can be independently verified by all VO members and resource providers. Within the EU DataGrid project, Grid services for job submission, file- and database access are being equipped with fine- grained authorization systems that take VO membership into account. These also give resource owners the ability to ensure site security and enforce local access policies. This paper will describe the EU DataGrid security architecture, the VO membership service and the local site enforcement mechanisms Local Centre Authorization Service (LCAS), Local Credential Mapping Service(LCMAPS) and the Java Trust and Authorization Manager. |
id | cern-851976 |
institution | Organización Europea para la Investigación Nuclear |
language | eng |
publishDate | 2003 |
record_format | invenio |
spelling | cern-8519762019-09-30T06:29:59Zhttp://cds.cern.ch/record/851976engAlfieri, RCecchini, RGianoli, ASpataro, FCiaschini, Vincenzodell'Agnello, LBonnassieux, FBroadfoot, PLowe, GCornwall, LJensen, JKelsey, DFrohner, AGroep, DLSom de Cerff, WSteenbakkers, MVenekamp, GKouril, DMcNab, AMulmo, OSilander, MHahkala, JLhorentey, KManaging Dynamic User Communities in a Grid of Autonomous ResourcesComputing and ComputersOne of the fundamental concepts in Grid computing is the creation of Virtual Organizations (VO's): a set of resource consumers and providers that join forces to solve a common problem. Typical examples of Virtual Organizations include collaborations formed around the Large Hadron Collider (LHC) experiments. To date, Grid computing has been applied on a relatively small scale, linking dozens of users to a dozen resources, and management of these VO's was a largely manual operation. With the advance of large collaboration, linking more than 10000 users with a 1000 sites in 150 counties, a comprehensive, automated management system is required. It should be simple enough not to deter users, while at the same time ensuring local site autonomy. The VO Management Service (VOMS), developed by the EU DataGrid and DataTAG projects[1, 2], is a secured system for managing authorization for users and resources in virtual organizations. It extends the existing Grid Security Infrastructure[3] architecture with embedded VO affiliation assertions that can be independently verified by all VO members and resource providers. Within the EU DataGrid project, Grid services for job submission, file- and database access are being equipped with fine- grained authorization systems that take VO membership into account. These also give resource owners the ability to ensure site security and enforce local access policies. This paper will describe the EU DataGrid security architecture, the VO membership service and the local site enforcement mechanisms Local Centre Authorization Service (LCAS), Local Credential Mapping Service(LCMAPS) and the Java Trust and Authorization Manager.cs.DC/0306004oai:cds.cern.ch:8519762003-05-30 |
spellingShingle | Computing and Computers Alfieri, R Cecchini, R Gianoli, A Spataro, F Ciaschini, Vincenzo dell'Agnello, L Bonnassieux, F Broadfoot, P Lowe, G Cornwall, L Jensen, J Kelsey, D Frohner, A Groep, DL Som de Cerff, W Steenbakkers, M Venekamp, G Kouril, D McNab, A Mulmo, O Silander, M Hahkala, J Lhorentey, K Managing Dynamic User Communities in a Grid of Autonomous Resources |
title | Managing Dynamic User Communities in a Grid of Autonomous Resources |
title_full | Managing Dynamic User Communities in a Grid of Autonomous Resources |
title_fullStr | Managing Dynamic User Communities in a Grid of Autonomous Resources |
title_full_unstemmed | Managing Dynamic User Communities in a Grid of Autonomous Resources |
title_short | Managing Dynamic User Communities in a Grid of Autonomous Resources |
title_sort | managing dynamic user communities in a grid of autonomous resources |
topic | Computing and Computers |
url | http://cds.cern.ch/record/851976 |
work_keys_str_mv | AT alfierir managingdynamicusercommunitiesinagridofautonomousresources AT cecchinir managingdynamicusercommunitiesinagridofautonomousresources AT gianolia managingdynamicusercommunitiesinagridofautonomousresources AT spatarof managingdynamicusercommunitiesinagridofautonomousresources AT ciaschinivincenzo managingdynamicusercommunitiesinagridofautonomousresources AT dellagnellol managingdynamicusercommunitiesinagridofautonomousresources AT bonnassieuxf managingdynamicusercommunitiesinagridofautonomousresources AT broadfootp managingdynamicusercommunitiesinagridofautonomousresources AT loweg managingdynamicusercommunitiesinagridofautonomousresources AT cornwalll managingdynamicusercommunitiesinagridofautonomousresources AT jensenj managingdynamicusercommunitiesinagridofautonomousresources AT kelseyd managingdynamicusercommunitiesinagridofautonomousresources AT frohnera managingdynamicusercommunitiesinagridofautonomousresources AT groepdl managingdynamicusercommunitiesinagridofautonomousresources AT somdecerffw managingdynamicusercommunitiesinagridofautonomousresources AT steenbakkersm managingdynamicusercommunitiesinagridofautonomousresources AT venekampg managingdynamicusercommunitiesinagridofautonomousresources AT kourild managingdynamicusercommunitiesinagridofautonomousresources AT mcnaba managingdynamicusercommunitiesinagridofautonomousresources AT mulmoo managingdynamicusercommunitiesinagridofautonomousresources AT silanderm managingdynamicusercommunitiesinagridofautonomousresources AT hahkalaj managingdynamicusercommunitiesinagridofautonomousresources AT lhorenteyk managingdynamicusercommunitiesinagridofautonomousresources |