EMI Security for Grids and Clouds - aims of double session
Within the the EMI project the Security Area work has started in May 2010 in order to achieve the project goals. These goals include easing the usage of Grid and Cloud resources by researchers and unifying the EMI software stack. This session will present some of the work performed on the way to achieving these goals. These presentations are to be user-oriented and include the STS UNICORE Client, Hydra key storage service, Argus Environment Execution Service and Common Authentication libraries. This session is aimed at middleware users and software developers who will gain an understanding of how this work can be used.
Description of the work
The work in the Security Area that is aimed towards the future includes:
The Security Token Service (STS) where a UNICORE client is being developed. We are hoping to show either a preview or a demo of this client with the STS service.
The Common AuthN libraries (CANl) have been developed and are being integrated into EMI services.
The Hydra key storage system, used by Biomedical researchers, will have undergone changes on both the client and service-side. These changes incorporate newer technologies and experience from other Grid services. A distributed key storage system can be considered essential for data storage on "unknown" Cloud resources.
The Argus Environment Execution Service (EES) provides connection between the security of the Grid world and the flexibility of the Virtual Machine (or Cloud) environment. The EES may exist with the Argus Authorization service and ensures that an appropriate site-specific execution environment for a virtual machine is procured.
Wider impact of this work
The EMI Security services will need to be understood by users (system administrators and researchers) if they are to continue in the more virtualized computing environment after traditional Grid projects finish.