13
All Hands Meeting 2005 BIRN Portal Architecture: Security Jana Nguyen [email protected]

All Hands Meeting 2005 BIRN Portal Architecture: Security Jana Nguyen [email protected]

Tags:

Embed Size (px)

Citation preview

Page 1: All Hands Meeting 2005 BIRN Portal Architecture: Security Jana Nguyen jnguyen@ncmir.ucsd.edu

All Hands Meeting 2005

BIRN Portal Architecture: Security

Jana Nguyen

[email protected]

Page 2: All Hands Meeting 2005 BIRN Portal Architecture: Security Jana Nguyen jnguyen@ncmir.ucsd.edu

Current BIRN Portal Architecture

Based on Perl Limited extensibility Not easy to setup distributed collaborative

environment development

Page 3: All Hands Meeting 2005 BIRN Portal Architecture: Security Jana Nguyen jnguyen@ncmir.ucsd.edu

How can BIRN portal benefit from GridSphere?

With portlets easy to extend Modular development model Built-in features including user management, role

based access control Supports credential management

• Interfaces to on-line credential repositories

Community development of portlets, e.g. gridportlets, GAMA (GEON/Telescience/BIRN)

Credential management provides distributed development environment

Page 4: All Hands Meeting 2005 BIRN Portal Architecture: Security Jana Nguyen jnguyen@ncmir.ucsd.edu

BIRN Portal Architecture

Portal server 2

BIRN Portal server

retrieve credential

DBDB

gridportlets

gama

GridSphere

Servlet container

projectportlets

siteportlets

Grid Account Management Architecture

(GAMA) server

Distributed portalenvironment

gridportlets

Page 5: All Hands Meeting 2005 BIRN Portal Architecture: Security Jana Nguyen jnguyen@ncmir.ucsd.edu

Account Management Goals

Currently centralized user management• Done through BIRN CC

Move to distributed Registration Authority (RA’s)• Local site to add, modify and delete its users

Why we need RA’s?• Avoid bottleneck• Local sites know their users• Improves auditing • Local sites have control of their users

Page 6: All Hands Meeting 2005 BIRN Portal Architecture: Security Jana Nguyen jnguyen@ncmir.ucsd.edu

Site Registration

Site Registration & Management• Site tracking system• Require approval

Page 7: All Hands Meeting 2005 BIRN Portal Architecture: Security Jana Nguyen jnguyen@ncmir.ucsd.edu

Site Management

Page 8: All Hands Meeting 2005 BIRN Portal Architecture: Security Jana Nguyen jnguyen@ncmir.ucsd.edu

Portal Security

Why GAMA?• Complete GSI credential

management system • Dedicated security server• Portlets for handling

accounts

Releases• 3.0 – Accounts  approved

as in current Portal • 4.0 – Distributed RA’s

Page 9: All Hands Meeting 2005 BIRN Portal Architecture: Security Jana Nguyen jnguyen@ncmir.ucsd.edu

Online Credential Repository

Myproxy Online Credential Repository Component of GAMA Stores credentials securely online Credentials available at anytime or anywhere

Page 10: All Hands Meeting 2005 BIRN Portal Architecture: Security Jana Nguyen jnguyen@ncmir.ucsd.edu

Myproxy usability

Page 11: All Hands Meeting 2005 BIRN Portal Architecture: Security Jana Nguyen jnguyen@ncmir.ucsd.edu

Portal Security / GAMA Architecture

Portal server 2

GAMA server

CA

MyProxy

AX

IS W

eb S

ervi

ces

wra

pper

….

Servlet container

import user

retrieve credential

Stand-alone applications

retrieve credential

DBDB

BIRN Portal

Java keystoreJava keystore

Servlet container

create user

Java keystoreJava keystore

Page 12: All Hands Meeting 2005 BIRN Portal Architecture: Security Jana Nguyen jnguyen@ncmir.ucsd.edu

Storage Resource Broker (SRB) Portlets

SRB Portlets• Adapted

from Telescience

• Provides a uniform interface

• Auditing: Logs,

read, and writes

Page 13: All Hands Meeting 2005 BIRN Portal Architecture: Security Jana Nguyen jnguyen@ncmir.ucsd.edu

What has been done?

Setup Gridsphere and GAMA• Hibernate mapping to Postgres database persists

gridsphere and GAMA data

Data Migration• Users won’t need to apply for new accounts

Site Registration and Project Management • Portlets developed


Morphometry BIRN Tool Dissemination

Morphometry BIRN Tool Dissemination

Documents
Okoliczności śmierci Jana Kochanowskiego i Jana Gniazdowskiego

Okoliczności śmierci Jana Kochanowskiego i Jana Gniazdowskiego

Documents
Mouse BIRN - Jagadeeswaran Rajendiran Pipeline Processing Environment

Mouse BIRN - Jagadeeswaran Rajendiran Pipeline Processing Environment

Documents
Birn F Koroli i Verkhovnye Praviteli Irlandii

Birn F Koroli i Verkhovnye Praviteli Irlandii

Documents
BIRN Handbook

BIRN Handbook

Documents
REPORTING PHASE June and July 2011 Gordana Igric, director, BIRN Handouts for this session are: 1. BFJE Practical Guide 2. BIRN Editorial Guidelines 3

REPORTING PHASE June and July 2011 Gordana Igric, director, BIRN Handouts for this session are: 1. BFJE Practical Guide 2. BIRN Editorial Guidelines 3

Documents
Function BIRN: Quality Assurance Practices Introduction: Conclusion: Function BIRN In developing a common fMRI protocol for a multi-center study of schizophrenia,

Function BIRN: Quality Assurance Practices Introduction: Conclusion: Function BIRN In developing a common fMRI protocol for a multi-center study of schizophrenia,

Documents
Birn shqip - Democracy Plus · 2019. 10. 14. · Title: Birn shqip Created Date: 3/9/2019 4:23:33 PM

Birn shqip - Democracy Plus · 2019. 10. 14. · Title: Birn shqip Created Date: 3/9/2019 4:23:33 PM

Documents
Data Management BIRN supports data intensive activities including: – Imaging, Microscopy, Genomics, Time Series, Analytics and more… BIRN utilities scale:

Data Management BIRN supports data intensive activities including: – Imaging, Microscopy, Genomics, Time Series, Analytics and more… BIRN utilities scale:

Documents
Building on the BIRN Workshop BIRN Systems Architecture Overview Philip Papadopoulos – BIRN CC, Systems Architect

Building on the BIRN Workshop BIRN Systems Architecture Overview Philip Papadopoulos – BIRN CC, Systems Architect

Documents
Morphometry BIRN - Overview - Scientific Achievements

Morphometry BIRN - Overview - Scientific Achievements

Documents
Julia Nguyen Senior Program Officer Division of Education Programs 202-606-8213 jnguyen@neh.gov

Julia Nguyen Senior Program Officer Division of Education Programs 202-606-8213 [email protected]

Documents
Izveštaj je uradio BIRN za potrebe Medijske koalicije

Izveštaj je uradio BIRN za potrebe Medijske koalicije

Documents
BIRN Ontologies Ontology Task Force. Topics Building the BIRNLex Structure of BIRNLex BIRN anatomy Next steps

BIRN Ontologies Ontology Task Force. Topics Building the BIRNLex Structure of BIRNLex BIRN anatomy Next steps

Documents
BIRN ONTOLOGY WORKSH

BIRN ONTOLOGY WORKSH

Documents
Ongoing BIRN-GCRC Collaborations Medical College Wisconsin (non BIRN site) –Functional MRI acquisition calibration University of Texas (non BIRN site)

Ongoing BIRN-GCRC Collaborations Medical College Wisconsin (non BIRN site) –Functional MRI acquisition calibration University of Texas (non BIRN site)

Documents
23-Jun-991 Heavy Duty Truck Activity Data John K. Nguyen 916-327-6184 jnguyen@arb.ca.gov

23-Jun-991 Heavy Duty Truck Activity Data John K. Nguyen 916-327-6184 [email protected]

Documents
BIRN: Where We Have Been, Where We are Going

BIRN: Where We Have Been, Where We are Going

Documents
Gde je mesto medija u novim - BIRN Srbija

Gde je mesto medija u novim - BIRN Srbija

Documents
2004 All Hands Meeting Welcome to the BIRN All Hands Meeting

2004 All Hands Meeting Welcome to the BIRN All Hands Meeting

Documents
All Hands Meeting 2005 Human Morphometry and Function BIRN Testbeds Christine Fennema-Notestine, Ph.D. Jessica Turner, Ph.D. CBiO/BIRN Workshop 2006

All Hands Meeting 2005 Human Morphometry and Function BIRN Testbeds Christine Fennema-Notestine, Ph.D. Jessica Turner, Ph.D. CBiO/BIRN Workshop 2006

Documents
Ongoing BIRN-GCRC Collaborations

Ongoing BIRN-GCRC Collaborations

Documents
All Hands Meeting 2005 Morphometry BIRN - Overview - Scientific Achievements

All Hands Meeting 2005 Morphometry BIRN - Overview - Scientific Achievements

Documents
Mouse BIRN: Ontologies Maryann Martone and Bill Bug 2005 All Hands Meeting Mouse BIRN: Ontologies Maryann Martone and Bill Bug

Mouse BIRN: Ontologies Maryann Martone and Bill Bug 2005 All Hands Meeting Mouse BIRN: Ontologies Maryann Martone and Bill Bug

Documents
(D00000017) Birn_Partners GDPR Policy (2).docx · Web viewTHE REGISTERED RIGHTS As per Birn + Partners, you have the right to understand what information Birn+Partners has registered

(D00000017) Birn_Partners GDPR Policy (2).docx · Web viewTHE REGISTERED RIGHTS As per Birn + Partners, you have the right to understand what information Birn+Partners has registered

Documents
Secure Data Management in BIRN Karl Helmer Massachusetts General Hospital September 6, 2011 For the BIRN Consortium

Secure Data Management in BIRN Karl Helmer Massachusetts General Hospital September 6, 2011 For the BIRN Consortium

Documents
BIRN Knowledge Engineering Working Group Chair: Gully APC Burns

BIRN Knowledge Engineering Working Group Chair: Gully APC Burns

Documents
BIRN Vision for Data Pipeline

BIRN Vision for Data Pipeline

Documents
RB Birn cambridge journal_revising the holocaust

RB Birn cambridge journal_revising the holocaust

Documents
BIRN Knowledge Engineering Working Group

BIRN Knowledge Engineering Working Group

Documents