Embed Size (px)
Citation preview
The National Telecommunications Network for Technology, Education and Research
www.renater.fr
C O N N E C T I N G K N O W L E D G E
2013ANNUAL REPORT
ANNUAL REPORT 2013
Contents
1. Introduction p.36Message from the DirectorRENATER and its missionsKey figures
2. Services p.40Services related to connectivity and management of resourcesShared services for use by the user communityMeetings with users
3. A reliable, robust and secure infrastructure p.50An increasingly secure networkNetwork architecture and reinforced resilienceGlobal architecture by country, in Europe and throughout the world
4. Partner in an innovative context p.58Expertise for the benefit of other institutional partnersParticipation in steering work and instances
5. Financial report p.64
c o n n e c t i n g k n o w l e g d e
ww
w.r
en
ate
r.fr
4 / 334 / 33
1 Introduction
Message from the Director
We celebrated ReNaTeR’s 20th anniversary at the beginning of 2013, and the occasion was marked by searching memories to trace important aspects of the history of the French teaching and research network.
a book entitled «Dans les coulisses de l’Internet» (Internet Backstage) written by Valérie schafer and Bernard Tuy, and published by armand Colin, Committee for the history of CNRs, was released at the beginning of the year. This compilation of archives and interviews made it possible to describe the incredible change in terms of the digital network and usage that has been made in France and in europe through teaching and research networks.
These 20 years have also marked an important step in the development in the ReNaTeR’s services, thus consolidating its position as «Connecteur de savoirs» (connecting knowledge).
In 2013, we succeeded in improving the quality, performances and security of network and application services while reorganising our internal structure, in order to better understand and manage the network users and services.
Our primary role is to satisfy the needs of our community and to provide it with the necessary infrastructures and applications, in a framework of sharing.
We have thus entered the world class club of collaborative solution providers by developing a platform of cooperative tools called PaRTage, the purpose of which is to assist the digital transformation of institutions and provide a range of solutions integrated into their information systems.
Note that our contribution to the France Digital University operation was also important in implementing the first Massive Open Online Courses (MOOCs) provided by the Ministry of Higher education and Research.
The year terminated with the very successful organisation of JRes (Networking days) that were attended by more than 1500 persons. ReNaTeR’s performance, capability for change and federation were unanimously acclaimed.
Note also our increasingly important action in europe and internationally, our participation in the Dante Board of Directors and the gN3plus project co-financed by the european Union that has the objective of upgrading the european gÉaNT network and related services for cooperation between teaching and research networks.
We participate also at the Meetings between research networks in international, to develop the implementation of innovative applications to facilitate cooperation of the teaching and research community throughout the world.
Patrick DONatHDirector
ww
w.r
en
ate
r.fr
5 / 335 / 33
RENATER AND ITS MISSIONS
For more than 20 years, rENatEr has been providing the French education and research community with a very high speed state-of-the-art infrastructure to satisfy its continuously increasing needs.
The 2013-2016 strategic plan fits into a context in which data exchanges related to new applications specific to the reality of the digital society are exploding.
an internal and external analysis of opportunities was made to better identify prospects for change.
Theme 1maintain its
lead in its core business
Theme 2reinforce innovation
capabilities
Theme 3Become a
benchmark player for other
communities
Theme 4Develop its
international footprint
as national operator responsible for providing and managing a spearhead network infrastructure, ReNaTeR must continuously be in a leading position, targeting innovation and development of new state-of-the-art services more than ever before. By 2016, its core business platform will be enriched by a new critical skill, to provide experimental means and a top quality hosting service.
strengthening links with the international community appears to be a strategic policy, firstly because many research projects are open to other countries, but also because rENatEr intends to fully participate in the strategy and the choice of technical standards designed to develop and rationalise networks at world scale.
ReNaTeR offers its expertise to help other institutional partners. By 2016, rENatEr is planning to extend its action to include other communities and broaden its network capabilities to include new users (health, culture, etc.).ReNaTeR would also like to contribute to the harmonisation of regional networks with regional communities.
ReNaTeR intends to maintain its position as a pioneer and expert. the objective is to optimise network performance, assist users by providing relevant services, advice and training courses, and by developing « tailored » services.
ww
w.r
en
ate
r.fr
6 / 336 / 33
mission • to offer a high quality,
high performance, secure and innovative network and services for the needs of users in the Teaching and Research field
• Sharing and optimisation of infrastructure means
• Expected qualities: performance, security, confidentiality, trust
KEY FIGURES
15,000 km optical fibres
72 regional nodes
120 links
10 to 100 g
150 wavelengths
10g
1,400 sites
Traffic : 120 Po
exchanged with the rest of the world
1,400 connections
in mainland France and Overseas Departments
and Territories
2,4 million students
640 institutions
RENATER
160,000researchers
ww
w.r
en
ate
r.fr
7 / 337 / 33
Introduction
ReNaTeRwas created in 1993.The Board of Directors is composed of representatives of Member Organisations: the Ministry of Higher education and Research, the Ministry of National education, CNRs, CPU, Cea, INRIa, CNes, INRa, Inserm, Onera, Cirad, Irstea, IRD, BRgM.
Administrative and financial Affairs
management sandra CaBaReT
chairman of the board
Jean-Pierre FINaNCe
DirectorPatrick DONaTH
technical managementLaurent gyDÉ
Deputy Mathilde ROgeR
external relations management
sabine JaUMe-RaJaONIa
human resources
Public contracts
Administrative and financial
affairs
Businessdeveloppement
Partner relations
communication
User relations
Networkand servicesoperations
softwareprojects
Networks Projects
security of Information
systems
Innovation andexperimental Development
aBROUK abou-simbel -aLJOgaMI Mirvat - aNDReU François-Xavier - aUBLeT-CUVeLIeR Laurent - BeCKeR yann - BLaNQUaRT Virginie - BONNeT Christophe -BONO Thierry - BOUDJeMaa Karim - CaBaReT sandra - CaMIsaRD emilie - CHaLLe Cécile - CHeUTIN Liliane - CHOLeT Roland - CLaVeLeIRa Christian - DaNHO Michelle - DIaZ MaURIN Rafael - DONaTH Patrick - DUCROT François - FeRReT Robert - FIssON anthony - gaRNIeR Nicolas - geLLy Michel - gOKaNa Dahlia - gOMes elisabeth - gROss Claude - gUeZOU Jean-François - gUILLeMeNOT sylvain - gyDÉ Laurent - HaCHeD Mehdi - HaMMOUCHe Hanane - HOINVILLe stéphanie - HONeIN sami - IsHIOMIN Ludovic - JaUMe-RaJaONIa sabine - JeaNNIN Xavier - LaUNay Dominique - LeBLaNC Quentin - LOUI Frédéric - LUMINeaU Olivier - MaINgaULT Claire - MaRLeT-VUCICeVIC Cécile - MaRQUes Hugo - MaRRONNIeR Xavier - MeDaRD sébastien - MeLeaRD etienne - MeNsaH Rita - MIHaILesCU Vittorio - MIsseRI Xavier - MOaL Pol - PIeRNÉ Vanessa - RaBeFIReNeNa Haja - RaJasINgHaM Renuka - ReNaI azouaou - ROgeR Mathilde - RUPIN Franck - saLaÜN Olivier -TRINH Christian - TURPIN anne-Hélène - TURPIN Marc - VeRDIN David. (05-2014)
ww
w.r
en
ate
r.fr
8 / 338 / 33
2 Services
rENatEr offers a range of services facilitating the development of digital solutions within institutions and connections with their international peers, as part of its policy to support and develop digital solutions set up by the ministry of higher education and research.
SERVICES RELATED TO CONNECTIVITY AND MANAGEMENT OF RESOURCES
A one-stop counter for iP addresses and domain namesiP resource transfer program
Discussions under way for the RIPe address policy have led to a decision about how IPv4 addresses will be managed and registered.a document has been written and adopted by the european public and private IP networks community.It will be put into application in RIRs (Regional Internet Registries) such as the NCC RIPe, and LIRs (Local Internet Registries) such as ReNaTeR.
Domain names
With ReNaTeR institutions can register their domain names in .fr, but also in some other gtlds (generic top level domains).ReNaTeR has been the domain name registrar with the aFNIC for registering .fr domain names since 1997.
the end of 2013 rENatEr’s portfolio with aFNic is 3255 .fr domain names (IDN and «simple» domain names).
ww
w.r
en
ate
r.fr
9 / 339 / 33
VPN and mD-VPN Major experiments and scientific infrastruc-tures (grid of computer centres, telescopes, etc.) are now used as part of international cooperation projects. These projects require that large data quantities are exchanged, and needs can be :
related to confidentiality and security of data exchanges particularly in the case of a partnership on patents with commercial enterprises,
Performance-related: the use of firewalls (deep inspection) at very high speed (10gbps) degrades performances and in some cases can be completely blocking
specific to network technologies, depending on the speed, latency or jitter.
Virtual Private Networks (VPN) enable isolation and protection of data on the network in production.
Due to this service and use of the Traffic engineering MPLs, ReNaTeR can apply special processing and optimise network resources by enabling very flexible deployment of the VPN, such as setting up dedicated pass bands, redundancy, determination of paths used, etc.
The DFN, NORDUnet (FUnet and sUnet are also connected behind NORDUnet), aMRes, PIONIeR, FCCN and ReNaTeR NReNs now connected to the gÉaNT MD-VPN production infrastructure.
in 2013, ReNaTeR offers a new multi-domain VPN (MD-VPN) service that can be used in many educational and scientific projects.
Projects that benefited from this new technology:The so-called «back-to-back» method has been used to interconnect the different L3VPNs (IP) installed in each NReN that make up the LHcONE, the High energy Physics community’s multi-domain L3VPN.
For the European XiFi research project (https://www.fi-xifi.eu/home.html), the first multi-domain VPNs were delivered on ReNaTeR, DFN aND gÉaNT production networks.
This is the first successful step in implementing this service at the european scale.
ww
w.r
en
ate
r.fr
10 / 3310 / 33
Education-Research FEDERATION FaCILITaTe aCCess TO ONLINe seRVICes
The education-Research Federation offers an organisational and technical framework through which optimised and secure access to online services can be provided for a large number of users.
The end user can access services provided outside his institution using his institution’s authentication mode.Thus, he does not need to remember a new identifier and password for each new service. Furthermore, he does not need to install a special tool, a simple web browser is all that he needs. This is particularly suitable for roaming applications.
Managers of online services using the education-Research federation no longer needs to manage these user accounts. He can also obtain the profile of a connected user to customise his access.
These users attributes are directly provided from user home institutions and are therefore regularly updated and are often more relevant.
at the european scale, ReNaTeR participates in edugaIN for the interconnection of national identity federation services such as the education-Research Federation. edugaIN manages secure access to digital services, including for students and foreign researchers.
www.geant.net/service/eduGaiN
SHARED SERVICES FOR USE BY THE USER COMMUNITY
Services are available for the community and are accessible through an authentication system called the Education-research Federation.
ww
w.r
en
ate
r.fr
11 / 3311 / 33
CertificatesseRVeR CeRTIFICaTes aND PeRsONaL CeRTIFICaTes
This activity coordinated by TeReNa since 2006 via the service called sCs (server Certificate service) at the time, supplies X.509 server certificates natively recognised in user browsers, to all institutions with a ReNaTeR approval at no additional cost. This service changed in 2009 after a second call for offers that resulted in the TCs service that provides a panel of certificate types natively recognised by the different browsers and tools using the ssL layer.ReNaTeR has subscribed to the server certificates and person certificates service.
GriD2-fr certification Authority
The gRID2-FR Certification authority (Ca) allows the distribution of X.509 electronic certificates for access control to computer grid resources in France. The administration of this Ca includes several parts:
Management of certificate requests (Registration authority Function) creation, renewal, revocation
set up the gRID2-FR Certification authority’s certification policy and the resulting procedures
French representation in eUgridPMa and egI for international relations
Technological monitoring
Users support
supply of measurements on the number of gRID2-FR certificates issued regularly to France-grilles
Services
in 2013, 5374 server certificates were issued
in 2013, 946 personal certificates994 server certificates were issued.
Use of this service has been extended to include university students for training on grid needs. New procedures were necessary.
ww
w.r
en
ate
r.fr
12 / 3312 / 33
In April 2013,RENATER launched up the CAT eduroam service
eduroam configuration assistant tool (cat) is the online tool for automatic configuration of eduroam for laptop computers, smartphones and tablets.
Installation of eduroam on a user station is an operation that may be complex to organise, particularly on the fleet of student workstations. The objective of CaT is to make this operation as simple as possible for the user and to reduce the workload of eduroam administrators in the various institutions.
eduroam CaT is now active for more than 463 institutions throughout the world including about 80 French institutions. More than 80 000 eduroam installations have already been made through CaT.
https://cat.eduroam.org/
more than 200 institutions
and 450 higher education and research sites use
eduroam in France
Mobility
eduroam enables the user to benefit from secure access to the wifi network of all institutions that have subscribed and implemented the service.
The connection between the user’s home institution and the host institution is easy to make, transparent (same login and password) and secure (802.1X).
The user is authenticated by his home institution through a hierarchy of radius servers.
eduroam has been set up in about sixty countries around the world and in more than 6 000 institutions.
sIMPLIFy WIReLess NeTWORK aCCess FOR sTUDeNTs
eduspot recommendations are aimed at simplifying access in France to the wireless network for users inside their institution but especially when they visit other institutions. eduspot uses the education-Research Federation as the authentication infrastructure and a set of common practices. These recommendations apply to universities and research centres for the benefit of their visitors and are complementary to the eduroam infrastructure.
ww
w.r
en
ate
r.fr
13 / 3313 / 33
Services
SOURCESup PROJeCT HOsTINg
sourcesup is a ReNaTeR service that proposes hosting of software development projects.sourcesup frees members of a project from the installation, configuration and administration of tools (versioning, ticket manager, etc.) so that they can focus on their project itself. sourcesup also makes the project visible to the higher education and research community.
The services proposed for a project: a versioning system (subversion or git deposit) Tickets manager (bug report, new functions, etc.) Task manager Hosting of web pages, wiki Distribution lists, forums Documentation, survey, advertising managers Continuous integration platform (Jenkins)
anyone in a ReNaTeR member institution or organisation can use this forge.
in 2013, SourceSup hosted 911 projects, for example: The esUP Portail consortium
The ORI-OaI project and other projects : Lodel, sympa,Cyberdocs, CNRs sPIP tools, etc.
UNIVERSalistes HOsTINg FOR DIsTRIBUTION LIsTs
Universalistes is based on a collection of virtual hosts based on the sympa lists engine.anyone belonging to a member institution or organisation of ReNaTeR can request the creation of a list.The list is operational immediately after validation and hosting is free.Members and/or associations can display their domain in the internet address of their lists on request.a few examples of hosted servers: adbs.fr, amue.fr, csiesr.fr, genci.fr, a-dsi.fr, esup-portail.org, jres.org, cpu.fr, recherche.gouv.fr.
in 2013,New organisations: IN2P3 Corpuscular Physic Laboratory,Paris – eNsCP (Paris Higher National school of Chemistry,euclid Consortium – merging of the european DUNe and sPaCe missions brought in by esa.
Associated cooperative tools:
Foodle : tool for making appointments,Wiki associated with each list,Sondage : online surveys (Limesurvey).
ww
w.r
en
ate
r.fr
14 / 33
ANTISpam sHaReD seRVICe
a new antispam solution was adopted in 2013, to reinforce this shared messaging relay acting in front of site messaging servers, thus performing a first level of anti-spam filtering. This service is available to all institutions connected to the network.each site administrator who has subscribed to the messaging antispam service can manage his site’s domains and filter policy independently.
seCURe eXCHaNge OF LaRge FILes
an inquiry with ReNaTeR member organisations showed up the need for a service for the exchange of large files. The precise need expressed the following constraints:
Possibility of submitting files of several gbytes Control of user quotas and holding times by the institution group management, ideally derived from the institution’s Is Possibility of creating guest accounts for persons from outside the institution exchange security and encryption
In 2013, this service was in the pilot phase with two institutions. It will integrate ReNaTeR’s global « software as a service » offer that will be open to the community in april 2014.
VISIOConferenceVIDeOCONFeReNCINg PLaTFORM
reNAvisio and reNAvisio+
services for which the infrastructure is based on Multi-Point Control Units (MCU) accessible through a web interface capable of reserving a slot for several persons.ReNavisio+ offers three additional functions: high definition (HD), guaranteed availability and encryption of communications.
more than 50,000 videoconferences per year
SeeVogh
This is an internationally web videoconference tool based on a set of «reflectors» responsible for signalling and routing of flows generated by the application. ReNaTeR hosts reflectors, and the community can hold video conferences to which a large number of participants can contribute. access to the seeVogh platform takes place through the ReNaTeR portal through a federated account reserved for teachers and researchers.This is a nationally shared service aiming at facilitating work meetings.
Jitsi
https://jitsi.org
ReNaTeR contacted the development team free video conferencing software Jitsi based on the future standard WebRTC. This standard allows a web conference from a web browser (Chrome, Chromium and Opera) without plugin or other software. ReNaTeR put in place, for research and educatiion community, an evaluation Jitsi available on jitsi.visio.renater.fr platform.
ww
w.r
en
ate
r.fr
15 / 33
Services
PROSPECTS - SERVICE CONSULTATION GROUP
ReNaTeR has suggested that representatives of its Board of Directors should participate in the definition of future services and a prospective study in addition to network services, to satisfy the demands of its users. study themes apply to changes to existing services and the development of new services. Work groups reporting to the gCs have been set up, based on the expertise of the ReNaTeR community.
gCs recommendations are forwarded to the ReNaTeR Board of Directors.
Thus, the new cooperative tools platform called «PaRTage» was initiated in 2013.
Platform hosted in France, by a sovereign cloud,
software suite based on Zimbra Collaboration suite,
Integration with ReNaTeR cooperative services,
service provided by ReNaTeR in hosted mode (software as a service),
secure environment
guarantee reversibility and commitment to a high quality 24/7 service, assistance with change
COOPeRaTIVe TOOLs eNVIRONMeNT
ReNaTeR offers a cooperative tools environment dedicated to the education and Research community.students, teachers, researchers, administration staff, etc., can use this service integrated into the institution’s digital ecosystem to access their data (messages, contacts, calendar, etc.) and share them under all circumstances and with all types of interfaces (dedicated client, we, mobile application, etc.).ReNaTeR’s service is based on the principle of sharing.
Message service
Chat
Address books and directories
Shared agenda
File sharing
Videoconference
Task management Onboard security
ww
w.r
en
ate
r.fr
16 / 3316 / 33
JNUm – march 14 20137th edition of digital days on the «towards an open university» theme.
This day is addressed in priority to teachers-researchers, students, professionals in education and educational technologies in universities and everyone affected by opening up of data and publications. ReNaTeR supports and was present at this event.
MEETINGS WITH USERS
training coursesrENatEr organises training courses addressed to rENatEr network and service users.
some of these training courses are organised in partnership with the CINes in Montpellier, others originate from TutoJRes and are aimed at education and research community.
January 16-18 2013 CRIHaN, Rouen IPv6
January 28-2013 OsIRIs, strasbourg shibboleth
June 4-5 2013 Montpellier CINes shibboleth
June 6-7 2013 Montpellier CINes Ciren - sympa – 2nd session
June 25-26 2013 Montpellier CINes Ciren - eVO
May 27 2013 Paris Federation day
June 18-20 2013 CRIHaN Rouen IPv6
September 30 – October 4 2013 Paris TutoJRes : Videoconf
October 14-18 2013 strasbourg sympa days + hackaton
October 7-12 2013 Montpellier CINes shibboleth
rUe 2013 – march 27 & 28 2013the annual meeting of academics, private industry and institutions.
ReNaTeR was present at its stand in the digital village and participated in workshops on sharing: a vital requirement in the digital era.ReNaTeR also organised a debate on the theme «What does computing contribute to science».
ww
w.r
en
ate
r.fr
17 / 3317 / 33
Services Les Services
the Higher Education Networking Days (JrES) is a forum for discussions and transfers of skills in information and communication technologies held every 2 years :
4 days of conferences and debates 60 stands of industrial and institutional partners
Lighting Talks
This event that is unique in France, and is impatiently awaited by the French Teaching/education/Research community.
The 2013 JRes in Montpellier organised by ReNaTeR were a resounding success. These days were attended by 1500 conference members, professionals from University and Research institutions, to present a complete inventory of technologies, services, uses and strategies throughout the digital world.
Renater also made a strong contribution to the program committee and provided VOD presentations on the web
https://2013.jres.org
The main themes discussed during this year were the use, eco-responsibility, organisation, supervision and security.
JreS (higher education Networking days) – December 10 to 13 2013 - montpellier (corum)
ww
w.r
en
ate
r.fr
18 / 3318 / 33
3 A reliable, robust and secure infrastructure
RENATER is a Very Large Research Infrastructure, for which the connections, facilities and services satisfy the needs of the education and Research community, protecting intellectual, scientific and technical knowledge.
• Availability• Integrity• Confidentiality
Quimper
Brest
LannionSaint-Brieuc
Caen
Lorient Vannes
Nantes
Rennes
Angers
PoitiersNiort
Le Mans
Tours
Rouen
Orléans
Nançay
Dijon
Genève
Besançon
Nancy
ReimsCompiègne
general internet
general internet
OVERSEAS
SFINX
Lyon
Limoges
Clermont-Ferrand
Montpellier
ToulousePau
Marseille
Nice
Sophia AntipolisToulon
Cadarache
Corté
Lille
Grenoble
Avignon
Bordeaux
ParisStrasbourg
Cross-border connection with RESTENA and BELNET
Cross-border connection with DFN
Paneuropean network
La RochelleAngoulême
New CaledoniaFrench PolynesiaLa ReunionGuyanaGuadeloupeMartiniqueMayotte
ww
w.r
en
ate
r.fr
19 / 3319 / 33
AN INCREASINGLY SECURE NETWORK
An end-to-end security chainIn 2013, ReNaTeR began deployment of an information system security policy (PssI) aimed at institutions including leadership of the network of persons responsible for security of information systems. a reference framework will be suggested with the National agency for security of Information systems (aNssI) to help institutions with their data security strategy. Moreover, the ReNaTeR CeRT team that has been set up since 1995 will adopt new supervision techniques to face the ongoing increase in computer attacks and the persistent presence of infected computers on the network.
hadoopReNaTeR makes use of NetFlow flow exports generated by level 3 “backbone” equipment, to improve management of the network capacity.The need to be able to work on a flow history led ReNaTeR to implement a HaDOOP* architecture (framework for BIg DaTa) in 2013, to keep a trace of flows and analyse them a posteriori.This specific project also led to improvements and technical modifications to the transport layer of the ReNaTeR network (reinforced supervision and security, setting up dedicated supervision solutions, etc.) and new operating procedures.
ww
w.r
en
ate
r.fr
20 / 3320 / 33
Most detected problems (7,107 cases) are related to the presence of malicious software (Trojan horse, spy software, agents integrated into botnets, etc.) on computers which are often mobile client stations connected to the network.
Vulnerabilities of Web platforms are also a preferred target for hackers (disfigurations, phishing aimed at theft of connection data, pollution with advertising contents, putting hacking tools online) and form more than half of all compromised server cases detected this year.
Finally, an increase in saturation attacks on ReNaTeR institutions was noted in 2013. although at the moment these are usually short attacks with no stated purpose, some institutions are affected by them very regularly and some of these attacks can reach speeds of 5gbit/s. Providing solutions to reduce their impact will be one of the main objectives for 2014.
10,310 alerts were sent by the
reNAter certabout security incidents concerning institutions
connected to the ReNaTeR network
cert (computer emergency response team)ReNaTeR CeRT performs a mission to provide information, detection and assistance with detected and notified security incidents on the ReNaTeR network.
some incidents can be detected through the combined use of different tools, particularly metrological tools installed on the network. The site(s) concerned will be notified.
The preventive aspect of the ReNaTeR CeRT mission consists essentially of sending different types of bulletins to its correspondents on ReNaTeR sites. They are essentially:
announcements about discoveries of security weaknesses in various equipment and software
a weekly bulletin listing information about observed attacks, critical security weaknesses or weaknesses that could interest members of the ReNaTeR community
Occasionally and depending on the current situation:
• Security alerts to draw users’ attention to current attacks, uncorrected critical security weaknesses, patches, etc…
ww
w.r
en
ate
r.fr
21 / 3321 / 33
A reliable, robust and secure infrastructure
NETWORK ARCHITECTURE AND REINFORCED RESILIENCE
the reNAter network connects 28 points of presence in the Paris region. most of these links are at 10 Gbit/s.a call for bids was issued to renew contracts for 13 inter-site links in the Paris region, after the old contracts ended. The deployment of 12 dark optical fibres and a 10g leased link began in November 2013 and will continue in 2014.
Paris Academic NetworkMetropolitan network for the inner Paris education/Research community controlled by ReNaTeR since the beginning of 2011.In 2013, ReNaTeR also renewed the contract for dark optical fibres for the Paris academic network, consisting of almost 900 km of cables connecting the 155 sites of the 67 Paris institutions.
connection of a second dark fibre link to the Avignon reNAter NodeIn November 2013, the IP connectivity from the avignon ReNaTeR node to the ReNaTeR backbone was made redundant by a second dark fiber connection.This was done by deploying a 10g wavelength between Cadarache and avignon. It is routed partly on the Cadarache-grenoble link, and is extracted from it by an OaDM installed in the avignon hut and is then routed on the dedicated dark network to the avignon.
ww
w.r
en
ate
r.fr
22 / 3322 / 33
increase in the capacity of backbone links and project wavelengthsThe two Paris-Lyon-Marseille corridors were reinforced by the addition of an extra 10 gbit/s wavelength on each link (Paris1-Lyon1, Paris2-Lyon2, Lyon1-Marseille1, Lyon2-Marseille2) to handle the increase in IP traffic on the ReNaTeR backbone. The same was done on the Lyon1-Clermont-Ferrand and Lyon1-geneva links.
The connectivity of LHCONe between Lyon1 and geneva was multiplied by 3 by the deployment of two new dedicated DWDM channels at 10 gbit/s. a new 10 gbit/s channel was also implemented for the project between Lyon1 and Clermont-Ferrand.
Finally, a complete 10 gbit/s circuit was reassigned to grid’5000 between Paris1 and Lyon1.
Nantes
PoitiersNiort
La RochelleAngoulême
mPLS – teall ReNaTeR nodes have at least 2 connections to other ReNaTeR nodes for reliability reasons. In most cases, there is a main link and a backup link. Backup links are less frequently used by the current routing policy
Backup links have the same performance as the main links (10 gb/s)
MPLs-Te traffic engineering mechanisms are then used to redirect overloaded links to backup links. MPLs-Te is currently used in tactical mode in ReNaTeR. The advantages are: Use/efficiency of backup links Relief and non-saturation of the ReNaTeR
network main links
reNAter in Poitou-charentesAfter the shutdown of the SRHDv3 regional network, RENATER installed an infrastructure in the Poitou Charentes region in France in partnership with Poitiers and La Rochelle Universities, based on the existing Poitiers and Nantes RENATER nodes and 3 new RENATER nodes in Angoulême, Niort and La Rochelle. Four new 1Gbit/s connections that can be upgraded to 10 Gbit/s were installed to enable the connection of 40 university and research sites distributed in Poitiers, Angoulême, Niort and La Rochelle.
ww
w.r
en
ate
r.fr
23 / 3323 / 33
increase in link bandwidth for some Dom-com (overseas departments):National continuity is very important and one of ReNaTeR’s main missions is the connection of Overseas Departments and Territories. Calls for bids are launched regularly to provide the best existing capacity.
The access from guyane to mainland France is 100 Mbps, the accesses from Mayotte and French Polynesia are 20 Mbps and 10 Mbps respectively. Internet accesses in guadeloupe and Martinique are at 100 Mbps. Mayotte has a new Internet access at 30Mbps.
in 2013,
ReNaTeR also developed contacts with the Brazil NReN and the CaR@IBNeT network to study optimisation of the links to Overseas Departments
in 2013, ReNaTeR upgraded its Internet exchange Point (IXP) offer and launched ReNaTeRix that includes: the sFINX and its 2 Paris PoPs (TeLeHOUse II and aUBeRVILLIeRs)
the IXs in Overseas departments: ReUNIX in La Reunion MayOTIX in Mayotte gUyaNIX in guyane
CaPaCITIes IN 2013
aCCess Guyane Guadeloupe Martinique Polynesia Mayotte reunion New caledonia
Mainland France
100 Mbit/s 34 Mbit/s 34 Mbit/s 10 Mbit/s 20 Mbit/s 2x155 Mbit/s
Internet 100 Mbit/s 100 Mbit/s 100 Mbit/s 30 Mbit/s 30+4 Mbit/s
Access to the general internetaccess to general internet takes place through 2 transit accesses, one in Paris at 40 gbit/s, the other in Marseille at 20 gbit/s and through an exchange point in Paris.since 2013, ReNaTeRix managed by ReNaTeR optimise internet traffic, without giving any advantages to any company on the market.The associated rate structure harmonises the different peering offers and facilitates access of IaPs and content providers to ReNaTeRix.
On October 1 2013 rENatEr opened the GUYaNiX in Guyane.
A reliable, robust and secure infrastructure
ww
w.r
en
ate
r.fr
24 / 3324 / 33
Sharing the infrastructure The May 25 2011 Council of Ministers decided to set up a “secure Inter-Ministerial network including all Ministry networks and enabling continuity of government action in the case of a severe internet malfunction”.This network is an essential element of the digital transition of government action, and further reinforces the security of government information systems in a context of increasing threats.an Inter-Ministerial project team was set up to design the RIe (French Interministerial Network). Multi-disciplinary work led to the specification of a flexible and upgradeable architecture based on a high-speed optical core connecting the main ministerial computer centres.ReNaTeR signed an agreement in 2012 to manage the optical transfer layer of the RIe.Major transformations were made to the ReNaTeR networks for this purpose, to accommodate new dark optical fibre segments and WDM optical equipment to supply the RIe optical backbone.
the first ministerial sites were connected at 10 Gbit/s at the end of 2013. Most ministerial sites will join the RIe from 2013 to 2016, through regional networks.
NEW
EXiStiNG
additional dark fibre networks
PIB (Backbone interconnection point)
ReNaTeR dark fibre networkRenater nodeHut
PIB
ww
w.r
en
ate
r.fr
25 / 3325 / 33
experiments carried out at the CeRN generate large calculation volumes that have to be distributed in the different Tier1, Tier 2 computing centers. Intensive communication between Tier 1 and Tier 2 led the NReN community and the particle physics
community (HeP/Large Hadron Collider Computing grid) to set up a dedicated LHCONe (LHC Open Network environment) network. ReNaTeR, DFN and gaRR financed a 10 gbps transatlantic link between the gÉaNT Paneuropean network and starlight in Chicago, to take account of the increasing flows on the LHCONe. This fully dedicated 10gbps link can thus satisfy the growth in exchanges between North american computer centres such as Fermilab and european computer centres, as part of worldwide cooperation around the LHC.
GLOBAL ARCHITECTURE BY COUNTRY, IN EUROPE AND THROUGHOUT THE WORLD
reNAter is at the heart of the GÉANt european network gÉaNT is the Paneuropean Research and education Network that interconnects National Research and education networks (NReN) in europe. Together, they connect more than 50 million users to 10 000 institutions throughout europe, to support research in fields such as energy, the environment, space and medicine.
ReNaTeR holds a predominant place in this ecosystem, both at european and world scales.Its expertise and its functional mode set an example for new networks dedicated to the research and education community being created in the south (africa and in the Indian Ocean).
In 2013, the two gÉaNT Paris-Kehl backup DWDM circuits were extensively used during upgrades of ReNaTeR and DFN gÉaNT transits. They were used successively by the two NReNs that needed a temporary additional connectivity solution to gÉaNT before their accesses could be upgraded. Once transit capacities had been increased, the backup circuits were decommissioned.
connections between ReNaTeR and gÉaNT are at 20 Gbit/s via PAriS and 20 gbit/s via geNeVa
A reliable, robust and secure infrastructure
additional dark fibre networks
PIB (Backbone interconnection point)
ReNaTeR dark fibre networkRenater nodeHut
ww
w.r
en
ate
r.fr
26 / 3326 / 33
4 Partner in an innovative context
EXPERTISE FOR THE BENEFIT OF OTHER INSTITUTIONAL PARTNERS
the reNAter network is a major infrastructure and as such plays a major role in the dissemination of education and research in europe and throughout the world.ReNaTeR mobilised its expertise to perform the project management of the optical layer for the government Inter-Ministerial Network project. ReNaTeR is in a position to assist communities, to homogenise regional networks and to provide a basis for sharing necessary for the national framework, to contribute to the harmonisation of collection networks with regional communities and to provide an end-to-end service quality.
Data centerUnivcloud: university cloud computing
The UnivCloud projects opens the way for implementation of cloud computer technologies throughout the higher education and research environment. Based on a sharing strategy, it offers on-demand use of computer resources and an invoicing model for use by services, while guaranteeing coordinated upgrading of modernisation systems and development of online services. This inter-university cloud computing project makes it possible to share computer infrastructures, standardise information systems and optimise operating costs of UNPIdF (Paris Digital University) member institutions.
The study project was completed on July 31 2013. ReNaTeR participated in the technical group that defined the architecture of the platform and provided the connectivity necessary for demonstrators. The next step will be operational deployment starting in 2014.
h2m (Shared hosting in montpellier)
expediency study started on December 19 2012 to set up shared solutions for hosting computer resources of Montpellier education/Research institutions.Project managed by ReNaTeR for 8 user partners in the education, University Teaching and Research community with hosting at CINes: Montpellier academy Rectorate Montpellier CROUs Montpellier University 1 (UM1) Montpellier University 2 (UM2) Montpellier University 3 (UM3) eNsCM (Montpellier Higher National school of Chemistry) CIRaD Research Institute for Development (IRD)
ww
w.r
en
ate
r.fr
27 / 3327 / 33
fUN-mooc http://www.france-universite-numerique.fr
INRIa, CINes and ReNaTeR set up the online course platform, under the leadership of MesR (Ministry of Higher education & Research).This is the most important francophone MOOC (Massive Open Online Courses) platform. ReNaTeR is a member of the steering Committee and the Operational Committee.The very high-speed infrastructures set up by ReNaTeR will be capable of supporting all digital exchanges of the FUN program under optimum quality, security and integrity conditions. ReNaTeR’s active participation in the construction of european and worldwide networks will contribute to strengthening the international visibility of France through the FUN (France Digital University) initiative.
reNAter acts as an expert in AfricaThe digital divide contributes to the scientific divide observed on the african continent. Most research programs carried out in partnership, which occurs frequently in africa, cannot be set up without a satisfactory digital coverage.In contributing to reducing the digital divide in francophone africa, ReNaTeR may have a lever effect on development of science in africa, development of North/south cooperations and development of teaching with a strong impact on society.
in 2013 reNAter continued its action as part of the cooperation agreement signed with WaCReN (West and Central africa Research and education NReNs). a ReNaTeR/CIRaD/IRD delegation thus made a presentation during the IsT africa conference in May 2013 in Nairobi to introduce the ReNaTeR network and services and explain that NReNs are strategic for countries. This was also an opportunity to share and to lobby with consultants appointed by the eU for the remainder of the aFRICaCONNeCT project so that WaCReN can benefit from it.
Discussions about a link between Paris and Dakar continued, including the senegal NReN. after receiving offers from operators and considering the maturity of NReNs, a discussion was opened with WaCReN to determine alternatives to Dakar for termination of a link between France and the WaCReN zone.
ww
w.r
en
ate
r.fr
28 / 3328 / 33
contribution to the european horizon 2020 program
With France europe 2020, the strategic agenda for research, transfer and innovation, the Ministry of Higher education and Research intends to restore research’s role as the principal vector for the creation of knowhow and knowledge and to confirm its position as a lever for recovery in France.This is the context in which ReNaTeR acts as a partner for Horizon 2020 projects as an education and research network, in cooperation with its european peers.From connectivity to advanced services, mobility and access to contents for users anywhere in the eU through a federated architecture.ReNaTeR closely monitors calls for projects, as potential partner in research projects particularly for the Internet of the Future and Cloud Computing topics.
RENATER PARTICIPATES IN STEERING WORK AND INSTANCES
reNAter must remain a major international player by actively participating in changes to the gÉaNT pan-european network and its interconnections with the rest of the world but also by providing its expertise to its Central and West african peers.
In europe, ReNaTeR continued its work on the different gÉaNT components, both for governance of the gN3 project and then the gN3plus project (composed of 41 partners and co-financed by the european Union), or participation in deliverables. gN3plus took over from gN3 (marked «excellent» during the final review of the eU in December 2013) in april 2013 for a duration of 2 years.
Note also that the ReNaTeR Director was also elected to the DaNTe Board of Directors in 2013, ReNaTeR being one of the 4 majority shareholders of the DaNTe company.
rENatEr ParticiPatES iN WOrkiNG GrOUPS FOr GN3 PLUS:
The follow up to gN3plus, namely gN4, is currently under preparation and it should be emphasised that ReNaTeR is part of the work group mandated by european NReNs to set up the gN4 project.
activity activity name Task name
Jra1 Network architecture for H2020 Network architecture for aggregating High-speed Mobile Networking
Jra2 Technology Testing for specific services appli- cations
OpenFlow
Na1 Management governance
Na3 status & Trends Campus Best Practice
Na4 International & Business Development International Liaison
Sa1 Core Backbone service gÉaNT-advanced Network and application ser-vices Backbone architectural Development
Sa2 Testbeds as a service Taas - architecture & engineering - Taas - service Management
Sa3 Network service Delivery Wavelength Multi-Domain service - MD-VPN
Sa4 Network support services PerfsONaR
Sa5 application services eduroam - edugaIN - enabling Users
Sa7 support to Clouds Cloud Brokerage and Vendor Management
ww
w.r
en
ate
r.fr
29 / 3329 / 33
RENAlab
A large number of research program projects require an infrastructure and innovative services.ReNaTeR’s service range is structured around innovation, to remain in the lead and in synergy with its commitments.This is why ReNaTeR must reply to the needs of researchers and teachers-researchers by offering scientific information at a world class level of excellence so as to make French research more visible.
LiSP-LAB
http://lisplab.openlisp.org.
The LIsP (Locator Identifier separation Protocol) project is an aNR project led by the UPMC. academic partners (Pierre et Marie Curie University, TélécomParisTech), public partners (ReNaTeR, Rezopole) and manufacturers (Border6, alphaLink, Nonstopsystems, Orange, Ucopia).The project began in October 2013 and will continue until september 2017.
It starts from the observation that the continuous growth of Internet accelerated by the massive deployment of mobile data services and other services requiring high pass bands such as IPTV, deployment of new services based on the cloud, and engineering progress with network traffic, raise questions about the potential of the Internet architecture of today to change. Most of these questions are related to the use of a single numbering space, namely the IP addressing space.
Partner in an innovative context
ww
w.r
en
ate
r.fr
30 / 3330 / 33
Necoma
http://www.necoma-project.eu
Necoma (Nippon-european Cyberdefense-Oriented Multilayer threat analysis) is a project financed particularly as part of the FP7.european partners are the Institut Mines-Telecom, atos and 6cure in France; FORTH (Foundation for Research and Technology In greece; and Nask (Research and academic Computer Network) in Poland.Japanese partners are NaIsT (the Nara Institute of science and Technology, the IIJ (Japanese Internet Initiative), NII (National Institute of Computer science), Keio University and Tokyo University.
NeCOMa deals with the data collection aspect, based on prior and current work on the subject in order to broaden existing systems and orient them towards analysis of threat data. It also considers the analysis of threat data not only from the point of view of understanding attacks and vulnerabilities, but also from the point of view of the target and the victim who need to protect themselves in real time and as efficiently as possible. This is envisaged through the generation of indicators to measure the impact of attacks on the protected infrastructure or the termination point.It also aims at developing and demonstrating new cyberdefence systems based on these deployment measures and evaluation measurements.These three aspects are analysed from the infrastructure point of view (networks and large computer infrastructures), and termination points (smartphones and browsers).
Discovery
Discovery is an INRIa research project to which Orange Labs and ReNaTeR contribute.It aims at developing tools to move from a cloud hosted in increasingly large data centres to a cloud massively distributed in micro-data centres. These micro-data centres could be installed in the same premises as network nodes (POPs).
icube
http://icube.unistra.fr
ICube is a joint research laboratory of CNRs and the University of strasbourg. One of its teams is developing activities in the field of routing, particularly focused on the speed of routing protocols. ReNaTeR inputs its expertise as operator and provides access to experimentation in a real environment in order to validate results obtained on theoretical network models.
Platon
http://metroscope.eu
Platon is an aNR project deposited by an INRIa team for the Metroscope initiative.The purpose of the Metroscope consortium is to provide the scientific community with an instrument to observe the digital world of Internet. By supplying tools, data and representations of these data that are meaningful for the different disciplines, it improves the theoretical knowledge of Internet and also functioning of French Internet in its international context with better transparency to citizens.Platon (InterNeT Observation Platform) is composed of a number of partners, namely Inria, IMT, eNs-eRsT, University of Caen (CeRReV), aFNIC, ReNaTeR, aRCeP.The objectives are to create a national reference laboratory for observation of Internet and its uses, to produce public data sets and open tools, to analyse Internet usage together with a map, indicators and new measurements.This project was not adopted by aNR (National Research agency). a study is now being done to decide whether or not to deposit a Horizon2020 file.
ww
w.r
en
ate
r.fr
31 / 3331 / 33
GAr
The gaR (Resource access Manager) is a project of the MeN DgesCO. It is aimed at organising and supplying the technical bricks necessary for schools (middle schools and high schools) to enable access to online digital resources from their eNTs.ReNaTeR participated in studies on the authentication part and continues to provide its expertise in this field.
refimeVe+
http://www.refimeve.fr
The ReFIMeVe+ project (metrological fibre network for use across europe) is aimed at transferring ultra-stable signals from the clock located in the Paris Observatory, throughout France without the slightest degradation, with a performance of more than 100 000 times better than the gPs. Tests on simultaneous transfers of ultra-stable clock signals and digital data flows were made on the ReNaTeR production network by LNe-syRTe (time-space reference system) laboratories and the laser physics laboratory.
Partner in an innovative context
in 2013 the ReFIMeVe+ projectmade progress in several aspects, with preparation of installations on the DWDM infrastructure towards Kehl and Toulouse
ww
w.r
en
ate
r.fr
32 / 3332 / 33
5 Financial report
iNcome : In 2013, 51% of ReNaTeR gIP’s financing was made through contributions from signatory members of the group’s constitutive agreement. These contributions apply to ReNaTeR Base services. Other services offered by the ReNaTeR gIP (Public Interest group) and services supplied to other institutions contribute 34%.
Operating subsidies represent 6% of income. They are due mainly to ReNaTeR’s involvement in the geaNT project and in different european projects.Investment subsidies were equal to 1,9 M M€ receive by the group.Income for the year 2013 was 25.5 M€.
GLOBaL
"Contributions by members"
"Financingby non members"
"Operating""Miscellaneous
income"
"Transfer of investment subsidies
to result"
2012 61% 28% 7% 2% 2%
2013 51% 34% 6% 8% 2%
100 %
90%
80%
70%
60%
50%
40%
30%
20%
10%
0%
NON-MEMBEr FiNaNciNG
2012 2013
«Base, institution outside MeRs / MeN control»
39% 31%
"Particular services : local loops" 48% 33%
"Particular services:other (including JRes)"
6% 15%
Usage 7% 22%
100 %
90%
80%
70%
60%
50%
40%
30%
20%
10%
0%
ww
w.r
en
ate
r.fr
33 / 3333 / 33
eXPANDitUre : Direct expenses related to operation of the network and associated services account for 74% of expenses, personnel costs and structural costs are 22%.expenses for the year 2013 were 25.2 M€.Investment costs are equal to 3.1 M€. They are financed by drawing off from available funds created for renewal of the network.
GLOBaL
«Operation of the network services»
«Other activities(including JRes)»
structure cost, ex-cluding provisions
for depreciationVarius
2012 77% 0% 23% 0%
2013 74% 3% 22% 1%
100 %
90%
80%
70%
60%
50%
40%
30%
20%
10%
0%
iNvEStMENt
Indefeasible Right of Use
Network equipment Other
2012 29% 66% 5%
2013 13% 81% 7%
100 %
90%
80%
70%
60%
50%
40%
30%
20%
10%
0%
2012 2013
«Base, institution outside MeRs / MeN control»
39% 31%
"Particular services : local loops" 48% 33%
"Particular services:other (including JRes)"
6% 15%
Usage 7% 22%
2012 2013
Metropolitan network 41% 40%
DROM / COM 15% 11%
Local loops 12% 14%
International 11% 11%
Other 2% 4%
Provisions for depreciation 20% 20%
100 %
90%
80%
70%
60%
50%
40%
30%
20%
10%
0%
NEtWOrk OPEratiNG
www.renater.fr
AntennesBranch offices
GrenobleDomaine UniversitaireBât. CETA - BP 5338041 Grenoble Cedex 9
Montpellier2196, Boulevard de la LirondeParc Agropolis IIBât. 634980 Montferrier sur LezTél. : +33 (0)4 67 16 38 25Fax : +33 (0)4 67 16 38 21
Siège / HeadquartersGIP RENATER23-25, rue Daviel - 75013 ParisTél. : +33 (0)1 53 94 20 30Fax : +33 (0)1 53 94 20 31E-mail : [email protected]
Rennesc/o CRI Campus de BeaulieuBât. 12D263, Avenue du Général Leclerc CS 7420535042 Rennes CedexTél. : +33 (0)2 23 23 36 53Fax : +33 (0)2 23 23 71 11
l’equipedu
*
