Abstract
Grid software often unfortunately requires significant changes in existing infrastructure, both in terms of policy and mechanism, instead of accommodating and leveraging existing information servers such as enterprise LDAP servers and enterprise authentication infrastructures. The University of Virginia Campus Grid (UVaCG) has been designed explicitly to re-use as much existing infrastructure in the campus environment as possible in creating a Grid based on the Web Services Resource Framework (WSRF), specifically the Globus Toolkit v4 and WSRF.NET. We report on the design and the current status of the UVaCG, with particular emphasis on the challenge of creating explicit policy expression, negotiation, and enforcement. When fully operational, campus researchers will be able to seamlessly utilize resources within the campus enterprise and expand on-demand to larger Grids such as the TeraGrid and the Open Science Grid.
This work is supported in part by the US National Science Foundation under grants ACI-0203960 (Next Generation Software program), SCI-0438263 (NSF Middleware Initiative), SCI-0123937 (through a subcontract to SURA), the US Department of Energy through an Early Career Grant (Humphrey), and Microsoft Research.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
Neuman, B.C., Ts’o, T.: Kerberos: An authentication service for computer networks. IEEE Communications Magazine 32(9), 33–38 (1994)
Foster, I., Kesselman, C., Tsudik, G., Tuecke, S.: A Security Architecture for Computational Grids. In: Proc. 5th ACM Conference on Computer and Communications Security Conference, pp. 83–92 (1998)
Czajkowski, K., Ferguson, D., Foster, I., Frey, J., Graham, S., Sedukhin, I., Snelling, D., Tuecke, S., Vambenepe, W.: The WS-Resource Framework (2004), http://www-106.ibm.com/developerworks/library/ws-resource/ws-wsrf.pdf
WS-ResourceFramework and WS-Notification Specifications, http://devresource.hp.com/drc/specifications/wsrf/index.jsp
Family Educational Rights and Privacy Act (FERPA). US Department of Education, http://www.ed.gov/policy/gen/guid/fpco/ferpa/index.html
United States Department of Health and Human Services. Office of Civil Rights – HIPAA, http://www.hhs.gov/ocr/hipaa/
Open Science Grid, http://www.opensciencegrid.org/
TeraGrid, http://www.teragrid.org
IBM, BEA, and Microsoft. WS-Addressing (2004), http://msdn.microsoft.com/webservices/default.aspx?pull=/library/en-us/dnglobspec/html/ws-addressing.asp
Tuecke, S., et al.: Open Grid Services Infrastructure (OGSI) Version 1.0. Global Grid Forum. GFD-R-P.15. Version as of June 27 (2003)
Czajkowski, K., Ferguson, D., Foster, I., Frey, J., Graham, S., Snelling, D., Tuecke, S.: From Open Grid Services Infrastructure to Web Services Resource Framework: Refactoring and Evolution (2004), http://www-106.ibm.com/developerworks/webservices/library/ws-resource/grogsitowsrf.html
Globus Toolkit v. 4, http://www.globus.org/wsrf/
WSRF.NET: The Web Services Resource Framework on the .NET Framework, http://www.ws-rf.net
Humphrey, M., Wasson, G., Morgan, M., Beekwilder, N.: An Early Evaluation of WSRF and WS-Notification via WSRF.NET. In: 2004 Grid Computing Workshop (associated with Supercomputing 2004), Pittsburgh, PA, November 8 (2004)
Del Vecchio, D., Basney, J., Nagaratnam, N., Humphrey, M.: CredEx: User-Centric Credential Selection and Management for Grids. University of Virginia Computer Science Technical Report (November 2004)
Novotny, J., Tuecke, S., Welch, V.: An Online Credential Repository for the Grid: MyProxy. In: Proceedings of the Tenth International Symposium on High Performance Distributed Computing (HPDC-10). IEEE Press, Los Alamitos (August 2001)
Kirschner, B., Adamson, W., Hacker, T., Athey, B.: Walden: A Scalable Solution for Grid Account Management. In: 2004 Grid Computing Workshop (associated with Supercomputing 2004), Pittsburgh, PA, November 8 (2004)
Jokl, J., Basney, J., Humphrey, M.: Experiences using Bridge CAs for Grids. In: UK Workshop on Grid Security Experiences, Oxford, July 8-9 (2004)
Higher Education PKI Technical Activities Group (HEPKI-TAG), http://middleware.internet2.edu/hepki-tag/
Higher Education Bridge Certificate Authority (HEBCA), http://www.educause.edu/hebca/
Pubcookie, http://www.pubcookie.org
Wasson, G., Humphrey, M.: Policy and Enforcement in Virtual Organizations. In: 4th International Workshop on Grid Computing (Grid 2003) (associated with Supercomputing 2003), Phoenix, AZ, November 17 (2003)
Thompson, M.: Akenti Policy Language (2001), http://www-itg.lbl.gov/security/Akenti/Papers/PolicyLanguage.html
Pearlman, L., Welch, V., Foster, I., Kesselman, C., Tuecke, S.: A Community Authorization Service for Group Collaboration. In: Proceedings of the IEEE 3rd International Workshop on Policies for Distributed Systems and Networks (2002)
Keahey, K., Welch, V.: Fine-Grain Authorization for Resource Management in the Grid Environment. In: Parashar, M. (ed.) GRID 2002. LNCS, vol. 2536, pp. 199–206. Springer, Heidelberg (2002)
Dulay, N., Lupu, E., Sloman, M., Damianou, N.: A Policy Deployment Model for the Ponder Language. In: Proc. IEEE/IFIP International Symposium on Integrated Network Management (IM 2001) (2001)
de Laat, C., et al.: Generic AAA Architecture. RFC 2903, Available at: http://www.faqs.org/rfcs/rfc2903.html
Czajkowski, K., Dan, A., Rofrano, J., Tuecke, S., Xu, M.: Agreement-based Service Management (WS-Agreement). Global Grid Forum draft-ggf-graap-agreement-1. Version as of Feb 8 (2004)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2005 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Humphrey, M., Wasson, G. (2005). The University of Virginia Campus Grid: Integrating Grid Technologies with the Campus Information Infrastructure. In: Sloot, P.M.A., Hoekstra, A.G., Priol, T., Reinefeld, A., Bubak, M. (eds) Advances in Grid Computing - EGC 2005. EGC 2005. Lecture Notes in Computer Science, vol 3470. Springer, Berlin, Heidelberg. https://doi.org/10.1007/11508380_7
Download citation
DOI: https://doi.org/10.1007/11508380_7
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-26918-2
Online ISBN: 978-3-540-32036-4
eBook Packages: Computer ScienceComputer Science (R0)