Ron Price, SCJP Utah GRID Projects:


Published on

  • Be the first to comment

  • Be the first to like this

No Downloads
Total views
On SlideShare
From Embeds
Number of Embeds
Embeds 0
No embeds

No notes for slide
  • Setup: -cagrid portal -taverna -eclipse domgraphic grid client
  • Thanks to Wayne and Walter
  • Thanks to Wayne and Walter
  • Third party transfer The DREAM
  • Federal Information Processing Standards Publications
  • Sneakernet is error prone (less safe than ssl How is data transported now? (notbooks, mail…?)
  • Reason to Grid enable your data (i.e. create data grid service) Allow your data to “work” in ways it couldn’t before
  • Data is exposed in a standard way Authorization is controlled by data owner at the grid service layer Allows for dynamic creation of VOs ( allow access without troubling sys admins at multiple sites) Security occurs at a higher level
  • Lewis, did I miss anything Cancer Data Standards Repository
  • Created two secure data grid services with auditing from common data elements in the NAACCR model
  • To change the scales
  • To change the scales
  • To change the scales
  • Notice the https, so it uses SSL The GSI has been improved and is hidden behind the scene like it should be.
  • Programmatically authenticated (obtained our grid proxy). I currently have access
  • Remove access for rprice
  • I’m no longer authorizeds.
  • Gave permission to me
  • To change the scales
  • To change the scales
  • A grid service is a stateful web service It does not matter where the grid services are located; they can be half way around the world from each other.
  • Point the GT4 scavenger at the training grid index service Only show services from the CHPC
  • Notice the IP address (phgrid1 and phgrid2) Currently Taverna does not work with secure grid services, but it will.
  • To change the scales
  • Reason to Grid enable your data (i.e. create data grid service) Allow your data to “work” in ways it couldn’t before
  • Ron Price, SCJP Utah GRID Projects:

    1. 1. Ron Price, SCJP Utah GRID Projects: GRID Security and PH
    2. 2. Professional Background <ul><ul><li>Over 12 years of IT experience </li></ul></ul><ul><ul><ul><li>Ran the IT gamut </li></ul></ul></ul><ul><ul><ul><li>Network analyst ->Sys Admin->Software Engineer -> Grid Architect (last 5yrs) </li></ul></ul></ul><ul><ul><li>Studied Computer Science (BCS) </li></ul></ul><ul><ul><li>Certified Java Programmer (SCJP) </li></ul></ul><ul><ul><li>Certified Enterprise Architect (SCEA) </li></ul></ul><ul><ul><ul><li>In progress </li></ul></ul></ul>
    3. 3. Agenda <ul><li>The value of GRID: PH & GRID </li></ul><ul><li>The value of data grid services </li></ul><ul><li>NAACCR Project: authorization revocation demo </li></ul>
    4. 4. phGrid Update <ul><li>Well received PHIN presentation </li></ul><ul><ul><li>CDC liked our approach </li></ul></ul><ul><li>Continuing to collaborate with CDC </li></ul><ul><li>Continuing to collaborate with other CoEs </li></ul>
    5. 5. Web Services and Grid Services <ul><li>Web Services are the latest evolution in distributed computing </li></ul><ul><li>Grid Services are the VERY latest evolution in distributed computing </li></ul><ul><li>A GRID service is a stateful web service </li></ul><ul><li>All the benefits of Service Oriented Architecture (SOA) apply to GRID and GRID has its own additional benefits </li></ul>
    6. 6. Value of GRID <ul><li>The value of Globus/caGrid today: </li></ul><ul><ul><li>Move data in ways you couldn’t before </li></ul></ul><ul><ul><li>Orchestrate remote services to create useful work flows </li></ul></ul><ul><ul><li>Increased opportunities for code reuse </li></ul></ul><ul><ul><li>New modes of collaboration (dynamic VOs) </li></ul></ul><ul><ul><li>Single Sign On (SSO) </li></ul></ul><ul><ul><li>Increased access to computational power </li></ul></ul><ul><ul><li>Allow new science to be accomplished </li></ul></ul><ul><ul><li>Flexibility in all dimensions of IT (inverse of monolithic static IT infrastructure) </li></ul></ul>
    7. 7. GRID Security and PH <ul><li>Security analysis so far shows that GRID security meets the FIPS/NIST requirements for: </li></ul><ul><ul><li>Confidentiality </li></ul></ul><ul><ul><li>Availability </li></ul></ul><ul><ul><li>Integrity </li></ul></ul><ul><ul><li>(required for government systems dealing with E-Auth Level 3 data which is personally identified records) </li></ul></ul>
    8. 8. GRID security and PH <ul><li>Collaborating on GRID security model with the CDC </li></ul><ul><ul><li>Hired two security consultants </li></ul></ul><ul><ul><li>Invited input from us </li></ul></ul><ul><ul><li>Wait for final report for CDC team </li></ul></ul><ul><li>How is data intensive collaboration done now? </li></ul><ul><ul><li>Internally </li></ul></ul><ul><ul><li>Externally </li></ul></ul>
    9. 9. Benefits of Virtualizing Your Data <ul><li>Reduction in lag time </li></ul><ul><li>Federated query across administrative domains </li></ul><ul><li>Potential to easily share your data if you choose to </li></ul><ul><li>Dynamic secure access (data owner remains in complete control of access) </li></ul><ul><li>Ability to perform federated queries across two or more data grid services </li></ul><ul><li>Fine grained control (db row/column level) </li></ul><ul><li>Elimination of data silos </li></ul>
    10. 10. Data Service Flexibility Due to Extra Layer OS Database OS Database Grid Service Typical Approach GRID Approach
    11. 11. The NAACCR Project <ul><li>Overview of our Preliminary Work with the North American Association of Central Cancer Registries : </li></ul><ul><ul><li>High Profile: Utah in a unique position </li></ul></ul><ul><ul><ul><li>caBIG film </li></ul></ul></ul><ul><ul><li>Collaboration between: </li></ul></ul><ul><ul><ul><li>Utah Cancer Registry </li></ul></ul></ul><ul><ul><ul><li>Huntsman Cancer Institute </li></ul></ul></ul><ul><ul><ul><li>BMI </li></ul></ul></ul><ul><ul><ul><li>IHC </li></ul></ul></ul><ul><ul><ul><li>CHPC </li></ul></ul></ul><ul><ul><li>Goals: </li></ul></ul><ul><ul><ul><li>Eliminate Isolation between cancer centers </li></ul></ul></ul><ul><ul><ul><li>easily and securely share data </li></ul></ul></ul><ul><ul><ul><li>Increase ability to collaborate </li></ul></ul></ul><ul><ul><ul><li>Help researchers speak the same language (caDSR) </li></ul></ul></ul>
    12. 12. DEMO <ul><li>Live demo, hopefully </li></ul><ul><ul><li>Please hold  </li></ul></ul>
    13. 13. Utah Data Grid Services on caGrid
    14. 14. Two Data Grid Services
    15. 15. Portal Screen Shot: Hosting Center Info
    16. 16. Portal Screen Shot: CancerID Attributes
    17. 17. Secure Query of CancerID
    18. 18. Running Grid Service Client From Eclipse
    19. 19. GAARDS
    20. 20. Real-Time Authorization Revocation
    21. 21. Re-grant Authorization
    22. 22. Authorization Re-granted
    23. 23. Real-Time Authorization
    24. 24. Orchestration of GRID Services <ul><li>Taverna (a workflow tool) </li></ul><ul><li>Allows one to create a workflows out of web services </li></ul><ul><li>Developers at the Globus Alliance recently created an extension to make it work with GRID services </li></ul><ul><li>Soon it will be part of GAARDS and work with secure GRID Services </li></ul>
    25. 25. Taverna in Action
    26. 26. Grid Services at the CHPC
    27. 27. Realizing the workflow Format DB BLAST Create Report Create a fasta file representing the Genome sequences Compare these sequences against the original genome Find Transposon Find sequences that have the given transposon Neighbouring Genes BLAST Misses BLAST Hits Compile a report summarising where the transposon was inserted and results of the BLAST search Loop Until there are no misses or all genomes have been searched Genome Sequences Thanks to the Globus Alliance for use of this slide
    28. 28. Taverna Workflow Example Thanks to the Globus Alliance for use of this slide
    29. 29. Next Steps <ul><li>Continue collaboration with CDC </li></ul><ul><li>Investigate Nimbus a technology to bring the service to the data </li></ul>
    30. 30. Questions? <ul><li>[email_address] </li></ul>