Globus , profile picture
Uploaded byGlobus
PDF, PPTX609 views

Integrating Globus into LRZ's Data Science Storage Service

The document discusses the integration of Globus into the Leibniz Supercomputing Centre's data science storage service, outlining user demands for data sharing and processing capabilities. It highlights the technical integration of Globus for enabling secure file sharing within the HPC ecosystem and compliance with data protection regulations like GDPR. The goal is to facilitate user-friendly data management and accessibility through a self-service portal while ensuring security and control over shared data.

Embed presentation

Download as PDF, PPTX
2 Integrating Globus into LRZ’s Data Science Storage Service GlobusWorld 2019 | 2019-05-01 | Stephan Peinkofer Integrating Globus into LRZ’s Data Science Storage Service | 2019-05-01 | Stephan Peinkofer
3Integrating Globus into LRZ’s Data Science Storage Service | 2019-05-01 | Stephan Peinkofer Bavarian Academy of Sciences and Humanities Leibniz Supercomputing Centre Computer Centre for all Munich Universities250 employees approx. 57 years of IT support IT Service Backbone for the Advancement of Science and Research Regional Computer Centre for all Bavarian Universities National Supercomputing Centre (GCS) European Supercomputing Centre (PRACE)
High Performance Computing SuperMUC-NG, LRZ Linux Cluster Virtual Reality and Visualisation V2C (CAVE, Powerwall) 4 Operating Cutting-Edge IT Infrastructure LRZ as an IT Center of Excellence Storage Network Cloud Computing Cluster HPC Training Consultancy Email High Speed Networking Munich Scientific Network Big Data Bavarian State Library Digital Archive Integrating Globus into LRZ’s Data Science Storage Service | 2019-05-01 | Stephan Peinkofer
5Integrating Globus into LRZ’s Data Science Storage Service | 2019-05-01 | Stephan Peinkofer Data Silos
Increasing User Demand 6 I need to share a 400TB dataset with someone in Canada! My experiment will generate multiple PBs, that have to be analyzed and backed up! How? I want to build a WebApp that allows users to interactively analyze my 500TB SuperMUC simulation data! I need to share some data on SuperMUC between multiple projects! I want to analyze a large dataset, generated on Super- MUC, using some special OS image on the LRZ Cloud! Integrating Globus into LRZ’s Data Science Storage Service | 2019-05-01 | Stephan Peinkofer
7Integrating Globus into LRZ’s Data Science Storage Service | 2019-05-01 | Stephan Peinkofer Satisfying User Demands So basically we need to provide … A file system that can be shared amongst the complete LRZ HPC Ecosystem Some kind of external access mechanism for arbitrary entities A Dropbox like data management approach
LRZ Data Science Storage 8Integrating Globus into LRZ’s Data Science Storage Service | 2019-05-01 | Stephan Peinkofer Interactive processing on LRZ Compute Cloud Remote visualisation on LRZs visualisation systems External access and sharing via Globus Online High performance backup and archive of data on LRZs Backup- and Archive System Batch and interactive processing on dedicated, hosted HPC Cluster at LRZ High throughput batch processing on LRZs Linux Cluster or SuperMUC LRZ Data Science Storage
IBM Spectrum SCALE IBM Spectrum PROTECT LRZ Identity Managment System Globus Mission Control 9Integrating Globus into LRZ’s Data Science Storage Service | 2019-05-01 | Stephan Peinkofer DSSWeb Self Service Portal REST API CES Globus Sharing Globus Connect Server RabbitMQ Message Bus REST API Client Manage- ment Service REST API Operations Center REST API
The Big Picture 10Integrating Globus into LRZ’s Data Science Storage Service | 2019-05-01 | Stephan Peinkofer
Huber LMU User: lmuuser2 LinuxCluster SuperMUC Project: lxpr2 Project: smpr2 User: lx22bp User: sm33sx DSS Containers 11 Maier TUM User: tumuser1 LinuxCluster SuperMUC Project: lxpr1 Project: smpr1 User: lx11xc User: sm11bb DSS POSIX Group in IDM/LDAP pr45xa-dss-0000 DSS Container à GPFS Independent Fileset /dss/dssfs01/pr45xa-dss-0000 drwxrws--- root pr45xa-dss-0000 Integrating Globus into LRZ’s Data Science Storage Service | 2019-05-01 | Stephan Peinkofer
Technical Integration of Globus to LRZ DSS Goal 12 Integrate Globus Sharing to DSSWeb Self-Service Portal. Allow Data Curators to share DSS Containers with arbitrary external users. Problem Action Globus let’s us control. Who can share? What can be shared? We need to control. Who can share what? Integrating Globus into LRZ’s Data Science Storage Service | 2019-05-01 | Stephan Peinkofer
LRZ Data Science Storage Technical Integration of Globus to LRZ DSS 13 DSS Container X Container Group /dss/dssfs01/dsscontX DSS Container Directory Integrating Globus into LRZ’s Data Science Storage Service | 2019-05-01 | Stephan Peinkofer DSSWeb Globus Online LRZ MyProxy DSS Globus Endpoint 1. Enable Globus Sharing for DSS Container X Data Curator RobotUser aka RobotUser@globusid.org 2. Login to MyProxy to get Certificate 3. Enable DSS Globus Endpoint 4. Create Shared Endpoint “LRZ DSS Container X” LRZ DSS Container X Shared Endpoint 6. Add RobotUser to Container Access Group 5. Globus Magic
Technical Integration of Globus to LRZ DSS 14Integrating Globus into LRZ’s Data Science Storage Service | 2019-05-01 | Stephan Peinkofer DSSWeb 1. Invite bop@wherever.com to access DSS Container X via Globus Data Curator RobotUser aka RobotUser@globusid.org 2. Check if identity bop@wherever.com is already known by Globus and if not create it 3. Add Globus ACL for Shared Endpoint LRZ DSS Container X for identity bop@wherever.com 4. Globus Magic bop@wherever.com 5. Bop is happy LRZ Data Science Storage DSS Container X Container Group /dss/dssfs01/dsscontX DSS Container Directory DSS Globus Endpoint* LRZ DSS Container X Shared Endpoint Globus Online
Legal Integration of Globus to LRZ DSS Regulation 15 European Union enforced the EU General Data Protection Regulation (GDPR) on 2018-05- 25 Use/Integration of Cloud Services that process PII requires a formal Controller- Processor Agreement. Transfer of personal data to third countries requires special safeguards HIPPA and NIST rescue BAA to the rescue HIPPA and NIST require roughly similar technical and organizational security controls that are required by GDPR to protect PII Globus agreed to sign a Controller-Processor Agreement that contains the EU-Model Clauses Integrating Globus into LRZ’s Data Science Storage Service | 2019-05-01 | Stephan Peinkofer
16Integrating Globus into LRZ’s Data Science Storage Service | 2019-05-01 | Stephan Peinkofer

More Related Content

PDF
Hybrid cloud for science
byHelix Nebula The Science Cloud
 
PDF
IBM Cloud & Helix Nebula
byHelix Nebula The Science Cloud
 
PPTX
SC4 Hangout - Luigi Selmi, Transport pilot architecture
byBigData_Europe
 
PDF
Accelerating Spark with Kubernetes
byAlluxio, Inc.
 
PPTX
"What's New With Globus" Webinar: Spring 2018
byGlobus
 
PDF
OSIS19_Cloud : Des objets dans le cloud, et qui y restent -- L'expérience du ...
byPôle Systematic Paris-Region
 
PPTX
Exascale Process Management Interface
byrcastain
 
PDF
Monitoring Pull vs Push, InfluxDB and Prometheus
byGianluca Arbezzano
 
Hybrid cloud for science
byHelix Nebula The Science Cloud
 
IBM Cloud & Helix Nebula
byHelix Nebula The Science Cloud
 
SC4 Hangout - Luigi Selmi, Transport pilot architecture
byBigData_Europe
 
Accelerating Spark with Kubernetes
byAlluxio, Inc.
 
"What's New With Globus" Webinar: Spring 2018
byGlobus
 
OSIS19_Cloud : Des objets dans le cloud, et qui y restent -- L'expérience du ...
byPôle Systematic Paris-Region
 
Exascale Process Management Interface
byrcastain
 
Monitoring Pull vs Push, InfluxDB and Prometheus
byGianluca Arbezzano
 

What's hot

PDF
We have the Bricks to Build Cloud-native Cathedrals - But do we have the mortar?
byNane Kratzke
 
PDF
Open Tracing, to order and understand your mess. - ApiConf 2017
byGianluca Arbezzano
 
PDF
Cloudviews eurocloud rcosta
byEuroCloud
 
PPT
New web service oriented ARC
byFerenc Szalai
 
PPTX
Cloud Computing Research Projects
byPhdtopiccom
 
PDF
Approaches for duplicating Kubernetes Storage with Gluster
bymountpoint.io
 
PDF
KNIME Software Overview
byKNIMESlides
 
PDF
OpenNebulaConf2017EU: Enabling Dev and Infra teams by Lodewijk De Schuyter,De...
byOpenNebula Project
 
PDF
Scalable and reproducible workflows with Pachyderm
byJon Ander Novella
 
PDF
Monitor your application and sleep
byGianluca Arbezzano
 
PPTX
Caching in the Cloud. Code Camp Iași April 2016.
byExpert Network
 
PDF
MQTT. Kafka. InfluxDB. SQL. IoT Harmony. #tutorial by Stefan Bocutiu
bylandoop
 
PDF
OpenNebula Conference 2014
byterradue
 
PDF
What's new in confluent platform 5.4 online talk
byconfluent
 
PDF
On-node resource manager for containerized HPC workloads
byGeoffroyVallee
 
PDF
Distributed Tracing
byKevin Ingelman
 
PDF
What does Netflix, NTT and Rubicon Project have in common? Apache Druid.
byRommel Garcia
 
PDF
Flink for Everyone: Self Service Data Analytics with StreamPipes - Philipp Ze...
byFlink Forward
 
We have the Bricks to Build Cloud-native Cathedrals - But do we have the mortar?
byNane Kratzke
 
Open Tracing, to order and understand your mess. - ApiConf 2017
byGianluca Arbezzano
 
Cloudviews eurocloud rcosta
byEuroCloud
 
New web service oriented ARC
byFerenc Szalai
 
Cloud Computing Research Projects
byPhdtopiccom
 
Approaches for duplicating Kubernetes Storage with Gluster
bymountpoint.io
 
KNIME Software Overview
byKNIMESlides
 
OpenNebulaConf2017EU: Enabling Dev and Infra teams by Lodewijk De Schuyter,De...
byOpenNebula Project
 
Scalable and reproducible workflows with Pachyderm
byJon Ander Novella
 
Monitor your application and sleep
byGianluca Arbezzano
 
Caching in the Cloud. Code Camp Iași April 2016.
byExpert Network
 
MQTT. Kafka. InfluxDB. SQL. IoT Harmony. #tutorial by Stefan Bocutiu
bylandoop
 
OpenNebula Conference 2014
byterradue
 
What's new in confluent platform 5.4 online talk
byconfluent
 
On-node resource manager for containerized HPC workloads
byGeoffroyVallee
 
Distributed Tracing
byKevin Ingelman
 
What does Netflix, NTT and Rubicon Project have in common? Apache Druid.
byRommel Garcia
 
Flink for Everyone: Self Service Data Analytics with StreamPipes - Philipp Ze...
byFlink Forward
 

Similar to Integrating Globus into LRZ's Data Science Storage Service

PPTX
Delivering a Campus Research Data Service with Globus
byIan Foster
 
PPTX
Globus status and publication plans
byIan Foster
 
PPTX
Petrel: A Programmatically Accessible Research Data Service
byGlobus
 
PDF
Introducing the HACC Simulation Data Portal
byGlobus
 
PDF
Introduction to Globus - XSEDE14 Tutorial
byGlobus
 
PPTX
Globus: Research Data Management as Service and Platform - pearc17
byMary Bass
 
PPTX
A Global Research Data Platform: How Globus Services Enable Scientific Discovery
byIan Foster
 
PPTX
re:Invent 2013-foster-madduri
byRavi Madduri
 
PPTX
Science Services and Science Platforms: Using the Cloud to Accelerate and Dem...
byIan Foster
 
PDF
Simplified Research Data Management with the Globus Platform
byGlobus
 
PPTX
Science for the Future: Strategies for Moving and Sharing Data
byIan Foster
 
Delivering a Campus Research Data Service with Globus
byIan Foster
 
Globus status and publication plans
byIan Foster
 
Petrel: A Programmatically Accessible Research Data Service
byGlobus
 
Introducing the HACC Simulation Data Portal
byGlobus
 
Introduction to Globus - XSEDE14 Tutorial
byGlobus
 
Globus: Research Data Management as Service and Platform - pearc17
byMary Bass
 
A Global Research Data Platform: How Globus Services Enable Scientific Discovery
byIan Foster
 
re:Invent 2013-foster-madduri
byRavi Madduri
 
Science Services and Science Platforms: Using the Cloud to Accelerate and Dem...
byIan Foster
 
Simplified Research Data Management with the Globus Platform
byGlobus
 
Science for the Future: Strategies for Moving and Sharing Data
byIan Foster
 

More from Globus

PDF
Globus Compute wth IRI Workflows - GlobusWorld 2024
byGlobus
 
PDF
Climate Science Flows: Enabling Petabyte-Scale Climate Analysis with the Eart...
byGlobus
 
PDF
Globus Compute Introduction - GlobusWorld 2024
byGlobus
 
PDF
Globus Connect Server Deep Dive - GlobusWorld 2024
byGlobus
 
PDF
Innovating Inference - Remote Triggering of Large Language Models on HPC Clus...
byGlobus
 
PDF
Providing Globus Services to Users of JASMIN for Environmental Data Analysis
byGlobus
 
PDF
First Steps with Globus Compute Multi-User Endpoints
byGlobus
 
PDF
Enhancing Research Orchestration Capabilities at ORNL.pdf
byGlobus
 
PDF
Understanding Globus Data Transfers with NetSage
byGlobus
 
PDF
How to Position Your Globus Data Portal for Success Ten Good Practices
byGlobus
 
PDF
Exploring Innovations in Data Repository Solutions - Insights from the U.S. G...
byGlobus
 
PDF
Developing Distributed High-performance Computing Capabilities of an Open Sci...
byGlobus
 
PDF
The Department of Energy's Integrated Research Infrastructure (IRI)
byGlobus
 
PDF
GlobusWorld 2024 Opening Keynote session
byGlobus
 
PDF
Enhancing Performance with Globus and the Science DMZ
byGlobus
 
PDF
Extending Globus into a Site-wide Automated Data Infrastructure.pdf
byGlobus
 
PDF
Globus at the United States Geological Survey
byGlobus
 
PDF
Providing Globus Services to Users of JASMIN for Environmental Data Analysis
byGlobus
 
PDF
Globus Compute with Integrated Research Infrastructure (IRI) workflows
byGlobus
 
PDF
Reactive Documents and Computational Pipelines - Bridging the Gap
byGlobus
 
Globus Compute wth IRI Workflows - GlobusWorld 2024
byGlobus
 
Climate Science Flows: Enabling Petabyte-Scale Climate Analysis with the Eart...
byGlobus
 
Globus Compute Introduction - GlobusWorld 2024
byGlobus
 
Globus Connect Server Deep Dive - GlobusWorld 2024
byGlobus
 
Innovating Inference - Remote Triggering of Large Language Models on HPC Clus...
byGlobus
 
Providing Globus Services to Users of JASMIN for Environmental Data Analysis
byGlobus
 
First Steps with Globus Compute Multi-User Endpoints
byGlobus
 
Enhancing Research Orchestration Capabilities at ORNL.pdf
byGlobus
 
Understanding Globus Data Transfers with NetSage
byGlobus
 
How to Position Your Globus Data Portal for Success Ten Good Practices
byGlobus
 
Exploring Innovations in Data Repository Solutions - Insights from the U.S. G...
byGlobus
 
Developing Distributed High-performance Computing Capabilities of an Open Sci...
byGlobus
 
The Department of Energy's Integrated Research Infrastructure (IRI)
byGlobus
 
GlobusWorld 2024 Opening Keynote session
byGlobus
 
Enhancing Performance with Globus and the Science DMZ
byGlobus
 
Extending Globus into a Site-wide Automated Data Infrastructure.pdf
byGlobus
 
Globus at the United States Geological Survey
byGlobus
 
Providing Globus Services to Users of JASMIN for Environmental Data Analysis
byGlobus
 
Globus Compute with Integrated Research Infrastructure (IRI) workflows
byGlobus
 
Reactive Documents and Computational Pipelines - Bridging the Gap
byGlobus
 

Recently uploaded

PDF
Chapter 5 Security Mechanisms iin computer security.pdf
byGetnet Tigabie Askale -(GM)
 
PDF
AI for Risk Management & Fraud Detection ppt.pdf
byalexmartincaneda
 
PDF
Understanding Foldable 3-Wheel Electric Scooters for Everyday Use
byTopmate
 
PDF
Explaining the flow of purpose-specific BOM
byakipii ogaoga
 
PDF
The Emergence of Empathic XR: AWE Asia 2026 keynote
byMark Billinghurst
 
PDF
Mount File Systems using UUID and Label - RHCSA (RH134).pdf
byLinuxCert Guru
 
PDF
From DeFi POC to Production MVP - A 12-16 Week Blueprint.pdf
byniahiggins21
 
PDF
BEP-20 Token on BNB Chain: From Concept to Deployment.pdf
byimoliviabennett
 
PDF
Writing GPU-Ready AI Models in Pure Java with Babylon
byAna-Maria Mihalceanu
 
PPTX
apidays Paris 2025 | Integration is Feminist: Building Peace in Distributed S...
byapidays
 
PDF
Python Automation in Action: Real-World Use Cases and Practical Implementation
byDenys Smirnov
 
PPTX
Computer architecture, Computer architecture ,Computer architecture
bywaheedqazi123
 
PPT
Introduction to Risk Based Inspection API-580 & 581
byumerfaiz99
 
PDF
GenerationAI Paris 2025 | How Agentic AI is Reinventing Organizations
byapidays
 
PDF
Configure and Manage Systemd Timers- RHCSA (RH134).pdf
byLinuxCert Guru
 
PDF
Safer’s Picks: The 5 FME Transformers You Didn’t Know You Needed
bySafe Software
 
PPTX
NTG - Data Center Management System Software
byMustafa Kuğu
 
PDF
Why Many Smart Device Platforms Fail to Scale?
byPromeraki Developments
 
PDF
UiPath Automation Developer Associate Training Series 2026 - Session 3
byDianaGray10
 
PPTX
Working Session — Build a Document Understanding Automation Using an OOTB ML ...
byDianaGray10
 
Chapter 5 Security Mechanisms iin computer security.pdf
byGetnet Tigabie Askale -(GM)
 
AI for Risk Management & Fraud Detection ppt.pdf
byalexmartincaneda
 
Understanding Foldable 3-Wheel Electric Scooters for Everyday Use
byTopmate
 
Explaining the flow of purpose-specific BOM
byakipii ogaoga
 
The Emergence of Empathic XR: AWE Asia 2026 keynote
byMark Billinghurst
 
Mount File Systems using UUID and Label - RHCSA (RH134).pdf
byLinuxCert Guru
 
From DeFi POC to Production MVP - A 12-16 Week Blueprint.pdf
byniahiggins21
 
BEP-20 Token on BNB Chain: From Concept to Deployment.pdf
byimoliviabennett
 
Writing GPU-Ready AI Models in Pure Java with Babylon
byAna-Maria Mihalceanu
 
apidays Paris 2025 | Integration is Feminist: Building Peace in Distributed S...
byapidays
 
Python Automation in Action: Real-World Use Cases and Practical Implementation
byDenys Smirnov
 
Computer architecture, Computer architecture ,Computer architecture
bywaheedqazi123
 
Introduction to Risk Based Inspection API-580 & 581
byumerfaiz99
 
GenerationAI Paris 2025 | How Agentic AI is Reinventing Organizations
byapidays
 
Configure and Manage Systemd Timers- RHCSA (RH134).pdf
byLinuxCert Guru
 
Safer’s Picks: The 5 FME Transformers You Didn’t Know You Needed
bySafe Software
 
NTG - Data Center Management System Software
byMustafa Kuğu
 
Why Many Smart Device Platforms Fail to Scale?
byPromeraki Developments
 
UiPath Automation Developer Associate Training Series 2026 - Session 3
byDianaGray10
 
Working Session — Build a Document Understanding Automation Using an OOTB ML ...
byDianaGray10
 

Integrating Globus into LRZ's Data Science Storage Service

  • 2.
    2 Integrating Globus intoLRZ’s Data Science Storage Service GlobusWorld 2019 | 2019-05-01 | Stephan Peinkofer Integrating Globus into LRZ’s Data Science Storage Service | 2019-05-01 | Stephan Peinkofer
  • 3.
    3Integrating Globus intoLRZ’s Data Science Storage Service | 2019-05-01 | Stephan Peinkofer Bavarian Academy of Sciences and Humanities Leibniz Supercomputing Centre Computer Centre for all Munich Universities250 employees approx. 57 years of IT support IT Service Backbone for the Advancement of Science and Research Regional Computer Centre for all Bavarian Universities National Supercomputing Centre (GCS) European Supercomputing Centre (PRACE)
  • 4.
    High Performance Computing SuperMUC-NG,LRZ Linux Cluster Virtual Reality and Visualisation V2C (CAVE, Powerwall) 4 Operating Cutting-Edge IT Infrastructure LRZ as an IT Center of Excellence Storage Network Cloud Computing Cluster HPC Training Consultancy Email High Speed Networking Munich Scientific Network Big Data Bavarian State Library Digital Archive Integrating Globus into LRZ’s Data Science Storage Service | 2019-05-01 | Stephan Peinkofer
  • 5.
    5Integrating Globus intoLRZ’s Data Science Storage Service | 2019-05-01 | Stephan Peinkofer Data Silos
  • 6.
    Increasing User Demand 6 Ineed to share a 400TB dataset with someone in Canada! My experiment will generate multiple PBs, that have to be analyzed and backed up! How? I want to build a WebApp that allows users to interactively analyze my 500TB SuperMUC simulation data! I need to share some data on SuperMUC between multiple projects! I want to analyze a large dataset, generated on Super- MUC, using some special OS image on the LRZ Cloud! Integrating Globus into LRZ’s Data Science Storage Service | 2019-05-01 | Stephan Peinkofer
  • 7.
    7Integrating Globus intoLRZ’s Data Science Storage Service | 2019-05-01 | Stephan Peinkofer Satisfying User Demands So basically we need to provide … A file system that can be shared amongst the complete LRZ HPC Ecosystem Some kind of external access mechanism for arbitrary entities A Dropbox like data management approach
  • 8.
    LRZ Data ScienceStorage 8Integrating Globus into LRZ’s Data Science Storage Service | 2019-05-01 | Stephan Peinkofer Interactive processing on LRZ Compute Cloud Remote visualisation on LRZs visualisation systems External access and sharing via Globus Online High performance backup and archive of data on LRZs Backup- and Archive System Batch and interactive processing on dedicated, hosted HPC Cluster at LRZ High throughput batch processing on LRZs Linux Cluster or SuperMUC LRZ Data Science Storage
  • 9.
    IBM Spectrum SCALE IBM Spectrum PROTECT LRZ Identity Managment System Globus Mission Control 9IntegratingGlobus into LRZ’s Data Science Storage Service | 2019-05-01 | Stephan Peinkofer DSSWeb Self Service Portal REST API CES Globus Sharing Globus Connect Server RabbitMQ Message Bus REST API Client Manage- ment Service REST API Operations Center REST API
  • 10.
    The Big Picture 10IntegratingGlobus into LRZ’s Data Science Storage Service | 2019-05-01 | Stephan Peinkofer
  • 11.
    Huber LMU User: lmuuser2 LinuxClusterSuperMUC Project: lxpr2 Project: smpr2 User: lx22bp User: sm33sx DSS Containers 11 Maier TUM User: tumuser1 LinuxCluster SuperMUC Project: lxpr1 Project: smpr1 User: lx11xc User: sm11bb DSS POSIX Group in IDM/LDAP pr45xa-dss-0000 DSS Container à GPFS Independent Fileset /dss/dssfs01/pr45xa-dss-0000 drwxrws--- root pr45xa-dss-0000 Integrating Globus into LRZ’s Data Science Storage Service | 2019-05-01 | Stephan Peinkofer
  • 12.
    Technical Integration ofGlobus to LRZ DSS Goal 12 Integrate Globus Sharing to DSSWeb Self-Service Portal. Allow Data Curators to share DSS Containers with arbitrary external users. Problem Action Globus let’s us control. Who can share? What can be shared? We need to control. Who can share what? Integrating Globus into LRZ’s Data Science Storage Service | 2019-05-01 | Stephan Peinkofer
  • 13.
    LRZ Data ScienceStorage Technical Integration of Globus to LRZ DSS 13 DSS Container X Container Group /dss/dssfs01/dsscontX DSS Container Directory Integrating Globus into LRZ’s Data Science Storage Service | 2019-05-01 | Stephan Peinkofer DSSWeb Globus Online LRZ MyProxy DSS Globus Endpoint 1. Enable Globus Sharing for DSS Container X Data Curator RobotUser aka RobotUser@globusid.org 2. Login to MyProxy to get Certificate 3. Enable DSS Globus Endpoint 4. Create Shared Endpoint “LRZ DSS Container X” LRZ DSS Container X Shared Endpoint 6. Add RobotUser to Container Access Group 5. Globus Magic
  • 14.
    Technical Integration ofGlobus to LRZ DSS 14Integrating Globus into LRZ’s Data Science Storage Service | 2019-05-01 | Stephan Peinkofer DSSWeb 1. Invite bop@wherever.com to access DSS Container X via Globus Data Curator RobotUser aka RobotUser@globusid.org 2. Check if identity bop@wherever.com is already known by Globus and if not create it 3. Add Globus ACL for Shared Endpoint LRZ DSS Container X for identity bop@wherever.com 4. Globus Magic bop@wherever.com 5. Bop is happy LRZ Data Science Storage DSS Container X Container Group /dss/dssfs01/dsscontX DSS Container Directory DSS Globus Endpoint* LRZ DSS Container X Shared Endpoint Globus Online
  • 15.
    Legal Integration ofGlobus to LRZ DSS Regulation 15 European Union enforced the EU General Data Protection Regulation (GDPR) on 2018-05- 25 Use/Integration of Cloud Services that process PII requires a formal Controller- Processor Agreement. Transfer of personal data to third countries requires special safeguards HIPPA and NIST rescue BAA to the rescue HIPPA and NIST require roughly similar technical and organizational security controls that are required by GDPR to protect PII Globus agreed to sign a Controller-Processor Agreement that contains the EU-Model Clauses Integrating Globus into LRZ’s Data Science Storage Service | 2019-05-01 | Stephan Peinkofer
  • 16.
    16Integrating Globus intoLRZ’s Data Science Storage Service | 2019-05-01 | Stephan Peinkofer