Globus , profile picture
Uploaded byGlobus
PPTX, PDF378 views

What's New With Globus

Globus has reported significant usage metrics including over 6,900 active shared endpoints and the transfer of 675 petabytes of data. It offers enhanced security features tailored for high assurance data management, including compliance with HIPAA and NIST standards, and has rolled out new subscription levels with various pricing increases. Upcoming developments focus on enhancing the platform's core transfer capabilities, building interoperable applications, and transitioning to an open-source model for more customizable solutions.

Embed presentation

Download to read offline
What’s New with Globus? Vas Vasiliadis vas@uchicago.edu
6,902 active shared endpoints 70+ petabyte movers 675 PB moved 23,450 active personal endpoints 93 billion files processed 1,868 active server endpoints 110+ subscribers 2.9 PB largest transfer to date 99.9% availability 710 identity providers 1,923 most shared endpoints at a single institution 111,000 registered users Globus by the numbers
Manage Protected Data 3 Higher assurance levels for HIPAA and other regulated data • Transfer and share… – PHI (Protected Health Information) – PII (Personally identifiable information) – Controlled Unclassified Information • Security controls comply with… – NIST 800-53 Low – Superset of NIST 800-171 Low • Optional BAA with UChicago
Product enhancements for high assurance • Additional authentication assurance – Authenticate with specific identity… – …within specific time – …within specific session • Application instance isolation – Per application – Per session (~browser session) • Encryption of user data in transit and Globus data at rest • Detailed audit logs: Globus service + your DTNs
Product enhancements for high assurance • Additional security requirements enforced on management of all high assurance resources – Data access, and any interaction that can lead to data access – Examples: Groups, Management Console • Enhanced user interfaces (web app and CLI) for seamless management of protected data
Services enabled • Globus Services: Auth, Transfer & Sharing, Groups • Globus Connect Server v5.2 and above • Globus Connect Personal v3.x • Web app (app.globus.org) • Globus Command Line Interface (CLI) • Connectors: POSIX, Google Drive, AWS S3, CEPH
Operational enhancements for high assurance • Intrusion detection and prevention • Encryption • Enhanced logging • Secure remote access, access control, and secure practices for laptops • Uniform configuration management and change control • AWS best practices for secure environment: VPCs, security groups, IAM best practices
New subscription levels • High Assurance – 33% uplift on Standard subscription and on premium connectors • BAA – 50% uplift on Standard subscription and on premium connectors
High Assurance Demonstration 9
Web app enhancements • Accessibility – Target WCAG 2.0 AA compliance • Responsiveness and touch • Works with new connectors collections.globus.org 10
Web app enhancements • Customizable interface – Single vs. dual panel – Compact file listing display – Columns displayed • Continue incorporating user feedback
CLI enhancements • Support for use with high assurance collections • '--format UNIX': output suitable for line-oriented processing with typical Unix tools • Added 'globus rm' command • 'globus whoami --linked-identities': shows all linked identities • '--timeout-exit-code': overrides the default exit code for commands which wait on tasks • Enhancements to SDK as needed 12
Globus for Box • Extends the value of your Box deployment • Unifies access to cloud and on-premise storage • Transitions protected data (HIPAA-regulated, CUI) seamlessly between Box and other storage systems 13
15 Box for Globus Demonstration
Make Box part of your research storage ecosystem globus.org/connectors/box docs.globus.org/premium-storage-connectors/box
Connector updates • Enhanced user experience for credential handling for several connectors (GCSv5) • AWS S3 – Automated multi-region support • Google Drive – Enhancement to retry handling for large transfers • HPSS – Support added for HPSS 7.5 (7.3 to 7.5 supported) – Improved asynchronous staging from tape 17
S3 compatible systems • Initial customer deployments • Validation, testing and vendor engagement planned • Additional systems driven by customer demand PLEASE CONTACT US BEFORE DEPLOYING ANY OF THESE! 18
GCSv5 architecture and new terminology
Globus Connect Server v5.3 • Subsumes GCS version 5.0, 5.1, 5.2 (upgrade now) • Standard and high assurance guest collections (sharing) • High assurance mapped collections • Connectors: POSIX, AWS S3, CEPH, Google Drive, Box • High assurance, standard gateways on same endpoint • Data access protocols: GridFTP and HTTPS
HTTPS access to Globus endpoints • Browser based up/download • Put your (research) storage “on the web” • Enforce same security policies 22
Globus Connect Server v5 Milestones v5.0: Google Drive v5.1: POSIX guest collections, HTTPS v5.x: v4 feature parity+ v5.3 • Multi DTN support • Additional storage systems • Endpoint specific identity providers • … Other features v5.2: High assurance v5.4: …
Recent Transfer enhancements • Verify transfer using client provided checksums – User provided checksum used rather than source checksum for verification • Improvements for scaling transfer service – Multiple nodes for transfer service for higher availability and reliability – Allows for code updates with no downtime 24
SSH with OAuth • Securely access resource using SSH with federated identity – Facilitates automation, eliminates SSH key management – Replacement for deprecated GSI OpenSSH • First version released – Server side PAM module with Globus Auth support – Command line client • Open source, community support – Not part of the standard subscription – OAuth SSH Client: https://pypi.org/project/oauth-ssh/ – OAuth SSH Server PAM module: https://github.com/xsede/oauth-ssh
Where are we headed?
Enhancing the core: Transfer Building the future: Platform
Globus Transfer: A complete solution ☑ Bulk transfer and sync ☑ Good end-to-end performance in myriad of real world settings ☑ End-to-end reliability ☑ Robust security, with federated identities ☑ Layers onto diverse storage systems ☑ Web-compatible client/server remote access ☑ Easy to use interfaces ☑ Easy installation and administration ☑ Sharing data with guest users ☑ Dedicated professional support 28
Rethinking data publication • Limited adoption – Not easily customizable • Maintenance Challenges – Costly to maintain – JRE licensing concerns • Going forward – Code will be open source – Leverage platform • Invest in higher priorities
JLSEUChicago ALCFAPS Publication7 Kasthuri Lab: Building the connectome Imaging1 Lab Server 1 Acquisition2 Lab Server 2 Pre-processing3 Preview/Center4 Reconstruction6Visualization8 User validation5 Science!9 Neuroanatomy reconstruction pipeline
Automation: Neuroanatomy Web form User input Search Ingest Share Set policy Identifier Mint DOI funcX Auth Get credentials Automate Run job Describe Get metadata Transfer Transfer data funcX Run job Transfer Transfer data
Our (ambitious) goals for the Globus platform • Transform how research applications, services, and workflows are created, delivered, used, and sustained – Scientific instrument data processing – Repositories: Make data more FAIR – Science gateways • Facilitate creation of interoperable app ecosystem 32
Globus platform services • Identity and Access Management (IAM) – Federated identity login, Groups, Attributes, Access Control – Globus Auth: Oauth authorization provider • Connect • Transfer – Building a family of services • Execution • Search, Identifiers • Automation – Queues, Events – Triggers, Actions, Flows 33
Platform status • Generally Available in a few years • Separate product with separate sustainability model • Early engagements help shape product direction – Argonne Leadership Computing Facility, Materials Data Facility, – NCAR Research Data Archive, NSO, … – Use in Globus products • Multiple integrations facilitate more complete solution – e.g. Django, JupyterHub – Follow progress: globus-integration-examples.readthedocs.io • Currently accessible via professional services team
Thank you to our sponsors... U . S . D E P A R T M E N T O F ENERGY
THANK YOU, subscribers!

More Related Content

PPTX
IBM Spectrum Scale Authentication For Object - Deep Dive
bySmita Raut
 
PPTX
Hadoop Security Features That make your risk officer happy
byDataWorks Summit
 
PPTX
Kerberos, Token and Hadoop
byKai Zheng
 
PPTX
NGINX Plus R18: What's new
byNGINX, Inc.
 
PDF
Flowchain: A case study on building a Blockchain for the IoT
byLinuxCon ContainerCon CloudOpen China
 
PPTX
Cloud and OpenStack
bySeyed Ehsan Beheshtian
 
PDF
Hadoop Security, Cloudera - Todd Lipcon and Aaron Myers - Hadoop World 2010
byCloudera, Inc.
 
PPTX
Securing Your Deployment with MongoDB and Red Hat's Identity Management in Re...
byMongoDB
 
IBM Spectrum Scale Authentication For Object - Deep Dive
bySmita Raut
 
Hadoop Security Features That make your risk officer happy
byDataWorks Summit
 
Kerberos, Token and Hadoop
byKai Zheng
 
NGINX Plus R18: What's new
byNGINX, Inc.
 
Flowchain: A case study on building a Blockchain for the IoT
byLinuxCon ContainerCon CloudOpen China
 
Cloud and OpenStack
bySeyed Ehsan Beheshtian
 
Hadoop Security, Cloudera - Todd Lipcon and Aaron Myers - Hadoop World 2010
byCloudera, Inc.
 
Securing Your Deployment with MongoDB and Red Hat's Identity Management in Re...
byMongoDB
 

What's hot

PPTX
Openstack Architecture
bySrbIT
 
PDF
Troubleshooting and Best Practices with WSO2 Enterprise Integrator
byWSO2
 
PDF
APIs: Intelligent Routing, Security, & Management
byNGINX, Inc.
 
PPTX
IBM Spectrum Scale Secure- Secure Data in Motion and Rest
bySandeep Patil
 
PPTX
Analyzing NGINX Logs with Datadog
byNGINX, Inc.
 
PPTX
Scale your application to new heights with NGINX and AWS
byNGINX, Inc.
 
PDF
Introduction to Globus for New Users (GlobusWorld Tour - Columbia University)
byGlobus
 
PPTX
Hadoop Security Features that make your risk officer happy
byAnurag Shrivastava
 
PPTX
[DevDay 2016] OpenStack and approaches for new users - Speaker: Chi Le – Head...
byDevDay Da Nang
 
PPTX
The Microsoft Cloud Partner
byNeethu Kuruvilla
 
PPT
Hadoop Operations: How to Secure and Control Cluster Access
byCloudera, Inc.
 
PDF
Hadoop Security: Overview
byCloudera, Inc.
 
PPTX
Securing the Hadoop Ecosystem
byDataWorks Summit
 
PPTX
IBM Spectrum scale object deep dive training
bySmita Raut
 
PPSX
MongoDB seminar
bymahdi dousti
 
PPTX
Hadoop Security in Big-Data-as-a-Service Deployments - Presented at Hadoop Su...
byAbhiraj Butala
 
PDF
Introducing the WSO2 Elastic Load Balancer
byWSO2
 
PPTX
Tokyo azure meetup #9 azure update, october
byTokyo Azure Meetup
 
PPTX
Deploying Enterprise-grade Security for Hadoop
byCloudera, Inc.
 
PPTX
Tokyo Azure Meetup #9 - Azure Update, september
byTokyo Azure Meetup
 
Openstack Architecture
bySrbIT
 
Troubleshooting and Best Practices with WSO2 Enterprise Integrator
byWSO2
 
APIs: Intelligent Routing, Security, & Management
byNGINX, Inc.
 
IBM Spectrum Scale Secure- Secure Data in Motion and Rest
bySandeep Patil
 
Analyzing NGINX Logs with Datadog
byNGINX, Inc.
 
Scale your application to new heights with NGINX and AWS
byNGINX, Inc.
 
Introduction to Globus for New Users (GlobusWorld Tour - Columbia University)
byGlobus
 
Hadoop Security Features that make your risk officer happy
byAnurag Shrivastava
 
[DevDay 2016] OpenStack and approaches for new users - Speaker: Chi Le – Head...
byDevDay Da Nang
 
The Microsoft Cloud Partner
byNeethu Kuruvilla
 
Hadoop Operations: How to Secure and Control Cluster Access
byCloudera, Inc.
 
Hadoop Security: Overview
byCloudera, Inc.
 
Securing the Hadoop Ecosystem
byDataWorks Summit
 
IBM Spectrum scale object deep dive training
bySmita Raut
 
MongoDB seminar
bymahdi dousti
 
Hadoop Security in Big-Data-as-a-Service Deployments - Presented at Hadoop Su...
byAbhiraj Butala
 
Introducing the WSO2 Elastic Load Balancer
byWSO2
 
Tokyo azure meetup #9 azure update, october
byTokyo Azure Meetup
 
Deploying Enterprise-grade Security for Hadoop
byCloudera, Inc.
 
Tokyo Azure Meetup #9 - Azure Update, september
byTokyo Azure Meetup
 

Similar to What's New With Globus

PPTX
"What's New With Globus" Webinar: Spring 2018
byGlobus
 
PDF
Introduction to Globus for New Users
byGlobus
 
PDF
Simplified Research Data Management with the Globus Platform
byGlobus
 
PPTX
Globus: Research Data Management as Service and Platform - pearc17
byMary Bass
 
PDF
Introduction to Globus: Research Data Management Software at the ALCF
byGlobus
 
PPTX
Globus: Beyond File Transfer
byGlobus
 
PDF
Globus High Assurance for Protected Data (GlobusWorld Tour - Columbia Univers...
byGlobus
 
PDF
Globus: A Data Management Platform for Collaborative Research (CHPC 2019 - So...
byGlobus
 
PPTX
Managing Protected and Controlled Data with Globus
byGlobus
 
PDF
What's New in Globus - Internet2 TechEXtra
byGlobus
 
PDF
Globus High Assurance for Protected Data (GlobusWorld Tour - UCSD)
byGlobus
 
PDF
Introduction to Globus (APS Workshop)
byGlobus
 
PDF
Introduction to Globus
byGlobus
 
PDF
Tutorial: Managing Protected Data with Globus Connect Server v5
byGlobus
 
PDF
Data Publication and Discovery with Globus
byGlobus
 
PDF
Introduction to Globus (GlobusWorld Tour West)
byGlobus
 
PDF
Introduction to Globus and Research Automation.pdf
bySusanTussy1
 
PDF
GlobusWorld 2021 Tutorial: Introduction to Globus
byGlobus
 
PDF
An Introduction to Globus for Researchers
byGlobus
 
PDF
Introduction to Globus (GlobusWorld Tour - UMich)
byGlobus
 
"What's New With Globus" Webinar: Spring 2018
byGlobus
 
Introduction to Globus for New Users
byGlobus
 
Simplified Research Data Management with the Globus Platform
byGlobus
 
Globus: Research Data Management as Service and Platform - pearc17
byMary Bass
 
Introduction to Globus: Research Data Management Software at the ALCF
byGlobus
 
Globus: Beyond File Transfer
byGlobus
 
Globus High Assurance for Protected Data (GlobusWorld Tour - Columbia Univers...
byGlobus
 
Globus: A Data Management Platform for Collaborative Research (CHPC 2019 - So...
byGlobus
 
Managing Protected and Controlled Data with Globus
byGlobus
 
What's New in Globus - Internet2 TechEXtra
byGlobus
 
Globus High Assurance for Protected Data (GlobusWorld Tour - UCSD)
byGlobus
 
Introduction to Globus (APS Workshop)
byGlobus
 
Introduction to Globus
byGlobus
 
Tutorial: Managing Protected Data with Globus Connect Server v5
byGlobus
 
Data Publication and Discovery with Globus
byGlobus
 
Introduction to Globus (GlobusWorld Tour West)
byGlobus
 
Introduction to Globus and Research Automation.pdf
bySusanTussy1
 
GlobusWorld 2021 Tutorial: Introduction to Globus
byGlobus
 
An Introduction to Globus for Researchers
byGlobus
 
Introduction to Globus (GlobusWorld Tour - UMich)
byGlobus
 

More from Globus

PDF
Globus Compute wth IRI Workflows - GlobusWorld 2024
byGlobus
 
PDF
Climate Science Flows: Enabling Petabyte-Scale Climate Analysis with the Eart...
byGlobus
 
PDF
Globus Compute Introduction - GlobusWorld 2024
byGlobus
 
PDF
Globus Connect Server Deep Dive - GlobusWorld 2024
byGlobus
 
PDF
Innovating Inference - Remote Triggering of Large Language Models on HPC Clus...
byGlobus
 
PDF
Providing Globus Services to Users of JASMIN for Environmental Data Analysis
byGlobus
 
PDF
First Steps with Globus Compute Multi-User Endpoints
byGlobus
 
PDF
Enhancing Research Orchestration Capabilities at ORNL.pdf
byGlobus
 
PDF
Understanding Globus Data Transfers with NetSage
byGlobus
 
PDF
How to Position Your Globus Data Portal for Success Ten Good Practices
byGlobus
 
PDF
Exploring Innovations in Data Repository Solutions - Insights from the U.S. G...
byGlobus
 
PDF
Developing Distributed High-performance Computing Capabilities of an Open Sci...
byGlobus
 
PDF
The Department of Energy's Integrated Research Infrastructure (IRI)
byGlobus
 
PDF
GlobusWorld 2024 Opening Keynote session
byGlobus
 
PDF
Enhancing Performance with Globus and the Science DMZ
byGlobus
 
PDF
Extending Globus into a Site-wide Automated Data Infrastructure.pdf
byGlobus
 
PDF
Globus at the United States Geological Survey
byGlobus
 
PDF
Providing Globus Services to Users of JASMIN for Environmental Data Analysis
byGlobus
 
PDF
Globus Compute with Integrated Research Infrastructure (IRI) workflows
byGlobus
 
PDF
Reactive Documents and Computational Pipelines - Bridging the Gap
byGlobus
 
Globus Compute wth IRI Workflows - GlobusWorld 2024
byGlobus
 
Climate Science Flows: Enabling Petabyte-Scale Climate Analysis with the Eart...
byGlobus
 
Globus Compute Introduction - GlobusWorld 2024
byGlobus
 
Globus Connect Server Deep Dive - GlobusWorld 2024
byGlobus
 
Innovating Inference - Remote Triggering of Large Language Models on HPC Clus...
byGlobus
 
Providing Globus Services to Users of JASMIN for Environmental Data Analysis
byGlobus
 
First Steps with Globus Compute Multi-User Endpoints
byGlobus
 
Enhancing Research Orchestration Capabilities at ORNL.pdf
byGlobus
 
Understanding Globus Data Transfers with NetSage
byGlobus
 
How to Position Your Globus Data Portal for Success Ten Good Practices
byGlobus
 
Exploring Innovations in Data Repository Solutions - Insights from the U.S. G...
byGlobus
 
Developing Distributed High-performance Computing Capabilities of an Open Sci...
byGlobus
 
The Department of Energy's Integrated Research Infrastructure (IRI)
byGlobus
 
GlobusWorld 2024 Opening Keynote session
byGlobus
 
Enhancing Performance with Globus and the Science DMZ
byGlobus
 
Extending Globus into a Site-wide Automated Data Infrastructure.pdf
byGlobus
 
Globus at the United States Geological Survey
byGlobus
 
Providing Globus Services to Users of JASMIN for Environmental Data Analysis
byGlobus
 
Globus Compute with Integrated Research Infrastructure (IRI) workflows
byGlobus
 
Reactive Documents and Computational Pipelines - Bridging the Gap
byGlobus
 

Recently uploaded

PPTX
Spacecraft Guidance Quick Research Guide by Arthur Morgan
byArthur Morgan
 
PDF
apidays Australia 2025 | The Strategic Role of APIs in Digital Transformation
byapidays
 
PPTX
Understanding-Search-Algorithms_09-12-25.pptx
byshaikmahammedtauheed
 
PPT
Database Management Systems: Basics, History, Data Models, etc.
byParithi Thamizh
 
PDF
Router-DHCP-Printer-SharingRouter-DHCP-Printer-Sharing
byarbendi2160
 
PDF
Enterprise Data Services_ A Development Guide with Use Cases, Trends and Impl...
by2601harsh23
 
PPTX
Storage-and-HCI-Positioning-update-sales.pptx
byhungungphu123
 
PDF
Kubernetes Cloud Native Indonesia Meetup - January 2026
byPrasta Maha
 
PDF
Computer Science Conferences 2026 | Research by SAI Conference
byHealth Conference 2026
 
PDF
How to Build a Crypto Wallet that Excels in 2026.pdf
byimoliviabennett
 
PPTX
SOFTWARE DEVELOPMENT PROCESS - INTRODUCTION
byParithi Thamizh
 
PDF
How PayPal Account Verification Works – Complete Guide for Online Businesses
byjhdhj3989
 
DOCX
Mathematical reviewer gor mmw in theofern
byyeojlevantinojesalva
 
PDF
MINDCTI Revenue Release Quarter 3 2025 - Financial Presentation
byMIND CTI
 
PPTX
6G and Non-Terrestrial Networks (NTN) Testing.pptx
byXRComm
 
PDF
Transcript: What ONIX can do: Leveraging metadata to support the discoverabil...
byBookNet Canada
 
PPTX
AI Meets DBA Transforming Database Administration with Intelligence
byGeoPITS Global Pvt Ltd
 
PPTX
Single Cell Protein from Methane or Methanol - Process development research c...
byJohn Downs
 
PDF
Teaching Robots how to Read 1/2: AI Center & Classic Document Understanding (...
byanabulhac
 
PPTX
Achieve enterprise automation with SAP BTP solutions and SAP Signavio
bydarrellkiwi
 
Spacecraft Guidance Quick Research Guide by Arthur Morgan
byArthur Morgan
 
apidays Australia 2025 | The Strategic Role of APIs in Digital Transformation
byapidays
 
Understanding-Search-Algorithms_09-12-25.pptx
byshaikmahammedtauheed
 
Database Management Systems: Basics, History, Data Models, etc.
byParithi Thamizh
 
Router-DHCP-Printer-SharingRouter-DHCP-Printer-Sharing
byarbendi2160
 
Enterprise Data Services_ A Development Guide with Use Cases, Trends and Impl...
by2601harsh23
 
Storage-and-HCI-Positioning-update-sales.pptx
byhungungphu123
 
Kubernetes Cloud Native Indonesia Meetup - January 2026
byPrasta Maha
 
Computer Science Conferences 2026 | Research by SAI Conference
byHealth Conference 2026
 
How to Build a Crypto Wallet that Excels in 2026.pdf
byimoliviabennett
 
SOFTWARE DEVELOPMENT PROCESS - INTRODUCTION
byParithi Thamizh
 
How PayPal Account Verification Works – Complete Guide for Online Businesses
byjhdhj3989
 
Mathematical reviewer gor mmw in theofern
byyeojlevantinojesalva
 
MINDCTI Revenue Release Quarter 3 2025 - Financial Presentation
byMIND CTI
 
6G and Non-Terrestrial Networks (NTN) Testing.pptx
byXRComm
 
Transcript: What ONIX can do: Leveraging metadata to support the discoverabil...
byBookNet Canada
 
AI Meets DBA Transforming Database Administration with Intelligence
byGeoPITS Global Pvt Ltd
 
Single Cell Protein from Methane or Methanol - Process development research c...
byJohn Downs
 
Teaching Robots how to Read 1/2: AI Center & Classic Document Understanding (...
byanabulhac
 
Achieve enterprise automation with SAP BTP solutions and SAP Signavio
bydarrellkiwi
 

What's New With Globus

  • 1.
    What’s New withGlobus? Vas Vasiliadis vas@uchicago.edu
  • 2.
    6,902 active shared endpoints 70+ petabyte movers 675PB moved 23,450 active personal endpoints 93 billion files processed 1,868 active server endpoints 110+ subscribers 2.9 PB largest transfer to date 99.9% availability 710 identity providers 1,923 most shared endpoints at a single institution 111,000 registered users Globus by the numbers
  • 3.
    Manage Protected Data 3 Higherassurance levels for HIPAA and other regulated data • Transfer and share… – PHI (Protected Health Information) – PII (Personally identifiable information) – Controlled Unclassified Information • Security controls comply with… – NIST 800-53 Low – Superset of NIST 800-171 Low • Optional BAA with UChicago
  • 4.
    Product enhancements forhigh assurance • Additional authentication assurance – Authenticate with specific identity… – …within specific time – …within specific session • Application instance isolation – Per application – Per session (~browser session) • Encryption of user data in transit and Globus data at rest • Detailed audit logs: Globus service + your DTNs
  • 5.
    Product enhancements forhigh assurance • Additional security requirements enforced on management of all high assurance resources – Data access, and any interaction that can lead to data access – Examples: Groups, Management Console • Enhanced user interfaces (web app and CLI) for seamless management of protected data
  • 6.
    Services enabled • GlobusServices: Auth, Transfer & Sharing, Groups • Globus Connect Server v5.2 and above • Globus Connect Personal v3.x • Web app (app.globus.org) • Globus Command Line Interface (CLI) • Connectors: POSIX, Google Drive, AWS S3, CEPH
  • 7.
    Operational enhancements forhigh assurance • Intrusion detection and prevention • Encryption • Enhanced logging • Secure remote access, access control, and secure practices for laptops • Uniform configuration management and change control • AWS best practices for secure environment: VPCs, security groups, IAM best practices
  • 8.
    New subscription levels •High Assurance – 33% uplift on Standard subscription and on premium connectors • BAA – 50% uplift on Standard subscription and on premium connectors
  • 9.
  • 10.
    Web app enhancements •Accessibility – Target WCAG 2.0 AA compliance • Responsiveness and touch • Works with new connectors collections.globus.org 10
  • 11.
    Web app enhancements •Customizable interface – Single vs. dual panel – Compact file listing display – Columns displayed • Continue incorporating user feedback
  • 12.
    CLI enhancements • Supportfor use with high assurance collections • '--format UNIX': output suitable for line-oriented processing with typical Unix tools • Added 'globus rm' command • 'globus whoami --linked-identities': shows all linked identities • '--timeout-exit-code': overrides the default exit code for commands which wait on tasks • Enhancements to SDK as needed 12
  • 13.
    Globus for Box •Extends the value of your Box deployment • Unifies access to cloud and on-premise storage • Transitions protected data (HIPAA-regulated, CUI) seamlessly between Box and other storage systems 13
  • 15.
  • 16.
    Make Box partof your research storage ecosystem globus.org/connectors/box docs.globus.org/premium-storage-connectors/box
  • 17.
    Connector updates • Enhanceduser experience for credential handling for several connectors (GCSv5) • AWS S3 – Automated multi-region support • Google Drive – Enhancement to retry handling for large transfers • HPSS – Support added for HPSS 7.5 (7.3 to 7.5 supported) – Improved asynchronous staging from tape 17
  • 18.
    S3 compatible systems •Initial customer deployments • Validation, testing and vendor engagement planned • Additional systems driven by customer demand PLEASE CONTACT US BEFORE DEPLOYING ANY OF THESE! 18
  • 20.
    GCSv5 architecture andnew terminology
  • 21.
    Globus Connect Serverv5.3 • Subsumes GCS version 5.0, 5.1, 5.2 (upgrade now) • Standard and high assurance guest collections (sharing) • High assurance mapped collections • Connectors: POSIX, AWS S3, CEPH, Google Drive, Box • High assurance, standard gateways on same endpoint • Data access protocols: GridFTP and HTTPS
  • 22.
    HTTPS access toGlobus endpoints • Browser based up/download • Put your (research) storage “on the web” • Enforce same security policies 22
  • 23.
    Globus Connect Serverv5 Milestones v5.0: Google Drive v5.1: POSIX guest collections, HTTPS v5.x: v4 feature parity+ v5.3 • Multi DTN support • Additional storage systems • Endpoint specific identity providers • … Other features v5.2: High assurance v5.4: …
  • 24.
    Recent Transfer enhancements •Verify transfer using client provided checksums – User provided checksum used rather than source checksum for verification • Improvements for scaling transfer service – Multiple nodes for transfer service for higher availability and reliability – Allows for code updates with no downtime 24
  • 25.
    SSH with OAuth •Securely access resource using SSH with federated identity – Facilitates automation, eliminates SSH key management – Replacement for deprecated GSI OpenSSH • First version released – Server side PAM module with Globus Auth support – Command line client • Open source, community support – Not part of the standard subscription – OAuth SSH Client: https://pypi.org/project/oauth-ssh/ – OAuth SSH Server PAM module: https://github.com/xsede/oauth-ssh
  • 26.
    Where are weheaded?
  • 27.
  • 28.
    Globus Transfer: Acomplete solution ☑ Bulk transfer and sync ☑ Good end-to-end performance in myriad of real world settings ☑ End-to-end reliability ☑ Robust security, with federated identities ☑ Layers onto diverse storage systems ☑ Web-compatible client/server remote access ☑ Easy to use interfaces ☑ Easy installation and administration ☑ Sharing data with guest users ☑ Dedicated professional support 28
  • 29.
    Rethinking data publication •Limited adoption – Not easily customizable • Maintenance Challenges – Costly to maintain – JRE licensing concerns • Going forward – Code will be open source – Leverage platform • Invest in higher priorities
  • 30.
    JLSEUChicago ALCFAPS Publication7 Kasthuri Lab: Buildingthe connectome Imaging1 Lab Server 1 Acquisition2 Lab Server 2 Pre-processing3 Preview/Center4 Reconstruction6Visualization8 User validation5 Science!9 Neuroanatomy reconstruction pipeline
  • 31.
    Automation: Neuroanatomy Web form User input Search Ingest Share Setpolicy Identifier Mint DOI funcX Auth Get credentials Automate Run job Describe Get metadata Transfer Transfer data funcX Run job Transfer Transfer data
  • 32.
    Our (ambitious) goalsfor the Globus platform • Transform how research applications, services, and workflows are created, delivered, used, and sustained – Scientific instrument data processing – Repositories: Make data more FAIR – Science gateways • Facilitate creation of interoperable app ecosystem 32
  • 33.
    Globus platform services •Identity and Access Management (IAM) – Federated identity login, Groups, Attributes, Access Control – Globus Auth: Oauth authorization provider • Connect • Transfer – Building a family of services • Execution • Search, Identifiers • Automation – Queues, Events – Triggers, Actions, Flows 33
  • 34.
    Platform status • GenerallyAvailable in a few years • Separate product with separate sustainability model • Early engagements help shape product direction – Argonne Leadership Computing Facility, Materials Data Facility, – NCAR Research Data Archive, NSO, … – Use in Globus products • Multiple integrations facilitate more complete solution – e.g. Django, JupyterHub – Follow progress: globus-integration-examples.readthedocs.io • Currently accessible via professional services team
  • 35.
    Thank you toour sponsors... U . S . D E P A R T M E N T O F ENERGY
  • 36.

Editor's Notes

  • #4 Use cases – HIPAA/protected data enclave, multi-institutional trials,
  • #5 Access Control Identities provided and managed by institution Globus acts as identity broker only, does not access or store any institutional user credentials Institution controls all access policies (at multiple levels) who can access what data and with what permissions who can share what data and with what permissions all access policies can be changed or revoked at any time
  • #8 Protected Environment using either AWS KMS encryption or AWS service-specific encryption options.
  • #10 Data access CLI access Private window Groups page
  • #11 we are working towards being compliant with W3 established accessibility standards –increased visual contrast, ability to resize all of the GUI text using standard browser controls, code to support screen readers, the GUI adapts to a users’ screen from mobile devices all the way up to large high resolution desktop displays
  • #12 Greg’s talk
  • #14 Backup, data management plans, archive…use Globus for all those use cases Layers on Box
  • #15 Our current set of premium connectors; care and feed
  • #16 Box collection creation Data transfer Sharing
  • #17 Pricing – same as Google Drive connector
  • #18 Care and feed
  • #20 Customer demand + sustainble model for maintaining the connectors. Ask for any input.
  • #21 And what we once called endpoints are now called Collections Mapped = host endpoint Guest = shared endpoint Don’t forget we now also offer HTTPS as well!
  • #27 Hand to Steve who takes it from here…
  • #30 BE POSITIVE! IT’S ALL GOOD! WE’RE DOING IT FOR YOUR OWN GOOD! WE CAN INVEST ON COOL NEW STUFF
  • #31 A good example of the science that Globus facilitates is the work being done by Bobby Kasthuri Lab at Argonne Lab HIs group have set out to map the brain, or build the connectome, as it’s known It’s an ambitious undertaking that involves massive mounts of data They start with samples that are imaged using a beamline at the Advanced Photon Source They get time from APS every 2 to 3 days, and efficiency and automation allows them to make the most of the time at APS. The initial set of raw images undergo some prep-processing and are sent to the Argonne Leadership Computing Facility for analysis A scientist then previews the images and makes any needed adjustments to the experiment Once everything is properly configured the sample is fully imaged and reconstructed at the ALCF The datasets are then moved to a petascale storage system called Petrel where they are annotated with metadata and published with a persistent identifier Researchers at Uchicago and elsewhere can then search and extract relevant subsets of the data to analyze further …and then Science happens!
  • #35 No timeframe for general availability Last year we talked about services such as Automate and Search. These are fundamentally platform services, for developers to leverage in their own applications, services, and solutions. We continue to make good progress on these However, realistically, due to funding constraints, these platforms services will not be generally available for several more year In the mean time we are partnering with select groups to use prototype and limited production platform services To learn what is really needed before going GA If you are interested in experimenting with them, please talk with us. We will be selective.