xwhep 5 7 5 xtremweb by high energy physics
play

XWHEP 5.7.5 : XtremWeb by High Energy Physics jeudi 15 octobre - PowerPoint PPT Presentation

Nov 18, 2022 •286 likes •916 views

XWHEP 5.7.5 : XtremWeb by High Energy Physics jeudi 15 octobre 2009 XWHEP Introduction Architecture Rights Objects management Compilation, installation Coordinator service Worker service Client service

  1. XWHEP 5.7.5 : XtremWeb by High Energy Physics jeudi 15 octobre 2009

  2. XWHEP • Introduction • Architecture • Rights • Objects management • Compilation, installation • Coordinator service • Worker service • Client service • Benchmark • Pilot Jobs • Perspective jeudi 15 octobre 2009

  3. Introduction XWHEP is developped by IN2P3. It is based on XtremWeb 1.8.0. by INRIA. jeudi 15 octobre 2009

  4. Introduction XWHEP is a generic multi purposes desktop grid platform ( DG ) enabling eSciences computations over volatile nodes. Main features are : • three tiers architecture • multi platforms (win32, linux, mac os x) • virtual stable cluster over volatile volunteers individual PCs • multi applications • multi users • firewall bypassing • automatic load balancing • fault tolerance jeudi 15 octobre 2009

  5. Goals XWHEP main goals: • full production platform • inter grids connexions (especially focusing on EGEE). To achieve this goal, XWHEP proposes a secured DG: • certified server; • X509 user proxy usage; • access rights; • uage levels including two major ones : “public” and “private”: ➡ “public”, intrinsically secured, enabling inter grid sharings; ➡ “private”, intrinsically secured. jeudi 15 octobre 2009

  6. XWHEP Vs XtremWeb 1/2 XWHEP XtremWeb 1.8 Inter-grids connexions + - User rights ++ + Data management + - enabling inter grid Access rights + - sharings Multi transport protocols UDP UDP, TCP implemented Multi communication layers - XW, HTTP & tested User application management + admin only User worker management + - not fully implemented SSL / certificates + - Proxy + - ACL + - jeudi 15 octobre 2009

  7. XWHEP Vs XtremWeb 2/2 XtremWeb 1.8 XWHEP Dynamically linked applications + - Avg. ping + - Avg. bandwidth usage implemented + - & tested Custom scheduler + - Worker launcher not fully tested + - Input files / job + + not fully implemented Input files / app + - Match making OS, CPU, RAM, DISK OS, CPU CPU/RAM requirements + + per job CPU/RAM requirements + - per app jeudi 15 octobre 2009

  8. XWHEP • Introduction • Architecture • Rights • Objects management • Compilation, installation • Coordinator service • Worker service • Client service • Benchmark • Pilot Jobs • Perspective jeudi 15 octobre 2009

  9. XWHEP : Architecture Services are signed; communications are encrypted. Distributed parts (clients, workers) must present valid credentials. XWHEP Services Server certificate XWHEP XWHEP Serveur public key scheduler data repository Credentials Job Mgt Data Mgt Computing XWHEP Local I/O service client ( worker ) Dynamically downloaded user PC data and binary. User Job User data & binary Sandbox Volunteer PC External Volunteer PC data server integrity : sandbox 9 jeudi 15 octobre 2009

  10. Faut Tolerant Model Server certificate XW Services Server public key XW-Coordinator service replica Job Mgt FI Heartbeat signal FI Fault Inspector XW-Coordinator XW-Coordinator service replica service replica Logging FI FI Management of FI FI stateless application Deployed XW-Client UI Deployed XW-Computing Service PC Volunteer PC 10 jeudi 15 octobre 2009

  11. XWHEP • Introduction • Architecture • Rights • Objects management • Compilation, installation • Coordinator service • Worker service • Client service • Benchmark • Pilot Jobs • Perspective jeudi 15 octobre 2009

  12. Access rights Any object in XWHEP is associated with an access rights. Access rights are linux fs like : they are defined for the user (owner), the group and others : 0400 Allow read by owner. 0200 Allow write by owner. 0100 For applications, allow execution by owner. 0040 Allow read by group members. 0020 Allow write by group members. 0010 For applications, allow execution by group members. 0004 Allow read by others. 0002 Allow write by others. 0001 For applications, allow execution by others. Default access rights is 0x755 The xwchmod command helps to change access rights. jeudi 15 octobre 2009

  13. Access rights Access rights help to define access types Access Types Default Access Rights Private 700 Group 750 Public 755 jeudi 15 octobre 2009

  14. Access rights Some sensitive datas are private with no ay to change their access rights. This is typically the case of X509 proxy which may be temporary stocked on XWHEP data repository. This ensures access to data owner only. O. Lodygensky «Recherche en Grille - Laboratoire de Grille de Production» 14 l’Accélérateur Linéaire Lyon - 13/10/2009 jeudi 15 octobre 2009

  15. Access rights Public applications: - can only be inserted with administrator user rights Public application - all users can submit jobs for such applications - referring jobs are public jobs Group applications: - can only be inserted with administrator user rights Group application - only group users can submit jobs for such applications - referring jobs are group jobs Private applications: - any user can insert private applications Private application - only application owner can submit jobs for such applications - referring jobs are private jobs jeudi 15 octobre 2009

  16. Access rights Public Public Public job Public application job Public job job Jobs access rights depend of the level of the referenced application. Group Group Group job Group job application Group job job There is no way to extend job access rights Private Private Private job Private job application Private job job jeudi 15 octobre 2009

  17. Authorization Credentials define usage level stacked rights • manage users and usergroups super user • manage public and group applications advanced user • manage workers this level permits to • manage applications/data/jobs/sessions/groups standard user insert private • use objects accordingly to their access rights applications only • override job access rights (e.g. : set status to COMPLETED) this very special level is worker explained in next slide • insert job results on job owner behalf • none none O. Lodygensky «Recherche en Grille - Laboratoire de Grille de Production» 17 l’Accélérateur Linéaire Lyon - 13/10/2009 jeudi 15 octobre 2009

  18. Authorization Public and group workers have WORKER_USER credentials. This make workers able to compute jobs. No other action is allowed with such credentials: it is not permit to insert application or submit jobs. This is due to the fact that worker (with their credentials) are widely distributed to untrusted volunteer PCs and it would be too easy to hack worker credentials. O. Lodygensky «Recherche en Grille - Laboratoire de Grille de Production» 18 l’Accélérateur Linéaire Lyon - 13/10/2009 jeudi 15 octobre 2009

  19. Confidentiality User rights associated to access rights permit to confine deployment and executions with three levels: • public • group • private O. Lodygensky «Recherche en Grille - Laboratoire de Grille de Production» 19 l’Accélérateur Linéaire Lyon - 13/10/2009 jeudi 15 octobre 2009

  20. Confidentiality Deployment confinement: public worker has WORKER_USER credentials. Execution confinement: public worker can execute any public job, and public jobs only. Public job Public worker O. Lodygensky «Recherche en Grille - Laboratoire de Grille de Production» 20 l’Accélérateur Linéaire Lyon - 13/10/2009 jeudi 15 octobre 2009

  21. Confidentiality Deployment confinement: group worker has WORKER_USER credentials. Execution confinement: group worker can execute any public job, any jobs of its group, and its group only. Public job Group job Group worker O. Lodygensky «Recherche en Grille - Laboratoire de Grille de Production» 21 l’Accélérateur Linéaire Lyon - 13/10/2009 jeudi 15 octobre 2009

  22. Confidentiality Execution confinement: group worker can also be strictly confined to its group. Public job Group job Group worker O. Lodygensky «Recherche en Grille - Laboratoire de Grille de Production» 22 l’Accélérateur Linéaire Lyon - 13/10/2009 jeudi 15 octobre 2009

  23. Confidentiality Deployment confinement: private worker has STANDARD_USER credentials. Execution confinement: private worker can execute any job of its owner, and its owner only. Public job of the worker owner. Group job of the worker owner. Private worker Private job of the worker owner. O. Lodygensky «Recherche en Grille - Laboratoire de Grille de Production» 23 l’Accélérateur Linéaire Lyon - 13/10/2009 jeudi 15 octobre 2009

  24. XWHEP • Introduction • Architecture • Rights • Objects management • Compilation, installation • Coordinator service • Worker service • Client service • Benchmark • Pilot Jobs • Perspective jeudi 15 octobre 2009

  25. O bjects management XWHEP defines a set of different objects. Here we detail : • users and user groups • datas • applications • jobs • workers All objects are identified by an UID composed of five hexadecimal values. Example : 81c6e97a-9d85-4aeb-ae07-593980fb611f Null value: 00000000-0000-0000-0000-000000000000 jeudi 15 octobre 2009

  26. Users and user groups calculated mandatory optional Partial view of the internal user structure. Partial view of the internal user group structure. uid login string uid password string label string rights e.g : STANDARD USER usergroupuid jeudi 15 octobre 2009

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

XWHEP: XtremWeb for XWHEP: XtremWeb for High Energy Physics High Energy Physics XtremWeb 2.0

XWHEP: XtremWeb for XWHEP: XtremWeb for High Energy Physics High Energy Physics XtremWeb 2.0

XWHEP: XtremWeb for XWHEP: XtremWeb for High Energy Physics High Energy Physics XtremWeb 2.0 XtremWeb 2.0 Oleg Lodygensky, Gabriel Caillat, Gilles FEDAK, Haiwu HE Haiwu HE Oleg Lodygensky, Gabriel Caillat, Gilles FEDAK, IN2P3/CNRS, INRIA,

388 views • 26 slides
XWHEP 5.10.0 : XtremWeb by High Energy Physics lundi 5 juillet 2010 XWHEP Introduction

XWHEP 5.10.0 : XtremWeb by High Energy Physics lundi 5 juillet 2010 XWHEP Introduction

XWHEP 5.10.0 : XtremWeb by High Energy Physics lundi 5 juillet 2010 XWHEP Introduction Architecture Rights Objects management Compilation, installation Coordinator service Worker service Client service

835 views • 62 slides
THE NORWEGIAN HIGH ENERGY HIGH ENERGY PARTICLE PARTICLE PHYSICS PHYSICS PROJECT 2006-11

THE NORWEGIAN HIGH ENERGY HIGH ENERGY PARTICLE PARTICLE PHYSICS PHYSICS PROJECT 2006-11

THE NORWEGIAN HIGH ENERGY HIGH ENERGY PARTICLE PARTICLE PHYSICS PHYSICS PROJECT 2006-11 FARID OULD-SAADA, UIO The CERN-related High Energy Particle Physics Research Project HEPP HEPP NFR P NFR Projectnr. 173664/V30 j t 173664/V30

225 views • 9 slides
Report from the DOE Office of High Energy Physics

Report from the DOE Office of High Energy Physics

Report from the DOE Office of High Energy Physics Dr. Simona Rolli Program Manager DOE Office of High Energy Physics November 12, 2015

503 views • 49 slides
High Energy Physics Program Status and Funding Opportunities June 2017 Glen Crawford Research

High Energy Physics Program Status and Funding Opportunities June 2017 Glen Crawford Research

High Energy Physics Program Status and Funding Opportunities June 2017 Glen Crawford Research and Technology Division Director Office of High Energy Physics Office of Science, U.S. Department of Energy The High Energy Physics Program Mission

390 views • 35 slides
Institute of Physics Institute for Theoritical Institute for High Energy Physics Physics ITFA

Institute of Physics Institute for Theoritical Institute for High Energy Physics Physics ITFA

Dr.Noushine Shahidzadeh U NIVERSITY OF A MSTERDAM n.shahidzadeh@uva.nl Institute of Physics Institute for Theoritical Institute for High Energy Physics Physics ITFA Van der Waals-Zeeman IHEF Institute WZI Experimental Physics Bachelor

1.12k views • 30 slides
A short history of High Energy Physics activity between Japan and Korea Soh Y. Suzuki

A short history of High Energy Physics activity between Japan and Korea Soh Y. Suzuki

A short history of High Energy Physics activity between Japan and Korea Soh Y. Suzuki (soh.suzuki@kek.jp) Computing Research Center High Energy Accelerator Research Organization (KEK) 2014/10/08( ) High Energy Physics is study of

568 views • 26 slides
HIGH ENERGY PHYSICS ON THE OSG Brian Bockelman CCL Workshop, 2016 SOME HIGH ENERGY PHYSICS ON

HIGH ENERGY PHYSICS ON THE OSG Brian Bockelman CCL Workshop, 2016 SOME HIGH ENERGY PHYSICS ON

HIGH ENERGY PHYSICS ON THE OSG Brian Bockelman CCL Workshop, 2016 SOME HIGH ENERGY PHYSICS ON THE OSG (AND OTHER PLACES TOO) Brian Bockelman CCL Workshop, 2016 Remind me again - WHY DO PHYSICISTS NEED COMPUTERS? WHERE DO EVENTS COME

790 views • 25 slides
High Energy Physics Program Status and Funding Opportunities Glen Crawford Research and

High Energy Physics Program Status and Funding Opportunities Glen Crawford Research and

High Energy Physics Program Status and Funding Opportunities Glen Crawford Research and Technology Division Director Office of High Energy Physics Office of Science, U.S. Department of Energy The Science Drivers of Particle Physics The P5

959 views • 57 slides
Physics case of the very high energy electronproton collider, VHEeP Allen Caldwell (MPI,

Physics case of the very high energy electronproton collider, VHEeP Allen Caldwell (MPI,

Physics case of the very high energy electronproton collider, VHEeP Allen Caldwell (MPI, Munich) Matthew Wing (UCL / DESY) Introduction, motivation, reminder of VHEeP Physics case of very high energy eP collisions Total P cross

864 views • 22 slides
DOE Office of High Energy Physics Perspectives US LUO 2013 Annual U.S. LHC Users Organization

DOE Office of High Energy Physics Perspectives US LUO 2013 Annual U.S. LHC Users Organization

DOE Office of High Energy Physics Perspectives US LUO 2013 Annual U.S. LHC Users Organization Meeting University of Wisconsin, Madison November 6 8, 2013 Abid Patwa Program Manager Office of High Energy Physics Office of Science,

781 views • 62 slides
Physics @ LHC (Physics @ TeV) Status of LHC/ATLAS/CMS and Physics explored at LHC

Physics @ LHC (Physics @ TeV) Status of LHC/ATLAS/CMS and Physics explored at LHC

Physics @ LHC (Physics @ TeV) Status of LHC/ATLAS/CMS and Physics explored at LHC Fundamentalist of High Energy Physics (U. Tokyo) [0] Introduction: Most important/urgent topics in Particle Physics are: (1) Understanding of the origin

800 views • 62 slides
Spark and HPC for High Energy Physics Data Analyses Marc Paterno, Jim Kowalkowski, and Saba

Spark and HPC for High Energy Physics Data Analyses Marc Paterno, Jim Kowalkowski, and Saba

Spark and HPC for High Energy Physics Data Analyses Marc Paterno, Jim Kowalkowski, and Saba Sehrish 2017 IEEE International Workshop on High-Performance Big Data Computing Introduction High energy physics (HEP) data analyses are

453 views • 22 slides
INTERACTIONS The science of matter, space and time High-Energy Physics High Energy Physics is

INTERACTIONS The science of matter, space and time High-Energy Physics High Energy Physics is

INTERACTIONS The science of matter, space and time High-Energy Physics High Energy Physics is the Science of Interactions Since we (and everything in the universe) are made mostly of empty space, and even particles of matter are just

472 views • 44 slides
Detection of Ultra-high energy neutrinos The First Light of the high energy neutrino

Detection of Ultra-high energy neutrinos The First Light of the high energy neutrino

Detection of Ultra-high energy neutrinos The First Light of the high energy neutrino astronomy Shigeru Yoshida Department of Physics Chiba University the 1 st discovery of the PeV Physical Review Letters 111 111, 021103 (2013)

680 views • 47 slides
Scikit-Learn in particle physics Gilles Louppe CERN, Switzerland November 18, 2014 1 / 13 High

Scikit-Learn in particle physics Gilles Louppe CERN, Switzerland November 18, 2014 1 / 13 High

Scikit-Learn in particle physics Gilles Louppe CERN, Switzerland November 18, 2014 1 / 13 High Energy Physics (HEP) c CERN 2 / 13 High Energy Physics (HEP) c CERN Study the nature of the constituents of matter 2 / 13 High Energy

516 views • 17 slides
SSL, X.509, HTTPS How to configure your HTTPS server Hanno Bck, http://hboeck.de/ HTTPS

SSL, X.509, HTTPS How to configure your HTTPS server Hanno Bck, http://hboeck.de/ HTTPS

SSL, X.509, HTTPS How to configure your HTTPS server Hanno Bck, http://hboeck.de/ HTTPS It's complex Two protocols involving crypto X.509 (for the certificates) and SSL/TLS (for the data transport) Many things can go wrong

537 views • 22 slides
RSA-PSS Provable Secure RSA Signatures and their Implementation Overview What is RSA-PSS?

RSA-PSS Provable Secure RSA Signatures and their Implementation Overview What is RSA-PSS?

RSA-PSS Provable Secure RSA Signatures and their Implementation Overview What is RSA-PSS? Why RSA-PSS? Comparing original and standardized PSS Status of Protocols, Standards and Imple- mentations RSA-PSS in X.509

718 views • 19 slides
Secure remote management with virtualization Daniel P. Berrang <berrange@redhat.com>

Secure remote management with virtualization Daniel P. Berrang <berrange@redhat.com>

Secure remote management with virtualization Daniel P. Berrang <berrange@redhat.com> libvirt: Background API for management of hypervisors Community (Red Hat, Fujitsu, Bull) Isolates apps from HV specific APIs Driver

608 views • 11 slides
MCUBoot Attestation David Brown What is MCUboot MCUboot Secure bootloader Its History

MCUBoot Attestation David Brown What is MCUboot MCUboot Secure bootloader Its History

MCUBoot Attestation David Brown What is MCUboot MCUboot Secure bootloader Its History Manages signed images Handles updates, maintaining security Currently, custom manifest (SUIT maybe some day) What is TF-M Reference

91 views • 8 slides
The views expressed in these slides are solely the views of the Investor Advisory Group members

The views expressed in these slides are solely the views of the Investor Advisory Group members

The views expressed in these slides are solely the views of the Investor Advisory Group members who prepared them and do not necessarily reflect the views of the PCAOB, the members of the Board, or the Boards staff. The PCAOB makes no

123 views • 11 slides
19 th XBRL International Conference Reducing reporting burden with XBRL: a catalyst for better

19 th XBRL International Conference Reducing reporting burden with XBRL: a catalyst for better

IASC Foundation 19 th XBRL International Conference Reducing reporting burden with XBRL: a catalyst for better reporting 24 June 2009 IASC Foundation The views expressed in this presentation are those of the presenter, not necessarily those

677 views • 23 slides
SEEK-iNF and FRAANK SEEK-iNF: Search Engines for Extracting Knowledge from Industrial Filings and

SEEK-iNF and FRAANK SEEK-iNF: Search Engines for Extracting Knowledge from Industrial Filings and

SEEK-iNF and FRAANK SEEK-iNF: Search Engines for Extracting Knowledge from Industrial Filings and FRAANK: Financial Reporting and Auditing Agent with Net Knowledge by Rajendra P. Srivastava 1 Objectives Develop intelligent search engine

292 views • 17 slides
XML PROCESSING WITH SCALA AND YAIDOM Yaidom: a Scala XML query and transformation API (Apache 2.0

XML PROCESSING WITH SCALA AND YAIDOM Yaidom: a Scala XML query and transformation API (Apache 2.0

XML PROCESSING WITH SCALA AND YAIDOM Yaidom: a Scala XML query and transformation API (Apache 2.0 license) Showing yaidom by examples using XBRL Created by chris.de.vreeze@ebpi.nl Powered by reveal.js OVERVIEW OF THE PRESENTATION What is

467 views • 20 slides

More recommend