Files in this item

FilesDescriptionFormat

application/pdf

application/pdfCapabilities-dHTC-TrustedCI.pdf (7MB)
(no description provided)PDF

Description

Title:Trusted CI webinar: A capability-based authorization infrastructure for distributed High Throughput Computing
Author(s):Bockelman, Brian
Subject(s):NSF
Trusted CI
webinar
OSG
dHTC
Abstract:The OSG Consortium provides researchers with the ability to bring their distributed high throughput computing (dHTC) workloads to a pool of resources consisting of hardware across approximately 100 different sites. Using this “Open Science Pool” resource, projects can leverage the opportunistic access (nodes that would be otherwise idle at the site), dedicated hardware, or allocated time at large-scallel NSF-funded resources. While dHTC can be a powerful tool to advance scientific discovery, managing trust relationships with so many sites can be challenging; the OSG helps bootstrap the trust relationships between project and provider. Further, authorization in the OSG ecosystem is an evolving topic. On the national and international infrastructure, we are leading the transition from identity-based authorization -- basing decisions on “who you are” -- to capability based authorization. Capability-based authorization focuses on “what can you do?” and is implemented through tools like bearer tokens. Changing the mindset of an entire ecosystem is wide-ranging work, involving dedicated projects such as the new NSF-funded “SciAuth” and international partners like the Worldwide LHC Computing Grid. In this talk, we’ll cover the journey of the OSG to a capability-based authorization as well as the challenges and opportunities of changing trust models for a functioning infrastructure. Speaker Bio: Brian Bockelman is a Principal Investigator at the Morgridge Institute for Research and co-PI on the Partnership to Advance Throughput Computing (PATh) and Institute for Research and Innovation in Software for High Energy Physics (IRIS-HEP). Within the OSG, he leads the Technology Area, which provides the software and technologies that underpin the OSG fabric of services. He is also a co-PI on the new SciAuth project, led by Jim Basney, which aims to coordinate the deployment of capability-based authorization across the science and engineering cyberinfrastructure. Before joining Morgridge, Bockelman received a joint PhD in Mathematics and Computer Science from the University of Nebraska-Lincoln (UNL) and was an integral member of the Holland Computing Center at UNL. His team helps advance Research Computing activities at Morgridge and are partners within the Center for High Throughput Computing (CHTC) at University of Wisconsin-Madison.
Issue Date:2021-07-26
Genre:Presentation / Lecture / Speech
Type:Text
Image
Language:English
URI:http://hdl.handle.net/2142/110209
Sponsor:NSF Grant # 1920430
NSF Grant # 1836650
NSF Grant # 2030508
NSF Grant # 2114989
Rights Information:Copyright © 2021 The Trustees of Indiana University. This work is licensed under a Creative Commons Attribution-­NonCommercial 3.0 Unported (CC BY­NC 3.0) license.
Date Available in IDEALS:2021-07-26


This item appears in the following Collection(s)

Item Statistics