1 / 28

Umbrella AAI Photon / Neutron community

A comprehensive guide to the Authentication and Authorisation Infrastructure (AAI) concept for the Photon and Neutron community. Learn about user needs, future operations, and the unique persistent user identification required for unified access to tools. Explore the characteristics, implementation status, and bridging to other federations.

fifield
Download Presentation

Umbrella AAI Photon / Neutron community

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Umbrella AAIPhoton / Neutron community Mirjam van Daalen

  2. Contents todayspresentation Part 1: Intro Umbrella Part 1: Umbrella Status Part 2: Bridging of Umbrella to other federations

  3. Umbrellaisthe Authentication andAuthorisation Infrastructure (AAI) conceptforthe Photon and Neutron community Itisthefirst time that such a kindof IT environmentisoffered: • European wide • Community overlapping • Sharedbetween different EU projects

  4. Whatarethepresentandupcominguserneeds? Future useroperationatlarge scalefacilities • 40% oftheusers do experimentsat different facilities, transfacilityaccessforusers. • Accestoandmanagementof experimental data (also withinthecollaboration). • Online entrymode: remote experimentaccess • Access toefficientdataanalysistools. • Minimal administrationloadforusers. • Remote fileaccess. At the end all this needs a unique persistent user identification to have unified access to these tools.

  5. Umbrellaispartofseveral FP7 projects: • EuroFEL- ESFRI project Free Electron Lasers of Europe • PaNData-Europe, PaNData ODI- FP7 projects • CRISP – Cluster projectof different ESFRI projects • CALIPSO – I3 synchrotroncommunity • NMI3 - I3 neutroncommunity • BioStruct-X – renewalof I3 ELISA FP7 (onlystruct. biol) • Instruct – ESFRI project

  6. Howdoesitwork? User User Office 1 XXX User Office 2 ILL User Office 3 ESRF User Office 4 PSI

  7. Umbrella Characteristics Overview

  8. Umbrellaisthebasisforvarioususerservicesunderdevelopment Umbrella Characteristics • Info & serviceportal • European proposalsupport (NMI3 & CALIPSO) • Remote experimentaccess • Remote fileaccess • Metadatacatalogue (iCAT) Without a unique identifier it will not be possible to have unified access and work with these tools.

  9. Umbrella Characteristics Concept • Unique persistent Identifier on EU scale • independent of home institution • life time account • account owned by the user • single sign-on • no possibility for cross-facility information pull • waterproof but slim data protection system

  10. Umbrella Characteristics Incorporate confidentiality aspects • high competition, especially structural biology • time-window-structured access to experiments and data. Authorisation is delegated to the systems participating in Umbrella • for highest grade of independence • in heterogeneous environments • no complicated trust relationships

  11. Umbrella Characteristics Rely on existing local user office structure • Great experience • Do It Yourself operation by the user • Users: manage their personal entries • User offices: supervising; manage authorizations • Principal investigators: have responsibility for their teams and can handle authorization within their group Base system on professional authentication standard • Shibboleth, federated Single-Sign-On System (SAML), widely used • Special photon / neutron user federation • Supervising by the local User Offices

  12. Roadmap forUmbrelladeployment

  13. Status ofimplementation

  14. Status of Service Provider deployment 1st wave

  15. Umbrella Status In operation • Basic Umbrella https://umbrellaid.org/euu/ • Geo DNS (server Umbrella distributed between different facilities) In progress • Access to Umbrella via EduGain (Geant 3+, Switch) • Login with account home institution (Universities etc.) • Link of Umbrella to Moonshot (Geant 3+ , non web based access) • Remote experiment access • Access to iCAT metadata catalogue via Umbrella

  16. Bridging of Umbrella to other federations Part 1: Why to bridge? Part 2: What to bridge? Part 3: How to bridge?

  17. Part 1: Whytobridge? Fromtheprevious FIM 4R meetingsitbecameveryclear: • The variousresearchcommunitieshave such different needsthatone FIM solutionfor all isimpossible. • Wewanttooffertheusers a homogeneousefficient easy touseplatform • Thereforebridgingbetweenthe different researchfederations (socialmedia, cloud).

  18. Why to bridge? Creating a new account is often criticized

  19. Why to bridge? User already know their home institution credentials

  20. Why to bridge? • Bring people together from different federations (cultures) • Not yet another account • People already know their home institution account

  21. What to bridge? • National research and education networks (NRENs)

  22. What to bridge? • eduGain • Grid solutions • Commercial federations

  23. What to bridge?

  24. For bridging also slim concept • Minimal administration • User driven (minimalisation of legal requirements) • Via mapping table bridging for each individual user Use cases prototype • Bridging to GRID • EduGain (Switch)

  25. Umbrella collaborators ALBA • Daniel Salvat DESY • Frank Schluenzen, Rolf Treusch, Thorsten Kracht, Jan-Peter Kurz, Ulrike Lindemann Fermi/Elettra • Cecilia Blasetti, Ornela Degiacomo, Giorgio Paolucci ESRF • Rudolf Dimper, Dominique Porte, Julien Savoyet, Stefan Schulze European XFEL • Krzysztof Wrona GSI • Peter Malzacher, Almudena Montiel Gonzalez, Kilian Schwarz HZB • Thomas Gutberlet, Dietmar Herrendoerfer I LL • Jean-Francois Perrin IPJ (Poland) • Robert Nietubic MaxLAB • Krister Johansson PSI • Bjoern Abt, Stephan Egli, Stefan Janssen, Markus Knecht, Mirjam van Daalen, Heinz J Weyer Soleil • Frederique Fraissard STFC • Anthony Gleeson, Tom Griffin, Alistair Mills, Bill Pulford

  26. Thank you for your attention!

More Related