1 / 20

Grid and Finance Engineering Ingegneria Informatica S.p.A. Giulio Galiero giulio.galiero@eng.it

Grid and Finance Engineering Ingegneria Informatica S.p.A. Giulio Galiero giulio.galiero@eng.it. Outline. Engineering + R&D Lab profile Finance Reqs Scenarios Computing infrastructures GriFin case study Security Current security models in the Grid

rollin
Download Presentation

Grid and Finance Engineering Ingegneria Informatica S.p.A. Giulio Galiero giulio.galiero@eng.it

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Grid and Finance Engineering Ingegneria Informatica S.p.A. Giulio Galiero giulio.galiero@eng.it

  2. Outline • Engineering + R&D Lab profile • Finance • Reqs • Scenarios • Computing infrastructures • GriFin case study • Security • Current security models in the Grid • Promising security solutions for the Grid • Security in Finance Second EchoGrid Workshop Beijing – 29 & 30 October 2007

  3. Our profile at a glance… numbers 1 1st IT italian player 11 controlled companies 31+3 sites 1400 external resources 4028 professionals Second EchoGrid Workshop Beijing – 29 & 30 October 2007

  4. TECH KNOW-HOW Research & Innovation PROCESS KNOWLEDGE OPERATION MANAGEMENT R&D Lab • Our labs • spread over 5 sites throughout Italy • Rome, Palermo, Torre Annunziata, Benevento, Lecce. • 200 dedicated resources of intenational standing • 7% of revenues invested per year in research • involved in more than 50 projects • a network of 50 international partners • Grid Unit • A dozen full-time senior/junior researchers • 5European projects • BELIEF, DILIGENT, ETICS, ECHOGRID, NESSI-Grid • 1Italian project • GriFin • Consultancy studies for European Commission • ERINA Second EchoGrid Workshop Beijing – 29 & 30 October 2007

  5. GriFin (Grid for Finance) in a nutshell • What is it? • ongoing Italian project (started in 2007) • PSE for the finance • grid-based • Who is involved in it? • 2 partners • University of Lecce • Engineering Ingegneria Informatica S.p.A. • What’s cooking? • UniLe: Grid portal + Portfolio Management application development • Eng: Security (state of the art + integration of new solutions) Second EchoGrid Workshop Beijing – 29 & 30 October 2007

  6. Outline • Engineering + R&D Lab profile • Finance • Reqs • Scenarios • Computing infrastructures • GriFin case study • Security • Current security models in the Grid • Promising security solutions for the Grid • Security in Finance Second EchoGrid Workshop Beijing – 29 & 30 October 2007

  7. Finance • How is our research activity related to finance? • Our Grid Unit is involved in security research • Eng focus in GriFin is on security issues in finance • What are the financial requirements? • Draft reqs after internal analysis… • Time-critical activities • High concern about privacy and data protection • Eterogenous inputs • High computing availability & throughput • Cross-domain • Multi-middleware • Accounting … will be further validated by our customers by the end of the year! Second EchoGrid Workshop Beijing – 29 & 30 October 2007

  8. Typical scenarios in Finance • What? • Portfolio management • Risk analysis • Derivative prices • How? • By means of mathematical models • e.g. Montecarlo simulations Second EchoGrid Workshop Beijing – 29 & 30 October 2007

  9. [Finance] Computing architectures • Mainframe  Easy to manage  Legacy apps are optimized for that HW  HW cost is high!  Single point of failure  Not scalable • Grid  Reuse HW you already have  Higher performance per $  Fault tolerant  Scalbility  Is it an already mature technology?  Cost of migration NESSI-Grid is promoting the use of the Grid as the new sw infrastructure… Second EchoGrid Workshop Beijing – 29 & 30 October 2007

  10. NESSI + NESSI-Grid • What is it? • Networked European Software and Services Initiative • “… to create a SRA for European research in services and their foundations…” • What about NESSI-Grid? • Vision and SRA for grid infrastructures in NESSI scenarios • Engineering is promoter of NESSI with 12 other IT players • Steering Committee President • SRA Working Group Responsible • 200 €Mlns EU funding • Around 200 associates by now Second EchoGrid Workshop Beijing – 29 & 30 October 2007

  11. Enterprise B Enterprise A Enterprise AB Enterprise A Enterprise B Enterprise grid Hosting grid time Enterprise A Enterprise B Merger proxy NESSI-Grid: Business Scenarios • (Hierarchical) Enterprise • Hosting • Dynamic Outsourcing • Mergers&Acquisitions • Other scenarios… • Extended Enterprise • Virtual Organisations • Value Networks • Mega Services Second EchoGrid Workshop Beijing – 29 & 30 October 2007

  12. Grid middleware available • Open solutions • … (many others) • Proprietary solutions Second EchoGrid Workshop Beijing – 29 & 30 October 2007

  13. What are we using for GriFin? • What’s on the screen… • GRB portal • Metascheduler • Portfolio Management application • Security state of the art deliverable • Coming soon… • Portal dev • Porfolio Management app dev • User community security reqs validation • Integrating security Second EchoGrid Workshop Beijing – 29 & 30 October 2007

  14. Outline • Engineering + R&D Lab profile • Finance • Reqs • Scenarios • Computing infrastructures • GriFin case study • Security • Current security models in the Grid • Promising security solutions for the Grid • Security in Finance Second EchoGrid Workshop Beijing – 29 & 30 October 2007

  15. Security for… • …Grid • Know-how as researchers of the Grid Team of Engineering R&D Lab • …Finance • As members of GriFin • How do current Grid security features match against Finance requirements? Second EchoGrid Workshop Beijing – 29 & 30 October 2007

  16. MyProxy VOMS/CAS Delegation PKI SAML X.509 Typical Grid solutions • AuthN is PKI-based • X.509 certificates • Delegation • MyProxy • AuthZ • VOMS (Virtual Organisation Membership Service) • CAS (Community Authorization Service) Second EchoGrid Workshop Beijing – 29 & 30 October 2007

  17. Some security issues… • X.509 reveal my full identity… • Attribute filtering • Correlation issues [cfr. Kim Cameron’s blog http://www.identityblog.com/] • Pseudonimity @MWSG/gLite • Proxies are time based! • What if someone steals a proxy certificate? @MWSG/gLite • Hosting Grid • How can I be fully sure my remote data are properly protected? • How can I trust my own computing provider? • Does Enterprise Grid better apply to Finance? Second EchoGrid Workshop Beijing – 29 & 30 October 2007

  18. Security: New kids on the block • Shibboleth • What is it? • Why use it for finance? • Who is using it? • GridShib • Integrate Shibboleth into GlobusToolkit • Crown-ST • GridTrust • TrustCoM • OAuth • Final release of specification available next Thursday (Nov, 1st). Second EchoGrid Workshop Beijing – 29 & 30 October 2007

  19. Conclusions • Grid is moving towards new application fields • Finance demands for ready-to-use, high computing infrastructures • Do Grid features match finance requirements? • New security issues must be addressed • Don’t reinvent the wheel! – maybe the solutions is few clicks away • Integration is the key! Second EchoGrid Workshop Beijing – 29 & 30 October 2007

  20. “To secure a computer, turn it off.” Anonymous Q&A Second EchoGrid Workshop Beijing – 29 & 30 October 2007

More Related