200 likes | 394 Views
Grid and Finance Engineering Ingegneria Informatica S.p.A. Giulio Galiero giulio.galiero@eng.it. Outline. Engineering + R&D Lab profile Finance Reqs Scenarios Computing infrastructures GriFin case study Security Current security models in the Grid
E N D
Grid and Finance Engineering Ingegneria Informatica S.p.A. Giulio Galiero giulio.galiero@eng.it
Outline • Engineering + R&D Lab profile • Finance • Reqs • Scenarios • Computing infrastructures • GriFin case study • Security • Current security models in the Grid • Promising security solutions for the Grid • Security in Finance Second EchoGrid Workshop Beijing – 29 & 30 October 2007
Our profile at a glance… numbers 1 1st IT italian player 11 controlled companies 31+3 sites 1400 external resources 4028 professionals Second EchoGrid Workshop Beijing – 29 & 30 October 2007
TECH KNOW-HOW Research & Innovation PROCESS KNOWLEDGE OPERATION MANAGEMENT R&D Lab • Our labs • spread over 5 sites throughout Italy • Rome, Palermo, Torre Annunziata, Benevento, Lecce. • 200 dedicated resources of intenational standing • 7% of revenues invested per year in research • involved in more than 50 projects • a network of 50 international partners • Grid Unit • A dozen full-time senior/junior researchers • 5European projects • BELIEF, DILIGENT, ETICS, ECHOGRID, NESSI-Grid • 1Italian project • GriFin • Consultancy studies for European Commission • ERINA Second EchoGrid Workshop Beijing – 29 & 30 October 2007
GriFin (Grid for Finance) in a nutshell • What is it? • ongoing Italian project (started in 2007) • PSE for the finance • grid-based • Who is involved in it? • 2 partners • University of Lecce • Engineering Ingegneria Informatica S.p.A. • What’s cooking? • UniLe: Grid portal + Portfolio Management application development • Eng: Security (state of the art + integration of new solutions) Second EchoGrid Workshop Beijing – 29 & 30 October 2007
Outline • Engineering + R&D Lab profile • Finance • Reqs • Scenarios • Computing infrastructures • GriFin case study • Security • Current security models in the Grid • Promising security solutions for the Grid • Security in Finance Second EchoGrid Workshop Beijing – 29 & 30 October 2007
Finance • How is our research activity related to finance? • Our Grid Unit is involved in security research • Eng focus in GriFin is on security issues in finance • What are the financial requirements? • Draft reqs after internal analysis… • Time-critical activities • High concern about privacy and data protection • Eterogenous inputs • High computing availability & throughput • Cross-domain • Multi-middleware • Accounting … will be further validated by our customers by the end of the year! Second EchoGrid Workshop Beijing – 29 & 30 October 2007
Typical scenarios in Finance • What? • Portfolio management • Risk analysis • Derivative prices • How? • By means of mathematical models • e.g. Montecarlo simulations Second EchoGrid Workshop Beijing – 29 & 30 October 2007
[Finance] Computing architectures • Mainframe Easy to manage Legacy apps are optimized for that HW HW cost is high! Single point of failure Not scalable • Grid Reuse HW you already have Higher performance per $ Fault tolerant Scalbility Is it an already mature technology? Cost of migration NESSI-Grid is promoting the use of the Grid as the new sw infrastructure… Second EchoGrid Workshop Beijing – 29 & 30 October 2007
NESSI + NESSI-Grid • What is it? • Networked European Software and Services Initiative • “… to create a SRA for European research in services and their foundations…” • What about NESSI-Grid? • Vision and SRA for grid infrastructures in NESSI scenarios • Engineering is promoter of NESSI with 12 other IT players • Steering Committee President • SRA Working Group Responsible • 200 €Mlns EU funding • Around 200 associates by now Second EchoGrid Workshop Beijing – 29 & 30 October 2007
Enterprise B Enterprise A Enterprise AB Enterprise A Enterprise B Enterprise grid Hosting grid time Enterprise A Enterprise B Merger proxy NESSI-Grid: Business Scenarios • (Hierarchical) Enterprise • Hosting • Dynamic Outsourcing • Mergers&Acquisitions • Other scenarios… • Extended Enterprise • Virtual Organisations • Value Networks • Mega Services Second EchoGrid Workshop Beijing – 29 & 30 October 2007
Grid middleware available • Open solutions • … (many others) • Proprietary solutions Second EchoGrid Workshop Beijing – 29 & 30 October 2007
What are we using for GriFin? • What’s on the screen… • GRB portal • Metascheduler • Portfolio Management application • Security state of the art deliverable • Coming soon… • Portal dev • Porfolio Management app dev • User community security reqs validation • Integrating security Second EchoGrid Workshop Beijing – 29 & 30 October 2007
Outline • Engineering + R&D Lab profile • Finance • Reqs • Scenarios • Computing infrastructures • GriFin case study • Security • Current security models in the Grid • Promising security solutions for the Grid • Security in Finance Second EchoGrid Workshop Beijing – 29 & 30 October 2007
Security for… • …Grid • Know-how as researchers of the Grid Team of Engineering R&D Lab • …Finance • As members of GriFin • How do current Grid security features match against Finance requirements? Second EchoGrid Workshop Beijing – 29 & 30 October 2007
MyProxy VOMS/CAS Delegation PKI SAML X.509 Typical Grid solutions • AuthN is PKI-based • X.509 certificates • Delegation • MyProxy • AuthZ • VOMS (Virtual Organisation Membership Service) • CAS (Community Authorization Service) Second EchoGrid Workshop Beijing – 29 & 30 October 2007
Some security issues… • X.509 reveal my full identity… • Attribute filtering • Correlation issues [cfr. Kim Cameron’s blog http://www.identityblog.com/] • Pseudonimity @MWSG/gLite • Proxies are time based! • What if someone steals a proxy certificate? @MWSG/gLite • Hosting Grid • How can I be fully sure my remote data are properly protected? • How can I trust my own computing provider? • Does Enterprise Grid better apply to Finance? Second EchoGrid Workshop Beijing – 29 & 30 October 2007
Security: New kids on the block • Shibboleth • What is it? • Why use it for finance? • Who is using it? • GridShib • Integrate Shibboleth into GlobusToolkit • Crown-ST • GridTrust • TrustCoM • OAuth • Final release of specification available next Thursday (Nov, 1st). Second EchoGrid Workshop Beijing – 29 & 30 October 2007
Conclusions • Grid is moving towards new application fields • Finance demands for ready-to-use, high computing infrastructures • Do Grid features match finance requirements? • New security issues must be addressed • Don’t reinvent the wheel! – maybe the solutions is few clicks away • Integration is the key! Second EchoGrid Workshop Beijing – 29 & 30 October 2007
“To secure a computer, turn it off.” Anonymous Q&A Second EchoGrid Workshop Beijing – 29 & 30 October 2007