Documente Academic
Documente Profesional
Documente Cultură
Copyright (C) 2003 University of Chicago and The University of Southern California. All Rights Reserved. This
presentation is licensed for use under the terms of the Globus Toolkit Public License.
See http://www.globus.Org/toolkit/download/license.html for the full text of this license.
A Story of Evolution
● Definition of Grid problem has been stable since
original Globus Project proposal in 1995
– Though we’ve gotten better at articulating it
● But our approach to its solution has evolved:
– From APIs and custom protocols…
– to standard protocols…
– to Grid services (OGSA).
● Driven by experience implementing and deploying the
Globus Toolkit, and building real applications with it
User-Defined Services
Base Services
System-Level Services
Hosting Environment
June 2003 GGF8 Introduction to Globus Toolkit® 3.0 10
GT3 Core
Service locator
Includes 0 or more Grid Service Handles (GSHs)
Includes 0 or more Grid Service References (GSRs)
June 2003 GGF8 Introduction to Globus Toolkit® 3.0 12
GT3 Core:
OGSI Implementation
GridService portType
● Defines the fundamental behavior of a
Grid Service
– Introspection
– Discovery
– Soft State Lifetime Management
● Mandated by the Spec
Factory portType
● Factories create services
● Factories are typically persistent services
● Factory is an optional OGSI interface
1. From a known
registry, the client
discovers a
factory
by querying the
Service data of the
registry
Client
* The scenarios in this presentation are offered as examples and are not prescriptive
June 2003 GGF8 Introduction to Globus Toolkit® 3.0 19
A Service
Creation Scenario
Registry
Factory
2. The client calls the
createService
1. From a known
operation on the
registry, the client
factory
discovers a
factory
by querying the
Service data of the
registry
Client
Notification
Source
Notification
Sink
Notification
Source
Notification Notification
Sink Subscription
Notification
Source
User-Defined Services
Base Services
System-Level Services
Hosting Environment
June 2003 GGF8 Introduction to Globus Toolkit® 3.0 29
GT3 Core: Security Infrastructure
● Transport Layer Security/Secure Socket
Layer (TLS/SSL)
– To be deprecated
● SOAP Layer Security
– Based on WS-Security, XML Encryption,
XML Signature
● GT3 uses X.509 identity certificates for
authentication
● It also uses X.509 Proxy certificates to
support delegation and single sign-on,
updated to conform to latest IETF/GGF
draft
June 2003 GGF8 Introduction to Globus Toolkit® 3.0 30
GT-OGSA Grid Service Infrastructure
User-Defined Services
Base Services
System-Level Services
Hosting Environment
June 2003 GGF8 Introduction to Globus Toolkit® 3.0 31
GT3 Core: System Level Services
User-Defined Services
Base Services
System-Level Services
Hosting Environment
June 2003 GGF8 Introduction to Globus Toolkit® 3.0 33
GT3 Core: Grid Service Container
Includes the OGSI Implementation, security
infrastructure and system-level services, plus:
● Service activation, deactivation, construction,
destruction, etc.
● Service data element placeholders that allow
you to dynamically fetch service data values at
query time
● Evaluator framework (supporting ByXPath and
ByName notifications and queries)
● Interceptor/callback framework (allows one to
intercept certain service lifecycle events)
June 2003 GGF8 Introduction to Globus Toolkit® 3.0 34
GT3 Core:
Grid Service Container (cont.)
Transport/Binding
Transport Layer Layer (GT3 supports
SOAP over HTTP)
User-Defined Services
Base Services
System-Level Services
Hosting Environment
June 2003 GGF8 Introduction to Globus Toolkit® 3.0 36
GT3 Core: Hosting Environment
● Embedded
● Standalone
● Servlet
● EJB
Registry HE Starter
Router
1. From
a known
registry,
the client
retrieves
a factory
locator
Client
Registry HE Starter
2. The router
intercepts the
createService Router
call on the
1. From
factory
a known
registry,
the client
retrieves
a factory
locator
Client
Registry HE Starter
2. The router
intercepts the
createService Router
call on the
1. From
factory
a known
registry,
the client
retrieves
a factory
locator
Client
Registry HE Starter
2. The router
intercepts the
createService Router
call on the 4.The HE
1. From Starter
factory
a known creates
registry, a new
the client Host Env
retrieves as well
a factory as the
locator service
Client
Service
Registry HE Starter
2. The router
intercepts the
createService Router
call on the 4.The HE
1. From Starter
factory
a known creates
registry, 5. The router returns a new
the client a service locator Host Env
retrieves as well
a factory as the
locator service
Client
Service
Registry HE Starter
2. The router
intercepts the
createService Router
call on the 4.The HE
1. From Starter
factory
a known creates
registry, 5. The router returns a new
the client a service locator Host Env
retrieves as well
a factory as the
locator service
User-Defined Services
Base Services
System-Level Services
Hosting Environment
June 2003 GGF8 Introduction to Globus Toolkit® 3.0 46
GT3 Base: Resource Management
● GRAM Architecture rendered in OGSA
● The MMJFS runs as an unprivileged user, with a
small highly-constrained setuid executable
behind it.
MMJFS: Master
MJS Managed Job Factory
User 1
MJS
Master User MJFS MJS Service
User 2
MMJFS MJFS MJS MJFS: Managed Job
Factory Service
User 3
MJFS MJS MJS: Managed Job
MJS Service
June 2003 GGF8 Introduction to Globus Toolkit® 3.0 47
GRAM Job Submission Scenario
Index
Service
From an index
rvice, the client
hooses an
MMJFS
Client
Client
Client MJS
Client MJS
Client MJS
5. The client subscribes to
the MJS’ status SDE and
retrieves output
June 2003 GGF8 Introduction to Globus Toolkit® 3.0 52
GT3 Base: Information Services
GridFTP
JDBC Server 2
June 2003 GGF8 Introduction to Globus Toolkit® 3.0 54
GT-OGSA Grid Service Infrastructure
User-Defined Services
Base Services
System-Level Services
Hosting Environment
June 2003 GGF8 Introduction to Globus Toolkit® 3.0 55
GT3 User-Defined Services
● GT3 can be viewed as a Grid Service
Development Kit that includes:
– Primitives designed to ease the task of
building OGSI-Compliant Services
– Primitives for provisioning security
– Base services that provide an infrastructure
with which to build higher-level services