de.NBI Cloud federation through ELIXIR AAI
Language English Country Great Britain, England Media electronic-ecollection
Document type Journal Article, Research Support, Non-U.S. Gov't
PubMed
31354949
PubMed Central
PMC6635982
DOI
10.12688/f1000research.19013.1
Knihovny.cz E-resources
- Keywords
- Authentication, Authorization, Cloud Computing, ELIXIR, Life Sciences, OpenID Connect, de.NBI, de.NBI Cloud,
- MeSH
- Biological Science Disciplines * MeSH
- Software * MeSH
- Publication type
- Journal Article MeSH
- Research Support, Non-U.S. Gov't MeSH
- Geographicals
- Germany MeSH
The academic de.NBI Cloud offers compute resources for life science research in Germany. At the beginning of 2017, de.NBI Cloud started to implement a federated cloud consisting of five compute centers, with the aim of acting as one resource to their users. A federated cloud introduces multiple challenges, such as a central access and project management point, a unified account across all cloud sites and an interchangeable project setup across the federation. In order to implement the federation concept, de.NBI Cloud integrated with the ELIXIR authentication and authorization infrastructure system (ELIXIR AAI) and in particular Perun, the identity and access management system of ELIXIR. The integration solves the mentioned challenges and represents a backbone, connecting five compute centers which are based on OpenStack and a web portal for accessing the federation.This article explains the steps taken and software components implemented for setting up a federated cloud based on the collaboration between de.NBI Cloud and ELIXIR AAI. Furthermore, the setup and components that are described are generic and can therefore be used for other upcoming or existing federated OpenStack clouds in Europe.
Center for Bioinformatics University of Tübingen Tübingen Baden Württemberg 72076 Germany
Center for Biotechnology Bielefeld University Bielefeld North Rhine Westphalia 33104 Germany
Institute of Computer Science Masaryk University Brno 602 00 Czech Republic
Omics IT and Data Management Core Facility Heidelberg Baden Württemberg 69120 Germany
See more in PubMed
Prochazka M, Licehammer S, Matyska L: Perun - modern approach for user and service management. In 2014 IST-Africa Conference Proceedings IEEE,2014. 10.1109/istafrica.2014.6880654 DOI
De Clercq J: Single sign-on architectures. In Infrastructure Security Springer Berlin Heidelberg,2002;40–58. 10.1007/3-540-45831-x_4 DOI
Ragouzis N, Hughes J, Philpott R, et al. : Security assertion markup language (SAML) v2.0 technical overview. Technical report.2008. Reference Source
Linden M, Prochazka M, Lappalainen I, et al. : Common ELIXIR Service for Researcher Authentication and Authorisation [version 1; peer review: 3 approved, 1 approved with reservations]. F1000Res. 2018;7: pii: ELIXIR-1199. 10.12688/f1000research.15161.1 PubMed DOI PMC
Hardt D: The OAuth 2.0 Authorization Framework. RFC 6749, RFC Editor,2012. Reference Source
Assis MRM, Bittencourt LF: A survey on cloud federation architectures: Identifying functional and non-functional properties. J Netw Comput Appl. 2016;72:51–71. 10.1016/j.jnca.2016.06.014 DOI
