DataGrid WP 6/CA CA Acceptance/Feature Matrices

DataGrid DataGrid WPWP6/CA6/CA

CA Acceptance/Feature MatricesCA Acceptance/Feature Matrices

Trinity College Dublin (TCD)Trinity College Dublin (TCD)

Brian CoghlanBrian Coghlan

Paris MAR-2002

Paris MAR-2002 DataGrid WP6/CA

Proposed Syntax ChangesProposed Syntax Changes

• For Web Server & LDAP Server cert & CRL :For Web Server & LDAP Server cert & CRL :

publication_frequencypublication_frequency

publication_frequencypublication_frequency [days][days]

publication_latencypublication_latency [days][days]

publication_validitypublication_validity [days][days]


ScalingScaling

Let us consider:Let us consider:

• Scaling of Acceptance/Feature Matrix functionalityScaling of Acceptance/Feature Matrix functionality

Let us NOT consider:Let us NOT consider:

• Scaling of whole grid authentication schemeScaling of whole grid authentication scheme


FunctionalityFunctionality

The Acceptance Matrix will scale if :The Acceptance Matrix will scale if :

• inspection is done by machines not peopleinspection is done by machines not people

e.g. by evaluating CA feature matrix according to rule sete.g. by evaluating CA feature matrix according to rule set

not done yetnot done yet

• scope is deliberately limited, e.g. to VOsscope is deliberately limited, e.g. to VOs


The presentation software will scale if :The presentation software will scale if :

• it can be run from memoryit can be run from memory

not done yet, but is designed as just one source filenot done yet, but is designed as just one source file

• it automatically adapts to addition/removal of CAsit automatically adapts to addition/removal of CAs

already donealready done


FunctionalityFunctionality

The matrix admin will scale if :The matrix admin will scale if :

• each CA manages their own matrix info on site,each CA manages their own matrix info on site,

with remote access by the softwarewith remote access by the software


maybe should not be until methodology stabilizesmaybe should not be until methodology stabilizes

• a CA automatically gets out of the blacklist whena CA automatically gets out of the blacklist when

they fix the problemthey fix the problem

as soon as next remote access to their matrix infoas soon as next remote access to their matrix info



Future FunctionalityFuture Functionality

Utilization by programs might be accommodated by :Utilization by programs might be accommodated by :

• use of RGMA/MDS/LDAP, both for remote matrix infouse of RGMA/MDS/LDAP, both for remote matrix info

access and for presenting matrix resultsaccess and for presenting matrix results

Exceptional incidents might be accommodated by :Exceptional incidents might be accommodated by :

• continuing to support the current continuing to support the current manualmanual inspection, inspection,

both for CAs and for VOsboth for CAs and for VOs

Fault-tolerance might be accommodated by:Fault-tolerance might be accommodated by:

• using RGMA/MDS/LDAP replication [when available]using RGMA/MDS/LDAP replication [when available]

Notification of changes to a CA might be accommodated by:Notification of changes to a CA might be accommodated by:

• email [initially]email [initially]

• notification by information system [when available]notification by information system [when available]


THE ENDTHE END

Acceptance/Feature MatricesAcceptance/Feature Matrices

DataGrid WP 6/CA CA Acceptance/Feature Matrices

Documents

Transcript of DataGrid WP 6/CA CA Acceptance/Feature Matrices