= Project Number = 1609 = Project Title = TIED: Trial Integration Environment in DETER a.k.a. DETER = Technical Contacts = Principal Investigator: John Wroclawski jtw@isi.edu Co-Principal Investigator: Terry Benzel tbenzel@isi.edu Ted Faber faber@ISI.EDU = Participating Organizations = * [http://www.isi.edu/index.php University of Southern California Information Sciences Institute], Marina del Rey * [http://www.eecs.berkeley.edu/ University of California, Berkeley] = Scope = The scope of work on this project is to develop and evangelize a control framework that particularly emphasizes usability across different communities, through federation, rich trust/security models, and similar enabling mechanisms. = Milestones = * [[MilestoneDate(TIED:Identify specific year 1 outreach communities.)]] * [[MilestoneDate(TIED:Initial component and clearinghouse documentation.)]] * [[MilestoneDate(TIED:Release v 0.1 of component manager and clearinghouse.)]] * [[MilestoneDate(TIED:Begin prototype clearinghouse operation.)]] * [[MilestoneDate(TIED:Provide user access to DETER via TIED.)]] * [[MilestoneDate(TIED:Participate in NSF TRUST Science and Technology Center's teacher education program.)]] * [[MilestoneDate(TIED:Demonstrate extended functionalities for outreach communities.)]] * [[MilestoneDate(TIED:Provide direct VLAN interface to TIED resources)]] * [[MilestoneDate(TIED:Support running federated experiments.)]] = Project Technical Documents = TIED is based on the [http://fedd.isi.deterlab.net TIED/DETER federation system], which allows a researcher to construct experiments that span testbeds by dynamically acquiring resources from other testbeds and configuring them into a single experiment. As closely as possible that experiment will mimic a single DETER/Emulab experiment. This model fundamentally supports creation of cohesive experiments (slices) from independently administered resources (components/aggregates). Because resources are independently administered and serve different communities, the authorization system needs to support a rich delegation structure, formal semantics, efficient negotiation, and clear auditing. The [http://www.isso.sparta.com/research_projects/security_infrastructure/abac_overview.html ABAC] system meets those requirements; TIED is integrating this into the federation system. To make use of widely distributed components it is helpful to establish guaranteed network connections between them. TIED is addressing this by federating with testbeds that represent dynamically allocatable wide-area network resources. The prototyping plan is to use DRAGON interfaces to configure these resources. [http://fedd.isi.deterlab.net The TIED/DETER Federation architecture and implementation]:: Information about the TIED/DETER federation system, including overview, detailed user and developer documentation, pointers to published papers, and released code. [wiki:TIEDClearinghouse The TIED Clearinghouse]:: Description of how the TIED stsyem provides GENI clearinghouse functionality, including how to join [wiki:TIEDABACModel The ABAC model in TIED]:: Discussion of ABAC concepts and how they relate to TIED implementation [wiki:TIEDABACDemo An ABAC demo]:: A worked example of ABAC applied to a GENI scenario. Also shows the TIED attribute explorer. = [http://groups.geni.net/geni/wiki/TIED/QuarterlyStatus Quarterly Status Reports] = * [http://groups.geni.net/geni/attachment/wiki/TIED/QuarterlyStatus/TIED%20QPR%2012-31-08.pdf 4Q08 Status Report] * [http://groups.geni.net/geni/attachment/wiki/TIED/QuarterlyStatus/TIED%20QPR%2003-31-09.pdf 1Q09 Status Report] * [http://groups.geni.net/geni/attachment/wiki/TIED/QuarterlyStatus/TIED%20QPR%2006-30-09.pdf 2Q09 Status Report] currently under review with the GPO = Spiral 1 Connectivity = TBD = GPO Liaison System Engineer = Heidi Picher Dempsey hdempsey@geni.net = Related Projects = * [http://www.isi.edu/deter/ DETERlab Testbed (cyber-DEfense Technology Experimental Research laboratory Testbed) ] * [http://fedd.isi.deterlab.net TIED/DETER Federation Architecture Website]