Mika Silander - Academia.edu (original) (raw)

Papers by Mika Silander

International conference on Networking and Services (ICNS'06), 2006

ArXiv, 2003

One of the fundamental concepts in Grid computing is the creation of Virtual Organizations (VO&#3... more One of the fundamental concepts in Grid computing is the creation of Virtual Organizations (VO's): a set of resource consumers and providers that join forces to solve a common problem. Typical examples of Virtual Organizations include collaborations formed around the Large Hadron Collider (LHC) experiments. To date, Grid computing has been applied on a relatively small scale, linking dozens of users to a dozen resources, and management of these VO's was a largely manual operation. With the advance of large collaboration, linking more than 10000 users with a 1000 sites in 150 counties, a comprehensive, automated management system is required. It should be simple enough not to deter users, while at the same time ensuring local site autonomy. The VO Management Service (VOMS), developed by the EU DataGrid and DataTAG projects[1, 2], is a secured system for managing authorization for users and resources in virtual organizations. It extends the existing Grid Security Infrastructur...

Many Data Grid services maintain persistent metadata in remote relational databases. However, exi... more Many Data Grid services maintain persistent metadata in remote relational databases. However, existing relational database systems are neither grid enabled nor web service enabled, adversely affecting cross-organizational interoperability and reuse. The European Data Grid’s Data Management Work Package addresses these issues with Spitfire. The Spitfire service gridenables a wide range of relational database systems by introducing a uniform service interface, data model, network protocol and security model. These are based on widely accepted standards and neutral with respect to programming language, platform and database product. In this paper we briefly describe the latest stable Spitfire release. We then discuss in detail work in progress towards a web service based architecture, its security model and client APIs, illustrated by practical examples.

Proceedings of the 25th Conference on Proceedings of the 25th Iasted International Multi Conference Parallel and Distributed Computing and Networks, 2007

... Tuomas Nissi, Helsinki Institute of Physics, Finland. Mika Silander, Helsinki Institute of Ph... more ... Tuomas Nissi, Helsinki Institute of Physics, Finland. Mika Silander, Helsinki Institute of Physics, Finland. Publisher, ACTA Press Anaheim, CA, USA. ... Tuomas Nissi: colleagues. Mika Silander: colleagues. The ACM Portal is published by the Association for Computing Machinery. ...

Abstract—Traditionally, grid users have been identifiable and traceable beyond,reasonable,doubt,b... more Abstract—Traditionally, grid users have been identifiable and traceable beyond,reasonable,doubt,by their digital certificates. However, Grids are used in an ever-increasing variety of con- texts and thus, the number of usage scenarios has augmented accordingly. In bio-medicine,and,other health-related fields a need for anonymous,access to grid resources has been identified. Anonymous,access to resources prevents the resource owners,and other external parties from,tracing the users

Diana Bosio, James Casey, Akos Frohner, Leanne Guy, Peter Kunszt, Erwin Laure, Sophie Lemaitre, L... more Diana Bosio, James Casey, Akos Frohner, Leanne Guy, Peter Kunszt, Erwin Laure, Sophie Lemaitre, Levi Lucio, Heinz Stockinger, Kurt Stockinger CERN, European Organization for Nuclear Research, CH-1211 Geneva 23, Switzerland William Bell, David Cameron, Gavin McCance, Paul Millar University of Glasgow, Glasgow, G12 8QQ, Scotland Joni Hahkala, Niklas Karlsson, Ville Nenonen, Mika Silander Helsinki Institute of Physics, P.O. Box 64, 00014 University of Helsinki, Finland Olle Mulmo, Gian-Luca Volpato Swedish Research Council, SE-103 78 Stockholm, Sweden Giuseppe Andronico INFN Catania, Via S. Sofia, 64, I-95123 Catania, Italy Federico DiCarlo INFN Roma, P.le Aldo Moro, 2, I-00185 Roma, Italy Livio Salconi INFN Pisa, via F. Buonarroti 2, I-56127 Pisa, Italy Andrea Domenici DIIEIT, via Diotisalvi, 2, I-56122 Pisa, Italy Ruben Carvajal-Schiaffino, Floriano Zini ITC-irst, via Sommarive 18, 38050 Povo, Trento, Italy

Ersa Conference Papers, 1999

Key Results: The architecture of the existing version of Spitfire is presented, along with the we... more Key Results: The architecture of the existing version of Spitfire is presented, along with the web services version currently under development; a practical example is given in the paper. Motivation (problems addressed): The motivation is to provide a secure grid enabled database service to permit access to a wide range of relational database systems. Current database solutions are neither grid

Many Data Grid services maintain persistent metadata in remote relational databases. However, exi... more Many Data Grid services maintain persistent metadata in remote relational databases. However, existing relational database systems are neither grid enabled nor web service enabled, adversely aecting cross-organizational interoperability and reuse. The European Data Grid's Data Management Work Package addresses these issues with Spitr e. The Spitre service grid- enables a wide range of relational database systems by introducing a uniform service interface, data model, network protocol and security model. These are based on widely accepted stan- dards and neutral with respect to programming language, platform and database product. In this paper we briey describe the latest stable Spitre release. We then discuss in detail work in progress towards a web service based architecture, its security model and client APIs, illustrated by practical examples.

Journal of Grid Computing, 2004

Within the European DataGrid project, Work Package 2 has designed and implemented a set of integr... more Within the European DataGrid project, Work Package 2 has designed and implemented a set of integrated replica management services for use by data intensive scientific applications. These services, based on the web services model, enable movement and replication of data at high speed from one geographical site to another, management of distributed replicated data, optimization of access to data, and the provision of a metadata management tool. In this paper we describe the architecture and implementation of these services and evaluate their performance under demanding Grid conditions.

Journal of Computers, 2009

Traditionally, Grid users have been identifiable and traceable beyond reasonable doubt by their d... more Traditionally, Grid users have been identifiable and traceable beyond reasonable doubt by their digital certificates. However, Grids are used in an ever-increasing variety of contexts and thus, the number of usage scenarios has augmented accordingly. In bio-medicine and other health-related fields a need for anonymous access to Grid resources has been identified. Anonymous access to resources prevents the resource owners and other external parties from tracing the users and their actions. Such anonymity of resource usage in Grids is needed above all in commercial contexts, e.g. protecting the development process of a new medicine by anonymizing the accesses to medical research databases. In this paper we identify the requirements and define an architecture for pseudonymity system addressing these needs. Also the protocols used between the components are defined.

IEEE Network, 2000

This article discusses the authentication and the authorization aspects of security in grid envir... more This article discusses the authentication and the authorization aspects of security in grid environments spanning multiple administrative domains. Achievements in these areas are presented using the EU DataGrid project as an example implementation. It also gives an outlook on future directions of development.

Journal of animal breeding and genetics = Zeitschrift für Tierzüchtung und Züchtungsbiologie, 2009

This study proposes a procedure to estimate genetic parameters in populations where a selection p... more This study proposes a procedure to estimate genetic parameters in populations where a selection process results in the loss of an unknown number of observations. The method was developed under the Bayesian inference scope following the missing data theory approach. Its implementation requires slight modifications to the Gibbs sampler algorithm. In order to show the efficiency of this option, a simulation study was conducted.

Proceedings of the 2008 …, 2008

Traditionally, grid users have been identifiable and traceable beyond reasonable doubt by their d... more Traditionally, grid users have been identifiable and traceable beyond reasonable doubt by their digital certificates. However, Grids are used in an ever-increasing variety of contexts and thus, the number of usage scenarios has augmented accordingly. In bio-medicine and other health-related fields a need for anonymous access to grid resources has been identified. Anonymous access to resources prevents the resource owners and other external parties from tracing the users and their actions. Such anonymity of resource usage in Grids is needed above all in commercial contexts, e.g. protecting the development process of a new medicine by anonymizing the accesses to medical research data bases. In this paper we identify the requirements and give an initial design for pseudonymity system addressing these needs.

Proceedings of the 25th conference on …, 2007

... Tuomas Nissi, Helsinki Institute of Physics, Finland. Mika Silander, Helsinki Institute of Ph... more ... Tuomas Nissi, Helsinki Institute of Physics, Finland. Mika Silander, Helsinki Institute of Physics, Finland. Publisher, ACTA Press Anaheim, CA, USA. ... Tuomas Nissi: colleagues. Mika Silander: colleagues. The ACM Portal is published by the Association for Computing Machinery. ...

International Journal of …, 2004

Arxiv preprint cs/ …, 2003

One of the fundamental concepts in Grid computing is the creation of Virtual Organizations (VO's)... more One of the fundamental concepts in Grid computing is the creation of Virtual Organizations (VO's): a set of resource consumers and providers that join forces to solve a common problem. Typical examples of Virtual Organizations include collaborations formed around the Large Hadron Collider (LHC) experiments. To date, Grid computing has been applied on a relatively small scale, linking dozens of users to a dozen resources, and management of these VO's was a largely manual operation. With the advance of large collaboration, linking more than 10000 users with a 1000 sites in 150 counties, a comprehensive, automated management system is required. It should be simple enough not to deter users, while at the same time ensuring local site autonomy. The VO Management Service (VOMS), developed by the EU DataGrid and DataTAG projects[1, 2], is a secured system for managing authorization for users and resources in virtual organizations. It extends the existing Grid Security Infrastructure[3] architecture with embedded VO affiliation assertions that can be independently verified by all VO members and resource providers. Within the EU DataGrid project, Grid services for job submission, file-and database access are being equipped with fine-grained authorization systems that take VO membership into account. These also give resource owners the ability to ensure site security and enforce local access policies. This paper will describe the EU DataGrid security architecture, the VO membership service and the local site enforcement mechanisms Local Centre Authorization Service (LCAS), Local Credential Mapping Service(LCMAPS) and the Java Trust and Authorization Manager. * Corresponding author (CPS), all these CA's mutually trust each other and are trusted by all resources participating in the EDG test-bed.

International conference on Networking and Services (ICNS'06), 2006

ArXiv, 2003

One of the fundamental concepts in Grid computing is the creation of Virtual Organizations (VO&#3... more One of the fundamental concepts in Grid computing is the creation of Virtual Organizations (VO's): a set of resource consumers and providers that join forces to solve a common problem. Typical examples of Virtual Organizations include collaborations formed around the Large Hadron Collider (LHC) experiments. To date, Grid computing has been applied on a relatively small scale, linking dozens of users to a dozen resources, and management of these VO's was a largely manual operation. With the advance of large collaboration, linking more than 10000 users with a 1000 sites in 150 counties, a comprehensive, automated management system is required. It should be simple enough not to deter users, while at the same time ensuring local site autonomy. The VO Management Service (VOMS), developed by the EU DataGrid and DataTAG projects[1, 2], is a secured system for managing authorization for users and resources in virtual organizations. It extends the existing Grid Security Infrastructur...

Many Data Grid services maintain persistent metadata in remote relational databases. However, exi... more Many Data Grid services maintain persistent metadata in remote relational databases. However, existing relational database systems are neither grid enabled nor web service enabled, adversely affecting cross-organizational interoperability and reuse. The European Data Grid’s Data Management Work Package addresses these issues with Spitfire. The Spitfire service gridenables a wide range of relational database systems by introducing a uniform service interface, data model, network protocol and security model. These are based on widely accepted standards and neutral with respect to programming language, platform and database product. In this paper we briefly describe the latest stable Spitfire release. We then discuss in detail work in progress towards a web service based architecture, its security model and client APIs, illustrated by practical examples.

Proceedings of the 25th Conference on Proceedings of the 25th Iasted International Multi Conference Parallel and Distributed Computing and Networks, 2007

... Tuomas Nissi, Helsinki Institute of Physics, Finland. Mika Silander, Helsinki Institute of Ph... more ... Tuomas Nissi, Helsinki Institute of Physics, Finland. Mika Silander, Helsinki Institute of Physics, Finland. Publisher, ACTA Press Anaheim, CA, USA. ... Tuomas Nissi: colleagues. Mika Silander: colleagues. The ACM Portal is published by the Association for Computing Machinery. ...

Abstract—Traditionally, grid users have been identifiable and traceable beyond,reasonable,doubt,b... more Abstract—Traditionally, grid users have been identifiable and traceable beyond,reasonable,doubt,by their digital certificates. However, Grids are used in an ever-increasing variety of con- texts and thus, the number of usage scenarios has augmented accordingly. In bio-medicine,and,other health-related fields a need for anonymous,access to grid resources has been identified. Anonymous,access to resources prevents the resource owners,and other external parties from,tracing the users

Diana Bosio, James Casey, Akos Frohner, Leanne Guy, Peter Kunszt, Erwin Laure, Sophie Lemaitre, L... more Diana Bosio, James Casey, Akos Frohner, Leanne Guy, Peter Kunszt, Erwin Laure, Sophie Lemaitre, Levi Lucio, Heinz Stockinger, Kurt Stockinger CERN, European Organization for Nuclear Research, CH-1211 Geneva 23, Switzerland William Bell, David Cameron, Gavin McCance, Paul Millar University of Glasgow, Glasgow, G12 8QQ, Scotland Joni Hahkala, Niklas Karlsson, Ville Nenonen, Mika Silander Helsinki Institute of Physics, P.O. Box 64, 00014 University of Helsinki, Finland Olle Mulmo, Gian-Luca Volpato Swedish Research Council, SE-103 78 Stockholm, Sweden Giuseppe Andronico INFN Catania, Via S. Sofia, 64, I-95123 Catania, Italy Federico DiCarlo INFN Roma, P.le Aldo Moro, 2, I-00185 Roma, Italy Livio Salconi INFN Pisa, via F. Buonarroti 2, I-56127 Pisa, Italy Andrea Domenici DIIEIT, via Diotisalvi, 2, I-56122 Pisa, Italy Ruben Carvajal-Schiaffino, Floriano Zini ITC-irst, via Sommarive 18, 38050 Povo, Trento, Italy

Ersa Conference Papers, 1999

Key Results: The architecture of the existing version of Spitfire is presented, along with the we... more Key Results: The architecture of the existing version of Spitfire is presented, along with the web services version currently under development; a practical example is given in the paper. Motivation (problems addressed): The motivation is to provide a secure grid enabled database service to permit access to a wide range of relational database systems. Current database solutions are neither grid

Many Data Grid services maintain persistent metadata in remote relational databases. However, exi... more Many Data Grid services maintain persistent metadata in remote relational databases. However, existing relational database systems are neither grid enabled nor web service enabled, adversely aecting cross-organizational interoperability and reuse. The European Data Grid's Data Management Work Package addresses these issues with Spitr e. The Spitre service grid- enables a wide range of relational database systems by introducing a uniform service interface, data model, network protocol and security model. These are based on widely accepted stan- dards and neutral with respect to programming language, platform and database product. In this paper we briey describe the latest stable Spitre release. We then discuss in detail work in progress towards a web service based architecture, its security model and client APIs, illustrated by practical examples.

Journal of Grid Computing, 2004

Within the European DataGrid project, Work Package 2 has designed and implemented a set of integr... more Within the European DataGrid project, Work Package 2 has designed and implemented a set of integrated replica management services for use by data intensive scientific applications. These services, based on the web services model, enable movement and replication of data at high speed from one geographical site to another, management of distributed replicated data, optimization of access to data, and the provision of a metadata management tool. In this paper we describe the architecture and implementation of these services and evaluate their performance under demanding Grid conditions.

Journal of Computers, 2009

Traditionally, Grid users have been identifiable and traceable beyond reasonable doubt by their d... more Traditionally, Grid users have been identifiable and traceable beyond reasonable doubt by their digital certificates. However, Grids are used in an ever-increasing variety of contexts and thus, the number of usage scenarios has augmented accordingly. In bio-medicine and other health-related fields a need for anonymous access to Grid resources has been identified. Anonymous access to resources prevents the resource owners and other external parties from tracing the users and their actions. Such anonymity of resource usage in Grids is needed above all in commercial contexts, e.g. protecting the development process of a new medicine by anonymizing the accesses to medical research databases. In this paper we identify the requirements and define an architecture for pseudonymity system addressing these needs. Also the protocols used between the components are defined.

IEEE Network, 2000

This article discusses the authentication and the authorization aspects of security in grid envir... more This article discusses the authentication and the authorization aspects of security in grid environments spanning multiple administrative domains. Achievements in these areas are presented using the EU DataGrid project as an example implementation. It also gives an outlook on future directions of development.

Journal of animal breeding and genetics = Zeitschrift für Tierzüchtung und Züchtungsbiologie, 2009

This study proposes a procedure to estimate genetic parameters in populations where a selection p... more This study proposes a procedure to estimate genetic parameters in populations where a selection process results in the loss of an unknown number of observations. The method was developed under the Bayesian inference scope following the missing data theory approach. Its implementation requires slight modifications to the Gibbs sampler algorithm. In order to show the efficiency of this option, a simulation study was conducted.

Proceedings of the 2008 …, 2008

Traditionally, grid users have been identifiable and traceable beyond reasonable doubt by their d... more Traditionally, grid users have been identifiable and traceable beyond reasonable doubt by their digital certificates. However, Grids are used in an ever-increasing variety of contexts and thus, the number of usage scenarios has augmented accordingly. In bio-medicine and other health-related fields a need for anonymous access to grid resources has been identified. Anonymous access to resources prevents the resource owners and other external parties from tracing the users and their actions. Such anonymity of resource usage in Grids is needed above all in commercial contexts, e.g. protecting the development process of a new medicine by anonymizing the accesses to medical research data bases. In this paper we identify the requirements and give an initial design for pseudonymity system addressing these needs.

Proceedings of the 25th conference on …, 2007

... Tuomas Nissi, Helsinki Institute of Physics, Finland. Mika Silander, Helsinki Institute of Ph... more ... Tuomas Nissi, Helsinki Institute of Physics, Finland. Mika Silander, Helsinki Institute of Physics, Finland. Publisher, ACTA Press Anaheim, CA, USA. ... Tuomas Nissi: colleagues. Mika Silander: colleagues. The ACM Portal is published by the Association for Computing Machinery. ...

International Journal of …, 2004

Arxiv preprint cs/ …, 2003

One of the fundamental concepts in Grid computing is the creation of Virtual Organizations (VO's)... more One of the fundamental concepts in Grid computing is the creation of Virtual Organizations (VO's): a set of resource consumers and providers that join forces to solve a common problem. Typical examples of Virtual Organizations include collaborations formed around the Large Hadron Collider (LHC) experiments. To date, Grid computing has been applied on a relatively small scale, linking dozens of users to a dozen resources, and management of these VO's was a largely manual operation. With the advance of large collaboration, linking more than 10000 users with a 1000 sites in 150 counties, a comprehensive, automated management system is required. It should be simple enough not to deter users, while at the same time ensuring local site autonomy. The VO Management Service (VOMS), developed by the EU DataGrid and DataTAG projects[1, 2], is a secured system for managing authorization for users and resources in virtual organizations. It extends the existing Grid Security Infrastructure[3] architecture with embedded VO affiliation assertions that can be independently verified by all VO members and resource providers. Within the EU DataGrid project, Grid services for job submission, file-and database access are being equipped with fine-grained authorization systems that take VO membership into account. These also give resource owners the ability to ensure site security and enforce local access policies. This paper will describe the EU DataGrid security architecture, the VO membership service and the local site enforcement mechanisms Local Centre Authorization Service (LCAS), Local Credential Mapping Service(LCMAPS) and the Java Trust and Authorization Manager. * Corresponding author (CPS), all these CA's mutually trust each other and are trusted by all resources participating in the EDG test-bed.