Networks ∙ Services ∙ People www.geant.org

Michael Enrico

TAC meeting 2015

(or network-centric middleware in R&E)I say Middleware, you say Identity

15th June, Porto

CTO, GEANT

Networks ∙ Services ∙ People www.geant.org 2

A few observations

• “Networking is exciting again!”• A quote attributable to many people

• Why? Because of “Software-ization” of the network• manifested today in buzz around SDN & NFV

• Long and distinguished history of middleware development in R&E (networking) world

• Much (most?) of it in Trust & ID space

• How about network-centric middleware?• Some in past – e.g. OpenNaaS• More of late…

Networks ∙ Services ∙ People www.geant.org 3

A few more observations

• R&E funders long been keen on seeing Innovation with IMPACT resulting from their funding

• (At least for GÉANT) EC like to see R&E leading the way, with industry following• Was the case in the early of the Internet; is it so true today?

• Corollary – EC always keen to see engagement with (INPUT TO) SDOs• Some going on but not particularly easy for many reasons• The place of SDOs these days? Are they getting too slow?

• Are de facto “standards” more likely to emerge from “open” special interest or industry member organisations or OSS development communities?(or even commercial players with early mover advantage and/or market share –cf Amazon EC2 API)

• Are OSSs more relevant (esp to R&E) than the SDOs?• See blog entry from David Ward “Open Standards, Open Source, Open Loop”

http://blogs.cisco.com/news/open-standards-open-source-open-loop

Networks ∙ Services ∙ People www.geant.org

Dark Fibre Test bed - Photonic Level Access to Long Haul Dark FibreSoftware Defined Networking Open Flow facility/test bed use Novel uses of Bandwidth on DemandOptical Terabit demonstrator

Clean Slate Design for FI Architecture Flexible Optical Network Multi-Domain Optical Modelling ToolAlien Wavelength over GÉANT

Network as a Service OGF NSI compliant CTSCDN capabilities for RENHigh-Availability Networking

Dynamic trust model protocolsAuthentication mechanism supporting higher LOA Building support for external attribute authorities IEEE802.1X and EAP – standards-based approach Scalable ubiquitous access to networks & cloud services

Network Architecture

Technology Testing

Identity and Trust

Up to 5 projects

Focused R&D

Open innovation

Facilities

Building the Programme for GN3plus Open CallThemes and Topics…

Networks ∙ Services ∙ People www.geant.org

DREAMER = Distributed REsilient sdnArchitecture MEeting carrier grade Requirements

Partners: CNIT, CREATE-NET, GARR

OF/SDN CP ≡ IP/MPLS CP(with CG resiliency & fault mgmt)

Scientific & experimental dimensions

Data plane software – developed OSHI (open source hybrid IP/SDN networking)

Services considered – IP P2P VLL & Layer2 PW

Control plane – exploited & contributed toONOS controller (ICONA)

Developed experimental tools – Mantoo (mgmttools) which include a web front-end called Topology 3D

Continuing to use Testbed (GTS)

Results being actively used in GN4-1 JRA2

5

Examples of ProjectsDREAMER (from FACILITIES theme)

Virtual ports

Physical interfaces

IP Forwarding Engine – IP FE(Linux networking)

IP Routing Daemon(Quagga)

IP

SDNOF Capable Switch - OFCS

(Open vSwitch)

LocalManagementEntity (LME)

Demo at ONSThis week!GTS playing a key role

Networks ∙ Services ∙ People www.geant.org

SENSE = Secure Enterprise Networks finally Simple and Easy

Partners: PSNC & RESTENA

Greatly improve enterprise WIFI authentication landscape

Make EAP protocol supplicants more secure, user friendly & feature rich

Multi-platform config file format for EAP parameters – 2 versions of an IETF Internet draft (XML & Yang)

Defined metrics for assessment of supplicants

EAPlab - toolkit including conformance testing

Written & published 2 supplicants –Android & Linux

6

Examples of ProjectsSENSE (from FOCUSSED R&D theme)

Networks ∙ Services ∙ People www.geant.org

CoCo = On Demand Community Connection Service for eScience Collaboration

Partners: SURFnet & TNO

About flexible connectivity solutions based on SDN

On-demand multipoint L3 VPNs

Addressed “DNA Sequencer as a Service” as an eScience use case

Used and contributed to OpenDaylight(Helium release)

Developed an automated user level test environment

Created a Mininet-based simulation environment

Ericsson & SURFnet taking some of the CoCo outputs into OpenDaylight (Lithium release)

7

Examples of ProjectsCoCo (from OPEN INNOVATION theme)

Networks ∙ Services ∙ People www.geant.org

CLASSe = Cloud-ABFAB Federation Services in eduroam

Partners: Unis of Murcia & Kent

ABFAB = Application Bridging for Federated Access Beyond web

Investigate ABFAB for Cloud Services using a ref implementation of integration of Moonshot into OpenStack

Contributed code to OpenStack main branch (Icehouse, Juno and Kilo releases)

Improvements to VO management in OpenStack (PoC code only so far)

IETF Internet Draft – into the ABFAB WG

8

Examples of ProjectsCLASSe (from FOCUSSED R&D theme)

Session 4ATuesday 11-12:30Opening Up OpenStack’s Identity Service

Networks ∙ Services ∙ People www.geant.org 9

Examples of ProjectsA selection from the rest…

ARESAdvanced CDNs based on Active NetworkingUni Perugia & GGB

http://www.geant.net/opencall

DynPacDynamic Path Computation Framework(SDN with PCE)Uni of Basque Country

IRINAInvestigating RINA in ng-GÉANT/NRENiMinds, TSSG, Nextworks & i2CAT

Session 5CTuesday 14:00-15:30DynPaC: Dynamic and Adaptive Traffic Engineering for SDNs

RINAfest today!Opening plenary today with John DayPLUS Session 2CMonday 16:00-17:30

Networks ∙ Services ∙ People www.geant.org

REGARDING TESTBEDS:

• PlanetLab• e.g. slice-based federation architecture – for federating testbeds

• GENI programme• ICT FIRE programme

• Including Fed4FIRE

10

Other network-centric middleware in R&E

FI-WARE Generic Enablers (GEs)

A FI-WARE Generic Enabler (GE): set of general-purpose platform functions available through APIs Building with other GEs a FI-WARE Reference Architecture

FI-WARE GE Specifications are open (public and royalty-free)

FI-WARE GE implementation (FI-WARE GEi): Platform product that implements a given GE Open Spec There might be multiple compliant GEis of each GE Open Spec Available FI-WARE GEis published on the FI-WARE Catalogue

The FI-WARE project will deliver at least one reference implementation of FI-WARE GEs:

• Based upon results of previous R&D projects• Publicly available Technical Roadmap updated in every release• Licensed with no costs within the FI-PPP program• Commercialized under FRAND conditions or license as open source

11

FI-WARE: Targeting developers needsWhat How

12

Security EnablersEnsuring Privacy, Security and Trust

Business & Delivery Framework(revenue-share, cross-selling, …)Reach target users, monetize

Connect apps to the physical world

Benefit from open innovation(crowd-sourcing, apps composition)

Manage open data at large scale and transform it into knowledge

Integration and Composition Enablers

IoT-M2M Enablers

Data/Context Enablers

Built-in APIs & tools

Take the most of infrastructures while keeping costs lower and under control Advanced Cloud Enablers

access from everywhere, adapt to devices

Enablers easing interface to Network and Devices

Rich web-based User Experience Advanced UI Enablers

Networks ∙ Services ∙ People www.geant.org

• TAC views on interplay between SDOs and OSS dev?• How well positioned is GÉANT community to contribute to OSS

development communities?

• Should we strive to do more?• If so, how do we achieve this?• Employ more software engineers?

• Can they realistically be retained?• More open call like actions?• Would NRENs spend their own money on this?

• Any other point anyone would like to make?

13

For discussion

Networks ∙ Services ∙ People www.geant.org

middleware/ˈmɪdəlˌwɛə/

noun 1. computer software that has an intermediary function between the various applications of a computer and its operating system Word Origin C20: from middle + (soft)ware

14

Definition (Collins English Dictionary)

Networks ∙ Services ∙ People www.geant.org

Middleware is a computer software that provides services to software applications beyond those available from the operating system. It can be described as "software glue".[1]

Middleware makes it easier for software developers to perform communication and input/output, so they can focus on the specific purpose of their application.

Middleware is the software that connects software components or enterprise applications. Middleware is the software layer that lies between the operating system and the applications on each side of a distributed computer network. Typically, it supports complex, distributed business software applications.

15

Definition (from Wikipedia)