Skip to end of metadata
Go to start of metadata

R2 COI Subsystem Content

The following is a functional decomposition of the components which make up this subsystem.The content and structure of this page are described on the Release Construction Plan Overview page.

WBS # Subsystem Name
Start Date
End Date
1.2.3.12 Common Operating Infrastructure 9/1/09
11/18/13
1.2.3.12.2 Common Operating Infrastructure - Release 2 5/2/11
11/6/12

Release Plan

See Release 2 Construction Plan.

Subsystem Description:

The Common Operating Infrastructure subsystem is a task and product account responsible for providing the services and distributed infrastructure to build a secure, scalable, fault-tolerant federated system of independently operated observatory components.

Release 2 Focus

The focus of COI-R2 is to extend and utilize the COI-R1 functionality by delivering the following services:

  • Federated Facility Services—provides management and governance services for a collection of resources on behalf of a group or individual. It represents the domain of authority for the set of resources managed by the facility. The governance services provide for the following set of collaboration agreements: membership, partnership, federation, and delegation. Delegation, for example, is used to give a marine observatory the rights to operate/manage a research team’s instrument on their behalf.
  • Capability Container & Distributed Service Infrastructure — provides the distributed service infrastructure for the secure, scalable, and fault-tolerant operation and federation of the Facilities (operational domains of authority) that comprise the deployed system of systems: Presentation Framework - the web services and browser presentation containers as well as the web user interface “portlet” building blocks; Governance Framework - identity and policy management to govern the use of resources by participants through policy enforcement and decision services; Service Framework - provisioning, federating, delegating, and binding service interactions between resources; Resource Framework - provisioning, managing, and tracking the use of resources; Distributed State Management - managing active and persisted distributed state; Federated Message Exchange - messaging, bulk data transfer, guaranteed data transfer, and provisioning streaming media channels.
  • Resource Lifecycle Services—resource management services to transition a resource from cradle to grave.

Subsystem Service Groups

This release for this subsystem is composed of the following subsystem service groups:

WBS # Service Group
1.2.3.12.2.21 Identity & Policy Management (Part 2)
1.2.3.12.2.22 Federated Facility and Governance (Part 1)
1.2.3.12.2.23 Capability Container & Distributed Service Infrastructure (Part 2)
1.2.3.12.2.24 Resource Lifecycle Management


Open Issues

  • The Service Group titled Capability Container & Distributed Service Infrastructure is still referred to by a previous title Enterprise Service Bus & Capability Container in the project plan
  • An additional service component "Python Capability Container" was added to the Capability Container & Distributed Service Infrastructure Part 2 Service Group outside of the official WBS list.
  •  

1.2.3.12.2.21 - Identity & Policy Management (Part 2)


Services that provision and securely manage information about participants used in the governance (i.e. authentication, authorization) of their activities across the network. The services ensure that personal information is owned and its exposure to other participants is controlled by the participant.

Service Components
       
Title Description LCO LCA IOC
CIlogon integration Integrate with CIlogon for web user authentication.
OOI policy specification standard Define an OOI standard policy language for policy specifications. Need to be able to capture domain attributes, governance attributes. Extensible. Support multiple policy sets, relate multiple policy sets. Express policies about policies. Policies relying on contextual attributes. Independent of representation format and location. X X
X
Actor identification Capability to provide identities to and identify a resource or an acting process in the system.   X
X
Secure messaging Decorate messages on send with requester identity and attributes. Verify identity on receiver side. Supports multiple domains of authority. Part of the capability container infrastructure.
Policy management and enforcement Definition of policy for resource and service access, in the context of
Orgs. Policy includes access control but also general rules on interactions in the system. Policy also defines resolution actions in case of violated policy. Provides capabilities to store and retrieve policy and templates for policy definitions, aka attribute authority. The capability container applies policy and determine access to resources and services. Use of role-based access control. Queries attribute authority (policy repository). Realizes policy enforcement and decision points.
User profile management Capability to manage user profiles and multiple identities associated with one ION user id. X X
X
CIAD COI OV User InterfacesIdentity and policy management UI components Screens and plug-ins to the Web UI and application integration services related to identity management service and user profile management     X
Auditing support Trace all access to resources and services and other important actions in the system with references to the acting identity. Configurable. Publish auditing information using the messaging service. Configuration of a repository to store and retrieve audit traces and other auditing information. User interface to configure auditing; access audit information     X
         
Use Cases
       
Title Description LCO LCA IOC
UC.R2.42 Define Resource Policy Operator defines policy for a specific resource, system enforces it X
X X




Service Group Descriptions

A detailed explanation for the meaning of the LCO, LCA and IOC milestone deliverables which are checked in the tables below can be found on the Release Construction Plan Overview#Deliverables page.

1.2.3.12.2.22 - Federated Facility and Governance (Part 1)


Provides the management and governance services for a collection of resources on behalf of a group or individual. The Federated Facility represents the domain of authority for the set of resources managed by the facility. The governance services provide for the following set of collaboration agreements: membership, partnership, federation, and delegation. Delegation, for example, is used to give a marine observatory the rights to operate/manage a research team’s instrument on their behalf.

Service Components
       
Title Description LCO LCA IOC
OOI contract and commitment model Defines the OOI standard electronic contract and commitment electronic representation. This is the basis for reasoning about contracts and policy in the system. Contracts are aggregates of commitments and frame new commitments. X X X
Electronic contract and commitment representation Implementation of manipulation capabilities for electronic representations of contracts and commitments. X X X
Federated facility management Services to define and administer a facility (synonymous Org, community), to enroll/remove members and to provide access to the resources of an Org to enrolled or affiliated entities (identities). Contains contract and commitment repository X X X
Facility affiliation Capability to affiliate a facility with another facility for purposes of member cross-access and resource sharing. Affiliation can be as peer or as subordinate. X X X
Conversation framework Store and retrieve types of conversations (interaction patterns) and track instances of conversations. Identifies the roles of conversations and tracks their binding to executing entities in the system. Conversation types are specified with governance annotations X X X
[Governance agent ] Implementation of an agent as capability container process providing governance related capabilities: Enrollment with a facility, negotiation with other entities, projection of policy for access control. Contains local commitment and policy knowledge base. Integrates with the capability container through PEP and PDP. X X X
Resource agent Implementation as a specialization of a capability container process with the purpose to front and represent attributes and state of a resource and to enables to control the resource. X X X
CIAD COI OV User InterfacesFacility management UI components Screens and plug-ins to the Web UI and application integration services related to the management and operation of facilities, in particular the ION facility.     X
         
Use Cases
       
Title Description LCO LCA IOC
UC.R2.30 Define Interaction Describe pattern of interaction between actors X X X
UC.R2.32 Conduct Negotiation Negotiate agreement (or not) between agents X
X X
UC.R2.33 Enroll in an Org Enter as a member into an Organization (Org) X X X
UC.R2.34 Share an Org Resource Collaborate with Org member offering a resource   X
X
UC.R2.35 Share Affiliated Orgs' Resources-Deprecated Orgs form a contract to allow resource sharing     X
UC.R2.36 Create an Org Create an Organization (Org) with defined characteristics X X X
UC.R2.37 Control Service Interactions System monitors, logs, and validates service-to-service interactions     X
UC.R2.39 Manage ION Users Establish ION-wide policies and capabilities to manage users. X
X X
UC.R2.40 Monitor ION Resources View status of any ION resource and accesses to it. X X X



1.2.3.12.2.23 - Capability Container & Distributed Service Infrastructure (Part 2)

Extends the capability container and distributed service infrastructure with advanced concepts in the context of multiple federated facilities and domains of authority, federations of the Exchange infrastructure, federated Exchange messaging, different modalities of presentation.

Service Components
       
Title Description LCO LCA IOC
Federated services framework Federating, delegating, and binding service interactions between resources. X X X
Python Capability Container Refinement and rework of the Python Capability Container X
X X
CIAD COI SV Java Capability ContainerJava Capability Container Implementation of the capability container architecture for Java technologies. X
X X
Distributed Service Infrastructure Provide an infrastructure to define system interfaces, access system configuration, bootstrap a system of multiple containers and services, update interfaces during runtime and manage system configuration.
Python Capability Container extension Revise and extend the Python capability container to make it ready for the needs of Release 2 capabilities. This includes a flexible service interface model, a flexible object interface and encoding model. Also apply performance improvements.
Exchange management Adding new brokers to the messaging framework. Managing broker instances. Managing messaging framework properties. X X X
Federated messaging support Messaging service with multiple independently operated Exchanges or message brokers joining a federation. Traffic routing based on subscriptions to exchange points. X X X
Federated service discovery Framework supporting the discovery of services across federated organizations.   X X
External service presentation framework Can project SOA services to the environment   X X
Object model and distributed state Enhance the Distributed State Management capabilities. This includes the object model and various applications thereof.
CIAD UX OV Presentation FrameworkExtended web UI presentation platform Extension of Web User Interface platform from R1, to include more advanced capabilities reflecting user research during this release. X X X
Non-web-UI user agent support Execute requests on behalf of non-web-UI user agents, such as capability container installations in user facilities. X X X
System administration and operation UI components For monitoring and execution of basic actions affecting the distributed service infrastructure. Provides an operator console.     X
         
Use Cases
       
Title Description LCO LCA IOC
UC.R2.31 Define New Service Interface Add new service to system capabilities X X X
UC.R2.41 Recover Failed Process Peer worker processes gracefully recover a failed process and its state.   X X
UC.R2.43 Operate Message Brokers Run ION with multiple simultaneous Exchange message brokers   X X



1.2.3.12.2.24 - Resource Lifecycle Management


Capabilities for managing the lifecycle of resources registered in the system from cradle to grave, specific by resource type under the application of policy.

Service Components
       
Title Description LCO LCA IOC
Resource metadata management Services to continuously maintain and update metadata for resources throughout the cradle to grave lifecycle. X X X
Resource life-cycle model Define a resource life-cycle model generic for all OOI resources
Resource life-cycle definition Track resource life-cycle state for all OOI resources
Resource life-cycle policy Enforce policy when resource life-cycle changes occur. Support the definition of policy related to resource life-cycle
New resource application Services that manage the application of a resource to join the OOI network, and the response to that request after testing the interface for compliance with marine operator specifications.   X X
New resource identity management Services to verify the identity and authenticate/authorize a resource for operation on the OOI network using the IdM services X X X
New resource verification Services to support the calibration and testing of resources installed on the OOI network.   X X
New resource deployment Services to support the deployment, transition to an operational state, commissioning, recovery and decommissioning of a resource on the OOI network. Includes the requirement to capture ancillary metadata such as ship logs or video from the deployment and recovery steps. X X X
Resource operation support Services to support the normal operation of resources on the OOI network, including maintenance and upgrading. X X X
Resource tracking support Services to support the tracking of resource status, including location and repair state, from acquisition to disposal.   X X
CIAD CEI OV User InterfacesResource lifecycle UI components Screens and plug-ins to the Web UI and application integration services related to the management and operation of resources, in particular the resource services for basic resources.     X
         
Use Cases
       
Title Description LCO LCA IOC
UC.R2.38 Define and Use Resource Life Cycle Describe obligatory state model for given resource type. X X
X

Labels

r2-constructionplan r2-constructionplan Delete
Enter labels to add to this page:
Please wait 
Looking for a label? Just start typing.