Author:
Adye T,Bockelman B,Ellis K,Freyermuth O,Furano F,Ganis G,Hanushevsky A,Ito H,Johnson I,Keeble O,Litvintsev D,Manzi A,Millar P,Mkrtchyan T,Patargias G,Rossi A,Severini H,Simon M,Sindrilaru E,Yang W
Abstract
A Third Party Copy (TPC) mechanism has existed in the pure XRootD storage environment for many years. However, using the XRootD TPC in the WLCG environment presents additional challenges due to the diversity of the storage systems involved such as EOS, dCache, DPM and ECHO, requiring that we carefully navigate the unique constraints imposed by these storage systems and their site-specific environments through customized configuration and software development. To support multitenant setups seen at many WLCG sites, X509 based authentication and authorization in XRootD was significantly improved to meet both security and functionality requirements. This paper presents architecture of the pull based TPC with optional X509 credential delegation, and how it is implemented in native XRootD and dCache. The paper discusses technical requirements, challenges, design choices and implementation details in the WLCG storage systems, as well as in FTS/gfal2. It also outlines XRootD’s plan to support newer TPC and security models such as token based authorization.
Reference18 articles.
1. The Large Hadron Collider, accessed at https://home.cern/science/accelerators/largehadron-collider
2. Allcock W., “GridFTP: Protocol Extensions to FTP for the Grid. Global Grid” ForumGFD-R-P.020, 2003.
3. Worldwide LHC Computing Grid (WLCG), accessed at http://wlcg.web.cern.ch
4. xrootd.org, accessed at http://www.xrootd.org
5. File Transfer Service, accessed at https://fts.web.cern.ch/.
Cited by
1 articles.
订阅此论文施引文献
订阅此论文施引文献,注册后可以免费订阅5篇论文的施引文献,订阅后可以查看论文全部施引文献