Internet2 Overview, Services and Activities

1
Internet2 Overview, Services and Activities
Spring 2007 Member Meeting April 23, 2007
2
Agenda

• Internet2 Overview - Marianne Smith
• Middleware and Security - Renee Frost
• Internet2 Network Services - Heather Martinson
• Discipline Communities - Ann Doyle

3
Internet2 Mission and Goals

• Internet2 Mission
• Develop and deploy advanced network applications
  and technologies, accelerating the creation of
  tomorrows Internet.
• Internet2 Goals
• Enable new generation of applications
• Re-create leading edge RE network capability
• Transfer technology and experience to the global
  production Internet

4
What we do

• We provide our members with an Advanced
  Networking Environment to use for research and
  education
• Internet2 network backbone
• Network research
• HOPI
• IPv6, Multicast
• End-to-End Performance Initiative
• Applications and Services e.g. Commons and
  InCommon
• Middleware
• Security

5
What We Do

• We provide our members with an environment for
  partnerships and collaborations in advanced
  networking
• Among themselves and with faculty and research
  peers
• With other partners International, Federal
  agencies, K20 School networks, the Quilt
• Applications Collaborations high energy
  physicists, arts humanities, health science,
  teaching and learning

6
Internet2 MembershipA Wealth of Diversity
7
Internet2 Partnerships

• Internet2 fosters the partnerships and
  collaboration that spurred the development of the
  Internet.
• Academia
• Industry
• Government
• International

8
Internet2 Membership

• Affiliate - 43 Members
• Non-profit research or education organizations
• Corporate - 55 Members
• For-profit companies
• Research and Education Network -19 Members
• Network infrastructure providers to R E
  community
• University 209 Members
• United States institutions of higher education
• http//members.internet2.edu/

9
Internet2 Universities209 University Members as
of April 2007
10
Internet2 Corporate Members

• Focused on Realizing the Potential that advanced
  Networking, Middleware and Applications hold for
  Research and Education and Opportunity to Shape
  the Future of the Global Internet
• Broad Range of Industries
• - Technology Providers
• - Content Providers
• - Technology Consumers
• http//members.internet2.edu/corporate/

11
Internet2 Corporate Partners
12
Internet2 Corporate Sponsors

• Arbor Networks
• Campus Televideo
• Codian, Inc.
• Foundry Networks
• Glimmerglass
• inSORS Integrated Communications

• Polycom Worldwide
• RADVISION
• Raptor Networks Technology, Inc
• TANDBERG
• VBrick Systems

13
Internet2 Corporate Members

• ADVA Optical Networking
• Apparent Networks
• Arbinet
• C-SPAN
• Caterpillar, Inc.
• CommuniGate Systems
• EBSCO Information Services
• Education Networks of America, Inc.
• Fujitsu Laboratories of America
• Google
• HaiVision Systems, Inc.
• Hong Kong Cyberport Management Co. Ltd
• Johnson Johnson
• KDDI Corporation
• LifeSize Communications
• Lucent Technologies

• Napster, LLC
• Nippon Telephone and Telegraph (NTT)
• Northrop Grumman Information Technology
• OCLC Online Computer Library Center
• OpVista, Inc.
• PAETEC Communications, Inc.
• RIAA
• Red Hat, Inc.
• Ruckus Network, Inc.
• Schlumberger
• Steelcase, Inc.
• The Thomson Corporation
• Verizon Business
• VoEx, Inc
• Warner Bros.

14
Internet2 Affiliate Members

• Federal labs
• Federal agencies
• Fine arts institutions
• Health care institutions
• Performing arts organizations
• http//members.internet2.edu/affiliate/affiliates.
  cfm

15
Internet2 Affiliate Members

• NASA Goddard Space Flight Center
• NASA Marshall Space Flight Center
• National Archives and Records Administration
• National Institute of Standards and Technology
  (NIST)
• National Institutes of Health
• NOAA Washington, D.C.
• National Science Foundation
• New World Symphony
• Oak Ridge National Laboratory
• OSTN (Open Student Television Network)
• Pacific Northwest National Laboratory
• PeachNet
• Ruth Lily Health Education Center
• SURA
• TOPIX
• U.S. Census Bureau
• United Nations System of Organizations
• United States Antarctic Program
• United States Dept. of Commerce Boulder Labs

• Acuta
• Altarum
• American Distance Education Consortium
• Association of Universities for Research in
  Astronomy (AURA)
• CERN
• Charles R. Drew University
• Childrens Hospital of Philadelphia
• Cleveland Institute of Music
• Desert Research Institute
• EDUCAUSE
• ESnet
• Healthcare Information and Management Systems
  Society (HIMSS)
• Howard Hughes Medical Institute
• Indiana Higher Education Telecommunications
  System (IHETS)
• Inter-American Development Bank
• Internet Educational Equal Access Foundation
• Jet Propulsion Laboratory
• Lawrence Berkeley National Laboratory
• The Library of Congress

16
Research and Education Network Members

• US-based non-profit organization that has a
  principal mission to provide network
  infrastructure and services primarily to the
  research and education community

17
Internet2 RE Network Members

• 3ROX
• CENIC
• CEN
• KanREN
• LEARN
• LONI
• MAGPI
• MCNC
• Merit Network
• MOREnet

• MREN
• NJEDge.Net
• NYSERNet
• OARnet
• OSHEAN
• OneNet
• PeachNet
• SOX
• WiscNet

18
International Partnerships

• Ensure global interoperability
• Enable global collaboration
• 50 MOU agreements
• http//international.internet2.edu/

19
Advanced Networking Organizations around the
World
20
Networks reachable via Internet2 Network - by
country
Last updated April 2005
Europe-Middle East
Asia-Pacific
Americas
Austria (ACOnet) Belgium (BELNET) Croatia
(CARNet) Czech Rep. (CESNET) Cyprus
(CYNET) Denmark (Forskningsnettet) Estonia
(EENet) Finland (Funet) France (Renater) Germany
(G-WIN) Greece (GRNET) Hungary
(HUNGARNET) Iceland (RHnet) Ireland
(HEAnet) Israel (IUCC) Italy (GARR) Latvia
(LATNET) Lithuania (LITNET)
Argentina (RETINA) Brazil (RNP2/ANSP) Canada
(CAnet) Chile (REUNA) Mexico (Red-CUDI) United
States (Abilene)Peru (RAAP) Venezuela
(REACCIUN-2)
M Luxembourg (RESTENA) alta (Univ.
Malta) Netherlands (SURFnet) Norway
(UNINETT) Poland (POL34) Portugal (RCTS2) Qatar
(Qatar FN) Romania (RoEduNet)Russia
(RBnet) Slovakia (SANET) Slovenia (ARNES) Spain
(RedIRIS) Sweden (SUNET) Switzerland
(SWITCH) United Kingdom (JANET) Turkey
(ULAKBYM) CERN
Australia (AARNET) China (CERNET, CSTNET,
NSFCNET) Hong Kong (HARNET) Japan (SINET, WIDE,
JGN2) Korea (KOREN, KREONET2) Singapore
(SingAREN) Philippines (PREGINET) Taiwan (TANet2,
ASNet) Thailand (UNINET, ThaiSARN)
Central Asia
Africa
Algeria (CERIST) Egypt (EUN/ENSTIN) Morocco
(CNRST) Tunisia (RFR) South Africa (TENET)
Armenia (ARENA) Georgia (GRENA) Kazakhstan
(KAZRENA) Tajikistan (TARENA) Uzbekistan (UZSCI)
21
International connectivity
22
K20 Initiative
23
K20 Initiative

• Brings together Internet2 member institutions
  and innovators from primary and secondary
  schools, colleges and universities, libraries,
  and museums to extend new technologies,
  applications, middleware, and content to all
  educational sectors
• http//k20.internet2.edu/

24
State Education Networks Connected to Internet2
Network
25
Lewis and Clark Then and Now
http//ali.apple.com/lewisandclark/
26
JASON
http//www.jason.org/
27
Digital Learning Commons
http//www.learningcommons.org/
28
NEPTUNE
http//www.neptune.washington.edu/
29
An Asset for the Community
An Asset for the Community
Universities
Universities
Researchers
Researchers
Regional Networks
Regional Networks
K-12
K-12
Industry
Industry
International
International
30
Internet2 Member Community
31
Strengthening CommunityMember Engagement
Opportunities

• Join working groups, special interest groups and
  advisory groups
• http//www.internet2.edu/working-groups.htmlAdvis
  ory
• Find collaborators for discipline and
  institutional projects and grants
• Foster applications development and faculty
  outreach
• Be an early adopter of new technologies and tools

32
Strengthening CommunityMember Engagement
Opportunities

• Advisory Councils
• Projects and Initiatives
• Working Groups
• Collaborative grant efforts
• Member Meetings
• SIGs and BoFs
• Presentations
• Program Committee

33
Strengthening CommunitySupporting member
engagement

• Middleware Architecture Committee for Education
  (MACE)
• Salsa Security Advisory Group
• K20 Initiative Advisory Committee
• Health Sciences Advisory Group
• Arts Humanities Advisory Groups
• Working Groups
• Special Interest Groups

34
Strengthening CommunitySupporting member
activities and events

• Provide event planning expertise and resources
• Provide speakers
• Provide equipment
• Provide PR and communications for member events
• Spotlight member organizations and individuals
• Provide printed materials and signage

35
Cyberinfrastructure Days

• TeraGrid, Open Science Grid, Internet2 and
  EDUCAUSE collaboration
• Assist campuses in their CI planning
• Reach out to early and later-adopting disciplines
  
• Gather feedback/insight on services the national
  organizations could provide to aid campuses and
  discipline communities

36
Additional Workshops

• Arts Humanities
• Dynamic Circuit Services
• High-Energy Nuclear Physicists(Large Hadron
  Collider)
• IPv6
• Multicast
• Network Performance
• Real Time Collaboration Tools(Internet2 Commons)

37
Strengthening Community Member Accomplishments

• Advanced applications development, broad and deep
  
• Development and deployment of middleware
  capabilities, locally and nationally
• Creation and support of national high-performance
  networks, including next generation optical
  networks
• Strong partnerships with international networking
  organizations
• Focused efforts on end-to-end performance, and
  network and host security

38
Strengthening CommunityInternet2 Governance

• Creation of four new Councils that are
  heterogeneous, defined by operational function
  and more tightly connected to the membership
• Architecture and Operations Advisory Council
  (AOAC)
• Applications, Middleware, and Services Advisory
  Council (AMSAC)
• Research Advisory Council (RAC)
• External Relations Advisory Council (ERAC)

39
Strengthening CommunityInternet2 Governance

• Each Council has three seats from each of these
  constituency groups
• CIO Representatives
• Regional Network Representative
• Researcher Representative
• Industry Representative
• Open nomination process available now through May
  7th. Voting to take place in June.
• http//www.internet2.edu/about/governance/nominati
  ons.html

40
Strengthening CommunityDeveloping the new
Internet2 Network

• The design and development of the new Internet2
  Network was driven by community input.
• Group A Report
• Internet2 Community Design Workshop
• Network Advisory Group
• Network Technical Advisory Council
• One-on-one outreach to regional networking
  organizations
• Intensified discipline-specific support

41
Middleware

• Renee Woodten Frost
• Associate Director, Middleware Security
• rwfrost_at_internet2.edu

42
Integrated Systems Model
43
Middleware Infrastructure

• Focus
• Inter-institutional collaboration
• Scalable authenticated/authorized access to
  remote resources
• Internet2 role
• Defining/creating architecture Shibboleth
• Tools to implement Shibboleth, Grouper, Signet
• Infrastructure/Services to scale InCommon, USHER

44
Middleware Goals

• Create a ubiquitous common, persistent robust
  core middleware infrastructure for the RE
  community
• Foster effective consistent campus
  implementations
• Motivate institutional funding deployment
  strategies
• Solve the real world policy issues
• Integrate key applications to leverage the
  infrastructure
• Nurture open-source solutions
• Address scaling issues for the user enterprise
• Support inter-institutional inter-realm
  collaborations
• Provide tools services (e.g. registries,
  directory schema, federating software, group
  privilege management) as needed

45
(No Transcript)
46
Core Middleware Scope(aka Identity Management
functions)

• Identity and Identifiers namespaces, identifier
  mappings, real world levels of assurance, etc.
• Authentication campus technologies and
  policies, inter-realm interoperability via PKI,
  Kerberos, etc.
• Directories enterprise directory services
  architectures and tools, standard object classes,
  inter-realm and registry services
• Authorization permissions and access controls,
  delegation, privacy management, etc.
• Integration Activities open management tools,
  use of virtual, federated and hierarchical
  organizations, enabling common applications with
  core middleware

47
Internet2 MiddlewareKey Concepts

• Use federated administration as the lever have
  the enterprise broker most services
  (authentication, authorization, resource
  discovery, etc.) in inter-realm interactions
• Develop a consistent directory infrastructure
  within RE
• Provide security while not degrading privacy
• Foster inter-realm trust fabrics federations and
  virtual organizations
• Leverage campus expertise and build rough
  consensus
• Influence the marketplace develop where
  necessary
• Support for heterogeneity and open standards

48
MACE (Middleware Architecture Committee for
Education)

• Purpose - to provide advice, create experiments,
  foster standards, etc. on key technical issues
  for core middleware within higher ed create
  working groups
• Membership - Bob Morgan (UW) Chair, Tom Barton
  (Chicago), Scott Cantor (Ohio State), Steven
  Carmody (Brown), Michael Gettes (Internet2),
  Keith Hazelton (Wisconsin), Paul Hill (MIT), Jim
  Jokl (Virginia), Lynn McRae (Stanford), Mark
  Poepping (CMU), David Wasley (retired Univ
  California), Von Welch (Grid)
• International members - Brian Gilmore
  (Edinburgh), Leif Johansson (Sweden), Diego Lopez
  (Spain), Rodney McDuff (Australia), Ton
  Verschuren (Netherlands)

49
National Science Foundation Middleware Initiative
(NMI)

• NSF program to support deploy middleware for R
  E
• Two types of awards
• System Integrators to do widely used tools
  services
• Separate awards to do academic pure research
  components
• Issued periodic NMI releases of software,
  services, architectures, object classes and best
  practices
• Primary System Integrator awardees
• EDIT Internet2, EDUCAUSE, SURA
• http//www.nmi-edit.org
• Grids ISI, Wisconsin, Argonne, Michigan,
  Indiana
• Two rounds of awards 2001 and 2003

50
Landmark Work

• Consensus standards eduPerson, eduOrg,
  eduMember, eduCourse, commObject (H.350)
• Best Practices and Deployment Strategies LDAP
  Recipe, Group Management, Metadirectories,
  Enterprise Directory Implementation Roadmap,
  Authentication Implementation Roadmap
• Tools KX.509, LDAP Analyzer, LOOK
• Software systems OpenSAML, Shibboleth, Signet,
  Grouper
• Outreach CAMPs, presentations, publications,
  case studies, Extending the Reach program
• Services InCommon Federation, USHER (PKI)

51
What is Shibboleth?(federating software system)

• An architecture and policy framework supporting
  the sharing between domains -- of secured web
  resources and services
• A framework built on a Federated model
• A project delivering an open source
  implementation of the architecture and framework
• Deliverables open-source, standards-based,
  privacy-preserving federating software
• (Shib 2.0 targeted for release this summer)
• Software for identity providers (ie, campuses)
• Software for resource/service providers
• Operational Federations (scalable trust)

52
Federated Model

• Enterprises provide local authentication and
  attributes, namespaces, etc.
• Uses a variety of end-entity local
  authentication ie, PKI, username/password,
  Kerberos, two-factor
• Enterprises within a vertical sector federate to
  coordinate Levels of Assurance LOA), namespaces,
  metadata, etc.
• Provides a scalable alternative to multiple
  bi-lateral technical relationship management

53
Federations Concept
54
What is a Federation?

• A coalition of collaborating organizations
• supporting agreed upon policies
• leveraging existing identity and resource
  management technologies
• to permit fine-grained
• privacy control for online individuals and
• resource protection for a wide variety of online
  services and information.

55
Federation Fundamentals

• Members sign a contract to join.
• Members must still create Business Relationships
  with each other
• Bilateral relationships can impose additional
  policy
• The Federation does NOT
•         Collect or assert anything, except the
  necessary metadata about member
  signing keys, etc.
•         Authenticate end users
•         Provide services, though it may be
  associated with groups or buying clubs

56
Research and Education Federations

• Growing national federations
• UK, France, Germany, Switzerland, Netherlands,
  Norway, Spain, Denmark, Australia, etc.
• Stages range from fully established to in
  development scope ranges from higher ed to
  further education
• Many are Shib-based all speak Shib on the
  outside
• Several million users in the UK between JISC and
  BECTA
• US Federations
• InCommon
• State-based and University System-based
• Texas, University of California System, Maryland,
  etc.
• For library use, for roaming access, for payroll
  and benefits, etc.

57
InCommon

• Which of your critical resources require
  protection?
• Unpublished research collaboration
• Remote instruments
• Licensed content
• Financial, HR systems
• Which user population requires identity
  protection and validation?
• Students
• Faculty
• Staff

58
Purpose of the InCommon Federation?

• Establishes Prerequisites
• Official Enterprise Directory, Web Single Sign
  On,
• Middleware Identifier, Attributes, Federating
  Software (Shibboleth), Trusted CA(s)
• Operates common services required for
  interoperability (Authentication, Certificate
  Authority, Metadata)
• Helps resolve problems and disputes
• Enforces policy and practice requirements of its
  participants Participant Operational Practices
  (POP)

59
50 Current InCommon Participants

• Higher Education (35)
• Case Western Reserve University
• Clemson University
• Cornell University
• Dartmouth
• Duke University
• Florida State University
• Georgetown University
• Johns Hopkins University
• Indiana University
• Miami University
• New York University
• Ohio State University
• Ohio University
• Penn State
• Stanford University
• Stony Brook University
• SUNY Buffalo
• Texas A M University

• Sponsored Partners (15)
• Cdigix
• EBSCO Publishing
• Elsevier ScienceDirect
• Houston Academy of Medicine - Texas Medical
  Center Library
• Internet2
• JSTOR
• Napster, LLC
• OCLC
• OhioLink - The Ohio Library Information Network
• ProtectNetwork
• RefWorks, LLC
• Symplicity Corporation
• Thomson Learning, Inc.
• Turnitin
• WebAssign
• NEXT

60
US Government Federal e-Authentication Initiative

• A federation of US Gov agencies to provide
  services to each other and to the general
  population
• Services to be provisioned include NSF Fastlane,
  National Park Research and Camping Permits,
  Social Security management, export permits, etc
• Based on SAML protocol and Credential Service
  Providers to businesses and the general public
• http//www.cio.gov/eAuthentication

61
Current Middleware Activities

• Authentication - Federation Interoperability
• InCommon with federal govt e-auth federation
• InCommon with state and other national
  federations
• Authorization Grouper and Signet
• A group-oriented, role-based approach
• Presumes enterprise has structuring of
  authorizations roles
• Permits delegation, audit controls, etc.
• Implemented as attributes housed in directories
• Anchored with registries for roles, policies,
  authorities, etc.
• Authentication Implementation Roadmap
• PKI, USHER
• Middleware Diagnostics EDDY toolkit
• Virtual Organization Support

62
USHER

• U.S. Higher Education Root (USHER)Certificate
  Authority
• A public key infrastructure (PKI) supported by
  the higher education community for emerging
  deployments in research, education, and
  transactions in higher education that require
  PKI.
• http//www.usherca.org/

63
Public Key Infrastructure (PKI)

• Key Pair Private Key, Public Key
• Certificate Public Key bound to an identity,
  with usage criteria and validation mechanisms
• Hierarchical chain Rooted trust
• Uses
• True Digital Signatures
• Credentials (Authentication of Individuals)
• Encryption (Privacy)
• Authentication of Digital Objects

64
USHER Status

• Internet2 operates the USHER Root CA
• Relatively high Level of Assurance (LoA)
• Issuing campus Authority Certificates
• Subscriber Agreement posted
• Accepting applications
• 9 Expected Practices CA management and current
  policy/practice of campus identity management

65

• Security

66
Integrated Systems Model
67
Security

• Much of the middleware work, in its identity
  management and access control areas, is also a
  large part of the security space
• Security for Internet2 services
• Salsa as the point for member engagement
• Development of new security capabilities
• Short time horizon
• Medium time horizon
• Long time horizon

68
Federated Identity Management

• Federated identity leverages institutional
  Identity Management in inter-institutional
  settings
• By itself federated identity can provide
  significant security value.
• Enables flexible LOAs, improves privacy, etc.
• As a new layer of infrastructure, it can be
  leveraged to provide new security services
• Improved guest access usability accountability
• Privilege management for virtual organizations

69
Security for Internet2 Services

• Internet2 Network network operational security
  practices for continuous evaluation and
  improvement
• Securely providing trust
• InCommon Federation
• USHER

70
Salsa

• Coordinating and direction setting committee
• Chaired by Mark Poepping, CMU, with 10-12 members
  representing RE expertise
• Charters Working Groups, sets important themes
  for workshops, etc.
• http//security.internet2.edu/salsa/

71
Near-term Initiatives Computer Security
Incidents (CSI2)

• A development working group, chaired by Chris
  Misra of UMass
• Working closely with REN-ISAC at IU
• Funded in part by Dept of Justice grant
• Facilitating the secure exchange of real-time
  security information aimed at incident handlers
• Augmenting the diminishing value of signature
  analyses (due to encrypted attacks) with
  statistical analyses

72
Near-term Initiatives CSI2 Working Group (cont)

• Requirements include
• Taxonomy, syntax semantics of security events
• A protocol for the exchange (IODEF)
• Trusted parties for the transmission
• Third party facilitation for ripple effects and
  statistical analyses, working with the REN-ISAC
• Policy cover
• Outcomes to date
• RENOIR reporting system for sharing information
  regarding security incidents within an
  inter-institutional trust community
• Shared Darknets project - wide aperture analyses

73
Near-term InitiativesDisaster Recovery Working
Group (new)

• Explore
• contingency planning
• developing and testing recovery plans, policies,
  and procedures
• warm and hot site strengths, weaknesses, and
  potential pitfalls
• contractual SLA models and guidance for working
  with outside partners, including commercial
  non-for-profit network related service
  providers, and reciprocal agreements with other
  organizations or campuses
• liaising with other groups or organizations as
  appropriate.
• Develop set of best practices and services that
  would enhance individual DR/BCP capability
• Chaired by Don MacLeod of Cornell

74
Near Term Initiatives

• DNSSEC - advisory group on adopting DNSSEC has
  begun a cross-signing project, to sign at least
  one of their zones and exchange trust anchors to
  mutually validate their DNS records.
• NetGuru - a periodic meeting of senior network
  and security engineers a forum to engage in
  discussion of timely topics.

75
Mid-term Security Initiatives

• Netauth improving the act of network connection
• Effective mechanisms
• Safely including isolation and remediation
• http//security.internet2.edu/netauth/
• FWNA federated network access
• Using local authentication and attributes to
  connect the roaming user
• Intends to tie in with eduroam www.eduroam.nl
• http//security.internet2.edu/fwna/

76
Long-term Security Initiatives

• Reconnections
• Identifying issues in managing advanced academic
  networks
• Workshop October 2005
• Report at http//security.internet2.edu/rtp/docs/i
  nternet2-reconnections-proceedings-200603.html/
• Follow-up interactions with GENI and other
  efforts
• Engagement with next-generation protocols
• Engagement with vendors on silent failures,
  integration of identity management, etc.

77
Network Services

• Heather Martinson
• Sr. Program Manager, Network Services
• Spring 2007 Member Meeting

78
Outline

• Internet2 Network snapshot
• FiberCo
• MAN LAN Exchange Point
• Internet2 Network transition

79
Internet2 Network Snapshot
80
Abilene Backbone
81
Internet2 Membership
4/20/07
12/4/06

• 208 Member Universities 209
• 12 Corporate Partners 12
• 13 Corporate Sponsors 11
• 37 Corporate Members 34
• 52 Affiliate Members 46
• 48 International MoU Partners (reaching 80
  networks) 54
• Abilene Community
• 33 Connectors (14 at 1 GE or greater) 32
• 244 Participants 246
• 147 Sponsored Participants 153
• 38 Sponsored Education Group Participants
  (SEGPs) 38

82
Network Community

• New Participants
• USDA Agricultural Research Service (ARS)/BARC
• Thomson Corporation
• New Sponsored Participants
• Texas Natural Resource Information System (TNRIS)
• Smithsonian Tropical Research Institute (STRI)
• WGBH
• ARTstor
• St. Mark Grade School
• University of the Virgin Islands (UVI)

83
Federal Peers

• DC DARPA BoSSNet
• NGIX-East USGS, NREN, NISN, DREN
• Chicago ESnet
• StarLight USGS, NISN, DREN
• NYC ESnet via MAN LAN
• Seattle DREN, NREN
• Sunnyvale ESnet
• NGIX-Ames USGS, NREN, NISN, DREN
• PAIX upgraded to 10GE
• LA NREN via PacWave/LA
• Atlanta ESnet

Denotes v6 peering
84
Abilene Participants
85
FiberCo Overview

• Tool designed to support optical initiatives in
  the regionals or nationally
• Internet2 took responsibility for forming the LLC
  
• Operates on behalf of U.S. higher education and
  affiliates - Internet2 members
• Functions
• Dark fiber assignment vehicle for both national
  regional optical initiatives
• Provides services to assist members with fiber
  discovery, project management, etc.
• Trusted agent for professional services
• Dark fiber pricing agreement includes intercity
  and metro fiber, new builds through relationship
  with Level 3 Communications, Inc.
• Now offering professional services at FiberCo
  rates
• Ciena, Level 3 Communications, Fujitsu
• Pre-deployment services fiber discovery, network
  design, lab testing, staging
• Deployment colo prep, installation and test
  turn up
• Post-deployment services shared NOC, order
  processing, asset tracking

86
State and Regional Optical Networks North
America

• Alabama (Univ Alabama)
• Arizona (CENIC)
• Arkansas (AREON)
• California (CENIC)
• Colorado (FRGP/BRAN)
• Connecticut (Conn. Education Network)
• Florida (Florida LambdaRail)
• Georgia (Southern Light Rail)
• Great Plains Network (MIDnet)
• Indiana (I-LIGHT)
• Illinois (I-WIRE)
• Kansas (KU, KSU)
• Louisiana (LONI)
• Massachusetts (MIT)
• Maryland, D.C. northern Virginia (MAX)
• Michigan (MiLR and MERIT)
• Minnesota/Iowa/Wisconsin (BOREAS)
• Missouri (MOREnet/UMo)

• New England region (NEREN)
• New Mexico (NMSU, UNM)
• New York (NYSERNet, Cornell)
• Nebraska (Univ. Nebraska)
• North Carolina (NC LambdaRail)
• Ohio (OSCnet)
• Oklahoma (OneNet)
• Oregon
• Pacific Northwest (Lariat NIH BRIN, PNNL)
• Pacific Coast (NLR LLC PNWG/CENIC)
• Rhode Island (OSHEAN)
• South Eastern U.S. (SRONs)
• Tennessee (OneTenn/ORNL)
• Texas (LEARN)
• Virginia (MATP)
• Wisconsin (WiscNet/WiscWaves)
• Wyoming
• Canada
• CANARIE

(RON/universities with RFxs issued or in
process of acquiring fiber)
(RONs in red have made dark fiber acquisitions
through FiberCo)
87
87 Networks Reachable via Internet2 Network
Europe-Middle East
Asia-Pacific
Americas
Europe (GEANT2) Austria (ACOnet) Belgium
(BELNET) Croatia (CARNet) Czech Rep.
(CESNET) Cyprus (CYNET) Denmark
(Forskningsnettet) Estonia (EENet) Finland
(Funet) France (Renater) Germany (G-WIN) Greece
(GRNET) Hungary (HUNGARNET) Iceland
(RHnet) Ireland (HEAnet) Israel (IUCC) Italy
(GARR) Jordan (JUNET) Latvia (LATNET) Lithuania
(LITNET) Luxembourg
(RESTENA)
Latin America (redCLARA) Argentina
(RETINA) Brazil (RNP2/ANSP) Canada (CAnet) Chile
(REUNA) Colombia (RENATA) Costa Rica
(CR2Net) Guatemala (RAGIE) Mexico
(Red-CUDI) Nicaragua (RENIA) Panama (RedCyT) Peru
(RAAP) Uruguay (RAU2) Venezuela (REACCIUN2)
Malta (Univ. Malta) Netherlands (SURFnet) Norway
(UNINETT) Palestinian Territories
(Govt Computing Center) Poland
(PIONIER) Portugal (RCTS2) Qatar (Qatar
FN) Romania (RoEduNet)Russia (RBnet,
RUNNET) Slovakia (SANET) Slovenia (ARNES) Spain
(RedIRIS) Sweden (SUNET) Switzerland
(SWITCH) Syria (HIAST) United Kingdom
(JANET) Turkey (ULAKBYM) CERN
Australia (AARNET) China (CERNET,
CSTNET,NSFCNET) Fiji (USP-SUVA) Hong Kong
(HARNET) India (ERNET) Indonesia (ITB) Japan
(SINET, WIDE, JGN2) Korea (KOREN,
KREONET2) Malaysia (MYREN) New Zealand
(KAREN) Philippines (PREGINET) Singapore
(SingAREN) Taiwan (TANet2, ASNet) Thailand
(UNINET, ThaiSARN) Vietnam (VINAREN)
Central Asia
Africa
Algeria (CERIST) Egypt (EUN/ENSTINET) Morocco
(CNRST) Tunisia (RFR) South Africa (TENET)
Armenia (ARENA) Georgia (GRENA) Kazakhstan
(KAZRENA) Tajikistan (TARENA) Uzbekistan (UZSCI)
88
MAN LAN Exchange Point

• Partnership with NYSERNet, Indiana University, I2
  and the IEEAF
• Provides a high performance exchange facility for
  research and education networks
• Located at 32 AoA in NYC - easy interconnection
  to many national and international carriers and
  other research and education networks
• Peering model is open and bilateral
• Cost recovery model - minimal connection charges
  for layer 2 facility, none for layer 1
  connections
• Working with AtlanticWave on distributed exchange
  point along U.S. East Coast (NYC?Miami)

89
MAN LAN Services

• Layer 2 - Ethernet switch for IPv4/v6 peering
  with 1GigE and 10 GigE interfaces
• Cisco 6513
• Layer 1 - TDM based optical equipment (SONET /
  Ethernet interfaces)
• Cisco 15454
• Nortel OME 6500
• Nortel HDX
• MAN LAN website http//networks.internet2.edu/m
  anlan/

90
MAN LAN Contacts

• For international connection requests please
  contact, Heather Boyles heather_at_internet2.edu
• For domestic connection requests please
  contact, Christian Todorov ctodorov_at_internet2.edu

91
Internet2 Network Overview Transition Plan
92
(No Transcript)
93
(No Transcript)
94
Transition Timelines

• PHASE 1 New York, Philadelphia, Washington,
  Pittsburgh, Cleveland, Chicago, Boston
• Internet2 and Connector Site Design
  Discussions Complete
• Colocation Planning, Connector Coordination Compl
  ete
• Colocation Availability and Equipment
  Installation Complete
• Wave Availability and Backbone Turn Up Complete
• Connector Cutover and Abilene Node Turn
  Down Complete (except for old DC router)
• PHASE 2 Raleigh, Atlanta, Nashville, Louisville,
  Indianapolis
• Internet2 and Connector Site Design
  Discussions Complete
• Colocation Planning, Connector Coordination Compl
  ete
• Colocation Availability and Equipment
  Installation Complete
• Wave Availability and Backbone Turn Up Complete
• Connector Cutover and Abilene Node Turn Down In
  progress (Louisville Memphis 5/5)
• PHASE 3 Kansas City, Tulsa, Houston, Baton
  Rouge, Jacksonville, Albuquerque, Denver
• Internet2 and Connector Site Design Discussions
  Complete
• Colocation Planning, Connector Coordination Compl
  ete
• Colocation Availability and Equipment
  Installation Complete
• Wave Availability and Backbone Turn Up Partially
  Complete
• Connector Cutover and Abilene Node Turn Down
  4/19/07-5/20/07
• PHASE 4 Salt Lake City, Seattle, Portland, Los
  Angeles

95
Network Design

• Built on dedicated fiber from Level(3)
  Communications 13,000 mile footprint
• Built on Infinera innovative optical technology
• Simple and convenient add/drop technology
• Simple and convenient wave setup
• Demonstrated high reliability in initial period
  of operation on the Level(3) network
• Architecture has maximum flexibility
• Every direct connector can access every wave on
  the system if needed
• Adding add/drop points doesnt require network
  redesign

96
Network Objectives

• Ensure community control of underlying network
  infrastructure
• Leverage capabilities of a global
  telecommunications leader
• Carrier class reliability and expanded breadth of
  services
• Capitalize on latest technology in networking
• Create an asset that benefits entire community
• Researchers, universities, regional optical
  networks, industry, government, K-12, and the
  international community

97
Services

• Over-provisioned IP network IPv4 and IPv6,
  multicast
• Opt-in commodity peering
• Circuit-based services
• Static Services - Configured by our NOC
• Ethernet or SONET Framed Lambda - Directly on the
  Infinera wave equipment through client interface
• Connections can be through a dense set of
  locations across the US
• SONET Circuits through the Ciena equipment
• Dynamic Circuit Service
• Create Circuits in seconds for periods of hours
  to days
• Only through the Ciena equipment at the start,
  eventually evolving to the full platform
• Off-net Waves available via WaveCo to reach
  sites off the Internet2 Network footprint

98
Network Capacities

• Initial capacity 10x todays network
• 10 wavelengths at 10 Gbps
• Future capacity nearly unlimited
• 40 Gbps and 100 Gbps wavelength capabilities
• Unlimited additional wavelengths available
• Rapid provisioning of dedicated circuits
• Flexibly-sized circuit capacity

99
Timeline

• Finalized architecture with Level(3) and our
  connectors
• Worked with each of Internet2s 32 current
  connectors and key partners to identify
  colocation requirements / node locations / etc.
• Colocation space is being built out
• First segments from NYC-Chicago turned up
  November 20, 2006
• NYSERNet was the first US based connector to
  migrate traffic to the New Internet2 Network
• Deployment complete by June 2007 78 complete as
  of April 20, 2007
• Transition from Abilene to the new Internet2
  Network to be completed by Oct 2007

100
Discipline Communities

• Ann Doyle
• Program Manager
• Member and Partner Relations
• Spring 2007 Internet2 Member Meeting

101
High Energy and Nuclear Physics (HENP)

• Physicists are generating Terabytes of data
  (1,000,000,000,000 or 1x1012) per experiment from
  the CERN lab in Switzerland
• Types of network usage
• Bulk data transfers
• multicast and low-latency/jitter networks for
  effective video conferencing

102
NEES Earthquake Research

• Remote control of computer simulations
• Video is crucial for conferencing and as
  scientific data
• Types of network usage
• Remote control of resources
• Bulk data transfer and distributed data storage
• Video as data

103
VLBI

• Astronomers collect data about a star from earth
  based antennae.
• End goal is to send data at 1Gb/s from over 20
  antennae located around the globe.

• Types of network usage
• Long time duration data streaming
• Distributed data storage, real-time dynamic
  retrieval,
• and distributed processing

104
University of Southern California
Shoah Foundation Institute For Visual History and
Education

• A 180 terabyte multimedia archive of Holocaust
  testimonies
• Currently being accessed by
• University of Southern California
• Rice University
• Yale University
• University of Michigan

105
Master Classes

• Active involvement
• Columbia University
• Manhattan School of Music
• Cleveland Institute of Music
• New World Symphony
• Curtis Institute of Music
• University of Michigan
• Eastman School of Music
• University of Oklahoma
• Florida State University
• Wayne State University
• Indiana University
• And many others

Michael Tilson Thomas
Pinchas Zukerman
106
Bradley University The Adding
Machine (Elmer Rice's 1923 classic play)

• Bradley University
• University of Central Florida
• University of Waterloo
• Multicast DVTS

107
Key Health Science Members

• 112 Academic Medical Colleges (AAMC) and
• their medical centers
• 130 Health Science related colleges
• Public Health, Nursing, Dentistry, Pharmacy
• Affiliate Members
• NIH, NSF, NASA, NOAA
• Howard Hughes Medical Institute
• Pharmaceutical Companies
• Johnson Johnson, Pfizer, Eli Lilly
• Industry
• Prous Science, Cisco, IBM, Microsoft, SUN,
  Polycom, Haivision
• Partnership with Health Information Management
  Systems Society (HIMSS)

108
Internet2 Health Science Communities

• Clinical Practice
• Remove constraints
• Time
• Size
• Distance
• Examples
• DREAMS
• Center for Surgical Innovation

109
Research Team of the FutureCancer Biomedical
Informatics Grid

• Global Cancer Research Community
• Grid deployment to Cancer Centers
• Bioinformatics infrastructure
• Public data sources

Funded by NCI/NIH http//cabig.nci.nih.gov/ Davi
d States, MD, PhD
110
Recent Federal Communications Commission Order

• Establish pilot program to support the cost of
  connecting the state or regional networks to
  Internet2 and NLR.
• By connecting to national backbone, health care
  providers at the state and local levels will have
  the opportunity to benefit from advanced
  applications in continuing education and
  research.

111
Cyberinfrastructure VisionMore Than High-End
Computing and Connectivity

• Making greater capabilities available across the
  science and engineering research communities
• Allows applications to inter-operate across
  institutions and disciplines
• Ensures that data and software are preserved and
  easily available to all
• Empowers enhanced collaboration over distance and
  across disciplines
• Report of the National Science Foundation
  Blue-RibbonAdvisory Panel on Cyberinfrastructure

112
Contact Information

• Discipline Communities - Ann Doyle 
  adoyle_at_internet2.edu
• Middleware and Security - Renee Frost -
  rwfrost_at_internet2.edu
• Cyberinfrastructure Russ Hobby
  rdhobby_at_internet2.edu
• E2E Performance Tools - Eric Boyd
  eboyd_at_internet2.edu
• The Commons and  RTC Services - Jonathan Tyman
  tyman_at_internet2.edu
• InCommon and PKI/Usher Services - John Krienke
  jcwk_at_internet2.edu
• Internet2 Network and FiberCo Professional
  Services - Steve Cotter scotter_at_internet2.edu
• Member Support and Outreach Activities -  
  Marianne Smith  - melser_at_internet2.edu

113
(No Transcript)