In a Streaming Protocol, participants exchange byte streams or character streams rather than messages. A Streaming Protocol must be initiated through a message exchange. "A firewall is a peice of hardware or software which functions in a networked environment to prevent some communications forbidden by the security policy" [Wikipedia]. A control task is an action carried out on another action. A generic concept for anything that contains zero, one or more instances. Base concept of all resources. [To do: name/address and shared/sharable (concurrent access) properties] The Globus method of mapping indenties to Xlogins. A ticket serves as a reference for resource related transactions, such as queries for available resources and the booking of resources. (From org.unicore.ajo.Ticket). [Consider renaming to Token?] A Virtual Organization is a logical entity that can span administrative domains. The Globus GRid Information Service (GRIS). 'Supplies information about a specific resource'. [From 'Analysis of the Globus Toolkit Grid Information Service']. Registered with by GRRP. Queried with GRIP. "Actions are the superclass of all the the types of action supported: job execution, data movement, control, flow control etc." (from org.unicore.ajo.AbstractAction). An action has a corresponding outcome. A collection of files that will be in the working space of an Unicore Job when it is executed. 1 "A protocol is a convention or standard that controls or enables the connection, communication and data transfer between two computing endpoints" [Wikipedia]. From RFC 1983: "A formal description of message formats and the rules two computers must follow to exchange those messages." A Protocol must have at least one message. A trusted-third-party "is an entity which facilitates interactions between two parties who both trust the third party" [Wikipedia] A Role contained in a Unicore UUDB An entities condition or status. The incarnation of a File Container. Request-response type protocol, where for every message sent a message is returned. An administrative domain offering resources. The Incarnation of an Execute Task. The Globus gatekeeper. 'An Outcome contains the results of executing an Activity'. (from org.unicore.outcome.Outcome). This is the outcome of an activity as this is the incarnated action. A trusted third-party that issues digitial certificates. A CA will issue a public key certificate which states that the CA attests that the public key contained in the certificate belongs to the organization, server or other entity described in the certificate. Grid Resource Registration Protocol (GRRP) Mirror of FIle_Output Tasks are an abstract representation of atomic units of work that may, or may not, have dependancies on other tasks. The UNICORE User Database. Contains a set of UNICORE roles with thier members. An agreement is a binding arrangement between two parties as a course of action to be taken. From OGSA Glossary: "An agreement defines a dynamically-established and dynamically- managed relationship between parties. The object of the relationship is the delivery of a service by one of the parties within the context of the agreement." A role is a logical, possibly arbitary, set of entities that allows those belonging to it to carry out some function in a particular situation. A container for zero, one or more services (e.g. tomcat, geronimo, apache, etc). Also known as a "Provider VO". Also known as "Requester federation", "User VO", or "Consumer Federation" The Globus Grid Index Information Service Protocol. 'An aggregate directory of of information from multiple GRIS services that belong to the same or multiple VO's' [From 'Analysis of the Globus Toolkit Grid Information Service']. Registration with this service is carried out by services over the GRRP protocol. Querying of this service (by consumers) is carried out over the GRIP protocol. What the QoS actually was for a resource set. Storage in the resource/provider layer. Anything that performs authentication is an Authentication Point. From OGSA Glossary: "Statements, rules or assertions that specify the correct or expected behavior of an entity." A service to log events and actions of other services. The transient working space on a target resource that a job runs in. The fact of being who or what a person or thing is. From OGSA Glossary: "An attribute, such as a name, that allows one entity to be distinguished from all others." From RFC2828: "A [gateway is a] relay mechanism that attaches to two (or more) computer networks that have similar functions but dissimilar implementations and that enables host computers on one network to communicate with hosts on the other; an intermediate system that is the interface between two computer networks". (Previously named Gateway). The person interacting with the resources. The Unicore network job supervisor (NJS) translates abstract job objects to a concrete sequence of commands and operations suitable for the selected execution platform (i.e. TSI). [Marked for deletion?] {Instance/Subconcept of a Unicore Vsite]. A lightweight layer interfacing with the underlying local resource management system. Previously known as TSI (Target System Interface). A generic concept for anything that contains zero, one or more instances of the same type. "FileTransfers move files to and from Uspaces." (from org.unicore.ajo.FileTransfer). Can cross administrative boundaries. An outcome in the form of a file. Storage that is persisted beyond the lifetime of a job. The UNICORE Protocol layer (UPL) runs over the SSL protocol and allows the sending and receiving of AJOs and attached files between a client and a gateway. It is both a Conversational Protocol and Streaming Protocol An agreed QoS is an agreed service level agreement (SLA) for a job running on a particular resource set. Synonym of SLA. "A Credential Issuer provides a third party for authenticating or acknowledging signatures on documents, atesting to the identity of a key's owner." [Wikipedia] [Has # of licenses? Only available to certian people?] The means of access to a Unicore administrative domain, or Usite. (Also the access control point to the Unicore Usite). An Incarnation is the process of concrete manifestation of an abstraction. [Do we include execution as part of the incarnation process?] A requested QoS for an action created by a client. Act of checking the authenticated credential against the policy associated with the resource. Carried out by an Authorisation Point. A service that provides information. The incarnation point translates abstract job objects to a concrete sequence of commands and operations suitable for the selected execution platform. `The values that the status of a Job can take.' An incarnation of an abstract task and runnable on a [resource]. A service level agreement (SLA) is an agreed quality of service (QoS) for a job running on a particular Resource_Set. Synonym of Agreed_Qos. A topic is a published, read-only information stream. Messages are things that are exchanged between participants in a protocol. Any particular message is immutable. Once it has been sent, it can't be changed. Messages have a definite size. A message must have a sender. But may have no recipients. A standard format PKI certificate "binding a public key to a particular Distinguished Name ..., or to an Alternative Name such as an e-mail address or a DNS-entry" [Wikipedia]. On the Grid this is used to establish the identities of entities (both people and resources). Also known as TLS. The aim or purpose of a VO. An advertised QoS is estimated information from the Vsite that includes an expected start time, end time and associated cost for running the Task. It also includes a ticket which should be included in the QoSCheck sent with the Task. Synonym Estimate. (from org.unicore.outcome.Estimate). Establishes the identity of an entity. From RFC 2828: "Data that is transferred or presented to establish either a claimed identity or the authorizations of a system entity". A collection of zero, one or more files. A Client with a GUI. A quality of service (QoS) always has a ticket (a reference for resource related transactions) associated with it. A collection of one or more resources. A user database that explicitly supprts roles. The Grid Resource Inquiry Protocol (GRIP). A Globus information enquiry protocol. Authentication is the act of verifying the credential presented. "A network area that sits between an organizations internal network and external network, usually the Internet" [Wikipedia]. An Authorisation point is the entity that checks the access policy associated with the credential. Also known as Policy Decision Point. From OGSA Glossary: "A software component participating in a service-oriented architecture that provides functionality and/or participates in realizing one or more capabilities." Or, something that accepts messages (it does not have to do anything with them). This is a WS-RF type service as it can have multiple Resources associated with it. A client run from the command line. A Unicore administrative domain. An offer is a quote for running a task/job on a particular Resource_Set [Relationship with QoS and protocol?] "An ExecuteTask represents something that will be incarnated to execute a file." (from org.unicore.ajo.ExecuteTask). "Resource Properties help determine the state of a resource" [OGSI to WSRF]. An Abstract Job Object (AJO) describes, in abstract form, an action carried out on a computational Grid. May (or may not) be executed at a Unicore_Vsite [To do: What is the relationship between a user database and the authorisation point?] [Think of a different term for this.] [Look through GGF Authentication/Authorisation documents] A conversational protocol has exactly two participants. `Permanent storage on the local computer the client is running on'. A type of requester VO specific to a UNICORE project. A users login on a physical system. "The Monitoring and Discovery System (MDS) is the information services component of the Globus Toolkit and provides information about the available resources on the Grid and their status." (From The manifestation of a task to be carried out by an execution subsystem. Can be a resource if it is usable by a client. An Agreement to use a Service. Storage at the client layer. A job preparation, submission, monitoring and control agent. [To be added: Job submission, monitoring and control properties]. [Also need to capture that Brokers, Schedulers and the UNICORE NJS act as a client when submitting jobs on behalf of a client]. Entities (files, messages, etc.) that exist before an activity is run. I.e. are inputs into an Activity. A Broker is an entity that arranges or negotiates future resource usage. [To do: what is the brokers relationship to the scheduler?] A container for zero, one or more resources. "An ActionGroup is an ordered collection of Actions.' (from org.unicore.ajo.ActionGroup)." Contains zero, one or more tasks. `The values that the status of an Action can take.' `Each job runs in a dedicated file space on the execution system called the Uspace. The Uspace only exists during the execution of the job'. A Vsite is a collection of resources where an abstract job can be accepted (but not always incarnated or run). `Permanent storage on the execution system' or `unix file space'. An authentication point authenticates credentials presented to it. An incarnation point submits jobs (incarnated actions) to a system that executes them. A protocol has one, or more, messages. A protocol is made up of one, or more, messages. Topic information is 'pulled' by the client. Topic information is 'pushed' to client. An authorisation point authorises credentials presented to it. [Is this a functional property?] When incarnation is asked for by an identity, the indentity is incarnated to the XLogin. The value of the Xlogin determines if the incarnation is allowed, i.e. it is dependant on whether the UUBDB authorises it.