 |
Projects |
|
|
Projects |
|
ASTRAL is a formal specification language for real-time systems. The structuring mechanisms in ASTRAL allow one to build modularized specifications of complex systems with layering. A real-time system is modeled by a collection of state machine specifications and a single global specification. The ASTRAL Software Development Environment (SDE) is an integrated set of design and analysis tools based on the ASTRAL formal framework. The tools that make up the SDE are a syntax-directed editor, a specification processor, a verification condition generator, a browser kit, a model checker, and a mechanical theorem prover.
Diaper is a framework for enabling least privilege network security policies based on dynamic perimeter control. Diaper observes the behavior of network services to identify the specific inbound perimeter access that is required at any given time and dynamically adjusts the ACLs of a perimeter enforcer to open and close the perimeter accordingly. It supports inbound access for both clients and servers and is completely transparent to external users. Internal services must be invoked slightly differently, but no source code modifications nor changes to user usage patterns are required. Through the use of the Diaper framework, each site can have the tightest perimeter policy possible and yet still communicate at the highest bandwidth with almost any multiport application.
Mesh is a secure, lightweight grid middleware that is based on the addition of a single sign-on capability to the built-in public key authentication mechanism of SSH using system call interposition. Resources may be added to a Mesh-based grid in a matter of minutes using just five small files and two environment variable settings. Mesh adheres to fundamental security principles and was designed to be compatible with strong security mechanisms including two-factor authentication, SSH bastions, and restrictive firewalls. Mesh uses a remote command model, which is based on stock SSH clients and the syntax and commands already understood by users, thus requires no additional software or knowledge to utilize effectively. Several existing services have been integrated with Mesh to provide resource discovery and query, high performance file transfer, and job management.
The Naturalization Service is a service for automatically naturalizing user applications to grid resources. The functions of this service include (1) automatically identifying the dependencies of user applications with support for executables, shared libraries, Java classes, and Perl and Python programs, (2) establishing a suitable environment by transferring dependent software and setting key environment variables necessary for each application to run, and (3) managing a flexible software catalog, which is used to locate software dependencies based on both centrally managed and user controlled mappings.
Pour is a general-purpose information service framework designed to accommodate a wide variety of information types with support for high volume, low frequency periodic updates, user-specified updates, and automatic updates collected on-demand when needed. Information is stored exclusively in XML and retrieved using standard XPath queries over a single unified namespace independent of the information's source.
Savors is a tool for security event monitoring, analysis, and response. Savors scales to real-world environments by utilizing four distinct areas of computing. Visualization-based monitoring components display high, medium, and low level representations of security event data in a form that conveys significant information in an easily understandable form. Visualization-based analysis tools utilize high-end computing resources on-demand to compile behavior profiles that point to anomalous behavior. Auralization allows both monitoring and analysis to be performed in parallel and draws attention to critical events in one tool when utilizing another. Remote data access and response capabilities across distributed resources are enabled using grid computing that provides a secure, single sign-on environment.
Screenwm is a window management extension to GNU Screen that adds (1) multiple region layouts within a single session, (2) vi-like movement within complex layouts, (3) window associations by region, and (4) control of remote/embedded sessions using standard key bindings.
Surfer is a general-purpose framework for selecting and ranking grid resources based on user constraints and preferences. Surfer has no built-in bias towards any job model or selection policy, thus is suitable for inclusion in any grid environment by adding information providers knowledgeable about that environment. Information is pulled from these providers as needed allowing Surfer to efficiently handle large and complex information sources unsuitable for push-based models.
Swim is a software information service for the grid built on top of Pour. Swim provides true software resource discovery integrated with the tools used by administrators to install software. In particular, software information is periodically gathered from native package managers on FreeBSD, Solaris, and IRIX as well as the RPM, Perl, and Python package managers on multiple platforms. Swim has additional facilities for collecting on-demand information about arbitrary software on any grid-enabled resource including software dependencies and Unix "stat" information.