DOCSLIB.ORG

Digicert Gatekeeper Certification Practices Statement

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Digicert Gatekeeper Certification Practices Statement DigiCert Gatekeeper Certification Practices Statement Version 3.3 11 June 2020 Within the framework described in section 1.1 (diagram), the role of the CA is performed by DigiCert Australia Pty Ltd a wholly owned subsidiary of DigiCert, Inc. Registered Office: Level 3, 437 St Kilda Road Melbourne, Australia Legal representative: DLA Piper Australian Business Number: 88 088 021 603 Telephone (switchboard): (03) 9674 5500 ISO Object Identifier (OID): 1.2.36.88021603.333.30.1 Corporate web site (information): http://www.DigiCert.com Certification service web site: https://my.gatekeeper.digicert.com/ E-mail address (information and enquiries): [email protected] DigiCert Gatekeeper CPS - i - DigiCert Gatekeeper Certification Practice Statement © 2020 DigiCert Australia Pty Ltd. All rights reserved. Printed in Australia. Published date: June 12, 2020 Trademark Notices DigiCert and the DigiCert logo are the registered trademarks of DigiCert, Inc or its affiliates in the U.S. and other countries. Other names may be trademarks of their respective owners. Without limiting the rights reserved above, and except as licensed below, no part of this publication may be reproduced, stored in or introduced into a retrieval system, or transmitted, in any form or by any means (electronic, mechanical, photocopying, recording, or otherwise), without prior written permission of DigiCert, Inc. Notwithstanding the above, permission is granted to reproduce and distribute this DigiCert Gatekeeper Certification Practice Statement on a nonexclusive, royalty-free basis, provided that (i) the foregoing copyright notice and the beginning paragraphs are prominently displayed at the beginning of each copy, and (ii) this document is accurately reproduced in full, complete with attribution of the document to DigiCert, Inc. Requests for any other permission to reproduce this DigiCert Gatekeeper Certification Practice Statement (as well as requests for copies from DigiCert) must be addressed to DigiCert Australia Pty. Ltd. as set forth in section 1.5 of this document. DigiCert Gatekeeper CPS - ii - Change Date Released Doc Version Change By Description 1 4 Dec 2017 2.3 L Hansen DigiCert rebranding 2 1 Jul 2019 3.0 L Hansen Updated with Digicert Gen 4 information 3 25 Sep 2019 3.1 M Sullivan Updated with Current GateKeeper standards 4 4 Feb 2020 3.2 M Sullivan Updated with new Certificate Profiles. 5 11 Jun 2020 3.3 M Sullivan Updated with EKU and validity. DigiCert Gatekeeper CPS - iii - TABLE OF CONTENTS 1. INTRODUCTION ................................................................... 1 5.2.4 Roles Requiring Separation of Duties .................... 13 1.1 Overview ......................................................................... 1 5.3 Personnel Controls........................................................ 13 1.2 Document Name and Identification ................................. 2 5.3.1 Qualifications, Experience and Clearance 1.3 PKI Participants ............................................................... 2 Requirements ................................................................. 13 1.3.1 Certification Authorities ............................................ 2 5.3.2 Background Check Procedures ............................. 13 1.3.2 Registration Authorities ............................................ 3 5.3.3 Training Requirements .......................................... 14 1.3.3 End Entities .............................................................. 3 5.3.4 Retraining Frequency and Requirements .............. 14 1.3.4 Other Participants .................................................... 4 5.3.5 Job Rotation Frequency and Sequence ................. 14 1.4 Certificate Usage ............................................................ 5 5.3.6 Sanctions for Unauthorised Actions ....................... 14 1.4.1 Appropriate Certificate Uses .................................... 5 5.3.7 Independent Contractor Requirements .................. 15 A Business or Individual Certificate is suitable for 5.3.8 Documentation Supplied to Personnel ................... 15 supporting the transmission of information dependant on 5.4 Audit Logging Procedures ............................................. 15 the Level of Assurance it has been Validated to this would 5.4.1 Types of Events Recorded..................................... 15 include: ............................................................................. 5 5.4.2 Frequency of Processing Log ................................ 15 1.4.2 Prohibited Certificate Uses ...................................... 6 5.4.3 Retention Period for Audit Log ............................... 15 1.5 Policy Administration ....................................................... 6 5.4.4 Protection of Audit Log .......................................... 16 1.5.1 Organisation Administering the Document ............... 6 5.4.5 Audit Log Backup Procedures ............................... 16 1.5.2 Contact Person ........................................................ 6 5.4.6 Audit Collection System (Internal vs. External) ...... 16 1.5.3 Person Determining CPS Suitability for the Policy ... 6 5.4.7 Notification to Event-Causing Subject .................... 16 1.5.4 CPS Approval Procedures (Gatekeeper 5.4.8 Vulnerability Assessments ..................................... 16 Accreditation) .................................................................... 6 5.5 Records Archival ........................................................... 16 1.6 Definitions and Acronyms................................................ 7 5.5.1 Types of Records Archived .................................... 16 2. PUBLICATION AND REPOSITORY RESPONSIBILITIES .... 8 5.5.2 Retention Period for Archive .................................. 16 2.1 Publication of Certification Information ............................ 8 5.5.3 Protection of Archive .............................................. 17 2.2 Time or Frequency of Publication .................................... 8 5.5.4 Archive Backup Procedures................................... 17 2.3 Access Controls on Repositories .................................... 8 5.5.5 Requirements for Time-Stamping of Records ........ 17 3. IDENTIFICATION AND AUTHENTICATION ......................... 9 5.5.6 Archive Collection System (Internal vs. External) .. 17 4. CERTIFICATE LIFE-CYCLE OPERATIONAL 5.5.7 Procedures to Obtain and Verify Archive Information REQUIREMENTS ...................................................................... 9 ........................................................................................ 17 4.1 Certificate Application ..................................................... 9 5.6 Key Changeover ........................................................... 17 4.2 Certificate Application Processing ................................... 9 5.7 Compromise and Disaster Recovery............................. 17 4.3 Certificate Issuance ......................................................... 9 5.7.1 Incident and Compromise Handling Procedures.... 18 4.4 Certificate Acceptance .................................................... 9 5.7.2 Computing Resources, Software and/or Data are 4.5 Key Pair and Certificate Usage ....................................... 9 Corrupted ........................................................................ 18 4.6 Certificate Renewal ......................................................... 9 5.7.3 Entity Private Key Compromise Procedures .......... 18 4.7 Certificate Re-Key ........................................................... 9 5.7.4 Business Continuity Capabilities After a Disaster .. 18 4.8 Certificate Modification .................................................... 9 5.8 CA or RA Termination ................................................... 18 4.9 Certificate Revocation and Suspension ........................ 10 6. TECHNICAL SECURITY CONTROLS ............................... 20 4.10 Certificate Status Services .......................................... 10 6.1 Key Pair Generation and Installation ............................. 20 4.10.1 Operational Characteristics .................................. 10 6.1.1 Key Pair Generation .............................................. 20 4.10.2 Service Availability ............................................... 10 6.1.2 Private Key Delivery to Subscriber ........................ 20 4.10.3 Optional Features ................................................ 10 6.1.3 Public Key Delivery to Certificate issuer ................ 20 4.11 End of Subscription ..................................................... 10 6.1.4 CA Public Key Delivery to Relying Parties ............. 20 4.12 Key Escrow and Recovery .......................................... 10 6.1.5 Key Sizes ............................................................... 21 4.12.1 Key Escrow and Recovery Policy and Practices .. 10 6.1.6 Public Key Parameters Generation and Quality 4.12.2 Session Key Encapsulation and Recovery Policy Checking ......................................................................... 21 and Practices .................................................................. 10 6.1.7 Key Usage Purposes (as per x509v3 field) ............ 21 5. FACILITY, MANAGEMENT AND OPERATIONAL 6.2 Private Key Protection & Cryptographic Module CONTROLS............................................................................. 11 Engineering Controls........................................................... 21 5.1 Physical Controls .........................................................
Load more

Recommended publications
  • Dropdmg 3.6.2 Manual
    DropDMG 3.6.2 Manual C-Command Software c-command.com February 16, 2021 Contents 1 Introduction 4 1.1 Feature List..............................................4 2 Installing and Updating 6 2.1 Requirements.............................................6 2.2 Installing DropDMG.........................................7 2.3 Updating From a Previous Version.................................7 2.4 Reinstalling a Fresh Copy......................................8 2.5 Uninstalling DropDMG.......................................9 2.6 Security & Privacy Access......................................9 3 Using DropDMG 13 3.1 Basics................................................. 13 3.2 Making a Bootable Device Image of a Hard Drive......................... 14 3.3 Backing Up Your Files to CD/DVD................................ 16 3.4 Burning Backups of CDs/DVDs................................... 17 3.5 Restoring Files and Disks...................................... 18 3.6 Making Images With Background Pictures............................. 19 3.7 Protecting Your Files With Encryption............................... 20 3.8 Transferring Files Securely...................................... 21 3.9 Sharing Licenses and Layouts.................................... 21 3.10 Splitting a File or Folder Into Pieces................................ 22 3.11 Creating a DropDMG Quick Action................................ 22 4 Menus 23 4.1 The DropDMG Menu........................................ 23 4.1.1 About DropDMG...................................... 23 4.1.2 Software
    [Show full text]
  • How to Disable Gatekeeper and Allow Apps from Anywhere in Macos Sierra
    How to Disable Gatekeeper and Allow Apps From Anywhere in macOS Sierra Gatekeeper, first introduced in OS X Mountain Lion, is a Mac security feature which prevents the user from launching potentially harmful applications. In macOS Sierra, however, Apple made some important changes to Gatekeeper that seemingly limit the choices of power users. But don’t worry, Gatekeeper can still be disabled in Sierra. Here’s how. Stand out at the party or promote your business with colorful powder coated and custom engraved Yeti tumblers from Perfect Etch. Traditionally, Gatekeeper offered three settings of increasing security: anywhere, App Store and identified developers, and App Store only. The first choice, as its name describes, allowed users to launch applications from any source, effectively disabling the Gatekeeper feature. The second choice allowed users to run apps from the Mac App Store as well as from software developers who have registered with Apple and securely sign their applications. Finally, the most secure setting limited users to running apps obtained from the Mac App Store only. While the secure options were good ideas for less experienced Mac users, power users found Gatekeeper to be too limiting and typically sought to disable it by setting it to “Anywhere.” In macOS Sierra, however, the “Anywhere” option is gone, leaving “App Store” and “App Store and identified developers” as the only two options. Disable Gatekeeper in macOS Sierra The Gatekeeper settings can be found in System Preferences > Security & Privacy > General. The Gatekeeper options are located beneath “All apps downloaded from:” with the choice of “Anywhere” missing. Thankfully, the “Anywhere” setting can be restored to Gatekeeper in Sierra with a Terminal command.
    [Show full text]
  • The Apple Ecosystem
    APPENDIX A The Apple Ecosystem There are a lot of applications used to manage Apple devices in one way or another. Additionally, here’s a list of tools, sorted alphabetically per category in order to remain vendor agnostic. Antivirus Solutions for scanning Macs for viruses and other malware. • AVG: Basic antivirus and spyware detection and remediation. • Avast: Centralized antivirus with a cloud console for tracking incidents and device status. • Avira: Antivirus and a browser extension. Avira Connect allows you to view device status online. • BitDefender: Antivirus and malware managed from a central console. • CarbonBlack: Antivirus and Application Control. • Cylance: Ransomware, advanced threats, fileless malware, and malicious documents in addition to standard antivirus. • Kaspersky: Antivirus with a centralized cloud dashboard to track device status. © Charles Edge and Rich Trouton 2020 707 C. Edge and R. Trouton, Apple Device Management, https://doi.org/10.1007/978-1-4842-5388-5 APPENDIX A THe AppLe ECOSYSteM • Malware Bytes: Antivirus and malware managed from a central console. • McAfee Endpoint Security: Antivirus and advanced threat management with a centralized server to track devices. • Sophos: Antivirus and malware managed from a central console. • Symantec Mobile Device Management: Antivirus and malware managed from a central console. • Trend Micro Endpoint Security: Application whitelisting, antivirus, and ransomware protection in a centralized console. • Wandera: Malicious hot-spot monitoring, jailbreak detection, web gateway for mobile threat detection that integrates with common MDM solutions. Automation Tools Scripty tools used to automate management on the Mac • AutoCasperNBI: Automates the creation of NetBoot Images (read: NBI’s) for use with Casper Imaging. • AutoDMG: Takes a macOS installer (10.10 or newer) and builds a system image suitable for deployment with Imagr, DeployStudio, LANrev, Jamf Pro, and other asr or Apple Systems Restore-based imaging tools.
    [Show full text]
  • Basics of Apple Device Security
    AN OVERVIEW FOR MAC, IPAD AND IPHONE Basics of Apple Device Security SMALL BUSINESS A well-planned cyberattack or an accidental download of 2 malware can mean the difference between a productive day and all work grinding to a halt. As hackers get more sophisticated, organizations concerned about their bottom line and security of their customer, employee or student data must stay on top of security. This guide is for anyone that has been tasked with Apple security concerns, like all IT security concerns, are real. managing Apple devices in your organization and wants to get serious about their organizational While Apple has invested a great deal in its security features security of their Apple devices, and offers basic and has rapidly become the leader in device and data privacy information for newcomers or a simple refresher for and security, no operating system is immune to security Apple management veterans. challenges. This means that administrators must not only respond quickly to security issues, but also proactively guard against them. 3 The basic building blocks Several factors work together to ensure the security of your organization’s hardware and data, and you can break them down into six main areas: Securing devices Apple native security Data encryption Keeping your physical devices Security systems already built-in The basics of encrypting data at Introduction secure and protecting those to macOS, iOS and iPadOS rest and data in transit using them to Apple Page 4 Page 7 Page 6 Security Compliance Secure monitoring Application
    [Show full text]
  • Cisco Identity Services Engine Administrator Guide, Release 1.4.1 First Published: April 04, 2016 Last Modified: July 01, 2016
    Cisco Identity Services Engine Administrator Guide, Release 1.4.1 First Published: April 04, 2016 Last Modified: July 01, 2016 Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000 800 553-NETS (6387) Fax: 408 527-0883 THE SPECIFICATIONS AND INFORMATION REGARDING THE PRODUCTS IN THIS MANUAL ARE SUBJECT TO CHANGE WITHOUT NOTICE. ALL STATEMENTS, INFORMATION, AND RECOMMENDATIONS IN THIS MANUAL ARE BELIEVED TO BE ACCURATE BUT ARE PRESENTED WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED. USERS MUST TAKE FULL RESPONSIBILITY FOR THEIR APPLICATION OF ANY PRODUCTS. THE SOFTWARE LICENSE AND LIMITED WARRANTY FOR THE ACCOMPANYING PRODUCT ARE SET FORTH IN THE INFORMATION PACKET THAT SHIPPED WITH THE PRODUCT AND ARE INCORPORATED HEREIN BY THIS REFERENCE. IF YOU ARE UNABLE TO LOCATE THE SOFTWARE LICENSE OR LIMITED WARRANTY, CONTACT YOUR CISCO REPRESENTATIVE FOR A COPY. The Cisco implementation of TCP header compression is an adaptation of a program developed by the University of California, Berkeley (UCB) as part of UCB's public domain version of the UNIX operating system. All rights reserved. Copyright © 1981, Regents of the University of California. NOTWITHSTANDING ANY OTHER WARRANTY HEREIN, ALL DOCUMENT FILES AND SOFTWARE OF THESE SUPPLIERS ARE PROVIDED “AS IS" WITH ALL FAULTS. CISCO AND THE ABOVE-NAMED SUPPLIERS DISCLAIM ALL WARRANTIES, EXPRESSED OR IMPLIED, INCLUDING, WITHOUT LIMITATION, THOSE OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT OR ARISING FROM A COURSE OF DEALING, USAGE, OR TRADE PRACTICE. IN NO EVENT SHALL CISCO OR ITS SUPPLIERS BE LIABLE FOR ANY INDIRECT, SPECIAL, CONSEQUENTIAL, OR INCIDENTAL DAMAGES, INCLUDING, WITHOUT LIMITATION, LOST PROFITS OR LOSS OR DAMAGE TO DATA ARISING OUT OF THE USE OR INABILITY TO USE THIS MANUAL, EVEN IF CISCO OR ITS SUPPLIERS HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.
    [Show full text]
  • Mac Deployment Overview
    Mac Deployment Overview Overview Contents At Apple, we believe employees can do their best work when they have access to the best Overview tools and technology. All of our products are designed to enable employees to be more creative, Getting Started productive and work in new ways, whether in the office or on the go. This aligns with how Deployment Steps employees want to work in today’s world—with better access to information, frictionless Support Options collaboration and sharing, and the freedom to stay connected and work from anywhere. Summary Setting up and deploying Mac computers in today’s business environment has never been easier. With key services from Apple, in concert with a third-party mobile device management (MDM) solution, your organization can easily deploy and support macOS devices at scale. If your organization has already deployed iOS devices internally, it’s likely that most infrastructure work needed to implement macOS is already complete. Recent improvements in macOS security, management and deployment allow an organization to transition from monolithic imaging and traditional directory binding to a seamless provisioning model and deployment process that centers around each user and relies almost exclusively on tools that are built into macOS. This document provides guidance on everything you need to deploy macOS at scale, from understanding your existing infrastructure to device management and streamlined provisioning. The topics covered in this document are described in greater detail in the online macOS Deployment Reference: help.apple.com/deployment/macos/ Getting Started Building a deployment strategy and rollout plan as well as evaluating any existing macOS use by employees are important initial steps in the deployment process.
    [Show full text]
  • Mobile Device Management Protocol Reference
    Mobile Device Management Protocol Reference Developer Contents 1 About Mobile Device Management 7 At a Glance ................................................ 8 The MDM Check-in Protocol Lets a Device Contact Your Server ................... 8 The MDM Protocol Sends Management Commands to the Device .................. 8 The Way You Design Your Payload Matters .............................. 8 The Device Enrollment Program Lets You Configure Devices with the Setup Assistant ........ 8 The Volume Purchase Program Lets You Assign App Licenses to Users and Devices ......... 9 Apple Push Notification Certificates Can Be Generated Through the Apple Push Certificates Portal .. 9 See Also ................................................. 9 2 MDM Check-in Protocol 10 Structure of a Check-in Request ...................................... 10 Supported Check-in Commands ..................................... 11 Authenticate Message ........................................ 11 TokenUpdate Message ........................................ 12 CheckOut .............................................. 13 3 Mobile Device Management Protocol 14 Structure of MDM Payloads ........................................ 16 Structure of MDM Messages ....................................... 18 MDM Command Payloads ......................................... 20 MDM Result Payloads ........................................... 20 MDM Protocol Extensions ......................................... 21 macOS Extensions .......................................... 21 Network User Authentication
    [Show full text]
  • Search-Replace Tag Text V5.5 for Itunes 11+/Macos 10.12+ Find More Free Applescripts and Info on Writing Your Own at Doug's Applescripts for Itunes
    Search-Replace Tag Text v5.5 For iTunes 11+/macOS 10.12+ Find more free AppleScripts and info on writing your own at Doug's AppleScripts for iTunes. This applet performs a search-and-replace on a chosen tag (Song Name, Show, Artist, Album Artist, Album, Composer, Comments, Genre, Grouping, Movement or Work) of the selected tracks or all the tracks of the selected Playlist. For macOS 10.12 and later only. This app is free to try full-featured for 10 days. If you like it you can purchase a code for $1.99 which will unlock the 10 day trial restriction. Launch the app and click "Register…" in the its File menu to make an in-app purchase through PayPal. Installation: This script is an AppleScript applet and can be run by double-clicking its icon in the Finder. However, it is probably best accessed from the iTunes Script menu. Put AppleScripts in your iTunes "Scripts" folder. This is located at [user name] / Library / iTunes / Scripts / . The user Library directory is hidden by default. To make it visible, hold down the Option key on your keyboard and select Go > Library from the Finder. If the [user name] / Library / folder does not contain the "iTunes" or "Scripts" folders then then create them and put the script(s) in the "Scripts" folder. AppleScripts will then appear in iTunes' Script menu, and can be activated by selecting by name and clicking. Be sure to also save this Read Me document in a safe and convenient place. See the online Download FAQ for more info and video on downloading and installing AppleScripts.
    [Show full text]
  • Guide to Securing Apple OS X 10.10 Systems for IT Professionals: a NIST Security Configuration Checklist
    NIST Special Publication 800-179 Guide to Securing Apple OS X 10.10 Systems for IT Professionals: A NIST Security Configuration Checklist Lee Badger Murugiah Souppaya Mark Trapnell Eric Trapnell Dylan Yaga Karen Scarfone This publication is available free of charge from: https://doi.org/10.6028/NIST.SP.800-179 C O M P U T E R S E C U R I T Y NIST Special Publication 800-179 Guide to Securing Apple OS X 10.10 Systems for IT Professionals: A NIST Security Configuration Checklist Lee Badger Murugiah Souppaya Mark Trapnell Dylan Yaga Computer Security Division Information Technology Laboratory Eric Trapnell Software and Systems Division Information Technology Laboratory Karen Scarfone Scarfone Cybersecurity Clifton, VA This publication is available free of charge from: https://doi.org/10.6028/NIST.SP.800-179 December 2016 U.S. Department of Commerce Penny Pritzker, Secretary National Institute of Standards and Technology Willie May, Under Secretary of Commerce for Standards and Technology and Director Authority This publication has been developed by NIST in accordance with its statutory responsibilities under the Federal Information Security Modernization Act (FISMA) of 2014, 44 U.S.C. § 3551 et seq., Public Law (P.L.) 113-283. NIST is responsible for developing information security standards and guidelines, including minimum requirements for federal information systems, but such standards and guidelines shall not apply to national security systems without the express approval of appropriate federal officials exercising policy authority over such systems. This guideline is consistent with the requirements of the Office of Management and Budget (OMB) Circular A-130.
    [Show full text]
  • Ios and Ipados Deployment Overview Introduction Introduction
    iOS and iPadOS Deployment Overview Introduction Introduction Contents iPhone and iPad can transform your business and how your Introduction employees work. They can significantly boost productivity and Ownership Models give your employees the freedom and flexibility to work in new Deployment Steps ways, whether in the office or on the go. Embracing this modern Support Options way of working leads to benefits across the entire organization. Summary Users have better access to information, so they feel empowered and are able to creatively solve problems. By supporting iOS and iPadOS, IT departments are viewed as shaping the business strategy and solving real-world problems, rather than just fixing technology and cutting costs. Ultimately everyone benefits, with an invigorated workforce and new business opportunities everywhere. Setting up and deploying iPhone and iPad throughout your business has never been easier. With Apple Business Manager and a third-party mobile device management (MDM) solution, your organization can easily deploy iOS and iPadOS devices and apps at scale. • Mobile device management allows you to configure and manage devices, and wirelessly distribute and manage apps. • Apple Business Manager automates enrollment of Apple devices into your MDM solution to streamline deployment with zero-touch configuration for IT. • Apple Business Manager lets you purchase apps and books in bulk and distribute them to users wirelessly. • Apple Business Manager also lets you create Managed Apple IDs for employees using federated authentication with Microsoft Azure AD. This document offers guidance on deploying iOS and iPadOS devices in your organization and helps you create a deployment plan that best suits your environment.
    [Show full text]
  • Session 417 Sal Soghoian Chris Nebel Product Manager Automation Technologies Senior Automation Engineer
    OS X Automation Update What’s New in Automation Session 417 Sal Soghoian Chris Nebel Product Manager Automation Technologies Senior Automation Engineer These are confidential sessions—please refrain from streaming, blogging, or taking pictures What You Will Learn What’s new in Automation? What You Will Learn What’s new in Automation? • AppleScript and Automator What You Will Learn What’s new in Automation? • AppleScript and Automator ■ Dramatic new features What You Will Learn What’s new in Automation? • AppleScript and Automator ■ Dramatic new features ■ Multicomputer file access What You Will Learn What’s new in Automation? • AppleScript and Automator ■ Dramatic new features ■ Multicomputer file access ■ Security transparency What You Will Learn What’s new in Automation? • AppleScript and Automator ■ Dramatic new features ■ Multicomputer file access ■ Security transparency ■ New OS X Integration What You Will Learn What’s new in Automation? • AppleScript and Automator ■ Dramatic new features ■ Multicomputer file access ■ Security transparency ■ New OS X Integration ■ Getting your computer to pay attention iCloud Support Documents in the Cloud iCloud iCloud iCloud iCloud iCloud Support Documents in the Cloud • Automator and AppleScript Editor • Organize script, workflow, and service collections • Search cloud and local collections by tags • Distribute items across computers iCloud Support Documents in the Cloud • Automator and AppleScript Editor • Organize script, workflow, and service collections • Search cloud and local collections
    [Show full text]
  • Designing a Resource Broker for Heterogeneous Grids
    Designing a Resource Broker for Heterogeneous Grids Srikumar Venugopal, Krishna Nadiminti, Hussein Gibbins and Rajkumar Buyya Grid Computing and Distributed Systems Laboratory Dept. of Computer Science and Software Engineering The University of Melbourne, Australia {srikumar, kna, hag, raj}@csse.unimelb.edu.au Abstract: Grids provide uniform access to aggregations of heterogeneous resources and services such as computers, networks and storage owned by multiple organizations. However, such a dynamic environment poses many challenges for application composition and deployment. In this paper, we present the design of the Gridbus Grid resource broker that allows users to create applications and specify different objectives through different interfaces without having to deal with the complexity of Grid infrastructure. We present the unique requirements that motivated our design and discuss how these provide flexibility in extending the functionality of the broker to support different low-level middlewares and user interfaces. We evaluate the broker with different job profiles and Grid middleware and conclude with the lessons learnt from our development experience. Keywords: grid computing, software design, resource broker, extensibility, heterogeneous systems. 1 Introduction Grids [1] enable collaboration via virtualisation and sharing of resources and processes, owned, managed and used by multiple organisations and individuals from across the globe. Originally born out of the needs of high-end scientific investigations, this model of computing has come to be used in a wide range of areas including scientific research, engineering, business, finance and manufacturing. Grids consist of distributed heterogeneous resources such as high-end supercomputers, clusters, storage repositories, databases and scientific instruments connected by high-speed networks thereby representing a wide variety of computing platforms and software systems.
    [Show full text]