2009/3/31 Ian Dunlop <[email protected]>: > Not sure about 'griddy', maybe more 'cloudy'. Remote enactor/Taverna > platform on EC2? What about an instance of Taverna on the cloud that you > can get whenever you need it.
You would need to include some kind of authorisation (so only people you 'trust' can run worklfows) or limit which workflows can run (only trusted workflows). Remember that a workflow can include various untrusted beanshell scripts and local commands. I could make one now that deletes all your files, for instance.. I doubt Amazon will find it funny if someone runs an evil workflow that does various spamming or network attacks - and you as the customer would be the one to blame, as you would be the one opening up the machine for abuse.. Another alternative is to somehow limit the possible services in a workflow, but then one could only include (manually) pre-approved beanshell scripts and local workers. I guess WSDL services should be OK, but perhaps one would also need to put a limit on the number of calls, otherwise someone could make a workflow that generates 100000 strings and sends them to the 'web service' at http://sitetotakedown.com/ - although this wouldn't be a web service there would still be 100k invalid request for sitetotakedown to handle, that might take down the web site in a denial of service attack. -- Stian Soiland-Reyes, myGrid team School of Computer Science The University of Manchester ------------------------------------------------------------------------------ _______________________________________________ taverna-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/taverna-users Documentation: http://www.mygrid.org.uk/usermanual1.7/ FAQ: http://www.mygrid.org.uk/wiki/Mygrid/TavernaFaq Biological Services: http://www.mygrid.org.uk/wiki/Mygrid/BiologicalWebServices
