stratus clouds with microarchitectural resource management
play

Stratus: Clouds with Microarchitectural Resource Management Kaveh - PowerPoint PPT Presentation

Dec 28, 2023 •554 likes •852 views

Stratus: Clouds with Microarchitectural Resource Management Kaveh Razavi and Animesh Trivedi Once Upon a Time in the Cloud Large: 4 cores, 16 GB Medium: 2 cores, 8 GB Small: 1 core, 4 GB 2 Once Upon a Time in the Cloud Large: 4 cores, 16

  1. Stratus: Clouds with Microarchitectural Resource Management Kaveh Razavi and Animesh Trivedi

  2. Once Upon a Time in the Cloud Large: 4 cores, 16 GB Medium: 2 cores, 8 GB Small: 1 core, 4 GB 2

  3. Once Upon a Time in the Cloud Large: 4 cores, 16 GB Medium: 2 cores, 8 GB cloud Small: 1 core, 4 GB provider allocate(small) CPU tenant DRAM 3

  4. Once Upon a Time in the Cloud Large: 4 cores, 16 GB Medium: 2 cores, 8 GB cloud Small: 1 core, 4 GB provider allocate(small) CPU tenant DRAM 4

  5. Once Upon a Time in the Cloud ) m u i d e m ( e t a c tenant o Large: 4 cores, 16 GB l l a Medium: 2 cores, 8 GB cloud Small: 1 core, 4 GB provider allocate(small) CPU tenant DRAM 5

  6. Once Upon a Time in the Cloud ) m u i d e m ( e t a c o Large: 4 cores, 16 GB l l a Medium: 2 cores, 8 GB cloud Small: 1 core, 4 GB provider allocate(small) CPU Shared L3 Cache What could possibly go wrong here when DRAM two tenant share the L3 cache? 6

  7. Problems with (Unsupervised) Sharing (a) Performance (b) Security CPU Shared L3 Cache NetCAT (S&P’20): detect activity dCat (EuroSys’18): 57.6% improvements of another tenant over network for Redis with noisy neighbours 7 Cong Xu, et al. DCat: dynamic cache management for efficient, performance-sensitive infrastructure-as-a-service . ACM EuroSys 2018.

  8. Problems with (Unsupervised) Sharing (a) Performance (b) Security CPU Shared L3 Cache NetCAT (S&P’20): detect activity dCat (EuroSys’18): 57.6% improvements of another tenant over network for Redis with noisy neighbours 8 Cong Xu, et al. DCat: dynamic cache management for efficient, performance-sensitive infrastructure-as-a-service . ACM EuroSys 2018. NetCAT: Practical Cache Attacks from the Network. Kurth, M.; Gras, B.; Andriesse, D.; Giuffrida, C.; Bos, H.; and Razavi, K. In S&P, 2020.

  9. Problems with (Unsupervised) Sharing (a) Performance (b) Security CPU Shared L3 Cache Are these two examples L3 Cache specific? NetCAT (S&P’20): detect activity dCat (EuroSys’18): 57.6% improvements of another tenant over network for Redis with noisy neighbours 9 Cong Xu, et al. DCat: dynamic cache management for efficient, performance-sensitive infrastructure-as-a-service . ACM EuroSys 2018. NetCAT: Practical Cache Attacks from the Network. Kurth, M.; Gras, B.; Andriesse, D.; Giuffrida, C.; Bos, H.; and Razavi, K. In S&P, 2020.

  10. New Classes of Microarchitectural Resources Microarchitectural Resource Resource CPU Caches, TLBs, Hyperthreads, ALUs Smart NICs Caches (memory, requests, connection), TLBs, RMT pipelines, DMA engines NVM Storage Blocks, pages, internal r/w ports, programmable cores, SRAM GPUs Memories, caches, execution units In-Network SRAM and TCAM memories, Match-action Switches Unit processors, ALUs And more - TPUs, FPGAs, near-memory compute elements … 10

  11. What is happening ● Diverse microarchitectural resources are here to stay ● They have security and performance ramifications ● The root cause is unsupervised sharing (or lack of isolation) Key challenge How to manage microarchitectural resources in a principled manner? 11

  12. Stratus: Clouds with Principled Microarchitectural Resource Management Key property : isolation 12

  13. Stratus: Clouds with Principled Microarchitectural Resource Management A cloud resource allocation framework Security and performance requirements are the two sides of isolation Captures and reasons about microarchitectural resource isolation 13

  14. Stratus: Clouds with Principled Microarchitectural Resource Management Q1: How to capture isolation? Q2: How to reason about isolation? Q3: How to charge for isolation? 14

  15. Stratus: Clouds with Principled Microarchitectural Resource Management Q1: How to capture isolation? Q2: How to reason about isolation? Q3: How to charge for isolation? 15

  16. Capturing Isolation: A Declarative Interface Isolation captured as handle = ISOLATE (resource, scale, quantity); constraints on resource allocations 16

  17. Capturing Isolation: A Declarative Interface Isolation captured as handle = ISOLATE (resource, scale, quantity); constraints on resource allocations hard : discrete allocation Extent of isolation Number of resources for LLC slots, ALUs, TLBs, requested {0,1} which this constraint must be satisfied soft: contented (in time) DRAM bandwidth 17

  18. Capturing Isolation: A Declarative Interface handle = ISOLATE (resource, scale, quantity); Multiple constraints can be ATTACH (handle1, handle2, ...); “attached” (AND) by their handles 18

  19. Capturing Isolation: A Declarative Interface handle = ISOLATE (resource, scale, quantity); ATTACH (handle1, handle2, ...); ALLOCATE cloud_resource, .. where constraints Pass multiple microarchitectural constraints during cloud resource allocations (also labeled grouped constraints -- see the paper) 19

  20. Capturing Isolation: A Declarative Interface handle = ISOLATE (resource, scale, quantity); ATTACH (handle1, handle2, ...); ALLOCATE cloud_resource, .. where constraints E.g., mitigating NetCAT: ALLOCATE small where h1 = ISOLATE (CPU.LLC, 1.0, 64), // the first 64 lines h2 = ISOLATE (NIC.*, *, ...), // all NIC-level uarch ATTACH (h1, h2); // both for small VM allocations 20

  21. Stratus: Clouds with Principled Microarchitectural Resource Management Q1: How to capture isolation? Q2: How to reason about isolation? Q3: How to charge for isolation? 21

  22. Building a Reasoning Framework Cloud Knowledge Base Resources - Topology, numbers, types ● Similar in the spirit as SKB - Datasheets information in Barrelfish OS (SOSP’09) CKB ● Structured representation of Online measurements knowledge in one place - Utilization, spare ● Can be queried - Occupancy 22

  23. Building a Reasoning Framework Cloud Knowledge Base Resources - Topology, numbers, types - Datasheets information Allocation strategy CKB Online measurements - Utilization, spare - Occupancy Tenant’s constraints (CNF format) 23

  24. Stratus: Clouds with Principled Microarchitectural Resource Management Q1: How to capture isolation? Q2: How to reason about isolation? Q3: How to charge for isolation? 24

  25. Charging for Isolation: Isolation Credits Isolation spectrum Low isolation High isolation + High utilization + Low interference + Better efficiency + Better perf/security - Low perf/security - Low utilization 25

  26. Charging for Isolation: Isolation Credits Isolation spectrum Low isolation High isolation + High utilization + Low interference + Better efficiency + Better perf/security - Low perf/security - Low utilization Isolation credit: a currency to capture this tradeoff ● Encourages tenants to only specify relevant constraints ● Encourages providers to innovate in better isolation mechanisms 26

  27. Charging for Isolation: Isolation Credits Isolation spectrum Low isolation High isolation + High utilization + Low interference + Better efficiency + Better perf/security - Low perf/security - Low utilization Stratus c r e d Cloud i constraints t b u d g e t = constraints 4 2 42 credits Tenant who Tenant with knows a budget 27

  28. Summary: Stratus Managing microarchitectural resources in a principled manner Three key ideas: 1. A declarative interface 2. A Cloud Knowledge Base (CKB) 3. Isolation Credits 28

  29. Challenges and Discussion Points Enforcing isolation Right constraints Scalability ● ● ● Mechanisms Profile guided CKB ● ● ● Policies Security libraries O(1-10ms) Is microarchitectural resource management really worth it? More efforts on mechanisms or better policies? Can we have better hardware support from vendors? What are we missing from a cloud-operation point of view? 29

Recommend

RESOURCE MANAGEMENT RESOURCE MANAGEMENT STRATEGIES FOR SDR CLOUDS STRATEGIES FOR SDR CLOUDS Vuk

RESOURCE MANAGEMENT RESOURCE MANAGEMENT STRATEGIES FOR SDR CLOUDS STRATEGIES FOR SDR CLOUDS Vuk

Department of Signal Theory and Communications UNIVERSITAT POLITCNICA DE CATALUNYA RESOURCE MANAGEMENT RESOURCE MANAGEMENT STRATEGIES FOR SDR CLOUDS STRATEGIES FOR SDR CLOUDS Vuk Marojevic Ismael Gomez Pere Gilabert Gabriel Montoro

399 views • 27 slides
SDR CLOUDS SDR CLOUDS RESOURCE MANAGEMENT RESOURCE MANAGEMENT IMPLICATIONS IMPLICATIONS INDEX

SDR CLOUDS SDR CLOUDS RESOURCE MANAGEMENT RESOURCE MANAGEMENT IMPLICATIONS IMPLICATIONS INDEX

SDR CLOUDS SDR CLOUDS RESOURCE MANAGEMENT RESOURCE MANAGEMENT IMPLICATIONS IMPLICATIONS INDEX INDEX 1. Introduction 2. Enabling Technologies Middleware, Virtualization, Resource Control 3. Resource Management Implications Resource

539 views • 31 slides
They look different because they have different contents 3 primary types and many sub-types

They look different because they have different contents 3 primary types and many sub-types

Clouds are classified mainly by their visual characteristics and height They look different because they have different contents 3 primary types and many sub-types Stratus Cirrus Cumulus Stratus Clouds Characteristics: Can be at

480 views • 15 slides
Scheduling and Resource Management in Grids and Clouds Dick Epema Parallel and Distributed

Scheduling and Resource Management in Grids and Clouds Dick Epema Parallel and Distributed

Scheduling and Resource Management in Grids and Clouds Dick Epema Parallel and Distributed Systems Group Delft University of Technology Delft, the Netherlands may 10, 2011 1 Outline Resource Management Introduction A framework

457 views • 42 slides
Deterministic Container Resource Management in Derivative Clouds Chandra Prakash, Prashanth,

Deterministic Container Resource Management in Derivative Clouds Chandra Prakash, Prashanth,

Deterministic Container Resource Management in Derivative Clouds Chandra Prakash, Prashanth, Umesh Bellur, Purushottam Kulkarni Department of Computer Science and Engineering Indian Institute of Technology Bombay 19 th April, 2018 International

483 views • 26 slides
Resource Resource Management Management RESOURCE MANAGEMENT RESOURCE MANAGEMENT We have a

Resource Resource Management Management RESOURCE MANAGEMENT RESOURCE MANAGEMENT We have a

Moreno Baricevic Stefano Cozzini CNR-IOM DEMOCRITOS Trieste, ITALY Resource Resource Management Management RESOURCE MANAGEMENT RESOURCE MANAGEMENT We have a pool of users and a pool of resources, then what? some software that controls

538 views • 22 slides
Sustainable Network Resource Management System for Virtual Private Clouds Takahiro Miyamoto

Sustainable Network Resource Management System for Virtual Private Clouds Takahiro Miyamoto

Sustainable Network Resource Management System for Virtual Private Clouds Takahiro Miyamoto Michiaki Hayashi Kosuke Nishimura KDDI R&D Laboratories Inc. CloudCom2010 Cloud computing environment Infrastructure as a Service (IaaS)

377 views • 20 slides
The Toxicity of Produced Water Discharges in the Amazon Basin, Ecuador Douglas Beltman, Jennifer

The Toxicity of Produced Water Discharges in the Amazon Basin, Ecuador Douglas Beltman, Jennifer

The Toxicity of Produced Water Discharges in the Amazon Basin, Ecuador Douglas Beltman, Jennifer Peers, Ann Maest, Michael Carney, Tom Hodgson Stratus Consulting Boulder, CO November 21, 2009 STRATUS STRATUS CONSULTING STRATUS STRATUS

567 views • 27 slides
When you look up into the sky, you will often see clouds. No two clouds are the same, and there

When you look up into the sky, you will often see clouds. No two clouds are the same, and there

When you look up into the sky, you will often see clouds. No two clouds are the same, and there are many different types of clouds. Different kinds of clouds lead to different types of weather. Cirrus clouds are the highest group of clouds that

271 views • 5 slides
Compare daily and seasonal changes in weather conditions (including wind speed and direction,

Compare daily and seasonal changes in weather conditions (including wind speed and direction,

Compare daily and seasonal changes in weather conditions (including wind speed and direction, precipitation, and temperature). There are three basic types of clouds: stratus, cirrus, and cumulus. All other clouds are a combination of these

869 views • 21 slides
Comprehensive Elastic Resource Management to Ensure Predictable Performance for Scientific

Comprehensive Elastic Resource Management to Ensure Predictable Performance for Scientific

Comprehensive Elastic Resource Management to Ensure Predictable Performance for Scientific Applications on Public IaaS Clouds. In Kee Kim , Jacob Steele, Yanjun Qi, Marty Humphrey CS@University of Virginia Motivation Goals Meet Job

681 views • 18 slides
Nemesis: Studying Microarchitectural Timing Leaks in Rudimentary CPU Interrupt Logic Jo Van Bulck

Nemesis: Studying Microarchitectural Timing Leaks in Rudimentary CPU Interrupt Logic Jo Van Bulck

Nemesis: Studying Microarchitectural Timing Leaks in Rudimentary CPU Interrupt Logic Jo Van Bulck Frank Piessens Raoul Strackx imec-DistriNet, KU Leuven ACM CCS, October 2018 Microarchitectural side-channels and where to find them CPU cache

709 views • 47 slides
Stratus Vision By: Stratus Vision GmbH, Germany Phone: +49 (0)89 82 99 89-0 Contents 1.

Stratus Vision By: Stratus Vision GmbH, Germany Phone: +49 (0)89 82 99 89-0 Contents 1.

Stratus Vision By: Stratus Vision GmbH, Germany Phone: +49 (0)89 82 99 89-0 Contents 1. Summary

408 views • 19 slides
Towards Supercloud Computing: User-Centric Security Management for Clouds of Clouds Marc Lacoste

Towards Supercloud Computing: User-Centric Security Management for Clouds of Clouds Marc Lacoste

Towards Supercloud Computing: User-Centric Security Management for Clouds of Clouds Marc Lacoste Orange Labs SEC2 ComPAS15 Workshop on Cloud Security Lille, June 30, 2015 Cloud Security Today Security = key concern in cloud adoption for the

2.73k views • 33 slides
Economics-inspired Resource and Energy Management for Cloud Environments Lus Veiga INESC-ID

Economics-inspired Resource and Energy Management for Cloud Environments Lus Veiga INESC-ID

Keynote on ESaaSA CLOSER 2015 Economics-inspired Resource and Energy Management for Cloud Environments Lus Veiga INESC-ID Lisboa Instituto Superior Tcnico Universidade de Lisboa May 2015 A day in the Clouds Services such as storage,

627 views • 51 slides
Fisheries Relevant Resources Resource Resource Development Research Habitat External

Fisheries Relevant Resources Resource Resource Development Research Habitat External

Workshop on Social Simulation of Fisheries and Coastal Management June 6 7 2016 NATURAL ECOSYSTEM MANAGEMENT SYSTEM Community Policy and Resource Planning Management Fisheries Relevant Resources Resource Resource Development

517 views • 26 slides
HUMAN RESOURCE MANAGEMENT Topic: Strategic Human Resource Management Company: Shan Foods (Pvt)

HUMAN RESOURCE MANAGEMENT Topic: Strategic Human Resource Management Company: Shan Foods (Pvt)

Strategic Human Resource Management HUMAN RESOURCE MANAGEMENT Topic: Strategic Human Resource Management Company: Shan Foods (Pvt) Ltd GROUP MEMBERS Adeel Aamir Siddiqui 11262 Madiha Mohammed Ali 11970 Omair Abbas Ali 11555 Shaheryar

104 views • 7 slides
Chapter 6 Cloud Resource Management and Scheduling Contents Resource management and

Chapter 6 Cloud Resource Management and Scheduling Contents Resource management and

Chapter 6 Cloud Resource Management and Scheduling Contents Resource management and scheduling. Policies and mechanisms. Applications of control theory to cloud resource allocation. Stability of a two-level resource allocation

1.47k views • 39 slides
New Resource Implementation Shawna Warneke, Resource Management Specialist Christina Weiler,

New Resource Implementation Shawna Warneke, Resource Management Specialist Christina Weiler,

New Resource Implementation Shawna Warneke, Resource Management Specialist Christina Weiler, Resource Management Specialist Marissa Arechavaleta, Resource Management Analyst March 11, 2020 ISO Public ISO Public Objectives New Resource

793 views • 21 slides
SUPPORTING IMAGES FOR REPRESENTATION : MACKAYS TO PEKA PEKA EXPRESSWAY - NOR AND RESOURCE

SUPPORTING IMAGES FOR REPRESENTATION : MACKAYS TO PEKA PEKA EXPRESSWAY - NOR AND RESOURCE

UNDER The Resource Management Act 1991 IN THE MATTER OF A Board of Inquiry appointed under s149J of the Resource Management Act 1991 to consider applications for a Notice of Requirement and Resource Consents made by the New Zealand Transport

308 views • 7 slides
Dynamic Resource Allocation for Spot Markets in Clouds Qi Zhang, Eren Gurses, Jin Xiao, Raouf

Dynamic Resource Allocation for Spot Markets in Clouds Qi Zhang, Eren Gurses, Jin Xiao, Raouf

Dynamic Resource Allocation for Spot Markets in Clouds Qi Zhang, Eren Gurses, Jin Xiao, Raouf Boutaba Introduction Cloud computing aims at providing resources to customers in an on-demand manner A customer can purchase resources

483 views • 13 slides
Optimizing Client-side Resource Utilization in Public Clouds Swapnil Haria, Mihir Patil, Haseeb

Optimizing Client-side Resource Utilization in Public Clouds Swapnil Haria, Mihir Patil, Haseeb

Optimizing Client-side Resource Utilization in Public Clouds Swapnil Haria, Mihir Patil, Haseeb Tariq, Anup Rathi, Michael Swift Department of Computer Sciences University of Wisconsin-Madison Madison, WI, USA { swapnilh, mihir, haseeb,

257 views • 11 slides
Non-Generator Resource (NGR) and Regulation Energy Management (REM) Non-Generator Resource

Non-Generator Resource (NGR) and Regulation Energy Management (REM) Non-Generator Resource

Non-Generator Resource (NGR) and Regulation Energy Management (REM) Non-Generator Resource Regulation Energy Management Workshop August 30, 2012 Suggested reading prior to meeting Business Requirements Specification:

745 views • 43 slides
IRIX Resource Management Plans & Status Dan Higgins djh@sgi.com Engineering Manager

IRIX Resource Management Plans & Status Dan Higgins djh@sgi.com Engineering Manager

IRIX Resource Management Plans & Status Dan Higgins djh@sgi.com Engineering Manager Resource Management Team SGI 41st Cray User Group Conference Minneapolis, Minnesota IRIX Resource Management Overview IRIX Job Limits IRIX

410 views • 27 slides

More recommend