Logical Partitions on Many-core Processors

Similar documents
CSC 5930/9010 Cloud S & P: Virtualization

ROTE: Rollback Protection for Trusted Execution

Nested Virtualization and Server Consolidation

CSE 120 Principles of Operating Systems

Terra: A Virtual Machine-Based Platform for Trusted Computing by Garfinkel et al. (Some slides taken from Jason Franklin s 712 lecture, Fall 2006)

Massively Parallel Hardware Security Platform

CSE543 - Computer and Network Security Module: Virtualization

Virtualization. Michael Tsai 2018/4/16

Security for the Xen Hypervisor Status Quo & Perspective 2006

COMPUTER ARCHITECTURE. Virtualization and Memory Hierarchy

Virtualization. Pradipta De

CSE543 - Computer and Network Security Module: Virtualization

Virtual Machine Security

Introduction to SGX (Software Guard Extensions) and SGX Virtualization. Kai Huang, Jun Nakajima (Speaker) July 12, 2017

RISCV with Sanctum Enclaves. Victor Costan, Ilia Lebedev, Srini Devadas

Chapter 5 C. Virtual machines

Policy-Sealed Data: A New Abstraction for Building Trusted Cloud Services

A Comparison Study of Intel SGX and AMD Memory Encryption Technology

Hypervisor security. Evgeny Yakovlev, DEFCON NN, 2017

How to abstract hardware acceleration device in cloud environment. Maciej Grochowski Intel DCG Ireland

How to protect Automotive systems with ARM Security Architecture

Influential OS Research Security. Michael Raitza

Looking ahead with IBM i. 10+ year roadmap

The Software Driven Datacenter

Virtual Machines Disco and Xen (Lecture 10, cs262a) Ion Stoica & Ali Ghodsi UC Berkeley February 26, 2018

Lecture 3 MOBILE PLATFORM SECURITY

Virtual Machine Monitors (VMMs) are a hot topic in

TRESCCA Trustworthy Embedded Systems for Secure Cloud Computing

CSE543 - Computer and Network Security Module: Virtualization

SentinelOne Technical Brief

Intel s Virtualization Extensions (VT-x) So you want to build a hypervisor?

Networks and Operating Systems Chapter 11: Introduction to Operating Systems

Using MySQL in a Virtualized Environment. Scott Seighman Systems Engineer Sun Microsystems

Eleos: Exit-Less OS Services for SGX Enclaves

Virtual Machines. Jinkyu Jeong Computer Systems Laboratory Sungkyunkwan University

Sanctum: Minimal HW Extensions for Strong SW Isolation

Scalable Architectural Support for Trusted Software

RACKSPACE ONMETAL I/O V2 OUTPERFORMS AMAZON EC2 BY UP TO 2X IN BENCHMARK TESTING

Lecture 09: VMs and VCS head in the clouds

Introduction to Virtual Machines

Enabling Trusted Scheduling in Embedded Systems

Overview of System Virtualization: The most powerful platform for program analysis and system security. Zhiqiang Lin

Chapter 5 B. Large and Fast: Exploiting Memory Hierarchy

Scalable and Flexible Software Platforms for High-Performance ECUs. Christoph Dietachmayr Sr. Engineering Manager, Elektrobit November 8, 2018

IBM Bluemix compute capabilities IBM Corporation

Computer-System Organization (cont.)

Chapter 3 Virtualization Model for Cloud Computing Environment

Projects on the Intel Single-chip Cloud Computer (SCC)

Demonstration Lecture: Cyber Security (MIT Department) Trusted cloud hardware and advanced cryptographic solutions. Andrei Costin

CS 470 Spring Virtualization and Cloud Computing. Mike Lam, Professor. Content taken from the following:

Backup, File Backup copies of individual files made in order to replace the original file(s) in case it is damaged or lost.

Parallels Virtuozzo Containers

Who s Protecting Your Keys? August 2018

Provisioning secure Identity for Microcontroller based IoT Devices

Virtualization (II) SPD Course 17/03/2010 Massimo Coppola

Trusted Execution Environments (TEE) and the Open Trust Protocol (OTrP) Hannes Tschofenig and Mingliang Pei 16 th July IETF 99 th, Prague

Fast access ===> use map to find object. HW == SW ===> map is in HW or SW or combo. Extend range ===> longer, hierarchical names

Virtualization and memory hierarchy

Beyond TrustZone Security Enclaves Reed Hinkel Senior Manager Embedded Security Market Develop

Virtual Machine Monitors!

Distributed Systems COMP 212. Lecture 18 Othon Michail

Intel Virtualization Technology Roadmap and VT-d Support in Xen

Deploying Application and OS Virtualization Together: Citrix and Virtuozzo

Leveraging Intel SGX to Create a Nondisclosure Cryptographic library

CS 350 Winter 2011 Current Topics: Virtual Machines + Solid State Drives

Module 1: Virtualization. Types of Interfaces

ARM Security Solutions and Numonyx Authenticated Flash

Security of Embedded Systems

CS 153 Design of Operating Systems Winter 2016

Advanced Systems Security: Virtual Machine Systems

Fast access ===> use map to find object. HW == SW ===> map is in HW or SW or combo. Extend range ===> longer, hierarchical names

Fundamentals of HW-based Security

Multi-tenancy Virtualization Challenges & Solutions. Daniel J Walsh Mr SELinux, Red Hat Date

Oracle Solaris Virtualization: From DevOps to Enterprise

Background. IBM sold expensive mainframes to large organizations. Monitor sits between one or more OSes and HW

OS Security IV: Virtualization and Trusted Computing

INFLUENTIAL OPERATING SYSTEM RESEARCH: SECURITY MECHANISMS AND HOW TO USE THEM CARSTEN WEINHOLD

High Performance Computing Cloud - a PaaS Perspective


Operating System Security

CS 252 Graduate Computer Architecture. Lecture 15: Virtual Machines

On-Premises Cloud Platform. Bringing the public cloud, on-premises

Certifying Program Execution with Secure Processors. Benjie Chen Robert Morris Laboratory for Computer Science Massachusetts Institute of Technology

Dyadic Security Enterprise Key Management

Lecture 5: February 3

Advanced Computer Architecture

64-bit ARM Unikernels on ukvm

On the Portability and Performance of Message-Passing Programs on Embedded Multicore Platforms

Firmware Updates for Internet of Things Devices

Advanced Systems Security: Virtual Machine Systems

CLOUD COMPUTING IT0530. G.JEYA BHARATHI Asst.Prof.(O.G) Department of IT SRM University

Old, New, Borrowed, Blue: A Perspective on the Evolution of Mobile Platform Security Architectures

Virtual Leverage: Server Consolidation in Open Source Environments. Margaret Lewis Commercial Software Strategist AMD

Creating Trust in a Highly Mobile World

Dyadic Enterprise. Unbound Key Control For Azure Marketplace. The Secure-As-Hardware Software With a Mathematical Proof

Research and Design of Crypto Card Virtualization Framework Lei SUN, Ze-wu WANG and Rui-chen SUN

CHAPTER 16 - VIRTUAL MACHINES

Agenda GDPR Overview & Requirements IBM Secure Virtualization Solution Overview Summary / Call to Action Q & A 2

MOBILE DEVICE SECURITY USING TRANSIENT AUTHENTICATION

CSCE 410/611: Virtualization!

Transcription:

Logical Partitions on Many-core Processors Ramya Masti, Claudio Marforio, Kari Kostiainen, Claudio Soriente, Srdjan Capkun ETH Zurich ACSAC 2015 1

Infrastructure as a Service (IaaS) App App App App OS OS OS OS Hardware Hardware Hardware Personal platforms Shared cloud platform (IaaS) - Economies of scale - Shared resources - Security problems 2

Resource Partitioning App OS App OS Hardware Cloud platform with dedicated resources - Guaranteed performance - Secure against shared memory/cpu attacks - Example: IBM cloud 3

Resource Partitioning Memory Logical Partition Subset of a system s resources that can run an OS/ Processor C 0 C 1 C 2 C 3 Every logical partition needs dedicated resources Many logical partitions need platforms that have lots of resources! 4

Many-core Processors for Logical Partitioning Cores, caches Many-core processor? Many simple cores Many logical partitions Designed for workloads that share data (no isolation!) Can many-core architectures support scalable logical partitioning? 5

Hypervisor Design Alternatives Traditional Distributed Centralized Hypervisor (H) H H H H C 0 C 1.. C n C 0 C 1.. C n C 0 C 1.. C n H C Run-time -hypervisor interaction - Increases hypervisor s attack surface - Performance overhead 6

Centralized Hypervisors Today H C 0 C 1 C 2.. C n Every core supports virtualization - Hypervisor and modes - Privileged instructions and memory addressing - Enables memory confinement Higher privilege mode Lower privilege mode But every core runs only in one mode! Unused functionality in every core H Solutions without processor virtualization 7

Intel Single-chip Cloud Computer (SCC) Memory controller Network on chip (NoC) Tiles Core Cache Messaging Buffer Network Interface Sources: Howard et al. IJSSC 10; The Future of Many-core Computing, Tim Mattson, Intel Labs 8

Intel SCC Architecture TILE Core Core NETWORK INTERFACE Look Up Tables Network on Chip Core - Asymmetric processor - Each core can run an independent OS - Simple cores: no virtualization support Look Up Tables (LUTs) - Determines the resources available to a core - Resources: other tiles, RAM and I/O All system resources are memory mapped 9

Intel SCC Address Translation Virtual address 0x87256199 CORE Memory Management Unit Physical address 0x72008127 NETWORK INTERFACE Look Up Tables (LUTs) System-wide address On-tile Off-tile LUT Registers On-tile Memory I/O Memory at Another Tile DRAM 10

Problem: Lack of Isolation TILE Core Core NETWORK INTERFACE Look Up Tables Network on Chip Every core can change its memory access configuration! Off-tile memory (DRAM) 11

Solution Intuition TILE TILE Master Core Core Core Core Core NETWORK INTERFACE Look Up Tables X X NETWORK INTERFACE Look Up Tables X Master core configures memory confinement for all cores Off-tile memory (DRAM) Network on Chip 12

Contributions 1. Hardware change to Intel SCC that enables logical partitioning - isolation on Network on Chip - emulate in software 2. Custom hypervisor - small TCB and attack surface 3. Cloud architecture (IaaS) - implementation and evaluation 13

Cloud Architecture (IaaS) Computing Node H Intel SCC Crypto engine (HSM) HW-virtualized peripherals Management Service User Management Management Storage Service 14

Operation example: startup Encrypt and install Storage Service Helper Core Hypervisor Master Core Intel SCC Core Computing node Crypto Engine 1. Boot 3. Fetch 2. Start 4. Decrypt 5. Assign core and configure LUTs 6. Start 15

Recap of Main Properties No processor virtualization Beneficial for high number of cores Small TCB Hypervisor implementation size 3.4K LOC Tolerance to compromise of other cloud components Reduced interaction Small attack surface No virtualization overhead 16

Comparison No Processor Virtualization Small TCB Reduced Interaction Xen (>100K LOC) HypeBIOS (4K LOC) NoHype (>100K LOC) } Merge? Our solution (3.4K LOC) 17

Summary Many-core processor? H Yes! (with minor modifications) Intel SCC case study - Isolation on Network on Chip (NoC) 18

Thank you! Ramya Masti, Claudio Marforio, Kari Kostiainen, Claudio Soriente, Srdjan Capkun 19

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback