Unshackle the Cloud: Commoditization of the Cloud Hakim

Unshackle the Cloud: Commoditization of the Cloud Hakim Weatherspoon Assistant Professor, Dept of Computer Science CS 5412, Guest Lecture, Cornell University January 24, 2012

Context The promise of the Cloud – A computer utility; a commodity – Catalyst for technology economy – Revolutionizing for health care, financial systems, scientific research, and society

Context The promise of the Cloud – ubiquitous, convenient, on-demand network access to a shared pool of configurable computing resources (e.g., networks, servers, storage, applications, and services) that can be rapidly provisioned and released with minimal management effort or service provider interaction. NIST Cloud Definition

Context The promise of the Cloud – ubiquitous, convenient, on-demand network access to a shared pool of configurable computing resources (e.g., networks, servers, storage, applications, and services) that can be rapidly provisioned and released with minimal management effort or service provider interaction. NIST Cloud Definition

Context The promise of the Cloud – ubiquitous, convenient, on-demand network access to a shared pool of configurable computing resources (e.g., networks, servers, storage, applications, and services) that can be rapidly provisioned and released with minimal management effort or service provider interaction. However, cloud platforms entail significant risk – Vendor Lock-in – Storage Lock-in – Computation Lock-in

Challenge How to use the cloud? – Storage – Computation – Network Without being locked into a single cloud provider?

Outline Breaking Cloud Storage Lock-in Breaking Cloud Computation Lock-in – (Nested) Virtualization

Vendor Lock-in: Cloud Storage Large organizations considering using the cloud – New York Times – Netflix – Nintendo – Cornell – Library of Congress The more data you have, the harder it is to move – Switching providers entails paying for bandwidth twice – Inhibits opportunistic migration

Vendor Lock-in: Cloud Storage How hard is it to move a PetaByte? Titan tech boom, randy katz, 2008

Vendor Lock-in: Cloud Storage All my valuable data/computation is in the cloud Am I locked in to one provider forever? – The more data you have, the harder it is to move RACS: Redundant Array of Cloud Storage – Collaboration with the Internet Archive and IBM k 3 RACS(3,4) n 4

Vendor Lock-in: Cloud Storage All my valuable data/computation is in the cloud Am I locked in to one provider forever? – The more data you have, the harder it is to move RACS(3,4) RACS: Redundant Array of Cloud Storage 33KB Archive and IBM – Collaboration with the Internet 33KB Object 100 KB 33KB 33KB k 3 Relative Storage n/k Relative Upload Bandwidth n/k Relative Download Bandwidth 1 RACS(3,4) n 4

Vendor Lock-in: Cloud Storage Estimated Cost of Switching Cloud Providers 33KB RACS(3,4) 33KB Object 100 KB 33KB Relative Storage n/k Relative Upload Bandwidth n/k Relative Download Bandwidth 1 33KB

Vendor Lock-in: Cloud Storage Graduate Students – Hussam Abu-Libdeh – Lonnie Princehouse – Ji Yong Shin Collaborators – Sandra Payette (Fedora Commons) Website: – http://racs.cs.cornell.edu

Vendor Lock-in: Cloud Computation Cloud storage is only a half third of the story – What about computation? How can I move my computation between clouds?

Vendor Lock-in: Cloud Computation Move computation via Virtualization – Virtualize processor Instruction Set Architecture – Full Virtualization vs Paravirtualization (of hardware) – VMWare vs (Original) Xen Xen – Separation of policy and mechanism – DomU hosts guest operating system in virtual machine – Dom0 manages devices and guests – Control Transfer: Hypercalls and Events (like syscalls and device interrupts)

Vendor Lock-in: Cloud Computation Linux Dom0 Shared Memory Device: Ring Linux DomU: VM Backend Frontend PCI-Driver Xen Baremetal

Vendor Lock-in: Cloud Computation Can I compute in the cloud if some of my data is in a vault at home or on another provider App Guest OS 33KB VMM App Object 100 KB Guest OS App 33KB VMM Guest OS 33KB VMM VMM 33KB VMM

Vendor Lock-in: Cloud Computation App Guest OS VMM

Vendor Lock-in: Cloud Computation App Guest OS VMM 10/11/2010 IBM Visit, Critical Infrastructure, by Hakim Weatherspoon 19

Unshackle the Cloud: xClouds 10/11/2010 IBM Visit, Critical Infrastructure, by Hakim Weatherspoon 20

How to Build xClouds 10/11/2010 IBM Visit, Critical Infrastructure, by Hakim Weatherspoon 21

How to Build xClouds 10/11/2010 IBM Visit, Critical Infrastructure, by Hakim Weatherspoon 22

How to Build xClouds 10/11/2010 IBM Visit, Critical Infrastructure, by Hakim Weatherspoon 23

How to Build xClouds: Alternatives 10/11/2010 IBM Visit, Critical Infrastructure, by Hakim Weatherspoon 24

How to Build xClouds: Alternatives 10/11/2010 IBM Visit, Critical Infrastructure, by Hakim Weatherspoon 25

How to Build xClouds: Alternatives 10/11/2010 IBM Visit, Critical Infrastructure, by Hakim Weatherspoon 26

How to Build xClouds: Another Layer Linux Dom0 Shared Memory Device: Ring Linux DomU: VM Backend Frontend PCI-Driver Xen Baremetal

How to Build xClouds: Another Layer Linux Dom0 Backend Dom0 for Xenblanket PVDomU PVDomU Frontend Frontend Backend Frontend Xen - 4.1.1 Blanket PCI-Driver 1st-Layer Xen Device Baremetal Hypercalls

Hypercall Passthrough Need Hypercall Passthrough – Nested Dom0 must be able to get information about shared memory devices from 1st Layer-Xen – Nested Dom0 can only issue hypercall to Nested Xen So, nested Xen should help passthrough related hypercalls

Will xClouds Perform? 10/11/2010 IBM Visit, Critical Infrastructure, by Hakim Weatherspoon 32

Configuration for Comparison 10/11/2010 IBM Visit, Critical Infrastructure, by Hakim Weatherspoon 33

Nested Microbenchmark 10/11/2010 IBM Visit, Critical Infrastructure, by Hakim Weatherspoon 34

Disk Write Throughput 10/11/2010 IBM Visit, Critical Infrastructure, by Hakim Weatherspoon 35

Network Receive Throughput 10/11/2010 IBM Visit, Critical Infrastructure, by Hakim Weatherspoon 36

xClouds works Today! Nested paravirtual device drivers Xen on EC2

xClouds works Today! Nested paravirtual device drivers Xen on EC2 App Guest OS 33KB VMM VMM App Object 100 KB Guest OS App VMM Guest OS VMM 33KB VMM VMM 33KB VMM VMM Can create your own Cloud-within-a-Cloud 33KB VMM VMM

xClouds works Today! Graduate Students – Dan Williams – Zhefu Jiang – Ji Yong Shin External Collaborators – Hani Jamjoom (IBM)

Summary “With great power comes great responsibility” – Cloud technology can be used to address economic concerns Treating the cloud as a commodity – Users need to be able to trade-off overhead and vendor mobility – Providers need to be accountable to users and environment Lots more research to do to achieve the promise of the Cloud

“Nature is a mutable cloud which is always and never the same” – Ralph Waldo Emerson Paper Trail Theme: Cloud & Vendor Lock-in – xCloud/Xen-Blanket in EuroSys-2012 – xCloud in HotCloud-2011 – Overdriver in VEE-2011 – RACS in SOCC-2010 More at http://fireless.cs.cornell.edu and also http://xcloud.cs.cornell.edu Email: [email protected]

Backup