SCinet Security Boosted by Utah’s CloudLab Site

November 2, 2016

Nov. 2 — SCinet is the backbone of SC, and the volunteer-driven Network Security Team goes to great lengths to protect that backbone from threats. Planning network security strategies and tactics begins nearly a year before the conference. As threats evolve, the team relies on new partnerships and innovative solutions to overcome emerging challenges. This year, the team is collaborating with CloudLab, a cloud computing testbed funded by the National Science Foundation (Grant No. CNS-1302688), to analyze terabytes of network traffic data during SC.

In observance of October’s National Cyber Security Awareness Month, we visited with Jeff Boote and Alan Commike, co-leads of the SCinet Network Security Team, and Robert Ricci, PI for CloudLab, about how this collaboration benefits exhibitors, attendees and volunteers at SC16.

Who shares in the responsibility for network security at SC?

Alan Commike and Jeff Boote: Network security touches every layer of SCinet. When you build a powerful network like SCinet from the ground up annually, network security cannot be achieved in isolation and it needs to be built into the network from the very start. Planning for SCinet starts nearly a year prior to the show opening. As the general SCinet architecture takes shape, the Network Security Team works closely with other SCinet teams – including Wide Area Networking, Routing, Fiber, Interconnect, DevOps, Edge Networking and the Help Desk – to ensure vendors, attendees and researchers have a successful SC. We also engage conference-goers in sharing the responsibility for computer security at SC. The SCinet Help Desk provides copies of our security tips handout, with security best practices for SC and beyond. If we find a compromised system, we help remediate the issue and then engage in conversation about how to secure the system going forward.

How has the network security strategy for SCinet changed over time? What, if anything, has remained consistent?

AC and JB: The goal has remained consistent through the years: we protect SCinet and all vendor, exhibitor and attendee resources that connect to it during SC. The challenge is to do so while working within the parameters of a very high-speed, high-traffic, open network. As threats become more sophisticated, the Network Security Team scales up protection efforts. In the past, we concentrated on protecting SCinet’s border, and now we are closely examining what’s happening inside the network, too. We spend as much effort looking for malicious intent on the commodity WiFi network as we do on the border between SCinet and the Internet at large. This year, we are partnering with CloudLab, which has a facility in Salt Lake City that provides the flexibility, autonomy and computational power we need to analyze network traffic and mitigate potential threats. The partnerships and the tools we rely on to secure SCinet continue to evolve, but the goal of finding bad actors on the network early and reliably is the same as it was 10 years ago.

What is CloudLab and how does it help the research community?

Robert Ricci: CloudLab is a facility that empowers researchers and educators to build their own clouds. Those who have used a cloud that is commercially-provided or owned by their home institution may be well aware of the limitations of not having full view or control over all layers, including the network, virtualization and the storage system. This is fine for a lot of work, but if you want to push forward the basic notion of what the cloud is and what it is good for, then you need to be able to work on those layers. That is where CloudLab comes in. CloudLab provides users with a set of resources they can use to build their own clouds, in which they can see everything and are in complete control. There are three main CloudLab sites: the University of Wisconsin – Madison, Clemson University and the University of Utah. CoudLab is funded by the National Science Foundation, so researchers and educators can apply for an account at www.cloudlab.us and use the lab at no cost.

What else makes CloudLab unique?

RR: CloudLab offers a lab facility that allows researchers to push the technology further without fear of breaking something others rely on. Researchers working in a production environment are bound by a tension between wanting to push the infrastructure to its edge – making it go beyond uses intended by designers or operators – and being held back by the fear that doing so will break it. We need testbeds in which researchers can push, prod and poke the technology with more flexibility and without fear. This is the kind of environment that CloudLab offers.

The CloudLab site in Utah has an emphasis on energy-efficient clouds. Our equipment includes both traditional server platforms and lower-power options using ARM architecture. Soon we will add Intel systems-on-chips designs. CloudLab machines have power instrumentation that allows users to evaluate not only the performance and robustness of the technologies, but also how “green” they are. Researchers can test different architectures to examine tradeoffs between power, performance and other metrics.

How will SCinet Network Security use CloudLab at SC16?

AC and JB: The Network Security Team probes and analyzes all of SCinet. We begin the process in late October during staging week to ensure SCinet equipment is not compromised when we bring it into the Salt Palace. Our job starts as soon as the first piece of SCinet equipment is powered on since we often see external probing and attacks soon after the network goes online. This provides us with a baseline, and we expand our analysis as more components of SCinet are brought online. During SC16, terabytes of analysis data, including logs, metadata and possible indicators of compromise, will be sent over a private, encrypted connection from SCinet to CloudLab. This secure connection is made possible by the ability to create private networks on the Utah Education Network and the University of Utah’s Science DMZ, which is managed by University Information Technology and the Center for High Performance Computing.

The data will be used for real-time and historical analysis, which looks at what happened over the past few hours and days during SC. The analysis occurring within the CloudLab computer cluster provides us with actionable intelligence regarding what is happening on SCinet. While lessons learned from that analysis carries over to our planning efforts for the next SC, we discard collected data at the end of the show to protect exhibitor, attendee and volunteer privacy.

RR: CloudLab provides SCinet’s Network Security Team with the resources needed to analyze those terabytes of data. Network data will be securely routed to computer clusters hosted in the University of Utah’s Downtown Data Center, just a few blocks from the Salt Palace. With CloudLab’s flexibility, the team will have complete control over the environment and can set up the processing pipeline to best meet their needs.


Source: SC16

Subscribe to HPCwire's Weekly Update!

Be the most informed person in the room! Stay ahead of the tech trends with industry updates delivered to you every week!

Google Announces Sixth-generation AI Chip, a TPU Called Trillium

May 17, 2024

On Tuesday May 14th, Google announced its sixth-generation TPU (tensor processing unit) called Trillium.  The chip, essentially a TPU v6, is the company's latest weapon in the AI battle with GPU maker Nvidia and clou Read more…

ISC 2024 Student Cluster Competition

May 16, 2024

The 2024 ISC 2024 competition welcomed 19 virtual (remote) and eight in-person teams. The in-person teams participated in the conference venue and, while the virtual teams competed using the Bridges-2 supercomputers at t Read more…

Grace Hopper Gets Busy with Science 

May 16, 2024

Nvidia’s new Grace Hopper Superchip (GH200) processor has landed in nine new worldwide systems. The GH200 is a recently announced chip from Nvidia that eliminates the PCI bus from the CPU/GPU communications pathway.  Read more…

Europe’s Race towards Quantum-HPC Integration and Quantum Advantage

May 16, 2024

What an interesting panel, Quantum Advantage — Where are We and What is Needed? While the panelists looked slightly weary — their’s was, after all, one of the last panels at ISC 2024 — the discussion was fascinat Read more…

The Future of AI in Science

May 15, 2024

AI is one of the most transformative and valuable scientific tools ever developed. By harnessing vast amounts of data and computational power, AI systems can uncover patterns, generate insights, and make predictions that Read more…

Some Reasons Why Aurora Didn’t Take First Place in the Top500 List

May 15, 2024

The makers of the Aurora supercomputer, which is housed at the Argonne National Laboratory, gave some reasons why the system didn't make the top spot on the Top500 list of the fastest supercomputers in the world. At s Read more…

Google Announces Sixth-generation AI Chip, a TPU Called Trillium

May 17, 2024

On Tuesday May 14th, Google announced its sixth-generation TPU (tensor processing unit) called Trillium.  The chip, essentially a TPU v6, is the company's l Read more…

Europe’s Race towards Quantum-HPC Integration and Quantum Advantage

May 16, 2024

What an interesting panel, Quantum Advantage — Where are We and What is Needed? While the panelists looked slightly weary — their’s was, after all, one of Read more…

The Future of AI in Science

May 15, 2024

AI is one of the most transformative and valuable scientific tools ever developed. By harnessing vast amounts of data and computational power, AI systems can un Read more…

Some Reasons Why Aurora Didn’t Take First Place in the Top500 List

May 15, 2024

The makers of the Aurora supercomputer, which is housed at the Argonne National Laboratory, gave some reasons why the system didn't make the top spot on the Top Read more…

ISC 2024 Keynote: High-precision Computing Will Be a Foundation for AI Models

May 15, 2024

Some scientific computing applications cannot sacrifice accuracy and will always require high-precision computing. Therefore, conventional high-performance c Read more…

Shutterstock 493860193

Linux Foundation Announces the Launch of the High-Performance Software Foundation

May 14, 2024

The Linux Foundation, the nonprofit organization enabling mass innovation through open source, is excited to announce the launch of the High-Performance Softw Read more…

ISC 2024: Hyperion Research Predicts HPC Market Rebound after Flat 2023

May 13, 2024

First, the top line: the overall HPC market was flat in 2023 at roughly $37 billion, bogged down by supply chain issues and slowed acceptance of some larger sys Read more…

Top 500: Aurora Breaks into Exascale, but Can’t Get to the Frontier of HPC

May 13, 2024

The 63rd installment of the TOP500 list is available today in coordination with the kickoff of ISC 2024 in Hamburg, Germany. Once again, the Frontier system at Read more…

Synopsys Eats Ansys: Does HPC Get Indigestion?

February 8, 2024

Recently, it was announced that Synopsys is buying HPC tool developer Ansys. Started in Pittsburgh, Pa., in 1970 as Swanson Analysis Systems, Inc. (SASI) by John Swanson (and eventually renamed), Ansys serves the CAE (Computer Aided Engineering)/multiphysics engineering simulation market. Read more…

Nvidia H100: Are 550,000 GPUs Enough for This Year?

August 17, 2023

The GPU Squeeze continues to place a premium on Nvidia H100 GPUs. In a recent Financial Times article, Nvidia reports that it expects to ship 550,000 of its lat Read more…

Comparing NVIDIA A100 and NVIDIA L40S: Which GPU is Ideal for AI and Graphics-Intensive Workloads?

October 30, 2023

With long lead times for the NVIDIA H100 and A100 GPUs, many organizations are looking at the new NVIDIA L40S GPU, which it’s a new GPU optimized for AI and g Read more…

Choosing the Right GPU for LLM Inference and Training

December 11, 2023

Accelerating the training and inference processes of deep learning models is crucial for unleashing their true potential and NVIDIA GPUs have emerged as a game- Read more…

Shutterstock 1606064203

Meta’s Zuckerberg Puts Its AI Future in the Hands of 600,000 GPUs

January 25, 2024

In under two minutes, Meta's CEO, Mark Zuckerberg, laid out the company's AI plans, which included a plan to build an artificial intelligence system with the eq Read more…

AMD MI3000A

How AMD May Get Across the CUDA Moat

October 5, 2023

When discussing GenAI, the term "GPU" almost always enters the conversation and the topic often moves toward performance and access. Interestingly, the word "GPU" is assumed to mean "Nvidia" products. (As an aside, the popular Nvidia hardware used in GenAI are not technically... Read more…

Nvidia’s New Blackwell GPU Can Train AI Models with Trillions of Parameters

March 18, 2024

Nvidia's latest and fastest GPU, codenamed Blackwell, is here and will underpin the company's AI plans this year. The chip offers performance improvements from Read more…

Some Reasons Why Aurora Didn’t Take First Place in the Top500 List

May 15, 2024

The makers of the Aurora supercomputer, which is housed at the Argonne National Laboratory, gave some reasons why the system didn't make the top spot on the Top Read more…

Leading Solution Providers

Contributors

Eyes on the Quantum Prize – D-Wave Says its Time is Now

January 30, 2024

Early quantum computing pioneer D-Wave again asserted – that at least for D-Wave – the commercial quantum era has begun. Speaking at its first in-person Ana Read more…

Shutterstock 1285747942

AMD’s Horsepower-packed MI300X GPU Beats Nvidia’s Upcoming H200

December 7, 2023

AMD and Nvidia are locked in an AI performance battle – much like the gaming GPU performance clash the companies have waged for decades. AMD has claimed it Read more…

The GenAI Datacenter Squeeze Is Here

February 1, 2024

The immediate effect of the GenAI GPU Squeeze was to reduce availability, either direct purchase or cloud access, increase cost, and push demand through the roof. A secondary issue has been developing over the last several years. Even though your organization secured several racks... Read more…

Intel Plans Falcon Shores 2 GPU Supercomputing Chip for 2026  

August 8, 2023

Intel is planning to onboard a new version of the Falcon Shores chip in 2026, which is code-named Falcon Shores 2. The new product was announced by CEO Pat Gel Read more…

The NASA Black Hole Plunge

May 7, 2024

We have all thought about it. No one has done it, but now, thanks to HPC, we see what it looks like. Hold on to your feet because NASA has released videos of wh Read more…

GenAI Having Major Impact on Data Culture, Survey Says

February 21, 2024

While 2023 was the year of GenAI, the adoption rates for GenAI did not match expectations. Most organizations are continuing to invest in GenAI but are yet to Read more…

How the Chip Industry is Helping a Battery Company

May 8, 2024

Chip companies, once seen as engineering pure plays, are now at the center of geopolitical intrigue. Chip manufacturing firms, especially TSMC and Intel, have b Read more…

Q&A with Nvidia’s Chief of DGX Systems on the DGX-GB200 Rack-scale System

March 27, 2024

Pictures of Nvidia's new flagship mega-server, the DGX GB200, on the GTC show floor got favorable reactions on social media for the sheer amount of computing po Read more…

  • arrow
  • Click Here for More Headlines
  • arrow
HPCwire