SCinet Security Boosted by Utah’s CloudLab Site

November 2, 2016

Nov. 2 — SCinet is the backbone of SC, and the volunteer-driven Network Security Team goes to great lengths to protect that backbone from threats. Planning network security strategies and tactics begins nearly a year before the conference. As threats evolve, the team relies on new partnerships and innovative solutions to overcome emerging challenges. This year, the team is collaborating with CloudLab, a cloud computing testbed funded by the National Science Foundation (Grant No. CNS-1302688), to analyze terabytes of network traffic data during SC.

In observance of October’s National Cyber Security Awareness Month, we visited with Jeff Boote and Alan Commike, co-leads of the SCinet Network Security Team, and Robert Ricci, PI for CloudLab, about how this collaboration benefits exhibitors, attendees and volunteers at SC16.

Who shares in the responsibility for network security at SC?

Alan Commike and Jeff Boote: Network security touches every layer of SCinet. When you build a powerful network like SCinet from the ground up annually, network security cannot be achieved in isolation and it needs to be built into the network from the very start. Planning for SCinet starts nearly a year prior to the show opening. As the general SCinet architecture takes shape, the Network Security Team works closely with other SCinet teams – including Wide Area Networking, Routing, Fiber, Interconnect, DevOps, Edge Networking and the Help Desk – to ensure vendors, attendees and researchers have a successful SC. We also engage conference-goers in sharing the responsibility for computer security at SC. The SCinet Help Desk provides copies of our security tips handout, with security best practices for SC and beyond. If we find a compromised system, we help remediate the issue and then engage in conversation about how to secure the system going forward.

How has the network security strategy for SCinet changed over time? What, if anything, has remained consistent?

AC and JB: The goal has remained consistent through the years: we protect SCinet and all vendor, exhibitor and attendee resources that connect to it during SC. The challenge is to do so while working within the parameters of a very high-speed, high-traffic, open network. As threats become more sophisticated, the Network Security Team scales up protection efforts. In the past, we concentrated on protecting SCinet’s border, and now we are closely examining what’s happening inside the network, too. We spend as much effort looking for malicious intent on the commodity WiFi network as we do on the border between SCinet and the Internet at large. This year, we are partnering with CloudLab, which has a facility in Salt Lake City that provides the flexibility, autonomy and computational power we need to analyze network traffic and mitigate potential threats. The partnerships and the tools we rely on to secure SCinet continue to evolve, but the goal of finding bad actors on the network early and reliably is the same as it was 10 years ago.

What is CloudLab and how does it help the research community?

Robert Ricci: CloudLab is a facility that empowers researchers and educators to build their own clouds. Those who have used a cloud that is commercially-provided or owned by their home institution may be well aware of the limitations of not having full view or control over all layers, including the network, virtualization and the storage system. This is fine for a lot of work, but if you want to push forward the basic notion of what the cloud is and what it is good for, then you need to be able to work on those layers. That is where CloudLab comes in. CloudLab provides users with a set of resources they can use to build their own clouds, in which they can see everything and are in complete control. There are three main CloudLab sites: the University of Wisconsin – Madison, Clemson University and the University of Utah. CoudLab is funded by the National Science Foundation, so researchers and educators can apply for an account at www.cloudlab.us and use the lab at no cost.

What else makes CloudLab unique?

RR: CloudLab offers a lab facility that allows researchers to push the technology further without fear of breaking something others rely on. Researchers working in a production environment are bound by a tension between wanting to push the infrastructure to its edge – making it go beyond uses intended by designers or operators – and being held back by the fear that doing so will break it. We need testbeds in which researchers can push, prod and poke the technology with more flexibility and without fear. This is the kind of environment that CloudLab offers.

The CloudLab site in Utah has an emphasis on energy-efficient clouds. Our equipment includes both traditional server platforms and lower-power options using ARM architecture. Soon we will add Intel systems-on-chips designs. CloudLab machines have power instrumentation that allows users to evaluate not only the performance and robustness of the technologies, but also how “green” they are. Researchers can test different architectures to examine tradeoffs between power, performance and other metrics.

How will SCinet Network Security use CloudLab at SC16?

AC and JB: The Network Security Team probes and analyzes all of SCinet. We begin the process in late October during staging week to ensure SCinet equipment is not compromised when we bring it into the Salt Palace. Our job starts as soon as the first piece of SCinet equipment is powered on since we often see external probing and attacks soon after the network goes online. This provides us with a baseline, and we expand our analysis as more components of SCinet are brought online. During SC16, terabytes of analysis data, including logs, metadata and possible indicators of compromise, will be sent over a private, encrypted connection from SCinet to CloudLab. This secure connection is made possible by the ability to create private networks on the Utah Education Network and the University of Utah’s Science DMZ, which is managed by University Information Technology and the Center for High Performance Computing.

The data will be used for real-time and historical analysis, which looks at what happened over the past few hours and days during SC. The analysis occurring within the CloudLab computer cluster provides us with actionable intelligence regarding what is happening on SCinet. While lessons learned from that analysis carries over to our planning efforts for the next SC, we discard collected data at the end of the show to protect exhibitor, attendee and volunteer privacy.

RR: CloudLab provides SCinet’s Network Security Team with the resources needed to analyze those terabytes of data. Network data will be securely routed to computer clusters hosted in the University of Utah’s Downtown Data Center, just a few blocks from the Salt Palace. With CloudLab’s flexibility, the team will have complete control over the environment and can set up the processing pipeline to best meet their needs.


Source: SC16

Subscribe to HPCwire's Weekly Update!

Be the most informed person in the room! Stay ahead of the tech trends with industy updates delivered to you every week!

GTC21: Dell Building Cloud Native Supercomputers at U Cambridge and Durham

April 14, 2021

In conjunction with GTC21, Dell Technologies today announced new supercomputers at universities across DiRAC (Distributed Research utilizing Advanced Computing) in the UK with plans to explore use of Nvidia BlueField DPU Read more…

The Role and Potential of CPUs in Deep Learning

April 14, 2021

Deep learning (DL) applications have unique architectural characteristics and efficiency requirements. Hence, the choice of computing system has a profound impact on how large a piece of the DL pie a user can finally enj Read more…

GTC21: Nvidia Launches cuQuantum; Dips a Toe in Quantum Computing

April 13, 2021

Yesterday Nvidia officially dipped a toe into quantum computing with the launch of cuQuantum SDK, a development platform for simulating quantum circuits on GPU-accelerated systems. As Nvidia CEO Jensen Huang emphasized i Read more…

Nvidia Aims Clara Healthcare at Drug Discovery, Imaging via DGX

April 12, 2021

Nvidia Corp. continues to expand its Clara healthcare platform with the addition of computational drug discovery and medical imaging tools based on its DGX A100 platform, related InfiniBand networking and its AGX develop Read more…

Nvidia Serves Up Its First Arm Datacenter CPU ‘Grace’ During Kitchen Keynote

April 12, 2021

Today at Nvidia’s annual spring GPU technology conference, held virtually once more due to the ongoing pandemic, the company announced its first ever Arm-based CPU, called Grace in honor of the famous American programmer Grace Hopper. Read more…

AWS Solution Channel

Volkswagen Passenger Cars Uses NICE DCV for High-Performance 3D Remote Visualization

 

Volkswagen Passenger Cars has been one of the world’s largest car manufacturers for over 70 years. The company delivers more than 6 million automobiles to global customers every year, from 50 production locations on five continents. Read more…

Nvidia Debuts BlueField-3 – Its Next DPU with Big Plans for an Expanded Role

April 12, 2021

Nvidia today announced its next generation data processing unit (DPU) – BlueField-3 – adding more substance to its evolving concept of the DPU as a full-fledged partner to CPUs and GPUs in delivering advanced computi Read more…

GTC21: Dell Building Cloud Native Supercomputers at U Cambridge and Durham

April 14, 2021

In conjunction with GTC21, Dell Technologies today announced new supercomputers at universities across DiRAC (Distributed Research utilizing Advanced Computing) Read more…

The Role and Potential of CPUs in Deep Learning

April 14, 2021

Deep learning (DL) applications have unique architectural characteristics and efficiency requirements. Hence, the choice of computing system has a profound impa Read more…

Nvidia Serves Up Its First Arm Datacenter CPU ‘Grace’ During Kitchen Keynote

April 12, 2021

Today at Nvidia’s annual spring GPU technology conference, held virtually once more due to the ongoing pandemic, the company announced its first ever Arm-based CPU, called Grace in honor of the famous American programmer Grace Hopper. Read more…

Nvidia Debuts BlueField-3 – Its Next DPU with Big Plans for an Expanded Role

April 12, 2021

Nvidia today announced its next generation data processing unit (DPU) – BlueField-3 – adding more substance to its evolving concept of the DPU as a full-fle Read more…

Nvidia’s Newly DPU-Enabled SuperPod Is a Multi-Tenant, Cloud-Native Supercomputer

April 12, 2021

At GTC 2021, Nvidia has announced an upgraded iteration of its DGX SuperPods, calling the new offering “the first cloud-native, multi-tenant supercomputer.” Read more…

Tune in to Watch Nvidia’s GTC21 Keynote with Jensen Huang – Recording Now Available

April 12, 2021

Join HPCwire right here on Monday, April 12, at 8:30 am PT to see the Nvidia GTC21 keynote from Nvidia’s CEO, Jensen Huang, livestreamed in its entirety. Hosted by HPCwire, you can click to join the Huang keynote on our livestream to hear Nvidia’s expected news and... Read more…

The US Places Seven Additional Chinese Supercomputing Entities on Blacklist

April 8, 2021

As tensions between the U.S. and China continue to simmer, the U.S. government today added seven Chinese supercomputing entities to an economic blacklist. The U Read more…

Habana’s AI Silicon Comes to San Diego Supercomputer Center

April 8, 2021

Habana Labs, an Intel-owned AI company, has partnered with server maker Supermicro to provide high-performance, high-efficiency AI computing in the form of new Read more…

Julia Update: Adoption Keeps Climbing; Is It a Python Challenger?

January 13, 2021

The rapid adoption of Julia, the open source, high level programing language with roots at MIT, shows no sign of slowing according to data from Julialang.org. I Read more…

Intel Launches 10nm ‘Ice Lake’ Datacenter CPU with Up to 40 Cores

April 6, 2021

The wait is over. Today Intel officially launched its 10nm datacenter CPU, the third-generation Intel Xeon Scalable processor, codenamed Ice Lake. With up to 40 Read more…

CERN Is Betting Big on Exascale

April 1, 2021

The European Organization for Nuclear Research (CERN) involves 23 countries, 15,000 researchers, billions of dollars a year, and the biggest machine in the worl Read more…

Programming the Soon-to-Be World’s Fastest Supercomputer, Frontier

January 5, 2021

What’s it like designing an app for the world’s fastest supercomputer, set to come online in the United States in 2021? The University of Delaware’s Sunita Chandrasekaran is leading an elite international team in just that task. Chandrasekaran, assistant professor of computer and information sciences, recently was named... Read more…

HPE Launches Storage Line Loaded with IBM’s Spectrum Scale File System

April 6, 2021

HPE today launched a new family of storage solutions bundled with IBM’s Spectrum Scale Erasure Code Edition parallel file system (description below) and featu Read more…

10nm, 7nm, 5nm…. Should the Chip Nanometer Metric Be Replaced?

June 1, 2020

The biggest cool factor in server chips is the nanometer. AMD beating Intel to a CPU built on a 7nm process node* – with 5nm and 3nm on the way – has been i Read more…

Saudi Aramco Unveils Dammam 7, Its New Top Ten Supercomputer

January 21, 2021

By revenue, oil and gas giant Saudi Aramco is one of the largest companies in the world, and it has historically employed commensurate amounts of supercomputing Read more…

Quantum Computer Start-up IonQ Plans IPO via SPAC

March 8, 2021

IonQ, a Maryland-based quantum computing start-up working with ion trap technology, plans to go public via a Special Purpose Acquisition Company (SPAC) merger a Read more…

Leading Solution Providers

Contributors

Can Deep Learning Replace Numerical Weather Prediction?

March 3, 2021

Numerical weather prediction (NWP) is a mainstay of supercomputing. Some of the first applications of the first supercomputers dealt with climate modeling, and Read more…

Livermore’s El Capitan Supercomputer to Debut HPE ‘Rabbit’ Near Node Local Storage

February 18, 2021

A near node local storage innovation called Rabbit factored heavily into Lawrence Livermore National Laboratory’s decision to select Cray’s proposal for its CORAL-2 machine, the lab’s first exascale-class supercomputer, El Capitan. Details of this new storage technology were revealed... Read more…

New Deep Learning Algorithm Solves Rubik’s Cube

July 25, 2018

Solving (and attempting to solve) Rubik’s Cube has delighted millions of puzzle lovers since 1974 when the cube was invented by Hungarian sculptor and archite Read more…

African Supercomputing Center Inaugurates ‘Toubkal,’ Most Powerful Supercomputer on the Continent

February 25, 2021

Historically, Africa hasn’t exactly been synonymous with supercomputing. There are only a handful of supercomputers on the continent, with few ranking on the Read more…

The History of Supercomputing vs. COVID-19

March 9, 2021

The COVID-19 pandemic poses a greater challenge to the high-performance computing community than any before. HPCwire's coverage of the supercomputing response t Read more…

AMD Launches Epyc ‘Milan’ with 19 SKUs for HPC, Enterprise and Hyperscale

March 15, 2021

At a virtual launch event held today (Monday), AMD revealed its third-generation Epyc “Milan” CPU lineup: a set of 19 SKUs -- including the flagship 64-core, 280-watt 7763 part --  aimed at HPC, enterprise and cloud workloads. Notably, the third-gen Epyc Milan chips achieve 19 percent... Read more…

HPE Names Justin Hotard New HPC Chief as Pete Ungaro Departs

March 2, 2021

HPE CEO Antonio Neri announced today (March 2, 2021) the appointment of Justin Hotard as general manager of HPC, mission critical solutions and labs, effective Read more…

Microsoft, HPE Bringing AI, Edge, Cloud to Earth Orbit in Preparation for Mars Missions

February 12, 2021

The International Space Station will soon get a delivery of powerful AI, edge and cloud computing tools from HPE and Microsoft Azure to expand technology experi Read more…

  • arrow
  • Click Here for More Headlines
  • arrow
HPCwire