SCinet Security Boosted by Utah’s CloudLab Site

November 2, 2016

Nov. 2 — SCinet is the backbone of SC, and the volunteer-driven Network Security Team goes to great lengths to protect that backbone from threats. Planning network security strategies and tactics begins nearly a year before the conference. As threats evolve, the team relies on new partnerships and innovative solutions to overcome emerging challenges. This year, the team is collaborating with CloudLab, a cloud computing testbed funded by the National Science Foundation (Grant No. CNS-1302688), to analyze terabytes of network traffic data during SC.

In observance of October’s National Cyber Security Awareness Month, we visited with Jeff Boote and Alan Commike, co-leads of the SCinet Network Security Team, and Robert Ricci, PI for CloudLab, about how this collaboration benefits exhibitors, attendees and volunteers at SC16.

Who shares in the responsibility for network security at SC?

Alan Commike and Jeff Boote: Network security touches every layer of SCinet. When you build a powerful network like SCinet from the ground up annually, network security cannot be achieved in isolation and it needs to be built into the network from the very start. Planning for SCinet starts nearly a year prior to the show opening. As the general SCinet architecture takes shape, the Network Security Team works closely with other SCinet teams – including Wide Area Networking, Routing, Fiber, Interconnect, DevOps, Edge Networking and the Help Desk – to ensure vendors, attendees and researchers have a successful SC. We also engage conference-goers in sharing the responsibility for computer security at SC. The SCinet Help Desk provides copies of our security tips handout, with security best practices for SC and beyond. If we find a compromised system, we help remediate the issue and then engage in conversation about how to secure the system going forward.

How has the network security strategy for SCinet changed over time? What, if anything, has remained consistent?

AC and JB: The goal has remained consistent through the years: we protect SCinet and all vendor, exhibitor and attendee resources that connect to it during SC. The challenge is to do so while working within the parameters of a very high-speed, high-traffic, open network. As threats become more sophisticated, the Network Security Team scales up protection efforts. In the past, we concentrated on protecting SCinet’s border, and now we are closely examining what’s happening inside the network, too. We spend as much effort looking for malicious intent on the commodity WiFi network as we do on the border between SCinet and the Internet at large. This year, we are partnering with CloudLab, which has a facility in Salt Lake City that provides the flexibility, autonomy and computational power we need to analyze network traffic and mitigate potential threats. The partnerships and the tools we rely on to secure SCinet continue to evolve, but the goal of finding bad actors on the network early and reliably is the same as it was 10 years ago.

What is CloudLab and how does it help the research community?

Robert Ricci: CloudLab is a facility that empowers researchers and educators to build their own clouds. Those who have used a cloud that is commercially-provided or owned by their home institution may be well aware of the limitations of not having full view or control over all layers, including the network, virtualization and the storage system. This is fine for a lot of work, but if you want to push forward the basic notion of what the cloud is and what it is good for, then you need to be able to work on those layers. That is where CloudLab comes in. CloudLab provides users with a set of resources they can use to build their own clouds, in which they can see everything and are in complete control. There are three main CloudLab sites: the University of Wisconsin – Madison, Clemson University and the University of Utah. CoudLab is funded by the National Science Foundation, so researchers and educators can apply for an account at www.cloudlab.us and use the lab at no cost.

What else makes CloudLab unique?

RR: CloudLab offers a lab facility that allows researchers to push the technology further without fear of breaking something others rely on. Researchers working in a production environment are bound by a tension between wanting to push the infrastructure to its edge – making it go beyond uses intended by designers or operators – and being held back by the fear that doing so will break it. We need testbeds in which researchers can push, prod and poke the technology with more flexibility and without fear. This is the kind of environment that CloudLab offers.

The CloudLab site in Utah has an emphasis on energy-efficient clouds. Our equipment includes both traditional server platforms and lower-power options using ARM architecture. Soon we will add Intel systems-on-chips designs. CloudLab machines have power instrumentation that allows users to evaluate not only the performance and robustness of the technologies, but also how “green” they are. Researchers can test different architectures to examine tradeoffs between power, performance and other metrics.

How will SCinet Network Security use CloudLab at SC16?

AC and JB: The Network Security Team probes and analyzes all of SCinet. We begin the process in late October during staging week to ensure SCinet equipment is not compromised when we bring it into the Salt Palace. Our job starts as soon as the first piece of SCinet equipment is powered on since we often see external probing and attacks soon after the network goes online. This provides us with a baseline, and we expand our analysis as more components of SCinet are brought online. During SC16, terabytes of analysis data, including logs, metadata and possible indicators of compromise, will be sent over a private, encrypted connection from SCinet to CloudLab. This secure connection is made possible by the ability to create private networks on the Utah Education Network and the University of Utah’s Science DMZ, which is managed by University Information Technology and the Center for High Performance Computing.

The data will be used for real-time and historical analysis, which looks at what happened over the past few hours and days during SC. The analysis occurring within the CloudLab computer cluster provides us with actionable intelligence regarding what is happening on SCinet. While lessons learned from that analysis carries over to our planning efforts for the next SC, we discard collected data at the end of the show to protect exhibitor, attendee and volunteer privacy.

RR: CloudLab provides SCinet’s Network Security Team with the resources needed to analyze those terabytes of data. Network data will be securely routed to computer clusters hosted in the University of Utah’s Downtown Data Center, just a few blocks from the Salt Palace. With CloudLab’s flexibility, the team will have complete control over the environment and can set up the processing pipeline to best meet their needs.


Source: SC16

Subscribe to HPCwire's Weekly Update!

Be the most informed person in the room! Stay ahead of the tech trends with industy updates delivered to you every week!

Help Wanted: QED-C Survey Spotlights Skills Sought by Quantum Industry

September 28, 2021

Developing an adequate workforce for the young but fast-growing quantum information sciences industry is seen as a critical element for success. Just what that means in terms of skillsets and positions is becoming cleare Read more…

Pittsburgh Supercomputer Powers Machine Learning Analysis of Rare East Asian Stamps

September 27, 2021

Setting aside the relatively recent rise of electronic signatures, personalized stamps have been a popular form of identification for formal documents in East Asia. These identifiers – easily forged, but culturally ubi Read more…

Purdue Researchers Peer into the ‘Fog of the Machine Learning Accelerator War’

September 27, 2021

Making sense of ML performance and benchmark data is an ongoing challenge. In light of last week’s release of the most recent MLPerf (v1.1) inference results, now is perhaps a good time to review how valuable (or not) Read more…

Quantum Monte Carlo at Exascale Could Be Key to Finding New Semiconductor Materials

September 27, 2021

Researchers are urgently trying to identify possible materials to replace silicon-based semiconductors. The processing power in modern computers continues to increase even as the size of the silicon on which components a Read more…

The Case for an Edge-Driven Future for Supercomputing

September 24, 2021

“Exascale only becomes valuable when it’s creating and using data that we care about,” said Pete Beckman, co-director of the Northwestern-Argonne Institute of Science and Engineering (NAISE), at the most recent HPC Read more…

AWS Solution Channel

Introducing AWS ParallelCluster 3

Running HPC workloads, like computational fluid dynamics (CFD), molecular dynamics, or weather forecasting typically involves a lot of moving parts. You need a hundreds or thousands of compute cores, a job scheduler for keeping them fed, a shared file system that’s tuned for throughput or IOPS (or both), loads of libraries, a fast network, and a head node to make sense of all this. Read more…

Three Universities Team for NSF-Funded ‘ACES’ Reconfigurable Supercomputer Prototype

September 23, 2021

As Moore’s law slows, HPC developers are increasingly looking for speed gains in specialized code and specialized hardware – but this specialization, in turn, can make testing and deploying code trickier than ever. Now, researchers from Texas A&M University, the University of Illinois at Urbana... Read more…

Purdue Researchers Peer into the ‘Fog of the Machine Learning Accelerator War’

September 27, 2021

Making sense of ML performance and benchmark data is an ongoing challenge. In light of last week’s release of the most recent MLPerf (v1.1) inference results, Read more…

Quantum Monte Carlo at Exascale Could Be Key to Finding New Semiconductor Materials

September 27, 2021

Researchers are urgently trying to identify possible materials to replace silicon-based semiconductors. The processing power in modern computers continues to in Read more…

The Case for an Edge-Driven Future for Supercomputing

September 24, 2021

“Exascale only becomes valuable when it’s creating and using data that we care about,” said Pete Beckman, co-director of the Northwestern-Argonne Institut Read more…

Three Universities Team for NSF-Funded ‘ACES’ Reconfigurable Supercomputer Prototype

September 23, 2021

As Moore’s law slows, HPC developers are increasingly looking for speed gains in specialized code and specialized hardware – but this specialization, in turn, can make testing and deploying code trickier than ever. Now, researchers from Texas A&M University, the University of Illinois at Urbana... Read more…

Qubit Stream: Monte Carlo Advance, Infosys Joins the Fray, D-Wave Meeting Plans, and More

September 23, 2021

It seems the stream of quantum computing reports never ceases. This week – IonQ and Goldman Sachs tackle Monte Carlo on quantum hardware, Cambridge Quantum pu Read more…

Asetek Announces It Is Exiting HPC to Protect Future Profitability

September 22, 2021

Liquid cooling specialist Asetek, well-known in HPC circles for its direct-to-chip cooling technology that is inside some of the fastest supercomputers in the world, announced today that it is exiting the HPC space amid multiple supply chain issues related to the pandemic. Although pandemic supply chain... Read more…

TACC Supercomputer Delves Into Protein Interactions

September 22, 2021

Adenosine triphosphate (ATP) is a compound used to funnel energy from mitochondria to other parts of the cell, enabling energy-driven functions like muscle contractions. For ATP to flow, though, the interaction between the hexokinase-II (HKII) enzyme and the proteins found in a specific channel on the mitochondria’s outer membrane. Now, simulations conducted on supercomputers at the Texas Advanced Computing Center (TACC) have simulated... Read more…

The Latest MLPerf Inference Results: Nvidia GPUs Hold Sway but Here Come CPUs and Intel

September 22, 2021

The latest round of MLPerf inference benchmark (v 1.1) results was released today and Nvidia again dominated, sweeping the top spots in the closed (apples-to-ap Read more…

Ahead of ‘Dojo,’ Tesla Reveals Its Massive Precursor Supercomputer

June 22, 2021

In spring 2019, Tesla made cryptic reference to a project called Dojo, a “super-powerful training computer” for video data processing. Then, in summer 2020, Tesla CEO Elon Musk tweeted: “Tesla is developing a [neural network] training computer called Dojo to process truly vast amounts of video data. It’s a beast! … A truly useful exaflop at de facto FP32.” Read more…

Enter Dojo: Tesla Reveals Design for Modular Supercomputer & D1 Chip

August 20, 2021

Two months ago, Tesla revealed a massive GPU cluster that it said was “roughly the number five supercomputer in the world,” and which was just a precursor to Tesla’s real supercomputing moonshot: the long-rumored, little-detailed Dojo system. “We’ve been scaling our neural network training compute dramatically over the last few years,” said Milan Kovac, Tesla’s director of autopilot engineering. Read more…

Esperanto, Silicon in Hand, Champions the Efficiency of Its 1,092-Core RISC-V Chip

August 27, 2021

Esperanto Technologies made waves last December when it announced ET-SoC-1, a new RISC-V-based chip aimed at machine learning that packed nearly 1,100 cores onto a package small enough to fit six times over on a single PCIe card. Now, Esperanto is back, silicon in-hand and taking aim... Read more…

CentOS Replacement Rocky Linux Is Now in GA and Under Independent Control

June 21, 2021

The Rocky Enterprise Software Foundation (RESF) is announcing the general availability of Rocky Linux, release 8.4, designed as a drop-in replacement for the soon-to-be discontinued CentOS. The GA release is launching six-and-a-half months after Red Hat deprecated its support for the widely popular, free CentOS server operating system. The Rocky Linux development effort... Read more…

Intel Completes LLVM Adoption; Will End Updates to Classic C/C++ Compilers in Future

August 10, 2021

Intel reported in a blog this week that its adoption of the open source LLVM architecture for Intel’s C/C++ compiler is complete. The transition is part of In Read more…

Hot Chips: Here Come the DPUs and IPUs from Arm, Nvidia and Intel

August 25, 2021

The emergence of data processing units (DPU) and infrastructure processing units (IPU) as potentially important pieces in cloud and datacenter architectures was Read more…

AMD-Xilinx Deal Gains UK, EU Approvals — China’s Decision Still Pending

July 1, 2021

AMD’s planned acquisition of FPGA maker Xilinx is now in the hands of Chinese regulators after needed antitrust approvals for the $35 billion deal were receiv Read more…

Google Launches TPU v4 AI Chips

May 20, 2021

Google CEO Sundar Pichai spoke for only one minute and 42 seconds about the company’s latest TPU v4 Tensor Processing Units during his keynote at the Google I Read more…

Leading Solution Providers

Contributors

HPE Wins $2B GreenLake HPC-as-a-Service Deal with NSA

September 1, 2021

In the heated, oft-contentious, government IT space, HPE has won a massive $2 billion contract to provide HPC and AI services to the United States’ National Security Agency (NSA). Following on the heels of the now-canceled $10 billion JEDI contract (reissued as JWCC) and a $10 billion... Read more…

10nm, 7nm, 5nm…. Should the Chip Nanometer Metric Be Replaced?

June 1, 2020

The biggest cool factor in server chips is the nanometer. AMD beating Intel to a CPU built on a 7nm process node* – with 5nm and 3nm on the way – has been i Read more…

Julia Update: Adoption Keeps Climbing; Is It a Python Challenger?

January 13, 2021

The rapid adoption of Julia, the open source, high level programing language with roots at MIT, shows no sign of slowing according to data from Julialang.org. I Read more…

Quantum Roundup: IBM, Rigetti, Phasecraft, Oxford QC, China, and More

July 13, 2021

IBM yesterday announced a proof for a quantum ML algorithm. A week ago, it unveiled a new topology for its quantum processors. Last Friday, the Technical Univer Read more…

Frontier to Meet 20MW Exascale Power Target Set by DARPA in 2008

July 14, 2021

After more than a decade of planning, the United States’ first exascale computer, Frontier, is set to arrive at Oak Ridge National Laboratory (ORNL) later this year. Crossing this “1,000x” horizon required overcoming four major challenges: power demand, reliability, extreme parallelism and data movement. Read more…

Intel Launches 10nm ‘Ice Lake’ Datacenter CPU with Up to 40 Cores

April 6, 2021

The wait is over. Today Intel officially launched its 10nm datacenter CPU, the third-generation Intel Xeon Scalable processor, codenamed Ice Lake. With up to 40 Read more…

Intel Unveils New Node Names; Sapphire Rapids Is Now an ‘Intel 7’ CPU

July 27, 2021

What's a preeminent chip company to do when its process node technology lags the competition by (roughly) one generation, but outmoded naming conventions make it seem like it's two nodes behind? For Intel, the response was to change how it refers to its nodes with the aim of better reflecting its positioning within the leadership semiconductor manufacturing space. Intel revealed its new node nomenclature, and... Read more…

The Latest MLPerf Inference Results: Nvidia GPUs Hold Sway but Here Come CPUs and Intel

September 22, 2021

The latest round of MLPerf inference benchmark (v 1.1) results was released today and Nvidia again dominated, sweeping the top spots in the closed (apples-to-ap Read more…

  • arrow
  • Click Here for More Headlines
  • arrow
HPCwire