SystemX, acteur de la formation en ingénierie Programme FORMATION : Mise en œuvre d’Equipes Système :
Projets CREE : Coopération Recherche Etudiants - Entreprise Pluridisciplinaires Equipe Système Innovation Technologique
Coopération
4 à 5 étudiants / Equipe 1 référent Technique Entreprise /Etudiant 1 référent SystemX pour l’équipe Validation du Projet Fin d’Etude (PFE) des étudiants Objectif : ~10 Equipes/an
Mars 2014 – Gaëlle BERTHOMIEU
CREE Cloud: Challenges, Objectives and Perspectives Presented by : Mouad IDRI Lamine SAMB Yassine SBAI Anca ZANFIR
Supervised by: Makhlouf HADJI Gaelle BERTHOMIEU
Internship no. 1 – Cloud Readiness and Architecture
Cloud readiness and Architecture - Mouad
Cloud Intra and Interoperability - Lamine
Security in the Cloud - Yassine
Business Plan - Anca 4
Internship no. 1 – Cloud Readiness and Architecture
Source :Original paper : ’Cloud computing: state-of-the-art and research challenges.’ Qi Zhang, Lu Cheng, Raouf Boutaba
Cloud readiness and Architecture - Mouad
Cloud Intra and Interoperability - Lamine
Security in the Cloud - Yassine
Business Plan - Anca 5
Internship no. 1 – Cloud Readiness and Architecture Data Security
Geolocation constraints
Service Level Agreement
Are you ready to adopt the Cloud?
Decision Making Aid
Score of criteria aggregation
Cloud readiness and Architecture - Mouad
Cloud Intra and Interoperability - Lamine
Security in the Cloud - Yassine
Business Plan - Anca 6
Internship no. 1 – Cloud Readiness and Architecture Data Security
Geolocation constraints
Service Level Agreement
Are you ready to adopt the Cloud?
Decision Making Aid
Cloud readiness and Architecture - Mouad
Cloud Intra and Interoperability - Lamine
Security in the Cloud - Yassine
Business Plan - Anca 7
Internship no. 2 – Cloud Intra and Inter-operability Context
Smart placement of VMs and Networks
Energy efficiency : repacking and migration
Enable interoperability between different federated cloud providers
Cloud readiness and Architecture - Mouad
Cloud Intra and Interoperability - Lamine
Security in the Cloud - Yassine
Business Plan - Anca 9
Internship no. 2 – Cloud Intra and Inter-operability Openstack Architecture
Cloud readiness and Architecture - Mouad
Cloud Intra and Interoperability - Lamine
Security in the Cloud - Yassine
Business Plan - Anca 10
Internship no. 2 – Cloud Intra and Inter-operability Openstack Architecture
NOVA
Cloud readiness and Architecture - Mouad
Cloud Intra and Interoperability - Lamine
Security in the Cloud - Yassine
Business Plan - Anca 11
Internship no. 2 – Cloud Intra and Inter-operability NOVA Scheduler
Cloud readiness and Architecture - Mouad
Cloud Intra and Interoperability - Lamine
Security in the Cloud - Yassine
Business Plan - Anca 12
Internship no. 2 – Cloud Intra and Inter-operability NOVA Scheduler: Example
Cloud readiness and Architecture - Mouad
Cloud Intra and Interoperability - Lamine
Security in the Cloud - Yassine
Business Plan - Anca 13
Internship no. 2 – Cloud intra and inter-operability NOVA Scheduler: Example
Cloud readiness and Architecture - Mouad
Cloud Intra and Interoperability - Lamine
Security in the Cloud - Yassine
Business Plan - Anca 14
Internship no. 2 – Cloud Intra and Inter-operability Project Goals
Get a Handle on OpenStack architecture and components
Propose new scalable optimization algorithms for :
Vms placement Vms repacking Network placement Network re-mapping
Cloud readiness and Architecture - Mouad
Cloud Intra and Interoperability - Lamine
Security in the Cloud - Yassine
Business Plan - Anca 15
Internship no. 2 – Cloud Intra and Inter-operability INFREP Scheduler
Cloud readiness and Architecture - Mouad
Cloud Intra and Interoperability - Lamine
Security in the Cloud - Yassine
Business Plan - Anca 16
Internship no. 2 – Cloud Intra and Inter-operability INFREP Scheduler
Cloud readiness and Architecture - Mouad
Cloud Intra and Interoperability - Lamine
Security in the Cloud - Yassine
Business Plan - Anca 17
Internship no. 2 – Cloud Intra and Inter-operability INFREP Scheduler
Cloud readiness and Architecture - Mouad
Cloud Intra and Interoperability - Lamine
Security in the Cloud - Yassine
Business Plan - Anca 18
Internship no. 3 - Security in the cloud How to secure a cloud ?
Five important criteria :
Confidentiality Integrity Availability Non-repudiation Authenticity
Cloud computing needs more security : data segregation, data breach, web application security …
Cloud readiness and Architecture - Mouad
Cloud Intra and Interoperability - Lamine
Security in the Cloud - Yassine
Business Plan - Anca 20
Internship no. 3 - Security in the cloud Example of security services in AWS
Secured access
Firewalls
Authentication
Virtual Private Cloud (VPC)
Dedicated connection
Cloud readiness and Architecture - Mouad
Cloud Intra and Interoperability - Lamine
Security in the Cloud - Yassine
Business Plan - Anca 21
Internship no. 3 - Security in the cloud Fully homomorphic encryption Allows to do compute operations on encrypted data (C1,C2, …, Cn) corresponding to the clear data (P1,P2,…,Pn) using an algorithm noted by « Evaluate » with an input (f , (C1,C2, …, Cn), pk) and outputs Enc(f(C1,C2, … , Cn)).
Cloud readiness and Architecture - Mouad
Cloud Intra and Interoperability - Lamine
Security in the Cloud - Yassine
Business Plan - Anca 22
Internship no. 3 - Security in the cloud Fully homomorphic encryption
Example
Cloud readiness and Architecture - Mouad
Cloud Intra and Interoperability - Lamine
Security in the Cloud - Yassine
Business Plan - Anca 23
Internship no. 4 - Business plan Source: Alexander Osterwalder, Yves Pigneur – Business Model generation, 2009
Cloud readiness and Architecture - Mouad
Cloud Intra and Interoperability - Lamine
Security in the Cloud - Yassine
Business Plan - Anca 27
Internship no. 4 - Business plan Clients Source: Alexander Osterwalder, Yves Pigneur – Business Model generation, 2009
Cloud readiness and Architecture - Mouad
Cloud Intra and Interoperability - Lamine
Security in the Cloud - Yassine
Business Plan - Anca 28
Internship no. 4 - Business plan Value Proposition Source: Alexander Osterwalder, Yves Pigneur – Business Model generation, 2009
Cloud readiness and Architecture - Mouad
Cloud Intra and Interoperability - Lamine
Security in the Cloud - Yassine
Business Plan - Anca 29
Internship no. 4 - Business plan Channel Distribution Source: Alexander Osterwalder, Yves Pigneur – Business Model generation, 2009
Cloud readiness and Architecture - Mouad
Cloud Intra and Interoperability - Lamine
Security in the Cloud - Yassine
Business Plan - Anca 30
Internship no. 4 - Business plan Customer Relationships Source: Alexander Osterwalder, Yves Pigneur – Business Model generation, 2009
Cloud readiness and Architecture - Mouad
Cloud Intra and Interoperability - Lamine
Security in the Cloud - Yassine
Business Plan - Anca 31
Internship no. 4 - Business plan Revenue Streams Source: Alexander Osterwalder, Yves Pigneur – Business Model generation, 2009
Cloud readiness and Architecture - Mouad
Cloud Intra and Interoperability - Lamine
Security in the Cloud - Yassine
Business Plan - Anca 32
Internship no. 4 - Business plan Key Resources Source: Alexander Osterwalder, Yves Pigneur – Business Model generation, 2009
Cloud readiness and Architecture - Mouad
Cloud Intra and Interoperability - Lamine
Security in the Cloud - Yassine
Business Plan - Anca 33
Internship no. 4 - Business plan Key Activities Source: Alexander Osterwalder, Yves Pigneur – Business Model generation, 2009
Cloud readiness and Architecture - Mouad
Cloud Intra and Interoperability - Lamine
Security in the Cloud - Yassine
Business Plan - Anca 34
Internship no. 4 - Business plan Key Partners Source: Alexander Osterwalder, Yves Pigneur – Business Model generation, 2009
Cloud readiness and Architecture - Mouad
Cloud Intra and Interoperability - Lamine
Security in the Cloud - Yassine
Business Plan - Anca 35
Internship no. 4 - Business plan Product Costs Source: Alexander Osterwalder, Yves Pigneur – Business Model generation, 2009
Cloud readiness and Architecture - Mouad
Cloud Intra and Interoperability - Lamine
Security in the Cloud - Yassine
Business Plan - Anca 36
I- Smart Placement in Clouds
Smart Placement in Clouds VMs placement problem Problem definition: given an end-user request (expressed as virtual resources often considered as VMs) of size N, to host on a physical substrate of X Servers, how to optimally determine the best placement of all the VMs according to different constraints: geolocation, affinity/anti-affinity constraints, … ? Sub-optimal placement ESX 1
ESX 2…
ESX N
Demands management
Placement module
Cloud End-Users
???
Optimal Placement ESX 1
ESX 2…
ESX N ESX 1
Benefits:
Optimized resource consumption
Reduced operational costs
…etc.
Problem challenges
39
Exponential number of constraints
ESX 2…
Physical substrate
ESX N
Smart Placement in Clouds
Motivations
40
Smart Placement in Clouds
Due to fluctuations in users’ demands, we use Auto-Regressive (AR(k)) process, to handle with future demands:
Demands management
Cloud End-Users
Forcasting & Scheduling
k
d t i d t i t
large
small
i 1
ESX 1
Problem Complexity : NP-Hard Problem: There is an exponnential number of cases. The problem is considered as a modified instance of the Bin-Packing.
ESX 2…
ESX N
Physical substrate
41
Smart Placement in Clouds Mathematical formulation: N
Formulation as ILP: The corresponding mathematical model is an Integer Linear Programming: difficulties to characterize the convex hull of the considered problem and to get optimal solutions.
I
N
I
min Z ij yij Pj xij i 1 j 1
i 1 j 1
Subject To : xij Cij yij , j I , i 1, N N
x i 1
ij
d j , j I
xij N , i, j 1 if VM j is hosted in server i yij 0 else.
42
Smart Placement in Clouds Minimum Cost Maximum Flow Algorithm
Instance i
(2; 0,23)
S
T
Legend: (capacity; cost)
43
Smart Placement in Clouds Small Instance
Minimum Cost Maximum Flow Algorithm
(2; 0,23)
Medium Instance
S
T (2; 0,23)
44
Smart Placement in Clouds Simulation Tests: Case of (0;1) Random Costs
Random Hosting Costs Scenario We consider (0; 1) Random hosting costs between each couple of vertices (a, b), where a is a fictif node, and b is a physical machine (server).
45
Smart Placement in Clouds Simulations Tests: Case of Inverse Hosting Costs:
Inverse Hosting Costs Scenario We consider inversed hosting costs function between each couple of vertices (a, b), where a is a fictif node, and b is a physical machine:
Where
1 g ab if Cab 0, otherwise g ab f (Cab ) Cab represents the available capacity on the considered arc. f est une fonction non nulle.
46
Smart Placement in Clouds
Publication : Minimum Cost Maximum Flow Algorithm for Dynamic Resource Allocation in Cloud Computing. IEEE Cloud 2012, pp.876-882, Honolulu, Hawaii (USA), 2012.
47
