As the number of Virtual Machines(VMs) consolidated on single physical server increases with the rapid advance of server hardware,virtual network turns complex and frangible.Modern Network Security Engines(NSE) are in...As the number of Virtual Machines(VMs) consolidated on single physical server increases with the rapid advance of server hardware,virtual network turns complex and frangible.Modern Network Security Engines(NSE) are introduced to eradicate the intrusions occurring in the virtual network.In this paper,we point out the inadequacy of the present live migration implementation,which hinders itself from providing transparent VM relocation between hypervisors equipped with Network Security Engines(NSE-H).This occurs because the current implementation ignores VM-related Security Context(SC) required by NSEs embedded in NSE-H.We present the CoM,a comprehensive live migration framework,for NSE-H-based virtualization computing environment.We built a prototype system on Xen hypervisors to evaluate our framework,and conduct experiments under various realistic application environments.The results demonstrate that our solution successfully fixes the inadequacy of the present live migration implementation,and the performance overhead is negligible.展开更多
This paper presents component importance analysis for virtualized system with live migration. The component importance analysis is significant to determine the system design of virtualized system from availability and...This paper presents component importance analysis for virtualized system with live migration. The component importance analysis is significant to determine the system design of virtualized system from availability and cost points of view. This paper discusses the importance of components with respect to system availability. Specifically, we introduce two different component importance analyses for hybrid model (fault trees and continuous-time Markov chains) and continuous-time Markov chains, and show the analysis for existing probabilistic models for virtualized system. In numerical examples, we illustrate the quantitative component importance analysis for virtualized system with live migration.展开更多
Efforts were exerted to enhance the live virtual machines(VMs)migration,including performance improvements of the live migration of services to the cloud.The VMs empower the cloud users to store relevant data and reso...Efforts were exerted to enhance the live virtual machines(VMs)migration,including performance improvements of the live migration of services to the cloud.The VMs empower the cloud users to store relevant data and resources.However,the utilization of servers has increased significantly because of the virtualization of computer systems,leading to a rise in power consumption and storage requirements by data centers,and thereby the running costs.Data center migration technologies are used to reduce risk,minimize downtime,and streamline and accelerate the data center move process.Indeed,several parameters,such as non-network overheads and downtime adjustment,may impact the live migration time and server downtime to a large extent.By virtualizing the network resources,the infrastructure as a service(IaaS)can be used dynamically to allocate the bandwidth to services and monitor the network flow routing.Due to the large amount of filthy retransmission,existing live migration systems still suffer from extensive downtime and significant performance degradation in crossdata-center situations.This study aims to minimize the energy consumption by restricting the VMs migration and switching off the guests depending on a threshold,thereby boosting the residual network bandwidth in the data center with a minimal breach of the service level agreement(SLA).In this research,we analyzed and evaluated the findings observed through simulating different parameters,like availability,downtime,and outage of VMs in data center processes.This new paradigm is composed of two forms of detection strategies in the live migration approach from the source host to the destination source machine.展开更多
IT infrastructures have been widely deployed in datacentres by cloud service providers for Infrastructure as a Service (IaaS) with Virtual Machines (VMs). With the rapid development of cloud-based tools and techniques...IT infrastructures have been widely deployed in datacentres by cloud service providers for Infrastructure as a Service (IaaS) with Virtual Machines (VMs). With the rapid development of cloud-based tools and techniques, IaaS is changing the current cloud infrastructure to meet the customer demand. In this paper, an efficient management model is presented and evaluated using our unique Trans-Atlantic high-speed optical fibre network connecting three datacentres located in Coleraine (Northern Ireland), Dublin (Ireland) and Halifax (Canada). Our work highlights the design and implementation of a management system that can dynamically create VMs upon request, process live migration and other services over the high-speed inter-networking Datacentres (DCs). The goal is to provide an efficient and intelligent on-demand management system for virtualization that can make decisions about the migration of VMs and get better utilisation of the network.展开更多
Live Virtual Machine(VM)migration is one of the foremost techniques for progressing Cloud Data Centers’(CDC)proficiency as it leads to better resource usage.The workload of CDC is often dynamic in nature,it is better ...Live Virtual Machine(VM)migration is one of the foremost techniques for progressing Cloud Data Centers’(CDC)proficiency as it leads to better resource usage.The workload of CDC is often dynamic in nature,it is better to envisage the upcoming workload for early detection of overload status,underload status and to trigger the migration at an appropriate point wherein enough number of resources are available.Though various statistical and machine learning approaches are widely applied for resource usage prediction,they often failed to handle the increase of non-linear CDC data.To overcome this issue,a novel Hypergrah based Convolutional Deep Bi-Directional-Long Short Term Memory(CDB-LSTM)model is proposed.The CDB-LSTM adopts Helly property of Hypergraph and Savitzky–Golay(SG)filter to select informative samples and exclude noisy inference&outliers.The proposed approach optimizes resource usage prediction and reduces the number of migrations with minimal computa-tional complexity during live VM migration.Further,the proposed prediction approach implements the correlation co-efficient measure to select the appropriate destination server for VM migration.A Hypergraph based CDB-LSTM was vali-dated using Google cluster dataset and compared with state-of-the-art approaches in terms of various evaluation metrics.展开更多
Sensing and responding to our environment requires functional neurons that act in concert. Neuronal cell loss resulting from degenerative diseases cannot be replaced in humans, causing a functional impairment to integ...Sensing and responding to our environment requires functional neurons that act in concert. Neuronal cell loss resulting from degenerative diseases cannot be replaced in humans, causing a functional impairment to integrate and/or respond to sensory cues. In contrast, zebrafish(Danio rerio) possess an endogenous capacity to regenerate lost neurons. Here, we will focus on the processes that lead to neuronal regeneration in the zebrafish retina. Dying retinal neurons release a damage signal, tumor necrosis factor α, which induces the resident radial glia, the Müller glia, to reprogram and re-enter the cell cycle. The Müller glia divide asymmetrically to produce a Müller glia that exits the cell cycle and a neuronal progenitor cell. The arising neuronal progenitor cells undergo several rounds of cell divisions before they migrate to the site of damage to differentiate into the neuronal cell types that were lost. Molecular and immunohistochemical studies have predominantly provided insight into the mechanisms that regulate retinal regeneration. However, many processes during retinal regeneration are dynamic and require live-cell imaging to fully discern the underlying mechanisms. Recently, a multiphoton imaging approach of adult zebrafish retinal cultures was developed. We will discuss the use of live-cell imaging, the currently available tools and those that need to be developed to advance our knowledge on major open questions in the field of retinal regeneration.展开更多
容错一直是高性能计算领域的热点和难点问题。检查点是解决容错问题的一种常用技术手段,它能够将运行进程的状态转储成文件并恢复。容器具有较强的资源隔离能力,可以为检查点技术提供更理想的运行环境与载体,避免迁移后任务在节点变更...容错一直是高性能计算领域的热点和难点问题。检查点是解决容错问题的一种常用技术手段,它能够将运行进程的状态转储成文件并恢复。容器具有较强的资源隔离能力,可以为检查点技术提供更理想的运行环境与载体,避免迁移后任务在节点变更的情况下由于环境与资源变化而出现异常。因此,容器和检查点相结合能够更好地支撑任务迁移的研究与实现。文中围绕基于CRIU(Checkpoint/Restore In Userspace)的Singularity容器检查点方案的设计和优化展开,根据检查点技术在高性能计算容器应用中的特点,在CRIU安全使用、迁移性能优化、保持网络状态方面给出了有效的解决方案,基于这些方案拓展了Singularity容器检查点功能,并且实现了原型工具Migrator来验证容器迁移性能。期望本工作能为后续实现高性能计算任务迁移提供有效的支撑。展开更多
To prevent malicious virtual machine from harming the security of vTPM-VM live migration process, we propose an im- proved vTPM-VM live migration protocol which uses a TPM-based integrity verification policy and a spe...To prevent malicious virtual machine from harming the security of vTPM-VM live migration process, we propose an im- proved vTPM-VM live migration protocol which uses a TPM-based integrity verification policy and a specific encryption scheme to enhance security. The TPM-based integrity verification policy is presented to ensure that all participating entities in this process are trustworthy. In data transfer phase, the specific encryp- tion scheme is designed to associate the decipher process with one certain platform status so that only the destination platform can gain the key data of the migrated VM and vTPM instance. The security of this new protocol is analyzed. The results show that this protocol can effectively resist most of the attacks in the proc- ess ofvTPM-VM live migration.展开更多
以SSD(solid state drive)为代表的新型存储介质在虚拟化环境下得到了广泛的应用,通常作为虚拟机读写缓存,起到优化磁盘I/O性能的作用.已有研究往往关注SSD缓存的容量规划,依据缓存读写命中率评价SSD缓存分配效果,未能充分考虑SSD的服...以SSD(solid state drive)为代表的新型存储介质在虚拟化环境下得到了广泛的应用,通常作为虚拟机读写缓存,起到优化磁盘I/O性能的作用.已有研究往往关注SSD缓存的容量规划,依据缓存读写命中率评价SSD缓存分配效果,未能充分考虑SSD的服务能力上限,难以适用于典型的分布式应用场景,存在虚拟机抢占SSD缓存资源,导致虚拟机中应用性能违约的可能.实现了虚拟化环境下面向多目标优化的自适应SSD缓存系统,考虑了SSD的服务能力上限.基于自适应闭环实现对虚拟机和应用状态的动态感知.动态检测局部SSD缓存抢占状态,基于聚类方法生成虚拟机的优化放置方案,依据全局SSD缓存供给能力确定虚拟机迁移顺序和时机.实验结果表明,该方法在应对典型分布式应用场景时可以有效缓解SSD缓存资源的争用,同时满足应用对虚拟机放置的需求,提升应用的性能并兼顾应用的可靠性.在Hadoop应用场景下,平均降低了25%的任务执行时间,对I/O密集型应用平均提升39%的吞吐率.在Zoo Keeper应用场景下,以不到5%的性能损失为代价,应对了虚拟化主机的单点失效带来的虚拟机宕机问题.展开更多
基金supported by State Key Laboratory of Software Development Environment under Grant No. SKLSDE-2009ZX-02China Aviation Science Fund under Grant No.20081951National High Technical Research and Development Program of China (863 Program) under Grant No.2007AA01Z183
文摘As the number of Virtual Machines(VMs) consolidated on single physical server increases with the rapid advance of server hardware,virtual network turns complex and frangible.Modern Network Security Engines(NSE) are introduced to eradicate the intrusions occurring in the virtual network.In this paper,we point out the inadequacy of the present live migration implementation,which hinders itself from providing transparent VM relocation between hypervisors equipped with Network Security Engines(NSE-H).This occurs because the current implementation ignores VM-related Security Context(SC) required by NSEs embedded in NSE-H.We present the CoM,a comprehensive live migration framework,for NSE-H-based virtualization computing environment.We built a prototype system on Xen hypervisors to evaluate our framework,and conduct experiments under various realistic application environments.The results demonstrate that our solution successfully fixes the inadequacy of the present live migration implementation,and the performance overhead is negligible.
文摘This paper presents component importance analysis for virtualized system with live migration. The component importance analysis is significant to determine the system design of virtualized system from availability and cost points of view. This paper discusses the importance of components with respect to system availability. Specifically, we introduce two different component importance analyses for hybrid model (fault trees and continuous-time Markov chains) and continuous-time Markov chains, and show the analysis for existing probabilistic models for virtualized system. In numerical examples, we illustrate the quantitative component importance analysis for virtualized system with live migration.
文摘Efforts were exerted to enhance the live virtual machines(VMs)migration,including performance improvements of the live migration of services to the cloud.The VMs empower the cloud users to store relevant data and resources.However,the utilization of servers has increased significantly because of the virtualization of computer systems,leading to a rise in power consumption and storage requirements by data centers,and thereby the running costs.Data center migration technologies are used to reduce risk,minimize downtime,and streamline and accelerate the data center move process.Indeed,several parameters,such as non-network overheads and downtime adjustment,may impact the live migration time and server downtime to a large extent.By virtualizing the network resources,the infrastructure as a service(IaaS)can be used dynamically to allocate the bandwidth to services and monitor the network flow routing.Due to the large amount of filthy retransmission,existing live migration systems still suffer from extensive downtime and significant performance degradation in crossdata-center situations.This study aims to minimize the energy consumption by restricting the VMs migration and switching off the guests depending on a threshold,thereby boosting the residual network bandwidth in the data center with a minimal breach of the service level agreement(SLA).In this research,we analyzed and evaluated the findings observed through simulating different parameters,like availability,downtime,and outage of VMs in data center processes.This new paradigm is composed of two forms of detection strategies in the live migration approach from the source host to the destination source machine.
文摘IT infrastructures have been widely deployed in datacentres by cloud service providers for Infrastructure as a Service (IaaS) with Virtual Machines (VMs). With the rapid development of cloud-based tools and techniques, IaaS is changing the current cloud infrastructure to meet the customer demand. In this paper, an efficient management model is presented and evaluated using our unique Trans-Atlantic high-speed optical fibre network connecting three datacentres located in Coleraine (Northern Ireland), Dublin (Ireland) and Halifax (Canada). Our work highlights the design and implementation of a management system that can dynamically create VMs upon request, process live migration and other services over the high-speed inter-networking Datacentres (DCs). The goal is to provide an efficient and intelligent on-demand management system for virtualization that can make decisions about the migration of VMs and get better utilisation of the network.
文摘Live Virtual Machine(VM)migration is one of the foremost techniques for progressing Cloud Data Centers’(CDC)proficiency as it leads to better resource usage.The workload of CDC is often dynamic in nature,it is better to envisage the upcoming workload for early detection of overload status,underload status and to trigger the migration at an appropriate point wherein enough number of resources are available.Though various statistical and machine learning approaches are widely applied for resource usage prediction,they often failed to handle the increase of non-linear CDC data.To overcome this issue,a novel Hypergrah based Convolutional Deep Bi-Directional-Long Short Term Memory(CDB-LSTM)model is proposed.The CDB-LSTM adopts Helly property of Hypergraph and Savitzky–Golay(SG)filter to select informative samples and exclude noisy inference&outliers.The proposed approach optimizes resource usage prediction and reduces the number of migrations with minimal computa-tional complexity during live VM migration.Further,the proposed prediction approach implements the correlation co-efficient measure to select the appropriate destination server for VM migration.A Hypergraph based CDB-LSTM was vali-dated using Google cluster dataset and compared with state-of-the-art approaches in terms of various evaluation metrics.
基金supported by NIH-NEI grants to DRH(R01-EY018417,R01-EY024519)the Center for Zebrafish Research,University of Notre Dame,USA
文摘Sensing and responding to our environment requires functional neurons that act in concert. Neuronal cell loss resulting from degenerative diseases cannot be replaced in humans, causing a functional impairment to integrate and/or respond to sensory cues. In contrast, zebrafish(Danio rerio) possess an endogenous capacity to regenerate lost neurons. Here, we will focus on the processes that lead to neuronal regeneration in the zebrafish retina. Dying retinal neurons release a damage signal, tumor necrosis factor α, which induces the resident radial glia, the Müller glia, to reprogram and re-enter the cell cycle. The Müller glia divide asymmetrically to produce a Müller glia that exits the cell cycle and a neuronal progenitor cell. The arising neuronal progenitor cells undergo several rounds of cell divisions before they migrate to the site of damage to differentiate into the neuronal cell types that were lost. Molecular and immunohistochemical studies have predominantly provided insight into the mechanisms that regulate retinal regeneration. However, many processes during retinal regeneration are dynamic and require live-cell imaging to fully discern the underlying mechanisms. Recently, a multiphoton imaging approach of adult zebrafish retinal cultures was developed. We will discuss the use of live-cell imaging, the currently available tools and those that need to be developed to advance our knowledge on major open questions in the field of retinal regeneration.
文摘容错一直是高性能计算领域的热点和难点问题。检查点是解决容错问题的一种常用技术手段,它能够将运行进程的状态转储成文件并恢复。容器具有较强的资源隔离能力,可以为检查点技术提供更理想的运行环境与载体,避免迁移后任务在节点变更的情况下由于环境与资源变化而出现异常。因此,容器和检查点相结合能够更好地支撑任务迁移的研究与实现。文中围绕基于CRIU(Checkpoint/Restore In Userspace)的Singularity容器检查点方案的设计和优化展开,根据检查点技术在高性能计算容器应用中的特点,在CRIU安全使用、迁移性能优化、保持网络状态方面给出了有效的解决方案,基于这些方案拓展了Singularity容器检查点功能,并且实现了原型工具Migrator来验证容器迁移性能。期望本工作能为后续实现高性能计算任务迁移提供有效的支撑。
基金Supported by the National Basic Research Program of China(973 Program)(2014CB340600)the National High Technology Research and Development Program of China(863 Program)(2015AA016002)the National Natural Science Foundation of China(61173138,61272452,61332018)
文摘To prevent malicious virtual machine from harming the security of vTPM-VM live migration process, we propose an im- proved vTPM-VM live migration protocol which uses a TPM-based integrity verification policy and a specific encryption scheme to enhance security. The TPM-based integrity verification policy is presented to ensure that all participating entities in this process are trustworthy. In data transfer phase, the specific encryp- tion scheme is designed to associate the decipher process with one certain platform status so that only the destination platform can gain the key data of the migrated VM and vTPM instance. The security of this new protocol is analyzed. The results show that this protocol can effectively resist most of the attacks in the proc- ess ofvTPM-VM live migration.
文摘以SSD(solid state drive)为代表的新型存储介质在虚拟化环境下得到了广泛的应用,通常作为虚拟机读写缓存,起到优化磁盘I/O性能的作用.已有研究往往关注SSD缓存的容量规划,依据缓存读写命中率评价SSD缓存分配效果,未能充分考虑SSD的服务能力上限,难以适用于典型的分布式应用场景,存在虚拟机抢占SSD缓存资源,导致虚拟机中应用性能违约的可能.实现了虚拟化环境下面向多目标优化的自适应SSD缓存系统,考虑了SSD的服务能力上限.基于自适应闭环实现对虚拟机和应用状态的动态感知.动态检测局部SSD缓存抢占状态,基于聚类方法生成虚拟机的优化放置方案,依据全局SSD缓存供给能力确定虚拟机迁移顺序和时机.实验结果表明,该方法在应对典型分布式应用场景时可以有效缓解SSD缓存资源的争用,同时满足应用对虚拟机放置的需求,提升应用的性能并兼顾应用的可靠性.在Hadoop应用场景下,平均降低了25%的任务执行时间,对I/O密集型应用平均提升39%的吞吐率.在Zoo Keeper应用场景下,以不到5%的性能损失为代价,应对了虚拟化主机的单点失效带来的虚拟机宕机问题.
