|
 ABSTRACT
This paper presents Sharp, a framework for secure distributed resource management in an Internet-scale computing infrastructure. The cornerstone of Sharp is a construct to represent cryptographically protected resource <it>claims</it>---promises or rights to control resources for designated time intervals---together with secure mechanisms to subdivide and delegate claims across a network of resource managers. These mechanisms enable flexible <it>resource peering</it>: sites may trade their resources with peering partners or contribute them to a federation according to local policies. A separation of claims into <it>tickets</it> and <it>leases</it> allows coordinated resource management across the system while preserving site autonomy and local control over resources. Sharp also introduces mechanisms for controlled, accountable <it>oversubscription</it> of resource claims as a fundamental tool for dependable, efficient resource management. We present experimental results from a Sharp prototype for PlanetLab, and illustrate its use with a decentralized barter economy for global PlanetLab resources. The results demonstrate the power and practicality of the architecture, and the effectiveness of oversubscription for protecting resource availability in the presence of failures.
REFERENCES
Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.
 |
1
|
|
| |
2
|
Mike Accetta, Robert Baron, William Bolosky, David Golub, Richard Rashid, Avadis Tevanian, and Michael Young. Mach: A New Kernel Foundation For UNIX Development. In Proceedings of the 1986 USENIX Summer Conference, pages 93--112, June 1986.
|
| |
3
|
William Adjie-Winoto , Elliot Schwartz , Hari Balakrishnan , Jeremy Lilley, The design and implementation of an intentional naming system, Proceedings of the seventeenth ACM symposium on Operating systems principles, p.186-201, December 12-15, 1999, Charleston, South Carolina, United States
|
| |
4
|
D. Scott Alexander, Paul B. Menage, Angelos D. Keromytis, William A. Arbaugh, Kostas G. Anagnostakis, and Jonathan M. Smith. The Price of Safety in an Active Network. Journal of Communications and Networks, 3(1):4--18, March 2001.
|
| |
5
|
K. Appleby, S. Fakhouri, L. Fong, G. Goldszmidt, M. Kalantar, S. Krishnakumar, D. Pazel, J. Pershing, and B. Rochwerger. Oceano - SLA Based Management of a Computing Utility. In Proceedings of the 7th IFIP/IEEE International Symposium on Integrated Network Management, May 2001.
|
| |
6
|
|
| |
7
|
Andy Bavier, Thiemo Voigt, Mike Wawrzoniak, Larry Peterson, and Per Gunningberg. SILK: Scout Paths in the Linux Kernel. Technical Report 2002-009, Department of Information Technology, Uppsala University, Uppsala, Sweden, February 2002.
|
| |
8
|
Micah Beck, Terry Moore, James S. Plank, and Martin Swany. Active Middleware Services (Salim Hariri, Craig A. Lee, and Cauligi S. Raghavendra editors), chapter Logistical Networking: Sharing More Than the Wires. Kluwer Academic, Norwell, MA, 2000.
|
| |
9
|
Eshwar Belani, Amin Vahdat, Thomas Anderson, and Michael Dahlin. The CRISIS Wide Area Security Architecture. In Proceedings of the USENIX Security Symposium, San Antonio, Texas, January 1998.
|
| |
10
|
|
| |
11
|
Rebecca Braynard, Dejan Kostić, Adolfo Rodriguez, Jeffrey Chase, and Amin Vahdat. Opus: an Overlay Peer Utility Service. In Proceedings of the 5th International Conference on Open Architectures and Network Programming (OPENARCH), June 2002.
|
| |
12
|
Randy Butler , Von Welch , Douglas Engert , Ian Foster , Steven Tuecke , John Volmer , Carl Kesselman, A National-Scale Authentication Infrastructure, Computer, v.33 n.12, p.60-66, December 2000
[doi> 10.1109/2.889094]
|
| |
13
|
Jeffrey S. Chase , Darrell C. Anderson , Prachi N. Thakar , Amin M. Vahdat , Ronald P. Doyle, Managing energy and server resources in hosting centers, Proceedings of the eighteenth ACM symposium on Operating systems principles, October 21-24, 2001, Banff, Alberta, Canada
|
| |
14
|
|
| |
15
|
|
| |
16
|
|
| |
17
|
|
| |
18
|
|
| |
19
|
|
| |
20
|
Ronald P. Doyle, Omer Asad, Wei Jin, Jeffrey S. Chase, and Amin Vahdat. Model-Based Resource Provisioning in a Web Service Utility. In Proceedings of the Fourth USENIX Symposium on Internet Technologies and Systems (USITS), March 2003.
|
| |
21
|
Paul Barham , Boris Dragovic , Keir Fraser , Steven Hand , Tim Harris , Alex Ho , Rolf Neugebauer , Ian Pratt , Andrew Warfield, Xen and the art of virtualization, Proceedings of the nineteenth ACM symposium on Operating systems principles, October 19-22, 2003, Bolton Landing, NY, USA
|
| |
22
|
Ian Foster, Carl Kesselman, Craig Lee, Robert Lindell, Klara Nahrstedt, and Alain Roy. A Distributed Resource Management Architecture that Supports Advance Reservations and Co-Allocation. In Proceedings of the International Workshop on Quality of Service (IWQoS), June 1999.
|
| |
23
|
Ian Foster, Carl Kesselman, Jeffrey Nick, and Steven Tuecke. The Physiology of the Grid: An Open Grid Services Architecture for Distributed Systems Integration. In Open Grid Service Infrastructure Working Group, Global Grid Forum, June 2002.
|
| |
24
|
Garth A. Gibson , David F. Nagle , Khalil Amiri , Jeff Butler , Fay W. Chang , Howard Gobioff , Charles Hardin , Erik Riedel , David Rochberg , Jim Zelenka, A cost-effective, high-bandwidth storage architecture, Proceedings of the eighth international conference on Architectural support for programming languages and operating systems, p.92-103, October 02-07, 1998, San Jose, California, United States
|
| |
25
|
|
| |
26
|
M. Frans Kaashoek , Dawson R. Engler , Gregory R. Ganger , Hector M. Briceño , Russell Hunt , David Mazières , Thomas Pinckney , Robert Grimm , John Jannotti , Kenneth Mackenzie, Application performance and flexibility on exokernel systems, Proceedings of the sixteenth ACM symposium on Operating systems principles, p.52-65, October 05-08, 1997, Saint Malo, France
|
| |
27
|
Butler Lampson , Martín Abadi , Michael Burrows , Edward Wobber, Authentication in distributed systems: theory and practice, Proceedings of the thirteenth ACM symposium on Operating systems principles, p.165-182, October 13-16, 1991, Pacific Grove, California, United States
|
| |
28
|
|
| |
29
|
Seungjoon Lee, Rob Sherwood, and Bobby Bhattacharjee. Cooperative Peer Groups in NICE. In IEEE INFOCOM, April 2003.
|
| |
30
|
Ian Leslie, Derek McAuley, Richard Black, Timothy Roscoe, Paul Barham, David Evers, Robin Fairbairns, and Eoin Hyden. The Design and Implementation of an Operating System to Support Distributed Multimedia Applications. IEEE Journal on Selected Areas In Communications, 14(7):1280--1297, September 1996.
|
| |
31
|
|
| |
32
|
David Mazières , Michael Kaminsky , M. Frans Kaashoek , Emmett Witchel, Separating key management from file system security, Proceedings of the seventeenth ACM symposium on Operating systems principles, p.124-139, December 12-15, 1999, Charleston, South Carolina, United States
|
| |
33
|
B. C. Neuman. Proxy-Based Authorization and Accounting for Distributed Systems. In Proceedings of the 13th International Conference on Distributed Computing Systems, May 1993.
|
| |
34
|
Tsuen-Wan Ngan, Dan Wallach, and Peter Druschel. Enforcing Fair Sharing of Peer-to-Peer Resources. In Proceedings of the International Peer to Peer Symposium, February 2003.
|
| |
35
|
|
| |
36
|
Larry Peterson, Tom Anderson, David Culler, and Timothy Roscoe. A Blueprint for Introducing Disruptive Technology into the Internet. In Proceedings of ACM HotNets-I, October 2002.
|
| |
37
|
|
| |
38
|
Jeff Shneidman and David Parkes. Rationality and Self-Interest in Peer to Peer Networks. In Proceedings of the International Peer to Peer Symposium, February 2003.
|
| |
39
|
Jennifer G. Steiner, Clifford Neuman, and Jeffrey I. Schiller. Kerberos: An Authentication Service for Open Network Systems. In Proceedings of the USENIX Technical Conference, March 1988.
|
| |
40
|
Andrew Tanenbaum, Sape Mullender, and Robert van Renesse. Using Sparse Capabilities in a Distributed Operating System. In Proceedings of the 6th International Conference on Distributed Computing Systems (ICDCS), May 1986.
|
| |
41
|
|
| |
42
|
Virtual Private Servers and Security Contexts. http://www.solucorp.qc.ca/miscprj/s_context.hc, 2002.
|
| |
43
|
|
| |
44
|
|
| |
45
|
|
| |
46
|
Carl A. Waldspurger and William E. Weihl. Lottery Scheduling: Flexible Proportional-Share Resource Management. In Operating Systems Design and Implementation, pages 1--11, Novemeber 1994.
|
| |
47
|
Andrew Whitaker, Marianne Shaw, and Steven D. Gribble. Denali: Lightweight Virtual Machines for Distributed and Networked Applications. In Proceedings of Operating Systems Design and Implementation, December 2002.
|
| |
48
|
Brian White , Jay Lepreau , Leigh Stoller , Robert Ricci , Shashi Guruprasad , Mac Newbold , Mike Hibler , Chad Barb , Abhijeet Joglekar, An integrated experimental environment for distributed systems and networks, Proceedings of the 5th symposium on Operating systems design and implementation Due to copyright restrictions we are not able to make the PDFs for this conference available for downloading, December 09-11, 2002, Boston, Massachusetts
[doi> 10.1145/1060289.1060313]
|
| |
49
|
|
| |
50
|
Edward Wobber , Martín Abadi , Michael Burrows , Butler Lampson, Authentication in the Taos operating system, Proceedings of the fourteenth ACM symposium on Operating systems principles, p.256-269, December 05-08, 1993, Asheville, North Carolina, United States
|
| |
51
|
Jian Yin , Lorenzo Alvisi , Mike Dahlin , Arun Iyengar, Engineering server-driven consistency for large scale dynamic Web services, Proceedings of the 10th international conference on World Wide Web, p.45-57, May 01-05, 2001, Hong Kong, Hong Kong
[doi> 10.1145/371920.371935]
|
| |
52
|
|
| |
53
|
|
| |
54
|
Phil Zimmerman. PGP User's Guide. Online Documentation, 1994.
|
CITED BY 34
|
|
|
|
|
|
|
|
David C. Parkes , Ruggiero Cavallo , Nick Elprin , Adam Juda , Sébastien Lahaie , Benjamin Lubin , Loizos Michael , Jeffrey Shneidman , Hassan Sultan, ICE: an iterative combinatorial exchange, Proceedings of the 6th ACM conference on Electronic commerce, p.249-258, June 05-08, 2005, Vancouver, BC, Canada
|
|
|
David Irwin , Jeff Chase , Laura Grit , Aydan Yumerefendi, Self-recharging virtual currency, Proceeding of the 2005 ACM SIGCOMM workshop on Economics of peer-to-peer systems, August 22-22, 2005, Philadelphia, Pennsylvania, USA
|
|
|
|
|
|
|
|
|
Arindam Mitra , Ranganath Udupa , Muthucumaru Maheswaran, A secured hierarchical trust management framework for public computing utilities, Proceedings of the 2005 conference of the Centre for Advanced Studies on Collaborative research, p.185-199, October 17-20, 2005, Toranto, Ontario, Canada
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Sara Bouchenak , Fabienne Boyer , Emmanuel Cecchet , Sébastien Jean , Alan Schmitt , Jean-Bernard Stefani, A component-based approach to distributed system management: a use case with self-manageable J2EE clusters, Proceedings of the 11th workshop on ACM SIGOPS European workshop: beyond the PC, p.26-es, September 19-22, 2004, Leuven, Belgium
|
|
|
|
|
|
Lavanya Ramakrishnan , David Irwin , Laura Grit , Aydan Yumerefendi , Adriana Iamnitchi , Jeff Chase, Grid allocation and reservation---Toward a doctrine of containment: grid hosting with adaptive resource control, Proceedings of the 2006 ACM/IEEE conference on Supercomputing, November 11-17, 2006, Tampa, Florida
|
|
|
|
|
|
Andy Bavier , Mic Bowman , Brent Chun , David Culler , Scott Karlin , Steve Muir , Larry Peterson , Timothy Roscoe , Tammo Spalink , Mike Wawrzoniak, Operating system support for planetary-scale network services, Proceedings of the 1st conference on Symposium on Networked Systems Design and Implementation, p.19-19, March 29-31, 2004, San Francisco, California
|
|
|
Jeffrey Shneidman , Chaki Ng , David C. Parkes , Alvin AuYoung , Alex C. Snoeren , Amin Vahdat , Brent Chun, Why markets could (but don't currently) solve resource allocation problems in systems, Proceedings of the 10th conference on Hot Topics in Operating Systems, p.7-7, June 12-15, 2005, Santa Fe, NM
|
|
|
|
|
|
Ali Raza Butt , Xing Fang , Y. Charlie Hu , Samuel Midkiff, Java, peer-to-peer, and accountability: building blocks for distributed cycle sharing, Proceedings of the 3rd conference on Virtual Machine Research And Technology Symposium, p.13-13, May 06-07, 2004, San Jose, California
|
|
|
|
|
|
|
|
|
|
|
|
Navendu Jain , Dmitry Kit , Prince Mahajan , Praveen Yalagandula , Mike Dahlin , Yin Zhang, STAR: self-tuning aggregation for scalable monitoring, Proceedings of the 33rd international conference on Very large data bases, September 23-27, 2007, Vienna, Austria
|
|
|
Kevin Lai , Lars Rasmusson , Eytan Adar , Li Zhang , Bernardo A. Huberman, Tycoon: An implementation of a distributed, market-based resource allocation system, Multiagent and Grid Systems, v.1 n.3, p.169-182, August 2005
|
|
|
|
|
|
|
|
|
|
|
|
Mohammad Al-Fares , Martin Johnsson , Per Johansson , Amin Vahdat, Flexible resource allocation and composition across gsm/3g networks and wlans, Proceedings of the 3rd international workshop on Mobility in the evolving internet architecture, August 22-22, 2008, Seattle, WA, USA
|
|
|
|
|
|
|
|
|
Animesh Nandi , Tsuen-Wan Johnny Ngan , Atul Singh , Peter Druschel , Dan S. Wallach, Scrivener: providing incentives in cooperative content distribution systems, Proceedings of the ACM/IFIP/USENIX 2005 International Conference on Middleware, p.270-291, November 01-01, 2005, Grenoble, France
|
|
|
Rajkumar Buyya , Chee Shin Yeo , Srikumar Venugopal , James Broberg , Ivona Brandic, Cloud computing and emerging IT platforms: Vision, hype, and reality for delivering computing as the 5th utility, Future Generation Computer Systems, v.25 n.6, p.599-616, June, 2009
|
|
|
|
|
|
Benjamin Lubin , Adam I. Juda , Ruggiero Cavallo , Sébastien Lahaie , Jeffrey Shneidman , David C. Parkes, ICE: an expressive iterative combinatorial exchange, Journal of Artificial Intelligence Research, v.33 n.1, p.33-77, September 2008
|
|
Adobe Acrobat
QuickTime
Windows Media Player
Real Player
Pdf
C.2