Computing How to compute with large sensitive data? Biomedical data - - PowerPoint PPT Presentation

computing
SMART_READER_LITE
LIVE PREVIEW

Computing How to compute with large sensitive data? Biomedical data - - PowerPoint PPT Presentation

Aug 08, 2023 377 likes •515 views

U SING T RUSTED E XECUTION E NVIRONMENTS O N H IGH -P ERFORMANCE C OMPUTING P LATFORMS Ayaz Akram, Anna Giannakou, Venkatesh Akella, Jason Lowe-Power, Sean Peisert Secure High-Performance Computing How to compute with large sensitive data?

slide-1
SLIDE 1

USING TRUSTED EXECUTION ENVIRONMENTS ON HIGH-PERFORMANCE COMPUTING PLATFORMS

Ayaz Akram, Anna Giannakou, Venkatesh Akella, Jason Lowe-Power, Sean Peisert

slide-2
SLIDE 2

Secure High-Performance Computing

How to compute with large sensitive data? Biomedical data Proprietary data Secure from both external and internal threats Integrity or confidentiality or both

2

slide-3
SLIDE 3

High-Performance Computing Workloads

Common characteristics Large data sets (10s–100s GB per node) Limited user interaction (batch) Often highly multithreaded Dedicated (super computers) or shared (cloud) nodes Diverse compute, memory, and security requirements

3

slide-4
SLIDE 4

We Analyze Two TEEs

Technology Ensures Integrity TCB Size Secure Memory Size Application Changes

Intel SGX Yes Small 128 MB (useable: 94MB)

Required

AMD SEV No Large Up to RAM size

Not Required

4

[1] [1]

[1] Christian Göttel et al. "Security, performance and energy trade-offs of hardware-assisted memory protection mechanisms." IEEE Symposium on Reliable Distributed Systems (SRDS), 2018.

slide-5
SLIDE 5

Methodology

  • Benchmarks used: NAS parallel benchmarks, LightGBM and GAPBS
  • Platforms used: Intel Core i7-8700 (12 threads/socket) for SGX and

AMD EPYC 7451 (dual socket with 48 threads/socket) for SEV study

  • Use of SCONE (SGX) and Kata (SEV) containers
  • Measured slowdown of the used workloads under secure execution
  • n both platforms
  • Relate the slowdown to other collected metrics

5

slide-6
SLIDE 6

Performance Impact of SGX

6

High slowdown, especially for graph workloads

145 100

NPB (Class C) GAPBS (synth) GAPBS (road) LGBM (mslr)

slide-7
SLIDE 7

Enclave Page Cache (EPC) Faults

7

500 360

NPB (Class C) GAPBS (synth) GAPBS (road) LGBM (mslr)

slide-8
SLIDE 8

Enclave Page Cache (EPC) Faults

8

All the benchmarks have large resident memory except ep & tc_synth

slide-9
SLIDE 9

Impact of Increasing Execution Threads (under SGX)

9

Don't scale well, as they have large resident memory

slide-10
SLIDE 10

Impact of Increasing Execution Threads (under SGX)

10

Scales normally under SGX and has a small memory footprint

slide-11
SLIDE 11

Performance Impact of SEV

11

NPB (Class C) GAPBS (synth) GAPBS (road) LGBM (mslr)

slide-12
SLIDE 12

Performance Impact of SEV

12

Virtualization appears to be the biggest reason of slowdown

slide-13
SLIDE 13

Preliminary Takeaways

Future TEEs should support HPC apps Smaller slowdowns for SEV Performance issues for SGX

EPC faults Multiple execution threads

Dynamic choice of threat model

13

SEV and SGX slowdowns