derived virtual devices a secure distributed file system
play

Derived Virtual Devices: A Secure Distributed File System Mechanism - PowerPoint PPT Presentation

Jul 25, 2023 •166 likes •339 views

Derived Virtual Devices: A Secure Distributed File System Mechanism Rodney Van Meter, Steve Hotz and Gregory Finn USC/Information Sciences Institute {rdv,hotz,finn}@isi.edu Fifth NASA Goddard Space Flight Center Conference on Mass Storage

  1. Derived Virtual Devices: A Secure Distributed File System Mechanism Rodney Van Meter, Steve Hotz and Gregory Finn USC/Information Sciences Institute {rdv,hotz,finn}@isi.edu Fifth NASA Goddard Space Flight Center Conference on Mass Storage Systems and Technologies September 17, 1996 1 INFORMATION SCIENCES INSTITUTE UNIVERSITY OF SOUTHERN CALIFORNIA 4676 Admiralty Way Marina Del Rey, CA 90292

  2. Talk Outline • Netstation • Derived Virtual Devices • A DVD File System • Third-Party Transfer • Implementation Issues & Status • Conclusion 2 INFORMATION SCIENCES INSTITUTE UNIVERSITY OF SOUTHERN CALIFORNIA 4676 Admiralty Way Marina Del Rey, CA 90292

  3. Netstation Netstation is a system composed of network-attached peripherals (NAPs) created by replacing the system bus in a workstation with a gigabit network. HiDef User Input Internet as Backplane CPU/Memory Disk Camera Based on ATOMIC 640 Mbps switched network, use Internet protocols for ubiquitous device access. 3 INFORMATION SCIENCES INSTITUTE UNIVERSITY OF SOUTHERN CALIFORNIA 4676 Admiralty Way Marina Del Rey, CA 90292

  4. Why Netstation? • Traditional buses don’t scale in distance or bandwidth. • Support efficient device-to-device transfer without consuming resources at main CPU. ❏ e.g., incoming video data direct to display. • Construct systems flexibly. 4 INFORMATION SCIENCES INSTITUTE UNIVERSITY OF SOUTHERN CALIFORNIA 4676 Admiralty Way Marina Del Rey, CA 90292

  5. Netstation Problems Closed, bus-centric architecture allows simplifying assumptions about resource identification, security and sharing. • Set of resources not constrained by architecture. • Control of devices not limited to bus master. • Non-dedicated network. • Security now paramount. 5 INFORMATION SCIENCES INSTITUTE UNIVERSITY OF SOUTHERN CALIFORNIA 4676 Admiralty Way Marina Del Rey, CA 90292

  6. Netstation Components • NVDM: NVD Manager ❏ Database provides configuration info. • NVDs: Network Virtual Devices (physical resources) ❏ NVD is named resource. • DVDs: Derived Virtual Devices • Access Procedures 6 INFORMATION SCIENCES INSTITUTE UNIVERSITY OF SOUTHERN CALIFORNIA 4676 Admiralty Way Marina Del Rey, CA 90292

  7. Derived Virtual Devices A derived virtual device (DVD) is an execution context at a network virtual device (NVD); i.e. a set of resources and procedures to access them. DVD concept provides a mechanism to support safe sharing of resources. • Enforces resource bounds checking. • Constrains operation functionality (e.g., read only). • Checks authentication of user . Who a request is from is much more important than where . 7 INFORMATION SCIENCES INSTITUTE UNIVERSITY OF SOUTHERN CALIFORNIA 4676 Admiralty Way Marina Del Rey, CA 90292

  8. STORM: A DVD File System STORM (STORage Manager) is the file system code, running at the Netstation CPU. Its purpose is to mediate access to the Netstation disk drives by creating DVDs for clients. • STORM accepts file open requests from clients, does protection checks and file mapping to blocks. • STORM (STORage Manager) creates a DVD for client access to a file, mapping only the file blocks. • Client then accesses device directly. • STORM doesn’t cache file pages for DVD-mapped files. 8 INFORMATION SCIENCES INSTITUTE UNIVERSITY OF SOUTHERN CALIFORNIA 4676 Admiralty Way Marina Del Rey, CA 90292

  9. DVD File Mapping A DVD can be defined to map the blocks of a file, which the client can then treat like a raw device. Parent DVD (real disk NVD) 0 1 2 3 4 5 6 7 0 1 2 Child DVD (a single mapped file) This is how resource protection boundaries are enforced. 9 INFORMATION SCIENCES INSTITUTE UNIVERSITY OF SOUTHERN CALIFORNIA 4676 Admiralty Way Marina Del Rey, CA 90292

  10. DVD File Read Once STORM establishes DVD for rdv, data requests go directly from rdv to the device (11-12, 13-14). • 1-4 rdv gets ticket Kerb TGS to access STORM • 5 requests DVD • 6 STORM makes DVD for rdv NVDM 1 2 3,9 4,10 • 11 first data request 6 • 13 second data STORM request Disk 7 NVD 5 11,13 8 12,14 rdv 10 INFORMATION SCIENCES INSTITUTE UNIVERSITY OF SOUTHERN CALIFORNIA 4676 Admiralty Way Marina Del Rey, CA 90292

  11. Write Before Read (WBR) Example optimization: DVDs enable marking of blocks as write before read , eliminating erase while staying safe. Parent DVD (real disk NVD) 0 1 2 3 4 5 6 7 0 1 2 3 4 Child DVD (a single mapped file) Write Before Read blocks 11 INFORMATION SCIENCES INSTITUTE UNIVERSITY OF SOUTHERN CALIFORNIA 4676 Admiralty Way Marina Del Rey, CA 90292

  12. DVD Third-Party Transfer Third-party transfer from disk to display. • 5 rdv creates DVD at Kerb TGS display for disk • 7 rdv tells disk to send 8 data to display 2 1 NVDM 9 • 10 data transfer • 13 second request STORM • 14 data transfer Disk 7,13 NVD rdv 12,16 11,15 10,14 3,5 display 4,6 DVD 3rd party transfer uses minimal msgs on later iterations (four per request). 12 INFORMATION SCIENCES INSTITUTE UNIVERSITY OF SOUTHERN CALIFORNIA 4676 Admiralty Way Marina Del Rey, CA 90292

  13. Implementation Status and Issues • DVD definitions are downloaded Scheme (Lisp) code. • Display working with non-recursive DVDs and custom X server. • STORM file system and disk device in early prototyping. • Authentication (Kerberos) not yet incorporated. 13 INFORMATION SCIENCES INSTITUTE UNIVERSITY OF SOUTHERN CALIFORNIA 4676 Admiralty Way Marina Del Rey, CA 90292

  14. Conclusions & Pointers Derived virtual devices are safe sharing. They offer safe, transferable, low-level access to Internet-attached devices. This supports a variety of device types and makes third-party device-to-device more efficient. • DVDs enforce policy established by parent’s owner. • Direct access to device supported for efficiency. • DVD creation is expensive, but subsequent access is both cheap and safe. • Recursion simplifies support for third-party transfer. Full paper (detailing msg steps) and other info available at: • http://www.isi.edu/netstation/ 14 INFORMATION SCIENCES INSTITUTE UNIVERSITY OF SOUTHERN CALIFORNIA 4676 Admiralty Way Marina Del Rey, CA 90292

  15. Block v. File Servers Should a network-attached disk drive present a file system interface (e.g. NFS) or a block device interface (e.g. SCSI)? We believe a low-level block-oriented interface is appropriate under many circumstances: • Non-file system uses: striping, RAID, HSM cache, etc. • NFS semantics “wrong” for other FS types: naming, directory semantics, commit semantics, etc. differ for log FSes & other different block allocation, non-Unix FS, etc. • Low-level operations both necessary and promote efficiency: eject, format, erase, rotational positional allocation, partial block handling, etc. 15 INFORMATION SCIENCES INSTITUTE UNIVERSITY OF SOUTHERN CALIFORNIA 4676 Admiralty Way Marina Del Rey, CA 90292

  16. 16 INFORMATION SCIENCES INSTITUTE UNIVERSITY OF SOUTHERN CALIFORNIA 4676 Admiralty Way Marina Del Rey, CA 90292

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Distributed File Systems Distributed File Systems A distributed file system (DFS) is a

Distributed File Systems Distributed File Systems A distributed file system (DFS) is a

Distributed File Systems Distributed File Systems A distributed file system (DFS) is a distributed Definitions implementation of a classical time-sharing model of a file Distributed system - A number of loosely coupled system. machines

997 views • 8 slides
YFS 1.0 is the next generation distributed file system for secure private, public and hybrid

YFS 1.0 is the next generation distributed file system for secure private, public and hybrid

YFS 1.0 is the next generation distributed file system for secure private, public and hybrid cloud storage deployments. YFS 1.0 is not a hardware appliance. Backward compatible with IBM AFS 3.6 and OpenAFS. No flag day required

359 views • 16 slides
Virtual File System Project 2: Virtual File System Handouts / Description to be published

Virtual File System Project 2: Virtual File System Handouts / Description to be published

Virtual File System Project 2: Virtual File System Handouts / Description to be published by end Project 2 of week Due Dates (subject to change): The Virtual File System Minimum Effort Due: February 6, 2003 Full Project

273 views • 4 slides
R.A.I.D.F.S Randomized Aggregation Independent Distributed File System P2P Distributed File

R.A.I.D.F.S Randomized Aggregation Independent Distributed File System P2P Distributed File

R.A.I.D.F.S Randomized Aggregation Independent Distributed File System P2P Distributed File System with an API for Map-Reduce Integration Sven Reber, Jrmy Gotteland, David Froelicher, Alban Marguet, Pascal Cudr, Valrian Pittet Context

253 views • 21 slides
Distributed File Systems Issues in Distributed File Service Case Studies: Sun

Distributed File Systems Issues in Distributed File Service Case Studies: Sun

CPSC-662 Distributed Computing Distributed File Systems Distributed File Systems Issues in Distributed File Service Case Studies: Sun Network File System Coda File System Web Reading: Coulouris: Distributed

318 views • 12 slides
Hadoop Distributed File System (HDFS) 10/05/2018 1 HDFS Overview A distributed file system

Hadoop Distributed File System (HDFS) 10/05/2018 1 HDFS Overview A distributed file system

Hadoop Distributed File System (HDFS) 10/05/2018 1 HDFS Overview A distributed file system Built on the architecture of Google File System (GS) Shares a similar architecture to many other common distributed storage engines such as Amazon

1.72k views • 34 slides
Hadoop Distributed File System (HDFS) 1 HDFS Overview A distributed file system Built on

Hadoop Distributed File System (HDFS) 1 HDFS Overview A distributed file system Built on

Hadoop Distributed File System (HDFS) 1 HDFS Overview A distributed file system Built on the architecture of Google File System (GFS) Shares a similar architecture to many other common distributed storage engines such as Amazon S3

874 views • 60 slides
Hadoop Distributed File System (HDFS) 1 HDFS Overview A distributed file system Built on the

Hadoop Distributed File System (HDFS) 1 HDFS Overview A distributed file system Built on the

Hadoop Distributed File System (HDFS) 1 HDFS Overview A distributed file system Built on the architecture of Google File System (GFS) Shares a similar architecture to many other common distributed storage engines such as Amazon S3 and

597 views • 34 slides
Distributed Systems - III Open a file, check status on a file, close a file; Read data

Distributed Systems - III Open a file, check status on a file, close a file; Read data

CSE 421/521 - Operating Systems What does Distributed File System Provide? Fall 2011 Provide access to and manipulation of data stored at remote servers using file system interfaces Lecture - XXV What are the file system interfaces?

236 views • 5 slides
OS Support for a Commodity Database on PC Clusters Distributed Devices vs. Distributed File

OS Support for a Commodity Database on PC Clusters Distributed Devices vs. Distributed File

OS Support for a Commodity Database on PC Clusters Distributed Devices vs. Distributed File Systems Felix Rauch (National ICT Australia) Thomas M. Stricker (Google Inc., USA) Laboratory for Computer Systems, ETH Zurich, Switzerland NIC

818 views • 38 slides
Network File System - NFS NFS Specification NFS is a distributed file system (DFS) originally

Network File System - NFS NFS Specification NFS is a distributed file system (DFS) originally

Network File System - NFS NFS Specification NFS is a distributed file system (DFS) originally The NFS specification distinguishes between the implemented by Sun Microsystems. services provided by the mount mechanism and the remote file

105 views • 9 slides
Virtual File System Don Porter CSE 306 History Early OSes provided a single file system In

Virtual File System Don Porter CSE 306 History Early OSes provided a single file system In

Virtual File System Don Porter CSE 306 History Early OSes provided a single file system In general, system was pretty tailored to target hardware In the early 80s, people became interested in supporting more than one file system type on

546 views • 35 slides
Virtual File System Don Porter CSE 506 History Early OSes provided a single file system

Virtual File System Don Porter CSE 506 History Early OSes provided a single file system

Virtual File System Don Porter CSE 506 History Early OSes provided a single file system In general, system was pretty tailored to target hardware In the early 80s, people became interested in supporting more than one file

670 views • 37 slides
NFS Heterogeneous systems must be supported Different HW, OS, underlying file system

NFS Heterogeneous systems must be supported Different HW, OS, underlying file system

Distributed File Systems Distributed Systems Case Studies NFS AFS CODA DFS SMB CIFS Distributed File Systems Dfs WebDAV GFS Gmail -FS ? xFS Paul Krzyzanowski pxk@cs.rutgers.edu Except as otherwise noted,

430 views • 19 slides
The Distributed File System (DFS) The sharing of stored information is perhaps the most important

The Distributed File System (DFS) The sharing of stored information is perhaps the most important

The Distributed File System (DFS) The sharing of stored information is perhaps the most important aspect of distributed resource sharing Introducing DFSs The design of large-scale wide-area read-write file storage systems poses problems of

1k views • 21 slides
Speculative execution in a distributed file system E. B. Nightingale, P. M. Chen, J. Flinn

Speculative execution in a distributed file system E. B. Nightingale, P. M. Chen, J. Flinn

Faculty of Computer Science Institute for System Architecture, Operating Systems Group Speculative execution in a distributed file system E. B. Nightingale, P. M. Chen, J. Flinn Dresden, 2010-09-01 Distributed File Systems NFS (v3),

194 views • 15 slides
AFOSR, NIH, CNR, DTRA Human Performance and Biosystems August 2014 Italian CNR Patrick O.

AFOSR, NIH, CNR, DTRA Human Performance and Biosystems August 2014 Italian CNR Patrick O.

AFOSR, NIH, CNR, DTRA Human Performance and Biosystems August 2014 Italian CNR Patrick O. Bradshaw Program Officer AFOSR/RTE Air Force Office of Scientific Research Integrity Service Excellence 1 Distribution A: Approved for

591 views • 14 slides
Coincident multi-point observations of the E- and F-region decametre-scale plasma waves at high

Coincident multi-point observations of the E- and F-region decametre-scale plasma waves at high

Coincident multi-point observations of the E- and F-region decametre-scale plasma waves at high latitudes Brett A. Carter 1,2 , Roman A. Makarevich 1,3 and John C. Devlin 1 1 Department of Physics, La Trobe University, Victoria, 3086, Australia 2

303 views • 12 slides
Healthwatch depression advertising pitch Introduction Welcome everyone, this report will cover:

Healthwatch depression advertising pitch Introduction Welcome everyone, this report will cover:

Healthwatch depression advertising pitch Introduction Welcome everyone, this report will cover: Research and concepts involved in the creation of an advert covering depression How I reached these ideas for the advert Market research

570 views • 21 slides
EARTHQUAKE LOSS ESTIMATION OF EARTHQUAKE LOSS ESTIMATION OF St. LOUIS TRANSPORTATION St. LOUIS

EARTHQUAKE LOSS ESTIMATION OF EARTHQUAKE LOSS ESTIMATION OF St. LOUIS TRANSPORTATION St. LOUIS

EARTHQUAKE LOSS ESTIMATION OF EARTHQUAKE LOSS ESTIMATION OF St. LOUIS TRANSPORTATION St. LOUIS TRANSPORTATION HIGHWAY SYSTEM HIGHWAY SYSTEM Ronaldo Luna, Ph.D., P.E . Ronaldo Luna, Ph.D., P.E . Associate Professor of Civil Engineering

779 views • 48 slides
City of Corpus Christi Seawater Desalination Project Siting and Permitting Master Services

City of Corpus Christi Seawater Desalination Project Siting and Permitting Master Services

City of Corpus Christi Seawater Desalination Project Siting and Permitting Master Services Agreement Council Presentation September 25, 2018 1 Seawater Desalination - Siting & Permitting Project Overview Goals Lowering Risks,

427 views • 7 slides
July 2014 Agenda Welcome and introductions Meeting formalities and purpose of meeting

July 2014 Agenda Welcome and introductions Meeting formalities and purpose of meeting

PROPOSED DESALINATION PLANT FOR RSSING URANIUM SEIA Public & Focus Group Meetings July 2014 Agenda Welcome and introductions Meeting formalities and purpose of meeting Project background / motivation Overview of

220 views • 21 slides
27/04/2019 1/24 27/04/2019 SCHEME OF PRESENTATION FRESH WATER MANAGEMENT SEAWATER

27/04/2019 1/24 27/04/2019 SCHEME OF PRESENTATION FRESH WATER MANAGEMENT SEAWATER

27/04/2019 1/24 27/04/2019 SCHEME OF PRESENTATION FRESH WATER MANAGEMENT SEAWATER DESALINATION NUCLEAR DESALINATION PAEC ROLE IN NUCLEAR DESALINAITON SUGESSTIONS - LONG TERM PLAN 2/24 27/04/2019 FRESH WATER MANAGEMENT

472 views • 24 slides
Desalination in Israel Dr. Sharon B. Megdal, Director smegdal@email.arizona.edu MSSC 2018 Annual

Desalination in Israel Dr. Sharon B. Megdal, Director smegdal@email.arizona.edu MSSC 2018 Annual

Desalination in Israel Dr. Sharon B. Megdal, Director smegdal@email.arizona.edu MSSC 2018 Annual Salinity Summit February 8, 2018 wrrc.arizona.edu 1 GREATER DEPTH, BROADER PERSPECTIVE FOR A CLEAR WATER FUTURE We tackle key water policy

559 views • 28 slides

More recommend