Presentation is loading. Please wait.

Presentation is loading. Please wait.

Na Kika: Secure Service Execution and Composition in an Open Edge-Side Computing Network Robert Grimm, Guy Lichtman, Nikolaos Michalakis Amos Elliston,

Published byDamian Harrell Modified over 9 years ago

Similar presentations

Presentation on theme: "Na Kika: Secure Service Execution and Composition in an Open Edge-Side Computing Network Robert Grimm, Guy Lichtman, Nikolaos Michalakis Amos Elliston,"— Presentation transcript:

1 Na Kika: Secure Service Execution and Composition in an Open Edge-Side Computing Network Robert Grimm, Guy Lichtman, Nikolaos Michalakis Amos Elliston, Adam Kravetz, Jonathan Miller, Sajid Raza New York University

2 Dynamic Content: Easy to Build Hard to Scale Dynamic content is increasingly popular, easy to create and publish Example: mash-ups chicagocrimes.org = Crime reports over Google Maps zillow.com = Real Estate stats over Microsoft Virtual Earth Easy to realize on a home server PHP, Python, ASP, JSP,... Collaborate, plug together Does not scale zillow.com + =

3 We Need a New Delivery Platform Need a platform that is scalable, extensible and secure Near the client, supports mixing/mashing, controls hosted code Clusters amplify resources, not necessarily near the client [TACC] Edge-side hosting targeted at big trusted sites [Akamai, ACDN, ColTrES, Tuxedo, vMatrix, WebSphere] P2P architectures limited to static content [Coral, CoDeeN, CobWeb] Some efforts provide containment but not composition [Active Cache, SDT] Na Kika reconciles extensibility with security

4 Na Kika Architecture DNS redirects clients to nearby proxies Proxies organized in structured overlay for caching static content Sites publish scripts that are treated like static content Scripts are executed and composed at the edge for serving dynamic content

5 Programming Model Write scripted code: Javascript Easy, already familiar Structure functionality inside event handlers onRequest handler onResponse handler Specify handlers as a Policy object Na Kika proxyClientServer p= new Policy(); p.onRequest = function(){... } p.onResponse = function(){... } p.register(); Policy Request Response

6 Service Modularity Leverage descriptive nature of HTTP messages Select handlers based on HTTP message properties URL Client IP address Method Headers Execute the most specific match Request p2= new Policy(); p2.url= [“*.zillow.com/*”]; p2.client= [“128.122.0.0/16”]; p2.method= [“GET”]; p2.onRequest = function(){... } p2.onResponse = function(){... } p2.register(); p1= new Policy(); p1.url= [“*.zillow.com/*”]; p1.client= [“0.0.0.0/0”]; p1.method= [“GET”]; p1.onRequest = function(){... } p1.onResponse = function(){... } p1.register();

7 Service Composition Event handler pair mimics proxy structure Compose handlers via the nextStages property. A series of event handlers is called a pipeline. Client Server P = new Policy(); p.nextStages = [“chicagocrime.org/map.js”, “chicagopolice.org/crime.js” ]; p.onRequest = function(){... } p.onResponse = function(){... } p.register();

8 Admission & Emission Control Reuse same mechanisms Handler selection Composition Insert two extra pipeline stages ClientWall near client ServerWall near server ClientWallServerWall... p = new Policy(); p.url = [“ www.gac.lt/en/chaseonline.chase.com/* ”]; www.gac.lt/en/chaseonline.chase.com/* p.method = [“GET”, “POST”]; p.onRequest = function(){ Request.terminate(ACCESS_DENIED); } p.register();

9 Containing Hosted Code Scripts are sandboxed Minimal runtime, less leaks to secure Select native libraries, no direct access to system No hard quota Hard to administer Control consumption only under congestion Suitable Solution: shared resources + collaborative effort If no congestion, do nothing (no hard limits) Otherwise, throttle requests Terminate largest consumers as a last resort.

10 Evaluation How does Na Kika compare to a single server? Wise-MD web-based learning application How easy is it to extend functionality/security? Examples of Na Kika extensions

11 Wise-MD Wise-MD is a web- based education tool developed at NYU medical (formerly known as SIMMs) Global participation U.S. + Australia Multimedia intensive 1 GB total content Dynamic HTML generated from XML and XSL stylesheet

12 Wise-MD on Na Kika 1 developer, 100 + 130 lines of code, 2 days work Comparison between single server and Na Kika Clients and proxies run on 12 PlanetLab nodes each For multimedia content accessed by 240 clients Clients seeing more than 140Kbps bandwidth Failures seen by clients Single Server0%60% Na Kika Cold Cache 11.5%5.6% Na Kika Warm Cache 80.3%1.9%

13 Wise-MD on Na Kika (html) warm cache cold cache

14 Extensibility in Action Na Kika Pages Programming model extension similar to PHP, JSP, ASP Replace code in with result of execution Image transcoding Transforms images to JPG, scales them down Annotated Wise-MD Layer electronic post-it notes over Wise-MD Content blocking First additional stage creates policy based on blacklist Second new stage executes policy, rejecting illegal URLs

15 Annotated Wise-MD In Action

16 Extensibility in Action Na Kika Pages Programming model extension similar to PHP, JSP, ASP Replace code in with result of execution Image transcoding Transforms images to JPG, scales them down Annotated Wise-MD Layer electronic post-it notes over Wise-MD Content blocking First additional stage creates policy based on blacklist Second new stage executes policy, rejecting illegal URLs

17 Easy to build, Easy to Scale Less than 100 lines of code for each application Annotations relied on 180 lines of external code Less than 8 hours to write/debug/test Deployment at the edge scales

18 Limitations & On-going Work Source code must be made public Sites gain capacity, but lose control over performance Unsuitable for applications with large databases Better replication strategies Proxies assumed trusted Protection against misbehaving/malicious proxies Resource management as congestion control

19 Conclusions Na Kika scales dynamic content Focus on collaborative efforts Contributions Same mechanism for defining functionality and policies Congestion-Based Resource management

20 www.nakika.org

21 unused

22 Na Kika: Secure Service Execution and Composition in an Open Edge-Side Computing Network Robert Grimm, Guy Lichtman, Nikolaos Michalakis Amos Elliston, Adam Kravetz, Jonathan Miller, Sajid Raza Nikolaos Michalakis New York University

23 the octopus-god Na Kika: The octopus-god of the Gilbert Islands. His many arms served him well when he shoved up the earth from the bottom of the sea to form the islands, the beaches and the rocks... Encyclopedia Mythica™

24 We Need a New Delivery Platform Trusted deployments limited to amplifying existing sites. [Akamai, aCDN, ColTrES, Tuxedo, vMatrix, WebSphere] Open architectures limited to static content [Coral, CoDeeN, CobWeb] Some open architectures do provide code containment but no composition. [Active Cache, SDT] Need a platform that has it all: scalable move resources near clients. easily and openly extensible, composable secures the hosted code

25 extensibility The keys to Na Kika’s extensible architecture: Applications are built through pipelines. Pipeline stages are developed using Policy objects. Stages are selected by matching HTTP predicates (vertical extensibility). Policy URLs used for linking stages by different providers (horizontal extensibility).

26 edge-side scripting Javascript: easy, familiar to programmers. Access to HTTP requests and responses via Request and Response objects. Objects, called vocabularies, provide access to: soft state hard state content processing selected system functionality One object however is special... The Policy object serves as an application building block.

27 security challenges Secure the pipeline: client - Na Kika stage - stage Na Kika - server Secure script execution on Na Kika host: resource access control resource management ‣ without sacrificing extensibility

28 securing the host Pipeline isolation: pipeline = process access system through vocabularies only. Script isolation: stage = script execution context. scripting engine isolates contexts. But host resources can still be abused. vocabs

29 securing the host Scripting helps again: Easier to control a small execution engine. Only selected system functionality is exposed via platform libraries. Each script runs on its own isolated environment.

30 motivation An application such as the SIMMs: Delivers multimedia-heavy, personalized content. Scales to large, often global audience. Developed and used by a large, geographically diverse community. Has multiple content creators and service developers. High degree of collaboration among organizations. Can it be supported by current architectures?

31 single server bottleneck most common, inexpensive solution but it’s a bottleneck CPU, bandwidth are limited. administration requires a form of organization. same for collaboration/deve lopment.

32 layering still a bottleneck straightforward service layering helps with: administration collaboration/dev elopment still it’s a performance bottleneck (CPU, bandwidth)

33 Security Issues Servers and Clients are not trusted Control admission and emission in the pipeline Hosted scripts are not trusted Limit access to system resources Control resource consumption

34 Implementation Implementation based on Apache Event handlers = Apache input and output filters Pipeline isolation = Different processes Scripting on Apache via user-level threads Hide piecemeal content handling Isolate execution Resource Management = external process Tracks per process usage Signals throttling and termination

35 We Need a New Delivery Platform Need a platform that is Scalable amplify resources + collocate with clients Extensible allow composition, mixing, mashing Secure protected from untrusted code Clusters amplify resources but not near the client [TACC] Edge-side hosting targeted for trusted deployments [Akamai, ACDN, ColTrES, Tuxedo, vMatrix, WebSphere] P2P architectures limited to static content [Coral, CoDeeN, CobWeb] Some provide containment but not composition [Active Cache, SDT] Na Kika reconciles extensibility with security

36 Wise-MD on Na Kika (latency) warm cache cold cache single server < <

Download ppt "Na Kika: Secure Service Execution and Composition in an Open Edge-Side Computing Network Robert Grimm, Guy Lichtman, Nikolaos Michalakis Amos Elliston,"

Similar presentations

Overview Environment for Internet database connectivity

Overview Environment for Internet database connectivity
Adding scalability to legacy PHP web applications Overview Mario A. Valdez-Ramirez.

Adding scalability to legacy PHP web applications Overview Mario A. Valdez-Ramirez.
1 Content Delivery Networks iBAND2 May 24, 1999 Dave Farber CTO Sandpiper Networks, Inc.

1 Content Delivery Networks iBAND2 May 24, 1999 Dave Farber CTO Sandpiper Networks, Inc.
DEV392: Extending SharePoint Products And Technologies Through Web Parts And ASP.NET Clint Covington, Program Manager Data And Developer Services - Office.

DEV392: Extending SharePoint Products And Technologies Through Web Parts And ASP.NET Clint Covington, Program Manager Data And Developer Services - Office.
1 Bringing P2P to the Web: Security and Privacy in the Firecoral Network Jeff Terrace Harold Laidlaw Hao Eric Liu Sean Stern Michael Freedman.

1 Bringing P2P to the Web: Security and Privacy in the Firecoral Network Jeff Terrace Harold Laidlaw Hao Eric Liu Sean Stern Michael Freedman.
DotSlash – A Web Hotspot Rescue System Weibin Zhao Henning Schulzrinne Department of Computer Science Columbia University June 11, 2004.

DotSlash – A Web Hotspot Rescue System Weibin Zhao Henning Schulzrinne Department of Computer Science Columbia University June 11, 2004.
Web Caching Schemes1 A Survey of Web Caching Schemes for the Internet Jia Wang.

Web Caching Schemes1 A Survey of Web Caching Schemes for the Internet Jia Wang.
PHP/ASP Robert Nelson & Will Vanlue BA370 November 4 th, 2005.

PHP/ASP Robert Nelson & Will Vanlue BA370 November 4 th, 2005.
CSE 190: Internet E-Commerce Lecture 16: Performance.

CSE 190: Internet E-Commerce Lecture 16: Performance.
Anycast Jennifer Rexford Advanced Computer Networks Tuesdays/Thursdays 1:30pm-2:50pm.

Anycast Jennifer Rexford Advanced Computer Networks Tuesdays/Thursdays 1:30pm-2:50pm.
Copyright © 2002 Pearson Education, Inc. Slide 4-1 Choosing the Hardware for an E-commerce Site  Hardware platform  Refers to all the underlying computing.

Copyright © 2002 Pearson Education, Inc. Slide 4-1 Choosing the Hardware for an E-commerce Site  Hardware platform  Refers to all the underlying computing.
Handling Web Hotspots at Dynamic Content Web Sites Using DotSlash Weibin Zhao Henning Schulzrinne Columbia University Dagstuhl.

Handling Web Hotspots at Dynamic Content Web Sites Using DotSlash Weibin Zhao Henning Schulzrinne Columbia University Dagstuhl.
1 CS6320 – Why Servlets? L. Grewe 2 What is a Servlet? Servlets are Java programs that can be run dynamically from a Web Server Servlets are Java programs.

1 CS6320 – Why Servlets? L. Grewe 2 What is a Servlet? Servlets are Java programs that can be run dynamically from a Web Server Servlets are Java programs.
Java Server Team 8. Overview What is a Java Server? History Architecture Advantages Disadvantages Current Technologies Conclusion.

Java Server Team 8. Overview What is a Java Server? History Architecture Advantages Disadvantages Current Technologies Conclusion.
Internet Information Server (IIS)

Internet Information Server (IIS)
1 Web Content Delivery Reading: Section 9.2.2 and 9.4.3 COS 461: Computer Networks Spring 2007 (MW 1:30-2:50 in Friend 004) Ioannis Avramopoulos Instructor:

1 Web Content Delivery Reading: Section and COS 461: Computer Networks Spring 2007 (MW 1:30-2:50 in Friend 004) Ioannis Avramopoulos Instructor:
PORTIA Robert Grimm New York University Security Challenges for Rich-Media Educational Environments.

PORTIA Robert Grimm New York University Security Challenges for Rich-Media Educational Environments.
DotSlash: Providing Dynamic Scalability to Web Applications Weibin Zhao and Henning Schulzrinne Department of Computer Science, Columbia University More.

DotSlash: Providing Dynamic Scalability to Web Applications Weibin Zhao and Henning Schulzrinne Department of Computer Science, Columbia University More.
Web-Enabling the Warehouse Chapter 16. Benefits of Web-Enabling a Data Warehouse Better-informed decision making Lower costs of deployment and management.

Web-Enabling the Warehouse Chapter 16. Benefits of Web-Enabling a Data Warehouse Better-informed decision making Lower costs of deployment and management.
IST346:  Web Services. Today’s Agenda  Learn the basics of how the Web works  Understand various web service architectures  Address scaling, security,

IST346:  Web Services. Today’s Agenda  Learn the basics of how the Web works  Understand various web service architectures  Address scaling, security,

Similar presentations

Ads by Google