Presentation is loading. Please wait.

Presentation is loading. Please wait.

Harnessing Multicore Processors for High Speed Secure Transfer Raj Kettimuthu Argonne National Laboratory.

Published byBrooke Shields Modified over 9 years ago

Similar presentations

Presentation on theme: "Harnessing Multicore Processors for High Speed Secure Transfer Raj Kettimuthu Argonne National Laboratory."— Presentation transcript:

1 Harnessing Multicore Processors for High Speed Secure Transfer Raj Kettimuthu Argonne National Laboratory

2 Security Clear  No security at all Authentication  Verify the connection only, data is clear Integrity  Verify each packet, data is clear  High processing requirements Private  Encrypt all data  Very high processing requirements

3 Security Security context  Includes a symmetric key  Associated with each TCP connection  Used for faster security processing Cipher Block Chaining  TLS/SSL, GSI, etc  Previously encrypted cipher text is used in the encryption of the current block  Cannot parallelize

4 High Performance Transfers True security makes the CPU the bottleneck  Thus auth or clear are selected  there is no data integrity Post transfer checksums  Used to verify data once transfer completes  Should be considered part of transfer time  Less efficient (most re-open and read data)  cannot parallelize

5 Parallel Streams Multiple TCP streams between endpoints  Network optimization  Used to work around TCP backoff A security context with each stream  Can use to parallelize security processing  Each stream has own context  cipher block chain associated with that context

6 Multiple Cores Up coming technologies  Quad core commodity  Future will bring..... Parallel processing power  No increase in memory  No increase in bus bandwidth  No increase in NIC bandwidth Increases the ratio of processing power to network speed

7 Transfer Resources and Streams Memory needed is a function of BWDP  BWDP total = RTT * BW Parallel streams do not increase the BDWP  Each stream shares an equal portion  BWDP stream = RTT * (BW/|streams|) Required resources are not a function of |streams|  memory is function of BWDP  bus/disk/NIC speed is a function of transfer rate

8 Full Encryption Perfect application of multiple cores  1 stream per processor  Allows parallelism of security processing  Requires a core, but no more memory  Results show linear or close to linear increase on different dual-core architectures  Some interesting results on dual-core architectures with hyper threading

9 Results Pentium Dual Core 1.1 GHz Security Level Single P1 Single P2 Pool P1 Pool P2 Clear814818816818 Authenticated812814813816 Safe169178164285 Private767875138

10 Results Itanium Dual Core 1.2 GHz Security Level Single P1 Single P2 Pool P1 Pool P2 Clear903905903906 Authenticated899 Safe488517488770 Private177183177340

11 Results Opteron 64 bit Dual Core 2.4 GHz Security Level Single P1 Single P2 Pool P1 Pool P2 Clear897 Authenticated897 Safe254268254471 Private100101100196

12 Results Xeon dual core 2.8 GHz with hyper threading

13 Results Xeon dual core 2.8 GHz with hyper threading

14 Results Opteron dual core 1GHz with hyper threading

15 Results Opteron dual core 1GHz with hyper threading

16 Results Experiments to see the effect of high thread count and high number of parallel streams |Stream| > min(|CPU|, |Thread|) does not fetch much benefit |Thread| > |CPU| does not fetch any benefit - it seems to hurt the performance

17 Results

18

19

20

21 Stripes Striping to extrapolate for higher number of cores 4 way striping with dual cores on each stripe Results show that 6 cores may be sufficient to get a throughput for fully encrypted transfers that is equivalent to that of a clear transfer with Gigabit NICs  Intel Xeon dual core 2.4 GHz 2 way stripe with 1 thread per stripe is better than 1 way stripe with 2 threads  Suspected cause is availability of 2 Gigabit NICs for 2 way stripe  Need to do more tests to verify this

22 Stripes

23 S1,C2 S2,C2

Download ppt "Harnessing Multicore Processors for High Speed Secure Transfer Raj Kettimuthu Argonne National Laboratory."

Similar presentations

1 Memory Performance and Scalability of Intel’s and AMD’s Dual-Core Processors: A Case Study Lu Peng 1, Jih-Kwon Peir 2, Tribuvan K. Prakash 1, Yen-Kuang.

1 Memory Performance and Scalability of Intel’s and AMD’s Dual-Core Processors: A Case Study Lu Peng 1, Jih-Kwon Peir 2, Tribuvan K. Prakash 1, Yen-Kuang.
Structure of Computer Systems

Structure of Computer Systems
Conventional Encryption: Algorithms

Conventional Encryption: Algorithms
Computer Abstractions and Technology

Computer Abstractions and Technology
MULTICORE PROCESSOR TECHNOLOGY.  Introduction  history  Why multi-core ?  What do you mean by multicore?  Multi core architecture  Comparison of.

MULTICORE PROCESSOR TECHNOLOGY.  Introduction  history  Why multi-core ?  What do you mean by multicore?  Multi core architecture  Comparison of.
OPTERON (Advanced Micro Devices). History of the Opteron AMD's server & workstation processor line 2003: Original Opteron released o 32 & 64 bit processing.

OPTERON (Advanced Micro Devices). History of the Opteron AMD's server & workstation processor line 2003: Original Opteron released o 32 & 64 bit processing.
INTEL COREI3 INTEL COREI5 INTEL COREI7 Maryam Zeb Roll#52 GFCW Peshawar.

INTEL COREI3 INTEL COREI5 INTEL COREI7 Maryam Zeb Roll#52 GFCW Peshawar.
Chapter 8 Hardware Conventional Computer Hardware Architecture.

Chapter 8 Hardware Conventional Computer Hardware Architecture.
CPU Processor Speed Timeline. 8008 Speed =.02 Mhz Year= 1972 Transistors= 3500 It takes 66,600 8008 CPU’s to equal 1 i7.

CPU Processor Speed Timeline Speed =.02 Mhz Year= 1972 Transistors= 3500 It takes 66, CPU’s to equal 1 i7.
Processor history. 1978-811984 8086/808880286 1987-88 80386 DX/SX 1990-92 80486 SX/DX 1993-95 Pentium 1997 Pentium MMX 1 23455+

Processor history / DX/SX SX/DX Pentium 1997 Pentium MMX
CSCE101 – 4.2, 4.3 October 17, 2006. Power Supply Surge Protector –protects from power spikes which ruin hardware. Voltage Regulator – protects from insufficient.

CSCE101 – 4.2, 4.3 October 17, Power Supply Surge Protector –protects from power spikes which ruin hardware. Voltage Regulator – protects from insufficient.
Multiprocessors ELEC 6200 Computer Architecture and Design Instructor: Dr. Agrawal Yu-Chun Chen 10/27/06.

Multiprocessors ELEC 6200 Computer Architecture and Design Instructor: Dr. Agrawal Yu-Chun Chen 10/27/06.
ECE 526 – Network Processing Systems Design

ECE 526 – Network Processing Systems Design
Lecture 37: Chapter 7: Multiprocessors Today’s topic –Introduction to multiprocessors –Parallelism in software –Memory organization –Cache coherence 1.

Lecture 37: Chapter 7: Multiprocessors Today’s topic –Introduction to multiprocessors –Parallelism in software –Memory organization –Cache coherence 1.
HS06 on the last generation of CPU for HEP server farm Michele Michelotto 1.

HS06 on the last generation of CPU for HEP server farm Michele Michelotto 1.
Https://www.youtube.com/watch?v=HA96GwuvdVM.

 The processor number is one of several factors, along with processor brand, specific system configurations and system-level benchmarks, to be.

 The processor number is one of several factors, along with processor brand, specific system configurations and system-level benchmarks, to be.
ORIGINAL AUTHOR JAMES REINDERS, INTEL PRESENTED BY ADITYA AMBARDEKAR Overview for Intel Xeon Processors and Intel Xeon Phi coprocessors.

ORIGINAL AUTHOR JAMES REINDERS, INTEL PRESENTED BY ADITYA AMBARDEKAR Overview for Intel Xeon Processors and Intel Xeon Phi coprocessors.
Sven Ubik, Petr Žejdl CESNET TNC2008, Brugges, 19 May 2008 Passive monitoring of 10 Gb/s lines with PC hardware.

Sven Ubik, Petr Žejdl CESNET TNC2008, Brugges, 19 May 2008 Passive monitoring of 10 Gb/s lines with PC hardware.
GridFTP Guy Warner, NeSC Training.

GridFTP Guy Warner, NeSC Training.

Similar presentations

Ads by Google