Introduction to the Special Section on Security in FPGA-accelerated Cloud and Datacenters

ACM Transactions on Reconfigurable Technology and Systems (TRETS) Pub Date : 2019-09-13 DOI:10.1145/3352060

C. Bobda, R. Tessier, Ken Eguro, R. Kastner

{"title":"Introduction to the Special Section on Security in FPGA-accelerated Cloud and Datacenters","authors":"C. Bobda, R. Tessier, Ken Eguro, R. Kastner","doi":"10.1145/3352060","DOIUrl":null,"url":null,"abstract":"The rapid advance of cloud computing platforms has made these computing resources a vital infrastructure for many application developers. For a modest fee, scalable and diverse compute components are available to application developers on demand, eliminating the need for large computer hardware investments by organizations. Although cloud computing platforms have included microprocessors and graphics processing units (GPUs) for many years, the availability of field-programmable gate arrays (FPGAs) in these platforms has only become prevalent in the past few years. Amazon, Baidu, and Maxeler now expose FPGAs to application developers in their cloud infrastructures. The integration of FPGAs in Microsoft Catapult to accelerate various tasks, including Bing, has led to a 2× performance speed-up versus processor-only implementation with only a 30% increase in energy. Intel recently announced in-package FPGA integration in Xeon multi-core processors. The use of FPGAs in the cloud raises a series of important security issues regarding their use, since the devices have traditionally been used by a single user in a closed environment. FPGA use by many cloud users over time, and potentially by multiple independent users at the same time, opens up a number of attack vectors in which FPGA devices could be damaged, computation could be attacked leading to incorrect results, computation results could be snooped, or covert communication channels in the FPGA could be developed. Research identifying these issues and developing countermeasures is still at an early stage, although interest is increasing. To highlight early work in these areas, we initiated a call for a special issue of TRETS with the topic of security in FPGA-accelerated cloud and datacenters. After an initial evaluation of submissions for the special issue for quality and relevance, eight papers were selected for review. At least three reviewers who are experts in security and FPGAs evaluated each manuscript during multiple rounds of review. Ultimately, four high-quality papers related to the security of FPGAs in the cloud were selected for inclusion in the special issue. The following summaries provide high-level views of these manuscripts and a brief analysis of their contributions:","PeriodicalId":162787,"journal":{"name":"ACM Transactions on Reconfigurable Technology and Systems (TRETS)","volume":"1 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2019-09-13","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"ACM Transactions on Reconfigurable Technology and Systems (TRETS)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/3352060","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

The rapid advance of cloud computing platforms has made these computing resources a vital infrastructure for many application developers. For a modest fee, scalable and diverse compute components are available to application developers on demand, eliminating the need for large computer hardware investments by organizations. Although cloud computing platforms have included microprocessors and graphics processing units (GPUs) for many years, the availability of field-programmable gate arrays (FPGAs) in these platforms has only become prevalent in the past few years. Amazon, Baidu, and Maxeler now expose FPGAs to application developers in their cloud infrastructures. The integration of FPGAs in Microsoft Catapult to accelerate various tasks, including Bing, has led to a 2× performance speed-up versus processor-only implementation with only a 30% increase in energy. Intel recently announced in-package FPGA integration in Xeon multi-core processors. The use of FPGAs in the cloud raises a series of important security issues regarding their use, since the devices have traditionally been used by a single user in a closed environment. FPGA use by many cloud users over time, and potentially by multiple independent users at the same time, opens up a number of attack vectors in which FPGA devices could be damaged, computation could be attacked leading to incorrect results, computation results could be snooped, or covert communication channels in the FPGA could be developed. Research identifying these issues and developing countermeasures is still at an early stage, although interest is increasing. To highlight early work in these areas, we initiated a call for a special issue of TRETS with the topic of security in FPGA-accelerated cloud and datacenters. After an initial evaluation of submissions for the special issue for quality and relevance, eight papers were selected for review. At least three reviewers who are experts in security and FPGAs evaluated each manuscript during multiple rounds of review. Ultimately, four high-quality papers related to the security of FPGAs in the cloud were selected for inclusion in the special issue. The following summaries provide high-level views of these manuscripts and a brief analysis of their contributions:

查看原文本刊更多论文

fpga加速云和数据中心安全专题介绍

云计算平台的快速发展使得这些计算资源成为许多应用程序开发人员的重要基础设施。只需支付适度的费用，应用程序开发人员就可以按需使用可伸缩和多样化的计算组件，从而消除了组织对大型计算机硬件投资的需求。尽管云计算平台多年来一直包含微处理器和图形处理单元(gpu)，但这些平台中现场可编程门阵列(fpga)的可用性在过去几年中才变得普遍。Amazon、b百度和Maxeler现在在其云基础设施中向应用程序开发人员公开fpga。在微软弹射器中集成fpga来加速各种任务，包括必应，与仅使用处理器的实现相比，性能速度提高了2倍，而能量仅增加了30%。英特尔最近宣布在Xeon多核处理器中集成了封装内FPGA。fpga在云端的使用引发了一系列重要的安全问题，因为这些设备传统上是由单个用户在封闭环境中使用的。随着时间的推移，FPGA被许多云用户使用，并且可能同时被多个独立用户使用，这开辟了许多攻击向量，其中FPGA设备可能被损坏，计算可能被攻击导致不正确的结果，计算结果可能被窥探，或者可以在FPGA中开发隐蔽的通信通道。确定这些问题和制定对策的研究仍处于早期阶段，尽管兴趣正在增加。为了突出这些领域的早期工作，我们发起了TRETS特刊的呼吁，主题是fpga加速云和数据中心的安全性。在对特刊提交的论文的质量和相关性进行初步评估后，选择了八篇论文进行审查。在多轮评审中，至少有三名安全专家和fpga专家对每篇稿件进行评估。最终，四篇与云中的fpga安全性相关的高质量论文被选中纳入特刊。以下摘要提供了这些手稿的高层次观点和对其贡献的简要分析:

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

ACM Transactions on Reconfigurable Technology and Systems (TRETS)

自引率

0.00%

发文量