权益分类	功能权益	普通用户	{{item.name}}会员
{{category.name}}	{{benefitItem.name}}

SACRED-MA: Safe And seCure REmote Direct Memory Access

SACRED-MA：安全可靠的远程直接内存访问

基本信息

批准号：
EP/X037142/1
负责人：
Brijesh Dongol
金额：
$ 59.44万
依托单位：
University of Surrey
依托单位国家：
英国
项目类别：
Research Grant
财政年份：
2023
资助国家：
英国
起止时间：
2023 至无数据
项目状态：
未结题

来源：
https://gtr.ukri.org/projects?ref=EP%2FX037142%2F1
关键词：
SACRED MA Safe seCure REmote

项目摘要

Modern society depends on accessing and transferring vast quantities of data, at ever-increasing speeds. Technology giants such as Google invest billions of dollars every year into data centres across the world. Replicated data systems form the backbone of all cloud services; improving their reliability and performance impacts all cloud and big data services. The UK is currently the largest cloud market in Europe, with over £17 billion in cloud investment in 2020.To meet our ever-growing need for rapid data transfer, RDMA (remote direct memory access) technologies enable next-generation infrastructures by allowing a machine to access (read/write) directly the memory of another machine across a network. Unlike traditional network protocol stacks such as TCP/IP, RDMA-enabled network interface cards (NICs) can bypass' an operating system kernel, ans are thus capable of wire-speed data transmission. RDMA technology has been available in supercomputing clusters since the mid 2000s, but had until recently remained an experimental feature in consumer and enterprise systems due to its cost. However, this changed recently with the availability of affordable NICs (e.g. those developed by our partner NVIDIA), and it is now possible to build distributed applications that challenge conventional design paradigms. For instance, one can leverage the additional throughput of RDMA to support concurrent front-end applications, surpassing sequential state-machine replication services used today. There is already a shift towards consumer-grade devices through the development of wireless RDMA and RDMA over 6G.To unlock the potential of RDMA in enterprise and consumer systems, we must enable programmers to write safe and secure programs. However, the RDMA behaviour is currently documented through informal plain-text manuals [22] and examples, making its semantics vague and ambiguous. The programming models for RDMA are poorly understood, and there is no support for formal verification. This carries significant risks since RDMA enables writing directly into the memory of a remote machine. Moreover, RDMA programming is inherently challenging as it requires an understanding of the interaction between remote communication and local computation, i.e. how remote memory writes interact with the local memory writes of a given machine, potentially leading to data races and increasing the risk of safety and security bugs.

现代社会依赖于以不断增长的速度访问和传输大量数据。谷歌等科技巨头每年在全球数据中心投资数十亿美元。复制数据系统构成了所有云服务的支柱；提高其可靠性和性能会影响所有云和大数据服务。英国目前是欧洲最大的云市场，到 2020 年云投资将超过 170 亿英镑。为了满足我们对快速数据传输不断增长的需求，RDMA（远程直接内存访问）技术允许一台机器通过网络直接访问（读/写）另一台机器的内存，从而支持下一代基础设施。与 TCP/IP 等传统网络协议栈不同，支持 RDMA 的网络接口卡 (NIC) 可以绕过操作系统内核，因此能够进行线速数据传输。自 2000 年代中期以来，RDMA 技术就已在超级计算集群中使用，但由于其成本原因，直到最近在消费者和企业系统中仍处于实验性功能。然而，随着价格实惠的 NIC（例如由我们的合作伙伴 NVIDIA 开发的网卡）的出现，这种情况最近发生了变化，现在可以构建挑战传统设计范例的分布式应用程序。例如，人们可以利用 RDMA 的额外吞吐量来支持并发前端应用程序，超越当今使用的顺序状态机复制服务。通过无线 RDMA 和 6G 上的 RDMA 的开发，已经向消费级设备转变。为了释放 RDMA 在企业和消费系统中的潜力，我们必须使程序员能够编写安全可靠的程序。然而，RDMA 行为目前通过非正式的纯文本手册 [22] 和示例进行记录，使其语义模糊且不明确。人们对 RDMA 的编程模型知之甚少，并且不支持形式化验证。这带来了巨大的风险，因为 RDMA 可以直接写入远程计算机的内存。此外，RDMA 编程本身就具有挑战性，因为它需要了解远程通信和本地计算之间的交互，即远程内存写入如何与给定机器的本地内存写入交互，这可能会导致数据竞争并增加安全和安全错误的风险。