-
Eddy Caron,
Frédéric Desprez,
Luis Rodero-Merino,
and Adrian Muresan.
Auto-scaling, load balancing and monitoring in commercial and open-source clouds.
In Lizhe Wang,
Rajiv Ranjan,
Jinjun Chen,
and Boualem Benatallah, editors,Cloud Computing: Methodology, Systems, and Applications,
chapter 14,
pages 301--324.
Taylor and Francis Group, LLC,
September 2011.
Note: ISBN: 9781439856413. hal-01426839.
Keywords:
Cloud.
@InCollection{ InCollectionCaron.CDRM_11,
author = {Caron, Eddy and Desprez, Fr{\'e}d{\'e}ric and Rodero-Merino, Luis and Muresan, Adrian},
booktitle = {Cloud Computing: Methodology, Systems, and Applications},
chapter = 14,
editor = {Wang, Lizhe and Ranjan, Rajiv and Chen, Jinjun and Benatallah, Boualem},
keywords = {Cloud},
month = {September},
note = {ISBN: 9781439856413. hal-01426839},
pages = {301--324},
publisher = {Taylor and Francis Group, LLC},
title = {Auto-scaling, load balancing and monitoring in commercial and open-source clouds},
url = {http://www.crcpress.com/product/isbn/9781439856413},
year = 2011
}
-
Eddy Caron,
Frédéric Desprez,
and Adrian Muresan.
Pattern Matching Based Forecast of Non-periodic Repetitive Behavior for Cloud Clients.
Journal of Grid Computing,
9(1):49-64,
March 2011.
Note: Hal-01426826.
Keywords:
Cloud.
@Article{ ArticleCaron.CDM_JGC11,
author = {Caron, Eddy and Desprez, Fr{\'e}d{\'e}ric and Muresan, Adrian},
editor = {Springer Netherlands},
journal = {Journal of Grid Computing},
keywords = {Cloud},
month = {March},
note = {hal-01426826},
number = {1},
pages = {49-64},
title = {{Pattern Matching Based Forecast of Non-periodic Repetitive Behavior for Cloud Clients}},
url = {https://hal.inria.fr/hal-01426826},
volume = {9},
year = {2011}
}
-
Luis Rodero-Merino,
Luis M. Vaquero,
Eddy Caron,
Adrian Muresan,
and Frédéric Desprez.
Building safe PaaS clouds: A survey on security in multitenant software platforms.
Computer and Security,
pp 13,
2011.
Note: Article in press. Available online 2 November 2011. hal-00854655.
Keywords:
Security,
Cloud,
PaaS,
Multitenancy,
Container,
Java,
.NET.
| Abstract: |
This paper surveys the risks brought by multitenancy in software platforms, along with the most prominent solutions proposed to address them. A multitenant platform hosts and executes software from several users (tenants). The platform must ensure that no malicious or faulty code from any tenant can interfere with the normal execution of other users? code or with the platform itself. This security requirement is specially relevant in Platform-as-a-Service (PaaS) clouds. PaaS clouds offer an execution environment based on some software platform. Unless PaaS systems are deemed as safe environments users will be reluctant to trust them to run any relevant application. This requires to take into account how multitenancy is handled by the software platform used as the basis of the PaaS offer. This survey focuses on two technologies that are or will be the platform-of-choice in many PaaS clouds: Java and .NET. We describe the security mechanisms they provide, study their limitations as multitenant platforms and analyze the research works that try to solve those limitations. We include in this analysis some standard container technologies (such as Enterprise Java Beans) that can be used to standardize the hosting environment of PaaS clouds. Also we include a brief discussion of Operating Systems (OSs) traditional security capacities and why OSs are unlikely to be chosen as the basis of PaaS offers. Finally, we describe some research initiatives that reinforce security by monitoring the execution of untrusted code, whose results can be of interest in multitenant systems. |
@Article{ ArticleRodero-Merino.RVCMD_CS11,
abstract = {This paper surveys the risks brought by multitenancy in software platforms, along with the most prominent solutions proposed to address them. A multitenant platform hosts and executes software from several users (tenants). The platform must ensure that no malicious or faulty code from any tenant can interfere with the normal execution of other users? code or with the platform itself. This security requirement is specially relevant in Platform-as-a-Service (PaaS) clouds. PaaS clouds offer an execution environment based on some software platform. Unless PaaS systems are deemed as safe environments users will be reluctant to trust them to run any relevant application. This requires to take into account how multitenancy is handled by the software platform used as the basis of the PaaS offer. This survey focuses on two technologies that are or will be the platform-of-choice in many PaaS clouds: Java and .NET. We describe the security mechanisms they provide, study their limitations as multitenant platforms and analyze the research works that try to solve those limitations. We include in this analysis some standard container technologies (such as Enterprise Java Beans) that can be used to standardize the hosting environment of PaaS clouds. Also we include a brief discussion of Operating Systems (OSs) traditional security capacities and why OSs are unlikely to be chosen as the basis of PaaS offers. Finally, we describe some research initiatives that reinforce security by monitoring the execution of untrusted code, whose results can be of interest in multitenant systems. },
author = {Rodero-Merino, Luis and Vaquero, Luis M. and Caron, Eddy and Muresan, Adrian and Desprez, Fr{\'e}d{\'e}ric},
journal = {Computer and Security},
keywords = {Security, Cloud, PaaS, Multitenancy, Container, Java, .NET},
note = {Article in press. Available online 2 November 2011. hal-00854655},
pages = {13},
title = {Building safe PaaS clouds: A survey on security in multitenant software platforms},
url = {http://www.sciencedirect.com/science/article/pii/S0167404811001313},
year = {2011}
}
-
Anestis Antoniadis,
Eddy Caron,
Benjamin Depardon,
Hubert Gallee,
Celine Helbert,
Clémentine Prieur,
and Laurence Viry.
Spatio-temporal modeling of Western African monsoon.
In Les Ateliers de Modélisation de l'Atmosphère,
Toulouse,
February 2011.
Note: Hal-00766783.
@Conference{ Con-Antoniadis.ACDGHPV_11,
address = {Toulouse},
author = {Antoniadis, Anestis and Caron, Eddy and Depardon, Benjamin and Gallee, Hubert and Helbert, Celine and Prieur, Cl{\'e}mentine and Viry, Laurence},
booktitle = {Les Ateliers de Mod{\'e}lisation de l'Atmosph{\`e}re},
month = {February},
note = {hal-00766783},
title = {Spatio-temporal modeling of Western African monsoon},
url = {https://hal.inria.fr/hal-00766783},
year = {2011}
}
-
Yves Caniou,
Eddy Caron,
Gaël Le Mahec,
and Hidemoto Nakada.
Standardized Data Management in GridRPC Environments.
In 6th International Conference on Computer Sciences and Convergence Information Technology, ICCIT'11,
Jeju Island, Korea,
pages 8,
Nov. 29 - Dec. 1 2011.
IEEE.
Note: Hal-00766782.
Keywords:
GridRPC,
DIET.
@InProceedings{ InProceedingsCaniou.CCL-MN_11,
address = {Jeju Island, Korea},
author = {Caniou, Yves and Caron, Eddy and Le Mahec, Ga{\"e}l and Nakada, Hidemoto},
booktitle = {6th International Conference on Computer Sciences and Convergence Information Technology, ICCIT'11},
keywords = {GridRPC, DIET},
month = {Nov. 29 - Dec. 1},
note = {hal-00766782},
pages = 8,
publisher = {IEEE},
title = {Standardized Data Management in {GridRPC} Environments},
url = {https://hal.inria.fr/hal-00766782},
x-editorial-board={yes},
x-international-audiance={yes},
x-pays = {JP},
x-proceedings = {yes},
year = 2011
}
-
Eddy Caron,
Florent Chuffart,
Haiwu He,
Anissa Lamani,
Philippe Le Brouster,
and Olivier Richard.
Large Scale P2P Discovery Middleware Demonstration.
In IEEE International Conference on Peer-to-Peer Computing (P2P'11),
Kyoto,
pages 152-153,
31 August - 2 September 2011.
IEEE.
Note: Hal-00687561.
Keywords:
P2P,
Service discovery,
SPADES.
@InProceedings{ InProceedingsCaron.CCHLL-BR_11,
address = {Kyoto},
author = {Caron, Eddy and Chuffart, Florent and He, Haiwu and Lamani, Anissa and Le Brouster, Philippe and Richard, Olivier},
booktitle = {IEEE International Conference on Peer-to-Peer Computing (P2P'11)},
keywords = {P2P, Service discovery, SPADES},
month = {31 August - 2 September},
note = {hal-00687561},
pages = {152-153},
publisher = {IEEE},
title = {{L}arge {S}cale {P2P} {D}iscovery {M}iddleware {D}emonstration},
url = {https://hal.inria.fr/hal-00687561},
year = {2011}
}
-
Eddy Caron,
Ajoy Datta,
Benjamin Depardon,
and Lawrence Larmore.
On-Line Optimization of Publish/Subscribe Overlays.
In Workshop PCO'11. Parallel Computing and Optimization,
Anchorage, USA,
May 2011.
In conjunction with IPDPS 2011.
Note: Hal-00758593.
Keywords:
R-tree,
DR-tree,
work function,
on-line,
competitiveness.
@InProceedings{ InProceedingsCaron.CDDL_11,
address = {Anchorage, USA},
author = {Caron, Eddy and Datta, Ajoy and Depardon, Benjamin and Larmore, Lawrence},
booktitle = {Workshop PCO'11. Parallel Computing and Optimization},
keywords = {R-tree, DR-tree, work function, on-line, competitiveness},
month = may,
note = {hal-00758593},
organization = {In conjunction with IPDPS 2011},
title = {On-Line Optimization of Publish/Subscribe Overlays},
url = {https://hal.inria.fr/hal-00758593},
year = 2011
}
-
Eddy Caron,
Benjamin Depardon,
and Frédéric Desprez.
Multiple Services Throughput Optimization in a Hierarchical Middleware.
In The 11th International Symposium on Cluster, Cloud and Grid Computing (CCGRID),
Newport Beach, CA, USA.,
pages 94 - 103,
May 23-26 2011.
IEEE/ACM.
Note: Hal-00767479.
@InProceedings{ InProceedingsCaron.CDD_11,
address = {Newport Beach, CA, USA.},
author = {Caron, Eddy and Depardon, Benjamin and Desprez, Fr{\'e}d{\'e}ric},
booktitle = {The 11th International Symposium on Cluster, Cloud and Grid Computing (CCGRID)},
month = {May 23-26},
note = {hal-00767479},
organization = {IEEE/ACM},
pages = {94 - 103},
title = {Multiple Services Throughput Optimization in a Hierarchical Middleware},
url = {https://hal.inria.fr/hal-00767479},
year = {2011}
}
-
Eddy Caron,
Frédéric Desprez,
Adrian Muresan,
and Luis Rodero-Merino.
Using Clouds to Scale Grid Resources: An Economic Model.
Research report RR-7837,
Institut National de Recherche en Informatique et en Automatique (INRIA),
2011.
Note: Hal-00657309.
Keywords:
Cloud,
DIET.
| Abstract: |
Infrastructure as a Service clouds are a flexible and fast way to obtain (virtual) resources as demand varies. Grids, on the other hand, are middleware platforms able to combine resources from different administrative domains for tasks ex- ecution. Clouds can be used as providers of devices such as virtual machines by grids so they only use the resources they need at every moment, but this requires grids to be able to decide when to allocate and release those resources. Here we analyze by simulations an economic approach to set resource prices and resolve when to scale resources depending on the users demand. Our simula- tor is based on the well-known GridSim software for grid simulation, which we expand. The results show how the proposed system can successfully adapt the amount of allocated resources to the demand, while at the same time ensuring that resources are fairly shared among users. |
@TechReport{ TechReportRR-Institut-RR-7837,
abstract = {Infrastructure as a Service clouds are a flexible and fast way to obtain (virtual) resources as demand varies. Grids, on the other hand, are middleware platforms able to combine resources from different administrative domains for tasks ex- ecution. Clouds can be used as providers of devices such as virtual machines by grids so they only use the resources they need at every moment, but this requires grids to be able to decide when to allocate and release those resources. Here we analyze by simulations an economic approach to set resource prices and resolve when to scale resources depending on the users demand. Our simula- tor is based on the well-known GridSim software for grid simulation, which we expand. The results show how the proposed system can successfully adapt the amount of allocated resources to the demand, while at the same time ensuring that resources are fairly shared among users. },
author = {Caron, Eddy and Desprez, Fr{\'e}d{\'e}ric and Muresan, Adrian and Rodero-Merino, Luis},
institution = {Institut National de Recherche en Informatique et en Automatique (INRIA)},
keywords = {Cloud, DIET},
note = {hal-00657309},
number = {RR-7837},
title = {Using Clouds to Scale Grid Resources: An Economic Model},
type = {Research report},
url = {https://hal.inria.fr/hal-00657309},
year = {2011}
}
-
Eddy Caron and Cédric Tedeschi.
Service Discovery system: Load balancing mechanisms.
Technical report 1.1,
ANR SPADES. 08-ANR-SEGI-025,
July 2011.
Note: Hal-01427722.
@TechReport{ TechReportRR-ANR-1.1,
author = {Caron, Eddy and Tedeschi, C\'edric},
institution = {ANR SPADES. 08-ANR-SEGI-025},
month = {July},
note = {hal-01427722},
number = {1.1},
title = {Service Discovery system: Load balancing mechanisms},
url = {https://hal.inria.fr/hal-01427722},
year = {2011}
}
-
Luis Rodero-Merino,
Luis M. Vaquero,
Eddy Caron,
Adrian Muresan,
and Frédéric Desprez.
Building safe PaaS clouds: A survey on security in multitenant software platforms.
Technical report RR-7838,
Institut National de Recherche en Informatique et en Automatique (INRIA),
2011.
Note: Article in press. Available online 2 November 2011. hal-00657306.
Keywords:
Security,
Cloud,
PaaS,
Multitenancy,
Container,
Java,
.NET.
| Abstract: |
This paper surveys the risks brought by multitenancy in software platforms, along with the most prominent solutions proposed to address them. A multitenant platform hosts and executes software from several users (tenants). The platform must ensure that no malicious or faulty code from any tenant can interfere with the normal execution of other users? code or with the platform itself. This security requirement is specially relevant in Platform-as-a-Service (PaaS) clouds. PaaS clouds offer an execution environment based on some software platform. Unless PaaS systems are deemed as safe environments users will be reluctant to trust them to run any relevant application. This requires to take into account how multitenancy is handled by the software platform used as the basis of the PaaS offer. This survey focuses on two technologies that are or will be the platform-of-choice in many PaaS clouds: Java and .NET. We describe the security mechanisms they provide, study their limitations as multitenant platforms and analyze the research works that try to solve those limitations. We include in this analysis some standard container technologies (such as Enterprise Java Beans) that can be used to standardize the hosting environment of PaaS clouds. Also we include a brief discussion of Operating Systems (OSs) traditional security capacities and why OSs are unlikely to be chosen as the basis of PaaS offers. Finally, we describe some research initiatives that reinforce security by monitoring the execution of untrusted code, whose results can be of interest in multitenant systems. |
@TechReport{ TechReportRR-Institut-RR-7838,
abstract = {This paper surveys the risks brought by multitenancy in software platforms, along with the most prominent solutions proposed to address them. A multitenant platform hosts and executes software from several users (tenants). The platform must ensure that no malicious or faulty code from any tenant can interfere with the normal execution of other users? code or with the platform itself. This security requirement is specially relevant in Platform-as-a-Service (PaaS) clouds. PaaS clouds offer an execution environment based on some software platform. Unless PaaS systems are deemed as safe environments users will be reluctant to trust them to run any relevant application. This requires to take into account how multitenancy is handled by the software platform used as the basis of the PaaS offer. This survey focuses on two technologies that are or will be the platform-of-choice in many PaaS clouds: Java and .NET. We describe the security mechanisms they provide, study their limitations as multitenant platforms and analyze the research works that try to solve those limitations. We include in this analysis some standard container technologies (such as Enterprise Java Beans) that can be used to standardize the hosting environment of PaaS clouds. Also we include a brief discussion of Operating Systems (OSs) traditional security capacities and why OSs are unlikely to be chosen as the basis of PaaS offers. Finally, we describe some research initiatives that reinforce security by monitoring the execution of untrusted code, whose results can be of interest in multitenant systems. },
author = {Rodero-Merino, Luis and Vaquero, Luis M. and Caron, Eddy and Muresan, Adrian and Desprez, Fr{\'e}d{\'e}ric},
institution = {Institut National de Recherche en Informatique et en Automatique (INRIA)},
journal = {Computer and Security},
keywords = {Security, Cloud, PaaS, Multitenancy, Container, Java, .NET},
note = {Article in press. Available online 2 November 2011. hal-00657306},
number = {RR-7838},
pages = {13},
title = {Building safe PaaS clouds: A survey on security in multitenant software platforms},
url = {http://www.sciencedirect.com/science/article/pii/S0167404811001313},
year = {2011}
}