Chatty Tenants and the Cloud Network Sharing Problem
Authors:
Hitesh Ballani, Keon Jang, and Thomas Karagiannis, Microsoft Research, Cambridge; Changhoon Kim, Windows Azure; Dinan Gunawardena and Greg O’Shea, Microsoft Research, Cambridge
Abstract:
The emerging ecosystem of cloud applications leads to significant inter-tenant communication across a datacenter’s internal network. This poses new challenges for cloud network sharing. Richer inter-tenant traffic patterns make it hard to offer minimum bandwidth guarantees to tenants. Further, for communication between economically distinct entities, it is not clear whose payment should dictate the network allocation.
Motivated by this, we study how a cloud network that carries both intra- and inter-tenant traffic should be shared. We argue for network allocations to be dictated by the least-paying of communication partners. This, when combined with careful VM placement, achieves the complementary goals of providing tenants with minimum bandwidth guarantees while bounding their maximum network impact. Through a prototype deployment and large-scale simulations, we show that minimum bandwidth guarantees, apart from helping tenants achieve predictable performance, also improve overall datacenter throughput. Further, bounding a tenant’s maximum impact mitigates malicious behavior.
USENIX is committed to Open Access to the research presented at our events. Papers and proceedings are freely available to everyone once the event begins. Any video, audio, and/or slides that are posted after the event are also free and open to everyone. Support USENIX and our commitment to Open Access.
BibTeX
@inproceedings {180303,
author = {Hitesh Ballani and Keon Jang and Thomas Karagiannis and Changhoon Kim and Dinan Gunawardena and Greg O{\textquoteright}Shea},
title = {Chatty Tenants and the Cloud Network Sharing Problem},
booktitle = {10th USENIX Symposium on Networked Systems Design and Implementation (NSDI 13)},
year = {2013},
isbn = {978-1-931971-00-3},
address = {Lombard, IL},
pages = {171--184},
url = {https://www.usenix.org/conference/nsdi13/technical-sessions/presentation/ballani},
publisher = {USENIX Association},
month = apr
}
The cloud service ecosystem is exploding not only in the number and variety of services available to end users, but also in the depth and complexity of the component stacks that constitute any particular user-visible cloud service. This trend makes it increasingly critical for cloud infrastructure providers to manage not just intra-tenant but inter-tenant communication traffic fairly and efficiently, since a growing fraction of traffic within a data center occurs between distinct but cooperating tenants to implement these deep and intricate cloud component service structures. This paper takes an importantstep toward formulating a principled but realistic and implementable theory of how to manage inter-tenant cloud communication effectively, starting with the critical and nontrivial problem of defining what "fairness" and "bandwidth proportionality" should mean in this context: i.e., proportional to what? The approach this paper proposes is to seek to offer bandwidth guarantees, for a given communication flow, proportional to the lowest-paying of the two tenants involved. This approach addresses perverse incentives and vulnerabilities to abuse that result from other more obvious schemes, such as the abilityfor tenants to obtain disproportionate bandwidth by communicating with a large number of partner VMs owned by different tenants.
The paper presents Hadrian, a practical VM placement and bandwidth allocation system built on this approach to defining communication bandwidth fairness. Hadrian's placement algorithm accounts for tenants' minimum bandwidth requirements and inter-tenant communication dependencies, modeling these constraints as a max-flow network, and uses a greedy first-fit algorithm to place VMs and provide admission control ensuring that the minimum bandwidth guarantees can be met. Once VMs are placed, Hadrian then uses a hose-compliant allocation scheme to assign network bandwidths to flows, thereby satisfying both minimum bandwidth constraints and fairness goals. Through a small-scale prototype testbed coupled with larger-scale simulation-based analysis, the paper provides experimental evidence suggesting that Hadrian's approach is realistic and efficiently implementable in data centers with up to 16,000 hosts and four VMs per host.
Hadrian will not be the last word in fair bandwidth management for inter-tenant communication, of course. Many unresolved questions remain, such as whether there are other less-obvious incentive compatibility issues or vulnerabilities to abuse that the proposed scheme leaves un-addressed, such as other variants of Sybil attacks. The paper clearly suggests opportunities for future synergistic research in modeling and formally analyzing the robustness of this and similar schemes to arbitrary strategic behaviors by tenants. The paper also leaves some important practical questions to future work, such as how to manage fair allocation for services likely to be used by most or all tenants, such as central storage services offered by the cloud infrastructure provider. In general, even if not the last word, the NSDI PC felt that this paper represents a clear, principled, and compelling step forward toward a deeper understanding of fair communication resource allocation mechanisms to manage today's and tomorrow's tangled stacks of interdependent cloud-based services.
connect with us