Leveraging Virtualization in Aerospace & Defense Applications

Similar documents
A Superior Hardware Platform for Server Virtualization

Intel Embedded Virtualization Manager

OPTIMIZING SERVER VIRTUALIZATION

Using Multi-Port Intel Ethernet Server Adapters to Optimize Server Virtualization

HRG Assessment: Stratus everrun Enterprise

Virtualization Technologies and Blackboard: The Future of Blackboard Software on Multi-Core Technologies

WHITE PAPER Mainstreaming Server Virtualization: The Intel Approach

Parallels Virtuozzo Containers

Full and Para Virtualization

evm Virtualization Platform for Windows

I/O Virtualization Using Mellanox InfiniBand And Channel I/O Virtualization (CIOV) Technology

Intel Virtualization Technology (VT) in Converged Application Platforms

Red Hat enterprise virtualization 3.0 feature comparison

Virtualization: What does it mean for SAS? Karl Fisher and Clarke Thacher, SAS Institute Inc., Cary, NC

MODULE 3 VIRTUALIZED DATA CENTER COMPUTE

Windows Server 2008 R2 Hyper-V Live Migration

Broadcom Ethernet Network Controller Enhanced Virtualization Functionality

Applying Multi-core and Virtualization to Industrial and Safety-Related Applications

Basics in Energy Information (& Communication) Systems Virtualization / Virtual Machines

A Platform Built for Server Virtualization: Cisco Unified Computing System

Solution Recipe: Improve PC Security and Reliability with Intel Virtualization Technology

Chapter 14 Virtual Machines

Solving the Hypervisor Network I/O Bottleneck Solarflare Virtualization Acceleration

Virtualization. Michael Tsai 2015/06/08

Enabling Technologies for Distributed Computing

IOS110. Virtualization 5/27/2014 1

Virtualization. Jukka K. Nurminen

Enabling Technologies for Distributed and Cloud Computing

Windows Server 2008 R2 Hyper-V Live Migration

The Advantages of Multi-Port Network Adapters in an SWsoft Virtual Environment

Enhanced Virtualization on Intel Architecturebased

Announcing the product launch of a Mitel Virtual Mitel Communication Director (Virtual MCD)

COS 318: Operating Systems. Virtual Machine Monitors

GUEST OPERATING SYSTEM BASED PERFORMANCE COMPARISON OF VMWARE AND XEN HYPERVISOR

Getting More Performance and Efficiency in the Application Delivery Network

VMware Server 2.0 Essentials. Virtualization Deployment and Management

Solution Brief Availability and Recovery Options: Microsoft Exchange Solutions on VMware

CPET 581 Cloud Computing: Technologies and Enterprise IT Strategies. Virtualization of Clusters and Data Centers

Enabling Intel Virtualization Technology Features and Benefits

Virtualization. Dr. Yingwu Zhu

How To Make A Virtual Machine Aware Of A Network On A Physical Server

RED HAT ENTERPRISE VIRTUALIZATION FOR SERVERS: COMPETITIVE FEATURES

Understanding Full Virtualization, Paravirtualization, and Hardware Assist. Introduction...1 Overview of x86 Virtualization...2 CPU Virtualization...

VIRTUALIZATION 101. Brainstorm Conference 2013 PRESENTER INTRODUCTIONS

ENABLING VIRTUALIZED GRIDS WITH ORACLE AND NETAPP

Virtualization for Cloud Computing

Management of VMware ESXi. on HP ProLiant Servers

The virtualization of SAP environments to accommodate standardization and easier management is gaining momentum in data centers.

White Paper. Recording Server Virtualization

You re not alone if you re feeling pressure

Parallels Virtuozzo Containers

Hypervisors. Introduction. Introduction. Introduction. Introduction. Introduction. Credits:

SCO Virtualization Presentation to Customers

A M D DA S 1. 0 For the Manageability, Virtualization and Security of Embedded Solutions

VMware and CPU Virtualization Technology. Jack Lo Sr. Director, R&D

Enterprise-Class Virtualization with Open Source Technologies

HP Compaq dc7800p Business PC with Intel vpro Processor Technology and Virtual Appliances

Simplify VMware vsphere* 4 Networking with Intel Ethernet 10 Gigabit Server Adapters

VMware ESXi 3.5 update 2

International Journal of Advancements in Research & Technology, Volume 1, Issue6, November ISSN

Oracle Database Scalability in VMware ESX VMware ESX 3.5

In-Guest Monitoring With Microsoft System Center

Virtualization. Types of Interfaces

Optimize Server Virtualization with QLogic s 10GbE Secure SR-IOV

Virtual Switching Without a Hypervisor for a More Secure Cloud

Intro to Virtualization

Achieving Real-Time Performance on a Virtualized Industrial Control Platform

Intel Ethernet and Configuring Single Root I/O Virtualization (SR-IOV) on Microsoft* Windows* Server 2012 Hyper-V. Technical Brief v1.

Hitachi Virtage Embedded Virtualization Hitachi BladeSymphony 10U

Servervirualisierung mit Citrix XenServer

Server-centric client virtualization model reduces costs while improving security and flexibility.

Dell High Availability Solutions Guide for Microsoft Hyper-V

Networking for Caribbean Development

How To Connect Virtual Fibre Channel To A Virtual Box On A Hyperv Virtual Machine

A quantitative comparison between xen and kvm

COM 444 Cloud Computing

Distributed and Cloud Computing

Hardware RAID vs. Software RAID: Which Implementation is Best for my Application?

Virtualizing Exchange

Lecture 2 Cloud Computing & Virtualization. Cloud Application Development (SE808, School of Software, Sun Yat-Sen University) Yabo (Arber) Xu

How to Configure Intel Ethernet Converged Network Adapter-Enabled Virtual Functions on VMware* ESXi* 5.1

Feature Comparison. Windows Server 2008 R2 Hyper-V and Windows Server 2012 Hyper-V

Virtualization: Hypervisors for Embedded and Safe Systems. Hanspeter Vogel Triadem Solutions AG

The Future of Computing Cisco Unified Computing System. Markus Kunstmann Channels Systems Engineer

NoHype: Virtualized Cloud Infrastructure without the Virtualization

Regional SEE-GRID-SCI Training for Site Administrators Institute of Physics Belgrade March 5-6, 2009

Intel s Virtualization Extensions (VT-x) So you want to build a hypervisor?

Cloud Computing CS

Basics of Virtualisation

Parallels Server 4 Bare Metal

Hyper-V R2: What's New?

Introduction. Setup of Exchange in a VM. VMware Infrastructure

Virtualization. Pradipta De

SERVER VIRTUALIZATION IN MANUFACTURING

Server Virtualization in Manufacturing

The Art of Virtualization with Free Software

SUSE Linux Enterprise 10 SP2: Virtualization Technology Support

Transcription:

White Paper November 2011 Leveraging Virtualization in Aerospace & Defense Applications Overview For C4ISR Aerospace & Defense applications, 1 the popularity of ATCA is growing rapidly because it addresses the key requirements of nextgeneration systems while creating opportunities to reduce SWaP, 2 increase functionality and accelerate time to market. These benefits can be expanded further through the implementation of virtualization a complementary technology that provides better performance on multi-technology, enables multiple applications to safely work on a single blade, eases legacy software migration and facilitates software failover, among other usage models. Virtualization has been around for many years, most notably used in data centers where various applications are consolidated onto a single server, thereby reducing the total number of servers and overall power consumption. Although the adoption of virtualization in Aerospace & Defense is still in its infancy, system developers are beginning to take a closer look at the wide range of problems this technology helps to solve. From the perspective of Aerospace & Defense, this paper reviews some of the more interesting virtualization usage models and implementation insights arising from real-world projects involving Radisys engineers. CONTENTS Virtualization Basics pg. 2 Virtualization Usage Models in Aerospace & Defense pg. 3 Virtualization in a Ground Control System pg. 5 Hardware-Assisted Virtualization pg. 5 Virtualization Software: What to Look For pg. 6 Virtualization: Implementation Learnings pg. 7 Virtualization-Ready ATCA Blades pg. 8 Built Tough pg. 8 Deploying Virtualization on ATCA pg. 8 References pg. 8

2 Virtualization Basics Virtualization provides the ability to run multiple operating systems (OSes) and their associated applications on the same physical board. This is achieved by executing software in individual partitions, called virtual machines (VMs), that are separated from the underlying hardware resources. As a result, applications run on their native OSes (referred to as guest OSes in virtualization parlance), allowing them to easily migrate to a new system often with only minor or no changes. At the heart of virtualization is the virtual machine monitor (VMM, aka hypervisor ), which is a software layer that abstracts the hardware and manages guest OSes in much the same way that a standard OS manages the execution of its applications. For example, the VMM in a Mobile Command Center may create VMs for battlefield communication and sensor processing running on Linux, and another VM for email and other office applications running on Microsoft Windows Server 2008, as illustrated in Figure 1. With virtualization, software applications share computing resources, therefore fewer servers are needed, reducing the size, weight and power consumption (SWaP) of mobile command centers. In addition to software consolidation, virtualization supports other usage models, some of which are described in the following section. Usage Model 1: Consolidating Applications Situation: A Mobile Command Center, with a similar role as a traditional data center for enterprise applications, moves on a regular basis. Therefore, the system should be relatively compact and lightweight, and rugged enough to handle packing and shipment over rough terrain. Solution: Decrease the number of required server boards by consolidating several applications onto fewer servers. This creates an opportunity to use a smaller ATCA chassis, and decrease weight and power consumption, thereby reducing SWaP. Virtual Machine 1 Battlefield Radio Linux Virtual Machine 2 Missile Launch Control Linux Virtual Machine Monitor (VMM) Soſtware Multi-Core Processor-Based Server Board Virtual Machine 3 Email & Office Applications Microsoſt Windows Server 2008 Figure 1. Consolidating Applications on a Mobile Command Center

3 Virtualization Usage Models in Aerospace & Defense Virtualization is a versatile technology that gives software developers greater control over operating systems and applications with respect to their mix, porting and security. The following describes four virtualization usage models suitable for server-based Aerospace & Defense systems. Simplify Legacy Software Migration When it comes to legacy code in many military applications, a common perspective is, If it ain t broke, don t fix it. Unfortunately, it s not always that simple. When adopting new processing blades, many times it is necessary to migrate to a new operating system. This will require the legacy applications to be ported, which often necessitates rewriting and retesting the code. This rework may even be required when using the same OS vendor whose new OS isn t 100% backward compatible with earlier versions. Further complicating migration, legacy code written in assembly language is likely to be single threaded and therefore unable to take advantage of the performance improvements of multi-core processors. Usage Model 2: Migrating Applications without OS Porting Situation: A legacy intelligence, surveillance and reconnaissance (ISR) application, running on a near real-time operating system (RTOS), acquires and processes radar images. The software is part of a new platform that is Linux-based. Solution: Use Virtualization to enable the legacy ISR application to run unmodified on its own in a VM. Virtual Machine 1 New Defence System Soſtware Linux Virtual Machine Monitor (VMM) Soſtware Virtual Machine 2 Legacy ISR Application Legacy Real-Time Operating System Multi-Core Processor-Based Server Board Figure 2. Running an ISR Application Unmodified on a New Platform Overcoming these challenges, virtualization allows systems to execute legacy software with little or no modification. Legacy code runs on its native OS in an isolated VM, as shown in Figure 2, which also protects it from unintended interactions with other applications. Furthermore, multi-core processors can be fully utilized since the VMM uses all the available processor cores to support the VMs.

4 Implement Fast Software Failover When the operating system or application crashes, the standard remedy is a hardware reboot, which takes the system offline for a period of time. With virtualization, a failing operating system or application doesn t have to be catastrophic since it is isolated in a VM. One option is to restart the software in the failing VM without impacting the other VMs; however, this approach does not address a corrupted software image. Therefore, a more robust solution is to maintain a backup VM (e.g., identical software) in standby mode that is ready take over in a matter of seconds, as illustrated in Figure 3. Using Virtualization for High Availability Working behind the scenes, middleware provides high availability and management functions that are critical when building highly reliable systems. One of its key functions is to detect faults and manage failover to ensure continuity of service. Historically, most middleware has been closely coupled to a specific hardware platform and application, thus changing the hardware or adding new applications makes it necessary to modify the middleware. Many of the commercial virtualization offerings provide middleware-like features that focus on the application, but not the hardware. The virtualization software monitors the application, and if it detects deteriorating performance, it can take action such as provisioning a new virtual machine for the application to run on a separate server. Some offerings support a fault tolerant model where a secondary VM runs in lockstep with the primary VM. If the performance of the primary VM degrades, the virtualization software can failover to the secondary VM. While the failover is not typically measured in milliseconds, in many cases it is fast enough. Usage Model 3: Failing Over to a Backup Virtual Machine Situation: The operating system hangs, requiring the system to undergo a full reboot. Solution: Use Virtualization to create a backup VM that is called into action in the event of software failure, thus greatly speeding up system recovery. Primary Virtual Machine Application Soſtware Operating System Heart Beat Backup Virtual Machine Legacy ISR Application Operating System Standby Mode Virtual Machine Monitor (VMM) Soſtware Multi-Core Processor-Based Server Board Figure 3. Primary and Backup VMs Provide Robust Failover

5 Improving Security with Application Isolation Securing applications and data is essential for many Aerospace & Defense systems, whether to prevent attacks from malicious software or to enable multiple independent levels of security (MILS). Applications requiring a higher level of security can be isolated in a VM, whose memory space is protected by hardware in Intel processors, which is detailed in the next section. This means software running in a VM only has access to its own code and data regions (Figure 4), unable to page outside the memory boundaries specified by the VMM. Similarly, virtualization can provide greater protection against rogue software attempting to infiltrate a system s data and programs. Virtualization in a Ground Control System A military equipment manufacturer migrated its ground station controller design from rackmount servers to ATCA architecture in order to make it easier to scale features and performance by adding blades that support new applications or more computing power. The manufacturer also virtualized the system, which further added software flexibility by allowing more applications to be consolidated on a blade. As a result, consolidation through virtualization enabled the system to run on fewer servers, going from ten to eight boards. Consequently, system power consumption and weight decreased by 15 and 12 percent respectively, thus reducing two facets of SWaP. Hardware-Assisted Virtualization Although virtualization is generally viewed as a software technology, some CPU makers have added hardware features to their processors to improve the performance and security of virtualization. For instance, Intel has enhanced the capabilities of virtualization technology with a complementary hardware-assist technology called Intel Virtualization Technology (Intel VT). It performs various virtualization tasks in hardware, like memory address translation, which reduces the overhead and footprint of virtualization software and improves its performance. For instance, Usage Model 4: Securing the Execution Environment Situation: A Mobile Data Center maintains various applications requiring different security clearances. However, the operating system may be vulnerable to malware that runs at the same privilege level. Solution: A VMM can be written to run a standalone at a higher privilege level than the guest OSes and application, giving it exclusive access to page tables in the processor. Virtual Machine 1 Application 1 Operating System A Virtual Memory (Hardware Protected) Virtual Machine Monitor (VMM) Soſtware Multi-Core Processor-Based Server Board Figure 4. Memory Protection with Virtualization Virtual Machine 2 Application 2 Operating System B Virtual Memory (Hardware Protected) VM to VM switching time is significantly faster when memory address translation is performed in hardware instead of by software. In addition, Intel VT increases the robustness of virtualized environments by using hardware to protect the software running in one VM from interfering with the software running in another VM. Along these lines, virtualization helps avoid unintended interactions between applications by preventing one from accessing another s memory space. Hardware-assisted virtualization is going beyond the processor, with enhancements made to other platform components, including the chipset and network interface controllers (NICs). This is why Intel developed three different, yet complementary, virtualization technologies that are described in the following.

6 The Processor: Intel VT-x Intel VT-x helps to improve the fundamental flexibility and robustness of software-based virtualization solutions. It reduces VMM interventions by eliminating the need for the VMM to listen, trap and execute certain instructions on behalf of the guest OS as is required in software-only virtualization. By providing hardware support for transferring platform control between the VMM and guest OSes, Intel VT-x enables the VMM to switch guest OSes faster, more reliably and more securely. The Chipset: Intel VT-d Intel VT-d speeds data movement and eliminates much of the performance overhead associated with managing I/O traffic in a virtualized environment. It accomplishes this by enabling the VMM to securely assign specific I/O devices to specific guest OSes. Each device is given a dedicated area in system memory that can be accessed only by the device and its assigned guest OS. Network Interface Controllers: Intel VT-c Intel VT-c is a collection of technologies integrated in Intel Ethernet Network Controllers that sort and queue traffic in hardware, resulting in fewer VMM interrupts. The end result is packet delivery to VMs is sped up and the load on the VMM is reduced. Intel VT-c can more than double I/O throughput and achieve near-native throughput for virtualized applications, so more applications can be consolidated per device with fewer I/O bottlenecks. Virtualization Software: What to Look For Developers can choose from a wide range of software solutions that provide virtualization. The two basic options are deploying a commercial offering and building your own solution based on open source software. While commercial solutions have licensing fees, they will significant reduce development cost for most applications. Apps Running on Host OS Hosted OS Hosted OS Model VM 1 Guest OS and Apps VMM VM 1 Guest OS and Apps Stand-Alone VMM VMM VM 2 Guest OS and Apps Figure 5. Hosted OS and Stand-Alone VMM Models A key criterion is whether the virtualization solution supports all the OSes that will be running on the target system. The breadth of OSes a solution virtualizes may hinge on the vendor s core business: operating systems or virtualization software. Most OS vendors have virtualization solutions, but they typically support a limited number of OSes. On the other hand, companies with offerings that are separate from an OS distribution usually support a broader range of OSes. Two other areas to consider are the level of VMM management a solution provides and the breadth of the vendor s product offering. Virtualization software solutions are generally characterized by the implementation model of the VMM. The two basic options are the hosted OS model and the stand-alone VMM model, as illustrated in Figure 5. Some examples are: Hosted OS: Linux Kernel-based Virtual Machine (KVM), Microsoft Virtual Server and VMware Workstation. Stand-alone VMM: Xen, Microsoft Hyper-V and VMware ESX. With the hosted OS model, the VMM runs on a host OS, which provides a full range of OS facilities, such as device drivers, I/O bus scanning and powermanagement; the host OS also typically performs configuration and security functions. Generally, these offerings support a comparatively large number of OSes, making software integration easier; however, developers should be prepared for license fees and higher VMM overhead due to added features.

7 The stand-alone VMM, also referred to as a bare metal hypervisor, must contain device drivers and is solely responsible for controlling the hardware after boot. This is more of the Do it Yourself option, which will require more effort, but also offers more control, achieves higher performance and is lower cost. At the risk of greatly oversimplifying a rather complex set of virtualization solutions, Table 1 lists considerations and generalizations about some of the options available to developers. Virtualization: Implementation Learnings Although the benefits derived from virtualization are similar for enterprise and aerospace/defense (A/D) data centers, some of the requirements differ dramatically. For example, mobile A/D systems may be completely shut down and then turned back on several times a day, whereas most typical data center servers are only powered off for planned maintenance. A/D systems must consistently power down without issues or corruption of data, as well as meet hard requirements for startup and shutdown times. Another difference is A/D requirements for ease of serviceability are often more rigorous than enterprise data centers given that soldiers in the field may have less experience and fewer available resources than in-house IT departments. While soldiers operating virtualized systems are highly trained, they typically have the same skill level as a network planner with 10 years of experience. Therefore, A/D systems should have relatively simple user interfaces for start up and shut down. Going a little deeper technically, Radisys engineers have highlighted some key learnings from deploying virtualization on ATCA-based systems for aerospace/ defense applications: Considerations OS Hosted Stand-alone VMM Range of OS support More options Fewer options out of the box License fees Higher Lower or free (Open Source) Latency (e.g., VM to VM switching) Higher Lower (better) Integration effort (i.e., drivers) Lower Higher Software privileges VMM privilege same VMM privilege higher than as Host OS all other software Middleware availability More choice Less choice Table 1. General Considerations for Virtualization Software Managing the System In order to achieve interoperability between system components for traditional data centers and ATCA solutions, it may be necessary to map features from their respective platform management specifications. ATCA platform management leverages the Service Availability Forum, which is an open standard defining an application programming interface (API). Similarly, data centers often manage platforms according to the Distributed Management Task Force (DMTF) specifications. Simply put, the APIs for both specifications need to be merged, and one way to accomplish this is with a mapping/translation scheme. Virtualizing the Entire System Virtualizing single board computers today is straightforward since most have standard virtualization packages that already support the on-board silicon components. However, other parts of the system, such as switching, storage and some of the unique I/O used by A/D applications, are typically not supported by the virtualization software. This needs to be considered in the overall system design. Powering Systems On/Off Gracefully Compared to a data center, a chassis for an aerospace/defense application needs to power on/off gracefully and rather quickly. This may require careful scripting of the platform management software to ensure the different hardware and software components are shut down and brought up in the correct order.

8 Virtualization-Ready ATCA Blades Getting the most out of a virtualized system requires a high performance compute blade capable of running many applications simultaneously. Ideal for mobile, server-centric installations, the Radisys XE80 compute blade is a single slot AdvancedTCA computer module based on a dual socket Intel Xeon processor L5638 or Intel Xeon processor E6545. The XE80, pictured in Figure 6, supports 10-Gigabit fabric connectivity and eight DDR3 DIMM sockets. The XE80 compute blade provides the highest performance possible in a single slot. The blade can execute up to 24 concurrent software threads since Intel Hyper-Threading Technology allows each of the 12 cores to process up to two threads simultaneously. Support for eight DIMMs of DDR3 allows memory density of up to 64GB, while providing a cost effective solution for applications that have lower density memory requirements. The XE80 is available as a fully validated component in the Radisys family of platforms, which include 2, 14 and 16 slot platforms. It is fully interoperable with Radisys DSP, packet processing and switch products, and has been validated with various storage components. Built Tough Lowering risk for equipment manufacturers, Radisys offers prevalidated ATCA systems that demonstrate compliance to airborne, ground mobile and seaborne application requirements. These systems also meet 810 requirements for ground transportation and airborne uses. In some cases, ATCA boards and chassis were further ruggedized (e.g., conformal coating) to satisfy MIL-STD specifications. Radisys has extensive experience with virtualization, including integrating VMware vsphere software into ATCA systems for Aerospace & Defense customers. These projects transitioned systems from a traditional ATCA environment to an environment where all the boards are virtualized. Radisys portfolio of ATCA products includes single board Figure 6. Radisys XE80 10G Compute Blade computers (SBCs) based on the latest Intel processors, 40G switching, packet processing and DSP products. Using Radisys Trillium Software, in conjunction with ATCA products, allows customers to reduce their development cost and time-to-market when developing battlefield communications systems, such as femtocells and collapsed Evolved Packet Core (EPC) networks for mobile 3G/4G/LTE. Deploying Virtualization on ATCA ATCA is enabling aerospace/defense equipment manufacturers to build highly ruggedized and reliable systems within a multi-vendor compatible environment. Intent on lowering cost, improving SWaP and increasing software flexibility, system developers are turning to virtualization technology. Save time and get the most out of virtualization by taking advantage of Radisys extensive ATCA experience, aerospace/defense application understanding and close engineering relationship with Intel. References 1 C4ISR: command, control, communications, computers, intelligence, surveillance and reconnaissance 2 SWaP: size, weight and power Corporate Headquarters 5435 NE Dawson Creek Drive Hillsboro, OR 97124 USA 503-615-1100 Fax 503-615-1121 Toll-Free: 800-950-0044 www.radisys.com info@radisys.com 2011 Radisys Corporation. Radisys and Trillium are registered trademarks of Radisys Corporation. *All other trademarks are the properties of their respective owners. November 2011

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information