EARLY EXPERIENCE WITH CLOUD COMPUTING AT ISO NEW ENGLAND



Similar documents
RemoteApp Publishing on AWS

Alfresco Enterprise on AWS: Reference Architecture

Using ArcGIS for Server in the Amazon Cloud

Simone Brunozzi, AWS Technology Evangelist, APAC. Fortress in the Cloud

Axceleon s CloudFuzion Turbocharges 3D Rendering On Amazon s EC2

Famly ApS: Overview of Security Processes

Building Energy Security Framework

AWS Security. Security is Job Zero! CJ Moses Deputy Chief Information Security Officer. AWS Gov Cloud Summit II

F-Secure Messaging Security Gateway. Deployment Guide

Chapter 11 Cloud Application Development

Implementing Microsoft Windows Server Failover Clustering (WSFC) and SQL Server 2012 AlwaysOn Availability Groups in the AWS Cloud

Using ArcGIS for Server in the Amazon Cloud

Deploy Remote Desktop Gateway on the AWS Cloud

IBM Platform Computing Cloud Service Ready to use Platform LSF & Symphony clusters in the SoftLayer cloud

T2 IaaSand PCI Compliance. Robert Zigweid, IOActive

Networking Configurations for NetApp Cloud ONTAP TM for AWS

How To Set Up Foglight Nms For A Proof Of Concept

Application Security Best Practices. Matt Tavis Principal Solutions Architect

ArcGIS 10.3 Server on Amazon Web Services

Deploy XenApp 7.5 and 7.6 and XenDesktop 7.5 and 7.6 with Amazon VPC

319 MANAGED HOSTING TECHNICAL DETAILS

Amazon Cloud Storage Options

FortiGate-AWS Deployment Guide

Introduction to Mobile Access Gateway Installation

HP Service Manager Architecture and Security HP Software-as-a-Service

Proactively Secure Your Cloud Computing Platform

Securing the Microsoft Platform on Amazon Web Services

Alfresco Enterprise on Azure: Reference Architecture. September 2014

XenDesktop 7.5 on Amazon Web Services (AWS) Design Guide

Opsview in the Cloud. Monitoring with Amazon Web Services. Opsview Technical Overview

Talari Virtual Appliance CT800. Getting Started Guide

Bridgit Conferencing Software: Security, Firewalls, Bandwidth and Scalability

Servers. Servers. NAT Public Subnet: /20. Internet Gateway. VPC Gateway VPC: /16

How To Create A Virtual Private Cloud On Amazon.Com

Smartronix Inc. Cloud Assured Services Commercial Price List

Microsoft Windows Server Failover Clustering (WSFC) and SQL Server AlwaysOn Availability Groups on the AWS Cloud: Quick Start Reference Deployment

Cloud Models and Platforms

Overview and Deployment Guide. Sophos UTM on AWS

AVI NETWORKS CLOUD APPLICATION DELIVERY PLATFORM FOR VMWARE VCLOUD AIR

Every Silver Lining Has a Vault in the Cloud

How AWS Pricing Works May 2015

AS2 or FTP: What s Best for Your Company. John Radko, Chief Technology Strategist, GXS Rochelle Cohen, Sr. Product Marketing Manager, GXS

Offering Brief NetApp Private Storage for Amazon Web Services

ZEN LOAD BALANCER EE v3.02 DATASHEET The Load Balancing made easy

How To Create A Virtual Private Cloud In A Lab On Ec2 (Vpn)

Meeting Management Solution. Technology and Security Overview N. Dale Mabry Hwy Suite 115 Tampa, FL Ext 702

Relocating Windows Server 2003 Workloads

Remote Voting Conference

Managing Your Microsoft Windows Server Fleet with AWS Directory Service. May 2015

msuite5 & mdesign Installation Prerequisites

StorReduce Technical White Paper Cloud-based Data Deduplication

Boas Betzler. Planet. Globally Distributed IaaS Platform Examples AWS and SoftLayer. November 9, IBM Corporation

Active Directory Domain Services on the AWS Cloud: Quick Start Reference Deployment Mike Pfeiffer

KeyControl Installation on Amazon Web Services

This presentation provides an overview of the architecture of the IBM Workload Deployer product.

How AWS Pricing Works

Xerox Digital Alternatives Security and Evaluation Guide. May 2015 Version 1.1

White Paper. Securing and Integrating File Transfers Over the Internet

Oracle public Database and Java Cloud for Trials

Introduction to Cyber Security / Information Security

/ Cloud Computing. Recitation 5 September 29 th & October 1 st 2015

Build Your Own Performance Test Lab in the Cloud. Leslie Segal Testware Associate, Inc.

Cyber Security In High-Performance Computing Environment Prakashan Korambath Institute for Digital Research and Education, UCLA July 17, 2014

Technology and Cost Considerations for Cloud Deployment: Amazon Elastic Compute Cloud (EC2) Case Study

unisys Unisys Stealth(cloud) for Amazon Web Services Deployment Guide Release 1.0 January

.Trustwave.com Updated October 9, Secure Web Gateway Version 11.0 Amazon EC2 Platform Set-up Guide

ZEN LOAD BALANCER EE v3.04 DATASHEET The Load Balancing made easy

Ensuring the Security of Your Company s Data & Identities. a best practices guide

Financial Services Grid Computing on Amazon Web Services January 2013 Ian Meyers

Securing Your Network with pfsense. ILTA-U Dale Qualls Pattishall, McAuliffe, Newbury, Hilliard & Geraldson LLP dqualls@pattishall.

A Scalable Network Monitoring and Bandwidth Throttling System for Cloud Computing

Microsoft SharePoint Server 2013 on the AWS Cloud: Quick Start Reference Deployment

Server Software Installation Guide

OnCommand Cloud Manager 2.2 Storage System Management Guide

LOGIIC Remote Access. Final Public Report. June LOGIIC - APPROVED FOR PUBLIC DISTRIBUTION

Live Guide System Architecture and Security TECHNICAL ARTICLE

INUVIKA OPEN VIRTUAL DESKTOP FOUNDATION SERVER

SERENA SOFTWARE Authors: Bill Weingarz, Pete Dohner, Kartik Raghavan, Amitav Chakravartty

Deep Security For Service Providers

Preparing Your IT for the Holidays. A quick start guide to take your e-commerce to the Cloud

NEFSIS DEDICATED SERVER

Deploying Virtual Cyberoam Appliance in the Amazon Cloud Version 10

GlobalSCAPE DMZ Gateway, v1. User Guide

White Paper. Deployment Practices and Guidelines for NetScaler 10.5 on Amazon Web Services. citrix.com

Array Secure Mail Solution

ArcGIS for Server in the Amazon Cloud. Michele Lundeen Esri

Cloud Computing. Adam Barker

DiamondStream Data Security Policy Summary

Third Party Cloud Services Its Adoption in the New Age

Chapter 2 TOPOLOGY SELECTION. SYS-ED/ Computer Education Techniques, Inc.

Understanding ArcGIS Deployments in Public and Private Cloud. Marwa Mabrouk

OVERVIEW OF TYPICAL WINDOWS SERVER ROLES

VMware vcloud Air. Enterprise IT Hybrid Data Center TECHNICAL MARKETING DOCUMENTATION

MICROSTRATEGY ON AWS

Amazon EC2 Product Details Page 1 of 5

Transcription:

ANNUAL INDUSTRY WORKSHOP NOVEMBER 12-13, 2014 EARLY EXPERIENCE WITH CLOUD COMPUTING AT ISO NEW ENGLAND NOVEMBER 12, 2014 XIAOCHUAN LUO TECHNICAL MANAGER, ISO NEW ENGLAND INC. UNIVERSITY OF ILLINOIS DARTMOUTH COLLEGE UC DAVIS WASHINGTON STATE UNIVERSITY 1 FUNDING SUPPORT PROVIDED BY DOE-OE AND DHS S&T

OUTLINE High Performance Computing (HPC) needs in power system analysis ISO-NE s cloud computing projects Deploy power system analysis software in the cloud Cloud-hosted wide area monitoring Conclusions and near-term plans 2

HPC NEEDS IN POWER SYSTEM ANALYSIS The network size The model Non-linear non-convex functions Discrete and integer variables Ill-behaved characteristics Hundreds of thousands of differential and algebraic equations The large volume of data The complexity of the power grid today and nearest future: Distributed resources Renewable resources High volatility Microgrids Controls Simulation is slow and takes long time Need high performance computing techniques and advanced computing hardware 3

TRANSMISSION PLANNING STUDY EXAMPLE Southeast Massachusetts and Rhode Island assessment Needs Assessment 36 power flow cases, 295 first level contingencies, 2122 second level contingencies 36 * 295 = 10,620 N-1-1 scenarios; each takes about six minutes 10,620*6 = 63,720 minutes = 1,062 hours Solution Study: at least five different alternatives Maine Power Reliability Program (MPRP) stability study 11 power flow cases, 477 dynamic contingencies One twenty-second dynamic simulation takes about 15 minutes in PSS/E 11*477*15 = 78,705 minutes = 1,312 hours 4

ISO-NE S CLOUD COPUTING PROJECT On-premise EnFuzion based grid computing environment Huge resource constraints and long waiting time in queue Engineers have to limit the number of jobs or perform model reduction to save computing time Maintenance: hardware failures and constant patches by IT Hard to estimate the peak demand and average business computing needs and purchase the IT infrastructure accordingly Objectives of the proof-of-concept cloud computing project Get hands-on experience and knowledge of the cloud computing technology Experiment deploying power system applications in the cloud environment Benchmark performance between cloud run and internal run Estimate cloud infrastructure usage cost A special cloud license scheme was developed for TARA used for N-1-1 contingency analysis 5

ISO-NE S INFORMATION POLICY AND CEII ISO Information Policy Establish rules and guidelines regarding the appropriate disclosure of all information received, crated and distributed in connection with the operation of and participation in the markets administrated by ISO-NE Critical Energy Infrastructure Information (CEII) ISO-NE policy establishes two thresholds for CEII identification: Bulk Electric System asset information that relates to proposed or existing generation assets greater than 5 MW Proposed or existing transmission asset rated at 100 kv and Above Criteria used to determine if information is CEII: The information may be in the form of a diagram, map, drawing, or raw data such as power flow model data or results The information may also be in written format in a sentence, paragraph, report, or slide presentation Information already marked as ISO New England Critical Cyber Asset information is automatically considered CEII 6

CLOUDFUZION CLOUD JOB SCHEDULER Robust workload management (e.g., automatic rescheduling of failed jobs) Support major 64/32-bit hardware platforms and all major OS platforms, including Windows, Linux, etc. User-friendly web interface for submitting, monitoring, and managing jobs Hybrid - bridge internal resources with external clouds Minimum changes to existing script files used for internal cluster JOB QUEUE USER INTERNAL COMPUTER FARM EC2 COMPUTE CLOUD 7

IMPLEMENTED CLOUD ARCHITECTURE The NAT device forwards the port 80 traffic to the root node on specified port port 80 traffic NAT Device 10.0.0.30 10.0.0.0/24 Security Group Elastic Load Balancing Internet Gateway Inbound Ports: 443 Internet Router Compute instances 10.0.1.0/24 Security Group Root instance 10.0.1.11 Only the NAT device is allowed to talk to the private network ISO New England VPC 10.0.0.0/16 Users 8

SECURITY SCHEMES ANNUAL INDUSTRY WORKSHOP NOVEMBER 12-13, 2014 Identity and Access Management (IAM) Create and manage users and groups Assign individual security credentials (e.g., access keys, passwords) Use policy to control each user's permissions to perform tasks using AWS resources Virtual Private Cloud (VPC) deployment Logically isolated section of AWS under users complete control Option to allow running instances on single-tenant hardware Root and compute instances are located within a private subnet of VPC, and none of them carries public IP addresses Only the NAT instance is allowed to communicate with root instance Any attempts to access the subnet from outside to VPC are completely blocked. 9

SECURITY SCHEMES (CONT D) Security group control Virtual firewall controlling the traffic for EC2 instances A specific Security Group is created and linked to Elastic Load Balancer (ELB) Specify the allowable inbound and outbound traffics (e.g., source IP address, protocol, port) Secure data transmission SSL certificates are created for data encryption using HTTPS protocol The Elastic Load Balancer (ELB) uses the certificate to terminate the SSL traffic, decrypt and forward the request to NAT instance NAT instance uses an IP table rule to direct the traffic further to root instance TARA Application life cycle of license file 10

CASE STUDY 7,090 TARA N-1-1 simulations in Greater Boston Reliability Study 470 hours on engineer's desktop and 8 hours in internal clusters Nine CC2.8xlarge instances (32 cores/instance @ 2.60 GHz, 60.5 GB memory); finished in less than one hour and cost about $5.00. 11

CLOUD-HOSTED WIDE AREA MONITORING Benefits: Supplemental and backup to the traditional SE A new platform for collaborations between control areas Explore all benefits and concerns of the cloud computing and advance the technology in the power industry A new and efficient way for synchrophasor data exchange and repository, further advance the synchrophasor technology 12

CONCLUSIONS AND NEAR-TERM PLAN Still at early stage of cloud computing technology The beta production cloud platform is ready to be released to planning engineers for TARA N-1-1 study Expand the user base to operations support engineers Additional cloud deployment of PSS/E and TSAT Cloud-hosted wide area monitoring Project team: ISO-NE/NYISO/NYPA/Cornell/WSU Simulated PMU vs. historical PMU vs. real-time PMU Other PMU applications such as Measured based Voltage Stability Assessment (MBVSA) Security concerns shall not discourage adopting cloud computing; it is necessary to understand responsibilities and adapt security practices to this new environment Continuous development of Internal IT cloud policy 13

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information