Conference Paper

Securing user defined containers for scientific computing

Authors:
To read the full-text of this research, you can request a copy directly from the authors.

No full-text available

Request Full-text Paper PDF

To read the full-text of this research,
you can request a copy directly from the authors.

... For the purpose of this work, we concentrated on the scientific computing area, where users often express the wish to independently deploy containerized applications (bring your own environment / user-supplied images). Such scenarios raise demand for additional security mechanisms [3]. In this domain traditional attacks do not necessarily play an important role, a typical problem however is the risk of misuse of resources, for example by using HPC systems to mine crypto currencies [4]. ...
Article
Docker promises the ability to package applications and their dependencies into lightweight containers that move easily between different distros, start up quickly and are isolated from each other.
Conference Paper
Multiple clusters co-existing in a single research campus has become commonplace at many university and government labs, but effectively leveraging those resources is difficult. Intelligently forwarding and spanning jobs across clusters can increase throughput, decrease turnaround time, and improve overall utilization. Dynamic Virtual Clustering (DVC) is a system of virtual machines, deployed in a single or multi-cluster environment, to increase cluster utilization by enabling job forwarding and spanning, flexibly allow software environment changes, and effectively sandbox users and processes from each other and the system. This paper presents both the initial implementation of DVC and performance results from synthetic workloads executed under DVC.
ISC High Performance
  • J Higgins
  • V Holmes
  • C Venters
J. Higgins, V. Holmes, and C. Venters, High Performance Computing: 30th International Conference, ISC High Performance 2015, Frankfurt, Germany, July 12-16, 2015, Proceedings. Springer International Publishing, 2015, ch. Orchestrating Docker Containers in the HPC Environment, pp. 506–513.
Namespaces in operation, part 5: User namespaces
  • M Kerrisk
M. Kerrisk. (2014) Namespaces in operation, part 5: User namespaces. [Online]. Available: https://lwn.net/Articles/532593/
Contain this, unleashing docker for hpc
  • D M Jacobsen
  • R S Canon
D. M. Jacobsen and R. S. Canon, "Contain this, unleashing docker for hpc."
Using docker to support reproducible research
  • R Chamberlain
  • L Invenshure
  • J Schommer
R. Chamberlain, L. Invenshure, and J. Schommer, "Using docker to support reproducible research," 2014. [Online]. Available: http: //dx.doi.org/10.6084/m9.figshare.1101910