platform management futures (amd) valerie k. kane software program manager dave tobias manager...
TRANSCRIPT
Platform Management Platform Management Futures (AMD)Futures (AMD)
Valerie K. KaneValerie K. KaneSoftware Program ManagerSoftware Program Manager
Dave TobiasDave TobiasManagerManagerSystems Manageability InitiativesSystems Manageability Initiatives
Software Strategy & AlliancesSoftware Strategy & AlliancesAdvanced Micro DevicesAdvanced Micro Devices
AgendaAgenda
Platform Management: TCO DriverPlatform Management: TCO Driver
Industry TrendsIndustry Trends
Convergence of Security, Virtualization Convergence of Security, Virtualization and Managementand Management
Interoperability and StandardsInteroperability and Standards
AMD EcosystemAMD Ecosystem
AgendaAgenda
AMD Partners and InnovationAMD Partners and InnovationPeppercon/Raritan: Naim MalikPeppercon/Raritan: Naim Malik
Embotics: Jay LitkeyEmbotics: Jay Litkey
Microsoft: Barry ShilmoverMicrosoft: Barry Shilmover
DemosDemosClient ManagementClient Management
Server ManagementServer Management
Desktop Manageability CostsDesktop Manageability CostsSource: Gartner Research, August 2004Source: Gartner Research, August 2004
Administration, operations and
end-user IT costs outweigh initial
HW/SW acquisition costs
Gartner’s Take On Client Gartner’s Take On Client ManagementManagement
““Most IT managers do not take full advantage of the Most IT managers do not take full advantage of the client management tools provided by PC vendors, client management tools provided by PC vendors, even though these tools offer a variety of potentially even though these tools offer a variety of potentially useful features. This is mostly because few useful features. This is mostly because few companies have only one PC supplier, and companies have only one PC supplier, and deploying tools for PCs from multiple vendors is deploying tools for PCs from multiple vendors is inefficient.inefficient. So companies would rather look to So companies would rather look to independent software vendors (ISVs), which can independent software vendors (ISVs), which can manage all their PCs.”manage all their PCs.”
- Gartner, “Client Management: A comparison of the leading PC vendors”, Dec. 2004- Gartner, “Client Management: A comparison of the leading PC vendors”, Dec. 2004
Industry TrendsIndustry TrendsDecentralized on-demand computingDecentralized on-demand computing
Transition from monolithic, central (mainframe) servers to Transition from monolithic, central (mainframe) servers to a more decentralized grid of on-demand computational a more decentralized grid of on-demand computational resources usingresources using
Economic x86 based PCs, workstations, and serversEconomic x86 based PCs, workstations, and servers
VirtualizationVirtualization
Clusters and load-balancingClusters and load-balancing
SLA monitoring and demand based automated provisioningSLA monitoring and demand based automated provisioning
Platform Autonomics and InformaticsPlatform Autonomics and Informatics
Fewer personnel resources must operate under Fewer personnel resources must operate under increasing time and business pressure!increasing time and business pressure!
A new breed of manageability solutions is required!
Industry Trends Industry Trends Platform Autonomics and InformaticsPlatform Autonomics and Informatics
Platform AutonomicsPlatform AutonomicsAutomated, intelligent, policy based decentralization Automated, intelligent, policy based decentralization of platform managementof platform managementPolicy based self-healing, self-configuring, Policy based self-healing, self-configuring, self optimizingself optimizingFailure Prediction and Failure Prediction and reduction of false reduction of false error reportingerror reporting
Platform InformaticsPlatform InformaticsData aggregation - automatically transforming raw Data aggregation - automatically transforming raw data gathered over time into information upon which data gathered over time into information upon which actions and strategies can be basedactions and strategies can be basedFailure Analysis and ReportingFailure Analysis and ReportingDecreased Mean-time-to-repair (MTTR)Decreased Mean-time-to-repair (MTTR)
Informatics And Informatics And AutonomicsAutonomics
Line of Trust
AutonomicsPolicy-Based ManagementAutomatic Problem DetectionAutomatic CorrectionSelf-healing, self-configuring, self optimizing
InformaticsProblem detectionAnalysis and reportingRecommendationsDecreased time to repair
Diagnosis to Admin
No Admin Intervention
Needed
Industry Trends Industry Trends Virtualization can be leveraged to implement…Virtualization can be leveraged to implement…
Internet malware protectionInternet malware protectionDedicated network partition prevents virus and spyware attacks from Dedicated network partition prevents virus and spyware attacks from harming the rest of the PCharming the rest of the PC
Platform managementPlatform managementVirtualized BMC/SP decreases cross-platform differences while increasing Virtualized BMC/SP decreases cross-platform differences while increasing available functionality and lowering hardware costsavailable functionality and lowering hardware costs
Platform Hardware with Pacifica
Platform Firmware
Virtual Machine 1
Virtual Firmware 1
Guest OS 1
App
licat
ion
A
App
licat
ion
B
App
licat
ion
C
Virtual Machine 2
Guest OS 2(Paravirtualized)
App
licat
ion
X
App
licat
ion
Y
App
licat
ion
Z
Virtual Machine 0
Guest OS 0+
System Drivers
Hypervisor (VMM)
Domain Zero VM 3
Sta
nd-A
lone
Man
agem
ent D
omai
n
Virtualization ChallengesVirtualization Challenges
Datacenter Classic Virtualized DatacenterDedicated HW per application
On-demand resource allocation and provisioning
Underutilized static resources
Resources allocated where needed (resource consolidation)
Static assumptions Dynamic tools and discovery
Simple licensing and chargeback
New licensing requirements
HW – OS – App More complex stack to manage
Security Becomes A Management Security Becomes A Management Issue And Management A Issue And Management A Security IssueSecurity Issue
What permissions for what virtual jobs?What permissions for what virtual jobs?
What users for what sessions on what machine?What users for what sessions on what machine?
What interaction between virtual sessions on a machine? What interaction between virtual sessions on a machine?
How do you manage security for Service Oriented How do you manage security for Service Oriented Architecture applications that span a dozen machines in Architecture applications that span a dozen machines in different geographic locations?different geographic locations?
New point-to-point technologies create new New point-to-point technologies create new security requirements? security requirements?
How do you manage security for the management How do you manage security for the management session running above the hypervisor that prevents a session running above the hypervisor that prevents a machine “take over” at the system management level?machine “take over” at the system management level?
Convergence Of SVMConvergence Of SVM
SecuritySecurity
VirtualizationVirtualizationManagementManagementProvisioning and Image ManagementProvisioning and Image ManagementVirtual low cost service processorVirtual low cost service processor
Tamper-ProofTamper-ProofMalware ProtectionMalware Protection
Security Configuration Security Configuration ManagementManagement
Management Session Management Session SecuritySecurity
Virtual ManagementVirtual Management Partition Partition
Integrated SVM PlatformIntegrated SVM PlatformMgmt. ClientMgmt. Client
Hardware
Firmware
Hypervisor / Virtualization
OS
Agents and Apps
VM 1
OS
Agents and Apps
VM n
Platform Security, Virtualization and Manageability come together…Platform Security, Virtualization and Manageability come together…
Managed PlatformManaged Platform
Management PartitionAutonomic Recovery (Policy based)Virtual Console & Media RedirectVM ManagementTamper Proof Platform ProtectionFilter & Quarantine OperationsInventory Management
Importance Of Importance Of InteroperabilityInteroperability
A large majority of IT organizations deploy A large majority of IT organizations deploy heterogeneous technologies and platformsheterogeneous technologies and platforms
Deployed solutions often use a combination of Deployed solutions often use a combination of standards and proprietary interfacesstandards and proprietary interfaces
IT organizations often deploy custom developed IT organizations often deploy custom developed “glue layer” to integrate all deployed “glue layer” to integrate all deployed technologiestechnologies
Interoperability is often a key Interoperability is often a key concern for IT organizationsconcern for IT organizations
Importance Of Open Importance Of Open StandardsStandards
Standards are fundamental to ensuring interoperability Standards are fundamental to ensuring interoperability across heterogeneous solutionsacross heterogeneous solutions
Standards enable competition and inherently better Standards enable competition and inherently better solutions without sacrificing interoperabilitysolutions without sacrificing interoperability
Standards ensure broader solution adoption ratesStandards ensure broader solution adoption rates
Standards bring together the brightest minds in the Standards bring together the brightest minds in the industry to collaborate on the right solution definitionindustry to collaborate on the right solution definition
Open standards facilitate Open standards facilitate interoperabilityinteroperability
AMD’s Involvement In AMD’s Involvement In StandardsStandards
AMD is a Leadership Member of the DMTFAMD is a Leadership Member of the DMTF
AMD actively participates in various working AMD actively participates in various working groups of the DMTF, includinggroups of the DMTF, including
DMWGDMWG
SMWGSMWG
CIM Core SchemaCIM Core Schema
Common Diagnostics Model ForumCommon Diagnostics Model Forum
NIC Sideband WGNIC Sideband WG
SMBIOS WGSMBIOS WG
WS-ManagementWS-Management
WS-ManagementWS-Management
Web Services based Web Services based management protocolmanagement protocol
Promotes interoperability between Promotes interoperability between management tools and managed management tools and managed resourcesresources
Open standard submitted to the DMTFOpen standard submitted to the DMTF
Vendors already adding Vendors already adding WS-Management supportWS-Management support
OPMA SpecificationOPMA SpecificationOverviewOverview
AMD publicly released the Open Platform Management AMD publicly released the Open Platform Management Architecture (OPMA) specification 02/28/2005Architecture (OPMA) specification 02/28/2005Common system interface between server platform and Common system interface between server platform and management subsystemmanagement subsystemAMD collaborated with leading manageability subsystem AMD collaborated with leading manageability subsystem technology partners to develop OPMAtechnology partners to develop OPMAEnables ISVs/IHVs to build standards based, cross Enables ISVs/IHVs to build standards based, cross platform manageability products suitable for use in platform manageability products suitable for use in heterogeneous computing environmentsheterogeneous computing environmentsOpen like AMD HyperTransport™ Technology, and Open like AMD HyperTransport™ Technology, and requiring a similar specification license agreementrequiring a similar specification license agreement
No vendor is excluded and no royalty for adoptionNo vendor is excluded and no royalty for adoption
Specification and license agreement are located on Specification and license agreement are located on AMD.comAMD.com http://www.amd.com/opma
OPMA Technical Highlights OPMA Technical Highlights
OPMA is a server management card interface specificationOPMA is a server management card interface specificationConnector, signals, pin-out, mechanicals, powerConnector, signals, pin-out, mechanicals, power
BIOS-firmware interface, motherboard and card requirementsBIOS-firmware interface, motherboard and card requirements
Leverage existing management standardsLeverage existing management standardsIPMI, WS-CIM, WS-ManagementIPMI, WS-CIM, WS-Management
Lightweight with respect to existing system designsLightweight with respect to existing system designs
Dramatically smaller form factor than PCI based solutionsDramatically smaller form factor than PCI based solutions
Single connector supports wide range of card capabilitiesSingle connector supports wide range of card capabilities
Tool support for MCard development and evaluationTool support for MCard development and evaluation
AMD And VirtualizationAMD And Virtualization
Hypervisor Host OS
Virtual Machine
Guest OS
Application
Virtual Machine
Guest OS
Application
Virtualization Extensions
CPU CPU Overhead Overhead
Virtualizing I/O Virtualizing I/O Devices Devices
Removing the Pain Points of x86-based Virtualization
Memory Memory Handling Handling
Security and Security and Reliability Reliability
AMD Platform Security AMD Platform Security
AMDProcessor
ChipsetSouth Bridge
TrustedPlatformModule
ChipsetNorth Bridge
DEV + EVPDEV + EVP
TPM 1.2 for TPM 1.2 for H/W based H/W based Secure OSSecure OS
Secure Graphics
Secure Input
TrustedMobile
KeyboardController
LPC-bus LPC-bus ChangesChanges
PCIe Root Complex: -TCAM-Trusted Config Space-HT Unit ID Mapping
The AMD EcosystemThe AMD Ecosystem
AMDAMDRecognizes and values the importance of the Recognizes and values the importance of the AMD ecosystemAMD ecosystem
Works very closely with its partners to define the Works very closely with its partners to define the future of the AMD platformfuture of the AMD platform
Promotes the use of open standards as part of the Promotes the use of open standards as part of the AMD platformAMD platform
Takes an active role in shaping the future of industry Takes an active role in shaping the future of industry trends and standards in conjunction with its partnerstrends and standards in conjunction with its partners
All AMD efforts are centered around All AMD efforts are centered around customer requirementscustomer requirements
Raritan‘s Support For OPMARaritan‘s Support For OPMA
FeaturesFeaturesIndustry standard daughter card based on Industry standard daughter card based on Raritan‘s KIRA 100 ASICRaritan‘s KIRA 100 ASIC
Fully featured BMC interfacesFully featured BMC interfaces
High performance KVM/IPHigh performance KVM/IP
Virtual mediaVirtual media
IPMI 2.0IPMI 2.0
SMASH CLPSMASH CLP
WS-ManagementWS-Management
100% Out-of-band system management100% Out-of-band system management
Raritan adopted OPMA in July 2004. The Raritan OPMA M3-G4 board Raritan adopted OPMA in July 2004. The Raritan OPMA M3-G4 board offers advanced server management features and excellent performance. offers advanced server management features and excellent performance. The widely adopted standard allows for cross platform interoperability The widely adopted standard allows for cross platform interoperability across multiple server vendors and ISV’s. The result is a cost effective across multiple server vendors and ISV’s. The result is a cost effective management solution that serves as the base technology of a management solution that serves as the base technology of a management infrastructuremanagement infrastructure
Why Raritan Endorses Why Raritan Endorses OPMA?OPMA?
OPMA is a widely adopted open standard for embedded OPMA is a widely adopted open standard for embedded system management hardwaresystem management hardware
AMD continues to emerge as a leader in authoring and AMD continues to emerge as a leader in authoring and supporting open management standards that are driving supporting open management standards that are driving the industry toward simplified, intelligent and more the industry toward simplified, intelligent and more efficient IT managementefficient IT management
OPMA is the baseline technology that provides OPMA is the baseline technology that provides common interfaces to ISV’s to easily provide cross common interfaces to ISV’s to easily provide cross platform interoperabilityplatform interoperability
Cross platform interoperability further strengthens the Cross platform interoperability further strengthens the ecosystem of manageability, virtualization and securityecosystem of manageability, virtualization and security
OPMA Based ManagementOPMA Based Management
Chassis/Backplane
Board/Card/Blade
ManagementController
Management Controller
IPMI
IPMI DRiver ACPI Driver
CLP/SMASH
CIM
API – Libraries / Provider
In–Band–stack In–Band–stack Out–of–Band–stack Out–of–Band–stack
HardwareHardwareOPMAOPMA
Mgmt-Mgmt-FirmwareFirmware
System-System-FirmwareFirmware
ManagementManagementServicesServices
OS
Network
KVM Virtual Media ACPI, others
WS-Man Service
Services
CLP/SMASH
CIM
WS-Man Service
Client
Raritan‘s Vision For Raritan‘s Vision For ManagementManagement
Raritan will continue to adopt, develop and promote open Raritan will continue to adopt, develop and promote open standards for manageabilitystandards for manageability
The combination of OPMA and WS-Management enable The combination of OPMA and WS-Management enable companies like Raritan to more efficiently develop and companies like Raritan to more efficiently develop and deploy more advanced intelligent management devices deploy more advanced intelligent management devices on a networkon a network
Main advantages to open management standardsMain advantages to open management standardsInteroperability across your entire networkInteroperability across your entire network
Reduced costs in deploying and managing your networkReduced costs in deploying and managing your network
Freedom to choose solutions from multiple vendors to Freedom to choose solutions from multiple vendors to continuously enhance your management capabilities while continuously enhance your management capabilities while preserving your original investmentspreserving your original investments
A New ApproachA New Approach
Autonomics and virtualization imply new Autonomics and virtualization imply new management challengesmanagement challenges
RequiresRequiresDelegation of managementDelegation of management
Interoperability through standards-based Interoperability through standards-based management management
Manageability must be extensible and reactive Manageability must be extensible and reactive to service plane configuration changesto service plane configuration changes
Mobility of management componentsMobility of management components
The Management PlaneThe Management Plane
Can be physical or virtualCan be physical or virtualAMD CPU virtualization supportAMD CPU virtualization support
Peppercon OPMA cardPeppercon OPMA card
ProvidesProvidesSeparation of ConcernsSeparation of Concerns
Fail-safe isolation and recovery of faultsFail-safe isolation and recovery of faults
Minimize host resource impactsMinimize host resource impacts
Containment of change management risksContainment of change management risks
Reduced reliance on the networkReduced reliance on the network
Host-Independent SecurityHost-Independent SecurityIndependent policy enforcementIndependent policy enforcement
Delineation of admin rolesDelineation of admin roles
Tamper-proof “black box” and audit trail Tamper-proof “black box” and audit trail
Data persistenceData persistence
Embedded ManagementEmbedded Management
Implemented using software: embotsImplemented using software: embotsEmbots areEmbots are
Autonomic Autonomic LightweightLightweightPolicy-basedPolicy-basedSocial Social MobileMobile
Embots run on management planeEmbots run on management planeCommunicate externally using WS-ManCommunicate externally using WS-ManMove when service plane movesMove when service plane movesAdapt as service plane changesAdapt as service plane changes
Client Management Client Management
MOM
Embotics
Mgt OS User OS
S/E
Anti-virus
WS-MAN
Management ConsoleWindows Server 2003
Client w/ AMD Next Gen AthlonTM ProcessorWindows XP SP2 Guest OS
EmboticsPolicy Engine
Autonomic management via virtualized partition Potential problems monitored and automatically corrected
Guest VMMgt VM
Hypervisor
OS
MOM Adapter
Server Management Server Management
Embotics
Mgt OSOS OS
S/E
MOM
WS-MAN
Management ConsoleWindows Server 2003
Server w/ AMD Next Gen OpteronTM ProcessorWindows Server 2003 SP1/R2
Peppercon Out-of-bandManagement
Card in server
EmboticsPolicyEngine Sensor &
Effectors
Autonomic management via management card for serversProvides out-of-band monitoring and diagnostics
EmboticsConsole
MicrosoftMicrosoft
Barry Shilmover Barry Shilmover Management Practices Management Practices Program ManagerProgram ManagerMicrosoft CorporationMicrosoft Corporation