Deutsche Telekom Joins The Linux Foundation, Deepens Investment in Open Source Networking

Leading European Telco Joins as Newest Platinum Member of LF Networking and ONAP, Enabling Nearly 70 percent of all Global Mobile Subscribers

San Francisco – July 19, 2018Linux Foundation Networking (LFN) continues its membership growth with the addition of its newest Platinum member, Deutsche Telekom, one of the world’s leading integrated telecommunications companies. Deutsche Telekom joins LFN to support its efforts in accelerating the development and adoption of open source networking technologies. With the addition of Deutsche Telekom, LFN projects now enable nearly seventy percent of all global mobile subscribers.

With its collaboration and extensive global footprint, Deutsche Telekom will help accelerate LFN globally, contributing to emerging network technologies critical to enabling 5G services. LFN supports the momentum of open source networking, integrating governance of participating projects in order to enhance operational excellence, simplify member engagement, and increase collaboration. Deutsche Telekom is also an active participant in the ONAP project and plans to contribute to the next platform release, Casablanca.

“We are delighted to welcome Deutsche Telekom to the foundation and expand the list of telecommunication and technology service providers supporting LFN,” said Arpit Joshipura, General Manager of Networking and Orchestration, The Linux Foundation. “With Deutsche Telekom on board, we look forward to witnessing their work in connectivity and service, integrated gigabit networks, secure ICT solutions and big IoT while collaborating with them on major industry challenges to transform all aspects of the network and accelerate open source deployments.”

“Linux Foundation Networking has made rapid advancement in developing comprehensive solutions that will set industry standards for the future of telecommunications technologies,” said Arash Ashouriha,  SVP Technology Architecture & Innovation, Deutsche Telekom. “Providing a standard platform for network automation and increased interoperability through the ONAP project is an area we’re especially keen on contributing to in support of our 5G activities. The work in ONAP will complement our activities in ETSI-ZSM to lead the industry towards a fully automated network and service management. This will be a critical success factor for our companies to leverage the full benefits of 5G. We  see great value in the global collaboration LFN provides for accelerating that process, for both our businesses and customers.”

Deutsche Telekom provides fixed-network/broadband, mobile communications, Internet, and IPTV products and services for consumers, and information and communication technology (ICT) solutions for business and corporate customers. With a staff of more than 200,000 employees throughout the world, Deutsche Telekom will help drive the LFN initiative into new regions and spread the continued adoption of open standards and open source.

The LFN community will come together on September 25-27, 2018 for Open Networking Summit (ONS) Europe. The event will take place in Amsterdam and is the industry’s premier open networking event, gathering enterprises, service providers and cloud providers across the ecosystem to share learnings, highlight innovation and discuss the future of Open Source Networking. Learn more about the event and register here.

About The Linux Foundation

The Linux Foundation is the organization of choice for the world’s top developers and companies to build ecosystems that accelerate open technology development and industry adoption. Together with the worldwide open source community, it is solving the hardest technology problems by creating the largest shared technology investment in history. Founded in 2000, The Linux Foundation today provides tools, training and events to scale any open source project, which together deliver an economic impact not achievable by any one company. More information can be found at www.linuxfoundation.org.

###

The Linux Foundation has registered trademarks and uses trademarks. For a list of trademarks of The Linux Foundation, please see our trademark usage page: https://www.linuxfoundation.org/trademark-usage. Linux is a registered trademark of Linus Torvalds.

The post Deutsche Telekom Joins The Linux Foundation, Deepens Investment in Open Source Networking appeared first on The Linux Foundation.

Source: Linux Foundation

Embracing Openness to Power Future Network Services

By Arash Ashouriha, SVP Technology Architecture & Innovation, Deutsche Telekom

This post first published on Telekom.com

The exponential Internet traffic growth is still one of the main challenges for the Telco industry. In the past, Moore’s Law has helped us to keep our production cost for the exponentially growing traffic under control. With Moore’s Law flattening out, we see a strong trend in the industry towards the disaggregation of hardware and software. From monolithic black-box solutions, we are moving towards a modular, best-in-class, flexible and open ecosystem, including an automated lifecycle management in true DevOps style. None of the Telcos can do this on their own – the success of this industry depends on collaboration.

 

Beside its engagement in the Telecom Infra Project (https://www.telecominfraproject.com), Deutsche Telekom has now joined the Linux Foundation as a Silver member, and The Linux Foundation Networking Fund (LFN) as a Platinum member to drive the development of open source software for the telecommunication market. Existing projects like ONAP, FD.io, Open Daylight as well as upcoming projects on Edge Computing and AI are important for our success.

After all, open source is about community. So, together with the worldwide open source community, we look forward to contributing to solve the greatest technology challenges around virtualization, as well as evaluating the potential to incorporate open source code into our networks. As founding member of O-RAN, we are already leading the drive to introduce more openness and flexibility into the radio access domain, and participating also in ONF for an enhanced network programmability within our infrastructure. Joining the LFN now complements Deutsche Telekom’s embrace of open source software as a key technology in our architectural vision for future networks.

The work in ONAP, together with our activities in ETSI-ZSM, will lead the industry towards a fully automated network and service management. One thing is very clear to me: Intelligent and automated networks will be the critical success factor to leverage the full benefits of 5G, for our customers, both consumers and verticals. And we believe in joining forces with partners in the industry to bring in innovation and accelerate the path to this shared future!

The post Embracing Openness to Power Future Network Services appeared first on The Linux Foundation.

Source: Linux Foundation

Greg Kroah-Hartman on Linux, Security, and Making Connections at Open Source Summit

Open Source Summit

Greg Kroah-Hartman talks about the importance of community interaction, and the upcoming Open Source Summit.

People might not think about the Linux kernel all that much when talking about containers, serverless, and other hot technologies, but none of them would be possible without Linux as a solid base to build on, says Greg Kroah-Hartman.  He should know. Kroah-Hartman maintains the stable branch of the Linux kernel along with several subsystems.  He is also co-author of the Linux Kernel Development Report, a Fellow at The Linux Foundation, and he serves on the program committee for Open Source Summit.

Greg Kroah-Hartman (right) talks about the upcoming Open Source Summit. (Image copyright: Swapnil Bhartiya)

In this article, we talk with Kroah-Hartman about his long involvement with Linux, the importance of community interaction, and the upcoming Open Source Summit.

The Linux Foundation: New technologies (cloud, containers, machine learning, serverless) are popping up on weekly basis, what’s the importance of Linux in the changing landscape?

Greg K-H: There’s the old joke, “What’s a cloud made of? Linux servers.” That is truer than most people realize. All of those things you mention rely on Linux as a base technology to build on top of.  So while people might not think about “Linux the kernel” all that much when talking about containers, serverless and the other “buzzwords of the day,” none of them would be possible without Linux being there to ensure that there is a rock-solid base for everyone to build on top of.  

The goal of an operating system is to provide a computing platform to userspace that looks the same no matter what hardware it runs on top of.  Because of this, people can build these other applications and not care if they are running it locally on a Raspberry Pi or in a cloud on a shared giant PowerPC cluster as everywhere the application API is the same.

So, Linux is essential for all of these new technologies to work properly and scale and move to different places as needed.  Without it, getting any of those things working would be a much more difficult task.

LF: You have been involved with Linux for a very long time. Has your role changed within the community? You seem to focus a lot on security these days.

Greg K-H: I originally started out as a driver writer, then helped write the security layer in the kernel many many years ago.  From there I started to maintain the USB subsystem and then co-created the driver model. From there I ended up taking over more driver subsystems and when the idea for the stable kernel releases happened back in 2005, I was one of the developers who volunteered for that.

So for the past 13 years, I’ve been doing pretty much the same thing, not much has changed since then except the increased number of stable trees I maintain at the same time to try to keep devices in the wild more secure.

I’ve been part of the kernel security team I think since it was started back in the early 2000’s but that role is more of a “find who to point the bug at” type of thing.  The kernel security team is there to help

take security problem reports and route them to the correct developer who maintains or knows that part of the kernel best.  The team has grown over the years as we have added the people that ended up getting called on the most to reduce the latency between reporting a bug and getting it fixed.

LF: We agree that Linux is being created by people all over the map, but once in a while it’s great to meet people in person. So, what role does Open Source Summit play in bringing these people together?

Greg K-H: Because open source projects are all developed by people who work for different companies and who live in different places, it’s important to get together when ever possible to actually meet the people behind the email if at all possible.  Development is an interaction that depends on trust, if I accept patches from you, then I am now responsible for those changes as well. If you disappear I am on the hook for them, so either I need to ensure they are correct, or even better, I can know that you will be around to fix the code if there is a problem.  By meeting people directly, you can establish a face behind the email to help smooth over any potential disagreements that can easily happen due to the lack of “tone” in online communication.

It’s also great to meet developers of other projects to hear of ways they are abusing your project to get it to bend to their will, or learn of problems they are having that you did not know about.  Or just learn

about new things that are being developed in totally different development groups.  The huge range of talks at a conference like this makes it easy to pick up on what is happening in a huge range of different developer communities easily.

LF: You obviously meet a lot of people during the event. Have you ever come across an incident where someone ended up becoming a contributor or maintainer because of the exposure such an event provided?

Greg K-H: At one of the OSS conferences last year, I met a college student who was attending the conference for the first time.  They mentioned that they were looking of any project ideas that someone with their skill level could help out with. At a talk later that day a new idea for how to unify a specific subsystem of the kernel came up and how it was going “just take a bunch of grunt work” to accomplish.  Later that night, at the evening event, I saw the student again and mentioned the project to them and pointed them at the developer who asked for the help. They went off to talk in the corner about the specifics that would be needed to be done.

A few weeks later, a lot of patches started coming from the student and after a few rounds of review, were accepted by the maintainer.  More patches followed and eventually the majority of the work was done, which was great to see, the kernel really benefited from their contribution.

This year, I ran into the student again at another OSS conference and asked them what they were doing now.  Turns out they had gotten a job offer and were working for a Linux kernel company doing development on new products during their summer break.  Without that first interaction, meeting the developers directly that worked on the subsystem that needed the help, getting a job like that would have been much more difficult.

So, while I’m not saying that everyone who attends one of these types of conferences will instantly get a job, you will interact with developers who know what needs to be done in different areas of their open source projects.  And from there it is almost an easy jump to getting solid employment with one of the hundreds of companies that rely on these projects for their business.

LF: Are you also giving any talks at Open Source Summit?

Greg K-H:  I’m giving a talk about the Spectre and Meltdown problems that have happened this year.  It is a very high-level overview, going into the basics of what they are, and describing when the many different variants were announced and fixed in Linux.  This is a new security type of problem that is going to be with us for a very long time and I give some good tips on how to stay on top of the problem and ensure that your machines are safe.

Sign up to receive updates on Open Source Summit North America:

The post Greg Kroah-Hartman on Linux, Security, and Making Connections at Open Source Summit appeared first on The Linux Foundation.

Source: Linux Foundation

Call for Code: Developing for Preparedness and Resilience

Call for Code

Todd Moore, Vice President Open Technology, IBM, speaks about the Call for Code initiative.

Open source is about community. At IBM, we have a commitment to open source and our developers are passionate about contributing back to open source. I’ve had the privilege to work with organizations like The Linux Foundation, Cloud Native Computing Foundation, Node.js Foundation, JS Foundation, Cloud Foundry Foundation, and many others. I’ve witnessed firsthand the power of communities to come together to grow an ecosystem, develop technology, and accelerate innovation. There’s also a human part to open source – a collective responsibility that we have to the world. There is work we can do that goes beyond developing platforms to grow our businesses and solve technical challenges. We can do more by focusing our combined developers, who already work together in open source, on critical problems that face humanity.

David Clark Cause is a company that creates purpose based initiatives and brings stakeholders together to tackle a common cause. Last year, David Clark Cause came to us with an opportunity to rally developers around a common cause and have a lasting impact.  We’ve done work like this before – for example, our IBM Foundation is working with the Open Medical Records (OpenMRS) project to create an oncology suite for use in countries in Africa and other regions using this open technology. The IBM Corporate Citizenship Office has helped deploy software from the Sahana Foundation’s open source disaster management solutions in over a dozen countries.

Given 2017 was one of the worst years on record for natural disasters, we decided to focus the efforts of 22 million developers around the world on this cause through the Call for Code initiative. David Clark Cause gave us the inspiration, and other partners like the United Nations, the American Red Cross, and The Linux Foundation came together to pool our collective efforts. Since 2000, natural disasters have directly affected 2.5 billion people, with 1.5 trillion in economic impact since 2003. And over the last 30 years, flooding is up over 240%. As developers, we can help people be more prepared, help them during a natural disaster, and help them recover afterward. We can make communities more resilient together.

Call for Code judges include iconic developers like Linus Torvalds and Tim Berners-Lee. The winning team and two semifinalists will receive support from The Linux Foundation to host their submission as an open source project and build a community around it, ensuring that it is deployable around the world in the areas of greatest need. Please join us- learn more at callforcode.org.

The post Call for Code: Developing for Preparedness and Resilience appeared first on The Linux Foundation.

Source: Linux Foundation

The Linux Foundation Transforms the Energy Industry with New Initiative: LF Energy

The Linux Foundation Transforms the Energy Industry with New Initiative: LF Energy

RTE, Europe’s Biggest Transmission System Provider, Supports LF Energy and Open Source Innovation

By Jim Zemlin

We are thrilled to introduce the new LF Energy initiative to support and promote open source in the energy and electricity sectors. LF Energy is focused on accelerating the energy transition, including the move to renewable energy, electric mobility, demand response and more.

Open source has transformed industries as vast and different as telecommunications, financial services, automobiles, healthcare, and consumer products. Now we are excited to bring the same level of open collaboration and shared innovation to the power systems industry.

We are also honored that several global, highly influential energy leaders and research institutions are supporting The Linux Foundation including RTE (Europe’s biggest transmission system provider), the European Network of Transmission System Operators, Vanderbilt University and The Electric Power Research Institute.

LF Energy is welcoming four new projects as part of the initiative, and we plan to host numerous information and communication technologies (ICT) that will advance everything from smart assistants for system operators to advanced grid controls, analytics, and planning software. See today’s news to learn about our new LF Energy projects and hear from these partners.

We invite developers and organizations to join us as we accelerate the Energy Transition.

We believe open source is the key to both modernizing and protecting the security and reliability of the world’s power systems. Our confidence stems from a rich, successful history with open source transforming other markets – insert infographic here.

With the technical and operational guidance of The Linux Foundation, LF Energy will create a sustainable ecosystem to quickly and efficiently deliver robust, secure and innovative solutions. We’ll achieve this by curating reusable components, open APIs and interfaces through project communities that the energy ecosystem can adopt into platforms and solutions.

LF Energy invites collaboration and open source innovation with all participants in the energy and electricity sectors. We are excited to foster progress and a neutral shared environment in this important space. Join us as we embark on this new venture and repeat history in the best way possible.

The post The Linux Foundation Transforms the Energy Industry with New Initiative: LF Energy appeared first on The Linux Foundation.

Source: Linux Foundation

The Linux Foundation Launches LF ENERGY, New Open Source Coalition

LF ENERGY Launches with Europe’s Biggest Transmission System Provider, RTE; Initiative Fuels Energy Transition and Momentum for Open Source Innovation

SAN FRANCISCO, July 12, 2018 – Just as open source software has transformed automobiles, telecommunications, financial services, and healthcare, The Linux Foundation today announces the formation of LF Energy with support from RTE, Europe’s biggest transmission power systems provider, and other organizations, to speed technological innovation and transform the energy mix across the world.

LF Energy also welcomes four new projects to be hosted at The Linux Foundation as part of the initiative, which will advance everything from smart assistants for system operators to smart grid controls software.

LF Energy is an umbrella organization that will support and sustain multi-vendor collaboration and open source progress in the energy and electricity sectors to accelerate information and communication technologies (ICT) critical to balanced energy use and economic value.

“Our complex, multifaceted global energy market is evolving quickly, and it demands that we not only keep pace, but act more rapidly than ever before,” said Shuli Goodman, LF Energy Executive Director. “A collaborative open source approach to development of these technologies across companies, countries, and end users, will provide the innovation needed to meet our respective goals in renewable energy, power electronics, electric mobility, and rapid digitalization for the energy sector overall.”

LF Energy members aim to inform and expedite the energy transition, including the move to electric mobility and connected sensors and devices—all while modernizing and protecting the grid.

“We are thrilled to launch LF Energy and honored to work with RTE, European Network of Transmission System Operators, Vanderbilt University and The Electric Power Research Institute to harness open source technologies and advance the energy transition. We invite developers and organizations around the world to join us in advancing this exciting new endeavor,” said Jim Zemlin, Executive Director of The Linux Foundation. “With the technical and operational guidance of the Linux Foundation, LF Energy will create a sustainable ecosystem to quickly and efficiently deliver robust, secure and innovative solutions. Our goal with LF Energy is to deliver value as quickly as possible to help our stakeholders advance their business goals, strengthen local and global economies, and improve renewable energy and grid modernization.”

LF Energy will focus on curating reusable components, open APIs and interfaces through project communities that the energy ecosystem can adopt into platforms and solutions. Building the plumbing upon a common infrastructure enables energy companies and solution providers to differentiate at higher value layers and services, while reducing cost and integration complexity at non-differentiating layers. As a result, power system providers will be empowered to achieve time to market, scale and efficiency much faster than ever before.

Key Facts, Background and Supporting Partners

RTE is a French transmission system operator and Europe’s biggest transmission system provider.

“RTE is thrilled to be a founding member of LF Energy because we believe it is essential for creating forward-thinking grid solutions,” said Olivier Grabette, Executive Vice
President and Member of the Executive board. “Shared open development is fundamental to enabling smart power for the benefit the global economy and the energy landscape of the future. RTE is proud to contribute three significant projects to the LF Energy ecosystem, and we look forward to working closely with The Linux Foundation and the open source community to make our systems smarter and more secure.”

Vanderbilt University is a private research university in Nashville that conducts research in the area of cyber-physical systems through its Institute for Software-Integrated Systems.

“Vanderbilt’s Institute for Software-Integrated Systems has a long track record in building various open source software tools and this is an exciting cross-sector collaboration,” said Gabor Karsai, Associate Director of the Institute. “This initiative will allow us to share our research results with the open source community and facilitate technology transition to industry.”

ENTSO-E, the European Network of Transmission System Operators, represents 43 electricity transmission system operators (TSOs) from 36 countries across Europe.

“ENTSO-E sees the potential for community and collaborative action that the LF Energy initiative offers to pool skills and knowledge in new strategic digital areas,” said Laurent Schmitt, Secretary General, ENTSO-E. “ENTSO-E recognizes the benefits of open source and shared development to develop agility in future digital developments, which is key for ENTSO-E and our TSO community. We have established a first liaison with LF Energy as a strategic option for meeting ENTSO-E’s and the European TSOs’ commitment to a cost effective and secure energy transition. We are pleased to be part of this global announcement.”

The Electric Power Research Institute (EPRI) conducts research, development, and demonstration projects for the benefit of the public in the United States and internationally. Its membership has grown to represent approximately 90% of the electric utility revenue generated in the United States and extends to participation in more than 35 countries.

“The Electric Power Research Institute believes a collaborative, innovative, and objective approach is necessary to tackle many of the opportunities ahead for maintaining a safe, reliable, affordable, environmentally responsible, and integrated electric power system,” said EPRI Vice President of Integrated Grid Mark McGranaghan. “This effort will continue to foster that spirit of collaboration, bringing multi-national perspectives to the table to inform globally-impactful work toward our respective and complimentary missions.”

RTE contributed three projects to The Linux Foundation to form LF Energy, and Vanderbilt University will transition its Resilient Information Architecture Platform for Smart Grid (RIAPS) applications technology. These projects will help seed an open source ecosystem for TSOs, distribution system operators, aggregators, utilities, vendors, and other energy sector stakeholders.

More about new LF Energy projects:

  • OperatorFabric: is a smart assistant for system operators for use in electricity, water, and other utility operations. The industrial strength, extensible and flexible grid operations platform provides strategic management of information with a modular approach to applications, easy-to-add new functionality, and open APIs.
  • Let’s Coordinate: an extensible solution of OperatorFabric, enables organizational power system coordination, visibility, communication, and workflow between distributed users across national and regional boundaries.
  • The PowSyBl Framework: of reusable modular components is a high-performance computing platform that enables grid modeling (e.g., CGMES) and simulation in a highly distributed energy resource environment from system expansion studies to planning and operation.
  • RIAPS: The Resilient Information Architecture Platform for Smart Grid (RIAPS) provides core services for building effective, secure and powerful distributed applications. Created at the Institute for Software-Integrated Systems at Vanderbilt University, with support from North Carolina State University, Washington State University, and funding from the U.S. Department of Energy’s Advanced Research Projects Agency for Energy (ARPA-E), RIAPS enables smart grid control software to run reliably, just as smartphone apps run on platforms like Android and Apple iOS that have become industry standards.

Hardware, software, UI, services, and applications suppliers will work together on these independent technical projects as part of LF Energy to accelerate the energy transition. To learn more about LF Energy or join the effort, go to https://www.lfenergy.org/.

About The Linux Foundation
The Linux Foundation is the organization of choice for the world’s top developers and companies to build ecosystems that accelerate open technology development and industry adoption. Together with the worldwide open source community, it is solving the hardest technology problems by creating the largest shared technology investment in history. Founded in 2000, The Linux Foundation today provides tools, training and events to scale any open source project, which together deliver an economic impact not achievable by any one company. More information can be found at www.linuxfoundation.org.

# # #

The Linux Foundation has registered trademarks and uses trademarks. For a list of trademarks of The Linux Foundation, please see our trademark usage page: https://www.linuxfoundation.org/trademark-usage. Linux is a registered trademark of Linus Torvalds.

The post The Linux Foundation Launches LF ENERGY, New Open Source Coalition appeared first on The Linux Foundation.

Source: Linux Foundation

Xen Project Hypervisor 4.11 Brings Cleaner Architecture to Hypervisor Core Technologies


Latest release adds PVH functionality for better security and performance

SAN FRANCISCO, July 10, 2018 – The Xen Project, hosted by The Linux Foundation, today announced the release of Xen Project Hypervisor 4.11. The latest release adds new PVH-related functionality to simplify the interface between the Xen Project Hypervisor/Support and operating systems bringing added security and performance. The release also contains mitigations for the Meltdown and Spectre vulnerabilities.

The Xen Project Hypervisor is used by more than 10 million users, and powers some of the largest clouds in production today, including Amazon Web Services, Tencent, Alibaba Cloud, Oracle Cloud and IBM SoftLayer. It is the base for commercial virtualization products from Citrix, Huawei, Inspur and Oracle, and security solutions from Qubes OS, Bromium vSentry, A1Logic, Bitdefender, Star Lab’s Crucible Hypervisor, Zentific and Dornerwork’s Virtuosity.

Long-term development goals of the Xen Project continue to focus on less code, a smaller trusted computing base (TCB), less complexity, ease of maintenance, and better performance as well as scalability. To support these goals, the Xen Project has re-architected the Hypervisor’s core technologies, which encompass all core functionality, such as x86 support, device emulation and boot sequence. The latest PVH-related functionality in Xen Project 4.11 is a manifestation of this re-architecture.

“The Xen Project community worked swiftly to address the security needs of Spectre and Meltdown, and continued to match its goals in adding significant features to this release,” said Lars Kurth, chairperson of the Xen Project Advisory Board. “The latest features in this release around PVH functionality bring better security, performance and management to the Hypervisor.”

PVH Dom0 Reduces the Attack Surface of Xen Project Based Systems
PVH combines the best of PV and HVM mode to simplify the interface between operating systems with Xen Project Support and the Xen Project Hypervisor and to reduce the attack surface of Xen Project Software. PVH guests are lightweight HVM guests that use hardware virtualization support for memory and privileged instructions. PVH does not require QEMU.

Xen Project 4.11 adds experimental PVH Dom0 support by calling Xen via dom0=pvh on the command line. Running a PVH Dom0 removes approximately 1 million lines of QEMU code from Xen Project’s computing baseshrinking the attack surface of Xen Project based systems.

Enabling a PVH Dom0 requires a PVH Dom0 capable Linux or FreeBSD. Patches for each operating system are currently being upstreamed and should be available in the next Linux and FreeBSD versions.

PV in PVH container (PVH Shim) Simplifies Management
Xen Project Hypervisor 4.11 supports unmodified legacy PV-only guest to run in PVH mode. This allows cloud providers to support old, PV-only distros while only providing support for a single kind of guest (PVH) simplifying management, reducing the surface of attack significantly, and eventually allowing end-users to build a Xen Project hypervisor configuration with no “classic” PV support at all.

PCI config space emulation in Xen
Support for the PCI configuration space has been moved from QEMU to the hypervisor. Besides enabling PVH Dom0 support, this code will eventually be available to HVM guests and PVH guests. Additional security hardening needs to be performed before exposing this functionality to security supported guest types, such as PVH or HVM guests.

Mitigations against Cache Side Channel Attacks from Meltdown and Spectre
This release contains mitigations forMeltdown and Spectre vulnerabilities, including:

  • Performance optimized XPTI: Xen Project’s equivalent to Kernel page-table isolation (KPTI). Only “classic PV” guests need XPTI whereas HVM and PVH cannot attack the hypervisor via Meltdown.
  • Branch Predictor Hardening:For x86 CPUs, a new framework for Intel and AMD microcode was added related to Spectre mitigations as well as support for Retpoline.

Contributions for this release of the Xen Project came from Amazon Web Services, AMD, Arm, Citrix, DornerWorks, EPAM Systems, Gentoo Linux, Google, Huawei, Intel Corporation, Invisible Things Lab, Oracle, Qualcomm, SUSE, and a number of universities and individuals. See full list of participants in this release here.

Additional Technical Features

Scheduler Optimizations: Credit1 and Credit2 scheduling decisions when a vCPU is exclusively pinned to a pCPU or when soft-affinity is used are performance optimized.

Add DMOPs to allow use of VGA with restricted QEMU (x86): Xen Project Hypervisor 4.9 introduced the Device Model Operation Hypercall (DMOPs), which significantly limits the capability of a compromised QEMU to attack the hypervisor. In Xen 4.11 we added DMOPs that enable the usage of the VGA console, which was previously restricted.

Enable Memory Bandwidth Allocation in Xen ((Intel® Xeon® Scalable platform or Newer): Support for Memory Bandwidth Allocation (MBA) allows Xen Project Hypervisor 4.11 to slow misbehaving VMs by using a credit-based throttling mechanism.

Emulator enhancements (x86):Support for previously unsupported Intel® Advanced Vector Extensions (Intel® AVX and AVX2), and for AMD F16C, FMA4, FMA, XOP and 3DNow! instructions have been added to the x86 emulator.

Guest resource mapping (x86): Support for directly mapping Grant tables and IOREQ server pages have been introduced into Xen Project Hypervisor 4.11 to improve performance.

Clean-up and future-proofing (Arm):Xen’s VGIC support has been re-implemented. In addition, stage-2 page table handling, memory subsystems and big.LITTLE support have been refactored to make it easier to maintain and update the code in future.

Support for PSCI 1.1 and SMCCC 1.1 compliance (Arm):Xen Project is updated to comply with the latest versions of the Arm® Power State Coordination Interfaceand Secure Monitor Call Calling Conventions that provides an optimised calling convention and optional, discoverable support for mitigating Spectre Variant 2.

Comments from Xen Project Users and Contributors:

“The Xen Project Hypervisor 4.11 builds on its maturity and flexibility as a dependable, secure, type-1 hypervisor. Xen Project 4.11’s support for PVH dom0, added to its existing PVH domU capability, allows it to take advantage of the performance and scalability benefits of paravirtualization, while reducing complexity and code size, making it easier to maintain, enhance and secure,” said James Bulpin, Senior Director of Technology at Citrix. “With several other performance, security and maintainability enhancements, Xen Project 4.11 demonstrates the community’s dedication to making Xen the best hypervisor for a wide range of use-cases from huge private clouds to embedded systems.”

“Intel is pleased to see the Xen Project 4.11 release with the latest Intel-based platform features,” said Arjan Van De Ven, Intel Fellow and Director of Core Systems and Linux Pathfinding Engineering at Intel’s Open Source Technology Center. “We remain focused on enabling the best of Intel architecture to help ensure customers can take advantage of the newest features.””The Xen Project Hypervisor is an important part of the virtualization solutions SUSE provides to our customers. This newest release of Xen 4.11 offers some important benefits such as increased performance and hardening – which are critical in enterprise environments,” said Mike Latimer, Senior Engineering Manager, SUSE. “The Xen Project is an excellent example of our commitment to provide the best quality software to our customers. We look forward to continuing our contributions to this thriving community, and being a part of the exciting future of virtualization.”

Additional Resources

The post Xen Project Hypervisor 4.11 Brings Cleaner Architecture to Hypervisor Core Technologies appeared first on The Linux Foundation.

Source: Linux Foundation

Speak at Open FinTech Forum This Fall — See Already Confirmed Speakers

Open FinTech

Speak at Open FinTech Forum, coming up this fall in New York.

Focusing on the intersection of financial services and open source, Open FinTech Forum will provide CIOs and senior technologists guidance on building internal open source programs and an in-depth look at cutting edge open source technologies including AI, Blockchain, Cloud Native & Kubernetes/Containers, Quantum Computing that can be leveraged to drive efficiencies and flexibility.

The call for speaking proposals is open through July 21st. If you are interested in sharing your experience with this audience, we’d like to hear from you. We’re looking for talks including project roadmaps from key community developers to use cases from those IT professionals in financial services or related verticals on their open source implementations.

Learn more about the CFP process, see a full list of suggested topics and submit by July 21.

Submit Now >>

Sign up to receive updates on Open FinTech Forum, happening October 10-11 in New York:

Already confirmed Open FinTech Forum 2018 speakers include:

  • Chris Aniszczyk, CTO/COO, Cloud Native Computing Foundation and Co-Founder, TODO Group
  • Brian Behlendorf, Executive Director, Hyperledger
  • Karen Copenhaver, Leading IP Strategist
  • Ibrahim Haddad, Vice President of R&D at Samsung Electronics
  • Keith Laban, Software Engineer, Bloomberg
  • Yuri Litvinovich, Senior Cloud Engineer, Scotia Bank
  • Ania Musial, Senior Software Engineer, Machine Learning Platform, Bloomberg
  • Rob Paladnick, Managing Director and Chief Technology Architect, DTCC
  • Jason Poley, Distinguished Engineer/VP Cloud Architect, Barclays
  • Justin Rackliffe, Director, Open Source Governance at Fidelity Investments
  • Kate Stewart, Senior Director of Strategic Projects, The Linux Foundation

The full schedule of sessions will be announced in August along with additional keynote speakers.

Not interesting in speaking, but thinking of attending?

Open FinTech Forum will better inform IT decision makers about the open technologies driving digital transformation, and how to best utilize an open source strategy and implementation to enable new products, services and capabilities, increase IT efficiencies, establish and strengthen internal license compliance programs, and attract top level talent and train existing talent on the latest disruptive technologies. Register now to attend.

Register Now>>

Linux Foundation members and LF project members receive a 20% discount on registration pricing. FinTech CIOs and senior technologists may receive a 50% discount on registration fees.

Email events@linuxfoundation.org for discount codes.

The post Speak at Open FinTech Forum This Fall — See Already Confirmed Speakers appeared first on The Linux Foundation.

Source: Linux Foundation

OpenSDS Aruba Release Unifies SDS Control for Kubernetes and OpenStack


OpenSDS Aruba unifies storage control for Kubernetes and OpenStack in a single storage platform, offering end-users data replication using host-based or storage-based replication

SAN FRANCISCO – July 6, 2018 –The OpenSDS community has announced the release of Aruba, the first version of its open source software for SDS control. Featuring improved ease of use and a new GUI, OpenSDS Aruba added support for Kubernetes and OpenStack, enabling storage to be provisioned and managed for both containers and cloud with a single storage controller. The new OpenSDS dashboard enhances the user experience for both administrators and service users.

Remote data replication is one of the most requested features in OpenSDS, and Aruba delivers both host-based as well as storage-based replication. Host-based replication uses DRBD, an open source high-availability data replication technology contributed by Linbit, which joined OpenSDS recently. Storage-based replication leverages the data replication capabilities of storage systems; the initial reference implementation is based on Huawei Dorado V3 All-Flash Storage System, which offers an active-active solution for mission critical applications.

“The OpenSDS community is focused on making storage work better for users. This is clearly evident in the Aruba release, which offers ease of use with its intuitive dashboard and support for Kubernetes and OpenStack environments,” said Steven Tan, OpenSDS TSC Chairman, and Vice President & CTO of Cloud Storage Solution at Huawei. “Aruba gives users a taste of how OpenSDS empowers cloud and container environments with advanced data storage technologies such as host-based and storage-based data replication.”

“OpenSDS brings policy based, self-service storage provisioning and orchestration, not only ideal for cloud native applications, but also well-suited to traditional datacenters and clouds. We are continuously working with various large customers to identify their pain points and address them in an open manner,” said Rakesh Jain, Vice-Chair of the OpenSDS TSC, and Senior Architect and Researcher at IBM. “The Aruba release is a big step in this direction. We are well on our way to execute on the published roadmap to make storage as pain free as possible, in coordination with other open source projects.”

“Our private cloud system is getting bigger and bigger as our business continues to grow. We believe OpenSDS will help us reduce storage complexity and achieve our goal,” said Yusuke Sato, Storage Architect at Yahoo! JAPAN. “We welcome the release of OpenSDS Aruba, which is a first step in enabling our cloud storage platform to integrate and manage large amounts of data in our infrastructure. We expect that more and more vendors and users will join OpenSDS and the community will continue to evolve.”

“The Aruba release includes an initial implementation of multi-tenant and open storage provisioning functions that can work in conjunction with OpenStack/Kubernetes, which is essential for supporting our customers’ various use cases,” said Shoichiro Henmi, Director of Storage Infrastructure of Technology Development at NTT Communications. “I expect more and more application developers, cloud service providers and storage vendors will get involved in the OpenSDS project.”

An international community, comprising storage vendors and users, contributed to OpenSDS Aruba. The current release reflects the real-life requirements of the core members of the OpenSDS EUAC (End-User Advisory Committee). Arubais available for testing immediately.

About the OpenSDS Community

OpenSDS is the world’s first open-source community focused on software-defined storage. It is dedicated to providing unified SDS controller framework and APIs for cross-cloud workloads. OpenSDS is supported by a number of leading storage vendors and carriers including Huawei, IBM, Hitachi, Dell-EMC, Fujitsu, Western Digital, Vodafone, Yahoo! Japan, and NTT Communications. The OpenSDS community welcomes anyone who is interested in helping to build the open standard for software-defined storage. It embraces suggestions and proposals from members and developers, who are helping to build comprehensive SDS solutions and API standards.

For more information, visit https://www.opensds.io/ and https://github.com/opensds/.

 

The post OpenSDS Aruba Release Unifies SDS Control for Kubernetes and OpenStack appeared first on The Linux Foundation.

Source: Linux Foundation

Join Forces Against Natural Disasters with the Call for Code

Call for Code

Answer the Call for Code. (Image: developerWorks TV)

The Call for Code initiative aims to harness the collective power of the global open source developer community against the growing threat of natural disasters. According to IBM, “the goal is to develop technology solutions that significantly improve disaster preparedness, provide relief from devastation caused by fires, floods, hurricanes, tsunamis and earthquakes, and benefit Call for Code’s charitable partners — the United Nations Human Rights Office and the American Red Cross.”

In a recent webcast — How 22M Developers Take on Disaster Preparedness — Mary Glackin, SVP of Science & Forecast at The Weather Company and IBM Business, spoke with representatives from participating organizations about the initiative and some of the specific goals it aims to achieve.

The Call for Code is “encouraging the global community of developers to stand up for the rights of others,” said Laurent Sauveur, Chief of External Relations, UN Human Rights.   

“It’s an exciting cause and it’s a meaningful one,” said Trishan de Lanerolle, Program Manager, Networking at The Linux Foundation, which will host the code developed through this initiative.

Additionally, Linus Torvalds, the creator of Linux and Git, will join a panel of technologists to evaluate submissions. Once complete, the winning solution will be deployed in the real world. Angel Diaz, VP Developer, IBM, explained that The Linux Foundation will host the code under the Apache 2.0 license, which will allow the code to evolve and improve even beyond the scope of this contest.

Practical Solutions

“Technology can be a wonderful and very powerful force for good,” said Sauveur, and it can improve things like tracking of aid delivery and communication in crisis situations to help pinpoint areas of need.

Getting people what they need, when they need it, and where they need it to alleviate suffering is key, said Brad Kieserman, Vice President of Disaster Cycle Services American Red Cross. And, the science of where is critical: where is the damage, where are the resources, where do they need to be?

Predictive analytics are at the center of this practice, said Kieserman, to help visualize data relating to the movement of people and resources.  “As models of service delivery improve, we can better understand the need and increase efficiency.”

Ben Narasin, Venture Partner, New Enterprise Associates offered tips for approaching the development challenge. When building such solutions, he said, it’s important to consider scale.  You need an idea that can scale, you need to build code that can scale, and you need to look at building a team that can scale.

“You cannot look at this from the perspective of ‘I have a cool technology that I want to deploy that will solve this problem.’” said de Lanerolle. “You have to think about your product being used in resource-poor environments.” For example, you have to consider things like connectivity and battery life and how to get your data at the end of the day. Such last mile challenges are critical, but open source can help.

Don’t reinvent the wheel, said de Lanerolle. “Take the opportunity to look at what’s out there.” He suggests looking at “existing technologies that are backed by open source projects where you can build resources that are available for everybody rather than just building out a one-time solution.”

Commit to the Cause

If you’re a coder, sign up, and if you’re interested, spread the word, said Glackin. “We can all be involved. Let’s all answer the call for code and make a difference in the world.”

We invite you to amplify the initiative and join the call. You can learn more about the Call for Code and watch the complete webcast here: http://ibm.biz/BdYxHZ.

The post Join Forces Against Natural Disasters with the Call for Code appeared first on The Linux Foundation.

Source: Linux Foundation