[openstack-dev] a time-based resource management system

devdatta kulkarni devdatta.kulkarni at rackspace.com
Mon Dec 16 23:25:23 UTC 2013 

Hi Alan,

Looks like an interesting project.

Some questions/comments:

1) For resources, are you targeting only VMs, or is the scope going to include other resources
   as well (swift, load balancers, etc.)

2) Is the scope of reservation limited to time/duration or do you envision
   the scope to also include other kinds of contextual information (e.g. reserved capacity
   threshold), if any?

3) How are you currently specifying resource reservation policies?
   Are you using any specific policy specification framework for this purpose?

4) The details about mechanisms for session tracking and access revocation
   would be interesting to understand. The wiki page mentions there is a prototype 
   implementation, but I did not find a link. Is there anything that you can share?

5) In the implementation section, you mention that you are using roles and user access-list
   maintained by nova to control access. I was wondering if you considered Keystone
   to enforce time-based authorization policies of Cafe.

Good luck.

Thanks,
- Devdatta
 

-----Original Message-----
From: "Alan Tan" <yst1 at students.waikato.ac.nz>
Sent: Monday, December 16, 2013 4:41pm
To: openstack-dev at lists.openstack.org
Subject: [openstack-dev] a time-based resource management system

_______________________________________________
OpenStack-dev mailing list
OpenStack-dev at lists.openstack.org
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev
Hi everyone,

 

My name is Alan and I am from the Cyber Security Lab in University of
Waikato. 

 

We have recently started deploying and using Openstack in our experimental
private cloud testbed. The cloud testbed is mainly used in running our
research and teaching purposes. However, we notice that current Openstack
lacks the ability to control and manage user's access to resources in a
time-based manner. 

 

I.e. Current model for private clouds requires either the user to release
their resources (VMs) voluntarily or for the administrators to manually
remove the resources (VMs).

 

This makes capacity management a laborious effort in private clouds that
have a large user base. Hence, we have come up with the idea of an automatic
time-based resource management system that manages user access to resources
in a time slot booking style. We have detailed our plans and design in the
following wiki page. We would love to hear feedbacks from the community and
hopefully gather some interest in our project.

 

 <https://wiki.openstack.org/wiki/Cafe> https://wiki.openstack.org/wiki/Cafe

 

We look forward to hearing from you. We can be contacted via email. Our
addresses are listed on the wiki page. 

 

Thanks and have a good day.

 

Cheers,

Alan

More information about the OpenStack-dev mailing list