Technology Components

Silicon Cloud Technology Components Overview

Silicon Cloud™s technology has been designed from the ground up to optimally provide solutions for scientific and engineering applications requiring high performance computing and security. The technology includes three primary components:

techcomp1

Silicon Cloud Technology Components Features

Each user is issued a Smart Virtual Client (SVC). An SVC in its simplest form is a Chromebox, running a customized Chrome Operating System (OS). The SVC provides a 4-way user authentication process.

  • ▪Username & password
  • ▪Physical device for one-time password generation
  • ▪A specific SVC’s access address. Each SVC device is authenticated by the system.
  • ▪A trusted boot process for each SVC. Each SVC’s OS signature is authenticated by the system.

For IC design applications, the entire design infrastructure (design data, design tools, design flows, PDK) resides in the cloud. No design data resides on the user’s local computers. The cloud is not used to provide excess capacity, but rather for the entirety of the design process. There is no design data transfer between the user’s local computers and the remote cloud servers, so Internet bandwidth between the user’s local machines and the remote cloud becomes a non-issue. Downloading and uploading are virtually eliminated.

The authorized user will access Silicon Cloud’s system through a SSL (https://) Web 2.0, HTML5 browser application. The user interface provides standard navigation and a stable foundation for graphical navigation through the portal network of dashboards. Similar to the traditional IC design environment, the project manager initially defines and sets up a project and authorized users. The users define and launch Virtual Machines and open Virtual Desktops for parallel batch and interactive design tasks.

techcomp2

Silicon Cloud User Interface Dashboard  

In spite of the significant scaling and flexibility advantages of Virtual Machines (VM), so far, their penetration into scientific and engineering applications has been limited. This has been driven by the inability of traditional virtual machines to replicate the performance of pre-configured machines for applications that require fast VM provisioning, high IOPs, and ultra-scale memory requirements. HiPerCube™ is the basic unit of Silicon Cloud’s scalable cloud system. HiPerCube™ is a fully virtualized cloud computing system designed for high performance engineering workflow applications based on Cisco’s Unified Computing System (UCS) and Silicon Cloud’s Workflow-as-a-Service (WFaaS) platform. HiPerCube™ is optimally designed for semiconductor design tasks and similar applications requiring high performance computing and security. HiPerCube™ includes the following advanced cloud computing components:

  • ▪Lightweight and secure Operating System (OS) level virtualization with no virtualization overhead
  • ▪Docker containers with Linux branded zones, allowing applications with different OS to run on the same system
  • ▪Sub-second, high performance VM provisioning
  • ▪Local (non-SAN) VM compute storage
  • ▪Ultra high reliability and performance with ZFS storage architecture
  • ▪Block and object storage (traditional S3 API)
  • ▪Map-Reduced storage
  • ▪Ultra-scale memory VMs (256GB, 512GB, or larger)
  • ▪Integrated Workflow-as-a-Service (WFaaS)
  • ▪Security isolation between VMs is achieved via Role-based-Access-Control (RBAC)
  • ▪Single-vendor hardware stack simplify the complexity of setting up, configuring, and maintaining the system

The HiPerCube™ system provides scalability for both VM provisioning and memory depth along with application flexibility, unmatched VM security isolation, lower cost of operation, and ultra-reliable storage architecture for engineering & HPC users. HiPerCube™ configurations ar ane optimized virtualization platform for compute intensive applications such as semiconductor design, IoT sensor design, FPGA design, multi-physics simulation, bio-medical engineering, mechanical modeling, and CAD design. HiPerCube™ systems have been operational in Singapore and North Carolina, U.S. and are currently providing design workflows for semiconductor and IoT designs. Silicon Cloud provides pay-per-use turn-key workflows as well as establishing cloud infrastructures for customers.

hipercube

Silicon Cloud HiPerCube™ Infrastructure 

Silicon Cloud’s core technology has been designed for scientific and engineering applications requiring high performance computing and security. Silicon Cloud has a novel and unique security and data protection technology based on the following components:

  • ▪Secure and controlled clients, as described in Section 2.
  • ▪Virtual Private Machines (VPM). The user creates, owns, and exclusively uses the computing machines. No other user can see or use other users’ machines. The security for virtualization is achieved through complete software stack isolation with resilient recovery for VMs.
  • ▪Encrypted design data. Only the user has the key, even Silicon Cloud employees are unable to decrypt users’ data.

Additionally, the application layer in Silicon Cloud’s system is comprised of two major components which establish the foundational components of security and data protection at the workflow level.

  • ▪WorkFlow-as-a-Service (WFaaS) provides control, direction, execution, and construction service for Integrated Circuit (IC) design methodologies.
  • ▪Digital-Rights-Management-as-a-Service (DRMaaS) provides inter-organizational access management for semiconductor IP provisioning, enablement, workflow integration, and life cycle management.

Depending on each user’s role and usage model, specific access privileges are granted. Each user will have an exclusive work area with specific privileges to access manufacturing data, EDA design tools, design data, and computing resources (Role Bases Access Control RBAC). RBAC is implemented at several levels of granularity.

  • ▪Unique access privileges for each user
  • ▪Common access privileges for a group of users in a project
  • ▪Unique access privileges for eco-system partners