Google: DRAM error rates vastly higher than previously thought

A study released this week by Google Inc. and the University of Toronto showed that data error rates on DRAM memory modules are vastly higher than previously thought and may be more responsible for system shutdowns and service interruptions. About a third of all machines in the fleet experience at least one memory error per year, and the average number of correctable errors per year is over 22,000," the report states. "These numbers vary across platforms, with some platforms seeing nearly 50% of their machines affected by correctable errors, while in others only 12%-27% are affected." The median number of errors per year on a Google server that had at least one error ranged from 25 to 611. A memory error is marked by bits being read differently from how they were originally written. The study ( download .pdf ), which used tens of thousands of Google's servers, showed that about 8.2% of all dual in-line memory modules (DIMM) are affected by correctable errors and that an average DIMM experiences about 3,700 correctable errors per year. "Our first observation is that memory errors are not rare events.

Memory errors can be caused by electrical or magnetic interference or by hardware corruption. Soft errors are often caused by radiation or alpha particles, which naturally occur in organic materials, including the epoxy that DRAM chips come packed in. Memory errors are classified as soft errors, which randomly corrupt bits but do not leave physical damage and can be corrected, and hard errors, which corrupt bits (cells) within the DRAM that become a physical defect that repeats data errors. Hard errors are most often caused by chip contamination at the manufacturing facility, but they often don't show up in testing and only surface after the memory chip warms after hours of use, according to Jim Handy, an analyst with Objective Analysis in Los Gatos, Calif. ECC on special chips is used to detect and correct errors introduced during data storage or transmission. The Google/University of Toronto study included memory from multiple vendors as well as multiple types of DRAM (dynamic random access memory), such as DDR1, DDR2 and FB-DIMM. The study covered the majority of servers in Google's data centers and was conducted over two-and-a-half years, from January 2006 to June 2008. While the study focused on servers and stated that error rates are not climbing with the latest, more dense generations of DRAM, the results show that PCs will eventually need error correction codes (ECC) technology as the size of memory chips become more and more dense, Handy said.

Today, DRAM uses 50 nanometer lithography technology but is migrating to 40 nanometer technology. For example, while a server with error correction technology can continue to function after a soft error, a PC would need to be rebooted. The smaller the bits, the more susceptible they are to soft errors due to normal levels of radiation, Handy said. A hard error would also be corrected each time a processor attempted to read from a bit on a server card, but the DRAM in a PC, because it has no error correction, would need to be replaced because it would cause a system or application using the memory to crash, Handy said. "The study shows hard errors are more common than soft. Handy said such problems often result in system downtime and service outages.

That means modules are running and running and running in servers and every time a hard error bit is encountered, it's corrected so the memory module never gets replaced," Handy said. "If that happened to a PC user, the machine would stop working." If an error is uncorrectable, as in the case of multiple bits exceeding the limit of what the ECC can correct, a server will shut down. "In many production environments, including ours, a single uncorrectable error is considered serious enough to replace the dual in-line memory module that caused it," the Google report read. The study states that memory errors are expensive in terms of the system failures they cause and the repair costs associated with them. They can also open the door to security problems. "In production sites running large-scale systems, memory component replacements rank near the top of component replacements and memory errors are one of the most common hardware problems to lead to machine crashes," the report stated. "Moreover, recent work shows that memory errors can cause security vulnerabilities."

Compuware to acquire Gomez for $295 million

Compuware today announced it has signed a definitive agreement to acquire Web application performance management vendor Gomez for $295 million.  Hottest tech M&A deals of 2009 The deal, expected to close in November, will augment Compuware's IT management software suite with Gomez's technology, which is designed to monitor and manage Web site and Web application performance. Executives from both companies point to complementary products and existing product integrations as a driver for the pending acquisition. "Together, Compuware and Gomez provide the industry's only unified application performance management solution, spanning the enterprise and Internet," said Compuware President and COO Bob Paul, in a press release. "For business and IT executives who are moving more business-critical applications onto the Internet, Compuware can now offer unified visibility, isolation and resolution of application performance problems from the data center to the customer. Gomez's 272 worldwide employees and management team, headquartered in Lexington, Mass., are expected to join Compuware, which is based in Detroit, after the close of the transaction. Competitive offerings only cover isolated portions of the enterprise-Internet application delivery chain." Gomez executives say the deal will ultimately benefit the vendor's existing customers. "This agreement marks a fundamental breakthrough in how IT and business leaders can manage the performance of all the applications that drive their businesses," said Jaime Ellertson, Gomez CEO and president, in a statement. "The complementary nature of our products and our already-existing product integration will allow Compuware and Gomez to rapidly deliver dramatically extended value to our mutual customers." Compuware will be able to add Gomez's software-as-a-service business model to its own growing SaaS revenue, and Gomez will benefit from Compuware's research and development group, larger sales organization and geographic reach, company executives say.

Follow me on Twitter. Do you Tweet?

Internet battlefield program marshals NATO forces

Getting military forces from different nations to work together in Afghanistan is no easy task, but before multinational troops with the North Atlantic Treaty Organization arrive there, officers and others are often trained through an online Battle Labs computer simulation via the Internet. The realistic interactive computer simulation, which can even create avatars of personnel, helps bring together hundreds of NATO staff who work in Afghanistan under the command of U.S. Gen. The advanced online computer-simulation training, supported on a secure network hubbed through a classified link in Poland, gives participants a way to train in their own country before they arrive on the ground in Afghanistan.

Stanley McChrystal, says Rear Admiral Christian Canova, the French Navy officer who is deputy assistant chief of staff for future capabilities, research and technology at the NATO headquarters Allied Command Transformation. Canova, who works with a dozen experts in various areas of research and technology to plan for future capabilities in NATO, thinks this era in some ways is proving more difficult than the long Cold War era, when NATO served mainly as a bulwark against Soviet Union expansionism. "The Cold War threat was stable, the political guidance was stable," says Canova, who as a French naval officer spent 10 years in Combat Information Centres onboard destroyers involved in NATO operations and exercises during the Cold War and was eventually named a French liaison to NATO. He notes "the resources were high and the technology factor was mandatory," and industry responded with ever-newer high-tech advancements. The 10 Worst Video Game Systems of All Time The modeling and simulation through Battle Labs is just one way that networking and modern computer technologies are put to good use at NATO, the intergovernmental military alliance formed after World War II that counts more than two dozen nations as members. Today, the world is different, embroiled in an economic crisis  that has led to shrinking budgets, and "the threats are diverse, there are regional conflicts," Canova says. Military forces of nations are far more likely to acquire software off the shelf, but there are still significant obstacles in terms of interoperability when NATO has to grapple with. This all contributes to what can seen as a more unstable environment for NATO to confront.

There's a need for greater interoperability in collecting and sharing intelligence assets collected by unmanned aerial vehicles, for example, Canova says, but NATO can't dictate to its membership what to do. "NATO cannot be prescriptive in asking countries to invest in specific technologies," Canova says. In addition, modeling and simulation games are playing an increasingly important role in tactical training, and the NATO looks to input from academia on how to improve them. But for Canova and his group in NATO's Future Capabilities Research and Technology arm, it's easy to envision a wish list where industry would focus on coming up with more powerful force-protection technologies, friend-foe systems and ruggedized and secure networking technologies for use in remote locations.

FBI says trio of terrorism e-mails are scams

The FBI today warned that three separate e-mails making the rounds that promise access to FBI terrorism reports are nothing more than malicious software looking to steal your personal information. Fraudulent e-mails containing the subject line "New DHS Report" have been circulating since August 15, 2009. The e-mails claim to be from the Department of Homeland Security (DHS) and the FBI Counterterrorism Division. Network World Extra: 12 changes that would give US cybersecurity a much needed kick in the pants The three scam-mails are: • Fraudulent e-mail claiming to be from Department of Homeland Security and the FBI Counterterrorism Division.

The e-mail text contains information about "New Usama Bin Ladin Speech Directed to the People of Europe," and has an attachment titled "audio.exe." The attachment is purportedly an audio speech from Bin Ladin; however, it actually contains malicious software intended to steal information from the recipient's system. • Fraudulent e-mail message claiming to contain a confidential FBI report titled "New Patterns in Al-Qaeda Financing" has been circulating since August 15, 2009. The e-mail has the subject line "Intelligence Bulletin No. 267," and contains an attachment titled "bulletin.exe." This message, or similar messages, may contain files that are harmful to the recipient's system and may try to steal user credentials. • A fraudulent e-mail, initially appearing around June 16, 2009, claims to contain a confidential FBI report from the FBI "Weapons of Mass Destruction Directorate." The subject line of the email is "RE: Weapons of Mass Destruction Directorate," and contains an attachment "reports.exe". This message and similar messages may contain a file related to the "W32.Waledac" trojan software, which is designed to steal user authentication credentials or send spam messages. Such bulletins shall not be released, either in written or oral form, to the media, the general public, or other personnel who do not have a valid need-to-know without prior approval from an authorized FBI official, as such release could jeopardize national security. Below is an example of the fraudulent e-mail message: CLASSIFIEDFEDERAL BUREAU OF INVESTIGATIONINTELLIGENCE BULLETINWeapons of Mass Destruction DirectorateHANDLING NOTICE: Recipients are reminded that FBI Intelligence Bulletins contain sensitive terrorism and counterterrorism information meant for use primarily within the law enforcement and homeland security communities. Link to malicious software (report.exe) The malware warning comes on the heels of an FBI report that fraudsters are targeting social networking sites with increased frequency and users need to take precautions. One involves the use of spam to promote phishing sites, claiming there has been a violation of the terms of agreement or some other type of issue which needs to be resolved.

The FBI said scammers continue to hijack accounts on social networking sites and spread malicious software by using various techniques. Other spam entices users to download an application or view a video. Once the user responds to the phishing site, downloads the application, or clicks on the video link, their computer, telephone or other digital device becomes infected, the FBI stated. Some spam appears to be sent from users' "friends", giving the perception of being legitimate. Another fraudster favorite involves applications advertised on social networking sites, which appear legitimate; however, some of these applications install malicious code or rogue anti-virus software, the FBI stated.

DoD: open source as good as proprietary software

The Department of Defense Tuesday clarified its stance on open source software saying it is equal to commercial software in almost all cases and by law should be considered by the agency when making technology purchase decisions. It was issued by David Wennergren, deputy CIO of the U.S. Department of Defense (DoD). In terms of guidance, the memo said OSS meets the definition of "commercial computer software" and that executive agencies are required to include open source when evaluating software that meets their computing needs. The memo was not a policy statement but instead a clarification and guidance on the use of open source software (OSS) within the agency. Top 10 Open Source Hall of Famers In addition, the memo lays out a list of open source positives, including broad peer-review that helps eliminate defects, modification rights that help speed changes when needed, a reduction in the reliance on proprietary vendors, a licensing model that facilitates quick provisioning, cost reduction in some cases, reduction in maintenance and ownership costs, and favorable characteristics for rapid prototyping and experimentation. "I would consider this a milestone day" said John Scott, director of open source software and open integration for Mercury Federal Systems, a technology consultancy to the U.S. government.

But it is not just about usage, it is also about helping create [OSS] by submitting changes back out to the public." Scott says he believes this is the first time guidance has been issued about sharing the government's own open source changes with the public. Scott helped draft some of the open source guidance contained in the memo, which took about 18 months to draft. "The [2003] policy study was OK to use, but this one goes a bit further in expanding on what open source is and why you would want to use it. The memo, an update to a 2003 DoD open source directive, clarified the use of sharing code saying there is a misconception within the agency that modifications must be released to the public. "In contrast, many open source licenses permit the user to modify OSS for internal use without being obligated to distribute source code to the public," the memo says. On the other hand, the DoD says code fixes and enhancements developed for the government should be released to the public, but only under certain conditions, such as the absence of export or other federal restrictions. It goes on to advise users to understand distribution requirements for open source licenses and mentions the GNU General Public License and its specific distribution rules.

The memo also makes a distinction between freeware and open source software, which previously was the source of confusion and debate within the agency, Scott said. In fact, Scott says from one-third to one-half of the software used inside the DoD is open source. The DoD already has open source running as part of classified and unclassified systems. The memo defines OSS as "software for which the human-readable source code is available for use, study, reuse, modification, enhancement, and redistribution by the users of that software." The DoD memo comes on the heels of the Obama Administration selecting Drupal to power its whitehouse.gov Web site Follow John on Twitter: twitter.com/johnfontana

Microsoft adds app, data marketplace to Windows Azure

Microsoft Corp. said on Tuesday that its upcoming Windows Azure cloud computing platform will come with marketplaces for both online apps built to run on Azure as well as datasets that companies can use to build their own apps. PinPoint will compete with Salesforce.com Inc.'s 4-year-old AppExchange online marketplace and other more recently-emerging app stores. PinPoint.com will host business-oriented apps developed by Microsoft partners, chief software architect Ray Ozzie said during a keynote speech at Microsoft's Professional Developers Conference 2009 (PDC09) in Los Angeles. Azure will also host "an open catalog and marketplace for public and commercial data" codenamed Dallas , Ozzie said.

Dallas is now in Commercial Technical Preview. Developers can use the data to build their own services and mashups. Microsoft is also bolstering Azure with management tools for developers running .Net apps on-premises and with Azure that are less sexy, but arguably more essential. Azure will be hosted at three pairs of data centers: Chicago and San Antonio for North America, Dublin and Amsterdam for Europe, and Singapore and Hong Kong for Asia. Windows Azure, meanwhile, will officially go into production on January 1, but customers won't be billed until February 1, Ozzie said.

Azure will compete with Salesforce, Amazon.com and many other cloud platform providers. This vision of "three screens and the cloud" will allow developers to build apps that can be reused and delivered via the cloud (Windows Azure), on-premises server (Windows Server) or desktop (Windows 7), depending on what is most convenient or offers the best performance, Ozzie said. "When it comes to the cloud, bet on Windows," he said. The key difference is that Azure, rather than dumping the desktop entirely for the Web, keeps the Windows operating system in the equation. To demonstrate how far Windows Azure has come, Microsoft enlisted the aid of some traditional antagonists: Silicon Valley startups and the federal government. Another San Franciso startup, Seesmic, is building a Twitter app running on Windows using Microsoft's Silverlight rich media player, said CEO Loic LeMeur.

San Francisco-based Automattic Inc. is using Azure to host parts of its popular Wordpress blogging platform, said founder Matt Mullenweg. NASA is releasing 3D imagery from the Mars rover vehicle for free to the general public via the Dallas data feed. He likened the potential "explosion" of apps to the one that followed after the U.S. government liberalized the availability of GPS data. Federal CIO Vivek Kundra said the government plans to accelerate the release of more data to the public. To demonstrate that Azure can scale to needs, Microsoft's president of its Server & Tools Division, Bob Muglia, cited its Bing search app, which runs on more than 100,000 servers. Sydney will go into beta next year.

Muglia also announced Project Sydney, which will allow companies to connect their own servers to Azure-based services. Finally, Muglia announced a beta of an application server for Windows Server called AppFabric. It includes features from the Dublin app server and the Velocity caching technology. AppFabric will help developers manage both on-premises servers and Azure cloud-based services. AppFabric will go into beta next year.

Microsoft touts groundbreaking 'clip-on' for Active Directory

LOS ANGELES - Microsoft will pass out beta code Wednesday it hopes will define the next evolution of directories. The code is so early-stage it does not have an official name, although internally Microsoft calls it Next Generation Active Directory (NGAD). Microsoft introduced NGAD, which it calls a directory federation technology, on the second day of its annual Professional Developers Conference going on this week. It's a modular add-on that is built on a database and designed to add querying capabilities and performance never before possible in a directory. Microsoft sets Windows Azure production date NGAD, however, is not a replacement for Active Directory but a "clip-on" that provides developers a single programming API for building access controls into applications that can run either internally, on devices or on Microsoft's Azure cloud operating system.

NGAD stores directory data in an SQL-based database and utilizes its table structure and query capabilities to express claims about users such as "I am over 21" or "Henry is my manager." To ensure security, each claim is signed by an issuing source, such as a company, and the signatures stay with the claim no matter where it is stored. "You can answer questions in your directory that are currently impossible to even ask," says Kim Cameron, identity architect at Microsoft. "You can find out who had access to a file last September." He says NGAD is a reshaping of the programming model for Active Directory. Users will not have to alter their existing directories but will have to option to replicate data to NGAD instances. In addition, the directory design means multitudes of new cloud or other applications won't be hammering the central Active Directory architecture with lookup requests and administrators don't have to perform often tricky updates to directory schema to support those new applications. "I don't want to do anything to let anybody think that I am going to diddle with Active Directory infrastructure, yet I want to leverage the infrastructure," Cameron says. Instead, users have multiple NGADs deployed to support specific cloud, internal or device-based applications. "From the point of view of AD these would look like domain controllers, but you could do these magic queries," Cameron says. "I could say who are all the people who report up to Microsoft CEO Steve Ballmer; in AD that query would take hours." The most unique characteristic of NGAD is its SQL database foundation. The intent is to create a "logical directory" that shares architecture elements such as schema and APIs but is not one monolithic identity store. It includes an SQL-based "Repository", a central management database for application metadata that includes an identity deployment model.

Identity and a System. NGAD also introduces a schema called System. Identity API. The API exposes the schema to developers through LINQ. The directory also incorporates the "M" modeling language. Identity schema has been available in Microsoft's Oslo CTP but the API is new. The System. As an add-on NGAD is similar in concept to Active Directory Federation Services, a module for sharing authentication, and Active Directory Application Mode (ADAM), which will eventually give way to NGAD. NGAD lets users create complex relationships among the data it stores such as friends, colleagues, roles, management chains, service assignments and machine sets.

Another evolutionary element is support for the newest Web technologies such as RSS and REST to create a connection between instances of NGAD and an application or service. Those relationships can be used to create detailed claims that govern access control Currently, AD's only relationship construct is "group." "In a directory there isn't the ability to do the kinds of relationships that you can do even in the world's worst database,"Cameron says. For example, an application could subscribe to an NGAD instance via RSS and receive updates to the claims data it stores. "We are taking what we learned with LDAP generation directories and adding a kind of self-knowledge. He says NGAD is in the very early stages and "there are still some really hard problems to solve." Microsoft's goal at PDC is to talk directly to developers, get them to look at the API, let them figure out how the new schema works and then listen to their feedback. "We want to be open with what we are doing and have a relationship with the industry and lay it all out there," says Cameron, who over the past years has championed an industry-wide effort to create a standard framework around identity. The system knows how to update the data," Cameron says.

He says this new effort won't be Microsoft centric and that his hope is for another standards-based industry push to define the technology. As Microsoft builds out its story around the cloud-based Azure platform, NGAD is one of the foundational elements developers can take advantage of for access control. NGAD is the next step in Microsoft's claims-based Identity MetaSystem strategy, which began in 2005 and defines a distributed identity architecture for multi-vendor platforms. Microsoft did not lay out a timeframe for the NGAD directory add-on, but if it follows previous directory innovations by the company it could be released as a stand-alone product or baked into the next version of Windows. Follow John Fontana on Twitter: twitter.com/johnfontana