Kategorie: Google Cloud Platform

Now you can train TensorFlow machine learning models faster and at lower cost on Cloud TPU Pods

Data scientists, machine learning (ML) engineers, and ML researchers can’t be maximally productive if they have to wait days or weeks for their model training runs to complete.The MLPerf benchmarking effort measures the time it takes for common ML problems to train to a given accuracy, and we contributed both GPU and TPU submissions to MLPerf 0.5, the initial version of this industry-wide benchmark contest. However, real-world ML challenges are much larger than the current MLPerf training tasks, so MLPerf does not yet reflect the systems’ performance on very large problems.As a case study that we believe is more representative of ML training performance in larger-scale settings, we train ResNet-50 v1.5, one of the MLPerf models, on the well-known ImageNet image classification dataset, but we focus on the steady-state training performance observed when processing a much larger collection of images. We have seen broadly similar scaling performance in other ML application domains, including machine translation, speech recognition, language modeling, GAN training, reinforcement learning, etc.Performance comparisonGCP provides a full spectrum of machine learning accelerators, and here we focus on Cloud TPU Pods and on Google Cloud VMs with NVIDIA Tesla V100 GPUs attached. Cloud TPU Pods, now available in alpha, are tightly-coupled supercomputers built with hundreds of Google’s custom Tensor Processing Unit (TPU) chips and dozens of host machines, all linked via an ultrafast custom interconnect.To ensure that anyone can fully reproduce the results described below today, we use well-optimized, open-source TensorFlow 1.12 implementations of ResNet-50 v1.5 (GPU version, TPU version). To simulate a larger-scale ML training scenario (imagine eBay training on tens or hundreds of millions of product images), we run a warm-up epoch on both the GPU and TPU systems before starting our measurements; this excludes one-time setup costs and evaluation costs and ensures that caches are fully filled. All of the systems shown train ResNet-50 to the same quality score of 76% top-1 accuracy. Further details are available on our methodology page.Our results demonstrate that Cloud TPU Pods deliver near-linear speedups for this large-scale training task; the largest Cloud TPU Pod configuration tested (256 chips) delivers a 200X speedup over an individual V100 GPU (see chart below). So instead of waiting for more than 26 hours if you used a single state-of-the-art GPU, a full Cloud TPU v2 pod delivers the same result in 7.9 minutes of training time.Cost comparisonReducing the cost of ML training enables a broader group of ML practitioners to explore a wider range of model architectures and hyperparameters and to train cutting-edge ML models on larger, more representative datasets. As shown below, training ResNet-50 on a full Cloud TPU v2 Pod costs almost 40% less than training the same model to the same accuracy on an n1-standard-64 Google Cloud VM with eight V100 GPUs attached. On top of those savings, the full Cloud TPU Pod completes the training task 27 times faster.Qualitative takeawaysCloud TPUs were designed from the ground up for machine learning. Cloud TPUs excel at synchronous training, which makes it much easier to reproduce results during model development, and the Cloud TPU software stack transparently distributes ML models across multiple TPU devices in a Cloud TPU Pod to help you scale. Furthermore, all Cloud TPUs are integrated with Google Cloud’s high-speed storage systems to ensure that data input pipelines can keep up with the TPUs. There’s no need to manage parameter servers, deal with complicated custom networking configurations, or set up exotic storage systems to achieve unparalleled training performance in the cloud. The same code that runs on a single Cloud TPU can run on a full pod or on mid-sized “slices” in between.Cloud TPU Pods take us one step closer to our goal of making high-performance machine learning more interactive and accessible for everyone. You can iterate in minutes and train ultralarge production models in hours or days instead of weeks. As a result, Cloud TPUs make it easier, faster, and more cost-effective to develop and deploy cutting-edge machine learning models.Getting startedYou can get started with Cloud TPUs by following our quickstart guide, and you can also request access to the Cloud TPU Pods that are available in alpha today. For more guidance on determining whether to try out an individual Cloud TPU or an entire Cloud TPU Pod, check out our documentation here.
Quelle: Google Cloud Platform

MLPerf benchmark establishes that Google Cloud offers the most accessible scale for machine learning training

Today marks the debut of the MLPerf 0.5 benchmark results. These tests have been designed, adopted, and promoted by many industry leaders, and the results show Google Cloud’s TPUs (Tensor Processing Units) and TPU Pods as leading systems for training machine learning models at scale, based on competitive performance across several MLPerf tests. Google Cloud customers can easily use Cloud TPUs at accessible prices today.MLPerf benchmarks measure performance for training workloads across cloud providers and on-premise hardware platforms. MLPerf is designed to establish metrics that help you make informed decisions on how to choose the right infrastructure for your machine learning workloads. Google is a core contributor to the MLPerf benchmark suite, along with many other companies and academic institutions. Each organization conducts its own testing and submits its own results for publication, contributing to a broad survey of machine learning infrastructure available today.For data scientists, ML practitioners, and researchers, building on-premise GPU clusters for training is capital-intensive and time-consuming—it’s much simpler to access both GPU and TPU infrastructure on Google Cloud. We’re pleased to see that MLPerf benchmark results provide evidence that GCP offers the ideal platform to train machine learning models at any scale.Understanding the time-to-accuracy resultsIn our MLPerf submission, we benchmarked accelerators available on our Google Cloud infrastructure, with a focus on our latest Cloud TPUs (versions 2 and 3, both on GCP), and also on our state-of-the-art TPU v3 Pods. We submitted results for ResNet-50, an industry-standard image classification network; NMT, a neural machine translation model; and SSD, a single-shot object detector[1,2,3,4,5,6,7,8,9,10,11,12].The graphic below shows absolute training times, comparing NVIDIA’s best submitted results on a DGX-2 machine (containing 16 V100 GPUs) with results using 1/64th of a TPU v3 Pod (16 TPU v3 chips used for training). The comparison ranges across image classification (ResNet-50), object detection (SSD), and neural machine translation (NMT).Training time comparison between 1/64th of a TPU v3 Pod (16 TPU v3 chips used for training, plus four separate Cloud TPU v2 chips used for evaluation) [9,10,11] and an NVIDIA DGX-2 (16 V100 GPUs) [13,14,15]In summary, Google’s Cloud TPUs and TPU Pods deliver always-available, high-performance training across multiple workloads, ranging from image understanding to language translation. For example, it’s possible to achieve a 19% speed-up with a TPU v3 Pod on a chip-to-chip basis versus the current best-in-class on-premise system when tested on ResNet-501.Making high performance compute accessible to everyoneeBay has been using Cloud TPU Pods for months and has seen a massive reduction in training time:“An important ML task that took more than 40 days to run on our in-house systems completed in just four days on a fraction of a TPUv2 Pod, a 10X reduction in training time,” explains Shuai Zheng, eBay Research Scientist. “This is a game changer—the dramatic increase in training speed not only allows us to iterate faster but also allows us to avoid large up-front capital expenditures.”A full Google CloudTPU v2 Pod is able to achieve similar training times as NVIDIA’s largest-submitted-scale on-premise system consisting of 80 DGX-1s (11.3 min [9] vs. 6.3 min [16] respectively) on the ResNet-50 v1.5 image classification task using fewer than half the ML accelerator chips (256 versus 640).ConclusionCloud TPUs and TPU Pods excel at many machine learning training workloads, from image training to language translation. As machine learning continues to become more and more central to their businesses, enterprises are turning to the cloud for the high performance and low cost of training of ML models. The MLPerf results reveal a 19% TPU performance advantage on a chip-to-chip basis, and even greater speedups and cost savings are possible when working with more realistic ML production workloads. For a detailed analysis of performance and cost in a training scenario with much larger inputs than MLPerf uses, see our companion blog post.Head over to MLPerf.org for the full set of benchmark results. To find out more about Cloud TPUs, read our documentation. You can learn how to get started with individual Cloud TPUs (you can decide between v2 and v3here), or learn how to use Cloud TPUs via Cloud ML Enginehere, or try out Cloud TPUs for free right in your browser using a Colab notebook here.Cloud TPUv2 Pods are currently available in alpha. If you’re interested in using Cloud TPU Pods, you can request access here.1. 19% speedup with a 16-chip TPU v3 system compared to the 16-chip DGX-2 on-premise system from NVIDIA.[*] All results herein are for MLPerf Training v0.5 Closed Division. All results are retrieved from “https://mlperf.org/results” on 12/12/2018. MLPerf is a trademark.[1] ResNet-50 v1.5 result by Google on TPUv2.8 (4 chips) using TF 1.12. Result id: 0.5.2.1.[2] SSD result by Google on TPUv2.8 (4 chips) using TF 1.12. Result id: 0.5.2.2.[3] NMT result by Google on TPUv2.8 (4 chips) using TF 1.12. Result id: 0.5.2.4.[4] ResNet-50 v1.5 result by Google on TPUv2.512 + TPUv2.8 (260 chips) using TF 1.12. Result id: 0.5.3.1.[5] ResNet-50 v1.5 result by Google on TPUv3.8 (4 chips) using TF 1.12. Result id: 0.5.4.1.[6] SSD result by Google on TPUv3.8 (4 chips) using TF 1.12. Result id: 0.5.4.2.[7] NMT result by Google on TPUv3.8 (4 chips) using TF 1.12. Result id: 0.5.4.4.[8] 8x Volta V100 result by Google on 8x Volta V100 (8 chips) using TF 1.12 and cuDNN 7.4. Result id: 0.5.5.1.[9] ResNet-50 v1.5 result by Google on TPUv3.32 + TPUv2.8 (20 chips) using TF 1.12. Result id: 0.5.26.1.[10] SSD result by Google on TPUv3.32 + TPUv2.8 (20 chips) using TF 1.12. Result id: 0.5.26.2.[11] NMT result by Google on TPUv3.32 + TPUv2.8 (20 chips) using TF 1.12. Result id: 0.5.26.4.[12] ResNet-50 v1.5 result by Google on TPUv3.512 + TPUv2.8 (260 chips) using TF 1.12. Result id: 0.5.27.1.[13] ResNet-50 v1.5 result by NVIDIA on DGX-2 (16 chips) using ngc18.11_MXNet, cuDNN 7.4. Result id: 0.5.18.1.[14] SSD result by NVIDIA on DGX-2 (16 chips) using ngc18.11_pyTorch and cuDNN 7.4. Result id: 0.5.19.2.[15] NMT result by NVIDIA on DGX-2 (16 chips) using ngc18.11_pyTorch and cuDNN 7.4. Result id: 0.5.19.4.[16] ResNet-50 v1.5 result by NVIDIA on 80x DGX-1 (640 chips) using ngc18.11_MXNet and cuDNN 7.4. Result id: 0.5.17.1.
Quelle: Google Cloud Platform

Announcing Cloud DNS forwarding: Unifying hybrid cloud naming

A key part of a successful hybrid cloud strategy is making sure your resources can find each other via DNS, whether they are in the cloud or on-prem. Rather than create separate islands of DNS namespaces, we’ve added new forwarding capability to Cloud DNS, our managed DNS service, letting you easily link your cloud and on-prem environments, so you can use the same DNS service for all your workloads and resources.Built with Cloud DNS’ new network policy capability, DNS forwarding allows you to create bi-directional forwarding zones between your on-prem name servers and Google Cloud Platform’s internal name servers. Currently in beta, DNS forwarding provides the following features and benefits:Outbound forwarding lets your GCP resources use your existing DNS authoritative servers on-prem, including BIND, Active Directory, etc.Inbound forwarding allows on-prem (or other cloud resources) to resolve names via Cloud DNS.Intelligent Google caching improves the performance of your queries;  cached queries do not travel over your connectivity links.DNS forwarding is a fully managed service—no need to use additional software or your own compute and support resources.In a nutshell, DNS forwarding provides a first-class GCP managed service to connect your DNS cloud and on-prem environments, providing unified naming for your workloads and resources. Further, you can use DNS forwarding for inbound traffic, outbound traffic, or both, to support existing or future network architecture needs.DNS is a critical component of tying hybrid cloud architectures together. DNS forwarding in combination with GCP connectivity solutions such as Cloud Interconnect and Cloud VPN creates a seamless and secure network environment between your GCP cloud and on-prem data centers. To learn more, check out the DNS forwarding documentation and get started using DNS forwarding today.
Quelle: Google Cloud Platform

Nurture what you create: How Google Cloud supports Kubernetes and the cloud-native ecosystem

At Google Cloud, we talk a lot about our belief in open source and open cloud. But what does that actually mean?Usually, when you’re a leader in an open-source community like Kubernetes and there’s a big event (like this week’s KubeCon North America), that means launching a brand new project. Launches are exciting, but maintaining a successful project like Kubernetes requires sustained investment and maintenance. We find that what really distinguishes a successful open-source project is the day-in day-out nurturing that happens behind the scenes. And it’s more than coding—it’s things like keeping the project safe and inclusive, writing documentation, managing test infrastructure, responding to issues, working in project governance, creating mentoring programs, reviewing pull requests, and participating in release teams. So today, we thought we’d take this opportunity not to announce a project, but rather reflect on some examples of what it means to us to be a part of the open-source cloud-native community.“Open-source software is not free like sunshine, it’s free like a puppy.” – Sarah Novotny, Head of Open Source Strategy for GCPSupporting communities and thinking differentlyFirst and foremost, with Kubernetes, we fully support the core values of the project, as well as provide technical and non-technical contributions in ways that reinforce positive results for the entire community. Since its inception, we’ve remained the top contributor to the project. This is something we’re incredibly proud of, and we hope that our work helps make the entire cloud-native landscape richer.Our commitment to open source also extends to making more impactful events. For example, this year, rather than produce new KubeCon conference swag, we donated diversity scholarships for 2019 to the CNCF instead. This aligns with our desire for inclusivity, and helps cultivate a stronger community. We also co-organized the Kubernetes Contributor Summit, so our community can have critical in-person interactions ahead of the full event.Supporting the existing cloud-native ecosystem: etcdAnother example of our commitment to open source is supporting the etcd distributed key value store, which has now joined the roster of CNCF projects. As the Kubernetes ecosystem matured, we saw the need for more support in this critical component. We dedicated full-time engineers to the project, including an etcd maintainer, and two of the top five code committers in 2018. We led improvements to the etcd release process, expanding release branch support from just the latest minor version to the latest three minor versions. We also dedicated staff to patch management duties and automating the release workflow, and actively helped stabilize etcd, hunting down and fixing issues including a critical boltdb data corruption issue. More recently, we contributed to the rewrite of the etcd client-side load balancer and led efforts to expand the metrics exposed by etcd for monitoring system health and performance.We’re committed to the quality and production readiness of etcd. Our plans include making upgrades safer by adding zero-downtime downgrade support, and expanding test coverage over more version pairings of etcd with Kubernetes. Finally, we’re continually making coordinated improvements to both etcd and the Kubernetes storage layer that interfaces with it to optimize scalability, performance, and ease of operability.Enriching the cloud-native landscapeOur commitment to open source isn’t just limited to supporting communities and existing projects. We also hope to share many of the valuable lessons we have learned while building scalable, secure, and reliable systems, Kubernetes being a prime example.A recent example is gVisor, based on technology Google uses to isolate and secure containerized workloads. As organizations run more heterogenous and less trusted workloads, there’s new interest in containers that provide a secure isolation boundary, and we wanted to share how we’ve been tackling the problem internally with the community. This in turn opened up broader discussions about the security challenges inherent in cloud-native architecture.In an effort to make gVisor more accessible, we integrated it with Minikube, so you can try out gVisor locally, in a VM on your laptop. We’re also actively working to open more of the project’s support infrastructure, plans, and processes, starting with a substantial system call compatibility test suite with more than 1500 tests.Releasing gVisor as an open-source project underscores the many different ways communities can form and contribute across the cloud-native landscape. Sometimes those contributions aren’t explicitly code, but instead feedback or ways to do things better. Being open helps build communities of practice across all technology groups and stakeholders.Improving the cloud-native developer experienceWe understand that the day-to-day life of an application developer can be challenging in the cloud-native world due to multiple points of divergence between how you run your application locally and in a production Kubernetes cluster. Our goal is to reduce these differences so all developers can have a positive experience in the Kubernetes ecosystem.In March we released an important open-source tool for cloud-native development called Skaffold, which allows you to define the build, test and deployment phases of your Kubernetes application with a single yaml file. In the skaffold dev command, this local pipeline is combined with an automated file watcher based on the build definition, creating a fast feedback loop—you can see your source file changes in your deployed app in seconds. This works both locally and in Google Kubernetes Engine (GKE), helping to provide a cohesive workflow.Learn and share: How we cross-pollinate communitiesAnother effort within Google open source is to create templates and other starter materials for emerging projects to use for things like governance and contributions. Our hope is to eventually provide everything necessary to bootstrap a successful open-source project, as well as offer guidance at key inflection points in the project lifecycle. These are distilled from our experience working on projects like Kubernetes, Istio, Knative, and Tensorflow. To further improve these materials, we regularly bring community managers together across projects to discuss shared struggles, opportunities, and lessons learned to avoid repeating antipatterns across projects. Scaling open-source contributions is important, especially if the goal is to ensure consistently positive and inclusive interactions across every project we support.So, as we all celebrate the continued success of Kubernetes, remember to take the time and thank someone you see helping make the community better. It’s up to all of us to foster a cloud-native ecosystem that prizes the efforts of everyone who helps maintain and nurture the work we do together.To stay up to date on what’s going on in the cloud-native community, both from Google and beyond, we urge you to subscribe to the Kubernetes Podcast. And, if you’re interested in getting involved, please visit the links provided below.Kubernetes for container scheduling and management [ Google Cloud | GitHub ]Istio to connect, monitor, and secure microservices [ Google Cloud | GitHub ]Knative to build, deploy, and manage modern serverless workloads [ Google Cloud | GitHub ]Container tools to help entire life-cycle of containerized applications [ Google Cloud | GitHub ]KubeFlow Pipeline to compose, deploy, and manage end-to-end machine learning workflows [ Google Cloud | GitHub ]
Quelle: Google Cloud Platform

Expanding our partnership with Palo Alto Networks to simplify cloud security and accelerate cloud adoption

Security remains a top concern and challenge for enterprises, and Google Cloud provides a strong and flexible toolkit to help make a smooth transition to the cloud. We partnered with Palo Alto Networks in 2017 because we both shared a belief that moving to the cloud can help enterprises simplify security, and that improved security will drive cloud adoption. Today we’re expanding that partnership to help more enterprises increase control of their own security in the cloud.As part of our partnership, Palo Alto Networks will run itsApplication Framework on Google Cloud to take advantage of Google Cloud Platform’s secure, durable cloud storage and highly-scalable AI and analytics tools. Services such as BigQuery will help Application Framework customers accelerate time-to-insight as they work to detect and respond to security threats. Palo Alto Networks will also run their GlobalProtect cloud service on Google Cloud Platform. Google Cloud’s reliable, performant, and secure global-scale network and infrastructure offer many advantages for a service to help protect branch and mobile workforces.“This partnership makes us a Google Cloud customer, allowing us to run important cloud-delivered security services at scale and with the benefits of Google’s AI and analytics expertise,” said Varun Badhwar, SVP Products & Engineering for Public Cloud Security at Palo Alto Networks. “We’ll also be working with Google Cloud to offer organizations moving to Google Cloud additional visibility, compliance and security capabilities they need to prevent cyberattacks.”New solutions to help customers automate compliance audits and reportingRedLock from Palo Alto Networks helps organizations manage security risks and achieve and maintain compliance. By monitoring the use of GCP APIs, RedLock delivers real-time visibility across GCP resources, including containerized workloads in Google Kubernetes Engine. This enables continuous compliance monitoring and auto-generated reports for common regulations and standards such as GDPR, HIPAA, PCI DSS, and NIST, eliminating the need for lengthy manual audits. A new integration with GCP’s Security Baseline API (Alpha) means that customers can combine a view of their own security and compliance posture with data from GCP’s infrastructure, a capability not available on any other public cloud.Solutions that will help increase visibility and enhance security analyticsDeep integration of Palo Alto Networks products with Google’s Cloud Security Command Center helps centralize visibility into security and compliance risks on GCP. Palo Alto Networks integrations send alerts from the VM-Series next-generation firewalls, Traps endpoint protection, and RedLock to help provide centralized visibility into security and compliance risks in a Google Cloud environment.Findings from Palo Alto Networks products in the Cloud Security Command Center DashboardThis new functionality complements the already extensive set of joint capabilities that help Google Cloud customers define, enforce, monitor and maintain consistent security policies across on-premises, public cloud, and hybrid environments. For example:The entire line of Palo Alto Networks next-generation firewalls, both physical and virtualized, support standards-based IPsec VPN connectivity to ensure a secure connection from on-premises to Google Cloud. In addition, GlobalProtect cloud service provides secure connectivity to GCP as a service, removing some of the operational burden associated with firewall deployments.Palo Alto Networks VM-Series virtualized firewalls protect and segment cloud workloads in GCP to safeguard against internal and external threats and can be deployed directly from the GCP Marketplace.Panorama network security management provides unified management of both physical and the VM-Series firewalls deployed on-premises and on GCP. Customers can create policies once and enforce them everywhere.Traps helps secure the operating system and applications within workloads on GCP. A lightweight host agent deployed within the cloud instance detects any zero-day exploits and ensures the integrity of the operating system and applications. As attackers uncover vulnerabilities, the agent-based approach can provide protection until organizations are able to patch cloud workloads.Through in-line protection provided by Palo Alto Networks firewall appliances or GlobalProtect cloud service, organizations can understand SaaS usage and build policies to help control risk exposure. They can complement the robust security capabilities in G Suite with the Aperture SaaS security service, which offers additional options for protection of data at rest as well as ongoing monitoring of user activity and administrative configurations.Through our extended partnership, enterprises using Palo Alto Networks offerings on-premises will have an easier path to move to the cloud while leveraging their existing security investments. Organizations who run on Google Cloud will have easy access to security functionality from Palo Alto Networks with enhanced capabilities available only on Google Cloud.“We are pleased to see Google Cloud and Palo Alto Networks strengthening their partnership. Security is a top priority for Broadcom, and we depend on both organizations to help protect our networks, infrastructure, data, and applications,” notes Andy Nallappan, Vice President and Chief Information Officer, Global Information Technology for Broadcom. “We look forward to increased collaboration that will provide us with new capabilities to enhance our security posture and further simplify deployment and operations across our data centers and the cloud.”Start today for freeOrganizations can take a free, 2-week VM-Series Test Drive and learn how the VM-Series can be deployed on GCP to prevent data loss and potential business disruption. Organizations can also sign up for a free, 2-week RedLock Trial to continuously monitor and secure their Google Cloud environment and identify vulnerable resources and potential points of exposure.To learn more about our partnership with Palo Alto Networks please visit this site and read their respective announcement.
Quelle: Google Cloud Platform