SLIDE 1 A Blockchain-based Flight Data Recorder for Cloud Accountability
- G. D’Angelo, S. Ferretti, M. Marzolla
- Dept. of Computer Science and Engineering
s.ferretti@unibo.it
SLIDE 2
Cloud Computing
On-demand self service Broad network access Resource pooling On-demand self service On-demand self service Rapid elasticity Measured service
SLIDE 3
Cloud Computing
On-demand self service Broad network access Resource pooling On-demand self service On-demand self service Rapid elasticity Measured service
Reliability
SLIDE 4
Cloud Computing
On-demand self service Broad network access Resource pooling On-demand self service On-demand self service Rapid elasticity Measured service
Reliability Availability
SLIDE 5
Cloud Computing
On-demand self service Broad network access Resource pooling On-demand self service On-demand self service Rapid elasticity Measured service
Reliability Availability Accountability
SLIDE 6
Cloud Computing
Alice User Domain
SLIDE 7
Cloud Computing
Alice Bob User Domain Service Domain
SLIDE 8
Cloud Computing
Alice Bob User Domain Service Domain
Bob, please handle my data
SLIDE 9
Cloud Computing
Alice Bob User Domain Service Domain
SLIDE 10
Cloud Computing
Alice Bob Carl User Domain Service Domain Cloud Domain
SLIDE 11
Cloud Computing
Alice Bob Carl User Domain Service Domain Cloud Domain
Carl, please hold my service and the data I have
SLIDE 12
Cloud Computing
Alice Bob Carl User Domain Service Domain Cloud Domain
SLIDE 13
Accountability
Alice Bob Carl User Domain Service Domain Cloud Domain
If something goes wrong, who is accounted?
SLIDE 14 Terms and Conditions – Excerpts
In partjcular, Google, its subsidiaries and affjliates, and its licensors do not represent or warrant to you that: a) your use of the services will meet your requirements, b) your use of the services will be uninterrupted, tjmely, secure or free from error, c) any informatjon obtained by you as a result
- f your use of the services will be accurate
- r reliable, and
d) that defects in the operatjon or functjonality of any sofuware provided to you as part of the services will be corrected.
Further, neither we nor any of our affjliates or licensors will be responsible for any compensatjon, reimbursement,
- r damages arising in connectjon with:
[...] d) any unauthorized access to, alteratjon of, or the deletjon, destructjon, damage, loss or failure to store any of your content or other data.
SLIDE 15 Blockchain as a Flight Data Recorder
- All operatjons accomplished in the cloud recorded in the
blockchain
SLIDE 16 Blockchain as a Flight Data Recorder
- All operatjons accomplished in the cloud recorded in the
blockchain
- Possible solutjons:
- Double signed transactjons
- Certjfjes that two partjes agree on something
- Coarse method
SLIDE 17 Blockchain as a Flight Data Recorder
- All operatjons accomplished in the cloud recorded in the
blockchain
- Possible solutjons:
- Double signed transactjons
- Certjfjes that two partjes agree on something
- Coarse method
- Logging (without smart contracts)
- Record all actjons
- SLA violatjons verifjed through the need of an arbitrator
SLIDE 18 Blockchain as a Flight Data Recorder
- All operatjons accomplished in the cloud recorded in the
blockchain
- Possible solutjons:
- Double signed transactjons
- Certjfjes that two partjes agree on something
- Coarse method
- Logging (without smart contracts)
- Record all actjons
- SLA violatjons verifjed through the need of an arbitrator
- Logging with smart contracts
- Smart contract acts as the arbitrator
SLIDE 19
File Upload Operation
User Cloud Blockchain
Su Pu Sc Pc
SLIDE 20
File Upload Operation
User Cloud Blockchain
upload req init Su Pu Sc Pc
SLIDE 21
File Upload Operation
User Cloud Blockchain
upload req init upload ACK Su Pu Sc Pc
SLIDE 22
File Upload Operation
User Cloud Blockchain
upload req init transfer upload ACK Su Su Pu Sc Pc
SLIDE 23 File Upload Operation
User Cloud Blockchain
upload req init transfer upload ACK transfer ACK Su Su Pu Sc Pc
digest
SLIDE 24 File Upload Operation
User Cloud Blockchain
upload req init digest ACK / NACK transfer upload ACK Su Su Pu Sc Pc transfer ACK
digest
SLIDE 25
File Delete
User Cloud Blockchain
Su Pu Sc Pc
SLIDE 26
File Delete
User Cloud Blockchain
delete req Su Pu Sc Pc
SLIDE 27
File Delete
User Cloud Blockchain
delete req delete ACK Su Pu Sc Pc
SLIDE 28
Read (found)
User Cloud Blockchain
Su Pu Sc Pc
SLIDE 29
Read (found)
User Cloud Blockchain
read req Su Pu Sc Pc
SLIDE 30
Read (found)
User Cloud Blockchain
read req publish URL (encrypted data) Su Pu Sc Pc
SLIDE 31
Read (found)
User Cloud Blockchain
read req read publish URL (encrypted data) Su Pu Sc Pc Su
SLIDE 32
Read (missing)
User Cloud Blockchain Smart Contract
Su Pu Sc Pc
SLIDE 33
Read (missing)
User Cloud Blockchain
read req
Smart Contract
Su Pu Sc Pc
SLIDE 34
Read (missing)
User Cloud Blockchain
read req missing
Smart Contract
Su Pu Sc Pc
SLIDE 35
Read (missing)
User Cloud Blockchain
read req violatjon check req missing
Smart Contract
Su Pu Sc Pc
SLIDE 36
Read (missing)
User Cloud Blockchain
read req violatjon check req missing
Smart Contract
violatjon response Su Pu Sc Pc
SLIDE 37 Concluding Considerations
- Blockchain as a fmight data recorder for Cloud accountability
- Pseudo-anonymous and tamper-proof logging of events
- Ledger used to verify if SLAs are violated
- Self-enforcing smart contracts allow to automatjcally identjfy
responsibilitjes and setule disputes
- Effjciency issues:
- Current blockchains might not provide a short tjme responses
- Transactjon fees might represent an economic disincentjve
- Lightweight, permissioned blockchains might be more
performant, scalable, and only accessible by a dedicated group of entjtjes
SLIDE 38 www.cs.unibo.it/sferretu
Stefano Ferretti
s.ferretti@unibo.it
Department of Computer Science and Engineering University of Bologna Mura A. Zamboni 7 40127, Bologna Italy
