a collaborative monitoring mechanism for making a
play

A Collaborative Monitoring Mechanism for Making a Multitenant - PowerPoint PPT Presentation

Jan 26, 2024 •1k likes •1.3k views

A Collaborative Monitoring Mechanism for Making a Multitenant Platform Accountable Chen Wang Ying Zhou CSIRO ICT Centre The University of Sydney Australia Australia chen.wang@csiro.au ying.zhou@sydney.edu.au Service Level Agreement (SLA)

  1. A Collaborative Monitoring Mechanism for Making a Multitenant Platform Accountable Chen Wang Ying Zhou CSIRO ICT Centre The University of Sydney Australia Australia chen.wang@csiro.au ying.zhou@sydney.edu.au

  2. Service Level Agreement (SLA) • Service providers often offer Service Level Agreements as a means to address uncertainty • Attempt to meet certain QoS metrics • Current status: • Only support very limited metrics • Not machine processable • Few means are provided to clients to make a SLA accountable when problems occur • Monitoring is provided by the service provider itself • Clients are often required to furnish evidence all by themselves to be eligible to claim credit for a SLA violation • Existing application design practice does not take into account of evidence collection functionalities for credit claiming purpose

  3. Maintain the Data State in an External Accountability Service • The accountability service maintains a view of the data state • Reflects what data should be from users’ perspective • Aggregates data updating requests of users to calculate the data state • Authenticates query results based on the calculated data state • Using Merkle B-tree [SIGMOD’06] for Data State Calculation • A combination of Merkle (hash) tree and B+-tree

  4. Conclusions • Accountability is one of the foundations that form realworld trust relationships. • The capability of identifying a party that is responsible when things go wrong with evidences can potentially enhance the trustworthiness of a system. • Accountability support is important to the cloud computing ecosystem • Proper disclosure of important state transition logic of cloud services • External parties are capable of verifying the evidence that support these state transitions

  5. Their slides

  6. Cloud Services • User data and applications are in a trend of moving to the cloud • Running on rented infrastructures (IaaS) • Using third party provisioned platform (PaaS) and software (SaaS) • Business logic is executed in different administrative domains on a pay- as-you-go basis • Cloud service architecture sample:force.com

  7. Cloud Service Uncertainty • Performance variation is high • Correctness of business logic • Data service providers in clouds often trade consistency for scalability. • Yahoo! PNUTS, Amazon SimpleDB consistency option • How can an application be sure that its query results satisfy its consistency constraint? • How to ensure the business logic is handled correctly?

  8. Service Level Agreement (SLA) • Service providers often offer Service Level Agreements as a means to address uncertainty • Attempt to meet certain QoS metrics • Current status: • Only support very limited metrics • Not machine processable • Few means are provided to clients to make a SLA accountable when problems occur • Monitoring is provided by the service provider itself • Clients are often required to furnish evidence all by themselves to be eligible to claim credit for a SLA violation • Existing application design practice does not take into account of evidence collection functionalities for credit claiming purpose

  9. A Sample Service Level Agreement (Amazon EC2)

  10. How is the problem tackled in realworld? • The use of a trusted third party to make a deal • The use of legal/social systems • Contract law provides incentives that promote good behaviour between parties • Using these principles to make services accountable • Disclosing important state transition logic inside a service • Collecting and managing evidence based on a given SLA • Runtime compliance check and problem detection

  11. Accountability “Accountability is the ability to hold an entity, such as a person or organization, responsible for its actions.” Butler Lampson:“Accountability and Freedom”, 2005 “People think that security in the real world is based on locks. In fact, realworld security depends mainly on deterrence, and hence on the possibility of punishment.” Butler Lampson: “Privacy and security - Usable security: how to get it.” CACM 52(11), 2009

  12. Accountability as a Service: the Conceptual Model Witness Monitor / Anomaly Detector SLA Disclosure Document Service Tenant

  13. System Architecture • A client has a set of applications running on shared data. • These applications provide a set of endpoints. • The SLA defines the following: • The data can only be accessed through these endpoints. • An endpoint is well-defined (the data state transition it may trigger is specified and deterministic). Wrapper: capturing I/O of the endpoint Wrapper: extracting/shipping evidence

  14. Maintain the Data State in an External Accountability Service • The accountability service maintains a view of the data state • Reflects what data should be from users’ perspective • Aggregates data updating requests of users to calculate the data state • Authenticates query results based on the calculated data state • Using Merkle B-tree [SIGMOD’06] for Data State Calculation • A combination of Merkle (hash) tree and B+-tree

  15. Consistency Issue • The arrivals of request log entries to the accountability service (W) may be out of order • Solution: bind the update to the actual data and the view of state in W in a transaction  performance issue; negative impact of tightly coupling the actual service to W. • Trade accuracy of problem detection with performance and decoupling. • Using a sliding window to sort out of order log entries • Eventual consistency between W and the cloud service it monitors

  16. Replicate Data State among Multiple Accountability Services Trustworthiness can be better achieved through the separation of responsibility. The data state of a multitenant database is maintained by a set of data state services. Each service maintains a view of the data state

  17. The Organization of Multiple Accountability Services: Design Choices • An update log entry is sent to any known state keeper and propagate to other state keepers in a synchronous manner • Strong consistency among data keepers • Poor logging performance • An update log entry is sent to any known state keeper and propagate to other state keepers in an asynchronous manner • Weak consistency among data keepers • No guarantee that the answer to an authentication request will reflect the recent data state change • Good logging performance

  18. The Organization of Multiple Accountability Services: A Hybrid Approach • Partition the whole range of the indexed attribute into a few non-overlapped regions • Each region is mapped to one or more state keepers. • An update to a key falling into certain region will be logged in the state keepers that are responsible for the region synchronously • The update is propagated to state keepers that are not responsible for the region asynchronously • An authentication request is directed to a data keeper whose region overlaps most with the request data range • If the region covers the data range, authenticate the request immediately • Otherwise, wait for an allowable delay window for the update logs from other involved region to arrive

  19. Evaluation • Settings • A data management service • Contains Web service interfaces that map business logic into DB operations: inserts, point queries, and range queries. • gSOAP + MySQL • An accountability service • A few database clients • Each Party runs on an Amazon EC2 small instance (Linux version 2.6.21.7-2.fc8xen) • Dataset • “Census Income” dataset from the UCI Machine Learning Repository • Indexed column is “fnlwgt”

  20. Evaluation (cont) 65 - 70% overhead of the total transaction time of a point query/insert (in synchronous mode) The overhead is related to the result set size for range queries The overhead can be reduced through asynchronous logging

  21. Impact of Multiple Accountability Services on Authentication Time • Performance gap between accountability and normal service • An accountability service faces scalability issue • Maintaining a certain number of accountability services can reduce the performance loss

  22. Conclusions • Accountability is one of the foundations that form realworld trust relationships. • The capability of identifying a party that is responsible when things go wrong with evidences can potentially enhance the trustworthiness of a system. • Accountability support is important to the cloud computing ecosystem • Proper disclosure of important state transition logic of cloud services • External parties are capable of verifying the evidence that support these state transitions

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Second Monitoring Committee The EEA FINANCIAL MECHANISM and The NORWEGIAN FINANCIAL MECHANISM

Second Monitoring Committee The EEA FINANCIAL MECHANISM and The NORWEGIAN FINANCIAL MECHANISM

Second Monitoring Committee The EEA FINANCIAL MECHANISM and The NORWEGIAN FINANCIAL MECHANISM 20092014 National Focal Point Malta Leonie Aquilina Xuereb, 29 January 2013 EEA and Norway Grants 2009-2014 Overall Objectives: To reduce

553 views • 18 slides
CS490W: What is Collaborative Filtering? Collaborative Filtering (CF): Making recommendation

CS490W: What is Collaborative Filtering? Collaborative Filtering (CF): Making recommendation

CS490W: What is Collaborative Filtering? Collaborative Filtering (CF): Making recommendation decisions for a specific CS-490W user based on the judgments of users with similar tastes Collaborative Filtering Luo Si Train_User 1 1 5 3 3 4

628 views • 6 slides
3rd Monitoring Committee The EEA FINANCIAL MECHANISM and The NORWEGIAN FINANCIAL MECHANISM 2009

3rd Monitoring Committee The EEA FINANCIAL MECHANISM and The NORWEGIAN FINANCIAL MECHANISM 2009

3rd Monitoring Committee The EEA FINANCIAL MECHANISM and The NORWEGIAN FINANCIAL MECHANISM 2009 2014 National Focal Point Malta Nicholas Bugeja, 31 January 2014 EEA and Norway Grants 2009-2014 Overall Objectives: To reduce economic

433 views • 27 slides
A COLLABORATIVE MECHANISM FOR CROWDSOURCING PREDICTION PROBLEMS CHRISTOPHER LEE STEWART

A COLLABORATIVE MECHANISM FOR CROWDSOURCING PREDICTION PROBLEMS CHRISTOPHER LEE STEWART

A COLLABORATIVE MECHANISM FOR CROWDSOURCING PREDICTION PROBLEMS CHRISTOPHER LEE STEWART RICHARDSON CS286R NOVEMBER 19, 2012 WHAT ARE SOME COMPETITIONS THAT DRAW FROM CROWD EXPERTISE? NASA Space Antenna Design (EE/AI) FoldIT

981 views • 41 slides
Asia-Pacific Regional Cooperative Mechanism on Drought Monitoring and Early Warning Wu, Guoxiang

Asia-Pacific Regional Cooperative Mechanism on Drought Monitoring and Early Warning Wu, Guoxiang

Asia-Pacific Regional Cooperative Mechanism on Drought Monitoring and Early Warning Wu, Guoxiang Professor, Beijing Normal University Senior Advisor on GEO Affairs, NRSC, China Consultant, UN ESCAP A Mechanism under United Nations Promoted

533 views • 38 slides
Bangkok Singapore Whole Flight Collaborative Decision Making (CDM) AEROTHAI SATS CAAS

Bangkok Singapore Whole Flight Collaborative Decision Making (CDM) AEROTHAI SATS CAAS

Bangkok Singapore Whole Flight Collaborative Decision Making (CDM) AEROTHAI SATS CAAS Singapore DCA Airlines Malaysia Thai AOT Airways CAG 1 Objectives Application of Collaborative Decision Making (CDM) concepts Enable

380 views • 11 slides
NOAA Lake Superior Monitoring Lake Superior Environmental Monitoring Collaborative November 19,

NOAA Lake Superior Monitoring Lake Superior Environmental Monitoring Collaborative November 19,

NOAA Lake Superior Monitoring Lake Superior Environmental Monitoring Collaborative November 19, 2014 Duluth, MN Steve Ruberg NOAA Great Lakes Environmental Research Lab Ann Arbor, MI Lake Superior Water Level Data An important observation

614 views • 17 slides
Regional District of Nanaimo Collaborative Water Monitoring Julie Pisani, Drinking Water &

Regional District of Nanaimo Collaborative Water Monitoring Julie Pisani, Drinking Water &

Regional District of Nanaimo Collaborative Water Monitoring Julie Pisani, Drinking Water & Watershed Protection, Program Coordinator For March 7, 2019 - POLIS webinar on collaborative water monitoring DRINKING WATER & WATERSHED

407 views • 15 slides
A Neural Mechanism for Decision Making K C Y W D K D O P E D B A I Q S D F M K C N F A E O I E N C

A Neural Mechanism for Decision Making K C Y W D K D O P E D B A I Q S D F M K C N F A E O I E N C

A Neural Mechanism for Decision Making K C Y W D K D O P E D B A I Q S D F M K C N F A E O I E N C V N S E N C H P D N C O E N A S H Q E N D N C K R N D N Q I O M Z C P Q What is a decision? A commitment to a proposition or selection of an

865 views • 50 slides
Collaborative Forest Monitoring in the Southwestern Crown of the Continent Cory Davis College of

Collaborative Forest Monitoring in the Southwestern Crown of the Continent Cory Davis College of

Collaborative Forest Monitoring in the Southwestern Crown of the Continent Cory Davis College of Forestry and Conservation, University of Montana Monitoring Coordinator Southwestern Crown of the Continent Collaborative Southwestern Crown of

387 views • 14 slides
Toward Understanding Robust & Collaborative Monitoring (12RH05COR) PI: Dr. Chris Myers

Toward Understanding Robust & Collaborative Monitoring (12RH05COR) PI: Dr. Chris Myers

Toward Understanding Robust & Collaborative Monitoring (12RH05COR) PI: Dr. Chris Myers (AFRL/RHAC) Co-PI: Dr. Andrew Howes (U. of Birmingham) Co-PI: Dr. Rick Lewis (U. of Michigan) Additional Collaborators: Dr. Joseph Houpt (Wright State

615 views • 33 slides
available evidence Justin Irvine Evidence based decision making Approaches to monitoring for

available evidence Justin Irvine Evidence based decision making Approaches to monitoring for

Using sound science and best available evidence Justin Irvine Evidence based decision making Approaches to monitoring for decision making Research findings: making use of these. Tools Deer management plans: what do you need to put

531 views • 32 slides
Making the cheap development mechanism clean: How? CSE, November 2005 http: / /

Making the cheap development mechanism clean: How? CSE, November 2005 http: / /

Making the cheap development mechanism clean: How? CSE, November 2005 http: / / www.cseindia.org/ CSE and climate change In 1989, CSE published: Global Warming in an Unequal World: a case of environmental colonialism . Climate change is

1.07k views • 40 slides
Honeypots as a Security Honeypots as a Security Mechanism Mechanism Presenter: merson Virti

Honeypots as a Security Honeypots as a Security Mechanism Mechanism Presenter: merson Virti

Monitoring, Attack Detection and Mitigation Monitoring, Attack Detection and Mitigation MonAM 2006 MonAM 2006 Honeypots as a Security Honeypots as a Security Mechanism Mechanism Presenter: merson Virti Authors: merson Virti, Liane

474 views • 16 slides
Monitoring the CBB, Using Traps, and Making Decisions about Where and What Control is Needed

Monitoring the CBB, Using Traps, and Making Decisions about Where and What Control is Needed

Monitoring the CBB, Using Traps, and Making Decisions about Where and What Control is Needed Luis F. Aristizbal A. Tropical Agro-Ecology Specialist Why is it Important to Monitor the CBB? In order to implement an IPM program for CBB, it is

487 views • 23 slides
WHEN DID MAKING ADULTS MAD BECOME A CRIME A Collaborative Approach to Reducing School Arrests

WHEN DID MAKING ADULTS MAD BECOME A CRIME A Collaborative Approach to Reducing School Arrests

WHEN DID MAKING ADULTS MAD BECOME A CRIME A Collaborative Approach to Reducing School Arrests and Improving Outcomes Best Practices Improves Safety JDAI Reform 6000 Begins 5000 4000 3000 Complaints Petitions 2000 1000 0 99 0 1 2

424 views • 40 slides
Lesson 16 Consuming Web Services Using SOAP and REST Apps Victor Matos Cleveland State

Lesson 16 Consuming Web Services Using SOAP and REST Apps Victor Matos Cleveland State

Lesson 16 Consuming Web Services Using SOAP and REST Apps Victor Matos Cleveland State University Portions of this page are reproduced from work created and shared by Google and used according to terms described in the Creative Commons 3.0

936 views • 68 slides
Hardware Physical components that a computer system requires to function. Easy to change

Hardware Physical components that a computer system requires to function. Easy to change

Hardware Physical components that a computer system requires to function. Easy to change out and upgrade. Large determinant of how fast your computer operates. Software is the programming that tells all these components what to do.

636 views • 30 slides
Gregory L. LaFollette, CPA.CITP Eide Bailly, LLP Senior Manager, Tax and Technology Consulting

Gregory L. LaFollette, CPA.CITP Eide Bailly, LLP Senior Manager, Tax and Technology Consulting

and still somehow, it's cloud's illusions I recall; I really don't know clouds at all. How to Keep Your Feet on the Ground When Your Heads in the Cloud Gregory L. LaFollette, CPA.CITP Eide Bailly, LLP Senior Manager, Tax and Technology

748 views • 58 slides
Attack Patterns for Black-Box Security Testing of Multi-Party Web Applications Avinash Sudhodanan

Attack Patterns for Black-Box Security Testing of Multi-Party Web Applications Avinash Sudhodanan

Attack Patterns for Black-Box Security Testing of Multi-Party Web Applications Avinash Sudhodanan (sudhodanan@fbk.eu) Alessandro Armando (armando@fbk.eu) Roberto Carbone (carbone@fbk.eu) Luca Compagna (luca.compagna@sap.com) NDSS, San Diego,

508 views • 27 slides
Warrens Question A tricky presentation And a tricky paper, some may say In form - A

Warrens Question A tricky presentation And a tricky paper, some may say In form - A

Sally Fincher, University of Kent Josh Tenenberg, University of Washington, Tacoma 15 th September 2007 3 rd ICER workshop, Atlanta GA Warrens Question A tricky presentation And a tricky paper, some may say In form - A very

913 views • 32 slides
Archie Creek Restoration Annual Restoration Review Agency Meeting September 25, 2009 Photo

Archie Creek Restoration Annual Restoration Review Agency Meeting September 25, 2009 Photo

Archie Creek Restoration Annual Restoration Review Agency Meeting September 25, 2009 Photo Station 1 Looking North (2006) PS1 North Mitigation Area Looking North (2009) Photo Station 1 Looking South (2006) PS1 North Mitigation Area

538 views • 10 slides
TRECVID 2017 INSTANCE RETRIEVAL INTRODUCTION AND TASK OVERVIEW Wessel Kraaij The

TRECVID 2017 INSTANCE RETRIEVAL INTRODUCTION AND TASK OVERVIEW Wessel Kraaij The

TRECVID 2017 INSTANCE RETRIEVAL INTRODUCTION AND TASK OVERVIEW Wessel Kraaij The Netherlands Organisation for Applied Scientific Research TNO; Leiden University George Awad Dakota Consulting ; National Institute of Standards and

856 views • 26 slides
HOW TO INCLUDE ECONOMICS IN COCHRANE REVIEW PROTOCOLS

HOW TO INCLUDE ECONOMICS IN COCHRANE REVIEW PROTOCOLS

663 views • 40 slides

More recommend