byzantine fault tolerant systems
play

Byzantine Fault Tolerant Systems Stefan Heinz Advanced Topics in - PowerPoint PPT Presentation

Sep 17, 2022 •125 likes •710 views

Byzantine Fault Tolerant Systems Stefan Heinz Advanced Topics in Distributed Computing Ph. D. Petr Kuznetsov WS 07/08 Stefan Heinz, WS 07/08 Farsite Federated, Available and Reliable Storage for an Incompletely Trusted Environment Adya et

  1. Byzantine Fault Tolerant Systems Stefan Heinz Advanced Topics in Distributed Computing Ph. D. Petr Kuznetsov WS 07/08 Stefan Heinz, WS 07/08

  2. Farsite Federated, Available and Reliable Storage for an Incompletely Trusted Environment Adya et al., 2002 Stefan Heinz, WS 07/08

  3. Outline  Motivation / Introduction  System Overview  System Architecture  File System Features  Summary / Conclusion Stefan Heinz, WS 07/08

  4. Outline  Motivation / Introduction  System Overview  System Architecture  File System Features  Summary / Conclusion Stefan Heinz, WS 07/08

  5. Farsite Motivation / Introduction Farsite Server-based file-system What are the disadvantages Key techniques: BFT, replication, cryptography of this architecture? Stefan Heinz, WS 07/08

  6. Farsite Motivation / Introduction Want to achieve the benefits of a central file server A shared namespace  Location-transparent access  Reliable data storage  and the benefits of a local desktop file systems Low cost  Privacy from nosy sysadmins  Resistance to geographically localized faults  Stefan Heinz, WS 07/08

  7. Farsite Motivation / Introduction Key design objectives Emulation of a local NTFS file system  Scalability  Provide the benefits of BFT  Minimal administrative effort  Stefan Heinz, WS 07/08

  8. Outline  Motivation / Introduction  System Overview  System Architecture  File System Features  Summary / Conclusion Stefan Heinz, WS 07/08

  9. Farsite System Overview – Design Assumptions High-bandwidth, low-latency network  Majority of machines are up for the majority of the time  Incorrelated machine downtimes  Independent permanent machine failures  Each machine performs correctly for its immediate user  Stefan Heinz, WS 07/08

  10. Farsite System Overview – Namespace Roots Hierarchical directory namespace  Farsite supports multiple roots (like names of file servers)  Each root is managed by a set of machines,  which form a BFT group rootA rootB SubDirA SubDirB Stefan Heinz, WS 07/08

  11. Farsite System Overview – Trust and Certification namespace certificate Certification user certificate Authority machine certificate Each user private key is encrypted with a symmetric key derived  from the user’s password and then stored in a globally-readable directory Usage of certificate revocation lists  Stefan Heinz, WS 07/08

  12. Outline  Motivation / Introduction  System Overview  System Architecture  File System Features  Summary / Conclusion Stefan Heinz, WS 07/08

  13. Farsite System Architecture – Basic System Every machine may perform three roles   client  member of a directory group  file host A directory group collectively manages file information using a  BFT protocol The BFT protocol guarantees data consistency as long as fewer  than a third of the machines misbehave Stefan Heinz, WS 07/08

  14. Farsite System Architecture – Basic System metadata filedata clients directory group Stefan Heinz, WS 07/08

  15. Farsite System Architecture – Enhancements Scalability metadata hashes filedata BFT replication raw replication file hosts & directory group clients How many machines may die until data is lost? Stefan Heinz, WS 07/08

  16. Farsite System Architecture – Enhancements Performance Usage of local caching and file leases  Updates not pushed directly to the directory group, because  most file writes are deleted or overwritten shortly after they occur Stefan Heinz, WS 07/08

  17. Farsite System Architecture – Enhancements Security Clients encrypt written file data with the public keys of all  authorized readers Directory group cryptographically validates requests from users  before accepting updates Reliability When a machine is unavailable for an extended period of time,  its functions migrate to one or more other machines Data is lost permanently only if too many machines fail within too  small a time window to permit regeneration Stefan Heinz, WS 07/08

  18. Outline  Motivation / Introduction  System Overview  System Architecture  File System Features  Summary / Conclusion Stefan Heinz, WS 07/08

  19. Farsite File System Features - Security Convergent Encryption encrypt the generate one-way blocks using the hash of each block hashes as keys Benefits: encryptions are comparable, e.g. to identify block encyryption allows for: duplicated files ● writing individual blocks ● read individual blocks without use a randomly generated file key the need to load the entire file to encrypt the hashes and encrypt this key with the public keys of authorized readers Stefan Heinz, WS 07/08

  20. Farsite File System Features - Scalability Delegation of parts of the namespace  Hint based pathname translation  Clients cache pathnames and their mappings to directory groups Delayed directory-change notification   Clients register for a notification when a user lists a directory  The directory group packages the information, signs it and sends it to the registered clients Stefan Heinz, WS 07/08

  21. Outline  Motivation / Introduction  System Overview  System Architecture  File System Features  Summary / Conclusion Stefan Heinz, WS 07/08

  22. Farsite Summary / Conclusion Farsite is a scalable, decentralized network file system which  uses insecure and unreliable machines as a basis for a virtual file server that is secure and reliable To achieve this it uses a lot of known techniques:  replication, BFT, cryptography, certificates, leases, caching It also introduces new techniques:   convergent encryption metadata  timed byzantine operations hashes filedata BFT replication raw replication file hosts directory group Stefan Heinz, WS 07/08

  23. Farsite Summary / Conclusion Performance Measurements  ”For our performance evaluation, we configured a five- machine Farsite system [...]. Four machines served as file hosts and as members of a directory group, and one machine served as a client.” Performance conclusion: Farsite performs significantly better  than remote file access via CIFS Stefan Heinz, WS 07/08

  24. Zyzzyva Speculative Byzantine Fault Tolerance Kotla et al., 2007 Stefan Heinz, WS 07/08

  25. Outline  Motivation / Introduction  Protocol  Agreement Protocol  View Changes  Correctness  Summary / Conclusion Stefan Heinz, WS 07/08

  26. Outline  Motivation / Introduction  Protocol  Agreement Protocol  View Changes  Correctness  Summary / Conclusion Stefan Heinz, WS 07/08

  27. Zyzzyva: Speculative BFT Motivation / Introduction Goal of BFT protocols: Transform a high-performance service into a high-performance and reliable service Stefan Heinz, WS 07/08

  28. Zyzzyva: Speculative BFT Motivation / Introduction Why another BFT protocol? A lot of different BFT protocols exist, which perform differently in  different situations, e.g under different workload Such complexity represents a barrier to adoption of BFT  techniques because it requires to choose the right technique for a workload which then should not deviate from expectations Outperform other BFT protocols BFT? Yes Zyzzyva Stefan Heinz, WS 07/08

  29. Zyzzyva: Speculative BFT Motivation / Introduction One replica is selected as a primary  The primary proposes an order on client requests to the other  replicas Unlike in other protocols the replicas speculatively execute  requests without running an expensive agreement protocol Replicas states may diverge, but clients help to detect and  correct inconsistencies The replies of the replicas carry sufficient history information for  clients to determine if the replies and history are stable and guaranteed to be eventually committed Stefan Heinz, WS 07/08

  30. Zyzzyva: Speculative BFT Motivation / Introduction Traditional BFT state machine replication reply Client request Primary Replica 1 Replica 2 Replica 3 Agreement Execution Cost: Agreement protocol overhead Stefan Heinz, WS 07/08

  31. Zyzzyva: Speculative BFT Motivation / Introduction Zyzzyva: Speculative BFT Replication reply Client request Primary Replica 1 Replica 2 Replica 3 Speculative execution Cost: No explicit replica agreement Stefan Heinz, WS 07/08

  32. Outline  Motivation / Introduction  Protocol  Agreement Protocol  View Changes  Correctness  Summary / Conclusion Stefan Heinz, WS 07/08

  33. Zyzzyva: Speculative BFT Protocol - Agreement Protocol Clients should act only upon replies that correspond to stable  requests executed in a total order that is guaranteed to eventually commit at all correct servers The request has afterwards the same sequence number at all  correct replicas and the same history of preceding requests observed by the client Stefan Heinz, WS 07/08

  34. Zyzzyva: Speculative BFT Protocol - Agreement Protocol Client sends request to the primary  m = < REQUEST ,o ,t ,c >  c client primary Stefan Heinz, WS 07/08

  35. Zyzzyva: Speculative BFT Protocol - Agreement Protocol Primary receives request, assigns sequence number and  forwards ordered request to replicas <OR ,m > OR = < ORDER − REQ ,v ,n,h n ,d ,ND >  p d = H  m  ,h n = H  h n − 1 ,d  client primary Stefan Heinz, WS 07/08

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Making Byzantine Fault Tolerant Systems Tolerate Byzantine Faults Dian Yu 1/16 Comparison with

Making Byzantine Fault Tolerant Systems Tolerate Byzantine Faults Dian Yu 1/16 Comparison with

Making Byzantine Fault Tolerant Systems Tolerate Byzantine Faults Dian Yu 1/16 Comparison with PBFT (Traditional BFT protocols) Similarities: Build practical Byzantine fault tolerance systems Protocol: Clients Primary Replicas

493 views • 18 slides
Distributed Systems Making Byzantine Fault-Tolerant Systems Tolerate Byzantine Faults Hubert

Distributed Systems Making Byzantine Fault-Tolerant Systems Tolerate Byzantine Faults Hubert

Distributed Systems Making Byzantine Fault-Tolerant Systems Tolerate Byzantine Faults Hubert Jaworski Byzantine system Copies of critical components Concurent replicas Response agreement Omission failure proof Robustness

660 views • 20 slides
Making Byzantine Fault Tolerant Systems Tolerate Byzantine Failures Allen Clement, Mirco

Making Byzantine Fault Tolerant Systems Tolerate Byzantine Failures Allen Clement, Mirco

Making Byzantine Fault Tolerant Systems Tolerate Byzantine Failures Allen Clement, Mirco Marchetti, Edmund Wong Lorenzo Alvisi, Mike Dahlin BFT Systems PBFT [OSDI 98] Attested Append Only Memory [SOSP 07] HQ [OSDI 06] Beyond 1/3 Faulty in

655 views • 64 slides
Making Byzantine Fault Tolerant Systems Tolerate Byzantine Faults Xiaotian Zou, Lei Chu Outline

Making Byzantine Fault Tolerant Systems Tolerate Byzantine Faults Xiaotian Zou, Lei Chu Outline

Making Byzantine Fault Tolerant Systems Tolerate Byzantine Faults Xiaotian Zou, Lei Chu Outline - Introduction - System Model - Problem Recasting - Basic Structure - Protocol description - Analysis - Evaluation Introduction 1

715 views • 43 slides
BFTCBFTP: BYZANTINE-FAULT -TOLERANT CONSTRUCTION OF BFT PROTOCOLS EDWARD TREMEL SIGSEGV 2019

BFTCBFTP: BYZANTINE-FAULT -TOLERANT CONSTRUCTION OF BFT PROTOCOLS EDWARD TREMEL SIGSEGV 2019

BFTCBFTP: BYZANTINE-FAULT -TOLERANT CONSTRUCTION OF BFT PROTOCOLS EDWARD TREMEL SIGSEGV 2019 BYZANTINE FAULT TOLERANCE Long-standing problem in systems Byzantine (adj): excessively complicated, and typically involving a great deal of

685 views • 19 slides
Increasing Performance in Byzantine Fault-Tolerant Systems with On-Demand Replica Consistency

Increasing Performance in Byzantine Fault-Tolerant Systems with On-Demand Replica Consistency

Increasing Performance in Byzantine Fault-Tolerant Systems with On-Demand Replica Consistency Tobias Distler and R udiger Kapitza System Software Group Friedrich-Alexander University Erlangen-Nuremberg EuroSys April 11, 2011 supported by

620 views • 43 slides
Low-Latency Network-Scalable Byzantine Fault-Tolerant Replication 12th EuroSys Doctoral Workshop

Low-Latency Network-Scalable Byzantine Fault-Tolerant Replication 12th EuroSys Doctoral Workshop

Low-Latency Network-Scalable Byzantine Fault-Tolerant Replication 12th EuroSys Doctoral Workshop (EuroDW 2018) Ines Messadi, TU Braunschweig, Germany, 2018-04-23 New PhD student (Second month) in the distributed systems group Research area:

831 views • 13 slides
Performance of UDP-based Byzantine Fault Tolerant Consensus Final talk for the Bachelors

Performance of UDP-based Byzantine Fault Tolerant Consensus Final talk for the Bachelors

Chair of Network Architectures and Services Department of Informatics Technical University of Munich Performance of UDP-based Byzantine Fault Tolerant Consensus Final talk for the Bachelors Thesis by Lucas Mair advised by Richard von Seck,

523 views • 36 slides
Generating a Family of Byzantine- Fault-Tolerant Protocol Implementations Using a Meta- Model

Generating a Family of Byzantine- Fault-Tolerant Protocol Implementations Using a Meta- Model

Generating a Family of Byzantine- Fault-Tolerant Protocol Implementations Using a Meta- Model Architecture Graham Kirby, Alan Dearle &amp; Stuart Norcross School of Computer Science, University of St Andrews A Finite State Machine WADS 2007

599 views • 20 slides
Adaptive Fault Tolerant Systems: Adaptive Fault Tolerant Systems: Reflective Design and

Adaptive Fault Tolerant Systems: Adaptive Fault Tolerant Systems: Reflective Design and

1 Adaptive Fault Tolerant Systems: Adaptive Fault Tolerant Systems: Reflective Design and Validation Reflective Design and Validation Marc-Olivier Killijian Dependable Computing and Fault Tolerance Research Group Toulouse - France 2

865 views • 50 slides
MochiDB: A Byzantine Fault Tolerant Datastore Tigran Tsaturyan Saravanan Dhakshinamurthy 1. BFT

MochiDB: A Byzantine Fault Tolerant Datastore Tigran Tsaturyan Saravanan Dhakshinamurthy 1. BFT

MochiDB: A Byzantine Fault Tolerant Datastore Tigran Tsaturyan Saravanan Dhakshinamurthy 1. BFT KeyValue datastore (read(k), write(k,v), delete(k)) 2. Consistent 3. Supports transactions Description 4. In-built sharding 5. Optimized for

336 views • 12 slides
Fault-tolerant techniques Fault-tolerant techniques What causes component faults? What are the

Fault-tolerant techniques Fault-tolerant techniques What causes component faults? What are the

EDA421/DIT171 - Parallel and Distributed Real-Time Systems, Chalmers/GU, 2011/2012 Lecture #14 Updated May 2, 2012 Fault-tolerant techniques Fault-tolerant techniques What causes component faults? What are the effects if the

374 views • 9 slides
Federated Byzantine Quorum Systems lvaro Garca-Prez and Alexey Gotsman IMDEA Software

Federated Byzantine Quorum Systems lvaro Garca-Prez and Alexey Gotsman IMDEA Software

Federated Byzantine Quorum Systems lvaro Garca-Prez and Alexey Gotsman IMDEA Software Institute Blockchains Append-only, distributed ledger. Uses a Byzantine fault-tolerant (BFT) consensus algorithm to ensure that distributed nodes

1.12k views • 84 slides
4/22/2009 Designing highly available systems Incorporate elements of fault-tolerant design

4/22/2009 Designing highly available systems Incorporate elements of fault-tolerant design

4/22/2009 Designing highly available systems Incorporate elements of fault-tolerant design Replication, TMR Distributed Systems Fully fault tolerant system will offer non-stop availability Clusters You cant achieve this! Problem:

458 views • 11 slides
Lecture 10: Fault Tolerance Fault Tolerant Concurrent Computing The main principles of fault

Lecture 10: Fault Tolerance Fault Tolerant Concurrent Computing The main principles of fault

Lecture 10: Fault Tolerance Fault Tolerant Concurrent Computing The main principles of fault tolerant programming are: Fault Detection - Knowing that a fault exists Fault Recovery - having atomic instructions that can be rolled back in

361 views • 18 slides
Distributed Systems 5. Fault Tolerant Systems Fault-Tolerance - 1 Lszl Bszrmnyi

Distributed Systems 5. Fault Tolerant Systems Fault-Tolerance - 1 Lszl Bszrmnyi

Distributed Systems 5. Fault Tolerant Systems Fault-Tolerance - 1 Lszl Bszrmnyi Distributed Systems Fault tolerance A system or a component fails due to a fault Fault tolerance means that the system continues to provide its

428 views • 40 slides
WORSHIP BEGINS AT 9:00 A.M. WORSHIP BEGINS AT 9:00 A.M. Lansdale United Methodist Church

WORSHIP BEGINS AT 9:00 A.M. WORSHIP BEGINS AT 9:00 A.M. Lansdale United Methodist Church

WORSHIP BEGINS AT 9:00 A.M. WORSHIP BEGINS AT 9:00 A.M. Lansdale United Methodist Church Lansdale UMC Childrens Ministry Lansdale UMC Childrens Ministry LUMC Kids Page Find Us @ lansdale_umc WORSHIP BEGINS AT 9:00 A.M. WORSHIP BEGINS

631 views • 27 slides
ALBERTA TRANSPORTATION GEOHAZARD ASSESSMENT PROGRAM PEACE REGION PEACE-HIGH LEVEL 2009

ALBERTA TRANSPORTATION GEOHAZARD ASSESSMENT PROGRAM PEACE REGION PEACE-HIGH LEVEL 2009

ALBERTA TRANSPORTATION GEOHAZARD ASSESSMENT PROGRAM PEACE REGION PEACE-HIGH LEVEL 2009 INSPECTION Site Number Location Name Hwy km PH12 Judah Hill Heart River Slides 744:04 57.30 Legal Description UTM Co-ordinates SE 20-083-21

178 views • 7 slides
SERVO: TODAY &amp; TOMORROW Jack Moffitt // Mozilla Research // September 26, 2016 Goal Create a

SERVO: TODAY &amp; TOMORROW Jack Moffitt // Mozilla Research // September 26, 2016 Goal Create a

SERVO: TODAY &amp; TOMORROW Jack Moffitt // Mozilla Research // September 26, 2016 Goal Create a new browser engine making a generational leap in performance and robustness . Performance Through Parallelism Robustness From Rust WebAudio

497 views • 31 slides
t.smm.rs l s 1 t.EE ame e p Selection i cheapest access path 9 RCidbidday.name ii retrieve

t.smm.rs l s 1 t.EE ame e p Selection i cheapest access path 9 RCidbidday.name ii retrieve

Joins I Class 15 t.smm.rs l s 1 t.EE ame e p Selection i cheapest access path 9 RCidbidday.name ii retrieve tuples 4000 Pr _100 iii apply remaining selectionditions b i get rids from all matching indexes ii intersection rids retrieve

477 views • 6 slides
CS 683 - Security and Privacy Spring 2018 Instructor: Karim Eldefrawy University of San

CS 683 - Security and Privacy Spring 2018 Instructor: Karim Eldefrawy University of San

CS 683 - Security and Privacy Spring 2018 Instructor: Karim Eldefrawy University of San Francisco http://www.cs.usfca.edu/~keldefrawy/teaching /spring2018/cs683/cs683_main.htm (https://goo.gl/t396Fw) 1 Class Project 2 Pu Purpose Learn

194 views • 7 slides
Families of Abelian Varieties with Big Monodromy David Zureick-Brown (Emory University) David

Families of Abelian Varieties with Big Monodromy David Zureick-Brown (Emory University) David

Families of Abelian Varieties with Big Monodromy David Zureick-Brown (Emory University) David Zywina (IAS) Slides available at http://www.mathcs.emory.edu/~dzb/slides/ 2013 Colorado AMS meeting Special Session on Arithmetic statistics and big

425 views • 24 slides
Association DESM.ch Dynamic model of a railway system Beginning Doctoral studies at TU

Association DESM.ch Dynamic model of a railway system Beginning Doctoral studies at TU

Association DESM.ch Dynamic model of a railway system Beginning Doctoral studies at TU Braunschweig Methods to acquire and manage data in railway Analyse problems with human-machine-interface (HMI) Investigate human factors with

310 views • 19 slides
Opera&amp;onal limits Introduc)on to Aeronau)cal Engineering Dr.

Opera&amp;onal limits Introduc)on to Aeronau)cal Engineering Dr.

Opera&amp;onal limits Introduc)on to Aeronau)cal Engineering Dr. ir. Mark Voskuijl Brazilian Air Force CC-BY Opera&amp;onal limits Manoeuvre loads

552 views • 22 slides

More recommend