challenging malicious inputs with fault tolerance
play

Challenging Malicious Inputs with Fault Tolerance Techniques Bruno - PowerPoint PPT Presentation

Jan 19, 2023 •333 likes •962 views

Challenging Malicious Inputs with Fault Tolerance Techniques Bruno Luiz Agenda Threats Fault Tolerance Fault Injection for Fault Tolerance Assessment Basic and classic techniques Decision Mechanisms Implementation

  1. Challenging Malicious Inputs with Fault Tolerance Techniques Bruno Luiz

  2. Agenda • Threats • Fault Tolerance • Fault Injection for Fault Tolerance Assessment • Basic and classic techniques • Decision Mechanisms • Implementation Methodology

  3. Threats • Fault is the identifed or hypothesized cause of an error • An error is part of the system state that is liable to lead to a failure • A failure occurs when the service delivered by the system deviates from the specified service, otherwise termed an incorrect result propagation causation activation fault error failure fault

  4. The Classes of Faults

  5. Tree Representation of Faults

  6. Objective • Malicious faults are introduced during either system development with the intent to cause harm to the system - They are grouped into two classes • Potentially harmful components - Trojan horses - Trapdoors - Logic or Timing bombs • Deliberately introduced software or hardware - Vulnerabilities or human-made faults • Non-malicious faults are introduced without malicious objectives - Vulnerabilities

  7. Malicious Logic Faults • That encompass development faults - Logic Bomb - Trojan horse - Trapdoor • Operational faults - Virus - Worm - Zombie

  8. Intrusion Attempts • Malicious Inputs - To disrupt or halt service - To access confidential information - To improperly modify the system Application Software Layer Operating/Database System Hardware

  9. Vulnerabilities • Development or operational faults • Common feature of interaction faults • Malicious or non-malicious faults • Can be external fault that exploit them

  10. Fault Tolerance “The goal of fault tolerance methods is to include safety features in the software design or Source Code to ensure that the software will respond correctly to input data errors and prevent output and control errors” Software faults are what we commonly call "bugs"

  11. Fault Tolerance • Can, in principle, be applied at any level in a software system - Procedure - Process - Full application program - The whole system including the operating system • Economical and effective means to increase the level of fault tolerance in application - Watchd - libft - REPL

  12. Error Detection and Correction • Verification tests capable of detection of the errors - Replication - Temporal - Consistency - Diagnosis • Once the error has been detected, the next step will be your elimination - Backward Recovery - Forward Recovery

  13. Backward Recovery Rollback Recovery Checkpoint Restore checkpoint point Fault detection Fault Fault Tolerance detected

  14. Forward Recovery Fault detection and handling Recovery point Fault tolerated

  15. Redundancy • Types of Redundancy for Software Fault Tolerance - Software Redundancy - Information or Data Redundancy - Temporal Redundancy • The selection of which type of redundancy to use is dependent on the... - Application’s requirements - Resources - Techniques

  16. Robust Software • Defined as “the extent to which software can continue to operate correctly despite the introduction of invalid inputs” - Out of range inputs - Inputs of the wrong type - Inputs in the wrong format • Self-checking software features - Testing the input data - Testing the control sequences - Testing the function of the process

  17. Robust software operation Robust software True Valid Input False Use last Use Request or or acceptable Predefined new input value value Raise Exception flag Continue Software operation Result Handle exceptions

  18. Diversity • Since redundancy alone is not sufficient to help detect and tolerate software design faults • This diversity can be applied at several levels and in several forms • Forms of diversity - Design diversity - Data diversity - Temporal diversity

  19. Basic Design Diversity Input ... ... Variant 1 Variant 2 Variant 3 Incorrect Decider Correct

  20. Data Diversity • To avoid anomalous areas in the input data space that cause faults • Use data re-expression algorithms (DRAs) to obtain their input data • Depends on the performance of the re- expression algorithm used - Input Data Re-Expression - Input Re-Expression with Post-Execution Adjustment - Re-Expression via Decomposition and Recombination

  21. Overview of Data Re-Expression • A re-expression algorithm, R, transforms the original input x to produce the new input, y = R(x) • The input y may either approximate x or contain x’s information in a different form Execute x P(x) P Re-expression Execute P(y) y = R(x) P

  22. Data Re-Expression With Postexecution Adjustment • A correction, A, is performed on P(y) to undo the distortion produced by the re- expression algorithm, R • This approach allows major changes to the inputs Execute x P(x) P Re-expression Execute Adjust for A(P(y)) y = R(x) P re-expression

  23. Data Re-Expression via Decomposition and Recombination • An input x is decomposed into a related set of inputs • Results are then recombined Execute x P(x) P P(x 1 ) P(x 2 ) ... Decompose Recombine F(P(x i )) P(x n ) x → x 1 , ..., x n P(x i )

  24. Fault Injection for Fault Tolerance Assessment • Injecting faults enables a performance estimate for the fault tolerance mechanisms - Fuzzing • Latency (the time from fault occurrence to error manifestation at the observation point) - Exploit vulnerability • Coverage (faults handled properly)

  25. Fault Injection for Fault Tolerance Assessment • Advantages of Fault Injection using fuzzing - Accelerating the failure rate - Able to better understand the behavior of that mechanism • Error propagation • Output response characteristics

  26. Fault Injection for Fault Tolerance Assessment • Advantages of Fault Injection using exploration Memory - Saving and restoring the Normal execution context 2 Error - Integrity of the data 3 during execution - Test backward 1 Main Cache recovery Context 4

  27. Programming Techniques • Assertions • Checkpointing • Atomic actions

  28. Assertions • Are a fairly common means of program validation and error detection • In essence, they check whether a current program state to determine if it is corrupt by testing for out-of-range variable values • Simplest form if not assertion then action

  29. Assertions • Several modern programming languages include an assertion statement • When an error does occur it is detected immediately and directly, rather than later through its often obscure side-effects int *ptr = malloc(sizeof(int) * 10); assert(ptr != NULL); // use ptr

  30. Assertions • Simplify debugging • Checked at runtime int total = countNumberOfUsers(); if (total % 2 == 0) { // total is even } else { // total is odd assert(total % 2 == 1); }

  31. Checkpointing • Is used in error recovery, which we recall restores a previously saved state of the system when a failure is detected • Saves a complete copy of the state when a recovery point is established • The information saved by checkpoints includes - Values of variables in the process - Environment - Control information - Register values

  32. Checkpointing • Complex mechanism of restoring the stack and register state of the checkpointed process • Save the state of data in memory, the processor context (register and instruction pointer) and the stack - User-level - Kernel-level

  33. Checkpointing • Methods - Internal • Only be used by the process being checkpointed • Insert some code into the process to be checkpointed - External • May be used by any process • Examine the information published by the kernel through the /proc

  34. Checkpointing • Types - Static • Gathering kernel state information • Information can be acquired more or less directly from the kernel - Dynamic • Track all operations by a process • Replace C library functions with wrappers • Existing systems - libckpt - condor - hector - icee - EPCKPT - CHPOX

  35. Atomic Actions • Are used for error recovery • An atomic action is an action that is - Indivisible - Serializable - Recoverable

  36. Basic and Classic Techniques • Recovery Blocks • N-Version Programming • Retry Blocks • N-Copy Programming

  37. Recovery Blocks • Dynamic technique • Uses an AT and backward recovery • RcB scheme - Executive - Acceptance test - Primary and alternate blocks (variants) - Watchdog timer (WDT)

  38. Recovery Block Operation • General Syntax ensure Acceptace Test by Primary Alternate else by Alternate 2 else by Alternate 3 ... else by Alternate n else failure exception

  39. Recovery Block Operation RcB entry RcB Establish checkpoint New alternate exists Yes No Execute and deadline alternate not expired? Exception signals Fail Restore Evaluate checkpoint AT Pass Discard checkpoint Failure exception RcB exit

  40. N-Version Programming • Static technique • Use a decision mechanism (DM) and forward recovery • NVP technique consists - Executive - n variants - DM

  41. N-Version Programming Operation • General Syntax Run Version 1, Version 2, ..., Version n if (Decision Mechanism (Result 1, Result 2, ..., Result n)) return Result else failure exception

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Roadmap for Section 10.1 The Notion of Fault-Tolerance Fault-Tolerance Support in NTFS Volume

Roadmap for Section 10.1 The Notion of Fault-Tolerance Fault-Tolerance Support in NTFS Volume

Unit OS10: Fault Tolerance Windows Operating System Internals - by David A. Solomon and Mark E. Russinovich with Andreas Polze Roadmap for Section 10.1 The Notion of Fault-Tolerance Fault-Tolerance Support in NTFS Volume Management - Striped

394 views • 25 slides
Fault Tolerance in Message Passing Fault Tolerance in Message Passing and in Action and in

Fault Tolerance in Message Passing Fault Tolerance in Message Passing and in Action and in

Fault Tolerance in Message Passing Fault Tolerance in Message Passing and in Action and in Action Jack Dongarra, Innovative Computing Laboratory University of Tennessee and Computer Science and Mathematics Division Oak Ridge National

422 views • 14 slides
General Principles of Fault- Tolerance Daniel Gottesman Perimeter Institute Whats Left For

General Principles of Fault- Tolerance Daniel Gottesman Perimeter Institute Whats Left For

General Principles of Fault- Tolerance Daniel Gottesman Perimeter Institute Whats Left For Fault-Tolerance? Reduce the overhead (in space and in time) needed for fault-tolerance Better fault-tolerance in 1D? Better magic state

556 views • 22 slides
Rigorous fault-tolerance thresholds Ben Reichardt UC Berkeley N gate circuit 0/1 N gate

Rigorous fault-tolerance thresholds Ben Reichardt UC Berkeley N gate circuit 0/1 N gate

Rigorous fault-tolerance thresholds Ben Reichardt UC Berkeley N gate circuit 0/1 N gate circuit Need error 1/N 1/0 Quantum fault-tolerance problem Classical fault-tolerance: Von Neumann (1956) 0/1 Fault-tolerant, larger C High

846 views • 63 slides
Lecture 10: Fault Tolerance Fault Tolerant Concurrent Computing The main principles of fault

Lecture 10: Fault Tolerance Fault Tolerant Concurrent Computing The main principles of fault

Lecture 10: Fault Tolerance Fault Tolerant Concurrent Computing The main principles of fault tolerant programming are: Fault Detection - Knowing that a fault exists Fault Recovery - having atomic instructions that can be rolled back in

361 views • 18 slides
CH NG 8: FAULT TOLERANCE TS. Tr n H i Anh Content 2 1. Introduction to fault

CH NG 8: FAULT TOLERANCE TS. Tr n H i Anh Content 2 1. Introduction to fault

1 Tr n H i Anh Distributed System CH NG 8: FAULT TOLERANCE TS. Tr n H i Anh Content 2 1. Introduction to fault tolerance 2. Process resilience 3. Reliable client-Server Communication 4. Reliable Group Communication 5.

966 views • 50 slides
Distributed Systems 5. Fault Tolerant Systems Fault-Tolerance - 1 Lszl Bszrmnyi

Distributed Systems 5. Fault Tolerant Systems Fault-Tolerance - 1 Lszl Bszrmnyi

Distributed Systems 5. Fault Tolerant Systems Fault-Tolerance - 1 Lszl Bszrmnyi Distributed Systems Fault tolerance A system or a component fails due to a fault Fault tolerance means that the system continues to provide its

428 views • 40 slides
CSci 5105 Introduction to Distributed Systems Fault Tolerance Last Time Replication and

CSci 5105 Introduction to Distributed Systems Fault Tolerance Last Time Replication and

CSci 5105 Introduction to Distributed Systems Fault Tolerance Last Time Replication and Consistency Today Fault tolerance Chapter 8 TVS Fault Tolerance Basics Availability short time horizon e.g down 1 msec every hour

292 views • 27 slides
Distributed Systems (ICE 601) Fault Tolerance Dongman Lee ICU Class Overview Introduction

Distributed Systems (ICE 601) Fault Tolerance Dongman Lee ICU Class Overview Introduction

Distributed Systems (ICE 601) Fault Tolerance Dongman Lee ICU Class Overview Introduction Failure Model Fault Tolerance Models state machine primary-backup Distributed Systems - Fault Tolerance Introduction

146 views • 12 slides
Fibre bundle framework for unitary quantum fault tolerance Lucy Liuxuan Zhang University of

Fibre bundle framework for unitary quantum fault tolerance Lucy Liuxuan Zhang University of

Motivations and main idea Basics of quantum fault tolerance Geometric picture of QECCs and unitary fault tolerance Conclusion Fibre bundle framework for unitary quantum fault tolerance Lucy Liuxuan Zhang University of Toronto December 18,

795 views • 16 slides
Hypervisor-Based Fault-Tolerance Thomas C. Bressoud, Isis

Hypervisor-Based Fault-Tolerance Thomas C. Bressoud, Isis

Hypervisor-Based Fault-Tolerance Thomas C. Bressoud, Isis Distributed Systems Fred B. Schneider, Cornell University SOSP, 1995 Problem Fault tolerance

2.97k views • 8 slides
Adaptability and Fault Tolerance Adaptability and Fault Tolerance Rog rio rio de Lemos de

Adaptability and Fault Tolerance Adaptability and Fault Tolerance Rog rio rio de Lemos de

Adaptability and Fault Tolerance Adaptability and Fault Tolerance Rog rio rio de Lemos de Lemos Rog University of Kent, UK University of Kent, UK Context: self-* and dependability; Focus: adaptability and fault tolerance;

640 views • 19 slides
Towards an Efficient Fault-Tolerance Scheme for GLB Claudia Fohry, Marco Bungart and Jonas Posner

Towards an Efficient Fault-Tolerance Scheme for GLB Claudia Fohry, Marco Bungart and Jonas Posner

GLB Fault Tolerance Scheme Experimental Results Towards an Efficient Fault-Tolerance Scheme for GLB Claudia Fohry, Marco Bungart and Jonas Posner Programming Languages / Methodologies June 14, 2015 1 / 18 GLB Fault Tolerance Scheme

744 views • 18 slides
iQIM 5 December 2011 Quantum fault tolerance Error correction and fault tolerance will be

iQIM 5 December 2011 Quantum fault tolerance Error correction and fault tolerance will be

Protected gates for superconducting qubits V( ) John Preskill with Peter Brooks and Alexei Kitaev

511 views • 33 slides
Fault Tolerance For Sparse Linear Algebra Computations Implemented In A Grid Environment

Fault Tolerance For Sparse Linear Algebra Computations Implemented In A Grid Environment

Fault Tolerance For Sparse Linear Algebra Computations Implemented In A Grid Environment Experiments with Fault Tolerant Linear Algebra Algorithms Jack Dongarra Jeffery Chen Zhiao Shi Asim YarKhan University of Tennessee Fault Tolerance:

412 views • 22 slides
Fault Tolerance and Robustness in Concurrent Systems Faults, errors, failures, and fault

Fault Tolerance and Robustness in Concurrent Systems Faults, errors, failures, and fault

Fault Tolerance and Robustness in Concurrent Systems Faults, errors, failures, and fault tolerance have many different definitions. What working definition should we use for fault? What does it mean to be fault-tolerant? 2 Faults, errors,

841 views • 16 slides
DETERMINING DISABILITY Objectives: 1. To discuss the affects of disability on the individual.

DETERMINING DISABILITY Objectives: 1. To discuss the affects of disability on the individual.

Dr. B. Baydock , MD, CCFP(SEM), FCFP, Dip Sport Medicine (CASEM) DETERMINING DISABILITY Objectives: 1. To discuss the affects of disability on the individual. 2. To review the issues associated with determining disability. 3. To provide a

442 views • 43 slides
Setting Specifications Statistical considerations Enda Moran Senior Director, Development,

Setting Specifications Statistical considerations Enda Moran Senior Director, Development,

Setting Specifications Statistical considerations Enda Moran Senior Director, Development, Pfizer Melvyn Perry Manager, Statistics, Pfizer B Basic Statistics i St ti ti Population distribution p 1 5 1.5 (usually unknown). True

758 views • 16 slides
PRESENTATION SESSIONS BREAKOUT International Conference on Sustainable Development and Livelihoods

PRESENTATION SESSIONS BREAKOUT International Conference on Sustainable Development and Livelihoods

PRESENTATION SESSIONS BREAKOUT International Conference on Sustainable Development and Livelihoods 2016 (ICSDL 2016) 26 - 28 August 2016 Universiti Malaysia Terengganu, Kuala Terengganu, Malaysia Session 1A : THEME: Governance and Policy Studies

703 views • 49 slides
'-l il -14t q ,I 6 R o tr e q f o ![ b i= IG {} lb t lq t(a t6 to [6 IP

'-l il -14t q ,I 6 R o tr e q f o ![ b i= IG {} lb t lq t(a t6 to [6 IP

'-l il -14t q ,I 6 R o tr e q f o ![ b i= IG {} lb t lq t(a t6 to [6 IP la. Itr lo It t: io tl l6 li; , c, IE ! E IE =ETJ a r3E? !!.=q6 :l tEs ..." o ta e E' 3 o- '.$ :o l= G o ro

674 views • 19 slides
Pl us August 2017 1 Overview of the Retention us Management System Pl A conceptual

Pl us August 2017 1 Overview of the Retention us Management System Pl A conceptual

Strengthening Student Success and Retention Initiatives with the Retention Management System Pl us August 2017 1 Overview of the Retention us Management System Pl A conceptual framework for retention Students Entering Student

506 views • 35 slides
Bituminous PWT (Percent Within Tolerance) Steven L. Koser, P.E. Pennsylvania Department of

Bituminous PWT (Percent Within Tolerance) Steven L. Koser, P.E. Pennsylvania Department of

Bituminous PWT (Percent Within Tolerance) Steven L. Koser, P.E. Pennsylvania Department of Transportation www.dot.state.pa.us 1 Spec Limits and Goal Posts are Similar www.dot.state.pa.us 2 Quality Measure: Percent Within Tolerance (PWT)

833 views • 30 slides
The Expansion of Zero Tolerance From No Guns to No Toy Guns No Nail clippers No

The Expansion of Zero Tolerance From No Guns to No Toy Guns No Nail clippers No

Student Threat Assessment November 17, 2017 Dewey Cornell, Ph.D. Statew ide I m plem entation of Student Threat Assessm ent in Virginia Public Schools Dewey Cornell, Jennifer Maeng, Francis Huang (U Missouri), Timothy Konold, Anna Grace

436 views • 7 slides
The School-to-Prison Pipeline (STPP) & Restorative Justice St. Claire Adriaan - Director Of

The School-to-Prison Pipeline (STPP) & Restorative Justice St. Claire Adriaan - Director Of

The School-to-Prison Pipeline (STPP) & Restorative Justice St. Claire Adriaan - Director Of Instructional Support - Academia Avance (Los Angeles) Tommy Ramirez - Dean of Students - MAAC Community Charter School (San Diego) Our Objective

630 views • 29 slides

More recommend