Declarative, Secure, Convergent Edge Computation Christopher - - PowerPoint PPT Presentation

Declarative, Secure, Convergent Edge Computation

Christopher Meiklejohn Université catholique de Louvain, Belgium

1

Internet of Things

2

Internet of Things

2

but, more generally…

Edge Computation

• Logical extremes


Pushing both computation and data to the logical extremes of the network

3

Edge Computation

• Logical extremes


Pushing both computation and data to the logical extremes of the network

• Arbitrary computation


Support arbitrary computations regardless of location of data in the network

3

Edge Computation

• Logical extremes


Pushing both computation and data to the logical extremes of the network

• Arbitrary computation


Support arbitrary computations regardless of location of data in the network

• Self-organizing, resilient


Directed diffusion, Cornell circa-1990; self-organizing systems that coordinate to complete computations

3

Example Application Hospital Refrigerators

4

Hospital Refrigerators Typical Topology

5

6

Internet

7

Internet HDFS

8

Internet HDFS Hadoop Client Client Internet

9

Internet HDFS Spark Client Client Internet

10

Hospital Refrigerators Ideal Execution

11

Internet HDFS Spark

12

Internet HDFS Spark

13

Internet HDFS Spark

14

Internet HDFS Spark

15

Internet HDFS Spark

16

Client Internet HDFS Spark

17

Problem Connectivity

18

Internet HDFS Spark

19

Internet HDFS Spark

20

Internet HDFS Spark

21

Internet HDFS Spark

22

Internet HDFS Spark

23

Internet HDFS Spark

24

Internet HDFS Spark

25

Solution Local Decisions

26

Internet HDFS Spark

27

Internet HDFS Spark

28

Internet HDFS Spark

29

Internet HDFS Spark

30

Internet HDFS Spark

31

Local Decisions

• Not new for backup (80s-90s)


Backup communication mechanisms for critical systems; POTS backup for ISDN, etc.

32

Local Decisions

• Not new for backup (80s-90s)


Backup communication mechanisms for critical systems; POTS backup for ISDN, etc.

• Not new for storage (90s-00s)


EMC’s “phone home” via POTS when disks failed in NAS devices to signal for replacement unit

32

Solution Transitive Dissemination

33

Internet HDFS Spark

34

Internet HDFS Spark

35

Internet HDFS Spark

36

Internet HDFS Spark

37

Internet HDFS Spark

38

Internet HDFS Spark Client

39

Problem State Transmission

40

Internet

41

Internet

42

Internet

43

Internet

44

Solution Aggregate Dissemination

45

Internet

46

Internet

47

Internet

48

Internet HDFS

49

Internet

= =

HDFS

50

Internet ?

= =

51

Internet ?

= =

52

Local Computation

• Reduce state transmission


Perform some local computation to reduce transmitted state on the wire

53

Local Computation

• Reduce state transmission


Perform some local computation to reduce transmitted state on the wire

• Make local decisions


Make decisions based on results of local computation

53

Databases Consistency Models

54

Databases Strong Consistency

55

R1 C1 C2

56

R1 C1 C2

57

R1 C1 C2 Read

58

R1 C1 C2 Read

59

R1 C1 C2

60

R1 C1 C2 CAS

61

R1 C1 C2

62

R1 C1 C2 CAS

63

I won’t diagram the Paxos protocol

64

R2 C1 C2 Value 2 Value 1 Value 2 R1 R3 Paxos

65

Databases Eventual Consistency

66

R1 R2 R3 C1 C2

67

R1 R2 R3 C1 C2

68

R1 R2 R3 C1 C2 Read

69

R1 R2 R3 C1 C2 Read

70

R1 R2 R3 C1 C2 Write

71

R1 R2 R3 C1 C2 Write

72

R1 R2 R3 C1 C2 Write C1

73

R1 R2 R3 C1 C2 Read

74

R1 R2 R3 C1 C2 Write

75

Eventual Consistency As The Model

76

Clients Own Their Data

77

78

79

80

Computations

Mergeability & Provenance

81

A A B C

82

A A B C D’ D’’

F F

83

A A B C D’ D’’ D’ D’’ D

≤ ≤

F F

84

D’’ A A B C D’ D’ D’’ D

≤ ≤

D D

Merge

F F

85

Example Application Preliminary Results

86

Preliminary Results

• Conflict-Free Replicated Data Types


Distributed data structures designed for convergence 
 [Shapiro et al., 2011]

87

Preliminary Results

• Conflict-Free Replicated Data Types


Distributed data structures designed for convergence 
 [Shapiro et al., 2011]

• Lattice Processing


Make decisions based on results of local computation
 [Meiklejohn & Van Roy, 2015]

87

Preliminary Results

• Conflict-Free Replicated Data Types


Distributed data structures designed for convergence 
 [Shapiro et al., 2011]

• Lattice Processing


Make decisions based on results of local computation
 [Meiklejohn & Van Roy, 2015]

• Selective Hearing


Scalable, epidemic broadcast based runtime system
 [Meiklejohn & Van Roy, 2015/2016]

87

Conflict-Free 
 Replicated Data Types

• Collection of types


Sets, counters, registers, flags, maps

88

Conflict-Free 
 Replicated Data Types

• Collection of types


Sets, counters, registers, flags, maps

• Strong Eventual Consistency (SEC)


Objects that receive the same updates, regardless of order, will reach equivalent state

88

RA RB RC

RA RB RC {1} (1, {a}, {}) add(1)

RA RB RC {1} (1, {a}, {}) add(1) {1} (1, {c}, {}) add(1)

RA RB RC {1} (1, {a}, {}) add(1) {1} (1, {c}, {}) add(1) {} (1, {c}, {c}) remove(1)

RA RB RC {1} (1, {a}, {}) add(1) {1} (1, {c}, {}) add(1) {} (1, {c}, {c}) remove(1) {1} {1} {1} (1, {a, c}, {c}) (1, {a, c}, {c}) (1, {a, c}, {c})

Lattice Processing

• Distributed dataflow


Declarative, functional programming model

94

Lattice Processing

• Distributed dataflow


Declarative, functional programming model

• Convergent data structures


Data abstraction is the CRDT

94

Lattice Processing

• Distributed dataflow


Declarative, functional programming model

• Convergent data structures


Data abstraction is the CRDT

• Enables composition


Composition preserves SEC

94

95

%% Create initial set. S1 = declare(set), %% Add elements to initial set and update. update(S1, {add, [1,2,3]}), %% Create second set. S2 = declare(set), %% Apply map operation between S1 and S2. map(S1, fun(X) -> X * 2 end, S2).

96

%% Create initial set. S1 = declare(set), %% Add elements to initial set and update. update(S1, {add, [1,2,3]}), %% Create second set. S2 = declare(set), %% Apply map operation between S1 and S2. map(S1, fun(X) -> X * 2 end, S2).

97

%% Create initial set. S1 = declare(set), %% Add elements to initial set and update. update(S1, {add, [1,2,3]}), %% Create second set. S2 = declare(set), %% Apply map operation between S1 and S2. map(S1, fun(X) -> X * 2 end, S2).

98

%% Create initial set. S1 = declare(set), %% Add elements to initial set and update. update(S1, {add, [1,2,3]}), %% Create second set. S2 = declare(set), %% Apply map operation between S1 and S2. map(S1, fun(X) -> X * 2 end, S2).

99

%% Create initial set. S1 = declare(set), %% Add elements to initial set and update. update(S1, {add, [1,2,3]}), %% Create second set. S2 = declare(set), %% Apply map operation between S1 and S2. map(S1, fun(X) -> X * 2 end, S2).

Delta-based Dissemination

• Delta-state based CRDTs


Reduces state transmission for clients

100

Delta-based Dissemination

• Delta-state based CRDTs


Reduces state transmission for clients

• Operate locally


Objects are mutated locally; deltas buffered locally and periodically gossiped

100

Delta-based Dissemination

• Delta-state based CRDTs


Reduces state transmission for clients

• Operate locally


Objects are mutated locally; deltas buffered locally and periodically gossiped

• Only fixed number of clients


Clients resort to full state synchronization when they’ve been partitioned too long

100

Selective Hearing

• Epidemic broadcast protocol


Runtime system for application state & scope

109

Selective Hearing

• Epidemic broadcast protocol


Runtime system for application state & scope

• Peer-to-peer dissemination


Pairwise synchronization between peers without a central coordinator

109

Selective Hearing

• Epidemic broadcast protocol


Runtime system for application state & scope

• Peer-to-peer dissemination


Pairwise synchronization between peers without a central coordinator

• No ordering guarantees on messages


Programming model can tolerate message reordering and duplication

109

Membership Overlay

Membership Overlay Broadcast Overlay

Membership Overlay Broadcast Overlay

Membership Overlay Broadcast Overlay Mobile Phone

Membership Overlay Broadcast Overlay Mobile Phone Distributed Hash Table

Membership Overlay Broadcast Overlay Mobile Phone Distributed Hash Table Lasp Execution

What can we build? Advertisement Counter

116

Advertisement Counter

• Mobile game platform selling

advertisement space
 Advertisements are paid according to a minimum number of impressions

117

Advertisement Counter

• Mobile game platform selling

advertisement space
 Advertisements are paid according to a minimum number of impressions

• Clients will go offline


Clients have limited connectivity and the system still needs to make progress while clients are offline

117

Ads Rovio Ad Counter 1 Rovio Ad Counter 2 Riot Ad Counter 1 Riot Ad Counter 2 Contracts Ads Contracts Ads With Contracts Riot Ads Rovio Ads Filter Product Read ≥ 50,000 Remove Increment Read Union Lasp Operation User-Maintained CRDT Lasp-Maintained CRDT

Client Side, Single Copy at Client

118

Ads Rovio Ad Counter 2 Riot Ad Counter 1 Riot Ad Counter 2 Contracts Riot Ads Ads Product Union

119

Ads Rovio Ad Counter 1 Rovio Ad Counter 2 Riot Ad Counter 1 Riot Ad Counter 2 Contracts Ads Contracts Ads With Contracts Riot Ads Rovio Ads Filter Product Read ≥ 50,000 Remove Increment Union

120

Ads Contracts Ads Contracts Ads With Contracts Riot Ads Rovio Ads Filter Product Remove Union

121

Ads Contracts Ads Contracts Ads With Contracts Filter Product Read

Rovio Ad Counter 1 Rovio Ad Counter 2 Rovio Ad Counter 1 Rovio Ad Counter 2 Rovio Ad Counter 1 Rovio Ad Counter 2 Rovio Ad Counter 1 Rovio Ad Counter 2

122

Ads Contracts Ads With Contracts Filter Product Read

Rovio Ad Counter 1 Rovio Ad Counter 2 Riot Ad Counter 1 Rovio Ad Counter 1 Rovio Ad Counter 2 Riot Ad Counter 1 Rovio Ad Counter 1 Rovio Ad Counter 2 Riot Ad Counter 1 Rovio Ad Counter 1 Rovio Ad Counter 2 Riot Ad Counter 1

Client Side, Single Copy at Client

123

Ads Rovio Ad Counter 1 Rovio Ad Counter 2 Riot Ad Counter 1 Riot Ad Counter 2 Contracts Ads Contracts Ads With Contracts Riot Ads Rovio Ads Filter Product Read ≥ 50,000 Remove Increment Read Union

Client Side, Single Copy at Client

124

Ads Rovio Ad Counter 1 Rovio Ad Counter 2 Riot Ad Counter 1 Contracts Riot Ads Rovio Ads Product Read ≥ 50,000 Remove Increment Union

125

Ads Rovio Ad Counter 1 Rovio Ad Counter 2 Riot Ad Counter 1 Riot Ad Counter 2 Contracts Ads Contracts Ads With Contracts Riot Ads Rovio Ads Filter Product Read ≥ 50,000 Remove Increment Read Union

Client Side, Single Copy at Client

126

Advertisement Counter

• Completely monotonic


Disabling advertisements and contracts are all modeled through monotonic state growth

127

Advertisement Counter

• Completely monotonic


Disabling advertisements and contracts are all modeled through monotonic state growth

• Arbitrary distribution


Use of convergent data structures allows computational graph to be arbitrarily distributed

127

Advertisement Counter

• Completely monotonic


Disabling advertisements and contracts are all modeled through monotonic state growth

• Arbitrary distribution


Use of convergent data structures allows computational graph to be arbitrarily distributed

• Divergence


Divergence is a factor of synchronization period

127

Client3

Lasp Operation User-Maintained CRDT Lasp-Maintained CRDT

Riot Ad Counter 1

Client1 Client2

Rovio Ad Counter 1 Rovio Ad Counter 2 Rovio Ad Counter 1 Rovio Ad Counter 2 Rovio Ad Counter 1 Riot Ad Counter 2 Riot Ad Counter 1 Riot Ad Counter 1

Ads With Contracts Ads With Contracts Ads With Contracts

Server

Ads With Contracts

Server Computation!

128

Client3

Lasp Operation User-Maintained CRDT Lasp-Maintained CRDT

Riot Ad Counter 1

Client1 Client2

Rovio Ad Counter 1 Rovio Ad Counter 2 Rovio Ad Counter 1 Rovio Ad Counter 2 Rovio Ad Counter 1 Riot Ad Counter 2 Riot Ad Counter 1 Riot Ad Counter 1

Ads With Contracts Ads With Contracts Ads With Contracts

Server

Ads With Contracts

Server Computation!

129

Client3

Lasp Operation User-Maintained CRDT Lasp-Maintained CRDT

Riot Ad Counter 1

Client1 Client2

Rovio Ad Counter 1 Rovio Ad Counter 2 Rovio Ad Counter 1 Rovio Ad Counter 2 Rovio Ad Counter 1 Riot Ad Counter 2 Riot Ad Counter 1 Riot Ad Counter 1

Ads With Contracts Ads With Contracts Ads With Contracts

Server

Ads With Contracts

Server Computation!

130

Advertisement Counter

• “Servers” as peers to “clients”


Servers are peers to clients that perform additional computation

131

Advertisement Counter

• “Servers” as peers to “clients”


Servers are peers to clients that perform additional computation

• Any node can disable an advertisement under this

model given enough information

131

Advertisement Counter

• “Servers” as peers to “clients”


Servers are peers to clients that perform additional computation

• Any node can disable an advertisement under this

model given enough information

• “Servers” as trusted nodes


Serve as a location for performing “exactly once” side- effects

131

Advertisement Counter

• “Servers” as peers to “clients”


Servers are peers to clients that perform additional computation

• Any node can disable an advertisement under this

model given enough information

• “Servers” as trusted nodes


Serve as a location for performing “exactly once” side- effects

• Billing customers must be done at a central point by a

trusted node in the system

131

We’ve built up from zero synchronization

132

We’ve built up from zero synchronization

132

Instead of working to remove synchronization

Challenges Looking Ahead

133

Causality State Explosion

134

Set Counter

Set Counter {1} (1, {c}, {}) 1 {(c, 1)}, {}

Set Counter {1} (1, {c}, {}) 1 {(c, 1)}, {} {} (1, {c}, {c}) {(c, 1)}, {(c, 1)}

Set Counter {1} (1, {c}, {}) 1 {(c, 1)}, {} {} (1, {c}, {c}) {(c, 1)}, {(c, 1)} {1} (1, {a, c}, {c}) {1} 1 1 {(c, 1), (a, 1}}, {(c, 1)}

Security Computing at the Edge

139

140

Computations Expressiveness

141

How restrictive is a programming model where operations must be associative, commutative, and idempotent?

142

How do I learn more?

143

Publications

• “Lasp: A Language for Distributed, Coordination-Free Programming” 


ACM SIGPLAN PPDP 2015

• “Selective Hearing: An Approach to Distributed, Eventually Consistent Edge

Computation”
 IEEE W-PSDS 2015

• “The Implementation and Use of a Generic Dataflow Behaviour in Erlang”


ACM SIGPLAN Erlang Workshop ’15

• “Lasp: A Language for Distributed, Eventually Consistent Computations with CRDTs"


PaPoC 2015

• “Declarative, Sliding Window Aggregations for Computations at the Edge"


IEEE EdgeCom 2016

144

Three independently successful techniques.

145

Can we combine them into a cohesive programming environment for distributed programming?

146

147

Christopher Meiklejohn @cmeik http://www.lasp-lang.org

Thanks!