introduction to distributed hash tables
play

Introduction to Distributed Hash Tables Eric Rescorla Network - PowerPoint PPT Presentation

Mar 27, 2023 •788 likes •1.19k views

Introduction to Distributed Hash Tables Eric Rescorla Network Resonance ekr@networkresonance.com Eric Rescorla IAB Plenary, IETF 65 1 Overall Concept Distributed Hash Table (DHT) Distribute data over a large P2P network Quickly

  1. Introduction to Distributed Hash Tables Eric Rescorla Network Resonance ekr@networkresonance.com Eric Rescorla IAB Plenary, IETF 65 1

  2. Overall Concept • Distributed Hash Table (DHT) • Distribute data over a large P2P network – Quickly find any given item – Can also distribute responsibility for data storage • What’s stored is key/value pairs – The key value controls which node(s) stores the value – Each node is responsible for some section of the space • Basic operations – Store ( key, val ) – val = Retrieve ( key ) Eric Rescorla IAB Plenary, IETF 65 2

  3. The standard example: Chord [SMK + 01] • Each node chooses a n -bit ID – Intention is that they be random – Though probably a hash of some fixed info – IDs are arranged in a ring • Each lookup key is also a n -bit ID – I.e., the hash of the real lookup key – Node IDs and keys occupy the same space! • Each node is responsible for storing keys “near” its ID – Traditionally between it and the previous node ∗ Item is stored at “successor” ∗ Can be replicated at multiple successors Eric Rescorla IAB Plenary, IETF 65 3

  4. The Chord Ring n − 1 2 0 A B’s responsibility D B C’s responsibility C D’s responsibility Eric Rescorla IAB Plenary, IETF 65 4

  5. Routing • Naive routing algorithm – Each node knows its neighbors ∗ Send message to nearest neighbor ∗ Hop-by-hop from there – Obviously this is O ( n ) ∗ So no good • Better algorithm: “finger table” – Memorize locations of other nodes in the ring ∗ a , a + 2 , a + 4 , a + 8 , a + 16 , ... a + 2 n − 1 – Send message to closest node to destination ∗ Hop-by-hop again ∗ This is log ( n ) Eric Rescorla IAB Plenary, IETF 65 5

  6. Joining • Select a node-ID • Contact the node that immediately follows you – Note that this is the same node with responsibility for your node-ID – Copy his state • Data is now split up between you and the previous successor node • Note: this requires knowing some “bootstrap node” a priori Eric Rescorla IAB Plenary, IETF 65 6

  7. Adding a node n − 1 2 0 A B’s responsibility D B D’s C’s responsibility responsibility X C X’s responsibility Eric Rescorla IAB Plenary, IETF 65 7

  8. Node Failure n − 1 n − 1 2 0 2 0 A A D B D B D’s D’s Data1 Data1 responsibility responsibility C X C X’s responsibility X Fails Before n − 1 2 0 A D B D’s Data1 responsibility C After Stabilization Data must be replicated to survive node failure. Eric Rescorla IAB Plenary, IETF 65 8

  9. Other Structured P2P Systems • CAN [RFH + 01] • Pastry [RD01] • Tapestry [ZHS + 01] • Kademlia [MM02] • Bamboo [RGRK] • ... • Same concept but different structure, routing algorithms, and performance characteristics Eric Rescorla IAB Plenary, IETF 65 9

  10. What DHTs are good at • Distributed storage of things with known names • Highly scalable – Automatically distributes load to new nodes • Robust against node failure – ...except for bootstrap nodes – Data automatically migrated away from failed nodes • Self organizing – No need for a central server Eric Rescorla IAB Plenary, IETF 65 10

  11. What DHTs are bad at • Searching – Consequence of hash algorithm – “abc” and “abcd” are at totally different nodes – Warning: DHT people call lookup “search” • Security problems – Hard to verify data integrity – Secure routing is an open problem Eric Rescorla IAB Plenary, IETF 65 11

  12. Example Application: Fully Distributed Name Service • DNS is distributed but hierarchical – Dependency on the roots – Potential single point of failure – No real load balancing ∗ Arguable whether this is desirable (economics) • Can we use a DHT here? Eric Rescorla IAB Plenary, IETF 65 12

  13. DDNS [CMM02] and CoDoNS [RS04] • Obvious approach: Each DNS name becomes a DHT entry – e.g., www.example.com:A → 192.0.2.7 ∗ (Just a conceptual example) • DDNS – Based on Chord – Inferior performance to DNS ( log ( N ) lookup cost) • CoDoNS – Based on Beehive – O (1) performance due to aggressive replication ∗ Probably unrealistic memory requirements on each node • Both use DNSSEC for security Eric Rescorla IAB Plenary, IETF 65 13

  14. Performance Under Attack • DNS – Attack on root nodes • Chord – Attack on a continuous subspace Percent failed queries Data/Figure from Pappas et al. [PMTZ06] Eric Rescorla IAB Plenary, IETF 65 14

  15. Performance: Path Length DNS Chord Path Lengths for DNS Path Lengths for a 4096 Nodes Chord Ring 70 70 Trace 0 Base 8 (Analytically) Trace 1 Base 4 (Analytically) Trace 2 Base 2 (Analytically) Base 2 (Simulation) 60 60 Base 4 (Simulation) Base 8 (Simulation) 50 50 Percentage of Queries (%) Percentage of Queries (%) 40 40 30 30 20 20 10 10 0 0 1 2 3 4 5 6 7 1 2 3 4 5 6 7 8 9 10 11 12 Number of Hops Number of Hops Figure from Pappas et al. [PMTZ06] Eric Rescorla IAB Plenary, IETF 65 15

  16. Example Application: Peer-to-Peer VoIP • Skype Envy • Reduce network operational costs • Avoid having (paying) a service provider • VoIP when there’s no Internet connectivity • Scalability • Anonymous Calling Eric Rescorla IAB Plenary, IETF 65 16

  17. What’s the problem? • SIP is already mostly P2P • SIP UAs can already connect directly to each other – But in practice they go through a centralized server – Modulo firewall and NAT traversal issues • The problem is locating the right peer to connect to – Currently this is done with DNS ∗ Works fine with stable centralized servers – But how do you lookup the location of unstable peers? – What about dynamic DNS? ∗ Concerns about performance ∗ What if you’re disconnected from the Internet? Eric Rescorla IAB Plenary, IETF 65 17

  18. draft-bryan-sipping-p2p-02 [BLJ06] • Uses a DHT for location – Specified for Chord – ... but could be anything • REGISTER by storing your location in DHT – Under your URL • Calling node looks up your URL in the DHT – ... and connects • This is a strawman design – Not even a WG yet (BOF yesterday, ad hoc tomorrow) – Known security problem Eric Rescorla IAB Plenary, IETF 65 18

  19. Overview of Security Issues • Data correctness • Correctness of routing • Fairness and detecting defection • DoS Eric Rescorla IAB Plenary, IETF 65 19

  20. Data Correctness • Storing nodes have no relationship to data owner • What stops me from overwriting data? – Nothing! • And how do I know it’s right when I get it? • General approach: make sure data is verifiable – Self-certifying (e.g., k = SHA 1( data )) – Externally signed Eric Rescorla IAB Plenary, IETF 65 20

  21. A simple attack: chosen Node-ID • Assume you want to impersonate a specific value k – Generate a node between k and successor ( k ) – You’re now successor ( k ) • General fix: make it hard for people to choose their own Node-Id freely – Chord uses SHA 1( IPaddress ) – This isn’t perfect ∗ An attacker who controls a big IP address space can generate a lot of IDs until it finds one it likes ∗ IPv6 makes this situation much worse Eric Rescorla IAB Plenary, IETF 65 21

  22. Node impersonation • Why bother with choosing your Node-Id – Just impersonate the current successor ( k ) – This requires subverting Internet routing • One natural defense: public key cryptography – NodeId = SHA 1( PublicKey ) – Easy for peers to verify – But this makes it easy to generate chosen NodeIDs by trial and error – Can use a CGA variant here: H ( IP ) || H ( PublicKey ) Eric Rescorla IAB Plenary, IETF 65 22

  23. Sybil Attacks • What if you had a lot of bad nodes – Just register with the DHT a lot of times – Interfere with most or all routing – For any lookup key • Potential defenses – Proof-of-work for registration ∗ Usual concerns about variance in machine performance – Reverse Turing Tests – but who would administer them – Certified Node-IDs ∗ Requires a central authority Eric Rescorla IAB Plenary, IETF 65 23

  24. Routing Attacks and Defenses • General concept: get all stored replicas with high probability • Current state of the art [CDG + 02] – Failure test ∗ Detect density if replica set ∗ Compare to own neighbor set density ∗ Fake replica sets should be less dense – Redundant routing ∗ Only used when routing failure detected ∗ Expensive but high probability of success • Assumes secure NodeID assignment • Even more comnplicated with topology-based routing [CKS + 06] Eric Rescorla IAB Plenary, IETF 65 24

  25. Fairness • File storing costs resources • How do you make sure people do their fair share? • Basically an unsolved problem – Auditing – Cheating detection? Eric Rescorla IAB Plenary, IETF 65 25

  26. DoS • Not much work done here • Often possible to force system into pathological thrashing-type behavior • Even worse if you compromise or attack a bootstrap node • How do you do cost containment? – Make other people store a lot of data for you • Force expensive secure routing algorithms Eric Rescorla IAB Plenary, IETF 65 26

  27. Summary • A technically sweet technology • Some obvious applications • Still under very active research • Some unsolved security problems • Need to make sure capabilities match applications Eric Rescorla IAB Plenary, IETF 65 27

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Distributed Hash Tables What is a DHT? Hash Table data structure that maps keys to

Distributed Hash Tables What is a DHT? Hash Table data structure that maps keys to

Distributed Hash Tables What is a DHT? Hash Table data structure that maps keys to values essen=al building block in so?ware systems Distributed Hash Table (DHT) similar, but spread across many hosts Interface

455 views • 32 slides
Heterogeneity and Load Balance in Distributed Hash Tables Brighten Godfrey Joint Work with Ion

Heterogeneity and Load Balance in Distributed Hash Tables Brighten Godfrey Joint Work with Ion

Heterogeneity and Load Balance in Distributed Hash Tables Brighten Godfrey Joint Work with Ion Stoica Computer Science Division, UC Berkeley IEEE INFOCOM March 15, 2005 The goals Distributed Hash Tables partition an ID space among n nodes

688 views • 32 slides
OHT: Hierarchical Distributed Hash Tables Kun Feng, Tianyang Che Outline Introduction

OHT: Hierarchical Distributed Hash Tables Kun Feng, Tianyang Che Outline Introduction

OHT: Hierarchical Distributed Hash Tables Kun Feng, Tianyang Che Outline Introduction Contribution Motivation Hierarchy Design Fault Tolerance Design Evaluation Summary Future Work Introduction ZHT

348 views • 19 slides
Algorithms and Methods for Distributed Storage Networks 10 Distributed Heterogeneous Hash Tables

Algorithms and Methods for Distributed Storage Networks 10 Distributed Heterogeneous Hash Tables

Algorithms and Methods for Distributed Storage Networks 10 Distributed Heterogeneous Hash Tables Christian Schindelhauer Albert-Ludwigs-Universitt Freiburg Institut fr Informatik Rechnernetze und Telematik Wintersemester 2007/08

922 views • 64 slides
Distributed Hash Tables CS425 /ECE428 DISTRIBUTED SYSTEMS SPRING 2020 Material derived

Distributed Hash Tables CS425 /ECE428 DISTRIBUTED SYSTEMS SPRING 2020 Material derived

Distributed Hash Tables CS425 /ECE428 DISTRIBUTED SYSTEMS SPRING 2020 Material derived from slides by I. Gupta, M. Harandi, J. Hou, S. Mitra, K. Nahrstedt, N. Vaidya Distributed System Organization Centralized Ring Clique

535 views • 28 slides
Brief Summary on Topology and Performance of Distributed Hash Tables Zhirong Yang Helsinki

Brief Summary on Topology and Performance of Distributed Hash Tables Zhirong Yang Helsinki

Brief Summary on Topology and Performance of Distributed Hash Tables Zhirong Yang Helsinki University of Technology rozyang@cc.hut.fi Agenda Introduction Basic DHTs Pastry (mentioned later) CAN (coming soon) Tapestry

531 views • 21 slides
dictionaries (aka hash tables or hash maps) Genome 559: Introduction to Statistical and

dictionaries (aka hash tables or hash maps) Genome 559: Introduction to Statistical and

dictionaries (aka hash tables or hash maps) Genome 559: Introduction to Statistical and Computational Genomics Prof. James H. Thomas Review You should be very comfortable with loops by now Start paying attention to program robustness

165 views • 16 slides
dictionaries (aka hash tables or hash maps) Genome 559: Introduction to Statistical and

dictionaries (aka hash tables or hash maps) Genome 559: Introduction to Statistical and

dictionaries (aka hash tables or hash maps) Genome 559: Introduction to Statistical and Computational Genomics Prof. James H. Thomas Review You should be comfortable with loops by now. I will post another slide showing more on loops.

357 views • 19 slides
Hash tables Most data structures that were going to see are about storing and manipulating data

Hash tables Most data structures that were going to see are about storing and manipulating data

Hash tables Most data structures that were going to see are about storing and manipulating data When only operations Insert , Search and Delete as dictionary op- erations are needed, hash tables can be quite good Many variations of hash tables

1.04k views • 17 slides
Building and verifying a quasi-certification entity over Distributed Hash Tables F. Kordon -

Building and verifying a quasi-certification entity over Distributed Hash Tables F. Kordon -

Building and verifying a quasi-certification entity over Distributed Hash Tables F. Kordon - Universit P. & M. Curie - CC2016 Join work with X. Bonnaire, R. Cortes & O. Marin UPMC (France), UFSM (Chile), NYUS (China)

648 views • 53 slides
Hash Tables 1 / 91 Hash Tables Administrivia Assignment 2 has been released. We will be

Hash Tables 1 / 91 Hash Tables Administrivia Assignment 2 has been released. We will be

Hash Tables Hash Tables 1 / 91 Hash Tables Administrivia Assignment 2 has been released. We will be having a couple of guest lectures later in the semester. 2 / 91 Recap Recap 3 / 91 Recap Access Methods Access methods are alternative

1.25k views • 91 slides
Datastructures 1 Hash Tables Red Black Trees Week 8 Objectives Hash Tables, Hashing

Datastructures 1 Hash Tables Red Black Trees Week 8 Objectives Hash Tables, Hashing

(first module after the midterm) Datastructures 1 Hash Tables Red Black Trees Week 8 Objectives Hash Tables, Hashing functions Red-Black Trees Arrays VS Hash Tables typical computer storage is (key,value) pair arrays must have

641 views • 36 slides
Topic 22 Hash Tables " hash collision n. [from the techspeak] (var. `hash clash') When used

Topic 22 Hash Tables " hash collision n. [from the techspeak] (var. `hash clash') When used

Topic 22 Hash Tables " hash collision n. [from the techspeak] (var. `hash clash') When used of people, signifies a confusion in associative memory or imagination, especially a persistent one (see thinko ). True story: One of us was once on

908 views • 31 slides
Hash Functions and Hash Tables (2.5.2) A hash function h maps keys of a given type to

Hash Functions and Hash Tables (2.5.2) A hash function h maps keys of a given type to

Dictionaries 1/19/2005 11:37 PM Hash Functions and Hash Tables (2.5.2) A hash function h maps keys of a given type to Dictionaries and Hash Tables integers in a fixed interval [0, N 1] Example: h ( x ) = x mod N 0 is a hash function for

503 views • 4 slides
Hash Tables LAST TODAY NEXT Hashing Unbounded arrays Implementing Genericity

Hash Tables LAST TODAY NEXT Hashing Unbounded arrays Implementing Genericity

Hash Tables LAST TODAY NEXT Hashing Unbounded arrays Implementing Genericity Amortized analysis Hash tables Introduction to C1 (genericity) Implicit contract for casting (void*) x where x has type tp* //@ensures

703 views • 20 slides
Structured P2P Networks Niels Olof Bouvin 1 Distributed Hash Tables DHTs are designed to be

Structured P2P Networks Niels Olof Bouvin 1 Distributed Hash Tables DHTs are designed to be

Structured P2P Networks Niels Olof Bouvin 1 Distributed Hash Tables DHTs are designed to be infrastructure for other applications General concept Assign peers IDs evenly across an ID space (e.g., [0, 2 n -1]) Assign resources IDs in the same

668 views • 65 slides
Learning from Fine-Grained and Long-Tailed Visual Data Yin Cui Google Research Dec 11 2019

Learning from Fine-Grained and Long-Tailed Visual Data Yin Cui Google Research Dec 11 2019

Learning from Fine-Grained and Long-Tailed Visual Data Yin Cui Google Research Dec 11 2019 Visual Recognition System Database Supervised Learning Convolutional Neural bird Network (CNN) Visual Recognition System Larger Database

532 views • 36 slides
Building a Digital First Future: Digital Primary Care Congress Chamber of Commerce, Manchester 5

Building a Digital First Future: Digital Primary Care Congress Chamber of Commerce, Manchester 5

Building a Digital First Future: Digital Primary Care Congress Chamber of Commerce, Manchester 5 th of February 2020 8:00am 15:15pm #Convenzi s Dimitri Varsamis Senior Policy Lead, General Practice Strategy and Contracts at NHS England

1.77k views • 151 slides
Extracting drug-drug interactions from pharmacological texts. Isabel Segura Bedmar, Cesar de

Extracting drug-drug interactions from pharmacological texts. Isabel Segura Bedmar, Cesar de

Extracting drug-drug interactions from pharmacological texts. Isabel Segura Bedmar, Cesar de Pablo-Snchez, (joint work with Mario Crespo and Paloma Martnez) CS Department, Universidad Carlos III de Madrid September 2009 Saarbrcken,

869 views • 60 slides
OF NE REGIONS DBT-NECAB Workshop Assam Agricultural University, Jorhat 1 September 12 -14

OF NE REGIONS DBT-NECAB Workshop Assam Agricultural University, Jorhat 1 September 12 -14

N ATIONAL W ORKSHOP ON P OTENTIAL B IOTECHNOLOGY P ROGRAMMES USING B IORESOURCES OF NE REGIONS DBT-NECAB Workshop Assam Agricultural University, Jorhat 1 September 12 -14 , 2019 B IODIVERSITY AND B IOPROSPECTING : A HIDDEN FUTURE IN

1.34k views • 64 slides
CompSci 514: Computer Networks Lecture 13: Distributed Hash Table Xiaowei Yang Overview

CompSci 514: Computer Networks Lecture 13: Distributed Hash Table Xiaowei Yang Overview

CompSci 514: Computer Networks Lecture 13: Distributed Hash Table Xiaowei Yang Overview What problems do DHTs solve? How are DHTs implemented? Background A hash table is a data structure that stores (key, object) pairs.

580 views • 39 slides
Handling Churn in a DHT Sean Rhea, Dennis Geels, Timothy Roscoe, and John Kubiatowicz UC

Handling Churn in a DHT Sean Rhea, Dennis Geels, Timothy Roscoe, and John Kubiatowicz UC

Handling Churn in a DHT Sean Rhea, Dennis Geels, Timothy Roscoe, and John Kubiatowicz UC Berkeley and Intel Research Berkeley Whats a DHT? Distributed Hash Table Peer-to-peer algorithm to offering put/get interface Associative

373 views • 35 slides
Handling Churn in a DHT Sean Rhea, Dennis Geels, Timothy Roscoe, and John Kubiatowicz University

Handling Churn in a DHT Sean Rhea, Dennis Geels, Timothy Roscoe, and John Kubiatowicz University

Handling Churn in a DHT Sean Rhea, Dennis Geels, Timothy Roscoe, and John Kubiatowicz University of California, Berkeley and Intel Research, Berkeley { srhea,geels,kubitron } @cs.berkeley.edu, troscoe@intel-research.net Report No. UCB/CSD-03-1299

172 views • 16 slides
BRANCH PREDICTORS Mahdi Nazm Bojnordi Assistant Professor School of Computing University of

BRANCH PREDICTORS Mahdi Nazm Bojnordi Assistant Professor School of Computing University of

BRANCH PREDICTORS Mahdi Nazm Bojnordi Assistant Professor School of Computing University of Utah CS/ECE 6810: Computer Architecture Overview Announcements Homework 2 release: Sept. 26 th This lecture Dynamic branch prediction

782 views • 49 slides

More recommend