is end to end integrity verification really end to end
play

Is End-to-End Integrity Verification Really End- to-End? Ahmed - PowerPoint PPT Presentation

Dec 16, 2022 •375 likes •523 views

Is End-to-End Integrity Verification Really End- to-End? Ahmed Alhussen, Batyr Charyyev, and Engin Arslan Whats End-to-End Integrity Verification Data corruption may occur during transfers Faulty equipment, transient errors etc.

  1. Is End-to-End Integrity Verification Really End- to-End? Ahmed Alhussen, Batyr Charyyev, and Engin Arslan

  2. What’s End-to-End Integrity Verification  Data corruption may occur during transfers – Faulty equipment, transient errors etc.  Existing integrity check mechanisms are weak – TCP checksum fails to once in every 16 million to 10 billion packets  End-to-end integrity verification offers strong fault- tolerance guarantee – Secure hash algorithms SHA1, SHA-254 – Captures errors that could happen anywhere during transfers; network, server, and disk (?)

  3. How End-to-End Integrity Verification Works? Sender Receiver Read the file and send Receive the file and save

  4. How End-to-End Integrity Verification Works? Sender Receiver Read the file and send Receive the file and save Read the file again and compute Read file back from storage and checksum compute checksum

  5. How End-to-End Integrity Verification Works? Sender Receiver Read the file and send Receive the file and save Read the file again and compute Read file back from storage and checksum compute checksum Accept receiver’s checksum Send checksum

  6. How End-to-End Integrity Verification Works? Sender Receiver Read the file and send Receive the file and save Read the file again and compute Read file back from storage and checksum compute checksum Accept receiver’s checksum Send checksum If checksums match  Done

  7. How End-to-End Integrity Verification Works? Sender Receiver Read the file and send Receive the file and save Read the file again and compute Read file back from storage and checksum compute checksum Accept receiver’s checksum Send checksum If checksums match  Done Else  Transfer again

  8. Are Disk Write Errors Captured? 100% cache hit! Potential weakness to detect disk write errors!

  9. Testing Integrity Verification Against Faults  Four files 1-5 GB and one file 24 GB. Memory size is 20 GB  One fault injected for each file during disk write  Traditional approach failed to catch 4 out of 5 faults!

  10. Proposed Solution  Secure Integrity Verification Algorithm (SIVA) – Delay checksum computation to let kernel remove files from cache – Ensures that files are read from disk

  11. Proposed Solution  Secure Integrity Verification Algorithm (SIVA) – Delay checksum computation to let kernel remove files from cache – Ensures that files are read from disk

  12. Future Work  SIVA leads to ~4% cache hits. Can we reduce it even lower to avoid missing any disk corruptions?  Delaying checksum incurs execution time overhead in return of stronger fault tolerance. How to optimize execution time without sacrificing accuracy?  Explore ways to detect file cache removal to start checksum earlier

  13. Questions?

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Enabling Efficient Batch Verification Enabling Efficient Batch Verification on Data Integrity for

Enabling Efficient Batch Verification Enabling Efficient Batch Verification on Data Integrity for

Enabling Efficient Batch Verification Enabling Efficient Batch Verification on Data Integrity for Cloud on Data Integrity for Cloud ChinLaung Lei Department of Electrical Engineering National Taiwan University 1 Outline Introduction

641 views • 41 slides
Toward Automated Info-Flow Integrity Verification (or, Fixing your security policy) Umesh

Toward Automated Info-Flow Integrity Verification (or, Fixing your security policy) Umesh

Toward Automated Info-Flow Integrity Verification (or, Fixing your security policy) Umesh Shankar (UC Berkeley) Trent Jaeger (Penn State / IBM) Reiner Sailer (IBM) The goal, with an example Integrity property: Trusted processes dont

317 views • 20 slides
Run-time firmware integrity verification: what if you cant trust your network card? Loc

Run-time firmware integrity verification: what if you cant trust your network card? Loc

Run-time firmware integrity verification: what if you cant trust your network card? Loc Duflot , Yves-Alexis Perez , Benjamin Morin Agence Nationale de la Scurit des Systmes dInformation Introduction & reminder Last year...

467 views • 44 slides
Data Integrity Verification IIA Orange County Chapter November 13, 2015

Data Integrity Verification IIA Orange County Chapter November 13, 2015

Data Integrity Verification IIA Orange County Chapter November 13, 2015 1 Data Integrity Verification Excel Transformed My Data! BEFORE AFTER

483 views • 44 slides
Run-time firmware integrity verification: what if you cant trust your network card?

Run-time firmware integrity verification: what if you cant trust your network card?

Run-time firmware integrity verification: what if you cant trust your network card? International Symposium on Recent Advances in Intrusion Detection Menlo Park, September 2011 Loc Duflot, Yves-Alexis Perez, Benjamin Morin ANSSI French

627 views • 37 slides
Integrity Verification of Outsourced Frequent Itemset Mining with Deterministic Guarantee

Integrity Verification of Outsourced Frequent Itemset Mining with Deterministic Guarantee

Integrity Verification of Outsourced Frequent Itemset Mining with Deterministic Guarantee Boxiang Dong Ruilin Liu Wendy Hui Wang Department of Computer Science Stevens Institute of Technology Hoboken, NJ December 10, 2013

347 views • 24 slides
Efficient Memory Integrity Verification and Encryption for Secure Processors G. Edward Suh,

Efficient Memory Integrity Verification and Encryption for Secure Processors G. Edward Suh,

Efficient Memory Integrity Verification and Encryption for Secure Processors G. Edward Suh, Dwaine Clarke, Blaise Gassend, Marten van Dijk, Srinivas Devadas Massachusetts Institute of Technology New Security Challenges Current computer

411 views • 26 slides
Towards Optimizing Large-Scale Data Transfers with End-to-End Integrity Verification Raj

Towards Optimizing Large-Scale Data Transfers with End-to-End Integrity Verification Raj

Towards Optimizing Large-Scale Data Transfers with End-to-End Integrity Verification Raj Ke'muthu Argonne Na2onal Laboratory & University of Chicago Si Liu, Xian-He Sun, Illinois Ins2tute of Technology Eun-Sung Jung, Jongik University

215 views • 8 slides
KILOBAR KILOBAR KILOBAR INTEGRITY KILOBAR KILOBAR KILOBAR KILOBAR INTEGRITY KILOBAR

KILOBAR KILOBAR KILOBAR INTEGRITY KILOBAR KILOBAR KILOBAR KILOBAR INTEGRITY KILOBAR

KILOBAR KILOBAR KILOBAR INTEGRITY KILOBAR KILOBAR KILOBAR KILOBAR INTEGRITY KILOBAR INTEGRITY INTEGRITY INTEGRITY INTEGRITY INTEGRITY INTEGRITY Blockchain & Security Ruth Crowell, Chief Executive Asia Pacific Precious Metals

460 views • 10 slides
Securing Industrial Control Systems An E2E Integrity Verification Approach Sye-Loong Keoh , Ken

Securing Industrial Control Systems An E2E Integrity Verification Approach Sye-Loong Keoh , Ken

Securing Industrial Control Systems An E2E Integrity Verification Approach Sye-Loong Keoh , Ken Wai-Kin Au School of Computing Science University of Glasgow Zhaohui Tang School of Infocomm Republic Polytechnic, Singapore 1 Introduction

576 views • 21 slides
MAOP/MOP Verification Natural Gas Transmission & Hazardous Liquids Pipelines Eric

MAOP/MOP Verification Natural Gas Transmission & Hazardous Liquids Pipelines Eric

MAOP/MOP Verification Natural Gas Transmission & Hazardous Liquids Pipelines Eric Kirkpatrick, P.E. Structural Integrity Associates April 4, 2013 SD/ND/WY Pipeline Safety Operators Training Structural Integrity Associates, Inc.

1.11k views • 67 slides
PHMSA Update: Aging Infrastructure and Integrity Verification Process NAPCA Workshop August 15,

PHMSA Update: Aging Infrastructure and Integrity Verification Process NAPCA Workshop August 15,

U.S. Department of Transportation Pipeline and Hazardous Materials Safety Administration PHMSA Update: Aging Infrastructure and Integrity Verification Process NAPCA Workshop August 15, 2013 Houston, Texas Pipeline and Hazardous Materials

700 views • 49 slides
Proctoring & Identity Verification CHARLES PERKINS & ANGE SULLIVAN Cheating Identity

Proctoring & Identity Verification CHARLES PERKINS & ANGE SULLIVAN Cheating Identity

Proctoring & Identity Verification CHARLES PERKINS & ANGE SULLIVAN Cheating Identity Proctoring Verification Pre-empts Monitors Students Intruders Academic Integrity I have cheated on an assignment, quiz or test. o

298 views • 9 slides
Professional Integrity to Testing & Certification Practitioners Integrity Training for PCSTP

Professional Integrity to Testing & Certification Practitioners Integrity Training for PCSTP

Professional Integrity to Testing & Certification Practitioners Integrity Training for PCSTP Applicants Hong Kong Ethics Development Centre Independent Commission Against Corruption Competence Requirement Integrity Management

574 views • 23 slides
LESSONS LEARNED Research Integrity Some Thoughts Integrity is doing the right thing when

LESSONS LEARNED Research Integrity Some Thoughts Integrity is doing the right thing when

Mr. Gianfranco Scipione, M.Sc., J.D./M.B.A. Manager, Research Integrity UHN Research Ms. Katie Roposa, BScN, MEd, RN, CMQ/OE Director, Research Quality Integration UHN Research LESSONS LEARNED Research Integrity Some Thoughts Integrity

623 views • 21 slides
Going Remote with Integrity 3.0: Your Academic Integrity Policy Gone Virtual Dr. James Earl Orr,

Going Remote with Integrity 3.0: Your Academic Integrity Policy Gone Virtual Dr. James Earl Orr,

Going Remote with Integrity 3.0: Your Academic Integrity Policy Gone Virtual Dr. James Earl Orr, Jr. April 9, 2020 Caveat to Presentation True Promotion of Academic Integrity Involves a Coordinated Campus Conversation Faculty, Students,

464 views • 44 slides
Cryptographic Checksums Mathematical function to generate a set of k bits from a set of n bits

Cryptographic Checksums Mathematical function to generate a set of k bits from a set of n bits

Cryptographic Checksums Mathematical function to generate a set of k bits from a set of n bits (where k n ). k is smaller then n except in unusual circumstances Example: ASCII parity bit ASCII has 7 bits; 8th bit is

979 views • 40 slides
Fault Tolerance For Sparse Linear Algebra Computations Implemented In A Grid Environment

Fault Tolerance For Sparse Linear Algebra Computations Implemented In A Grid Environment

Fault Tolerance For Sparse Linear Algebra Computations Implemented In A Grid Environment Experiments with Fault Tolerant Linear Algebra Algorithms Jack Dongarra Jeffery Chen Zhiao Shi Asim YarKhan University of Tennessee Fault Tolerance:

412 views • 22 slides
Crash recovery Organization 13: Failure and Recovery Boris Glavic Slides: adapted from a

Crash recovery Organization 13: Failure and Recovery Boris Glavic Slides: adapted from a

Now CS 525: Advanced Database Crash recovery Organization 13: Failure and Recovery Boris Glavic Slides: adapted from a course taught by Hector Garcia-Molina, Stanford InfoLab CS 525 Notes 13 - Failure and Recovery 1 CS 525 Notes 13 -

494 views • 23 slides
Checkpointing for the RESTART Problem in Markov Networks Lester Lipsky Derek Doran Swapna

Checkpointing for the RESTART Problem in Markov Networks Lester Lipsky Derek Doran Swapna

Overview of ME distributions 2 Failure Recover Scenarios 7 A Taboo Process - Two Absorbing States 14 RESTART and Checkpoints for Markov Models 18 Example 31 Checkpointing for the RESTART Problem in Markov Networks Lester Lipsky Derek

773 views • 43 slides
PISCES: A Programmable, Protocol-Independent Software Switch Muhammad Shahbaz, Sean Choi , Ben

PISCES: A Programmable, Protocol-Independent Software Switch Muhammad Shahbaz, Sean Choi , Ben

PISCES: A Programmable, Protocol-Independent Software Switch Muhammad Shahbaz, Sean Choi , Ben Pfaff, Changhoon Kim, Nick Feamster, Nick McKeown, and Jennifer Rexford Fixed Set of Protocols Fixed-Function Switch Chip Ethernet TCP HTTP UDP

1.34k views • 30 slides
Introduction CS 4410 Operating Systems [ R. Agarwal, L. Alvisi, A. Bracy, M. George, F. B.

Introduction CS 4410 Operating Systems [ R. Agarwal, L. Alvisi, A. Bracy, M. George, F. B.

Introduction CS 4410 Operating Systems [ R. Agarwal, L. Alvisi, A. Bracy, M. George, F. B. Schneider, E. G. Sirer, R. van Renesse ] What an OS does OS is an intermediary between programs and hardware. OS creates an environment to

697 views • 21 slides
Security improvements in T EX Live Norbert Preining T EX Live Team Tug 2016, Toronto T EX

Security improvements in T EX Live Norbert Preining T EX Live Team Tug 2016, Toronto T EX

Security improvements in T EX Live Norbert Preining T EX Live Team Tug 2016, Toronto T EX Live security 2 Overview status up to (and including) 2015 possible attack vectors integrity and authenticity verification

715 views • 68 slides
Security Public key (e.g., RSA) Message digest (e.g., MD5) Security services

Security Public key (e.g., RSA) Message digest (e.g., MD5) Security services

Overview Cryptography functions Secret key (e.g., DES) Security Public key (e.g., RSA) Message digest (e.g., MD5) Security services Privacy: preventing unauthorized release of information Outline Authentication:

883 views • 5 slides

More recommend