the byzantine generals problem
play

The Byzantine Generals Problem - Kushal Babel Authors Leslie - PowerPoint PPT Presentation

Oct 02, 2023 •242 likes •822 views

The Byzantine Generals Problem - Kushal Babel Authors Leslie Lamport Turing Award Paxos, Lamport Clocks, LaTex... Robert Shostak PhD at Harvard Entrepreneur Marshall Pease Reinvented & Re-branded

  1. The Byzantine Generals Problem - Kushal Babel

  2. Authors Leslie Lamport ● Turing Award ○ Paxos, Lamport Clocks, ○ LaTex... Robert Shostak ● PhD at Harvard ○ Entrepreneur ○ Marshall Pease ●

  3. Reinvented & Re-branded many times... 1978 1980 Lamport claims to have first Lamport adds cryptographic discovered Byzantine faults solution The Implementation of Reliable Reaching Agreement in the Distributed Multiprocess System presence of Faults 1978 1982 Shostak et al. working on SIFT at Re-branded to The Byzantine SRI formulate the problem and Generals Problem give non-cryptographic solution

  4. "I have long felt that, because it was posed as a cute problem about philosophers seated around a table, Dijkstra’s dining philosopher’s problem received much more attention than it deserves…...The popularity of the dining philosophers problem taught me that the best way to attract attention to a problem is to present it in terms of a story" - Lamport https://www.microsoft.com/en-us/research/publication/byzantine-generals-problem/ (Recipient of Dijkstra Prize) Reaching Agreement in The Byzantine Generals Two Generals Problem the Presence of Faults Problem

  5. Talk Overview Byzantine Generals Problem Formulation ● Impossibility Result ● Easy Impossibility Result ● Oral Message Solution ● Practical Byzantine Fault Tolerance ● Signed Message Solution ● Reliable Systems ● Bitcoin ● Conclusion ●

  6. Talk Overview Byzantine Generals Problem Formulation ● Impossibility Result ● Easy Impossibility Result ● Oral Message Solution ● Practical Byzantine Fault Tolerance ● Signed Message Solution ● Reliable Systems ● Bitcoin ● Conclusion ●

  7. Consensus Every process must agree on the same value ● The value should be proposed by some processor i.e. consensus algorithm can't ● invent a new value

  8. BGP Formulation Success if all attack or all retreat (common plan of action)

  9. Byzantine behaviour No general a priori knows if a counterpart is loyal or traitor Traitor tries to prevent agreement between loyal generals. Can lie or not respond. Not fail-stop, neither fail-crash but byzantine.

  10. Assumptions Absence of message can be detected (Synchronous Communication) ● Every message that is sent is delivered correctly ● Receiver of a message knows who sent it ●

  11. Objectives 1. All loyal generals decide upon the same plan of action 2. A small number of traitors cannot cause the loyal generals to adopt a bad plan 1. Every loyal general must obtain the same information v(1), ….., v(n) If the i th general is loyal, then the value that he sends must be used by every loyal 2. general as the value of v(i) 1. Any two loyal generals use the same value of v(i) If the i th general is loyal, then the value that he sends must be used by every loyal 2. general as the value of v(i)

  12. Byzantine Generals Problem A commanding general must send an order to his n-1 lieutenant generals such that: IC1 : All loyal lieutenant generals obey the same order IC2 : If the commanding general is loyal, then every loyal lieutenant obeys the order he sends Remark : IC2 implies IC1 if the commanding general is loyal

  13. Talk Overview Byzantine Generals Problem Formulation ● Impossibility Result ● Easy Impossibility Result ● Oral Message Solution ● Practical Byzantine Fault Tolerance ● Signed Message Solution ● Reliable Systems ● Bitcoin ● Conclusion ●

  14. No solution with fewer than 3m+1 generals can cope with m traitors

  15. One Traitor "attack" "attack" "attack" "retreat" he said "retreat" he said "retreat"

  16. One Traitor "attack" "attack" "attack" "retreat" he said "retreat" he said "retreat"

  17. Talk Overview Byzantine Generals Problem Formulation ● Impossibility Result ● Easy Impossibility Result ● Oral Message Solution ● Practical Byzantine Fault Tolerance ● Signed Message Solution ● Reliable Systems ● Bitcoin ● Conclusion ●

  18. Formal Formulation Setting: Communication Graph G with bidirectional edges and each node running a certain type of agreement device. Device is undefined primitive. Instantiation: Supply a boolean input (1 or 0) to each device. This results in certain boolean output (1 or 0) on each device and certain behaviour of each edge. Locality Axiom: The output of every device in any subgraph is determined only by the type of device, the input to the device, and the behaviour of incoming edges from the remainder of the graph. Fault Axiom: Any behavior exhibited by a device over different edges in different instantiations can be exhibited by a faulty device in a single instantiation.

  19. Locality i ? U Z b 1 i 1 i ? V Y o 1 b 2 b ? W X i 2 o 2

  20. Locality U Z b 2 V Y X b 3 b 2 b 1 b 4 W X b 3

  21. Byzantine Agreement (n,m) For a graph G with n devices, out of which m are faulty, byzantine agreement is reached if the following two conditions are satisfied: Agreement: Every correct device chooses the same output Validity: If all the correct nodes have the same input, that input must be the output chosen. Sound familiar?

  22. Byzantine Agreement (n,m) Byzantine Agreement can't be reached if n <= 3m

  23. m=1, Proof by Contradiction 1 0 A C 1 B 0 B C A 1 0

  24. m=1, Proof by Contradiction 1 0 A C 0 A 1 B 0 B 0 0 0 B C A C 1 0 0 0

  25. m=1, Proof by Contradiction 1 0 A C 1 0 A 1 B 0 B 0 0 0 0 B C A C 1 0 0

  26. m=1, Proof by Contradiction 1 0 A C 1 0 A 1 B 0 B 1 0 0 1 B C A C 1 1 0

  27. m, Proof by Contradiction 1 0 A C 0 A 1 B 0 B 0 0 0 B C A C 1 0 0 0

  28. n > 3m is necessary condition for consensus Is it sufficient as well?

  29. Talk Overview Byzantine Generals Problem Formulation ● Impossibility Result ● Easy Impossibility Result ● Oral Message Solution ● Practical Byzantine Fault Tolerance ● Signed Message Solution ● Reliable Systems ● Bitcoin ● Conclusion ●

  30. Assumptions Absence of message can be detected ● Every message that is sent is delivered correctly ● Receiver of a message knows who sent it ●

  31. Recursive Algorithm OM(0) 1. Commander sends his value to every lieutenant 2. Each lieutenant uses the received value or "retreat" if no value received OM(m) 1. Commander sends his value to every lieutenant 2. Everyone runs OM(m-1) and acts as the commander to send the value received in step 1 to all the other lieutenant 3. Each lieutenant uses the majority value out of the values received. Intuition : On receiving every message, tell others that you have received that message

  32. OM(1) for n=4 v v v v x OM(m) 1. Commander sends his value to every lieutenant 2. Everyone runs OM(m-1) and acts as the commander to send the value received in step 1 to all the other lieutenant 3. Each lieutenant uses the majority value out of the values received.

  33. OM(m) OM(1) for n=4 1. Commander sends his value to every lieutenant 2. Everyone runs OM(m-1) and acts as the commander to send the value received in step 1 to all the other lieutenant 3. Each lieutenant uses the majority z value out of the values received. x y x z y y x z

  34. = (n-1)*(n-2)*....(n-m-1) Number of = O(n m ) messages Exponential in number of traitors!

  35. Talk Overview Byzantine Generals Problem Formulation ● Impossibility Result ● Easy Impossibility Result ● Oral Message Solution ● Practical Byzantine Fault Tolerance ● Signed Message Solution ● Reliable Systems ● Bitcoin ● Conclusion ●

  36. Authors Miguel Castro ● MSR ○ Barbara Liskov ● MIT ○ Turing Award - OOP ○ Andrew's Advisor ○

  37. PBFT 3-phase commit : Pre-Prepare, Prepare, Commit ● Only 3% slower than non-replicated implementation of NFS ● Requires 3n+1 nodes to cope with n byzantine failures ● Semi-synchronous ●

  38. Safety One replica acts as commander for a particular view ● Commander sends a value v to each lieutenant ● Each lieutenant waits for atleast 2m + 1 messages of v from different lieutenants ● before commiting value v Clients need to get m + 1 replies ● Normal-operation and view change works with asynchronous communication ●

  39. Liveness Use local timer to check for timeouts ● Every replica gets to become leader in round robin fashion, called view change ● Synchronous view change if timeout occurs ●

  40. Talk Overview Byzantine Generals Problem Formulation ● Impossibility Result ● Easy Impossibility Result ● Oral Message Solution ● Practical Byzantine Fault Tolerance ● Signed Message Solution ● Reliable Systems ● Bitcoin ● Conclusion ●

  41. n >= m+1 is sufficient condition to cope with m traitors

  42. Assumptions Synchronous Communication ● Absence of message can be detected ● Every message that is sent is delivered correctly ● Receiver of a message knows who sent it ● A loyal general's signature cannot be forged, and any alteration of the contents of ● his signed message can be detected Anyone can verify the authenticity of a general's signature ●

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Byzantine Generals Problem &amp; FLP Impossibility Addendum Sep. 4th, 2019 Byzantine Fault

Byzantine Generals Problem &amp; FLP Impossibility Addendum Sep. 4th, 2019 Byzantine Fault

Byzantine Generals Problem &amp; FLP Impossibility Addendum Sep. 4th, 2019 Byzantine Fault Tolerance Given 6 Generals: 4 Loyal General, 2 Traitor Why is a solution for this impossible? 1 1 G Each loyal general receives 3 0 correct

547 views • 38 slides
Byzantine Techniques Michael George November 29, 2005 Michael George Byzantine Techniques

Byzantine Techniques Michael George November 29, 2005 Michael George Byzantine Techniques

Overview The Byzantine Generals Problem Practical Byzantine Fault Tolerance Conclusion Byzantine Techniques Michael George November 29, 2005 Michael George Byzantine Techniques Overview The Byzantine Generals Problem Practical

940 views • 64 slides
The Byzantine Generals Problem Siqiu Yao Authors Leslie Lamport you again! we

The Byzantine Generals Problem Siqiu Yao Authors Leslie Lamport you again! we

The Byzantine Generals Problem Siqiu Yao Authors Leslie Lamport you again! we all know him Robert Shostak PhD in Applied Math, Harvard SRI International Founder, Ansa Software Founder, Mira Tech

1.04k views • 71 slides
Byzantine Generals Problem II &amp; FLP Impossibility August 28, 2019 Recap Conditions to

Byzantine Generals Problem II &amp; FLP Impossibility August 28, 2019 Recap Conditions to

Byzantine Generals Problem II &amp; FLP Impossibility August 28, 2019 Recap Conditions to define correct behavior 1. Any two loyal generals use the same value of v(i) . (Regardless of i loyal or traitor) 2. If the i th general is loyal,

1.21k views • 66 slides
The Byzantine Generals Problem Zixin Chi Julian Angeles Motivation A reliable system must be

The Byzantine Generals Problem Zixin Chi Julian Angeles Motivation A reliable system must be

The Byzantine Generals Problem Zixin Chi Julian Angeles Motivation A reliable system must be fault-tolerant. having some degree of redundancy. Consensus protocol. How can we reach consensus? What is the problem? First proposed by

599 views • 33 slides
The Byzantine Generals Problem Leslie Lamport , Robert Shostak , Marshall Pease ACM Transactions

The Byzantine Generals Problem Leslie Lamport , Robert Shostak , Marshall Pease ACM Transactions

The Byzantine Generals Problem Leslie Lamport , Robert Shostak , Marshall Pease ACM Transactions on Programming Languages and Systems (TOPLAS), v.4 n.3, p.382-401, July 1982 Citation Count: 734 The aim : to make a reliable computer system

895 views • 46 slides
Tutorial : Byzantine agreement Valerie King University of Victoria Victoria, Canada 25

Tutorial : Byzantine agreement Valerie King University of Victoria Victoria, Canada 25

Tutorial : Byzantine agreement Valerie King University of Victoria Victoria, Canada 25 Byzantine Agreement Byzantine Generals Problem in the full information model We imagine that several divisions of the Byzantine army are camped outside

1.08k views • 53 slides
Byzantine Generals Problem August 26, 2019 source: Department of Homeland Security, Science &amp;

Byzantine Generals Problem August 26, 2019 source: Department of Homeland Security, Science &amp;

Byzantine Generals Problem August 26, 2019 source: Department of Homeland Security, Science &amp; Technology Directorate https://nvlpubs.nist.gov/nistpubs/ir/2018/NIST.IR.8202.pdf source: Department of Homeland Security, Science &amp; Technology

822 views • 60 slides
A Faster P Solution for the Byzantine Agreement Problem Michael J. Dinneen, Yun-Bum Kim, and Radu

A Faster P Solution for the Byzantine Agreement Problem Michael J. Dinneen, Yun-Bum Kim, and Radu

Introduction Byzantine agreement P modules Faster Byzantine solution Conclusions A Faster P Solution for the Byzantine Agreement Problem Michael J. Dinneen, Yun-Bum Kim, and Radu Nicolescu Department of Computer Science, University of

1.07k views • 69 slides
Making Byzantine Fault Tolerant Systems Tolerate Byzantine Faults Xiaotian Zou, Lei Chu Outline

Making Byzantine Fault Tolerant Systems Tolerate Byzantine Faults Xiaotian Zou, Lei Chu Outline

Making Byzantine Fault Tolerant Systems Tolerate Byzantine Faults Xiaotian Zou, Lei Chu Outline - Introduction - System Model - Problem Recasting - Basic Structure - Protocol description - Analysis - Evaluation Introduction 1

715 views • 43 slides
BFTCBFTP: BYZANTINE-FAULT -TOLERANT CONSTRUCTION OF BFT PROTOCOLS EDWARD TREMEL SIGSEGV 2019

BFTCBFTP: BYZANTINE-FAULT -TOLERANT CONSTRUCTION OF BFT PROTOCOLS EDWARD TREMEL SIGSEGV 2019

BFTCBFTP: BYZANTINE-FAULT -TOLERANT CONSTRUCTION OF BFT PROTOCOLS EDWARD TREMEL SIGSEGV 2019 BYZANTINE FAULT TOLERANCE Long-standing problem in systems Byzantine (adj): excessively complicated, and typically involving a great deal of

685 views • 19 slides
Distributed Systems Making Byzantine Fault-Tolerant Systems Tolerate Byzantine Faults Hubert

Distributed Systems Making Byzantine Fault-Tolerant Systems Tolerate Byzantine Faults Hubert

Distributed Systems Making Byzantine Fault-Tolerant Systems Tolerate Byzantine Faults Hubert Jaworski Byzantine system Copies of critical components Concurent replicas Response agreement Omission failure proof Robustness

660 views • 20 slides
Towards Low-Latency Byzantine Agreement Protocols Using RDMA DSN Workshop on Byzantine Consensus

Towards Low-Latency Byzantine Agreement Protocols Using RDMA DSN Workshop on Byzantine Consensus

Towards Low-Latency Byzantine Agreement Protocols Using RDMA DSN Workshop on Byzantine Consensus and Resilient Blockchains Signe Rsch, Ines Messadi, Rdiger Kapitza, 2018-06-25 ruesch@ibr.cs.tu-bs.de Technische Universitt Braunschweig,

781 views • 47 slides
Making Byzantine Fault Tolerant Systems Tolerate Byzantine Faults Dian Yu 1/16 Comparison with

Making Byzantine Fault Tolerant Systems Tolerate Byzantine Faults Dian Yu 1/16 Comparison with

Making Byzantine Fault Tolerant Systems Tolerate Byzantine Faults Dian Yu 1/16 Comparison with PBFT (Traditional BFT protocols) Similarities: Build practical Byzantine fault tolerance systems Protocol: Clients Primary Replicas

493 views • 18 slides
Speculative Byzantine Fault Tolerance By Ocan Gillaux University of Stavanger, MID110, April

Speculative Byzantine Fault Tolerance By Ocan Gillaux University of Stavanger, MID110, April

Speculative Byzantine Fault Tolerance By Ocan Gillaux University of Stavanger, MID110, April 2010 Plan Zyzzyva: Last word of dictionary Requirements &amp; Introduction Byzantine problem Zyzzyva Protocol Evaluation

265 views • 24 slides
&quot;Voting Software&quot; xkcd.com/2030/ Cryptocurrencies &amp; Security on the Blockchain

&quot;Voting Software&quot; xkcd.com/2030/ Cryptocurrencies &amp; Security on the Blockchain

&quot;Voting Software&quot; xkcd.com/2030/ Cryptocurrencies &amp; Security on the Blockchain The Blockchain Prof. Tom Austin San Jos State University Lab Review Byzantine General's Problem (Lamport et al. 1982) Generals decide

770 views • 23 slides
A brief overwiev of pairings Razvan Barbulescu CNRS and IMJ-PRG R. Barbulescu Overview

A brief overwiev of pairings Razvan Barbulescu CNRS and IMJ-PRG R. Barbulescu Overview

Bordeaux November 22, 2016 A brief overwiev of pairings Razvan Barbulescu CNRS and IMJ-PRG R. Barbulescu Overview pairings 0 / 37 Plan of the lecture Pairings Pairing-friendly curves Progress of NFS attacks

744 views • 72 slides
17-654: Analysis of Software Systems Spring 2005 4/21/2005 Topics Timing attack

17-654: Analysis of Software Systems Spring 2005 4/21/2005 Topics Timing attack

17-654: Analysis of Software Systems Spring 2005 4/21/2005 Topics Timing attack Algorithms leak information Nice example of practice trumping theoretical security Hardening algorithms: randomization Privilege separation

1.11k views • 69 slides
E -th roots and static Diffie-Hellman using index calculus Antoine Joux 1 Joint work with Reynald

E -th roots and static Diffie-Hellman using index calculus Antoine Joux 1 Joint work with Reynald

E -th roots and static Diffie-Hellman using index calculus Antoine Joux 1 Joint work with Reynald Lercier 2 , David Naccache 3 , Emmanuel Thom e 4 Elliptic Curve Cryptography 2008 Utrecht 1 DGA and UVSQ 2 DGA and IRMAR 3 ENS 4 INRIA Lorraine 1

538 views • 25 slides
Mixing Hadoop and HPC Workloads on Parallel Filesystems Esteban Molina-Estolano * , Maya Gokhale

Mixing Hadoop and HPC Workloads on Parallel Filesystems Esteban Molina-Estolano * , Maya Gokhale

Mixing Hadoop and HPC Workloads on Parallel Filesystems Esteban Molina-Estolano * , Maya Gokhale , Carlos Maltzahn * , John May , John Bent , Scott Brandt * * UC Santa Cruz, ISSDM, PDSI Lawrence Livermore National Laboratory

516 views • 22 slides
Modern Cryptology: from public key cryptography to homomorphic encryption 2015/12 Yaound,

Modern Cryptology: from public key cryptography to homomorphic encryption 2015/12 Yaound,

Modern Cryptology: from public key cryptography to homomorphic encryption 2015/12 Yaound, Cameroun Damien Robert quipe LFANT, Inria Bordeaux Sud-Ouest Institut de Mathmatiques de Bordeaux quipe MACISA, Laboratoire International de

960 views • 46 slides
Recreating the NSA's MITM Attack 1 Why Should This Topic be Chosen? Goal 1: Understanding how

Recreating the NSA's MITM Attack 1 Why Should This Topic be Chosen? Goal 1: Understanding how

create your own exercise Christoph Schmidt, Team 1 Recreating the NSA's MITM Attack 1 Why Should This Topic be Chosen? Goal 1: Understanding how the NSA uses its access to the Backbone Goal 2: Understanding how MITM attacks can be done

1.02k views • 82 slides
Accessing Samba from Linux. Whats new? Whats faster? Whats better? Steve French

Accessing Samba from Linux. Whats new? Whats faster? Whats better? Steve French

Accessing Samba from Linux. Whats new? Whats faster? Whats better? Steve French Principal Systems Engineer Primary Data Legal Statement T h i s w o r k r e p r e s e n t s t h e v i e w s o f t h e a u t h o r ( s ) a n d d o e

480 views • 28 slides
Security in a cloud context David Crooks, for the EGI CSIRT Lessons learned from recent incidents

Security in a cloud context David Crooks, for the EGI CSIRT Lessons learned from recent incidents

Security in a cloud context David Crooks, for the EGI CSIRT Lessons learned from recent incidents www.egi.eu EGI-Engage is co-funded by the Horizon 2020 Framework Programme of the European Union under grant number 654142 Cloud Security EGI

571 views • 16 slides

More recommend