undo update and futures
play

Undo: Update and Futures Aaron Brown ROC Research Group University - PowerPoint PPT Presentation

Sep 12, 2023 •15 likes •295 views

Undo: Update and Futures Aaron Brown ROC Research Group University of California, Berkeley Summer 2003 ROC Retreat 5 June 2003 Outline Recap of Undo for Operators Measurements of e-mail undo prototype Upcoming: human evaluation

  1. Undo: Update and Futures Aaron Brown ROC Research Group University of California, Berkeley Summer 2003 ROC Retreat 5 June 2003

  2. Outline • Recap of Undo for Operators • Measurements of e-mail undo prototype • Upcoming: human evaluation • Potential future extensions Slide 2

  3. Recap: What Is “Operator Undo”? • Give operators and system admins the ability to “travel in time” – to undo the effects of erroneous actions » configuration changes » new software deployment » patches and upgrades » problem repairs – to retroactively repair other problems affecting state » software bugs » viruses » external attacks Slide 3

  4. Recap: Three R’s Undo Model • Time travel for system operators – Rewind: roll back all state, users’ and operator’s – Repair: alter past operator events to avert problems – Replay: re-execute rewound user events » operator timeline must be restored manually, if desired » may cause externally-visible paradoxes for users User timeline Operator timeline “Undo!” Slide 4

  5. A Simple Solution for a Common Case • Undo for services with human end-users – centralized state scopes the problem – human users provide flexibility for handling paradoxes » undo is typically transparent to end-user, but not perfect » worst-case: end-user must reconcile mental model based on supplied hints • Applicability ideally suited to Undo poorly suited to Undo web shared online e-mail online missile financial file/block search calendaring shopping auctions applications storage launch control service Slide 5

  6. Architecture in Brief • Target Users – black-box services with human end-users App. protocol – single-host, for simplicity User events App. Proxy • Approach App. protocol – rewindable storage User Application Timeline – intercept, log, replay Service R e Log p a i r user requests s Can include: Operator - user state - application • Fault assumptions - OS – service can be arbitrarily incorrect Rewindable Storage Slide 6

  7. Instantiation: E-mail Prototype • Prototype target Users – e-mail store service SMTP » leaf node in e-mail IMAP delivery network E-mail events IMAP/SMTP Proxy • Implementation IMAP/SMTP – NetApp filer provides User E-mail Store rewindable storage layer Timeline Service R e Log p a – e-mail-specific proxy i r s Can include: Operator - mailboxes intercepts/replays - server code - OS IMAP & SMTP requests NetApp Filer Slide 7

  8. Key Concept: Verbs • Verbs encode user events – encapsulate application protocol commands » record of desired user action » context-independent record of parameters » record of externally-visible output – intended to capture intent of protocol commands, not effects on system state • Example verbs for e-mail (simplified) – SMTP: DELIVER {to, from, messageText} {} – IMAP: COPY {srcFolder, msgNum[], dstFolder} {} FETCH {folder, msgNum[], fetchSpec} { text } Slide 8

  9. Role of Verbs • Verbs enable replay – verb log forms a history of end-user interaction » dissociated from original system context » annotated with original output to end-user » annotated with external consistency policy and compensations for consistency violations • Verbs make it easier to reason about 3R’s – define exactly what user state is preserved by 3R cycle • Verbs capture key application semantics – consistency model and commutativity of operations Slide 9

  10. Outline • Recap of Undo for Operators • Measurements of e-mail undo prototype • Upcoming: human evaluation • Potential future extensions Slide 10

  11. E-mail Prototype Details • Target service: e-mail store service – a leaf node in the Internet e-mail network • Prototype details – wraps an existing IMAP/SMTP e-mail store service » not platform-specific » evaluation uses sendmail and the UW IMAP server – written in Java » ~25K lines (~9K semicolons) » about 1/8 the size of the mail service itself, in LoC Slide 11

  12. Prototype Measurements • Experiments – space overhead – time overhead – rewind & replay time • Evaluation workload – modified SPECmail2000 workload with 10,000 users » simulates traffic seen by ISP mail server » modified to use IMAP instead of POP; all mail kept local Slide 12

  13. Feasibility: Space & Time Overhead • Space overhead • Time overhead – 0.45 GB/day/1000 users – IMAP/SMTP session lengths for SPECmail workload: » uncompressed » Java serialization bug 1200 1.7x Without Undo overhead factored out With Undo 1.2x 1000 Session Length (ms) (>2x bigger) 800 – ~250,000 user-days of data 2.3x 600 on one 120GB disk 400 200 1.8x 0 IMAP SMTP IMAP SMTP Null Session Median Session – below perceived “sluggishness” threshold for interactive apps. Slide 13

  14. Feasibility: Rewind and Replay • Rewind • Replay – NetApp filer snapshot – replay speed: ~9 verbs/sec restore: ~8 seconds – with parallel, O-O-O replay » independent of amount – better connection of data to restore management will help » but not undoable – compared to real-time: – alternative is O(#files) » 10 minutes for 10,000 29.2x 30 users 25 Replay Speedup 20 15 12.8x 10 5 2.6x Real- 1.3x Time 0 500 1,000 5,000 10,000 Slide 14 Users

  15. Outline • Recap of Undo for Operators • Measurements of e-mail undo prototype • Upcoming: human evaluation • Potential future extensions Slide 15

  16. Evaluating Undo: Human Factors • Undo is a recovery tool for human operators – effectiveness depends on how it is used » will it address the problems faced by real operators? » will operators know when/how to use it? » does it improve dependability over manual recovery? • Need methodology that synthesizes systems benchmarking with human studies – include human operators to drive recovery – but focus is on the system and system metrics » recovery time, dependability, performance Slide 16

  17. Evaluating Human Factors of Undo • Three-step process 1) survey operators to identify real-world problems » evaluate whether Undo will address them » collect scenarios for step 2 2) controlled laboratory experiments involving humans » evaluate Undo against manual recovery » use scenarios from step 1 » evaluate with dependability metrics: recovery time, correctness, performance 3) long-term ethnographic study of deployed system » evaluate dependability benefits of Undo “in the wild” » requires time and resources beyond the scope of this work Slide 17

  18. Step 1: Survey Operators • Online survey of e-mail system operators – questions on daily tasks, challenges, recent problems – 68 responses • Results Common Tasks Challenging Tasks Lost e-mail problems configuration 18% deployment/ 25% 31% 25% 6% upgrade 50% 56% other 17% undoable 26% 33% 1% 12% non- undoable (151 total) (68 total) (12 total) » configuration and deployment issues dominate » Undo potentially useful for majority of tasks, problems Slide 18

  19. Step 2: Lab Experiments w/Humans • Questions to answer – do operators know when Undo is appropriate? – does having Undo improve dependability? • Compare e-mail systems with & without Undo – randomized human trials – each trial structured as a dependability benchmark • In progress Slide 19

  20. Dependability Benchmarks • Dependability benchmark basics – apply workload – simulate realistic problem scenario – measure recovery time, correctness, performance end of scenario performability normal behavior start of performability impact scenario (performance, correctness) recovery time 0 Time – trial scenarios chosen based on survey results » including scenarios where Undo is unlikely to help See: Brown, Chung, Patterson, “Including the Human Factor in Dependability Benchmarks”, DSN WDB 2003. Slide 20 Brown, Patterson, “Towards Availability Benchmarks...”, USENIX 2000.

  21. Lab Experiments with Humans • Some key subtleties – overcoming mental model inertia » select and train less-experienced subjects – making scenarios tractable » subject plays role of shift-work operator repairing documented problem from previous shift • Status: in progress – experimental protocol defined – just received Human Subjects Committee approval – data collection to begin shortly Slide 21

  22. Outline • Recap of Undo for Operators • Measurements of e-mail undo prototype • Upcoming: human evaluation • Potential future extensions Slide 22

  23. Extending Undo: Other Apps ideally suited to Undo poorly suited to Undo web shared online e-mail online financial file/block missile search calendaring shopping auctions applications storage launch service control • When is undo possible? – state is centralized (or observable) – all output to external entities can be intercepted » and can be correlated to user requests – external output is provisional for some time window » e.g., can be cancelled, altered, reissued » or simply doesn’t matter in application’s external consistency model Slide 23

  24. Extending Undo: Spheres of Undo • Rewindable storage defines a sphere of undo Users P External data source Application P Service Sphere of Undo P Rewindable External Service Storage service RS (output consumer) • All info crossing sphere must be intercepted – input: becomes verbs – output: becomes externalized output » must be possible to associate output with a verb Slide 24

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Undo-Redo Principles, concepts Undo patterns Java implementation Undo 1 Undo* Benefits

Undo-Redo Principles, concepts Undo patterns Java implementation Undo 1 Undo* Benefits

Undo-Redo Principles, concepts Undo patterns Java implementation Undo 1 Undo* Benefits Undo lets you recover from errors - input errors (human) and interpretation errors (computer) - you can work quickly (without fear) Undo enables

541 views • 27 slides
Problem: commands with state and undo support How do applications with undo options

Problem: commands with state and undo support How do applications with undo options

Problem: commands with state and undo support How do applications with undo options (e.g., formatting in word processors) support the undo? How can a command, e.g., load files, find line numbers, be encapsulated into a class/object?

83 views • 4 slides
Reflogs Sign in on the attendance sheet! How to Undo Things Accidental Merge How to Undo

Reflogs Sign in on the attendance sheet! How to Undo Things Accidental Merge How to Undo

Lecture 10 Dumpster Diving in Git: Reflogs Sign in on the attendance sheet! How to Undo Things Accidental Merge How to Undo Things Fix messed up master How to Undo Things Made a commit on the wrong branch (master instead of

133 views • 12 slides
CS 2550 / Spring 2006 Principles of Database Systems Undo/No-Redo No-Undo/Redo

CS 2550 / Spring 2006 Principles of Database Systems Undo/No-Redo No-Undo/Redo

Recovery Techniques and Assumptions Undo/Redo Algorithm CS 2550 / Spring 2006 Principles of Database Systems Undo/No-Redo No-Undo/Redo (also called logging with deferred updates ) 14 Recovery Algorithms

350 views • 7 slides
Undo Logging Rules Undo 1: If transaction T modifies the database element X that held value old

Undo Logging Rules Undo 1: If transaction T modifies the database element X that held value old

Undo Logging Rules Undo 1: If transaction T modifies the database element X that held value old Write T, X, old to the log Only when the log record appears on disk can we write the new value for X to disk. Undo 2: If transaction T

804 views • 29 slides
Towards a theory of Undo Aaron Brown UC Berkeley June 2002 ROC Retreat Outline Recap of

Towards a theory of Undo Aaron Brown UC Berkeley June 2002 ROC Retreat Outline Recap of

Towards a theory of Undo Aaron Brown UC Berkeley June 2002 ROC Retreat Outline Recap of Undo: motivation and the 3 Rs First implementation attempt & lessons learned Towards a theory for undo foundation: logging of

447 views • 23 slides
Suppo rting undo c ume nte d stude nts a nd the ir fa milie s Ale jandr a P r e z Co lle g

Suppo rting undo c ume nte d stude nts a nd the ir fa milie s Ale jandr a P r e z Co lle g

Suppo rting undo c ume nte d stude nts a nd the ir fa milie s Ale jandr a P r e z Co lle g e & Ca re e r Suc c e ss Co o rdina to r Co mmunity Ce nte r fo r E duc a tio n Re sults Stor y of Se lf: Undo c u Vo ic e s & E xpe

671 views • 46 slides
Exclusive Presentation for Infinity Futures Trading Futures, Options on Futures, and retail

Exclusive Presentation for Infinity Futures Trading Futures, Options on Futures, and retail

Using Volume Based Bars in Your Trading Exclusive Presentation for Infinity Futures Trading Futures, Options on Futures, and retail off-exchange foreign currency transactions involves substantial risk of loss and is not suitable for all investors.

1.02k views • 52 slides
501 Commodity Trading Lab Index - Topics to cover What are futures contracts. Why do

501 Commodity Trading Lab Index - Topics to cover What are futures contracts. Why do

501 Commodity Trading Lab Index - Topics to cover What are futures contracts. Why do we trade futures. Who trades futures. How do we trade futures (long, short). Where are futures traded. Game platform. What is

584 views • 24 slides
Working Futures 20142024 www.gov.uk/ukces Introduction The presentation: Working Futures

Working Futures 20142024 www.gov.uk/ukces Introduction The presentation: Working Futures

Working Futures 20142024 www.gov.uk/ukces Introduction The presentation: Working Futures 2024 Sets out the background PAST NOW FUTURE to the Working Futures model Managers, Directors and Senior Offjcials Associate Professional

673 views • 28 slides
When we started in 1985, FUTURES annual budget was $27,900. Today our budget exceeds

When we started in 1985, FUTURES annual budget was $27,900. Today our budget exceeds

Formed in 1985 by area business leaders, FUTURES is the education foundation for Volusia County Public Schools. FUTURES provides programs and activities that are unable to be funded with tax dollars. When we started in 1985, FUTURES

605 views • 18 slides
DA Perspectives and Futures: An Update Andrew B. Kahng CSE and ECE Department UC San Diego

DA Perspectives and Futures: An Update Andrew B. Kahng CSE and ECE Department UC San Diego

DA Perspectives and Futures: An Update Andrew B. Kahng CSE and ECE Department UC San Diego http://vlsicad.ucsd.edu/~abk/ abk@ucsd.edu 1 A. B. Kahng IWLS 2017 keynote, 170618 ITRS 2011, 8:30AM: Wake Up, DA is Great! DAC13 (2023)

1.26k views • 77 slides
What Can We Do? How do you undo the damage of the WHI? 16th WCM 6/4/18 318 Pre-Congress

What Can We Do? How do you undo the damage of the WHI? 16th WCM 6/4/18 318 Pre-Congress

What Can We Do? How do you undo the damage of the WHI? 16th WCM 6/4/18 318 Pre-Congress Workshop Faculty/Presenter Disclosure Faculty: Dr. Denise Black Relationships with commercial interests: Speakers Bureau/Honoraria: Merck,

493 views • 23 slides
UNRM Hacking the filesystem Jessica Yu WHOOPS... GMAIL: UNDO SEND unrm operates on the same

UNRM Hacking the filesystem Jessica Yu WHOOPS... GMAIL: UNDO SEND unrm operates on the same

UNRM Hacking the filesystem Jessica Yu WHOOPS... GMAIL: UNDO SEND unrm operates on the same idea as Gmail's undo send. UNRM: USAGE Goal : after an rm , want to be able to recover all removed files under a certain directory within a set period

888 views • 58 slides
Year 11 Core GCSE Support 2017 'Shaping Futures' 'Shaping Futures' Three way Partnership

Year 11 Core GCSE Support 2017 'Shaping Futures' 'Shaping Futures' Three way Partnership

Year 11 Core GCSE Support 2017 'Shaping Futures' 'Shaping Futures' Three way Partnership Student School Family 'Shaping Futures' How to approach your exams like an Olympian 'Shaping Futures' 'Shaping Futures' How to approach your

914 views • 60 slides
The Design Complexity of Program Undo Support in a General

The Design Complexity of Program Undo Support in a General

The Design Complexity of Program Undo Support in a General Purpose Processor Radu Teodorescu and Josep Torrellas University of Illinois at Urbana-Champaign http://iacoma.cs.uiuc.edu

438 views • 16 slides
TRAVEL: AUSTRALIAN ACADEMICS EXPERIENCE OF FLYING FOR WORK Andrew Glover Digital Ethnography

TRAVEL: AUSTRALIAN ACADEMICS EXPERIENCE OF FLYING FOR WORK Andrew Glover Digital Ethnography

REMOTENESS AND AIR TRAVEL: AUSTRALIAN ACADEMICS EXPERIENCE OF FLYING FOR WORK Andrew Glover Digital Ethnography Research Centre RMIT University CONTEXT GUIDING RESEARCH QUESTIONS What role does air travel play in academic life? What

528 views • 21 slides
Ethnographic Interviews Getting to Know Your Users Today Stakeholders and Domain Experts

Ethnographic Interviews Getting to Know Your Users Today Stakeholders and Domain Experts

Ethnographic Interviews Getting to Know Your Users Today Stakeholders and Domain Experts Customers and Users Persona Hypothesis (User Hypothesis) Interviewing Techniques Interviewing Exercise 2 Stakeholders 3 Stakeholders Executives

848 views • 49 slides
Developing a Cultural Awareness Curriculum for Study Abroad Students Michelle Cole, DNP, RN

Developing a Cultural Awareness Curriculum for Study Abroad Students Michelle Cole, DNP, RN

Developing a Cultural Awareness Curriculum for Study Abroad Students Michelle Cole, DNP, RN Christina Gunther, M.A. Robin Danzak, Ph.D. We dont see the world the way it is. We see the world the way we are -Anais Nin Welcome and

525 views • 27 slides
Transforming EEBO-TCP into a corpus Paul Rayson (@perayson)

Transforming EEBO-TCP into a corpus Paul Rayson (@perayson)

! Transforming EEBO-TCP into a corpus Paul Rayson (@perayson) & Alistair Baron (@al586) School of CompuDng and CommunicaDons Andrew Hardie

511 views • 31 slides
An Introduction to Agent-Based Modeling Unit 1: What is ABM and Why Should You Use It? Bill Rand

An Introduction to Agent-Based Modeling Unit 1: What is ABM and Why Should You Use It? Bill Rand

An Introduction to Agent-Based Modeling Unit 1: What is ABM and Why Should You Use It? Bill Rand Assistant Professor of Business Management Poole College of Management North Carolina State University Picture by Milo Bostock

706 views • 68 slides
Speech Act Theory Motto: Einf uhrung in Pragmatik und Diskurs Utterances do things .

Speech Act Theory Motto: Einf uhrung in Pragmatik und Diskurs Utterances do things .

E R S E R S V I V I I T I T N A N A U S U S 1 S S S S A I A I S S R N R N A E A E V I V I Speech Act Theory Motto: Einf uhrung in Pragmatik und Diskurs Utterances do things . Sometimes, they even

359 views • 16 slides
West & North Midlands Midlands & East Region GP Online Consultation Project Workshop GP

West & North Midlands Midlands & East Region GP Online Consultation Project Workshop GP

West & North Midlands Midlands & East Region GP Online Consultation Project Workshop GP Online Consultation Project Workshop 4 th May 2018 Jurys Inn, Broad Street, Birmingham B1 2HQ www.england.nhs.uk Agenda 10:00 Arrival,

1.2k views • 94 slides
Evaluating User Interfaces Evaluating User Interfaces Lecture slides modified from Eileen

Evaluating User Interfaces Evaluating User Interfaces Lecture slides modified from Eileen

Evaluating User Interfaces Evaluating User Interfaces Lecture slides modified from Eileen Kraemers HCI teaching material Department of Computer Science University of Georgia Outline The Role of Evaluation Usage Data: Observations,

1.29k views • 100 slides

More recommend