abstractions to build permissionless systems
play

Abstractions to Build Permissionless Systems Soutenance - PowerPoint PPT Presentation

Jan 21, 2023 •13 likes •423 views

Abstractions to Build Permissionless Systems Soutenance dhabilitation diriger des recherches Emmanuelle Anceaume ( CNRS/IRISA ) CIDRE research team Amr El Abbadi Antonio Fernndez Anta Nicolas Hanusse Fernando Pedone Yvonne-Anne

  1. Abstractions to Build Permissionless Systems Soutenance d’habilitation à diriger des recherches Emmanuelle Anceaume ( CNRS/IRISA ) CIDRE research team Amr El Abbadi Antonio Fernández Anta Nicolas Hanusse Fernando Pedone Yvonne-Anne Pignolet Francois Taiani Philippas Tzigas December 18-th, 2019 1

  2. Distributed computing ◮ Solving a common problem with distinct entities ◮ Unpredictability due to failures, asynchrony, and local view ◮ Encapsulating the difficulty of robust cooperation within abstractions no yes ? no yes no 2

  3. Goal of distributing computing ◮ Identifying problems that are abstractions of those that arise in a variety of distributed situations ◮ Stating precisely these abstractions in terms of properties ◮ Designing and analyzing efficient distributed algorithms to solve them 3

  4. Abstractions 4

  5. Abstractions Reliable broadscast Causal broadcast R/W register Atomic broadcast 5

  6. Abstractions Reliable broadscast Clock synchronization Causal broadcast Snapshot R/W register Mutual exclusion Atomic broadcast 6

  7. Abstractions Consensus Reliable broadscast Clock synchronization Leader election Causal broadcast Snapshot Lattice agreement Replicated state machine R/W register Mutual exclusion Atomic broadcast 7

  8. Implementing abstractions Asynchronous Consensus Reliable broadscast Timing model Clock synchronization Leader election Causal broadcast Snapshot Lattice agreement Replicated state machine Synchronous R/W register Mutual exclusion Atomic broadcast 8

  9. Implementing abstractions Asynchronous Consensus Reliable broadscast Timing model Clock synchronization Leader election Causal broadcast Snapshot Lattice agreement Replicated state machine Synchronous R/W register Mutual exclusion Atomic broadcast Failure model Byzantine Crash 9

  10. Implementing abstractions Asynchronous g n i s s a p - e g a Consensus s s e M Communication model Reliable broadscast Timing model Clock synchronization Leader election Causal broadcast Snapshot Lattice agreement Replicated state machine Shared memory Synchronous R/W register Mutual exclusion Atomic broadcast Failure model Byzantine Crash 10

  11. Implementation in « classic » distributed systems ◮ Known and fixed size set of participants ◮ Participants are authorized nodes ◮ Complete communication graph 6 5 1 4 2 3 11

  12. Permissionless systems Unbounded number of participants Open membership Connected graph 12

  13. Permissionless enlarges adversarial strategies spectrum ◮ Churn strategies ◮ Join and leave at just the worst possible time ◮ Byzantine strategies ◮ Sybil attacks : generation of numerous fake identities ◮ Eclipse attacks : manipulation of routing tables ◮ Targeted attacks : isolation of nodes ◮ Rational / irrational behaviors ◮ Free-ride ◮ Make the service sustainable 13

  14. Abstractions implementation : Scalability issues ◮ For both safety and liveness guarantees ◮ Implementations rely on (Byzantine) quorums ◮ Quorum size in O ( n ) , where n is the size of the system |Q 1 |= Q correct faulty |Q 2 |= Q n nodes among which f are Byzantine ◮ Round structure of algorithms ◮ Message complexity in O ( n 2 ) , where n is the size of the system 14

  15. Outline of the presentation ◮ Focus on the implementation of distributed abstractions in permissionless systems ◮ Reliable broadcast abstraction ◮ Consensus abstraction ◮ Replicated state machine abstraction 15

  16. Reliable broadcast abstraction ◮ Allows any node in the system to disseminate a message to all the other nodes ◮ Liveness and safety properties ◮ Termination ◮ Uniqueness ◮ Integrity 16

  17. Broadcast abstraction ◮ Randomized rumor spreading ◮ Nodes pick random neighbors and exchange information (rumor) with them ◮ Local, tolerant to churn, scalable ◮ ex. Y t = number of nodes that have received the rumor after t interactions ◮ ∀ δ ∈ ( 0 , 1 ) and t ≥ n (ln( n ) − ln( δ / 2 )) , P { Y t = n } ≥ 1 − δ 𝜐 (n, δ =10 -3 ) Simulations with δ =10 -3 𝜐 (n, δ =10 -2 ) Simulations with δ =10 -2 Parallel time to propagate a rumor 𝜐 (n, δ =10 -1 ) Simulations with δ =10 -1 Number of nodes 17

  18. Broadcast abstraction ◮ Randomness is fundamental ◮ Uniformity : For any discrete time t ≥ 0, for any nodes i and j in the system P { routing_table i ( t ) = j } = 1 / n . ◮ Node sampling service ◮ Local to nodes ◮ Returns the identifier of a random node stream of node ids S (k) i Sampling memory Γ i ◮ Making this service robust to eclipse attacks ◮ The adversary injects many corrupted node identifiers to bias sampling ! 18

  19. Node sampling : omniscient strategy ◮ Suppose that ◮ Each node id j received in the input stream is tagged with its occurrence probability p j in the full input stream ◮ Let q = min j p j ◮ Omniscient strategy : ◮ Pick id j with probability a j = q / p j ◮ Whatever the frequency of ids in the stream, they are output uniformly Sampling memory Input stream of node identifiers p 13 Output stream a 13 61 16 24 14 13 1 56 16 14 14 2 13 14 98 56 11 11 16 Get_node() Constant size 19

  20. Node sampling : Knowledge-free strategy ◮ Need to estimate the frequency of each identifier in the input stream ◮ Rely again on randomness ! ◮ Cormode’s Count Min sketch data structure ◮ Ingredients ◮ t hash functions and an array of t × k counters h 1 :[N]-> [ 𝑙 ] 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 h 2 :[N]-> [ 𝑙 ] 0 0 0 0 0 0 0 0 𝑢 = log(1/ δ) 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 h t :[N]-> [ 𝑙 ] 0 0 0 0 0 0 0 0 𝑙 = 𝑓/𝜁 20

  21. Node sampling : Knowledge-free strategy ◮ Need to estimate the frequency of each identifier in the input stream ◮ Rely again on randomness ! ◮ Cormode’s Count Min sketch data structure +1 0 0 0 0 0 0 0 0 0 0 0 +1 0 0 0 Stream of node identifiers 0 0 0 0 0 0 +1 0 13 22 16 21 14 14 21 13 21 61 16 21 14 0 0 0 +1 0 0 0 0 +1 0 0 0 0 0 0 0 0 0 +1 0 0 0 0 0 21

  22. Node sampling : Knowledge-free strategy ◮ By taking ˆ f j = min t h t [ j ] then ◮ ˆ f j ≥ f j , and ◮ ∀ ε ∈ ( 0 , 1 ) , ∀ δ ∈ ( 0 , 1 ) , P { ˆ f j ≤ f j + ε m } ≥ 1 − δ 0 0 1 0 0 0 1 0 0 0 0 0 2 0 0 0 Stream of node identifiers 0 0 0 0 0 1 1 0 1 21 14 13 22 16 21 14 14 21 21 61 16 0 0 1 1 0 0 0 0 0 0 0 0 0 1 0 1 0 0 2 0 0 0 0 0 22

  23. Node sampling robust to eclipse attacks 23

  24. Reliable broadcast abstraction ◮ Lessons learnt from this study ◮ Randomization is an essential ingredient ◮ Adversarial strategies can be defeated by increasing memory footprint ◮ Adversarial strategies do not impact scalability ◮ Message complexity : O (log n ) ◮ Mode details in [OPODIS 2011, DSN 2013, IJOC 2019] 24

  25. Consensus abstraction ◮ One of the most important abstraction in fault tolerant distributed computing ◮ Guarantee a unique decision among a set of input values Liveness and safety properties ◮ Termination ◮ Agreement ◮ Validity 25

  26. Randomly chosen committees General idea : ◮ Execute consensus algorithms on O ( log n ) nodes ◮ Committee C made of random nodes → µ C = µ system ◮ How electing random nodes ? ◮ How this election is resilient to adversarial behaviors ? 26

  27. PeerCube : Nodes self-organize within committees ◮ Size of committees is lower and upper bounded ◮ Enforce role separation at committee level : core and spare sets ◮ Only core sets are visible from the outside 0110 spare set size max=O(log N) 0111 1110 0010 1111 0011 1010 1100 1101 1000 1001 core set 0101 constant size=C 0100 0000 0001 0000101000 27

  28. PeerCube : Significantly reduces churn impact 1000 No core/spare classification Number of routing tables updates per node PeerCube 100 10 1 0.1 0.01 0.001 5000 10000 15000 20000 25000 30000 Simulation time - every 500 time units, up to 500 nodes join or leave the system 28

  29. PeerCube : Resistance to adversarial strategies Scalability ◮ Byzantine algorithms within constant size committees ◮ Randomization scheme to elect these committees Resistance to targeted attacks ◮ Move ! ! ◮ Induced churn : pushing nodes to random positions within the system 29

  30. PeerCube : Resistance to an adaptive adversary Impact of induced churn on committees state µ system = 0 % µ system = 10 % d 0 . 90 0 . 99 0 . 999 0 . 90 0 . 99 0 . 999 safe state 100 % 100 % 100 % 99 . 17 % 82 . 28 % 0 . 78 % polluted state 0 % 0 % 0 % 0 . 82 % 17 . 71 % 99 . 21 % µ system = 20 % µ system = 30 % d 0 . 90 0 . 99 0 . 999 0 . 90 0 . 99 0 . 999 safe state 95 . 36 % 1 . 66 % ∼ 0 . 0 % 87 . 36 % 0 . 09 % ∼ 0 . 0 % polluted state 4 . 75 % 98 . 33 % ∼ 100 % 12 . 63 % 99 , 90 % ∼ 100 % ◮ A pinch of induced churn is sufficient to defend against targeted attacks 30

  31. Consensus Abstraction ◮ Lessons learnt from this study ◮ Clustering makes possible the design of robust operations ◮ Induced churn significantly reduces adversarial targeted attacks ◮ Only a small amount of these ingredients is necessary and sufficient ◮ More details in [MCAP 2013, SIGMETRICS P.E.R 2012, IJFCS 2011, DSN 2011, ICC 2010, SSS 2009, SASO 2008] 31

Recommend

Randomized View Reconciliation in Permissionless Distributed Systems Ruomu Hou Irvan Jahja

Randomized View Reconciliation in Permissionless Distributed Systems Ruomu Hou Irvan Jahja

Randomized View Reconciliation in Permissionless Distributed Systems Ruomu Hou Irvan Jahja Loi Luu Prateek Saxena Haifeng Yu Presenter IEEE International Conference on Computer Communications 15-19 April 2018 // Honolulu, HI //

183 views • 17 slides
Automatically Deriving Abstraction Heuristics PDB Abstractions Explicit-State Abstractions

Automatically Deriving Abstraction Heuristics PDB Abstractions Explicit-State Abstractions

Transition Systems and Abstractions Automatically Deriving Abstraction Heuristics PDB Abstractions Explicit-State Abstractions Conclusion Malte Helmert Albert-Ludwigs-Universit at Freiburg, Germany STAIR 2008 About This Talk

870 views • 43 slides
APIs/abstractions Previously iously Abstractions for infrastructure to ease operations (Ops)

APIs/abstractions Previously iously Abstractions for infrastructure to ease operations (Ops)

APIs/abstractions Previously iously Abstractions for infrastructure to ease operations (Ops) Manage complexity in deploying software systems Examples covered VMs, containers Infrastructure as a Service Platform as a

1.08k views • 33 slides
Perspectives on System Languages and Abstractions Barbara Liskov October 2015 MIT CSAIL

Perspectives on System Languages and Abstractions Barbara Liskov October 2015 MIT CSAIL

Perspectives on System Languages and Abstractions Barbara Liskov October 2015 MIT CSAIL Abstractions for Structuring Systems The early days Single machine systems Distributed systems Single Machine Systems In the beginning:

358 views • 25 slides
Planning and Optimization D2. Abstractions: Additive Abstractions Gabriele R oger and Thomas

Planning and Optimization D2. Abstractions: Additive Abstractions Gabriele R oger and Thomas

Planning and Optimization D2. Abstractions: Additive Abstractions Gabriele R oger and Thomas Keller Universit at Basel October 29, 2018 Multiple Abstractions Additivity Outlook Summary Content of this Course Tasks Progression/

684 views • 31 slides
Storage Systems OSPP Chap 12 Main Points File systems Useful abstractions on top of

Storage Systems OSPP Chap 12 Main Points File systems Useful abstractions on top of

Storage Systems OSPP Chap 12 Main Points File systems Useful abstractions on top of physical devices Storage hardware characteristics Disks and flash memory File Systems Abstraction on top of persistent storage Magnetic

905 views • 25 slides
Unified L2 Abstractions for L3-Driven Fast Handover draft-irtf-mobopts-l2-abstractions-01 F.

Unified L2 Abstractions for L3-Driven Fast Handover draft-irtf-mobopts-l2-abstractions-01 F.

Unified L2 Abstractions for L3-Driven Fast Handover draft-irtf-mobopts-l2-abstractions-01 F. Teraoka, K. Gogo, K. Mitsuya, R. Shibui, K. Mitani Keio University 06.11.7 67th IETF MOBOPTS l2-abstractions 1 ToC Gap Analysis against IEEE

431 views • 25 slides
Programming Reactive Systems in Scala: Principles and Abstractions Philipp Haller KTH Royal

Programming Reactive Systems in Scala: Principles and Abstractions Philipp Haller KTH Royal

Programming Reactive Systems in Scala: Principles and Abstractions Philipp Haller KTH Royal Institute of Technology Stockholm, Sweden Entwicklertag Frankfurt, Germany, 21 February, 2018 What are reactive systems? Multiple definitions proposed

893 views • 54 slides
Hybrid Consensus: Efficient Consensus in the Permissionless Model Rafael Pass and Elaine Shi

Hybrid Consensus: Efficient Consensus in the Permissionless Model Rafael Pass and Elaine Shi

Hybrid Consensus: Efficient Consensus in the Permissionless Model Rafael Pass and Elaine Shi IC3 1 Blockchains Satoshi Nakamoto, 2009 Public database Shared & maintained between network participants Blockchain agreement protocol

296 views • 15 slides
Safety control with performance guarantees of cooperative systems using compositional abstractions

Safety control with performance guarantees of cooperative systems using compositional abstractions

Cooperative systems Centralized symbolic control Compositional approach Safety control with performance guarantees of cooperative systems using compositional abstractions Pierre-Jean Meyer Antoine Girard Emmanuel Witrant Universit e

849 views • 45 slides
Abstractions for Practical Systems Caching and the memory hierarchy Operating systems and the

Abstractions for Practical Systems Caching and the memory hierarchy Operating systems and the

CS 240 Stage 3 Abstractions for Practical Systems Caching and the memory hierarchy Operating systems and the process model Virtual memory Dynamic memory allocation Victory lap Memory Hierarchy: Cache Memory hierarchy Cache basics Locality

1.02k views • 49 slides
Proof-of-Personhood : Redemocratizing Permissionless Cryptocurrencies Maria Borge , Eleftherios

Proof-of-Personhood : Redemocratizing Permissionless Cryptocurrencies Maria Borge , Eleftherios

Proof-of-Personhood : Redemocratizing Permissionless Cryptocurrencies Maria Borge , Eleftherios Kokoris-Kogias, Philipp Jovanovic, Linus Gasser, Nicolas Gailly and Bryan Ford EPFL 1 Talk overview Problem Proof of personhood (PoP)

612 views • 27 slides
TDDE25 Data Abstractions Algorithms and Provide Context Programming Software Roadmap

TDDE25 Data Abstractions Algorithms and Provide Context Programming Software Roadmap

Course Themes Perspectives in Computer Science and Engineering History of Bits, Bytes & Computer Computing Numbers Systems Operating Networking Systems Internet Framework TDDE25 Data Abstractions Algorithms and Provide Context

421 views • 16 slides
System on Chip C (SoC-C) Efficient programming abstractions for heterogeneous multicore Systems

System on Chip C (SoC-C) Efficient programming abstractions for heterogeneous multicore Systems

System on Chip C (SoC-C) Efficient programming abstractions for heterogeneous multicore Systems on Chip Alastair Reid ARM Ltd Yuan Lin University of Michigan Krisztian Flautner ARM Ltd Edmund Grimley-Evans ARM Ltd 1 Mobile Consumer

679 views • 52 slides
FRONTEND AT SCALE Designing abstractions for big teams @joshduck What front-end abstractions

FRONTEND AT SCALE Designing abstractions for big teams @joshduck What front-end abstractions

FRONTEND AT SCALE Designing abstractions for big teams @joshduck What front-end abstractions have we built? And how did we do it? Server rendered desktop site Less memory, bandwidth, and latency Device constraints More products Multiple

898 views • 61 slides
Energy consumption in embedded systems; abstractions for software models, programming languages

Energy consumption in embedded systems; abstractions for software models, programming languages

Energy consumption in embedded systems; abstractions for software models, programming languages and verification methods Florence Maraninchi orcid.org/0000-0003-0783-9178 thanks to M. Moy, L. Mounier, L. Maillet-Contoz, D. Barthel, J.

489 views • 45 slides
PoW Experience Dr. Ghassan Karame NEC Laboratories Europe PoW-based Blockchains Pros:

PoW Experience Dr. Ghassan Karame NEC Laboratories Europe PoW-based Blockchains Pros:

Towards Secure and Scalable Permissionless Blockchains The PoW Experience Dr. Ghassan Karame NEC Laboratories Europe PoW-based Blockchains Pros: Open permissionless system. No need for identity management. Scales to millions

456 views • 28 slides
Planning and Optimization D3. Abstractions: Additive Abstractions Malte Helmert and Gabriele R

Planning and Optimization D3. Abstractions: Additive Abstractions Malte Helmert and Gabriele R

Planning and Optimization D3. Abstractions: Additive Abstractions Malte Helmert and Gabriele R oger Universit at Basel November 6, 2017 Additivity Outlook Summary Content of this Course Tasks Progression/ Regression Planning

570 views • 30 slides
ABSTRACTIONS OF THE DATA PLANE DIMACS Working Group on Abstractions for Network Services,

ABSTRACTIONS OF THE DATA PLANE DIMACS Working Group on Abstractions for Network Services,

ABSTRACTIONS OF THE DATA PLANE DIMACS Working Group on Abstractions for Network Services, Architecture, and Implementation Pamela Zave AT&T LaboratoriesResearch Florham Park, New Jersey, USA joint work with Jennifer Rexford, Princeton

347 views • 33 slides
Planning and Optimization D3. Abstractions: Additive Abstractions Malte Helmert and Thomas Keller

Planning and Optimization D3. Abstractions: Additive Abstractions Malte Helmert and Thomas Keller

Planning and Optimization D3. Abstractions: Additive Abstractions Malte Helmert and Thomas Keller Universit at Basel October 30, 2019 Additivity Outlook Summary Content of this Course Foundations Logic Classical Heuristics

432 views • 30 slides
L9: Frontend Abstractions Web Engineering 188.951 2VU SS20 Jrgen Cito L9: Frontend

L9: Frontend Abstractions Web Engineering 188.951 2VU SS20 Jrgen Cito L9: Frontend

L9: Frontend Abstractions Web Engineering 188.951 2VU SS20 Jrgen Cito L9: Frontend Abstractions Overview of abstractions that support building declarative and reactive frontend applications Case study demonstrating these

399 views • 22 slides
Decentralization in Permissionless Blockchains Yujin Kwon , Jian Liu, Minjung Kim, Dawn Song,

Decentralization in Permissionless Blockchains Yujin Kwon , Jian Liu, Minjung Kim, Dawn Song,

Impossibility of Full Decentralization in Permissionless Blockchains Yujin Kwon , Jian Liu, Minjung Kim, Dawn Song, Yongdae Kim 05.15.2019 1 Traditional currencies 2 Traditional currencies Single point of failure? or Corruption of central

671 views • 64 slides
Build Build Build Build System building The process of compiling and linking software

Build Build Build Build System building The process of compiling and linking software

Build Build Build Build System building The process of compiling and linking software components into an executable system Different systems are built from different combinations of components Invariably supported by automated

557 views • 20 slides
Resources, Services, and Interfaces Services: Hardware Abstractions CPU/Memory abstractions

Resources, Services, and Interfaces Services: Hardware Abstractions CPU/Memory abstractions

4/5/2017 Resources, Services, and Interfaces Services: Hardware Abstractions CPU/Memory abstractions 2A. OS Services, Layers and Mechanisms processes, threads, virtual machines 2B. Service Interfcaes virtual address spaces, shared

100 views • 7 slides

More recommend