attack resilient multitree data distribution topologies
play

Attack-Resilient Multitree Data Distribution Topologies Sascha Grau 1 - PowerPoint PPT Presentation

May 30, 2023 •568 likes •1.1k views

Attack-Resilient Multitree Data Distribution Topologies Sascha Grau 1 Technische Universit at Ilmenau December 19th, 2012 1 This work was supported by the Deutsche Forschungsgemeinschaft under grant number KU 658/10-2. Sascha Grau (TU Ilmenau)

  1. Attack-Resilient Multitree Data Distribution Topologies Sascha Grau 1 Technische Universit¨ at Ilmenau December 19th, 2012 1 This work was supported by the Deutsche Forschungsgemeinschaft under grant number KU 658/10-2. Sascha Grau (TU Ilmenau) Multitree Data Distribution Topologies December 19th, 2012 1 / 18

  2. Distribution Topologies Multi-Tree Data Distribution The Goal Data Reliable broadcast of data from a resource-restricted data source s to a large audience of nodes V = { 1 , . . . , n } = [ n ]. s The Approach s s each block of data is split into k subblocks, to be distributed over a fixed set of k trees redundant encoding (e.g. multiple description coding or error-correcting coding) is applied ⇒ nodes are satisfied as long as they receive data in at least a certain share of trees The Applications peer-to-peer live streaming systems reversed data flow: data aggregation tasks Sascha Grau (TU Ilmenau) Multitree Data Distribution Topologies December 19th, 2012 2 / 18

  3. Distribution Topologies Multi-Tree Data Distribution The Goal Data Reliable broadcast of data from a resource-restricted data source s to a large audience of nodes V = { 1 , . . . , n } = [ n ]. s The Approach s s each block of data is split into k subblocks, to be distributed over a fixed set of k trees redundant encoding (e.g. multiple description coding or error-correcting coding) is applied ⇒ nodes are satisfied as long as they receive data in at least a certain share of trees The Applications peer-to-peer live streaming systems reversed data flow: data aggregation tasks Sascha Grau (TU Ilmenau) Multitree Data Distribution Topologies December 19th, 2012 2 / 18

  4. Distribution Topologies Multi-Tree Data Distribution Topologies Definition (Distribution Topology) A distribution topology with k trees over nodes V is a k -tuple T = ( T 1 , . . . , T k ) of directed trees. For each i ∈ [ k ], the tree T i has the same root s �∈ V and node set { s } ∪ V . s s s Restrictions on Communication possible tree edges { ( u , v ) | u ∈ { s } ∪ V , v ∈ V \ { u }} nodes can have degree-restrictions here : only source is restricted The class T ( n , C , k ) is the set of distribution topologies with k trees over node set [ n ], in which source s has at most Ck incident edges ( C ∈ N ). Sascha Grau (TU Ilmenau) Multitree Data Distribution Topologies December 19th, 2012 3 / 18

  5. Distribution Topologies Multi-Tree Data Distribution Topologies Definition (Distribution Topology) A distribution topology with k trees over nodes V is a k -tuple T = ( T 1 , . . . , T k ) of directed trees. For each i ∈ [ k ], the tree T i has the same root s �∈ V and node set { s } ∪ V . s s s Restrictions on Communication possible tree edges { ( u , v ) | u ∈ { s } ∪ V , v ∈ V \ { u }} nodes can have degree-restrictions here : only source is restricted The class T ( n , C , k ) is the set of distribution topologies with k trees over node set [ n ], in which source s has at most Ck incident edges ( C ∈ N ). Sascha Grau (TU Ilmenau) Multitree Data Distribution Topologies December 19th, 2012 3 / 18

  6. Distribution Topologies Stable Multi-Tree Distribution Topologies Attacks ... suddenly remove a set of nodes from all trees. are maliciously planned to maximize damage (worst-case model). T 1 T 2 T 3 s s s 3 1 2 5 6 7 2 7 2 5 4 1 6 7 1 3 5 6 3 4 4 Prior Work: damage = number of disturbed source-to-node paths Sascha Grau (TU Ilmenau) Multitree Data Distribution Topologies December 19th, 2012 4 / 18

  7. Distribution Topologies Stable Multi-Tree Distribution Topologies Attacks ... suddenly remove a set of nodes from all trees. are maliciously planned to maximize damage (worst-case model). T 1 T 2 T 3 s s s 3 1 2 5 6 7 2 7 2 5 4 1 6 7 1 3 5 6 3 4 4 Prior Work: damage = number of disturbed source-to-node paths Nice, but user-centered notion of damage is more relevant in applications. Sascha Grau (TU Ilmenau) Multitree Data Distribution Topologies December 19th, 2012 4 / 18

  8. Distribution Topologies A User-Centered Measure of Damage distribution topology T ∈ T ( n , C , k ) Given: quality threshold z ∈ [ k ] (depending on redundancy in data encoding) set X ⊆ [ n ] of removed nodes Damage b T ( X , z ) T 3 T 2 T 4 Number of nodes not satisfied , i.e., reachable from the T 1 T 5 source in at most k − z of the k trees. v T 1 T 2 T 3 s s s X = { 2 , 5 , 7 } 3 1 2 5 6 7 2 b T ( X , 2) = 6 7 2 5 4 1 6 7 1 3 5 6 3 4 4 Sascha Grau (TU Ilmenau) Multitree Data Distribution Topologies December 19th, 2012 5 / 18

  9. Attack-Resilience and Forward-Stability Attack-Resilient Distribution Topologies Goal Determine topologies in T ( n , C , k ), that minimize the maximum possible damage for all attack sizes and quality thresholds. Definition (Attack-Resilient Distribution Topology) A topology T ∈ T ( n , C , k ) is called attack-resilient , if it holds that b T ( X , z ) ≤ max b C ( X , z ) . ∀ x ∈ [ n ] , ∀ z ∈ [ k ] , ∀C ∈ T ( n , C , k ): max X ⊆ V X ⊆ V | X | = x | X | = x Sascha Grau (TU Ilmenau) Multitree Data Distribution Topologies December 19th, 2012 6 / 18

  10. Attack-Resilience and Forward-Stability Attack-Resilient Distribution Topologies Goal Determine topologies in T ( n , C , k ), that minimize the maximum possible damage for all attack sizes and quality thresholds. Definition (Attack-Resilient Distribution Topology) A topology T ∈ T ( n , C , k ) is called attack-resilient , if it holds that b T ( X , z ) ≤ max b C ( X , z ) . ∀ x ∈ [ n ] , ∀ z ∈ [ k ] , ∀C ∈ T ( n , C , k ): max X ⊆ V X ⊆ V | X | = x | X | = x Problem: direct analysis is hard Trick: study topologies optimizing a highly similar damage measure Sascha Grau (TU Ilmenau) Multitree Data Distribution Topologies December 19th, 2012 6 / 18

  11. Attack-Resilience and Forward-Stability Forward-Damage Forward-Damage bf T ( X , z ) highly similar to damage measure b T ( X , z ) Difference : some directly attacked nodes possibly not counted as damage Consequence : b T ( X , z ) and bf T ( X , z ) differ by at most | X | s s s b T ( { 3 , 4 , 5 } , 2) = 5 3 1 2 5 6 7 2 bf T ( { 3 , 4 , 5 } , 2) = 3 7 2 5 4 1 6 7 1 3 5 6 3 4 4 Sascha Grau (TU Ilmenau) Multitree Data Distribution Topologies December 19th, 2012 7 / 18

  12. Attack-Resilience and Forward-Stability Forward-Damage Forward-Damage bf T ( X , z ) highly similar to damage measure b T ( X , z ) Difference : some directly attacked nodes possibly not counted as damage Consequence : b T ( X , z ) and bf T ( X , z ) differ by at most | X | s s s b T ( { 3 , 4 , 5 } , 2) = 5 3 1 2 5 6 7 2 bf T ( { 3 , 4 , 5 } , 2) = 3 7 2 5 4 1 6 7 1 3 5 6 3 4 4 Sascha Grau (TU Ilmenau) Multitree Data Distribution Topologies December 19th, 2012 7 / 18

  13. Attack-Resilience and Forward-Stability Dominance of Forward-Damage For growing numbers of nodes in a topology (application-relevant cases), the worst-case forward-damage dominates the worst-case damage. Theorem For all T ∈ T ( n , C , k ) , z ∈ [ k ], and x ∈ [ n ], it holds that bf T ( X , z ) b T ( X , z ) bf T ( X , z ) + min( Cz − 1 , x ) . max ≤ max ≤ max X ⊆ V X ⊆ V X ⊆ V | X | = x | X | = x | X | = x Sascha Grau (TU Ilmenau) Multitree Data Distribution Topologies December 19th, 2012 8 / 18

  14. Attack-Resilience and Forward-Stability Dominance of Forward-Damage For growing numbers of nodes in a topology (application-relevant cases), the worst-case forward-damage dominates the worst-case damage. Theorem For all T ∈ T ( n , C , k ) , z ∈ [ k ], and x ∈ [ n ], it holds that bf T ( X , z ) b T ( X , z ) bf T ( X , z ) + min( Cz − 1 , x ) . max ≤ max ≤ max X ⊆ V X ⊆ V X ⊆ V | X | = x | X | = x | X | = x Distribution topologies that minimize forward-damage are: easier to analyze, give a good approximation of attack-resilient topologies for n ≫ Ck . Sascha Grau (TU Ilmenau) Multitree Data Distribution Topologies December 19th, 2012 8 / 18

  15. Attack-Resilience and Forward-Stability Restricted Attacks Notions (all heads of T i : H T “ v is head in T i ”: v is adjacent to s in T i i ) “ v is forwarding in T i ”: v is head of or has children in T i Definition ( t -restricted Attack) An attack X is called t-restricted , if there is I ⊆ [ k ], | I | = t , such that every node v ∈ X is forwarding either in a tree T i with i ∈ I or in no tree at all. All t -restricted attacks on topology T constitute the set χ ( T , t ). Special case: all nodes in X together are forwarding in at most t trees s s s 3 1 2 5 6 7 2 7 2 5 4 1 6 7 1 3 5 6 3 4 4 Sascha Grau (TU Ilmenau) Multitree Data Distribution Topologies December 19th, 2012 9 / 18

  16. Attack-Resilience and Forward-Stability Restricted Attacks Notions (all heads of T i : H T “ v is head in T i ”: v is adjacent to s in T i i ) “ v is forwarding in T i ”: v is head of or has children in T i Definition ( t -restricted Attack) An attack X is called t-restricted , if there is I ⊆ [ k ], | I | = t , such that every node v ∈ X is forwarding either in a tree T i with i ∈ I or in no tree at all. All t -restricted attacks on topology T constitute the set χ ( T , t ). Special case: all nodes in X together are forwarding in at most t trees s s s { 2 , 3 , 6 } �∈ χ ( T , 2) 3 1 2 5 6 7 2 { 2 , 3 , 4 } ∈ χ ( T , 2) 7 2 5 4 1 6 7 1 3 5 6 3 4 4 Sascha Grau (TU Ilmenau) Multitree Data Distribution Topologies December 19th, 2012 9 / 18

Recommend

Resilient Food Systems, Resilient Cities Presented by Kim Zeuli Resilience A

Resilient Food Systems, Resilient Cities Presented by Kim Zeuli Resilience A

Resilient Food Systems, Resilient Cities Presented by Kim Zeuli Resilience A resilient Growing food Processing system Distribution 60% of NYCs produce; 50% meat and fish 28% of site in

181 views • 15 slides
Multitree Generalized Steppingstone Sampling A New MCMC Method for Estimating the Marginal

Multitree Generalized Steppingstone Sampling A New MCMC Method for Estimating the Marginal

Multitree Generalized Steppingstone Sampling A New MCMC Method for Estimating the Marginal Likelihood of a Models Mark T. Holder, Paul O. Lewis, David L. Swofford, and David Bryant KU, UConn, Duke, U. Otago (NZ) Feb 16, 2013 Austin,

625 views • 48 slides
Simulating DataCenter Network Topologies Suraj Ketan Samal Upasana Nayak 1 Agenda Data

Simulating DataCenter Network Topologies Suraj Ketan Samal Upasana Nayak 1 Agenda Data

Simulating DataCenter Network Topologies Suraj Ketan Samal Upasana Nayak 1 Agenda Data Center Networks (DCN) Project Proposal (Our Work) Network Topologies & Properties Simulation using NS-3 Conclusion and Future Work 2

365 views • 17 slides
Efficient DHT attack mitigation through peers ID distribution Thibault Cholez, Isabelle

Efficient DHT attack mitigation through peers ID distribution Thibault Cholez, Isabelle

Introduction Analysis of IDs distribution DHT attacks detection & mitigation Conclusion Efficient DHT attack mitigation through peers ID distribution Thibault Cholez, Isabelle Chrisment and Olivier Festor { thibault.cholez,

493 views • 25 slides
Efficient, Scalable, and Resilient Vehicle-Centric Certificate Revocation List Distribution in

Efficient, Scalable, and Resilient Vehicle-Centric Certificate Revocation List Distribution in

Efficient, Scalable, and Resilient Vehicle-Centric Certificate Revocation List Distribution in VANETs Mohammad Khodaei and Panos Papadimitratos Networked Systems Security Group (NSS) www.ee.kth.se/nss Royal Institute of Technology (KTH)

700 views • 35 slides
Leakage Resilient Masking Schemes Sebastian Faust Ruhr University Bochum 1 Modern cryptography

Leakage Resilient Masking Schemes Sebastian Faust Ruhr University Bochum 1 Modern cryptography

Leakage Resilient Masking Schemes Sebastian Faust Ruhr University Bochum 1 Modern cryptography Until 1970s: Design crypto algorithm secure against one attack Find attack C Find attack B Crypto Crypto algorithm A algorithm B secure against

631 views • 51 slides
Resilient Disaster Recovery Logistics of Electrical Distribution Systems: Resource Dispatch and

Resilient Disaster Recovery Logistics of Electrical Distribution Systems: Resource Dispatch and

Resilient Disaster Recovery Logistics of Electrical Distribution Systems: Resource Dispatch and Microgrid Operation Shunbo Lei Electrical Engineering & Computer Science, University of Michigan, Ann Arbor December 26, 2019 @ HUST Outline

745 views • 35 slides
Virtual Topologies Virtual Topologies Convenient process naming. Naming scheme to fit the

Virtual Topologies Virtual Topologies Convenient process naming. Naming scheme to fit the

Virtual Topologies Virtual Topologies Convenient process naming. Naming scheme to fit the communication pattern. Simplifies writing of code. Can allow MPI to optimise communications. 2 How to use a Virtual Topology Creating a

296 views • 15 slides
Usage Of dCache Resilient Pools for User Code Distribution Recap Analyzers and some

Usage Of dCache Resilient Pools for User Code Distribution Recap Analyzers and some

Usage Of dCache Resilient Pools for User Code Distribution Recap Analyzers and some production groups lost access to a subset of their frequently changing code located on Bluearc and have to download files from dCache scratch area. The

213 views • 5 slides
Collusion-resilient credit-based reputation for peer-to-peer content distribution Nguyen Tran,

Collusion-resilient credit-based reputation for peer-to-peer content distribution Nguyen Tran,

Collusion-resilient credit-based reputation for peer-to-peer content distribution Nguyen Tran, Jinyang Li, Lakshminarayanan Subramanian New York University NetEcon10 1 Incentive in P2P CDNs A solved problem? Yes BitTorrent

683 views • 54 slides
Medusa: Microarchitectural Data Leakage via Automated Attack Synthesis Daniel Moghimi

Medusa: Microarchitectural Data Leakage via Automated Attack Synthesis Daniel Moghimi

Medusa: Microarchitectural Data Leakage via Automated Attack Synthesis Daniel Moghimi Moritz Lipp Berk Sunar Michael Schwarz 2018: Meltdown Attack? 2 2018: Meltdown Attack? Virtual Address Space User Space CPU Registers

1.14k views • 63 slides
Attack on Traffic Systems These attack examples have happened in the past. We will take an

Attack on Traffic Systems These attack examples have happened in the past. We will take an

From start to finish how a cyber attack would be performed on traffic system, we will go over first day >> exploitation of the device >> the real-world aftermath. Mission Secure, Inc. Attack on Traffic Systems These attack examples

556 views • 18 slides
Enabling the Resilient Electric Grid Anurag K Srivastava Washington State University

Enabling the Resilient Electric Grid Anurag K Srivastava Washington State University

Enabling the Resilient Electric Grid Anurag K Srivastava Washington State University (anurag.k.srivastava@wsu.edu) PSERC Webinar November 3, 2020 1 The electrical distribution network is reliable but not resilient Extreme events

621 views • 36 slides
Frame Relay Topologies and Designs Frame Relay Topologies and Design As we learned in the Frame

Frame Relay Topologies and Designs Frame Relay Topologies and Design As we learned in the Frame

Frame Relay Topologies and Designs Frame Relay Topologies and Design As we learned in the Frame Relay - Introduction and Concepts lesson, Frame Relay introduces some cost savings benefits over point-to-point leased lines. This lesson will

396 views • 14 slides
Tree-like automata synchronisation topologies and their reductions Micha l Knapik , Laure

Tree-like automata synchronisation topologies and their reductions Micha l Knapik , Laure

Tree-like automata synchronisation topologies and their reductions Micha l Knapik , Laure Petrucci TDCS seminar, 16th July 2020 ICS PAS/LIPN, CNRS Outline Motivations and Contributions Asynchronous Products, Synchronisation Topologies

621 views • 39 slides
Liebert GXT3 Solution by GSE UPS Topologies Stand-by / Offline Line Interactive

Liebert GXT3 Solution by GSE UPS Topologies Stand-by / Offline Line Interactive

Liebert GXT3 Solution by GSE UPS Topologies Stand-by / Offline Line Interactive On-Line Double Conversion UPS Topologies Stand-by Inexpensive, economical Effective Power Conditioner TRANSFER TVSS & SWITCH EMI /

1.03k views • 40 slides
V-topologies, t-Henselian Fields and Definable Valuations Katharina Dupont Department of

V-topologies, t-Henselian Fields and Definable Valuations Katharina Dupont Department of

1 V-topologies, t-Henselian Fields and Definable Valuations Katharina Dupont Department of Mathematics University of Constance British Postgraduate Model Theorie Conference, 2011 2 Outline V-Topologies and t-Henselian Fields 1

783 views • 28 slides
Resilient Chicago 100 Resilient Cities is a global initiative that seeks to help cities around

Resilient Chicago 100 Resilient Cities is a global initiative that seeks to help cities around

Resilient Chicago 100 Resilient Cities is a global initiative that seeks to help cities around the world become more resilient to the physical, social, and economic challenges that are a growing part of the 21st century. Credit: City of Chicago

882 views • 47 slides
Polishness of some topologies related to automata Olivier Finkel Joint work with Olivier Carton

Polishness of some topologies related to automata Olivier Finkel Joint work with Olivier Carton

Polishness of some topologies related to automata Olivier Finkel Joint work with Olivier Carton and Dominique Lecomte JAF 2018 Florence Outline The Cantor topology on a space of infinite words Other topologies Main Results Consequences

424 views • 26 slides
HOW DO WE RAISE RESILIENT, WELL-ADJUSTED CHILDREN WITH HEALTHY BRAINS?* The top

HOW DO WE RAISE RESILIENT, WELL-ADJUSTED CHILDREN WITH HEALTHY BRAINS?* The top

HOW DO WE RAISE RESILIENT, WELL-ADJUSTED CHILDREN WITH HEALTHY BRAINS?* The top in-demand jobs today did not exist 5-6 years ago iDS and Android Data Scientist Developer Cloud Services Specialist UI/UX Designer Big Data

652 views • 41 slides
WildfireDLN Wildland Fire Data Logistics Network (WildfireDLN) A Demonstration of Resilient Data

WildfireDLN Wildland Fire Data Logistics Network (WildfireDLN) A Demonstration of Resilient Data

WildfireDLN Wildland Fire Data Logistics Network (WildfireDLN) A Demonstration of Resilient Data Sharing Presented by Nancy French, Ezra Kissel, Jeremy Musser, Ben Hart Project Leads: Dr. Nancy HF French, PI Michigan Tech Research Institute

678 views • 23 slides
Polishness of some topologies related to automata Olivier Finkel Joint work with Olivier Carton

Polishness of some topologies related to automata Olivier Finkel Joint work with Olivier Carton

Polishness of some topologies related to automata Olivier Finkel Joint work with Olivier Carton and Dominique Lecomte Wadge Theory and Automata Torino, June 8, 2018 Outline The Cantor topology on a space of infinite words Other topologies

1.16k views • 31 slides
RESILIENT RESILIENT & HE & HEAL ALTHY CO THY COUNT UNTIES IES LUN UNCH: CH:

RESILIENT RESILIENT & HE & HEAL ALTHY CO THY COUNT UNTIES IES LUN UNCH: CH:

RESILIENT RESILIENT & HE & HEAL ALTHY CO THY COUNT UNTIES IES LUN UNCH: CH: Strengthening Counties Resilience by Addressing the Public Health Impacts of Natural Disasters Sunday, March 4, 12:00pm 1:30pm #ResilientCounties

601 views • 38 slides
Resilient Predictive Data Pipelines Sid Anand (@r39132) QCon London 2016 1 About Me Work [ed

Resilient Predictive Data Pipelines Sid Anand (@r39132) QCon London 2016 1 About Me Work [ed

Resilient Predictive Data Pipelines Sid Anand (@r39132) QCon London 2016 1 About Me Work [ed | s] @ Co-Chair for Maintainer on airbnb/airflow Report to 2 Motivation Why is a Data Pipeline talk in this High Availability Track? 3

935 views • 60 slides

More recommend