provenance for system troubleshooting
play

Provenance for System Troubleshooting Marc Chiarini Harvard SEAS - PowerPoint PPT Presentation

Dec 09, 2022 •96 likes •197 views

Provenance for System Troubleshooting Marc Chiarini Harvard SEAS TaPP '11 A Day in the Life... Wake up 3am via page from a heartless machine: hot backup has failed. Start troubleshooting (in pajamas, thankfully!) Log files

  1. Provenance for System Troubleshooting Marc Chiarini Harvard SEAS TaPP '11

  2. A Day in the Life... ● Wake up 3am via page from a heartless machine: hot backup has failed. ● Start troubleshooting (in pajamas, thankfully!) ● Log files indicate unable to contact storage appliance, ¾ into backup. ● Storage appliance working fine and reachable now. ● Where to look next? (Coffee first!)

  3. System-level Provenance ● Directed acyclic graph tells us what digital objects interacted during provenance collection, and when. ● Examples: – File F read by process P – File Z written by P – Z read by process Q – Pipe I written by Q – I read by process R

  4. Potential Dependency ● Define dependency as the transmission of information from a passive object (file, pipe, etc) to an active object (process), that is necessary to the proper functioning of the process. ● Transitive dependencies also exist between active objects. ● For troubleshooting, provenance graph edges represent potential dependencies . We don't look at data or programs, so won't talk about causality.

  5. Troubleshooting Example dhclient.con other inputs f dhcli ent dhclient socket many endpoint other inputs D- Bus NetMan socket endpoint other inputs netw ork man ager resolv.con f resol ver

  6. Graph Reduction ● Real graph is much too large. ● Reduction is necessary to support reasonable queries. ● Want to turn potential dependencies into actual dependencies with high confidence and eliminate non-dependencies in the graph. ● Impossible to identify all true dependencies; would require enumerating all failures.

  7. In Our Favor... ● There are known dependencies, e.g., configuration files for system services. ● We can label with low probability, files residing in well-known log directories, e.g., / var/log. ● We can label with high probability, files residing in library directories, e.g. /usr/lib. ● We can label with high probability, files that are opened by a program on every

  8. Other challenges ● Building a tool that improves the sysadmin's mental model of her systems via exploration, documentation, visualization, etc. ● Give the sysadmin an intuitive way to query the provenance graph and limit the scope of query responses (regexps may not cut it!). ● How do we integrate troubleshooting workflow artifacts (e.g., past symptoms and graph query results) with troubleshooting

  9. Questions? Prototype will be available in late fall 2011. http://www.eecs.harvard.edu/syrah/pass/ chiarini@seas.harvard.edu

Recommend

PASS PASS Provenance-Aware Storage System Provenance-Aware Storage System Margo Seltzer, David

PASS PASS Provenance-Aware Storage System Provenance-Aware Storage System Margo Seltzer, David

PASS PASS Provenance-Aware Storage System Provenance-Aware Storage System Margo Seltzer, David Holland, Kiran-Kumar Muniswamy-Reddy, Uri Braun, and Jonathan Ledlie Harvard University What is Provenance? What is Provenance? What did the

336 views • 12 slides
Scalable Uncertainty Management 03 Provenance Rainer Gemulla May 18, 2012 Overview In this

Scalable Uncertainty Management 03 Provenance Rainer Gemulla May 18, 2012 Overview In this

Scalable Uncertainty Management 03 Provenance Rainer Gemulla May 18, 2012 Overview In this lecture Introduction to datalog What is provenance? Which types of provenance do exist? Lineage Why-provenance How-provenance How to

466 views • 43 slides
Provenance from the data provider view constructing provenance information for the APPLAUSE

Provenance from the data provider view constructing provenance information for the APPLAUSE

Provenance from the data provider view constructing provenance information for the APPLAUSE archive Anastasia Galkin Ole Streicher Kristin Riebe Harry Enke EDP Forum Heidelberg 2018 6 Constructing the provenance Used Used for or the

610 views • 15 slides
VERSIONING, VERSIONING, PROVENANCE, AND PROVENANCE, AND REPRODUCABILITY REPRODUCABILITY

VERSIONING, VERSIONING, PROVENANCE, AND PROVENANCE, AND REPRODUCABILITY REPRODUCABILITY

VERSIONING, VERSIONING, PROVENANCE, AND PROVENANCE, AND REPRODUCABILITY REPRODUCABILITY Christian Kaestner Required reading: Halevy, Alon, Flip Korn, Natalya F. Noy, Christopher Olston, Neoklis Polyzotis, Sudip Roy, and Steven Euijong

755 views • 46 slides
Provenance of astronomical data The IVOA Provenance Working Group: Catherine Boisson Franois

Provenance of astronomical data The IVOA Provenance Working Group: Catherine Boisson Franois

Provenance Data Model Provenance of astronomical data The IVOA Provenance Working Group: Catherine Boisson Franois Bonnarel Johan Bregeon Pierre Le Sidaner Julien Lefaucheur Mireille Louys Markus Nullmeier Ana Palacios Kristin Riebe

360 views • 22 slides
RSVP CD Troubleshooting System Requirements Mac - OS X 10.6 PC - Windows 7 or similar operating

RSVP CD Troubleshooting System Requirements Mac - OS X 10.6 PC - Windows 7 or similar operating

RSVP CD Troubleshooting System Requirements Mac - OS X 10.6 PC - Windows 7 or similar operating system These are the minimum operating system requirements to install and run RSVP . If the users system is not up to date, they will still be

503 views • 4 slides
Provenance -Only Integration Ashish Gehani Dawood Tariq SRI Provenance -Only Integration p.

Provenance -Only Integration Ashish Gehani Dawood Tariq SRI Provenance -Only Integration p.

Provenance -Only Integration Ashish Gehani Dawood Tariq SRI Provenance -Only Integration p. 1/13 Integration Challenges Metadata variation: Abstraction levels Completeness Identifiers Semantics Querying requires: Record assembly

683 views • 13 slides
FAROS: Illuminating In-Memory Injection Attacks via Provenance-based Whole System Dynamic

FAROS: Illuminating In-Memory Injection Attacks via Provenance-based Whole System Dynamic

FAROS: Illuminating In-Memory Injection Attacks via Provenance-based Whole System Dynamic Information Flow Tracking Meisam Navaki Arefi , Geoffrey Alexander, Hooman Rokham, Aokun Chen, Michalis Faloutsos, Xuetao Wei, Daniela Seabra Oliveira and

588 views • 32 slides
Towards a Secure and Efficient System for End-to-End Provenance Patrick McDaniel, Kevin Butler,

Towards a Secure and Efficient System for End-to-End Provenance Patrick McDaniel, Kevin Butler,

Towards a Secure and Efficient System for End-to-End Provenance Patrick McDaniel, Kevin Butler, Stephen McLaughlin Penn State University Erez Zadok, Radu Sion, Stony Brook University Marianne Winslett, University of Illinois TaPP10, San

336 views • 17 slides
Provenance for Interactive Visualizations Fotis Psallidas Eugene Wu fotis@cs.columbia.edu

Provenance for Interactive Visualizations Fotis Psallidas Eugene Wu fotis@cs.columbia.edu

Provenance for Interactive Visualizations Fotis Psallidas Eugene Wu fotis@cs.columbia.edu ewu@cs.columbia.edu Provenance Primer Fine-Grained Provenance (Connections between input and output tuples) Provenance Primer Fine-Grained Provenance

392 views • 20 slides
Troubleshooting & Q&A 1 1 SeisComP3 Troubleshooting scrttv Real Time Trace Viewer

Troubleshooting & Q&A 1 1 SeisComP3 Troubleshooting scrttv Real Time Trace Viewer

Troubleshooting & Q&A 1 1 SeisComP3 Troubleshooting scrttv Real Time Trace Viewer scqcv Quality Control GUI slinktool to check the status of the seedlink server slinktool -Q : SOME log files are in hidden .seiscomp3

192 views • 7 slides
Understanding Customer Problem Troubleshooting from Storage System Logs Weihang Jiang

Understanding Customer Problem Troubleshooting from Storage System Logs Weihang Jiang

Understanding Customer Problem Troubleshooting from Storage System Logs Weihang Jiang (wjiang3@uiuc.edu) Weihang Jiang *+ , Chongfeng Hu *+ , Shankar Pasupathy + , Arkady Kanevsky + , Zhenmin Li # , Yuanyuan Zhou * University of Illinois * NetApp +

511 views • 23 slides
TROUBLESHOOTING Performing basic Acronis Backup and Acronis Backup Cloud troubleshooting Acronis

TROUBLESHOOTING Performing basic Acronis Backup and Acronis Backup Cloud troubleshooting Acronis

ACRONIS BACKUP TROUBLESHOOTING Performing basic Acronis Backup and Acronis Backup Cloud troubleshooting Acronis Training and Certification Authorized Use Only 1 Module Outline 1. Acronis Backup Troubleshooting Steps 2. Acronis Support

1.13k views • 53 slides
Provenance Analytics and Visualization Juliana Freire VisTrails Group & Web and Databases

Provenance Analytics and Visualization Juliana Freire VisTrails Group & Web and Databases

Provenance Analytics and Visualization Juliana Freire VisTrails Group & Web and Databases Lab Provenance Analytics: Opportunities Provenance beyond reproducibility Opportunity for knowledge discovery, sharing and re-use Query

475 views • 13 slides
Provenance Tracking in CXXR Chris A. Silles Andrew R. Runnalls Computing Laboratory, University

Provenance Tracking in CXXR Chris A. Silles Andrew R. Runnalls Computing Laboratory, University

Provenance Tracking in CXXR Chris A. Silles Andrew R. Runnalls Computing Laboratory, University of Kent, UK Introduction Provenance CXXR Provenance-Aware CXXR Conclusion Outline 1 Introduction 2 Provenance CXXR 3 Provenance-Aware

980 views • 97 slides
Provenance Artifact Identification in the Atmospheric Composition Processing System (ACPS) Curt

Provenance Artifact Identification in the Atmospheric Composition Processing System (ACPS) Curt

Provenance Artifact Identification in the Atmospheric Composition Processing System (ACPS) Curt Tilmes NASA/UMBC Yelena Yesha Milton Halem UMBC UMBC Overview Background Earth Science Processing Artifacts Persistence

407 views • 18 slides
Scippa: System-Centric IPC Provenance on Android Michael Backes, Sven Bugiel, Sebastian Gerling

Scippa: System-Centric IPC Provenance on Android Michael Backes, Sven Bugiel, Sebastian Gerling

Scippa: System-Centric IPC Provenance on Android Michael Backes, Sven Bugiel, Sebastian Gerling Saarland Univeristy, Germany 2014 Annual Computer Security Applications Conference Presenter: Qi Wang 1 Android application separation One

661 views • 22 slides
Whats the Problem? What does it mean to collect provenance when you dont control:

Whats the Problem? What does it mean to collect provenance when you dont control:

Provenance in the Wild Peter Macko, Margo Seltzer June 14, 2012 Whats the Problem? What does it mean to collect provenance when you dont control: The data (types, format, organization, structure) The operators The

445 views • 10 slides
Automatically Generating Predicates and Solutions for Configuration Troubleshooting * Ya-Yunn Su

Automatically Generating Predicates and Solutions for Configuration Troubleshooting * Ya-Yunn Su

Automatically Generating Predicates and Solutions for Configuration Troubleshooting * Ya-Yunn Su Jason Flinn NEC Laboratories University of America Michigan Troubleshooting misconfigurations is hard! Users may have to Edit

354 views • 31 slides
Towards Semantics for Provenance Security Stephen Chong Harvard University TaPP 09

Towards Semantics for Provenance Security Stephen Chong Harvard University TaPP 09

Towards Semantics for Provenance Security Stephen Chong Harvard University TaPP 09 Provenance security Some data are sensitive Must ensure provenance does not reveal sensitive data E.g., John participated in medical study S reveals

277 views • 27 slides
hhhh Agenda O/S Applications RMS System management Troubleshooting tools

hhhh Agenda O/S Applications RMS System management Troubleshooting tools

1 Bruce Ellis & Guy Peleg bruce.ellis@bruden.com guy.peleg@bruden.com BRUDEN-OSSG hhhh Agenda O/S Applications RMS System management Troubleshooting tools Simulators 2 Si vous naimez pas ma conduite,

631 views • 62 slides
Supporting Incremental Re-Computation with Whole System Provenance: Issues and Approaches Ashish

Supporting Incremental Re-Computation with Whole System Provenance: Issues and Approaches Ashish

Supporting Incremental Re-Computation with Whole System Provenance: Issues and Approaches Ashish Gehani, SRI Incremental Re-computation File 2 Read Supported via memoization open() close() Database query engines File 1 Read close()

665 views • 12 slides
Building a provenance-based intrusion detection system Thomas Pasquier, University of Bristol

Building a provenance-based intrusion detection system Thomas Pasquier, University of Bristol

Building a provenance-based intrusion detection system Thomas Pasquier, University of Bristol Toshiba, 26/11/2020 1 Talk loosely based on following publications Han et al. UNICORN: Revisiting Host-Based Intrusion Detection in the Age of

783 views • 55 slides
Challenges in managing implicit and abstract provenance data: experiences with ProvManager

Challenges in managing implicit and abstract provenance data: experiences with ProvManager

Workshop on the Theory and Practice of Provenance 2011 Challenges in managing implicit and abstract provenance data: experiences with ProvManager Anderson Marinho, Marta Mattoso, Cludia Werner, Vanessa Braganholo, Leonardo Murta

785 views • 12 slides

More recommend