Surviving internet catastrophes

Authors:
Flavio Junqueira;Ranjita Bhagwan;Alejandro Hevia;Keith Marzullo;Geoffrey M. Voelker
Affiliations:
Department of Computer Science and Engineering, University of California, San Diego;Department of Computer Science and Engineering, University of California, San Diego;Department of Computer Science and Engineering, University of California, San Diego;Department of Computer Science and Engineering, University of California, San Diego;Department of Computer Science and Engineering, University of California, San Diego
Venue:
ATEC '05 Proceedings of the annual conference on USENIX Annual Technical Conference
Year:
2005

Citing 22
Cited 13

Byzantine quorum systems

STOC '97 Proceedings of the twenty-ninth annual ACM symposium on Theory of computing
Practical Byzantine fault tolerance

OSDI '99 Proceedings of the third symposium on Operating systems design and implementation
A prototype implementation of archival Intermemory

Proceedings of the fourth ACM conference on Digital libraries
OceanStore: an architecture for global-scale persistent storage

ASPLOS IX Proceedings of the ninth international conference on Architectural support for programming languages and operating systems
Code-Red: a case study on the spread and victims of an internet worm

Proceedings of the 2nd ACM SIGCOMM Workshop on Internet measurment
Pastry: Scalable, Decentralized Object Location, and Routing for Large-Scale Peer-to-Peer Systems

Middleware '01 Proceedings of the IFIP/ACM International Conference on Distributed Systems Platforms Heidelberg
Synchronous Consensus for Dependent Process Failures

ICDCS '03 Proceedings of the 23rd International Conference on Distributed Computing Systems
A Network Worm Vaccine Architecture

WETICE '03 Proceedings of the Twelfth International Workshop on Enabling Technologies: Infrastructure for Collaborative Enterprises
Inside the Slammer Worm

IEEE Security and Privacy
Monitoring and early warning for internet worms

Proceedings of the 10th ACM conference on Computer and communications security
Randomized instruction set emulation to disrupt binary code injection attacks

Proceedings of the 10th ACM conference on Computer and communications security
Dynamic Quarantine of Internet Worms

DSN '04 Proceedings of the 2004 International Conference on Dependable Systems and Networks
Kosha: A Peer-to-Peer Enhancement for the Network File System

Proceedings of the 2004 ACM/IEEE conference on Supercomputing
Pastiche: making backup cheap and easy

OSDI '02 Proceedings of the 5th symposium on Operating systems design and implementationCopyright restrictions prevent ACM from being able to make the PDFs for this conference available for downloading
A cooperative internet backup scheme

ATEC '03 Proceedings of the annual conference on USENIX Annual Technical Conference
The phoenix recovery system: rebuilding from the ashes of an internet catastrophe

HOTOS'03 Proceedings of the 9th conference on Hot Topics in Operating Systems - Volume 9
MACEDON: methodology for automatically creating, evaluating, and designing overlay networks

NSDI'04 Proceedings of the 1st conference on Symposium on Networked Systems Design and Implementation - Volume 1
Glacier: highly durable, decentralized storage despite massive correlated failures

NSDI'05 Proceedings of the 2nd conference on Symposium on Networked Systems Design & Implementation - Volume 2
Inferring internet denial-of-service activity

SSYM'01 Proceedings of the 10th conference on USENIX Security Symposium - Volume 10
Implementing and testing a virus throttle

SSYM'03 Proceedings of the 12th conference on USENIX Security Symposium - Volume 12
Autograph: toward automated, distributed worm signature detection

SSYM'04 Proceedings of the 13th conference on USENIX Security Symposium - Volume 13
StackGuard: automatic adaptive detection and prevention of buffer-overflow attacks

SSYM'98 Proceedings of the 7th conference on USENIX Security Symposium - Volume 7

Experiences in building and operating ePOST, a reliable peer-to-peer application

Proceedings of the 1st ACM SIGOPS/EuroSys European Conference on Computer Systems 2006
A fresh look at the reliability of long-term digital storage

Proceedings of the 1st ACM SIGOPS/EuroSys European Conference on Computer Systems 2006
Maximizing data locality in distributed systems

Journal of Computer and System Sciences
Glacier: highly durable, decentralized storage despite massive correlated failures

NSDI'05 Proceedings of the 2nd conference on Symposium on Networked Systems Design & Implementation - Volume 2
Staged deployment in mirage, an integrated software upgrade testing and distribution system

Proceedings of twenty-first ACM SIGOPS symposium on Operating systems principles
SafeStore: a durable and practical storage system

ATC'07 2007 USENIX Annual Technical Conference on Proceedings of the USENIX Annual Technical Conference
Challenges on preserving scientific data with data grids

Proceedings of the 1st ACM workshop on Data grids for eScience
Preserving digital data in heterogeneous environments

Proceedings of the 9th ACM/IEEE-CS joint conference on Digital libraries
On the design of an global intrusion tolerance network architecture against the internet catastrophes

Journal of Systems and Software
The virtue of dependent failures in multi-site systems

HotDep'05 Proceedings of the First conference on Hot topics in system dependability
Improving robustness of DNS to software vulnerabilities

Proceedings of the 27th Annual Computer Security Applications Conference
Coterie availability in sites

DISC'05 Proceedings of the 19th international conference on Distributed Computing
Turtles all the way down: a clean-slate, ground-up, first-principles approach to secure systems

Proceedings of the 2012 workshop on New security paradigms

Quantified Score

Hi-index	0.00

Visualization

Abstract

In this paper, we propose a new approach for designing distributed systems to survive Internet catastrophes called informed replication, and demonstrate this approach with the design and evaluation of a cooperative backup system called the Phoenix Recovery Service. Informed replication uses a model of correlated failures to exploit software diversity. The key observation that makes our approach both feasible and practical is that Internet catastrophes result from shared vulnerabilities. By replicating a system service on hosts that do not have the same vulnerabilities, an Internet pathogen that exploits a vulnerability is unlikely to cause all replicas to fail. To characterize software diversity in an Internet setting, we measure the software diversity of host operating systems and network services in a large organization. We then use insights from our measurement study to develop and evaluate heuristics for computing replica sets that have a number of attractive features. Our heuristics provide excellent reliability guarantees, result in low degree of replication, limit the storage burden on each host in the system, and lend themselves to a fully distributed implementation. We then present the design and prototype implementation of Phoenix, and evaluate it on the PlanetLab testbed.