Presentation is loading. Please wait.

Presentation is loading. Please wait.

A DoS-Resilient Information System for Dynamic Data Management Stefan Schmid & Christian Scheideler Dept. of Computer Science University of Paderborn Matthias.

Published byNora Boyd Modified over 8 years ago

Similar presentations

Presentation on theme: "A DoS-Resilient Information System for Dynamic Data Management Stefan Schmid & Christian Scheideler Dept. of Computer Science University of Paderborn Matthias."— Presentation transcript:

1 A DoS-Resilient Information System for Dynamic Data Management Stefan Schmid & Christian Scheideler Dept. of Computer Science University of Paderborn Matthias Baumgart Dept. of Computer Science Technische Universität München

2 Motivation In 2007, a major DoS attack was launched against the root servers of the DNS system Internet d d d d d d

3 DoS-resistant Information System Problem: DNS-approach of full replication not feasible in large information systems Internet off-the-shelf servers

4 DoS-resistant Information System Scalable information system: storage over- head limited to logarithmic factor Internet d d d

5 DoS-resistant Information System storage overhead limited to log factor: scalable put und get operations possible Internet d d d

6 DoS-resistant Information System storage overhead limited to log factor: but how to be robust against DoS attacks? Internet d d d

7 Fundamental Dilemma Scalability: minimize replication of information Robustness: maximize resources needed by attacker Internet d d d

8 Fundamental Dilemma Limitation to „legal“ attacks / information hiding Information hiding difficult under insider attacks Internet d d d

9 DoS-resistant Information System Past-Insider-Attack: Attacker knows every- thing about system till (unknown) time t 0 Goal: scalable information system so that everything that was inserted after t 0 is safe (w.h.p.) against any past-insider DoS attack that can shut down any  -fraction of the servers, for some  >0, and create any legal set of put and get requests You are fired!

10 Formal Model We are given a static set of n reliable servers.  -bounded attacker: knows entire system till time t 0 (unknown to system) can block any  -fraction of servers can generate any set of put/get requests, one per server Goals: Scalability: every server spends at most polylog time and work on put and get requests Robustness: every get request to a data item inserted or updated after t 0 is served correctly Correctness: every get request to a data item is served correctly if the system is not under DoS-attack

11 DoS-resilient Information System Dilemma: just polylog copies allowed per data item to be scalable deterministic placement ??? randomized placement

12 DoS-resilient Information System Basic strategy: choose suitable hash functions h 1,..,h c :D  V (D: name space of data, V: set of servers) Store copy of item d for every i and j randomly in a set of servers of size 2 j that contains h i (d) h i (d) easy to block difficult to block easy to find difficult to find

13 DoS-resilient Information System „Tie“ sufficient for get requests [DISC 07]: Most get requests can access close-by copies, only a few get requests have to find distant copies Work for each server altogether just polylog(n) for any set of n get requests, one per server h i (d)

14 DoS-resilient Information System „Tie“ sufficient for get requests [DISC 07]: BUT for get requests to work, all areas must have up-to-date copies, so put requests may fail under DoS attack h i (d)

15 DoS-resilient Information System Chameleon system: Permanent distributed hash table (p-store) h 1,..,h c fixed, must satisfy expansion properties (that hold w.h.p. for random hash functions) Temporary distributed hash table (t-store) hash function h continuously changes p-store t-store

16 DoS-resilient Information System Phase of Chameleon system: 1.Adversary blocks servers and initiates put & get requests 2.build new t-store, transfer data from old to new t-store 3.process all put requests in t-store 4.process all get requests in t-store and p-store 5.try to transfer data items from t-store to p-store p-store t-store Internet

17 Stage 2: Build new t-store t-store: distributed hash table (DHT) (de Bruijn network + consistent hashing) New t-store: Join protocol: Every node chooses new random location in de Bruijn network, searches for neighbors in p-store Insert protocol: Data items in old t-store are stored in new t-store (just O(n) items w.h.p.) O(log n) time and congestion w.h.p. p-store

18 Stage 3: Process puts in t-store t-put protocol: de-Bruijn routing with combining to store data in new t-store O(log n) time and O(log 2 n) congestion

19 Stage 4: Process get Requests t-get protocol: de Bruijn routing with combining to lookup data in t-store (O(log n) time and O(log 2 n) congestion) p-get protocol (related to [DISC 07]): –Preprocessing stage: determine blocked areas in p-store via sampling (O(1) time and O(log 2 n) congestion) –Contraction stage: try to get as close as possible to hash- based positions (O(log n) time and O(log 3 n) congestion) –Expansion stage: look for copies at successively wider areas (O(log 2 n) time and O(log 3 n) congestion)

20 Contraction Stage 01 h i (x) 0 1 2 log n

21 Expansion Stage 01 h i (x) 0 1 2 log n inactive

22 Stage 5: data from t-store to p-store p-put protocol: –Preprocessing stage: determine blocked areas and average load in p-store via sampling (O(1) time and O(log 2 n) congestion) –Contraction stage: try to get to sufficiently many hash-based positions in p-store (O(log n) time and O(log 3 n) congestion) –Permanent storage stage: for each successful data item, store new copies and delete as many old ones as possible (O(log n) time and O(log 2 n) congestion)

23 DoS-resistant Information System Theorem: Under any  -bounded past-insider attack (for some constant  >0), the Chameleon system can serve any set of requests (one per server) in O(log 2 n) time s.t. every get request to a data item inserted or updated after t 0 is served correctly, w.h.p. No degradation over time: O(log 2 n) copies per data item fair distribution of data among servers

24 Related Work Many scalable information systems: Chord, CAN, Pastry, Tapestry,… But many of these designs not even robust against flash crowds

25 Related Work Caching strategies against flash crowds: CoopNet, Backlash, PROOFS,… Naor&Wieder 03 But not robust against adaptive lookup attacks a b c d

26 Related Work Systems robust against DoS-attacks: SOS, WebSOS, Mayday, III,… Basic strategy: indirection infrastructure to hide original location of data Does not work against past insiders

27 Related Work Awerbuch & Sch. (DISC 07): DoS-resistent information system that can only handle get requests under DoS attack

28 Conclusion Applications: DoS-resistant platform for e- commerce or critical information services Open problems: More light-weight solution DoS-resistant system with bounded degree

29 Any Questions?

Download ppt "A DoS-Resilient Information System for Dynamic Data Management Stefan Schmid & Christian Scheideler Dept. of Computer Science University of Paderborn Matthias."

Similar presentations

Stefan Schmid & Christian Scheideler Dept. of Computer Science

Stefan Schmid & Christian Scheideler Dept. of Computer Science
P2P data retrieval DHT (Distributed Hash Tables) Partially based on Hellerstein’s presentation at VLDB2004.

P2P data retrieval DHT (Distributed Hash Tables) Partially based on Hellerstein’s presentation at VLDB2004.
Ion Stoica, Robert Morris, David Karger, M. Frans Kaashoek, Hari Balakrishnan MIT and Berkeley presented by Daniel Figueiredo Chord: A Scalable Peer-to-peer.

Ion Stoica, Robert Morris, David Karger, M. Frans Kaashoek, Hari Balakrishnan MIT and Berkeley presented by Daniel Figueiredo Chord: A Scalable Peer-to-peer.
Evaluation of a Scalable P2P Lookup Protocol for Internet Applications

Evaluation of a Scalable P2P Lookup Protocol for Internet Applications
Scalable Content-Addressable Network Lintao Liu 2001.11.19.

Scalable Content-Addressable Network Lintao Liu
Peer-to-Peer (P2P) Distributed Storage 1Dennis Kafura – CS5204 – Operating Systems.

Peer-to-Peer (P2P) Distributed Storage 1Dennis Kafura – CS5204 – Operating Systems.
CHORD – peer to peer lookup protocol Shankar Karthik Vaithianathan & Aravind Sivaraman University of Central Florida.

CHORD – peer to peer lookup protocol Shankar Karthik Vaithianathan & Aravind Sivaraman University of Central Florida.
Technische Universität Yimei Liao Chemnitz Kurt Tutschku Vertretung - Professur Rechner- netze und verteilte Systeme Chord - A Distributed Hash Table Yimei.

Technische Universität Yimei Liao Chemnitz Kurt Tutschku Vertretung - Professur Rechner- netze und verteilte Systeme Chord - A Distributed Hash Table Yimei.
Technische Universität Chemnitz Kurt Tutschku Vertretung - Professur Rechner- netze und verteilte Systeme Chord - A Distributed Hash Table Yimei Liao.

Technische Universität Chemnitz Kurt Tutschku Vertretung - Professur Rechner- netze und verteilte Systeme Chord - A Distributed Hash Table Yimei Liao.
Chord: A scalable peer-to- peer lookup service for Internet applications Ion Stoica, Robert Morris, David Karger, M. Frans Kaashock, Hari Balakrishnan.

Chord: A scalable peer-to- peer lookup service for Internet applications Ion Stoica, Robert Morris, David Karger, M. Frans Kaashock, Hari Balakrishnan.
Chord A Scalable Peer-to-peer Lookup Service for Internet Applications

Chord A Scalable Peer-to-peer Lookup Service for Internet Applications
A Distributed and Oblivious Heap Christian Scheideler and Stefan Schmid Dept. of Computer Science University of Paderborn.

A Distributed and Oblivious Heap Christian Scheideler and Stefan Schmid Dept. of Computer Science University of Paderborn.
Search and Replication in Unstructured Peer-to-Peer Networks Pei Cao, Christine Lv., Edith Cohen, Kai Li and Scott Shenker ICS 2002.

Search and Replication in Unstructured Peer-to-Peer Networks Pei Cao, Christine Lv., Edith Cohen, Kai Li and Scott Shenker ICS 2002.
1 Accessing nearby copies of replicated objects Greg Plaxton, Rajmohan Rajaraman, Andrea Richa SPAA 1997.

1 Accessing nearby copies of replicated objects Greg Plaxton, Rajmohan Rajaraman, Andrea Richa SPAA 1997.
Small-world Overlay P2P Network

Small-world Overlay P2P Network
Peer to Peer File Sharing Huseyin Ozgur TAN. What is Peer-to-Peer?  Every node is designed to(but may not by user choice) provide some service that helps.

Peer to Peer File Sharing Huseyin Ozgur TAN. What is Peer-to-Peer?  Every node is designed to(but may not by user choice) provide some service that helps.
A DoS-Resilient Information System for Dynamic Data Management by Baumgart, M. and Scheideler, C. and Schmid, S. In SPAA 2009 Mahdi Asadpour

A DoS-Resilient Information System for Dynamic Data Management by Baumgart, M. and Scheideler, C. and Schmid, S. In SPAA 2009 Mahdi Asadpour
Storage Management and Caching in PAST, a large-scale, persistent peer- to-peer storage utility Authors: Antony Rowstorn (Microsoft Research) Peter Druschel.

Storage Management and Caching in PAST, a large-scale, persistent peer- to-peer storage utility Authors: Antony Rowstorn (Microsoft Research) Peter Druschel.
Vault: A Secure Binding Service Guor-Huar Lu, Changho Choi, Zhi-Li Zhang University of Minnesota.

Vault: A Secure Binding Service Guor-Huar Lu, Changho Choi, Zhi-Li Zhang University of Minnesota.
Robust Mixing for Structured Overlay Networks Christian Scheideler Institut für Informatik Technische Universität München.

Robust Mixing for Structured Overlay Networks Christian Scheideler Institut für Informatik Technische Universität München.

Similar presentations

Ads by Google