6
Feb. 16th 2012 FAST’12 WiP vahldiek@mpi- sws.org Trusted Storage Anjo Vahldiek, Eslam Elnikety, Ansley Post, Peter Druschel, Deepak Garg, Johannes Gehrke, Rodrigo Rodrigues MPI-SWS

Feb. 16th 2012FAST’12 WiP [email protected] Trusted Storage Anjo Vahldiek, Eslam Elnikety, Ansley Post, Peter Druschel, Deepak Garg, Johannes Gehrke,

Embed Size (px)

Citation preview

Page 1: Feb. 16th 2012FAST’12 WiP vahldiek@mpi-sws.org Trusted Storage Anjo Vahldiek, Eslam Elnikety, Ansley Post, Peter Druschel, Deepak Garg, Johannes Gehrke,

Feb. 16th 2012 FAST’12 WiP [email protected]

Trusted Storage

Anjo Vahldiek, Eslam Elnikety, Ansley Post, Peter Druschel, Deepak Garg, Johannes Gehrke, Rodrigo Rodrigues

MPI-SWS

Page 2: Feb. 16th 2012FAST’12 WiP vahldiek@mpi-sws.org Trusted Storage Anjo Vahldiek, Eslam Elnikety, Ansley Post, Peter Druschel, Deepak Garg, Johannes Gehrke,

Feb. 16th 2012 FAST’12 WiP [email protected]

ApplicationDatabase

Complex storage system

Operating SystemNFS

Lines of code

50K-10M10-50M30-100K

10KNet ProtocolNet Driver 10K

Operating SystemNFS

File SystemDisk Driver

Bugs, exploits, operator error threaten data integrity, durability, confidentiality

File SystemDisk Driver

3rd-party storage service

Page 3: Feb. 16th 2012FAST’12 WiP vahldiek@mpi-sws.org Trusted Storage Anjo Vahldiek, Eslam Elnikety, Ansley Post, Peter Druschel, Deepak Garg, Johannes Gehrke,

Feb. 16th 2012 FAST’12 WiP [email protected]

Certificate:Full path namePolicyContent hashPhysical layoutAccess history

Policy:IdentityHW/SW ConfigurationQuotaTimeLocation

Trusted StorageTrusted primitives provided by storage device

ApplicationDatabase

Operating System

Trusted storage deviceEnsure data integrity, confidentiality, accountability

independent of higher software layers

File SystemDisk Driver

Page 4: Feb. 16th 2012FAST’12 WiP vahldiek@mpi-sws.org Trusted Storage Anjo Vahldiek, Eslam Elnikety, Ansley Post, Peter Druschel, Deepak Garg, Johannes Gehrke,

Feb. 16th 2012 FAST’12 WiP [email protected]

Example: Ensuring integrity of backup data

Threat:Software bug, virus or operator error corrupts online backup data

Time-based Policy: No writes before a pre-determined expiration date of the backup

Page 5: Feb. 16th 2012FAST’12 WiP vahldiek@mpi-sws.org Trusted Storage Anjo Vahldiek, Eslam Elnikety, Ansley Post, Peter Druschel, Deepak Garg, Johannes Gehrke,

Feb. 16th 2012 FAST’12 WiP [email protected]

Example: Ensuring integrity of executable files

Threat:Virus replaces executable file with a Trojan

Identity-based Policy: Disallow writes unless signed by vendorand version number is at least current - 1

Page 6: Feb. 16th 2012FAST’12 WiP vahldiek@mpi-sws.org Trusted Storage Anjo Vahldiek, Eslam Elnikety, Ansley Post, Peter Druschel, Deepak Garg, Johannes Gehrke,

Feb. 16th 2012 FAST’12 WiP [email protected]

Summary

• Trusted storage provides storage level accountability and enforcement of application policies

• Guarantees independent of higher software layers• Implementation in progress– 0.05% NAND flash memory– < 3% performance overhead

Please come see our poster!!!


dreyer/papers/backpack/appendix.pdf · Backpack: Retro tting Haskell with Interfaces Technical Appendix Scott Kilpatrick MPI-SWS skilpat@mpi-sws.org Derek Dreyer MPI-SWS dreyer@mpi-sws.org

dreyer/papers/backpack/appendix.pdf · Backpack: Retro tting Haskell with Interfaces Technical Appendix Scott Kilpatrick MPI-SWS [email protected] Derek Dreyer MPI-SWS [email protected]

Documents
ANISOTROPY IN SINGLE-CRYSTAL REFRACTORY COMPOUNDS …978-1-4899-5307-0/1.pdf · ANISOTROPY IN SINGLE-CRYSTAL REFRACTORY COMPOUNDS Edited by Fred W. Vahldiek and Stanley A. Mersol

ANISOTROPY IN SINGLE-CRYSTAL REFRACTORY COMPOUNDS …978-1-4899-5307-0/1.pdf · ANISOTROPY IN SINGLE-CRYSTAL REFRACTORY COMPOUNDS Edited by Fred W. Vahldiek and Stanley A. Mersol

Documents
Obtaining and Managing Answer Quality for Online Data ...web.cse.ohio-state.edu/~morris.743/papers/morris2017obtaining.pdf · YUXIONG HE and SAMEH ELNIKETY, Microsoft Research Online

Obtaining and Managing Answer Quality for Online Data ...web.cse.ohio-state.edu/~morris.743/papers/morris2017obtaining.pdf · YUXIONG HE and SAMEH ELNIKETY, Microsoft Research Online

Documents
1 Tashkent: Uniting Durability & Ordering in Replicated Databases Sameh Elnikety, EPFL Steven Dropsho, EPFL Fernando Pedone, USI

1 Tashkent: Uniting Durability & Ordering in Replicated Databases Sameh Elnikety, EPFL Steven Dropsho, EPFL Fernando Pedone, USI

Documents
1 Database Replication Using Generalized Snapshot Isolation Sameh Elnikety, EPFL Fernando Pedone, USI Willy Zwaenepoel, EPFL

1 Database Replication Using Generalized Snapshot Isolation Sameh Elnikety, EPFL Fernando Pedone, USI Willy Zwaenepoel, EPFL

Documents
Thoth: ComprehensivePolicy Compliance in Data Retrieval ...druschel/publications/thoth.pdf · Thoth: ComprehensivePolicy Compliance in Data Retrieval Systems Eslam Elnikety Aastha

Thoth: ComprehensivePolicy Compliance in Data Retrieval ...druschel/publications/thoth.pdf · Thoth: ComprehensivePolicy Compliance in Data Retrieval Systems Eslam Elnikety Aastha

Documents
Tians Scheduling: Using Partial Processing in Best-Effort Applications Yuxiong He *, Sameh Elnikety *, Hongyang Sun + * Microsoft Research + Nanyang Technological

Tians Scheduling: Using Partial Processing in Best-Effort Applications Yuxiong He *, Sameh Elnikety *, Hongyang Sun + * Microsoft Research + Nanyang Technological

Documents
On Parallel Snapshot Isolation and Release/Acquire …plv.mpi-sws.org/transactions/psi-paper.pdf · On Parallel Snapshot Isolation and ... transactions as their intermediate state

On Parallel Snapshot Isolation and Release/Acquire …plv.mpi-sws.org/transactions/psi-paper.pdf · On Parallel Snapshot Isolation and ... transactions as their intermediate state

Documents
Discrimination Discovery - Max Planck Institute for Software …courses.mpi-sws.org/hcml-ws18/lectures/Lecture_3.pdf · 2019-01-30 · Discrimination discovery scenario Database of

Discrimination Discovery - Max Planck Institute for Software …courses.mpi-sws.org/hcml-ws18/lectures/Lecture_3.pdf · 2019-01-30 · Discrimination discovery scenario Database of

Documents
sentiment - MPI-SWS Coursescourses.mpi-sws.org/sma-ss16/files/sentiment.pdf · Bo Pang, Lillian Lee, and Shivakumar Vaithyanathan. 2002. Thumbs up? Sentiment Classification using

sentiment - MPI-SWS Coursescourses.mpi-sws.org/sma-ss16/files/sentiment.pdf · Bo Pang, Lillian Lee, and Shivakumar Vaithyanathan. 2002. Thumbs up? Sentiment Classification using

Documents
Zeta: Scheduling Interactive Services with Partial Execution Yuxiong He, Sameh Elnikety, James Larus,…

Zeta: Scheduling Interactive Services with Partial Execution Yuxiong He, Sameh Elnikety, James Larus,…

Documents
Mohamed Sarwat (Arizona State University) Sameh Elnikety (Microsoft Research )

Mohamed Sarwat (Arizona State University) Sameh Elnikety (Microsoft Research )

Documents
1 Delayed-Dynamic-Selective (DDS) Prediction for Reducing Extreme Tail Latency in Web Search Saehoon Kim §, Yuxiong He *, Seung-won Hwang §, Sameh Elnikety

1 Delayed-Dynamic-Selective (DDS) Prediction for Reducing Extreme Tail Latency in Web Search Saehoon Kim §, Yuxiong He *, Seung-won Hwang §, Sameh Elnikety

Documents
8259A PROGRAMMABLE INTERRUPT CONTROLLER (8259A/8259A …courses.mpi-sws.org/os-ss13/assignments/pintos/specs/8259A.pdf · The Intel 8259A Programmable Interrupt Controller handles

8259A PROGRAMMABLE INTERRUPT CONTROLLER (8259A/8259A …courses.mpi-sws.org/os-ss13/assignments/pintos/specs/8259A.pdf · The Intel 8259A Programmable Interrupt Controller handles

Documents
Learning Fair Classifiers - arXiv · Muhammad Bilal Zafar MPI-SWS, Germany mzafar@mpi-sws.org Isabel Valera MPI-SWS, Germany ivalera@mpi-sws.org Manuel Gomez Rogriguez MPI-SWS, Germany

Learning Fair Classifiers - arXiv · Muhammad Bilal Zafar MPI-SWS, Germany [email protected] Isabel Valera MPI-SWS, Germany [email protected] Manuel Gomez Rogriguez MPI-SWS, Germany

Documents
ERIM: Secure, Efficient In-process Isolation with Protection Keys … · ERIM: Secure, Efficient In-process Isolation with Protection Keys (MPK) Anjo Vahldiek-Oberwagner Eslam Elnikety

ERIM: Secure, Efficient In-process Isolation with Protection Keys … · ERIM: Secure, Efficient In-process Isolation with Protection Keys (MPK) Anjo Vahldiek-Oberwagner Eslam Elnikety

Documents
Thoth: Comprehensive Policy Compliance in Data · PDF fileThoth: Comprehensive Policy Compliance in Data Retrieval Systems Eslam Elnikety, Aastha Mehta, Anjo Vahldiek-Oberwagner, Deepak

Thoth: Comprehensive Policy Compliance in Data · PDF fileThoth: Comprehensive Policy Compliance in Data Retrieval Systems Eslam Elnikety, Aastha Mehta, Anjo Vahldiek-Oberwagner, Deepak

Documents
Clock-RSM: Low-Latency Inter-Datacenter State Machine Replication Using Loosely Synchronized Physical Clocks Jiaqing Du, Daniele Sciascia, Sameh Elnikety

Clock-RSM: Low-Latency Inter-Datacenter State Machine Replication Using Loosely Synchronized Physical Clocks Jiaqing Du, Daniele Sciascia, Sameh Elnikety

Documents
Orbe: Scalable Causal Consistency Using Dependency Matrices & Physical Clocks Jiaqing Du, EPFL Sameh Elnikety, Microsoft Research Amitabha Roy, EPFL Willy

Orbe: Scalable Causal Consistency Using Dependency Matrices & Physical Clocks Jiaqing Du, EPFL Sameh Elnikety, Microsoft Research Amitabha Roy, EPFL Willy

Documents
1. Introduction CSEP 545 Transaction Processing Philip A. Bernstein Sameh Elnikety Copyright ©2012 Philip A. Bernstein 1/4/2012 1

1. Introduction CSEP 545 Transaction Processing Philip A. Bernstein Sameh Elnikety Copyright ©2012 Philip A. Bernstein 1/4/2012 1

Documents
CVW Gebetskreise - CAI · 2017. 2. 9. · CVW Gebetskreise C VW Gebetskreise Ansprechpartner: E 99 Siebert Kloster E109 Matthias Herbig E 88 Stephan Vahldiek E 66 Stephan Vahldiek

CVW Gebetskreise - CAI · 2017. 2. 9. · CVW Gebetskreise C VW Gebetskreise Ansprechpartner: E 99 Siebert Kloster E109 Matthias Herbig E 88 Stephan Vahldiek E 66 Stephan Vahldiek

Documents
BridgingtheGapbetweenProgrammingLanguagesand ...plv.mpi-sws.org/imm/Podkopaev-al-POPL19-presentation.pdf · 1 BridgingtheGapbetweenPLandHardwareWeakMMs Programming Language Hardware

BridgingtheGapbetweenProgrammingLanguagesand ...plv.mpi-sws.org/imm/Podkopaev-al-POPL19-presentation.pdf · 1 BridgingtheGapbetweenPLandHardwareWeakMMs Programming Language Hardware

Documents
Everest: scaling down peak loads through I/O off-loading D. Narayanan, A. Donnelly, E. Thereska, S. Elnikety, A. Rowstron Microsoft Research Cambridge,

Everest: scaling down peak loads through I/O off-loading D. Narayanan, A. Donnelly, E. Thereska, S. Elnikety, A. Rowstron Microsoft Research Cambridge,

Documents
plv.mpi-sws.org · Backpack: Retro tting Haskell with Interfaces Technical Appendix Scott Kilpatrick MPI-SWS skilpat@mpi-sws.org Derek Dreyer MPI-SWS dreyer@mpi-sws.org Simon Peyton

plv.mpi-sws.org · Backpack: Retro tting Haskell with Interfaces Technical Appendix Scott Kilpatrick MPI-SWS [email protected] Derek Dreyer MPI-SWS [email protected] Simon Peyton

Documents
System Support for Managing Graphs in the Cloud Sameh Elnikety & Yuxiong He Microsoft Research

System Support for Managing Graphs in the Cloud Sameh Elnikety & Yuxiong He Microsoft Research

Documents
arXiv:1707.02115v1 [cs.PL] 7 Jul 2017 · AVerifiedCertificateCheckerfor Floating-PointErrorBounds HeikoBecker1( ),EvaDarulova1,andMagnusO.Myreen2 1 MPI SWSfhbecker,evag@mpi-sws.org

arXiv:1707.02115v1 [cs.PL] 7 Jul 2017 · AVerifiedCertificateCheckerfor Floating-PointErrorBounds HeikoBecker1( ),EvaDarulova1,andMagnusO.Myreen2 1 MPI SWSfhbecker,[email protected]

Documents
Forgetting in Social Media: Understanding and Controlling … · 2016-06-22 · Mainack Mondal MPI-SWS mainack@mpi-sws.org Johnnatan Messias MPI-SWS johnme@mpi-sws.org Saptarshi Ghosh

Forgetting in Social Media: Understanding and Controlling … · 2016-06-22 · Mainack Mondal MPI-SWS [email protected] Johnnatan Messias MPI-SWS [email protected] Saptarshi Ghosh

Documents
On Library Correctness under Weak Memory Consistencyplv.mpi-sws.org/yacovet/paper.pdf · 68 On Library Correctness under Weak Memory Consistency Specifying and Verifying Concurrent

On Library Correctness under Weak Memory Consistencyplv.mpi-sws.org/yacovet/paper.pdf · 68 On Library Correctness under Weak Memory Consistency Specifying and Verifying Concurrent

Documents
PEERSPECTIVE.MPI-SWS.ORG ALAN MISLOVE KRISHNA P. GUMMADI PETER DRUSCHEL BY RAGHURAM KRISHNAMACHARI Exploiting Social Networks for Internet Search

PEERSPECTIVE.MPI-SWS.ORG ALAN MISLOVE KRISHNA P. GUMMADI PETER DRUSCHEL BY RAGHURAM KRISHNAMACHARI Exploiting Social Networks for Internet Search

Documents
Acknowledgement: Arijit Khan, Sameh Elnikety. Google: 1 trillion indexed pages Web GraphSocial Network Facebook: 1.5 billion active users 31 billion

Acknowledgement: Arijit Khan, Sameh Elnikety. Google: 1 trillion indexed pages Web GraphSocial Network Facebook: 1.5 billion active users 31 billion

Documents