BASE

Subscribe (Full Service)


	Search: The ACM Digital Library The Guide

	Feedback

BASE: using abstraction to improve fault tolerance

Full text

Pdf (1.47 MB)

Source

ACM Symposium on Operating Systems Principles archive
Proceedings of the eighteenth ACM symposium on Operating systems principles table of contents

Banff, Alberta, Canada

SESSION: Trust and dependability table of contents

Pages: 15 - 28

Year of Publication: 2001

ISBN:1-58113-389-8

Also published in ...

Authors

Rodrigo Rodrigues	MIT Laboratory for Computer Science, Cambridge, MA
Miguel Castro	Microsoft Research Ltd., Cambridge, UK
Barbara Liskov	MIT Laboratory for Computer Science, Cambridge, MA

Sponsor

SIGOPS: ACM Special Interest Group on Operating Systems

Publisher

ACM New York, NY, USA

Bibliometrics

Downloads (6 Weeks): 7, Downloads (12 Months): 55, Citation Count: 20

Additional Information:

abstract references cited by index terms collaborative colleagues

Tools and Actions:	Request Permissions Review this Article Save this Article to a Binder Display Formats: BibTeX EndNote ACM Ref

DOI Bookmark:	Use this link to bookmark this Article: http://doi.acm.org/10.1145/502034.502037 What is a DOI?

ABSTRACT

Software errors are a major cause of outages and they are increasingly exploited in malicious attacks. Byzantine fault tolerance allows replicated systems to mask some software errors but it is expensive to deploy. This paper describes a replication technique, BASE, which uses abstraction to reduce the cost of Byzantine fault tolerance and to improve its ability to mask software errors. BASE reduces cost because it enables reuse of off-the-shelf service implementations. It improves availability because each replica can be repaired periodically using an abstract view of the state stored by correct replicas, and because each replica can run distinct or non-deterministic service implementations, which reduces the probability of common mode failures. We built an NFS service where each replica can run a different off-the-shelf file system implementation, and an object-oriented database where the replicas ran the same, non-deterministic implementation. These examples suggest that our technique can be used in practice --- in both cases, the implementation required only a modest amount of new code, and our performance results indicate that the replicated services perform comparably to the implementations that they reuse.

REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

	1	Atul Adya , Robert Gruber , Barbara Liskov , Umesh Maheshwari, Efficient optimistic concurrency control using loosely synchronized clocks, Proceedings of the 1995 ACM SIGMOD international conference on Management of data, p.23-34, May 22-25, 1995, San Jose, California, United States
	2	T. C. Bressoud , F. B. Schneider, Hypervisor-based fault tolerance, Proceedings of the fifteenth ACM symposium on Operating systems principles, p.1-11, December 03-06, 1995, Copper Mountain, Colorado, United States
	3	Brent Callaghan, NFS illustrated, Addison-Wesley Longman Ltd., Essex, UK, 2000
	4	Michael J. Carey , David J. DeWitt , Jeffrey F. Naughton, The 007 Benchmark, Proceedings of the 1993 ACM SIGMOD international conference on Management of data, p.12-21, May 25-28, 1993, Washington, D.C., United States
	5	M. Castro. Practical Byzantine Fault-Tolerance. PhD thesis, Massachusetts Institute of Technology, 2000.
	6	Miguel Castro , Atul Adya , Barbara Liskov , Andrew C. Meyers, HAC: hybrid adaptive caching for distributed storage systems, Proceedings of the sixteenth ACM symposium on Operating systems principles, p.102-115, October 05-08, 1997, Saint Malo, France
	7	Miguel Castro , Barbara Liskov, Practical Byzantine fault tolerance, Proceedings of the third symposium on Operating systems design and implementation, p.173-186, February 1999, New Orleans, Louisiana, United States
	8	M. Castro and B. Liskov. Proactive recovery in a Byzantine-fault-tolerant system. In Proceedings of the Fourth Symposium on Operating Systems Design and Implementation, San Diego, CA, Oct. 2000.
	9	L. Chen and A. Avizienis. N-Version Programming: A Fanlt-Tolerance Approach to Reliability of Software Operation. In Fault Tolerant Computing, FTCS-8, pages 3-9, 1978.
	10	Eric C. Cooper, Replicated distributed programs, Proceedings of the tenth ACM symposium on Operating systems principles, p.63-78, December 1985, Orcas Island, Washington, United States
	11	Kyle Geiger, Inside ODBC, Microsoft Press, Redmond, WA, 1995
	12	Sanjay Ghemawat , Barbara H. Liskov , M. Frans Kaashoek, The modified object buffer: a storage management technique for object-oriented databases, 1995
	13	Jim Gray , Daniel P. Siewiorek, High-Availability Computer Systems, Computer, v.24 n.9, p.39-48, September 1991 [doi>10.1109/2.84898]
	14	Jim Gray , Andreas Reuter, Transaction Processing: Concepts and Techniques, Morgan Kaufmann Publishers Inc., San Francisco, CA, 1992
	15	John H. Howard , Michael L. Kazar , Sherri G. Menees , David A. Nichols , M. Satyanarayanan , Robert N. Sidebotham , Michael J. West, Scale and performance in a distributed file system, ACM Transactions on Computer Systems (TOCS), v.6 n.1, p.51-81, Feb. 1988 [doi>10.1145/35037.35059]
	16	Nick Kolettis , N. Dudley Fulton, Software Rejuvenation: Analysis, Module and Applications, Proceedings of the Twenty-Fifth International Symposium on Fault-Tolerant Computing, p.381, June 27-30, 1995
	17	Leslie Lamport, Time, clocks, and the ordering of events in a distributed system, Communications of the ACM, v.21 n.7, p.558-565, July 1978 [doi>10.1145/359545.359563]
	18	Barbara Liskov , Miguel Castro , Liuba Shrira , Atul Adya, Providing Persistent Objects in Distributed Systems, Proceedings of the 13th European Conference on Object-Oriented Programming, p.230-257, June 14-18, 1999
	19	Barbara Liskov , Sanjay Ghemawat , Robert Gruber , Paul Johnson , Liuba Shrira, Replication in the harp file system, Proceedings of the thirteenth ACM symposium on Operating systems principles, p.226-238, October 13-16, 1991, Pacific Grove, California, United States
	20	Barbara Liskov , John Guttag, Program Development in Java: Abstraction, Specification, and Object-Oriented Design, Addison-Wesley Longman Publishing Co., Inc., Boston, MA, 2000
	21	S. Maffeis. Adding group communication and fault tolerance to CORBA. In Proceedings of the Pad USENIX Conference on Object-Oriented Technologies, pages 135-146, June 1995.
	22	K. Marzullo and F. Schmuck. Supplying high availability with a standard network file system. In Proceedings of the 8th International Conference on Distributed Computing Systems, pages 447-453. IEEE, June 1988.
	23	R. Minnich. The Linux BIOS Home Page. http://www.acl.lanl.gov/linuxbios, 2000.
	24	L. E. Moser , P. M. Melliar-Smith , P. Narasimhan, Consistent object replication in the eternal system, Theory and Practice of Object Systems, v.4 n.2, p.81-92, April 1998 [doi>10.1002/(SICI)1096-9942(1998)4:2<81::AID-TAPO3>3.3.CO;2-M]
	25	Providing Support for Survivable CORBA Applications with the Immune System, Proceedings of the 19th IEEE International Conference on Distributed Computing Systems, p.507, May 31-June 04, 1999
	26	Network working group request for comments: 1014. XDR: External data representation standard, June 1987.
	27	Network working group request for comments: 1094. NFS: Network file system protocol specification, March 1989.
	28	Object Management Group. The Common Object Request Broker: Architecture and Specification. OMG techical committee document formal/98-12-01, June 1999.
	29	Object Management Group. Fault Tolerant CORBA. OMG techical committee document orbos/2000-04-04, Mar. 2000.
	30	J. Ousterhout. Why Aren't Operating Systems Getting Faster as Fast as Hardware? In Proceedings of USENIX Summer Conference, pages 247-256, Anaheim, CA, June 1990.
	31	M. Pease , R. Shostak , L. Lamport, Reaching Agreement in the Presence of Faults, Journal of the ACM (JACM), v.27 n.2, p.228-234, April 1980 [doi>10.1145/322186.322188]
	32	R. Rodrigues. Combining abstraction with Byzantine fault-tolerance. Master's thesis, Massachusetts Institute of Technology, 2001.
	33	A. Romanovsky. Faulty version recovery in object-oriented N-version programming. IEE Proceedings - Software, 147(3):81-90, June 2000.
	34	FrZdZric Salles , Manuel Rodrguez , Jean-Charles Fabre , Jean Arlat, MetaKernels and Fault Containment Wrappers, Proceedings of the Twenty-Ninth Annual International Symposium on Fault-Tolerant Computing, p.22, June 15-18, 1999
	35	Fred B. Schneider, Implementing fault-tolerant services using the state machine approach: a tutorial, ACM Computing Surveys (CSUR), v.22 n.4, p.299-319, Dec. 1990 [doi>10.1145/98163.98167]
	36	K. Tso and A. Avizienis. Community error recovery in N-version software: A design study with experimentation. In Proceedings of the 17th Annual International Symposium on Fault-Tolerant Computing, pages 127-133, Pittsburgh, PA, July 1987.

CITED BY 20

	Miguel Castro , Barbara Liskov, Practical byzantine fault tolerance and proactive recovery, ACM Transactions on Computer Systems (TOCS), v.20 n.4, p.398-461, November 2002
	Jian Yin , Jean-Philippe Martin , Arun Venkataramani , Lorenzo Alvisi , Mike Dahlin, Separating agreement from execution for byzantine fault tolerant services, Proceedings of the nineteenth ACM symposium on Operating systems principles, October 19-22, 2003, Bolton Landing, NY, USA
	Fred B. Schneider , Lidong Zhou, Implementing Trustworthy Services Using Replicated State Machines, IEEE Security and Privacy, v.3 n.5, p.34-43, September 2005
	Ya-Yunn Su , Jason Flinn, Slingshot: deploying stateful services in wireless hotspots, Proceedings of the 3rd international conference on Mobile systems, applications, and services, June 06-08, 2005, Seattle, Washington
	Feng Qin , Joseph Tucek , Jagadeesan Sundaresan , Yuanyuan Zhou, Rx: treating bugs as allergies---a safe method to survive software failures, ACM SIGOPS Operating Systems Review, v.39 n.5, December 2005
	Ashlesha Joshi , Samuel T. King , George W. Dunlap , Peter M. Chen, Detecting past and present intrusions through vulnerability-specific predicates, ACM SIGOPS Operating Systems Review, v.39 n.5, December 2005
	Amitanand S. Aiyer , Lorenzo Alvisi , Allen Clement , Mike Dahlin , Jean-Philippe Martin , Carl Porth, BAR fault tolerance for cooperative services, ACM SIGOPS Operating Systems Review, v.39 n.5, December 2005
	Rodrigo Rodrigues , Barbara Liskov , Liuba Shrira, The design of a robust peer-to-peer system, Proceedings of the 10th workshop on ACM SIGOPS European workshop: beyond the PC, July 01-01, 2002, Saint-Emilion, France
	Jacob R. Lorch , Atul Adya , William J. Bolosky , Ronnie Chaiken , John R. Douceur , Jon Howell, The SMART way to migrate replicated stateful services, ACM SIGOPS Operating Systems Review, v.40 n.4, October 2006
	Byung-Gon Chun , Petros Maniatis , Scott Shenker, Diverse replication for single-machine Byzantine-fault tolerance, USENIX 2008 Annual Technical Conference on Annual Technical Conference, p.287-292, June 22-27, 2008, Boston, Massachusetts
	Feng Qin , Joseph Tucek , Yuanyuan Zhou , Jagadeesan Sundaresan, Rx: Treating bugs as allergies—a safe method to survive software failures, ACM Transactions on Computer Systems (TOCS), v.25 n.3, p.7-es, August 2007
	Ramakrishna Kotla , Lorenzo Alvisi , Mike Dahlin , Allen Clement , Edmund Wong, Zyzzyva: speculative byzantine fault tolerance, ACM SIGOPS Operating Systems Review, v.41 n.6, December 2007
	Jon Oberheide , Evan Cooke , Farnam Jahanian, CloudAV: N-version antivirus in the network cloud, Proceedings of the 17th conference on Security symposium, p.91-106, July 28-August 01, 2008, San Jose, CA
	Byung-Gon Chun , Petros Maniatis , Scott Shenker , John Kubiatowicz, Attested append-only memory: making adversaries stick to their word, ACM SIGOPS Operating Systems Review, v.41 n.6, December 2007
	Matthew Caesar , Jennifer Rexford, Building bug-tolerant routers with virtualization, Proceedings of the ACM workshop on Programmable routers for extensible services of tomorrow, August 22-22, 2008, Seattle, WA, USA
	Ramakrishna Kotla , Allen Clement , Edmund Wong , Lorenzo Alvisi , Mike Dahlin, Zyzzyva: speculative Byzantine fault tolerance, Communications of the ACM, v.51 n.11, November 2008
	Tobias Distler , Rüdiger Kapitza , Hans P. Reiser, Efficient state transfer for hypervisor-based proactive recovery, Proceedings of the 2nd workshop on Recent advances on intrusiton-tolerant systems, p.1-6, April 01-01, 2008, Glasgow, United Kingdom
	Atul Singh , Pedro Fonseca , Petr Kuznetsov , Rodrigo Rodrigues , Petros Maniatis, Zeno: eventually consistent Byzantine-fault tolerance, Proceedings of the 6th USENIX symposium on Networked systems design and implementation, p.169-184, April 22-24, 2009, Boston, Massachusetts
	Benjamin Wester , James Cowling , Edmund B. Nightingale , Peter M. Chen , Jason Flinn , Barbara Liskov, Tolerating latency in replicated state machines through client speculation, Proceedings of the 6th USENIX symposium on Networked systems design and implementation, p.245-260, April 22-24, 2009, Boston, Massachusetts
	Dmitrii Zagorodnov , Keith Marzullo , Lorenzo Alvisi , Thomas C. Bressoud, Practical and low-overhead masking of failures of TCP-based servers, ACM Transactions on Computer Systems (TOCS), v.27 n.2, p.1-39, May 2009