Presentation is loading. Please wait.

Presentation is loading. Please wait.

reaching agreement in the presence of faults

Published byClaire Malone Modified over 6 years ago

Similar presentations

Presentation on theme: "reaching agreement in the presence of faults"— Presentation transcript:

1 reaching agreement in the presence of faults
Written By: Marshall Pease, Robert Shostak, Leslie Lamport Lecturer in charge: Oded Shmueli Presentation By: Shahar Yair

2 The Two Generals Problem
Two generals need to agree on whether to attack the enemy city or retreat. If they come to an agreement then the war is either won or there will be peace. But if one attacks and the other retreats, then the war is lost and everyone is sad 

3 TCP/IP ? There is no perfect solution to the problem!
If you respond, I’ll attack! If you respond, I’ll attack! We will attack! There is no perfect solution to the problem!

4 The Byzantine Agreement Problem

5 The Byzantine Agreement Problem
“We imagine that several divisions of the Byzantine army are camped outside an enemy city, each division commanded by its own general. The generals can communicate with one another only by messengers. After observing the enemy, they must decide upon a common plan of action. However, some of the generals may be traitors, trying to prevent the loyal generals from reaching agreement.” Retreat! Attack! Attack! Attack! Retreat!

6 The Basic Byzantine Problem
Assumptions: The Network works perfectly. There are N=4 generals. Each general has a unique name (color). One or more of the generals may be a traitor (Red). We’ll say there are M=1 traitors for now. All of the non-traitor generals must come to an agreement or we lose the war. Assume a previously appointed Super-General. Binary Values (A/R).

7 The Problem With N=4, M=1 Attack! Attack! Attack! Attack!

8 The Problem With N=4, M=1 [A,A,?] [Yellow, Green, Red] Rettack!!
Attack! Attack! [A,A,?] [A,A,?] Attack! Attack! Attack! Attack!

9 The Problem With N=4, M=1 We win the war! Attack! [A,A,?] [A,A,?]
Rettack!! Attack!

10 What If the Super-General is a Traitor?
Rettack!! Attack! Attack! Retreat!

11 What If the Super-General is a Traitor?
[A,A,R] [Yellow, Green, Blue] Retreat! Attack! Attack! Retreat! Retreat! [A,A,R] [A,A,R] Attack! Attack! Attack! Attack!

12 What If the Super-General is a Traitor?
Rettack!! We win the war again! [A,A,R] [A,A,R] [A,A,R] Attack! Attack! Attack!

13 The General Byzantine Problem
Assumptions: The Network works perfectly. There are N processors (shown as nodes). Each processor has a unique ID, (IDi). There are M=1 faulty processors. All of the non- faulty processors must come to an agreement. The system is asynchronous. ID1 ID2 ID3 ID4

14 The Byzantine Agreement
ID1 ID2 V1 V1 V1 ID3 ID4

15 The Byzantine Agreement
ID1 ID2 V2 V2 V2 ID3 ID4

16 The Byzantine Agreement
ID1 ID2 V3 V3 ID3 ID4 V3

17 The Byzantine Agreement
ID1 ID2 V4 ID3 ID4 V5

18 The Byzantine Agreement
[V1,V2,V3,V4] [V1,V2,V3,NIL] ID1 ID2 [V1,V2,V3,V5] ID3 ID4

19 The Byzantine Agreement
[V1,V2,V3,NIL] [V1,V2,V3,NIL] ID1 ID2 [V1,V2,V3,V5] ID3 ID4

20 The Byzantine Agreement
[V1,V2,V3,V4] [V1,V2,V3,NIL] ID1 ID2 [V1,V2,V3,V5] ID3 ID4

21 The Byzantine Agreement
[V1,V2,V3,V4] [V1,V2,V3,NIL] ID1 ID2 [V1,V2,V3,NIL] ID3 ID4

22 The Byzantine Agreement
[V1,V2,V3,V4] [V1,V2,V3,NIL] ID1 ID2 [V1,V2,V3,V5] ID3 ID4

23 The Byzantine Agreement
[V1,V2,V3,NIL] [V1,V2,V3,NIL] ID1 ID2 [V1,V2,V3,NIL] ID3 ID4

24 Remarks For M faulty processors, M+1 rounds are required. The first round is for exchanging the self values, and the others are for “processor X told me…” (We’ll see an example) That means, that the algorithm requires O((N-1)M+1) exchanges – Extremely inefficient! The problem is only solvable if N ≥ 3M+1. ID1 ID2 ID3 ID4

25 The Procedure for N≥3M+1 The problem is solvable only if N ≥ 3M+1
Definitions: P={p1,p2,p3,…pn} : Set of processors V={v1,v2,v3,…,vn} : Set of values We will define a scenario σ as a mapping from an alphabet Σ=P={p1,p2,p3,…pn}, to V. Example: For a scenario σ and string w=p1p2…pr σ(w) = the value of pr that pr tells pr-1 … which p2 tells p1. * Notice that for an arbitrary processor p, a nonfaulty processor q and w over P: σ(pqw) = σ(qw)

26 The Procedure for N≥3M+1 The message a processor p receives in a scenario σ are given by the restriction σp of σ to strings beginning with p. For some subset Q of P so that size(Q) ≥ (N+M)/2: * If σp (pwq) = v for each string w over Q  p records the value of q as v. * Otherwise, the algorithm for m-1, n-1 is recursively applied with P replaced by P-{q} and σp(pwq) by σp(pw). If at least (N+M)/2 of the n-1 elements in the vector obtained by the recursive call agree p records the value of q as v, otherwise it records NIL.

27 If you recall… σ(P1P3P4)=V5 Is the value of P4 that P4 told P3 that P3 told P1 [V1,V2,V3,NIL] P1 P2 [V1,V2,V3,NIL] [V1,V2,V3,V5] P3 P4 *Notice: σ(P1P3P4)= σ(P3P4)= V5

28 What about N<3M+1? We can prove that it is impossible to solve the problem for N < 3M+1. Intuition for why it is true: Attack! Attack! [A,R] ?? Retreat! Attack!

29 Using Authenticators What if we restrict the values the faulty processor can send? What is an authenticator? An authenticator is a redundant augment to a data item that can be created, ideally, only by the originator of the data. A processor p constructs an authenticator for a data item d by calculating Ap[d], where Ap is some mapping known only top. At the same time, it must be easy for q to check, for a given p, v, and d, that v = Ap[d ].

30 Using Authenticators Now, the faulty processor has to tell the truth about the values it has received. * But it can still lie about its own value. Implication: No restriction on M.

31 Authenticators - Example
V1 V1 P3 P3

32 Authenticators - Example
V3 P3 V3 P2

33 Authenticators - Example
V21 P3 V23 P2

34 Authenticators - Example
[V1,V21,V3] P3 P2 [V1,V23,V3] [V1,V2?,V3]

35 Authenticators - Example
[V1,NIL,V3] Notice that P2 has to send the same value it sent before! P3 P2 [V1,V23,V3] [V1,V21,V3]

36 Authenticators - Example
[V1,V21,V3] P3 P2 But we don’t care… [V1,V23,V3] [V1,NIL,V3]

37 Authenticators - Example
[V1,V21,V3] Again, P2 has to send the same value it sent before to P3! P3 P2 [V1,NIL,V3] [V1,V23,V3]

38 Authenticators - Example
[V1,NIL,V3] P3 P2 [V1,NIL,V3] [V1,NIL,V3]

39 Back to the Byzantine Problem
We saw that the algorithm is VERY inefficient ((N-1)M+1). So how can we improve its efficiency? A sub committee! Run the algorithm

40 Expansions of the Byzantine Problem
Possible properties to play with: - Synchronous / Asynchronous (no time limit). - Kind of fault: Fail-stop / Byzantine. - Computationally bounded adversary/ private channels/ full information model. - Static / dynamic adversary (picks who to corrupt during the protocol). - Message passing / shared registers/ broadcasts. - Completely connected / sparse network. - Leader election / Global coin toss. - Resiliency, Time and Bit complexity. - Renormalized / Quantum (Hint: QVSS =  Quantum Verifiable Secret Sharing protocol).

41 Questions?

Download ppt "reaching agreement in the presence of faults"

Similar presentations

Fault Tolerance. Basic System Concept Basic Definitions Failure: deviation of a system from behaviour described in its specification. Error: part of.

Fault Tolerance. Basic System Concept Basic Definitions Failure: deviation of a system from behaviour described in its specification. Error: part of.
+ The Byzantine Generals Problem Leslie Lamport, Robert Shostak and Marshall Pease Presenter: Jose Calvo-Villagran

+ The Byzantine Generals Problem Leslie Lamport, Robert Shostak and Marshall Pease Presenter: Jose Calvo-Villagran
Byzantine Generals. Outline r Byzantine generals problem.

Byzantine Generals. Outline r Byzantine generals problem.
Agreement: Byzantine Generals UNIVERSITY of WISCONSIN-MADISON Computer Sciences Department CS 739 Distributed Systems Andrea C. Arpaci-Dusseau Paper: “The.

Agreement: Byzantine Generals UNIVERSITY of WISCONSIN-MADISON Computer Sciences Department CS 739 Distributed Systems Andrea C. Arpaci-Dusseau Paper: “The.
Teaser - Introduction to Distributed Computing

Teaser - Introduction to Distributed Computing
The Byzantine Generals Problem Boon Thau Loo CS294-4.

The Byzantine Generals Problem Boon Thau Loo CS294-4.
The Byzantine Generals Problem Leslie Lamport, Robert Shostak, Marshall Pease 10.05.2015Distributed Algorithms A1 Presented by: Anna Bendersky.

The Byzantine Generals Problem Leslie Lamport, Robert Shostak, Marshall Pease Distributed Algorithms A1 Presented by: Anna Bendersky.
Achieving Byzantine Agreement and Broadcast against Rational Adversaries Adam Groce Aishwarya Thiruvengadam Ateeq Sharfuddin CMSC 858F: Algorithmic Game.

Achieving Byzantine Agreement and Broadcast against Rational Adversaries Adam Groce Aishwarya Thiruvengadam Ateeq Sharfuddin CMSC 858F: Algorithmic Game.
Prepared by Ilya Kolchinsky.  n generals, communicating through messengers  some of the generals (up to m) might be traitors  all loyal generals should.

Prepared by Ilya Kolchinsky.  n generals, communicating through messengers  some of the generals (up to m) might be traitors  all loyal generals should.
CSE 486/586, Spring 2012 CSE 486/586 Distributed Systems Byzantine Fault Tolerance Steve Ko Computer Sciences and Engineering University at Buffalo.

CSE 486/586, Spring 2012 CSE 486/586 Distributed Systems Byzantine Fault Tolerance Steve Ko Computer Sciences and Engineering University at Buffalo.
DISTRIBUTED SYSTEMS II FAULT-TOLERANT AGREEMENT Prof Philippas Tsigas Distributed Computing and Systems Research Group.

DISTRIBUTED SYSTEMS II FAULT-TOLERANT AGREEMENT Prof Philippas Tsigas Distributed Computing and Systems Research Group.
Byzantine Generals Problem: Solution using signed messages.

Byzantine Generals Problem: Solution using signed messages.
The Byzantine Generals Problem (M. Pease, R. Shostak, and L. Lamport) 236357 - January 2011 Presentation by Avishay Tal.

The Byzantine Generals Problem (M. Pease, R. Shostak, and L. Lamport) January 2011 Presentation by Avishay Tal.
Copyright 2006 Koren & Krishna ECE655/ByzGen.1 UNIVERSITY OF MASSACHUSETTS Dept. of Electrical & Computer Engineering Fault Tolerant Computing ECE 655.

Copyright 2006 Koren & Krishna ECE655/ByzGen.1 UNIVERSITY OF MASSACHUSETTS Dept. of Electrical & Computer Engineering Fault Tolerant Computing ECE 655.
EEC 693/793 Special Topics in Electrical Engineering Secure and Dependable Computing Lecture 15 Wenbing Zhao Department of Electrical and Computer Engineering.

EEC 693/793 Special Topics in Electrical Engineering Secure and Dependable Computing Lecture 15 Wenbing Zhao Department of Electrical and Computer Engineering.
1 Fault-Tolerant Consensus. 2 Failures in Distributed Systems Link failure: A link fails and remains inactive; the network may get partitioned Crash:

1 Fault-Tolerant Consensus. 2 Failures in Distributed Systems Link failure: A link fails and remains inactive; the network may get partitioned Crash:
Randomized and Quantum Protocols in Distributed Computation Michael Ben-Or The Hebrew University Michael Rabin’s Birthday Celebration.

Randomized and Quantum Protocols in Distributed Computation Michael Ben-Or The Hebrew University Michael Rabin’s Birthday Celebration.
Last Class: Weak Consistency

Last Class: Weak Consistency
EEC 693/793 Special Topics in Electrical Engineering Secure and Dependable Computing Lecture 15 Wenbing Zhao Department of Electrical and Computer Engineering.

EEC 693/793 Special Topics in Electrical Engineering Secure and Dependable Computing Lecture 15 Wenbing Zhao Department of Electrical and Computer Engineering.
The Byzantine Generals Strike Again Danny Dolev. Introduction We’ll build on the LSP presentation. Prove a necessary and sufficient condition on the network.

The Byzantine Generals Strike Again Danny Dolev. Introduction We’ll build on the LSP presentation. Prove a necessary and sufficient condition on the network.

Similar presentations

Ads by Google