Presentation is loading. Please wait.

Presentation is loading. Please wait.

SECURE AND FAULT TOLERANT VOTING IN DISTRIBUTED INFORMATION SYSTEMS 14 September 2001 Shambhu Upadhyaya SPIDER Lab CSE Department University at Buffalo.

Published byDerrick Allen Modified over 9 years ago

Similar presentations

Presentation on theme: "SECURE AND FAULT TOLERANT VOTING IN DISTRIBUTED INFORMATION SYSTEMS 14 September 2001 Shambhu Upadhyaya SPIDER Lab CSE Department University at Buffalo."— Presentation transcript:

1 SECURE AND FAULT TOLERANT VOTING IN DISTRIBUTED INFORMATION SYSTEMS 14 September 2001 Shambhu Upadhyaya SPIDER Lab CSE Department University at Buffalo

2 2 Overview Problem Addressed – Replication and voting for fault tolerance – Secure voting is essential (AFRL/IF & University at Buffalo) Techniques Used – Distributed monitoring and voter isolation

3 3 What About Voting? Execute an “Al Gore” - ithm? Just get an answer and “stop beating around the Bush”?

4 4 Requirements of Secure Voting Eliminating single point of failure in the voting complex Correctness and completion of the new voting algorithm -- a formal methodology Implementation and application

5 5 2-phase Commit Protocols Voters exchange their votes and determine a majority result; an arbitrary voter then commits that result to the user Fault-Tolerance: what if the committing voter experiences a failure during committal? Security: what if the committing voter is compromised?

6 6 2-Phase Commit Protocol Phase 1: processors distribute their results and vote on them such that each processor determines the majority Phase 2: processor in the majority commits result to the user User waits for majority result User is sent majority result - faultymajority fault-free LAUNCH

7 7 Safe Operation time (t) f(t) Time duration of committal

8 8 Danger of 2-Phase Commit Protocol Phase 1: processors distribute their results and vote on them such that each processor determines the majority Phase 2: processor in the majority commits result to the user User waits for majority result User is sent malicious result - majority trustworthy SELF-DESTRUCT

9 9 Timed-Buffer Distributed Voting (Ref: Hardekopf, Kwiat, Upadhyaya, IEEE Aero 2001) Addresses “last mile” of distributed voting Buffer until “silence is consent” Reverses 2-phase commit protocol – Instead of voting then committing - commits first (to buffer) then votes (period of dissension) – Prevents disastrous commit phase - unlikely for classical fault tolerance but not information attack Suspect results buffered Integrity restored and buffer released untrustworthytrustworthy

10 10 Correctness (Ref: Hardekopf, Kwiat, Upadhyaya, SPECTS 2001) Used TLA+ to write a formal specification of the algorithm Used the specification and TLA to prove both partial correctness and termination

11 11 Implementation and Application Being transferred to Assured Communications Research Center – Instantiation of TB-DVA in Configurable Protocol Stack for the Software Radio Development System (SoRDS)

12 12 ACRC Application of TB-DVA SECURE WIRELESS LINKSECURE WIRED LINK GATEWAYSECURE SERVER WIRELESS CLIENT SECURE DATA IS EXPOSED (when translated from IP standards to wireless and vice-a-versa) Apply fault tolerance techniques to protect, detect, and react to attacks and enable service restoration

13 13 Multiple Wireless Hubs SECURE WIRELESS LINKSECURE WIRED LINK GATEWAYSECURE SERVER WIRELESS CLIENT Timed-buffer distributed voting algorithm assures integrity, availability, and helps curtail confidentiality leaks

14 14 Conclusion Problems Addressed – Security enhancement in distributed voting Techniques Used – Guaranteeing owner’s intended result by distributed monitoring and voter isolation

Download ppt "SECURE AND FAULT TOLERANT VOTING IN DISTRIBUTED INFORMATION SYSTEMS 14 September 2001 Shambhu Upadhyaya SPIDER Lab CSE Department University at Buffalo."

Similar presentations

Distributed Systems Major Design Issues Presented by: Christopher Hector CS8320 – Advanced Operating Systems Spring 2007 – Section 2.6 Presentation Dr.

Distributed Systems Major Design Issues Presented by: Christopher Hector CS8320 – Advanced Operating Systems Spring 2007 – Section 2.6 Presentation Dr.
Cryptography and Network Security 2 nd Edition by William Stallings Note: Lecture slides by Lawrie Brown and Henric Johnson, Modified by Andrew Yang.

Cryptography and Network Security 2 nd Edition by William Stallings Note: Lecture slides by Lawrie Brown and Henric Johnson, Modified by Andrew Yang.
SSL Protocol By Oana Dini. Overview Introduction to SSL SSL Architecture SSL Limitations.

SSL Protocol By Oana Dini. Overview Introduction to SSL SSL Architecture SSL Limitations.
CHAPTER 8: SECURITY IN COMPUTER NETWORKS Encryption Encryption Authentication Authentication E-Mail Security E-Mail Security Secure Sockets Layer Secure.

CHAPTER 8: SECURITY IN COMPUTER NETWORKS Encryption Encryption Authentication Authentication Security Security Secure Sockets Layer Secure.
CSE 486/586, Spring 2013 CSE 486/586 Distributed Systems Byzantine Fault Tolerance --- 2 Steve Ko Computer Sciences and Engineering University at Buffalo.

CSE 486/586, Spring 2013 CSE 486/586 Distributed Systems Byzantine Fault Tolerance Steve Ko Computer Sciences and Engineering University at Buffalo.
Critical Software Security Through Replication and Virtualization A Research Proposal Dennis Edwards Sharon Simmons Arangamanikkannan Manickam.

Critical Software Security Through Replication and Virtualization A Research Proposal Dennis Edwards Sharon Simmons Arangamanikkannan Manickam.
Information Security 1 Information Security: Security Tools Jeffy Mwakalinga.

Information Security 1 Information Security: Security Tools Jeffy Mwakalinga.
Chapter 1 – Introduction

Chapter 1 – Introduction
1 Cryptography and Network Security Third Edition by William Stallings Lecturer: Dr. Saleem Al_Zoubi.

1 Cryptography and Network Security Third Edition by William Stallings Lecturer: Dr. Saleem Al_Zoubi.
Introduction to Firewall Technologies. Objectives Upon completion of this course, you will be able to: Understand basic concepts of network security Master.

Introduction to Firewall Technologies. Objectives Upon completion of this course, you will be able to: Understand basic concepts of network security Master.
1 ITC242 – Introduction to Data Communications Week 12 Topic 18 Chapter 19 Network Management.

1 ITC242 – Introduction to Data Communications Week 12 Topic 18 Chapter 19 Network Management.
Security Awareness: Applying Practical Security in Your World, Second Edition Chapter 5 Network Security.

Security Awareness: Applying Practical Security in Your World, Second Edition Chapter 5 Network Security.
Presented By: Vinay Kumar.  At the time of invention, Internet was just accessible to a small group of pioneers who wanted to make the network work.

Presented By: Vinay Kumar.  At the time of invention, Internet was just accessible to a small group of pioneers who wanted to make the network work.
2/23/2009CS50901 Implementing Fault-Tolerant Services Using the State Machine Approach: A Tutorial Fred B. Schneider Presenter: Aly Farahat.

2/23/2009CS50901 Implementing Fault-Tolerant Services Using the State Machine Approach: A Tutorial Fred B. Schneider Presenter: Aly Farahat.
OCT1 Principles From Chapter One of “Distributed Systems Concepts and Design”

OCT1 Principles From Chapter One of “Distributed Systems Concepts and Design”
Applied Cryptography for Network Security

Applied Cryptography for Network Security
Cryptography and Network Security Chapter 1. Chapter 1 – Introduction The art of war teaches us to rely not on the likelihood of the enemy's not coming,

Cryptography and Network Security Chapter 1. Chapter 1 – Introduction The art of war teaches us to rely not on the likelihood of the enemy's not coming,
Data Networking Fundamentals Unit 7 7/2/2015 1 Modified by: Brierley.

Data Networking Fundamentals Unit 7 7/2/ Modified by: Brierley.
Lesson 1: Configuring Network Load Balancing

Lesson 1: Configuring Network Load Balancing
Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.

Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.

Similar presentations

Ads by Google