Presentation is loading. Please wait.

Presentation is loading. Please wait.

Query Assurance on Data Streams  Ke Yi (AT&T Labs, now at HKUST)  Feifei Li (Boston U, now at Florida State)  Marios Hadjieleftheriou (AT&T Labs) 

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Query Assurance on Data Streams  Ke Yi (AT&T Labs, now at HKUST)  Feifei Li (Boston U, now at Florida State)  Marios Hadjieleftheriou (AT&T Labs) "— Presentation transcript:

1 Query Assurance on Data Streams  Ke Yi (AT&T Labs, now at HKUST)  Feifei Li (Boston U, now at Florida State)  Marios Hadjieleftheriou (AT&T Labs)  Divesh Srivastava (AT&T Labs)  George Kollios (Boston U)

2 Outsourcing  Manufacturing  Software development  Service  Data TRUST?

3 Data Outsourcing Model 3 Owner: owns data Servers: host (or process) the data and provide query services Clients: query the owner’s data through servers ownerserversclients/ (possibly = owner) the unified client model

4 Outsourced Database for Better Query Services 4 Servers that are close to local clients and maintained by local business partners Company with headquarters in US

5 Data Outsourcing Model 5 Owner/client: owns data and issue queries Servers: host (or process) the data and provide query services serversOwner/client the unified client model

6 Model Comparison 3-party model2-party model Model One data owner, a few servers, many clients One data owner/client, one server Motivation Better serve clients in different locations Owner does not have enough resources Client Client does not have access to data Client has access to data Techniques Digital signatures, one- way hash functions, Merkle hash trees, etc. ? Previous work LotFew

7 Data Stream Outsourcing 7 Network Gigascope: analysis tool by IP Traffic Stream coming from small business 0 1 1 0 0 1 … 1 1 0 … statistics Results

8 Concrete Example SELECT COUNT(*) FROM IP_trace GROUP BY srcIP, destIP Answer: 8 pmpm p3p3 p2p2 p1p1... IP Stream: : srcIP, destIP 123...n 1,5405,356150...8,794 Groups

9 The Model for the Stream 9 1i S 1 … 0 V 000 … V1V1 V2V2 V3V3 VnVn 10 ViVi 12 T=1T=2 T=3 group_id Major issue: space

10 Information Security Issues 10  The third-party (server) cannot be trusted  Lazy service provider  Malicious intent  Compromised equipment  Unintentional errors (e.g. bugs)

11 A Simple Solution [Sion, VLDB 05]  Accumulate b queries  The owner computes r of them itself  Compute the hashes of these results, with some fake ones  Ask the server to identify these r queries  Problems:  Can only prevent (very) lazy service provider  How about malicious attacks?  Need to accumulate enough queries  What if there is only one query?  High cost: r queries need to processed locally  High failure probability: 10%-30% (typically)

12 Continuous Query Verification: CQV 12 0 V 000 … V1V1 V2V2 V3V3 VnVn 90 ViVi 12 97 S 1 … T=1T=2T=3 Update V XTXT Synopsis Update X 0020 … V1V1 V2V2 V3V3 VnVn 90 ViVi 52 Alarm 000 … V1V1 V2V2 V3V3 VnVn ViVi 12 no alarm

13 PIRS: Polynomial Identity Random Synopsis 13 choose prime p : chose a random number : raise alarm if not equal o/w no alarm

14 Incremental Update to PIRS 14 1i S … T=1T=2 update to v 1 update to v i

15 It Solves CQV problem! 15 Theorem: Given anyPIRS raises an alarm with probability at least 1-δ, otherwise no alarm. a polynomial with 1 as the leading coefficient is completely determined by its zeroes (and the corresponding multiplicity) due to the fundamental theorem of algebra. happens at no more than m values of x Since we have p>m/ δ choices for a : the probability that X(V)=X(W) is at most δ

16 Optimality of PIRS 16 Theorem: PIRS occupies O(log(m/δ) + log n) bits of space (3 words only at most, i.e., p, a, X(V) ), spends O(1) time to process a tuple for count query, or O(log u) time to process a tuple for sum query. Theorem: Any synopsis for solving the CQV problem with error probability at most δ has to keep Ω(log(min{n,m}/δ)) bits.

17 In Practice  Failure probability  Choose largest p that fits in a word  E.g, if we use 64-bit words, then failure probability is δ = m / p < 2 -32 (assuming m<2 32 )  Space requirement  p, a, X(V) : 3 words!  Time requirement  For count queries / selection queries  One subtraction, one multiplication, one mod  For sum queries:  log(u) multiplications: exponentiation by squaring

18 Multiple Queries 18 Q1Q1 Q2Q2 X1X1 X2X2 Q1Q1 Q2Q2 X 1,8 S … update to v 1 update to v 8 Theorem: our synopses use constant space for multiple queries. V 1..n1 V 1..n2 V 1..(n1+n2)

19 Some Experiments 19  We use real streams:  World Cup Data (WC)  IP traces from the AT&T network (IP)  We perform the following query:  WC: Aggregate on response size and group by client id/object id (50M groups)  IP: Aggregate on packet size and group by source IP/destination IP (7M groups)  Hardware for the client:  2.8GHz Intel Pentium 4 CPU  512 MB memory  Linux Machine

20 Memory Usage of Exact 20 PIRS using only constant 3 words (27 bytes) at all time. Exact’s memory usage is linear and expensive.

21 Update Time (per tuple) of Exact 21 1.Exact is fast when memory usage is small. 2.It becomes extremely slow due to cache misses. Cache misses

22 Running Time Analysis 22 WCIPs Count0.98 μs Sum8.01 μs6.69 μs Average Update Time IPs exhibits smaller update cost for sum query as the average value of u is smaller than that of WC

23 Multiple Queries: Exact Memory Usage 23 PIRS always uses only 3 words. Exact’s memory usage is linear w.r.t number of queries and increasing over time.

24 CQV with Load Shedding 24

25 PIRS γ : An Exact Solution 25 PIRS … k buckets Alarm vivi b i =2 If at least γ buckets raise alarms PIRS … … log 1/δ Alarm If at least one layer raises alarms

26 PIRS γ : An Exact Solution 26 Theorem: PIRS γ requires O(γ 2 log1/δ logn) bits, spends O(γ log1/δ ) time to process a tuple and solves CQV with semantic load shedding.

27 Intuition on Approximation 27 number of errors probability to raise alarm γ the ideal synopsis γ-γ-γ+γ+ the approximation

28 PIRS ± γ : An Approximate Solution 28 Theorem: PIRS ±γ requires O(γ log1/δ logn) bits, spends O(γ log1/δ ) time to process a tuple.

29 PIRS ± γ : An Approximate Solution 29 Theorem: PIRS ±γ : 1.raises no alarm with probability at least 1- δ on any 2.raises an alarm with probability at least 1- δ on any For any c>-lnln2=0.367 Using the intuition of coupon collector problem and the Chernoff bound.

30 PIRS ± γ : An Approximate Solution 30 PIRS … k buckets Alarm vivi b i =2 If all k buckets raise alarms PIRS … … log 1/δ Alarm If majority layers raise alarms

31 PIRS ± γ : Experiments

32 Related Techniques to PIRS 32  Incremental Cryptography  Block operation (insert, delete), cannot support arithmetic operation  Sketches  Provide approximate estimates  We want absolute accuracy  Often much more costly  Space O(1/) or O(1/ 2 )  Fingerprinting Technique  PIRS is a fingerprinting technique  Polynomial identity verification

33 Thanks! 33  Questions

Download ppt "Query Assurance on Data Streams  Ke Yi (AT&T Labs, now at HKUST)  Feifei Li (Boston U, now at Florida State)  Marios Hadjieleftheriou (AT&T Labs) "

Similar presentations

Sublinear Algorithms 1 3 2 … Lecture 23: April 20.

Sublinear Algorithms … Lecture 23: April 20.
Efficient Processing of Top- k Queries in Uncertain Databases Ke Yi, AT&T Labs Feifei Li, Boston University Divesh Srivastava, AT&T Labs George Kollios,

Efficient Processing of Top- k Queries in Uncertain Databases Ke Yi, AT&T Labs Feifei Li, Boston University Divesh Srivastava, AT&T Labs George Kollios,
External Memory Hashing. Model of Computation Data stored on disk(s) Minimum transfer unit: a page = b bytes or B records (or block) N records -> N/B.

External Memory Hashing. Model of Computation Data stored on disk(s) Minimum transfer unit: a page = b bytes or B records (or block) N records -> N/B.
CSC 774 Advanced Network Security

CSC 774 Advanced Network Security
Latent Semantic Indexing (mapping onto a smaller space of latent concepts) Paolo Ferragina Dipartimento di Informatica Università di Pisa Reading 18.

Latent Semantic Indexing (mapping onto a smaller space of latent concepts) Paolo Ferragina Dipartimento di Informatica Università di Pisa Reading 18.
Ariel Rosenfeld 1. 2 1 0 1 1 1 0 1 0 0 1 1 Network Traffic Engineering. Call Record Analysis. Sensor Data Analysis. Medical, Financial Monitoring. Etc,

Ariel Rosenfeld Network Traffic Engineering. Call Record Analysis. Sensor Data Analysis. Medical, Financial Monitoring. Etc,
Mining Data Streams.

Mining Data Streams.
Estimating TCP Latency Approximately with Passive Measurements Sriharsha Gangam, Jaideep Chandrashekar, Ítalo Cunha, Jim Kurose.

Estimating TCP Latency Approximately with Passive Measurements Sriharsha Gangam, Jaideep Chandrashekar, Ítalo Cunha, Jim Kurose.
What’s the Difference? Efficient Set Reconciliation without Prior Context Frank Uyeda University of California, San Diego David Eppstein, Michael T. Goodrich.

What’s the Difference? Efficient Set Reconciliation without Prior Context Frank Uyeda University of California, San Diego David Eppstein, Michael T. Goodrich.
SIGMOD 2006University of Alberta1 Approximately Detecting Duplicates for Streaming Data using Stable Bloom Filters Presented by Fan Deng Joint work with.

SIGMOD 2006University of Alberta1 Approximately Detecting Duplicates for Streaming Data using Stable Bloom Filters Presented by Fan Deng Joint work with.
Tirgul 10 Rehearsal about Universal Hashing Solving two problems from theoretical exercises: –T2 q. 1 –T3 q. 2.

Tirgul 10 Rehearsal about Universal Hashing Solving two problems from theoretical exercises: –T2 q. 1 –T3 q. 2.
1 Reversible Sketches for Efficient and Accurate Change Detection over Network Data Streams Robert Schweller Ashish Gupta Elliot Parsons Yan Chen Computer.

1 Reversible Sketches for Efficient and Accurate Change Detection over Network Data Streams Robert Schweller Ashish Gupta Elliot Parsons Yan Chen Computer.
Dictionaries and Hash Tables1   0 1 2 3 4 451-229-0004 981-101-0002 025-612-0001.

Dictionaries and Hash Tables1  
Computer Science Spatio-Temporal Aggregation Using Sketches Yufei Tao, George Kollios, Jeffrey Considine, Feifei Li, Dimitris Papadias Department of Computer.

Computer Science Spatio-Temporal Aggregation Using Sketches Yufei Tao, George Kollios, Jeffrey Considine, Feifei Li, Dimitris Papadias Department of Computer.
Processing Data-Stream Joins Using Skimmed Sketches Minos Garofalakis Internet Management Research Department Bell Labs, Lucent Technologies Joint work.

Processing Data-Stream Joins Using Skimmed Sketches Minos Garofalakis Internet Management Research Department Bell Labs, Lucent Technologies Joint work.
Time-Decaying Sketches for Sensor Data Aggregation Graham Cormode AT&T Labs, Research Srikanta Tirthapura Dept. of Electrical and Computer Engineering.

Time-Decaying Sketches for Sensor Data Aggregation Graham Cormode AT&T Labs, Research Srikanta Tirthapura Dept. of Electrical and Computer Engineering.
Privacy and Integrity Preserving in Distributed Systems Presented for Ph.D. Qualifying Examination Fei Chen Michigan State University August 25 th, 2009.

Privacy and Integrity Preserving in Distributed Systems Presented for Ph.D. Qualifying Examination Fei Chen Michigan State University August 25 th, 2009.
Preference Analysis Joachim Giesen and Eva Schuberth May 24, 2006.

Preference Analysis Joachim Giesen and Eva Schuberth May 24, 2006.
Foundations of Privacy Lecture 11 Lecturer: Moni Naor.

Foundations of Privacy Lecture 11 Lecturer: Moni Naor.
Computer Science Characterizing and Exploiting Reference Locality in Data Stream Applications Feifei Li, Ching Chang, George Kollios, Azer Bestavros Computer.

Computer Science Characterizing and Exploiting Reference Locality in Data Stream Applications Feifei Li, Ching Chang, George Kollios, Azer Bestavros Computer.

Similar presentations

Ads by Google