scispace - formally typeset
Search or ask a question
Journal ArticleDOI

DepSky: Dependable and Secure Storage in a Cloud-of-Clouds

Alysson Bessani1, Miguel Correia1, Bruno Quaresma1, Fernando André1, Paulo Sousa1 
University of Lisbon1
01 Nov 2013-ACM Transactions on Storage (ACM)-Vol. 9, Iss: 4, pp 12
TL;DR: DepSky is presented, a system that improves the availability, integrity, and confidentiality of information stored in the cloud through the encryption, encoding, and replication of the data on diverse clouds that form a cloud-of-clouds.
Abstract: The increasing popularity of cloud storage services has lead companies that handle critical data to think about using these services for their storage needs. Medical record databases, large biomedical datasets, historical information about power systems and financial data are some examples of critical data that could be moved to the cloud. However, the reliability and security of data stored in the cloud still remain major concerns. In this work we present DepSky, a system that improves the availability, integrity, and confidentiality of information stored in the cloud through the encryption, encoding, and replication of the data on diverse clouds that form a cloud-of-clouds. We deployed our system using four commercial clouds and used PlanetLab to run clients accessing the service from different countries. We observed that our protocols improved the perceived availability, and in most cases, the access latency, when compared with cloud providers individually. Moreover, the monetary costs of using DepSky in this scenario is at most twice the cost of using a single cloud, which is optimal and seems to be a reasonable cost, given the benefits.
Citations
More filters
Proceedings ArticleDOI
Cloud Computing Security: From Single to Multi-clouds

[...]

Mohammed A. AlZain1, Eric Pardede1, Ben Soh1, James A. Thom2
La Trobe University1, RMIT University2
04 Jan 2012
TL;DR: This work aims to promote the use of multi-clouds due to its ability to reduce security risks that affect the cloud computing user.
Abstract: The use of cloud computing has increased rapidly in many organizations. Cloud computing provides many benefits in terms of low cost and accessibility of data. Ensuring the security of cloud computing is a major factor in the cloud computing environment, as users often store sensitive information with cloud storage providers but these providers may be untrusted. Dealing with "single cloud" providers is predicted to become less popular with customers due to risks of service availability failure and the possibility of malicious insiders in the single cloud. A movement towards "multi-clouds", or in other words, "interclouds" or "cloud-of-clouds" has emerged recently. This paper surveys recent research related to single and multi-cloud security and addresses possible solutions. It is found that the research into the use of multi-cloud providers to maintain security has received less attention from the research community than has the use of single clouds. This work aims to promote the use of multi-clouds due to its ability to reduce security risks that affect the cloud computing user.

279 citations

Cites background or methods or result from "DepSky: Dependable and Secure Stora..."

  • ...Finally, the DepSky system presents an experimental evaluation with several clouds, which is different from other previous work on multi-clouds [8]....

    [...]

  • ...[8] explain the difference between readers and writers for cloud storage....

    [...]

  • ...[8] present a virtual storage cloud system called DepSky which consists of a combination of different clouds to build a cloud-of-clouds....

    [...]

  • ...The DepSky architecture [8] consists of four clouds and each cloud uses its own particular interface....

    [...]

  • ...Recent research has focused on the multi-cloud environment [3],[8],[10],[11] which control several clouds and avoids dependency on any one individual cloud....

    [...]

Proceedings ArticleDOI
Rethinking Vehicular Communications: Merging VANET with cloud computing

[...]

Rasheed Hussain1, Junggab Son1, Hasoo Eun1, Sangjin Kim2, Heekuck Oh1 
Hanyang University1, Korea University of Technology and Education2
03 Dec 2012
TL;DR: This paper puts forth the taxonomy of VANET based cloud computing, and is, to the best of the knowledge, the first effort to define VANet Cloud architecture.
Abstract: Despite the surge in Vehicular Ad Hoc NETwork (VANET) research, future high-end vehicles are expected to under-utilize the on-board computation, communication, and storage resources. Olariu et al. envisioned the next paradigm shift from conventional VANET to Vehicular Cloud Computing (VCC) by merging VANET with cloud computing. But to date, in the literature, there is no solid architecture for cloud computing from VANET standpoint. In this paper, we put forth the taxonomy of VANET based cloud computing. It is, to the best of our knowledge, the first effort to define VANET Cloud architecture. Additionally we divide VANET clouds into three architectural frameworks named Vehicular Clouds (VC), Vehicles using Clouds (VuC), and Hybrid Vehicular Clouds (HVC). We also outline the unique security and privacy issues and research challenges in VANET clouds.

259 citations

Cites background from "DepSky: Dependable and Secure Stora..."

  • ...Logically VANET clouds inherit their parental long-chased security and privacy issues from both VANET [4,16] and cloud computing [14,17]....

    [...]

Proceedings ArticleDOI
SPANStore: cost-effective geo-replicated storage spanning multiple cloud services

[...]

Zhe Wu1, Michael Butkiewicz1, Dorian Perkins1, Ethan Katz-Bassett2, Harsha V. Madhyastha1 
University of California, Riverside1, University of Southern California2
03 Nov 2013
TL;DR: SPANStore is presented, a key-value store that exports a unified view of storage services in geographically distributed data centers that can lower costs by over 10x in several scenarios, in comparison with alternative solutions that either use a single storage provider or replicate every object to every data center from which it is accessed.
Abstract: By offering storage services in several geographically distributed data centers, cloud computing platforms enable applications to offer low latency access to user data. However, application developers are left to deal with the complexities associated with choosing the storage services at which any object is replicated and maintaining consistency across these replicas.In this paper, we present SPANStore, a key-value store that exports a unified view of storage services in geographically distributed data centers. To minimize an application provider's cost, we combine three key principles. First, SPANStore spans multiple cloud providers to increase the geographical density of data centers and to minimize cost by exploiting pricing discrepancies across providers. Second, by estimating application workload at the right granularity, SPANStore judiciously trades off greater geo-distributed replication necessary to satisfy latency goals with the higher storage and data propagation costs this entails in order to satisfy fault tolerance and consistency requirements. Finally, SPANStore minimizes the use of compute resources to implement tasks such as two-phase locking and data propagation, which are necessary to offer a global view of the storage services that it builds upon. Our evaluation of SPANStore shows that it can lower costs by over 10x in several scenarios, in comparison with alternative solutions that either use a single storage provider or replicate every object to every data center from which it is accessed.

251 citations

Proceedings ArticleDOI
NCCloud: applying network coding for the storage repair in a cloud-of-clouds

[...]

Yuchong Hu1, Henry C. H. Chen1, Patrick P. C. Lee1, Yang Tang2
The Chinese University of Hong Kong1, Columbia University2
14 Feb 2012
TL;DR: This work proposes an implementable design for the functional minimum-storage regenerating code (F-MSR), which maintains the same data redundancy level and same storage requirement as in traditional erasure codes, but uses less repair traffic.
Abstract: To provide fault tolerance for cloud storage, recent studies propose to stripe data across multiple cloud vendors However, if a cloud suffers from a permanent failure and loses all its data, then we need to repair the lost data from other surviving clouds to preserve data redundancy We present a proxy-based system for multiple-cloud storage called NCCloud, which aims to achieve cost-effective repair for a permanent single-cloud failure NCCloud is built on top of network-coding-based storage schemes called regenerating codes Specifically, we propose an implementable design for the functional minimum-storage regenerating code (F-MSR), which maintains the same data redundancy level and same storage requirement as in traditional erasure codes (eg, RAID-6), but uses less repair traffic We implement a proof-of-concept prototype of NCCloud and deploy it atop local and commercial clouds We validate the cost effectiveness of FMSR in storage repair over RAID-6, and show that both schemes have comparable response time performance in normal cloud storage operations

212 citations

Proceedings Article
The cloud is not enough: saving iot from the cloud

[...]

Ben Zhang1, Nitesh Mor1, John Kolb1, Douglas Chan1, Nikhil Goyal1, Ken Lutz1, Eric Allman1, John Wawrzynek1, Edward A. Lee1, John Kubiatowicz1 
University of California, Berkeley1
06 Jul 2015
TL;DR: In this article, the authors argue that the current approach of directly connecting smart devices to the cloud has a number of disadvantages and is unlikely to keep up with either the growing speed of the IoT or the diverse needs of IoT applications.
Abstract: The Internet of Things (IoT) represents a new class of applications that can benefit from cloud infrastructure. However, the current approach of directly connecting smart devices to the cloud has a number of disadvantages and is unlikely to keep up with either the growing speed of the IoT or the diverse needs of IoT applications. In this paper we explore these disadvantages and argue that fundamental properties of the IoT prevent the current approach from scaling. What is missing is a well-architected system that extends the functionality of the cloud and provides seamless interplay among the heterogeneous components in the IoT space. We argue that raising the level of abstraction to a data-centric design-- focused around the distribution, preservation and protection of information--provides a much better match to the IoT. We present early work on such a distributed platform, called the Global Data Plane (GDP), and discuss how it addresses the problems with the cloud-centric architecture.

208 citations

References
More filters
Journal ArticleDOI
How to share a secret

[...]

Adi Shamir1
Massachusetts Institute of Technology1
01 Nov 1979-Communications of The ACM
TL;DR: This technique enables the construction of robust key management schemes for cryptographic systems that can function securely and reliably even when misfortunes destroy half the pieces and security breaches expose all but one of the remaining pieces.
Abstract: In this paper we show how to divide data D into n pieces in such a way that D is easily reconstructable from any k pieces, but even complete knowledge of k - 1 pieces reveals absolutely no information about D. This technique enables the construction of robust key management schemes for cryptographic systems that can function securely and reliably even when misfortunes destroy half the pieces and security breaches expose all but one of the remaining pieces.

14,340 citations

"DepSky: Dependable and Secure Stora..." refers methods in this paper

  • ...To avoid the need of a key distribution service, which would have to be implemented outside of the clouds, we employ a secret sharing scheme [Shamir 1979]....

    [...]

Journal ArticleDOI
The Google file system

[...]

Sanjay Ghemawat1, Howard Gobioff1, Shun-Tak Albert Leung1
Google1
19 Oct 2003
TL;DR: This paper presents file system interface extensions designed to support distributed applications, discusses many aspects of the design, and reports measurements from both micro-benchmarks and real world use.
Abstract: We have designed and implemented the Google File System, a scalable distributed file system for large distributed data-intensive applications. It provides fault tolerance while running on inexpensive commodity hardware, and it delivers high aggregate performance to a large number of clients. While sharing many of the same goals as previous distributed file systems, our design has been driven by observations of our application workloads and technological environment, both current and anticipated, that reflect a marked departure from some earlier file system assumptions. This has led us to reexamine traditional choices and explore radically different design points. The file system has successfully met our storage needs. It is widely deployed within Google as the storage platform for the generation and processing of data used by our service as well as research and development efforts that require large data sets. The largest cluster to date provides hundreds of terabytes of storage across thousands of disks on over a thousand machines, and it is concurrently accessed by hundreds of clients. In this paper, we present file system interface extensions designed to support distributed applications, discuss many aspects of our design, and report measurements from both micro-benchmarks and real world use.

5,429 citations

Journal ArticleDOI
The Byzantine Generals Problem

[...]

Leslie Lamport1, Robert E. Shostak1, Marshall C. Pease1
SRI International1
01 Jul 1982-ACM Transactions on Programming Languages and Systems
TL;DR: The Albanian Generals Problem as mentioned in this paper is a generalization of Dijkstra's dining philosophers problem, where two generals have to come to a common agreement on whether to attack or retreat, but can communicate only by sending messengers who might never arrive.
Abstract: I have long felt that, because it was posed as a cute problem about philosophers seated around a table, Dijkstra’s dining philosopher’s problem received much more attention than it deserves. (For example, it has probably received more attention in the theory community than the readers/writers problem, which illustrates the same principles and has much more practical importance.) I believed that the problem introduced in [41] was very important and deserved the attention of computer scientists. The popularity of the dining philosophers problem taught me that the best way to attract attention to a problem is to present it in terms of a story. There is a problem in distributed computing that is sometimes called the Chinese Generals Problem, in which two generals have to come to a common agreement on whether to attack or retreat, but can communicate only by sending messengers who might never arrive. I stole the idea of the generals and posed the problem in terms of a group of generals, some of whom may be traitors, who have to reach a common decision. I wanted to assign the generals a nationality that would not offend any readers. At the time, Albania was a completely closed society, and I felt it unlikely that there would be any Albanians around to object, so the original title of this paper was The Albanian Generals Problem. Jack Goldberg was smart enough to realize that there were Albanians in the world outside Albania, and Albania might not always be a black hole, so he suggested that I find another name. The obviously more appropriate Byzantine generals then occurred to me. The main reason for writing this paper was to assign the new name to the problem. But a new paper needed new results as well. I came up with a simpler way to describe the general 3n+1-processor algorithm. (Shostak’s 4-processor algorithm was subtle but easy to understand; Pease’s generalization was a remarkable tour de force.) We also added a generalization to networks that were not completely connected. (I don’t remember whose work that was.) I also added some discussion of practical implementation details.

5,208 citations

Book ChapterDOI
The Byzantine generals problem

[...]

Leslie Lamport1, Robert E. Shostak1, Marshall C. Pease1
SRI International1
04 Oct 2019-Concurrency and Computation: Practice and Experience
TL;DR: In this article, a group of generals of the Byzantine army camped with their troops around an enemy city are shown to agree upon a common battle plan using only oral messages, if and only if more than two-thirds of the generals are loyal; so a single traitor can confound two loyal generals.
Abstract: Reliable computer systems must handle malfunctioning components that give conflicting information to different parts of the system. This situation can be expressed abstractly in terms of a group of generals of the Byzantine army camped with their troops around an enemy city. Communicating only by messenger, the generals must agree upon a common battle plan. However, one or more of them may be traitors who will try to confuse the others. The problem is to find an algorithm to ensure that the loyal generals will reach agreement. It is shown that, using only oral messages, this problem is solvable if and only if more than two-thirds of the generals are loyal; so a single traitor can confound two loyal generals. With unforgeable written messages, the problem is solvable for any number of generals and possible traitors. Applications of the solutions to reliable computer systems are then discussed.

4,901 citations

Journal ArticleDOI
Linearizability: a correctness condition for concurrent objects

[...]

Maurice Herlihy1, Jeannette M. Wing1
Carnegie Mellon University1
01 Jul 1990-ACM Transactions on Programming Languages and Systems
TL;DR: This paper defines linearizability, compares it to other correctness conditions, presents and demonstrates a method for proving the correctness of implementations, and shows how to reason about concurrent objects, given they are linearizable.
Abstract: A concurrent object is a data object shared by concurrent processes. Linearizability is a correctness condition for concurrent objects that exploits the semantics of abstract data types. It permits a high degree of concurrency, yet it permits programmers to specify and reason about concurrent objects using known techniques from the sequential domain. Linearizability provides the illusion that each operation applied by concurrent processes takes effect instantaneously at some point between its invocation and its response, implying that the meaning of a concurrent object's operations can be given by pre- and post-conditions. This paper defines linearizability, compares it to other correctness conditions, presents and demonstrates a method for proving the correctness of implementations, and shows how to reason about concurrent objects, given they are linearizable.

3,396 citations

"DepSky: Dependable and Secure Stora..." refers background in this paper

  • ...We do not try to provide atomic (linearizable) semantics [Herlihy and Wing 1990; Lamport 1986] due to the fact that all known techniques require server-to-server communication [Cachin and Tessaro 2006], servers sending update noti.cations to clients [Martin et al. 2002], or writebacks [Basescu…...

    [...]

Related Papers (5)
RACS: a case for cloud storage diversity

[...]

10 Jun 2010
Hussam Abu-Libdeh, Lonnie Princehouse, Hakim Weatherspoon
How to share a secret

[...]

01 Nov 1979-Communications of The ACM
Adi Shamir
HAIL: a high-availability and integrity layer for cloud storage

[...]

09 Nov 2009
Kevin D. Bowers, Ari Juels, Alina Oprea
A view of cloud computing

[...]

01 Apr 2010-Communications of The ACM
Michael Armbrust, Armando Fox, Rean Griffith, Anthony D. Joseph, Randy H. Katz, Andy Konwinski, Gunho Lee, David A. Patterson, Ariel Rabkin, Ion Stoica, Matei Zaharia 
Efficient dispersal of information for security, load balancing, and fault tolerance

[...]

01 Apr 1989-Journal of the ACM
Michael O. Rabin