DOCSLIB.ORG

DDOS: Taming Nondeterminism in Distributed Systems

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
DDOS: Taming Nondeterminism in Distributed Systems DDOS: Taming Nondeterminism in Distributed Systems Nicholas Hunt, Tom Bergan, Luis Ceze, Steven D. Gribble Computer Science and Engineering, University of Washington nhunt,tbergan,luisceze,gribble @cs.washington.edu { } Abstract but the network connecting the nodes is also a major contributor: Nondeterminism complicates the development and management of arbitrary messages can be lost or reordered. Without mechanisms distributed systems, and arises from two main sources: the local to control both sources, it is exceptionally challenging to replicate behavior of each individual node as well as the behavior of the distributed systems and to reproduce buggy distributed executions. network connecting them. Taming nondeterminism effectively re- There are two main approaches to handling nondeterminism. quires dealing with both sources. The first is to record and later replay the nondeterminism, sim- This paper proposes DDOS, a system that leverages prior plifying debugging by making executions repeatable. The second work on deterministic multithreading to offer: 1) space-efficient approach eliminates nondeterminism altogether by executing the record/replay of distributed systems; and 2) fully deterministic dis- program deterministically with respect to its explicitly specified in- tributed behavior. Leveraging deterministic behavior at each node puts. This approach simplifies both debugging and fault-tolerant makes outgoing messages strictly a function of explicit inputs. replication. This allows us to record the system by logging just message’s This paper describes DDOS, a system we built to explore the arrival time, not the contents. Going further, we propose and im- trade-offs between record/replay and determinism in distributed plement an algorithm that makes all communication between nodes systems. In record/replay mode, DDOS generates space-efficient deterministic by scheduling communication onto a global logical replay logs that can be used to replay an entire distributed system. timeline. In deterministic execution mode, the entire distributed system is We implement both algorithms in a system called DDOS executed deterministically with respect to inputs from outside the and evaluate our system with parallel scientific applications, an distributed system, such as external network packets and user input. HTTP/memcached system and a distributed microbenchmark with To our knowledge, this is the first proposal for fully deterministic a high volume of peer-to-peer communication. Our results show execution of arbitrary distributed systems. up to two orders of magnitude reduction in log size of record/re- Both implementations exploit local-node determinism as pro- play, and that distributed systems can be made deterministic with vided by prior work in dOS [4]. For record/replay, we observe an order of magnitude of overhead. that given local-node determinism, it is sufficient to record just the arrival time of internal node-to-node messages, and not the mes- Categories and Subject Descriptors C.2.4 [Computer Commu- sage’s contents; local determinism guarantees that message con- nication Networks]: Network Protocols and Distributed Systems; tents will be regenerated deterministically during replay. For dis- D.4.1 [Operating Systems]: Process Management; D.4.5 [Operat- tributed determinism, we propose an algorithm for delivering in- ing Systems]: Reliability ternal node-to-node messages deterministically. When combined with local-node determinism, this algorithm guarantees determin- Keywords Distributed Systems, Reliability, Determinism, Record- and-Replay istic distributed execution. DDOS advances prior work in two ways. First, existing record/re- play systems [10, 14, 18] often produce prohibitively large logs 1. Introduction (multiple gigabytes per hour) because they work at the boundary Nondeterminism makes the development of distributed systems dif- of each local-node and thus need to record the contents and deliv- ficult. Without the ability to precisely reproduce a buggy execution, ery times of internal network messages. DDOS generates space- it is challenging for developers of distributed applications to track efficient logs by exploiting local-node determinism to eliminate down the root cause of a bug. Further, replicating distributed sys- the need to log the contents of internal messages. DDOS leverages tems for fault tolerance is hard since nondeterminism can cause the observations similar to those made by DejaVu [18], but because replicas’ executions to diverge. Ideally, the behavior of distributed DejaVu is a full record/replay system, it is not able to achieve the systems would be solely a function of well-defined inputs. considerable log size reductions that DDOS achieves by exploiting However, nondeterminism is pervasive in distributed systems. local-node determinism. Not only does each individual node encounter nondeterminism lo- Second, existing deterministic execution systems have focused cally due to timing variations in the operating system and hardware, on multithreaded programs. These systems either support single- node determinism only [4, 5, 8] or support distributed systems with a limited communication model [1]. As part of DDOS, we pro- pose and implement an algorithm to make inter-node communica- Permission to make digital or hard copies of all or part of this work for personal or tion fully deterministic and for arbitrary applications and commu- classroom use is granted without fee provided that copies are not made or distributed nication patterns. for profit or commercial advantage and that copies bear this notice and the full citation Our DDOS implementation supports arbitrary distributed POSIX- on the first page. To copy otherwise, to republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. compatible applications—including applications with data races— ASPLOS’13, March 16–20, 2013, Houston, Texas, USA. without requiring changes to application binaries. Our evaluation Copyright c 2013 ACM 978-1-4503-1870-9/13/03. $15.00 shows that our record/replay mechanism can reduce the required log sizes by up to 70%, and that our deterministic execution mode DPG socket imposes up to an order of magnitude overhead relative to nonde- Pa terministic execution—these overheads vary wildly with frequency memory Thread 1 and pattern of communication. page shim Thread Finally, our evaluation demonstrates the following trade-off be- 2 tween record/replay and deterministic execution: the record/replay clock pipe mechanisms in DDOS impose a lower performance overhead at the Thread 3 expense of larger logs, whereas the deterministic execution mech- Pb anisms lessens the space requirements for logs at the expense of performance. Figure 1. A Deterministic Process Group (from [4]) 1.1 Use Cases for Distributed Replay Debugging. Debugging distributed systems is a daunting task. In addition to tracking down bugs that occur locally within a single 2.1 Deterministic Process Groups node of the system, bugs in distributed systems can be dependent A DPG is an abstraction that allows a group of multithreaded pro- on deep communication chains involving a large number of nodes cesses to execute deterministically on a single node. Specifically, across the network. Local-node record/replay can help with the DPGs provide a mechanism to partition the sources of nondeter- first class of bugs, but requires logging all communication between minism that can affect a process into internal sources and external nodes, which can be prohibitive for some applications. Further, sources: internal sources of nondeterminism are eliminated from local-node record/replay does little to help find bugs of the second DPGs, but external sources of nondeterminism are fundamentally class because the root causes of these bugs are visible only when the nondeterministic and cannot be eliminated. Examples of internal entire distributed system is replayed as a unit. The space-efficient, sources of nondeterminism include thread scheduling, hardware full-system record/replay mode provided by DDOS makes this timing variations, and communication between threads involving debugging technique more practical. pipes, shared-memory, local files, and so on. External sources of nondeterminism include reading physical clocks and communicat- 1.2 Use Cases for Distributed Determinism ing with processes outside of a DPG. Debugging. Determinism helps with debugging by making execu- Additionally, dOS defines a shim layer API that allowed pro- tion repeatable. For debugging, main difference between determin- grammers to interpose on all external nondeterminism. Any time a ism and record/replay is that a deterministic system enforces a par- DPG receives input from a nondeterministic external source, dOS ticular communication schedule between nodes, obviating the need funnels that event through the shim layer, allowing the shim pro- to actually log this communication. The user can observe buggy grammer to control how that nondeterminism is introduced. For behavior again by simply re-running the application with the same example, a shim may implement the record half of a record/replay inputs. mechanism by creating a log entry on every nondeterministic event. Replication. A second application for distributed determinism Figure 1 shows an example of a DPG containing two processes is to enable replication of an entire distributed system for fault- and three threads communicating with each other using shared- tolerance. By instantiating multiple copies of
Load more

Recommended publications
  • Deterministic Execution of Multithreaded Applications
    DETERMINISTIC EXECUTION OF MULTITHREADED APPLICATIONS FOR RELIABILITY OF MULTICORE SYSTEMS DETERMINISTIC EXECUTION OF MULTITHREADED APPLICATIONS FOR RELIABILITY OF MULTICORE SYSTEMS Proefschrift ter verkrijging van de graad van doctor aan de Technische Universiteit Delft, op gezag van de Rector Magnificus prof. ir. K. C. A. M. Luyben, voorzitter van het College voor Promoties, in het openbaar te verdedigen op vrijdag 19 juni 2015 om 10:00 uur door Hamid MUSHTAQ Master of Science in Embedded Systems geboren te Karachi, Pakistan Dit proefschrift is goedgekeurd door de promotor: Prof. dr. K. L. M. Bertels Copromotor: Dr. Z. Al-Ars Samenstelling promotiecommissie: Rector Magnificus, voorzitter Prof. dr. K. L. M. Bertels, Technische Universiteit Delft, promotor Dr. Z. Al-Ars, Technische Universiteit Delft, copromotor Independent members: Prof. dr. H. Sips, Technische Universiteit Delft Prof. dr. N. H. G. Baken, Technische Universiteit Delft Prof. dr. T. Basten, Technische Universiteit Eindhoven, Netherlands Prof. dr. L. J. M Rothkrantz, Netherlands Defence Academy Prof. dr. D. N. Pnevmatikatos, Technical University of Crete, Greece Keywords: Multicore, Fault Tolerance, Reliability, Deterministic Execution, WCET The work in this thesis was supported by Artemis through the SMECY project (grant 100230). Cover image: An Artist’s impression of a view of Saturn from its moon Titan. The image was taken from http://www.istockphoto.com and used with permission. ISBN 978-94-6186-487-1 Copyright © 2015 by H. Mushtaq All rights reserved. No part of this publication may be reproduced, stored in a retrieval system or transmitted in any form or by any means without the prior written permission of the copyright owner.
    [Show full text]
  • CUDA Toolkit 4.2 CURAND Guide
    CUDA Toolkit 4.2 CURAND Guide PG-05328-041_v01 | March 2012 Published by NVIDIA Corporation 2701 San Tomas Expressway Santa Clara, CA 95050 Notice ALL NVIDIA DESIGN SPECIFICATIONS, REFERENCE BOARDS, FILES, DRAWINGS, DIAGNOSTICS, LISTS, AND OTHER DOCUMENTS (TOGETHER AND SEPARATELY, "MATERIALS") ARE BEING PROVIDED "AS IS". NVIDIA MAKES NO WARRANTIES, EXPRESSED, IMPLIED, STATUTORY, OR OTHERWISE WITH RESPECT TO THE MATERIALS, AND EXPRESSLY DISCLAIMS ALL IMPLIED WARRANTIES OF NONINFRINGEMENT, MERCHANTABILITY, AND FITNESS FOR A PARTICULAR PURPOSE. Information furnished is believed to be accurate and reliable. However, NVIDIA Corporation assumes no responsibility for the consequences of use of such information or for any infringement of patents or other rights of third parties that may result from its use. No license is granted by implication or otherwise under any patent or patent rights of NVIDIA Corporation. Specifications mentioned in this publication are subject to change without notice. This publication supersedes and replaces all information previously supplied. NVIDIA Corporation products are not authorized for use as critical components in life support devices or systems without express written approval of NVIDIA Corporation. Trademarks NVIDIA, CUDA, and the NVIDIA logo are trademarks or registered trademarks of NVIDIA Corporation in the United States and other countries. Other company and product names may be trademarks of the respective companies with which they are associated. Copyright Copyright ©2005-2012 by NVIDIA Corporation. All rights reserved. CUDA Toolkit 4.2 CURAND Guide PG-05328-041_v01 | 1 Portions of the MTGP32 (Mersenne Twister for GPU) library routines are subject to the following copyright: Copyright ©2009, 2010 Mutsuo Saito, Makoto Matsumoto and Hiroshima University.
    [Show full text]
  • Unit: 4 Processes and Threads in Distributed Systems
    Unit: 4 Processes and Threads in Distributed Systems Thread A program has one or more locus of execution. Each execution is called a thread of execution. In traditional operating systems, each process has an address space and a single thread of execution. It is the smallest unit of processing that can be scheduled by an operating system. A thread is a single sequence stream within in a process. Because threads have some of the properties of processes, they are sometimes called lightweight processes. In a process, threads allow multiple executions of streams. Thread Structure Process is used to group resources together and threads are the entities scheduled for execution on the CPU. The thread has a program counter that keeps track of which instruction to execute next. It has registers, which holds its current working variables. It has a stack, which contains the execution history, with one frame for each procedure called but not yet returned from. Although a thread must execute in some process, the thread and its process are different concepts and can be treated separately. What threads add to the process model is to allow multiple executions to take place in the same process environment, to a large degree independent of one another. Having multiple threads running in parallel in one process is similar to having multiple processes running in parallel in one computer. Figure: (a) Three processes each with one thread. (b) One process with three threads. In former case, the threads share an address space, open files, and other resources. In the latter case, process share physical memory, disks, printers and other resources.
    [Show full text]
  • A Short History of Computational Complexity
    The Computational Complexity Column by Lance FORTNOW NEC Laboratories America 4 Independence Way, Princeton, NJ 08540, USA [email protected] http://www.neci.nj.nec.com/homepages/fortnow/beatcs Every third year the Conference on Computational Complexity is held in Europe and this summer the University of Aarhus (Denmark) will host the meeting July 7-10. More details at the conference web page http://www.computationalcomplexity.org This month we present a historical view of computational complexity written by Steve Homer and myself. This is a preliminary version of a chapter to be included in an upcoming North-Holland Handbook of the History of Mathematical Logic edited by Dirk van Dalen, John Dawson and Aki Kanamori. A Short History of Computational Complexity Lance Fortnow1 Steve Homer2 NEC Research Institute Computer Science Department 4 Independence Way Boston University Princeton, NJ 08540 111 Cummington Street Boston, MA 02215 1 Introduction It all started with a machine. In 1936, Turing developed his theoretical com- putational model. He based his model on how he perceived mathematicians think. As digital computers were developed in the 40's and 50's, the Turing machine proved itself as the right theoretical model for computation. Quickly though we discovered that the basic Turing machine model fails to account for the amount of time or memory needed by a computer, a critical issue today but even more so in those early days of computing. The key idea to measure time and space as a function of the length of the input came in the early 1960's by Hartmanis and Stearns.
    [Show full text]
  • Deterministic Parallel Fixpoint Computation
    Deterministic Parallel Fixpoint Computation SUNG KOOK KIM, University of California, Davis, U.S.A. ARNAUD J. VENET, Facebook, Inc., U.S.A. ADITYA V. THAKUR, University of California, Davis, U.S.A. Abstract interpretation is a general framework for expressing static program analyses. It reduces the problem of extracting properties of a program to computing an approximation of the least fixpoint of a system of equations. The de facto approach for computing this approximation uses a sequential algorithm based on weak topological order (WTO). This paper presents a deterministic parallel algorithm for fixpoint computation by introducing the notion of weak partial order (WPO). We present an algorithm for constructing a WPO in almost-linear time. Finally, we describe Pikos, our deterministic parallel abstract interpreter, which extends the sequential abstract interpreter IKOS. We evaluate the performance and scalability of Pikos on a suite of 1017 C programs. When using 4 cores, Pikos achieves an average speedup of 2.06x over IKOS, with a maximum speedup of 3.63x. When using 16 cores, Pikos achieves a maximum speedup of 10.97x. CCS Concepts: • Software and its engineering → Automated static analysis; • Theory of computation → Program analysis. Additional Key Words and Phrases: Abstract interpretation, Program analysis, Concurrency ACM Reference Format: Sung Kook Kim, Arnaud J. Venet, and Aditya V. Thakur. 2020. Deterministic Parallel Fixpoint Computation. Proc. ACM Program. Lang. 4, POPL, Article 14 (January 2020), 33 pages. https://doi.org/10.1145/3371082 1 INTRODUCTION Program analysis is a widely adopted approach for automatically extracting properties of the dynamic behavior of programs [Balakrishnan et al.
    [Show full text]
  • Byzantine Fault Tolerance for Nondeterministic Applications Bo Chen
    BYZANTINE FAULT TOLERANCE FOR NONDETERMINISTIC APPLICATIONS BO CHEN Bachelor of Science in Computer Engineering Nanjing University of Science & Technology, China July, 2006 Submitted in partial fulfillment of the requirements for the degree MASTER OF SCIENCE IN COMPUTER ENGINEERING at the CLEVELAND STATE UNIVERSITY December, 2008 The thesis has been approved for the Department of ELECTRICAL AND COMPUTER ENGINEERING and the College of Graduate Studies by ______________________________________________ Thesis Committee Chairperson, Dr. Wenbing Zhao ____________________ Department/Date _____________________________________________ Dr. Yongjian Fu ______________________ Department/Date _____________________________________________ Dr. Ye Zhu ______________________ Department/Date ACKNOWLEDGEMENT First, I must thank my thesis supervisor, Dr. Wenbing Zhao, for his patience, careful thought, insightful commence and constant support during my two years graduate study and my career. I feel very fortunate for having had the chance to work closely with him and this thesis is as much a product of his guidance as it is of my effort. The other member of my thesis committee, Dr. Yongjian Fu and Dr. Ye Zhu suggested many important improvements to this thesis and interesting directions for future work. I greatly appreciate their suggestions. It has been a pleasure to be a graduate student in Secure and Dependable System Group. I want to thank all the group members: Honglei Zhang and Hua Chai for the discussion we had. I also wish to thank Dr. Fuqin Xiong for his help in advising the details of the thesis submission process. I am grateful to my parents for their support and understanding over the years, especially in the month leading up to this thesis. Above all, I want to thank all my friends who made my life great when I was preparing and writing this thesis.
    [Show full text]
  • Internally Deterministic Parallel Algorithms Can Be Fast
    Internally Deterministic Parallel Algorithms Can Be Fast Guy E. Blelloch∗ Jeremy T. Finemany Phillip B. Gibbonsz Julian Shun∗ ∗Carnegie Mellon University yGeorgetown University zIntel Labs, Pittsburgh [email protected] jfi[email protected] [email protected] [email protected] Abstract 1. Introduction The virtues of deterministic parallelism have been argued for One of the key challenges of parallel programming is dealing with decades and many forms of deterministic parallelism have been nondeterminism. For many computational problems, there is no in- described and analyzed. Here we are concerned with one of the herent nondeterminism in the problem statement, and indeed a se- strongest forms, requiring that for any input there is a unique de- rial program would be deterministic—the nondeterminism arises pendence graph representing a trace of the computation annotated solely due to the parallel program and/or due to the parallel ma- with every operation and value. This has been referred to as internal chine and its runtime environment. The challenges of nondetermin- determinism, and implies a sequential semantics—i.e., considering ism have been recognized and studied for decades [23, 24, 37, 42]. any sequential traversal of the dependence graph is sufficient for Steele’s 1990 paper, for example, seeks “to prevent the behavior analyzing the correctness of the code. In addition to returning deter- of the program from depending on any accidents of execution or- ministic results, internal determinism has many advantages includ- der that can arise from the indeterminacy” of asynchronous pro- ing ease of reasoning about the code, ease of verifying correctness, grams [42].
    [Show full text]
  • Entropy Harvesting in GPU[1] CUDA Code for Collecting Entropy
    CATEGORY: DEVELOPER - ALGORITHMS - DA12 POSTER CONTACT NAME P5292 Yongjin Yeom: [email protected] Using GPU as Hardware Random Number Generator Taeill Yoo, Yongjin Yeom Department of Financial Information Security, Kookmin University, South Korea Abstract Entropy Harvesting in GPU[1] Experiments . Random number generator (RNG) is expected to provide unbiased, unpredictable Race Condition during parallel computation on GPU: GPU: GTX780 (We successfully run the same experiments on 610M & 690, too) bit sequences. RNG collects entropy from the environments and accumulates it . Array Size: 512 elements . When two or more cores try to update shared resources, a race condition into the pool. Then from the entropy pool, RNG generates seed with high entropy . The number of iterations: 1,000 occurs inevitably and brings about an unexpected result. as input to the cryptographic algorithm called pseudo-random bit generator. The number of Threads: 512 . In general, it is important to avoid race conditions in parallel computing. Since the lack of entropy sources leads the output random bits predictable, it is . The number of experiments: 5 (colored lines in the graph below) . However, we raise race condition intentionally so as to collecting entropy important to harvest enough entropy from physical noise sources. Here, we show from the uncertainty. Random noise on GTX780 that we can harvest sufficient entropy from the race condition in parallel 15600 computations on GPU. According to the entropy estimations in NIST SP 800-90B, we measure the entropy obtained from NVIDIA GPU such as GTX690 and GTX780. 15580 Our result can be combined with high speed random number generating library 15560 like cuRAND.
    [Show full text]
  • Deterministic Atomic Buffering
    2020 53rd Annual IEEE/ACM International Symposium on Microarchitecture (MICRO) Deterministic Atomic Buffering Yuan Hsi Chou∗¶, Christopher Ng∗¶, Shaylin Cattell∗, Jeremy Intan†, Matthew D. Sinclair†, Joseph Devietti‡, Timothy G. Rogers§ and Tor M. Aamodt∗ ∗University of British Columbia, †University of Wisconsin, ‡University of Pennsylvania, §Purdue University AMD Research {yuanhsi, chris.ng}@ece.ubc.ca, [email protected], {intan, sinclair}@cs.wisc.edu, [email protected], [email protected], [email protected] ¶equal contribution Abstract—Deterministic execution for GPUs is a desirable property as it helps with debuggability and reproducibility. It is also important for safety regulations, as safety critical workloads are starting to be deployed onto GPUs. Prior deterministic archi- tectures, such as GPUDet, attempt to provide strong determinism for all types of workloads, incurring significant performance overheads due to the many restrictions that are required to satisfy determinism. We observe that a class of reduction workloads, such as graph applications and neural architecture search for machine Fig. 1: Simplified non-deterministic reduction example: Base- learning, do not require such severe restrictions to preserve 10, 3-digit precision, rounding up (details in Section III-B). determinism. This motivates the design of our system, Deter- ministic Atomic Buffering (DAB), which provides deterministic execution with low area and performance overheads by focusing such as autonomous agents and medical diagnostics, require solely on ordering atomic instructions instead of all memory reproducibility to ensure that systems meet specifications or instructions. By scheduling atomic instructions deterministically that experimental results can be replicated for verification [7], with atomic buffering, the results of atomic operations are [8].
    [Show full text]
  • Complexity Theory Lectures 1–6
    Complexity Theory 1 Complexity Theory Lectures 1–6 Lecturer: Dr. Timothy G. Griffin Slides by Anuj Dawar Computer Laboratory University of Cambridge Easter Term 2009 http://www.cl.cam.ac.uk/teaching/0809/Complexity/ Cambridge Easter 2009 Complexity Theory 2 Texts The main texts for the course are: Computational Complexity. Christos H. Papadimitriou. Introduction to the Theory of Computation. Michael Sipser. Other useful references include: Computers and Intractability: A guide to the theory of NP-completeness. Michael R. Garey and David S. Johnson. Structural Complexity. Vols I and II. J.L. Balc´azar, J. D´ıaz and J. Gabarr´o. Computability and Complexity from a Programming Perspective. Neil Jones. Cambridge Easter 2009 Complexity Theory 3 Outline A rough lecture-by-lecture guide, with relevant sections from the text by Papadimitriou (or Sipser, where marked with an S). Algorithms and problems. 1.1–1.3. • Time and space. 2.1–2.5, 2.7. • Time Complexity classes. 7.1, S7.2. • Nondeterminism. 2.7, 9.1, S7.3. • NP-completeness. 8.1–8.2, 9.2. • Graph-theoretic problems. 9.3 • Cambridge Easter 2009 Complexity Theory 4 Outline - contd. Sets, numbers and scheduling. 9.4 • coNP. 10.1–10.2. • Cryptographic complexity. 12.1–12.2. • Space Complexity 7.1, 7.3, S8.1. • Hierarchy 7.2, S9.1. • Descriptive Complexity 5.6, 5.7. • Cambridge Easter 2009 Complexity Theory 5 Complexity Theory Complexity Theory seeks to understand what makes certain problems algorithmically difficult to solve. In Data Structures and Algorithms, we saw how to measure the complexity of specific algorithms, by asymptotic measures of number of steps.
    [Show full text]
  • Optimal Oblivious RAM*
    OptORAMa: Optimal Oblivious RAM* Gilad Asharov Ilan Komargodski Wei-Kai Lin Bar-Ilan University NTT Research and Cornell University Hebrew University Kartik Nayak Enoch Peserico Elaine Shi VMware and Duke University Univ. Padova Cornell University November 18, 2020 Abstract Oblivious RAM (ORAM), first introduced in the ground-breaking work of Goldreich and Ostrovsky (STOC '87 and J. ACM '96) is a technique for provably obfuscating programs' access patterns, such that the access patterns leak no information about the programs' secret inputs. To compile a general program to an oblivious counterpart, it is well-known that Ω(log N) amortized blowup is necessary, where N is the size of the logical memory. This was shown in Goldreich and Ostrovksy's original ORAM work for statistical security and in a somewhat restricted model (the so called balls-and-bins model), and recently by Larsen and Nielsen (CRYPTO '18) for computational security. A long standing open question is whether there exists an optimal ORAM construction that matches the aforementioned logarithmic lower bounds (without making large memory word assumptions, and assuming a constant number of CPU registers). In this paper, we resolve this problem and present the first secure ORAM with O(log N) amortized blowup, assuming one-way functions. Our result is inspired by and non-trivially improves on the recent beautiful work of Patel et al. (FOCS '18) who gave a construction with O(log N · log log N) amortized blowup, assuming one-way functions. One of our building blocks of independent interest is a linear-time deterministic oblivious algorithm for tight compaction: Given an array of n elements where some elements are marked, we permute the elements in the array so that all marked elements end up in the front of the array.
    [Show full text]
  • Semantics and Concurrence Module on Semantic of Programming Languages
    Semantics and Concurrence Module on Semantic of Programming Languages Pietro Di Gianantonio Universit`adi Udine Presentation Module of 6 credits (48 hours), Semantics of programming languages Describe the behavior of programs in a formal and rigorous way. • We present 3 (2) different approaches, methods to semantics. • Methods applied to a series of, more and more complex, programming languages. Some topics overlapping the Formal Methods course. Prerequisite for: • Module of Concurrence (Lenisa), • Abstract Interpretation (Comini), • any formal and rigorous treatment of programs. Semantics of programming languages Objective: to formally describe the behavior of programs, and programming constructors. As opposed to informal definitions, commonly used. Useful for: • avoid ambiguity in defining a programming language: • highlight the critical points of a programming language (e.g. static-dynamic environment, evaluation and parameter passing) • useful in building compilers, • to reason about single programs (define logic, reasoning principles, programs): to prove that a given program to satisfy a give property, specification, that is correct. Semantic approaches • Operational Semantics, describes how programs are executed, not on a real calculator, too complex, on a simple formal machine (Turing machines style). • Structured Operational Semantic (SOS). The formal machine consists of a rewriting system: system of rules, syntax. Semantic approaches • Denotational Semantics. The meaning of a program described by a mathematical object. Partial function, element in an ordered set. An element of an ordered set represents the meaning of a program, part of the program, program constructor. Alternative, action semantics, semantic games, categorical. • Axiomatic Semantics. The meaning of a program expressed in terms of pre-conditions and post-conditions. Several semantics because none completely satisfactory.
    [Show full text]