Abstract
Auditability is a crucial aspect of distributed computing security. In a distributed computation environment, we may therefore want to prevent corrupt processes from denying or forging causal relationships between events. The audit of causal relationships of group multicast communications is an important component in achieving a solution to the problem of group-oriented distributed computing security. In this paper, a new approach to audit causal relationships of group multicast communications in group-oriented distributed systems is proposed. The goal of the auditing service is to collect, maintain, make available, and validate irrefutable evidence regarding causal relationships in group-oriented distributed systems. We affirm that the denial of existing causal relationships and the forgery of nonexistent causal relationships in group-oriented distributed systems can be correctly audited by our proposed approach. Also, auditing the causal delivery ordering for group multicast communications can actually be achieved. Moreover, we have validated the proposed auditing scheme to a moderately complex example. Experience indicates that the proposed scheme is indeed very useful.
Similar content being viewed by others
References
L. Lamport. Time, clocks, and the ordering of events in a distributed system. Communications of the ACM, 21:558-565, 1978.
L. L. Peterson, N. C. Buchholz, and R. D. Schlichting. Preserving and using context information in interprocess communication. ACM Transactions on Computer Systems, 7:217-246, 1989.
M. P. Herlihy and J. M. Wing. Linearizability: a correctness condition for concurrent objects. ACM Transactions on Programming Languages and Systems, 12:463-492, 1990.
F. B. Schneider. Implementing fault-tolerant services using the state machine approach: a tutorial. ACM Computing Surveys, 22:299-319, 1990.
K. P. Birman, A. Schiper, and P. Stephenson. Lightweight causal and atomic group multicast. ACM Transactions on Computer Systems, 9:272-314, 1991.
R. Ladin, B. Liskov, L. Shrira, and S. Ghemawat. Providing high availability using lazy replication. ACM Transactions on Computer Systems, 10:360-391, 1992.
E. Fromentin and M. Raynal. Local states in distributed computations: a few relations and formulas. ACM Operating Systems Review, 28:65-72, 1994.
B. Charron-Bost, F. Mattern, and G. Tel. Synchronous, asynchronous, and causally ordered communication. Distributed Computing, 9:173-191, 1996.
K. P. Birman, R. Cooper, and B. Gleeson. Design alternatives for group process membership and multicast. Technical Report 91-1257. Department of Computer Science, Cornell University, 1991.
M. Reiter and L. Gong. Securing causal relationships in distributed systems. The Computer Journal, 38:633-642, 1995.
J. A. Goguen and J. Meseguer. Security policies and security models. IEEE Symposium on Security and Privacy, pp. 18-32, 1982.
M. K. Reiter, K. P. Birman, and L. Gong. Integrating security in a group-oriented distributed system, IEEE Symposium on Research in Security and Privacy, pp. 18-32, 1992.
A. D. Birrell. Secure communication using remote procedure calls. ACM Transactions on Computer Systems, 3:1-14, 1985.
M. Satyanarayanan. Integrating security in a large distributed system. ACM Transactions on Computer Systems, 7:247-280, 1989.
B. Lampson, M. Abadi, M. Burrows, and E. Wobber. Authentication in distributed systems: theory and practice. ACM Symposium on Operating Systems Principles, pp. 165-182, 1991.
J. K. Ousterhout, D. A. Scelza, and P. S. Sindhu. Medusa: an experiment in distributed operating system structure. Communications of the ACM, 23:92-105, 1980.
D. R. Cheriton and W. Zwaenepoel. Distributed process groups in the V kernel. ACM Transactions on Computing Systems, 3:77-107, 1985.
K. P. Birman and T. A. Joseph. Reliable communication in the presence of failures. ACM Transactions on Computer Systems, 5:47-76, 1987.
M. Rozier et al. Overview of the Chorus distributed operating systems. Technical report CS/TR-90-25. Chorus Systems, April 1990.
R. Ladin, B. Liskov, and L. Shrira. Lazy replication: exploiting the semantics of distributed services. ACM Symposium on Principles of Distributed Computing, pp. 43-57, 1990.
F. M. Kaashoek and A. S. Tanenbaum. Group communication in the Amoeba distributed operating system. IEEE International Conference on Distributed Computing Systems, pp. 222-230, May 1991.
K. Birman and R. Cooper. The ISIS project: real experience with a fault tolerant programming system. ACM Operating Systems Review, 25:103-107, 1991.
The ISIS Group. The restructuring of ISIS for modern distributed operating systems. Internal Cornell Report, September 1991.
A. Ricciardi and K. Birman. Using process groups to implement failure detection in asynchronous environments. ACM Symposium on Principles of Distributed Computing, pp. 341-353, Montreal, Quebec, Canada, August 19–21, 1991.
M. Beck, K. Birman, R. Cooper, and S. Toueg. A fault tolerant extension of the Chorus nucleus. Internal Cornell Report, January 1991.
H. Garcia-Molina and A. Spauster. Ordered and reliable multicast communication. ACM Transactions on Computer Systems, 9:242-271, 1991.
M. Jones, S. Sorensen, and S. Wilbur. Protocol design for large group multicasting: the message distribution protocol. Computer Communications, 14:287-297, 1991.
R. van Renesse, K. Birman, R. Cooper, B. Glade, and P. Stephenson. Reliable multicast between microkernels. The USENIX Workshop on Micro-Kernels and Other Kernel Architectures, pp. 269-283, Seattle, Wash., April 27–28, 1992.
R. van Renesse and K. Birman. Fault-tolerant programming using process groups. In F. M. T. Brazier and D. Johansen, ed., Distributed Open Systems, pp. 96-112. IEEE Computer Society Press, Los Alamitos, Calif., 1994.
R. Aiello, E. Pagani, and G. P. Rossi. Causal ordering in reliable group communications. ACM SIGCOMM'93, pp. 106-115, 1993.
Y. Amir, D. Dolev, S. Kramer, and D. Malki. Transis: a communication sub-system for high availability. IEEE FTCS-22, pp. 76-84, 1993.
A. Nakamura and M. Takizawa. Causally ordering broadcast protocol. IEEE ICDCS-14, pp. 48-55, 1994.
N. Shiratori, K. Sugawara, T. Kinoshita, and G. Chakraborty. Flexible networks: basic concepts and architecture. IEICE Transactions on Communications, E77-B:1287-1294, 1994.
T. Tachikawa and M. Takizawa. Selective total ordering broadcast protocol. IEEE ICNP-94, pp. 212-219, 1994.
F. Adelstein and M. Singhal. Real-time causal message ordering in multimedia systems. IEEE ICDCS-15, pp. 36-43, 1995.
Y. Amir, L. E. Moser, P. M. Melliar-Smith, D. A. Agarwal, and P. Ciarfella. The Totem single-ring ordering and membership protocol. ACM Transactions on Computer Systems, 13:311-342, 1995.
R. Baldoni, A. Mostefaoui, and M. Raynal. Efficient causally ordered communications for multimedia real-time applications. IEEE HPDC-4, pp. 140-147, 1995.
H. W. Holbrook, S. K. Singhal, and D. R. Cheriton. Log-based receiver-reliable multicast for distributed interactive simulation. ACM SIGCOMM'95, pp. 328-341, 1995.
M. K. Reiter. The rampart toolkit for building high-integrity services. Theory and Practice in Distributed Systems, Lecture Notes in Computer Science, Vol. 938, pp. 99-110, Springer-Verlag, Berlin, 1995.
T. Tachikawa and M. Takizawa. Distributed protocol for selective intra-group communication. IEEE ICNP'95, pp. 234-241, 1995.
Y. Desmedt. Society and group-oriented cryptography: a new concept. CRYPTO'87, pp. 120-127, August 1987.
Y. Frankel. A practical protocol for large group-oriented networks. EUROCRYPT'89, pp. 56-61, April 1989.
C. S. Laih and L. Harn. Generalized threshold cryptosystems. ASIACRYPT'91, pp. 251-255, November 1991.
Y. Desmedt, Y. Frankel, and M. Yung. Multi-receiver/multi-sender network security: efficient authenticated multicast/feedback, IEEE INFOCOM, pp. 336-345, May 1992.
M. Takizawa and H. Mita. Secure group communication protocol for distributed systems. The 17th IEEE International Conference on Computer Software and Applications, pp. 159-165, 1993.
L. Lamport. On interprocess communication: part I basic formalism and part II algorithm. Distributed Computing, 1:77-101, 1986.
F. Mattern. Virtual time and global states of distributed system. International Workshop on Parallel and Distributed Algorithms, pp. 215-226, 1989.
C. J. Fidge. Timestamps in message-passing systems that preserve partial ordering. The 11th Australian Computer Science Conference, pp. 56-66, February 1988.
R. Schwarz and F. Mattern. Detecting causal relationships in distributed computations: in search of the Holy Grail. Distributed Computing, 7:149-174, 1994.
O. Babaoglu and K. Marzullo. Consistent global states of distributed systems: fundamental concepts and mechanisms. In S. J. Mullender, ed., Distributed Systems, 2nd ed., chapter 4, pp. 55-96. Addison-Wesley, Reading, Mass., 1993.
C. V. Ramamoorthy, W. T. Tsai, T. Yamaura, and A. Bhide. Metrics guided methodology. The 9th IEEE Computer Software and Applications Conference, pp. 111-120, 1985.
A. Geist, A. Beguelin, J. Dongarra, W. Jiang, R. Manchek, and V. Sunderam. PVM: Parallel Virtual Machine-A Users' Guide and Tutorial For Networked Parallel Computing. The MIT Press, Cambridge, Mass., 1994.
W. J. Tsaur and S. J. Horng. A new generalized distributed software complexity analysis and its applications. Technical Report TR-1998-EE-006. Department of Electrical Engineering, National Taiwan University of Science and Technology, Taiwan, R.O.C., June 1998.
A. A. Arens and J. K. Loebbecke. Auditing-An Integrated Approach. Prentice Hall, Englewood Cliffs, N.J., 1994.
S. M. Shatz. Towards complexity metrics for Ada tasking. IEEE Transactions on Software Engineering, 14:1122-1127, 1988.
M. Shepperd. Foundations of Software Measurement. Prentice Hall, Englewood Cliffs, N.J., 1995.
N. E. Fenton and S. L. Pfleeger. Software Metrics: A Rigorous and Practical Approach. 2nd ed., International Thomson Computer Press, London, UK, 1996.
M. J. Fischer, N. D. Griffeth, and N. A. Lynch. Global states of a distributed system. IEEE Trans. on Software Engineering, SE-8:198-202, 1982.
E. Fromentin and M. Raynal. Characterizing and detecting the set of global states seen by all observers of a distributed computation. The 15th IEEE International Conference on Distributed Computing Systems, pp. 431-438, 1995.
M. Ahuja, A. D. Kshemkalyani, and T. Carlson. A basic unit of computation in distributed systems. The 10th IEEE International Conference on Distributed Computing Systems, pp. 12-19, 1990.
M. Ahuja and S. Mishra. Units of computation in fault-tolerant distributed systems. The 14th IEEE International Conference on Distributed Computing Systems, pp. 626-633, 1994.
T. Elrad and N. Francez. Decomposition of distributed program into communication-closed layer. Science of Computer Programming, 2:155-163, 1982.
T. Kunz. Visualizing abstract events. The 1994 CAS Conference, pp. 334-343, Toronto, Ontario, Canada, 1994. IBM Canada Ltd. Laboratory, Centre for Advanced Studies.
T. Basten, T. Kunz, J. P. Black, M. H. Coffin, and D. J. Taylor. Time and the order of abstract events in distributed computations. Computing Science Note 94/06, Eindhoven University of Technology, Department of Mathematics and Computing Science, Eindhoven, 1994.
T. Basten, T. Kunz, J. P. Black, M. H. Coffin, and D. J. Taylor. Vector time and causality among abstract events in distributed computations. Distributed Computing, 11:21-39, 1997.
P. C. Bates. Debugging heterogeneous distributed systems using event-based models of behavior. ACM Transactions on Computer Systems, 13:1-31, 1995.
J. Kundu and J. E. Cuny. A scalable, visual interface for debugging with event-based behavioral abstraction. The 5th Symposium on the Frontiers of Massively Parallel Computation (Frontiers '95), pp. 472-479, 1995.
G. Bruce and B. Dempsey. Security in Distributed Computing: Did You Lock the Door? Prentice Hall, Upper Saddle River, N.J., 1997.
Author information
Authors and Affiliations
Rights and permissions
About this article
Cite this article
Tsaur, WJ., Horng, SJ. Auditing Causal Relationships of Group Multicast Communications in Group-Oriented Distributed Systems. The Journal of Supercomputing 18, 25–45 (2001). https://doi.org/10.1023/A:1008158907662
Issue Date:
DOI: https://doi.org/10.1023/A:1008158907662