CPS 212 (Duke University) Distributed * Systems

Introduction: Scalable Services and Their State

We start by discussing the motivation for incrementally scalable systems, the structure of cloud services and Internet-scale services, and some of the challenges that they face. We introduce some basic topics in managing data for these services: recovery and consistency.

Slides for the first class [PPT]
[Vogels09] Werner Vogels. Eventually consistent. Communications of the ACM, 52(1):40-44, 2009. [ bib | DOI ]
[BJW87] A. Birrell, M. Jones, and E. Wobber. A simple and efficient implementation of a small database. In SOSP '87: Proceedings of the eleventh ACM Symposium on Operating Systems Principles, pages 149-154, 1987. ACM. [ bib | DOI ]
Slides for 9/3 and 9/8: services and their state [PPT
Some study questions on consistency etc.

State Partitioning and Coordination

This unit addresses two closely related needs for scalable services: distribute state and functions across the participating servers, and coordinate control and ownership of data in a way that is resistant to failures. The focus is on basic techniques that appear in many different systems: leased locks, hashed key/value stores, and consistent hashing. We also discuss relationships to data consistency and recovery.

[Centrifuge10] Atul Adya (Google), John Dunagan and Alec Wolman (Microsoft Research). Centrifuge: Integrated Lease Management and Partitioning for Cloud Services . In NSDI'10: Proceedings of the 7th Symposium on Networked Systems Design and Implementation, April 2010.
Slides for 9/8 and 9/10: state partitioning and coordination [PPT]
Slides for 9/10: Centrifuge slides from Alec Wolman [PPTX]. Please do not distribute.
Some study questions on Centrifuge etc.
Optional paper: [Porcupine99] Yashushi Saito, Brian Bershad, and Hank Levy. Manageability, availability and performance in Porcupine: a highly scalable, cluster-based mail service. In SOSP '99: 17th ACM Symposium on Operating Systems Principles, December 1999.
Optional paper: [Chubby06] Mike Burrows. The Chubby lock service for loosely-coupled distributed systems. In OSDI '06: Proceedings of the 7th Symposium on Operating Systems Design and Implementation, pages 335-350, November 2006. USENIX Association. [ bib ]
Optional paper:[Karger97] David Karger, Eric Lehman, Tom Leighton, Rina Panigrahy, Matthew Levine, and Daniel Lewin. Consistent hashing and random trees: distributed caching protocols for relieving hot spots on the WWW. In STOC '97: Proceedings of the Twenty-ninth Annual ACM Symposium on Theory of Computing, pages 654-663, New York, NY, USA, 1997. ACM. [ bib | DOI ]

Name Services and DNS

This unit is a first look at large-scale multi-domain services, using the Domain Name Service as an example. New issues: data integrity and security of ownership, location, and control. We discuss the current DNS implementation, security extensions (DNSSEC), and an alternative implementation based on a distributed key-value store (DHT). Model-driven caching (with Zipf distributions) is also useful for Web caching and other areas as well, but we won't be too concerned with the models themselves.

[CoDoNS04] Venugopalan Ramasubramanian and Emin Gün Sirer. The design and implementation of a next generation name service for the Internet. In SIGCOMM '04: Proceedings of the 2004 conference on Applications, technologies, architectures, and protocols for computer communications, pages 331-342, August 2004. ACM. [ bib | DOI ]
Slides for 9/15 and 9/17 [PPT]
Background slides on crypto from CPS 210 [PPT]
CoDoNS slides [PPT]
Tutorial on DNS and DNSSEC
Some study questions on CoDoNS etc.

A Wide-area File Store on a DHT

Pond is a prototype of an ambitious architecture for a wide-area file store with a configurable consistency model, called OceanStore. Like CoDoNS it is based on a distributed hash table (a DHT system called Tapestry) with replication, and it uses hashing and signing with public key cryptography. Pond also gives a first look at Byzantine fault tolerance (BFT), primary-copy replication, erasure codes for redundancy, version trees and snapshot history ("time travel"), and Merkle trees. The important points to focus on are how Oceanstore maps a file abstraction with configurable consistency and snapshots onto the underlying key-value store, and keeps it robust and secure across a wide range of failures of its components.

[Pond03] Sean Rhea, Patrick Eaton, Dennis Geels, Hakim Weatherspoon, Ben Zhao, and John Kubiatowicz. Pond: The OceanStore Prototype. In FAST '03: Proceedings of the 2nd USENIX Conference on File and Storage Technologies, pages 1-14, April 2003. [[PDF] [ bib ]
Slides for 9/22 [PPT]
DHTs in pictures: DHT animations by Sean Rhea [PPT]
Author's slides for [Pond03] [PPT]

Scalable File Systems

These systems illustrate a good continuum of redundancy schemes and various degrees of metadata decentralization. Like Pond (and Centrifuge and CoDoNs) they use primary write protocols (e.g., primary/backup replication).

[GFS03] Sanjay Ghemawat, Howard Gobioff, and Shun-Tak Leung. The Google File System. In the Proceedings of the ACM Symposium on Operating Systems Principles (SOSP), pages 29-43, October 2003. ACM. [ bib | DOI ]
Slides for 9/29 and 10/1 [PPT]
Authors' GFS slides [PDF]
[Ceph06] Sage A. Weil, Scott A. Brandt, Ethan L. Miller, Darrell D. E. Long, and Carlos Maltzahn. Ceph: a scalable, high-performance distributed file system. In OSDI '06: Proceedings of the 7th Symposium on Operating Systems Design and Implementation, pages 307-320, November 2006. USENIX Association. [Ceph website [ bib ]
Authors' Ceph slides [PPT]
Optional: [Crush06] Sage A. Weil, Scott A. Brandt, Ethan L. Miller, and Carlos Maltzahn. CRUSH: controlled, scalable, decentralized placement of replicated data. In SC '06: Proceedings of the 2006 ACM/IEEE conference on Supercomputing, page 122, New York, NY, USA, 2006. ACM. [ bib | DOI ]

Brick Storage with Voting

These systems illustrate uses of voting protocols as an alternative to primary schemes.

Slides for 10/6-8 [PPT]
Authors' SSM slides [PPT]
[SSM04] Benjamin C. Ling, Emre Kiciman, and Armando Fox. Session state: beyond soft state. In NSDI'04: Proceedings of the 1st conference on Symposium on Networked Systems Design and Implementation, pages 22-22, Berkeley, CA, USA, 2004. USENIX Association. [ bib ]

[FAB04] Yasushi Saito, Svend Frølund, Alistair Veitch, Arif Merchant, and Susan Spence. FAB: building distributed enterprise disk arrays from commodity components. In ASPLOS-XI: Proceedings of the Eleventh Conference on Architectural Support for Programming Languages and Operating Systems (ASPLOS), October 2004. [ bib | DOI ]
Slides for 10/13 and 10/20 [PPT]
Some study questions on FAB etc.

Scalable Key/Value Stores

We discuss related approaches for scalable state storage by major application service providers, e.g., Yahoo and Facebook. These readings are optional.

[PNUTS08] Optional: Brian F. Cooper, Raghu Ramakrishnan, Utkarsh Srivastava, Adam Silberstein, Philip Bohannon, Hans-Arno Jacobsen, Nick Puz, Daniel Weaver, and Ramana Yerneni. PNUTS: Yahoo!'s hosted data serving platform. Proc. VLDB Endow., 1(2):1277-1288, 2008. [ bib | DOI ]
[Dynamo07] Optional: Giuseppe DeCandia, Deniz Hastorun, Madan Jampani, Gunavardhan Kakulapati, Avinash Lakshman, Alex Pilchin, Swaminathan Sivasubramanian, Peter Vosshall, and Werner Vogels. Dynamo: Amazon's highly available key-value store. In SOSP '07: Proceedings of twenty-first ACM SIGOPS symposium on Operating systems principles, pages 205-220, New York, NY, USA, 2007. ACM. [ bib | DOI ]
[Cassandra09]. Optional: Avinash Lakshman and Prashant Malik. Cassandra: a decentralized structured storage system. SIGOPS Oper. Syst. Rev., 44(2):35-40, 2010. [ bib | DOI ]
Asynchronous Replication, Clocks, and Consistency
Optimistic replication and related material dealing with event ordering, logical clocks, and vector clocks.

Slides for 10/22 and 10/27 [PPT]
[Lamport78] Leslie Lamport. Time, clocks, and the ordering of events in a distributed system. Commun. ACM, 21(7):558-565, 1978. [ bib | DOI ]
We discuss two papers from the Bayou system. A good overview of Bayou can be found in the revisionist summary paper:
The Case for Non-transparent Replication: Examples from Bayou. By D. B. Terry, K. Petersen, M. J. Spreitzer, and M. M. Theimer. IEEE Data Engineering, December 1998, pages 12-20.
But we want to get into the specifics of how asynchronous replication protocols work. For that we will need to dig into the SOSP 1997 paper:

[Bayou97] Karin Petersen, Mike J. Spreitzer, Douglas B. Terry, Marvin M. Theimer, and Alan J. Demers. Flexible update propagation for weakly consistent replication. In SOSP '97: Proceedings of the Sixteenth ACM Symposium on Operating Systems Principles, October 1997. ACM. [PDF] [ bib | DOI ]
Consensus
We discuss the Paxos algorithm in depth, touch on Byzantine consensus and Byzantine Fault Tolerance (BFT), and discuss the Fox/Brewer "CAP Theorem" and how it relates to the various systems we studied.

[LampsonConsensus] How to build highly available systems with consensus, by Butler Lampson. This paper teaches more than Paxos, but I think it is the best source for understanding Paxos.
Slides for 11/5 [PPT]
[CastroBFT02] Miguel Castro and Barbara Liskov. Practical Byzantine fault tolerance and proactive recovery. ACM Transactions on Computing Systems, 20(4):398-461, 2002. [ bib | DOI ]
Authentication, Authorization, and Accountability

Slides for 11/19 [PPT]

[BAN90] Michael Burrows, Martin Abadi, and Roger Needham. A logic of authentication. ACM Trans. Comput. Syst., 8(1):18-36, 1990. [ bib | DOI ]

[CATS07] Aydan R. Yumerefendi and Jeffrey S. Chase. Strong accountability for network storage. Trans. Storage, 3(3):11, 2007. [ bib | DOI ]

Topics

[Antfarm09]	Ryan S. Peterson and Emin Gün Sirer. Antfarm: efficient content distribution with managed swarms. In NSDI'09: Proceedings of the 6th USENIX symposium on Networked Systems Design and Implementation, pages 107-122, April 2009. USENIX Association. [ bib ]
[Remus08]	Brendan Cully, Geoffrey Lefebvre, Dutch Meyer, Mike Feeley, Norm Hutchinson, and Andrew Warfield. Remus: high availability via asynchronous virtual machine replication. In NSDI'08: Proceedings of the 5th USENIX Symposium on Networked Systems Design and Implementation, pages 161-174, April 2008. USENIX Association. [ bib ]

[BAN90]	Michael Burrows, Martin Abadi, and Roger Needham. A logic of authentication. ACM Trans. Comput. Syst., 8(1):18-36, 1990. [ bib \| DOI ]
[CATS07]	Aydan R. Yumerefendi and Jeffrey S. Chase. Strong accountability for network storage. Trans. Storage, 3(3):11, 2007. [ bib \| DOI ]