Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Byzantine fault tolerance for peer-to-peer collaboration

Martin Kleppmann
October 19, 2023
Research
0
620

Byzantine fault tolerance for peer-to-peer collaboration

Slides from a talk at KASTEL Distinguished Lecture Series, given at Karlsruhe Institute of Technology, Germany on 19 October 2023.
https://cybersec.kcist.kit.edu/473.php
https://martin.kleppmann.com/2023/10/19/kastel-distinguished-lecture.html

Abstract:

When developing web applications, the number one security rule is that the server should never trust anything it receives from clients. When developing peer-to-peer software, the equivalent rule is that a peer should never trust anything it receives from other peers. Unfortunately, many researchers working on peer-to-peer applications seem to have forgotten this rule. There have been efforts to build, for example, P2P equivalents of Google Docs, but they mostly assume trusted peers that correctly follow the protocol. A malicious peer can easily cause permanent inconsistencies in a document.

This talk will introduce our work-in-progress research on making collaboration software robust against malicious (Byzantine) peers. Hint: there are no consensus algorithms and no blockchains involved!

Martin Kleppmann

October 19, 2023
Tweet

More Decks by Martin Kleppmann

See All by Martin Kleppmann
Where local-first came from and where it's going
ept
0
1k
New algorithms for collaborative text editing
ept
0
720
Creating local-first collaboration software with Automerge
ept
0
1.8k
Collaborative editing through a databases lens
ept
0
2.2k
Making CRDTs Byzantine fault tolerant
ept
0
2.2k
Protecting user agency with local-first software
ept
0
750
Automerge: a new foundation for collaboration software
ept
1
760
Byzantine Eventual Consistency and the Fundamental Limits of Peer-to-peer Databases
ept
1
300
Harm reduction for cryptographic backdoors
ept
0
270

Other Decks in Research

See All in Research
2024-01-23-az
sofievl
1
750
説明可能AI:代表的手法と最近の動向 
yuyay
1
600
自己教師あり学習による事前学習(CVIMチュートリアル)
naok615
2
1.4k
Target trial emulationの概要
shuntaros
2
1.1k
研究効率化Tips_2024 / Research Efficiency Tips 2024
ryo_nakamura
5
2.8k
Combating Misinformation in the age of LLMs
teacherpeterpan
0
130
LiDARセキュリティ最前線
kentaroy47
0
280
SANER 2019 Most Influential Paper Talk
tsantalis
0
120
NeurIPS-23 参加報告 + DPO 解説
akifumi_wachi
4
1.5k
ニフティのインナーソース導入事例 - InnerSource Commons #11
niftycorp
PRO
0
260
Gmail の「メール送信者のガイドライン」強化から 1 ヵ月、今後予想されるメールセキュリティの変化とは
hirachan
1
250
Trezor Safe 3 ファーストインプレッション
toshihr
0
190

Featured

See All Featured
How GitHub (no longer) Works
holman
304
140k
Robots, Beer and Maslow
schacon
PRO
155
7.9k
Designing for humans not robots
tammielis
248
25k
Code Review Best Practice
trishagee
55
15k
Bash Introduction
62gerente
604
210k
A designer walks into a library…
pauljervisheath
200
23k
Build your cross-platform service in a week with App Engine
jlugia
225
17k
Infographics Made Easy
chrislema
238
18k
Exploring the Power of Turbo Streams & Action Cable | RailsConf2023
kevinliebholz
2
3.4k
Rebuilding a faster, lazier Slack
samanthasiow
73
8.2k
The World Runs on Bad Software
bkeepers
PRO
61
6.7k
The Psychology of Web Performance [Beyond Tellerrand 2023]
tammyeverts
6
1.5k

Transcript

  1. None

  2. Figma

  3. None
  4. None
  5. None
  6. None

  7. 7

  8. 8

  9. 9

  10. None
  11. None
  12. None
  13. None
  14. None
  15. None
  16. None
  17. None

  18. 18

  19. None
  20. None
  21. None

  22. 22 https://arxiv.org/abs/2012.00472

  23. None
  24. None
  25. None
  26. None
  27. None
  28. None
  29. None
  30. None
  31. None
  32. None
  33. None
  34. None
  35. None
  36. None
  37. None
  38. None
  39. None
  40. None
  41. None

  42. work in progress

  43. None
  44. None
  45. None
  46. None
  47. None
  48. None
  49. None
  50. None
  51. None
  52. None
  53. None
  54. None
  55. None
  56. None
  57. None
  58. None
  59. None
  60. None
  61. None
  62. None
  63. None
  64. None
  65. None
  66. None
  67. None
  68. None
  69. None
  70. None
  71. None
  72. None
  73. None
  74. None
  75. None
  76. None
  77. None
  78. None
  79. None
  80. None
  81. None

  82. References • M. Kleppmann. Making CRDTs Byzantine Fault Tolerant. PaPoC

    2022. doi:10.1145/3517209.3524042 • M. Kleppmann, H. Howard. Byzantine Eventual Consistency and the Fundamental Limits of Peer-to-Peer Databases. Preprint, 2020. https://arxiv.org/abs/2012.00472 • M. Weidner, M. Kleppmann, D. Hugenroth, A.R. Beresford. Key Agreement for Decentralized Secure Group Messaging with Strong Security Guarantees. ACM CCS 2021. doi:10.1145/3460120.3484542 • D. Hugenroth, M. Kleppmann, A.R. Beresford. Rollercoaster: An Efficient Group-Multicast Scheme for Mix Networks. USENIX Security 2021 • S.A. Kollmann, M. Kleppmann, A.R. Beresford. Snapdoc: Authenticated snapshots with history privacy in peer-to-peer collaborative editing. PETS 2019. doi:10.2478/popets-2019-0044 • M. Kleppmann, A. Wiggins, P. van Hardenberg, M. McGranaghan. Local- first software: You own your data, in spite of the cloud. Onward! 2019. doi:10.1145/3359591.3359737 • More at https://martin.kleppmann.com 82