The Efficient Server Audit Problem, Deduplicated Re-execution, and the Web

Cheng Tan, Lingfan Yu, Joshua B. Leners, Michael Walfish

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract

You put a program on a concurrent server, but you don’t trust the server; later, you get a trace of the actual requests that the server received from its clients and the responses that it delivered. You separately get logs from the server; these are untrusted. How can you use the logs to efficiently verify that the responses were derived from running the program on the requests? This is the Efficient Server Audit Problem, which abstracts real-world scenarios, including running a web application on an untrusted provider. We give a solution based on several new techniques, including simultaneous replay and efficient verification of concurrent executions. We implement the solution for PHP web applications. For several applications, our verifier achieves 5.6–10.9× speedup versus simply re-executing, with <10% overhead for the server.

Original languageEnglish (US)
Title of host publicationSOSP 2017 - Proceedings of the 26th ACM Symposium on Operating Systems Principles
PublisherAssociation for Computing Machinery, Inc
Pages546-564
Number of pages19
ISBN (Electronic)9781450350853
DOIs
StatePublished - Oct 14 2017
Event26th ACM Symposium on Operating Systems Principles, SOSP 2017 - Shanghai, China
Duration: Oct 28 2017Oct 31 2017

Publication series

NameSOSP 2017 - Proceedings of the 26th ACM Symposium on Operating Systems Principles

Other

Other26th ACM Symposium on Operating Systems Principles, SOSP 2017
CountryChina
CityShanghai
Period10/28/1710/31/17

ASJC Scopus subject areas

  • Computational Theory and Mathematics
  • Computer Science Applications
  • Software

Fingerprint Dive into the research topics of 'The Efficient Server Audit Problem, Deduplicated Re-execution, and the Web'. Together they form a unique fingerprint.

  • Cite this

    Tan, C., Yu, L., Leners, J. B., & Walfish, M. (2017). The Efficient Server Audit Problem, Deduplicated Re-execution, and the Web. In SOSP 2017 - Proceedings of the 26th ACM Symposium on Operating Systems Principles (pp. 546-564). (SOSP 2017 - Proceedings of the 26th ACM Symposium on Operating Systems Principles). Association for Computing Machinery, Inc. https://doi.org/10.1145/3132747.3132760