Distributing trust on the Internet

Author

Cachin, Christian

Author_Institution

IBM Res. Div., Zurich, Switzerland

fYear

2001

fDate

1-4 July 2001

Firstpage

183

Lastpage

192

Abstract

This paper describes an architecture for secure and fault-tolerant service replication in an asynchronous network such as the Internet, where a malicious adversary may corrupt some servers and control the network. It relies on recent protocols for randomized Byzantine agreement and for atomic broadcast, which exploit concepts from threshold cryptography. The model and its assumptions are discussed in detail and compared to related work from the last decade in the first part of this work, and an overview of the broadcast protocols in the architecture is provided. The standard approach in fault-tolerant distributed systems is to assume that at most a certain fraction of servers fails. In the second part, novel general failure patterns and corresponding protocols are introduced. The allow for realistic modeling of real-world trust assumptions, beyond (weighted) threshold models. Finally, the application of our architecture to trusted services is discussed.

Keywords

Internet; cryptography; telecommunication security; transport protocols; Internet; asynchronous network; atomic broadcast; broadcast protocols; distributing trust; fault-tolerant service replication; malicious adversary; protocols; randomized Byzantine agreement; real-world trust assumptions; secure service replication; threshold cryptography; threshold models; trusted services; Broadcasting; Cryptographic protocols; Cryptography; Fault tolerant systems; IP networks; Laboratories; Network servers; Protection; Web and internet services; Web server;

fLanguage

English

Publisher

ieee

Conference_Titel

Dependable Systems and Networks, 2001. DSN 2001. International Conference on

Conference_Location

Goteborg, Sweden

Print_ISBN

0-7695-1101-5

Type

conf

DOI

10.1109/DSN.2001.941404

Filename

941404