Title :
Distributing trust on the Internet
Author :
Cachin, Christian
Author_Institution :
IBM Res. Div., Zurich, Switzerland
Abstract :
This paper describes an architecture for secure and fault-tolerant service replication in an asynchronous network such as the Internet, where a malicious adversary may corrupt some servers and control the network. It relies on recent protocols for randomized Byzantine agreement and for atomic broadcast, which exploit concepts from threshold cryptography. The model and its assumptions are discussed in detail and compared to related work from the last decade in the first part of this work, and an overview of the broadcast protocols in the architecture is provided. The standard approach in fault-tolerant distributed systems is to assume that at most a certain fraction of servers fails. In the second part, novel general failure patterns and corresponding protocols are introduced. The allow for realistic modeling of real-world trust assumptions, beyond (weighted) threshold models. Finally, the application of our architecture to trusted services is discussed.
Keywords :
Internet; cryptography; telecommunication security; transport protocols; Internet; asynchronous network; atomic broadcast; broadcast protocols; distributing trust; fault-tolerant service replication; malicious adversary; protocols; randomized Byzantine agreement; real-world trust assumptions; secure service replication; threshold cryptography; threshold models; trusted services; Broadcasting; Cryptographic protocols; Cryptography; Fault tolerant systems; IP networks; Laboratories; Network servers; Protection; Web and internet services; Web server;
Conference_Titel :
Dependable Systems and Networks, 2001. DSN 2001. International Conference on
Conference_Location :
Goteborg, Sweden
Print_ISBN :
0-7695-1101-5
DOI :
10.1109/DSN.2001.941404
