Abstract | ||
---|---|---|
We introduce Avocado, a secure in-memory distributed storage system that provides strong security, fault-tolerance, consistency (linearizability) and performance for untrusted cloud environments. Avocado achieves these properties based on TEEs, which, however, are primarily designed for securing limited physical memory (enclave) within a single-node system. Avocado overcomes this limitation by extending the trust of a secure single-node enclave to the distributed environment over an untrusted network, while ensuring that replicas are kept consistent and fault-tolerant in a malicious environment.To achieve these goals, we design and implementAvocado underpinning on the cross-layer contributions involving the network stack, the replication protocol, scalable trust establishment, and memory management. Avocado is practical: In comparison to BFT, Avocado provides confidentiality with fewer replicas and is significantly faster -4.5x to 65x for YCSB read and write heavy workloads, respectively. |
Year | Venue | DocType |
---|---|---|
2021 | PROCEEDINGS OF THE 2021 USENIX ANNUAL TECHNICAL CONFERENCE | Conference |
Citations | PageRank | References |
0 | 0.34 | 0 |
Authors | ||
6 |
Name | Order | Citations | PageRank |
---|---|---|---|
Maurice Bailleu | 1 | 0 | 0.68 |
Dimitra Giantsidi | 2 | 0 | 0.68 |
Vasilis Gavrielatos | 3 | 6 | 2.53 |
Do Le Quoc | 4 | 0 | 0.34 |
Vijay Nagarajan | 5 | 340 | 23.25 |
Pramod Bhatotia | 6 | 414 | 28.94 |