Access Control Conflict Resolution in Distributed File Systems using CRDTs

Yanakieva, Elena; Youssef, Michael; Rezae, Ahmad Hussein; Bieniusa, Annette

doi:10.1145/3447865.3457970

Cited by 4 publications

(1 citation statement)

References 3 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…However, new implicit conflict origins need to be considered for resolution, as simply having divergent groups or owner field values is not enough. As exampled by [11], changing an owner and the permission associated to it concurrently is not typically located on the same field -and thus not dealt by the same CRDT. However our CRDT encompasses both, and should declare it a potential conflict, as the intent of changing the owner was done in a context where its permissions would have been different.…”

Section: Modeling Complex Systems: Posixmentioning

confidence: 99%

Distributed access control for collaborative applications using CRDTs

Rault

Ignat

Perrin

2022

Proceedings of the 9th Workshop on Principles and Practice of Consistency for Distributed Data

View full text Add to dashboard Cite

Distributed applications are part of our everyday lives, but too often their good operation depends on central servers, all potential points of failure and performance bottlenecks. Designing systems for fully distributed communications however still requires porting common mechanisms needed for feature-rich modern applications such as user rights differentiation, multiple administrators, and end-to-end encryption. We propose a distributed access control mechanism for collaborative applications by relying on conflict-free replicated data types (CRDT), and design an access control policy CRDT able to support Google Docs and POSIX file systems as example of distributed applications. To enforce that policy, we outline a generic data model, examine different conflict resolution strategies at the data and policy levels, and consider a novel approach towards conflicts between data and policy operations. CCS Concepts: • Computing methodologies → Distributed algorithms; • Security and privacy → Access control; • Human-centered computing → Synchronous editors; Asynchronous editors.

show abstract

Section: Modeling Complex Systems: Posixmentioning

confidence: 99%

Distributed access control for collaborative applications using CRDTs

Rault

Ignat

Perrin

2022

Proceedings of the 9th Workshop on Principles and Practice of Consistency for Distributed Data

View full text Add to dashboard Cite

show abstract

CRDTs for truly concurrent file systems

Vaillant¹,

Vasilas

Shapiro

et al. 2021

Proceedings of the 13th ACM Workshop on Hot Topics in Storage and File Systems

View full text Add to dashboard Cite

Building scalable and highly available geo-replicated file systems is hard. These systems need to resolve conflicts that emerge in concurrent operations in a way that maintains file system invariants, is meaningful to the user, and does not depart from the traditional file system interface. Conflict resolution in existing systems often leads to unexpected or inconsistent results. This paper introduces ElmerFS, a geo-replicated, truly concurrent file system designed with the aim of addressing these challenges. ElmerFS is based on two key ideas: (1) the use of Conflict-Free Replicated Data Types (CRDTs) for representing file system structures, which ensures that replicas converge to a correct state, and (2) conflict resolution rules, which are determined by the choice of CRDT types and their composition, designed with the principle of being intuitive to the user. We argue that if the state of the file system after resolving a conflict conveys to the user the resolved conflict in an intuitive way, the user can complement or reverse it using traditional file system operations. We discuss the challenges in the design of geo-replicated weakly consistent file systems, and present the design of ElmerFS.

show abstract

AMC: Towards Trustworthy and Explorable CRDT Applications with the Automerge Model Checker

Jeffery

Mortier

2023

Proceedings of the 10th Workshop on Principles and Practice of Consistency for Distributed Data

View full text Add to dashboard Cite

Access Control Conflict Resolution in Distributed File Systems using CRDTs

Cited by 4 publications

References 3 publications

Distributed access control for collaborative applications using CRDTs

Distributed access control for collaborative applications using CRDTs

CRDTs for truly concurrent file systems

AMC: Towards Trustworthy and Explorable CRDT Applications with the Automerge Model Checker

Contact Info

Product

Resources

About