Stable Availability under Denial of Service Attacks through Formal Patterns

Eckhardt, Jonas; Mühlbauer, Tobias; Alturki, Musab A.; Meseguer, José; Wirsing, Martin

doi:10.1007/978-3-642-28872-2_6

Cited by 36 publications

(41 citation statements)

References 22 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…There is other recent work on rewriting logic-based analysis of cloud computing systems, including, e.g., [25], which formalizes RAMP transactions and their extensions and optimizations in rewriting logic and performs model checking verification of key properties using the Maude tool; [21,22], which uses Maude and Real-Time Maude to define a formal model of Google's widely-replicated data store Megastore (a hybrid between a NoSQL store and a relational database) and to develop an extension of Megastore. These models were simulated for QoS estimation and model checked for functional correctness; [36], which formally models and analyzes availability properties of a ZooKeeper-based group key management service; [18], which proposes and analyzes DoS resilience mechanisms for cloud-based systems; [42], which gives formal semantics to the KLAIM language and uses it to specify and analyze cloud-based architectures;…”

Section: Rewriting Logic-based Analysis Of Cloud Computing Systemsmentioning

confidence: 99%

Quantitative Analysis of Consistency in NoSQL Key-Value Stores

Liu

Nguyen

Ganhotra

et al. 2015

Quantitative Evaluation of Systems

Self Cite

View full text Add to dashboard Cite

The promise of high scalability and availability has prompted many companies to replace traditional relational database management systems (RDBMS) with NoSQL key-value stores. This comes at the cost of relaxed consistency guarantees: key-value stores only guarantee eventual consistency in principle. In practice, however, many key-value stores seem to offer stronger consistency. Quantifying how well consistency properties are met is a non-trivial problem. We address this problem by formally modeling key-value stores as probabilistic systems and quantitatively analyzing their consistency properties by both statistical model checking and implementation evaluation. We present for the first time a formal probabilistic model of Apache Cassandra, a popular NoSQL key-value store, and quantify how much Cassandra achieves various consistency guarantees under various conditions. To validate our model, we evaluate multiple consistency properties using two methods and compare them against each other. The two methods are: (1) an implementationbased evaluation of the source code; and (2) a statistical model checking analysis of our probabilistic model.

show abstract

Section: Rewriting Logic-based Analysis Of Cloud Computing Systemsmentioning

confidence: 99%

Quantitative Analysis of Consistency in NoSQL Key-Value Stores

Liu

Nguyen

Ganhotra

et al. 2015

Quantitative Evaluation of Systems

Self Cite

View full text Add to dashboard Cite

show abstract

“…VeStA and PVeStA have been used for the analysis of systems and algorithms by different authors (see, e.g., [1,16,8]). …”

Section: The Vesta/pvesta Toolmentioning

confidence: 99%

“…With this schedulerbased scheme, having a single message in the initial configuration, rules with one object and a message in its left-hand sides, and no two rules for the same message, are a sufficient condition to meet the requirement. Eckhardt et al relaxed the requirements on systems in [16] by allowing nested configurations of objects. The basic idea is however the same one, if every rule is going to be fired by a message, this message determines the rule match, and there is only one message out of the scheduler at a time, there is only one rule that may be fired and in one possible way.…”

Section: Un-quantified-non-determinism-free E-motions Systemsmentioning

confidence: 99%

Statistical Model Checking of e-Motions Domain-Specific Modeling Languages

Durán

Moreno-Delgado

Álvarez-Palomo

2016

Fundamental Approaches to Software Engineering

View full text Add to dashboard Cite

Abstract. Domain experts may use novel tools that allow them to design and model their systems in a notation very close to the domain problem. However, the use of tools for the statistical analysis of stochastic systems requires software engineers to carefully specify such systems in low level and specific languages. In this work we line up both scenarios, specific domain modeling and statistical analysis. Specifically, we have extended the e-Motions system, a framework to develop real-time domain-specific languages where the behavior is specified in a natural way by in-place transformation rules, to support the statistical analysis of systems defined using it. We discuss how restricted e-Motions systems are used to produce Maude corresponding specifications, using a model transformation from e-Motions to Maude, which comply with the restrictions of the VeStA tool, and which can therefore be used to perform statistical analysis on the stochastic systems thus generated. We illustrate our approach with a very simple messaging distributed system.

show abstract

“…As usual (especially in the Maude context, e.g. [6,11,2,25]), in order to perform statistical analysis it is necessary to obtain probabilistic behaviours out of non-deterministic ones by resolving non-determinism in probabilistic choices. For this reason, we defined a Java wrapper for MISSCEL together with a set of external schedulers which permit to obtain probabilistic simulations of SCEL specifications, which can then be exploited by MultiVeStA to perform statistical model checking.…”

Section: Maude-based Verificationmentioning

confidence: 99%

“…Moreover, we do not consider other sophisticated features of SCEL such as higher-order communication and dynamic creation of new names and components. We present below the key points of the translation from SCEL to Promela by resorting to the robotics scenario 25 . The translation is defined by a family of functions · , whose formal definitions are given in [23].…”

Section: Spin-based Verificationmentioning

confidence: 99%

The SCEL Language: Design, Implementation, Verification

Nicola

Latella

Lafuente

et al. 2015

Software Engineering for Collective Autonomic Systems

View full text Add to dashboard Cite

Abstract. SCEL (Service Component Ensemble Language) is a new language specifically designed to rigorously model and program autonomic components and their interaction, while supporting formal reasoning on their behaviors. SCEL brings together various programming abstractions that allow one to directly represent aggregations, behaviors and knowledge according to specific policies. It also naturally supports programming interaction, self-awareness, context-awareness, and adaptation. The solid semantic grounds of the language is exploited for developing logics, tools and methodologies for formal reasoning on system behavior to establish qualitative and quantitative properties of both the individual components and the overall systems.

show abstract

Stable Availability under Denial of Service Attacks through Formal Patterns

Cited by 36 publications

References 22 publications

Quantitative Analysis of Consistency in NoSQL Key-Value Stores

Quantitative Analysis of Consistency in NoSQL Key-Value Stores

Statistical Model Checking of e-Motions Domain-Specific Modeling Languages

The SCEL Language: Design, Implementation, Verification

Contact Info

Product

Resources

About