Mat S3: Scalability, Security and Safety - PowerPoint PPT Presentation

1 / 1
About This Presentation
Title:

Mat S3: Scalability, Security and Safety

Description:

Improved Parallelism. Compared forced atomicity with safe atomicity ... Simple, fast, high parallelism. Mat Scalability: Version Vectors ... – PowerPoint PPT presentation

Number of Views:42
Avg rating:3.0/5.0
Slides: 2
Provided by: websCsB
Category:

less

Transcript and Presenter's Notes

Title: Mat S3: Scalability, Security and Safety


1
Maté S3 Scalability, Security and Safety
Philip Levis and David Culler UC Berkeley
Computer Science Division, Intel Research
Berkeley
Maté Tiny Sensor Net VM
Maté Safety
Maté Scalability Version Vectors
Event-based bytecode interpreter Multiple
concurrent contexts Incremental code loading
(viral propagation) High code density
  • Full program analysis on capsule install
  • Inexpensive static naming
  • Implicit locking, explicit yielding
  • Release locks across split-phase ops
  • Yield in acquire set, Relinquish not in
    acquire set
  • Reduced code size
  • Fair-share ready to run scheduler
  • Instruction granularity interleaving
  • Greedy FIFO resource waiting scheduler
  • Livelock starvation possible
  • Simple, fast, high parallelism
  • Capsule version summaries periodically
    transmitted
  • Decaying timer
  • Ranges from 1Hz to 1/300 Hz
  • Timer reset when a newer vector is heard
  • Capsules sent when an older vector is heard
  • Timer reset when code is installed

Subroutines
Contexts
0
1
2
3
Clock
Send
Receive
Once
Maté
Maté Security Analysis
Heap
  • TinySec provides symmetric link-level mechanism
  • Depends on physical mote security
  • Current motes require extensive resources to open
  • Requirements
  • Program integrity
  • Routed data integrity
  • Threats
  • Adversarial capsules
  • Routed data replay
  • Maté data replay
  • Traffic control (e.g., cut and paste attacks)

Buffers
Safety Overhead
Code
Operand Stack
Maté Context
PC
Return Stack
lt 70 byte overhead Suspend/resume context 3 VM
instructions Full program analysis lt 4ms
Problems with Maté v1.0
Need larger heap, making race conditions
possible Explicit code forwarding scales
badly Viral propagation is a two-edged
sword Needs Safety, Scalability and Security
Improved Parallelism
  • Compared forced atomicity with safe atomicity
  • Serial vs. parallel execution of handlers

Maté Security Mechanisms
Maté S3
  • Signed capsules
  • Modification of BiBa signing algorithm
  • 24 byte signature, quickly verifiable (3 hashes)
  • End-to-end integrity capsule check
  • Finite number of signatures possible (105)
  • Routed data sequence numbers
  • Unique sequence number, end-to-end suppression
  • Composition Vectors
  • Specify valid combinations of capsules
  • Specify which receive capsule is used
  • Maté data capsule IDs
  • Refuse data from older versions
  • New instruction set
  • Buffer-centric
  • Retains all Maté 1.0 functionality
  • Typed buffers
  • Triggered error state provides debugging info
  • Eight variable heap
  • Scalability Implicit viral propagation
  • Security End-to-end code integrity
  • Safety Implicit context synchronization
  • Race-free
  • Deadlock-free
  • Safe for dynamic loading

Future Work
Merging with motlle to gain a programming
model Capsule data segments Incorporation with
TinyDB
For more information and software
http//webs.cs.berkeley.edu/tos
Write a Comment
User Comments (0)
About PowerShow.com