Turret: A Platform for Automated Attack Finding in Unmodified Distributed System Implementations

2014 IEEE 34th International Conference on Distributed Computing Systems Pub Date : 2014-06-30 DOI:10.1109/ICDCS.2014.73

Hyojeong Lee, Jeff Seibert, Md. Endadul Hoque, C. Killian, C. Nita-Rotaru

{"title":"Turret: A Platform for Automated Attack Finding in Unmodified Distributed System Implementations","authors":"Hyojeong Lee, Jeff Seibert, Md. Endadul Hoque, C. Killian, C. Nita-Rotaru","doi":"10.1109/ICDCS.2014.73","DOIUrl":null,"url":null,"abstract":"Security and performance are critical goals for distributed systems. The increased design complexity, incomplete expertise of developers, and limited functionality of existing testing tools often result in bugs and vulnerabilities that prevent implementations from achieving their design goals in practice. Many of these bugs, vulnerabilities, and misconfigurations manifest after the code has already been deployed making the debugging process difficult and costly. In this paper, we present Turret, a platform for automatically finding performance attacks in unmodified implementations of distributed systems. Turret does not require the user to provide any information about vulnerabilities and runs the implementation in the same operating system setup as the deployment, with an emulated network. Turret uses a new attack finding algorithm and several optimizations that allow it to find attacks in a matter of minutes. We ran Turret on 5 different distributed system implementations specifically designed to tolerate insider attacks, and found 30 performance attacks, 24 of which were not previously reported to the best of our knowledge.","PeriodicalId":170186,"journal":{"name":"2014 IEEE 34th International Conference on Distributed Computing Systems","volume":"17 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2014-06-30","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"24","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2014 IEEE 34th International Conference on Distributed Computing Systems","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICDCS.2014.73","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 24

Abstract

Security and performance are critical goals for distributed systems. The increased design complexity, incomplete expertise of developers, and limited functionality of existing testing tools often result in bugs and vulnerabilities that prevent implementations from achieving their design goals in practice. Many of these bugs, vulnerabilities, and misconfigurations manifest after the code has already been deployed making the debugging process difficult and costly. In this paper, we present Turret, a platform for automatically finding performance attacks in unmodified implementations of distributed systems. Turret does not require the user to provide any information about vulnerabilities and runs the implementation in the same operating system setup as the deployment, with an emulated network. Turret uses a new attack finding algorithm and several optimizations that allow it to find attacks in a matter of minutes. We ran Turret on 5 different distributed system implementations specifically designed to tolerate insider attacks, and found 30 performance attacks, 24 of which were not previously reported to the best of our knowledge.

查看原文本刊更多论文

炮塔:一个在未修改的分布式系统实现中自动发现攻击的平台

安全性和性能是分布式系统的关键目标。增加的设计复杂性，开发人员的不完整的专业知识，以及现有测试工具的有限功能通常会导致错误和漏洞，从而阻止实现在实践中实现其设计目标。这些错误、漏洞和错误配置中的许多都是在代码已经部署之后出现的，这使得调试过程变得困难且代价高昂。在本文中，我们提出了一个自动发现分布式系统未修改实现中的性能攻击的平台。炮塔不需要用户提供有关漏洞的任何信息，并在与部署相同的操作系统设置中运行实现，并使用模拟网络。炮塔使用了一种新的攻击发现算法和几个优化，使它能够在几分钟内找到攻击。我们在5种不同的分布式系统上运行了炮塔，这些系统是专门为容忍内部攻击而设计的，我们发现了30种性能攻击，其中24种据我们所知之前没有报告过。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2014 IEEE 34th International Conference on Distributed Computing Systems

自引率

0.00%

发文量