Overview
Explore a conference talk introducing Avocado, a secure in-memory distributed storage system designed for untrusted cloud environments. Delve into the system's architecture, which combines Trusted Execution Environments (TEEs) with innovative solutions to overcome hardware limitations and extend trust to distributed settings. Learn about Avocado's cross-layer contributions, including a trusted network stack, fault-tolerant replication protocol, and scalable memory management. Discover how this system achieves strong security, fault-tolerance, consistency, and performance, outperforming traditional Byzantine Fault Tolerance (BFT) approaches. Gain insights into Avocado's practical implementation and its significant speed improvements for YCSB workloads compared to existing solutions.
Syllabus
Intro
Distributed in-memory KVS
Trust in cloud storage
Problem statement
Basic design
Trusted computing
Design challenges
Networking
Trusted network stack
Fault tolerance
Trusted replication protocol
Hardware limitations
In-memory KV store
Overall system design
Evaluation
Overall performance
Scalability
Avocado: A secure in-memory distributed storage system
Taught by
USENIX