Open Source Moving in on the Data Storage World

pararox writes "The data storage and backup world is one of stagnant technologies and cronyism. A neat little open source project, called Cleversafe, is trying to dispell of that notion. Using the information dispersal algorithm originally conceived of by Michael Rabin (of RSA fame), the software splits every file you backup into small slices, any majority of which can be used to perfectly recreate all the original data. The software is also very scalable, allowing you to run your own backup grid on a single desktop or across thousands of machines."

I don't think you know what that word means. . . .

[Ohreally_factor (593551)]

The data storage and backup world is one of stagnant technologies and cronyism.

Re:I don't think you know what that word means. .

[flanksteak (69032)]

Speak for yourself. I have all my old business buddies back up my data for me.

Re:I don't think you know what that word means. .

[umeboshi (196301)]

Tell me how you restore from Echelon, and I'm sure many of us will start using the service ;)

Re:I don't think you know what that word means. .

[cmacb (547347)]

I'm guessing that someone who is "hooked on phonics" was trying to say anachronism.

Re:I don't think you know what that word means. .

[nsayer (86181)]

The data storage and backup world is one of [...] cronyism

Nice fileserver you 'ave there. Shame if somefing were to 'appen to it. Know what I mean, 'squire?

Editors, please note!

[by Anonymous Coward]

Editors please note!

Editors, please note that there is some incorrect information in this post. Firstly, the original concept of the IDA was designed by Shamir of RSA fame, not Rabin.

Also note that the Cleversafe IDA is a custom algorithm, and is only similar to Shamir's initial concept.

Re:Editors, please note!

[Jake73 (306340)]

Really? This is just error correction. Reed-Solomon [wikipedia.org] error correction, and even the Chinese Remainder Theorem [psu.edu] can be applied to reconstruct data when some has been intentionally or unintentionally punctured.

Re:I think this is wrong again

[jabuzz (182671)]

No you would be wrong, the RSA algorithm was first described by Clifford Cocks, a British mathematician working for GCHQ in 1973, four years before the description in 1977 by Ron Rivest, Adi Shamir and Len Adleman.

It is a classic example of a bad patent. There was prior art (though admittedly this was kept top secret till 1997) and it also failed the obviousness test. Clearly if someone else came up with the same algorithm four years earlier it was clearly obvious to someone skilled in the art of cryptograp

Re:I think this is wrong again

[Paul Crowley (837)]

RSA get the credit because they brought the concept to science. Similarly, Biham and Shamir get the credit for differential cryptanalysis. If you invent it and keep it secret you don't get the credit; that's the cost of the Faustian bargain you made with the security services.

Backup for Backuper?

[foundme (897346)]

I can't find this in the FAQ -- is there a "creator/seeder" in the whole process? Which means a particular group of slices can only be unlocked by a particular seeder created by Turbo IDA.

If there is a creator/seeder, then we are still burdened by having to keep this seeder safe so that we can retrieve the distributed slices.

If there is no creator/seeder, is this safe enough so that people cannot patch slices together by way of trial-and-error?

Looking at it here for work

[gasmonso (929871)]

At work we're looking into this to store critical data on out intranet which spans several states and facilites. Looks great, but only time will tell.

I seem to remember a project months ago that was going to use P2P to backup your data on other P2P users computers which to me sounds quite insane. Anyone know if this is related?

http://religiousfreaks.com/ [religiousfreaks.com]

Re:Looking at it here for work

[Adult film producer (866485)]

I think Freenet performs something like what is described in this article, but I'm hardly a crypto expert. I do know that freenet slices up data that is inserted into small chunks (I believe it's 32k chunks with the newest darknet.) There is also healing chunks too... the only disadvantage with backing up data on freenet is that data/information that is rarely accessed falls off the network as newer information replaces it.

The 'R' stands for Rivest, not Rabin

[Durindana (442090)]

While Michael Rabin was inventor of the Rabin cryptosystem [wikipedia.org] in 1979, it was Ronald Rivest, Adi Shamir and Len Adleman behind RSA [wikipedia.org] two years earlier.

Re:The 'R' stands for Rivest, not Rabin

[dan dan the dna man (461768)]

Nonsense, everyone know it was Rowland Rivron..

Think RAID5, only way better

[El Cubano (631386)]

Using the information dispersal algorithm originally conceived of by Michael Rabin (of RSA fame), the software splits every file you backup into small slices, any majority of which can be used to perfectly recreate all the original data.

It seems like this can be tuned to provide varying levels of fault tolerance. According to the abstract (I don't have an ACM web account, and I couldn't find the full text), it seems like I can take a file and make it so that any four chunks can be used to rebuild the file. I can then take those chunks and distribute them eight times to different machines. Thus, five of the eight machines would have to be rendered inoperable before I were unable to retrieve my data.

If I understand it correctly, then this is really slick.

Re:Think RAID5, only way better

[dracken (453199)]

Rabin's algorithm relies on a nifty trick. If you take a k dimensional vector and store the dot product with k orthogonal vectors then the vector can be reconstructed using just the dot product. This is a fancy way of saying any point on the x-y plane can be located if you have the x-coordinate and y-coordinate. However, if you take a k dimensional vector and compute the dot product with l mutually orthogonal vectors (where l > k), then any k dot products are enough to reconstruct the original vector.

Rabin has shown how to come up with l vectors of which k are mutually orthogonal.

MOD PARENT REDUNDANT

[Cal Paterson (881180)]

We all knew that.

Re:Think RAID5, only way better

[volve (592475)]

Pardon?!

I think I've suddenly gone blind because your "[non-]fancy way of saying" doesn't sound a damn thing like the gibberish my eyes just read. "mutually orthagonal vectors" ?!

If I'm wrong, then I should probably go and lie down, but I just showed my wife and now she's crying... so I think it's your explanation and not me.

*goes to find advil*

Re:Think RAID5, only way better

[martin-boundary (547041)]

That can't be right, can it?

However, if you take a k dimensional vector and compute the dot product with l mutually orthogonal vectors (where l > k), then any k dot products are enough to reconstruct the original vector.

Consider three dimensional space (l = 3, k = 2). Let the k dimensional vector be v = (1/2, 1/3) in the x-y plane. Then the l dot products are v.i = 1/2, v.j = 1/3, v.k = 0. I cannot pick any two products (say 1/2 and 0) to reconstruct v.

Something must be lost in translation

Re:Think RAID5, only way better

[siwelwerd (869956)]

I think you mean linealy independent, not mutually orthogonal. Infact, the word orthogonal isn't even in Rabin's paper. Thus, what Rabin has done is shown how to generate n vectors such that any m are linearly independent .

Re:Think RAID5, only way better

[siwelwerd (869956)]

It's an l dimensional space though. The PDF of the paper is http://portal.acm.org/ft_gateway.cfm?id=62050&type =pdf&coll=GUIDE&dl=GUIDE&CFID=70220506&CFTOKEN=528 80553 [acm.org], and is accessible to anyone who's had an undergraduate course in linear algebra. The crux of the argument is on page 4.

Byzantine for Beginners

[jd (1658)]

The basis of the method lies in the Byzantine General's Problem and related mathematical puzzles. A derivative is used in cryptography for distributed keys. As a backup strategy, it looks interesting - you don't need any higher level of trust than you would need in the Byzantine General's Problem, for exactly the same reasons. This includes not just backup devices but also all connections to backup devices (so you have security against SAN failures, packet corruption and other such problems). The price you

stagnant??

[Phredward (254393)]

Companies are crying out for new storage solutions all the time. If the answer is slow in coming it is not due to "cronyism" and "stangnation". Rather the causes include the facts that distributed storage is hard, and people don't like loosing their data.

Rar + Par + BitTorrent?

[DigitalRaptor (815681)]

This sounds like Rar, Par, and BitTorrent got merged in some freak transporter accident...

Par files (for use with QuickPar, etc) are great, saving all sorts of extra posting on binary newsgroups.

Re:Rar + Par + BitTorrent?

[Ohreally_factor (593551)]

I'm trying to imagine RAR with a PAR head and BitTorrent wings.

Not a new idea

[D3viL (814681)]

so it's sort of like parchive http://parchive.sourceforge.net/ [sourceforge.net] which is software splits every file you backup into small slices, any majority of which can be used to perfectly recreate all the original data

You mean Shamir, not Rabin

[by Anonymous Coward]

While R in RSA stands for Ron Rivest, it is Adi Shamir (S of RSA) you have in mind. He came up with a wonderful secret sharing scheme which allows a bunch of folks or computers to keep pieces of secret in such a way that no N of them have any idea what the secret is, even if they collude. OTOH N+1 of them can easily figure out the secret. RSA can help you keep important secrets safe this way: if the owner is OK, the secret cannot be recreated; if the owner quits or dies, all-important secret holders can recover his password and unencrypt critical company data. And if a couple of them cannot participate, you still can get your secret back.

Even more amazingly Shamir's secret sharing scheme allows computing math functions, such as digital signatures, without ever recovering secret keys. This is called threshold cryptography, some of you may be interested to learn about its many wonders. Shamir rocks and so is threshold crypto!

innovation

[Ajehals (947354)]

Any innovation (if that's what this is - no doubt it will turn out to be something that someone else thought of in the 80's..) is welcomed in this area.

Maybe one day vendors will stop pushing overly expensive and utterly bland storage solutions. i.e. Last time I had a meeting about storage the product was: 2x Servers 2x Disk Arrays with possible storage of a little under 2TB (using 24 80Gb SCSI HDDs) with RAID 5, Oh and the storage was presented as 4 @500Gb drives to the OS (Some proprietary thing). all

Storage should be Boring!

[stereoroid (234317)]

One point that's been brought home to me in a very real way, in my position in senior support for one of the major storage system vendors: the hard disks themselves really do make a difference. SCSI disks are much more expensive because of their construction, the duty cycles they can perform to over long periods. You can NOT hammer a SATA disk at 90% of the time, 24/7, and expect it to last the way an enterprise-class SCSI disk does. My company sells low-cost SATA disk systems too, and some customers find that the lower price is a false economy for what they need the system to do.

I'm kinda missing the point of the "editorializing" in this article: when a storage system is doing its job, it IS boring. You put bytes in, assured they will be stored, and you get them out on demand. You want nothing "interesting" to happen to the data that your business is built on! Sure, the technology is stagnant, if that means customers can get access to the data, reliably, year after year. We Slashdotters are prepared to take "bleeding edge" risks that enterprise customers are not.

been done before

[Splork (13498)]

Related companies/projects happened in this order: MojoNation [archive.org] .. MNet [mnetproject.org] .. HiveCache [archive.org] .. AllMyData [allmydata.com]

good luck!

Re:been done before

[Beryllium Sphere(tm) (193358)]

Oceanstore [berkeley.edu] as well.

Publius

[twitter (104583)]

ATT has something like this called Publius [att.com]. Scientific American reviewed it [essential.org] and, in a most unscientific and unAmerican opinion, called it "irresponsible." The goal was not just storage, but publication.

It's nice to see another attempt that's free. Free speech requires anonymity.

Virtual file server -- was a program for old Macs

[dfloyd888 (672421)]

In the early 90s, a company made a virtual file server for networked Macs. Each client Macintosh had a file on its hard drive, and when a request was made through the driver, a number of Macs were contacted, and files were read and written to in a fairly load balanced fashion. I'm pretty sure it used some decent (think single DES) encryption at the time too, so someone couldn't just dig through the server's file on their Mac's hard disk and glean important data. It also added some redundancy, so if a Mac or two wasn't up on the network, it wouldn't kill the virtual Appleshare folder.

By chance, anyone remember this technology? I have no idea what happened to it, but it would be a blockbuster open source app if done today, and was platform independant. If done right, one could create data brokerage houses, where people could buy and sell storage space, and also reliability, where space on a RAID or server array would be of higher value than space on a laptop that is rarely on the Internet.

Its great-grandchild, Google file system

[wsanders (114993)]

http://labs.google.com/papers/gfs.html [google.com]

Very roughly, this is what GFS does. I dn't have 25,000 servers at my disposal, so I haven't been able to test it though. Maybe next week. Meanwhile, I muddle through with tape.

Re:Virtual file server -- was a program for old Ma

[Germo (739596)]

i haven't remembered the name yet, but the company was bought by novell shortly before NDS came out. i always thought it was how NDS replicated itself around w/o eating up the network while trying to take care of itself.

Re:Virtual file server -- was a program for old Ma

[swillden (191260)]

By chance, anyone remember this technology? I have no idea what happened to it, but it would be a blockbuster open source app if done today, and was platform independant.

That's very interesting. If I understand what you're saying, was it something like this [willden.org]? That's a description I wrote up for a system I'd like to build if I every get the time.

Borg Technology

[JoeCommodore (567479)]

When I read the statement: ...the software splits every file you backup into small slices, any majority of which can be used to perfectly recreate all the original data. The software is also very scalable, allowing you to run your own backup grid on a single desktop or across thousands of machines.

I was immediately visualizing a Borg Cube regenerating after a hit from the Enterprise.

regardless, it sounds cool.

Link to pay-for-view contents

[andrew cooke (6522)]

The most interesting link here is behind a pay-wall. Do the editors bother to follow the link in articles? Do they just assume we all have ACM access? Come on, this place used to be a bit better than this, didn;t it?

Re:Link to pay-for-view contents

[Detritus (11846)]

You could always look it up at a university library. Never publishing an article that cites a paper in a journal isn't a good solution.

New idea... NOT.

[pedantic bore (740196)]

Why does this remind me of something [harvard.edu]? It sounds like something I've heard [carleton.ca] about already [cmu.edu], more or less [gatech.edu].

I just hope they don't patent it [uspto.gov]!

Cleversafe mirror

[winkydink (650484)]

http://www.networkmirror.com/ekXdq3RqHwPz5vfh/www. cleversafe.org/index.html [networkmirror.com]

The others are there too.

Sounds familiar. Like my master's thesis.

[Saturn49 (536831)]

This can be done quite easily with Reed-Solomon coding. In fact, you don't need the majority of the nodes, but simply an arbitrary N set of nodes, with an arbitrary M nodes as redundancy. N=1 and M=1 is basically RAID1. N = n and M = 1 is simply RAID5, N=n and M=2 is RAID 6.

In fact, I wrote a RSRaid driver for Linux for my thesis and did some performance testing on it. I'll save you the 30 pages and just tell you that the algorithm is far too CPU intensive to scale up very well for fileserver use (my original intent,) but I did conclude it could be used as a backup alternative to tape. Hmmmm.

Direct Link [dyndns.org]
Google Cache [72.14.203.104]
Please forgive the double brackets, I fought witH Word and lost.
Contact me if you'd like to play with the code. I never did any reconstruction code, but the system did work in a degraded state, and was written for the Linux 2.6 kernel.

I hope they backed up

[nurb432 (527695)]

As they appear to be toast now...

And how can you say backing up to a *single* desktop pc is of any value?

Shameless plug...

[richdun (672214)]

...for my alma mater.

Cleversafe's headquarters are located at the new University Technology Park [university...gypark.com] at IIT...no, not that IIT, this one [iit.edu].

RAID 5 at the File Level

[kbahey (102895)]

Slashdotted! Can't check the site contents or the wiki.

From the summary : "the software splits every file you backup into small slices, any majority of which can be used to perfectly recreate all the original data."

So, basically it is like RAID 5 striping and parity [wikipedia.org] applied to the file level.

Neat concept.

Notes from lead Cleversafe designer

[mengland (78217)]

(This is a repost from an earlier part of the thread so that I can get these comments on the toplevel.)

Hello-

I am the lead designer of the first Cleversafe dispersed-storage system (aka a grid-storage software system) and am one of the project's co-founders. The Cleversafe system never stores a complete copy of the data in any one place (or "grid node" in our terminology). At most 1/11th of the file data--we call it a file "slices"--is stored at any one grid node in a "scrambled" (i.e., non-contiguous), compressed, and encrypted/signed fashion. The grid _never_ stores more than one copy of the data on the grid, and that one copy is never stored all in the same place--it's dispersed using an optimized information-dispersal algorithm that we created but has similar properties to the previously-published info-dispersal algorithms (IDAs).

If a grid node and its associated content--i.e., the user's file slices on that node--are ever completely compromised (firewall comes down, all encryption and scrambling is cracked, etc), then the cracker acquires at most 1/11th (one-eleventh) of the data users data.

Further, if any half (or at least 5 out of any 11) of the grid nodes are for any reason destroyed or otherwise unavailable, all of the user's data is still accessible. This is done by generating a "coded" file slice for every data slice that we store on the node, and regenerating missing file slices from down nodes by pumping the available data and coded slices through our info-dispersal algorithms (which are all open-sourced, by the way) that are executed on the client side or when the grid "self heals" for destroyed nodes.

The system can also be implemented in a cost-effective fashion. The grid system can sustain so many concurrent, per-node outages that the availability/uptime requirements for each node are minimal. Also, the grid-node servers need not support much processing capability, for the client offloads much of the work from the servers.

We feel this system provides a powerful combination of reliability, scalability, economy, and security.

The hardest part of the design, imo, is to be able to reliably track all of these file slices across a large and heterogeneous set of grid-node machines housing these info-dispersed file slices. We designed the grid meta-data system from the ground up to do this and to be capacity-expandable, performance-scalable, and easily serviceable. More details for the open-source flavor of the grid-software design can be found here:
http://wiki.cleversafe.org/Grid_Design [cleversafe.org] [cleversafe.org]

There's much more that I can say about this system; I plan to add additional comments to this thread as more questions and comments arise. I'm sure there are new comments I have yet to read, for they're coming in pretty quickly...

I also encourage further discussion at our newly-created web forums: http://forums.cleversafe.org/ [cleversafe.org] [cleversafe.org]
Mailing lists (that will be synchronized with the web forums) will also be available at cleverafe.org in the near future.

-Matt
Cleversafe project lead

Re:redundancy = your secret is safe (with us)

[Ruff_ilb (769396)]

Not necessarily; if the copies you have are broken apart and split up, that doesn't mean you have a security breach.

For example, if I tell you my 8 character password has a "q" in it, you've only lowered the number of possible passwords from 2821109907456 to 78364164096. Not exactly useful, either way.

And of course, what good is keeping the data out of the wrong hands if the RIGHT HANDS can never get to it?

Re:redundancy = your secret is safe (with us)

[mengland (78217)]

Hello-

I am the chief designer of the Cleversafe dispersed-storage system (aka a grid-storage software system) and am one of the project's co-founders. The Cleversafe system never stores a complete copy of the data in any one place (or "grid node" in our terminology). At most 1/11th of the file data--we call it a file "slices"--is stored at any one grid node in a "scrambled" (i.e., non-contiguous), compressed, and encrypted/signed fashion. The grid _never_ stores more than one copy of the data on the grid

Re:oh yea

[dgatwood (11270)]

I would expect at least some expansion so that 50% of the encoded data is substantially greater than the size of 50% of the original data. Thus, it probably is a net expansion rather than compression.

Re:Sourceforge page

[Spy der Mann (805235)]

Well, their webserver seems like it's been smoked

I really hope they have a backup handy.