Home Explore Help
Sign In
Delease
/
Blocktree
2
0
Fork 0
Files Issues 7 Pull Requests 0 Wiki
Tree: 31cc52b2ad
Branches Tags
Blocktree
/
doc
/
Book
/
Book.tex

Book.tex 17 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269 
  1. \documentclass{book}
    2. 

  2. \usepackage{amsfonts,amssymb,amsmath,amsthm}
    3. 

  3. \usepackage[scale=0.75]{geometry}
    4. 

  4. \usepackage{hyperref}
    5. 

  5. 

  6. \begin{document}
    7. 

  7. \tableofcontents
    8. 

  8. \chapter{System Overview}
    9. 

  9. % I should replace "consumer" with "user".
    10. 

  10. The development of the internet was undoudedtly one of the greatest achievements in the 20th 
    11. 

  11. century, and the internet's killer app, the web, has reshaped our lives and the way we do
    12. 

  12. business. But, for all the benefits we have received from these technologies there have
    13. 

  13. corresponding costs. It's now possible to cheaply surveil entire popluations and discern their
    14. 

  14. preferences and responses so that propaganda can be effectively created and distributed. The
    15. 

  15. surveilence it not surepticious, it's quite overt. Consumers hand over this data willingly to
    16. 

  16. tech companies because of the benefits they receive in return. But why should people be forced to
    17. 

  17. choose between privacy and convenience?
    18. 

  18. 

  19. The cost of computing power, storage, and bandwidth are very cheap. A single board computer
    20. 

  20. can provide more than enough computing power for the average web-browsing consumer. A classic rotating magnetic hard drive can hold terrabytes of data, more than enough to hold an individual's
    21. 

  21. social media output. Umetered broadband internet access measured in hudreds of megabits per
    22. 

  22. second is common, and becoming more so all the time. So with all these resources available,
    23. 

  23. why is it that consumers do not more control over the computing infrastructure upon which
    24. 

  24. they rely?
    25. 

  25. 

  26. The issue is that consumers' don't want to manage servers, networking, routing, and
    27. 

  27. backup strategies. Each of these can be a full time job by itself. So in order for a consumer to
    28. 

  28. be in control of their own infrastructure, the infrastructure needs to be able to take care of
    29. 

  29. itself.
    30. 

  30. 

  31. Perhaps as important as consumer agency over their computing infrastructure, is the security of
    32. 

  32. that infrastructure. Time and time again consumer trust has been violated by data breaches and
    33. 

  33. service disruptions. These incidents show the need for a more secure and standardized system for
    34. 

  34. storing application data and building web services. Such a system must provide both
    35. 

  35. confidentiality of consumer data, and the ability to authenticate consumers without the
    36. 

  36. need for insecure techniques, such as passwords.
    37. 

  37. 

  38. This document proposes a potential solution. It describes a system for organizing information into
    39. 

  39. trees of blocks, the distribution of those blocks over a network of nodes, and a programming interface
    40. 

  40. to access this information. Because no one piece of hardware
    41. 

  41. is infallible, the system also includes mechanisms for nodes to contract with one another to store
    42. 

  42. data. This allows data to be backed up and later restored in the case a node is lost. In order to
    43. 

  43. ensure the free exchange of data amongst nodes, a digital currency is used to account for the
    44. 

  44. available storage capacity of the network.
    45. 

  45. 

  46. The remainder of this chapter will give an overview of the system, with the remainder of the
    47. 

  47. document going into specific details of each of the system's components.
    48. 

  48. 

  49. \section{Blocks}
    50. 

  50. User data stored in this system is organized into structures called \emph{block trees}. Every block tree
    51. 

  51. is identified with a public key. The private key that corresponds to a block tree's public key is
    52. 

  52. required to control that tree. Any person who has the private key for a block tree is called that
    53. 

  53. tree's owner.
    54. 

  54. 

  55. Computers participating in this system are called \emph{nodes}. Nodes are also identified by public keys, but
    56. 

  56. these keys are not directly tied to block trees. Nodes that have access to a block trees data are said
    57. 

  57. to be \emph{attached} to that block tree. Nodes can be attached to multiple block trees at once, or none
    58. 

  58. at all.
    59. 

  59. 

  60. Block trees are of course trees of \emph{blocks}. Every block is identified by a string called a \emph{path},
    61. 

  61. which describes its location in the tree. The root of this path is a hash (hex encoded)
    62. 

  62. of the tree's public key, allowing blocks from any tree to be referred to. A block consists of three segments:
    63. 

  63. a header, a payload and a signature.
    64. 

  64. 

  65. The payload is encrypted by a symmetric cipher using a randomly generated key. This randomly
    66. 

  66. generated key is called the \emph{block's key}. To allow access to the payload, the block's key is encapsulated
    67. 

  67. using other keys and the resulting cipher texts are stored in the block's header. These encapculated keys
    68. 

  68. are referred to as read capabilities, or \emph{read caps} for short.
    69. 

  69. The root node of every block tree contains a read cap for the block tree's public key.
    70. 

  70. Every non-root block contains a read cap
    71. 

  71. for the block's parent, which is to say the block's key is encapsulated using the its parent's block key.
    72. 

  72. So when one has a read cap for a block, they can read the data in all blocks descended from that
    73. 

  73. block. Because the owner of a block tree has a read cap for the root block, they can read all data
    74. 

  74. stored in the tree. Other people (or nodes) can be given access to a subtree by granting them a read
    75. 

  75. cap for the subtree's root. A block which contains public data is stored as cleartext with no read caps.
    76. 

  76. 

  77. While read caps provide for confidentiality, write caps provide for integrity. A \emph{write cap}
    78. 

  78. for a block is a certificate chain which terminates at a certificate signed by the block tree's
    79. 

  79. owner. Thus a self-signed certificate made using the tree's private key is a valid write cap
    80. 

  80. for any block in the tree. By allowing a chain of certificates to be used, it's possible for
    81. 

  81. the owner to give other people or nodes the ability to write data into their tree. The scope of
    82. 

  82. this access is controlled by specifying the path under which writing is allowed to the certificiate.
    83. 

  83. A write cap for a block is only valid if the path of the block is a contained in the path
    84. 

  84. specified in every certificate in the chain.
    85. 

  85. 

  86. Both the header and the payload of a Block are protected using a private key signature. The writer
    87. 

  87. of the block computes this signature using the private key which corresponds to the write cap 
    88. 

  88. for the block they're trying to write. In order to validate a block, this signature is validated, then
    89. 

  89. the Write Cap is validated, and finally the hash of the public key of
    90. 

  90. the last signer in the Write Cap chain is compared to the root of the Block's path. If these match,
    91. 

  91. then the block is valid, as this means that an owner has given permission for the writer to write
    92. 

  92. into their tree at this path.
    93. 

  93. 

  94. Accessing the data in a block requires several cryptographic operations, both for vaidation and
    95. 

  95. for decryption. Because of this its important that blocks are relatively large, on the order of
    96. 

  96. 4 MB, to amortize the cost of these operations.
    97. 

  97. 

  98. \section{Fragments}
    99. 

  99. By itself this block structure would be useful for building a secure filesystem, but in order to
    100. 

  100. be a durable storage system we need an efficient way of distributing data for redundancy and
    101. 

  101. availability. This is the purpose of fragments.
    102. 

  102. 

  103. Blocks are distributed amongst nodes in the network using a fountain code. The output symbols
    104. 

  104. of this code are referred to as \emph{fragments}. A code with a high performance implementation and good
    105. 

  105. coding efficiency is an important design consideration for the system. For these reasons the
    106. 

  106. RaptorQ code was chosen.
    107. 

  107. 

  108. In order to preserve the data in a newly created block, a node will need to distribute
    109. 

  109. fragments to other nodes. It does this by advertising its desire to trade [currency]
    110. 

  110. in its block tree for the storage of these fragments. \emph{[currency]} is a fungible
    111. 

  111. token for the exchange of computing resources between nodes. Every block tree has
    112. 

  112. some non-negative value for the amount of [currency] it controls. Nodes that are attached
    113. 

  113. to a tree spend the tree's [currency] when paying other nodes for the storage of fragments.
    114. 

  114. 

  115. If another node is interested in making the exchange, it contacts the advertising node
    116. 

  116. and both sign a contract. A \emph{contract} is a data structure signed by both nodes which
    117. 

  117. states that hash of the fragment being stored and the amount of [currency] being exchanged
    118. 

  118. for its storage. The contract is then stored in the public block tree (to be discussed below),
    119. 

  119. so that [currency] can be transerfed between nodes and to create an accountability mechanism
    120. 

  120. to prevent the storing node from acting in bad faith and deleting the fragment.
    121. 

  121. 

  122. When a node needs to retreive a block that was previously distributed in fragments, it connects to a
    123. 

  123. subset of nodes containing the fragments and downloads enough to reconstruct 
    124. 

  124. the block. These downloads can be performed concurrently for greater speed. This same mechanism
    125. 

  125. can be used to distribute public blocks to unaffiliated nodes. This mechanism facilitates load balancing
    126. 

  126. and performance, as concurrent downloads
    127. 

  127. spread the load over multiple nodes and are not limited by the bandwidth between any pair of nodes.
    128. 

  128. 

  129. The list of nodes containing the fragments of a block is called the block's \emph{node list}.
    130. 

  130. A block's node list is stored in it's parent. This allows for any non-root block to be retreived.
    131. 

  131. To allow the root block to be retrieved its node list is stored in the public block tree.
    132. 

  132. 

  133. \section{The Public Blocktree}
    134. 

  134. \emph{The Public Block Tree} is a block tree which is known to all nodes. This is accomplished by
    135. 

  135. providing all nodes with a hardcoded list of nodes that are attached to the public block tree.
    136. 

  136. This is similar to the list of root DNS servers distributed with any networked operating system.
    137. 

  137. Because the public block tree is only used for storing information that should be known to all
    138. 

  138. nodes in the network, the payload of every block in it is cleartext. The public block tree serves
    139. 

  139. only to facilitate the communication and exchange of data between nodes.
    140. 

  140. 

  141. One way that it does this is by containing a database of nodes and their IP addresses. A node
    142. 

  142. which has a write cap to this database will only store an entry for a node if that node can provide
    143. 

  143. a valid signed request. This signed request is stored in the database verbatim, so that other nodes can
    144. 

  144. independently verify its validity. Thus the nodes in the network can use this database to securely resolve
    145. 

  145. the IDs of other node's to their IP addresses.
    146. 

  146. 

  147. The other function of the public block tree is to contain a list of transactions and disputes.
    148. 

  148. This list is referred to as the \emph{public log}.
    149. 

  149. When a node is created, an event is logged detailing the amount of [currency] the node is worth.
    150. 

  150. When a node is first attached to a block tree, this [currency] is then removed from the node
    151. 

  151. and added to the block tree. When a node signs a contract with another node, it is stored in the
    152. 

  152. log and [currency] is removed by the sending node's block tree and added to the receiving node's.
    153. 

  153. 

  154. In order to discourage nodes from receive payment for the storage of a fragment, then deleting
    155. 

  155. the fragment to reclaim disk space, a reporting mechanism exists. If a node is unable to retrieve
    156. 

  156. a fragment that it previously stored with another node, then it sends an event to the log
    157. 

  157. indicating this. The other node can then respond by sending an event which contains the actual
    158. 

  158. fragment which was requested. This allows all the nodes in the network to view the log and
    159. 

  159. see if a node that they are considering signing a contract with is trustworthy. If they
    160. 

  160. are not the defendant in any disputes, then they should be safe. If they are in one, but responded
    161. 

  161. quickly with the fragment, then it could have been a transient network issue. If they never
    162. 

  162. responded, then they are risky and should perhaps receive a lower payment for the storage
    163. 

  163. of the fragment.
    164. 

  164. 

  165. Finally, the public block tree stores node lists for the root blocks of every block tree.
    166. 

  166. This ensures that even if every node that participates in a block tree fails, the block
    167. 

  167. tree can still be recovered from its fragments, provided its private key is known.
    168. 

  168. 

  169. \section{Nodes and the Network}
    170. 

  170. Each node in the network has a public-private keypair. The string formed by hex encoding the
    171. 

  171. hash of a node's public key is referred to as the \emph{node ID} of the node. When nodes
    172. 

  172. are manufactured they are issued a certificate trusted by the
    173. 

  173. public block tree. New nodes are claimed by issuing them a certificate and then writing
    174. 

  174. that certificate into the public log. When a new node is claimed, currency is credited to
    175. 

  175. the block tree which claimed it. This currency is to account for the storage capacity
    176. 

  176. that the new node brings to that block tree. This mechanism is the reason why the node must have a
    177. 

  177. certificate trusted by the public block tree, otherwise there would be no way to control the
    178. 

  178. creation of currency.
    179. 

  179. 

  180. Nodes are identified by their node ID in the public block tree and in node lists. Nodes
    181. 

  181. are responsible for updating their IP address in the public block tree whenever it changes.
    182. 

  182. 

  183. When a node is attached to a block tree it is issued a certificate containing a path
    184. 

  184. under which its data will be stored. We say the the node is attached to the block tree at that path.
    185. 

  185. The node which issues the node its certificate creates a read cap for it and stores it in the
    186. 

  186. block where the node is attached.
    187. 

  187. 

  188. The data created by a node may optionally be replicated in its parent node. This would be suitable
    189. 

  189. for a lightweight or mobile device which needs to ensure its data is replicated immediately and
    190. 

  190. doesn't have time to negotiate contracts for the storage of fragments. For larger 
    191. 

  191. block trees, having non-replicating nodes is essential for scalability.
    192. 

  192. 

  193. More than one node can be attached at the same path, and when this happens a \emph{cluster} is formed.
    194. 

  194. Each node in the cluster stores
    195. 

  195. copies of the same data and they coordinate with each other to ensure the consitency of this
    196. 

  196. data. This is accomplished by electing a leader. All writes to blocks under the attachment point are
    197. 

  197. sent to the leader. The leader then serializes these writes and sends them to the rest of the
    198. 

  198. nodes. By default writes to blocks use optimistic concurrency, with the last write known to the
    199. 

  199. leader being the winner. But if a node requires exclusive access to a block it can
    200. 

  200. make a request to the leader to lock it. Writes from nodes other than the locking node are rejected until
    201. 

  201. the lock is released. The leader will release the lock on its own if no messages are received from
    202. 

  202. the locking node after a timeout.
    203. 

  203. 

  204. If the attachment point is configured to be replicated to its parent, then the leader will maintain
    205. 

  205. a connection to the the leader in the parent cluster. Note that the parent cluster need not be
    206. 

  206. housed in the parent block, just at some ancestor block. Then, writes will be propagated through
    207. 

  207. this connection to the parent cluster, where this process may continue if that cluster is also
    208. 

  208. configured for replication. Distributed locking is similarly comunicated to the parent cluster,
    209. 

  209. where the lock is only aquired with the parent's approval.
    210. 

  210. 

  211. \section{Programmatic Access to Data}
    212. 

  212. No designer can hope to envsion all the potential applications that a person would want to have
    213. 

  213. access to their data. That's why an important component of the system is the ability to run
    214. 

  214. programs that can access data and provide services to other internet hosts, whether they are
    215. 

  215. blocktree nodes or not. This is accomplished by providing a WebAssembly based execution
    216. 

  216. environment with a system interface based on WASI. Information in the blocktree is available
    217. 

  217. to programs using standard filesystem system calls that specify paths in a special directory.
    218. 

  218. While some programs may wish to access blocks directly in this manner, others may wish to use
    219. 

  219. an API at a higher level of abstraction. Thus there is also an API for creating arbitrarily sized
    220. 

  220. files that will get mapped to fixed sized blocks, freeing the programmer from having to implment
    221. 

  221. this themselves.
    222. 

  222. 

  223. Data provided by these filesystem APIs will be the most up-to-date versions known to the node.
    224. 

  224. There's the possiblity that conflicts with other nodes may cause writes made by programs on the
    225. 

  225. node to be rolled back or overwritten. Of course locks can be taken on files and blocks if a
    226. 

  226. program must ensure exclusive access to data. Finally, an inotify-like API is provided for programs to be notified when changes to blocks occur.
    227. 

  227. 

  228. An important consideration for the design of this system was to facilitate the creation of web
    229. 

  229. servers and other types of internet hosts which can serve data stored in a blocktree. For this
    230. 

  230. reason there is a high level callback based API for declaring HTTP handlers, as well as handlers
    231. 

  231. for blocktree specific messages.
    232. 

  232. 

  233. In order to provide the consumer with control over how their data is used a permissions system
    234. 

  234. exists to control which blocks and APIs programs have access to. For instance a consumer would
    235. 

  235. have to grant special permission for a program to be able to access the Berkeley sockets API.
    236. 

  236. 

  237. Programs are installed by specifing a blocktree path. This is a secure and convenient method of
    238. 

  238. distribution as these programs can be downloaded from the nodes associated with the root of their
    239. 

  239. path and the downloaded blocks can be cryptographically verified to be trusted by the root 
    240. 

  240. key. Authors wishing to distribute their programs in this manner will of course need to make the
    241. 

  241. blocks containing them public (unencrypted), or else provide some mechanism for selective access.
    242. 

  242. 

  243. \chapter{Data Structures}
    244. 

  244. 

  245. \section{Blocks}
    246. 

  246. The fundamental cryptographic operations that can be performed on blocks are:
    247. 

  247. \begin{itemize}
    248. 

  248. \item Encrypt body.
    249. 

  249. \item Decrypt body.
    250. 

  250. \item Add a writecap.
    251. 

  251. \item Sign
    252. 

  252. \item Verify
    253. 

  253. \end{itemize}
    254. 

  254. 

  255. \section{Writecaps}
    256. 

  256. The cryptographic operations that can be performed on a writecap are:
    257. 

  257. \begin{itemize}
    258. 

  258. \item Sign
    259. 

  259. \item Verify
    260. 

  260. \end{itemize}
    261. 

  261. 

  262. \chapter{Nodes}
    263. 

  263. 

  264. \chapter{The Network}
    265. 

  265. 

  266. \chapter{Application Programming Interface}
    267. 

  267. 

  268. \chapter{Example Applications}
    269. 

  269. \end{document}
    270.