ºÝºÝߣ

ºÝºÝߣShare a Scribd company logo

Distributed Consensus: Making Impossible Possible

Heidi Howard
Heidi Howard

Distributed consensus algorithms allow different computer systems to agree on data values in an unreliable distributed network. The document summarizes the history and developments of consensus algorithms over three decades, including early impossibility results, Paxos, Multi-Paxos, Fast Paxos, Egalitarian Paxos, and Raft. It also discusses challenges in implementing consensus algorithms and potential future directions like Ios and Hydra that improve throughput and allow consensus across geographically distributed data centers.

1 of 70
Distributed Consensus: Making Impossible Possible Heidi Howard PhD Student @ University of Cambridge heidi.howard@cl.cam.ac.uk @heidiann360
Distributed Consensus: Making Impossible Possible
What is Consensus? ¡°The process by which we reach agreement over system state between unreliable machines connected by asynchronous networks¡±
Why? ? Distributed locking ? Banking ? Safety critical systems ? Distributed scheduling and coordination Anything which requires guaranteed agreement
A walk through history We are going to take a journey through the developments in distributed consensus, spanning 3 decades. We are going to search for answers to questions like: ? how do we reach consensus? ? what is the best method for reaching consensus? ? can we even reach consensus? ? what¡¯s next in the ?eld?
FLP Result off to a slippery start Impossibility of distributed consensus with one faulty process Michael Fischer, Nancy Lynch and Michael Paterson ACM SIGACT-SIGMOD Symposium on Principles of Database Systems 1983
FLP We cannot guarantee agreement in an asynchronous system where even one host might fail. Why? We cannot reliably detect failures. We cannot know for sure the difference between a slow host/network and a failed host NB: We can still guarantee safety, the issue limited to guaranteeing liveness.
Solution to FLP In practice: We accept that sometimes the system will not be available. We mitigate this using timers and backoffs. In theory: We make weaker assumptions about the synchrony of the system e.g. messages arrive within a year.
Paxos Lamport¡¯s original consensus algorithm The Part-Time Parliament Leslie Lamport ACM Transactions on Computer Systems May 1998
Paxos The original consensus algorithm for reaching agreement on a single value. ? two phase process: promise and commit ? majority agreement ? monotonically increasing numbers
Paxos Example - Failure Free
1 2 3 P: C: P: C: P: C:
1 2 3 P: C: P: C: P: C: B Incoming request from Bob
1 2 3 P: C: P: 13 C: P: C: B Promise (13) ? Phase 1 Promise (13) ?
1 2 3 P: 13 C: OKOK P: 13 C: P: 13 C: Phase 1
1 2 3 P: 13 C: 13, B P: 13 C: P: 13 C: Phase 2 Commit (13, ) ?B Commit (13, ) ?B
1 2 3 P: 13 C: 13, B P: 13 C: 13, P: 13 C: 13, Phase 2 B B OKOK
1 2 3 P: 13 C: 13, B P: 13 C: 13, P: 13 C: 13, B B OK Bob is granted the lock
Paxos Example - Node Failure
1 2 3 P: C: P: C: P: C:
1 2 3 P: C: P: 13 C: P: C: Promise (13) ? Phase 1 B Incoming request from Bob Promise (13) ?
1 2 3 P: 13 C: P: 13 C: P: 13 C: Phase 1 B OK OK
1 2 3 P: 13 C: P: 13 C: 13, P: 13 C: Phase 2 Commit (13, ) ?B B
1 2 3 P: 13 C: P: 13 C: 13, P: 13 C: 13, Phase 2 B B
1 2 3 P: 13 C: P: 13 C: 13, P: 13 C: 13, Alice would also like the lock B B A
1 2 3 P: 13 C: P: 13 C: 13, P: 13 C: 13, Alice would also like the lock B B A
1 2 3 P: 22 C: P: 13 C: 13, P: 13 C: 13, Phase 1 B B A Promise (22) ?
1 2 3 P: 22 C: P: 13 C: 13, P: 22 C: 13, Phase 1 B B A OK(13, )B
1 2 3 P: 22 C: 22, P: 13 C: 13, P: 22 C: 13, Phase 2 B B A Commit (22, ) ?B B
1 2 3 P: 22 C: 22, P: 13 C: 13, P: 22 C: 22, Phase 2 B B OK B NO
Paxos Summary Clients must wait two round trips (2 RTT) to the majority of nodes. Sometimes longer. The system will continue as long as a majority of nodes are up
Multi-Paxos Lamport¡¯s leader-driven consensus algorithm Paxos Made Moderately Complex Robbert van Renesse and Deniz Altinbuken ACM Computing Surveys April 2015 Not the original, but highly recommended
Multi-Paxos Lamport¡¯s insight: Phase 1 is not speci?c to the request so can be done before the request arrives and can be reused. Implication: Bob now only has to wait one RTT
State Machine Replication fault-tolerant services using consensus Implementing Fault-Tolerant Services Using the State Machine Approach: A Tutorial Fred Schneider ACM Computing Surveys 1990
State Machine Replication A general technique for making a service, such as a database, fault-tolerant. Application Client Client
Distributed Consensus: Making Impossible Possible
Application Application Application Client Client Network Consensus Consensus Consensus Consensus Consensus
Distributed Consensus: Making Impossible Possible
CAP Theorem You cannot have your cake and eat it CAP Theorem Eric Brewer Presented at Symposium on Principles of Distributed Computing, 2000
Consistency, Availability & Partition Tolerance - Pick Two 1 2 3 4 B C
Paxos Made Live How google uses Paxos Paxos Made Live - An Engineering Perspective Tushar Chandra, Robert Griesemer and Joshua Redstone ACM Symposium on Principles of Distributed Computing 2007
Paxos Made Live Paxos made live documents the challenges in constructing Chubby, a distributed coordination service, built using Multi-Paxos and SMR.
Isn¡¯t this a solved problem? ¡°There are signi?cant gaps between the description of the Paxos algorithm and the needs of a real-world system. In order to build a real-world system, an expert needs to use numerous ideas scattered in the literature and make several relatively small protocol extensions. The cumulative effort will be substantial and the ?nal system will be based on an unproven protocol.¡±
Challenges ? Handling disk failure and corruption ? Dealing with limited storage capacity ? Effectively handling read-only requests ? Dynamic membership & recon?guration ? Supporting transactions ? Verifying safety of the implementation
Fast Paxos Like Multi-Paxos, but faster Fast Paxos Leslie Lamport Microsoft Research Tech Report MSR-TR-2005-112
Fast Paxos Paxos: Any node can commit a value in 2 RTTs Multi-Paxos: The leader node can commit a value in 1 RTT But, what about any node committing a value in 1 RTT?
Fast Paxos We can bypass the leader node for many operations, so any node can commit a value in 1 RTT. However, we must either: ? reduce the number of failures we guarantee to tolerance, or ? increase the size of the quorum, or ? a combination of both
Egalitarian Paxos Don¡¯t restrict yourself unnecessarily There Is More Consensus in Egalitarian Parliaments Iulian Moraru, David G. Andersen, Michael Kaminsky SOSP 2013 also see Generalized Consensus and Paxos
Egalitarian Paxos The basis of SMR is that every replica of an application receives the same commands in the same order. However, sometimes the ordering can be relaxed¡­
C=1 B? C=C+1 C? B=0 B=C C=1 B? C=C+1 C? B=0 B=C Partial Ordering Total Ordering
C=1 B? C=C+1 C? B=0 B=C Many possible orderings B? C=C+1 C?B=0 B=CC=1 B?C=C+1 C? B=0 B=CC=1 B? C=C+1 C? B=0 B=CC=1
Egalitarian Paxos Allow requests to be out-of-order if they are commutative. Con?ict becomes much less common. Works well in combination with Fast Paxos.
Viewstamped Replication Revisited the forgotten algorithm Viewstamped Replication Revisited Barbara Liskov and James Cowling MIT Tech Report MIT-CSAIL-TR-2012-021
Viewstamped Replication Revisited (VRR) Interesting and well explained variant of SMR + Multi- Paxos. Key features: ? Round robin leader election ? Dynamic Membership
Raft Consensus Paxos made understandable In Search of an Understandable Consensus Algorithm Diego Ongaro and John Ousterhout USENIX Annual Technical Conference 2014
Raft Raft has taken the wider community by storm. Due to its understandable description. It¡¯s another variant of SMR with Multi-Paxos. Key features: ? Really strong leadership - all other nodes are passive ? Dynamic membership and log compaction
Follower Candidate Leader Startup/ Restart Timeout Win Timeout Step down Step down
Ios Why do things yourself, when you can delegate it? to appear
Ios The issue with leader-driven algorithms like Multi- Paxos, Raft and VRR is that throughput is limited to one node. Ios allows a leader to safely and dynamically delegate their responsibilities to other nodes in the system.
Hydra consensus for geo-replication to appear
Hydra Distributed consensus for systems which span multiple datacenters. We use Ios for replication within the datacenter and a Egalitarian Paxos like protocol for across datacenters. The system has a clear leader but most requests simply bypass the leader.
1 2 3 4 5 6 7 8 9 Tokyo West Coast East Coast B
1 2 3 4 5 6 7 8 9 Tokyo West Coast East Coast B
1 2 3 4 5 6 7 8 9 Tokyo West Coast East Coast B
The road we travelled ? 2 impossibility results: CAP & FLP ? 1 replication method: State machine Replication ? 6 consensus algorithms: Paxos, Multi-Paxos, Fast Paxos, Egalitarian Paxos, Viewstamped Replication Revisited & Raft ? 2 future algorithms: Ios & Hydra
How strong is the leadership? Strong Leadership Leaderless Paxos Egalitarian Paxos Raft VRR Ios Hydra Multi-Paxos Fast Paxos Leader with Delegation Leader only when needed Leader driven
Who is the winner? Depends on the award: ? Best for minimum latency: VRR ? Easier to understand: Raft ? Best for WANs (con?icts rare): Egalitarian Paxos ? Best for WANs (con?icts common): Fast Paxos
Future 1. More algorithms offering a compromise between strong leadership and leaderless 2. More understandable consensus algorithms 3. Achieving consensus is getting cheaper, even in challenging settings 4. Deployment with micro-services and unikernels 5. Self-scaling replication - adapting resources to maintain resilience level.
Stops we drove passed We have seen one path through history, but many more exist. ? Alternative replication techniques e.g. chain replication and primary backup replication ? Alternative failure models e.g. nodes acting maliciously ? Alternative domains e.g. sensor networks, mobile networks, between cores
Summary Do not be discouraged by impossibility results and dense abstract academic papers. Consensus is useful and achievable. Find the right algorithm for your speci?c domain. heidi.howard@cl.cam.ac.uk @heidiann360

Recommended

Reaching reliable agreement in an unreliable world
Reaching reliable agreement in an unreliable worldReaching reliable agreement in an unreliable world
Reaching reliable agreement in an unreliable world
Heidi Howard
?
Flexible Paxos: Reaching agreement without majorities
Flexible Paxos: Reaching agreement without majorities Flexible Paxos: Reaching agreement without majorities
Flexible Paxos: Reaching agreement without majorities
Heidi Howard
?
Distributed Consensus: Making Impossible Possible [Revised]
Distributed Consensus: Making Impossible Possible [Revised]Distributed Consensus: Making Impossible Possible [Revised]
Distributed Consensus: Making Impossible Possible [Revised]
Heidi Howard
?
Formal analysis-crypto-proto
Formal analysis-crypto-protoFormal analysis-crypto-proto
Formal analysis-crypto-proto
Dr. Jayaraj Poroor
?
Anatomy of an elixir process and Actor Communication
Anatomy of an elixir process and Actor CommunicationAnatomy of an elixir process and Actor Communication
Anatomy of an elixir process and Actor Communication
Mustafa TURAN
?
Distributed Consensus: Making the Impossible Possible
Distributed Consensus: Making the Impossible PossibleDistributed Consensus: Making the Impossible Possible
Distributed Consensus: Making the Impossible Possible
C4Media
?
Beyond Off the-Shelf Consensus
Beyond Off the-Shelf ConsensusBeyond Off the-Shelf Consensus
Beyond Off the-Shelf Consensus
Rebecca Bilbro
?
9X5u87KWa267pP7aGX3K
9X5u87KWa267pP7aGX3K9X5u87KWa267pP7aGX3K
9X5u87KWa267pP7aGX3K
CapitolPunishment
?
Hashgraph as Code
Hashgraph as CodeHashgraph as Code
Hashgraph as Code
Calvin Cheng
?
CAP Theorem and Split Brain Syndrome
CAP Theorem and Split Brain SyndromeCAP Theorem and Split Brain Syndrome
CAP Theorem and Split Brain Syndrome
Dilum Bandara
?
osi-oss-dbs.pptx
osi-oss-dbs.pptxosi-oss-dbs.pptx
osi-oss-dbs.pptx
Shivji Kumar Jha
?
unit3consesence.pptx
unit3consesence.pptxunit3consesence.pptx
unit3consesence.pptx
GopalSB
?
Crossing the Boundaries: Development Strategies for (P)SoCs
Crossing the Boundaries: Development Strategies for (P)SoCsCrossing the Boundaries: Development Strategies for (P)SoCs
Crossing the Boundaries: Development Strategies for (P)SoCs
Andreas Koschak
?
A quick introduction to Consensus Models
A quick introduction to Consensus ModelsA quick introduction to Consensus Models
A quick introduction to Consensus Models
Oded Noam
?
Towards a low carbon proof-of-work blockchain
Towards a low carbon proof-of-work blockchainTowards a low carbon proof-of-work blockchain
Towards a low carbon proof-of-work blockchain
IJNSA Journal
?
BlockChain_Chap3_RP _Consensus.pptx
BlockChain_Chap3_RP _Consensus.pptxBlockChain_Chap3_RP _Consensus.pptx
BlockChain_Chap3_RP _Consensus.pptx
RajChauhan226834
?
Building on quicksand microservices indicthreads
Building on quicksand microservices indicthreadsBuilding on quicksand microservices indicthreads
Building on quicksand microservices indicthreads
IndicThreads
?
V SYSTEMS - SPoS Whitepaper_EN
V SYSTEMS - SPoS Whitepaper_ENV SYSTEMS - SPoS Whitepaper_EN
V SYSTEMS - SPoS Whitepaper_EN
V SYSTEMS
?
The need for blockchain technology
The need for blockchain technologyThe need for blockchain technology
The need for blockchain technology
Tommy Koens
?
Cap in depth
Cap in depthCap in depth
Cap in depth
Ioanna Tsalouchidou
?
A Tale of Contemporary Software
A Tale of Contemporary SoftwareA Tale of Contemporary Software
A Tale of Contemporary Software
Yun Zhi Lin
?
01 what is blockchain
01 what is blockchain01 what is blockchain
01 what is blockchain
BastianBlankenburg
?
Cs704 d distributedmutualexcclusion&memory
Cs704 d distributedmutualexcclusion&memoryCs704 d distributedmutualexcclusion&memory
Cs704 d distributedmutualexcclusion&memory
Debasis Das
?
FIWARE Data Management in High Availability
FIWARE Data Management in High AvailabilityFIWARE Data Management in High Availability
FIWARE Data Management in High Availability
Federico Michele Facca
?
Cryptomania! The Byzantine Generals Leave Their Garden
Cryptomania! The Byzantine Generals Leave Their GardenCryptomania! The Byzantine Generals Leave Their Garden
Cryptomania! The Byzantine Generals Leave Their Garden
Dallas Kennedy
?
Maintaining data consistency in
Maintaining data consistency inMaintaining data consistency in
Maintaining data consistency in
IMPULSE_TECHNOLOGY
?
CAP Theorem - Theory, Implications and Practices
CAP Theorem - Theory, Implications and PracticesCAP Theorem - Theory, Implications and Practices
CAP Theorem - Theory, Implications and Practices
Yoav Francis
?
Real-time Collaborative Editing with CRDTs
Real-time Collaborative Editing with CRDTsReal-time Collaborative Editing with CRDTs
Real-time Collaborative Editing with CRDTs
C4Media
?
Convert EML files to PST on Mac operating system
Convert EML files to PST on Mac operating systemConvert EML files to PST on Mac operating system
Convert EML files to PST on Mac operating system
Rachel Walker
?
HHUG-04-2025-Close-more-deals-from-your-existing-pipeline-FOR SLIDESHARE.pptx
HHUG-04-2025-Close-more-deals-from-your-existing-pipeline-FOR SLIDESHARE.pptxHHUG-04-2025-Close-more-deals-from-your-existing-pipeline-FOR SLIDESHARE.pptx
HHUG-04-2025-Close-more-deals-from-your-existing-pipeline-FOR SLIDESHARE.pptx
HampshireHUG
?

More Related Content

Similar to Distributed Consensus: Making Impossible Possible (20)

Hashgraph as Code
Hashgraph as CodeHashgraph as Code
Hashgraph as Code
Calvin Cheng
?
CAP Theorem and Split Brain Syndrome
CAP Theorem and Split Brain SyndromeCAP Theorem and Split Brain Syndrome
CAP Theorem and Split Brain Syndrome
Dilum Bandara
?
osi-oss-dbs.pptx
osi-oss-dbs.pptxosi-oss-dbs.pptx
osi-oss-dbs.pptx
Shivji Kumar Jha
?
unit3consesence.pptx
unit3consesence.pptxunit3consesence.pptx
unit3consesence.pptx
GopalSB
?
Crossing the Boundaries: Development Strategies for (P)SoCs
Crossing the Boundaries: Development Strategies for (P)SoCsCrossing the Boundaries: Development Strategies for (P)SoCs
Crossing the Boundaries: Development Strategies for (P)SoCs
Andreas Koschak
?
A quick introduction to Consensus Models
A quick introduction to Consensus ModelsA quick introduction to Consensus Models
A quick introduction to Consensus Models
Oded Noam
?
Towards a low carbon proof-of-work blockchain
Towards a low carbon proof-of-work blockchainTowards a low carbon proof-of-work blockchain
Towards a low carbon proof-of-work blockchain
IJNSA Journal
?
BlockChain_Chap3_RP _Consensus.pptx
BlockChain_Chap3_RP _Consensus.pptxBlockChain_Chap3_RP _Consensus.pptx
BlockChain_Chap3_RP _Consensus.pptx
RajChauhan226834
?
Building on quicksand microservices indicthreads
Building on quicksand microservices indicthreadsBuilding on quicksand microservices indicthreads
Building on quicksand microservices indicthreads
IndicThreads
?
V SYSTEMS - SPoS Whitepaper_EN
V SYSTEMS - SPoS Whitepaper_ENV SYSTEMS - SPoS Whitepaper_EN
V SYSTEMS - SPoS Whitepaper_EN
V SYSTEMS
?
The need for blockchain technology
The need for blockchain technologyThe need for blockchain technology
The need for blockchain technology
Tommy Koens
?
Cap in depth
Cap in depthCap in depth
Cap in depth
Ioanna Tsalouchidou
?
A Tale of Contemporary Software
A Tale of Contemporary SoftwareA Tale of Contemporary Software
A Tale of Contemporary Software
Yun Zhi Lin
?
01 what is blockchain
01 what is blockchain01 what is blockchain
01 what is blockchain
BastianBlankenburg
?
Cs704 d distributedmutualexcclusion&memory
Cs704 d distributedmutualexcclusion&memoryCs704 d distributedmutualexcclusion&memory
Cs704 d distributedmutualexcclusion&memory
Debasis Das
?
FIWARE Data Management in High Availability
FIWARE Data Management in High AvailabilityFIWARE Data Management in High Availability
FIWARE Data Management in High Availability
Federico Michele Facca
?
Cryptomania! The Byzantine Generals Leave Their Garden
Cryptomania! The Byzantine Generals Leave Their GardenCryptomania! The Byzantine Generals Leave Their Garden
Cryptomania! The Byzantine Generals Leave Their Garden
Dallas Kennedy
?
Maintaining data consistency in
Maintaining data consistency inMaintaining data consistency in
Maintaining data consistency in
IMPULSE_TECHNOLOGY
?
CAP Theorem - Theory, Implications and Practices
CAP Theorem - Theory, Implications and PracticesCAP Theorem - Theory, Implications and Practices
CAP Theorem - Theory, Implications and Practices
Yoav Francis
?
Real-time Collaborative Editing with CRDTs
Real-time Collaborative Editing with CRDTsReal-time Collaborative Editing with CRDTs
Real-time Collaborative Editing with CRDTs
C4Media
?
Hashgraph as Code
Hashgraph as CodeHashgraph as Code
Hashgraph as Code
Calvin Cheng
?
CAP Theorem and Split Brain Syndrome
CAP Theorem and Split Brain SyndromeCAP Theorem and Split Brain Syndrome
CAP Theorem and Split Brain Syndrome
Dilum Bandara
?
osi-oss-dbs.pptx
osi-oss-dbs.pptxosi-oss-dbs.pptx
osi-oss-dbs.pptx
Shivji Kumar Jha
?
unit3consesence.pptx
unit3consesence.pptxunit3consesence.pptx
unit3consesence.pptx
GopalSB
?
Crossing the Boundaries: Development Strategies for (P)SoCs
Crossing the Boundaries: Development Strategies for (P)SoCsCrossing the Boundaries: Development Strategies for (P)SoCs
Crossing the Boundaries: Development Strategies for (P)SoCs
Andreas Koschak
?
A quick introduction to Consensus Models
A quick introduction to Consensus ModelsA quick introduction to Consensus Models
A quick introduction to Consensus Models
Oded Noam
?
Towards a low carbon proof-of-work blockchain
Towards a low carbon proof-of-work blockchainTowards a low carbon proof-of-work blockchain
Towards a low carbon proof-of-work blockchain
IJNSA Journal
?
BlockChain_Chap3_RP _Consensus.pptx
BlockChain_Chap3_RP _Consensus.pptxBlockChain_Chap3_RP _Consensus.pptx
BlockChain_Chap3_RP _Consensus.pptx
RajChauhan226834
?
Building on quicksand microservices indicthreads
Building on quicksand microservices indicthreadsBuilding on quicksand microservices indicthreads
Building on quicksand microservices indicthreads
IndicThreads
?
V SYSTEMS - SPoS Whitepaper_EN
V SYSTEMS - SPoS Whitepaper_ENV SYSTEMS - SPoS Whitepaper_EN
V SYSTEMS - SPoS Whitepaper_EN
V SYSTEMS
?
The need for blockchain technology
The need for blockchain technologyThe need for blockchain technology
The need for blockchain technology
Tommy Koens
?
Cap in depth
Cap in depthCap in depth
Cap in depth
Ioanna Tsalouchidou
?
A Tale of Contemporary Software
A Tale of Contemporary SoftwareA Tale of Contemporary Software
A Tale of Contemporary Software
Yun Zhi Lin
?
01 what is blockchain
01 what is blockchain01 what is blockchain
01 what is blockchain
BastianBlankenburg
?
Cs704 d distributedmutualexcclusion&memory
Cs704 d distributedmutualexcclusion&memoryCs704 d distributedmutualexcclusion&memory
Cs704 d distributedmutualexcclusion&memory
Debasis Das
?
FIWARE Data Management in High Availability
FIWARE Data Management in High AvailabilityFIWARE Data Management in High Availability
FIWARE Data Management in High Availability
Federico Michele Facca
?
Cryptomania! The Byzantine Generals Leave Their Garden
Cryptomania! The Byzantine Generals Leave Their GardenCryptomania! The Byzantine Generals Leave Their Garden
Cryptomania! The Byzantine Generals Leave Their Garden
Dallas Kennedy
?
Maintaining data consistency in
Maintaining data consistency inMaintaining data consistency in
Maintaining data consistency in
IMPULSE_TECHNOLOGY
?
CAP Theorem - Theory, Implications and Practices
CAP Theorem - Theory, Implications and PracticesCAP Theorem - Theory, Implications and Practices
CAP Theorem - Theory, Implications and Practices
Yoav Francis
?
Real-time Collaborative Editing with CRDTs
Real-time Collaborative Editing with CRDTsReal-time Collaborative Editing with CRDTs
Real-time Collaborative Editing with CRDTs
C4Media
?

Recently uploaded (20)

Convert EML files to PST on Mac operating system
Convert EML files to PST on Mac operating systemConvert EML files to PST on Mac operating system
Convert EML files to PST on Mac operating system
Rachel Walker
?
HHUG-04-2025-Close-more-deals-from-your-existing-pipeline-FOR SLIDESHARE.pptx
HHUG-04-2025-Close-more-deals-from-your-existing-pipeline-FOR SLIDESHARE.pptxHHUG-04-2025-Close-more-deals-from-your-existing-pipeline-FOR SLIDESHARE.pptx
HHUG-04-2025-Close-more-deals-from-your-existing-pipeline-FOR SLIDESHARE.pptx
HampshireHUG
?
Leadership Spectrum by Sonam Sherpa at GDG Kathmandu March Monthly Meetup
Leadership Spectrum by Sonam Sherpa at GDG Kathmandu March Monthly MeetupLeadership Spectrum by Sonam Sherpa at GDG Kathmandu March Monthly Meetup
Leadership Spectrum by Sonam Sherpa at GDG Kathmandu March Monthly Meetup
GDG Kathmandu
?
2025-04-05 - Block71 Event - The Landscape of GenAI and Ecosystem.pdf
2025-04-05 - Block71 Event - The Landscape of GenAI and Ecosystem.pdf2025-04-05 - Block71 Event - The Landscape of GenAI and Ecosystem.pdf
2025-04-05 - Block71 Event - The Landscape of GenAI and Ecosystem.pdf
Ivan Tang
?
All-Data, Any-AI Integration: FME & Amazon Bedrock in the Real-World
All-Data, Any-AI Integration: FME & Amazon Bedrock in the Real-WorldAll-Data, Any-AI Integration: FME & Amazon Bedrock in the Real-World
All-Data, Any-AI Integration: FME & Amazon Bedrock in the Real-World
Safe Software
?
Automating Behavior-Driven Development: Boosting Productivity with Template-D...
Automating Behavior-Driven Development: Boosting Productivity with Template-D...Automating Behavior-Driven Development: Boosting Productivity with Template-D...
Automating Behavior-Driven Development: Boosting Productivity with Template-D...
DOCOMO Innovations, Inc.
?
Top Tips to Get Your Data AI-Ready? ? ?? ?
Top Tips to Get Your Data AI-Ready? ? ?? ?Top Tips to Get Your Data AI-Ready? ? ?? ?
Top Tips to Get Your Data AI-Ready? ? ?? ?
Precisely
?
Migrating to the Isolated worker process in Azure Functions .pptx
Migrating to the Isolated worker process in Azure Functions .pptxMigrating to the Isolated worker process in Azure Functions .pptx
Migrating to the Isolated worker process in Azure Functions .pptx
Callon Campbell
?
New from BookNet Canada for 2025: BNC SalesData and BNC LibraryData
New from BookNet Canada for 2025: BNC SalesData and BNC LibraryDataNew from BookNet Canada for 2025: BNC SalesData and BNC LibraryData
New from BookNet Canada for 2025: BNC SalesData and BNC LibraryData
BookNet Canada
?
Human Centered Design By Gnanasambandham
Human Centered Design By GnanasambandhamHuman Centered Design By Gnanasambandham
Human Centered Design By Gnanasambandham
Gnanasambandham Anbazhagan CSP, CSM, CSPO
?
AuthZEN The OpenID Connect of Authorization - Gartner IAM EMEA 2025
AuthZEN The OpenID Connect of Authorization - Gartner IAM EMEA 2025AuthZEN The OpenID Connect of Authorization - Gartner IAM EMEA 2025
AuthZEN The OpenID Connect of Authorization - Gartner IAM EMEA 2025
David Brossard
?
Getting the Best of TrueDEM ¨C April News & Updates
Getting the Best of TrueDEM ¨C April News & UpdatesGetting the Best of TrueDEM ¨C April News & Updates
Getting the Best of TrueDEM ¨C April News & Updates
panagenda
?
Meet CrewAI The Framework Powering Agentic AI (2).pdf
Meet CrewAI The Framework Powering Agentic AI (2).pdfMeet CrewAI The Framework Powering Agentic AI (2).pdf
Meet CrewAI The Framework Powering Agentic AI (2).pdf
Yodaplus Technologies Private Limited
?
Beyond the life of a CISO - Head of Trust at GDG Kathmandu Monthly Meetup
Beyond the life of a CISO - Head of Trust at GDG Kathmandu Monthly MeetupBeyond the life of a CISO - Head of Trust at GDG Kathmandu Monthly Meetup
Beyond the life of a CISO - Head of Trust at GDG Kathmandu Monthly Meetup
GDG Kathmandu
?
Mastering Azure Durable Functions - Building Resilient and Scalable Workflows
Mastering Azure Durable Functions - Building Resilient and Scalable WorkflowsMastering Azure Durable Functions - Building Resilient and Scalable Workflows
Mastering Azure Durable Functions - Building Resilient and Scalable Workflows
Callon Campbell
?
Next.js Development: The Ultimate Solution for High-Performance Web Apps
Next.js Development: The Ultimate Solution for High-Performance Web AppsNext.js Development: The Ultimate Solution for High-Performance Web Apps
Next.js Development: The Ultimate Solution for High-Performance Web Apps
rwinfotech31
?
Recruiting Tech: A Look at Why AI is Actually OG
Recruiting Tech: A Look at Why AI is Actually OGRecruiting Tech: A Look at Why AI is Actually OG
Recruiting Tech: A Look at Why AI is Actually OG
Matt Charney
?
Dragino¥×¥í¥À¥¯¥È¥«¥¿¥í¥° LoRaWAN NB-IoT LTE cat.M1ÉÌÆ·¥ê¥¹¥È
Dragino¥×¥í¥À¥¯¥È¥«¥¿¥í¥° LoRaWAN NB-IoT LTE cat.M1ÉÌÆ·¥ê¥¹¥ÈDragino¥×¥í¥À¥¯¥È¥«¥¿¥í¥° LoRaWAN NB-IoT LTE cat.M1ÉÌÆ·¥ê¥¹¥È
Dragino¥×¥í¥À¥¯¥È¥«¥¿¥í¥° LoRaWAN NB-IoT LTE cat.M1ÉÌÆ·¥ê¥¹¥È
CRI Japan, Inc.
?
Benefits of Moving Ellucian Banner to Oracle Cloud
Benefits of Moving Ellucian Banner to Oracle CloudBenefits of Moving Ellucian Banner to Oracle Cloud
Benefits of Moving Ellucian Banner to Oracle Cloud
AstuteBusiness
?
Commit Conf 2025 Bitnami Charts with Kubescape
Commit Conf 2025 Bitnami Charts with KubescapeCommit Conf 2025 Bitnami Charts with Kubescape
Commit Conf 2025 Bitnami Charts with Kubescape
Alfredo Garc¨ªa Lavilla
?
Convert EML files to PST on Mac operating system
Convert EML files to PST on Mac operating systemConvert EML files to PST on Mac operating system
Convert EML files to PST on Mac operating system
Rachel Walker
?
HHUG-04-2025-Close-more-deals-from-your-existing-pipeline-FOR SLIDESHARE.pptx
HHUG-04-2025-Close-more-deals-from-your-existing-pipeline-FOR SLIDESHARE.pptxHHUG-04-2025-Close-more-deals-from-your-existing-pipeline-FOR SLIDESHARE.pptx
HHUG-04-2025-Close-more-deals-from-your-existing-pipeline-FOR SLIDESHARE.pptx
HampshireHUG
?
Leadership Spectrum by Sonam Sherpa at GDG Kathmandu March Monthly Meetup
Leadership Spectrum by Sonam Sherpa at GDG Kathmandu March Monthly MeetupLeadership Spectrum by Sonam Sherpa at GDG Kathmandu March Monthly Meetup
Leadership Spectrum by Sonam Sherpa at GDG Kathmandu March Monthly Meetup
GDG Kathmandu
?
2025-04-05 - Block71 Event - The Landscape of GenAI and Ecosystem.pdf
2025-04-05 - Block71 Event - The Landscape of GenAI and Ecosystem.pdf2025-04-05 - Block71 Event - The Landscape of GenAI and Ecosystem.pdf
2025-04-05 - Block71 Event - The Landscape of GenAI and Ecosystem.pdf
Ivan Tang
?
All-Data, Any-AI Integration: FME & Amazon Bedrock in the Real-World
All-Data, Any-AI Integration: FME & Amazon Bedrock in the Real-WorldAll-Data, Any-AI Integration: FME & Amazon Bedrock in the Real-World
All-Data, Any-AI Integration: FME & Amazon Bedrock in the Real-World
Safe Software
?
Automating Behavior-Driven Development: Boosting Productivity with Template-D...
Automating Behavior-Driven Development: Boosting Productivity with Template-D...Automating Behavior-Driven Development: Boosting Productivity with Template-D...
Automating Behavior-Driven Development: Boosting Productivity with Template-D...
DOCOMO Innovations, Inc.
?
Top Tips to Get Your Data AI-Ready? ? ?? ?
Top Tips to Get Your Data AI-Ready? ? ?? ?Top Tips to Get Your Data AI-Ready? ? ?? ?
Top Tips to Get Your Data AI-Ready? ? ?? ?
Precisely
?
Migrating to the Isolated worker process in Azure Functions .pptx
Migrating to the Isolated worker process in Azure Functions .pptxMigrating to the Isolated worker process in Azure Functions .pptx
Migrating to the Isolated worker process in Azure Functions .pptx
Callon Campbell
?
New from BookNet Canada for 2025: BNC SalesData and BNC LibraryData
New from BookNet Canada for 2025: BNC SalesData and BNC LibraryDataNew from BookNet Canada for 2025: BNC SalesData and BNC LibraryData
New from BookNet Canada for 2025: BNC SalesData and BNC LibraryData
BookNet Canada
?
Human Centered Design By Gnanasambandham
Human Centered Design By GnanasambandhamHuman Centered Design By Gnanasambandham
Human Centered Design By Gnanasambandham
Gnanasambandham Anbazhagan CSP, CSM, CSPO
?
AuthZEN The OpenID Connect of Authorization - Gartner IAM EMEA 2025
AuthZEN The OpenID Connect of Authorization - Gartner IAM EMEA 2025AuthZEN The OpenID Connect of Authorization - Gartner IAM EMEA 2025
AuthZEN The OpenID Connect of Authorization - Gartner IAM EMEA 2025
David Brossard
?
Getting the Best of TrueDEM ¨C April News & Updates
Getting the Best of TrueDEM ¨C April News & UpdatesGetting the Best of TrueDEM ¨C April News & Updates
Getting the Best of TrueDEM ¨C April News & Updates
panagenda
?
Meet CrewAI The Framework Powering Agentic AI (2).pdf
Meet CrewAI The Framework Powering Agentic AI (2).pdfMeet CrewAI The Framework Powering Agentic AI (2).pdf
Meet CrewAI The Framework Powering Agentic AI (2).pdf
Yodaplus Technologies Private Limited
?
Beyond the life of a CISO - Head of Trust at GDG Kathmandu Monthly Meetup
Beyond the life of a CISO - Head of Trust at GDG Kathmandu Monthly MeetupBeyond the life of a CISO - Head of Trust at GDG Kathmandu Monthly Meetup
Beyond the life of a CISO - Head of Trust at GDG Kathmandu Monthly Meetup
GDG Kathmandu
?
Mastering Azure Durable Functions - Building Resilient and Scalable Workflows
Mastering Azure Durable Functions - Building Resilient and Scalable WorkflowsMastering Azure Durable Functions - Building Resilient and Scalable Workflows
Mastering Azure Durable Functions - Building Resilient and Scalable Workflows
Callon Campbell
?
Next.js Development: The Ultimate Solution for High-Performance Web Apps
Next.js Development: The Ultimate Solution for High-Performance Web AppsNext.js Development: The Ultimate Solution for High-Performance Web Apps
Next.js Development: The Ultimate Solution for High-Performance Web Apps
rwinfotech31
?
Recruiting Tech: A Look at Why AI is Actually OG
Recruiting Tech: A Look at Why AI is Actually OGRecruiting Tech: A Look at Why AI is Actually OG
Recruiting Tech: A Look at Why AI is Actually OG
Matt Charney
?
Dragino¥×¥í¥À¥¯¥È¥«¥¿¥í¥° LoRaWAN NB-IoT LTE cat.M1ÉÌÆ·¥ê¥¹¥È
Dragino¥×¥í¥À¥¯¥È¥«¥¿¥í¥° LoRaWAN NB-IoT LTE cat.M1ÉÌÆ·¥ê¥¹¥ÈDragino¥×¥í¥À¥¯¥È¥«¥¿¥í¥° LoRaWAN NB-IoT LTE cat.M1ÉÌÆ·¥ê¥¹¥È
Dragino¥×¥í¥À¥¯¥È¥«¥¿¥í¥° LoRaWAN NB-IoT LTE cat.M1ÉÌÆ·¥ê¥¹¥È
CRI Japan, Inc.
?
Benefits of Moving Ellucian Banner to Oracle Cloud
Benefits of Moving Ellucian Banner to Oracle CloudBenefits of Moving Ellucian Banner to Oracle Cloud
Benefits of Moving Ellucian Banner to Oracle Cloud
AstuteBusiness
?
Commit Conf 2025 Bitnami Charts with Kubescape
Commit Conf 2025 Bitnami Charts with KubescapeCommit Conf 2025 Bitnami Charts with Kubescape
Commit Conf 2025 Bitnami Charts with Kubescape
Alfredo Garc¨ªa Lavilla
?

Distributed Consensus: Making Impossible Possible

  • 1. Distributed Consensus: Making Impossible Possible Heidi Howard PhD Student @ University of Cambridge heidi.howard@cl.cam.ac.uk @heidiann360
  • 3. What is Consensus? ¡°The process by which we reach agreement over system state between unreliable machines connected by asynchronous networks¡±
  • 4. Why? ? Distributed locking ? Banking ? Safety critical systems ? Distributed scheduling and coordination Anything which requires guaranteed agreement
  • 5. A walk through history We are going to take a journey through the developments in distributed consensus, spanning 3 decades. We are going to search for answers to questions like: ? how do we reach consensus? ? what is the best method for reaching consensus? ? can we even reach consensus? ? what¡¯s next in the ?eld?
  • 6. FLP Result off to a slippery start Impossibility of distributed consensus with one faulty process Michael Fischer, Nancy Lynch and Michael Paterson ACM SIGACT-SIGMOD Symposium on Principles of Database Systems 1983
  • 7. FLP We cannot guarantee agreement in an asynchronous system where even one host might fail. Why? We cannot reliably detect failures. We cannot know for sure the difference between a slow host/network and a failed host NB: We can still guarantee safety, the issue limited to guaranteeing liveness.
  • 8. Solution to FLP In practice: We accept that sometimes the system will not be available. We mitigate this using timers and backoffs. In theory: We make weaker assumptions about the synchrony of the system e.g. messages arrive within a year.
  • 9. Paxos Lamport¡¯s original consensus algorithm The Part-Time Parliament Leslie Lamport ACM Transactions on Computer Systems May 1998
  • 10. Paxos The original consensus algorithm for reaching agreement on a single value. ? two phase process: promise and commit ? majority agreement ? monotonically increasing numbers
  • 14. 1 2 3 P: C: P: 13 C: P: C: B Promise (13) ? Phase 1 Promise (13) ?
  • 15. 1 2 3 P: 13 C: OKOK P: 13 C: P: 13 C: Phase 1
  • 16. 1 2 3 P: 13 C: 13, B P: 13 C: P: 13 C: Phase 2 Commit (13, ) ?B Commit (13, ) ?B
  • 17. 1 2 3 P: 13 C: 13, B P: 13 C: 13, P: 13 C: 13, Phase 2 B B OKOK
  • 18. 1 2 3 P: 13 C: 13, B P: 13 C: 13, P: 13 C: 13, B B OK Bob is granted the lock
  • 21. 1 2 3 P: C: P: 13 C: P: C: Promise (13) ? Phase 1 B Incoming request from Bob Promise (13) ?
  • 22. 1 2 3 P: 13 C: P: 13 C: P: 13 C: Phase 1 B OK OK
  • 23. 1 2 3 P: 13 C: P: 13 C: 13, P: 13 C: Phase 2 Commit (13, ) ?B B
  • 24. 1 2 3 P: 13 C: P: 13 C: 13, P: 13 C: 13, Phase 2 B B
  • 25. 1 2 3 P: 13 C: P: 13 C: 13, P: 13 C: 13, Alice would also like the lock B B A
  • 26. 1 2 3 P: 13 C: P: 13 C: 13, P: 13 C: 13, Alice would also like the lock B B A
  • 27. 1 2 3 P: 22 C: P: 13 C: 13, P: 13 C: 13, Phase 1 B B A Promise (22) ?
  • 28. 1 2 3 P: 22 C: P: 13 C: 13, P: 22 C: 13, Phase 1 B B A OK(13, )B
  • 29. 1 2 3 P: 22 C: 22, P: 13 C: 13, P: 22 C: 13, Phase 2 B B A Commit (22, ) ?B B
  • 30. 1 2 3 P: 22 C: 22, P: 13 C: 13, P: 22 C: 22, Phase 2 B B OK B NO
  • 31. Paxos Summary Clients must wait two round trips (2 RTT) to the majority of nodes. Sometimes longer. The system will continue as long as a majority of nodes are up
  • 32. Multi-Paxos Lamport¡¯s leader-driven consensus algorithm Paxos Made Moderately Complex Robbert van Renesse and Deniz Altinbuken ACM Computing Surveys April 2015 Not the original, but highly recommended
  • 33. Multi-Paxos Lamport¡¯s insight: Phase 1 is not speci?c to the request so can be done before the request arrives and can be reused. Implication: Bob now only has to wait one RTT
  • 34. State Machine Replication fault-tolerant services using consensus Implementing Fault-Tolerant Services Using the State Machine Approach: A Tutorial Fred Schneider ACM Computing Surveys 1990
  • 35. State Machine Replication A general technique for making a service, such as a database, fault-tolerant. Application Client Client
  • 39. CAP Theorem You cannot have your cake and eat it CAP Theorem Eric Brewer Presented at Symposium on Principles of Distributed Computing, 2000
  • 40. Consistency, Availability & Partition Tolerance - Pick Two 1 2 3 4 B C
  • 41. Paxos Made Live How google uses Paxos Paxos Made Live - An Engineering Perspective Tushar Chandra, Robert Griesemer and Joshua Redstone ACM Symposium on Principles of Distributed Computing 2007
  • 42. Paxos Made Live Paxos made live documents the challenges in constructing Chubby, a distributed coordination service, built using Multi-Paxos and SMR.
  • 43. Isn¡¯t this a solved problem? ¡°There are signi?cant gaps between the description of the Paxos algorithm and the needs of a real-world system. In order to build a real-world system, an expert needs to use numerous ideas scattered in the literature and make several relatively small protocol extensions. The cumulative effort will be substantial and the ?nal system will be based on an unproven protocol.¡±
  • 44. Challenges ? Handling disk failure and corruption ? Dealing with limited storage capacity ? Effectively handling read-only requests ? Dynamic membership & recon?guration ? Supporting transactions ? Verifying safety of the implementation
  • 45. Fast Paxos Like Multi-Paxos, but faster Fast Paxos Leslie Lamport Microsoft Research Tech Report MSR-TR-2005-112
  • 46. Fast Paxos Paxos: Any node can commit a value in 2 RTTs Multi-Paxos: The leader node can commit a value in 1 RTT But, what about any node committing a value in 1 RTT?
  • 47. Fast Paxos We can bypass the leader node for many operations, so any node can commit a value in 1 RTT. However, we must either: ? reduce the number of failures we guarantee to tolerance, or ? increase the size of the quorum, or ? a combination of both
  • 48. Egalitarian Paxos Don¡¯t restrict yourself unnecessarily There Is More Consensus in Egalitarian Parliaments Iulian Moraru, David G. Andersen, Michael Kaminsky SOSP 2013 also see Generalized Consensus and Paxos
  • 49. Egalitarian Paxos The basis of SMR is that every replica of an application receives the same commands in the same order. However, sometimes the ordering can be relaxed¡­
  • 50. C=1 B? C=C+1 C? B=0 B=C C=1 B? C=C+1 C? B=0 B=C Partial Ordering Total Ordering
  • 51. C=1 B? C=C+1 C? B=0 B=C Many possible orderings B? C=C+1 C?B=0 B=CC=1 B?C=C+1 C? B=0 B=CC=1 B? C=C+1 C? B=0 B=CC=1
  • 52. Egalitarian Paxos Allow requests to be out-of-order if they are commutative. Con?ict becomes much less common. Works well in combination with Fast Paxos.
  • 53. Viewstamped Replication Revisited the forgotten algorithm Viewstamped Replication Revisited Barbara Liskov and James Cowling MIT Tech Report MIT-CSAIL-TR-2012-021
  • 54. Viewstamped Replication Revisited (VRR) Interesting and well explained variant of SMR + Multi- Paxos. Key features: ? Round robin leader election ? Dynamic Membership
  • 55. Raft Consensus Paxos made understandable In Search of an Understandable Consensus Algorithm Diego Ongaro and John Ousterhout USENIX Annual Technical Conference 2014
  • 56. Raft Raft has taken the wider community by storm. Due to its understandable description. It¡¯s another variant of SMR with Multi-Paxos. Key features: ? Really strong leadership - all other nodes are passive ? Dynamic membership and log compaction
  • 57. Follower Candidate Leader Startup/ Restart Timeout Win Timeout Step down Step down
  • 58. Ios Why do things yourself, when you can delegate it? to appear
  • 59. Ios The issue with leader-driven algorithms like Multi- Paxos, Raft and VRR is that throughput is limited to one node. Ios allows a leader to safely and dynamically delegate their responsibilities to other nodes in the system.
  • 61. Hydra Distributed consensus for systems which span multiple datacenters. We use Ios for replication within the datacenter and a Egalitarian Paxos like protocol for across datacenters. The system has a clear leader but most requests simply bypass the leader.
  • 62. 1 2 3 4 5 6 7 8 9 Tokyo West Coast East Coast B
  • 63. 1 2 3 4 5 6 7 8 9 Tokyo West Coast East Coast B
  • 64. 1 2 3 4 5 6 7 8 9 Tokyo West Coast East Coast B
  • 65. The road we travelled ? 2 impossibility results: CAP & FLP ? 1 replication method: State machine Replication ? 6 consensus algorithms: Paxos, Multi-Paxos, Fast Paxos, Egalitarian Paxos, Viewstamped Replication Revisited & Raft ? 2 future algorithms: Ios & Hydra
  • 66. How strong is the leadership? Strong Leadership Leaderless Paxos Egalitarian Paxos Raft VRR Ios Hydra Multi-Paxos Fast Paxos Leader with Delegation Leader only when needed Leader driven
  • 67. Who is the winner? Depends on the award: ? Best for minimum latency: VRR ? Easier to understand: Raft ? Best for WANs (con?icts rare): Egalitarian Paxos ? Best for WANs (con?icts common): Fast Paxos
  • 68. Future 1. More algorithms offering a compromise between strong leadership and leaderless 2. More understandable consensus algorithms 3. Achieving consensus is getting cheaper, even in challenging settings 4. Deployment with micro-services and unikernels 5. Self-scaling replication - adapting resources to maintain resilience level.
  • 69. Stops we drove passed We have seen one path through history, but many more exist. ? Alternative replication techniques e.g. chain replication and primary backup replication ? Alternative failure models e.g. nodes acting maliciously ? Alternative domains e.g. sensor networks, mobile networks, between cores
  • 70. Summary Do not be discouraged by impossibility results and dense abstract academic papers. Consensus is useful and achievable. Find the right algorithm for your speci?c domain. heidi.howard@cl.cam.ac.uk @heidiann360
AboutCopyright
? 2025 ºÝºÝߣ