Eventual consensus in Synod: verification using a failure-aware actor model

Saswata Paul; Gul Agha; Stacy Patterson; Carlos Varela

doi:10.1007/s11334-022-00463-5

Eventual consensus in Synod: verification using a failure-aware actor model

Saswata Paul, Gul Agha, Stacy Patterson, Carlos Varela

Research output: Contribution to journal › Article › peer-review

Abstract

Successfully attaining consensus in the absence of a centralized coordinator is a fundamental problem in distributed multi-agent systems. We analyze progress in the Synod consensus protocol—which does not assume a unique leader—under the assumptions of asynchronous communication and potential agent failures. We identify a set of sufficient conditions under which it is possible to guarantee that a set of agents will eventually attain consensus using Synod. First, a subset of the agents must not permanently fail or exhibit Byzantine failure until consensus is reached, and second, at least one proposal must be eventually uninterrupted by higher-numbered proposals. To formally reason about agent failures, we introduce a failure-aware actor model (FAM). Using FAM, we model the identified conditions and provide a formal proof of eventual progress in Synod. Our proof has been mechanically verified using the Athena proof assistant and, to the best of our knowledge, it is the first machine-checked proof of eventual progress in Synod.

Original language	English (US)
Pages (from-to)	395-410
Number of pages	16
Journal	Innovations in Systems and Software Engineering
Volume	19
Issue number	4
Early online date	Jul 25 2022
DOIs	https://doi.org/10.1007/s11334-022-00463-5
State	Published - Dec 2023

Keywords

Athena
Fairness
Formal theorem proving
Liveness
Paxos
Urban air mobility

ASJC Scopus subject areas

Software

Online availability

10.1007/s11334-022-00463-5

Library availability

Discover UIUC Full Text

Cite this

@article{a6cbf1493d044ef7b1171dcfa9f7c7a3,

title = "Eventual consensus in Synod: verification using a failure-aware actor model",

abstract = "Successfully attaining consensus in the absence of a centralized coordinator is a fundamental problem in distributed multi-agent systems. We analyze progress in the Synod consensus protocol—which does not assume a unique leader—under the assumptions of asynchronous communication and potential agent failures. We identify a set of sufficient conditions under which it is possible to guarantee that a set of agents will eventually attain consensus using Synod. First, a subset of the agents must not permanently fail or exhibit Byzantine failure until consensus is reached, and second, at least one proposal must be eventually uninterrupted by higher-numbered proposals. To formally reason about agent failures, we introduce a failure-aware actor model (FAM). Using FAM, we model the identified conditions and provide a formal proof of eventual progress in Synod. Our proof has been mechanically verified using the Athena proof assistant and, to the best of our knowledge, it is the first machine-checked proof of eventual progress in Synod.",

keywords = "Athena, Fairness, Formal theorem proving, Liveness, Paxos, Urban air mobility",

author = "Saswata Paul and Gul Agha and Stacy Patterson and Carlos Varela",

note = "This research was partially supported by the National Science Foundation (NSF), Grant No.—CNS-1816307 and the Air Force Office of Scientific Research (AFOSR), DDDAS Grant No.—FA9550-19-1-0054.",

year = "2023",

month = dec,

doi = "10.1007/s11334-022-00463-5",

language = "English (US)",

volume = "19",

pages = "395--410",

journal = "Innovations in Systems and Software Engineering",

issn = "1614-5046",

publisher = "Springer London",

number = "4",

}

TY - JOUR

T1 - Eventual consensus in Synod

T2 - verification using a failure-aware actor model

AU - Paul, Saswata

AU - Agha, Gul

AU - Patterson, Stacy

AU - Varela, Carlos

N1 - This research was partially supported by the National Science Foundation (NSF), Grant No.—CNS-1816307 and the Air Force Office of Scientific Research (AFOSR), DDDAS Grant No.—FA9550-19-1-0054.

PY - 2023/12

Y1 - 2023/12

N2 - Successfully attaining consensus in the absence of a centralized coordinator is a fundamental problem in distributed multi-agent systems. We analyze progress in the Synod consensus protocol—which does not assume a unique leader—under the assumptions of asynchronous communication and potential agent failures. We identify a set of sufficient conditions under which it is possible to guarantee that a set of agents will eventually attain consensus using Synod. First, a subset of the agents must not permanently fail or exhibit Byzantine failure until consensus is reached, and second, at least one proposal must be eventually uninterrupted by higher-numbered proposals. To formally reason about agent failures, we introduce a failure-aware actor model (FAM). Using FAM, we model the identified conditions and provide a formal proof of eventual progress in Synod. Our proof has been mechanically verified using the Athena proof assistant and, to the best of our knowledge, it is the first machine-checked proof of eventual progress in Synod.

AB - Successfully attaining consensus in the absence of a centralized coordinator is a fundamental problem in distributed multi-agent systems. We analyze progress in the Synod consensus protocol—which does not assume a unique leader—under the assumptions of asynchronous communication and potential agent failures. We identify a set of sufficient conditions under which it is possible to guarantee that a set of agents will eventually attain consensus using Synod. First, a subset of the agents must not permanently fail or exhibit Byzantine failure until consensus is reached, and second, at least one proposal must be eventually uninterrupted by higher-numbered proposals. To formally reason about agent failures, we introduce a failure-aware actor model (FAM). Using FAM, we model the identified conditions and provide a formal proof of eventual progress in Synod. Our proof has been mechanically verified using the Athena proof assistant and, to the best of our knowledge, it is the first machine-checked proof of eventual progress in Synod.

KW - Athena

KW - Fairness

KW - Formal theorem proving

KW - Liveness

KW - Paxos

KW - Urban air mobility

UR - http://www.scopus.com/inward/record.url?scp=85135154101&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85135154101&partnerID=8YFLogxK

U2 - 10.1007/s11334-022-00463-5

DO - 10.1007/s11334-022-00463-5

M3 - Article

AN - SCOPUS:85135154101

SN - 1614-5046

VL - 19

SP - 395

EP - 410

JO - Innovations in Systems and Software Engineering

JF - Innovations in Systems and Software Engineering

IS - 4

ER -

Eventual consensus in Synod: verification using a failure-aware actor model

Abstract

Keywords

ASJC Scopus subject areas

Online availability

Library availability

Related links

Fingerprint

Cite this