SYSTEMS AND METHODS FOR PROCESSING APPLICATION FIREWALL SESSION INFORMATION ON OWNER CORE IN MULTIPLE CORE SYSTEM
First Claim
1. A method of processing application firewall checks in a multi-core intermediary device, the method comprising:
- (a) storing, by a first application firewall module executing on a first core of a multi-core intermediary device, application firewall session data to memory accessible by the first core, the first core establishing a session for a user;
(b) receiving, by a second application firewall module executing on a second core of the multi-core intermediary device, a request from the user via the session, the request comprising a session identifier identifying the first core as establishing the session;
(c) determining, by the second application firewall module, to perform a security check of a plurality of security checks on the request;
(d) communicating, by the second application firewall module, a first portion of the request corresponding to the security check to the first core identified by the session identifier;
(e) receiving, by the second application firewall module, from the first core a result of the security check performed by the first core on the first portion of the request using the stored application firewall session data.
8 Assignments
0 Petitions
Accused Products
Abstract
The present invention is directed towards systems and methods for sharing session data among cores in a multi-core system. A first application firewall module executes on a core of a multi-core intermediary device which establishes a user session. The first application firewall module stores application firewall session data to memory accessible by the first core. A second application firewall module executes on a second core of the multi-core intermediary device. The second application firewall module receives a request from the user via the established user session. The request includes a session identifier identifying that the user session was established by the first core. The second application firewall module determines to perform one or more security checks on the request and communicates a portion of the request the first core. The second application firewall module receives and processes the security check results and instructions from the first core.
-
Citations
26 Claims
-
1. A method of processing application firewall checks in a multi-core intermediary device, the method comprising:
-
(a) storing, by a first application firewall module executing on a first core of a multi-core intermediary device, application firewall session data to memory accessible by the first core, the first core establishing a session for a user; (b) receiving, by a second application firewall module executing on a second core of the multi-core intermediary device, a request from the user via the session, the request comprising a session identifier identifying the first core as establishing the session; (c) determining, by the second application firewall module, to perform a security check of a plurality of security checks on the request; (d) communicating, by the second application firewall module, a first portion of the request corresponding to the security check to the first core identified by the session identifier; (e) receiving, by the second application firewall module, from the first core a result of the security check performed by the first core on the first portion of the request using the stored application firewall session data. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
-
-
14. A system for processing application firewall checks in a multi-core intermediary device, the method comprising:
-
a first application firewall module executing on a first core of a multi-core intermediary device storing application firewall session data to memory accessible by the first core, the first core establishing a session for a user; a second application firewall module executing on a second core of the multi-core intermediary device receiving a request from the user via the session, the request comprising a session identifier identifying the first core as establishing the session; the second application firewall module determining to perform on the request a security check of a plurality of security checks; the second application firewall module communicating a first portion of the request corresponding to the security check to the first core identified by the session identifier; the second application firewall module receiving from the first core a result of the security check performed by the first core on the first portion of the request using the stored application firewall session data. - View Dependent Claims (15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26)
-
Specification