System and method providing automatic policy enforcement in a multi-computer service application
First Claim
Patent Images
1. A computer-based method comprising:
- forming, by modeling logic, a scale-independent logical model of multi-computer service application comprising a plurality of software modules that execute on a plurality of computers coupled to one another across a communication network, the scale-independent logical model comprising multiple model components representing logical functions of the software modules and hardware components of the multi-computer service application;
converting, by deployment logic, respective ones of the model components into one or more resource instances representative of physical resources used to implement the logical function, the instances specifying communication ports on the physical resources and communication paths that link the physical resources;
installing, by the deployment logic, the one or more resource instances on the computers as deployed resources to implement the multi-computer service application; and
automatically managing, by the deployment logic, the deployed resources as operating parameters of the multi-computer service application change, management of the deployed resources being based on a policy enforced by an instantiated policy component of the multiple model components.
1 Assignment
0 Petitions
Accused Products
Abstract
Systems and methods to enforce policy in a multi-computer service application are described. In one aspect, a scale-independent logical model of an application is generated. The application is for implementation in a distributed computing system. The scale-independent logical model includes multiple components representing logical functions of the application and intercommunication protocols. The model components are converted into one or more instances representative of physical resources used to implement the logical functions. The instances specify information such as communication ports on the physical resources and communication paths that link the physical resources.
-
Citations
34 Claims
-
1. A computer-based method comprising:
-
forming, by modeling logic, a scale-independent logical model of multi-computer service application comprising a plurality of software modules that execute on a plurality of computers coupled to one another across a communication network, the scale-independent logical model comprising multiple model components representing logical functions of the software modules and hardware components of the multi-computer service application; converting, by deployment logic, respective ones of the model components into one or more resource instances representative of physical resources used to implement the logical function, the instances specifying communication ports on the physical resources and communication paths that link the physical resources; installing, by the deployment logic, the one or more resource instances on the computers as deployed resources to implement the multi-computer service application; and automatically managing, by the deployment logic, the deployed resources as operating parameters of the multi-computer service application change, management of the deployed resources being based on a policy enforced by an instantiated policy component of the multiple model components. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
-
-
15. A computer-readable storage medium comprising computer-executable instructions for automatic policy enforcement, the computer-executable instructions for:
-
forming a scale-independent logical model of an application for subsequent instantiation and installation across multiple computers in a distributed computer system, the scale-independent logical model having multiple model components representing logical functions of the application and intercommunication protocols; converting the model components into one or more instances representative of physical resources used to implement the logical functions, the instances specifying communication ports on the physical resources and communication paths that link the physical resources; and wherein the one or more instances are for automated deployment by deployment logic to at least a subset of the multiple computers for execution and subsequent automated management by a policy component of the model components according to a policy. - View Dependent Claims (16, 17, 18, 19, 20, 21, 22, 23, 24)
-
-
25. A computing device comprising:
-
processor; and memory coupled to the processor, the memory comprising computer-program instructions executable by the processor for; forming a scale-independent logical model of an application to be implemented by a distributed computer system, the scale-independent logical model having multiple model components representing logical functions of the application and intercommunication protocols, the logical functions comprising automatic policy enforcement independent of human intervention; converting the model components into one or more instances representative of physical resources used to implement the logical functions, the instances specifying communication ports on the physical resources and communication paths that link the physical; and wherein the one or more instances are for automated installment by deployment logic to at least a subset of multiple computers in the distributed computer system for execution and subsequent automatic policy management by a policy component of the multiple model components. - View Dependent Claims (26, 27, 28, 29, 30, 31, 32, 33)
-
-
34. A computing device comprising:
-
forming means to form a scale-independent logical model of an application to be implemented by a distributed computer system, the scale-independent logical model having multiple model components representing logical functions of the application and intercommunication protocols; converting means to covert the model components into one or more instances representative of physical resources used to implement the logical functions, the instances specifying communication ports on the physical resources and communication paths that link the physical resources; and wherein the one or more instances are for automated installment by deployment logic to at least a subset of multiple computers in the distributed computer system for execution and subsequent automatic policy management by a policy component of the multiple model components.
-
Specification