In-kernel content-aware service differentiation
First Claim
1. A method comprising:
- employing at least one system for differentiating at least one service class in a kernel providing service differentiation as a kernel service based on application level information, and using service differentiation to provide different levels of quality of service for system performance to users to perform service differentiation based on content in at least one data packet for connections accepted in said at least one system, the step of employing providing content aware application header-based service differentiation in a Web server which communicates with clients over a network protecting the Web server against overload by controlling the amount and rate of work entering the system, and the step of employing including the steps of;
capturing said at least one data packet until a complete application header is detected;
parsing said complete application header to determine at least one application tag within the kernel which include classification and action rules;
matching said at least one application tag to at least one matching rule;
determining a presence of at least one application tag match with said at least one matching rule;
performing service differentiation action based on said at least one matching rule in order to provide a particular level of service from said different levels of service; and
deleting and adding rules based upon a user request; and
detecting establishment of a new connection for the purpose of service differentiation based on application layer information and providing admission control and service differentiation based on connection and application level information, wherein said step of detecting includes establishing of a new TCP connection and detecting for the purpose of service differentiation based on application layer information.
1 Assignment
0 Petitions
Accused Products
Abstract
The increasing number of Internet users and innovative new services such as e-commerce are placing new demands on Web servers. It is becoming essential for Web servers to provide performance isolation, have fast recovery times, and provide continuous service during overload at least to preferred customers. The invention describes a kernel-based architecture for content-aware service differentiation that protects Web servers against overload by controlling the amount and rate of work entering the system. We have invented a mechanism that provides admission control and service differentiation based on connection and application level information. The application header-based connection control uses application-level information (such as URIs and cookies for HTTP) to define different service differentiation actions. The present invention provides the kernel mechanisms that are more efficient and scalable than application level controls implemented in current Web servers.
-
Citations
17 Claims
-
1. A method comprising:
-
employing at least one system for differentiating at least one service class in a kernel providing service differentiation as a kernel service based on application level information, and using service differentiation to provide different levels of quality of service for system performance to users to perform service differentiation based on content in at least one data packet for connections accepted in said at least one system, the step of employing providing content aware application header-based service differentiation in a Web server which communicates with clients over a network protecting the Web server against overload by controlling the amount and rate of work entering the system, and the step of employing including the steps of; capturing said at least one data packet until a complete application header is detected; parsing said complete application header to determine at least one application tag within the kernel which include classification and action rules; matching said at least one application tag to at least one matching rule; determining a presence of at least one application tag match with said at least one matching rule; performing service differentiation action based on said at least one matching rule in order to provide a particular level of service from said different levels of service; and deleting and adding rules based upon a user request; and detecting establishment of a new connection for the purpose of service differentiation based on application layer information and providing admission control and service differentiation based on connection and application level information, wherein said step of detecting includes establishing of a new TCP connection and detecting for the purpose of service differentiation based on application layer information. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
-
-
14. An apparatus comprising a service differentiation module employing at least one system for differentiating at least one service class in a kernel providing service differentiation as a kernel service based on application level information, and using service differentiation to provide different levels of quality of service for system performance to users for connections accepted in said at least one system, and providing content aware application header-based service differentiation in a server which communicates with clients over a network protecting the server against overload by controlling the amount and rate of work entering the system, and the step of employing includes said module including a tangible computing medium enabling functions of:
-
provides admission control and service differentiation based on connection and application level information a parser to parse a client Web request; a classifier to classify the request based on application headers and assigning a request class within a kernel; a selector to determine an action rule based on the request class; a performer to apply the action rule based on the request class in order to provide better system performance for higher classed packets and connections; and a detector to detect establishment of a new connection for the purpose of service differentiation based on application layer information and providing admission control and service differentiation based on connection and application level information, wherein the detector includes means for establishing of a new TCP connection and detecting for the purpose of service differentiation based on application layer information. - View Dependent Claims (15)
-
-
16. An apparatus comprising a computing medium enabling at least one function of:
-
means for employing at least one system for differentiating at least one service class in a kernel to perform service differentiation based on content in at least one data packet for connections accepted in said at least one system, the means for employing providing content aware application header-based service differentiation in servers which communicate with clients over a network protecting a Web server against overload by controlling the amount and rate of work entering the system, and the means for employing comprising; means for capturing said at least one data packet until a complete application header is detected; means for parsing said complete application header to determine at least one application tag; means for matching said at least one application tag to at least one matching rule; means for determining a presence of at least one application tag match with said at least one matching rule; means for performing quality of service differentiation action based on said at least one matching rule; and means for detecting establishment of a new connection for the purpose of service differentiation based on application layer information and providing admission control and service differentiation based on connection and application level information, wherein the means for detecting includes means for establishing of a new TCP connection and detecting for the purpose of service differentiation based on application layer information. - View Dependent Claims (17)
-
Specification