Approach for managing state information by a group of servers that services a group of clients

US 7,827,262 B2
Filed: 07/14/2005
Issued: 11/02/2010
Est. Priority Date: 07/14/2005
Status: Expired due to Fees

First Claim

Patent Images

1. A method for managing state information by a first group of data processing servers that services a second group of clients, comprising:

electronically causing one server of the first group of data processing servers to be designated as a primary server that generates the state information to be used by both the first group of data processing servers and the second group of clients;

wherein the state information supports communication between clients in the second group of clients according to a network security protocol;

electronically causing the remaining servers of the first group of data processing servers to be designated as secondary servers that receive the state information from the primary server and provide the state information to clients, wherein the secondary servers do not generate the state information; and

in response to detecting that the primary server cannot communicate with at least one secondary server, electronically causing one of the secondary servers to be designated as the primary server that generates additional state information to be used by both the first group of data processing servers and the second group of clients;

wherein the method is performed by one or more computing devices.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

An approach for managing state information by a group of servers that services a group of clients is disclosed. One server is designated as the primary server and is responsible for generating state information to be used by both the servers and the clients. The remaining servers are designated as secondary servers that help to manage the group, but which do not generate the state information. When the primary server fails or is not available due to a network partition event, one of the secondary servers changes role to become the primary server. With a network partition event, each partition can have a primary server, and when the network partition heals, one of the primary servers changes role back to being a secondary server. As a result, the group of servers maintains a consistent set of state information without being vulnerable to the single failure of a server.

Citations

36 Claims

1. A method for managing state information by a first group of data processing servers that services a second group of clients, comprising:
- electronically causing one server of the first group of data processing servers to be designated as a primary server that generates the state information to be used by both the first group of data processing servers and the second group of clients;
  
  wherein the state information supports communication between clients in the second group of clients according to a network security protocol;
  
  electronically causing the remaining servers of the first group of data processing servers to be designated as secondary servers that receive the state information from the primary server and provide the state information to clients, wherein the secondary servers do not generate the state information; and
  
  in response to detecting that the primary server cannot communicate with at least one secondary server, electronically causing one of the secondary servers to be designated as the primary server that generates additional state information to be used by both the first group of data processing servers and the second group of clients;
  
  wherein the method is performed by one or more computing devices.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
- - 2. A method as recited in claim 1, wherein:
    - the primary server distributes the state information to the secondary servers;
      
      the primary server and the secondary servers are capable of adding or removing a client from the group of clients; and
      
      the primary server and the secondary servers are capable of distributing the state information to any client of the group of clients that contacts the primary server or one of the secondary servers.
  - 3. A method as recited in claim 1, wherein electronically causing one of the secondary servers to be designated as the primary server that generates additional state information further comprises:
    - electronically causing first priority information for a first secondary server and second priority information for a second secondary server to be compared; and
      
      based on the first priority information indicating a higher priority than the second priority information, electronically causing the first secondary server to be designated as the primary server.
  - 4. A method as recited in claim 1, wherein:
    - the primary server not being able to communicate with said at least one secondary server further includes the primary server not being able to communicate with a first subgroup of secondary servers of the first group of data processing servers and a second subgroup of clients of the second group of clients, wherein the first subgroup of secondary servers includes the at least one secondary server; and
      
      said one of the secondary servers that is designated as the primary server generates the additional state information to be used by both the first subgroup of servers and the second subgroup of clients.
  - 5. A method as recited in claim 4, wherein:
    - the primary server that is not able to communicate with the first subgroup of secondary servers and the second subgroup of clients is a first primary server;
      
      said one of the secondary servers that is designated as the primary server that generates the additional state information is a second primary server; and
      
      the first primary server is still able to communicate with a third subgroup of secondary servers of the first group of data processing servers and a fourth subgroup of clients of the second group of clients, wherein the third subgroup of secondary servers does not include the second primary server.
  - 6. A method as recited in claim 5, further comprising:
    - when the first primary server is again able to communicate with the first subgroup of secondary servers and the second subgroup of clients,electronically causing first state information from the first primary server and second state information from the second primary server to be synchronized;
      
      electronically causing one primary server from among the first primary server and the second primary server to be designated as the primary server that generates additional state information for both the first group of data processing servers and the second group of clients; and
      
      electronically causing the other primary server from among the first primary server and the second primary server to be designated as a secondary server.
  - 7. A method as recited in claim 1, wherein:
    - each client of the second group of clients includes an ordered listing of the servers in the first group of data processing servers;
      
      each client selects a particular server of the second group of servers to obtain state information from based on the ordered listing;
      
      the ordered listings for the clients are arranged so that requests from the clients of the second group of clients are distributed among the servers of the first group of data processing servers; and
      
      the primary server is the only server among the first group of data processing servers to be designated as the primary server.
  - 8. A method as recited in claim 1, wherein:
    - the state information and the additional state information each include one or more objects;
      
      the primary server can create new objects and destroy existing objects but cannot modify existing objects;
      
      the primary server and each secondary server are active servers;
      
      the primary server is a master server and each secondary server is a slave server;
      
      each server in the first group of data processing servers is included in a different local area network (LAN);
      
      the state information and the additional state information include one or more security associations that are based on Internet Protocol Security (IPsec);
      
      the first group of data processing servers uses a group key management system based on Group Domain of Interpretation (GDOI); and
      
      the first group of data processing servers provides IPsec keys to the second group of clients based on GDOI as part of a feature selected from the group consisting of a secure multicast feature and a group virtual private network (VPN) feature.

9. A method for managing state information to be used by a first group of data processing servers and a second group of clients, comprising:
- electronically receiving the state information from a first server at a second server, wherein;
  
  the first server is included in the first group of data processing servers and is responsible for generating the state information;
  
  the second server is included in the first group of data processing servers and is responsible for providing the state information to clients in the second group of clients, but is not responsible for generating the state information;
  
  the state information is to be used by both the first group of data processing servers and the second group of clients;
  
  wherein the state information supports communication between clients in the second group of clients according to a network security protocol;
  
  the second server electronically detecting that the first server is not able to communicate with the second server;
  
  in response to said detecting,the second server determining that the second server should be responsible for generating the state information in place of the first server; and
  
  the second server generating the state information;
  
  wherein the method is performed by one or more computing devices.
- View Dependent Claims (10, 11, 12)
- - 10. A method as recited in claim 9, further comprising:
    - the second server detecting that the first server is again able to communicate with the second server;
      
      the second server sending first state information to the first server;
      
      the second server receiving second state information from the first server;
      
      the second server generating third state information by synchronizing the first state information and the second state information;
      
      the second server providing priority information to the first server; and
      
      the second server receiving designation information from the first server that indicates that the first server is not responsible for generating the state information.
  - 11. A method as recited in claim 9, wherein:
    - prior to the second server detecting that the first server is not able to communicate with the second server, the first server is designated as a primary server and the second server is designated as a secondary server;
      
      after the second server determines that the second server should be responsible for generating the state information in place of the first server, the second server is designated as the primary server; and
      
      detecting that the first server is not able to communicate with the second server further comprises;
      
      the second server determining that no messages from the first server have been received within a first specified period of time; and
      
      the second server determining that the first server fails to respond within a second specified period of time to a message sent from the second server to the first server.
  - 12. A method as recited in claim 9, wherein:
    - the state information includes one or more group keys to be used for encrypting and decrypting communications among the second group of clients and between the first group of data processing servers and the second group of clients according to the Internet Protocol Security (IPsec);
      
      the first server receiving the state information from the first server includes the first server receiving the one or more group keys from the second server;
      
      the second server generating the state information includes;
      
      the second server generating at least one additional group key; and
      
      the second server communicating the at least one additional group key to the second group of clients using a rekey message.

13. An apparatus for managing state information by a first group of data processing servers that services a second group of clients, comprising:
- one or more processors;
  
  means, coupled to the one or more processors, for electronically causing one server of the first group of data processing servers to be designated as a primary server that generates the state information to be used by both the first group of data processing servers and the second group of clients;
  
  wherein the state information supports communication between clients in the second group of clients according to a network security protocol;
  
  means for electronically causing the remaining servers of the first group of data processing servers to be designated as secondary servers that receive the state information from the primary server and provide the state information to clients, wherein the secondary servers do not generate the state information; and
  
  means for in response to detecting that the primary server cannot communicate with at least one secondary server, electronically causing one of the secondary servers to be designated as the primary server that generates additional state information to be used by both the first group of data processing servers and the second group of clients.
- View Dependent Claims (14, 15, 16, 17, 18, 19, 20)
- - 14. An apparatus as recited in claim 13, wherein:
    - the primary server distributes the state information to the secondary servers;
      
      the primary server and the secondary servers are capable of adding or removing a client from the group of clients; and
      
      the primary server and the secondary servers are capable of distributing the state information to any client of the group of clients that contacts the primary server or one of the secondary servers.
  - 15. An apparatus as recited in claim 13, wherein the means for electronically causing one of the secondary servers to be designated as the primary server that generates additional state information further comprises:
    - means for electronically causing first priority information for a first secondary server and second priority information for a second secondary server to be compared; and
      
      means for, based on the first priority information indicating a higher priority than the second priority information, electronically causing the first secondary server to be designated as the primary server.
  - 16. An apparatus as recited in claim 13, wherein:
    - the primary server not being able to communicate with said at least one secondary server further includes the primary server not being able to communicate with a first subgroup of secondary servers of the first group of data processing servers and a second subgroup of clients of the second group of clients, wherein the first subgroup of secondary servers includes the at least one secondary server; and
      
      said one of the secondary servers that is designated as the primary server generates the additional state information to be used by both the first subgroup of servers and the second subgroup of clients.
  - 17. An apparatus as recited in claim 16, wherein:
    - the primary server that is not able to communicate with the first subgroup of secondary servers and the second subgroup of clients is a first primary server;
      
      said one of the secondary servers that is designated as the primary server that generates the additional state information is a second primary server; and
      
      the first primary server is still able to communicate with a third subgroup of secondary servers of the first group of data processing servers and a fourth subgroup of clients of the second group of clients, wherein the third subgroup of secondary servers does not include the second primary server.
  - 18. An apparatus as recited in claim 17, further comprising:
    - when the first primary server is again able to communicate with the first subgroup of secondary servers and the second subgroup of clients,means for electronically causing first state information from the first primary server and second state information from the second primary server to be synchronized;
      
      means for electronically causing one primary server from among the first primary server and the second primary server to be designated as the primary server that generates additional state information for both the first group of data processing servers and the second group of clients; and
      
      means for electronically causing the other primary server from among the first primary server and the second primary server to be designated as a secondary server.
  - 19. An apparatus as recited in claim 13, wherein:
    - each client of the second group of clients includes an ordered listing of the servers in the first group of data processing servers;
      
      each client selects a particular server of the second group of servers to obtain state information from based on the ordered listing;
      
      the ordered listings for the clients are arranged so that requests from the clients of the second group of clients are distributed among the servers of the first group of data processing servers; and
      
      the primary server is the only server among the first group of data processing servers to be designated as the primary server.
  - 20. An apparatus as recited in claim 13, wherein:
    - the state information and the additional state information each include one or more objects;
      
      the primary server can create new objects and destroy existing objects but cannot modify existing objects;
      
      the primary server and each secondary server are active servers;
      
      the primary server is a master server and each secondary server is a slave server;
      
      each server in the first group of data processing servers is included in a different local area network (LAN);
      
      the state information and the additional state information include one or more security associations that are based on Internet Protocol Security (IPsec);
      
      the first group of data processing servers uses a group key management system based on Group Domain of Interpretation (GDOI); and
      
      the first group of data processing servers provides IPsec keys to the second group of clients based on GDOI as part of a feature selected from the group consisting of a secure multicast feature and a group virtual private network (VPN) feature.

21. An apparatus for managing state information to be used by a first group of data processing servers and a second group of clients, comprising:
- means for electronically receiving the state information from a first server at a second server, wherein;
  
  the first server is included in the first group of data processing servers and is responsible for generating the state information;
  
  the second server is included in the first group of data processing servers and is responsible for providing the state information to clients in the second group of clients, but is not responsible for generating the state information;
  
  the state information is to be used by both the first group of data processing servers and the second group of clients;
  
  wherein the state information supports communication between clients in the second group of clients according to a network security protocol;
  
  means for the second server electronically detecting that the first server is not able to communicate with the second server;
  
  in response to said detecting,means for the second server determining that the second server should be responsible for generating the state information in place of the first server; and
  
  means for the second server generating the state information.
- View Dependent Claims (22, 23, 24)
- - 22. An apparatus as recited in claim 21, further comprising:
    - means for the second server detecting that the first server is again able to communicate with the second server;
      
      means for the second server sending first state information to the first server;
      
      means for the second server receiving second state information from the first server;
      
      means for the second server generating third state information by synchronizing the first state information and the second state information;
      
      means for the second server providing priority information to the first server; and
      
      means for the second server receiving designation information from the first server that indicates that the first server is not responsible for generating the state information.
  - 23. An apparatus as recited in claim 21, wherein:
    - prior to the second server detecting that the first server is not able to communicate with the second server, the first server is designated as a primary server and the second server is designated as a secondary server;
      
      after the second server determines that the second server should be responsible for generating the state information in place of the first server, the second server is designated as the primary server; and
      
      the means for detecting that the first server is not able to communicate with the second server further comprises;
      
      means for the second server determining that no messages from the first server have been received within a first specified period of time; and
      
      means for the second server determining that the first server fails to respond within a second specified period of time to a message sent from the second server to the first server.
  - 24. An apparatus as recited in claim 21, wherein:
    - the state information includes one or more group keys to be used for encrypting and decrypting communications among the second group of clients and between the first group of data processing servers and the second group of clients according to the Internet Protocol Security (IPsec);
      
      the means for the first server receiving the state information from the first server includes means for the first server receiving the one or more group keys from the second server;
      
      the means for second server generating the state information includes;
      
      means for the second server generating at least one additional group key; and
      
      means for the second server communicating the at least one additional group key to the second group of clients using a rekey message.

25. An apparatus for managing state information by a first group of data processing servers that services a second group of clients, comprising:
- a network interface that is coupled to a data network for receiving one or more packet flows therefrom;
  
  a processor;
  
  one or more stored sequences of instructions which, when executed by the processor, cause the processor to perform the steps of;
  
  electronically causing one server of the first group of data processing servers to be designated as a primary server that generates the state information to be used by both the first group of data processing servers and the second group of clients;
  
  wherein the state information supports communication between clients in the second group of clients according to a network security protocol;
  
  electronically causing the remaining servers of the first group of data processing servers to be designated as secondary servers that receive the state information from the primary server and provide the state information to clients, wherein the secondary servers do not generate the state information; and
  
  in response to detecting that the primary server cannot communicate with at least one secondary server, electronically causing one of the secondary servers to be designated as the primary server that generates additional state information to be used by both the first group of data processing servers and the second group of clients.
- View Dependent Claims (26, 27, 28, 29, 30, 31, 32)
- - 26. An apparatus as recited in claim 25, wherein:
    - the primary server distributes the state information to the secondary servers;
      
      the primary server and the secondary servers are capable of adding or removing a client from the group of clients; and
      
      the primary server and the secondary servers are capable of distributing the state information to any client of the group of clients that contacts the primary server or one of the secondary servers.
  - 27. An apparatus as recited in claim 25, wherein the instructions for electronically causing one of the secondary servers to be designated as the primary server that generates additional state information further comprises one or more stored sequences of instructions which, when executed by the processor, cause the processor to perform the steps of:
    - electronically causing first priority information for a first secondary server and second priority information for a second secondary server to be compared; and
      
      based on the first priority information indicating a higher priority than the second priority information, electronically causing the first secondary server to be designated as the primary server.
  - 28. An apparatus as recited in claim 25, wherein:
    - the primary server not being able to communicate with said at least one secondary server further includes the primary server not being able to communicate with a first subgroup of secondary servers of the first group of data processing servers and a second subgroup of clients of the second group of clients, wherein the first subgroup of secondary servers includes the at least one secondary server; and
      
      said one of the secondary servers that is designated as the primary server generates the additional state information to be used by both the first subgroup of servers and the second subgroup of clients.
  - 29. An apparatus as recited in claim 28, wherein:
    - the primary server that is not able to communicate with the first subgroup of secondary servers and the second subgroup of clients is a first primary server;
      
      said one of the secondary servers that is designated as the primary server that generates the additional state information is a second primary server; and
      
      the first primary server is still able to communicate with a third subgroup of secondary servers of the first group of data processing servers and a fourth subgroup of clients of the second group of clients, wherein the third subgroup of secondary servers does not include the second primary server.
  - 30. An apparatus as recited in claim 29, further comprising one or more stored sequences of instructions which, when executed by the processor, cause the processor to carry out the steps of:
    - when the first primary server is again able to communicate with the first subgroup of secondary servers and the second subgroup of clients,electronically causing first state information from the first primary server and second state information from the second primary server to be synchronized;
      
      electronically causing one primary server from among the first primary server and the second primary server to be designated as the primary server that generates additional state information for both the first group of data processing servers and the second group of clients; and
      
      electronically causing the other primary server from among the first primary server and the second primary server to be designated as a secondary server.
  - 31. An apparatus as recited in claim 25, wherein:
    - each client of the second group of clients includes an ordered listing of the servers in the first group of data processing servers;
      
      each client selects a particular server of the second group of servers to obtain state information from based on the ordered listing;
      
      the ordered listings for the clients are arranged so that requests from the clients of the second group of clients are distributed among the servers of the first group of data processing servers; and
      
      the primary server is the only server among the first group of data processing servers to be designated as the primary server.
  - 32. An apparatus as recited in claim 25, wherein:
    - the state information and the additional state information each include one or more objects;
      
      the primary server can create new objects and destroy existing objects but cannot modify existing objects;
      
      the primary server and each secondary server are active servers;
      
      the primary server is a master server and each secondary server is a slave server;
      
      each server in the first group of data processing servers is included in a different local area network (LAN);
      
      the state information and the additional state information include one or more security associations that are based on Internet Protocol Security (IPsec);
      
      the first group of data processing servers uses a group key management system based on Group Domain of Interpretation (GDOI); and
      
      the first group of data processing servers provides IPsec keys to the second group of clients based on GDOI as part of a feature selected from the group consisting of a secure multicast feature and a group virtual private network (VPN) feature.

33. An apparatus for managing state information to be used by a first group of data processing servers and a second group of clients, comprising:
- a network interface that is coupled to a data network for receiving one or more packet flows therefrom;
  
  a processor;
  
  one or more stored sequences of instructions which, when executed by the processor, cause the processor to perform the steps of;
  
  electronically receiving the state information from a first server at a second server, wherein;
  
  the first server is included in the first group of data processing servers and is responsible for generating the state information;
  
  the second server is included in the first group of data processing servers and is responsible for providing the state information to clients in the second group of clients, but is not responsible for generating the state information;
  
  the state information is to be used by both the first group of data processing servers and the second group of clients;
  
  wherein the state information supports communication between clients in the second group of clients according to a network security protocol;
  
  the second server electronically detecting that the first server is not able to communicate with the second server;
  
  in response to said detecting,the second server determining that the second server should be responsible for generating the state information in place of the first server; and
  
  the second server generating the state information.
- View Dependent Claims (34, 35, 36)
- - 34. An apparatus as recited in claim 33, further comprising one or more stored sequences of instructions which, when executed by the processor, cause the processor to carry out the steps of:
    - the second server detecting that the first server is again able to communicate with the second server;
      
      the second server sending first state information to the first server;
      
      the second server receiving second state information from the first server;
      
      the second server generating third state information by synchronizing the first state information and the second state information;
      
      the second server providing priority information to the first server; and
      
      the second server receiving designation information from the first server that indicates that the first server is not responsible for generating the state information.
  - 35. An apparatus as recited in claim 33, wherein:
    - prior to the second server detecting that the first server is not able to communicate with the second server, the first server is designated as a primary server and the second server is designated as a secondary server;
      
      after the second server determines that the second server should be responsible for generating the state information in place of the first server, the second server is designated as the primary server; and
      
      the apparatus further comprises one or more stored sequences of instructions which, when executed by the processor, cause the processor to carry out the steps of;
      
      detecting that the first server is not able to communicate with the second server further comprises;
      
      the second server determining that no messages from the first server have been received within a first specified period of time; and
      
      the second server determining that the first server fails to respond within a second specified period of time to a message sent from the second server to the first server.
  - 36. An apparatus as recited in claim 33, wherein:
    - the state information includes one or more group keys to be used for encrypting and decrypting communications among the second group of clients and between the first group of data processing servers and the second group of clients according to the Internet Protocol Security (IPsec);
      
      the instructions for the first server receiving the state information from the first server includes one or more sequences of instructions which, when executed by the processor, cause the processor to perform the step of the first server receiving the one or more group keys from the second server;
      
      the instructions for the second server generating the state information includes one or more sequences of instructions which, when executed by the processor, cause the processor to perform the steps of;
      
      the second server generating at least one additional group key; and
      
      the second server communicating the at least one additional group key to the second group of clients using a rekey message.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Cisco Technology, Inc. (Cisco Systems, Inc.)
Original Assignee
Cisco Technology, Inc. (Cisco Systems, Inc.)
Inventors
Weis, Brian
Primary Examiner(s)
Walsh; John B.

Application Number

US11/183,278
Publication Number

US 20070016663A1
Time in Patent Office

1,937 Days
Field of Search

None
US Class Current

709/223
CPC Class Codes

G06F 11/1425   by reconfiguration of node ...

G06F 11/2028   eliminating a faulty proces...

G06F 11/2041   with more than one idle spa...

H04L 41/0654   using network fault recover...

H04L 41/0893   Assignment of logical group...

H04L 41/0894   Policy-based network config...

Approach for managing state information by a group of servers that services a group of clients

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

36 Claims

Specification

Solutions

Use Cases

Quick Links

Approach for managing state information by a group of servers that services a group of clients

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

36 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links