Application quality of service envelope
First Claim
1. A method of managing resources of a computer adapted to execute a plurality of applications, comprising:
- establishing a quality-of-service (QoS) policy for the computer, the QoS policy expressing relative priorities of the plurality of applications;
characterizing the applications'"'"' usages of computer resources;
predicting, responsive to the characterization, the applications'"'"' future usages of the computer resources;
responsive to the QoS policy and the predictions, establishing QoS envelopes for the applications, the QoS envelopes establishing an upper limit on resource usages by the applications;
analyzing an application'"'"'s actual usage of computer resources and the application'"'"'s predicted usage of computer resources; and
generating a security event responsive to a difference between the application'"'"'s actual usage and the application'"'"'s predicted usage.
7 Assignments
0 Petitions
Accused Products
Abstract
A managed node executes one or more applications. The applications utilize the resources of the node. A quality-of-service (QoS) agent on the managed node enforces a QoS policy for the node. The QoS agent characterizes an application'"'"'s usage of the node'"'"'s resources and predicts its future usage. The QoS agent analyzes the predicted resource usage in view of the QoS policy and generates a QoS envelope for the application. The QoS envelope specifies a ceiling on the level of resources that can be used by the application. The QoS agent queues and meters usage above the ceiling specified by the QoS envelope. A security module determines variations between predicted and actual resource usage and generates security events if warranted.
-
Citations
26 Claims
-
1. A method of managing resources of a computer adapted to execute a plurality of applications, comprising:
-
establishing a quality-of-service (QoS) policy for the computer, the QoS policy expressing relative priorities of the plurality of applications; characterizing the applications'"'"' usages of computer resources; predicting, responsive to the characterization, the applications'"'"' future usages of the computer resources; responsive to the QoS policy and the predictions, establishing QoS envelopes for the applications, the QoS envelopes establishing an upper limit on resource usages by the applications; analyzing an application'"'"'s actual usage of computer resources and the application'"'"'s predicted usage of computer resources; and generating a security event responsive to a difference between the application'"'"'s actual usage and the application'"'"'s predicted usage. - View Dependent Claims (2, 3, 4, 5, 6, 7, 26)
-
-
8. A system for managing resources of a computer, comprising:
-
a processor for executing computer program modules; and a non-transitory computer-readable storage medium storing executable computer program modules comprising; a characterization module for characterizing an application'"'"'s usage of the computer resources; a prediction module for predicting the application'"'"'s future usage of the computer resources responsive to the characterization from the characterization module; a control module for adaptively generating a quality-of-service (QoS) envelope for the application responsive to the application'"'"'s predicted usage of the computer resources; and a security module for analyzing the application'"'"'s characterized usage of resources and the application'"'"'s predicted usage of resources and generating a security event responsive thereto. - View Dependent Claims (9, 10, 11, 12, 13, 14, 15)
-
-
16. A non-transitory computer-readable storage medium having executable computer program instructions recorded thereon for managing resources of a computer, the computer program instruction comprising:
-
a characterization module for characterizing an application'"'"'s usage of the computer resources; a prediction module for predicting the application'"'"'s future usage of the computer resources responsive to the characterization from the characterization module; a control module for adaptively generating a quality-of-service (QoS) envelope for the application responsive to the application'"'"'s predicted usage of the computer resources; and a security module for analyzing the application'"'"'s characterized usage of resources and the application'"'"'s predicted usage of resources and generating a security event responsive thereto. - View Dependent Claims (17, 18, 19, 20, 21, 22, 23)
-
-
24. A computer system for managing a plurality of nodes on a computer network, comprising:
-
a processor for executing computer program modules; and a non-transitory computer-readable storage medium storing executable computer program modules comprising; a quality-of-service (QoS) policy repository module for storing a plurality of QoS policies, the QoS policies expressing relative priorities of applications executing on the plurality of nodes; and a QoS manager module for providing selected QoS policies in the QoS policy repository module to select ones of the plurality of nodes, wherein the QoS manager module is adapted to receive security alerts from the plurality of nodes; wherein a node receiving a QoS policy from the QoS manager module predicts usage of the node'"'"'s resources by an application executing on the node and, responsive to the predicted usage and the QoS policy, adaptively generates a QoS envelope for the application. - View Dependent Claims (25)
-
Specification