Distributed cache for state transfer operations

US 9,479,589 B2
Filed: 05/26/2015
Issued: 10/25/2016
Est. Priority Date: 02/12/2001
Status: Expired due to Term

First Claim

Patent Images

1. A method for managing data in one or more cache memories, the method comprising:

receiving a request from a client device to initiate a secure socket layer (SSL) communication session, the request including an SSL session identification number from a previously established SSL communication session;

searching the one or more cache memories for information corresponding to the SSL session identification number, the information including state information of the SSL communication session;

retrieving the information corresponding to the SSL session identification number; and

re-establishing the SSL communication session at a state according to the state information.

View all claims

18 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A network arrangement that employs a cache having copies distributed among a plurality of different locations. The cache stores state information for a session with any of the server devices so that it is accessible to at least one other server device. Using this arrangement, when a client device switches from a connection with a first server device to a connection with a second server device, the second server device can retrieve state information from the cache corresponding to the session between the client device and the first server device. The second server device can then use the retrieved state information to accept a session with the client device.

Citations

20 Claims

1. A method for managing data in one or more cache memories, the method comprising:
- receiving a request from a client device to initiate a secure socket layer (SSL) communication session, the request including an SSL session identification number from a previously established SSL communication session;
  
  searching the one or more cache memories for information corresponding to the SSL session identification number, the information including state information of the SSL communication session;
  
  retrieving the information corresponding to the SSL session identification number; and
  
  re-establishing the SSL communication session at a state according to the state information.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The method of claim 1, wherein the information corresponding to the SSL session identification number is located in a remote cache memory of the one or more cache memories.
  - 3. The method of claim 1, wherein the previously established SSL communication session was established with a full SSL handshake and the information corresponding to the previously established SSL communication was stored in the one or more cache memories after the full SSL handshake.
  - 4. The method of claim 3, wherein the information corresponding to the previously established SSL communication session includes at least one of a peer certificate, a cipher specification, an encryption algorithm, a message authentication check (MAC) algorithm, a compression algorithm, a master secret key, or a flag.
  - 5. The method of claim 3, wherein a record is also stored in the one or more cache memories, the record including SSL communication session resumption information and the SSL communication session identification number.
  - 6. The method of claim 5, wherein the record includes a time to live field that identifies how long a SSL communication session may operate until the SSL communication session will be terminated.
  - 7. The method of claim 1, further comprising at least one of adding, deleting, and updating the information corresponding to the SSL communication session in the one or more cache memories.

8. A non-transitory computer readable storage medium embodied thereon a program executable by a processor for performing a method for managing data in one or more cache memories, the method comprising:
- receiving a request from a client device to initiate a secure socket layer (SSL) communication session, the request including an SSL session identification number from a previously established SSL communication session;
  
  searching the one or more cache memories for information corresponding to the SSL session identification number, the information including state information of the SSL communication session;
  
  retrieving the information corresponding to the SSL session identification number; and
  
  re-establishing the SSL communication session at a state according to the state information.
- View Dependent Claims (9, 10, 11, 12, 13, 14)
- - 9. The non-transitory computer readable storage medium of claim 8, wherein the information corresponding to the SSL session identification number is located in a remote cache memory of the one or more cache memories.
  - 10. The non-transitory computer readable storage medium of claim 8, wherein the previously established SSL communication session was established with a full SSL handshake and the information corresponding to the previously established SSL communication was stored in the one or more cache memories after the full SSL handshake.
  - 11. The non-transitory computer readable storage medium of claim 10, wherein the information corresponding to the previously established SSL communication session includes at least one of a peer certificate, a cipher specification, an encryption algorithm, a message authentication check (MAC) algorithm, a compression algorithm, a master secret key, or a flag.
  - 12. The non-transitory computer readable storage medium of claim 10, wherein a record is also stored in the one or more cache memories, the record including SSL communication session resumption information and the SSL communication session identification number.
  - 13. The non-transitory computer readable storage medium of claim 12, wherein the record includes a time to live field that identifies how long a SSL communication session may operate until the SSL communication session will be terminated.
  - 14. The non-transitory computer readable storage medium of claim 8, the program further executable to add, delete, and update the information corresponding to the SSL communication session in the one or more cache memories.

15. An apparatus for managing data in one or more cache memories, the apparatus comprising:
- a data communication interface, wherein a request from a client device is received over the data communication interface, the request regarding initiating a secure socket layer (SSL) communication session, the request including an SSL session identification number from a previously established SSL communication session;
  
  a memory; and
  
  a processor, wherein the processor executing instructions out of the memory;
  
  manages data stored in one or more cache memories;
  
  searches the data stored in the one or more cache memories for information corresponding to the SSL session identification number, the information including state information of the SSL communication session;
  
  retrieves the information corresponding to the SSL session identification number; and
  
  manages the re-establishment the SSL communication session at a state according to the state information.
- View Dependent Claims (16, 17, 18, 19, 20)
- - 16. The apparatus claim 15, wherein the information corresponding to the SSL session identification number is located in a remote cache memory of the one or more cache memories.
  - 17. The apparatus claim 15, wherein the previously established SSL communication session was established with a full SSL handshake and the information corresponding to the previously established SSL communication was stored in the one or more cache memories after the full SSL handshake.
  - 18. The apparatus claim 17, wherein the information corresponding to the previously established SSL communication session includes at least one of a peer certificate, a cipher specification, an encryption algorithm, a message authentication check (MAC) algorithm, a compression algorithm, a master secret key, or a flag.
  - 19. The apparatus claim 17, wherein a record is also stored in the one or more cache memories, the record including SSL communication session resumption information and the SSL communication session identification number.
  - 20. The apparatus claim 15, wherein the processor executing instructions out of the memory adds, deletes, and updates the information corresponding to the SSL communication session in the one or more cache memories.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Dell Products LP (Dell Technologies Inc.)
Original Assignee
Dell Products LP (Dell Technologies Inc.)
Inventors
Erickson, Rodger D.
Primary Examiner(s)
Lim, Krisna

Application Number

US14/722,040
Publication Number

US 20150326685A1
Time in Patent Office

518 Days
Field of Search
US Class Current

1/1
CPC Class Codes

H04L 67/01   Protocols

H04L 67/10   in which an application is ...

H04L 67/1001   for accessing one among a p...

H04L 67/10015   Access to distributed or re...

H04L 67/1034   Reaction to server failures...

H04L 67/1097   for distributed storage of ...

H04L 67/148   Migration or transfer of se...

H04L 67/288   Distributed intermediate de...

H04L 67/568   Storing data temporarily at...

H04L 69/329   in the application layer [O...

H04L 9/40   Network security protocols

Distributed cache for state transfer operations

First Claim

18 Assignments

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Distributed cache for state transfer operations

First Claim

18 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links