发明授权
US09548991B1 Preventing application-level denial-of-service in a multi-tenant system using parametric-sensitive transaction weighting
有权
使用参数敏感的事务加权来防止多租户系统中的应用程序级拒绝服务
- 专利标题: Preventing application-level denial-of-service in a multi-tenant system using parametric-sensitive transaction weighting
- 专利标题(中): 使用参数敏感的事务加权来防止多租户系统中的应用程序级拒绝服务
-
申请号: US14982756申请日: 2015-12-29
-
公开(公告)号: US09548991B1公开(公告)日: 2017-01-17
- 发明人: Russell L. Holden
- 申请人: International Business Machines Corporation
- 申请人地址: US NY Armonk
- 专利权人: International Business Machines Corporation
- 当前专利权人: International Business Machines Corporation
- 当前专利权人地址: US NY Armonk
- 代理商 Anthony England; David H. Judson
- 主分类号: H04L29/00
- IPC分类号: H04L29/00 ; H04L29/06
摘要:
Denial-of-service attacks are prevented or mitigated in a cloud compute environment, such as a multi-tenant, collaborative SaaS system. This is achieved by providing a mechanism by which characterization of “legitimate” behavior is defined for accessor classes, preferably along with actions to be taken in the event an accessor exceeds those limits. A set of accessor “usage profiles” are generated. Typically, a profile comprises information, such as one or more “constraints,” and one or more “actions.” At least one constraint is generated by applying one or more parameters of a transaction weighting function such that the resulting constraint represents an actual or estimated cost of executing the transaction. An action defines how the system will respond if a particular constraint is triggered. By applying the constraints to accessor requests, the approach prevents over-utilization of compute resources.
信息查询
