公开(公告)号：US20170019308A1

公开(公告)日：2017-01-19

申请号：US15042116

申请日：2016-02-11

Applicant: Netflix, Inc.

Inventor： Roy RAPOPORT ,  Christopher SANDEN ,  Cody RIOUX ,  Gregory BURRELL

IPC: H04L12/24 ,  H04L29/08

CPC classification number: H04L41/12 ,  G06F11/3409 ,  G06F11/3452 ,  H04L67/10

Abstract: One embodiment of the invention disclosed herein provides techniques for detecting and remediating an outlier server in a distributed computer system. A control server retrieves a group of time-series data sets associated with a first time period, where each time-series data set represents a performance metric for a different server in a group of servers. The control server generates a cluster that includes two or more of the time-series data sets, where the performance metric for each server that is associated with one of the time-series data sets in the cluster is within a threshold distance from the performance metric for the servers that are associated with the other time-series data sets in the cluster. The control server determines that a particular time-series data set corresponds to a server included in the group of servers and is not included in the cluster, and marks the server as an outlier server.

Abstract translation: 本文公开的本发明的一个实施例提供了用于检测和修复分布式计算机系统中的离群服务器的技术。 控制服务器检索与第一时间段相关联的一组时间序列数据集，其中每个时间序列数据集表示服务器组中的不同服务器的性能度量。 控制服务器生成包含两个或更多个时间序列数据集的集群，其中与集群中的一个时间序列数据集相关联的每个服务器的性能指标在与性能度量 对于与集群中其他时间序列数据集相关联的服务器。 控制服务器确定特定时间序列数据集对应于服务器组中包括的服务器，并且不包括在群集中，并将服务器标记为离群服务器。

公开(公告)号：US20180307849A1

公开(公告)日：2018-10-25

申请号：US15960468

申请日：2018-04-23

Applicant: NETFLIX, INC.

Inventor： Ariel TSEITLIN ,  Roy RAPOPORT ,  Jason CHAN

IPC: G06F21/60 ,  H04L29/06 ,  G06F9/50 ,  G06F11/30 ,  G06F17/30 ,  H04L12/26 ,  H04L12/24 ,  H04L9/32 ,  G06F21/57 ,  G06F21/45 ,  H04L29/08

Abstract: A security application manages security and reliability of networked applications executing collection of interacting computing elements within a distributed computing architecture. The security application monitors various classes of resources utilized by the collection of nodes within the distributed computing architecture and determine whether utilization of a class of resources is approaching a pre-determined maximum limit. The security application performs a vulnerability scan of a networked application to determine whether the networked application is prone to a risk of intentional or inadvertent breach by an external application. The security application scans a distributed computing architecture for the existence of access control lists (ACLs), and stores ACL configurations and configuration changes in a database. The security application scans a distributed computing architecture for the existence of security certificates, places newly discovered security certificates in a database, and deletes outdated security certificates. Advantageously, security and reliability are improved in a distributed computing architecture.

公开(公告)号：US20150235035A1

公开(公告)日：2015-08-20

申请号：US14703862

申请日：2015-05-04

Applicant: NETFLIX, INC

Inventor： Ariel TSEITLIN ,  Roy RAPOPORT ,  Jason CHAN

IPC: G06F21/60 ,  G06F17/30 ,  H04L29/06 ,  H04L12/26

CPC classification number: G06F21/604 ,  G06F9/50 ,  G06F11/302 ,  G06F11/3051 ,  G06F17/30598 ,  G06F21/00 ,  G06F21/45 ,  G06F21/577 ,  G06F2209/504 ,  G06F2221/034 ,  G06F2221/2141 ,  H04L9/3268 ,  H04L41/12 ,  H04L43/16 ,  H04L63/101 ,  H04L63/1408 ,  H04L63/1433 ,  H04L67/10 ,  Y02D10/22

Abstract: A security application manages security and reliability of networked applications executing collection of interacting computing elements within a distributed computing architecture. The security application monitors various classes of resources utilized by the collection of nodes within the distributed computing architecture and determine whether utilization of a class of resources is approaching a pre-determined maximum limit. The security application performs a vulnerability scan of a networked application to determine whether the networked application is prone to a risk of intentional or inadvertent breach by an external application. The security application scans a distributed computing architecture for the existence of access control lists (ACLs), and stores ACL configurations and configuration changes in a database. The security application scans a distributed computing architecture for the existence of security certificates, places newly discovered security certificates in a database, and deletes outdated security certificates. Advantageously, security and reliability are improved in a distributed computing architecture.

Abstract translation: 安全应用程序管理在分布式计算体系结构中执行交互式计算元素集合的网络应用程序的安全性和可靠性。 安全应用程序监视在分布式计算架构内收集节点所利用的各种资源，并确定一类资源的利用率是否接近预定的最大限制。 安全应用程序执行联网应用程序的漏洞扫描，以确定网络应用程序是否容易受到外部应用程序有意或无意的违规的风险。 安全应用程序扫描分布式计算架构以存在访问控制列表（ACL），并将ACL配置和配置更改存储在数据库中。 安全应用程序扫描分布式计算架构以确保安全证书的存在，将新发现的安全证书放置在数据库中，并删除过期的安全证书。 有利地，在分布式计算架构中提高了安全性和可靠性。