公开(公告)号：US07478233B2

公开(公告)日：2009-01-13

申请号：US10157117

申请日：2002-05-30

申请人： Erik B. Olson ,  Eric K. Zinda

发明人： Erik B. Olson ,  Eric K. Zinda

IPC分类号： H04L9/00 ,  G06F7/58

CPC分类号： H04L63/123 ,  G06F21/57 ,  H04L63/126

摘要： In a distributed computing architecture, a method and system for authenticating a message as originating from an unaltered or unmodified node is provided. Prior to sending a messages, a black box software module in a node validates the node to determine whether the node has been altered or modified without authorization. Once validated, the black box alters a message, using a black box protection scheme, in such a manner that the message can be subsequently authenticated. The black box module sends the altered message to a peer node, whose own black box authenticates the message using an authentication scheme corresponding to the protection scheme. Because validation is performed, each node may assume that the message originated from an unaltered node. The protection and/or validation scheme can be changed in regular intervals so that attackers do not have time to reverse engineer the black box. Alternatively, validation may be skipped and the key used to alter/protect each message may be based on the environment of the node performing the alteration/protection, so that nodes that have been altered will generate different keys than unaltered nodes, and will not be able to communicate.

摘要翻译： 在分布式计算架构中，提供了用于将消息认证为源自未改变节点或未修改节点的方法和系统。 在发送消息之前，节点中的黑匣子软件模块验证节点，以确定节点是否已被修改或未经授权。 一旦经过验证，黑盒子就会使用黑匣子保护方案来改变消息，使得消息可以随后被认证。 黑箱模块将改变的消息发送到对等节点，对等节点，其自己的黑盒使用与保护方案对应的认证方案来认证消息。 由于执行验证，每个节点可以假定该消息源自未改变的节点。 保护和/或验证方案可以定期更改，以便攻击者无需时间反向工程黑匣子。 或者，可以跳过验证，并且用于改变/保护每个消息的密钥可以基于执行改变/保护的节点的环境，使得被改变的节点将生成与未改变的节点不同的密钥，并且将不会 能沟通

公开(公告)号：US06941351B2

公开(公告)日：2005-09-06

申请号：US09681844

申请日：2001-06-15

申请人： Vellore T. Vetrivelkumaran ,  Erik B. Olson

发明人： Vellore T. Vetrivelkumaran ,  Erik B. Olson

IPC分类号： G06F9/50 ,  G06F12/00 ,  G06F15/16

CPC分类号： G06F9/5033 ,  G06F2209/509

摘要： Application program caching and execution is disclosed. An application program component, which may constitute the only component of an application program, is cached by a computing device from an original computing device. The computing device executes the cached component in lieu of its execution by the original computing device. The computing device may be a client computing device, where the client device executes the cached component for itself. The computing device may also be a caching computing device, where the caching device executes the cached component for the client computing device.

公开(公告)号：US07721278B2

公开(公告)日：2010-05-18

申请号：US11140192

申请日：2005-05-27

申请人： Bilal Alam ,  Erik B. Olson ,  Anil K. Ruia ,  Michael D. Volodarsky ,  David Wang ,  Jaroslav Dunajsky

发明人： Bilal Alam ,  Erik B. Olson ,  Anil K. Ruia ,  Michael D. Volodarsky ,  David Wang ,  Jaroslav Dunajsky

IPC分类号： G06F9/44 ,  G06F9/45 ,  G06F3/00

CPC分类号： G06F9/44521 ,  H04L67/02

摘要： Methods are provided for utilizing a modular server architecture for processing requests for services, such as authorization and authentication, in a web server. The modular server architecture includes self-contained modular components that can be plugged in and out of the web server, as needed, to provide requested web services. The modular server architecture is also extensible in that it provides set of server APIs for processing requests for supporting built-in server functionality as well as functionality provided by third party modular components. The modular server architecture also supports the integration of request processing tasks for both native and managed modular components, such as ASP.NET modules, by virtue of a managed module host component. The modular server architecture also optimizes server performance by only providing modular component functionality when needed. By utilizing the modular server architecture, server functionality is extended, duplication of request processing tasks is eliminated and performance administrative overhead is reduced.

摘要翻译： 提供了用于利用模块化服务器架构处理Web服务器中的服务请求（如授权和身份验证）的方法。 模块化服务器体系结构包括独立的模块化组件，可根据需要插入和移出Web服务器，以提供所需的Web服务。 模块化服务器架构也是可扩展的，因为它提供了一组服务器API来处理用于支持内置服务器功能的请求以及由第三方模块化组件提供的功能。 模块化服务器架构还支持通过托管模块主机组件对本机和托管模块化组件（如ASP.NET模块）的请求处理任务进行集成。 模块化服务器架构还可以在需要时提供模块化组件功能来优化服务器性能。 通过利用模块化服务器架构，扩展了服务器功能，消除了重复的请求处理任务，降低了性能管理开销。

公开(公告)号：US07636769B2

公开(公告)日：2009-12-22

申请号：US11404412

申请日：2006-04-14

申请人： Michael D. Volodarsky ,  Erik B. Olson ,  Anil K. Ruia

发明人： Michael D. Volodarsky ,  Erik B. Olson ,  Anil K. Ruia

IPC分类号： G06F15/16

CPC分类号： H04L67/02 ,  H04L67/28 ,  H04L67/2833 ,  H04L67/2852

摘要： The present invention extends to methods, systems, and computer program products for managing network response buffering behavior. A computer system receives a request for content from a client. The computer system has a default response buffering behavior used when transferring content. The computer system maps the request to a handler configured to serve the requested content. The computer system accesses buffering behavior data for the handler. The computer system determines that the requested content is to be transferred in accordance with altered response buffering behavior based at least on the buffering behavior data. The altered response buffering behavior corresponds to the requested content as an exception to the default response buffering. The computer system accesses a portion of the requested content from the handler. The computer system transfers the portion of requested content to the client in accordance with the altered response buffer behavior.

摘要翻译： 本发明扩展到用于管理网络响应缓冲行为的方法，系统和计算机程序产品。 计算机系统从客户端接收对内容的请求。 计算机系统具有传输内容时使用的默认响应缓冲行为。 计算机系统将请求映射到配置为服务所请求的内容的处理程序。 计算机系统访问处理程序的缓冲行为数据。 计算机系统基于至少基于缓冲行为数据确定根据改变的响应缓冲行为来传送所请求的内容。 改变的响应缓冲行为对应于所请求的内容作为默认响应缓冲的例外。 计算机系统从处理程序中访问所请求内容的一部分。 计算机系统根据改变的响应缓冲器行为将所请求的内容的一部分传送到客户端。

公开(公告)号：US07685367B2

公开(公告)日：2010-03-23

申请号：US11370585

申请日：2006-03-08

申请人： Anil K. Ruia ,  Erik B. Olson ,  Michael Volodarsky

发明人： Anil K. Ruia ,  Erik B. Olson ,  Michael Volodarsky

IPC分类号： G06F13/00

CPC分类号： G06F12/0897 ,  G06F12/0811

摘要： A method for caching data may be practiced, for example, in a computing environment including a server system that provides data to client systems. The server system includes a number of caches for storing data. The method allows a least expensive cache to first cache data or return data requested by a client. The method includes receiving data to be cached at a cache. The method further includes determining that the data has not been previously cached at a preceding cache. If the data has not been previously cached at a preceding cache the data is cached at the cache. Alternatively, requests for data may be received at a first cache. If the data is at the first cache, the first cache returns the data. If the data is not at the first cache, the request for data is forwarded to a subsequent cache.

摘要翻译： 可以例如在包括向客户端系统提供数据的服务器系统的计算环境中实践用于缓存数据的方法。 服务器系统包括用于存储数据的多个高速缓存。 该方法允许最便宜的缓存首先缓存数据或返回客户端请求的数据。 该方法包括接收要缓存在缓存上的数据。 该方法还包括确定数据先前未被缓存在先前的高速缓存中。 如果数据以前没有缓存在先前的缓存中，则数据将缓存在缓存中。 或者，可以在第一高速缓存处接收对数据的请求。 如果数据位于第一个缓存，则第一个缓存返回数据。 如果数据不在第一缓存中，则将数据请求转发到后续高速缓存。