-
公开(公告)号:US08499222B2
公开(公告)日:2013-07-30
申请号:US12967903
申请日:2010-12-14
IPC分类号: H03M13/00
CPC分类号: G06F9/5066
摘要: Supporting distributed key-based processes is described. In an embodiment, servers at a data center provide a key-based process for carrying out computationally expensive tasks and are connected using point to point connections in a geometric topology such as a torus. In an example, aggregation trees are built on top of the geometric topology of the data center, each aggregation tree being a sequence of servers in the data center that forms a tree structure. In an embodiment packets of data are sent from the leaves of the trees to the root and at each server along the tree the packets are aggregated using a combiner function of the key-based process. In an embodiment, if a server fails, the trees are dynamically recomputed and a recovery phase is triggered to resend any packets lost at the failed server. In some embodiments, packets are scheduled by inspecting the content of the packets.
摘要翻译: 描述支持基于分布式密钥的进程。 在一个实施例中,数据中心的服务器提供用于执行计算上昂贵的任务的基于密钥的过程,并且使用诸如环面的几何拓扑中的点对点连接。 在一个示例中,聚合树建立在数据中心的几何拓扑之上,每个聚合树是数据中心中形成树结构的一系列服务器。 在一个实施例中,使用基于密钥的过程的组合器功能,将数据包从树的树叶发送到根,并且沿树的每个服务器将数据包聚合。 在一个实施例中,如果服务器发生故障,则动态地重新计算树并且触发恢复阶段以重新发送在故障服务器处丢失的任何分组。 在一些实施例中,通过检查分组的内容来调度分组。
-
公开(公告)号:US08819236B2
公开(公告)日:2014-08-26
申请号:US12969963
申请日:2010-12-16
IPC分类号: G06F15/16 , G06F15/173
CPC分类号: H04L51/22
摘要: Resource optimization for online services is described. In one example, objects (such as mailboxes or other data associated with an online service) are assigned to network elements (such as servers) by inferring a relationship graph from log data relating to usage of the online service. The graph has a node for each object, and connections between each pair of objects having data items in common. Each connection has a weight relating to the number of common data items. The graph is partitioned into a set of clusters, such that each cluster has nodes joined by connections with a high weight relative to the weight of connections between nodes in different clusters. The objects are then distributed to the network elements such that objects corresponding to nodes in the same cluster are located on the same network element.
摘要翻译: 描述了在线服务的资源优化。 在一个示例中,通过从与在线服务的使用相关的日志数据推断关系图,将对象(诸如邮箱或与在线服务相关联的其他数据)分配给网络元件(例如服务器)。 该图具有每个对象的节点,以及具有共同数据项的每对对象之间的连接。 每个连接具有与公共数据项的数量相关的权重。 该图被划分成一组集群,使得每个集群具有通过具有相对于不同集群中的节点之间的连接的权重的高权重的连接而连接的节点。 然后将对象分发到网络元件,使得与相同集群中的节点相对应的对象位于同一网络元件上。
-
公开(公告)号:US07634812B2
公开(公告)日:2009-12-15
申请号:US11095287
申请日:2005-03-30
申请人: Manuel Costa , Miguel Castro , Antony Rowstron , Jon Crowcroft
发明人: Manuel Costa , Miguel Castro , Antony Rowstron , Jon Crowcroft
IPC分类号: G06F12/14
CPC分类号: G06F21/57 , G06F21/552
摘要: A containment system may include a protection system which may protect the computing device from future attacks. For example, a patch may be automatically generated which resolves a detected vulnerability in a program. IN another example, a filter may be automatically generated which filters actions and/or messages which take advantage of a detected vulnerability in a program.
摘要翻译: 遏制系统可以包括可以保护计算设备免受未来攻击的保护系统。 例如,可以自动生成修补程序,以解决程序中检测到的漏洞。 在另一示例中,可以自动生成过滤器,其过滤利用程序中检测到的漏洞的动作和/或消息。
-
公开(公告)号:US20070006314A1
公开(公告)日:2007-01-04
申请号:US11095291
申请日:2005-03-30
申请人: Manuel Costa , Miguel Castro , Antony Rowstron , Jon Crowcroft
发明人: Manuel Costa , Miguel Castro , Antony Rowstron , Jon Crowcroft
IPC分类号: G06F11/00
CPC分类号: H04L63/1433 , G06F21/554 , G06F21/577 , H04L63/1416
摘要: A containment system may include generating and/or sending an alert as the basis for safely sharing knowledge about detected worms. An alert may contain information that proves that a given program has a vulnerability. The alert may be self-certifying such that its authenticity may be independently verified by a computing system.
摘要翻译: 遏制系统可以包括生成和/或发送警报作为安全地分享关于检测到的蠕虫的知识的基础。 警报可能包含证明给定程序有漏洞的信息。 警报可以是自我认证的,使得其真实性可以由计算系统独立地验证。
-
公开(公告)号:US08649276B2
公开(公告)日:2014-02-11
申请号:US12183607
申请日:2008-07-31
IPC分类号: H04L12/26
CPC分类号: H04L67/06 , H04L1/1614 , H04L1/1854 , H04L63/0442 , H04L67/1095 , H04L67/12
摘要: Content transfer between nodes in a communications network is required in many situations. For example, between fixed nodes in a data center, between a fixed node such as a base station and a mobile node such as a mobile telephone and between mobile nodes themselves such as personal digital assistants. In an embodiment a content transfer process for use between nodes where one node knows the size of content to be transferred is described. For example, a file is divided into blocks to be sent between the nodes. A node receiving a block keeps a record of the received blocks and sends that record to the sending node at certain times. By controlling the times at which the records are sent the number of messages that need to be sent to transfer the records is low and the blocks are transferred in an efficient manner.
摘要翻译: 在许多情况下,需要通信网络中的节点之间的内容传输。 例如,在数据中心的固定节点之间,诸如基站的固定节点和诸如移动电话的移动节点之间以及诸如个人数字助理之类的移动节点本身之间。 在一个实施例中,描述了在一个节点知道要传送的内容的大小的节点之间使用的内容传送过程。 例如,文件被分成在节点之间发送的块。 接收块的节点保持接收到的块的记录,并在某些时间将该记录发送到发送节点。 通过控制发送记录的时间,需要发送以传送记录的消息的数量很少,并且以有效的方式传送块。
-
公开(公告)号:US20060031933A1
公开(公告)日:2006-02-09
申请号:US11095287
申请日:2005-03-30
申请人: Manuel Costa , Miguel Castro , Antony Rowstron , Jon Crowcroft
发明人: Manuel Costa , Miguel Castro , Antony Rowstron , Jon Crowcroft
CPC分类号: G06F21/57 , G06F21/552
摘要: A containment system may include a protection system which may protect the computing device from future attacks. For example, a patch may be automatically generated which resolves a detected vulnerability in a program. IN another example, a filter may be automatically generated which filters actions and/or messages which take advantage of a detected vulnerability in a program.
-
公开(公告)号:US20060021054A1
公开(公告)日:2006-01-26
申请号:US11096054
申请日:2005-03-30
申请人: Manuel Costa , Miguel Castro , Antony Rowstron , Jon Crowcroft
发明人: Manuel Costa , Miguel Castro , Antony Rowstron , Jon Crowcroft
IPC分类号: G06F11/00
CPC分类号: G06F21/566 , H04L63/1416
摘要: One aspect of the invention is a vulnerability detection mechanism that can detect a large class of attacks through dynamic dataflow analysis. Another aspect of the invention includes self-certifying alerts as the basis for safely sharing knowledge about worms. Another aspect of the invention is a resilient and self-organizing protocol to propagate alerts to all non-infected nodes in a timely fashion, even when under active attack during a worm outbreak. Another aspect of the invention is a system architecture that enables a large number of mutually untrusting computers to collaborate in the task of stopping a previously unknown worm, even when the worm is spreading rapidly and exploiting unknown vulnerabilities in popular software packages.
-
公开(公告)号:US08074014B2
公开(公告)日:2011-12-06
申请号:US12059695
申请日:2008-03-31
CPC分类号: G06F1/3203 , G06F1/3268 , G06F3/0625 , G06F3/0634 , G06F3/0689 , G06F11/1441 , G06F11/1471 , G06F11/3433 , G06F11/3485 , G06F2201/82 , Y02D10/154 , Y02D10/34
摘要: Improved storage systems which use write off-loading are described. When a request to store some data in a particular storage location is received, if the particular storage location is unavailable, the data is stored in an alternative location. In an embodiment, the particular storage location may be unavailable because it is powered down or because it is overloaded. The data stored in the alternative location may be subsequently recovered and written to the particular storage location once it becomes available.
摘要翻译: 描述了改进的使用写入卸载的存储系统。 当接收到在特定存储位置存储一些数据的请求时,如果特定存储位置不可用,则将数据存储在替代位置。 在一个实施例中,特定的存储位置可能是不可用的,因为它被断电或者由于其过载。 存储在替代位置的数据可以随后被恢复并被写入特定的存储位置,一旦可用。
-
公开(公告)号:US07634813B2
公开(公告)日:2009-12-15
申请号:US11095291
申请日:2005-03-30
申请人: Manuel Costa , Miguel Castro , Antony Rowstron , Jon Crowcroft
发明人: Manuel Costa , Miguel Castro , Antony Rowstron , Jon Crowcroft
IPC分类号: G06F12/14
CPC分类号: H04L63/1433 , G06F21/554 , G06F21/577 , H04L63/1416
摘要: A containment system may include generating and/or sending an alert as the basis for safely sharing knowledge about detected worms. An alert may contain information that proves that a given program has a vulnerability. The alert may be self-certifying such that its authenticity may be independently verified by a computing system.
摘要翻译: 遏制系统可以包括生成和/或发送警报作为安全地分享关于检测到的蠕虫的知识的基础。 警报可能包含证明给定程序有漏洞的信息。 警报可以是自我认证的,使得其真实性可以由计算系统独立地验证。
-
公开(公告)号:US07603715B2
公开(公告)日:2009-10-13
申请号:US11096054
申请日:2005-03-30
申请人: Manuel Costa , Miguel Castro , Antony Rowstron , Jon Crowcroft
发明人: Manuel Costa , Miguel Castro , Antony Rowstron , Jon Crowcroft
IPC分类号: G06F12/14
CPC分类号: G06F21/566 , H04L63/1416
摘要: One aspect of the invention is a vulnerability detection mechanism that can detect a large class of attacks through dynamic dataflow analysis. Another aspect of the invention includes self-certifying alerts as the basis for safely sharing knowledge about worms. Another aspect of the invention is a resilient and self-organizing protocol to propagate alerts to all non-infected nodes in a timely fashion, even when under active attack during a worm outbreak. Another aspect of the invention is a system architecture that enables a large number of mutually untrusting computers to collaborate in the task of stopping a previously unknown worm, even when the worm is spreading rapidly and exploiting unknown vulnerabilities in popular software packages.
摘要翻译: 本发明的一个方面是可以通过动态数据流分析来检测大类攻击的漏洞检测机制。 本发明的另一方面包括自我认证警报作为安全地共享关于蠕虫的知识的基础。 本发明的另一方面是一种弹性和自组织协议,即使在蠕虫爆发期间受到主动攻击时,也可以及时向所有非感染节点传播警报。 本发明的另一方面是使得大量相互不信任的计算机能够在停止以前未知的蠕虫的任务中进行协作,即使当蠕虫迅速传播并利用流行的软件包中的未知的漏洞时。
-
-
-
-
-
-
-
-
-
搜索结果
34 条记录 (耗时 0.025 秒)
