公开(公告)号：US20120036251A1

公开(公告)日：2012-02-09

申请号：US12853017

申请日：2010-08-09

Applicant: Kirk A. Beaty ,  Andrzej Kochut ,  Sambit Sahu ,  Charles O. Schulz ,  Hidayatullah H. Shaikh

Inventor： Kirk A. Beaty ,  Andrzej Kochut ,  Sambit Sahu ,  Charles O. Schulz ,  Hidayatullah H. Shaikh

IPC: G06F15/173

CPC classification number: H04L67/08 ,  G06F9/45558 ,  G06F2009/4557 ,  G06F2009/45595 ,  H04L43/08

Abstract: A system and method is provided for integrating the front-end and back-end of a virtualized desktop environment to achieve an objective. Network measurements are gathered which are related to enforcement of an objective. Based on gathered network measurements and quality of service requirements for user sessions, a determination is made as to how back-resources and front-end remoting protocol settings are to be adjusted. The back-end resources and the front-end remoting protocol settings are controlled to achieve the objective.

Abstract translation: 提供了一种用于集成虚拟化桌面环境的前端和后端以实现目标的系统和方法。 收集与实施目标相关的网络测量。 基于收集的网络测量和用户会话的服务质量要求，确定如何调整后端资源和前端远程协议设置。 控制后端资源和前端远程协议设置，实现目标。

公开(公告)号：US20110296021A1

公开(公告)日：2011-12-01

申请号：US12789924

申请日：2010-05-28

Applicant: Chitra Dorai ,  Raymond B. Jennings, III ,  Sambit Sahu ,  Anees A. Shaikh

Inventor： Chitra Dorai ,  Raymond B. Jennings, III ,  Sambit Sahu ,  Anees A. Shaikh

IPC: G06F15/16

CPC classification number: G06F9/5072

Abstract: A service-level specification for information technology services is obtained from a user. The service-level specification is mapped into an information technology specific deployment plan. Information technology specific resources are deployed in accordance with the information technology specific deployment plan to provide the information technology services.

Abstract translation: 从用户处获取信息技术服务的服务级规范。 服务级别规范被映射到特定于信息技术的部署计划。 信息技术具体资源按照信息技术具体部署计划部署，提供信息技术服务。

公开(公告)号：US07969869B2

公开(公告)日：2011-06-28

申请号：US12135764

申请日：2008-06-09

Applicant: Zhen Liu ,  Sambit Sahu ,  Jeremy I. Silber

Inventor： Zhen Liu ,  Sambit Sahu ,  Jeremy I. Silber

IPC: H04L12/26

CPC classification number: H04L41/0654 ,  H04L45/00 ,  H04L67/2842 ,  H04L67/2852 ,  H04L69/16 ,  H04L69/163 ,  H04L69/165 ,  H04L69/40

Abstract: In one embodiment, a method and an apparatus for failure-resilient forwarding of data over a computer network include introducing a marker into the data stream, e.g., at the sending node, and allowing, in turn, forwarding nodes and/or receivers to efficiently track data stream reception. The marker functions as a checkpoint for the data transport process, and is identified and indexed at each forwarding node and receiver. Each receiver saves the marker prior to delivering data to an application, thereby designating a point in the data stream at which all preceding data is confirmed to have been delivered to the application. Thus, if a forwarding node fails, the receiver may request stream data from an alternate forwarding node by specifying to the alternate forwarding node to provide data starting from the marker.

Abstract translation: 在一个实施例中，用于通过计算机网络进行数据故障恢复转发的方法和装置包括将标记引入到数据流中，例如在发送节点处，并且允许有效地转发节点和/或接收器 跟踪数据流接收。 标记用作数据传输过程的检查点，并在每个转发节点和接收器处被识别和索引。 每个接收器在将数据传送到应用程序之前保存标记，从而指定数据流中的所有先前数据被确认已被递送到应用的点。 因此，如果转发节点发生故障，则接收方可以通过指定备用转发节点从标记开始提供数据来从备用转发节点请求流数据。

公开(公告)号：US07836295B2

公开(公告)日：2010-11-16

申请号：US10207695

申请日：2002-07-29

Applicant: Suresh N. Chari ,  Pau-Chen Cheng ,  Kang-Won Lee ,  Sambit Sahu ,  Anees A. Shaikh

Inventor： Suresh N. Chari ,  Pau-Chen Cheng ,  Kang-Won Lee ,  Sambit Sahu ,  Anees A. Shaikh

IPC: H04L12/66

CPC classification number: H04L63/1408 ,  H04L63/1458 ,  H04L67/1002

Abstract: Several deterrence mechanisms suitable for content distribution networks (CDN) are provided. These include a hash-based request routing scheme and a site allocation scheme. The hash-based request routing scheme provides a way to distinguish legitimate requests from bogus requests. Using this mechanism, an attacker is required to generate O(n2)amount of traffic to victimize a CDN-hosted site when the site content is served from n CDN caches. Without these modifications, the attacker must generate only O(n) traffic to bring down the site. The site allocation scheme provides sufficient isolation among CDN-hosted Web sites to prevent an attack on one Web site from making other sites unavailable. Using an allocation strategy based on binary codes, it can be guaranteed that a successful attack on any individual Web site that disables its assigned servers, does not also bring down other Web sites hosted by the CDN.

Abstract translation: 提供了适用于内容分发网络（CDN）的几种威慑机制。 这些包括基于散列的请求路由方案和站点分配方案。 基于散列的请求路由方案提供了一种区分合法请求与假请求的方法。 使用这种机制，当从n个CDN缓存提供站点内容时，攻击者需要生成O（n2）个流量来伤害CDN托管站点。 没有这些修改，攻击者必须只生成O（n）流量才能关闭该站点。 站点分配方案可以在CDN托管的网站之间提供足够的隔离，以防止一个网站的攻击使其他站点不可用。 使用基于二进制代码的分配策略，可以保证对任何单个网站的成功攻击禁用其分配的服务器，也不会导致其他由CDN托管的网站。

公开(公告)号：US20100115340A1

公开(公告)日：2010-05-06

申请号：US12263217

申请日：2008-10-31

Applicant: Yaoping Ruan ,  Debanjan Saha ,  Sambit Sahu ,  Anees A. Shaikh

Inventor： Yaoping Ruan ,  Debanjan Saha ,  Sambit Sahu ,  Anees A. Shaikh

IPC: G06F15/177 ,  G06F11/07

CPC classification number: G06F11/0793 ,  G06F11/0709 ,  H04L41/0813 ,  H04L41/0859 ,  H04L41/0866

Abstract: A method, and system employing the method, initiates proactive maintenance of computer systems and/or devices in a computer network. The method determines the subsystems of the computers and network devices and analyzes their configuration data including their respective subsystems. The method generates maintenance characteristics for the devices, and determines a maintenance event for devices using the maintenance characteristics and the configuration data of the devices. The method initiates a maintenance solution of a device determined to have a problematic configuration.

Abstract translation: 一种采用该方法的方法和系统启动对计算机网络中的计算机系统和/或设备的主动维护。 该方法确定计算机和网络设备的子系统，并分析其配置数据，包括其各自的子系统。 该方法生成设备的维护特性，并使用设备的维护特性和配置数据确定设备的维护事件。 该方法启动被确定具有有问题的配置的设备的维护解决方案。

公开(公告)号：US20100100774A1

公开(公告)日：2010-04-22

申请号：US12255937

申请日：2008-10-22

Applicant: Xiangdong Ding ,  Hai Huang ,  Raymond B. Jennings, III ,  Yaoping Roan ,  Sambit Sahu ,  Anees A. Shaikh

Inventor： Xiangdong Ding ,  Hai Huang ,  Raymond B. Jennings, III ,  Yaoping Roan ,  Sambit Sahu ,  Anees A. Shaikh

IPC: G06F11/07

CPC classification number: G06F11/3636

Abstract: A method monitors non-faulty application traces of a computer application with the runtime environment during fault-free activities to create non-faulty runtime signatures for the computer application. Once obtained, the method stores the non-faulty runtime signatures. The method then detects a faulty application trace of the computer application and compares the faulty application trace with the non-faulty runtime signatures by comparing a call graph of the faulty application trace with call graphs of non-faulty application traces of the application signatures to identify differences between the two (e.g., fault attributes). Then the invention outputs the fault attributes to allow the user to identify a fault cause.

Abstract translation: 一种方法在无故障活动期间监视具有运行时环境的计算机应用程序的非故障应用程序跟踪，以为计算机应用程序创建无故障的运行时签名。 一旦获得，该方法存储非故障的运行时签名。 该方法然后检测计算机应用程序的故障应用程序跟踪，并将故障应用程序跟踪与非故障运行时签名进行比较，方法是将故障应用程序跟踪的调用图与应用程序签名的非故障应用程序跟踪的调用图进行比较，以识别 两者之间的差异（例如，故障属性）。 然后本发明输出故障属性，以允许用户识别故障原因。

公开(公告)号：US07493427B2

公开(公告)日：2009-02-17

申请号：US10891196

申请日：2004-07-14

Applicant: Douglas Morgan Freimuth ,  Elbert C. Hu ,  Ronald Mraz ,  Erich M. Nahum ,  Prashant Pradhan ,  Sambit Sahu ,  John Michael Tracey

Inventor： Douglas Morgan Freimuth ,  Elbert C. Hu ,  Ronald Mraz ,  Erich M. Nahum ,  Prashant Pradhan ,  Sambit Sahu ,  John Michael Tracey

IPC: G06F3/00 ,  G06F15/167 ,  G06F13/00

CPC classification number: H04L49/9052 ,  G06F12/0862 ,  H04L47/621 ,  H04L49/90 ,  H04L49/9063

Abstract: A number of improvements in network adapters that offload protocol processing from the host processor are provided. Specifically, an improved mechanism for handling receipt of data packets in a system utilizing an offload network adapter. The offload network adapter may include logic that permits the offload network adapter to delay notification of data reception to the host system in different ways. The advantage of delaying the notice of data packet reception to the host system is the potential for aggregation of several data packets, which can arrive immediately after the first one, for example, in a single notification. Given a stream with continuous data packet arrival, a value may be set, either statically or dynamically, for notification delay and this value may be configurable for the host system per communication socket.

Abstract translation: 提供了从主机处理器卸载协议处理的网络适配器的许多改进。 具体地说，一种用于处理利用卸载网络适配器的系统中数据分组的接收的改进机制。 卸载网络适配器可以包括允许卸载网络适配器以不同的方式将对数据接收的通知延迟到主机系统的逻辑。 将数据分组接收通知延迟到主机系统的优点是几个数据分组的聚合的可能性，其可以在第一个数据分组之后立即到达，例如在单个通知中。 给定具有连续数据分组到达的流，可以静态或动态地设置用于通知延迟的值，并且该值可以针对每个通信套接字的主机系统来配置。

公开(公告)号：US07472159B2

公开(公告)日：2008-12-30

申请号：US10439791

申请日：2003-05-15

Applicant: Douglas Morgan Freimuth ,  Prashant Pradhan ,  Sambit Sahu ,  Renu Tewari ,  Donna N. Dillenberger

Inventor： Douglas Morgan Freimuth ,  Prashant Pradhan ,  Sambit Sahu ,  Renu Tewari ,  Donna N. Dillenberger

IPC: G06F15/16

CPC classification number: H04L69/163 ,  H04L29/06 ,  H04L47/11 ,  H04L47/15 ,  H04L47/2433 ,  H04L47/70 ,  H04L47/745 ,  H04L47/748 ,  H04L47/805 ,  H04L47/821 ,  H04L47/822 ,  H04L47/826 ,  H04L67/322 ,  H04L67/325 ,  H04L69/16 ,  H04L69/329

Abstract: A method and system architecture to manage system resources in such a way as to provide service time guarantees to various classes of work using the system. In the case that the system resources are not sufficient to provide the specified service time guarantees, a method and system architecture is provided to limit work into the system such that the guarantees are satisfied and the revenue derived from the system is maximized.

Abstract translation: 一种管理系统资源的方法和系统架构，以便使用该系统为各类工作提供服务时间保证。 在系统资源不足以提供指定的服务时间保证的情况下，提供了一种方法和系统架构，以将工作限制到系统中，从而满足保证并且从系统获得的收入最大化。

公开(公告)号：US20080239947A1

公开(公告)日：2008-10-02

申请号：US12135764

申请日：2008-06-09

Applicant: ZHEN LIU ,  Sambit Sahu ,  Jeremy I. Silber

Inventor： ZHEN LIU ,  Sambit Sahu ,  Jeremy I. Silber

IPC: G06F11/00

CPC classification number: H04L41/0654 ,  H04L45/00 ,  H04L67/2842 ,  H04L67/2852 ,  H04L69/16 ,  H04L69/163 ,  H04L69/165 ,  H04L69/40

Abstract: In one embodiment, the present invention is a method and an apparatus for failure-resilient forwarding of data over a computer network. In one embodiment, a marker is introduced into the data stream, e.g., at the sending node, and allows, in turn, forwarding nodes and/or receivers to efficiently track data stream reception. The marker functions as a checkpoint for the data transport process, and is identified and indexed at each forwarding node and receiver. Each receiver saves the marker prior to delivering data to an application, thereby designating a point in the data stream at which all preceding data is confirmed to have been delivered to the application. Thus, if a forwarding node fails, the receiver may request stream data from an alternate forwarding node by specifying to the alternate forwarding node to provide data starting from the marker.

Abstract translation: 在一个实施例中，本发明是用于在计算机网络上进行数据故障恢复转发的方法和装置。 在一个实施例中，将标记引入数据流，例如在发送节点处，并且允许转发节点和/或接收器以有效地跟踪数据流接收。 标记用作数据传输过程的检查点，并在每个转发节点和接收器处被识别和索引。 每个接收器在将数据传送到应用程序之前保存标记，从而指定数据流中的所有先前数据被确认已被递送到应用的点。 因此，如果转发节点发生故障，则接收方可以通过指定备用转发节点从标记开始提供数据来从备用转发节点请求流数据。

公开(公告)号：US20070041317A1

公开(公告)日：2007-02-22

申请号：US11204856

申请日：2005-08-16

Applicant: Michael Haley ,  Prashant Pradhan ,  Debanjan Saha ,  Sambit Sahu ,  Manpreet Singh

Inventor： Michael Haley ,  Prashant Pradhan ,  Debanjan Saha ,  Sambit Sahu ,  Manpreet Singh

IPC: H04L12/26

CPC classification number: H04L43/0882 ,  H04L41/12 ,  H04L43/0829 ,  H04L43/0852

Abstract: A method of generating an annotated network topology of a network is described. The method includes determining available bandwidth “B” of a network on a network path connecting a pair of endpoints by performing Transfer Control Protocol (TCP) flows between the pair of endpoints, the network having a plurality of network paths, identifying a bottleneck link in the network path, and annotating all edges in a network path, wherein available bandwidth annotation of links inside the network is determined using end-to-end network measurements. A system for generating the annotated network topology of a network is also described.

Abstract translation: 描述了一种生成网络的注释网络拓扑的方法。 该方法包括通过在一对端点之间执行传输控制协议（TCP）流，网络具有多个网络路径来确定连接一对端点的网络路径上的网络的可用带宽“B”，该网络具有多个网络路径， 网络路径和注释网络路径中的所有边缘，其中使用端对端网络测量来确定网络内的链路的可用带宽注释。 还描述了用于生成网络的带注释的网络拓扑的系统。