US20120079014A1 - Method and system for delayed allocation of resources - Google Patents
Method and system for delayed allocation of resources Download PDFInfo
- Publication number
- US20120079014A1 US20120079014A1 US13/309,331 US201113309331A US2012079014A1 US 20120079014 A1 US20120079014 A1 US 20120079014A1 US 201113309331 A US201113309331 A US 201113309331A US 2012079014 A1 US2012079014 A1 US 2012079014A1
- Authority
- US
- United States
- Prior art keywords
- client
- feature
- server
- indication
- supported
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Abandoned
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/28—Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1441—Countermeasures against malicious traffic
- H04L63/1458—Denial of Service
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
Definitions
- the invention relates generally to network communications and, more particularly, to allocating resources among clients and servers on a network.
- client/server computing In this model, one computing device, the client, requests that another computing device, the server, provide services or features to it.
- client and server are used solely to denote the parties in a request transaction.
- computing devices are implemented as dedicated servers that can serve multiple clients, a client and a server can switch roles from one transaction to another.
- peer-to-peer network common, for example, among devices communicating via short range radio
- every computing device has the potential to be both a client and a server, serially or simultaneously.
- Servers often have to allocate precious resources to fulfill a request for a feature or for a service.
- a server Upon receiving a request from a client, a server checks the availability of its resources. Traditionally, if the server does not have the resources to fulfill the request, then the server rejects the request. If the client can proceed without the requested feature or service, then it does so and resubmits the request later, at which time the server may have the necessary resources available to fulfill the request.
- servers In order to ensure that precious server resources are dedicated only to those clients authorized to use them, servers often check the identity of a client making a request. If the client cannot authenticate itself to the satisfaction of the server, then the server rejects the request.
- This protection against unauthorized clients is not perfect, however. Some types of requests are made before the authorization process is complete. Processing these requests, even if they are ultimately rejected, consumes some level of server resources. For example, a nefarious client could bring a “denial of service” (DOS) attack against a server by repeatedly making requests of the server. Although this client will fail to authenticate itself and its requests will ultimately be rejected, the server may in the mean time utilize so many resources attempting to authenticate the client during each request that the server exhausts its resource pool until the server is rendered incapable of fulfilling any requests, even those made by authorized clients.
- DOS denial of service
- the present invention allows a server to delay allocating resources to a client's request.
- the server accepts and acknowledges the client's request, but the client is prohibited from using the requested feature until further notice from the server.
- the server allocates only the minimum resources required to maintain the session and to authorize the client. Thereafter, the server allocates the resources necessary to support the client's request only when the resources become available. Until then, the server maintains the communications session without supporting the request.
- the server shepherds its resources rather than committing them at the whim of a potentially malicious, malfunctioning, or misconfigured client. Also, a legitimate client need not repeat its request if the server cannot immediately satisfy it; instead, the server accepts the request and then later begins to support it when adequate resources become available.
- the server after receiving a request for data compression from a client, the server accepts and acknowledges the request but delays allocating the resources necessary to compress communications data. Indeed, the server might not even check to see whether resources are available until the client has successfully authenticated itself to the server. Even though the compression request has been accepted, the client and server communicate without compressing their data. This continues until, and if, the resources necessary for compression become available on the server. At that time, the server allocates the necessary resources and indicates to the client that compression is now supported. The server can signal this by, for example, sending compressed data to the client. Upon receiving the signal (e.g., the compressed data), the client realizes that it is now permitted to communicate with compression. The client responds by beginning to transmit compressed data to the server.
- the server can signal this by, for example, sending compressed data to the client.
- QOS features include, generally, bandwidth, response time guarantees, immunity to error, integrity of message sequence and lack of duplication, maximum permissible loss rates, and the like.
- QOS features provide examples where, in keeping with one embodiment of the present invention, the server can allocate resources level by level rather than all at once. For example, the client requests a great amount of guaranteed bandwidth. The server initially accepts the request but allocates resources sufficient to support only a low amount of guaranteed bandwidth. The client recognizes this and uses only the low amount of bandwidth. Later, the server allocates more bandwidth to this client (in response, for example, to another client releasing bandwidth), and the client begins to use the greater bandwidth amount.
- a server or a client maintains information about the requested feature and about the actual level of service being supported.
- the server monitors this information for each client and allocates additional resources to the clients as resources become available in order to more fully support the clients' requests.
- a client can display to its user the status of requests as accepted and supported, accepted but not yet supported, and rejected.
- the server can provide similar information to an administrator or to a log file.
- FIG. 1 is a block diagram of an exemplary computer networking environment within which the present invention can be practiced
- FIG. 2 is a schematic diagram generally illustrating an exemplary computer system that supports the present invention
- FIGS. 3 a and 3 b together form a data-flow diagram illustrating an exemplary message exchange between a client and a server during negotiation of the client's communications feature request;
- FIG. 4 is a data-structure diagram of an exemplary message exchanged between the client and the server during the scenario of FIGS. 3 a and 3 b;
- FIGS. 5 a and 5 b together form a flowchart illustrating an exemplary resource allocation method performed by a server
- FIG. 6 is a data-structure diagram of a request status list usable by a server.
- FIGS. 7 a and 7 b together form a flowchart illustrating an exemplary feature request method performed by a client.
- FIG. 1 gives an example of a computer networking environment 100 in which the invention can be used.
- the example network 100 includes a server computing device 102 and three client computing devices 104 , 106 , and 108 .
- the network 100 can be a corporate local area network (LAN), a wireless network, the Internet, or anything in between and can include many well known components, such as routers, gateways, hubs, etc.
- the client 104 requests a service or a communications feature from the server 102 .
- the server 102 provisionally accepts the request but does not allocate resources to support the requested feature until, for example, the client 104 authenticates itself to the server 102 or until the resources become available. Until the resources are allocated and the server 102 informs the client 104 of that fact, the client 104 and the server 102 communicate without using the requested feature. Thus, the server 102 shepherds its resources rather than committing them at the whim of a potentially malicious, malfunctioning, or misconfigured client.
- the client 104 and the server 102 can switch roles with the “server” 102 requesting a service from the “client” 104 .
- every computing device can be both a client and a server, serially or simultaneously. Accordingly, embodiments of the invention can be practiced on clients, servers, peers, or any combinations thereof.
- the computing device 110 is another server but one that only directly communicates with the server 102 to provide resources to it. Its presence illustrates that by following the methods of the present invention, the server 102 shepherds not just its own resources but the resources of the networking environment 100 generally.
- FIG. 2 is a block diagram generally illustrating an exemplary computer system that supports the present invention.
- the computer system of FIG. 2 is only one example of a suitable environment and is not intended to suggest any limitation as to the scope of use or functionality of the invention.
- the computing device 102 be interpreted as having any dependency or requirement relating to any one or combination of components illustrated in FIG. 2 .
- the invention is operational with numerous other general-purpose or special-purpose computing environments or configurations.
- the computing device 102 typically includes at least one processing unit 200 and memory 202 .
- the memory 202 may be volatile (such as RAM), non-volatile (such as ROM or flash memory), or some combination of the two. This most basic configuration is illustrated in FIG. 2 by the dashed line 204 .
- the computing device 102 may have additional features and functionality.
- the device 102 may contain additional storage (removable and non-removable) including, but not limited to, magnetic and optical disks and tape. Such additional storage is illustrated in FIG. 2 by removable storage 206 and by non-removable storage 208 .
- Computer-storage media include volatile and non-volatile, removable and non-removable, media implemented in any method or technology for storage of information such as computer-readable instructions, data structures, program modules, or other data.
- Memory 202 , removable storage 206 , and non-removable storage 208 are all examples of computer-storage media.
- Computer-storage media include, but are not limited to, RAM, ROM, EEPROM, flash memory, other memory technology, CD-ROM, digital versatile disks, other optical storage, magnetic cassettes, magnetic tape, magnetic disk storage, other magnetic storage devices, and any other media that can be used to store the desired information and can be accessed by the computing device 102 .
- the device 102 may also contain communications channels 210 that allow the computer to communicate with other devices. Communications channels 210 are examples of communications media. Communications media typically embody computer-readable instructions, data structures, program modules, or other data in a modulated data signal such as a carrier wave or other transport mechanism and include any information delivery media.
- modulated data signal means a signal that has one or more of its characteristics set or changed in such a manner as to encode information in the signal.
- communications media include wired media, such as wired networks and direct-wired connections, and wireless media such as acoustic, RF, infrared, and other wireless media.
- computer-readable media includes both storage media and communications media.
- the computing device 102 may also have input devices 212 such as a keyboard, mouse, pen, voice-input device, tablet, touch-input device, etc.
- Output devices 214 such as a display (which may be integrated with a touch-input device), speakers, and printer may also be included. All these devices are well known in the art and need not be discussed at length here.
- FIGS. 3 a and 3 b together show an exemplary exchange of messages when the client 104 requests a feature from the server 102 .
- FIGS. 5 a , 5 b , 7 a , and 7 b present further details of possible message exchanges.
- the client 104 requests the feature in step 300 of FIG. 3 a .
- the feature can be of any type including data compression, data encryption, and the numerous QOS features.
- the message protocol can also be of any type, such as, e.g., SIP (the Session Initiation Protocol). Note that the feature request in step 300 need not be explicit: It may instead be implied by the message protocol used between the client 104 and the server 102 .
- the server 102 receives the feature request and decides whether it will support that feature. If not, then the server 102 uses the methods defined in the protocol to reject the request (not shown). If the server 102 will support the requested feature and is ready to do so immediately, then the server 102 allocates the resources needed to support the feature and accepts the request (also not shown).
- the scenario depicted in FIGS. 3 a and 3 b concerns a third possibility for the server 102 : It may be willing to support the requested feature in the future but is not yet ready to do so.
- One example that leads to this scenario is the case where the server 102 currently does not have the resources available to support the feature but expects to acquire those resources soon.
- the server 102 does not yet trust the client 104 enough to allocate precious resources to its request.
- the server 102 does not yet allocate the resources but waits until the client 104 has successfully authenticated itself. (See the discussion of steps 310 and 312 of FIG. 3 b below.)
- the server 102 in step 302 sends a message to the client 104 indicating that the request has been accepted but also indicating that the requested feature is not yet supported.
- the server 102 can indicate that the requested feature is not yet supported.
- SIP for example, when data compression is allowed on a communications link, “tags” are added to the data fields. (See FIG. 4 and the accompanying discussion.) Not all data messages are compressed even when compression is enabled (for example, a given message may be too short to benefit from compression), so a flag in a tag indicates whether the accompanying data are compressed.
- Embodiments of the present invention can use this tag and flag in step 302 : The acceptance message is tagged indicating that the request for data compression has been allowed, but the data in that message are not compressed, as indicated by the flag.
- the client 104 receives the acceptance message and notes that the requested feature is not yet supported.
- the tag indicates the acceptance of the request, but the lack of compression indicates that the server is not ready for compressed data.
- steps 306 and 308 the client 104 and the server 102 communicate without using the requested feature. Depending upon circumstances, these steps can continue for a long time (until, e.g., the server 102 acquires the necessary resources) or can be very short (e.g., only until the client 104 successfully authenticates itself to the server 102 ).
- Steps 310 and 312 of FIG. 3 b are, in one sense, optional but are included because they illustrate a scenario in which the methods of the present invention are very useful.
- the client 104 authenticates itself to the server 102 using the methods established by the protocol they are using. (Many such methods are known in the art.)
- the server 102 is understandably reluctant to allocate precious resources until these steps are complete. Although this scenario is not the only one in which delayed allocation of resources proves valuable, it is one scenario closely tied to preventing DOS attacks.
- step 314 the server 102 decides to allocate the resources to support the client 104 's request.
- step 316 the server 102 indicates to the client 104 that the feature is now supported.
- the server 102 can indicate that the feature is now supported.
- the server 102 can simply send compressed data to the client 104 .
- the client 104 notes that the feature is now supported in step 318 . From that point on, the client 104 and the server 102 can communicate either using or not using the requested feature, as appropriate to the situation.
- FIG. 4 shows a message data structure 400 used for sending compressed or uncompressed data.
- the data structure 400 includes three tag fields.
- the first tag field 402 is designated for flags (herein “flags tag”).
- the flags tag field 402 is used for indicating the format of the data in field 408 , specifically whether the data are compressed.
- the flag field includes mutually exclusive bits. As an example, a 0x80 bit is used to indicate that the data are uncompressed, and a 0x20 bit indicates that the data are compressed.
- the client 104 determines the type of data packet it receives from the server 102 to know whether or not data compression is supported.
- step 500 the server 102 receives a request from the client 104 for a service or for a communications feature.
- this request may be in the form of an explicit message sent by the client 104 , or it may be implicit in the communications protocol used between the client 104 and the server 102 .
- the server 102 checks, in step 502 , its own configuration to see whether it can support the requested feature. It could happen that the client 104 is requesting a feature that the server 102 is not configured to support. In that case, the method proceeds to step 510 where the server 102 rejects the request.
- step 504 it accepts the request but tells the client 104 that the client 104 may not yet use the feature.
- the server 102 will only provide to authenticated clients. If the client 104 has requested such a feature, then in step 506 an authentication process is carried out. If the client 104 fails the authentication in step 508 , then the server 102 can reject the request in step 510 , even though it provisionally accepted the request earlier in step 504 . Note that an authentication failure does not necessarily imply that the client 104 must terminate its communications session with the server 102 . While that is a possible outcome, for the present discussion, the consequence of an authentication failure is the client 104 's inability to use the requested feature.
- the server 102 checks for the availability of sufficient resources in step 512 and when, in step 514 of FIG. 5 b , such resources become available, the server 102 allocates them to support the feature requested by the client 104 . As mentioned above in relation to FIG. 1 , these resources need not reside on the server 102 itself. They may be provided by another server 110 . In some scenarios, the resources may become available in step 514 when another client gives them up. In other scenarios, the resources are always available, but the server 102 is reluctant to commit them to the client 104 until the client 104 successfully authenticates itself in step 508 of FIG. 5 a.
- the server 102 indicates that it is now ready to support the requested feature.
- Some features can be supported at different levels. For example, the client 104 requests a minimum bandwidth guarantee of 512 kbps. If the server 102 does not have the resources to fully support that request, it could simply reject it. Alternatively, the server 102 can accept the request but tell the client 104 that the server 102 can only support a 128 kbps bandwidth guarantee. The client 104 decides whether the lower guarantee is acceptable or not and reacts accordingly.
- the server 102 tracks its resource levels and allocations, as indicated in step 518 .
- the server 102 uses this information when deciding whether it has sufficient resources to support a requested feature.
- System administrators use this information when deciding whether the server 102 is optimally configured.
- FIG. 6 gives an example of the server 102 's resource log.
- the resource allocation log 600 contains four entry rows, each one pertaining to a single feature request.
- the client 104 (field 602 ) has requested data compression (field 604 ), and that request has been accepted (field 606 ).
- the client 106 's request for data compression was rejected, possibly because the client 106 failed to authenticate itself to the server 102 .
- the client 108 's request for data compression has been provisionally accepted, but that feature is not yet supported.
- the client 108 has made another request, this time for a guaranteed bandwidth of 512 kbps.
- the request has been accepted, but the feature is currently supported only at the lower level of 128 kbps.
- the client 104 and the server 102 can use the requested feature in their communications. However, they are not required to use the feature. For example, even when compression is supported, some messages are too short to benefit from being compressed.
- step 522 Another use of the server 102 's resource allocation log 600 is illustrated in step 522 .
- some resources are freed up (probably from another client), and the server 102 checks its resource allocation log 600 . It notes, for example, that the client 108 requested 512 kbps of guaranteed bandwidth but was only granted 128 kbps. If the server 102 can and wishes to support the client 108 's request at a higher level, it can now do so. For some features, the server 102 can even use this method to reduce its level of support. Other features do not allow for this, and the level of support must be renegotiated.
- the client 104 's side of a feature request transaction is illustrated in the flowchart of FIGS. 7 a and 7 b .
- the client 104 can maintain a log of its own requests similar to the server 102 's resource allocation log 600 of FIG. 6 .
- the status of feature requests, including their level of support if appropriate, can be displayed to a user of the client 104 as indicated in steps 716 and 720 of FIG. 7 b.
Abstract
The present invention allows a server to delay allocating resources to a client's request. When the client requests a feature that requires server resources, the server accepts and acknowledges the client's request, but the client is prohibited from using the requested feature until further notice from the server. For example, during an authorization process, the server allocates only the minimum resources required to maintain the session and to authorize the client. Thereafter, the server allocates the resources necessary to support the client's request only when the resources become available. Until then, the server maintains the communications session without supporting the request. Thus, the server shepherds its resources rather than committing them at the whim of a client. Also, a client need not repeat its request if the server cannot immediately satisfy it; instead, the server accepts the request and then later begins to support it when adequate resources become available.
Description
- The present application claims the benefit of U.S. Provisional Patent Application 60/451,151, filed on Feb. 28, 2003, which is incorporated herein in its entirety by reference.
- The invention relates generally to network communications and, more particularly, to allocating resources among clients and servers on a network.
- The rapid growth of computer networks, both public and private, in recent years has been spurred, in large part, by “client/server computing.” In this model, one computing device, the client, requests that another computing device, the server, provide services or features to it. Note that “client” and “server” are used solely to denote the parties in a request transaction. While some computing devices are implemented as dedicated servers that can serve multiple clients, a client and a server can switch roles from one transaction to another. In a “peer-to-peer” network (common, for example, among devices communicating via short range radio), every computing device has the potential to be both a client and a server, serially or simultaneously.
- Servers often have to allocate precious resources to fulfill a request for a feature or for a service. Upon receiving a request from a client, a server checks the availability of its resources. Traditionally, if the server does not have the resources to fulfill the request, then the server rejects the request. If the client can proceed without the requested feature or service, then it does so and resubmits the request later, at which time the server may have the necessary resources available to fulfill the request.
- In order to ensure that precious server resources are dedicated only to those clients authorized to use them, servers often check the identity of a client making a request. If the client cannot authenticate itself to the satisfaction of the server, then the server rejects the request.
- This protection against unauthorized clients is not perfect, however. Some types of requests are made before the authorization process is complete. Processing these requests, even if they are ultimately rejected, consumes some level of server resources. For example, a nefarious client could bring a “denial of service” (DOS) attack against a server by repeatedly making requests of the server. Although this client will fail to authenticate itself and its requests will ultimately be rejected, the server may in the mean time utilize so many resources attempting to authenticate the client during each request that the server exhausts its resource pool until the server is rendered incapable of fulfilling any requests, even those made by authorized clients.
- In view of the foregoing, the present invention allows a server to delay allocating resources to a client's request. When the client requests a service or a feature that requires server resources (such as, for example, encryption or compression of the messages between the client and the server), the server accepts and acknowledges the client's request, but the client is prohibited from using the requested feature until further notice from the server. For example, during an authorization process, the server allocates only the minimum resources required to maintain the session and to authorize the client. Thereafter, the server allocates the resources necessary to support the client's request only when the resources become available. Until then, the server maintains the communications session without supporting the request. Thus, the server shepherds its resources rather than committing them at the whim of a potentially malicious, malfunctioning, or misconfigured client. Also, a legitimate client need not repeat its request if the server cannot immediately satisfy it; instead, the server accepts the request and then later begins to support it when adequate resources become available.
- According to one embodiment, after receiving a request for data compression from a client, the server accepts and acknowledges the request but delays allocating the resources necessary to compress communications data. Indeed, the server might not even check to see whether resources are available until the client has successfully authenticated itself to the server. Even though the compression request has been accepted, the client and server communicate without compressing their data. This continues until, and if, the resources necessary for compression become available on the server. At that time, the server allocates the necessary resources and indicates to the client that compression is now supported. The server can signal this by, for example, sending compressed data to the client. Upon receiving the signal (e.g., the compressed data), the client realizes that it is now permitted to communicate with compression. The client responds by beginning to transmit compressed data to the server.
- Compression is just one example of a communications feature that can be requested by a client. Other examples include the wide range of features commonly called Quality of Service (QOS). QOS features include, generally, bandwidth, response time guarantees, immunity to error, integrity of message sequence and lack of duplication, maximum permissible loss rates, and the like. QOS features provide examples where, in keeping with one embodiment of the present invention, the server can allocate resources level by level rather than all at once. For example, the client requests a great amount of guaranteed bandwidth. The server initially accepts the request but allocates resources sufficient to support only a low amount of guaranteed bandwidth. The client recognizes this and uses only the low amount of bandwidth. Later, the server allocates more bandwidth to this client (in response, for example, to another client releasing bandwidth), and the client begins to use the greater bandwidth amount.
- Also in keeping with the invention, a server or a client (or both) maintains information about the requested feature and about the actual level of service being supported. The server monitors this information for each client and allocates additional resources to the clients as resources become available in order to more fully support the clients' requests.
- A client can display to its user the status of requests as accepted and supported, accepted but not yet supported, and rejected. The server can provide similar information to an administrator or to a log file.
- While the appended claims set forth the features of the present invention with particularity, the invention, together with its objects and advantages, may be best understood from the following detailed description taken in conjunction with the accompanying drawings of which:
-
FIG. 1 is a block diagram of an exemplary computer networking environment within which the present invention can be practiced; -
FIG. 2 is a schematic diagram generally illustrating an exemplary computer system that supports the present invention; -
FIGS. 3 a and 3 b together form a data-flow diagram illustrating an exemplary message exchange between a client and a server during negotiation of the client's communications feature request; -
FIG. 4 is a data-structure diagram of an exemplary message exchanged between the client and the server during the scenario ofFIGS. 3 a and 3 b; -
FIGS. 5 a and 5 b together form a flowchart illustrating an exemplary resource allocation method performed by a server; -
FIG. 6 is a data-structure diagram of a request status list usable by a server; and -
FIGS. 7 a and 7 b together form a flowchart illustrating an exemplary feature request method performed by a client; and - Turning to the drawings, wherein like reference numerals refer to like elements, the present invention is illustrated as being implemented in a suitable computing environment. The following description is based on embodiments of the invention and should not be taken as limiting the invention with regard to alternative embodiments that are not explicitly described herein.
- In the description that follows, the present invention is described with reference to acts and symbolic representations of operations that are performed by one or more computing devices, unless indicated otherwise. As such, it will be understood that such acts and operations, which are at times referred to as being computer-executed, include the manipulation by the processing unit of the computing device of electrical signals representing data in a structured form. This manipulation transforms the data or maintains them at locations in the memory system of the computing device, which reconfigures or otherwise alters the operation of the device in a manner well understood by those skilled in the art. The data structures, where data are maintained, are physical locations of the memory that have particular properties defined by the format of the data. However, while the invention is being described in the foregoing context, it is not meant to be limiting as those of skill in the art will appreciate that various of the acts and operations described hereinafter may also be implemented in hardware.
- The present invention allows a server to accept a client request but to delay allocating the resources necessary to support that request.
FIG. 1 gives an example of acomputer networking environment 100 in which the invention can be used. Theexample network 100 includes aserver computing device 102 and threeclient computing devices network 100 can be a corporate local area network (LAN), a wireless network, the Internet, or anything in between and can include many well known components, such as routers, gateways, hubs, etc. In an example transaction, theclient 104 requests a service or a communications feature from theserver 102. Theserver 102 provisionally accepts the request but does not allocate resources to support the requested feature until, for example, theclient 104 authenticates itself to theserver 102 or until the resources become available. Until the resources are allocated and theserver 102 informs theclient 104 of that fact, theclient 104 and theserver 102 communicate without using the requested feature. Thus, theserver 102 shepherds its resources rather than committing them at the whim of a potentially malicious, malfunctioning, or misconfigured client. - In another transaction, the
client 104 and theserver 102 can switch roles with the “server” 102 requesting a service from the “client” 104. In a peer-to-peer network, every computing device can be both a client and a server, serially or simultaneously. Accordingly, embodiments of the invention can be practiced on clients, servers, peers, or any combinations thereof. - The
computing device 110 is another server but one that only directly communicates with theserver 102 to provide resources to it. Its presence illustrates that by following the methods of the present invention, theserver 102 shepherds not just its own resources but the resources of thenetworking environment 100 generally. - The
computing devices FIG. 1 may be of any architecture.FIG. 2 is a block diagram generally illustrating an exemplary computer system that supports the present invention. The computer system ofFIG. 2 is only one example of a suitable environment and is not intended to suggest any limitation as to the scope of use or functionality of the invention. Nor should thecomputing device 102 be interpreted as having any dependency or requirement relating to any one or combination of components illustrated inFIG. 2 . The invention is operational with numerous other general-purpose or special-purpose computing environments or configurations. Examples of well known computing systems, environments, and configurations suitable for use with the invention include, but are not limited to, personal computers, servers, hand-held or laptop devices, tablet devices, multiprocessor systems, microprocessor-based systems, set-top boxes, programmable consumer electronics, network PCs, minicomputers, mainframe computers, and distributed computing environments that include any of the above systems or devices. In its most basic configuration, thecomputing device 102 typically includes at least oneprocessing unit 200 andmemory 202. Thememory 202 may be volatile (such as RAM), non-volatile (such as ROM or flash memory), or some combination of the two. This most basic configuration is illustrated inFIG. 2 by the dashedline 204. Thecomputing device 102 may have additional features and functionality. For example, thedevice 102 may contain additional storage (removable and non-removable) including, but not limited to, magnetic and optical disks and tape. Such additional storage is illustrated inFIG. 2 byremovable storage 206 and bynon-removable storage 208. Computer-storage media include volatile and non-volatile, removable and non-removable, media implemented in any method or technology for storage of information such as computer-readable instructions, data structures, program modules, or other data.Memory 202,removable storage 206, andnon-removable storage 208 are all examples of computer-storage media. Computer-storage media include, but are not limited to, RAM, ROM, EEPROM, flash memory, other memory technology, CD-ROM, digital versatile disks, other optical storage, magnetic cassettes, magnetic tape, magnetic disk storage, other magnetic storage devices, and any other media that can be used to store the desired information and can be accessed by thecomputing device 102. Thedevice 102 may also containcommunications channels 210 that allow the computer to communicate with other devices.Communications channels 210 are examples of communications media. Communications media typically embody computer-readable instructions, data structures, program modules, or other data in a modulated data signal such as a carrier wave or other transport mechanism and include any information delivery media. The term “modulated data signal” means a signal that has one or more of its characteristics set or changed in such a manner as to encode information in the signal. By way of example, and not limitation, communications media include wired media, such as wired networks and direct-wired connections, and wireless media such as acoustic, RF, infrared, and other wireless media. The term “computer-readable media” as used herein includes both storage media and communications media. Thecomputing device 102 may also haveinput devices 212 such as a keyboard, mouse, pen, voice-input device, tablet, touch-input device, etc.Output devices 214 such as a display (which may be integrated with a touch-input device), speakers, and printer may also be included. All these devices are well known in the art and need not be discussed at length here. -
FIGS. 3 a and 3 b together show an exemplary exchange of messages when theclient 104 requests a feature from theserver 102.FIGS. 5 a, 5 b, 7 a, and 7 b, below, present further details of possible message exchanges. Theclient 104 requests the feature instep 300 ofFIG. 3 a. The feature can be of any type including data compression, data encryption, and the numerous QOS features. The message protocol can also be of any type, such as, e.g., SIP (the Session Initiation Protocol). Note that the feature request instep 300 need not be explicit: It may instead be implied by the message protocol used between theclient 104 and theserver 102. - In
step 302, theserver 102 receives the feature request and decides whether it will support that feature. If not, then theserver 102 uses the methods defined in the protocol to reject the request (not shown). If theserver 102 will support the requested feature and is ready to do so immediately, then theserver 102 allocates the resources needed to support the feature and accepts the request (also not shown). The scenario depicted inFIGS. 3 a and 3 b concerns a third possibility for the server 102: It may be willing to support the requested feature in the future but is not yet ready to do so. One example that leads to this scenario is the case where theserver 102 currently does not have the resources available to support the feature but expects to acquire those resources soon. In another example, theserver 102 does not yet trust theclient 104 enough to allocate precious resources to its request. Theserver 102 does not yet allocate the resources but waits until theclient 104 has successfully authenticated itself. (See the discussion ofsteps FIG. 3 b below.) In the scenario ofFIG. 3 a, theserver 102 instep 302 sends a message to theclient 104 indicating that the request has been accepted but also indicating that the requested feature is not yet supported. - There are numerous ways in which the
server 102 can indicate that the requested feature is not yet supported. In SIP, for example, when data compression is allowed on a communications link, “tags” are added to the data fields. (SeeFIG. 4 and the accompanying discussion.) Not all data messages are compressed even when compression is enabled (for example, a given message may be too short to benefit from compression), so a flag in a tag indicates whether the accompanying data are compressed. Embodiments of the present invention can use this tag and flag in step 302: The acceptance message is tagged indicating that the request for data compression has been allowed, but the data in that message are not compressed, as indicated by the flag. Instep 304, theclient 104 receives the acceptance message and notes that the requested feature is not yet supported. In the data compression example, the tag indicates the acceptance of the request, but the lack of compression indicates that the server is not ready for compressed data. - In steps 306 and 308, the
client 104 and theserver 102 communicate without using the requested feature. Depending upon circumstances, these steps can continue for a long time (until, e.g., theserver 102 acquires the necessary resources) or can be very short (e.g., only until theclient 104 successfully authenticates itself to the server 102). -
Steps FIG. 3 b are, in one sense, optional but are included because they illustrate a scenario in which the methods of the present invention are very useful. During these steps, theclient 104 authenticates itself to theserver 102 using the methods established by the protocol they are using. (Many such methods are known in the art.) Theserver 102 is understandably reluctant to allocate precious resources until these steps are complete. Although this scenario is not the only one in which delayed allocation of resources proves valuable, it is one scenario closely tied to preventing DOS attacks. - Finally, in
step 314 theserver 102 decides to allocate the resources to support theclient 104's request. Instep 316, theserver 102 indicates to theclient 104 that the feature is now supported. Just as with the numerous possible indications discussed above with respect to step 302, there are numerous ways in which theserver 102 can indicate that the feature is now supported. Using the data compression example, theserver 102 can simply send compressed data to theclient 104. Upon receiving the indication, whatever it is, theclient 104 notes that the feature is now supported instep 318. From that point on, theclient 104 and theserver 102 can communicate either using or not using the requested feature, as appropriate to the situation. -
FIG. 4 shows amessage data structure 400 used for sending compressed or uncompressed data. Thedata structure 400 includes three tag fields. Thefirst tag field 402 is designated for flags (herein “flags tag”). The flags tagfield 402 is used for indicating the format of the data infield 408, specifically whether the data are compressed. Under this implementation, the flag field includes mutually exclusive bits. As an example, a 0x80 bit is used to indicate that the data are uncompressed, and a 0x20 bit indicates that the data are compressed. - In some embodiments, there are at least three types of data packets: (1) untagged data indicating that data compression is not available for the current connection; (2) data tagged indicating that compression is possible, but the data in
field 408 are flagged as not compressed; and (3) data tagged indicating that compression is possible, and the data infield 408 are compressed. Insteps FIGS. 3 a and 3 b, respectively, theclient 104 determines the type of data packet it receives from theserver 102 to know whether or not data compression is supported. - A flowchart illustrating exemplary steps performed by the
server 102 is shown inFIGS. 5 a and 5 b. Instep 500, theserver 102 receives a request from theclient 104 for a service or for a communications feature. As mentioned above, this request may be in the form of an explicit message sent by theclient 104, or it may be implicit in the communications protocol used between theclient 104 and theserver 102. Theserver 102 checks, instep 502, its own configuration to see whether it can support the requested feature. It could happen that theclient 104 is requesting a feature that theserver 102 is not configured to support. In that case, the method proceeds to step 510 where theserver 102 rejects the request. - If the
server 102 could, at least theoretically, support the requested feature, then instep 504 it accepts the request but tells theclient 104 that theclient 104 may not yet use the feature. - There are some features that the
server 102 will only provide to authenticated clients. If theclient 104 has requested such a feature, then instep 506 an authentication process is carried out. If theclient 104 fails the authentication instep 508, then theserver 102 can reject the request instep 510, even though it provisionally accepted the request earlier instep 504. Note that an authentication failure does not necessarily imply that theclient 104 must terminate its communications session with theserver 102. While that is a possible outcome, for the present discussion, the consequence of an authentication failure is theclient 104's inability to use the requested feature. - If the
client 104 successfully authenticates itself to the server 102 (or if such authentication is not necessary), then theclient 104 and theserver 102 begin to communicate with each other but without using the requested feature. If necessary, theserver 102 checks for the availability of sufficient resources instep 512 and when, instep 514 ofFIG. 5 b, such resources become available, theserver 102 allocates them to support the feature requested by theclient 104. As mentioned above in relation toFIG. 1 , these resources need not reside on theserver 102 itself. They may be provided by anotherserver 110. In some scenarios, the resources may become available instep 514 when another client gives them up. In other scenarios, the resources are always available, but theserver 102 is reluctant to commit them to theclient 104 until theclient 104 successfully authenticates itself instep 508 ofFIG. 5 a. - In
step 516 ofFIG. 5 b, theserver 102 indicates that it is now ready to support the requested feature. Some features can be supported at different levels. For example, theclient 104 requests a minimum bandwidth guarantee of 512 kbps. If theserver 102 does not have the resources to fully support that request, it could simply reject it. Alternatively, theserver 102 can accept the request but tell theclient 104 that theserver 102 can only support a 128 kbps bandwidth guarantee. Theclient 104 decides whether the lower guarantee is acceptable or not and reacts accordingly. - Throughout this procedure, the
server 102 tracks its resource levels and allocations, as indicated in step 518. Theserver 102 uses this information when deciding whether it has sufficient resources to support a requested feature. System administrators use this information when deciding whether theserver 102 is optimally configured. -
FIG. 6 gives an example of theserver 102's resource log. Theresource allocation log 600 contains four entry rows, each one pertaining to a single feature request. In thelog 600, the client 104 (field 602) has requested data compression (field 604), and that request has been accepted (field 606). Theclient 106's request for data compression was rejected, possibly because theclient 106 failed to authenticate itself to theserver 102. Theclient 108's request for data compression has been provisionally accepted, but that feature is not yet supported. Theclient 108 has made another request, this time for a guaranteed bandwidth of 512 kbps. The request has been accepted, but the feature is currently supported only at the lower level of 128 kbps. - In
step 520 ofFIG. 5 b, theclient 104 and theserver 102 can use the requested feature in their communications. However, they are not required to use the feature. For example, even when compression is supported, some messages are too short to benefit from being compressed. - Another use of the
server 102'sresource allocation log 600 is illustrated instep 522. Here, some resources are freed up (probably from another client), and theserver 102 checks itsresource allocation log 600. It notes, for example, that theclient 108 requested 512 kbps of guaranteed bandwidth but was only granted 128 kbps. If theserver 102 can and wishes to support theclient 108's request at a higher level, it can now do so. For some features, theserver 102 can even use this method to reduce its level of support. Other features do not allow for this, and the level of support must be renegotiated. - The
client 104's side of a feature request transaction is illustrated in the flowchart ofFIGS. 7 a and 7 b. As the bulk of theclient 104's procedure is evident in light of the above discussion of theserver 102's procedure, only a few aspects need be discussed here. Theclient 104 can maintain a log of its own requests similar to theserver 102's resource allocation log 600 ofFIG. 6 . The status of feature requests, including their level of support if appropriate, can be displayed to a user of theclient 104 as indicated insteps 716 and 720 ofFIG. 7 b. - The above discussion focuses on the expected course of an exchange between the
server 102 and theclient 104. The following table illustrates some of the unexpected things that can occur and how theclient 104 should react. -
Potential Responses That the Client Should Be Prepared to Handle When Requesting a Feature Response Meaning Appropriate Handling Transaction timeout. Negotiation Fall back to not using the Invalid response. has failed. requested feature on this Response with no link. indication of the requested feature. Response with an invalid indication of the requested feature. 400 The server does Fall back to not using the not support the requested feature on this NEGOTIATE link. method at this point in time or fails to recognize the method as valid. 405, 501 The server does Fall back to not using the not support the requested feature on this NEGOTIATE link. method. 488, 606 The server does not Fall back to not using the support the requested feature on this requested feature. link. 403 The server is Close the connection. Open denying the a new connection and do request. not request the feature. Do not use the requested feature on this link. 408, 480, 504 Timeout. Retry after a suitable delay. Multiple timeouts should result in closing the connection and raising an appropriate alarm. This indicates loss of connectivity to the server. 1xx Provisional Ignore. response. 2xx Success. Enable the requested feature for this link. 3xx The server is Ignore. Fall back to not redirecting using the requested feature the request. on this link. 4xx, 5xx, 6xx Other errors. Ignore. Fall back to not using the requested feature on this link. - In view of the many possible embodiments to which the principles of the present invention may be applied, it should be recognized that the embodiments described herein with respect to the drawing figures are meant to be illustrative only and should not be taken as limiting the scope of the invention. For example, those of skill in the art will recognize that the illustrated embodiments can be modified in arrangement and detail without departing from the spirit of the invention. Although the invention is described in terms of software modules or components, those skilled in the art will recognize that such may be equivalently replaced by hardware components. Therefore, the invention as described herein contemplates all such embodiments as may come within the scope of the following claims and equivalents thereof.
Claims (21)
1-43. (canceled)
44. A method performed by a server to delay supporting a feature for a client until the client is authenticated, the method comprising:
receiving from the client a request to use the feature;
after receiving the request to use the feature, sending to the client an indication that the feature is not yet supported; and
after sending to the client the indication that the feature is not yet supported, determining whether the client is authenticated;
upon determining that that client is not authenticated, suppressing allocation of resources to support the feature; and
upon determining that that client is authenticated,
allocating resources to support the feature; and
sending to the client an indication that the feature is now supported.
45. The method of claim 44 wherein the sending to the client an indication that the feature is not yet supported includes indicating that the request is granted.
46. The method of claim 44 including upon determining that the client cannot be authenticated, sending to the client an indication that the client is not authenticated.
47. The method of claim 44 including upon determining that the client can be authenticated, sending to the client an indication that the client is authenticated.
48. The method of claim 44 wherein the received request to use the features indicates a first level of support, and wherein the indication sent to the client that the feature is now supported indicates that the feature is supported at a second level of support.
49. The method of claim 48 wherein the second level of support is less than the first level of support.
50. The method of claim 49 further comprising after sending to the client the indication that the feature is supported at the second level of support, sending to the client an indication that the feature is supported at the first level of support.
51. The method of claim 44 wherein the feature is selected from the group consisting of compression, a quality of service, bandwidth, a response time guarantee, immunity to error, integrity of message sequence and lack of duplication, and a maximum permissible loss rate.
52. A computer-readable storage device storing computer-executable instructions for controlling a client to obtain support from a server for a feature, by a method comprising:
sending to the server authentication information of the client;
sending to the server a request to use the feature; and
after sending to the server the request to use the feature,
receiving from the server an indication that the feature is not yet supported; and
after receiving from the server the indication that the feature is not yet supported, refraining from using the feature until receiving from the server an indication that the feature is now supported.
53. The computer-readable storage device of claim 52 wherein the receiving from the server of the indication that the feature is not yet supported includes receiving an indication that the request is granted.
54. The computer-readable storage device of claim 52 including receiving from the server an indication that the client is not authenticated when the server is unable to authenticate the client based on the authentication information of the client.
55. The computer-readable storage device of claim 52 including receiving from the server an indication that the feature is now supported and after receiving the indication that the feature is now supported, using the feature.
56. The computer-readable storage device of claim 52 wherein the sent request to use the feature indicates a first level of support, and the received indication that the feature is now supported indicates a second level of support of the feature that is less than the first level of support.
57. The computer-readable storage device of claim 56 after receiving the indication that the feature is supported at the second level of support, receiving from the server indication that the feature is supported at the first level of support.
58. The computer-readable storage device of claim 52 wherein the feature is selected from the group consisting of compression, a quality of service, bandwidth, a response time guarantee, immunity to error, integrity of message sequence and lack of duplication, and a maximum permissible loss rate.
59. A server that delays allocating resources for a feature requested by a client until the client is authenticated, the method comprising:
a memory storing computer-executable instructions of:
a component that receives from the client a request to use the feature and authentication information of the client;
a component that, after receiving the request to use the feature, sends to the client an indication that the request is granted but that the feature is not yet supported so that the client will refrain from using the feature until the client is sent an indication that the feature is now supported; and
a component that, after sending to the client the indication that the feature is not yet supported,
when the client cannot be authenticated based on the received authentication information, suppresses allocation of the feature; and
when the client is authenticated based on the received authentication information,
allocates resources to support the feature; and
sends to the client an indication that the feature is now supported; and
a processor that executes the computer-readable instructions stored in memory.
60. The server of claim 59 including a component that, when the client cannot be authenticated based on the received authentication information, sends to the client an indication that the client is not authenticated.
61. The server of claim 59 wherein the received request to use the feature indicates a first level of support of the feature, and wherein the indication sent to the client indicating that the feature is not yet supported indicates that the feature is supported at a second level of support.
62. The server of claim 61 further comprising after sending to the client the indication that the feature is supported at the second level of support, sending to the client an indication that the feature is now supported at the first level of support.
63. The server of claim 62 wherein the feature is selected from the group consisting of compression, a quality of service, bandwidth, a response time guarantee, immunity to error, integrity of message sequence and lack of duplication, and a maximum permissible loss rate.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US13/309,331 US20120079014A1 (en) | 2003-02-28 | 2011-12-01 | Method and system for delayed allocation of resources |
Applications Claiming Priority (3)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US45115103P | 2003-02-28 | 2003-02-28 | |
US10/641,525 US8086741B2 (en) | 2003-02-28 | 2003-08-15 | Method and system for delayed allocation of resources |
US13/309,331 US20120079014A1 (en) | 2003-02-28 | 2011-12-01 | Method and system for delayed allocation of resources |
Related Parent Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
US10/641,525 Continuation US8086741B2 (en) | 2003-02-28 | 2003-08-15 | Method and system for delayed allocation of resources |
Publications (1)
Publication Number | Publication Date |
---|---|
US20120079014A1 true US20120079014A1 (en) | 2012-03-29 |
Family
ID=32776300
Family Applications (2)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
US10/641,525 Expired - Fee Related US8086741B2 (en) | 2003-02-28 | 2003-08-15 | Method and system for delayed allocation of resources |
US13/309,331 Abandoned US20120079014A1 (en) | 2003-02-28 | 2011-12-01 | Method and system for delayed allocation of resources |
Family Applications Before (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
US10/641,525 Expired - Fee Related US8086741B2 (en) | 2003-02-28 | 2003-08-15 | Method and system for delayed allocation of resources |
Country Status (12)
Country | Link |
---|---|
US (2) | US8086741B2 (en) |
EP (1) | EP1453273B1 (en) |
JP (1) | JP4593943B2 (en) |
KR (1) | KR101069323B1 (en) |
CN (1) | CN1531297B (en) |
AT (1) | ATE401728T1 (en) |
AU (1) | AU2004200481B2 (en) |
BR (1) | BRPI0400425A (en) |
CA (1) | CA2456372A1 (en) |
DE (1) | DE602004015006D1 (en) |
MX (1) | MXPA04001921A (en) |
RU (1) | RU2340932C2 (en) |
Families Citing this family (9)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR100758281B1 (en) * | 2004-12-20 | 2007-09-12 | 한국전자통신연구원 | Content Distribution Management System managing Multi-Service Type and its method |
US8422481B2 (en) * | 2005-09-20 | 2013-04-16 | Maxtech Communication Networks Ltd. | Real time peer to peer network |
US8762999B2 (en) * | 2007-09-27 | 2014-06-24 | Oracle America, Inc. | Guest-initiated resource allocation request based on comparison of host hardware information and projected workload requirement |
US8006193B2 (en) * | 2007-10-03 | 2011-08-23 | Microsoft Corporation | Web service user experience without upfront storage expense |
US8335847B2 (en) | 2010-07-30 | 2012-12-18 | Guest Tek Interactive Entertainment Ltd. | Method of servicing requests to manage network congestion and server load and server thereof |
CA2904484A1 (en) * | 2012-03-14 | 2013-09-19 | Maxtech Communication Networks Ltd. | Heuristic spanning method and system for link state routing |
WO2015170469A1 (en) * | 2014-05-07 | 2015-11-12 | 日本電気株式会社 | Node, master device, and communication control system, method, and program |
US11147074B2 (en) * | 2016-11-25 | 2021-10-12 | Guangdong Oppo Mobile | Data transmission method and apparatus |
EP3743813A4 (en) * | 2018-01-24 | 2021-11-10 | Qomplx, Inc. | Platform for hierarchy cooperative computing |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20020026639A1 (en) * | 2000-08-22 | 2002-02-28 | Naoya Haneda | Information processing system, information processing method, and recording medium |
US20030005452A1 (en) * | 2001-06-29 | 2003-01-02 | Rodriguez Arturo A. | Graphic user interface alternate download options for unavailable PRM content |
US20030135618A1 (en) * | 2002-01-17 | 2003-07-17 | Ravikumar Pisupati | Computer network for providing services and a method of providing services with a computer network |
Family Cites Families (20)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US4764865A (en) * | 1982-06-21 | 1988-08-16 | International Business Machines Corp. | Circuit for allocating memory cycles to two processors that share memory |
US5734828A (en) | 1995-08-30 | 1998-03-31 | Intel Corporation | System for accessing/delivering on-line/information services via individualized environments using streamlined application sharing host and client services |
JP3582979B2 (en) * | 1997-02-26 | 2004-10-27 | 株式会社東芝 | Communication device, communication method, and recording medium |
US6012129A (en) * | 1997-03-31 | 2000-01-04 | International Business Machines Corporation | Apparatus and method allocating virtual memory upon demand |
JP2000092471A (en) * | 1998-09-09 | 2000-03-31 | Matsushita Electric Ind Co Ltd | Video server device and its band managing method, and recording medium where band managing program is recorded |
RU2134931C1 (en) | 1999-03-15 | 1999-08-20 | ОАО "Всероссийский научно-исследовательский институт автоматизации управления в непромышленной сфере" | Method of obtaining access to objects in operating system |
US6765918B1 (en) * | 1999-06-16 | 2004-07-20 | Teledata Networks, Ltd. | Client/server based architecture for a telecommunications network |
CN1206602C (en) * | 1999-06-17 | 2005-06-15 | 国际商业机器公司 | System and method for comprehensive load distribution and source management in internet network |
EP1087577A1 (en) | 1999-07-02 | 2001-03-28 | Alcatel | Allocation method / sharing of resources between multiple subscribers of a communication network |
US6427154B1 (en) * | 1999-12-16 | 2002-07-30 | International Business Machines Corporation | Method of delaying space allocation for parallel copying garbage collection |
AU2001236864A1 (en) * | 2000-02-11 | 2001-08-20 | Arun K. Subramaniam | System and method for providing anonymous internet transaction |
US20020042830A1 (en) * | 2000-03-31 | 2002-04-11 | Subhra Bose | System, method and applications real-time messaging over HTTP-based protocols |
JP2001313647A (en) * | 2000-04-27 | 2001-11-09 | Matsushita Electric Ind Co Ltd | Method and device for allocating bandwidth for supporting service priority of communication network |
JP3423921B2 (en) * | 2000-05-31 | 2003-07-07 | ネットビレッジ株式会社 | Mobile device authentication method |
US20050149759A1 (en) * | 2000-06-15 | 2005-07-07 | Movemoney, Inc. | User/product authentication and piracy management system |
US7571238B1 (en) * | 2000-10-18 | 2009-08-04 | Nortel Networks Limited | Authorizing communication services |
US7260633B2 (en) * | 2001-01-25 | 2007-08-21 | Microsoft Corporation | System and method for processing requests from newly registered remote application consumers |
US7493391B2 (en) * | 2001-02-12 | 2009-02-17 | International Business Machines Corporation | System for automated session resource clean-up by determining whether server resources have been held by client longer than preset thresholds |
US6931438B2 (en) * | 2001-04-05 | 2005-08-16 | International Business Machines Corporation | System and method for server display confirmation record response in a connection oriented client / server protocol |
US7000013B2 (en) * | 2001-05-21 | 2006-02-14 | International Business Machines Corporation | System for providing gracefully degraded services on the internet under overloaded conditions responsive to HTTP cookies of user requests |
-
2003
- 2003-08-15 US US10/641,525 patent/US8086741B2/en not_active Expired - Fee Related
-
2004
- 2004-01-27 CA CA002456372A patent/CA2456372A1/en not_active Abandoned
- 2004-01-28 AT AT04001818T patent/ATE401728T1/en not_active IP Right Cessation
- 2004-01-28 EP EP04001818A patent/EP1453273B1/en not_active Expired - Lifetime
- 2004-01-28 DE DE602004015006T patent/DE602004015006D1/en not_active Expired - Lifetime
- 2004-02-10 AU AU2004200481A patent/AU2004200481B2/en not_active Ceased
- 2004-02-19 BR BR0400425-6A patent/BRPI0400425A/en not_active IP Right Cessation
- 2004-02-19 CN CN2004100068091A patent/CN1531297B/en not_active Expired - Fee Related
- 2004-02-26 KR KR1020040013169A patent/KR101069323B1/en not_active IP Right Cessation
- 2004-02-27 MX MXPA04001921A patent/MXPA04001921A/en active IP Right Grant
- 2004-02-27 RU RU2004105877/09A patent/RU2340932C2/en not_active IP Right Cessation
- 2004-03-01 JP JP2004056909A patent/JP4593943B2/en not_active Expired - Fee Related
-
2011
- 2011-12-01 US US13/309,331 patent/US20120079014A1/en not_active Abandoned
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20020026639A1 (en) * | 2000-08-22 | 2002-02-28 | Naoya Haneda | Information processing system, information processing method, and recording medium |
US20030005452A1 (en) * | 2001-06-29 | 2003-01-02 | Rodriguez Arturo A. | Graphic user interface alternate download options for unavailable PRM content |
US20030135618A1 (en) * | 2002-01-17 | 2003-07-17 | Ravikumar Pisupati | Computer network for providing services and a method of providing services with a computer network |
Also Published As
Publication number | Publication date |
---|---|
CN1531297A (en) | 2004-09-22 |
US8086741B2 (en) | 2011-12-27 |
JP4593943B2 (en) | 2010-12-08 |
CA2456372A1 (en) | 2004-08-28 |
JP2004265419A (en) | 2004-09-24 |
CN1531297B (en) | 2011-01-26 |
EP1453273B1 (en) | 2008-07-16 |
ATE401728T1 (en) | 2008-08-15 |
KR20040077512A (en) | 2004-09-04 |
DE602004015006D1 (en) | 2008-08-28 |
US20040172474A1 (en) | 2004-09-02 |
MXPA04001921A (en) | 2005-04-19 |
AU2004200481B2 (en) | 2010-03-25 |
EP1453273A2 (en) | 2004-09-01 |
AU2004200481A1 (en) | 2004-09-16 |
RU2340932C2 (en) | 2008-12-10 |
BRPI0400425A (en) | 2005-01-04 |
EP1453273A3 (en) | 2006-12-06 |
RU2004105877A (en) | 2005-08-10 |
KR101069323B1 (en) | 2011-10-05 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US20120079014A1 (en) | Method and system for delayed allocation of resources | |
US10305904B2 (en) | Facilitating secure network traffic by an application delivery controller | |
US10630784B2 (en) | Facilitating a secure 3 party network session by a network device | |
US9332089B2 (en) | Data communication coordination with sequence numbers | |
US9723093B2 (en) | Method and system for distributing load by redirecting traffic | |
US7823194B2 (en) | System and methods for identification and tracking of user and/or source initiating communication in a computer network | |
KR100207815B1 (en) | Method and apparatus for authentication of client sever communication | |
US8572382B2 (en) | Out-of band authentication method and system for communication over a data network | |
US8925068B2 (en) | Method for preventing denial of service attacks using transmission control protocol state transition | |
US7937071B2 (en) | Device management system and method of controlling the same | |
US7451209B1 (en) | Improving reliability and availability of a load balanced server | |
US20110258682A1 (en) | Method, apparatus, and system for processing session context | |
US20170118022A1 (en) | Mainstream connection establishment method and device based on multipath transmission control protocol (mptcp) | |
EP1727055B1 (en) | Data communication coordination with sequence numbers | |
CN111327650A (en) | Data transmission method, device, equipment and storage medium | |
CN110213249A (en) | Certificate dynamic loading method, device and server based on request granularity |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
STCB | Information on status: application discontinuation |
Free format text: ABANDONED -- FAILURE TO RESPOND TO AN OFFICE ACTION |
|
AS | Assignment |
Owner name: MICROSOFT TECHNOLOGY LICENSING, LLC, WASHINGTON Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNOR:MICROSOFT CORPORATION;REEL/FRAME:034766/0001 Effective date: 20141014 |