Improving Transaction Server Performance under Heavy Loads with Differentiated Service and Active Network Interfaces

Transaction based Web services that demand realtime performance guarantees, such as online auctions, stock trading and real-time database servers generally require a higher level of security and performance compared to normal Web services. To improve server throughput of servers for such applications under heavy loads or under denial of service attacks, it is necessary to service requests differentially, giving preference to on-going or imminent client requests. We show how such facilities can be efficiently implemented on an active network adapter based gateway that controls accesses to a pool of backend servers. Using an experimental prototype based around a dual-ported active NIC, we show how a differentiated service policy can be implemented on such a gateway to bound the server response time and to improve server throughputs under heavy loads

[1]  Steven McCanne,et al.  BPF+: exploiting global data-flow optimization in a generalized packet filter architecture , 1999, SIGCOMM '99.

[2]  Jian Zhang,et al.  A new mechanism for supporting differentiated services in cluster-based network servers , 2002, Proceedings. 10th IEEE International Symposium on Modeling, Analysis and Simulation of Computer and Telecommunications Systems.

[3]  Donald R. Morrison,et al.  PATRICIA—Practical Algorithm To Retrieve Information Coded in Alphanumeric , 1968, J. ACM.

[4]  Thomer M. Gil,et al.  MULTOPS: A Data-Structure for Bandwidth Attack Detection , 2001, USENIX Security Symposium.

[5]  Peter Druschel,et al.  Differentiated and predictable quality of service in web server systems , 2001 .

[6]  Amin Vahdat,et al.  Differentiated multimedia Web services using quality aware transcoding , 2000, Proceedings IEEE INFOCOM 2000. Conference on Computer Communications. Nineteenth Annual Joint Conference of the IEEE Computer and Communications Societies (Cat. No.00CH37064).

[7]  Ross Oliver Countering SYN Flood Denial-of-Service (DoS) Attacks , 2001 .