WO2009012402A3 - Optimizing encrypted wide area network traffic - Google Patents

Optimizing encrypted wide area network traffic Download PDF

Info

Publication number
WO2009012402A3
WO2009012402A3 PCT/US2008/070358 US2008070358W WO2009012402A3 WO 2009012402 A3 WO2009012402 A3 WO 2009012402A3 US 2008070358 W US2008070358 W US 2008070358W WO 2009012402 A3 WO2009012402 A3 WO 2009012402A3
Authority
WO
WIPO (PCT)
Prior art keywords
wan
subnet
endpoints
compression
optimizing
Prior art date
Application number
PCT/US2008/070358
Other languages
French (fr)
Other versions
WO2009012402A2 (en
Inventor
Maxim Stepin
Dan Boldo
Scott Colville
James Pinkerton
Original Assignee
Microsoft Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Microsoft Corp filed Critical Microsoft Corp
Priority to JP2010517165A priority Critical patent/JP5426545B2/en
Priority to CN200880025106XA priority patent/CN101755418B/en
Priority to EP08796258.5A priority patent/EP2183880B1/en
Publication of WO2009012402A2 publication Critical patent/WO2009012402A2/en
Publication of WO2009012402A3 publication Critical patent/WO2009012402A3/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H03ELECTRONIC CIRCUITRY
    • H03MCODING; DECODING; CODE CONVERSION IN GENERAL
    • H03M7/00Conversion of a code where information is represented by a given sequence or number of digits to a code where the same, similar or subset of information is represented by a different sequence or number of digits
    • H03M7/30Compression; Expansion; Suppression of unnecessary data, e.g. redundancy reduction
    • H03M7/3084Compression; Expansion; Suppression of unnecessary data, e.g. redundancy reduction using adaptive string matching, e.g. the Lempel-Ziv method
    • H03M7/3088Compression; Expansion; Suppression of unnecessary data, e.g. redundancy reduction using adaptive string matching, e.g. the Lempel-Ziv method employing the use of a dictionary, e.g. LZ78
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L69/00Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
    • H04L69/04Protocols for data compression, e.g. ROHC
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/16Implementing security features at a particular protocol layer
    • H04L63/164Implementing security features at a particular protocol layer at the network layer
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/50Network services
    • H04L67/56Provisioning of proxy services
    • H04L67/565Conversion or adaptation of application format or content
    • H04L67/5651Reducing the amount or size of exchanged application data

Abstract

Optimization of encrypted traffic flowing over a WAN (316) is provided by an arrangement in which WAN compression is distributed between endpoints (318) (i.e., client machines or servers) in a subnet (305) of a hub and branch network (300) and a WAN compression server (326) in the subnet. A client portion of the WAN compression (306) running on each of one or more endpoints (318) interfaces with a disposable local cache (505) of data seen by endpoints (318) in the subnet (305) that is used for compressing and decompressing traffic using dictionary-based compression techniques. The local WAN compression server (326) in a subnet (305) stores a shared central database (405) of all the WAN traffic in the subnet (305) which is used to populate local disposable caches (505) in the endpoints (318).
PCT/US2008/070358 2007-07-17 2008-07-17 Optimizing encrypted wide area network traffic WO2009012402A2 (en)

Priority Applications (3)

Application Number Priority Date Filing Date Title
JP2010517165A JP5426545B2 (en) 2007-07-17 2008-07-17 Encrypted wide area network traffic optimization method
CN200880025106XA CN101755418B (en) 2007-07-17 2008-07-17 Optimizing encrypted wide area network traffic
EP08796258.5A EP2183880B1 (en) 2007-07-17 2008-07-17 Optimizing encrypted wide area network traffic

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US11/879,253 US7809820B2 (en) 2007-07-17 2007-07-17 Optimizing encrypted wide area network traffic
US11/879,253 2007-07-17

Publications (2)

Publication Number Publication Date
WO2009012402A2 WO2009012402A2 (en) 2009-01-22
WO2009012402A3 true WO2009012402A3 (en) 2009-03-19

Family

ID=40260383

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2008/070358 WO2009012402A2 (en) 2007-07-17 2008-07-17 Optimizing encrypted wide area network traffic

Country Status (5)

Country Link
US (2) US7809820B2 (en)
EP (1) EP2183880B1 (en)
JP (1) JP5426545B2 (en)
CN (1) CN101755418B (en)
WO (1) WO2009012402A2 (en)

Families Citing this family (42)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8095774B1 (en) 2007-07-05 2012-01-10 Silver Peak Systems, Inc. Pre-fetching data into a memory
US8171238B1 (en) 2007-07-05 2012-05-01 Silver Peak Systems, Inc. Identification of data stored in memory
US8392684B2 (en) 2005-08-12 2013-03-05 Silver Peak Systems, Inc. Data encryption in a network memory architecture for providing data based on local accessibility
US8489562B1 (en) 2007-11-30 2013-07-16 Silver Peak Systems, Inc. Deferred data storage
US8929402B1 (en) 2005-09-29 2015-01-06 Silver Peak Systems, Inc. Systems and methods for compressing packet data by predicting subsequent data
US8811431B2 (en) 2008-11-20 2014-08-19 Silver Peak Systems, Inc. Systems and methods for compressing packet data
US8885632B2 (en) 2006-08-02 2014-11-11 Silver Peak Systems, Inc. Communications scheduler
US8755381B2 (en) 2006-08-02 2014-06-17 Silver Peak Systems, Inc. Data matching using flow based packet data storage
US8908700B2 (en) 2007-09-07 2014-12-09 Citrix Systems, Inc. Systems and methods for bridging a WAN accelerator with a security gateway
US8307115B1 (en) 2007-11-30 2012-11-06 Silver Peak Systems, Inc. Network memory mirroring
US7953881B1 (en) * 2008-06-12 2011-05-31 Juniper Networks, Inc. Network characteristic-based compression of network traffic
US9717021B2 (en) 2008-07-03 2017-07-25 Silver Peak Systems, Inc. Virtual network overlay
US10805840B2 (en) 2008-07-03 2020-10-13 Silver Peak Systems, Inc. Data transmission via a virtual wide area network overlay
US10164861B2 (en) 2015-12-28 2018-12-25 Silver Peak Systems, Inc. Dynamic monitoring and visualization for network health characteristics
US8743683B1 (en) 2008-07-03 2014-06-03 Silver Peak Systems, Inc. Quality of service using multiple flows
US8955107B2 (en) 2008-09-12 2015-02-10 Juniper Networks, Inc. Hierarchical application of security services within a computer network
US8040808B1 (en) * 2008-10-20 2011-10-18 Juniper Networks, Inc. Service aware path selection with a network acceleration device
US8761520B2 (en) 2009-12-11 2014-06-24 Microsoft Corporation Accelerating bitmap remoting by identifying and extracting 2D patterns from source bitmaps
US8396954B2 (en) * 2010-06-24 2013-03-12 Aryaka Networks, Inc. Routing and service performance management in an application acceleration environment
US8516158B1 (en) * 2011-06-07 2013-08-20 Riverbed Technology, Inc. Integrating WAN optimization devices with content delivery networks
US9069617B2 (en) 2011-09-27 2015-06-30 Oracle International Corporation System and method for intelligent GUI navigation and property sheets in a traffic director environment
US8782395B1 (en) 2011-09-29 2014-07-15 Riverbed Technology, Inc. Monitoring usage of WAN optimization devices integrated with content delivery networks
US9130991B2 (en) * 2011-10-14 2015-09-08 Silver Peak Systems, Inc. Processing data packets in performance enhancing proxy (PEP) environment
US9626224B2 (en) 2011-11-03 2017-04-18 Silver Peak Systems, Inc. Optimizing available computing resources within a virtual environment
US9356645B2 (en) * 2012-11-16 2016-05-31 International Business Machines Corporation Saving bandwidth in transmission of compressed data
CN103152327B (en) * 2013-02-01 2015-08-05 北京奇虎科技有限公司 A kind of method, client and system configuring compression/de-compression plug-in unit
US11038922B2 (en) * 2013-12-06 2021-06-15 Fastly, Inc. Secure traffic optimization in an edge network
US9948496B1 (en) 2014-07-30 2018-04-17 Silver Peak Systems, Inc. Determining a transit appliance for data traffic to a software service
US9875344B1 (en) 2014-09-05 2018-01-23 Silver Peak Systems, Inc. Dynamic monitoring and authorization of an optimization device
US20160241667A1 (en) * 2015-02-18 2016-08-18 Actmobile Networks, Inc. Extended http object cache system and method
US10158735B2 (en) * 2015-08-07 2018-12-18 Sonicwall Inc. Read-ahead on signed connections with unsigning, inline, transparent proxies
US20170163607A1 (en) * 2015-12-03 2017-06-08 Microsoft Technology Licensing, Llc Establishing a Communication Event Using Secure Signalling
US10362069B2 (en) 2015-12-03 2019-07-23 Microsoft Technology Licensing, Llc Protocol fallback
US10193934B2 (en) 2015-12-03 2019-01-29 Microsoft Technology Licensing, Llc Data compression for communications signalling
US10432484B2 (en) 2016-06-13 2019-10-01 Silver Peak Systems, Inc. Aggregating select network traffic statistics
US9967056B1 (en) 2016-08-19 2018-05-08 Silver Peak Systems, Inc. Forward packet recovery with constrained overhead
US10257082B2 (en) 2017-02-06 2019-04-09 Silver Peak Systems, Inc. Multi-level learning for classifying traffic flows
US10892978B2 (en) 2017-02-06 2021-01-12 Silver Peak Systems, Inc. Multi-level learning for classifying traffic flows from first packet data
US10771394B2 (en) 2017-02-06 2020-09-08 Silver Peak Systems, Inc. Multi-level learning for classifying traffic flows on a first packet from DNS data
US11044202B2 (en) 2017-02-06 2021-06-22 Silver Peak Systems, Inc. Multi-level learning for predicting and classifying traffic flows from first packet data
US11212210B2 (en) 2017-09-21 2021-12-28 Silver Peak Systems, Inc. Selective route exporting using source type
US10637721B2 (en) 2018-03-12 2020-04-28 Silver Peak Systems, Inc. Detecting path break conditions while minimizing network overhead

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7020160B1 (en) * 2001-12-17 2006-03-28 Supergate Technology Usa, Inc. Interface circuits for modularized data optimization engines and methods therefor
US7032111B1 (en) * 1998-12-08 2006-04-18 Nokia Mobile Phones, Ltd. Method for optimizing of data transmission
US7126955B2 (en) * 2003-01-29 2006-10-24 F5 Networks, Inc. Architecture for efficient utilization and optimum performance of a network

Family Cites Families (23)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5479512A (en) * 1991-06-07 1995-12-26 Security Dynamics Technologies, Inc. Method and apparatus for performing concryption
US5307413A (en) * 1991-07-19 1994-04-26 Process Software Corporation Method and apparatus for adding data compression and other services in a computer network
JP3196618B2 (en) * 1995-11-24 2001-08-06 株式会社日立製作所 Personal computer and communication system using the same
US6122379A (en) * 1996-05-30 2000-09-19 Deloitte & Touche Inc. Method and apparatus for performing simultaneous data compression and encryption
US6226748B1 (en) * 1997-06-12 2001-05-01 Vpnet Technologies, Inc. Architecture for virtual private networks
US6704866B1 (en) * 1997-07-11 2004-03-09 Cisco Technology, Inc. Compression and encryption protocol for controlling data flow in a network
US6275588B1 (en) * 1998-11-12 2001-08-14 I-Data International A/S Apparatus and method for performing and controlling encryption/decryption for data to be transmitted on local area network
US6985589B2 (en) * 1999-12-02 2006-01-10 Qualcomm Incorporated Apparatus and method for encoding and storage of digital image and audio signals
US8095508B2 (en) * 2000-04-07 2012-01-10 Washington University Intelligent data storage and processing using FPGA devices
AR042582A1 (en) * 2000-11-16 2005-06-29 Ericsson Telefon Ab L M SYSTEM AND METHOD OF COMMUNICATIONS USING FORMS OF REQUEST COMMUNICATION - REPLACEMENT FOR COMPRESSION OF DATA
US6883035B2 (en) * 2000-11-16 2005-04-19 Telefonaktiebolaget Lm Ericsson (Publ) System and method for communicating with temporary compression tables
US20020196793A1 (en) * 2000-11-29 2002-12-26 Quikcat.Com, Inc. End-user communication systems access network
DE10147979A1 (en) * 2001-09-28 2003-04-10 Siemens Ag Transmission method and gateway for real-time communication between packet-oriented communication networks
US7274684B2 (en) * 2001-10-10 2007-09-25 Bruce Fitzgerald Young Method and system for implementing and managing a multimedia access network device
US7305464B2 (en) * 2002-09-03 2007-12-04 End Ii End Communications, Inc. Systems and methods for broadband network optimization
JP2004198760A (en) * 2002-12-19 2004-07-15 Fuji Xerox Co Ltd Compression enciphering device and expansion decoding device
US7496676B2 (en) * 2003-02-19 2009-02-24 Maui X-Stream, Inc. Methods, data structures, and systems for processing media data streams
DE10318853B4 (en) * 2003-04-25 2007-07-12 Dornier Medtech Systems Gmbh Shock wave source with a piezoelectric ultrasonic transducer
US20050027731A1 (en) * 2003-07-30 2005-02-03 Daniel Revel Compression dictionaries
US7308101B2 (en) * 2004-01-22 2007-12-11 Cisco Technology, Inc. Method and apparatus for transporting encrypted media streams over a wide area network
GB2415335B (en) * 2004-06-15 2007-09-26 Toshiba Res Europ Ltd Wireless terminal dynamically programmable proxies
US7417943B2 (en) * 2004-08-11 2008-08-26 Sonim Technologies, Inc. Dynamic compression training method and apparatus
US7630394B2 (en) * 2005-04-14 2009-12-08 Ramot At Tel-Aviv University Ltd. Method, apparatus and computer-readable code for data compression of network packets

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7032111B1 (en) * 1998-12-08 2006-04-18 Nokia Mobile Phones, Ltd. Method for optimizing of data transmission
US7020160B1 (en) * 2001-12-17 2006-03-28 Supergate Technology Usa, Inc. Interface circuits for modularized data optimization engines and methods therefor
US7126955B2 (en) * 2003-01-29 2006-10-24 F5 Networks, Inc. Architecture for efficient utilization and optimum performance of a network

Also Published As

Publication number Publication date
EP2183880A2 (en) 2010-05-12
US20090024763A1 (en) 2009-01-22
US20110010536A1 (en) 2011-01-13
US7809820B2 (en) 2010-10-05
CN101755418B (en) 2013-02-13
EP2183880A4 (en) 2015-03-11
EP2183880B1 (en) 2018-07-11
JP5426545B2 (en) 2014-02-26
CN101755418A (en) 2010-06-23
WO2009012402A2 (en) 2009-01-22
JP2010534042A (en) 2010-10-28

Similar Documents

Publication Publication Date Title
WO2009012402A3 (en) Optimizing encrypted wide area network traffic
BR0314012A (en) Remote dynamic configuration of a web server to provide on-demand capacity
GB2414136B8 (en) Managing client requests for data
JP2010534042A5 (en)
AU2018200021A1 (en) Unified device and service discovery across multiple network types
AU2003264051A8 (en) Method and apparatus for a client connection manager
WO2012092602A3 (en) Methods and systems for caching data communications over computer networks
WO2008106361A3 (en) Hierarchical temporal memory (htm) system deployed as web service
WO2007053432A3 (en) Comparison of website visitation data sets
WO2005111870A3 (en) Method and system for real-time event journaling to provide enterprise data services
WO2011044285A3 (en) Low latency cacheable media streaming
FR2884671B1 (en) METHOD OF OPTIMIZING THE MANAGEMENT OF A SERVER CACHE THAT CAN BE CONSULTED BY CLIENT TERMINALS OF DIFFERENT CHARACTERISTICS
WO2010107627A3 (en) Delivering cacheable streaming media presentations
EP2141622A3 (en) Web based access to clinical records
CL2007001510A1 (en) Methods and client computing devices that allow delegating user credentials from the client computing device to a server computing device in a computer network, eventually in a single connection, and obtaining secure resources from the server.
IL186953A0 (en) System and method for caching network file systems
WO2006133218A3 (en) Asp for web analytics including a real-time segmentation workbench
WO2006078953A3 (en) System and method for application acceleration on a distributed computer network
ZA200802801B (en) System and method to maintain coherence of cache contents in a multi-tier software system aimed at interfacing large databases
WO2006033961A3 (en) Method and system for data reduction
WO2006130305A3 (en) Distributed and scalable instant multimedia communication system
MX2017016542A (en) Content rights headers.
GB2462953A (en) Systems and methods for sharing a printer
WO2013176860A3 (en) Name space propagation in a storage system
WO2008088905A3 (en) Method and system for distributing a database and computer program within a network

Legal Events

Date Code Title Description
WWE Wipo information: entry into national phase

Ref document number: 200880025106.X

Country of ref document: CN

121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 08796258

Country of ref document: EP

Kind code of ref document: A2

WWE Wipo information: entry into national phase

Ref document number: 2010517165

Country of ref document: JP

NENP Non-entry into the national phase

Ref country code: DE

WWE Wipo information: entry into national phase

Ref document number: 2008796258

Country of ref document: EP