KEMBAR78
introduction to Web system | PPT
Uploaded byhashim102
PPT, PDF4,605 views

introduction to Web system

This document provides an overview of distributed web-based systems and the World Wide Web. It discusses traditional client-server web architectures as well as more advanced multi-tiered architectures. Key aspects of the web covered include HTTP, web servers, caching, and content distribution networks. The document is attributed to multiple authors and universities and has been modified by the presenting author.

Education
In this document
Powered by AI

Introduction to Distributed Systems; Web as a large distributed system with clients and servers.

Transition of the Web from document-centric to service-oriented, highlighting the need for web services.

Explanation of client-server architecture and referencing documents through URLs.

Definition and structure of URLs, along with browser functionality in document display.

Different types of web documents (static vs dynamic) and development of multitiered architectures.

Introduction to three-tiered web architectures; mentions popular web server software, Apache.

Methods for scaling websites through web server clusters and different front-end designs.

Communication through HTTP with description of its stateless nature and connections.

HTTP connections (non-persistent vs persistent) and benefits of proxy caching for performance.

Issues faced in cache consistency and uncacheable HTTP objects, including dynamic data.

Overview of cache deployment in various settings to optimize data retrieval and performance.

Introduction to CDNs, their advantages for content providers, and challenges in content replication.

Mechanism of how Akamai operates and manages content distribution across its network.

What constitutes a Web Service and advantages for e-business, including terms like SOAP and UDDI.

Roles and operations within web service architecture, emphasizing service providers and registries.

Challenges related to fault tolerance in web service replications.

Identifying web security threats, consequences, and countermeasures applicable to web systems.

Strategies for securing the web, focusing on the TCP/IP stack and various security solutions.

Downloaded 138 times
Distributed Web-Based Systems
Given Credit Where It is Due • Most of the slides are from Beyhan Akporay at Bilkent University,Turkey and Aditya Akella at University of Wisconsin, Madison. • Some slides are from Dijiang Huang at Arizona State University, Marlon Pierce at Indiana University and http://www.brics.dk/ixwt/slides.html. • Some slides are from Stefan Saroiu at University of Toronto and Chiyoung Seo at University of Southern California • I have modified and added some slides.
INTRODUCTION • What is World Wide Web?
INTRODUCTION  The World Wide Web (WWW) can be viewed as a huge distributed system with millions of clients and servers for accessing linked documents.  Servers maintain collections of documents while clients provide users an easy-to-use interface for presenting and accessing those documents.  A document is fetched from a server, transferred to a client, and presented on the screen. To a user there is conceptually no difference between a document stored locally or in another part of the world.
INTRODUCTION  Now, Web has become more than just a simple document based system.  With the emergence of Web services, it is becoming a system of distributed services rather than just documents offered to any user or machine.  What can we get from WWW?  Read news, listen to music and watch video;  Buy or sell goods such as books, airline tickets;  Make reservations on hotel room, rental car, restaurant, etc.;  Pay bills and transfer money from one bank account to another;  …
TRADITIONAL WEB-BASED SYSTEMS  Many Web-based systems are still organized as simple client-server architectures.
TRADITIONAL WEB-BASED SYSTEMS  The core of a Web site: a process that has access to a local file system storing documents.
TRADITIONAL WEB-BASED SYSTEMS  How to refer to a document?  URL (Uniform Resource Locator)?
Uniform Resource Locator  A reference called Uniform Resource Locator (URL) is used to refer a document.  The DNS name of its associated server along with a file name is specified.  The URL also specifies the protocol for transferring the document across the network.  Example: http://www.cse.unl.edu/~ylu/csce855/notes/web- system.ppt
TRADITIONAL WEB-BASED SYSTEMS  A client interacts with Web servers through a special application known as browser.  What’s the key function of a browser?  Responsible for displaying documents.
WEB DOCUMENTS  A Web document does not only contain text, but it can include all kinds of dynamic features such as audio, video, animations, etc.  In many cases special helper applications (interpreters) are needed, and they are integrated into the browser.  E.g., Windows Media Player and QuickTime Player for playing streaming content  The variety of document types forces browser to be extensible. As a result, plug-ins are required to follow a standard interfaces so that they can be easily integrated with the browsers.
MULTITIERED ARCHITECTURES  Web documents can be built in two ways: Static – locates and returns the object identified in the request. Static objects include predefined HTML pages and JPEG or GIF files. does not require web servers to communication with any server-side application. Dynamic – the request is forwarded to an application system where the reply is generated dynamically, i.e. data is generated through a server-side program execution.  Although Web started as simple two-tiered client-server architecture for static Web documents, this architecture has been extended to support advanced type of documents.
MULTITIERED ARCHITECTURES  Because of the server-side processing, many Web sites are now organized as three-tiered architectures consisting of a Web server, an application server, and a database server.  User data comes from an HTML form, specifying the program and parameters.  Server-side scripting technologies are used to generate dynamic content: Microsoft: Active Server Pages (ASP.NET) Sun: Java Server Pages (JSP) Netscape: JavaScript Free Software Foundation: PHP
• What is the most popular Web server software? – By far the most popular Web server is Apache. As of March 2007, 58% of all websites are using it.
• How to make a web site scalable?
WEB SERVER CLUSTERS Web servers are replicated and combined with a front end to improve performance.
WEB SERVER CLUSTERS  The front end can be designed in two ways: Transport-layer switch – simply passes data sent along the TCP connection to one of the servers, depending on some measurement of the server’s load. Content-aware request distribution – it first inspects the HTTP request and decides which server it should forward that request to. For example, if the front end always forwards requests for the same document to the same server, the server may cache the document resulting in better response times. Approach that combines the efficiency of transport-layer switch and the functionality of content-aware distribution has been developed.
WEB SERVER CLUSTERS  Another alternative to set up a Web server cluster is to use round-robin DNS.  With round-robin DNS a single domain name is associated with multiple IP addresses.  When resolving a host name, a browser would receive a list of multiple addresses, each address corresponding to a server.  Normally, browsers choose the first address on the list, but most DNS servers circulate the entries.  As a result, simple distribution of requests over the servers in the cluster is achieved.
HTTP  All communication between clients and servers is based on HTTP. Servers listen on port 80.  HTTP is a simple protocol; a client sends a request to a server and waits for a response.  HTTP is stateless; it does not have any concept of open connection and does not require a server to maintain information on its clients. (Can use HTTP cookies to store session information.)  HTTP is based on TCP; whenever a client issues a request to a server, it first sets up a TCP connection and sends the message on that connection. The same connection is used for receiving the response.  One of the problems with the first versions of HTTP was its inefficient use of TCP connections.  HTTP 1.0 vs. HTTP 1.1
HTTP CONNECTIONS  A Web document is constructed from a collection of different files from the same server.  In HTTP version 1.0 and older, each request to a server required setting up a separate connection. When server had responded, the connection was broken down. These connections are referred as nonpersistent.  In HTTP version 1.1, several requests and their responses can be issued without the need for a separate connection. These connections are referred as persistent.  Furthermore, a client can issue several requests in a row without waiting for the response to the first request which is referred as pipelining.
HTTP CONNECTIONS (a) Using non-persistent connections. (b) Using persistent connections.
HTTP Caching • Clients often cache documents – Challenge: update of documents – If-Modified-Since requests to check • When/how often should the original be checked for changes? – Check every time? – Check each session? Day? Etc? – Use “Expires” header • If no Expires, often use Last-Modified as estimate 22
CSC2231: Internet Systems Stefan Saroiu 2005 Benefits of Proxy Caching • Proxy caching is the most commonly used method to improve Web performance – Duplicate requests to the same document served from the cache – Hits reduce latency, network utilization, and server load – Introduces problems: • Misses increase latency (extra hops) • cache consistency Clients Proxy Cache Servers Hits Misses Misses Internet
Cache Consistency • Fresh-enough is good-enough • One writer, many readers – Most content changes slowly wrt # reads • Cache consistency governed by standards • “Expiration” based cache consistency – Expires timestamp on each object – Cache revalidates content beyond that time • Why not callbacks?
Problems • Over 50% of all HTTP objects are uncacheable – why? • Not easily solvable – Dynamic data  stock prices, scores, web cams – CGI scripts  results based on passed parameters – SSL  encrypted data is not cacheable – Cookies  results may be based on passed data – Hit metering  owner wants to measure # of hits for revenue, etc. 25
CSC2231: Internet Systems Stefan Saroiu 2005 Cache Deployments $ Web Server Client Cache Where else?
CSC2231: Internet Systems Stefan Saroiu 2005 Cache Deployments $ $ $ $ $ $ $ Web Server Client Browser Cache CDN Reverse Proxy/ Accelerator CDN CDNCDN Proxy Cache
Content Distribution – Lots of excitement? – Akamai, Digital Island/Sandpiper, Speedera – What is a Content Distribution Network (CDN)? • Outsourced caching and replication services
Content Distribution – Lots of excitement? – Akamai, Digital Island/Sandpiper, Speedera – What is a Content Distribution Network (CDN)? • Outsourced caching and replication services
CSC2231: Internet Systems Stefan Saroiu 2005 Content Providers’ Advantages • CDN provider maintains networks and servers – Capacity management • Sharing resources across a large number of sites – Economy of scale – Control of content placement and routing • Protects content provider from unpredictable load bursts • Communication between content provider and CDN network is not governed by standards – Don’t even need to use HTTP – Can cache “uncacheable” documents – Can deploy alternative cache consistency – Can place requirements on content providers
CDN’s Challenges • How to replicate content? • Where to replicate content? • How to find replicated content? • How to choose among known replicas? • How to direct clients towards replica?
Content Distribution Networks • Replicate content on many servers 32 Figure 12-18. The general organization of a CDN as a feedback- control system (adapted from Sivasubramanian et al., 2004b).
How Akamai Works • Clients fetch html document from primary server – E.g. fetch index.html from cnn.com • “Akamaized” URLs for replicated content are replaced in html – E.g. <img src=“http://cnn.com/af/x.gif”> replaced with <img src=“http://a73.g.akamaitech.net/7/23/cnn.com/af/x.g if”> • Client is forced to resolve aXYZ.g.akamaitech.net hostname 33
How Akamai Works • Root server gives NS record for akamaitech.net • akamaitech.net name server returns NS record for g.akamaitech.net • g.akamaitech.net name server chooses server in region 34
How Akamai Works End-user 35 cnn.com (content provider) DNS root server 1 2 3 4 Akamai high-level DNS server Akamai low-level DNS server Nearby matching Akamai server 11 6 7 8 9 10 Get index. html Get /cnn.com/foo.jpg 12 Get foo.jpg 5
Akamai – Subsequent Requests End-user 36 cnn.com (content provider) DNS root server 1 2 Akamai high-level DNS server Akamai low-level DNS server 7 8 9 10 Get index. html Get /cnn.com/foo.jpg Nearby matching Akamai server
What is a Web Service? • Web Service: “Web-based applications that dynamically interact with other Web applications using open standards that include XML, UDDI and SOAP” • Service-Oriented Architecture (SOA): “Development of applications from distributed collections of smaller loosely coupled service providers” “A collection of services or software agents that communicate freely with each other”
Web Service Advantages for E- Business • Allow companies to reduce the cost of doing e-business, to deploy solutions faster – Need a common program-to-program communications model • Allow heterogeneous applications to be integrated more rapidly, easily and less expensively • Facilitate deploying and providing access to business functions over the Web
Web Services Terminology • SOAP (Simple Object Access Protocol) – exchanging XML messages on a network – Like RPC, it provides a way to communicate between applications – Unlike RPC, it communicates over HTTP – Because HTTP is supported by all Internet browsers and servers, SOAP can run on different operating systems, with different technologies and programming languages • WSDL (Web Service Description Language ) – describing interfaces of Web services • UDDI (Universal Description, Discovery and Integration) – managing registries of Web services
Web Service Model (1/3)
Web Service Model (2/3) • Roles in a Web Service Architecture – Service provider • Owner of the service • Platform that hosts access to the service – Service requestor • Business that requires certain functions to be satisfied • Application looking for and invoking an interaction with a service – Service registry • Searchable registry of service descriptions where service providers publish their service descriptions
Web Service Model (3/3) • Operations in a Web Service Architecture – Publish • Service descriptions need to be published in order for service requestor to find them – Find • Service requestor queries the service registry for the service required – Bind • Service requestor invokes or initiates an interaction with the service at runtime
Fault Tolerance Challenges  How to deal with web service replications  How to combine Byzantine fault tolerance with web services  Merideth et al. “Thema: Byzantine-Fault-Tolerant Middleware for Web-Service Applications”, 2005.
Web Security Issues  The Web has become the visible interface of the Internet  Many corporations now use the Web for advertising, marketing and sales  Web servers might be easy to use but…  Complicated to configure correctly and difficult to build without security flaws  They can serve as a security hole by which an adversary might access other data and computer systems Threats Consequences Countermeasures Integrity Modification of Data Trojan horses Loss of Information Compromise of Machine MACs (mandatory access control) and Hashes Confidentiality Eavesdropping Theft of Information Loss of Information Privacy Breach Encryption DoS Stopping Filling up Disks and Resources Stopped Transactions Authentication Impersonation Data Forgery Misrepresentation of User Accept false Data Signatures, MACs
So Where to Secure the Web?  There are many strategies to securing the web 1. We may attempt to secure the IP Layer of the TCP/IP Stack: this may be accomplished using IPSec, for example. 2. We may leave IP alone and secure on top of TCP: this may be accomplished using the Secure Sockets Layer (SSL) or Transport Layer Security (TLS) 3. We may seek to secure specific applications by using application-specific security solutions: for example, we may use Secure Electronic Transaction (SET)  The first two provide generic solutions, while the third provides for more specialized services
A Quick Look at Securing the TCP/IP Stack TCP IP/IPSEC HTTP FTP SMTP TCP IP HTTP FTP SMTP SSL/TLS TCP IP S/MIME PGP UDP Kerberos SMTP SET HTTP At the Network Level At the Transport Level At the Application Level

More Related Content

PPTX
Web application architecture
byTejaswini Deshpande
 
PPTX
Scripting languages
byDiane Phillips Krebs
 
PPSX
Introduction to Html5
bywww.netgains.org
 
PPTX
Introduction to .net
byJaya Kumari
 
PDF
1. web technology basics
byJyoti Yadav
 
ODP
Datatype in JavaScript
byRajat Saxena
 
PPT
Html JavaScript and CSS
byRadhe Krishna Rajan
 
PDF
Internet programming lecture 1
byMohammed Hussein
 
Web application architecture
byTejaswini Deshpande
 
Scripting languages
byDiane Phillips Krebs
 
Introduction to Html5
bywww.netgains.org
 
Introduction to .net
byJaya Kumari
 
1. web technology basics
byJyoti Yadav
 
Datatype in JavaScript
byRajat Saxena
 
Html JavaScript and CSS
byRadhe Krishna Rajan
 
Internet programming lecture 1
byMohammed Hussein
 

What's hot

PPT
Web Standards
byChrisF1502010
 
PPT
Lecture 1 intro to web designing
bypalhaftab
 
PPTX
Client Server Architecture ppt
byOECLIB Odisha Electronics Control Library
 
PPTX
Peer to peer system
byJahanzaib Niazi
 
PPTX
HyperText Transfer Protocol (HTTP)
byGurjot Singh
 
PPTX
Complete Lecture on Css presentation
bySalman Memon
 
PPTX
Web application
bymaliksiddique1
 
PPTX
Html vs xhtml
byYastee Shah
 
PPTX
Introduction to Web Technology
byAashish Jain
 
PPTX
An introduction to networking
byJafar Nesargi
 
PDF
CS8080 INFORMATION RETRIEVAL TECHNIQUES - IRT - UNIT - I PPT IN PDF
byAALIM MUHAMMED SALEGH COLLEGE OF ENGINEERING
 
PPT
Scripting languages
byteach4uin
 
PPTX
Server Side Programming
byMilan Thapa
 
PPTX
World Wide Web and Internet
byJanecatalla
 
PDF
Lesson 1: Introduction to HTML
byOlivia Moran
 
PDF
Principles of web design
bydswebdesign
 
PPTX
HTTP request and response
bySahil Agarwal
 
PPTX
Introduction to Distributed System
bySunita Sahu
 
PPTX
Html5 tutorial for beginners
bySingsys Pte Ltd
 
PPTX
Html images syntax
byJayjZens
 
Web Standards
byChrisF1502010
 
Lecture 1 intro to web designing
bypalhaftab
 
Client Server Architecture ppt
byOECLIB Odisha Electronics Control Library
 
Peer to peer system
byJahanzaib Niazi
 
HyperText Transfer Protocol (HTTP)
byGurjot Singh
 
Complete Lecture on Css presentation
bySalman Memon
 
Web application
bymaliksiddique1
 
Html vs xhtml
byYastee Shah
 
Introduction to Web Technology
byAashish Jain
 
An introduction to networking
byJafar Nesargi
 
CS8080 INFORMATION RETRIEVAL TECHNIQUES - IRT - UNIT - I PPT IN PDF
byAALIM MUHAMMED SALEGH COLLEGE OF ENGINEERING
 
Scripting languages
byteach4uin
 
Server Side Programming
byMilan Thapa
 
World Wide Web and Internet
byJanecatalla
 
Lesson 1: Introduction to HTML
byOlivia Moran
 
Principles of web design
bydswebdesign
 
HTTP request and response
bySahil Agarwal
 
Introduction to Distributed System
bySunita Sahu
 
Html5 tutorial for beginners
bySingsys Pte Ltd
 
Html images syntax
byJayjZens
 

Viewers also liked

PPTX
Web as a Medium: Aesthetics & Design
byguest2d5207
 
PDF
Humanizing Design: 13 Ways to Provoke Psychological Responses through Custom ...
byLogo Design Guru
 
PDF
Digital Age - Content. Production. Promotion
byVera Chernysh
 
PPTX
[RakutenTechConf2013] [E-3] Financial Web System with Java EE 6
byRakuten Group, Inc.
 
PPTX
Software Requirements
byZaman Khan
 
PPT
Infrastructure Strategy Plan
byTarry Singh
 
PDF
Enterprise solution design principles
byLeo Barella
 
PPTX
How to implement Electronic Records Management?
byAtle Skjekkeland
 
PPTX
Software Requirement Specification
byNiraj Kumar
 
PPTX
EHR Implementation Plan Presentation
byDavid Montanez, PMP
 
PDF
Design Principles
byDavid Gelb
 
PPTX
Content Management System, Web, Social and Beyond
byDanielle Brigida
 
PPTX
Introduction to Zabbix - Company, Product, Services and Use Cases
byZabbix
 
PPT
User Interface Design
byJReifman
 
PPTX
Designing an IT Solution
byPhilippe Julio
 
Web as a Medium: Aesthetics & Design
byguest2d5207
 
Humanizing Design: 13 Ways to Provoke Psychological Responses through Custom ...
byLogo Design Guru
 
Digital Age - Content. Production. Promotion
byVera Chernysh
 
[RakutenTechConf2013] [E-3] Financial Web System with Java EE 6
byRakuten Group, Inc.
 
Software Requirements
byZaman Khan
 
Infrastructure Strategy Plan
byTarry Singh
 
Enterprise solution design principles
byLeo Barella
 
How to implement Electronic Records Management?
byAtle Skjekkeland
 
Software Requirement Specification
byNiraj Kumar
 
EHR Implementation Plan Presentation
byDavid Montanez, PMP
 
Design Principles
byDavid Gelb
 
Content Management System, Web, Social and Beyond
byDanielle Brigida
 
Introduction to Zabbix - Company, Product, Services and Use Cases
byZabbix
 
User Interface Design
byJReifman
 
Designing an IT Solution
byPhilippe Julio
 

Similar to introduction to Web system

PPTX
Distributed web based systems
byReza Gh
 
PDF
Unit-5_3 PPT on Distributed Web based System.pdf
byrameshwarchintamani
 
PPT
21 Www Web Services
byroyans
 
PPT
Chapter - 1 Introduction to networking (3).ppt
byEthiopia Satlliet television
 
PDF
Unit-5_Application_QoS.pdfcomputer network
by4SI21CS112RakeshMS
 
PDF
Unit v
byAPARNA P
 
PPT
World Wide Web(WWW)
byPratik Tambekar
 
PPTX
Computer Networking Application Layer - 02.pptx
bysanawarali920
 
PPT
Application layer protocols
byJUW Jinnah University for Women
 
PPTX
Advance Wbr j
byKaranpadhiar
 
PPTX
Web-Server & It's Architecture.pptx
byAlokKumar250045
 
PPT
Distributed System by Pratik Tambekar
byPratik Tambekar
 
PPTX
Content Devilery Network
bySanjiv Pradhan
 
PPT
Lec13 cdn
byAravindharamanan S
 
PDF
Html5 web sockets - Brad Drysdale - London Web 2011-10-20
byNathan O'Hanlon
 
DOCX
CN 6131(15) Module IV.docx
byAkhilMS30
 
PDF
CN 6131(15) Module IV.pdf
byAsifSalim12
 
PPT
Ds
byMa Kik
 
PPTX
Introduction to Web Engineering by H.I. Bijoy
byMd. Hasan Imam Bijoy
 
PPTX
web.pptx
byRDHead
 
Distributed web based systems
byReza Gh
 
Unit-5_3 PPT on Distributed Web based System.pdf
byrameshwarchintamani
 
21 Www Web Services
byroyans
 
Chapter - 1 Introduction to networking (3).ppt
byEthiopia Satlliet television
 
Unit-5_Application_QoS.pdfcomputer network
by4SI21CS112RakeshMS
 
Unit v
byAPARNA P
 
World Wide Web(WWW)
byPratik Tambekar
 
Computer Networking Application Layer - 02.pptx
bysanawarali920
 
Application layer protocols
byJUW Jinnah University for Women
 
Advance Wbr j
byKaranpadhiar
 
Web-Server & It's Architecture.pptx
byAlokKumar250045
 
Distributed System by Pratik Tambekar
byPratik Tambekar
 
Content Devilery Network
bySanjiv Pradhan
 
Lec13 cdn
byAravindharamanan S
 
Html5 web sockets - Brad Drysdale - London Web 2011-10-20
byNathan O'Hanlon
 
CN 6131(15) Module IV.docx
byAkhilMS30
 
CN 6131(15) Module IV.pdf
byAsifSalim12
 
Ds
byMa Kik
 
Introduction to Web Engineering by H.I. Bijoy
byMd. Hasan Imam Bijoy
 
web.pptx
byRDHead
 

More from hashim102

PPTX
Web layers
byhashim102
 
PPTX
Holography
byhashim102
 
PPTX
Polymorphism
byhashim102
 
PPTX
Bad news
byhashim102
 
PPTX
Politicial instability in bloachistan
byhashim102
 
PPTX
Writing skills
byhashim102
 
PPTX
Reading skills
byhashim102
 
PPTX
Differnce of two processors
byhashim102
 
PPTX
Gpu
byhashim102
 
PPTX
cpu scheduling
byhashim102
 
PPT
data structure
byhashim102
 
Web layers
byhashim102
 
Holography
byhashim102
 
Polymorphism
byhashim102
 
Bad news
byhashim102
 
Politicial instability in bloachistan
byhashim102
 
Writing skills
byhashim102
 
Reading skills
byhashim102
 
Differnce of two processors
byhashim102
 
Gpu
byhashim102
 
cpu scheduling
byhashim102
 
data structure
byhashim102
 

Recently uploaded

PPTX
GAS chromatography ppt (Presentation) by Jatin Chauhan
byjatinchauhan1618
 
PDF
Slit lamp parts 2/ppt/notes/download.pdf
byAnmol Singh
 
PPTX
Capitol Webinar October 2025 Dr. Jha.pptx
byCapitolTechU
 
PPTX
How to Create a Manifest File in Odoo 18
byCeline George
 
PDF
Admin Slides for Oct'25 semester - PBO - MC1.pdf
byMark Kor
 
PPTX
Project Dashboard in Odoo 18 Project
byCeline George
 
PPTX
Nerve lecture 2:strength-duration curve and an introduction to action potential
bydina merzeban
 
PDF
Learning English by Project Based Learning: How to Make Foreign Friends
bysilvianalevana
 
PDF
BD1TL - TNTEU - Teaching and Learning - Unit - 2.pdf
byDr Raja Mohammed T
 
PPTX
Welcome to our Open Evening 2025 Ballinrobe CS
byjacollins1515
 
PPTX
psychoanalytic Theory.pptx, MSc. Nursing
byKomalJaiswal46
 
PPTX
DBP - BITA Introduction Slides Oct 202526
byGreat Files
 
PPTX
DO 34 s 2025 - ammendment of DO 24 s 2025.pptx
byJeanalynEstrellado3
 
PPTX
Exploring Entrepreneurial Qualities: A Curated Presentation for Grade 11 Busi...
bySamanthaNkoana
 
PPTX
Hudson Vitale "AI Essentials: From Tools to Strategies: A 2025 NISO Training ...
byNational Information Standards Organization (NISO)
 
PDF
Admin Slides for Oct'25 semester - PB1_MC5.pdf
byGreat Files
 
PPTX
Essay Type Answer Writing Analysis Workshop.pptx
byDhatriParmar
 
PPTX
ILA 2025 Prague CLS Presentation of Leadership journal
byjohanalvehus
 
PDF
The Children’s Support Fund, set up to support the welfare and education of c...
bynservice241
 
PPTX
Agriculture Lesson Note for Grade 11 Chapter 3 & 4.pptx
byNajibMuhidin
 
GAS chromatography ppt (Presentation) by Jatin Chauhan
byjatinchauhan1618
 
Slit lamp parts 2/ppt/notes/download.pdf
byAnmol Singh
 
Capitol Webinar October 2025 Dr. Jha.pptx
byCapitolTechU
 
How to Create a Manifest File in Odoo 18
byCeline George
 
Admin Slides for Oct'25 semester - PBO - MC1.pdf
byMark Kor
 
Project Dashboard in Odoo 18 Project
byCeline George
 
Nerve lecture 2:strength-duration curve and an introduction to action potential
bydina merzeban
 
Learning English by Project Based Learning: How to Make Foreign Friends
bysilvianalevana
 
BD1TL - TNTEU - Teaching and Learning - Unit - 2.pdf
byDr Raja Mohammed T
 
Welcome to our Open Evening 2025 Ballinrobe CS
byjacollins1515
 
psychoanalytic Theory.pptx, MSc. Nursing
byKomalJaiswal46
 
DBP - BITA Introduction Slides Oct 202526
byGreat Files
 
DO 34 s 2025 - ammendment of DO 24 s 2025.pptx
byJeanalynEstrellado3
 
Exploring Entrepreneurial Qualities: A Curated Presentation for Grade 11 Busi...
bySamanthaNkoana
 
Hudson Vitale "AI Essentials: From Tools to Strategies: A 2025 NISO Training ...
byNational Information Standards Organization (NISO)
 
Admin Slides for Oct'25 semester - PB1_MC5.pdf
byGreat Files
 
Essay Type Answer Writing Analysis Workshop.pptx
byDhatriParmar
 
ILA 2025 Prague CLS Presentation of Leadership journal
byjohanalvehus
 
The Children’s Support Fund, set up to support the welfare and education of c...
bynservice241
 
Agriculture Lesson Note for Grade 11 Chapter 3 & 4.pptx
byNajibMuhidin
 

introduction to Web system

  • 1.
  • 2.
    Given Credit WhereIt is Due • Most of the slides are from Beyhan Akporay at Bilkent University,Turkey and Aditya Akella at University of Wisconsin, Madison. • Some slides are from Dijiang Huang at Arizona State University, Marlon Pierce at Indiana University and http://www.brics.dk/ixwt/slides.html. • Some slides are from Stefan Saroiu at University of Toronto and Chiyoung Seo at University of Southern California • I have modified and added some slides.
  • 3.
    INTRODUCTION • What isWorld Wide Web?
  • 4.
    INTRODUCTION  The WorldWide Web (WWW) can be viewed as a huge distributed system with millions of clients and servers for accessing linked documents.  Servers maintain collections of documents while clients provide users an easy-to-use interface for presenting and accessing those documents.  A document is fetched from a server, transferred to a client, and presented on the screen. To a user there is conceptually no difference between a document stored locally or in another part of the world.
  • 5.
    INTRODUCTION  Now, Webhas become more than just a simple document based system.  With the emergence of Web services, it is becoming a system of distributed services rather than just documents offered to any user or machine.  What can we get from WWW?  Read news, listen to music and watch video;  Buy or sell goods such as books, airline tickets;  Make reservations on hotel room, rental car, restaurant, etc.;  Pay bills and transfer money from one bank account to another;  …
  • 6.
    TRADITIONAL WEB-BASED SYSTEMS Many Web-based systems are still organized as simple client-server architectures.
  • 7.
    TRADITIONAL WEB-BASED SYSTEMS The core of a Web site: a process that has access to a local file system storing documents.
  • 8.
    TRADITIONAL WEB-BASED SYSTEMS How to refer to a document?  URL (Uniform Resource Locator)?
  • 9.
    Uniform Resource Locator A reference called Uniform Resource Locator (URL) is used to refer a document.  The DNS name of its associated server along with a file name is specified.  The URL also specifies the protocol for transferring the document across the network.  Example: http://www.cse.unl.edu/~ylu/csce855/notes/web- system.ppt
  • 10.
    TRADITIONAL WEB-BASED SYSTEMS A client interacts with Web servers through a special application known as browser.  What’s the key function of a browser?  Responsible for displaying documents.
  • 11.
    WEB DOCUMENTS  AWeb document does not only contain text, but it can include all kinds of dynamic features such as audio, video, animations, etc.  In many cases special helper applications (interpreters) are needed, and they are integrated into the browser.  E.g., Windows Media Player and QuickTime Player for playing streaming content  The variety of document types forces browser to be extensible. As a result, plug-ins are required to follow a standard interfaces so that they can be easily integrated with the browsers.
  • 12.
    MULTITIERED ARCHITECTURES  Webdocuments can be built in two ways: Static – locates and returns the object identified in the request. Static objects include predefined HTML pages and JPEG or GIF files. does not require web servers to communication with any server-side application. Dynamic – the request is forwarded to an application system where the reply is generated dynamically, i.e. data is generated through a server-side program execution.  Although Web started as simple two-tiered client-server architecture for static Web documents, this architecture has been extended to support advanced type of documents.
  • 13.
    MULTITIERED ARCHITECTURES  Becauseof the server-side processing, many Web sites are now organized as three-tiered architectures consisting of a Web server, an application server, and a database server.  User data comes from an HTML form, specifying the program and parameters.  Server-side scripting technologies are used to generate dynamic content: Microsoft: Active Server Pages (ASP.NET) Sun: Java Server Pages (JSP) Netscape: JavaScript Free Software Foundation: PHP
  • 14.
    • What isthe most popular Web server software? – By far the most popular Web server is Apache. As of March 2007, 58% of all websites are using it.
  • 15.
    • How tomake a web site scalable?
  • 16.
    WEB SERVER CLUSTERS Webservers are replicated and combined with a front end to improve performance.
  • 17.
    WEB SERVER CLUSTERS The front end can be designed in two ways: Transport-layer switch – simply passes data sent along the TCP connection to one of the servers, depending on some measurement of the server’s load. Content-aware request distribution – it first inspects the HTTP request and decides which server it should forward that request to. For example, if the front end always forwards requests for the same document to the same server, the server may cache the document resulting in better response times. Approach that combines the efficiency of transport-layer switch and the functionality of content-aware distribution has been developed.
  • 18.
    WEB SERVER CLUSTERS Another alternative to set up a Web server cluster is to use round-robin DNS.  With round-robin DNS a single domain name is associated with multiple IP addresses.  When resolving a host name, a browser would receive a list of multiple addresses, each address corresponding to a server.  Normally, browsers choose the first address on the list, but most DNS servers circulate the entries.  As a result, simple distribution of requests over the servers in the cluster is achieved.
  • 19.
    HTTP  All communicationbetween clients and servers is based on HTTP. Servers listen on port 80.  HTTP is a simple protocol; a client sends a request to a server and waits for a response.  HTTP is stateless; it does not have any concept of open connection and does not require a server to maintain information on its clients. (Can use HTTP cookies to store session information.)  HTTP is based on TCP; whenever a client issues a request to a server, it first sets up a TCP connection and sends the message on that connection. The same connection is used for receiving the response.  One of the problems with the first versions of HTTP was its inefficient use of TCP connections.  HTTP 1.0 vs. HTTP 1.1
  • 20.
    HTTP CONNECTIONS  AWeb document is constructed from a collection of different files from the same server.  In HTTP version 1.0 and older, each request to a server required setting up a separate connection. When server had responded, the connection was broken down. These connections are referred as nonpersistent.  In HTTP version 1.1, several requests and their responses can be issued without the need for a separate connection. These connections are referred as persistent.  Furthermore, a client can issue several requests in a row without waiting for the response to the first request which is referred as pipelining.
  • 21.
    HTTP CONNECTIONS (a) Usingnon-persistent connections. (b) Using persistent connections.
  • 22.
    HTTP Caching • Clientsoften cache documents – Challenge: update of documents – If-Modified-Since requests to check • When/how often should the original be checked for changes? – Check every time? – Check each session? Day? Etc? – Use “Expires” header • If no Expires, often use Last-Modified as estimate 22
  • 23.
    CSC2231: Internet SystemsStefan Saroiu 2005 Benefits of Proxy Caching • Proxy caching is the most commonly used method to improve Web performance – Duplicate requests to the same document served from the cache – Hits reduce latency, network utilization, and server load – Introduces problems: • Misses increase latency (extra hops) • cache consistency Clients Proxy Cache Servers Hits Misses Misses Internet
  • 24.
    Cache Consistency • Fresh-enoughis good-enough • One writer, many readers – Most content changes slowly wrt # reads • Cache consistency governed by standards • “Expiration” based cache consistency – Expires timestamp on each object – Cache revalidates content beyond that time • Why not callbacks?
  • 25.
    Problems • Over 50%of all HTTP objects are uncacheable – why? • Not easily solvable – Dynamic data  stock prices, scores, web cams – CGI scripts  results based on passed parameters – SSL  encrypted data is not cacheable – Cookies  results may be based on passed data – Hit metering  owner wants to measure # of hits for revenue, etc. 25
  • 26.
    CSC2231: Internet SystemsStefan Saroiu 2005 Cache Deployments $ Web Server Client Cache Where else?
  • 27.
    CSC2231: Internet SystemsStefan Saroiu 2005 Cache Deployments $ $ $ $ $ $ $ Web Server Client Browser Cache CDN Reverse Proxy/ Accelerator CDN CDNCDN Proxy Cache
  • 28.
    Content Distribution – Lotsof excitement? – Akamai, Digital Island/Sandpiper, Speedera – What is a Content Distribution Network (CDN)? • Outsourced caching and replication services
  • 29.
    Content Distribution – Lotsof excitement? – Akamai, Digital Island/Sandpiper, Speedera – What is a Content Distribution Network (CDN)? • Outsourced caching and replication services
  • 30.
    CSC2231: Internet SystemsStefan Saroiu 2005 Content Providers’ Advantages • CDN provider maintains networks and servers – Capacity management • Sharing resources across a large number of sites – Economy of scale – Control of content placement and routing • Protects content provider from unpredictable load bursts • Communication between content provider and CDN network is not governed by standards – Don’t even need to use HTTP – Can cache “uncacheable” documents – Can deploy alternative cache consistency – Can place requirements on content providers
  • 31.
    CDN’s Challenges • Howto replicate content? • Where to replicate content? • How to find replicated content? • How to choose among known replicas? • How to direct clients towards replica?
  • 32.
    Content Distribution Networks •Replicate content on many servers 32 Figure 12-18. The general organization of a CDN as a feedback- control system (adapted from Sivasubramanian et al., 2004b).
  • 33.
    How Akamai Works •Clients fetch html document from primary server – E.g. fetch index.html from cnn.com • “Akamaized” URLs for replicated content are replaced in html – E.g. <img src=“http://cnn.com/af/x.gif”> replaced with <img src=“http://a73.g.akamaitech.net/7/23/cnn.com/af/x.g if”> • Client is forced to resolve aXYZ.g.akamaitech.net hostname 33
  • 34.
    How Akamai Works •Root server gives NS record for akamaitech.net • akamaitech.net name server returns NS record for g.akamaitech.net • g.akamaitech.net name server chooses server in region 34
  • 35.
    How Akamai Works End-user 35 cnn.com(content provider) DNS root server 1 2 3 4 Akamai high-level DNS server Akamai low-level DNS server Nearby matching Akamai server 11 6 7 8 9 10 Get index. html Get /cnn.com/foo.jpg 12 Get foo.jpg 5
  • 36.
    Akamai – SubsequentRequests End-user 36 cnn.com (content provider) DNS root server 1 2 Akamai high-level DNS server Akamai low-level DNS server 7 8 9 10 Get index. html Get /cnn.com/foo.jpg Nearby matching Akamai server
  • 37.
    What is aWeb Service? • Web Service: “Web-based applications that dynamically interact with other Web applications using open standards that include XML, UDDI and SOAP” • Service-Oriented Architecture (SOA): “Development of applications from distributed collections of smaller loosely coupled service providers” “A collection of services or software agents that communicate freely with each other”
  • 38.
    Web Service Advantagesfor E- Business • Allow companies to reduce the cost of doing e-business, to deploy solutions faster – Need a common program-to-program communications model • Allow heterogeneous applications to be integrated more rapidly, easily and less expensively • Facilitate deploying and providing access to business functions over the Web
  • 39.
    Web Services Terminology •SOAP (Simple Object Access Protocol) – exchanging XML messages on a network – Like RPC, it provides a way to communicate between applications – Unlike RPC, it communicates over HTTP – Because HTTP is supported by all Internet browsers and servers, SOAP can run on different operating systems, with different technologies and programming languages • WSDL (Web Service Description Language ) – describing interfaces of Web services • UDDI (Universal Description, Discovery and Integration) – managing registries of Web services
  • 40.
  • 41.
    Web Service Model(2/3) • Roles in a Web Service Architecture – Service provider • Owner of the service • Platform that hosts access to the service – Service requestor • Business that requires certain functions to be satisfied • Application looking for and invoking an interaction with a service – Service registry • Searchable registry of service descriptions where service providers publish their service descriptions
  • 42.
    Web Service Model(3/3) • Operations in a Web Service Architecture – Publish • Service descriptions need to be published in order for service requestor to find them – Find • Service requestor queries the service registry for the service required – Bind • Service requestor invokes or initiates an interaction with the service at runtime
  • 43.
    Fault Tolerance Challenges How to deal with web service replications  How to combine Byzantine fault tolerance with web services  Merideth et al. “Thema: Byzantine-Fault-Tolerant Middleware for Web-Service Applications”, 2005.
  • 44.
    Web Security Issues The Web has become the visible interface of the Internet  Many corporations now use the Web for advertising, marketing and sales  Web servers might be easy to use but…  Complicated to configure correctly and difficult to build without security flaws  They can serve as a security hole by which an adversary might access other data and computer systems Threats Consequences Countermeasures Integrity Modification of Data Trojan horses Loss of Information Compromise of Machine MACs (mandatory access control) and Hashes Confidentiality Eavesdropping Theft of Information Loss of Information Privacy Breach Encryption DoS Stopping Filling up Disks and Resources Stopped Transactions Authentication Impersonation Data Forgery Misrepresentation of User Accept false Data Signatures, MACs
  • 45.
    So Where toSecure the Web?  There are many strategies to securing the web 1. We may attempt to secure the IP Layer of the TCP/IP Stack: this may be accomplished using IPSec, for example. 2. We may leave IP alone and secure on top of TCP: this may be accomplished using the Secure Sockets Layer (SSL) or Transport Layer Security (TLS) 3. We may seek to secure specific applications by using application-specific security solutions: for example, we may use Secure Electronic Transaction (SET)  The first two provide generic solutions, while the third provides for more specialized services
  • 46.
    A Quick Lookat Securing the TCP/IP Stack TCP IP/IPSEC HTTP FTP SMTP TCP IP HTTP FTP SMTP SSL/TLS TCP IP S/MIME PGP UDP Kerberos SMTP SET HTTP At the Network Level At the Transport Level At the Application Level

Editor's Notes

  • #9 Uniform Resource Locator (URL)