Building Self-adapting Services Using Service-specific Knowledge
An-Cheng Huang
†
and Peter Steenkiste
†‡
Computer Science Department
†
Electrical and Computer Engineering Department
‡
Carnegie Mellon University
{pach,prs}@cs.cmu.edu
Abstract
With the advances in middleware and Web services tech-
nologies, network services are evolving from simple client-
server applications to self-configuring services that can
compose primitive components distributed in the Internet
into a value-added service configuration that provides rich
functionalities to users. A resulting research problem is
how to continuously adapt such composite service config-
urations at run time in order to cope with the increas-
ingly dynamic and heterogeneous network environments
and computing platforms. In this paper, we propose a self-
adaptation architecture that allows service developers to
specify their service-specific adaptation knowledge as “ex-
ternalized” adaptation strategies. These adaptation strate-
gies are used by a general, shared adaptation framework
to perform run-time adaptation operations that automati-
cally incorporate service-specific knowledge. In addition
to the strategies, we also identify another aspect of adap-
tation knowledge that is not addressed by previous solu-
tions: adaptation coordination. Our framework provides
integrated support for the specification and execution of
both aspects of developers’ adaptation knowledge.
1. Introduction
Network applications such as Web browsing, video con-
ferencing, instant messaging, file sharing, and online gam-
ing are becoming a necessity for more and more peo-
ple. From a user’s perspective, these network applica-
tions are used to access services offered by service de-
velopers over the Internet. Advances in middleware and
Web services technologies have enabled service develop-
ers to build value-added services using distributed software
components to satisfy particular user requirements. In or-
der to maintain the service performance and quality, such
This research was funded in part by NSF under award number CCR-
0205266.
distributed composite services must be able to dynamically
adapt their configurations to the frequent run-time changes
in network characteristics (e.g., latency and bandwidth), re-
source availability (e.g., CPU and memory), and other en-
vironment factors.
In many cases, how to perform run-time adaptation is
highly service-specific, i.e., simply using some generic
adaptation heuristics is not sufficient, and service-specific
knowledge is required to appropriately adapt the service
configuration at run time. Many previous research ef-
forts to support run-time adaptation adopt an “internal-
ized” approach that requires developers to integrate their
service-specific adaptation strategies into the target system,
e.g., [16, 19, 9, 3]. While this approach is flexible, it forces
a developer to hard-wire the knowledge into the system, in-
creasing design complexity and development cost.
In addition to the adaptation strategies, adaptation coor-
dination is another important aspect of distributed compos-
ite services that requires service-specific knowledge. Mul-
tiple strategies may be invoked at the same time, and they
may want to make conflicting changes to the configuration.
Furthermore, the developer may design strategies that “at
cross purposes”, e.g., one strategy adds a server to improve
performance while another strategy removes a server to re-
duce cost. Such adaptation coordination issues are a chal-
lenging problem that is not addressed by previous solutions.
In this paper, we present a self-adaptation architecture
that allows service developers to easily add run-time adap-
tation capability to their services. We use an “externalized”
approach adopted in several previous studies (e.g., [11, 26]):
we define a representation for developers to express their
service-specific adaptation knowledge in the form of exter-
nalized strategies and coordination policies, and we build
a general framework that can interpret such knowledge to
automatically adapt the target system at run time. Since
the general, shared framework provides common adaptation
functionalities, our approach reduces the development cost
as the developers do not need to worry about lower-level
mechanisms.
In the rest of the paper we define the run-time adaptation
Figure 1. A video conferencing service.
problem, present the self-adaptation architecture, discuss
the support for service-specific adaptation strategies and co-
ordination policies, describe our prototype implementation,
and use simulation to demonstrate the advantages of our ap-
proach.
2. Problem statement
We focus on the problem of adding run-time adaptation
capabilities to a composite service. Therefore, we assume
that the initial configuration of a service is already con-
structed. One possibility is that the developer constructs
the configuration manually. Alternatively, the developer
can build a “self-configuring service” using an existing self-
configuration framework, e.g., [13, 12, 22, 1], that automat-
ically composes the service configuration.
Given the initial service configuration, we have identi-
fied two aspects of a developer’s service-specific knowl-
edge that can be used to guide the adaptation of the con-
figuration at run time: adaptation strategies and coordi-
nation policies. Let us first use an example to illustrate
these. In Figure 1, five users want to hold a video confer-
ence. Two use MBone conferencing applications vic/SDR
(VIC), two use NetMeeting (NM), and one uses a receive-
only handheld device (HH). Suppose the initial configura-
tion for the users consists of a video conferencing gateway
(VGW) that translates different conferencing protocols, a
handheld proxy (HHP) joining the session on behalf of HH,
and three End System Multicast (ESM) proxies that provide
wide-area multicast functionality for the users.
At run time, the service configuration needs to be
adapted to accommodate environmental changes. For ex-
ample, to handle run-time problems such as high load and
congestion at the VGW, the developer may have the follow-
ing two strategies:
• S1: (VGW overloaded) → (replace VGW with a high-
capacity VGW)
• S2: (VGW congestion) → (replace VGW with a high-
bandwidth VGW)
These strategies are service-specific because another devel-
oper may have different strategies, e.g., VGW overload and
congestion could be handled by reducing the codec quality
and bit rate.
Another important aspect of the adaptation knowledge
is how the strategies should be “coordinated”. For exam-
ple, suppose at run time, S1 and S2 above are invoked at
the same time. If the two strategies want to replace the
VGW with different candidates, obviously only one of them
should be allowed to execute.
Our goal is to build an adaptation framework that allows
a developer to add self-adaptation capabilities to a service
and adapts the system based on the developer’s knowledge.
In this paper, we limit our scope to local adaptation, i.e.,
we focus on how to support adaptation strategies involving
only “local” actions and how to coordinate such strategies.
Specifically, a local adaptation only changes a single com-
ponent (e.g., changing the parameters of a component, re-
placing a component, etc.) and has limited “indirect” effects
(e.g., it only affects the component it changes).
3. Overview of adaptation architecture
In our architecture (Figure 2), a developer uses our
knowledge representation to express its service-specific
adaptation knowledge, including adaptation strategies and
coordination policies. This knowledge, along with the
initial configuration of the service, are given to the self-
adaptation framework, which consists of an adaptation
manager (AM), an adaptation coordinator (AC), and the
supporting infrastructure.
The supporting infrastructure provides the common
functionality required for run-time adaptation, e.g., a net-
work measurement infrastructure for measuring critical net-
work performance metrics, a service discovery infrastruc-
ture for finding new components, a component manage-
ment/deployment infrastructure for controlling/deploying
the components, etc. In this paper, we assume the necessary
infrastructures exist, and we focus on how the developers’
knowledge can be represented and on how the AM and the
AC can make use of the adaptation and coordination knowl-
edge to adapt the target service configuration.
At run time, the AM handles a developer’s adaptation
strategies by monitoring the configuration to detect run-time
problems. When a problem occurs, e.g., a component be-
comes overloaded, and one of the developer’s strategies is
designed to handle the problem, the AM invokes the strat-
egy to adapt the configuration, e.g., replace the overloaded
component. When a strategy is executed, it generates a pro-
posal specifying how it wants to change the configuration,
and the proposal is sent to the AC. If a proposal does not
conflict with other proposals, the AC accepts the proposal
and asks the AM to change the configuration accordingly.
Figure 2. Architecture for run-time local adaptation support.
Otherwise, the AC rejects the proposal.
Next, we discuss our design of the knowledge represen-
tation for specifying the adaptation strategies and coordina-
tion policies, and we describe how such knowledge is used
to perform run-time adaptation.
4. Adaptation strategies
Previous studies have proposed many run-time adapta-
tion solutions based on “internalized” adaptation strategies
(i.e., the adaptation logic and mechanisms are hard-wired
into the system itself), for example, [16, 19, 9, 3]. While
this approach gives the service developer complete control
over how adaptations are performed, it typically results in
high development costs.
The “externalized” approach adopted by some previous
projects, e.g., [11, 26], addresses this problem by separat-
ing the strategies and mechanisms from the actual system.
This enables the development of a general adaptation frame-
work that can be reused by different systems, and the devel-
oper of a system can add run-time adaptation capabilities by
designing externalized strategies without modifying system
components. Therefore, the development cost is potentially
much lower than with the internalized approach.
To support externalized strategies, one important de-
sign decision is how to specify such strategies. As cat-
egorized in [26], an adaptation strategy can be specified
as a high-level “utility” function or an explicit “event-
action” rule. The utility approach allows a service devel-
oper to specify a utility function indicating the “desirable”
configurations, and the adaptation mechanisms automati-
cally modify the service configuration towards higher util-
ity. This approach is for example used in run-time adap-
tation solutions that focus on dynamic resource allocation,
e.g., [17, 21, 26]. However, our scope of adaptation is
much broader and includes component-level adaptations
such as replacing/adding/removing components. Therefore,
the utility approach is not feasible.
The event-action approach lets a developer specify rules
dictating what “actions” should be taken when a particular
“event” occurs. For example, when the event “component X
becomes overloaded” occurs, the appropriate action is “re-
place X with a higher capacity one”. This approach is used
in previous studies where the target system involves differ-
ent, heterogeneous components, e.g., [11, 8]. Therefore, we
adopt the externalized, event-action approach for strategy
specification.
4.1. Strategy format
Our support for adaptation strategies is built on the exter-
nalized approach presented in Rainbow [11]. An adaptation
strategy consists of the following three parts.
• Constraint: A strategy is invoked when its constraint is
“violated”. A constraint is a condition on certain prop-
erties of the configuration, e.g., “load(X) < C” where
X is a component in the configuration. The properties
can be performance metrics, e.g., bandwidth and la-
tency, or component properties. At run time, the AM
monitors the constraints of the strategies and invokes a
strategy when its condition becomes false.
• Problem determination: A constraint violation may be
caused by multiple triggering problems. When a strat-
egy is invoked, it may need to, for example, query
more specific configuration properties to determine the
actual triggering problem. For example, in the video
conferencing example, a strategy triggered by “low
HH video quality” needs to determine whether the ac-
tual problem is HHP failure, low quality codec used by
the HHP, or congestion at the HHP.
• Tactic: A tactic consists of a set of actions that are
used to address a particular triggering problem. Ac-
tions range from changing a run-time parameter of a
component to changing the configuration by insert-
ing/removing components. In the example above,
“HHP failure” can be addressed by a tactic that re-
places the failed HHP with a new one, “low qual-
ity codec” can be addressed by “increasing the codec
quality”, and so on.
4.2. Strategy specification
We now discuss how each part of a strategy is speci-
fied. Our self-adaptation framework is based on the self-
configuration framework we built previously [13]. Specif-
ically, we leverage the existing abstract configuration API
and objective function API. The abstract configuration API
includes data structures representing components and com-
ponent types in a service configuration and functions for
adding/removing/connecting components in the configura-
tion. We assume the initial configuration is given to our self-
adaptation framework as a data structure that is constructed
using this API. Therefore, an adaptation strategy designed
by a developer can “reference” components or component
types in the configuration. The objective function API in-
cludes data structures representing performance metrics and
other properties of components/connections in the configu-
ration and operators in an objective function for component
selection.
In addition to the above existing functionality, new data
structures and functions are needed for specifying all parts
of a strategy. Table 1 summarizes the additions. We now
describe how a developer can use these APIs to specify each
part of an adaptation strategy.
• Constraint: A developer can use the objective func-
tion API to construct a function of the relevant prop-
erties of components and connections in the config-
uration. A constraint can then be constructed using
RelationOp and BooleanOp with the function.
When a constraint is violated, the “violator” in the con-
figuration is passed to the corresponding strategy (sim-
ilar to Rainbow [11]), which can then operate on the
appropriate component.
• Problem determination: Since our framework is im-
plemented in Java and exports Java interfaces and
classes for specifying strategies, a strategy designed
Data structure
RelationOp: Represent relation operators such as
“==”, “>=”, etc.
BooleanOp: Represent boolean operators such as
“AND”, “OR”, etc.
Condition: Represent a combination of “Term
RelationOp Term”.
Constraint: Represent a combination of
“Condition BooleanOp Condition”.
Tactic: Represent the base class for a tactic; develop-
ers implement tactics by creating specializations.
Strategy: Represent the base class for a strategy;
developers implement strategies by creating specializa-
tions.
Function
replaceComponent(c): Represent an adaptation
action that replaces an existing component c in the cur-
rent configuration.
changeParameter(pn,pv): Represent an adapta-
tion action that changes the value of the parameter pn of
a component to pv.
connect(c1,c2): Represent an adaptation action
that connects components c1 and c2.
setTacticObjective(obj): Set the component
selection objective for a tactic to obj, which will be used
for, e.g., the replaceComponent actions.
setConstraint(C): Associate the constraint C with
an adaptation strategy.
invokeTactic(T): Invoke the tactic T.
Table 1. API for specifying adaptation strate-
gies.
by a developer is basically a small Java class. This
approach gives the developer significant flexibility in
implementing the problem determination logic.
• Tactic: Since we focus on “local adaptation”, our
API allows a tactic to specify actions such as
replaceComponent, changeParameter, and
connect. Similar to our previous self-configuration
framework, when a tactic requires a new component, it
specifies an objective function as the component selec-
tion criterion using setTacticObjective. The
support infrastructure will then use this objective func-
tion to select the best server to execute the component,
given current runtime conditions.
• Strategy: Finally, we need a data structure to represent
a strategy. The constraint of a strategy can be assigned
using setConstraint, and a strategy can invoke a
tacticNewNM: This tactic connects a new NM user to
the VGW.
tacticNewVIC: Connect a new VIC user to the clos-
est ESMP.
tacticNewHH: Connect a new HH user to the HHP.
tacticVGWFail: Replace a failed VGW with a high-
capacity one.
tacticVGWOverload: Replace an overloaded VGW
with a high-capacity one.
tacticVGWCongest: Replace a congested VGW
with a high-bandwidth one.
tacticVGWLowQual: Increase the VGW’s codec
quality.
tacticESMPFail: Replace a failed ESMP with a
high-bandwidth one.
tacticESMPCongest: Replace a congested ESMP
with a high-bandwidth one.
Table 2. Tactics for the video conferencing
service.
particular tactic using invokeTactic.
We believe our self-adaptation framework can also be
applied to other component-based services frameworks
such as Ninja [12], SWORD [22], and ACE [1]. The major
requirement is that such a framework (1) provides a repre-
sentation of the service configuration allowing our frame-
work to reference the components in the configuration and
(2) provides an interface allowing our framework to make
changes to the configuration according to the developers’
knowledge.
4.3. Example
We use the video conferencing service as an example
to illustrate how a developer’s adaptation strategies can be
specified using the above APIs. Suppose the developer im-
plements the tactics shown in Table 2. Based on these tac-
tics, the developer then designs the strategies shown in Ta-
ble 3 (for simplicity, the actual code is not shown). As seen
in Table 3, the constraints for these strategies are as follows:
• C1: (config.numUnconnectedUsers == 0)
• C2: (NM.videoQuality >= Tn)
• C3: (VIC.videoQuality >= Tv)
Therefore, the adaptation strategies are instantiated and as-
sociated with their constraints using the following state-
ments:
stratNewUser: This strategy is triggered when a new
user joins the session. It determines the triggering prob-
lem and invokes the appropriate tactic as follows.
New NM user → tacticNewNM
New VIC user → tacticNewVIC
New HH user → tacticNewHH
stratNMQual: Triggered when the video quality of
NM is below a threshold T
n
.
VGW failed → tacticVGWFail
VGW overloaded → tacticVGWOverload
VGW congested → tacticVGWCongest
VGW poor codec → tacticVGWLowQual
stratVICQual: Triggered when the video quality of
VIC is below a threshold T
v
.
ESMP failed → tacticESMPFail
ESMP congested → tacticESMPCongest
Table 3. Strategies for the video conferencing
service.
stratNewUser S1 = new stratNewUser();
S1.setConstraint(C1);
stratNMQual S2 = new stratNMQual();
S2.setConstraint(C2);
stratVICQual S3 = new stratVICQual();
S3.setConstraint(C3);
The strategies are given to the AM, which monitors the con-
figuration and invokes a strategy when its constraint is vio-
lated.
5. Adaptation coordination
Our goal with respect to adaptation coordination is to
only require a service developer to specify the service-
specific coordination knowledge without worrying about
the underlying mechanisms. We identified three important
coordination issues: detecting conflicts between proposals,
resolving conflicts between proposals, and identifying in-
compatible strategies (i.e., strategies that work at cross pur-
poses). Next, we discuss how we address these three issues.
5.1. Conflict detection
We categorize conflicts into two types: action-level and
problem-level. An action-level conflict occurs when two
proposals want to make “conflicting changes” to the con-
figuration. For example, if one proposal wants to replace
server A with B, and another proposal wants to replace A
with C, then obviously only one can be accepted. In other
words, the two proposals attempt to change the same “tar-
get” in different ways. The AC can automatically detect