公开(公告)号：US08843579B1

公开(公告)日：2014-09-23

申请号：US14052955

申请日：2013-10-14

Applicant: Amazon Technologies, Inc.

Inventor： Paul-Flavian Diac ,  Igor Spac

IPC: G06F15/16 ,  H04L12/58

CPC classification number: H04L51/28 ,  H04L51/12

Abstract: Technologies are described herein for managing the IP addresses of outbound e-mail messages based on sender reputation. A range of reputation scores is divided into a number of reputation segments, each covering a span of the reputation scores. The available IP addresses are distributed evenly among the reputation segments. The span of reputation scores for each of the reputation segments may be periodically adjusted based on historical data regarding a volume of e-mail messages sent by sender reputation score. In order to select a source IP address for a particular outbound e-mail message, the reputation segment encompassing a sender reputation score regarding the sender of the e-mail message is determined. An IP address is selected from the IP addresses assigned to the reputation segment and returned to be utilized as the source IP address in sending the outbound e-mail message.

Abstract translation: 这里描述了基于发信人信誉来管理出站电子邮件的IP地址的技术。 一系列声誉分数分为多个声誉分段，每个声誉分数都覆盖了声誉分数的跨度。 可用的IP地址均匀分布在信誉段之间。 可以根据关于通过发信人信誉得分发送的电子邮件量的历史数据来定期调整每个信誉分段的信誉分数的跨度。 为了为特定的出站电子邮件选择源IP地址，确定包含关于电子邮件消息的发送者的发件人信誉分数的信誉段。 从分配给信誉段的IP地址中选择IP地址，并在发送出站电子邮件时返回用作源IP地址。

公开(公告)号：US20180176192A1

公开(公告)日：2018-06-21

申请号：US15382577

申请日：2016-12-16

Applicant: Amazon Technologies, Inc.

Inventor： Melissa Elaine Davis ,  Gavin Richard Jewell ,  Brady Montz ,  Alec Peterson ,  Igor Spac ,  Alexander Julian Tribble ,  Radu Weiss

IPC: H04L29/06 ,  H04L9/32

Abstract: A computing resource service provider may operate a secure proxy fleet responsible for directing network traffic from one or more backend services to one or more client devices. The network traffic may be encrypted or otherwise obfuscated to protect sensitive data. The secure proxy device may detect encrypted data and may decrypt the data prior to forwarding the data to the one or more client devices.

公开(公告)号：US09935977B1

公开(公告)日：2018-04-03

申请号：US14100663

申请日：2013-12-09

Applicant: AMAZON TECHNOLOGIES, INC.

Inventor： Alexander Julian Tribble ,  Robert Michael Barry ,  Jeremy Boynes ,  Igor Spac

IPC: H04L29/06

CPC classification number: H04L63/20 ,  H04L63/0428 ,  H04L63/105 ,  H04L63/12 ,  H04L63/168

Abstract: Techniques are described for delivering one or more first resources of a page using a first security level, and delivering one or more second resources of a page using a second, different security level. A page is generated to include elements identifying resources to be presented in the page, and the elements may include security level identifiers indicating a security level to be employed in communicating the corresponding resource. Each security level may be associated with a set of security measures that ensure the integrity or confidentiality of the resource while it is communicated. The use of multiple security levels to communicate multiple resources may provide appropriate security for each resource, reducing latency and overhead in page generation, communication, and rendering.

公开(公告)号：US10574703B1

公开(公告)日：2020-02-25

申请号：US15914690

申请日：2018-03-07

Applicant: AMAZON TECHNOLOGIES, INC.

Inventor： Alexander Julian Tribble ,  Robert Barry ,  Jeremy Boynes ,  Igor Spac

IPC: H04L29/06

Abstract: Techniques are described for delivering one or more first resources of a page using a first security level, and delivering one or more second resources of a page using a second, different security level. A page is generated to include elements identifying resources to be presented in the page, and the elements may include security level identifiers indicating a security level to be employed in communicating the corresponding resource. Each security level may be associated with a set of security measures that ensure the integrity or confidentiality of the resource while it is communicated. The use of multiple security levels to communicate multiple resources may provide appropriate security for each resource, reducing latency and overhead in page generation, communication, and rendering.

公开(公告)号：US10574443B2

公开(公告)日：2020-02-25

申请号：US15045113

申请日：2016-02-16

Applicant: Amazon Technologies, Inc.

Inventor： Alexander Julian Tribble ,  Robert Michael Barry ,  Jeremy Boynes ,  Melissa Elaine Davis ,  Igor Spac

IPC: H04L9/08 ,  H04L29/06 ,  G06F21/60

Abstract: A computing device can obtain a session key for encrypting data that is communicated between a client device and the computing device. The computing device can receive, from the client device, an encrypted request for data. The encrypted request can be encrypted by the client device using the session key. The data requested can be stored on a second computing device. The computing device can send, to the second computing device, a copy of the session key and the encrypted request for data. The second computing device can decrypt the data using the session key and can also encrypt data responsive to the request using the session key.

公开(公告)号：US11159498B1

公开(公告)日：2021-10-26

申请号：US15927954

申请日：2018-03-21

Applicant: Amazon Technologies, Inc.

Inventor： Cristinel Casu ,  Dan Mutescu ,  Armen Bearj Shimoon ,  Igor Spac ,  Cristi Ursachi

IPC: H04L29/06 ,  H04L9/08

Abstract: A system and method for providing data such as credentials to a third-party service while protecting the data from exposure to intermediate services. The system receives a first request containing encrypted data, generates a second request by replacing the encrypted data from the first request with unencrypted data, and transmits the second request to the third-party service.

公开(公告)号：US10887291B2

公开(公告)日：2021-01-05

申请号：US15382579

申请日：2016-12-16

Applicant: Amazon Technologies, Inc.

Inventor： Melissa Elaine Davis ,  Gavin Richard Jewell ,  Brady Montz ,  Alec Peterson ,  Igor Spac ,  Alex Jennifer Tribble ,  Radu Weiss

IPC: H04L29/06 ,  H04L9/32 ,  H04L29/08

Abstract: A computing resource service provider may operate a secure proxy fleet within a content delivery network. The secure proxy fleet may protect sensitive data communicated between a client device and a backend service over one or more networks, for example, over the content delivery network to a computing resource service provider environment. The secure proxy fleet may protect sensitive data by encrypting the sensitive data before it is forwarded to a destination.

公开(公告)号：US20180176193A1

公开(公告)日：2018-06-21

申请号：US15382579

申请日：2016-12-16

Applicant: Amazon Technologies, Inc.

Inventor： Melissa Elaine Davis ,  Gavin Richard Jewell ,  Brady Montz ,  Alec Peterson ,  Igor Spac ,  Alexander Julian Tribble ,  Radu Weiss

IPC: H04L29/06 ,  H04L29/08 ,  H04L9/32

Abstract: A computing resource service provider may operate a secure proxy fleet within a content delivery network. The secure proxy fleet may protect sensitive data communicated between a client device and a backend service over one or more networks, for example, over the content delivery network to a computing resource service provider environment. The secure proxy fleet may protect sensitive data by encrypting the sensitive data before it is forwarded to a destination.

公开(公告)号：US20180176187A1

公开(公告)日：2018-06-21

申请号：US15382571

申请日：2016-12-16

Applicant: Amazon Technologies, Inc.

Inventor： Melissa Elaine Davis ,  Gavin Richard Jewell ,  Brady Montz ,  Alec Peterson ,  Igor Spac ,  Alexander Julian Tribble ,  Radu Weiss

IPC: H04L29/06

Abstract: A computing resource service provider may operate a secure proxy fleet responsible for directing network traffic to one or more backend services. The network traffic may be received over a cryptographically protected communications session at a secure proxy device. The secure proxy device may detect sensitive data included in the network traffic and encrypt the sensitive data to protect the sensitive data during transmission to the backend service.

公开(公告)号：US20160173280A1

公开(公告)日：2016-06-16

申请号：US15045113

申请日：2016-02-16

Applicant: Amazon Technologies, Inc.

Inventor： Alexander Julian Tribble ,  Robert Michael Barry ,  Jeremy Boynes ,  Melissa Elaine Davis ,  Igor Spac

IPC: H04L9/08 ,  G06F21/60 ,  H04L29/06

CPC classification number: H04L9/0827 ,  G06F21/60 ,  G06F21/606 ,  H04L9/0838 ,  H04L63/0435 ,  H04L63/067 ,  H04L2209/76

Abstract: A computing device can obtain a session key for encrypting data that is communicated between a client device and the computing device. The computing device can receive, from the client device, an encrypted request for data. The encrypted request can be encrypted by the client device using the session key. The data requested can be stored on a second computing device. The computing device can send, to the second computing device, a copy of the session key and the encrypted request for data. The second computing device can decrypt the data using the session key and can also encrypt data responsive to the request using the session key.

Abstract translation: 计算设备可以获得用于加密在客户端设备和计算设备之间传送的数据的会话密钥。 计算设备可以从客户端设备接收加密的数据请求。 加密请求可以由客户端设备使用会话密钥进行加密。 所请求的数据可以存储在第二计算设备上。 计算设备可以向第二计算设备发送会话密钥的副本和加密的数据请求。 第二计算设备可以使用会话密钥解密数据，并且还可以使用会话密钥来响应于该请求对数据进行加密。