-
公开(公告)号:US20200092286A1
公开(公告)日:2020-03-19
申请号:US16133494
申请日:2018-09-17
Applicant: Rubrik, Inc.
Inventor: Seungyeop Han , Shrihari Kalkar
Abstract: A data management and storage (DMS) cluster of peer DMS nodes provides domain shares and authentication for different domains. Each DMS node includes a domain manager and multiple containers, each container including a domain share. Each container associated with a domain may provide an authentication service for authenticating users for a different domain to access domain shares of the domain, such as by contacting a domain controller of a compute infrastructure associated with the domain. The domain manager controls the creation and deletion of containers and their domain shares. The domain manager also provides a proxy service for the containers for communication with client devices of different domains external to the DMS cluster.
-
公开(公告)号:US20190384929A1
公开(公告)日:2019-12-19
申请号:US16453274
申请日:2019-06-26
Applicant: Rubrik, Inc.
Inventor: Matthew Edward Noe , Seungyeop Han , Arohi Kumar
Abstract: A data management and storage (DMS) cluster of peer DMS nodes manages resources of a multi-tenant environment. The DMS cluster provides an authorization framework that provides user access which is scoped to the resources within a tenant organization and the privileges of the user within the organization. To authorize an action on a resource by a user, the DMS cluster determines determine user authorizations associated with the user defining privileges of the user on the resources of the multi-tenant environment, and organization authorizations associated defining resources of the multi-tenant environment that belong to the organization. The DMS cluster authorizes the action when the user authorizations and organizations authorized indicate that the action on the resource is authorized.
-
公开(公告)号:US20230379317A1
公开(公告)日:2023-11-23
申请号:US18212651
申请日:2023-06-21
Applicant: Rubrik, Inc.
Inventor: Seungyeop Han , Hao Wu , Xiaopeng Xu , Tiffany Lin
IPC: H04L9/40
CPC classification number: H04L63/0815 , H04L63/104 , H04L63/101 , H04L63/083
Abstract: In some examples, a centralized management system comprises a central management console including a federated login system embedded in the centralized management system. The federated login system includes at least one processor configured to perform operations in a method of federated login and authorization allowing a user of the centralized management system to manage connected clusters or products without performing an individual cluster or product login.
-
公开(公告)号:US10803193B2
公开(公告)日:2020-10-13
申请号:US16392908
申请日:2019-04-24
Applicant: Rubrik, Inc.
Inventor: Matthew Edward Noe , Seungyeop Han , Arohi Kumar
Abstract: A data management and storage (DMS) duster of peer DMS nodes manages resources of a multi-tenant environment. The DMS cluster provides an authorization framework that provides user access which is scoped to the resources within a tenant organization and the privileges of the user within the organization. To authorize an action on a resource by a user, the DMS cluster determines determine user authorizations associated with the user defining privileges of the user on the resources of the multi-tenant environment, and organization authorizations associated defining resources of the multi-tenant environment that belong to the organization. The DMS cluster authorizes the action when the user authorizations and organizations authorized indicate that the action on the resource is authorized.
-
公开(公告)号:US20190384928A1
公开(公告)日:2019-12-19
申请号:US16392908
申请日:2019-04-24
Applicant: Rubrik, Inc.
Inventor: Matthew Edward Noe , Seungyeop Han , Arohi Kumar
Abstract: A data management and storage (DMS) duster of peer DMS nodes manages resources of a multi-tenant environment. The DMS cluster provides an authorization framework that provides user access which is scoped to the resources within a tenant organization and the privileges of the user within the organization. To authorize an action on a resource by a user, the DMS cluster determines determine user authorizations associated with the user defining privileges of the user on the resources of the multi-tenant environment, and organization authorizations associated defining resources of the multi-tenant environment that belong to the organization. The DMS cluster authorizes the action when the user authorizations and organizations authorized indicate that the action on the resource is authorized.
-
Patent Agency Ranking
公开(公告)号:US20240031353A1
公开(公告)日:2024-01-25
申请号:US17871308
申请日:2022-07-22
Applicant: Rubrik, Inc.
Inventor: Anish Jhaveri , Anshul Mohan Gupta , Chak Fai Yuen , Hao Wu , Sandeep Kanyal , Seungyeop Han , Shivam Rajpal , Sriharshitha Velivelli
IPC: H04L9/40
CPC classification number: H04L63/0823
Abstract: A method for establishing secure connectivity is described. The method may include transmitting, to one or more host nodes of a data management system (DMS), an indication of a backup service configuration that includes a public key certificate associated with a first cluster of storage nodes in the DMS and a root certificate associated with a certificate authority. The method may further include establishing a primary connection between the first cluster and the host nodes using the public key certificate. The method may further include obtaining, by a second cluster of storage nodes in the DMS, a certificate chain signed by the certificate authority. The method may further include establishing a secondary connection between the second cluster and the host nodes in response to the first cluster becoming disconnected from the host nodes, where the secondary connection is established using the certificate chain.
-
公开(公告)号:US10756888B2
公开(公告)日:2020-08-25
申请号:US15817719
申请日:2017-11-20
Applicant: RUBRIK, INC.
Inventor: Seungyeop Han
Abstract: Methods and systems for securely deleting electronic files and other data stored within a data storage system are described. Each file or separately deletable portion of data stored within the data storage system may be encrypted using a distinct data encryption key. When the file is selected for deletion, both the file and the corresponding data encryption key may be deleted. The data encryption key used for encrypting the file may be encrypted using a key encryption key. If the file and the corresponding data encryption key are both stored using an SSD, then the key encryption key may be stored using a HDD. The ability to physically delete or directly overwrite the key encryption key stored within the HDD may ensure that the file and the data encryption key stored using the SSD are no longer cryptographically recoverable.
-
公开(公告)号:US10380369B1
公开(公告)日:2019-08-13
申请号:US16008989
申请日:2018-06-14
Applicant: Rubrik, Inc.
Inventor: Matthew Noe , Seungyeop Han , Arohi Kumar
Abstract: A data management and storage (DMS) cluster of peer DMS nodes manages resources of a multi-tenant environment. The DMS cluster provides an authorization framework that provides user access which is scoped to the resources within a tenant organization and the privileges of the user within the organization. To authorize an action on a resource by a user, the DMS cluster determines determine user authorizations associated with the user defining privileges of the user on the resources of the multi-tenant environment, and organization authorizations associated defining resources of the multi-tenant environment that belong to the organization. The DMS cluster authorizes the action when the user authorizations and organizations authorized indicate that the action on the resource is authorized.
-
公开(公告)号:US20250141873A1
公开(公告)日:2025-05-01
申请号:US18385275
申请日:2023-10-30
Applicant: Rubrik, Inc.
Inventor: Xiaoqing Tao , Wesley Pang , Michelle Nguyen , Nathan Narasimhan , Hao Wu , Shrihari Kalkar , Michael Wronski , Haijin He , Barsa Tandukar , Seungyeop Han , Alex Medovar , Raghuram Janakiraman
IPC: H04L9/40
Abstract: A data management system (DMS) may receive an indication of a configuration for a quorum-based authorization (QAuth) policy that controls interactions between two or more users and a security cloud service of the DMS. The configuration may include a policy scope for the QAuth policy, protected actions that trigger the QAuth policy, and compute objects to which the QAuth policy is assigned. The DMS may receive an instruction to assign a set of role-based access control (RBAC) permissions associated with the QAuth policy to a first user. The DMS may receive a request to perform a protected action on at least one compute object to which the QAuth policy is assigned. In response to the request, the DMS may trigger a two-person rule (TPR) enforcement mechanism of the QAuth policy by requesting approval from the first user with the set of RBAC permissions.
-
公开(公告)号:US20250103809A1
公开(公告)日:2025-03-27
申请号:US18371344
申请日:2023-09-21
Applicant: Rubrik, Inc.
Inventor: Seungyeop Han , Alex Rand
IPC: G06F40/284 , H04L51/18 , H04L51/216
Abstract: A method for data management is described. The method includes obtaining data associated with a communication session between a user and a communication service of a data management system (DMS). The method further includes generating a prompt that includes some or all of the data associated with the communication session. The method further includes selecting a large language model (LLM) from a set of LLMs available to the communication service based on a token size of the prompt and a token window size of the LLM. The method further includes transmitting the prompt to the selected LLM and receiving a response from the selected LLM. The method further includes using data from the response in the communication session. In some implementations, if the token size of the prompt exceeds the token window size of the LLM, the DMS may select a different LLM or modify the contents of the prompt.
-
-
-
-
-
-
-
-
-
Search Results
20
records
(took 0.012 seconds)
