公开(公告)号：US20180004572A1

公开(公告)日：2018-01-04

申请号：US15199490

申请日：2016-06-30

Applicant: Amazon Technologies, Inc.

Inventor： Timothy Allen Wagner ,  Marc John Brooker ,  Ajay Nair ,  Derek Steven Manwaring

IPC: G06F9/50 ,  H04L29/08 ,  G06F9/48

CPC classification number: H04L67/303 ,  G06F9/468 ,  H04L67/1004

Abstract: Systems and methods are described for managing cross-account access to tasks on an on-demand code execution environment or other distributed code execution environment. Such environments utilize pre-initialized virtual machine instances to enable execution of user-specified code in a rapid manner, without delays typically caused by initialization of the virtual machine instances. However, to ensure security, the code of different users is generally maintained separately, and executed on separate virtual machines. Embodiments described herein enable users of a first account to execute code of a second account, without gaining access to the code itself and while maintaining the privacy and security of each account. Specifically, aliases for a task of a first account can be created on a task of a second account, and used to invoke that task on behalf of the first account. Aliases may also allow users to customize how the task is executed.

公开(公告)号：US20180004553A1

公开(公告)日：2018-01-04

申请号：US15199613

申请日：2016-06-30

Applicant: Amazon Technologies, Inc.

Inventor： Timothy Allen Wagner ,  Marc John Brooker ,  Ajay Nair ,  Derek Steven Manwaring

IPC: G06F9/455 ,  G06F9/50 ,  G06F9/54

CPC classification number: G06F9/5077 ,  G06F9/485 ,  G06F9/5072 ,  G06F2209/5011

Abstract: Systems and methods are described for utilizing cross-account access to tasks on an on-demand code execution environment or other distributed code execution environment to implement an application programming interface (API) on a network-accessible service. An on-demand code execution environment can utilize pre-initialized virtual machine instances to enable execution of user-specified code in a rapid manner, without delays typically caused by initialization of the virtual machine instances. While users may generally execute their own code, the present application enables code of a first user to be executed by a second user, while maintaining the privacy and security of the code and associated accounts. Further, the present application enables a set of tasks to be grouped together as an API, enabling any user to create an API for a service, while the on-demand code execution environment manages execution of the tasks and allocation of underlying computing resources.

公开(公告)号：US09830449B1

公开(公告)日：2017-11-28

申请号：US14971859

申请日：2015-12-16

Applicant: Amazon Technologies, Inc.

Inventor： Timothy Allen Wagner

IPC: G06F21/00 ,  G06F21/53 ,  G06F9/455 ,  G06F21/62

CPC classification number: G06F21/53 ,  G06F9/45508 ,  G06F9/45558 ,  G06F9/5005 ,  G06F9/5077 ,  G06F21/6281 ,  G06F2009/45587 ,  G06F2221/034

Abstract: Systems and methods are described for determining a location in an on-demand code execution environment to execute user-specified code. Virtual machines can be utilized to isolate different executions of code from one another. However, virtual machines require additional computing resources to implement, and may slow code executions. This disclosure enables multiple items of code, potentially associated with different users, to be executed on a single virtual machine instance or other device. Specifically, the present disclosure enables the generation of a risk profile for an item of code, which can be used to determine the security or privacy risk that would occur by executing the code on a device. By comparing the risk profiles of a given item of code to other items of code executing on a device, the on-demand code execution environment can selectively group code executions, thus increasing the efficiency of the system while maintaining security and privacy.

公开(公告)号：US09830175B1

公开(公告)日：2017-11-28

申请号：US14971977

申请日：2015-12-16

Applicant: Amazon Technologies, Inc.

Inventor： Timothy Allen Wagner

IPC: G06F9/455 ,  G06F9/50

CPC classification number: G06F9/5077 ,  G06F9/44521 ,  G06F9/45558 ,  G06F2009/45562 ,  G06F2009/4557

Abstract: Systems and methods are described for predictively managing calls to tasks on an on-demand code execution environment. Specifically, a task profile can be utilized to predict that a call to a task will be followed by transmission of information to an auxiliary service. Thereafter, the on-demand code execution environment can select a virtual machine to execute the task based, for example, on the speed or reliability of a communication channel between the selected virtual machine and the auxiliary service. If execution of the task does cause transmission of information to the auxiliary service, the information can be transmitted via the communication channel, thereby increasing the speed or reliability of the transmission.

公开(公告)号：US20170286143A1

公开(公告)日：2017-10-05

申请号：US15085902

申请日：2016-03-30

Applicant: Amazon Technologies, Inc.

Inventor： Timothy Allen Wagner ,  Marc John Brooker ,  Ajay Nair

IPC: G06F9/455 ,  G06F12/08

Abstract: Systems and methods are described for transforming a data set within a data source into a series of task calls to an on-demand code execution environment or other distributed code execution environment. Such environments utilize pre-initialized virtual machine instances to enable execution of user-specified code in a rapid manner, without delays typically caused by initialization of the virtual machine instances, and are often used to process data in near-real time, as it is created. However, limitations in computing resources may inhibit a user from utilizing an on-demand code execution environment to simultaneously process a large, existing data set. The present application provides a task generation system that can iteratively retrieve data items from an existing data set and generate corresponding task calls to the on-demand computing environment, while ensuring that at least one task call for each data item within the existing data set is made.

公开(公告)号：US20170177391A1

公开(公告)日：2017-06-22

申请号：US15450795

申请日：2017-03-06

Applicant: Amazon Technologies, Inc.

Inventor： Timothy Allen Wagner ,  Sean Philip Reque

IPC: G06F9/455 ,  G06F9/48 ,  H04L29/08 ,  G06F11/36

CPC classification number: G06F9/45533 ,  G06F9/45558 ,  G06F9/4881 ,  G06F11/3668 ,  G06F2009/45562 ,  G06F2009/4557 ,  G06F2009/45575 ,  G06F2009/45591 ,  H04L67/10

Abstract: A system for providing a stateful virtual compute system is provided. The system may be configured to maintain a plurality of virtual machine instances. The system may be further configured to receive a request to execute a program code and select a virtual machine instance to execute the program code on the selected virtual machine instance. The system may further associate the selected virtual machine instance with shared resources and allow program codes executed in the selected virtual machine instance to access the shared resources.

公开(公告)号：US09652306B1

公开(公告)日：2017-05-16

申请号：US14869879

申请日：2015-09-29

Applicant: Amazon Technologies, Inc.

Inventor： Timothy Allen Wagner ,  Ajay Nair ,  Marc John Brooker ,  Scott Daniel Wisniewski

IPC: G06F3/00 ,  G06F9/44 ,  G06F9/46 ,  G06F13/00 ,  G06F9/54 ,  G06F9/455

CPC classification number: G06F9/542 ,  G06F9/45508 ,  G06F9/45533 ,  G06F9/45558 ,  G06F9/547 ,  G06F11/3006 ,  G06F11/301 ,  G06F2009/45562 ,  G06F2009/4557 ,  G06F2009/45575 ,  H04L41/06

Abstract: A service manages a plurality of virtual machine instances for low latency execution of user codes. The service can provide the capability to execute user code in response to events triggered on various event sources and initiate execution of other control functions to improve the code execution environment in response to detecting errors or unexpected execution results. The service may maintain or communicate with a separate storage area for storing code execution requests that were not successfully processed by the service. Requests stored in such a storage area may subsequently be re-processed by the service.

公开(公告)号：US09537788B2

公开(公告)日：2017-01-03

申请号：US14562601

申请日：2014-12-05

Applicant: Amazon Technologies, Inc.

Inventor： Sean Philip Reque ,  Derek Steven Manwaring ,  Dylan Chandler Thomas ,  Timothy Allen Wagner ,  Xin Zhao

IPC: G06F9/50 ,  G06F9/455 ,  G06F9/445 ,  H04L12/911

CPC classification number: G06F9/5077 ,  G06F9/445 ,  G06F9/45533 ,  G06F9/50 ,  G06F2009/45562 ,  H04L43/0876 ,  H04L47/70 ,  H04L47/808

Abstract: A system for providing automatic resource resizing is provided. The system may be configured to maintain a plurality of virtual machine instances. The system may be further configured to receive a request to execute a program code and allocate computing resources for executing the program code on one of the virtual machine instances. The amount of resources allocated for executing the program code may be specified by the request and adjusted as needed.

Abstract translation: 提供了一种用于提供自动资源调整大小的系统。 该系统可以被配置为维护多个虚拟机实例。 该系统还可以被配置为接收执行程序代码的请求，并且分配用于在虚拟机实例之一上执行程序代码的计算资源。 分配用于执行程序代码的资源量可以由请求指定并根据需要进行调整。

公开(公告)号：US20160239318A1

公开(公告)日：2016-08-18

申请号：US15136602

申请日：2016-04-22

Applicant: Amazon Technologies, Inc.

Inventor： Timothy Allen Wagner

IPC: G06F9/455 ,  G06F11/30 ,  G06F9/54 ,  H04L12/24

CPC classification number: G06F9/542 ,  G06F9/45508 ,  G06F9/45533 ,  G06F9/45558 ,  G06F9/547 ,  G06F11/3006 ,  G06F11/301 ,  G06F2009/45562 ,  G06F2009/4557 ,  G06F2009/45575 ,  H04L41/06

Abstract: A service manages a plurality of virtual machine instances for low latency execution of user codes. The service can provide the capability to execute user code in response to events triggered on an auxiliary service to provide implicit and automatic rate matching and scaling between events being triggered on the auxiliary service and the corresponding execution of user code on various virtual machine instances. An auxiliary service may be configured as an event triggering service to detect events and generate event messages for execution of the user codes. The service can request, receive, or poll for event messages directly from the auxiliary service or via an intermediary message service. Event messages can be rapidly converted to requests to execute user code on the service. The time from processing the event message to initiating a request to begin code execution is less than a predetermined duration, for example, 100 ms.

Abstract translation: 服务管理多个虚拟机实例，用于低延迟执行用户代码。 该服务可以提供响应于在辅助服务上触发的事件执行用户代码的能力，以提供在辅助服务上触发的事件之间的隐式和自动速率匹配和缩放以及各种虚拟机实例上的相应执行用户代码。 辅助服务可以被配置为事件触发服务以检测事件并生成用于执行用户代码的事件消息。 该服务可以直接从辅助服务或通过中间消息服务请求，接收或轮询事件消息。 可以将事件消息快速转换为在服务上执行用户代码的请求。 从处理事件消息到开始执行代码的请求的时间小于预定的持续时间，例如100ms。

公开(公告)号：US20160092252A1

公开(公告)日：2016-03-31

申请号：US14502992

申请日：2014-09-30

Applicant: Amazon Technologies, Inc.

Inventor： Timothy Allen Wagner

IPC: G06F9/455

CPC classification number: G06F9/45533 ,  G06F9/445 ,  G06F9/45558 ,  G06F9/50 ,  G06F2009/45562 ,  G06F2009/4557 ,  G06F2009/45575

Abstract: A service manages a plurality of virtual machine instances for low latency execution of user codes. The plurality of virtual machine instances can be configured based on a predetermined set of configurations. One or more containers may be created within the virtual machine instances. In response to a request to execute user code, the service identifies a pre-configured virtual machine instance suitable for executing the user code. The service can allocate the identified virtual machine instance to the user, create a new container within an instance already allocated to the user, or re-use a container already created for execution of the user code. When the user code has not been activated for a time-out period, the service can invalidate allocation of the virtual machine instance destroy the container. The time from receiving the request to beginning code execution is less than a predetermined duration, for example, 100 ms.

Abstract translation: 服务管理多个虚拟机实例，用于低延迟执行用户代码。 可以基于预定的一组配置来配置多个虚拟机实例。 可以在虚拟机实例内创建一个或多个容器。 响应于执行用户代码的请求，该服务识别适合于执行用户代码的预配置的虚拟机实例。 该服务可以将识别的虚拟机实例分配给用户，在已经分配给用户的实例中创建新的容器，或者重新使用已经创建用于执行用户代码的容器。 当用户代码没有被激活超时时间时，服务可以使虚拟机实例的分配无效销毁容器。 从接收请求到开始执行代码的时间小于预定的持续时间，例如100ms。