公开(公告)号：US20210064482A1

公开(公告)日：2021-03-04

申请号：US16558606

申请日：2019-09-03

Applicant: EMC IP Holding Company, LLC

Inventor： Jehuda Shemer ,  Alex Solan

IPC: G06F11/14 ,  G06F16/178 ,  G06F16/11 ,  G06F16/17

Abstract: An agent executing on a processor at a data production site detects filesystem events and creates a list of bookmarks describing the filesystem events in user-understandable strings. Each bookmark is associated with metadata about the filesystem event that includes a timestamp and a point-in-time (PiT) snapshot of the filesystem at the time of occurrence of the event. The bookmarks and associated metadata are transferred to a recovery site and the bookmark set is recorded in storage. The storage can be searched for bookmarks in the set that reference the filename of a file of interest, and the file recovered and replicated using an associated PiT.

公开(公告)号：US10929389B2

公开(公告)日：2021-02-23

申请号：US16170229

申请日：2018-10-25

Applicant: EMC IP Holding Company LLC

Inventor： Kfir Wolfson ,  Jehuda Shemer ,  Assaf Natanzon

IPC: G06F16/23 ,  G06F16/901

Abstract: Data provenance techniques are provided using distributed ledgers. An exemplary method comprises obtaining an indication of a data operation that operates on a data item, wherein the data operation comprises an operation type; creating an operation transaction in a first data ledger for the data operation, wherein the operation transaction comprises an identifier of the operation type, an identifier of an operator entity that performs the data operation; an identifier of the data item, and a timestamp of the data operation; and maintaining a provenance graph comprising a provenance graph transaction for a plurality of data operations in the first data ledger and/or a second data ledger, wherein a given provenance graph transaction comprises an identifier of source data items used to create the data item associated with the given provenance graph transaction and sources of the source data items, wherein the first data ledger and/or the second data ledger are used to determine an origin and/or recipients of one or more data items.

公开(公告)号：US10895988B2

公开(公告)日：2021-01-19

申请号：US16372928

申请日：2019-04-02

Applicant: EMC IP Holding Company LLC

Inventor： Jehuda Shemer ,  Arieh Don

IPC: G06F3/06 ,  H04L29/08 ,  H04L12/841

Abstract: A method, system, and computer program product for measuring latency in storage area networks comprising receiving a command from a node at a first time by a target in a storage area network, evaluating the command by the target, and returning a reply to the node from the target at a second time, wherein a difference between the second time and the first time is less than a time period indicative of a processing delay in the target, wherein the reply is considered a good status reply.

公开(公告)号：US10824375B1

公开(公告)日：2020-11-03

申请号：US15795713

申请日：2017-10-27

Applicant: EMC IP Holding Company LLC

Inventor： Assaf Natanzon ,  Ran Goldschmidt ,  Jehuda Shemer

IPC: G06F16/20 ,  G06F3/06 ,  G06F16/11 ,  G06F9/455

Abstract: Data protection appliances are provided for the protection of at least one virtual machine. A plurality of snapshots of at least one virtual machine are obtained. Each snapshot comprises (i) production data of the virtual machine, and (ii) a fine granularity data structure for changed data that is maintained in volatile memory and records metadata for input/output (I/O) operations corresponding to changed data. A metadata differential is generated by aggregating, for example, the fine granularity data structures for any time intervals since the prior snapshot that were flushed to a storage volume and included in the prior snapshot. The storage volume is replicated using the metadata differential. The snapshots optionally further comprise a coarse granularity bit map for changed data indicating whether corresponding blocks of data have changed.

公开(公告)号：US10684922B2

公开(公告)日：2020-06-16

申请号：US16035185

申请日：2018-07-13

Applicant: EMC IP Holding Company LLC

Inventor： Jehuda Shemer ,  Felix Shvaiger ,  Arieh Don ,  Anton Kucherov

IPC: G06F12/00 ,  G06F11/14 ,  G06F11/16 ,  G06F3/06 ,  H03M7/30

Abstract: Systems and methods for replicating data are disclosed. Data stored in a compressed form on a source storage array or device can be read and transmitted to a destination storage array or device. The replication of data is achieved without having to decompress the data.

公开(公告)号：US20200119911A1

公开(公告)日：2020-04-16

申请号：US16158689

申请日：2018-10-12

Applicant: EMC IP Holding Company LLC

Inventor： Jehuda Shemer ,  Assaf Natanzon

IPC: H04L9/08 ,  G06F17/30 ,  H04L9/30 ,  H04L9/14

Abstract: A method and system for securely replicating encrypted deduplicated storages. Specifically, the method and system disclosed herein entail the replication and migration of encrypted data between storage systems that support deduplication. More specifically, a first encrypted data, which may have been encrypted using a first public cryptographic key and consolidated on a source storage system, may be translated into an interim (yet still encrypted) state using a first split private cryptographic key. Thereafter, using a compound conversion key, the interim state data may be further translated into a second encrypted data, which may be characterized as being encrypted by a second public cryptographic key. Therefore, substantively, the method and system disclosed herein may be directed to the translation of encrypted data from one encryption scheme to another while in-flight from a source storage system to a target storage system.

公开(公告)号：US20200028863A1

公开(公告)日：2020-01-23

申请号：US16039503

申请日：2018-07-19

Applicant: EMC IP Holding Company LLC

Inventor： Kfir Wolfson ,  Jehuda Shemer ,  Aviram Fireberger ,  Amos Zamir ,  Oron Golan

IPC: H04L29/06 ,  G06F9/54

Abstract: A tracing mechanism is provided for analyzing session-based attacks. An exemplary method comprises: detecting a potential attack associated with a session from a potential attacker based on predefined anomaly detection criteria; adding a tracing flag identifier to a response packet; sending a notification to a cloud provider of the potential attack, wherein the notification comprises the tracing flag identifier; and sending the response packet to the potential attacker, wherein, in response to receiving the response packet with the tracing flag identifier, the cloud provider: determines a source of the potential attack based on a destination of the response packet; forwards the response packet to the potential attacker based on the destination of the response packet; and monitors the determined source to evaluate the potential attack. The response packet is optionally delayed by a predefined time duration and/or until the cloud provider has acknowledged receipt of the notification.

公开(公告)号：US20200019470A1

公开(公告)日：2020-01-16

申请号：US16035221

申请日：2018-07-13

Applicant: EMC IP Holding Company LLC

Inventor： Kfir Wolfson ,  Assaf Natanzon ,  Jehuda Shemer

IPC: G06F11/14

Abstract: A data protection system configured to backup a time series database is provided. The data protection system may be integrated with or have access to consolidation policies of the time series database. The backup policy and backup retention policy are set by monitoring the consolidation policy and adjusting the backup policy to ensure that the data in the time series database is protected prior to being downscaled, discarded or otherwise consolidated.

公开(公告)号：US10146675B1

公开(公告)日：2018-12-04

申请号：US15393621

申请日：2016-12-29

Applicant: EMC IP Holding Company LLC

Inventor： Jehuda Shemer ,  Amit Lieberman ,  Assaf Natanzon ,  Kfir Wolfson

IPC: G06F8/656 ,  G06F11/36 ,  H04L29/08

Abstract: An apparatus in one embodiment comprises at least one processing platform including a plurality of processing devices. The processing platform implements compute services for users and further comprises a copy data manager and an upgrade controller. A data version repository stores data versions for each of one or more of the compute services implemented by the processing platform. One or more of the data versions are stored in association with respective sets of recorded incoming traffic of the corresponding compute service. The upgrade controller is configured to upgrade at least a portion of an application from a first code version to a second code version. In conjunction with the upgrade of the application, automated testing of the upgraded application is carried out by an automated code testing system using the given data version and its associated set of recorded incoming traffic.

公开(公告)号：US10114581B1

公开(公告)日：2018-10-30

申请号：US15390999

申请日：2016-12-27

Applicant: EMC IP Holding Company LLC

Inventor： Assaf Natanzon ,  Jehuda Shemer ,  Leehod Baruch ,  Ron Bigman ,  Amit Lieberman

IPC: G06F3/06

Abstract: A storage system comprises a production site in operable communication with a replication site, and an object store, comprising a plurality of data objects associated with data stored in at least one data storage entity of the production site, disposed at the replication site. The replication site is configured to generate a virtual access point in time (PIT) based at least in part on the plurality of data objects, by providing a plurality of nodes in operable communication with the storage system, where each respective node is configured to, substantially concurrently, perform a MapReduce operation to generate a respective first set of disk objects based on the plurality of data objects, and to create a respective set of metadata objects. The first set of disk objects and the first set of metadata objects are merged together into a virtual access PIT from each of the plurality of parallel nodes.