公开(公告)号：US10565534B2

公开(公告)日：2020-02-18

申请号：US14538714

申请日：2014-11-11

Applicant: Amazon Technologies, Inc.

Inventor： Frederik Christophe Delacourt ,  Quan Binh To ,  Christopher Whitaker ,  Richard Curtis Edwards, Jr. ,  Julien Jacques Ellie ,  Zachary Thomas Crowell ,  Benjamin David Newman

IPC: G06Q10/00 ,  G06Q10/06 ,  G06F8/65 ,  G06F8/71

Abstract: A service provider system may implement an enterprise catalog service that manages software products and portfolios of software products on behalf of service provider customer organizations. Through an administrator interface of the service, a customer organization administrator may create constraints on the use of the software products, and each constraint may include one or more rules about how the products can be launched. These may include environmental constraints (specifying a region in which a product launches), restrictions on input parameter values (including the types of resource instances on which a product can be launched), quotas (controlling the number of product installations), or billing constraints. Constraints may be applied on a user-to-product arc or on a portfolio-to-product arc. Constraints may be stored as objects, and reference to those objects may be added to product or portfolio objects. Constraints may be shared across object versions, portfolios, or service provider customer accounts.

公开(公告)号：US20190034243A1

公开(公告)日：2019-01-31

申请号：US16148921

申请日：2018-10-01

Applicant: Amazon Technologies, Inc.

Inventor： Reto Kramer ,  Christopher Whitaker ,  Adam M. Thomas ,  Richard C. Edwards, JR.

IPC: G06F9/50 ,  G06F9/4401 ,  G06F8/61

Abstract: Systems and methods are described for bootstrapping an application with metadata specified in a template. The template specifies a stack of resources that will be used to execute an application and also includes a set of metadata for customizing the resources and the application. When the system receives the template, it instantiates a compute node which will execute the application. The compute node may contain at least one initialization script for bootstrapping the application with the metadata contained in the template. This functionality allows users to bootstrap the application running on the compute node with data from within the template that was used to create the stack of resources for executing the application. In this manner, metadata, configuration files, package names and versions can be passed by the application owner to the remote compute node.

公开(公告)号：US20190007526A1

公开(公告)日：2019-01-03

申请号：US16105449

申请日：2018-08-20

Applicant: Amazon Technologies, Inc.

Inventor： Reto Kramer ,  Daniel Lee Osiecki ,  Nishanth Shankaran ,  Venkates P. Balakrishnan ,  Geoffrey Scott Pare ,  Blake Meike ,  Christopher Whitaker

IPC: H04L29/08 ,  H04L12/24

Abstract: A resource provisioning service allows users to provision multiple, different network resources in an atomic manner and with a single call to a resource provisioning service. In some instances, the multiple, different network resources comprise individual types of resources that form a portion of one or more cloud-computing platforms. For instance, one or more entities may host and operate a cloud-computing platform that includes different types of network resources, such a storage service, a load balancing service, a compute service, a security service, or any other similar or different type of network-accessible service.

公开(公告)号：US11882154B2

公开(公告)日：2024-01-23

申请号：US15162323

申请日：2016-05-23

Applicant: Amazon Technologies, Inc.

Inventor： Avinash Jaisinghani ,  Reto Kramer ,  Christopher Whitaker ,  Venkates P. Balakrishnan ,  Prashant Jayaraman ,  Richard Curtis Edwards, Jr.

IPC: H04L29/06 ,  H04L9/40 ,  H04L41/0806

CPC classification number: H04L63/20 ,  H04L41/0806 ,  H04L63/06 ,  H04L63/0823 ,  H04L63/10 ,  H04L63/102

Abstract: Systems and methods are described for enabling users to model security resources and user access keys as resources in a template language. The template can be used to create and update a stack of resources that will provide a network-accessible service. The security resources and access keys can be referred to in the template during both stack creation process and the stack update process. The security resources can include users, groups and policies. Additionally, users can refer to access keys in the template as dynamic parameters without any need to refer to the access keys in plaintext. The system securely stores access keys within the system and allows for templates to refer to them once defined. These key references can then be passed within a template to resources that need them as well as passing them on securely to resources like server instances through the use of the user-data field.

公开(公告)号：US11758006B2

公开(公告)日：2023-09-12

申请号：US16105449

申请日：2018-08-20

Applicant: Amazon Technologies, Inc.

Inventor： Reto Kramer ,  Daniel Lee Osiecki ,  Nishanth Shankaran ,  Venkates P. Balakrishnan ,  Geoffrey Scott Pare ,  Blake Meike ,  Christopher Whitaker

IPC: H04L67/00 ,  H04L41/084 ,  H04L67/1097

CPC classification number: H04L67/34 ,  H04L41/0843 ,  H04L67/1097

Abstract: A resource provisioning service allows users to provision multiple, different network resources in an atomic manner and with a single call to a resource provisioning service. In some instances, the multiple, different network resources comprise individual types of resources that form a portion of one or more cloud-computing platforms. For instance, one or more entities may host and operate a cloud-computing platform that includes different types of network resources, such a storage service, a load balancing service, a compute service, a security service, or any other similar or different type of network-accessible service.

公开(公告)号：US11244261B2

公开(公告)日：2022-02-08

申请号：US14538718

申请日：2014-11-11

Applicant: Amazon Technologies, Inc.

Inventor： Quan Binh To ,  Christopher Whitaker ,  Sheshadri Supreeth Koushik ,  Benjamin David Newman ,  Julien Jacques Ellie ,  Zachary Thomas Crowell

IPC: G06Q30/00 ,  G06Q10/06

Abstract: A service provider system may implement an enterprise catalog service that manages catalogs or portfolios of software products (e.g., desktop applications and server products) on behalf of service provider customer organizations. Through the enterprise catalog service, an administrator in a customer organization may discover, select, and ingest products (e.g., based on their features, pricing, and terms), and may add them to catalogs or portfolios for subsequent use by end users in the organization. The administrator may apply constraints on product use and limit product access to particular end users. The products may include third party products that are made available through the enterprise catalog service and a customer's own applications. The enterprise catalog service may monitor usage of third party products and bill the customer organization. Products managed by the enterprise catalog service may be deployed through an application fulfillment platform or resource stack management platform.

公开(公告)号：US10810049B2

公开(公告)日：2020-10-20

申请号：US16148921

申请日：2018-10-01

Applicant: Amazon Technologies, Inc.

Inventor： Reto Kramer ,  Christopher Whitaker ,  Adam M. Thomas ,  Richard C. Edwards, Jr. ,  Avinash Jaisinghani

IPC: G06F9/50 ,  G06F9/4401 ,  G06F9/445 ,  G06F8/61 ,  G06F8/71

Abstract: Systems and methods are described for bootstrapping an application with metadata specified in a template. The template specifies a stack of resources that will be used to execute an application and also includes a set of metadata for customizing the resources and the application. When the system receives the template, it instantiates a compute node which will execute the application. The compute node may contain at least one initialization script for bootstrapping the application with the metadata contained in the template. This functionality allows users to bootstrap the application running on the compute node with data from within the template that was used to create the stack of resources for executing the application. In this manner, metadata, configuration files, package names and versions can be passed by the application owner to the remote compute node.

公开(公告)号：US10348642B2

公开(公告)日：2019-07-09

申请号：US15936238

申请日：2018-03-26

Applicant: Amazon Technologies, Inc.

Inventor： Avinash Jaisinghani ,  Reto Kramer ,  Prashant Jayaraman ,  Christopher Whitaker ,  Venkates Paramasivam Balakrishnan

IPC: G06F15/177 ,  H04L12/911 ,  G06F9/50 ,  H04L29/08 ,  H04L12/24

Abstract: A resource stack managed by a resource stack provider is created based on a resource stack template that integrates a custom resource from a second provider into the resource stack using a notification system with the second provider. For example, a customer may create a template that defines a resource stack that comprises resources available from the resource stack provider and one or more custom resources provided by a second provider. When a resource stack is created, resources available from the resource stack provider may be provisioned. Custom resources may be initialized by notifying the provider of the custom resource of the requested integration of the custom resource with the resource stack and requested configuration details. The custom resource provider may respond with an indication of successful integration when the custom resource has been successfully initialized. After initializing the resources, the resource stack may be enabled for use.

公开(公告)号：US09929974B2

公开(公告)日：2018-03-27

申请号：US14739774

申请日：2015-06-15

Applicant: Amazon Technologies, Inc.

Inventor： Avinash Jaisinghani ,  Reto Kramer ,  Prashant Jayaraman ,  Christopher Whitaker ,  Venkates Paramasivam Balakrishnan

IPC: G06F15/177 ,  H04L12/911 ,  G06F9/50 ,  H04L29/08 ,  H04L12/24

CPC classification number: H04L47/827 ,  G06F9/5061 ,  H04L29/08072 ,  H04L41/0806

Abstract: A resource stack managed by a resource stack provider is created based on a resource stack template that integrates a custom resource from a second provider into the resource stack using a notification system with the second provider. For example, a customer may create a template that defines a resource stack that comprises resources available from the resource stack provider and one or more custom resources provided by a second provider. When a resource stack is created, resources available from the resource stack provider may be provisioned. Custom resources may be initialized by notifying the provider of the custom resource of the requested integration of the custom resource with the resource stack and requested configuration details. The custom resource provider may respond with an indication of successful integration when the custom resource has been successfully initialized. After initializing the resources, the resource stack may be enabled for use.

公开(公告)号：US09350738B2

公开(公告)日：2016-05-24

申请号：US14611933

申请日：2015-02-02

Applicant: Amazon Technologies, Inc.

Inventor： Avinash Jaisinghani ,  Reto Kramer ,  Christopher Whitaker ,  Venkates P. Balakrishnan ,  Prashant Jayaraman ,  Richard Curtis Edwards, Jr.

IPC: H04L29/06 ,  H04L12/24

CPC classification number: H04L63/20 ,  H04L41/0806 ,  H04L63/06 ,  H04L63/0823 ,  H04L63/10 ,  H04L63/102

Abstract: Systems and methods are described for enabling users to model security resources and user access keys as resources in a template language. The template can be used to create and update a stack of resources that will provide a network-accessible service. The security resources and access keys can be referred to in the template during both stack creation process and the stack update process. The security resources can include users, groups and policies. Additionally, users can refer to access keys in the template as dynamic parameters without any need to refer to the access keys in plaintext. The system securely stores access keys within the system and allows for templates to refer to them once defined. These key references can then be passed within a template to resources that need them as well as passing them on securely to resources like server instances through the use of the user-data field.