公开(公告)号：US20210211304A1

公开(公告)日：2021-07-08

申请号：US17212915

申请日：2021-03-25

Applicant: Amazon Technologies, Inc.

Inventor： William Frederick Hingle Kruse ,  Conor Patrick Cahill ,  Jeffrey Cicero Canton ,  Dmitry Frenkel ,  Harshad Vasant Kulkarni ,  Colin Watson ,  Andrew Paul Mikulski

IPC: H04L9/32 ,  G06F12/14 ,  H04L29/06

Abstract: A request to add tags (e.g., labels, key-value pairs, or metadata) to resources can be digitally signed by the entity making the request, such that the source can be verified and an authorization determination made for each tag. For a request involving multiple services (or entities) that can each add tags, any tag added by a service can be included in the request and digitally signed by that service. Each service processing the request can also digitally sign the request before forwarding, so that each service signs a version of the request, which includes elements signed by other services earlier in the request chain. When the request is received to a tagging service, the service ensures that every tag was digitally signed by the appropriate authorized entity or service, and validates the signatures to ensure that no data was modified or omitted, before adding the tags to the designated resource(s).

公开(公告)号：US20240028830A1

公开(公告)日：2024-01-25

申请号：US18353164

申请日：2023-07-17

Applicant: Amazon Technologies, Inc.

Inventor： Umut Orhan ,  Harshad Vasant Kulkarni ,  Jasmeet Chhabra ,  Vikas Dharia

IPC: G06F40/284 ,  H04L41/16 ,  H04L43/16

CPC classification number: G06F40/284 ,  H04L41/16 ,  H04L43/16 ,  H04L43/024

Abstract: A plurality of metrics records, including some records indicating metrics for which anomaly analysis has been performed, is obtained. Using a training data set which includes the metrics records, a machine learning model is trained to predict an anomaly analysis relevance score for an input record which indicates a metric name. Collection of a particular metric of an application is initiated based at least in part on an anomaly analysis relevance score obtained for the particular metric using a trained version of the model.

公开(公告)号：US11616787B1

公开(公告)日：2023-03-28

申请号：US16457783

申请日：2019-06-28

Applicant: Amazon Technologies, Inc.

Inventor： Jasmeet Chhabra ,  Harshad Vasant Kulkarni ,  Khaled Salah Sedky

IPC: H04L9/40

Abstract: A set of operations is performed to cause a resource accessible to a first set of entities to also be accessible to a member of a second set of entities, where the set of operations, as a result of being executed, causes a processor to create a project to associate with a set of resources, associate a policy that controls access to the set of resources with the projects, associate the resource with the set of resources of the project, and associate the member of the second set of entities with the project. A request is obtained from the member of the second set of entities to access the resource. The member of the second set of entities is determine to be authorized to access the resource based on the policy. The member of the second set of entities is allowed to obtain access to the resource.

公开(公告)号：US11593669B1

公开(公告)日：2023-02-28

申请号：US17105979

申请日：2020-11-27

Applicant: Amazon Technologies, Inc.

Inventor： Jasmeet Chhabra ,  Zaid Radi Abu Ziad ,  Vikas Dharia ,  Harshad Vasant Kulkarni ,  Khaled Salah Sedky ,  Scott Michael Wiltamuth ,  Douglas Allen Walter

IPC: G06F11/00 ,  G06N5/022 ,  G06F11/30 ,  G06F11/07 ,  G06N5/045 ,  G06F11/22

Abstract: Techniques for determining insight are described. An exemplary method includes receiving a request to provide insight into potential abnormal behavior; receiving one or more of anomaly information and event information associated with the potential abnormal behavior; evaluating the received one or more of the anomaly information and event information associated with the abnormal behavior to determine there is insight as to what is causing the potential abnormal behavior and to add to an insight at least two of an indication of a metric involved in the abnormal behavior, a severity for the insight indication, an indication of a relevant event involved in the abnormal behavior, and a recommendation on how to cure the potential abnormal behavior; and providing an insight indication for the generated insight.

公开(公告)号：US11509658B1

公开(公告)日：2022-11-22

申请号：US15864976

申请日：2018-01-08

Applicant: Amazon Technologies, Inc.

Inventor： Harshad Vasant Kulkarni

IPC: H04L9/40

Abstract: A set of parameters for a set of permissions are determined based at least in part on previous requests to access a set of resources by a principal or user. The set of permissions are updated based at least in part on the set of parameters such that the set of parameters cause different requests to have different authentication requirements. The updated set of permissions is enforced to control access to computing resources such as the set of resources.

公开(公告)号：US11042454B1

公开(公告)日：2021-06-22

申请号：US16197033

申请日：2018-11-20

Applicant: Amazon Technologies, Inc.

Inventor： Rachit Jain ,  Rohit Raj ,  Ian Leung ,  Harshad Vasant Kulkarni

IPC: G06F11/14 ,  G06F16/23

Abstract: Restoring data to a data store that suffered corrupted data over a time period is disclosed. A system may provide an interface to specify a time window and filter conditions for identifying corrupted data in an object in a data store, such as, but not limited to, a corrupted NoSQL table. Corrupted data is identified by applying the filter conditions to change logs for the data object (e.g., the No SQL table) in the data store. Repair operations are determined for individual items identified via the filter conditions. Identified corrupted data for items may be corrected, from change logs or backup data in some instances (e.g., data may be deleted, or updated or replaced with data from a backup of the data store when necessary).

公开(公告)号：US10277522B1

公开(公告)日：2019-04-30

申请号：US14555306

申请日：2014-11-26

Applicant: Amazon Technologies, Inc.

Inventor： Jeffrey Cicero Canton ,  Prasad Krishnan ,  Harshad Vasant Kulkarni ,  Colin Watson

IPC: H04L12/911 ,  H04L12/26

Abstract: In a network-based services platform, customer resources may be automatically associated with a resource creator. Upon receipt of a request to create a computing resource, the computing resource may be created and thereafter executed within the network-based services platform. In response to the request, an entity associated with the request may be identified. In response to the identification of the entity, the computing resource may be automatically associated with the identified entity specifying the entity as the creator of the computing resource. In some embodiments, a cost of operating the resource over a period of time may be calculated, and the cost allocated to the identified entity based at least in part on the creator-to-resource association that was automatically generated upon creation of the resource. In this manner, a usage allocation report may be provided to the customer that shows the cost associated with the entity.