公开(公告)号：US10936724B2

公开(公告)日：2021-03-02

申请号：US16592697

申请日：2019-10-03

Applicant: Amazon Technologies, Inc.

Inventor： Diwakar Gupta ,  Marcin Piotr Kowalski ,  Johannes Stephanus Jansen Van Rensburg

IPC: G06F21/57 ,  G06F9/44 ,  G06F9/445 ,  G06F9/4401

Abstract: Techniques for configurable compute instance resets are described. A user can issue a request to securely reset one or more compute instances implemented within a service provider system. Each compute instance is reset to a previous point in time, such that any activity of the compute instance or effects thereof occurring since that point in time are completely eliminated. Each compute instance reset can include removing an existing volume of the compute instance, obtaining a volume, attaching the obtained volume to the compute instance, and rebooting the compute instance. Configuration data of the compute instance, such as an instance identifier or network addresses, can be maintained after the reset.

公开(公告)号：US20200177502A1

公开(公告)日：2020-06-04

申请号：US16785235

申请日：2020-02-07

Applicant: Amazon Technologies, Inc.

Inventor： Tai Geoffrey Lucas ,  Marcin Piotr Kowalski

IPC: H04L12/725 ,  H04L29/08 ,  H04L12/721

Abstract: Systems and methods are disclosed to implement a request routing layer of a service provider system, where the request routers are aware of different versions of a service implemented by the servers of the system. In embodiments, the request routers may discover the different versions of the service via periodic health messages or request responses from the servers. Requests are routed to the servers according to a routing policy that specifies the relative proportions of requests that are to be routed to each version. Version metrics generated from the requests may be captured and provided to a version change manager, which may update the routing policy based on the metrics, either increasing or decreasing the proportion of requests for the different versions. In embodiments, the request router may implement additional rules that control their routing behavior in response to detected error conditions.

公开(公告)号：US10218512B2

公开(公告)日：2019-02-26

申请号：US15260802

申请日：2016-09-09

Applicant: Amazon Technologies, Inc.

Inventor： Marcin Piotr Kowalski ,  Frans Adriaan Lategan

IPC: H04L29/06 ,  H04L9/32 ,  H04L29/08 ,  H04L9/14 ,  H04L9/30

Abstract: Computer systems, such as a client and a server operably interconnected via a network, are subject to stress on computational resources due to an abundance of automated-user traffic. To improve resource functionalities and control the resources available to automated-agents, value information of valuable assets is encrypted such that a client must perform an algorithm for calculating a decryption key in order to view the unencrypted content. Wherein the encryption is tuned in such a way that any computational delay caused by the encryption is imperceptible to a human-user and largely perceptible to an automated-agent such that the need to determine if a user is an automated-user or a human-user is irrelevant.

公开(公告)号：US10057267B1

公开(公告)日：2018-08-21

申请号：US14860484

申请日：2015-09-21

Applicant: Amazon Technologies, Inc.

Inventor： Kevin Christopher Miller ,  Marcin Piotr Kowalski

IPC: H04L12/701 ,  H04L29/06 ,  H04L12/747

CPC classification number: H04L63/10 ,  H04L63/0209 ,  H04L63/0272 ,  H04L63/102

Abstract: Methods and apparatus that extend private network functionality to client devices that are not part of a provider network. A net device may provide private network control plane functionality to devices that are external to the provider network and connected to ports on the net device. The devices are assigned addresses within the address space of the private network. Packets sent from the devices through the net device are encapsulated by the net device and routed over the private network to their destinations. Packets sent to the devices are routed by the private network to the net device, decapsulated, and provided to the devices. Via the functionality provided by the net device, a client may configure and manage client devices as part of their client private network using the same services and APIs that are used to configure and manage their virtual resources on the client private network.

公开(公告)号：US09641385B1

公开(公告)日：2017-05-02

申请号：US14107901

申请日：2013-12-16

Applicant: Amazon Technologies, Inc.

Inventor： Mathew Daniel ,  Marcin Piotr Kowalski ,  Andries Petrus Johannes Dippenaar

IPC: G06F15/177 ,  H04L12/24

CPC classification number: H04L41/0806 ,  H04L41/0896 ,  H04L41/5051 ,  H04L43/08

Abstract: An example method of launching a virtual machine in a multi-tenant environment using dynamic configuration may include receiving a customer request to launch a virtual machine in the multi-tenant environment. The multi-tenant environment may include a plurality of host server computers. In response to the customer request, configuration parameters stored in association with an account of the customer may be retrieved in the multi-tenant environment. One or more parameters of a hardware and/or a software resource in the multi-tenant environment may be dynamically configured in accordance with the retrieved configuration parameters. The virtual machine may be launched on one of the plurality of host server computers, using the configured hardware and/or software resource. The configuration parameters may be associated with at least one desired performance characteristic of the virtual machine to be launched.

公开(公告)号：US11093302B2

公开(公告)日：2021-08-17

申请号：US16580265

申请日：2019-09-24

Applicant: Amazon Technologies, Inc.

Inventor： Christopher Sam Goosen ,  Diwakar Gupta ,  Jacob Adam Gabrielson ,  Marcin Piotr Kowalski

IPC: G06F9/44 ,  G06F9/54 ,  G06F9/48 ,  H04L12/24 ,  H04L29/08 ,  G06F3/0482

Abstract: Techniques are described for enabling customers of a service provider network to modify and extend the functionality of application programming interfaces (APIs) provided to customers by various services of the provider network. Services of a service provider network provide interfaces that enable customers and other users to define custom API actions representing functionality to be performed by the services upon receipt of corresponding API requests. In this manner, the functionality exposed by provider network services to customers via APIs becomes extensible and customizable to fit customers' particular use cases and without the provider network needing to contemplate and explicitly implement all possible customer-specific API action variations.

公开(公告)号：US10560372B1

公开(公告)日：2020-02-11

申请号：US15688674

申请日：2017-08-28

Applicant: Amazon Technologies, Inc.

Inventor： Tai Geoffrey Lucas ,  Marcin Piotr Kowalski

IPC: H04L12/725 ,  H04L29/08 ,  H04L12/721

Abstract: Systems and methods are disclosed to implement a request routing layer of a service provider system, where the request routers are aware of different versions of a service implemented by the servers of the system. In embodiments, the request routers may discover the different versions of the service via periodic health messages or request responses from the servers. Requests are routed to the servers according to a routing policy that specifies the relative proportions of requests that are to be routed to each version. Version metrics generated from the requests may be captured and provided to a version change manager, which may update the routing policy based on the metrics, either increasing or decreasing the proportion of requests for the different versions. In embodiments, the request router may implement additional rules that control their routing behavior in response to detected error conditions.

公开(公告)号：US10509434B1

公开(公告)日：2019-12-17

申请号：US15277489

申请日：2016-09-27

Applicant: Amazon Technologies, Inc.

Inventor： Marcin Piotr Kowalski

IPC: G06F1/12 ,  G06F1/20 ,  H03B5/32

Abstract: The amount of drift in an oscillator, as a function of temperature, can be profiled by adjusting the temperature and monitoring the corresponding change in frequency of the oscillator. Temperature sensors on a computing device can provide the temperature readings for the profiling, as well as readings during operation. A system clock on the computing device can be synchronized with a reliable external clock at a regular interval, such as every fifteen minutes. Between those synchronizations, the temperature values provided by the temperature sensors can be determined and the corresponding oscillator drift determined according to the oscillator profile. The drift value can be used to adjust the output of the system clock to account for variations that may become present between the synchronization times. Effects of factors such as voltage and humidity can also be profiled to provide a more accurate timing signal.

公开(公告)号：US10474825B1

公开(公告)日：2019-11-12

申请号：US15717568

申请日：2017-09-27

Applicant: Amazon Technologies, Inc.

Inventor： Diwakar Gupta ,  Marcin Piotr Kowalski ,  Johannes Stephanus Jansen Van Rensburg

IPC: G06F21/57 ,  G06F9/44 ,  G06F9/445 ,  G06F9/4401

Abstract: Techniques for configurable compute instance resets are described. A user can issue a request to securely reset one or more compute instances implemented within a service provider system. Each compute instance is reset to a previous point in time, such that any activity of the compute instance or effects thereof occurring since that point in time are completely eliminated. Each compute instance reset can include removing an existing volume of the compute instance, obtaining a volume, attaching the obtained volume to the compute instance, and rebooting the compute instance. Configuration data of the compute instance, such as an instance identifier or network addresses, can be maintained after the reset.

公开(公告)号：US20190281140A1

公开(公告)日：2019-09-12

申请号：US16415877

申请日：2019-05-17

Applicant: Amazon Technologies, Inc.

Inventor： Kevin Christopher Miller ,  Joseph E. Magerramov ,  Marcin Piotr Kowalski ,  Colm Gearóid MacCárthaigh

IPC: H04L29/06 ,  G06F9/455

Abstract: Methods and apparatus that allow clients to specify custom network rules for their resource instances or network constructs in a provider network environment. Services and interfaces may be provided that allow a client to provide an executable module that implements custom rules for their resources, or alternatively to specify or select custom rules for their resources. The module may be installed on a host device, and may apply the custom rules to packets to and from the client's resources. Alternatively, the client-defined rules may be applied to packet flows according to the custom rules specified by the client and applied by a client rules service implemented on the provider network external to the host device or on a client resource instance on the host device. The custom network rules may, for example, extend or modify standard network rules for the client's resources on the host device.