公开(公告)号：US20200092214A1

公开(公告)日：2020-03-19

申请号：US16689386

申请日：2019-11-20

Applicant: NetApp Inc.

Inventor： Craig Fulmer Everhart ,  Vishwajith Shivappa

IPC: H04L12/825 ,  G06F9/50 ,  H04L29/08

Abstract: One or more techniques and/or devices are provided for dynamic resource allocation based upon network flow control. For example, a first counter, corresponding to a count of communication availability signals provided by a network interface to a storage process, may be maintained. A second counter, corresponding to a count of communication unavailability signals provided by the network interface to the storage process, may be maintained. Responsive to the first counter exceeding a resource allocation threshold, additional resources may be dynamically allocated to the storage process during operation of the storage process. Responsive to the second counter exceeding a resource deallocation threshold, resources may be dynamically deallocated from the storage process during operation of the storage process. In this way, resources allocation for the storage process may be dynamically adjusted based upon real-time network flow control information indicative of whether the storage process is efficiently utilizing network communication channel availability.

公开(公告)号：US20170078256A1

公开(公告)日：2017-03-16

申请号：US15361558

申请日：2016-11-28

Applicant: NetApp Inc.

Inventor： Craig Fulmer Everhart ,  Steven Ewing

IPC: H04L29/06 ,  H04L9/32

CPC classification number: H04L63/065 ,  H04L9/0833 ,  H04L9/3255 ,  H04L9/3263 ,  H04L9/3265

Abstract: Exemplary embodiments provide various techniques for managing groups of authenticated entities. In one exemplary computer-implemented method, an entity accesses a group roster that includes a first group identifier identifying a first group, a first group digital certificate associated with the first group, and a first entity identifier identifying the entity being a member of the first group. The entity also receives a request to update the group roster. Here, the request includes a second group identifier identifying a second group and a second group digital certificate associated with the second group. In response to the request, the entity replaces the first group identifier in the group roster with the second group identifier. Additionally, in response to the request, the entity replaces the first group digital certificate with the second group digital certificate. The replacements change a membership of the entity from the first group to the second group.

Abstract translation: 示例性实施例提供了用于管理认证实体组的各种技术。 在一个示例性的计算机实现的方法中，实体访问组名册，其包括标识第一组的第一组标识符，与第一组相关联的第一组数字证书，以及标识该第一实体的第一实体标识符， 组。 该实体还收到更新组名册的请求。 这里，请求包括识别与第二组相关联的第二组和第二组数字证书的第二组标识符。 响应于该请求，实体用组第二组标识符替换组名册中的第一组标识符。 此外，响应于该请求，实体用第二组数字证书替换第一组数字证书。 替换将实体的成员从第一组更改为第二组。

公开(公告)号：US09218475B2

公开(公告)日：2015-12-22

申请号：US14469429

申请日：2014-08-26

Applicant: NetApp, Inc.

Inventor： Craig Fulmer Everhart ,  David Slik

IPC: G06F21/33 ,  G06F21/44 ,  H04L29/06 ,  H04L9/32

CPC classification number: H04L63/0823 ,  G06F21/33 ,  G06F21/44 ,  H04L9/3247 ,  H04L9/3268 ,  H04L63/065 ,  H04L63/104

Abstract: Example embodiments provide various techniques for securing communications within a group of entities. In one example method, a request from an entity to join the group is received and a signed, digital certificate associated with the entity is accessed. Here, the signed, digital certificate is signed with a group private key that is associated with a certification authority for the group. The signed, digital certificate is added to a group roster, and this addition is to admit the entity into the group. The group roster with the signed, digital certificate is itself signed with the group private key and distributed to the group, which includes the entity that transmitted the request. Communication to the entity is then encrypted using the signed, digital certificate included in the group roster.

Abstract translation: 示例性实施例提供用于保护一组实体内的通信的各种技术。 在一个示例性方法中，接收来自实体加入组的请求，并且访问与该实体相关联的签名的数字证书。 这里，签名的数字证书使用与该组的认证机构相关联的组私钥进行签名。 签名的数字证书被添加到组名册中，这个补充是将实体接纳到组中。 具有签名的数字证书的组名册本身已经用组私钥签名并分发给组，其中包括发送请求的实体。 然后使用组名册中包含的签名的数字证书对与该实体的通信进行加密。

公开(公告)号：US20150066471A1

公开(公告)日：2015-03-05

申请号：US14464637

申请日：2014-08-20

Applicant: NetApp, Inc.

Inventor： Sai Rama Krishna Susarla ,  Thirumale Niranjan ,  Siddhartha Nandi ,  Craig Fulmer Everhart ,  Kaladhar Voruganti ,  Jim Voll

IPC: G06F11/34

CPC classification number: G06F11/3447 ,  G06F11/3414 ,  G06F11/3485 ,  G06F11/3495 ,  H04L41/145

Abstract: Example embodiments provide various techniques for modeling network storage environments. To model a particular storage environment, component models that are associated with the components of the storage environment are loaded. Each component model is programmed to mathematically simulate one or more components of the storage environment. A system model is then composed from the component models and this system model is configured to simulate the storage environment.

公开(公告)号：US20140365767A1

公开(公告)日：2014-12-11

申请号：US14469429

申请日：2014-08-26

Applicant: NetApp, Inc.

Inventor： Craig Fulmer Everhart ,  David Slik

IPC: G06F21/33 ,  G06F21/44

CPC classification number: H04L63/0823 ,  G06F21/33 ,  G06F21/44 ,  H04L9/3247 ,  H04L9/3268 ,  H04L63/065 ,  H04L63/104

Abstract: Example embodiments provide various techniques for securing communications within a group of entities. In one example method, a request from an entity to join the group is received and a signed, digital certificate associated with the entity is accessed. Here, the signed, digital certificate is signed with a group private key that is associated with a certification authority for the group. The signed, digital certificate is added to a group roster, and this addition is to admit the entity into the group. The group roster with the signed, digital certificate is itself signed with the group private key and distributed to the group, which includes the entity that transmitted the request. Communication to the entity is then encrypted using the signed, digital certificate included in the group roster.