公开(公告)号：US20240259379A1

公开(公告)日：2024-08-01

申请号：US18128191

申请日：2023-03-29

Applicant: Rubrik, Inc.

Inventor： Hao Wu ,  Alex Medovar ,  Xiaoqing Tao ,  Jinshuo Zhang ,  Seungyeop Han ,  Sai Tanay Desaraju ,  Kevin Mu ,  Xiang Xu ,  Lokesh Jagasia ,  Shrihari Kalkar ,  Anam Bhatia ,  Michael Wronski ,  Arvind Swaminathan

IPC: H04L9/40

CPC classification number: H04L63/102 ,  H04L63/0815 ,  H04L63/083

Abstract: Methods, systems, and devices for data management are described. A data management system may receive an indication to create a set of subtenants of a tenant. A first set of user profiles are associated with the tenant and a second set of user profiles are associated with a parent tenant of the tenant. The system may assign a first subset of the first set of user profiles to a first subtenant and assign a second subset to a second subtenant. The first subset and the second subset exclude user profiles from the second set of user profiles that are non-overlapping with the first set of user profiles. The system may update metadata corresponding to the first set of user profiles and the second set of user profiles such that the first subset has access to the first subtenant for and the second subset has access to the second subtenant.

公开(公告)号：US20240256400A1

公开(公告)日：2024-08-01

申请号：US18187647

申请日：2023-03-21

Applicant: Rubrik, Inc.

Inventor： Hao Wu ,  Alex Medovar ,  Xiaoqing Tao ,  Jinshuo Zhang ,  Seungyeop Han ,  Sai Tanay Desaraju ,  Kevin Mu ,  Xiang Xu ,  Lokesh Jagasia ,  Shrihari Kalkar ,  Anam Bhatia ,  Michael Wronski ,  Arvind Swaminathan

IPC: G06F11/14 ,  G06F9/50

CPC classification number: G06F11/1469 ,  G06F9/5077

Abstract: Methods, systems, and devices for data management are described. A data management system may configure backup and recovery resources for tenant of the data management system. The data management system may receive an indication to create a set of subtenants within the resources configured for the tenant. The data management system may assign a first subset of resources configured for the tenant, and the first subset may be different from a second subset configured for a second subtenant. The data management system may activate a first backup procedure for the first subtenant. The first backup procedure may be configured to backup a first data source associated with the first subtenant of the tenant using the first subset of the set of backup and recovery resources, and the first backup procedure may be separate from a second backup procedure for a second data source associated with the second subtenant.

公开(公告)号：US11722475B2

公开(公告)日：2023-08-08

申请号：US17387083

申请日：2021-07-28

Applicant: Rubrik, Inc.

Inventor： Seungyeop Han ,  Hao Wu ,  Xiaopeng Xu ,  Tiffany Lin

IPC: H04L9/40

CPC classification number: H04L63/0815 ,  H04L63/083 ,  H04L63/101 ,  H04L63/104

Abstract: In some examples, a centralized management system comprises a central management console including a federated login system embedded in the centralized management system. The federated login system includes at least one processor configured to perform operations in a method of federated login and authorization allowing a user of the centralized management system to manage connected clusters or products without performing an individual cluster or product login.

公开(公告)号：US20250103754A1

公开(公告)日：2025-03-27

申请号：US18977619

申请日：2024-12-11

Applicant: Rubrik, Inc.

Inventor： Hao Wu ,  Arohi Kumar ,  Seungyeop Han ,  Michael Wronski ,  Shrihari Kalkar ,  Xiaoqing Tao ,  Michelle Nguyen

IPC: G06F21/62 ,  G06F11/14

Abstract: A method for updating configuration settings of a backup database supported by a data management system is described. The method may include receiving, from a first user in a first user group, a request to update configuration settings of the backup database. The method may further include determining that the first user is authorized to update the configuration settings of the backup database based on a set of permissions associated with the first user. The method may further include identifying a second user in a second user group that is authorized to approve the request from the first user. The method may further include transmitting an indication of the request to the second user and receiving a notification that the second user has approved the request from the first user. The method may further include updating the configuration settings of the backup database in response to the notification.

公开(公告)号：US12197624B2

公开(公告)日：2025-01-14

申请号：US17839057

申请日：2022-06-13

Applicant: Rubrik, Inc.

Inventor： Hao Wu ,  Arohi Kumar ,  Seungyeop Han ,  Michael Wronski ,  Shrihari Kalkar ,  Xiaoqing Tao ,  Michelle Nguyen

IPC: H04L29/06 ,  G06F11/14 ,  G06F21/62

Abstract: A method for updating configuration settings of a backup database supported by a data management system is described. The method may include receiving, from a first user in a first user group, a request to update configuration settings of the backup database. The method may further include determining that the first user is authorized to update the configuration settings of the backup database based on a set of permissions associated with the first user. The method may further include identifying a second user in a second user group that is authorized to approve the request from the first user. The method may further include transmitting an indication of the request to the second user and receiving a notification that the second user has approved the request from the first user. The method may further include updating the configuration settings of the backup database in response to the notification.

公开(公告)号：US20230401337A1

公开(公告)日：2023-12-14

申请号：US17839057

申请日：2022-06-13

Applicant: Rubrik, Inc.

Inventor： Hao Wu ,  Arohi Kumar ,  Seungyeop Han ,  Michael Wronski ,  Shrihari Kalkar ,  Xiaoqing Tao ,  Michelle Nguyen

IPC: G06F21/62 ,  G06F11/14

CPC classification number: G06F21/629 ,  G06F11/1458 ,  G06F2201/80

Abstract: A method for updating configuration settings of a backup database supported by a data management system is described. The method may include receiving, from a first user in a first user group, a request to update configuration settings of the backup database. The method may further include determining that the first user is authorized to update the configuration settings of the backup database based on a set of permissions associated with the first user. The method may further include identifying a second user in a second user group that is authorized to approve the request from the first user. The method may further include transmitting an indication of the request to the second user and receiving a notification that the second user has approved the request from the first user. The method may further include updating the configuration settings of the backup database in response to the notification.

公开(公告)号：US20220038450A1

公开(公告)日：2022-02-03

申请号：US17387083

申请日：2021-07-28

Applicant: Rubrik, Inc.

Inventor： Seungyeop Han ,  Hao Wu ,  Xiaopeng Xu ,  Tiffany Lin

IPC: H04L29/06

Abstract: In some examples, a centralized management system comprises a central management console including a federated login system embedded in the centralized management system. The federated login system includes at least one processor configured to perform operations in a method of federated login and authorization allowing a user of the centralized management system to manage connected clusters or products without performing an individual cluster or product login.

公开(公告)号：US11010487B2

公开(公告)日：2021-05-18

申请号：US16453274

申请日：2019-06-26

Applicant: Rubrik, Inc.

Inventor： Matthew Edward Noe ,  Seungyeop Han ,  Arohi Kumar

IPC: G06F21/62 ,  H04L29/06

Abstract: A data management and storage (DMS) cluster of peer DMS nodes manages resources of a multi-tenant environment. The DMS cluster provides an authorization framework that provides user access which is scoped to the resources within a tenant organization and the privileges of the user within the organization. To authorize an action on a resource by a user, the DMS cluster determines determine user authorizations associated with the user defining privileges of the user on the resources of the multi-tenant environment, and organization authorizations associated defining resources of the multi-tenant environment that belong to the organization. The DMS cluster authorizes the action when the user authorizations and organizations authorized indicate that the action on the resource is authorized.

公开(公告)号：US10862887B2

公开(公告)日：2020-12-08

申请号：US16133494

申请日：2018-09-17

Applicant: Rubrik, Inc.

Inventor： Seungyeop Han ,  Shrihari Kalkar

IPC: G06F3/06 ,  H04L29/06 ,  G06F9/455 ,  G06F16/951

Abstract: A data management and storage (DMS) cluster of peer DMS nodes provides domain shares and authentication for different domains. Each DMS node includes a domain manager and multiple containers, each container including a domain share. Each container associated with a domain may provide an authentication service for authenticating users for a different domain to access domain shares of the domain, such as by contacting a domain controller of a compute infrastructure associated with the domain. The domain manager controls the creation and deletion of containers and their domain shares. The domain manager also provides a proxy service for the containers for communication with client devices of different domains external to the DMS cluster.

公开(公告)号：US20190158281A1

公开(公告)日：2019-05-23

申请号：US15817719

申请日：2017-11-20

Applicant: RUBRIK, INC.

Inventor： Seungyeop Han

IPC: H04L9/08 ,  G06F3/06 ,  G06F21/62 ,  G06F9/455 ,  G06F17/30

Abstract: Methods and systems for securely deleting electronic files and other data stored within a data storage system are described. Each file or separately deletable portion of data stored within the data storage system may be encrypted using a distinct data encryption key. When the file is selected for deletion, both the file and the corresponding data encryption key may be deleted. The data encryption key used for encrypting the file may be encrypted using a key encryption key. If the file and the corresponding data encryption key are both stored using an SSD, then the key encryption key may be stored using a HDD. The ability to physically delete or directly overwrite the key encryption key stored within the HDD may ensure that the file and the data encryption key stored using the SSD are no longer cryptographically recoverable.