公开(公告)号：US20240259386A1

公开(公告)日：2024-08-01

申请号：US18124553

申请日：2023-03-21

Applicant: Rubrik, Inc

Inventor： Hao Wu ,  Sai Tanay Desaraju ,  Kevin Mu ,  Xiang Xu ,  Lokesh Jagasia ,  Zhebin Zhang ,  Shrihari Kalkar ,  Anam Bhatia ,  Michael Wronski ,  Arvind Swaminathan

IPC: H04L9/40

CPC classification number: H04L63/105

Abstract: Methods, systems, and devices for data management are described. A data management system (DMS) may implement multi-tenancy role based access control (RBAC). In accordance with the multi-tenancy based RBAC, tenant organizations of a DMS may be assigned permissions (i.e., privileges) for a given data management cluster and/or computing objects within a data management cluster. Customized user roles (RBAC roles) may also be created for a given tenant. For example, a role may be defined based on a corresponding set of permissions (e.g., permissions associated with computing objects, data management clusters, or data sources associated with the tenant). A user within a tenant may be assigned a user role, which may be a customized role, and the effective permissions for the user may be based on which permissions of the user's assigned role are also within the scope of the tenant's permissions.

公开(公告)号：US20240259379A1

公开(公告)日：2024-08-01

申请号：US18128191

申请日：2023-03-29

Applicant: Rubrik, Inc.

Inventor： Hao Wu ,  Alex Medovar ,  Xiaoqing Tao ,  Jinshuo Zhang ,  Seungyeop Han ,  Sai Tanay Desaraju ,  Kevin Mu ,  Xiang Xu ,  Lokesh Jagasia ,  Shrihari Kalkar ,  Anam Bhatia ,  Michael Wronski ,  Arvind Swaminathan

IPC: H04L9/40

CPC classification number: H04L63/102 ,  H04L63/0815 ,  H04L63/083

Abstract: Methods, systems, and devices for data management are described. A data management system may receive an indication to create a set of subtenants of a tenant. A first set of user profiles are associated with the tenant and a second set of user profiles are associated with a parent tenant of the tenant. The system may assign a first subset of the first set of user profiles to a first subtenant and assign a second subset to a second subtenant. The first subset and the second subset exclude user profiles from the second set of user profiles that are non-overlapping with the first set of user profiles. The system may update metadata corresponding to the first set of user profiles and the second set of user profiles such that the first subset has access to the first subtenant for and the second subset has access to the second subtenant.

公开(公告)号：US20240256518A1

公开(公告)日：2024-08-01

申请号：US18102326

申请日：2023-01-27

Applicant: Rubrik, Inc.

Inventor： Zhebin Zhang ,  Hao Wu ,  Kevin Mu ,  Xiang Xu ,  Jordon Marcell Barkley

IPC: G06F16/23 ,  G06F16/28

CPC classification number: G06F16/2358 ,  G06F16/288

Abstract: Methods, systems, and devices for data management are described. A data management system (DMS) may provide backup services for multiple tenants. The DMS may receive a request to provide a first user of the DMS with audit information associated with an entity of the DMS. The DMS may identify context information for a log-in session associated with the request. The context information may include an identifier (ID) of a tenant associated with the request. The DMS may identify, based on the ID of the tenant, authorization information associated with the tenant. The authorization information may indicate that the tenant has access to a set of entities within a hierarchy associated with the DMS. The DMS may determine whether to output the requested audit information to the first user based on a hierarchical relationship, within the hierarchy, between the tenant and the entity.

公开(公告)号：US20240256400A1

公开(公告)日：2024-08-01

申请号：US18187647

申请日：2023-03-21

Applicant: Rubrik, Inc.

Inventor： Hao Wu ,  Alex Medovar ,  Xiaoqing Tao ,  Jinshuo Zhang ,  Seungyeop Han ,  Sai Tanay Desaraju ,  Kevin Mu ,  Xiang Xu ,  Lokesh Jagasia ,  Shrihari Kalkar ,  Anam Bhatia ,  Michael Wronski ,  Arvind Swaminathan

IPC: G06F11/14 ,  G06F9/50

CPC classification number: G06F11/1469 ,  G06F9/5077

Abstract: Methods, systems, and devices for data management are described. A data management system may configure backup and recovery resources for tenant of the data management system. The data management system may receive an indication to create a set of subtenants within the resources configured for the tenant. The data management system may assign a first subset of resources configured for the tenant, and the first subset may be different from a second subset configured for a second subtenant. The data management system may activate a first backup procedure for the first subtenant. The first backup procedure may be configured to backup a first data source associated with the first subtenant of the tenant using the first subset of the set of backup and recovery resources, and the first backup procedure may be separate from a second backup procedure for a second data source associated with the second subtenant.

公开(公告)号：US20240256358A1

公开(公告)日：2024-08-01

申请号：US18124547

申请日：2023-03-21

Applicant: Rubrik, Inc.

Inventor： Hao Wu ,  Sai Tanay Desaraju ,  Kevin Mu ,  Xiang Xu ,  Lokesh Jagasia ,  Zhebin Zhang ,  Shrihari Kalkar ,  Anam Bhatia ,  Michael Wronski ,  Arvind Swaminathan

IPC: G06F9/50 ,  G06F9/52

CPC classification number: G06F9/5077 ,  G06F9/52 ,  G06F2209/503 ,  G06F2209/505

Abstract: Methods, systems, and devices for data management are described. A data management system (DMS) may receive a request to assign a first computing object in a first object hierarchy of the DMS to a first tenant of the DMS. The DMS may check the first object hierarchy to identify other computing objects having a hierarchical relationship with the first computing object. The other objects may be above or below the first computing object within the first object hierarchy. The DMS may determine whether at least one of the other computing objects in the first object hierarchy is assigned to a second tenant of the DMS. The DMS may output, in response to the request, an indication that the first computing object is unavailable for assignment to the first tenant if at least one of the other computing objects in the first object hierarchy is assigned to the second tenant.

公开(公告)号：US20240187248A1

公开(公告)日：2024-06-06

申请号：US18415548

申请日：2024-01-17

Applicant: Rubrik, Inc.

Inventor： Sean Lobo ,  Prasanta Ranjan Dash ,  Hao Wu

IPC: H04L9/32 ,  H04L9/08 ,  H04L67/06

CPC classification number: H04L9/3247 ,  H04L9/0825 ,  H04L9/0863 ,  H04L9/3242 ,  H04L9/3297 ,  H04L67/06

Abstract: A second data source may retrieve metadata for one or more versions of a set of versions of a file stored at the first data source. In some examples, the metadata for the one or more versions of the file may include at least an identifier of the file, a timestamp, and a cryptographic signature. In some examples, generation of the cryptographic signature may be based on the identifier of the file, the timestamp, and a cryptographic key. The second data source may identify a set of versions of the file that were uploaded from a trusted data source to the first data source based on a comparison of the cryptographic signature to a computed cryptographic signature. The second data source may then determine a targeted version of the file and retrieve the targeted version of the file from the first data source.

公开(公告)号：US11902452B2

公开(公告)日：2024-02-13

申请号：US17521661

申请日：2021-11-08

Applicant: Rubrik, Inc.

Inventor： Sean Lobo ,  Prasanta Ranjan Dash ,  Hao Wu

IPC: H04L9/32 ,  H04L67/06 ,  H04L9/08

CPC classification number: H04L9/3247 ,  H04L9/0825 ,  H04L9/0863 ,  H04L9/3242 ,  H04L9/3297 ,  H04L67/06

Abstract: A second data source may retrieve metadata for one or more versions of a set of versions of a file stored at the first data source. In some examples, the metadata for the one or more versions of the file may include at least an identifier of the file, a timestamp, and a cryptographic signature. In some examples, generation of the cryptographic signature may be based on the identifier of the file, the timestamp, and a cryptographic key. The second data source may identify a set of versions of the file that were uploaded from a trusted data source to the first data source based on a comparison of the cryptographic signature to a computed cryptographic signature. The second data source may then determine a targeted version of the file and retrieve the targeted version of the file from the first data source.

公开(公告)号：US11722475B2

公开(公告)日：2023-08-08

申请号：US17387083

申请日：2021-07-28

Applicant: Rubrik, Inc.

Inventor： Seungyeop Han ,  Hao Wu ,  Xiaopeng Xu ,  Tiffany Lin

IPC: H04L9/40

CPC classification number: H04L63/0815 ,  H04L63/083 ,  H04L63/101 ,  H04L63/104

Abstract: In some examples, a centralized management system comprises a central management console including a federated login system embedded in the centralized management system. The federated login system includes at least one processor configured to perform operations in a method of federated login and authorization allowing a user of the centralized management system to manage connected clusters or products without performing an individual cluster or product login.

公开(公告)号：US20240259388A1

公开(公告)日：2024-08-01

申请号：US18187188

申请日：2023-03-21

Applicant: Rubrik, Inc.

Inventor： Hao Wu ,  Sai Tanay Desaraju ,  Kevin Mu ,  Xiang Xu ,  Lokesh Jagasia ,  Zhebin Zhang ,  Shrihari Kalkar ,  Anam Bhatia ,  Michael Wronski ,  Arvind Swaminathan

IPC: H04L9/40

CPC classification number: H04L63/105 ,  H04L63/102 ,  H04L63/104

Abstract: Methods, systems, and devices for data management are described. A data management system (DMS) may implement multi-tenancy role based access control (RBAC). A DMS that provides backup and recovery to multiple tenants may assign a data management cluster to a tenant organization, or specific resources from a data management cluster to a tenant, allowing multiple tenants to share a single data management cluster. The assignment of resources of the data management cluster respects the hierarchical relationship among computing objects, for example, assigning a top-level resource to a tenant implicitly assigns the descendent resources that descend from that top-level resource to the tenant.

公开(公告)号：US20240256575A1

公开(公告)日：2024-08-01

申请号：US18102315

申请日：2023-01-27

Applicant: Rubrik, Inc.

Inventor： Zhebin Zhang ,  Hao Wu ,  Kevin Mu ,  Xiang Xu

IPC: G06F16/28

CPC classification number: G06F16/287 ,  G06F16/282

Abstract: Methods, systems, and devices for data management are described. A multi-tenancy data management system (DMS) may include multiple computing objects organized as a hierarchy of computing objects. The DMS may receive a request for report data associated with a first set of computing objects of the DMS. The DMS may identify context information for a log-in session associated with the request. The context information may include a tenant identifier (ID) for a tenant associated with the request. The DMS may apply a filter to the first set of computing objects. The filter may be based on a second set of computing objects to which the tenant has access within the hierarchy of computing objects. The DMS may output the report data for at least one computing object of the first set based on the at least one computing object being included in the second set of computing objects.