公开(公告)号：US20230135712A1

公开(公告)日：2023-05-04

申请号：US17980427

申请日：2022-11-03

Applicant: Snowflake Inc.

Inventor： Damien Carru ,  Jeremy Yujui Chen ,  Pui Kei Johnston Chu ,  Benoit Dageville ,  Subramanian Muralidhar

IPC: G06F21/62 ,  G06F16/2455 ,  G06F16/21

Abstract: A consumer account may invoke an operation referencing a set of shared objects stored within a database of a provider account using an imported database that makes the set of shared objects available within the consumer account. A call context of the operation may be updated to cache the imported database, which references a share created from the provider account database, the share having grants to the set of shared objects. One or more database level objects may be discovered in a context of the share and each role granted to the share may be obtained based on the one or more database level objects. Whether any role granted to the share has access to any of the set of shared objects may be determined and the operation may be executed for each of the set of shared objects to which any role granted to the share has access.

公开(公告)号：US20230102349A1

公开(公告)日：2023-03-30

申请号：US18062656

申请日：2022-12-07

Applicant: Snowflake Inc.

Inventor： Artin Avanes ,  Khalid Zaman Bijon ,  Damien Carru ,  Thierry Cruanes ,  Vikas Jain ,  Zheng Mi ,  Subramanian Muralidhar

IPC: G06F21/62 ,  G06F16/22 ,  G06F16/27 ,  G06F16/25 ,  G06F16/248

Abstract: A shared database platform implements dynamic masking on data shared between users where specific data is masked, transformed, or otherwise modified based on preconfigured functions that are associated with user roles. The shared database platform can implement the masking at runtime dynamically in response to users requesting access to a database object that is associated with one or more masking policies.

公开(公告)号：US11507685B1

公开(公告)日：2022-11-22

申请号：US17586646

申请日：2022-01-27

Applicant: Snowflake Inc.

Inventor： Damien Carru ,  Thierry Cruanes ,  Subramanian Muralidhar ,  Nicola Dan Onose ,  Ryan Michael Thomas Shelly ,  Brian Smith ,  Jaeyun Noh

IPC: H04L29/06 ,  G06F21/62 ,  H04L9/40 ,  G06F16/245 ,  H04L9/32 ,  G06F16/248

Abstract: Techniques described herein can allow users to share cached results of an original query with other users while protecting sensitive information. The techniques described herein can check whether the other users have access to the underlying data queried before allowing those users to see the stored query results. That is, the system may perform privilege checks on the shared users before giving them access to the stored query results but without having to re-run the original query.

公开(公告)号：US11249988B2

公开(公告)日：2022-02-15

申请号：US16945344

申请日：2020-07-31

Applicant: Snowflake Inc.

Inventor： Damien Carru ,  Thierry Cruanes ,  Istvan Cseri ,  Benoit Dageville ,  Zheng Mi ,  Subramanian Muralidhar

IPC: G06F16/23 ,  G06F16/27 ,  G06F16/9535 ,  G06Q30/00

Abstract: A database platform receives an object identifier from a client in association with a database session. The client is associated with a customer account of the database platform, and the database session is associated with the client. In response to receiving the object identifier, the database platform identifies a resolution namespace for the object identifier, where the resolution namespace for the object identifier is a namespace that is specified in the object identifier if the object identifier includes a specified namespace, and where the resolution namespace is otherwise a current account-level namespace of the database session. The database platform resolves the object identifier with reference to the identified resolution namespace for the object identifier, including identifying an object corresponding to the object identifier in the customer account.

公开(公告)号：US11055430B2

公开(公告)日：2021-07-06

申请号：US17086269

申请日：2020-10-30

Applicant: Snowflake Inc.

Inventor： Artin Avanes ,  Khalid Zaman Bijon ,  Damien Carru ,  Thierry Cruanes ,  Vikas Jain ,  Zheng Mi ,  Subramanian Muralidhar

IPC: G06F21/62 ,  G06F16/27 ,  G06F16/25 ,  G06F16/22 ,  G06F16/248

Abstract: A shared database platform implements dynamic masking on data shared between users where specific data is masked, transformed, or otherwise modified based on preconfigured functions that are associated with user roles. The shared database platform can implement the masking at runtime dynamically in response to users requesting access to a database object that is associated with one or more masking policies.

公开(公告)号：US20210157948A1

公开(公告)日：2021-05-27

申请号：US17086269

申请日：2020-10-30

Applicant: Snowflake Inc.

Inventor： Artin Avanes ,  Khalid Zaman Bijon ,  Damien Carru ,  Thierry Cruanes ,  Vikas Jain ,  Zheng Mi ,  Subramanian Muralidhar

IPC: G06F21/62 ,  G06F16/27 ,  G06F16/248 ,  G06F16/22 ,  G06F16/25

Abstract: A shared database platform implements dynamic masking on data shared between users where specific data is masked, transformed, or otherwise modified based on preconfigured functions that are associated with user roles. The shared database platform can implement the masking at runtime dynamically in response to users requesting access to a database object that is associated with one or more masking policies.

公开(公告)号：US10999261B1

公开(公告)日：2021-05-04

申请号：US17086261

申请日：2020-10-30

Applicant: Snowflake Inc.

Inventor： Damien Carru ,  Robert Bengt Benedikt Gernhardt ,  Martin Hentschel ,  Nithin Mahesh ,  Eric Robinson

IPC: H04L29/06 ,  H04L9/30 ,  G06F16/27

Abstract: A networked device communication system can configure network devices (e.g., a primary and secondary database) to send and receive sequences of messages, such as replicated data, using one or more keypairs and wrapping keys. The sequences of messages can include an initial set of messages that are encrypted by a wrapping key, and further include another set of messages that are encrypted by a replaced staggered key. The sequence of messages can be configured to be decrypted without exporting keys of hardware security modules.

公开(公告)号：US12223077B2

公开(公告)日：2025-02-11

申请号：US18506343

申请日：2023-11-10

Applicant: Snowflake Inc.

Inventor： Christine A. Avanessians ,  Damien Carru ,  Ramachandran Natarajan Iyer ,  Eric Karlson ,  Dennis Edgar Lynch

IPC: G06F21/62 ,  G06F21/31

Abstract: Provided herein are systems and methods for global data objects on a data platform where the global data objects are accessible at an organization level. In particular, an organization-level global data object provided by various embodiments can be used as a generic organization object that is owned by a specific organization, and can be managed (e.g., created, deleted, or modified) by use of a leader-based model.

公开(公告)号：US12218948B1

公开(公告)日：2025-02-04

申请号：US18409507

申请日：2024-01-10

Applicant: Snowflake Inc.

Inventor： Christine A. Avanessians ,  Damien Carru ,  Ramachandran Natarajan Iyer ,  Dennis Edgar Lynch ,  Subramanian Muralidhar

IPC: H04L9/40

Abstract: Systems and methods for an organization-level account for an organization on a data platform, users of which can possess administrative or management privileges with respect to the organization and across one or more others accounts of the organization.

公开(公告)号：US20250023880A1

公开(公告)日：2025-01-16

申请号：US18424469

申请日：2024-01-26

Applicant: Snowflake Inc.

Inventor： Christine A. Avanessians ,  Damien Carru ,  Ramachandran Natarajan Iyer ,  Dennis Edgar Lynch ,  Subramanian Muralidhar

IPC: H04L9/40

Abstract: Systems and methods for an organization-level account for an organization on a data platform, users of which can possess administrative or management privileges with respect to the organization and across one or more others accounts of the organization.