-
公开(公告)号:US11553626B2
公开(公告)日:2023-01-10
申请号:US16549220
申请日:2019-08-23
Applicant: Amazon Technologies, Inc.
Inventor: Christopher Strickland Beall , David Edward Bryan , Darin Lee Frink , Jason Alexander Harland
Abstract: A system for storing data includes a discrete cooling module that can enable discrete cooling of mass storage devices installed in the chassis interior of a data storage module coupled to a rack. The discrete cooling module includes an air moving device and an air cover. The air moving device can induce and airflow through the chassis interior of the data storage module to remove heat from heat producing components of mass storage devices installed in the chassis interior. The air cover directs the airflow through the chassis interior. The discrete cooling module can isolate rotational vibrations generated by the air moving device from the mass storage devices installed in the chassis. Partial isolation can include indirectly coupling the discrete cooling module to the chassis via directly coupling with the rack.
-
公开(公告)号:US10938782B1
公开(公告)日:2021-03-02
申请号:US15391464
申请日:2016-12-27
Applicant: Amazon Technologies, Inc.
Inventor: Jason Alexander Harland , Michael Joseph Kentley
IPC: H04L29/06
Abstract: Systems and methods in accordance with various embodiments of the present disclosure provide secure filtering of transactions at a hardware and protocol level using a security device included on a server. In particular, various embodiments provide approaches for filtering transactions on various buses, such as SMBus, PMBus, I2C, and SPI, within a server. This filtering logic can be utilized to modify requests for access to devices on those busses, certain memory or registers within the devices, and/or limit the quantity of transactions on those busses. Embodiments may provide a policy engine through which the filtering logic applied to a given bus or buses may be modified. When a transaction is received, one or more attributes of the transaction can be compared to one or more policies. If there is a match, the transaction can be modified according to the matched policy.
-
公开(公告)号:US10911405B1
公开(公告)日:2021-02-02
申请号:US15824896
申请日:2017-11-28
Applicant: Amazon Technologies, Inc.
Inventor: Jason Alexander Harland , Anthony Nicholas Liguori , Darin Lee Frink , Nafea Bshara , Ziv Harel , Matthew Shawn Wilson , Yotam Admon
IPC: H04L29/00 , G06F17/00 , H04L29/06 , H04L12/813
Abstract: Disclosed herein are techniques for maintaining a secure environment on a server. In one embodiment, the server includes a baseboard management controller (BMC), a first Ethernet port coupled with an adapter device network comprising a plurality of adapter devices, and a master adapter device including a second Ethernet port and a network switch, the network switch being controllable to be selectively coupled with at least one of the BMC, the first Ethernet port, or the second Ethernet port. The master adapter device may receive a network packet from at least one of: the first Ethernet port, the second Ethernet port, or the BMC, and determine, based on a forwarding policy, whether to forward the network packet. Based on a determination to forward the network packet, the master adapter device may determine a destination, and control the network switch to transmit the network packet to the destination.
-
公开(公告)号:US10810036B1
公开(公告)日:2020-10-20
申请号:US16539907
申请日:2019-08-13
Applicant: Amazon Technologies, Inc.
Inventor: Jason Alexander Harland , Nathan Pritchard , Michael Joseph Kentley
IPC: G06F9/455 , G06F13/38 , G06F13/42 , H04L1/16 , G06F13/364
Abstract: Disclosed herein are techniques for maintaining a secure execution environment on a server. In one embodiment, the server includes a bus manager circuit. The bus manager circuit comprises a first bus interface configured to be coupled with a first hardware device of the server, and a second bus interface configured to be coupled with a second hardware device of the sever. The bus manager further includes a control module. Under a first mode of operation, the control module is configured to receive an access request from the first hardware device to access the second hardware device, and responsive to determining not to grant the access request based on a pre-determined access policy, and block at least some of data bits corresponding to the access request from the second bus interface. The control module may also process the access request in a different manner under other modes of operations.
-
公开(公告)号:US10691803B2
公开(公告)日:2020-06-23
申请号:US15377991
申请日:2016-12-13
Applicant: Amazon Technologies, Inc.
Inventor: Anthony Nicholas Liguori , Jason Alexander Harland , Matthew Shawn Wilson , Nafea Bshara , Ziv Harel , Darin Lee Frink
IPC: G06F21/57 , G06F9/4401 , G06F21/44
Abstract: Disclosed herein are techniques for maintaining a secure execution environment on a server. In one embodiment, the server includes a non-volatile memory storing firmware, a programmable security logic coupled to the non-volatile memory, an adapter device coupled to the programmable security logic, and a processor communicatively coupled to the non-volatile memory via the programmable security logic. The adapter device and/or the programmable security logic can verify the firmware in the non-volatile memory while holding the processor and/or a baseboard management controller (BMC) in power reset, release the processor and the BMC from reset to boot the processor and the BMC after the firmware is verified, and then disable communications between the processor and the BMC and deny at least some requests to write to the non-volatile memory by the processor or the BMC.
-
Patent Agency Ranking
公开(公告)号:US20200150733A1
公开(公告)日:2020-05-14
申请号:US16739810
申请日:2020-01-10
Applicant: Amazon Technologies, Inc.
Inventor: Felipe Enrique Ortega Gutierrez , Jason Alexander Harland , Roey Rivnay , David Edward Bryan , Christopher Strickland Beall
Abstract: A rack computer system can provide data indicating electrical power consumption by separate sets of the mass storage devices, including separate individual mass storage devices, of the rack computer system. A power sensor can be electrically coupled to a power transmission line for each mass storage device. The power sensor can be coupled to the power transmission line externally to the mass storage device. The power sensor can be an internal power sensor of the mass storage device, where a mass storage device microcontroller transmits internally-generated data to an external power monitoring system. A microcontroller can transmit the data to a baseboard management controller via a side-band connection between the mass storage device and the controller. The data can be transmitted via an in-band connection between a baseboard management controller and an instance of firmware which accesses internally-generated data from mass storage device microcontrollers.
-
公开(公告)号:US20190272246A1
公开(公告)日:2019-09-05
申请号:US16414394
申请日:2019-05-16
Applicant: Amazon Technologies, Inc.
Inventor: Jason Alexander Harland , Max Jesse Wishman , Darin Lee Frink
Abstract: A system and method are described for configuring a motherboard using expansion cards plugged into motherboard slots. In particular, each of the expansion cards can include a control signal that is supplied to the motherboard and that can configure hardware positioned on the motherboard. In one embodiment, the configuration allows a communication path to be switched on to allow the expansion cards to cross communicate.
-
公开(公告)号:US10398060B1
公开(公告)日:2019-08-27
申请号:US14217124
申请日:2014-03-17
Applicant: Amazon Technologies, Inc.
Inventor: Christopher Strickland Beall , David Edward Bryan , Darin Lee Frink , Jason Alexander Harland
Abstract: A system for storing data includes a discrete cooling module that can enable discrete cooling of mass storage devices installed in the chassis interior of a data storage module coupled to a rack. The discrete cooling module includes an air moving device and an air cover. The air moving device can induce and airflow through the chassis interior of the data storage module to remove heat from heat producing components of mass storage devices installed in the chassis interior. The air cover directs the airflow through the chassis interior. The discrete cooling module can isolate rotational vibrations generated by the air moving device from the mass storage devices installed in the chassis. Partial isolation can include indirectly coupling the discrete cooling module to the chassis via directly coupling with the rack.
-
公开(公告)号:US20180228057A1
公开(公告)日:2018-08-09
申请号:US15943631
申请日:2018-04-02
Applicant: Amazon Technologies, Inc.
Inventor: Christopher Strickland Beall , David Edward Bryan , Darin Lee Frink , Jason Alexander Harland
Abstract: A system for storing data includes a rack and one or more data storage modules mounted on the rack. The data storage modules may include a chassis, two or more vertically-oriented backplanes coupled to the chassis, two or more mass storage devices coupled to the backplanes, and one or more air passages extending beneath one or more of the backplanes. Each backplane is configured to preclude airflow through the backplane between opposite vertical faces and can couple mass storage devices on one or more of the opposite vertical faces. One or more of the air passages can supply an upwards-directed airflow along one of the opposite vertical faces of a backplane to remove heat from a heat producing component of a mass storage device coupled to the vertical face of the vertically-oriented backplane.
-
公开(公告)号:US09448601B1
公开(公告)日:2016-09-20
申请号:US14217154
申请日:2014-03-17
Applicant: Amazon Technologies, Inc.
Inventor: Christopher Strickland Beall , David Edward Bryan , Darin Lee Frink , Jason Alexander Harland
Abstract: A system for storing data includes a rack and one or more data storage modules coupled to the rack. The data storage modules may include a chassis, two or more backplanes coupled to the chassis, one or more mass storage devices coupled to the backplanes, and one or more data control modules mounted in one or more inlet air plenums extending upstream of one or more of the backplanes in the chassis interior. A data control module can be mounted in one or more air plenums extending beneath one or more of the backplanes in the chassis interior. A data control module can be mounted in one or more air plenums extending above one or more of the backplanes. A data control module mounted in a data storage module may access the mass storage devices in one or more of the data storage modules coupled to the rack.
Abstract translation: 用于存储数据的系统包括机架和耦合到机架的一个或多个数据存储模块。 数据存储模块可以包括底盘,耦合到底盘的两个或更多个背板,耦合到背板的一个或多个大容量存储装置,以及安装在一个或多个入口空气室中的一个或多个数据控制模块,其延伸到一个或多个 在底盘内部的背板。 数据控制模块可以安装在在底盘内部的一个或多个背板下方延伸的一个或多个空气室中。 数据控制模块可以安装在一个或多个在一个或多个背板上方延伸的空气增压室中。 安装在数据存储模块中的数据控制模块可以访问耦合到机架的一个或多个数据存储模块中的大容量存储设备。
-
-
-
-
-
-
-
-
-
Search Results
31
records
(took 0.024 seconds)
