公开(公告)号：US10466991B1

公开(公告)日：2019-11-05

申请号：US15449065

申请日：2017-03-03

Applicant: Amazon Technologies, Inc.

Inventor： Amjad Hussain ,  Patrick McFalls ,  Matthew Adam Ford ,  Sivaprasad Venkata Padisetty

IPC: G06F8/61 ,  G06F8/65 ,  G06F9/455 ,  G06F9/445

Abstract: Software packages may be installed, uninstalled and/or updated across a group of computing instances by way of a single issuance of a user request. The request may include information such as a software package name, a software package version, an action (e.g., install or uninstall), and one or more operating constraints for the software package. For an installation request, an agent on a given computing instance may process the request by accessing a manifest that indicates various computing instance characteristics (e.g., operating system types, architecture types, etc.) and various respective available versions of the software package. The agent may then select, based on characteristics of the computing instance, a package type for the computing instance. An installation request may also allow operating constraints (e.g. regarding usage of processing, memory, I/O and other resources) to be set and enforced for the software package.

公开(公告)号：US09794292B2

公开(公告)日：2017-10-17

申请号：US14975376

申请日：2015-12-18

Applicant: Amazon Technologies, Inc.

Inventor： Amjad Hussain ,  Manivannan Sundaram ,  Sivaprasad Venkata Padisetty ,  Nikolaos Pamboukas ,  Alan Hadley Goodman

IPC: H04L29/06 ,  H04L12/24 ,  G06F21/62

CPC classification number: H04L63/20 ,  G06F21/62 ,  H04L41/22 ,  H04L41/28 ,  H04L63/105

Abstract: A selection of a document that includes a command and a parameter is received, and a user is caused to be associated with a policy that grants permission to execute the document. A request is received, from a requestor, to execute the document, the request including a parameter value, and the requestor is determined to be the user associated with the policy. The user is validated to have access to a resource indicated by the parameter value, and the command is caused to be executed against the resource.

公开(公告)号：US11620121B1

公开(公告)日：2023-04-04

申请号：US17033503

申请日：2020-09-25

Applicant: Amazon Technologies, Inc.

Inventor： Mats Erik Lanner ,  Derek Ying Chen Kwiatkowski ,  Katherine Elizabeth Shaffer ,  Sivaprasad Venkata Padisetty ,  Sundaresan Ramamoorthy ,  Robert Glenn Hearn ,  Amjad Hussain ,  Daniel Francis Conde ,  Lavanya Krishnan

IPC: G06F9/445 ,  G06F8/65 ,  H04L67/75 ,  H04L67/306

Abstract: This disclosure describes techniques for providing users of services provided by network-based service platforms with additional control for approving patches that are to be deployed to computing resources that support their services. In some examples, the techniques include generating and using a “snapshot,” or list, of patches that are preliminarily approved for deployment. Prior to deploying the patches to the computing resources, users are provided with access to the snapshot and are able to modify the snapshot. For example, users can modify the snapshot by adding patches, removing patches, specifying a sequence in which the patches are to be deployed, and so forth. The snapshot of patches may be “frozen” for a period of time, meaning that patches that during the period of time, only patches in the snapshot are deployed, and patches that are not included in the snapshot are not permitted to be deployed to computing resources.

公开(公告)号：US11108702B1

公开(公告)日：2021-08-31

申请号：US15838050

申请日：2017-12-11

Applicant: Amazon Technologies, Inc.

Inventor： Steven Merlin Twitchell ,  Amjad Hussain ,  Sivaprasad Venkata Padisetty

IPC: H04L12/911 ,  G06F9/455

Abstract: A virtual computer system management service receives input from a user specifying operations to be performed by a web-based service. The input includes an indication of a set of resources to be used to perform the operations and control information to control the set of resources to perform the operations. The virtual computer system management service configures the resources to perform the operations according to the control information. This causes the set of resources to perform the operations and provide a result. The virtual computer system management service provides this result to the user.

公开(公告)号：US11038847B1

公开(公告)日：2021-06-15

申请号：US16000070

申请日：2018-06-05

Applicant: Amazon Technologies, Inc.

Inventor： Munindra N. Das ,  Amjad Hussain ,  Sivaprasad Venkata Padisetty ,  Anantharam Vaidyanathan

IPC: H04L29/06

Abstract: This disclosure is directed to one or more computing services that provide users with secure access to a computing instance, which is auditable and accessible via a cross-platform browser-based shell or command-line interface (CLI). The computing service(s) forego any need to open up inbound ports, thereby improving security. The computing service(s) employ centralized authentication and auditing to ensure compliance with policies and to log activities for auditing, forensics, or other purposes. A message gateway service creates secure channels with a client device and the computing instance to establish a secure communication tunnel between the client device and computing instance. Once the tunnel is established, a user can send a command via the client device to the computing instance, via the message gateway service. The command output is uploaded to this tunnel and is sent back to the client device, via the message gateway service.

公开(公告)号：US10887164B2

公开(公告)日：2021-01-05

申请号：US16053277

申请日：2018-08-02

Applicant: Amazon Technologies, Inc.

Inventor： Damian Gorman Wylie ,  James Alfred Gordon Greenfield ,  Michael Groenewald ,  Anand Rajender Kumar ,  Rajnesh Umeshraya Pai ,  Sivaprasad Venkata Padisetty ,  Georgios Elissaios ,  Scott Anthony Roberts

IPC: H04L12/24 ,  H04L29/08 ,  G06F9/50

Abstract: A virtual computer system service receives a request from a customer to provision a dedicated server for the exclusive use of the customer. The dedicated server may be used to launch one or more virtual machine instances. The virtual computer system service subsequently selects, from a pool of available servers, a server that can be dedicated to the customer and that does not have capacity allocated to any other customer. The virtual computer system service may update a database to specify, in an entry corresponding to the selected server, that the server has been dedicated for the exclusive use of the customer. Once the database has been updated, the virtual computer system service will enable the customer to launch a virtual machine instance using the dedicated server.

公开(公告)号：US10824476B1

公开(公告)日：2020-11-03

申请号：US15628108

申请日：2017-06-20

Applicant: Amazon Technologies, Inc.

Inventor： Shihua Zhang ,  Patrick McFalls ,  Amjad Hussain ,  Sivaprasad Venkata Padisetty

IPC: G06F9/50 ,  H04L29/06

Abstract: Techniques for operating a multi-homed computing instance process are described herein. First credentials associated with a first attribute of a first account may be obtained. A process executing on a computing instance may communicate with the first account over a first communication channel based at least in part on the first credentials. Instructions may be received for the process to communicate with both the first account and a second account. Second credentials associated with a second attribute of the second account may be obtained. The second credentials may be obtained based, at least in part, on the first attribute acquiring the second attribute. The process may communicate with the second account over a second communication channel based at least in part on the second credentials. Additionally, the process may communicate with multiple different representations of a particular account, such as different representations that are hosted in different respective regions.

公开(公告)号：US10162619B1

公开(公告)日：2018-12-25

申请号：US15045035

申请日：2016-02-16

Applicant: Amazon Technologies, Inc.

Inventor： Mats Erik Lanner ,  Sivaprasad Venkata Padisetty ,  Amjad Hussain ,  Daniel Francis Conde ,  Steven Merlin Twitchell ,  Aaron Jeremiah Sheldon ,  Alan Hadley Goodman ,  Derek Kwiatkowski

IPC: G06F9/445 ,  G06F8/61

Abstract: Methods, systems, and computer-readable media for fleet-wide management of software packages are disclosed. A package management service is offered to a plurality of clients in a multi-tenant environment. Using the package management service, a package set is determined that comprises metadata identifying a plurality of software packages and desired states associated with the software packages. The software packages are from a catalog. Deployment of the package set is initiated to a plurality of computing devices. The deployment comprises reaching the desired states for the software packages in the package set for the computing devices.

公开(公告)号：US20180343164A1

公开(公告)日：2018-11-29

申请号：US16053277

申请日：2018-08-02

Applicant: Amazon Technologies, Inc.

Inventor： Damian Gorman Wylie ,  James Alfred Gordon Greenfield ,  Michael Groenewald ,  Anand Rajender Kumar ,  Rajnesh Umeshraya Pai ,  Sivaprasad Venkata Padisetty ,  Georgios Elissaios ,  Scott Anthony Roberts

IPC: H04L12/24 ,  H04L29/08

Abstract: A virtual computer system service receives a request from a customer to provision a dedicated server for the exclusive use of the customer. The dedicated server may be used to launch one or more virtual machine instances. The virtual computer system service subsequently selects, from a pool of available servers, a server that can be dedicated to the customer and that does not have capacity allocated to any other customer. The virtual computer system service may update a database to specify, in an entry corresponding to the selected server, that the server has been dedicated for the exclusive use of the customer. Once the database has been updated, the virtual computer system service will enable the customer to launch a virtual machine instance using the dedicated server.

公开(公告)号：US10091055B2

公开(公告)日：2018-10-02

申请号：US14622765

申请日：2015-02-13

Applicant: Amazon Technologies, Inc.

Inventor： Manivannan Sundaram ,  Manoj Krishna Ghosh ,  Nikolaos Pamboukas ,  Martin Chen Mao ,  Aaron Jeremiah Sheldon ,  Sivaprasad Venkata Padisetty

IPC: G06F15/177 ,  H04L12/24 ,  G06F9/455 ,  G06F9/445 ,  G06F9/44

Abstract: A service is disclosed that allows configuration, management and deployment of instances. A configuration document can be stored by the service and one or more instance identifiers can be linked to the configuration document. As a result, multiple instances can be launched and configured using a single configuration document allowing for a consistent result across instances. Local agents running on the instances can execute plug-ins in order to effectuate the configuration. As a result, administrators of instances can configure, manage and easily deploy their unique instance configurations. Customers who manage their instances can scale and manage their entire fleet with repeatable configuration tasks that seamlessly integrate into their instance workflow.