公开(公告)号：US09886257B1

公开(公告)日：2018-02-06

申请号：US14257696

申请日：2014-04-21

Applicant: Amazon Technologies, Inc.

Inventor： James Christopher Sorenson, III ,  Yun Lin ,  Ivan Brugiolo

IPC: G06F15/167 ,  G06F9/445

CPC classification number: G06F8/65 ,  G06F3/0607 ,  G06F3/0632 ,  G06F3/067

Abstract: Methods, apparatus, and computer-accessible storage media for remotely updating an executing process that receives I/O requests on I/O port(s), stores write data to a write log on local storage, and uploads data from the write log to remote storage. An update for the process is detected and downloaded, and an updated process is instantiated from the update. The current process is directed to perform a shutdown for update during an update window. In response, the current process saves its current configuration, flushes an in-memory portion of the write log to local storage, and releases its I/O port(s). The updated process loads the saved configuration, detects that the port(s) have been released, and starts accepting I/O requests on the ports. During flushing, the current process flushes current data in memory while continuing to append new write data, stops accepting new write requests, and then flushes the new write data.

公开(公告)号：US09866622B1

公开(公告)日：2018-01-09

申请号：US14092785

申请日：2013-11-27

Applicant: Amazon Technologies, Inc.

Inventor： James Christopher Sorenson, III ,  Yun Lin ,  David Carl Salyers ,  Ankur Khetrapal ,  Nishanth Alapati

IPC: G06F15/16 ,  H04L29/08

CPC classification number: H04L67/10 ,  H04L67/1097 ,  H04L67/2842

Abstract: Methods, apparatus, and computer-accessible storage media for remotely managing a gateway that serves as an interface between processes on a customer network and a service provider, for example to store data to a remote data store. The gateway sends a connection request to a gateway control server. The server holds the connection until the server receives information (e.g., information from the customer sent via the service provider) for the gateway. The server sends the information as requests via the gateway-initiated connection, and continues to hold the connection. If a server receives information for a gateway to which it does not hold a connection, the server sends the information to the server that does hold the connection. The server may either discover the appropriate server via a registration service that registers connections to gateways or broadcast the information to peer servers identified through a registration service.

公开(公告)号：US09021314B1

公开(公告)日：2015-04-28

申请号：US14164017

申请日：2014-01-24

Applicant: Amazon Technologies, Inc.

Inventor： James Christopher Sorenson, III ,  Yun Lin ,  Ardis G. Maison ,  Nishanth Alapati

IPC: G06F11/00 ,  H04L12/26 ,  G06F11/14

CPC classification number: H04L43/16 ,  G06F11/1402 ,  G06F11/2071 ,  G06F11/2082 ,  G06F11/3006 ,  G06F11/3034 ,  G06F11/3089 ,  G06F11/3409 ,  G06F11/3485 ,  G06F2201/81 ,  G06F2201/815 ,  G06F2201/855 ,  H04L43/0817 ,  H04L63/08 ,  H04L67/125

Abstract: Methods, apparatus, and computer-accessible storage media for remotely monitoring and diagnosing storage gateways. Status information may be collected locally on the gateways and uploaded to a service provider via gateway-initiated connections. The uploaded information may be stored to status data store(s). Status proxy(s) on the provider network may analyze the information in the status data store(s) for one or more gateways to detect error conditions on individual gateways or patterns or error conditions on multiple gateways. Upon detecting an error condition on a gateway, the proxy may alert another process, for example an administrator process on the local network that includes the respective gateway. The other process may then message the gateway to address the condition. Information for particular gateways may be provided to clients on request. Information collected from multiple gateways may be viewed and analyzed by the service provider to detect patterns related to gateway design.

Abstract translation: 用于远程监控和诊断存储网关的方法，设备和计算机可访问的存储介质。 状态信息可以在网关上本地收集，并通过网关发起的连接上传到服务提供商。 上传的信息可以存储到状态数据存储。 提供商网络上的状态代理可以分析一个或多个网关的状态数据存储中的信息，以检测多个网关上的各个网关或模式或错误状况的错误状况。 在检测到网关上的错误状况时，代理可以警告另一进程，例如，包括相应网关的本地网络上的管理员进程。 然后，另一个进程可以消息网关来解决该情况。 可以根据请求向客户端提供特定网关的信息。 从多个网关收集的信息可由服务提供商查看和分析，以检测与网关设计相关的模式。

公开(公告)号：US10992521B2

公开(公告)日：2021-04-27

申请号：US15864259

申请日：2018-01-08

Applicant: Amazon Technologies, Inc.

Inventor： James Christopher Sorenson, III ,  Yun Lin ,  David Carl Salyers ,  Ankur Khetrapal ,  Nishanth Alapati

IPC: H04L12/24 ,  H04L29/08

Abstract: A storage gateway serves as an interface between processes on a customer network and a service provider. The storage gateway is located on-premise with the customer processes. To customer processes, it appears that data is stored locally. However, the storage gateway interfaces with a remote storage service to store the data. For cached gateways, the primary data store is a remote data store, while frequently accessed data may be locally cached by the gateway. Reads may be satisfied from the local cache or from virtual data storage; writes are handled so as to appropriately update data blocks in the local cache and/or in virtual data storage. For shadowing gateways, the primary data store is the local data store; reads are passed through to a local data store, and writes are shadowed to virtual data storage as well as being sent to local data store.

公开(公告)号：US10587692B2

公开(公告)日：2020-03-10

申请号：US16186328

申请日：2018-11-09

Applicant: Amazon Technologies, Inc.

Inventor： Yun Lin ,  James Christopher Sorenson, III ,  David C. Salyers

IPC: G06F15/16 ,  H04L29/08 ,  H04L29/06 ,  G06F3/06

Abstract: Methods, apparatus, and computer-accessible storage media for providing a volume-based block storage service and application programming interfaces (APIs) to the service. A block storage service and block storage service APIs may allow processes (applications or appliances) on the service client network to leverage remote, volume-based block storage provided by the service provider. The APIs may provide a standard interface to volume-based block storage operations on a remote data store. The service provider, the service clients, and/or third parties may develop various applications and/or appliances that may, for example, be instantiated in service clients' local networks and that leverage the block storage service via the APIs to create and manage volumes and snapshots on the remote data store and to upload and download data from the volumes and snapshots on the remote data store.

公开(公告)号：US10129337B2

公开(公告)日：2018-11-13

申请号：US15495784

申请日：2017-04-24

Applicant: Amazon Technologies, Inc.

Inventor： Yun Lin ,  James Christopher Sorenson, III ,  David C. Salyers

IPC: G06F15/16 ,  H04L29/08 ,  H04L29/06

Abstract: Methods, apparatus, and computer-accessible storage media for providing a volume-based block storage service and application programming interfaces (APIs) to the service. A block storage service and block storage service APIs may allow processes (applications or appliances) on the service client network to leverage remote, volume-based block storage provided by the service provider. The APIs may provide a standard interface to volume-based block storage operations on a remote data store. The service provider, the service clients, and/or third parties may develop various applications and/or appliances that may, for example, be instantiated in service clients' local networks and that leverage the block storage service via the APIs to create and manage volumes and snapshots on the remote data store and to upload and download data from the volumes and snapshots on the remote data store.

公开(公告)号：US09203801B1

公开(公告)日：2015-12-01

申请号：US14163978

申请日：2014-01-24

Applicant: Amazon Technologies, Inc.

Inventor： James Christopher Sorenson, III ,  Yun Lin ,  David Carl Salyers ,  Ankur Khetrapal

IPC: H04L9/00 ,  H04L29/06

CPC classification number: H04L63/02 ,  H04L63/0281 ,  H04L63/08 ,  H04L63/166 ,  H04L67/1097 ,  H04L67/28

Abstract: Methods, apparatus, and computer-accessible storage media for implementing a gateway to a remote service provider according to a security model. The gateway serves as an interface between processes on a customer network and the provider, for example to store customer data to a remote data store. The model may include an activation process initiated by the gateway to register with the provider and associate the gateway with a customer account; the gateway is provided with security credentials. The model may also include establishing secure connections to external processes, for example processes of the service provider. The gateway initiates connections; the external processes do not initiate connections. The model may also include the customer managing the gateway through the service provider. The model may also include encrypting communications between the gateway and the provider and the gateway including security credentials in communications to the provider.

Abstract translation: 用于根据安全模型实现到远程服务提供商的网关的方法，装置和计算机可访问存储介质。 网关用作客户网络和提供商之间的进程之间的接口，例如将客户数据存储到远程数据存储。 该模型可以包括由网关发起的激活过程，以向该提供商注册，并将该网关与一个客户账户相关联; 网关提供安全凭证。 该模型还可以包括建立到外部进程的安全连接，例如服务提供者的进程。 网关启动连接; 外部进程不启动连接。 该模型还可以包括通过服务提供商管理网关的客户。 该模型还可以包括加密网关和提供商之间的通信，并且网关包括与提供商的通信中的安全凭证。