公开(公告)号：US20240103818A1

公开(公告)日：2024-03-28

申请号：US17950577

申请日：2022-09-22

Applicant: Red Hat, Inc.

Inventor： Brian Gallagher ,  Cathal O'Connor

IPC: G06F8/41 ,  G06F8/60 ,  G06F21/44

CPC classification number: G06F8/41 ,  G06F8/60 ,  G06F21/44

Abstract: Systems and methods for implementing an annotation driven just in time and state-based RBAC policy control are disclosed. The method inserts an annotation into a code base that includes a function. The annotation identifies a resource corresponding to the function. The method compiles the code base into compiled code, which includes inserting, based on the annotation, a first request prior to the function that requests permission to access the resource; and inserting, based on the annotation, a second request subsequent to the function to turn off permission to access the resource. The method then deploys the compiled code to a target environment.

公开(公告)号：US20240070735A1

公开(公告)日：2024-02-29

申请号：US17898638

申请日：2022-08-30

Applicant: Red Hat, Inc.

Inventor： Brian Gallagher ,  Cathal O'Connor

IPC: G06Q30/04 ,  G06F9/50

CPC classification number: G06Q30/04 ,  G06F9/5072 ,  G06F2209/508 ,  G06Q2220/12

Abstract: Systems and methods of the disclosure include: identifying, by a cloud resource management system, a cloud resource consumption model associated with one or more cloud resources; generating, by the cloud resource management system, a sequence of instructions implementing a smart contract based on the cloud resource consumption model; sending, to a distributed ledger network, the smart contract; receiving, by the cloud resource management system, cloud resource usage data associated with the one or more cloud resources; and causing, by transmitting a message reflecting the cloud resource usage data to the distributed ledger, the smart contract to be executed.

公开(公告)号：US11706155B1

公开(公告)日：2023-07-18

申请号：US17592851

申请日：2022-02-04

Applicant: Red Hat, Inc.

Inventor： Cathal O'Connor ,  Brian Gallagher

IPC: H04L47/762 ,  H04L47/78 ,  H04L9/32 ,  H04L47/70

CPC classification number: H04L47/762 ,  H04L9/3236 ,  H04L9/3247 ,  H04L47/781 ,  H04L47/822 ,  H04L47/828

Abstract: Systems and methods of the disclosure include: receiving, by a cloud resource provisioning component via a cloud provisioning request application programming interface (API), a cloud resource request; storing the cloud resource request on a cryptographically-protected distributed ledger; receiving, from a first cloud provider, a first cloud resource offer responsive to the cloud resource request; and responsive to receiving, from a node of the cryptographically-protected distributed ledger, a notification of validation of the first cloud resource offer with respect to the cloud resource request, causing the first cloud provider to provision a cloud resource specified by the first cloud resource offer.

公开(公告)号：US12231349B2

公开(公告)日：2025-02-18

申请号：US18338683

申请日：2023-06-21

Applicant: Red Hat, Inc.

Inventor： Cathal O'Connor ,  Brian Gallagher

IPC: H04L47/762 ,  H04L9/32 ,  H04L47/70 ,  H04L47/78

Abstract: Systems and methods of the disclosure include: broadcasting, by a cloud resource provisioning component, to a cryptographically-protected distributed ledger, a first transaction comprising a cloud resource request for provisioning a cloud resource; transmitting, to one or more cloud providers, the cloud resource request; receiving, from a first cloud provider of the one or more cloud providers, a first cloud resource offer responsive to the cloud resource request; and broadcasting, to the cryptographically-protected distributed ledger, a second transaction comprising the first cloud resource offer.

公开(公告)号：US12095925B2

公开(公告)日：2024-09-17

申请号：US17571660

申请日：2022-01-10

Applicant: Red Hat, Inc.

Inventor： Brian Gallagher ,  Cathal O'Connor

IPC: H04L9/32 ,  H04L9/00

CPC classification number: H04L9/3239 ,  H04L9/3247 ,  H04L9/50

Abstract: Systems and methods of the disclosure include: receiving, by a node of a distributed ledger network, first transaction data, wherein the first transaction data comprises an alert derived from a state of a computer system; storing the first transaction data in a first block of the distributed ledger network; receiving, by the node, second transaction data, wherein the second transaction data comprises an identifier of a remedial action performed on the computer system in response to the alert and a result of performing the remedial action; and storing the second transaction data in a block of the distributed ledger network, wherein the block is provided by one of: the first block or a second block.

公开(公告)号：US20240241762A1

公开(公告)日：2024-07-18

申请号：US18097164

申请日：2023-01-13

Applicant: Red Hat, Inc.

Inventor： Brian Gallagher ,  Laura Fitzgerald

IPC: G06F9/50 ,  G06F9/48

CPC classification number: G06F9/5055 ,  G06F9/4875

Abstract: A migration framework for orchestration-based application systems is disclosed. In an example a migration framework system comprises a live application, running on at least one node, via an orchestration system; a migration operator module configured to query, the live application based on a defined app migration custom resource; and retrieve, a data resource from the live application; an automated templating engine, for generating a new application custom resource, based on the data resource; and an application manager operator module to manage a migrated application, based on the new custom resource. In some frameworks, the generating of the new custom resource comprises defining, by the templating engine, values in a template application custom resource based on the retrieved data resource. The application manager operator module also can monitor continuously for at least one of additions or modifications to the new custom resource, or additional new custom resources.

公开(公告)号：US20240176608A1

公开(公告)日：2024-05-30

申请号：US18436515

申请日：2024-02-08

Applicant: Red Hat, Inc.

Inventor： Cathal O'Connor ,  Brian Gallagher

IPC: G06F8/61 ,  G06F8/65 ,  G06F21/57

CPC classification number: G06F8/63 ,  G06F8/65 ,  G06F21/577 ,  G06F2221/033

Abstract: The sizes of image files for deploying software in a computing environment can be reduced according to some examples described herein. In one example, a system can identify base image files that each include at least a predefined amount of dependencies relied upon by target software. The system can then select a particular base image file, from the base image files, having a smallest size as compared to a remainder of the base image files. The system can then build a customized image file from the base image file, where the customized image file is configured for deploying the target software to a computing environment.

公开(公告)号：US20230367565A1

公开(公告)日：2023-11-16

申请号：US17743650

申请日：2022-05-13

Applicant: RED HAT, INC.

Inventor： Cathal O'Connor ,  Brian Gallagher

IPC: G06F8/41 ,  G06F8/60 ,  G06F8/75

CPC classification number: G06F8/41 ,  G06F8/60 ,  G06F8/75

Abstract: A shim layer can be incorporated into a container image for intercepting calls between an upper layer and a lower layer of the container image according to some aspects described herein. For example, a system can build an image file that includes a stacked arrangement of layers configured for deploying a software program within a container. The stacked arrangement of layers can include a lower layer including one or more objects. The stacked arrangement of layers can include an upper layer positioned above the lower layer, where the upper layer includes the software program. And the stacked arrangement of layers can include a shim layer positioned between the lower layer and the upper layer. The shim layer can include a shim, which is configured to intercept calls involving the one or more objects from the software program and responsively allow or reject the calls based on control data.

公开(公告)号：US20230224162A1

公开(公告)日：2023-07-13

申请号：US17571660

申请日：2022-01-10

Applicant: Red Hat, Inc.

Inventor： Brian Gallagher ,  Cathal O'Connor

IPC: H04L9/32

CPC classification number: H04L9/3239 ,  H04L9/3247 ,  H04L2209/38

Abstract: Systems and methods of the disclosure include: receiving, by a node of a distributed ledger network, first transaction data, wherein the first transaction data comprises an alert derived from a state of a computer system; storing the first transaction data in a first block of the distributed ledger network; receiving, by the node, second transaction data, wherein the second transaction data comprises an identifier of a remedial action performed on the computer system in response to the alert and a result of performing the remedial action; and storing the second transaction data in a block of the distributed ledger network, wherein the block is provided by one of: the first block or a second block.