公开(公告)号：US11295246B2

公开(公告)日：2022-04-05

申请号：US15917085

申请日：2018-03-09

Applicant: Amazon Technologies, Inc.

Inventor： Christopher Richard Jacques de Kadt ,  James Alfred Gordon Greenfield

IPC: G06Q10/06 ,  H04L29/06 ,  G06Q10/00

Abstract: Methods and apparatus for portable network interfaces to manage authentication and license enforcement. A system may include a plurality of resource instances including a producer instance configured to implement a network-accessible service, and an authentication coordinator. The coordinator may assign an interface record to the service, wherein the interface record comprises an IP address and a set of security properties. The coordinator may configure the security properties to allow a client to request an attachment of the interface record to a selected resource instance, such that the selected resource instance is enabled to transmit network messages from the IP address using one or more physical network interfaces of the selected resource instance. The producer resource instance initiates authentication operations for the service, including at least one authentication operation based on the IP address of the interface record.

公开(公告)号：US10157194B1

公开(公告)日：2018-12-18

申请号：US15199889

申请日：2016-06-30

Applicant: Amazon Technologies, Inc.

Inventor： Timothy Daniel Cole ,  John Michael Morkel ,  Yevgeniy Mikhaylyuta ,  Allan Henry Vermeulen ,  Christopher Richard Jacques de Kadt

IPC: G06F17/30

Abstract: A journaled database system may comprise data nodes that maintain a collection of data structured in accordance with a schema. A change to the schema may be applied by a journal module while a journal consumer continues to operate using a prior version of the schema. A buffer may be formed and have stored therein records describing state change instructions according to the prior view of the schema. An index of correspondence between the records in the buffer and in the source journal may be maintained.

公开(公告)号：US10019255B1

公开(公告)日：2018-07-10

申请号：US14311148

申请日：2014-06-20

Applicant: Amazon Technologies, Inc.

Inventor： James Alfred Gordon Greenfield ,  Dirk Gerhardes Oberholster ,  Christopher Richard Jacques de Kadt ,  Jacob Adam Gabrielson

IPC: G06F8/71

CPC classification number: G06F11/1433 ,  G06F8/65

Abstract: In a service provider environment, software deployments can be implemented by automatically routing an incrementally larger percentage of requests to a new software stack based on a success rate for previous requests. Thus, new and old versions of the software stack can be executed simultaneously with a small portion being routed to the new version until a sufficient number of requests have been handled. By slowly bringing a new software stack online, a confidence level in the new deployment can increase until it is fully deployed. Different success rates and different ramping rates can be used for each customer or based on different components of the request, such as API name, API parameters, location, etc. The software deployments can be extended to web-page requests.

公开(公告)号：US10013184B1

公开(公告)日：2018-07-03

申请号：US15199929

申请日：2016-06-30

Applicant: Amazon Technologies, Inc.

Inventor： John Michael Morkel ,  Timothy Daniel Cole ,  Christopher Richard Jacques de Kadt ,  Allan Henry Vermeulen

IPC: G06F12/00 ,  G06F3/06

CPC classification number: G06F3/067 ,  G06F3/0611 ,  G06F3/0617 ,  G06F3/0619 ,  G06F3/0653 ,  G06F3/0659

Abstract: A system may comprise a storage device on which counters are stored. A counter may be associated with an identifier. A computing node of the system may receive a request to modify the counter. In response to the request, a read signature may be stored and may comprise a hash of the identifier and a tolerance of the counter to change. A write signature may be stored in response to the request, and may comprise a hash of the identifier and a magnitude of the requested modification. A conflict may be detected by comparing a sum of the magnitudes of requested changes to the tolerance of the read operation.

公开(公告)号：US09455975B2

公开(公告)日：2016-09-27

申请号：US14204124

申请日：2014-03-11

Applicant: Amazon Technologies, Inc.

Inventor： Marc J. Brooker ,  Mark Joseph Cavage ,  David Brown ,  Kevin Ross O'Neill ,  Eric Jason Brandwine ,  Christopher Richard Jacques de Kadt

IPC: H04L29/06 ,  G06F21/44 ,  H04L9/32

CPC classification number: H04L63/08 ,  G06F21/44 ,  H04L9/3247 ,  H04L63/10 ,  H04L63/20

Abstract: Systems and methods for managing credentials distribute the credentials to subsets of a set of collectively managed computing resources. The collectively managed computing resources may include one or more virtual machine instances. The credentials distributed to the computing resources may be used by the computing resources to perform one or more actions. Actions may include performing one or more functions in connection with configuration, management, and/or operation of the one or more resources, and/or access of other computing resources. The ability to use credentials may be changed based at least in part on the occurrence of one or more events.

Abstract translation: 用于管理凭据的系统和方法将凭证分发到一组共同管理的计算资源的子集。 共同管理的计算资源可以包括一个或多个虚拟机实例。 分配给计算资源的证书可以被计算资源用于执行一个或多个动作。 操作可以包括执行与一个或多个资源的配置，管理和/或操作有关的一个或多个功能，和/或其他计算资源的访问。 至少部分地基于一个或多个事件的发生来改变使用凭证的能力。

公开(公告)号：US20140365626A1

公开(公告)日：2014-12-11

申请号：US13914225

申请日：2013-06-10

Applicant: Amazon Technologies, Inc.

Inventor： Arjun Radhakrishnan ,  Christopher Richard Jacques de Kadt ,  James Alfred Gordon Greenfield ,  Jacobus Johannes Nicolaas van der Merwe

IPC: H04L12/24

CPC classification number: G06F9/45558 ,  G06F8/63 ,  G06F9/5027 ,  G06F9/5033 ,  G06F2009/45562 ,  G06F2009/4557 ,  G06F2209/5014 ,  H04L41/0816 ,  H04L41/5054 ,  H04L41/5096 ,  H04L67/1002

Abstract: Systems, methods and computer-readable media are described for pre-warming compute instances in datacenters. A service provider associated with the datacenters may expect a demand for the compute instances and pre-configure computing resources within the datacenters to pre-launch the compute instances. As such, when a user requests a compute instance, the service provider may satisfy the request by allocating a pre-warmed compute instance to the user.

Abstract translation: 描述了数据中心中预热计算实例的系统，方法和计算机可读介质。 与数据中心相关联的服务提供商可能期望对计算实例的需求并且预先配置数据中心内的计算资源以预先启动计算实例。 因此，当用户请求计算实例时，服务提供商可以通过向用户分配预热的计算实例来满足请求。

公开(公告)号：US11256669B1

公开(公告)日：2022-02-22

申请号：US15199796

申请日：2016-06-30

Applicant: Amazon Technologies, Inc.

Inventor： John Michael Morkel ,  Yevgeniy Mikhaylyuta ,  Timothy Daniel Cole ,  Christopher Richard Jacques de Kadt ,  Allan Henry Vermeulen

IPC: G06F16/21 ,  G06F16/23 ,  G06F16/22

Abstract: A journaled database system may comprise data nodes that maintain a collection of data and provide read access to the data to a client in accordance with a read schema and write access to the client in accordance with a write schema. A change to the schemas may be proposed. A materialization schema may be identified based on correlated determinations that both of the read schema and the write schema are satisfiable based on the materialization schema. The proposed changes may be accepted when the read schema and write schema are simultaneously satisfiable.

公开(公告)号：US11119998B1

公开(公告)日：2021-09-14

申请号：US16200595

申请日：2018-11-26

Applicant: Amazon Technologies, Inc.

Inventor： Tate A. Certain ,  Yannis Papakonstantinou ,  Allan Henry Vermeulen ,  Christopher Richard Jacques de Kadt

IPC: G06F16/22 ,  G06F16/23

Abstract: A database management system stores data for a table using a ledger which comprises journal and summary portions. A query processor of the database identifies a first set of operations to update a document of a table in accordance with an update command. The query processor identifies a second set of operations to update tables or views that are potentially affected by the update to the document. The query processor then causes the first and second sets of operations to be executed as an atomic unit.

公开(公告)号：US10956399B1

公开(公告)日：2021-03-23

申请号：US15199852

申请日：2016-06-30

Applicant: Amazon Technologies, Inc.

Inventor： Timothy Daniel Cole ,  John Michael Morkel ,  Allan Henry Vermeulen ,  Christopher Richard Jacques de Kadt

IPC: G06F16/23 ,  G06F16/18 ,  G06F16/27

Abstract: A journaled database may comprise a computing node that forms a local version of a global state, synchronized with respect to the high-water mark of a data node that maintains the global state. Instructions to modify the state that have been committed, subsequent to forming the local version of the state, may be represented in a merge signature. An uncommitted transaction may be checked for conflicts with respect to a last-ordered committed instruction to modify the data state. Validation with respect to earlier instructions represented by the merge signature may be skipped.

公开(公告)号：US20200169412A1

公开(公告)日：2020-05-28

申请号：US16200589

申请日：2018-11-26

Applicant: Amazon Technologies, Inc.

Inventor： Tate A. Certain ,  Yannis Papakonstantinou ,  Allan Henry Vermeulen ,  Christopher Richard Jacques de Kadt

IPC: H04L9/32 ,  G06F17/30

Abstract: A database management system receives a request to perform a transaction. The database management system commits the transaction, and in response to committing the transaction, generates a cryptographic hash based on an attribute of the transaction. The cryptographic hash is stored in a leaf-region of a hash tree. In response to a request to verify the transaction, signatures are retrieved from the tree based on a traversal of the tree to locate the node corresponding to the transaction. The retrieved signatures are used to verify the transaction.