-
公开(公告)号:US11924331B2
公开(公告)日:2024-03-05
申请号:US17675670
申请日:2022-02-18
Applicant: Amazon Technologies, Inc.
Inventor: Petr Shveykin , Kelvin Yiu , Jakub Wojciak
CPC classification number: H04L9/083 , H04L9/0822 , H04L9/0894 , H04L9/14 , H04L63/0435 , H04L63/064 , H04L63/068
Abstract: Systems and processes are described for a message service with distributed key caching for server-side encryption. Message requests are received by message handlers of the message service that cache data encryption keys used to encrypt and decrypt messages that are stored to message containers in back end storage. A metadata service obtains the data encryption keys from a key management service, caches the keys locally, and sends the keys to the message handlers upon request, where the keys are cached, again. The key management service may generate the data encryption keys based on a master key (e.g., a client's master key). The message handlers may send both message data encrypted using the data encryption key and an encrypted copy of the data encryption key to be stored together in the data store.
-
公开(公告)号:US11663058B1
公开(公告)日:2023-05-30
申请号:US17306862
申请日:2021-05-03
Applicant: Amazon Technologies, Inc.
Inventor: Jakub Wojciak , James Lance Eather , Rogerio Sathio Yamaguti , Shawn Patrick Jones , Arijit Choudhury , Rishi Baldawa
IPC: G06F9/54 , G06F9/38 , G06F18/2113
CPC classification number: G06F9/542 , G06F9/3836 , G06F18/2113
Abstract: A probabilistic data structure such as a bloom filter may be used to provide a space efficient representation of rules that define events of interest to sources and may be used to reduce the number of events ingested by an event bus system. An event bus system may generate a probabilistic data structure based on the rules that may be used at the event source as a filter. The probabilistic data structure predetermines whether the events to be sent to the event bus system will be of interest to any event targets and if an event is of no interest to any of the event targets, the event will not be sent.
-
公开(公告)号:US20240171381A1
公开(公告)日:2024-05-23
申请号:US18426007
申请日:2024-01-29
Applicant: Amazon Technologies, Inc.
Inventor: Petr Shveykin , Kelvin Yiu , Jakub Wojciak
CPC classification number: H04L9/083 , H04L9/0822 , H04L9/0894 , H04L9/14 , H04L63/0435 , H04L63/064 , H04L63/068
Abstract: Systems and processes are described for a message service with distributed key caching for server-side encryption. Message requests are received by message handlers of the message service that cache data encryption keys used to encrypt and decrypt messages that are stored to message containers in back end storage. A metadata service obtains the data encryption keys from a key management service, caches the keys locally, and sends the keys to the message handlers upon request, where the keys are cached, again. The key management service may generate the data encryption keys based on a master key (e.g., a client's master key). The message handlers may send both message data encrypted using the data encryption key and an encrypted copy of the data encryption key to be stored together in the data store.
-
公开(公告)号:US20200059356A1
公开(公告)日:2020-02-20
申请号:US16554522
申请日:2019-08-28
Applicant: Amazon Technologies, Inc.
Inventor: Petr Shveykin , Kelvin Yiu , Jakub Wojciak
Abstract: Systems and processes are described for a message service with distributed key caching for server-side encryption. Message requests are received by message handlers of the message service that cache data encryption keys used to encrypt and decrypt messages that are stored to message containers in back end storage. A metadata service obtains the data encryption keys from a key management service, caches the keys locally, and sends the keys to the message handlers upon request, where the keys are cached, again. The key management service may generate the data encryption keys based on a master key (e.g., a client's master key). The message handlers may send both message data encrypted using the data encryption key and an encrypted copy of the data encryption key to be stored together in the data store.
-
公开(公告)号:US10361985B1
公开(公告)日:2019-07-23
申请号:US15273467
申请日:2016-09-22
Applicant: Amazon Technologies, Inc.
Inventor: Petr Shveykin , Jakub Wojciak , Marc John Brooker , Cecilia Deng
Abstract: A message processing technology is provided that includes subscription of stateless compute functions to messaging queues of the message queueing service. The message queueing service may be configured to provide highly scalable hosted messaging queues for reliable delivery of messages. When messages are received in a messaging queue, then a stateless compute function, of a serverless compute service, that is subscribed to the messaging queue may be invoked to process the message. The serverless compute service manages compute resource for execution of the stateless compute function in response to dynamic message traffic.
-
Patent Agency Ranking
公开(公告)号:US11474868B1
公开(公告)日:2022-10-18
申请号:US16698758
申请日:2019-11-27
Applicant: Amazon Technologies, Inc.
Inventor: Somar Musa , Jakub Wojciak , Bernardo Vecchia Stein , Shunjia Ding
Abstract: A shard polling system fairly distributes stored items from producers to consumer processes and includes polling threads that poll for items from respective portions of a storage source, place the items in respective queues, and increment a global permit counter, restricted to a configurable maximum, that tracks the quantity of messages across the respective queues. The polling threads are restricted by respective shard permit counters that limit a quantity of items that may be moved from a storage source to a respective queue. A global thread applies a fairness technique, such as round robin, to fairly obtain the items from each of the respective queues and places the items in a global queue, decrementing the global permit counter, and incrementing the respective shard permit counter for each item obtained. Consumer threads poll the global queue (e.g., a blocking output queue) for the messages.
-
公开(公告)号:US10999234B1
公开(公告)日:2021-05-04
申请号:US16518923
申请日:2019-07-22
Applicant: Amazon Technologies, Inc.
Inventor: Petr Shveykin , Jakub Wojciak , Marc John Brooker , Cecilia Deng
Abstract: A message processing technology is provided that includes subscription of stateless compute functions to messaging queues of the message queueing service. The message queueing service may be configured to provide highly scalable hosted messaging queues for reliable delivery of messages. When messages are received in a messaging queue, then a stateless compute function, of a serverless compute service, that is subscribed to the messaging queue may be invoked to process the message. The serverless compute service manages compute resource for execution of the stateless compute function in response to dynamic message traffic.
-
公开(公告)号:US10404452B2
公开(公告)日:2019-09-03
申请号:US15242034
申请日:2016-08-19
Applicant: Amazon Technologies, Inc.
Inventor: Petr Shveykin , Kelvin Yiu , Jakub Wojciak
Abstract: Systems and processes are described for a message service with distributed key caching for server-side encryption. Message requests are received by message handlers of the message service that cache data encryption keys used to encrypt and decrypt messages that are stored to message containers in back end storage. A metadata service obtains the data encryption keys from a key management service, caches the keys locally, and sends the keys to the message handlers upon request, where the keys are cached, again. The key management service may generate the data encryption keys based on a master key (e.g., a client's master key). The message handlers may send both message data encrypted using the data encryption key and an encrypted copy of the data encryption key to be stored together in the data store.
-
公开(公告)号:US10382380B1
公开(公告)日:2019-08-13
申请号:US15354887
申请日:2016-11-17
Applicant: Amazon Technologies, Inc.
Inventor: Amin Suzani , Jakub Wojciak
IPC: H04L12/58 , H04L12/863
Abstract: Technologies are disclosed for providing a workload management service for first-in, first-out (“FIFO”) queues in a network-accessible message queuing service within a service provider network. When a host is overloaded, or about to become overloaded, the affected host sends an alarm to the workload management service. The workload management service determines a set of other hosts that have lower workloads based upon performance metrics. The workload management service selects a new host from the set of hosts for moving a FIFO queue from the overloaded cluster. The workload management service seals the FIFO queue fragment at the overloaded host for writing of new messages and new messages having the same message group identifier are written to a new FIFO queue fragment on the new host. Messages are not read from the new FIFO queue fragment until all messages are read from the sealed FIFO queue fragment on the overloaded cluster.
-
公开(公告)号:US20220182223A1
公开(公告)日:2022-06-09
申请号:US17675670
申请日:2022-02-18
Applicant: Amazon Technologies, Inc.
Inventor: Petr Shveykin , Kelvin Yiu , Jakub Wojciak
Abstract: Systems and processes are described for a message service with distributed key caching for server-side encryption. Message requests are received by message handlers of the message service that cache data encryption keys used to encrypt and decrypt messages that are stored to message containers in back end storage. A metadata service obtains the data encryption keys from a key management service, caches the keys locally, and sends the keys to the message handlers upon request, where the keys are cached, again. The key management service may generate the data encryption keys based on a master key (e.g., a client's master key). The message handlers may send both message data encrypted using the data encryption key and an encrypted copy of the data encryption key to be stored together in the data store.
-
-
-
-
-
-
-
-
-
Search Results
12
records
(took 0.017 seconds)
