公开(公告)号：US11924331B2

公开(公告)日：2024-03-05

申请号：US17675670

申请日：2022-02-18

Applicant: Amazon Technologies, Inc.

Inventor： Petr Shveykin ,  Kelvin Yiu ,  Jakub Wojciak

IPC: H04L29/06 ,  H04L9/08 ,  H04L9/14 ,  H04L9/40

CPC classification number: H04L9/083 ,  H04L9/0822 ,  H04L9/0894 ,  H04L9/14 ,  H04L63/0435 ,  H04L63/064 ,  H04L63/068

Abstract: Systems and processes are described for a message service with distributed key caching for server-side encryption. Message requests are received by message handlers of the message service that cache data encryption keys used to encrypt and decrypt messages that are stored to message containers in back end storage. A metadata service obtains the data encryption keys from a key management service, caches the keys locally, and sends the keys to the message handlers upon request, where the keys are cached, again. The key management service may generate the data encryption keys based on a master key (e.g., a client's master key). The message handlers may send both message data encrypted using the data encryption key and an encrypted copy of the data encryption key to be stored together in the data store.

公开(公告)号：US10999234B1

公开(公告)日：2021-05-04

申请号：US16518923

申请日：2019-07-22

Applicant: Amazon Technologies, Inc.

Inventor： Petr Shveykin ,  Jakub Wojciak ,  Marc John Brooker ,  Cecilia Deng

IPC: G06F15/16 ,  H04L12/58 ,  H04L29/08

Abstract: A message processing technology is provided that includes subscription of stateless compute functions to messaging queues of the message queueing service. The message queueing service may be configured to provide highly scalable hosted messaging queues for reliable delivery of messages. When messages are received in a messaging queue, then a stateless compute function, of a serverless compute service, that is subscribed to the messaging queue may be invoked to process the message. The serverless compute service manages compute resource for execution of the stateless compute function in response to dynamic message traffic.

公开(公告)号：US10404452B2

公开(公告)日：2019-09-03

申请号：US15242034

申请日：2016-08-19

Applicant: Amazon Technologies, Inc.

Inventor： Petr Shveykin ,  Kelvin Yiu ,  Jakub Wojciak

IPC: H04L29/06 ,  H04L9/08 ,  H04L9/14

Abstract: Systems and processes are described for a message service with distributed key caching for server-side encryption. Message requests are received by message handlers of the message service that cache data encryption keys used to encrypt and decrypt messages that are stored to message containers in back end storage. A metadata service obtains the data encryption keys from a key management service, caches the keys locally, and sends the keys to the message handlers upon request, where the keys are cached, again. The key management service may generate the data encryption keys based on a master key (e.g., a client's master key). The message handlers may send both message data encrypted using the data encryption key and an encrypted copy of the data encryption key to be stored together in the data store.

公开(公告)号：US20240171381A1

公开(公告)日：2024-05-23

申请号：US18426007

申请日：2024-01-29

Applicant: Amazon Technologies, Inc.

Inventor： Petr Shveykin ,  Kelvin Yiu ,  Jakub Wojciak

IPC: H04L9/08 ,  H04L9/14 ,  H04L9/40

CPC classification number: H04L9/083 ,  H04L9/0822 ,  H04L9/0894 ,  H04L9/14 ,  H04L63/0435 ,  H04L63/064 ,  H04L63/068

Abstract: Systems and processes are described for a message service with distributed key caching for server-side encryption. Message requests are received by message handlers of the message service that cache data encryption keys used to encrypt and decrypt messages that are stored to message containers in back end storage. A metadata service obtains the data encryption keys from a key management service, caches the keys locally, and sends the keys to the message handlers upon request, where the keys are cached, again. The key management service may generate the data encryption keys based on a master key (e.g., a client's master key). The message handlers may send both message data encrypted using the data encryption key and an encrypted copy of the data encryption key to be stored together in the data store.

公开(公告)号：US20200059356A1

公开(公告)日：2020-02-20

申请号：US16554522

申请日：2019-08-28

Applicant: Amazon Technologies, Inc.

Inventor： Petr Shveykin ,  Kelvin Yiu ,  Jakub Wojciak

IPC: H04L9/08 ,  H04L29/06 ,  H04L9/14

Abstract: Systems and processes are described for a message service with distributed key caching for server-side encryption. Message requests are received by message handlers of the message service that cache data encryption keys used to encrypt and decrypt messages that are stored to message containers in back end storage. A metadata service obtains the data encryption keys from a key management service, caches the keys locally, and sends the keys to the message handlers upon request, where the keys are cached, again. The key management service may generate the data encryption keys based on a master key (e.g., a client's master key). The message handlers may send both message data encrypted using the data encryption key and an encrypted copy of the data encryption key to be stored together in the data store.

公开(公告)号：US10361985B1

公开(公告)日：2019-07-23

申请号：US15273467

申请日：2016-09-22

Applicant: Amazon Technologies, Inc.

Inventor： Petr Shveykin ,  Jakub Wojciak ,  Marc John Brooker ,  Cecilia Deng

IPC: G06F15/16 ,  H04L12/58 ,  H04L29/08

Abstract: A message processing technology is provided that includes subscription of stateless compute functions to messaging queues of the message queueing service. The message queueing service may be configured to provide highly scalable hosted messaging queues for reliable delivery of messages. When messages are received in a messaging queue, then a stateless compute function, of a serverless compute service, that is subscribed to the messaging queue may be invoked to process the message. The serverless compute service manages compute resource for execution of the stateless compute function in response to dynamic message traffic.

公开(公告)号：US20220182223A1

公开(公告)日：2022-06-09

申请号：US17675670

申请日：2022-02-18

Applicant: Amazon Technologies, Inc.

Inventor： Petr Shveykin ,  Kelvin Yiu ,  Jakub Wojciak

IPC: H04L9/08 ,  H04L9/40 ,  H04L9/14

Abstract: Systems and processes are described for a message service with distributed key caching for server-side encryption. Message requests are received by message handlers of the message service that cache data encryption keys used to encrypt and decrypt messages that are stored to message containers in back end storage. A metadata service obtains the data encryption keys from a key management service, caches the keys locally, and sends the keys to the message handlers upon request, where the keys are cached, again. The key management service may generate the data encryption keys based on a master key (e.g., a client's master key). The message handlers may send both message data encrypted using the data encryption key and an encrypted copy of the data encryption key to be stored together in the data store.

公开(公告)号：US11258592B2

公开(公告)日：2022-02-22

申请号：US16554522

申请日：2019-08-28

Applicant: Amazon Technologies, Inc.

Inventor： Petr Shveykin ,  Kelvin Yiu ,  Jakub Wojciak

IPC: H04L29/06 ,  H04L9/08 ,  H04L9/14

Abstract: Systems and processes are described for a message service with distributed key caching for server-side encryption. Message requests are received by message handlers of the message service that cache data encryption keys used to encrypt and decrypt messages that are stored to message containers in back end storage. A metadata service obtains the data encryption keys from a key management service, caches the keys locally, and sends the keys to the message handlers upon request, where the keys are cached, again. The key management service may generate the data encryption keys based on a master key (e.g., a client's master key). The message handlers may send both message data encrypted using the data encryption key and an encrypted copy of the data encryption key to be stored together in the data store.

公开(公告)号：US20180054302A1

公开(公告)日：2018-02-22

申请号：US15242034

申请日：2016-08-19

Applicant: Amazon Technologies, Inc.

Inventor： Petr Shveykin ,  Kelvin Yiu ,  Jakub Wojciak

IPC: H04L9/08 ,  H04L29/06 ,  H04L9/14

CPC classification number: H04L9/083 ,  H04L9/0822 ,  H04L9/0894 ,  H04L9/14 ,  H04L63/0435 ,  H04L63/064 ,  H04L63/068

Abstract: Systems and processes are described for a message service with distributed key caching for server-side encryption. Message requests are received by message handlers of the message service that cache data encryption keys used to encrypt and decrypt messages that are stored to message containers in back end storage. A metadata service obtains the data encryption keys from a key management service, caches the keys locally, and sends the keys to the message handlers upon request, where the keys are cached, again. The key management service may generate the data encryption keys based on a master key (e.g., a client's master key). The message handlers may send both message data encrypted using the data encryption key and an encrypted copy of the data encryption key to be stored together in the data store.