Shadowing storage gateway
    2.
    发明授权
    Shadowing storage gateway 有权
    阴影存储网关

    公开(公告)号:US09294564B2

    公开(公告)日:2016-03-22

    申请号:US13174505

    申请日:2011-06-30

    摘要: Methods, apparatus, and computer-accessible storage media for shadowing data stored on a local store to a remote store provided by a service provider. A gateway may be configured as a shadowing gateway on a customer network in response to receiving configuration information. The shadowing gateway may receive reads and writes to the local store. The gateway passes the requests to the local store, and also uploads write data indicated by the writes to the service provider to update a snapshot of the local store maintained by the service provider on the remote store. The write data may be buffered to a write log for uploading, and may be uploaded as blocks according to a block storage format used by the service provider. The shadowing process may be transparent to processes on the customer network. The shadowed data may be used to recover data on the local store.

    摘要翻译: 方法,装置和计算机可访问的存储介质,用于将存储在本地存储器上的数据映射到由服务提供商提供的远程存储器。 响应于接收配置信息,网关可以被配置为客户网络上的遮蔽网关。 阴影网关可以接收对本地商店的读取和写入。 网关将请求传递到本地商店,并将写入指示的写入数据上传到服务提供商以更新由远程商店上的服务提供商维护的本地商店的快照。 写入数据可以被缓冲到用于上传的写入日志中,并且可以根据服务提供商使用的块存储格式作为块上传。 阴影过程对客户网络上的流程可能是透明的。 阴影数据可用于恢复本地存储上的数据。

    Storage gateway security model
    3.
    发明授权
    Storage gateway security model 有权
    存储网关安全模型

    公开(公告)号:US08639921B1

    公开(公告)日:2014-01-28

    申请号:US13174489

    申请日:2011-06-30

    IPC分类号: H04L9/00

    摘要: Methods, apparatus, and computer-accessible storage media for implementing a gateway to a remote service provider according to a security model. The gateway serves as an interface between processes on a customer network and the provider, for example to store customer data to a remote data store. The model may include an activation process initiated by the gateway to register with the provider and associate the gateway with a customer account; the gateway is provided with security credentials. The model may also include establishing secure connections to external processes, for example processes of the service provider. The gateway initiates connections; the external processes do not initiate connections. The model may also include the customer managing the gateway through the service provider. The model may also include encrypting communications between the gateway and the provider and the gateway including security credentials in communications to the provider.

    摘要翻译: 用于根据安全模型实现到远程服务提供商的网关的方法,装置和计算机可访问存储介质。 网关用作客户网络和提供商之间的进程之间的接口,例如将客户数据存储到远程数据存储。 该模型可以包括由网关发起的激活过程,以向该提供商注册,并将该网关与一个客户账户相关联; 网关提供安全凭证。 该模型还可以包括建立到外部进程的安全连接,例如服务提供商的进程。 网关启动连接; 外部进程不启动连接。 该模型还可以包括通过服务提供商管理网关的客户。 该模型还可以包括加密网关和提供商之间的通信,并且网关包括与提供商的通信中的安全凭证。

    Storage gateway activation process
    4.
    发明授权
    Storage gateway activation process 有权
    存储网关激活过程

    公开(公告)号:US08806588B2

    公开(公告)日:2014-08-12

    申请号:US13174513

    申请日:2011-06-30

    IPC分类号: H04L29/06

    摘要: Methods, apparatus, and computer-accessible storage media for activating a gateway to a remote service provider. The gateway serves as an interface between processes on a customer network and the provider, for example to store customer data to a remote data store. A gateway sends a public key and metadata describing the gateway to the provider. The gateway receives an activation key from the provider and exposes the activation key on the customer network. The customer obtains the key and communicates to the provider using the key to provide customer information including a name for the gateway and to authorize registration of the gateway. The provider provides the customer information to the gateway. The gateway requests security credentials from the provider using the customer information and the key. The provider sends a security credential to the gateway. The gateway may then obtain configuration information from the customer via the provider.

    摘要翻译: 用于激活到远程服务提供商的网关的方法,装置和计算机可访问的存储介质。 网关用作客户网络和提供商之间的进程之间的接口,例如将客户数据存储到远程数据存储。 网关向提供商发送描述网关的公开密钥和元数据。 网关从提供商接收激活密钥,并在客户网络上公开激活密钥。 客户获得密钥并使用密钥向提供商进行通信,以提供客户信息,包括网关的名称并授权网关的注册。 提供商向网关提供客户信息。 网关使用客户信息和密钥从提供商请求安全凭证。 提供商向网关发送安全凭证。 然后,网关可以经由提供商从客户获得配置信息。

    Storage Gateway Activation Process
    5.
    发明申请
    Storage Gateway Activation Process 有权
    存储网关激活过程

    公开(公告)号:US20130007854A1

    公开(公告)日:2013-01-03

    申请号:US13174513

    申请日:2011-06-30

    IPC分类号: H04L29/06

    摘要: Methods, apparatus, and computer-accessible storage media for activating a gateway to a remote service provider. The gateway serves as an interface between processes on a customer network and the provider, for example to store customer data to a remote data store. A gateway sends a public key and metadata describing the gateway to the provider. The gateway receives an activation key from the provider and exposes the activation key on the customer network. The customer obtains the key and communicates to the provider using the key to provide customer information including a name for the gateway and to authorize registration of the gateway. The provider provides the customer information to the gateway. The gateway requests security credentials from the provider using the customer information and the key. The provider sends a security credential to the gateway. The gateway may then obtain configuration information from the customer via the provider.

    摘要翻译: 用于激活到远程服务提供商的网关的方法,装置和计算机可访问的存储介质。 网关用作客户网络和提供商之间的进程之间的接口,例如将客户数据存储到远程数据存储。 网关向提供商发送描述网关的公开密钥和元数据。 网关从提供商接收激活密钥,并在客户网络上公开激活密钥。 客户获得密钥并使用密钥向提供商进行通信,以提供客户信息,包括网关的名称并授权网关的注册。 提供商向网关提供客户信息。 网关使用客户信息和密钥从提供商请求安全凭证。 提供商向网关发送安全凭证。 然后,网关可以经由提供商从客户获得配置信息。

    Shadowing Storage Gateway
    6.
    发明申请
    Shadowing Storage Gateway 有权
    阴影存储网关

    公开(公告)号:US20130007219A1

    公开(公告)日:2013-01-03

    申请号:US13174505

    申请日:2011-06-30

    IPC分类号: G06F15/16

    摘要: Methods, apparatus, and computer-accessible storage media for shadowing data stored on a local store to a remote store provided by a service provider. A gateway may be configured as a shadowing gateway on a customer network in response to receiving configuration information. The shadowing gateway may receive reads and writes to the local store. The gateway passes the requests to the local store, and also uploads write data indicated by the writes to the service provider to update a snapshot of the local store maintained by the service provider on the remote store. The write data may be buffered to a write log for uploading, and may be uploaded as blocks according to a block storage format used by the service provider. The shadowing process may be transparent to processes on the customer network. The shadowed data may be used to recover data on the local store.

    摘要翻译: 方法,装置和计算机可访问的存储介质,用于将存储在本地存储器上的数据映射到由服务提供商提供的远程存储器。 响应于接收配置信息,网关可以被配置为客户网络上的遮蔽网关。 阴影网关可以接收对本地商店的读取和写入。 网关将请求传递到本地商店,并将写入指示的写入数据上传到服务提供商以更新由远程商店上的服务提供商维护的本地商店的快照。 写入数据可以被缓冲到用于上传的写入日志中,并且可以根据服务提供商使用的块存储格式作为块上传。 阴影过程对客户网络上的流程可能是透明的。 阴影数据可用于恢复本地存储上的数据。

    Remote storage gateway management using gateway-initiated connections
    7.
    发明授权
    Remote storage gateway management using gateway-initiated connections 有权
    使用网关发起的连接的远程存储网关管理

    公开(公告)号:US08601134B1

    公开(公告)日:2013-12-03

    申请号:US13174524

    申请日:2011-06-30

    IPC分类号: G06F15/16

    摘要: Methods, apparatus, and computer-accessible storage media for remotely managing a gateway that serves as an interface between processes on a customer network and a service provider, for example to store data to a remote data store. The gateway sends a connection request to a gateway control server. The server holds the connection until the server receives information (e.g., information from the customer sent via the service provider) for the gateway. The server sends the information as requests via the gateway-initiated connection, and continues to hold the connection. If a server receives information for a gateway to which it does not hold a connection, the server sends the information to the server that does hold the connection. The server may either discover the appropriate server via a registration service that registers connections to gateways or broadcast the information to peer servers identified through a registration service.

    摘要翻译: 用于远程管理网关的方法,装置和计算机可访问的存储介质,所述网关用作客户网络和服务提供商上的进程之间的接口,例如将数据存储到远程数据存储。 网关向网关控制服务器发送连接请求。 服务器保持连接,直到服务器接收到网关的信息(例如,经由服务提供商发送的客户的信息)。 服务器通过网关发起的连接发送请求的信息,并继续保持连接。 如果服务器接收到不具有连接的网关的信息,则服务器将信息发送到承载连接的服务器。 服务器可以通过注册服务发现适当的服务器,注册服务注册与网关的连接,或者通过注册服务将对该服务器的信息广播到对等服务器。