公开(公告)号：US11328053B2

公开(公告)日：2022-05-10

申请号：US16402210

申请日：2019-05-02

Applicant: Netflix, Inc.

Inventor： William Bengtson

IPC: G06F21/45 ,  H04L67/51 ,  H04L67/566 ,  H04L29/06 ,  H04L9/40

Abstract: The disclosed computer-implemented method may include establishing a header policy that is to be applied at a metadata proxy. The header policy may indicate that specified header information is to be included in each metadata service request sent to a metadata service. The method may also include accessing the established header policy at the metadata proxy, where the metadata proxy is configured to intercept metadata service requests and check the intercepted requests for the specified header information. The method may further include determining, at the metadata proxy, that the metadata service request does not include the specified header information and, in response to the determination, preventing the metadata service request from being passed to the metadata service. Various other methods, systems, and computer-readable media are also disclosed.

公开(公告)号：US11275824B2

公开(公告)日：2022-03-15

申请号：US16402213

申请日：2019-05-02

Applicant: Netflix, Inc.

Inventor： William Bengtson ,  Scott Behrens ,  Travis McPeak

IPC: H04L29/06 ,  G06F21/45 ,  H04L67/51 ,  H04L67/566

Abstract: The disclosed computer-implemented method may include initializing a server instance using a specified network address and an associated set of credentials, logging the network address of the initialized server instance as well as the associated set of credentials in a data log, analyzing network service requests to determine that a different server instance with a different network address is requesting a network service using the same set of credentials, accessing the data log to determine whether the second server instance is using a network address that is known to be valid within the network and, upon determining that the second server instance is not using a known network address, preventing the second server instance from performing specified tasks within the network. Various other methods, systems, and computer-readable media are also disclosed.

公开(公告)号：US11263305B2

公开(公告)日：2022-03-01

申请号：US16393958

申请日：2019-04-25

Applicant: Netflix, Inc.

Inventor： William Bengtson

IPC: G06F21/45 ,  H04L29/06 ,  H04L67/51 ,  H04L67/566

Abstract: The disclosed computer-implemented method may include mapping an internal network to identify various nodes of the internal network. The method may further include determining where at least some of the internal network nodes identified in the mapping are located. The method may also include receiving a request for metadata service information from an application hosted on a cloud server instance. The method may then include providing a response to the received request for metadata service information if the determined location of the requesting node is approved or preventing a response to the received request for metadata service information if the determined location of the requesting node is not approved. Various other methods, systems, and computer-readable media are also disclosed.