公开(公告)号：US11929986B1

公开(公告)日：2024-03-12

申请号：US18325388

申请日：2023-05-30

Applicant: Snowflake Inc.

Inventor： Khondokar Sami Igram ,  Laxman Mamidi ,  Sanjay Srivastava ,  Chieh-Sheng Wang ,  Di Wu

IPC: H04L9/40 ,  G06F21/62

CPC classification number: H04L63/0263 ,  G06F21/6218 ,  H04L63/0272 ,  H04L63/083

Abstract: Methods, systems, and computer programs are presented for enabling automated secure data sharing from a private cloud region to a public cloud region and vice versa. A cloud data platform confirms a relationship establishment procedure between a provider and a consumer is recorded with a cloud data platform, the provider being associated with a private cloud deployment and the consumer being associated with a public cloud deployment in a public region. The cloud data platform enables disabling of a firewall policy that is preventing data traffic between the private cloud deployment and the public cloud deployment and enables data sharing between the private cloud deployment and the public cloud deployment. The cloud data platform enables data sharing in a database of the cloud data platform.

公开(公告)号：US12184610B2

公开(公告)日：2024-12-31

申请号：US18429215

申请日：2024-01-31

Applicant: Snowflake Inc.

Inventor： Khondokar Sami Iqram ,  Laxman Mamidi ,  Sanjay Srivastava ,  Chieh-Sheng Wang ,  Di Wu

IPC: H04L9/40 ,  G06F21/62

Abstract: A method for secure data synchronization and sharing between distinct cloud environments is disclosed. The method involves establishing a trust relationship between a data provider's private cloud deployment and a data consumer's public cloud deployment. Utilizing hardware processors, a cross-region group sharing token is generated and validated to facilitate secure communication and data traffic between the two cloud deployments. Upon validation, a firewall policy that previously restricted data exchange is disabled, allowing for the replication of a target database from the private cloud to a secure share area accessible by the public cloud deployment. The data consumer is then enabled to access and utilize the replicated database within this secure area. The method ensures consistent data management across both deployments by managing the synchronization of the replicated database with the data provider's original database, thereby maintaining data consistency and integrity.

公开(公告)号：US20240171544A1

公开(公告)日：2024-05-23

申请号：US18429215

申请日：2024-01-31

Applicant: Snowflake Inc.

Inventor： Khondokar Sami Iqram ,  Laxman Mamidi ,  Sanjay Srivastava ,  Chieh-Sheng Wang ,  Di Wu

IPC: H04L9/40 ,  G06F21/62

CPC classification number: H04L63/0263 ,  G06F21/6218 ,  H04L63/0272 ,  H04L63/083

Abstract: A method for secure data synchronization and sharing between distinct cloud environments is disclosed. The method involves establishing a trust relationship between a data provider's private cloud deployment and a data consumer's public cloud deployment. Utilizing hardware processors, a cross-region group sharing token is generated and validated to facilitate secure communication and data traffic between the two cloud deployments. Upon validation, a firewall policy that previously restricted data exchange is disabled, allowing for the replication of a target database from the private cloud to a secure share area accessible by the public cloud deployment. The data consumer is then enabled to access and utilize the replicated database within this secure area. The method ensures consistent data management across both deployments by managing the synchronization of the replicated database with the data provider's original database, thereby maintaining data consistency and integrity.

公开(公告)号：US20250088486A1

公开(公告)日：2025-03-13

申请号：US18958641

申请日：2024-11-25

Applicant: Snowflake Inc.

Inventor： Khondokar Sami Iqram ,  Laxman Mamidi ,  Sanjay Srivastava ,  Chieh-Sheng Wang ,  Di Wu

IPC: H04L9/40 ,  G06F21/62

Abstract: A method for data sharing between cloud deployments is disclosed. A provider in a virtual private cloud (VPC) deployment generates a listing of data for sharing with a consumer in a public multi-tenant deployment. After creating a public account and transmitting a link associated with the listing to the consumer, the method responds to the consumer's selection of the link by automatically creating a secure shared area in the VPC deployment. The method includes replicating both a database and share object associated with the listing into the secure shared area as respective replicas. The replicated objects are then shared with the consumer account as data share objects, enabling the consumer to launch them in a consumer mounted database. The method concludes by enabling the consumer to perform database operations on the provider's data within the VPC deployment, ensuring secure and efficient data sharing between the cloud environments.