公开(公告)号：US20240396794A1

公开(公告)日：2024-11-28

申请号：US18792018

申请日：2024-08-01

Applicant: Amazon Technologies, Inc.

Inventor： Richendra Khanna ,  Edward L. Wallace ,  Jagwinder Singh Brar ,  Michael David Marr ,  Samuel J. McKelvie ,  Peter N. DeSantis ,  Ian P. Nowland ,  Matthew D. Klein ,  Justin Mason ,  Jacob Gabrielson

IPC: H04L41/0668 ,  H04L41/0631 ,  H04L41/12 ,  H04L43/0829 ,  H04L43/0852 ,  H04L43/103 ,  H04L45/00

Abstract: Generally described, systems and methods are provided for monitoring and detecting causes of failures of network paths. The system collects performance information from a plurality of nodes and links in a network, aggregates the collected performance information across paths in the network, processes the aggregated performance information for detecting failures on the paths, analyzes each of the detected failures to determine at least one root cause, and initiates a remedial workflow for the at least one root cause determined. In some aspects, processing the aggregated information may include performing a statistical regression analysis or otherwise solving a set of equations for the performance indications on each of a plurality of paths. In another aspect, the system may also include an interface which makes available for display one or more of the network topology, the collected and aggregated performance information, and indications of the detected failures in the topology.

公开(公告)号：US12074756B2

公开(公告)日：2024-08-27

申请号：US18161819

申请日：2023-01-30

Applicant: Amazon Technologies, Inc.

Inventor： Richendra Khanna ,  Edward L. Wallace ,  Jagwinder Singh Brar ,  Michael David Marr ,  Samuel J. McKelvie ,  Peter N. DeSantis ,  Ian P. Nowland ,  Matthew D. Klein ,  Justin Mason ,  Jacob Gabrielson

IPC: H04L41/0668 ,  H04L41/0631 ,  H04L41/12 ,  H04L43/0829 ,  H04L43/0852 ,  H04L43/103 ,  H04L45/00

CPC classification number: H04L41/0668 ,  H04L41/0645 ,  H04L41/065 ,  H04L41/12 ,  H04L43/0835 ,  H04L43/0858 ,  H04L43/103 ,  H04L45/22

Abstract: Generally described, systems and methods are provided for monitoring and detecting causes of failures of network paths. The system collects performance information from a plurality of nodes and links in a network, aggregates the collected performance information across paths in the network, processes the aggregated performance information for detecting failures on the paths, analyzes each of the detected failures to determine at least one root cause, and initiates a remedial workflow for the at least one root cause determined. In some aspects, processing the aggregated information may include performing a statistical regression analysis or otherwise solving a set of equations for the performance indications on each of a plurality of paths. In another aspect, the system may also include an interface which makes available for display one or more of the network topology, the collected and aggregated performance information, and indications of the detected failures in the topology.

公开(公告)号：US20200183718A1

公开(公告)日：2020-06-11

申请号：US16788879

申请日：2020-02-12

Applicant: Amazon Technologies, Inc.

Inventor： Matthew D. Klein ,  Michael David Marr ,  Samuel J. McKelvie

IPC: G06F9/455

Abstract: The transmission of data on computer networks according to one or more policies is disclosed. A policy may specify, among other things, various parameters which are to be followed when transmitting initiating network traffic. Multiple network interfaces may be installed on a server to enable transmission of data from the single server according a number of discrete configuration settings implicated by the various policies. The multiple network interfaces may correspond to separate physical components, with each component configured independently to implement a feature of a policy. The multiple network interfaces may also correspond to a single physical component that exposes multiple network interfaces, both to the network and to the server on which it is installed.

公开(公告)号：US09934022B2

公开(公告)日：2018-04-03

申请号：US14866643

申请日：2015-09-25

Applicant: Amazon Technologies, Inc.

Inventor： Michael David Marr ,  Matthew T. Corddry ,  James R. Hamilton

IPC: G06F21/00 ,  H04L29/06 ,  G06F9/445 ,  G06F21/57 ,  G06F21/62

CPC classification number: G06F8/65 ,  G06F21/572 ,  G06F21/629 ,  H04L63/0428 ,  H04L63/08 ,  H04L63/20

Abstract: When providing a user with native access to at least a portion of device hardware, the user can be prevented from modifying firmware and other configuration information by controlling the mechanisms used to update that information. For example, a clock or a timer mechanism can be used by a network interface card to define a mutability period. During the mutability period, firmware update to a peripheral device can be allowed. Once the mutability period has expired, firmware update to a peripheral device will no longer be allowed.

公开(公告)号：US09813355B2

公开(公告)日：2017-11-07

申请号：US15170699

申请日：2016-06-01

Applicant: Amazon Technologies, Inc.

Inventor： Alan M. Judge ,  Mark N. Kelly ,  Jagwinder Singh Brar ,  Michael David Marr ,  Daniel T. Cohn

IPC: H04L12/933 ,  H04L12/931 ,  H04L12/46 ,  H04L12/775

CPC classification number: H04L49/15 ,  H04L12/46 ,  H04L12/4625 ,  H04L45/58 ,  H04L49/356 ,  H04L49/40 ,  H04L49/45 ,  H04L49/70

Abstract: The deployment and scaling of a network of electronic devices can be improved by utilizing one or more network transpose boxes. Each transpose box can include a number of connectors and a meshing useful for implementing a specific network topology. Different tiers of a network can be connected to one or more of the network transpose boxes, and operated as a logical switch. A control server can be used to manage the control plane operations of the logical switch.

公开(公告)号：US09762481B2

公开(公告)日：2017-09-12

申请号：US15180829

申请日：2016-06-13

Applicant: Amazon Technologies, Inc.

Inventor： Jagwinder Singh Brar ,  Michael David Marr ,  Tyson J. Lemoreaux ,  Mark N. Kelly ,  Justin O. Pietsch

IPC: H04L12/775 ,  H04L12/933 ,  H04L12/931 ,  H04L12/66

CPC classification number: H04L45/583 ,  H04L12/66 ,  H04L49/15 ,  H04L49/1515 ,  H04L49/1569 ,  H04L49/35

Abstract: Efficient and highly-scalable network solutions are provided that each utilize deployment units based on Clos networks, but in an environment such as a data center of Internet Protocol-based network. Each of the deployment units can include multiple stages of devices, where connections between devices are only made between stages and the deployment units are highly connected. In some embodiments, the level of connectivity between two stages can be reduced, providing available connections to add edge switches and additional host connections while keeping the same number of between-tier connections. In some embodiments, where deployment units (or other network groups) can be used at different levels to connect other deployment units, the edges of the deployment units can be fused to reduce the number of devices per host connection.

公开(公告)号：US20170255472A1

公开(公告)日：2017-09-07

申请号：US15483227

申请日：2017-04-10

Applicant: Amazon Technologies, Inc.

Inventor： Nachiketh Rao Potlapally ,  Rachit Chawla ,  Jeremy Ryan Volkman ,  Michael David Marr

IPC: G06F9/44 ,  G06F21/57 ,  G06F11/14

CPC classification number: G06F9/4401 ,  G06F9/4406 ,  G06F11/1417 ,  G06F11/1446 ,  G06F21/575

Abstract: Approaches are described for enabling a host computing device to store credentials and other security information useful for recovering the state of the host computing device in a secure store, such as a trusted platform module (TPM) on the host computing device. When recovering the host computing device in the event of a failure (e.g., power outage, network failure, etc.), the host computing device can obtain the necessary credentials from the secure store and use those credentials to boot various services, restore the state of the host and perform various other functions. In addition, the secure store (e.g., TPM) may provide boot firmware measurement and remote attestation of the host computing devices to other devices on a network, such as when the recovering host needs to communicate with the other devices on the network.

公开(公告)号：US09712538B1

公开(公告)日：2017-07-18

申请号：US14601004

申请日：2015-01-20

Applicant: Amazon Technologies, Inc.

Inventor： Pradeep Vincent ,  Michael David Marr

IPC: H04L29/06 ,  H04L29/12 ,  H04L29/08

CPC classification number: H04L63/107 ,  H04L12/4633 ,  H04L45/74 ,  H04L61/103 ,  H04L61/25 ,  H04L67/10

Abstract: Secure networking processes, such as packet encapsulation and decapsulation, can be executed upstream of a user or guest operating system provisioned on a host machine, where the user has substantially full access to that machine. The processing can be performed on a device such as a network interface card (NIC), which can have a separate network port for communicating with mapping systems or other devices across a cloud or secure network. A virtual image of the NIC can be provided to the user such that the user can still utilize at least some of the NIC functionality. In some embodiments, the NIC can work with a standalone processor or control host in order to offload much of the processing to the control host. The NIC can further handle headers and payload separately where possible, in order to improve the efficiency of processing the various packets.

公开(公告)号：US09602636B1

公开(公告)日：2017-03-21

申请号：US15092396

申请日：2016-04-06

Applicant: Amazon Technologies, Inc.

Inventor： Pradeep Vincent ,  Michael David Marr

IPC: H04L12/951 ,  H04L29/06 ,  H04L29/12

CPC classification number: H04L69/22 ,  H04L61/1505 ,  H04L61/1511 ,  H04L61/2007 ,  H04L67/1097

Abstract: High-speed processing of packets to and from a virtualization environment can be provided while utilizing segmentation offload and other such functionality of hardware such as a network interface card. Virtualization information can be added to extension portions of protocol headers, for example, such that the payload portion is unchanged. The virtualization information can be hashed and added to the payload or stream at, or relative to, various segmentation boundaries, such that the virtualization or additional header information will only be added to a subset of the segmented data frames, thereby reducing the necessary overhead. Further, the hashing of the information can allow for reconstruction of the virtualization information upon desegmentation even in the event of packet loss.

公开(公告)号：US20160224094A1

公开(公告)日：2016-08-04

申请号：US15096096

申请日：2016-04-11

Applicant: Amazon Technologies, Inc.

Inventor： Matthew David Klein ,  Michael David Marr

IPC: G06F1/32 ,  G06F1/28

CPC classification number: G06F1/3234 ,  G06F1/26 ,  G06F1/28 ,  G06F1/3206

Abstract: Customers in a multi-tenant environment can obtain energy consumption information for a set of resources or other computing components used by those customers, including time-accurate accounting for various components of those resources utilized on behalf of the customer. A customer can also have the ability to specify how the resources are to be operated when used for the customer, in order to manage the amount of energy consumption. The accounting can be performed even when the resources are shared among multiple users or entities. Various hardware components or agents can be used to provide detailed energy consumption information for those components that is associated with a particular customer. The information can be used not only for accounting and monitoring purposes, but also to make dynamic adjustments based on various changes in usage, energy consumption, or other such factors.

Abstract translation: 多租户环境中的客户可以获得这些客户使用的一组资源或其他计算组件的能耗信息，包括对代表客户使用的资源的各种组件进行时间准确的计算。 客户还可以指定如何在为客户使用资源时进行操作，以便管理能源消耗量。 即使资源在多个用户或实体之间共享，也可以进行计费。 可以使用各种硬件组件或代理来为与特定客户相关联的组件提供详细的能量消耗信息。 该信息不仅可以用于会计和监控，还可以根据使用，能源消耗或其他因素的各种变化进行动态调整。