公开(公告)号：US12235740B2

公开(公告)日：2025-02-25

申请号：US18625687

申请日：2024-04-03

Applicant: SAP SE

Inventor： Dirk Thomsen

IPC: G06F11/14 ,  G06F21/60 ,  G06F21/64

Abstract: Computer-readable media, methods, and systems are disclosed for processing backup and recovery of pages in an in-memory database system employing tenant-based, group-level encryption for a plurality of tenants. Page metadata for a page may be collected. The page may comprise a header and a set of page contents. The page metadata may be stored with the page header. When a backup request is received, the page may be loaded into a backup stream. The page may be loaded with the header unencrypted and the page contents encrypted. When a recovery request is received, the data page may be retrieved from the backup stream. A converter may be rebuilt using the page metadata. The data page may then be written to the main memory of the database system. The page contents may be decrypted by the converter.

公开(公告)号：US12147558B2

公开(公告)日：2024-11-19

申请号：US17968136

申请日：2022-10-18

Applicant: SAP SE

Inventor： Patrick Voelker ,  Holger Mack ,  Meinolf Block ,  Thorsten Glebe ,  Mihnea Andrei ,  Yong Sik Kwon ,  Dirk Thomsen ,  Martin Schindewolf ,  Martin Kittel ,  Myung Sun Park ,  Beomsoo Kim ,  Martin Heidel ,  Christian Bensberg ,  Fabian Garagnon ,  Michael Muehle ,  Sergej Hardock ,  Johannes Beigel ,  Sascha Zorn ,  Christoph Hohner ,  Andreas Hartel

IPC: G06F21/00 ,  G06F21/62 ,  H04L9/08

Abstract: A database system includes a persistent storage system, a memory storing metadata defining a tenant object and a plurality of database artifacts, a first instance of the tenant object, the first instance associated with a first plurality of the database artifacts including first data associated with the first instance of the tenant object, and a second instance of the tenant object, the second instance associated with a second plurality of the database artifacts including second data associated with the second instance of the tenant object. A processing unit is to execute program code of a database instance to cause the database system to encrypt the first data associated with the first instance of the tenant object using a first public encryption key and store the encrypted first data in the persistent storage system, and encrypt the second data associated with the second instance of the tenant object using a second public encryption key and store the encrypted second data in the persistent storage system.

公开(公告)号：US11899811B2

公开(公告)日：2024-02-13

申请号：US17333578

申请日：2021-05-28

Applicant: SAP SE

Inventor： Dirk Thomsen

IPC: G06F21/62 ,  G06F21/60 ,  G06F12/14 ,  G06F21/64 ,  G06F21/10

CPC classification number: G06F21/6227 ,  G06F12/1425 ,  G06F21/602 ,  G06F21/64 ,  G06F21/107

Abstract: Computer-readable media, methods, and systems are disclosed for encrypting and decrypting data pages in connection with a database employing group-level encryption. A request to load a group-level encrypted logical data page into main memory is received, the data page being identified by a logical page number. A block of group-level encrypted data is loaded into the main memory of the database system from an address corresponding to the physical block number. A block of group-level encrypted data is loaded into the main memory of the database system. A header associated with the block of group-level encrypted data is decrypted using a data-volume encryption key, and an encryption-group identifier is accessed from the decrypted header. A group-level encryption key is retrieved from a key manager, and the remainder of the block of group-level encrypted data is decrypted using the group-level encryption key.

公开(公告)号：US20230188328A1

公开(公告)日：2023-06-15

申请号：US17549164

申请日：2021-12-13

Applicant: SAP SE

Inventor： Dirk Thomsen ,  Till Merker

IPC: H04L9/08 ,  G06F21/62 ,  H04L9/06

CPC classification number: H04L9/0833 ,  H04L9/0869 ,  G06F21/6218 ,  H04L9/0631

Abstract: Computer-readable media, methods, and systems are disclosed for handling intermediate data in connection with a database employing group-level encryption. Intermediate data is used during database operation and stored transiently such that the intermediate data is removed from memory upon database restart. To protect the privacy of the intermediate data, a random encryption key may be generated upon startup of a database instance. The random encryption key may be stored transiently. During database operation, the random encryption key may be used to encrypt and/or decrypt the intermediate data. The transient memory may be wiped upon database shut down such that the random encryption key is no longer accessible upon database restart.

公开(公告)号：US11216440B2

公开(公告)日：2022-01-04

申请号：US15970739

申请日：2018-05-03

Applicant: SAP SE

Inventor： Dirk Thomsen ,  Thorsten Glebe

IPC: G06F16/23

Abstract: A request is received for a first non-exclusive lock to read a page in a database. Thereafter, execution of the at least one non-exclusive lock is initiated. Later, a request for an exclusive lock to modify the page in the database is received. Subsequently, a request is received for a second non-exclusive lock. In response, an amount of time to finish the first request and the second request is estimated. The second non-exclusive lock is allowed to execute in parallel to the first non-exclusive if the determined amount of time to finish the second non-exclusive lock is less than an estimated amount of time needed by the first non-exclusive lock. Alternatively, execution of the second non-exclusive lock is delayed to after the execution of the exclusive lock if the determined amount of time to finish the second non-exclusive lock is greater than an amount of time needed by the first non-exclusive lock.

公开(公告)号：US11169886B2

公开(公告)日：2021-11-09

申请号：US16261146

申请日：2019-01-29

Applicant: SAP SE

Inventor： Dirk Thomsen

IPC: G06F16/30 ,  G06F11/14

Abstract: A temporary page is allocated in which pages are loaded into main memory and having associated physical disk storage. The temporary page is also flagged as being temporary. Subsequently, a savepoint is initiated for the database so that, during the savepoint, the temporary page can be modified without acquiring a consistent change while preventing other non-temporary pages from being modified. Later, the savepoint can be finalized to enable the database to be rolled back to a point in time corresponding to the savepoint as part of a recovery process.

公开(公告)号：US20210294703A1

公开(公告)日：2021-09-23

申请号：US16824494

申请日：2020-03-19

Applicant: SAP SE

Inventor： Dirk Thomsen

IPC: G06F11/14 ,  G06F11/10 ,  G06F12/0804

Abstract: A database receives pages that are piped from backup media with each of the pages having a corresponding savepoint version. At least a portion of the pages are then flagged as being from recovery. The savepoint versions for the pages are maintained if they have a flag. A single checksum is then calculated for each page to confirm integrity. Each page is then loaded into memory of the database after it is confirming the corresponding calculated single checksum. Related apparatus, systems, techniques and articles are also described.

公开(公告)号：US10969990B2

公开(公告)日：2021-04-06

申请号：US16261299

申请日：2019-01-29

Applicant: SAP SE

Inventor： Dirk Thomsen

IPC: G06F3/06 ,  G06F9/50 ,  G06F9/48

Abstract: Physical block numbers are assigned to pages loaded into memory of an in-memory database. Thereafter, pages having a same size are distributed to one of a plurality of helper threads executing in parallel for processing if such pages having consecutive physical block numbers. Each of these helper threads can have a corresponding small page buffer. Contents of the respective small page buffers are later flushed to physical disk persistence when such small page buffers are full.

公开(公告)号：US10776165B2

公开(公告)日：2020-09-15

申请号：US15980581

申请日：2018-05-15

Applicant: SAP SE

Inventor： Daniel Booss ,  Dirk Thomsen

IPC: G06F9/50 ,  G06F16/22

Abstract: Resources are loaded into a resource container in an in-memory database system in which pages are loaded into memory and having associated physical disk storage. Each resource is assigned a new time stamp when such resource is loaded into the resource container. At least some of the references are subsequently accessed and time stamps associated with these accesses resources are selectively updated based on the type of access. These time stamps are later used to evict least recently used resources (as indicated by their time stamps) from the resource container.

公开(公告)号：US10310946B2

公开(公告)日：2019-06-04

申请号：US15482074

申请日：2017-04-07

Applicant: SAP SE

Inventor： Dirk Thomsen

IPC: G06F11/14 ,  G06F11/16 ,  G06F16/22 ,  G06F16/23 ,  G06F3/06

Abstract: Execution of a page flusher is initiated in an in-memory database system in which pages are loaded into memory and having associated physical disk storage. Thereafter, pages are identified that have been loaded into the memory of the database system and which have been modified. These identified pages are to be flushed to the physical disk storage. Each page is assigned with a different ordered physical page number. Asynchronous write I/O is later triggered causing the identified pages to be flushed to the physical disk storage and stored in the physical disk storage according to their assigned physical page numbers.