公开(公告)号：US11240092B2

公开(公告)日：2022-02-01

申请号：US16825456

申请日：2020-03-20

Applicant: Amazon Technologies, Inc.

Inventor： Daniel Todd Cohn

IPC: H04L29/12 ,  H04L29/06 ,  H04L12/713 ,  H04L12/24 ,  H04W12/06

Abstract: Techniques are described for managing communications between multiple computing nodes, such as computing nodes that are separated by one or more physical networks. In some situations, the techniques may be used to provide a virtual network between multiple computing nodes that are separated by one or more intermediate physical networks, such as from the edge of the one or more intermediate physical networks by modifying communications that enter and/or leave the intermediate physical networks. In some situations, the computing nodes may include virtual machine nodes hosted on one or more physical computing machines or systems, such as by or on behalf of one or more users (e.g., users of a program execution service). The managing of the communications may include determining whether communications sent to managed computing nodes are authorized, and providing the communications to the computing nodes only if they are determined to be authorized.

公开(公告)号：US10601708B2

公开(公告)日：2020-03-24

申请号：US16283664

申请日：2019-02-22

Applicant: Amazon Technologies, Inc.

Inventor： Daniel Todd Cohn

IPC: H04L12/713 ,  H04L29/12 ,  H04L12/24 ,  H04L29/06 ,  H04W12/06

Abstract: Techniques are described for managing communications between multiple computing nodes, such as computing nodes that are separated by one or more physical networks. In some situations, the techniques may be used to provide a virtual network between multiple computing nodes that are separated by one or more intermediate physical networks, such as from the edge of the one or more intermediate physical networks by modifying communications that enter and/or leave the intermediate physical networks. In some situations, the computing nodes may include virtual machine nodes hosted on one or more physical computing machines or systems, such as by or on behalf of one or more users (e.g., users of a program execution service). The managing of the communications may include determining whether communications sent to managed computing nodes are authorized, and providing the communications to the computing nodes only if they are determined to be authorized.

公开(公告)号：US10218613B2

公开(公告)日：2019-02-26

申请号：US15435138

申请日：2017-02-16

Applicant: Amazon Technologies, Inc.

Inventor： Daniel Todd Cohn

IPC: H04L12/24 ,  H04L29/06 ,  H04L29/12 ,  H04L12/06 ,  H04L12/713 ,  H04W12/06

Abstract: Techniques are described for managing communications between multiple computing nodes, such as computing nodes that are separated by one or more physical networks. In some situations, the techniques may be used to provide a virtual network between multiple computing nodes that are separated by one or more intermediate physical networks, such as from the edge of the one or more intermediate physical networks by modifying communications that enter and/or leave the intermediate physical networks. In some situations, the computing nodes may include virtual machine nodes hosted on one or more physical computing machines or systems, such as by or on behalf of one or more users (e.g., users of a program execution service). The managing of the communications may include determining whether communications sent to managed computing nodes are authorized, and providing the communications to the computing nodes only if they are determined to be authorized.

公开(公告)号：US09577926B2

公开(公告)日：2017-02-21

申请号：US13829578

申请日：2013-03-14

Applicant: Amazon Technologies, Inc.

Inventor： Daniel Todd Cohn

IPC: H04L29/00 ,  H04L12/713 ,  H04L29/12 ,  H04L12/24 ,  H04L29/06

CPC classification number: H04L45/586 ,  H04L29/12028 ,  H04L29/12358 ,  H04L29/12801 ,  H04L41/00 ,  H04L41/28 ,  H04L61/103 ,  H04L61/2007 ,  H04L61/251 ,  H04L61/6004 ,  H04L63/20 ,  H04W12/06

Abstract: Techniques are described for managing communications between multiple computing nodes, such as computing nodes that are separated by one or more physical networks. In some situations, the techniques may be used to provide a virtual network between multiple computing nodes that are separated by one or more intermediate physical networks, such as from the edge of the one or more intermediate physical networks by modifying communications that enter and/or leave the intermediate physical networks. In some situations, the computing nodes may include virtual machine nodes hosted on one or more physical computing machines or systems, such as by or on behalf of one or more users (e.g., users of a program execution service). The managing of the communications may include determining whether communications sent to managed computing nodes are authorized, and providing the communications to the computing nodes only if they are determined to be authorized.

Abstract translation: 描述了用于管理多个计算节点之间的通信的技术，诸如由一个或多个物理网络分离的计算节点。 在某些情况下，这些技术可用于在由一个或多个中间物理网络分离的多个计算节点之间提供虚拟网络，诸如从一个或多个中间物理网络的边缘通过修改进入和/或 离开中间物理网络。 在一些情况下，计算节点可以包括托管在一个或多个物理计算机或系统上的虚拟机节点，诸如由或由一个或多个用户（例如，程序执行服务的用户）代表。 通信的管理可以包括确定发送到被管理计算节点的通信是否被授权，以及仅当它们被确定被授权时才将该通信提供给计算节点。