公开(公告)号：US20190306204A1

公开(公告)日：2019-10-03

申请号：US16377031

申请日：2019-04-05

Applicant: Amazon Technologies, Inc.

Inventor： Kyle Michael Roche ,  David Craig Yanacek

IPC: H04L29/06 ,  H04W76/10 ,  H04W4/14

Abstract: A network-connected device service receives a request to establish a communications session with a network-connected device. In response to the request, the service transmits a set of electronic messages to the network-connected device through an access point of the network-connected device to establish the communications session. The network-connected device service receives a notification from the network-connected device indicating whether the communications session has been established. If so, the service provides an indication to a controlling device that the session has been established. This enables the controlling device to submit commands executable by the network-connected device to the service, which provides the commands to the network-connected device through the access point.

公开(公告)号：US09900301B2

公开(公告)日：2018-02-20

申请号：US14968697

申请日：2015-12-14

Applicant: Amazon Technologies, Inc.

Inventor： David Craig Yanacek ,  Rameez Loladia

IPC: H04L29/06 ,  H04L12/46 ,  H04L29/08 ,  H04L12/28 ,  H04W4/00 ,  H04W12/08

CPC classification number: H04L63/08 ,  H04L12/2818 ,  H04L12/4633 ,  H04L63/0272 ,  H04L63/0281 ,  H04L63/029 ,  H04L63/0876 ,  H04L63/101 ,  H04L63/105 ,  H04L63/166 ,  H04L67/28 ,  H04W4/70 ,  H04W12/08

Abstract: A device management service provide a centralized credential provisioning system which can instantiate a proxy device that facilitates remote connections between various computing devices and various client devices. The device management service can manage instances of proxy devices in a resource provider environment that are associated with various computing devices. When a client device requests to access a computing device, the device management service can identify an instance of a proxy device associated with the computing device. The instance of the proxy device and the computing device can be configured to securely connect using credentials exchanged through, and managed by, the device management service. The computing device can be instructed to connect to the instance of the proxy device, and the client device can be provided with access information for the instance of the proxy device.

公开(公告)号：US20220166668A1

公开(公告)日：2022-05-26

申请号：US17650227

申请日：2022-02-07

Applicant: Amazon Technologies, Inc.

Inventor： Juan Antonio Sanchez ,  David Craig Yanacek ,  Antony Didier Maurice Passemard

IPC: H04L41/0806 ,  H04L67/12 ,  H04L41/08

Abstract: Technology is described for providing preconfigured device representations in a service provider environment. A plurality of device representation parameters may be received for a device via a user account. A preconfigured device representation may be created for the device using the plurality of device representation parameters. The preconfigured device representation may be associated with the user account. The device may be registered with the service provider environment. A registration of the device may be performed when the device initially connects to the service provider environment. The registration may assign a device identifier to the device and may associate the user account with the device. The preconfigured device representation may be provided to the device after the registration of the device is completed.

公开(公告)号：US10963375B1

公开(公告)日：2021-03-30

申请号：US15934821

申请日：2018-03-23

Applicant: Amazon Technologies, Inc.

Inventor： Gary Wicker ,  David Craig Yanacek

IPC: G06F12/02 ,  G06F9/50

Abstract: A technology is provided for managing maintenance operations in a distributed system. Maintenance operations of a plurality of hosts may be tracked in a service provider environment via a maintenance management service. The plurality of hosts are queried to determine availability of each of the plurality of hosts. A schedule for the maintenance operations of the plurality of hosts may be generated based at least in part on the availability of the plurality of hosts and a policy that manages when hosts are allowed to perform maintenance operations. Instructions from the maintenance management service may be sent to the plurality of hosts to schedule the maintenance operations of the plurality of hosts using the schedule.

公开(公告)号：US10270815B1

公开(公告)日：2019-04-23

申请号：US15176099

申请日：2016-06-07

Applicant: Amazon Technologies, Inc.

Inventor： Kyle Michael Roche ,  David Craig Yanacek

IPC: G06F13/00 ,  H04L29/06 ,  H04W4/14 ,  H04W76/10

Abstract: A network-connected device service receives a request to establish a communications session with a network-connected device. In response to the request, the service transmits a set of electronic messages to the network-connected device through an access point of the network-connected device to establish the communications session. The network-connected device service receives a notification from the network-connected device indicating whether the communications session has been established. If so, the service provides an indication to a controlling device that the session has been established. This enables the controlling device to submit commands executable by the network-connected device to the service, which provides the commands to the network-connected device through the access point.

公开(公告)号：US10176242B2

公开(公告)日：2019-01-08

申请号：US15645900

申请日：2017-07-10

Applicant: Amazon Technologies, Inc.

Inventor： Khawaja Salman Shams ,  Prashant Pandey ,  Swaminathan Sivasubramanian ,  Omer Ahmed Zaki ,  David Craig Yanacek ,  Johanna S Olson ,  Hendrik de Kock ,  Johnny Ying Wu

IPC: G06F17/00 ,  G06F17/30

Abstract: A remote distributed data store may be configured to process data updates received through invocation of a common API with reference to a common schema. A local data store may also be configured to process updates through the common API with reference to the common schema. Updates to the local data store may be mapped from the local data store schema to the common schema, and applied to the distributed data store. Updates to the distributed data store may be mapped from the common schema to the local data store schema. User identity may be verified to limit data synchronization to authorized users.

公开(公告)号：US09703814B1

公开(公告)日：2017-07-11

申请号：US14054760

申请日：2013-10-15

Applicant: Amazon Technologies, Inc.

Inventor： Khawaja Salman Shams ,  Prashant Pandey ,  Swaminathan Sivasubramanian ,  Omer Ahmed Zaki ,  David Craig Yanacek ,  Johanna S Olson ,  Hendrik Jacobus de Kock ,  Johnny Ying Wu

IPC: G06F17/00 ,  G06F17/30

CPC classification number: G06F17/30578 ,  G06F17/30569

Abstract: A remote distributed data store may be configured to process data updates received through invocation of a common API with reference to a common schema. A local data store may also be configured to process updates through the common API with reference to the common schema. Updates to the local data store may be mapped from the local data store schema to the common schema, and applied to the distributed data store. Updates to the distributed data store may be mapped from the common schema to the local data store schema. User identity may be verified to limit data synchronization to authorized users.

公开(公告)号：US09569634B1

公开(公告)日：2017-02-14

申请号：US14108247

申请日：2013-12-16

Applicant: Amazon Technologies, Inc.

Inventor： David Craig Yanacek ,  Prashant Pandey

IPC: G06F17/30 ,  G06F7/00 ,  G06F21/62

CPC classification number: H04L63/205 ,  G06F21/335 ,  G06F21/6218 ,  H04L63/0815 ,  H04L63/083 ,  H04L63/12

Abstract: A structured data store service, such as a database service, may implement fine-grained access to data maintained at the database service using federated identity. Fine grained access requests may be received at a database service for specified data maintained for an application provider from a client of the application provider. An access credential may be also be received. Verification of the access credential may be obtained, and the database service may evaluate the fine-grained access request according to a delegation policy corresponding to the access credential to determine whether the fine-grained request is authorized. If authorized, the fine-grained access request may be service. If not authorized, the fine-grained access request may be denied. In some embodiments, multiple application clients may have the same authorization for data, such as read authorization, while another one or more application clients may have different authorization for the data, such as write authorization.

Abstract translation: 诸如数据库服务的结构化数据存储服务可以使用联合身份来实现对在数据库服务维护的数据的细粒度访问。 可以在数据库服务处接收从应用程序提供者的客户端为应用程序提供者维护的指定数据的细粒度访问请求。 还可以接收访问凭证。 可以获得访问凭证的验证，并且数据库服务可以根据与访问凭证相对应的委托策略来评估细粒度访问请求，以确定细粒度请求是否被授权。 如果授权，细粒度访问请求可能是服务。 如果未经授权，则可能会拒绝细粒度访问请求。 在一些实施例中，多个应用客户端可以对数据具有相同的授权，诸如读取授权，而另一个或多个应用客户端可能对数据具有不同的授权，例如写授权。

公开(公告)号：US09419904B2

公开(公告)日：2016-08-16

申请号：US14617671

申请日：2015-02-09

Applicant: Amazon Technologies, Inc.

Inventor： Wei Xiao ,  David Alan Lutz ,  Timothy Andrew Rath ,  Maximiliano Maccanti ,  Miguel Mascarenhas Filipe ,  David Craig Yanacek

IPC: H04L12/819 ,  H04L12/801 ,  H04L29/08

CPC classification number: H04L47/215 ,  H04L47/12 ,  H04L67/327

Abstract: A system that provides services to clients may receive and service requests, various ones of which may require different amounts of work. An admission control mechanism may manage requests based on tokens, each of which represents a fixed amount of work. The tokens may be added to a token bucket at rate that is dependent on a target work throughput rate while the number of tokens in the bucket does not exceed its maximum capacity. If at least a pre-determined minimum number of tokens is present in the bucket when a service request is received, it may be serviced. Servicing a request may include deducting an initial number of tokens from the bucket, determining that the amount of work performed in servicing the request is different than that represented by the initially deducted tokens, and deducting additional tokens from or replacing tokens in the bucket to reflect the difference.

公开(公告)号：US09235609B1

公开(公告)日：2016-01-12

申请号：US14054773

申请日：2013-10-15

Applicant: Amazon Technologies, Inc.

Inventor： Prashant Pandey ,  Swaminathan Sivasubramanian ,  Khawaja Salman Shams ,  Omer Ahmed Zaki ,  David Craig Yanacek ,  Johanna S Olson ,  Hendrik Jacobus de Kock ,  Johnny Ying Wu ,  Aanchal Gupta

IPC: G06F17/00 ,  G06F17/30

CPC classification number: G06F17/30309 ,  G06F17/30557

Abstract: A local data store may also be configured to process updates using a common API with reference to a common schema. The common API and common schema may also be employed by hosted applications utilizing a remote distributed data store. Behavior of the remote distributed data store may be emulated by the local data store. Behaviors of the distributed data store that may be simulated include eventual consistency, provisioned throughput and latency based on horizontal partitioning.

Abstract translation: 还可以将本地数据存储器配置为使用通用API参考公共模式来处理更新。 常用的API和通用模式也可以由托管的应用程序利用远程分布式数据存储。 远程分布式数据存储的行为可能由本地数据存储器模拟。 可以模拟的分布式数据存储的行为包括基于水平分区的最终一致性，提供的吞吐量和延迟。