公开(公告)号：US11126616B2

公开(公告)日：2021-09-21

申请号：US16387878

申请日：2019-04-18

Applicant: salesforce.com, inc.

Inventor： Alex Gitelman ,  Ravishankar Arivazhagan ,  Donovan Schneider ,  Alex Field ,  Pradeep Mantha ,  Puneet Gupta

IPC: G06F16/00 ,  G06F16/23 ,  G06F16/27 ,  G06F16/25 ,  G06F16/28

Abstract: The technology disclosed relates to creating and frequently updating multiple online analytic processing (OLAP) analytic databases from an online transaction processing (OLTP) transaction updatable system that includes transaction commit, rollback, and field level security capabilities. It also relates to transparently decoupling extraction from rebuilding of frequently updated OLAP analytic databases from the OLTP transaction updatable system.

公开(公告)号：US10990593B2

公开(公告)日：2021-04-27

申请号：US15971545

申请日：2018-05-04

Applicant: salesforce.com, inc.

Inventor： Donovan Schneider ,  Keith Jones Kelly ,  Nicholas Albert Bugajski

IPC: G06F16/20 ,  G06F16/2453 ,  G06F16/25 ,  G06F16/22 ,  G06F16/242 ,  G06F16/9535

Abstract: Methods, systems, and devices for providing matching security between data stores are described. In a database system, an operational data store may store transactional datasets and an analytical data store may store analytics datasets generated based on the transactional datasets. For these analytics datasets to efficiently inherit the security configurations of the transactional datasets, security information may be embedded in datasets retrieved from the operational data store during a data acquisition procedure. This security information may be converted into an embedded multiple-value field for storage in the analytical data store. The analytical data store may receive a query for data in a dataset, and may determine security descriptors associated with the user sending the query. The analytical data store may then filter the data based on comparing these determined security descriptors with the security information in the multiple-value field, and may transmit a query response with the filtered data.

公开(公告)号：US20190340283A1

公开(公告)日：2019-11-07

申请号：US15971545

申请日：2018-05-04

Applicant: salesforce.com, inc.

Inventor： Donovan Schneider ,  Keith Jones Kelly ,  Nicholas Albert Bugajski

IPC: G06F17/30

Abstract: Methods, systems, and devices for providing matching security between data stores are described. In a database system, an operational data store may store transactional datasets and an analytical data store may store analytics datasets generated based on the transactional datasets. For these analytics datasets to efficiently inherit the security configurations of the transactional datasets, security information may be embedded in datasets retrieved from the operational data store during a data acquisition procedure. This security information may be converted into an embedded multiple-value field for storage in the analytical data store. The analytical data store may receive a query for data in a dataset, and may determine security descriptors associated with the user sending the query. The analytical data store may then filter the data based on comparing these determined security descriptors with the security information in the multiple-value field, and may transmit a query response with the filtered data.

公开(公告)号：US20180034904A1

公开(公告)日：2018-02-01

申请号：US15221486

申请日：2016-07-27

Applicant: salesforce.com, inc.

Inventor： Saptarshi Roy ,  Daniel C. Silver ,  Donovan Schneider ,  Medha Pradhan ,  Ryan Lamore ,  Naveen Purushothama Rao ,  Nicholas Geh ,  Srirama Koneru

IPC: H04L29/08 ,  H04L12/24 ,  G06F11/20

CPC classification number: H04L67/1034 ,  G06F11/2025 ,  G06F11/2041 ,  G06F11/2048 ,  G06F11/3442 ,  H04L41/046 ,  H04L41/082 ,  H04L67/1031 ,  H04L67/1095

Abstract: Methods are disclosed for dynamic node allocation for a server system that can automatically heal on failure—minimizing the need for static configuration—dynamically adjusting server resources to match load, and minimize end user wait times. The disclosed methods dynamically allocate nodes to increase capacity for a platform that accepts data queries. Additionally disclosed is a system for rolling version update deployment: workers maintain org lists of org-task-queues that they service; org-affinities between the workers and the org-task-queues require the workers to have access to local copies of immutable data sets to service org-tasks from the org-task-queues of the orgs that they service. A leader running on a worker implements a healing and balancing service that maintains worker redundancy, manages the workers' org-affinities to accumulate orgs on their respective org-lists. The leader implements messaging to the workers to update to a new software version and monitors completion of updates.

公开(公告)号：US20180032323A1

公开(公告)日：2018-02-01

申请号：US15221496

申请日：2016-07-27

Applicant: salesforce.com, inc.

Inventor： Saptarshi Roy ,  Daniel C. Silver ,  Donovan Schneider ,  Medha Pradhan ,  Ryan Lamore ,  Naveen Purushothama Rao ,  Nicholas Geh ,  Srirama Koneru

IPC: G06F9/445 ,  H04L29/08

CPC classification number: G06F8/65 ,  G06F9/50 ,  H04L67/34

Abstract: Methods are disclosed for dynamic node allocation for a server system that can automatically heal on failure—minimizing the need for static configuration—dynamically adjusting server resources to match load, and minimize end user wait times. The disclosed methods dynamically allocate nodes to increase capacity for a platform that accepts data queries. Additionally disclosed is a system for rolling version update deployment: workers maintain org lists of org-task-queues that they service; org-affinities between the workers and the org-task-queues require the workers to have access to local copies of immutable data sets to service org-tasks from the org-task-queues of the orgs that they service. A leader running on a worker implements a healing and balancing service that maintains worker redundancy, manages the workers' org-affinities to accumulate orgs on their respective org-lists. The leader implements messaging to the workers to update to a new software version and monitors completion of updates.

公开(公告)号：US20160104002A1

公开(公告)日：2016-04-14

申请号：US14512230

申请日：2014-10-10

Applicant: salesforce.com, inc

Inventor： Donovan Schneider ,  Daniel C. Silver ,  Fred Im ,  Vijayasarathy Chakravarthy

IPC: G06F21/62 ,  H04L29/08 ,  H04L29/06 ,  G06F17/30

CPC classification number: G06F21/6227 ,  G06F17/30227 ,  G06F17/30563 ,  H04L63/08 ,  H04L63/102

Abstract: A predicate-based row level security system is used when workers build or split an analytical data store. According to one implementation, predicate-based means that security requirements of source transactional systems can be used as predicates to a rule base that generates one or more security tokens, which are associated with each row as attributes of a dimension. Similarly, when an analytic data store is to be split, build job, user and session attributes can be used to generate complementary security tokens that are compared to security tokens of selected rows. Efficient indexing of a security tokens dimension makes it efficient to qualify row retrieval based on security criteria.

Abstract translation: 当工作人员构建或拆分分析数据存储时，使用基于谓词的行级安全系统。 根据一个实现，基于谓词的意味着源事务系统的安全需求可以用作生成一个或多个安全令牌的规则库的谓词，每个安全令牌与每个行相关联，作为维度的属性。 类似地，当要拆分分析数据存储时，构建作业，用户和会话属性可用于生成与所选行的安全性令牌进行比较的互补的安全令牌。 安全性标记维度的有效索引使得根据安全标准有效地限定行检索。

公开(公告)号：US20160103702A1

公开(公告)日：2016-04-14

申请号：US14512240

申请日：2014-10-10

Applicant: SALESFORCE.COM, INC.

Inventor： Donovan Schneider ,  Fred Im ,  Daniel C. Silver ,  Vijayasarathy Chakravarthy

IPC: G06F9/46 ,  G06F9/48

CPC classification number: G06F17/30557

Abstract: Low latency communication between a transactional system and analytic data store resources can be accomplished through a low latency key-value store with purpose-designed queues and status reporting channels. Posting by the transactional system to input queues and complementary posting by analytic system workers to output queues is described. On-demand production and splitting of analytic data stores requires significant elapsed processing time, so a separate process status reporting channel is described to which workers can periodically post their progress, thereby avoiding progress inquiries and interruptions of processing to generate report status. This arrangement produces low latency and reduced overhead for interactions between the transactional system and the analytic data store system.

Abstract translation: 可以通过具有目的设计的队列和状态报告通道的低延迟密钥值存储来实现事务系统和分析数据存储资源之间的低延迟通信。 描述事务处理系统将分析系统工作人员输入队列和补充发布到输出队列。 分析数据存储的按需生产和拆分需要大量经过的处理时间，因此描述了单独的进程状态报告通道，工作人员可以定期向其发布进度，从而避免进度查询和中断处理以生成报告状态。 这种安排为交易系统和分析数据存储系统之间的交互产生低延迟并减少开销。

公开(公告)号：US09292181B2

公开(公告)日：2016-03-22

申请号：US13874427

申请日：2013-04-30

Applicant: salesforce.com, inc.

Inventor： David Park ,  Neelav Rana ,  Donovan Schneider ,  Marko Koosel

IPC: G06F3/0484 ,  G06F17/30

CPC classification number: G06F3/0484 ,  G06F17/30398

Abstract: Various techniques and procedures related to filtering objects in a virtual application within a multi-tenant system are provided. One approach involves providing a first graphical user interface element enabling indication of a first filtering criterion and a second graphical user interface element enabling indication of a second filtering criterion within the virtual application being accessed over a network from a client device. After indication of the first filtering criterion and the second filtering criterion, a filtered set of objects is identified based on the first filtering criterion and the second filtering criterion. At least a portion of the filtered set of objects may then be presented within the virtual application on a client device.