公开(公告)号：US11509730B1

公开(公告)日：2022-11-22

申请号：US17119238

申请日：2020-12-11

Applicant: Amazon Technologies, Inc.

Inventor： Daniel George Peebles ,  Carsten Varming ,  Neha Rungta ,  Zhen Zhang

IPC: H04L67/51 ,  H04L9/40 ,  H04L67/133

Abstract: Techniques are described for generating a specification of security-relevant behavior associated with web services of a cloud provider network. Source code or software development artifacts associated with an implementation of a web service is obtained, where the source code of software development artifacts include an implementation of a request handler for an action of the service. The request handler includes a request authorization component, e.g., which may involve interaction with an identity and access management service of the cloud provider network to authenticate and authorize requests and may further rely upon one or more authorization contexts included in the requests received by the request handler. An interprocedural data flow analyzer is used to analyze a model representation of the bytecode to identify and generate specifications of authorization patterns associated with the request handler.

公开(公告)号：US11483353B1

公开(公告)日：2022-10-25

申请号：US17112849

申请日：2020-12-04

Applicant: Amazon Technologies, Inc.

Inventor： Jiasi Shen ,  Homer Strong ,  Daniel George Peebles ,  Neha Rungta

IPC: G06F15/173 ,  H04L9/40

Abstract: Access management policies may be generated from example requests. An access management policy may be received. One or more example requests that have expected results when evaluated with respect to the access management policy may be received. Updates to the access management policy may be determined that cause the expected results to occur when a new version of the access management policy based on the updates is enforced. The new version of the access management policy may be generated based on the updates.

公开(公告)号：US20220191205A1

公开(公告)日：2022-06-16

申请号：US17119855

申请日：2020-12-11

Applicant: Amazon Technologies, Inc.

Inventor： John Byron Cook ,  Neha Rungta ,  Carsten Varming ,  Daniel George Peebles ,  Daniel Kroening ,  Alejandro Naser Pastoriza

IPC: H04L29/06 ,  H04L12/24

Abstract: Methods, systems, and computer-readable media for analysis of role reachability with transitive tags are disclosed. An access control analyzer determines a graph comprising a plurality of nodes and one or more edges. The nodes represent roles in a provider network hosting resources. The roles are associated with access control policies granting or denying access to individual resources. One or more of the access control policies grant or deny access based (at least in part) on one or more key-value attributes. The access control analyzer determines, based (at least in part) on a role reachability analysis of the graph, whether a first role can assume a second role using one or more role assumption steps for a particular state of the one or more attributes. The one or more attributes may comprise one or more transitive attributes that persist during the one or more role assumption steps.

公开(公告)号：US11232015B2

公开(公告)日：2022-01-25

申请号：US16864713

申请日：2020-05-01

Applicant: Amazon Technologies, Inc.

Inventor： Juan Rodriguez Hortala ,  Neha Rungta ,  Mark R. Tuttle ,  Serdar Tasiran ,  Michael Tautschnig ,  Andrea Nedic ,  Carsten Varming ,  John Byron Cook ,  Sean McLaughlin

IPC: G06F9/44 ,  G06F11/36 ,  G06F9/54 ,  G06F8/65 ,  G06F9/50

Abstract: A method for verifying source code for a program includes determining that a new version of the source code is available. One or more verification tools are determined to use for verification of the new version of the source code from a verification specification associated with the source code. A plurality of verification tasks to perform for the verification of the new version of the source code are automatically determined from the verification specification associated with the source code. The plurality of verification tasks for the new version of the source code are automatically performed using the one or more verification tools. A determination is then made as to whether the new version of the source code is verified.

公开(公告)号：US11218511B1

公开(公告)日：2022-01-04

申请号：US17114286

申请日：2020-12-07

Applicant: Amazon Technologies, Inc.

Inventor： Ujjwal Rajkumar Pugalia ,  Sean McLaughlin ,  Neha Rungta ,  Andrew Jude Gacek ,  Matthias Schlaipfer ,  John Michael Renner ,  Jihong Chen ,  Alex Li ,  Erin Westfall ,  Daniel George Peebles ,  Himanshu Gupta

IPC: G06F15/16 ,  H04L29/06

Abstract: Resource state validation may be performed for access management policies by an identity and access management system. An access management policy associated with an account for network-based services may be received and validated according to resource state obtained for resources associated with the account. A correction for a portion of the access management policy may be identified according to the validation and provided via an interface for the identity and access management system.

公开(公告)号：US10977111B2

公开(公告)日：2021-04-13

申请号：US16115408

申请日：2018-08-28

Applicant: Amazon Technologies, Inc.

Inventor： Neha Rungta ,  Temesghen Kahsai Azene ,  Pauline Virginie Bolignano ,  Kasper Soe Luckow ,  Sean McLaughlin ,  Catherine Dodge ,  Andrew Jude Gacek ,  Carsten Varming ,  John Byron Cook ,  Daniel Schwartz-Narbonne ,  Juan Rodriguez Hortala

IPC: G06F11/07 ,  G06F11/14 ,  G06F9/50 ,  G06F9/451 ,  G06F8/60 ,  G06F9/455 ,  G06F11/36

Abstract: A constraint solver service of a computing resource service provider performs evaluations of logic problems provided by the service provider's users and/or services by deploying a plurality of constraint solvers to concurrently evaluate the logic problem. Each deployed solver has, or is configured with, different characteristics and/or capabilities than the other solvers; thus, the solvers can have varying execution times and ways of finding a solution. The service may control execution of the solvers using virtual computing resources, such as by installing and configuring a solver to execute in a software container instance. The service receives solver results and delivers them according to a solution strategy such as “first received” to reduce latency or “check for agreement” to validate the solution. An interface allows the provider of the logic problem to select and configure solvers, issue commands and modifications during solver execution, select the solution strategy, and receive the solution.

公开(公告)号：US10757128B2

公开(公告)日：2020-08-25

申请号：US15637227

申请日：2017-06-29

Applicant: Amazon Technologies, Inc.

Inventor： John Cook ,  Neha Rungta ,  Catherine Dodge ,  Jeff Puchalski ,  Carsten Varming

IPC: G06F21/57 ,  G06F21/60 ,  H04L29/06 ,  H04L12/24 ,  G06F21/55

Abstract: Security policies may be utilized to grant or deny permissions related to the access of computing resources. Two or more security policies may be compared to determine whether the policies are equivalent, whether one security is more permissive than another, and more. In some cases, it may be possible to identify whether there exists a security permission that is sufficient to determine two security policies lack equivalency. Propositional logics may be utilized in the evaluation of security policies.

公开(公告)号：US10652266B1

公开(公告)日：2020-05-12

申请号：US15907870

申请日：2018-02-28

Applicant: Amazon Technologies, Inc.

Inventor： Michael Tautschnig ,  Neha Rungta ,  John Cook ,  Pauline Virginie Bolignano ,  Todd Granger MacDermid ,  Oksana Tkachuk

IPC: H04L29/06

Abstract: This disclosure describes techniques for automating a system-level security review of a network-based service. The techniques may include generating and utilizing a machine-readable threat model to identify system-level security threats to the network-based service. The network-based service may be scanned upon being provisioned in a service-provider network, and the machine-readable threat model may be generated based on results of the scan. The machine-readable threat model may represent components of the network-based service, system-level security constraints configured to identify system-level security threats to the service, and mitigations to remedy violations to the system-level security constraints. The network-based service may be continuously, or periodically, scanned to identify changes in the network-based service. The techniques further include updating the machine-readable threat model to account for the detected changes to the network-based service, and analyzing the updated machine-readable threat model to determine whether the changes to the network-based service violate a system-level security constraint.