公开(公告)号：US11469964B2

公开(公告)日：2022-10-11

申请号：US17091811

申请日：2020-11-06

Applicant: Amazon Technologies, Inc.

Inventor： Anthony Nicholas Liguori ,  Matthew Shawn Wilson

IPC: H04L41/12 ,  G06F9/455 ,  G06F9/4401

Abstract: At a network manager of an extension resource group of a provider network, a message comprising a command to launch a compute instance is received at an address which is part of a first network configured at a premise external to the provider network. The extension resource group includes a first host at the external premise. Within a second network configured at the external premise, the first host is assigned an address within a second address range. Addresses within the second range are also assigned to hosts within the provider network. The command is transmitted to the first host, and a compute instance is instantiated.

公开(公告)号：US11360824B2

公开(公告)日：2022-06-14

申请号：US16692455

申请日：2019-11-22

Applicant: Amazon Technologies, Inc.

Inventor： Andra-Irina Paraschiv ,  Matthew Shawn Wilson

IPC: G06F9/455 ,  G06F9/50

Abstract: At a virtualization host which includes an instance partitioning controller, a set of resources is allocated to a compute instance by a virtualization manager. The first compute instance does not include another virtualization manager. In response to a communication from the controller, the virtualization manager allocates a subset of the resources to a child compute instance launched at the virtualization host. An application is executed within the child compute instance.

公开(公告)号：US11249647B2

公开(公告)日：2022-02-15

申请号：US16435372

申请日：2019-06-07

Applicant: Amazon Technologies, Inc.

Inventor： Raviprasad Venkatesha Murthy Mummidi ,  Matthew Shawn Wilson ,  Anthony Nicholas Liguori ,  Nafea Bshara ,  Saar Gross ,  Jaspal Kohli

IPC: G06F3/06 ,  G06F12/14 ,  G06F13/20 ,  G06F13/40

Abstract: A peripheral device may implement storage virtualization for non-volatile storage devices connected to the peripheral device. A host system connected to the peripheral device may host one or multiple virtual machines. The peripheral device may implement different virtual interfaces for the virtual machines or the host system that present a storage partition at a non-volatile storage device to the virtual machine or host system for storage. Access requests from the virtual machines or host system are directed to the respective virtual interface at the peripheral device. The peripheral device may perform data encryption or decryption, or may perform throttling of access requests. The peripheral device may generate and send physical access requests to perform the access requests received via the virtual interfaces to the non-volatile storage devices. Completion of the access requests may be indicated to the virtual machines via the virtual interfaces.

公开(公告)号：US11228449B2

公开(公告)日：2022-01-18

申请号：US16113471

申请日：2018-08-27

Applicant: Amazon Technologies, Inc.

Inventor： Eric Jason Brandwine ,  Matthew Shawn Wilson

IPC: G06F21/00 ,  H04L9/32 ,  G06F21/33 ,  G06F21/51 ,  G06F21/53 ,  G06F21/62 ,  G06F9/455 ,  H04L29/06 ,  G06F21/60

Abstract: A formalized set of interfaces (e.g., application programming interfaces (APIs)) is described, that uses a security scheme, such as asymmetric (or symmetric) cryptography, in order authorize and authenticate requests sent to a virtualization later. The interfaces can be invoked to perform security monitoring, forensic capture, and/or patch software systems at runtime. In addition to the foregoing, other aspects are described in the claims, detailed description, and figures.

公开(公告)号：US11115293B2

公开(公告)日：2021-09-07

申请号：US15354765

申请日：2016-11-17

Applicant: Amazon Technologies, Inc.

Inventor： Robert Michael Johnson ,  Nafea Bshara ,  Matthew Shawn Wilson

IPC: H04L12/24 ,  G06F9/50 ,  G06F15/78

Abstract: Methods and apparatus are disclosed for programming reconfigurable logic devices such as FPGAs in a networked server environment. In one example, a system hosting a network service providing field programmable gate array (FPGA) services includes a network service provider configured to receive a request to implement application logic in a plurality of FPGAs, allocate a computing instance comprising the FPGAs in responses to receiving the request, produce configuration information for programming the FPGAs, and send the configuration information to an allocated computing instance. The system further includes a computing host that is allocated by the network service provider as a computing instance which includes memory, processors configured to execute computer-executable instructions stored in the memory, and the programmed FPGAs.

公开(公告)号：US11106456B2

公开(公告)日：2021-08-31

申请号：US16811407

申请日：2020-03-06

Applicant: Amazon Technologies, Inc.

Inventor： Anthony Nicholas Liguori ,  Matthew Shawn Wilson ,  Ian Paul Nowland

IPC: G06F9/455 ,  G06F8/656 ,  G06F8/65 ,  H04L12/931 ,  G06F13/32 ,  G06F8/658

Abstract: Generally described, aspects of the present disclosure relate to a live update process of the virtual machine monitor during the operation of the virtual machine instances. An update to a virtual machine monitor can be a difficult process to execute because of the operation of the virtual machine instances. Generally, in order to update the virtual machine monitor, the physical computing device needs to be rebooted, which interrupts operation of the virtual machine instances. The live update process provides for a method of updating the virtual machine monitor without rebooting the physical computing device.

公开(公告)号：US20210157652A1

公开(公告)日：2021-05-27

申请号：US16692455

申请日：2019-11-22

Applicant: Amazon Technologies, Inc.

Inventor： Andra-Irina Paraschiv ,  Matthew Shawn Wilson

IPC: G06F9/50 ,  G06F9/455

Abstract: At a virtualization host which includes an instance partitioning controller, a set of resources is allocated to a compute instance by a virtualization manager. The first compute instance does not include another virtualization manager. In response to a communication from the controller, the virtualization manager allocates a subset of the resources to a child compute instance launched at the virtualization host. An application is executed within the child compute instance.

公开(公告)号：US11003618B1

公开(公告)日：2021-05-11

申请号：US15635038

申请日：2017-06-27

Applicant: Amazon Technologies, Inc.

Inventor： Kypros Constantinides ,  Nafea Bshara ,  Matthew Shawn Wilson

IPC: G06F13/40 ,  G06F13/42 ,  G06T1/20 ,  G06F9/455

Abstract: Disclosed are techniques regarding aspects of selectively enabling or disabling interconnects between peripheral processors. The peripheral processors may be included within a compute service provider and may be accessible via virtual machines within guest domains implemented within the compute service provider. The interconnects can be enabled or disabled depending upon whether they traverse domains of the compute service provider.

公开(公告)号：US20200310785A1

公开(公告)日：2020-10-01

申请号：US16811407

申请日：2020-03-06

Applicant: Amazon Technologies, Inc.

Inventor： Anthony Nicholas Liguori ,  Matthew Shawn Wilson ,  Ian Paul Nowland

IPC: G06F8/656 ,  G06F8/65 ,  G06F9/455 ,  H04L12/931 ,  G06F13/32 ,  G06F8/658

Abstract: Generally described, aspects of the present disclosure relate to a live update process of the virtual machine monitor during the operation of the virtual machine instances. An update to a virtual machine monitor can be a difficult process to execute because of the operation of the virtual machine instances. Generally, in order to update the virtual machine monitor, the physical computing device needs to be rebooted, which interrupts operation of the virtual machine instances. The live update process provides for a method of updating the virtual machine monitor without rebooting the physical computing device.

公开(公告)号：US10764168B1

公开(公告)日：2020-09-01

申请号：US14041994

申请日：2013-09-30

Applicant: Amazon Technologies, Inc.

Inventor： Andrew Bruce Dickinson ,  Matthew Shawn Wilson

IPC: G06F15/173 ,  H04L12/26

Abstract: Techniques are disclosed for determining for determining parameters for a Transmission Control Protocol (TCP) connection between two computing nodes before the connection is established. In embodiments, the latency of data transmission between two computing nodes and the throughput capacity of a network link are measured, and from this data, TCP parameters for a future network connection between two computing nodes are determined. This information is sent to a TCP stack that stores it in its route table. Then, the TCP stack uses TCP parameters based on the information stored in the route table.