公开(公告)号：US11762984B1

公开(公告)日：2023-09-19

申请号：US16601807

申请日：2019-10-15

Applicant: Amazon Technologies, Inc.

Inventor： Gregory Branchek Roth ,  Matthew Daniel DeMoss ,  Jonathan Matthew Miller

IPC: G06F21/53 ,  G06F21/55 ,  H04L9/40 ,  G06F21/57 ,  G06F21/62 ,  G06F21/56

CPC classification number: G06F21/53 ,  G06F21/552 ,  G06F21/56 ,  G06F21/577 ,  G06F21/62 ,  H04L63/1441

Abstract: A support service application may process a request that contains a hyperlink. The hyperlink may be examined to determine a level of risk associated with accessing a resource referred to by the hyperlink. An execution environment for processing the hyperlink may be identified. The execution environment may comprise a virtual machine drawn from a pool of virtual machines. The resource may be retrieved by a browser process operating within the context of the virtual machine, and a safe version of the resource may be rendered and made available to customer support personnel using the support service application.

公开(公告)号：US09807073B1

公开(公告)日：2017-10-31

申请号：US14499699

申请日：2014-09-29

Applicant: Amazon Technologies, Inc.

Inventor： Jonathan Matthew Miller

IPC: G06F7/04 ,  H04L29/06

CPC classification number: H04L63/08 ,  G06F21/6218 ,  H04L63/18

Abstract: A method and apparatus for securing access to a document stored by a document management and collaboration system are disclosed. In the method and apparatus, access credentials pertaining to a document are obtained, whereby the access credentials are usable for authenticating a request to access the document. A message including the access credentials is then sent out-of-band in relation to a notification indicating availability of the document for access. The document management and collaboration system then receives a request to access the document, whereby the request includes the access credentials, and authenticates the request based at least in part on the access credentials.

公开(公告)号：US11275867B1

公开(公告)日：2022-03-15

申请号：US15908535

申请日：2018-02-28

Applicant: Amazon Technologies, Inc.

Inventor： Jonathan Matthew Miller

IPC: G06F21/64 ,  H04L29/06

Abstract: Generally described, one or more aspects of the present application correspond to a content validation system. A content validation service receives visual secret request information from user devices. The content validation service provides visual secret information to be rendered with received content. The content validation service then receives a snapshot of content to be rendered including a representation of the visual secret information to validate the content.

公开(公告)号：US10452837B1

公开(公告)日：2019-10-22

申请号：US14498870

申请日：2014-09-26

Applicant: Amazon Technologies, Inc.

Inventor： Gregory Branchek Roth ,  Matthew Daniel DeMoss ,  Jonathan Matthew Miller

IPC: G06F21/53 ,  G06F21/55 ,  G06F21/56 ,  H04L29/08 ,  G06F9/455

Abstract: A support service application may process a request that contains a hyperlink. The hyperlink may be examined to determine a level of risk associated with accessing a resource referred to by the hyperlink. An execution environment for processing the hyperlink may be identified. The execution environment may comprise a virtual machine drawn from a pool of virtual machines. The resource may be retrieved by a browser process operating within the context of the virtual machine, and a safe version of the resource may be rendered and made available to customer support personnel using the support service application.

公开(公告)号：US10432603B2

公开(公告)日：2019-10-01

申请号：US15798100

申请日：2017-10-30

Applicant: Amazon Technologies, Inc.

Inventor： Jonathan Matthew Miller

IPC: G06F21/62 ,  H04L29/06

Abstract: A method and apparatus for securing access to a document stored by a document management and collaboration system are disclosed. In the method and apparatus, access credentials pertaining to a document are obtained, whereby the access credentials are usable for authenticating a request to access the document. A message including the access credentials is then sent out-of-band in relation to a notification indicating availability of the document for access. The document management and collaboration system then receives a request to access the document, whereby the request includes the access credentials, and authenticates the request based at least in part on the access credentials.

公开(公告)号：US09514324B1

公开(公告)日：2016-12-06

申请号：US14311027

申请日：2014-06-20

Applicant: Amazon Technologies, Inc.

Inventor： Nachiketh Rao Potlapally ,  Jonathan Matthew Miller ,  Eric Jason Brandwine ,  Stephen Edward Schmidt ,  Donald Lee Bailey, Jr.

IPC: G06F21/62 ,  H04L29/06

CPC classification number: G06F21/6218 ,  G06F2221/2111 ,  H04L63/06 ,  H04L63/10

Abstract: A computer-implemented method includes restricting access to customer data to certain geographic regions authorized by the customer. The restriction can be managed by associating policy information with the customer data that identifies the geographic regions authorized by the customer. Resources attempting to access the customer data can evaluate the policy information associated with the customer data with respect to the geographic location in which the resource is located to determine whether the resource is permitted to access the customer data. The restriction can also be managed by encrypting the customer data with a cryptographic key that corresponds to the customer and/or the authorized geographic regions.

Abstract translation: 计算机实现的方法包括将客户数据的访问限制到客户授权的某些地理区域。 可以通过将策略信息与识别客户授权的地理区域的客户数据相关联来管理该限制。 尝试访问客户数据的资源可以针对资源所在的地理位置评估与客户数据相关联的策略信息，以确定资源是否被允许访问客户数据。 也可以通过使用与客户和/或授权的地理区域对应的加密密钥加密客户数据来管理该限制。

公开(公告)号：US11539711B1

公开(公告)日：2022-12-27

申请号：US15908695

申请日：2018-02-28

Applicant: Amazon Technologies, Inc.

Inventor： Jonathan Matthew Miller

IPC: H04L29/00 ,  H04L9/40

Abstract: Generally described, one or more aspects of the present application correspond to a content validation system. A content validation service receives visual secret request information from browser applications on user devices. The content validation service provides visual secret information to be rendered with received content. The browser application then transmits a snapshot of content to be rendered including a representation of the visual secret information to a content validation service for validation.

公开(公告)号：US20180063115A1

公开(公告)日：2018-03-01

申请号：US15798100

申请日：2017-10-30

Applicant: Amazon Technologies, Inc.

Inventor： Jonathan Matthew Miller

IPC: H04L29/06

CPC classification number: H04L63/08 ,  G06F21/6218 ,  H04L63/18

Abstract: A method and apparatus for securing access to a document stored by a document management and collaboration system are disclosed. In the method and apparatus, access credentials pertaining to a document are obtained, whereby the access credentials are usable for authenticating a request to access the document. A message including the access credentials is then sent out-of-band in relation to a notification indicating availability of the document for access. The document management and collaboration system then receives a request to access the document, whereby the request includes the access credentials, and authenticates the request based at least in part on the access credentials.