公开(公告)号：US11228490B1

公开(公告)日：2022-01-18

申请号：US15385796

申请日：2016-12-20

Applicant: Amazon Technologies, Inc.

Inventor： Theodore Carroll ,  Karthikeyan Natarajan ,  Hariharan Subramanian

IPC: H04L12/24 ,  H04L29/08

Abstract: An initial set of one or more data stores is selected for storing configuration data of a first client of a configuration discovery service. Configuration data for various items of the client's computing environment are stored at the initial set for a first time period. A configuration item, whose records were being stored at a first data store, is identified as a candidate for a data store change. Storing of at least some configuration data of the item at a different data store is initiated.

公开(公告)号：US10659520B1

公开(公告)日：2020-05-19

申请号：US14788125

申请日：2015-06-30

Applicant: AMAZON TECHNOLOGIES, INC.

Inventor： Ekanth Sethuramalingam ,  Venkata Satya Siva Kumar Balaga ,  Karthikeyan Natarajan

IPC: G06F15/16 ,  H04L29/08 ,  G06F9/4401

Abstract: Various systems and processes may be used for virtual disk importation. In particular implementations, systems and processes for virtual disk importation may include the ability to receive a request from a customer of a service provider network to import a virtual disk, which is accessible over a communication network, into the service provider network. The systems and processes may also include the ability to download a portion of a virtual disk file corresponding to the virtual disk, determine the type of the virtual disk by analyzing the downloaded portion, and determine the size of the virtual disk by analyzing the downloaded portion. The systems and processes may further include the ability to determine whether the virtual disk is supported by the service provider network based on the determined type of the virtual disk and download the virtual disk if the virtual disk is supported by the service provider network.

公开(公告)号：US09979596B2

公开(公告)日：2018-05-22

申请号：US15189976

申请日：2016-06-22

Applicant: Amazon Technologies, Inc.

Inventor： Hariharan Subramanian ,  Vijay Dheeraj Reddy Mandadi ,  Ramapulla Reddy Chennuru ,  Karthikeyan Natarajan ,  Gunja Agrawal ,  Long Kim Do

IPC: G06F15/173 ,  H04L12/24

CPC classification number: H04L41/0806 ,  H04L41/0853 ,  H04L41/22

Abstract: Configuration items of an environment for a client of a configuration discovery service are identified. A view category is selected for the target environment. A set of configuration items for which information regarding recent configuration changes is to be provided is identified. Data which can be used to display a graphical representation of at least a portion of the environment and the configuration changes is transmitted.

公开(公告)号：US20170373933A1

公开(公告)日：2017-12-28

申请号：US15189979

申请日：2016-06-22

Applicant: Amazon Technologies, Inc.

Inventor： HARIHARAN SUBRAMANIAN ,  Vijay Dheeraj Reddy Mandadi ,  CRISTIAN GABRIEL GAFTON ,  Karthikeyan Natarajan ,  Ramapulla Reddy Chennuru ,  Kashfat Khan ,  Venkata Satya Siva Kumar Balaga

IPC: H04L12/24 ,  G06F17/30 ,  H04L12/26 ,  H04L29/06

CPC classification number: H04L41/0806 ,  G06F9/5072 ,  G06F17/3053 ,  H04L41/5035 ,  H04L41/5058 ,  H04L43/106 ,  H04L63/20

Abstract: At a configuration discovery service, a unique service-side identifier is generated for a configuration item based on analysis of a data set obtained from a first data source. A determination is made that a second data set, which does not contain the service-side identifier and is obtained from a different data source, also includes information pertaining to the same configuration item. A coalesced configuration record for the configuration item is prepared. The coalesced configuration record is stored at a repository and used to respond to a programmatic query.

公开(公告)号：US10362039B2

公开(公告)日：2019-07-23

申请号：US15384182

申请日：2016-12-19

Applicant: Amazon Technologies, Inc.

Inventor： Wesley Marlin Sutton ,  Apolak Borthakur ,  Derek Avery Lyon ,  Raviprasad Venkatesha Murthy Mummidi ,  Karthikeyan Natarajan

IPC: H04L29/06

Abstract: A computing resource service provider may receive, from a user client connected to an on-premises network, a security document specifying one or more user roles defining a level of access to customer resources within the on-premises network. In response, the service provider may generate and provide the user client with a cookie specifying the user roles and including an address for an interface within the service provider network. The service provider may receive a request from the user client to access one or more customer resources hosted by the service provider. The request may include the cookie previously provided to the user client. Accordingly, the service provider may extract the user roles from the cookie and determine, based at least in part on these user roles, whether to fulfill the user client request.

公开(公告)号：US09778952B1

公开(公告)日：2017-10-03

申请号：US14317542

申请日：2014-06-27

Applicant: Amazon Technologies, Inc.

Inventor： Wesley Marlin Sutton ,  Raviprasad Venkatesha Murthy Mummidi ,  Karthikeyan Natarajan ,  Long Kim Do ,  Derek Avery Lyon ,  Keshav Sethi Attrey ,  Hariharan Subramanian

IPC: G06F3/00 ,  G06F9/44 ,  G06F9/46 ,  G06F13/00 ,  G06F9/48 ,  G06F9/54 ,  G06F3/0484

CPC classification number: G06F9/4856 ,  G06F8/36 ,  G06F9/45558 ,  G06F9/541 ,  G06F2009/45562 ,  G06F2009/4557

Abstract: A customer network client detects, through a user interface, selection of a graphical representation of a set of virtual machine images and an indication to migrate this set of virtual machine images to an off-premises network managed by a computing resource service provider. In response, the client generates a set of application programming interface calls, which may be transmitted to the service provider and causes the service provider to convert the selected images for use within the off-premises network. The client monitors fulfillment of the calls and, upon determining that the calls has been fulfilled, updates a portion of the user interface associated with the computing resource service provider to indicate that the images may be instantiated within the off-premises network.

公开(公告)号：US10212031B2

公开(公告)日：2019-02-19

申请号：US15189979

申请日：2016-06-22

Applicant: Amazon Technologies, Inc.

Inventor： Hariharan Subramanian ,  Vijay Dheeraj Reddy Mandadi ,  Cristian Gabriel Gafton ,  Karthikeyan Natarajan ,  Ramapulla Reddy Chennuru ,  Kashfat Khan ,  Venkata Satya Siva Kumar Balaga

IPC: H04L12/24 ,  G06F17/30 ,  H04L12/26 ,  G06F9/50 ,  H04L29/06

Abstract: At a configuration discovery service, a unique service-side identifier is generated for a configuration item based on analysis of a data set obtained from a first data source. A determination is made that a second data set, which does not contain the service-side identifier and is obtained from a different data source, also includes information pertaining to the same configuration item. A coalesced configuration record for the configuration item is prepared. The coalesced configuration record is stored at a repository and used to respond to a programmatic query.

公开(公告)号：US20170373932A1

公开(公告)日：2017-12-28

申请号：US15189976

申请日：2016-06-22

Applicant: Amazon Technologies, Inc.

Inventor： HARIHARAN SUBRAMANIAN ,  Vijay Dheeraj Reddy Mandadi ,  Ramapulla Reddy Chennuru ,  Karthikeyan Natarajan ,  Gunja Agrawal ,  Long Kim Do

IPC: H04L12/24

CPC classification number: H04L41/0806 ,  H04L41/0853 ,  H04L41/22

Abstract: Configuration items of an environment for a client of a configuration discovery service are identified. A view category is selected for the target environment. A set of configuration items for which information regarding recent configuration changes is to be provided is identified. Data which can be used to display a graphical representation of at least a portion of the environment and the configuration changes is transmitted.

公开(公告)号：US20170099299A1

公开(公告)日：2017-04-06

申请号：US15384182

申请日：2016-12-19

Applicant: Amazon Technologies, Inc.

Inventor： Wesley Marlin Sutton ,  Apolak Borthakur ,  Derek Avery Lyon ,  Raviprasad Venkatesha Murthy Mummidi ,  Karthikeyan Natarajan

IPC: H04L29/06

CPC classification number: H04L63/105 ,  H04L63/0815 ,  H04L63/083 ,  H04L63/10

Abstract: A computing resource service provider may receive, from a user client connected to an on-premises network, a security document specifying one or more user roles defining a level of access to customer resources within the on-premises network. In response, the service provider may generate and provide the user client with a cookie specifying the user roles and including an address for an interface within the service provider network. The service provider may receive a request from the user client to access one or more customer resources hosted by the service provider. The request may include the cookie previously provided to the user client. Accordingly, the service provider may extract the user roles from the cookie and determine, based at least in part on these user roles, whether to fulfill the user client request.

公开(公告)号：US09531719B1

公开(公告)日：2016-12-27

申请号：US14265158

申请日：2014-04-29

Applicant: Amazon Technologies, Inc.

Inventor： Wesley Marlin Sutton ,  Apolak Borthakur ,  Derek Avery Lyon ,  Raviprasad Venkatesha Murthy Mummidi ,  Karthikeyan Natarajan

IPC: H04L29/06

CPC classification number: H04L63/105 ,  H04L63/0815 ,  H04L63/083 ,  H04L63/10

Abstract: A computing resource service provider may receive, from a user client connected to an on-premises network, a security document specifying one or more user roles defining a level of access to customer resources within the on-premises network. In response, the service provider may generate and provide the user client with a cookie specifying the user roles and including an address for an interface within the service provider network. The service provider may receive a request from the user client to access one or more customer resources hosted by the service provider. The request may include the cookie previously provided to the user client. Accordingly, the service provider may extract the user roles from the cookie and determine, based at least in part on these user roles, whether to fulfill the user client request.

Abstract translation: 计算资源服务提供商可以从连接到内部部署网络的用户客户端接收指定一个或多个用户角色的安全文档，该用户角色定义对本地网络内的客户资源的访问级别。 作为响应，服务提供商可以生成并向用户客户端提供指定用户角色并且包括服务提供商网络内的接口的地址的cookie。 服务提供商可以接收来自用户客户端的访问由服务提供商托管的一个或多个客户资源的请求。 该请求可以包括之前提供给用户客户端的cookie。 因此，服务提供商可以从cookie提取用户角色，并且至少部分地基于这些用户角色来确定是否满足用户客户端请求。