Patents by Inventor Ilia Gilderman
Ilia Gilderman has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Patent number: 11943261Abstract: Systems, devices, and methods are provided for determining whether security assurances are satisfied by security policies that are used to control access to resources used by a mainframe application. A system may use a database to store a plurality of security policies that may comprise security polices of various resources used by mainframes, including resources managed by operating systems and database systems. A reference policy that corresponds to the security assurance being sought may be determined. The security policies may be evaluated using a satisfiability modulo theories (SMT) solver to determine whether the security policies are equally or less permissive than the reference policy.Type: GrantFiled: December 3, 2021Date of Patent: March 26, 2024Assignee: Amazon Technologies, Inc.Inventors: Didier Germain Durand, Ilia Gilderman
-
Patent number: 11880483Abstract: Systems, devices, and methods are provided for authorizing access to database management system (DBMS) resources using security policies managed by a service external to the DBMS. A DBMS may be provisioned to obtain a database request, identify one or more securable resources that from applications, determine a request context for the system call, and sends a request to an external policy management service. The policy management service may be used to perform a policy evaluation to determine whether to grant access to the securable resources. In some cases, policies are cached by the DBMS. In various examples, the DBMS and policy management service are both hosted on resources managed by a computing resource service provider on behalf of a customer to run mainframe workloads.Type: GrantFiled: December 3, 2021Date of Patent: January 23, 2024Assignee: Amazon Technologies, Inc.Inventors: Didier Germain Durand, Ilia Gilderman
-
Publication number: 20230177201Abstract: Systems, devices, and methods are provided for authorizing access to database management system (DBMS) resources using security policies managed by a service external to the DBMS. A DBMS may be provisioned to obtain a database request, identify one or more securable resources that from applications, determines a request context for the system call, and sends a request to an external policy management service. The policy management service may be used to perform a policy evaluation to determine whether to grant access to the securable resources. In some cases, policies are cached by the DBMS. In various examples, the DBMS and policy management service are both hosted on resources managed by a computing resource service provider on behalf of a customer to run mainframe workloads.Type: ApplicationFiled: December 3, 2021Publication date: June 8, 2023Applicant: Amazon Technologies, Inc.Inventors: Didier Germain Durand, Ilia Gilderman
-
Patent number: 11615061Abstract: A workload of a database may be evaluated to provide a database migration recommendation. A request for a recommendation to migrate a database to a new host may be received. An evaluation of the workload of a client application of the database at a current host may be performed. The migration recommendation may be returned based on the evaluation of the workload of the client application of the database. In some embodiments, the migration recommendation may trigger an automated migration of the database to the new host.Type: GrantFiled: August 3, 2018Date of Patent: March 28, 2023Assignee: Amazon Technologies, Inc.Inventors: Sameer Malik, Danial George Neault, Rostislav Babocichin, Harpreet Kaur Chawla, Knievel Co, Ilia Gilderman, Ramya Kaushik, Edward Paul Murray, Siva Raghupathy, Venu Reddy, Samujjwal Roy, Eran Schitzer, Michael D. Soo, Arun Kumar Thiagarajan, John Winford, Chen Zhang
-
Patent number: 11360951Abstract: A system such as a service of a computing resource service provider includes executable code that, if executed by one or more processors, causes the one or more processors to identify a set of resources associated with a first database system, determine, based at least in part on the set of resources, an expected outcome of an operation of a second database system, and generate, executable code that, if executed, verifies an actual outcome of the operation of the second database system against the expected outcome. The system may be utilized as part of a database migration process where data from a first database system is transferred to a second database system.Type: GrantFiled: November 29, 2017Date of Patent: June 14, 2022Assignee: Amazon Technologies, Inc.Inventors: Ilia Gilderman, Eran Schitzer, John MacDonald Winford
-
Publication number: 20220171667Abstract: The reliability of an application is improved by analyzing and implementing changes to application infrastructure that is represented, in some examples, as Infrastructure as Code (“IAC”). The system performs various tests on the infrastructure to determine how the infrastructure responds to failures and whether recovery procedures and monitoring services in place are effective and functioning properly. Various examples provide a measure of infrastructure resiliency that can be used to evaluate potential changes to application infrastructure.Type: ApplicationFiled: April 29, 2021Publication date: June 2, 2022Inventors: Ilia Gilderman, Eran Schitzer, Priyesh Ranjan Tiwari, Oded Sharon, Damodar Shetyo, Shruthi Ramakrishnan, Zachary Adam Bienenfeld, Ben Fedidat, Dmitrij Semionov, Haim Sharabani, Zhifeng Wang
-
Patent number: 11269823Abstract: Data is migrated between a source database and a target database. The source database management system (“DBMS”) remains operational during the migration. A user selects the source DBMS and target DBMS, provides connection information used to connect to the database management systems and selects a virtual machine instance to perform the migration in conjunction with a database migration service. After the setup is complete, the virtual machine instance in conjunction with the database migration service performs data type transformations, and other operations, without user intervention. The database migration service also converts, without user intervention, the source schema and code to a format compatible with the target DBMS. Any code that is not converted is marked to assist the user of the database migration service identify where manual re-coding is required. The database migration service can also provide recommendations as to a target DBMS that is a suitable target DBMS.Type: GrantFiled: January 18, 2019Date of Patent: March 8, 2022Assignee: Amazon Technologies, Inc.Inventors: Jeremiah Wilton, Ilia Gilderman, John MacDonald Winford
-
Patent number: 11016954Abstract: Distributed extraction of data for migration may be implemented for migrating data sets from a first data store to a second data store. Assignments may be determined for different migration agents to obtain and store the data set in the second data store along with a format for storing the assigned data set portions. The migration agents may then be caused to obtain the assigned portions and store the assigned portions in the second data store according to the identified format. Further operations to request or direct the ingestion of the data set from the second data store may be performed by migration agents with respect to a third data store that performs data ingestion.Type: GrantFiled: September 1, 2017Date of Patent: May 25, 2021Assignee: Amazon Technologies, Inc.Inventors: Rostislav Babocichin, Alexey Gershun, Ilia Gilderman, Parker J. Lord, John MacDonald Winford
-
Patent number: 10984017Abstract: Described herein is technology for replicating data from a source database to one or more target databases at different points in time. The system receives a request to replicate a data set stored in a source database. The system stores a copy of a first subset of the data set from the source database to a target database at a first time. The system stores a copy of a second subset of the data set from the source database to the target database at a second time.Type: GrantFiled: November 27, 2017Date of Patent: April 20, 2021Assignee: Amazon Technologies, Inc.Inventors: Ilia Gilderman, Edward Paul Murray
-
Patent number: 10963435Abstract: A method and system for validating data migrated from a source database to a target database and storing validation metrics resulting from validating the data are described. The system receives validation information to be used to validate data to be migrated from a source database to a target database. The system validates the data using the validation information and stores validation metrics resulting from validating the data.Type: GrantFiled: July 19, 2017Date of Patent: March 30, 2021Assignee: Amazon Technologies, Inc.Inventors: Grant Alexander Macdonald McAlister, Edward Paul Murray, Nicolas Anton Medhurst Hertl, Ilia Gilderman, Jeremiah C. Wilton, John MacDonald Winford, Satheesh Peringandookaran Subramanian
-
Patent number: 10803031Abstract: Data is migrated between a source database and a target database. The source database management system (“DBMS”) remains operational during the migration. A user selects the source DBMS and target DBMS, provides connection information used to connect to the database management systems and selects a virtual machine instance to perform the migration in conjunction with a database migration service. After the setup is complete, the virtual machine instance in conjunction with the database migration service performs data type transformations, and other operations, without user intervention. The database migration service also converts, without user intervention, the source schema and code to a format compatible with the target DBMS. Any code that is not converted is marked to assist the user of the database migration service identify where manual re-coding is required. The database migration service can also provide recommendations as to a target DBMS that is a suitable target DBMS.Type: GrantFiled: December 30, 2015Date of Patent: October 13, 2020Assignee: Amazon Technologies, Inc.Inventors: Jeremiah Wilton, Ilia Gilderman, John MacDonald Winford
-
Patent number: 10740286Abstract: Validation of a migration task to migrate data from one data store to another may be performed prior to the migration of the data. Parameters associated with the migration may be evaluated according to one or more types of validations for the migration task. In some embodiments, users may specify the validations to perform for the migration task. A determination as to whether the migration task is valid may be performed for the migration task based on the parameter evaluations. A result indicating whether the migration task is valid may be provided to a user.Type: GrantFiled: August 28, 2017Date of Patent: August 11, 2020Assignee: Amazon Technologies, Inc.Inventors: Ilia Gilderman, Nicolas Anton Medhurst Hertl, Gal Eliraz Levonai, Edward Paul Murray, Michael J. Russo, John MacDonald Winford
-
Patent number: 10509696Abstract: Errors may be detected and mitigated during the migration of data. Migration of data from a source data store to a target data store may be monitored for errors. When an error is detected, one or more responsive actions may be identified to modify performance of the migration. In some embodiments, responsive actions may include further analyses to validate the migration. In some embodiments, the responsive actions may be corrective actions to correct the detected error. Once identified, the responsive actions may be performed to modify performance of the migration.Type: GrantFiled: August 16, 2017Date of Patent: December 17, 2019Assignee: Amazon Technologies, Inc.Inventors: Ilia Gilderman, Arun Kumar Thiagarajan, John MacDonald Winford
-
Patent number: 10467557Abstract: Example embodiments of the present invention provide a method, a system, and a computer program product for cloud services business management. The method includes monitoring cloud services business metrics for a cloud services provider and analyzing the cloud services business metrics. Cloud services business parameters for the cloud services provider then may be acted upon according to the analyzed cloud services business metrics.Type: GrantFiled: October 20, 2014Date of Patent: November 5, 2019Assignee: EMC IP Holding Company LLCInventors: Harel Kodesh, Ilia Gilderman, Harinderpal S. Hanspal
-
Patent number: 10185727Abstract: Data is migrated between a source database and a target database. The source database management system (“DBMS”) remains operational during the migration. A user selects the source DBMS and target DBMS, provides connection information used to connect to the database management systems and selects a virtual machine instance to perform the migration in conjunction with a database migration service. After the setup is complete, the virtual machine instance in conjunction with the database migration service performs data type transformations, and other operations, without user intervention. The database migration service also converts, without user intervention, the source schema and code to a format compatible with the target DBMS. Any code that is not converted is marked to assist the user of the database migration service identify where manual re-coding is required. The database migration service can also provide recommendations as to a target DBMS that is a suitable target DBMS.Type: GrantFiled: December 30, 2015Date of Patent: January 22, 2019Assignee: Amazon Technologies, Inc.Inventors: Jeremiah Wilton, Ilia Gilderman, John MacDonald Winford
-
Patent number: 7890463Abstract: A geographically distributed storage system for managing the distribution of data elements wherein requests for given data elements incur a geographic inertia. The geographically distributed storage system comprises geographically distributed sites, each comprises a site storage unit for locally storing a portion of a globally coherent distributed database that includes the data elements and a local access point for receiving requests relating to ones of the data elements. The and geographically distributed storage system comprises a data management module for forwarding at least one requested data element to the local access point at a first of the geographically distributed sites from which the request is received and storing the at least one requested data element at the first site, thereby to provide local accessibility to the data element for future requests from the first site while maintaining the globally coherency of the distributed database.Type: GrantFiled: September 24, 2007Date of Patent: February 15, 2011Assignees: Xeround Systems Ltd., Xeround Inc.Inventors: Yaniv Romem, Gilad Zlotkin, Ilia Gilderman, Avi Vigder
-
Publication number: 20110010379Abstract: A database system includes: a first database having back-end functionality for data storage and database query execution, a database front-end and an interception unit. The database front-end is configured for processing user queries directed to a back-end of a second database, and lacks the capabilities for directly accessing the first database. The interception unit is networked with the first database over a data network, and is configured for monitoring user queries under processing by the front-end to identify queries pertaining to data stored in the first database, and redirecting the identified queries to the first database for execution. Thereby the functionality of the database front-end is provided for data stored in the first database.Type: ApplicationFiled: July 8, 2010Publication date: January 13, 2011Applicant: Xeround Systems Ltd.Inventors: Ilia GILDERMAN, Moshe Elisha, Avi Vigder, Yaniv Romem, Guy Nir, Assaf Talyosef
-
Patent number: 7644087Abstract: A data access system decouples the data processing from the data storage to provide improved accessibility, integrity, scalability and other features. The system comprises: database units arranged in virtual partitions each independently accessible, a plurality of data processing units, and a switching network for switching the data processing units between the virtual partitions, thereby to assign data processing capacity dynamically to respective virtual partitions.Type: GrantFiled: February 21, 2006Date of Patent: January 5, 2010Assignees: Xeround Systems Ltd., Xeround Systems Inc.Inventors: Sharon Barkai, Gilad Zlotkin, Avi Vigder, Nir Klar, Yaniv Romem, Ayelet Shomer, Iris Kaminer, Roni Levy, Zeev Broude, Ilia Gilderman
-
Publication number: 20090070337Abstract: A geographically distributed storage system for managing the distribution of data elements wherein requests for given data elements incur a geographic inertia. The geographically distributed storage system comprises geographically distributed sites, each comprises a site storage unit for locally storing a portion of a globally coherent distributed database that includes the data elements and a local access point for receiving requests relating to ones of the data elements. The and geographically distributed storage system comprises a data management module for forwarding at least one requested data element to the local access point at a first of the geographically distributed sites from which the request is received and storing the at least one requested data element at the first site, thereby to provide local accessibility to the data element for future requests from the first site while maintaining the globally coherency of the distributed database.Type: ApplicationFiled: September 24, 2007Publication date: March 12, 2009Applicants: Xeround Systems Ltd., Xeround Systems Inc.Inventors: Yaniv Romem, Gilad Zlotkin, Ilia Gilderman, Avi Vigder
-
Publication number: 20090012932Abstract: According to some embodiments of the present invention there is provided a method and a system for managing data storage in a plurality of data partitions, such as replica databases. The method is based on analyzing, for each physical data partition, the received memory access queries. Each memory access query has a different result table which is based on different fields. This analysis is performed to determine the frequency of receiving each one of the memory access queries. The analysis allows, for one or more of the analyzed memory access queries, associating between at least one key of a respective result table and at least one of the physical data partitions. In such an embodiment, data elements are stored according to a match with respective said at least one key.Type: ApplicationFiled: July 2, 2008Publication date: January 8, 2009Applicants: Xeround Systems Ltd., Xeround Systems Inc.Inventors: Yaniv Romem, Ilia Gilderman, Zohar Lev-Shani, Avi Vigder, Eran Leiserowitz, Gilad Zlotkin