Amazon Patent Applications

Patents granted to Amazon by the U.S. Patent and Trademark Office (USPTO).

  • Publication number: 20200169381
    Abstract: A hub device of a network receives a data model that includes a secure portion that is encrypted and one or more unsecure portions. The hub device deploys the one or more unsecure portions of the data model to respective edge devices of the network. The hub device decrypts the secure portion of the data model. The edge devices collect data (e.g., from sensors) and process the data using the unsecure portions of the data model. The edge devices send the processed data to the hub device. The hub device performs operations on the received processed data using the decrypted secure portion of the data model in a secure execution environment (e.g., a TPM or other secure module). The secure portion of the data model generates a result, which is then transmitted to an endpoint.
    Type: Application
    Filed: January 31, 2020
    Publication date: May 28, 2020
    Applicant: Amazon Technologies, Inc.
    Inventor: Aran Khanna
  • Publication number: 20200167355
    Abstract: Methods, systems, and computer-readable media for edge processing in a distributed time-series database are disclosed. A first set of time-series data is generated by one or more client devices and is associated with one or more time series. A local time-series database stores the first set of time-series data into a local storage tier. The local time-series database generates a second set of time-series data derived from the first set of time-series data. A remote time-series database receives the second set of time-series data from the local time-series database via a network. The remote time-series database stores the second set of time-series data into one or more remote storage tiers.
    Type: Application
    Filed: November 23, 2018
    Publication date: May 28, 2020
    Applicant: Amazon Technologies, Inc.
    Inventors: Timothy A. Rath, Gaurav Gupta, Mustafa Ozan Ozen, Omer Ahmed Zaki
  • Publication number: 20200169534
    Abstract: Access across private networks may be enabled for blockchain networks in a managed blockchain service. Requests to enable access for a node hosted in a private network to one or more nodes hosted in a different private network that hosts the blockchain network as part of a managed blockchain service may be received. Routes to enable the access may be determined and added to networking devices so that communications between the node in the private network to specified nodes in the private network of the managed blockchain service may be correctly routed.
    Type: Application
    Filed: November 23, 2018
    Publication date: May 28, 2020
    Applicant: Amazon Technologies, Inc.
    Inventors: Jonathan Andrew Fritz, Gitesh Tyagi, Anthony A. Virtuoso, Turkay Mert Hocanin, Nachimuthu Govindasamy, Ramkumar Kamalapuram Sugavanam
  • Publication number: 20200167074
    Abstract: Technologies are provided for dynamically changing a size of a cache region of a storage device. A storage device controller writes data to the cache region of the storage device using a particular storage format. The storage device controller then migrates the cached data to a storage region of the device, where the data is written using a different storage format. A dynamic cache manager monitors input and output activity for the storage device and dynamically adjusts a size of the cache region to adapt to changes in the input and/or output activity. The dynamic cache manager can also adjust a size of the storage region. The storage device controller can automatically detect that the storage device has dynamic cache support and configure the storage device by creating the cache region and the storage region on the device.
    Type: Application
    Filed: January 28, 2020
    Publication date: May 28, 2020
    Applicant: Amazon Technologies, Inc.
    Inventors: Munif M. Farhan, Phyllis Ng, Darin Lee Frink, Nafea Bshara
  • Publication number: 20200167360
    Abstract: Methods, systems, and computer-readable media for a scalable architecture for a distributed time-series database are disclosed. Using a fleet of ingestion routers, time-series data generated by a plurality of client devices is stored into a plurality of durable partitions. The time-series data comprises a plurality of time series, and an amount of the ingestion routers is determined based at least in part on an ingestion rate of the time-series data. Using a fleet of stream processors, the time-series data from the durable partitions is stored into a plurality of storage tiers including a first storage tier and a second storage tier. A retention period for the first storage tier differs from a retention period for the second storage tier. An amount of the stream processors is determined based at least in part on the time-series data in the durable partitions.
    Type: Application
    Filed: November 23, 2018
    Publication date: May 28, 2020
    Applicant: Amazon Technologies, Inc.
    Inventors: Timothy A. Rath, Gaurav Gupta, Mustafa Ozan Ozen, Omer Ahmed Zaki
  • Publication number: 20200167319
    Abstract: A multi-framework blockchain service may be implemented with a common interface to manage different types of blockchain networks. Requests to create a blockchain network may be received via an interface for the control plane that triggers the creation of the blockchain network according to an identified workflow. Various operations to change the blockchain network, including membership changes, node additions, governance changes, analytics changes, and monitoring changes may be allowed or denied by the control plane according to a distributed governance policy in effect for the blockchain network.
    Type: Application
    Filed: November 23, 2018
    Publication date: May 28, 2020
    Applicant: Amazon Technologies, Inc.
    Inventors: Jonathan Andrew Fritz, Rahul Pathak, Anurag Windlass Gupta, Nachimuthu Govindasamy, Anthony A. Virtuoso, Yugandhar Maram, Mahmoud Salem, Carey Michael Crook, Turkay Mert Hocanin, Montana Norman Wong, Aditya Manohar, Rajul Mittal, Shiyu Sun, Yu Yan, Ramkumar Kamalapuram Sugavanam, Gitesh Tyagi
  • Publication number: 20200167361
    Abstract: Methods, systems, and computer-readable media for continuous functions in a time-series database are disclosed. A plurality of data points of a time series are stored into one or more storage tiers of a time-series database. The plurality of data points comprise a plurality of discrete measurements at respective timestamps. Using one or more query processors of the time-series database, a query of the time series is initiated. The query indicates a time range. Using the one or more query processors, a continuous function is determined that represents a segment of the time series in the time range. The continuous function is determined based at least in part on the plurality of data points. An operation is performed using the continuous function as an input.
    Type: Application
    Filed: November 23, 2018
    Publication date: May 28, 2020
    Applicant: Amazon Technologies, Inc.
    Inventors: Lonnie J. Princehouse, Timothy A. Rath, Gaurav Gupta, Mustafa Ozan Ozen, Omer Ahmed Zaki, Karthik Gurumoorthy Subramanya Bharathy, Gaurav Saxena
  • Publication number: 20200167150
    Abstract: An event-driven compute service upgrades an execution environment for registered functions of the compute service. Some compute nodes of the service have an updated version of the execution environment and some compute nodes have the old version of the execution environment. As a part of the upgrade process, some functions are executed in both environments. For example, for some invocations of a particular function, the function is executed in the updated execution environment while for other invocations of the same function, the function is executed in the old execution environment. Based on resulting status of the executions, the compute service determines that the particular function is compatible or incompatible with the updated version of the execution environment. The compute service performs subsequent executions of incompatible functions in the old version of the execution environment instead of in the updated version. A client may be notified of the incompatibility.
    Type: Application
    Filed: January 31, 2020
    Publication date: May 28, 2020
    Applicant: Amazon Technologies, Inc.
    Inventor: Dylan Owen Marriner
  • Publication number: 20200162407
    Abstract: Packets of a network flow are received at a virtual traffic hub, which includes an action implementation layer at which routing actions generated at a decisions layer are performed. One or more properties of one or more packets of the flow are analyzed at the virtual traffic hub. An indication of an anomaly of the flow, detected based at least in part on the analysis, is provided to one or more destinations.
    Type: Application
    Filed: November 20, 2018
    Publication date: May 21, 2020
    Applicant: Amazon Technologies, Inc.
    Inventor: Paul John Tillotson
  • Publication number: 20200159718
    Abstract: At a resource corresponding to one node of a data processing workflow, a persistent representation of a binary signal representing a condition associated with an event is generated. The signal indicates a validity period of the condition. At a second resource corresponding to another node of the workflow, a decision to initiate an action is generated based on analysis of a set of binary signals and an action scheduling rule, and the action is initiated.
    Type: Application
    Filed: January 22, 2020
    Publication date: May 21, 2020
    Applicant: Amazon Technologies, Inc.
    Inventor: Joshua Lieberman
  • Publication number: 20200159719
    Abstract: Multiple edits to a hierarchical data structure may be atomically applied. A request to perform modifications with respect to a portion or the entire hierarchical data structure may be received. A copy of the requested portion of the hierarchical data structure may be created separate from the hierarchical data structure. The portion of the hierarchical data structure may remain available for read access. Modifications may be applied to the copy of the portion of the hierarchical data structure.
    Type: Application
    Filed: January 24, 2020
    Publication date: May 21, 2020
    Applicant: Amazon Technologies, Inc.
    Inventors: Brian Collins, Zachary Mohamed Shalla, Marvin Michael Theimer, John Petry, Michael Hart, Serge Hairanian, Anders Samuelsson, Salvador Salazar Sepulveda, Ji Luo
  • Publication number: 20200159742
    Abstract: History for data objects may be maintained to detect data events. An indication of an Extract, Transform, Load (ETL) process applied to one or more source data objects to generate one or more transformed data objects may be received. History for the source data objects may be updated to include the transformed data objects and the ETL process that generated the transformed data objects. An evaluation of the update may be performed to determine whether an event associated with the data lineage is triggered. If the event is triggered, a notification of the event may be sent to one or more subscribers for the event.
    Type: Application
    Filed: January 24, 2020
    Publication date: May 21, 2020
    Applicant: Amazon Technologies, Inc.
    Inventors: George Steven McPherson, Mehul A. Shah, Prajakta Datta Damle, Gopinath Duddi, Anurag Windlass Gupta
  • Publication number: 20200162362
    Abstract: Network pathways are identified to transfer packets between a pair of regional virtual traffic hubs of a provider network. At a first hub of the pair, a first action is performed, resulting in a transmission of a packet received from a first isolated network to the second hub along a pathway selected using dynamic routing parameters. At the second hub, a second action is performed, resulting in the transmission of the packet to a destination within a second isolated network.
    Type: Application
    Filed: November 20, 2018
    Publication date: May 21, 2020
    Applicant: Amazon Technologies, Inc.
    Inventors: Bashuman Deb, Paul John Tillotson, Thomas Nguyen Spendley, Omer Hashmi, Baihu Qian, Mohamed Nader Farahat Hassan
  • Publication number: 20200159745
    Abstract: Methods and apparatus for conditional master election in a distributed database are described. A plurality of replicas of a database object are stored by a distributed database service. Some types of operations corresponding to client requests directed at the database object are to be coordinated by a master replica. Client access to the database object is enabled prior to election of a master replica. In response to a triggering condition, a particular replica is elected master. The master coordinates implementation of operations with one or more other replicas in response to client requests.
    Type: Application
    Filed: November 15, 2019
    Publication date: May 21, 2020
    Applicant: Amazon Technologies, Inc.
    Inventors: Akshat Vig, Timothy Andrew Rath, Stuart Henry Seelye Marshall, Rande A. Blackman, David Alan Lutz, Jian Wang, Jiandan Zheng, Janani Narayanan
  • Publication number: 20200159555
    Abstract: A request to launch a compute instance is received at a control plane of a provider network. At an outbound command communicator, an indication that a compute instance is to be established at a target host at a client premise is obtained. A first address is associated with the target host at the control plane and also assigned to the communicator. A message with a second address within a first network of the client premise as a destination is transmitted. The message comprises a command to establish the compute instance at the target host. The first address is assigned to the target host within a second network of the client premise. Processing of the command at the target host results in establishment of a compute instance.
    Type: Application
    Filed: November 20, 2018
    Publication date: May 21, 2020
    Applicant: Amazon Technologies, Inc.
    Inventors: Anthony Nicholas Liguori, Matthew Shawn Wilson
  • Publication number: 20200162332
    Abstract: At a network manager of an extension resource group of a provider network, a message comprising a command to launch a compute instance is received at an address which is part of a first network configured at a premise external to the provider network. The extension resource group includes a first host at the external premise. Within a second network configured at the external premise, the first host is assigned an address within a second address range. Addresses within the second range are also assigned to hosts within the provider network. The command is transmitted to the first host, and a compute instance is instantiated.
    Type: Application
    Filed: November 20, 2018
    Publication date: May 21, 2020
    Applicant: Amazon Technologies, Inc.
    Inventors: Anthony Nicholas Liguori, Matthew Shawn Wilson
  • Publication number: 20200162383
    Abstract: At an action implementation layer of a virtual traffic hub, a packet is obtained from a first isolated network. A first action, generated at a decision making layer of the hub based on a first route table of the hub, is performed, resulting in transmission of at least one network packet to a first destination. In response to a second packet, obtained at the action implementation layer from a source outside the first isolated network, a second action is performed, resulting in transmission of at least one packet to a second destination. The second action is generated based on a second route table of the hub.
    Type: Application
    Filed: November 20, 2018
    Publication date: May 21, 2020
    Applicant: Amazon Technologies, Inc.
    Inventors: Bashuman Deb, Paul John Tillotson, Thomas Nguyen Spendley, Omer Hashmi, Baihu Qian, Mohamed Nader Farahat Hassan
  • Publication number: 20200150886
    Abstract: Technologies are provided for secure sanitization of a storage device. A storage device can be configured to support an operational mode, into which the storage device is placed by default, and in which requests to cryptographically erase the storage device are rejected. The storage device can support a separate sanitization mode in which a request to cryptographically erase the storage device will be processed. Access to the sanitization mode can be restricted to trusted sources (such as a boot firmware of a computer connected to the storage device). The storage device can be configured to reject a command to place the storage device in the sanitization mode, unless the command is received during an initialization of the storage device. In at least some embodiments, the storage device can reject data access commands while it is in the sanitization mode.
    Type: Application
    Filed: January 15, 2020
    Publication date: May 14, 2020
    Applicant: Amazon Technologies, Inc.
    Inventors: Munif M. Farhan, Jaime Ismael Rangel Martinez
  • Publication number: 20200151137
    Abstract: Apparatus and methods are disclosed herein for remote, direct memory access (RDMA) technology that enables direct memory access from one host computer memory to another host computer memory over a physical or virtual computer network according to a number of different RDMA protocols. In one example, a method includes receiving remote direct memory access (RDMA) packets via a network adapter, deriving a protocol index identifying an RDMA protocol used to encode data for an RDMA transaction associated with the RDMA packets, applying the protocol index to a generate RDMA commands from header information in at least one of the received RDMA packets, and performing an RDMA operation using the RDMA commands.
    Type: Application
    Filed: December 3, 2019
    Publication date: May 14, 2020
    Applicant: Amazon Technologies, Inc.
    Inventors: Erez Izenberg, Leah Shalev, Nafea Bshara, Guy Nakibly, Georgy Machulsky
  • Publication number: 20200150733
    Abstract: A rack computer system can provide data indicating electrical power consumption by separate sets of the mass storage devices, including separate individual mass storage devices, of the rack computer system. A power sensor can be electrically coupled to a power transmission line for each mass storage device. The power sensor can be coupled to the power transmission line externally to the mass storage device. The power sensor can be an internal power sensor of the mass storage device, where a mass storage device microcontroller transmits internally-generated data to an external power monitoring system. A microcontroller can transmit the data to a baseboard management controller via a side-band connection between the mass storage device and the controller. The data can be transmitted via an in-band connection between a baseboard management controller and an instance of firmware which accesses internally-generated data from mass storage device microcontrollers.
    Type: Application
    Filed: January 10, 2020
    Publication date: May 14, 2020
    Applicant: Amazon Technologies, Inc.
    Inventors: Felipe Enrique Ortega Gutierrez, Jason Alexander Harland, Roey Rivnay, David Edward Bryan, Christopher Strickland Beall
  • Publication number: 20200151606
    Abstract: A first set of execution platforms is deployed for a set of operations of a training phase of a machine learning model. Prior to the completion of the training phase, a triggering condition for deployment of a different set of execution platforms is detected. The different set of execution platforms is deployed for a subsequent set of training phase operations.
    Type: Application
    Filed: January 14, 2020
    Publication date: May 14, 2020
    Applicant: Amazon Technologies, Inc.
    Inventors: Leo Parker Dirac, Rakesh Madhavan Nambiar, Avinash Aghoram Ravichandran
  • Publication number: 20200151114
    Abstract: Systems and methods for providing object versioning in a storage system may support the logical deletion of stored objects. In response to a delete operation specifying both a user key and a version identifier, the storage system may permanently delete the specified version of an object having the specified key. In response to a delete operation specifying a user key, but not a version identifier, the storage system may create a delete marker object that does not contain object data, and may generate a new version identifier for the delete marker. The delete marker may be stored as the latest object version of the user key, and may be addressable in the storage system using a composite key comprising the user key and the new version identifier. Subsequent attempts to retrieve the user key without specifying a version identifier may return an error, although the object was not actually deleted.
    Type: Application
    Filed: January 10, 2020
    Publication date: May 14, 2020
    Applicant: Amazon Technologies, Inc.
    Inventors: Jason G. McHugh, Praveen Kumar Gattu, Michael A. Ten-Pow, Derek Ernest Denny-Brown, II
  • Publication number: 20200151025
    Abstract: Methods, systems, and computer-readable media for job scheduling based on job execution history are disclosed. A request is received to schedule a workload comprising a plurality of jobs. A resource allocation score for the workload is determined. The resource allocation score represents (at least in part) an estimated likelihood of successful execution of the workload. A first portion of the workload is scheduled for execution, and a remaining portion (if any) of the workload is delayed. A quantity of jobs in the first portion of the workload is determined based (at least in part) on the resource allocation score. Execution of the first portion of the workload is initiated.
    Type: Application
    Filed: January 10, 2020
    Publication date: May 14, 2020
    Applicant: Amazon Technologies, Inc.
    Inventors: James Edward Kinney, JR., Dougal Stuart Ballantyne, Nishant Mehta
  • Publication number: 20200150888
    Abstract: A block storage service can ensure volumes are placed in a same region as an attached virtual machine instance for performance and durability guarantees. A region can reference multiple things, but one example is that a volume is within a same spine as a virtual machine in order to meet performance guarantees. Each region can have a buffer of server computers held in reserve for volumes having a type where performance guarantees are required. If performance guarantees cannot be met, a rejection is transmitted to the customer. In another embodiment, the customer can provide a list in priority order of different volume types so that if a desired volume type cannot be placed, then alternative volume types can be used.
    Type: Application
    Filed: January 21, 2020
    Publication date: May 14, 2020
    Applicant: Amazon Technologies, Inc.
    Inventors: Christopher Magee Greenwood, Patrick E. Brennan, Mitchell Gannon Flaherty, Yilin Guo, Gary Michael Herndon, JR., Sriram Venugopal, Linfeng Yu, Wells Lin
  • Publication number: 20200153749
    Abstract: A connectivity coordinator may receive a request for a dedicated physical connection between a provider network and a client network. In response, the connectivity coordinator may determine a capacity for each connection capacity group available to accept the dedicated physical connection. The connectivity coordinator may use the determined capacities for each available connection capacity group to determine bias response information for each connection capacity group based on the determined capacities and a capacity bias model. The connectivity coordinator may provide the determined bias response information to the client as part of a response to the connectivity request to influence the client to select to connect to a connection capacity group that has more physical ports available to accept the dedicated physical connection than other connection capacity groups that have less ports available to accept the dedicated physical connection.
    Type: Application
    Filed: January 10, 2020
    Publication date: May 14, 2020
    Applicant: Amazon Technologies, Inc.
    Inventor: Po-Chun Chen
  • Publication number: 20200150730
    Abstract: A rack-mountable computer system directs separate portions of a cooling airflow from an inlet air plenum in the computer system interior through separate air passages to remove heat from separate portions of a set of heat-producing components. The air passages can preclude a portion of cooling airflow removing heat from a component from being preheated by another component. Plenums and air passages can be established through the arrangement of components in the interior. Components can be arranged in progressive offsets throughout the depth of the interior to vary plenum flow area throughout the depth, which can progressively impede and redirect airflow through the inlet plenum into the air passages. Arrangements can include an angled row, a staggered configuration, etc. The computer system can include a chassis which can translate, while maintaining operation of hot-pluggable electronic components coupled throughout the depth, to enable swapping of hot-pluggable electronic components throughout the interior.
    Type: Application
    Filed: January 17, 2020
    Publication date: May 14, 2020
    Applicant: Amazon Technologies, Inc.
    Inventors: Christopher Strickland Beall, David Edward Bryan, Darin Lee Frink
  • Publication number: 20200142827
    Abstract: Methods and apparatus for supporting cached volumes at storage gateways are disclosed. A storage gateway appliance is configured to cache at least a portion of a storage object of a remote storage service at local storage devices. In response to a client's write request, directed to at least a portion of a data chunk of the storage object, the appliance stores a data modification indicated in the write request at a storage device, and asynchronously uploads the modification to the storage service. In response to a client's read request, directed to a different portion of the data chunk, the appliance downloads the requested data from the storage service to the storage device, and provides the requested data to the client.
    Type: Application
    Filed: December 6, 2019
    Publication date: May 7, 2020
    Applicant: Amazon Technologies, Inc.
    Inventors: David Carl Salyers, Pradeep Vincent, Ankur Khetrapal, Kestutis Patiejunas
  • Publication number: 20200145298
    Abstract: Techniques are described for providing virtual networking functionality for managed computer networks. In some situations, a user may configure or otherwise specify one or more virtual local area networks (“VLANs”) for a managed computer network being provided for the user, such as with each VLAN including multiple computing nodes of the managed computer network. Networking functionality corresponding to the specified VLAN(s) may then be provided in various manners, such as if the managed computer network itself is a distinct virtual computer network overlaid on one or more other computer networks, and communications between computing nodes of the managed virtual computer network are handled in accordance with the specified VLAN(s) of the managed virtual computer network by emulating functionality that would be provided by networking devices of the managed virtual computer network if they were physically present and configured to support the specified VLAN(s).
    Type: Application
    Filed: January 3, 2020
    Publication date: May 7, 2020
    Applicant: Amazon Technologies, Inc.
    Inventors: Eric Jason Brandwine, Peter J. Hill
  • Publication number: 20200136962
    Abstract: Methods and apparatus for interfaces to manage inter-regional connectivity for direct network peerings. A system may include a connectivity coordinator, a first resource collection in a first geographical zone and a second resource collection in a second geographical zone. The coordinator implements a programmatic interface defining connectivity operations. The coordinator receives a request via the interface to establish a logically isolated network path to the second resource collection on behalf of a client that has a dedicated physical link set up to connect to the first resource collection. In response to the request, the coordinator performs one or more configuration operations to enable traffic to flow from the client's network to the second resource collection over a logically isolated network path using the dedicated physical link.
    Type: Application
    Filed: December 20, 2019
    Publication date: April 30, 2020
    Applicant: Amazon Technologies, Inc.
    Inventors: Andrew J. Doane, Kevin Christopher Miller, David B. Lennon
  • Publication number: 20200125535
    Abstract: An LL server (LLS) may process metadata requests for a file system in LL mode in a distributed file storage services (DFSS). For requests that require allocating blocks to file system objects in the backing store, instead of relying on distributed transactions used for file systems in high throughput (HT) mode, a pool of blocks may be pre-allocated for the LL file system in the backing store, and a free block list may be maintained in local memory of the LLS. When a metadata operation requires blocks to be allocated, the blocks are assigned to the respective object from the blocks in the pool. A background process may allocate new blocks in the pool upon the number of blocks dropping below a threshold, or upon block allocation rate for the file system increasing.
    Type: Application
    Filed: November 8, 2019
    Publication date: April 23, 2020
    Applicant: Amazon Technologies, Inc.
    Inventors: Jacob A. Strauss, Michael Robert Frasca, Neal John Charbonneau
  • Publication number: 20200125370
    Abstract: Methods, systems, and computer-readable media for resource configuration based on dynamic group membership are disclosed. An association between a group of computing resources and an intended state is stored. The intended state represents a computing resource configuration. During operation of a computing resource, whether the computing resource belongs to the group of computing resources is determined based at least in part on analysis of one or more attributes associated with the computing resource. Based at least in part on determining that the computing resource belongs to the group of computing resources, one or more actions are caused be performed to bring the computing resource into the intended state. The computing resource is executed while having the computing resource configuration represented by the intended state.
    Type: Application
    Filed: December 20, 2019
    Publication date: April 23, 2020
    Applicant: Amazon Technologies, Inc.
    Inventors: Amjad Hussain, Anand Doshi, Xiong Wang, Sivaprasad Venkata Padisetty
  • Publication number: 20200127881
    Abstract: A network visualization service may auto-generate graphical, dynamic, and interactive network diagrams of the infrastructure (resource instances, connections, etc.) of clients' virtual private networks as implemented on a provider network. A network diagram may include representations of various virtualized components of a client's virtual private network, as well as relationships among and connections between and among the various components. The diagram may also display logical and/or geographical groupings of the virtual resources in the client's virtual private network. The service may track changes to the virtual private network and update the diagram accordingly. The diagram may provide a user interface via which the client may select particular graphical objects on diagram to display additional information about a respective resource instance or connection and/or to change the client's virtual private network configuration via the network diagram.
    Type: Application
    Filed: November 1, 2019
    Publication date: April 23, 2020
    Applicant: Amazon Technologies, Inc.
    Inventors: Gregory Jonathan Kempe, Ronen Dov Agranat, Malcolm Featonby, Joshua Mentz, Timothy Ralph Sjoberg, Willem Jacob Buys
  • Publication number: 20200125271
    Abstract: A data storage system includes multiple head nodes and multiple data storage sleds mounted in a rack. For a particular volume or volume partition one of the head nodes is designated as a primary head node for the volume or volume partition. The primary head node is configured to store data for the volume in a data storage of the primary head node and cause the data to be replicated to a secondary head node. The primary head node is also configured to cause the data for the volume to be stored in a plurality of respective mass storage devices each in different ones of the plurality of data storage sleds of the data storage system.
    Type: Application
    Filed: December 20, 2019
    Publication date: April 23, 2020
    Applicant: Amazon Technologies, Inc.
    Inventors: Norbert P. Kusters, Nachiappan Arumugam, Christopher Nathan Watson, Marc John Brooker, David R. Richardson, Danny Wei, John Luther Guthrie, II
  • Publication number: 20200117399
    Abstract: A data storage system includes multiple data storage units and a zonal control plane. The zonal control plane assigns volumes to respective ones of the data storage units. The data storage units include multiple head nodes and data storage sleds. At least one of the head nodes implements a local control plane for the data storage unit. Also, the head nodes of each data storage unit are configured to service read and write requests directed to one or more volumes serviced by the data storage unit independent of the zonal control plane.
    Type: Application
    Filed: December 13, 2019
    Publication date: April 16, 2020
    Applicant: Amazon Technologies, Inc.
    Inventors: Norbert P. Kusters, Nachiappan Arumugam, Christopher Nathan Watson, Marc John Brooker, David R. Richardson, Danny Wei, John Luther Guthrie, II
  • Publication number: 20200116966
    Abstract: A data center includes various sets of infrastructure modules which each provide a particular type of infrastructure support to support computing operations in the data center. Separate sets of infrastructure modules can be installed incrementally based on incrementally changing support capacity for the corresponding type of infrastructure support in the data center. Such incrementally changing support capacity can be based upon support requirements of electrical loads, including rack computer systems, which are inbound to the data center. Where support capacity for a particular type of infrastructure support drops below a threshold, a quantity of additional infrastructure modules which provide the particular type of infrastructure support can be selected and installed to increase the support capacity.
    Type: Application
    Filed: December 6, 2019
    Publication date: April 16, 2020
    Applicant: Amazon Technologies, Inc.
    Inventors: Osvaldo P. Morales, Brock Robert Gardner
  • Publication number: 20200119988
    Abstract: Methods, systems, and computer-readable media for optimizing application configurations in a provider network are disclosed. An application description is determined that comprises one or more resource utilization characteristics of an application. Automated analysis is performed of a plurality of potential configurations for the application based at least in part on the application description. The automated analysis comprises scoring at least a portion of the potential configurations based at least in part on a scoring function. A recommended configuration for the application is determined based at least in part on the automated analysis. The recommended configuration comprises a type and number of computing resources in a multi-tenant provider network.
    Type: Application
    Filed: December 13, 2019
    Publication date: April 16, 2020
    Applicant: Amazon Technologies, Inc.
    Inventors: Lucia Castellanos, Jordan Brest, Varvara Nasonova
  • Publication number: 20200111107
    Abstract: An unauthorized-product detection system may compare data representing various authentication markers of items presumed to have been produced or sourced by a particular entity with stored data representing valid authentication markers of items produced or sourced by the particular entity. The authentication markers may represent inherent physical characteristics of the items or their packaging, or may be generated and applied to the items or their packaging to facilitate counterfeit detection and/or for other purposes. The data (some of which may be encrypted) may be captured using high-resolution cameras, scanners, or other devices, and then communicated to the unauthorized-product detection system for analysis. The system may maintain a data store of data representing captured or valid authentication markers and may store tracking information reflecting the use of various authentication markers.
    Type: Application
    Filed: November 15, 2019
    Publication date: April 9, 2020
    Applicant: Amazon Technologies, Inc.
    Inventors: Douglas James Herrington, Shehzad Mevawalla, Rajiv Chopra, Joseph Sirosh, Sachin Chouksey, Maria Christine Renz, Sarah Ann Wood, Jeffrey P. Bezos
  • Publication number: 20200110707
    Abstract: A block-based storage system may implement page cache write logging. Write requests for a data volume maintained at a storage node may be received at a storage node. A page cache for may be updated in accordance with the request. A log record describing the page cache update may be stored in a page cache write log maintained in a persistent storage device. Once the write request is performed in the page cache and recorded in a log record in the page cache write log, the write request may be acknowledged. Upon recovery from a system failure where data in the page cache is lost, log records in the page cache write log may be replayed to restore to the page cache a state of the page cache prior to the system failure.
    Type: Application
    Filed: December 6, 2019
    Publication date: April 9, 2020
    Applicant: Amazon Technologies, Inc.
    Inventors: Danny Wei, John Luther Guthrie, II, James Michael Thompson, Benjamin Arthur Hawks, Norbert P. Kusters
  • Publication number: 20200112486
    Abstract: Methods and apparatus for centralized resource utilization visualization in distributed systems are disclosed. Metrics are collected from a plurality of sources in a distributed system, including network traffic metrics collected from nodes implementing a network-accessible service. A topology representing at least one of (a) a relationship between respective client accounts to which a first and second node are assigned, or (b) one or more network links between the first and second nodes is generated. Respective networking performance indicators of the first node and the second node are provided for inclusion in a resource heat map corresponding to the topology.
    Type: Application
    Filed: December 6, 2019
    Publication date: April 9, 2020
    Applicant: Amazon Technologies, Inc.
    Inventor: Avichai Mendle Lissack
  • Publication number: 20200104523
    Abstract: Methods, systems, and computer-readable media for a client-side filesystem for a remote repository are disclosed. One or more files of a repository are sent from a storage service to a client device. The file(s) are obtained by the client using a credential sent by a repository manager. Local copies of the file(s) are accessible via a local filesystem mounted at the client device. One or more new files associated with the repository are generated at the client device. Using the credential, the one or more new files are obtained at the storage service from the client device. The one or more new files are added to the repository.
    Type: Application
    Filed: September 28, 2018
    Publication date: April 2, 2020
    Applicant: Amazon Technologies, Inc.
    Inventors: Marvin Michael Theimer, Julien Jacques Ellie, Colin Watson, Ullas Sankhla, Swapandeep Singh, Kerry Hart, Paul Anderson, Brian Dahmen, Suchi Nandini, Yunhan Chen, Shu Liu, Arjun Raman, Yuxin Xie, Fengjia Xiong
  • Publication number: 20200104175
    Abstract: Methods, systems, and computer-readable media for parameter variations for computations using a remote repository are disclosed. A first computation to a first set of one or more hosts. The first computation is associated with first parameters including one or more inputs and program code. A second computation is assigned to a second set of one or more hosts and is associated with a second set of parameters. Execution of the first computation is initiated using the first set of hosts and the first set of parameters. Local copies of the input(s) and program code are obtained from a storage service using a credential supplied by a repository manager. Execution of the second computation is initiated using the second set of hosts and the second set of parameters as obtained using a credential supplied by the repository manager.
    Type: Application
    Filed: September 28, 2018
    Publication date: April 2, 2020
    Applicant: Amazon Technologies, Inc.
    Inventors: Marvin Michael Theimer, Julien Jacques Ellie, Colin Watson, Ullas Sankhla, Swapandeep Singh, Kerry Hart, Paul Anderson, Brian Dahmen, Suchi Nandini, Yunhan Chen, Shu Liu, Arjun Raman, Yuxin Xie, Fengjia Xiong
  • Publication number: 20200106297
    Abstract: An internal cooling grid is mounted internal to a facility, such as a data center, and includes a plurality of fluid transport elements arranged in a grid pattern with nodes at intersections of the grid pattern. Supply and return manifolds included in the nodes receive (and return) cooling fluid from/to more than two transport elements. Thus, a failure of one or more transport elements does not prevent a node from being supplied cooling fluid from at least a first transport element and a second transport element. In some embodiments, the cooling grid may be operated at a pressure less than one atmosphere, such that any leaks that occur cause air to leak into the cooling grid instead of cooling fluid leaking out of the cooling grid.
    Type: Application
    Filed: September 27, 2018
    Publication date: April 2, 2020
    Applicant: Amazon Technologies, Inc.
    Inventor: Peter George Ross
  • Publication number: 20200104171
    Abstract: Methods, systems, and computer-readable media for orchestration of computations using a remote repository are disclosed. A representation of one or more inputs to a computation is stored in a repository. The computation is assigned to one or more hosts of a plurality of hosts. A representation of program code executable to perform the computation is stored in the repository. A local copy of the one or more inputs is stored on the one or more hosts. The computation is initiated on the one or more hosts using the program code and the local copy of the one or more inputs. The computation is initiated for a plurality of keys. The computation succeeds for one or more keys after the computation has failed for one or more other keys. A representation of one or more outputs of the computation is stored in the repository.
    Type: Application
    Filed: September 28, 2018
    Publication date: April 2, 2020
    Applicant: Amazon Technologies, Inc.
    Inventors: Marvin Michael Theimer, Julien Jacques Ellie, Colin Watson, Ullas Sankhla, Swapandeep Singh, Kerry Hart, Paul Anderson, Brian Dahmen, Suchi Nandini, Yunhan Chen, Shu Liu, Arjun Raman, Yuxin Xie, Fengjia Xiong
  • Publication number: 20200106298
    Abstract: A power distribution grid for a facility, such as a data center, is located within the facility. The power distribution grid includes a plurality of power transport elements arranged in a grid pattern and nodes located at intersections of the grid pattern. Electrical loads are supplied power via respective nodes of the power distribution grid. Also, each node is supplied power from more than two transport elements, such that one or more transport elements can fail and electrical loads connected to a particular node associated with the failed transport elements continue to receive electrical power supplied to the particular node from at least two different transport elements.
    Type: Application
    Filed: September 27, 2018
    Publication date: April 2, 2020
    Applicant: Amazon Technologies, Inc.
    Inventor: Peter George Ross
  • Publication number: 20200100382
    Abstract: A system includes a rack and one or more server systems mounted in the rack. A server system includes a chassis with one or more arrays of devices in the chassis. Each array includes mass storage devices and a server device mounted in the array within the chassis of the server system. The server device occupies no more than an equivalent volume of space in the chassis as one of the mass storage devices. A set of mass storage devices of an array and the server device of the array form a logical node, and a server system may include multiple logical nodes in the same chassis. Each array of devices may be located in a sled that can move into and out of the chassis of the server system.
    Type: Application
    Filed: November 27, 2019
    Publication date: March 26, 2020
    Applicant: Amazon Technologies, Inc.
    Inventors: Darin Lee Frink, Roey Rivnay, Christopher Strickland Beall, Felipe Enrique Ortega Gutierrez
  • Publication number: 20200097489
    Abstract: Resource data objects describing resources in a system may be maintained in multiple different hierarchies for applying policies to manage the resources. Lookup requests may access the different hierarchies to determine which policies are applicable to a given resource based on the policies identified in each of the hierarchies. Modifications to hierarchies may be performed in isolation so that the application of policies in other hierarchies is unchanged by modifications to a different hierarchy. Access restrictions may be enforced with respect to hierarchies so that different users may be permitted access to different hierarchies for system resource management.
    Type: Application
    Filed: November 22, 2019
    Publication date: March 26, 2020
    Applicant: Amazon Technologies, Inc.
    Inventors: Brian Collins, Zachary Mohamed Shalla, Marvin Michael Theimer, John Petry, Michael Hart, Serge Hairanian, Anders Samuelsson, Salvador Salazar Sepulveda, Ji Luo
  • Publication number: 20200100395
    Abstract: A rack-mountable computer system enables an airflow that cools components in an upstream portion of the computer system interior to be cooled through mixing with a bypass airflow downstream of the components in the upstream portion. The mixed airflow can cool components in a downstream portion of the interior. The bypass airflow is directed by a bypass plenum that is unencompassed by the separate plenum that directs the airflow to cool the upstream portion components. The bypass plenum can be at least partially established by an external surface the computer system and one or more external structures, including an external surface of an adjacently mounted computer system. Relative flow rates through the separate plenums can be adjusted, via flow control elements, to separately control heat removal from components upstream and downstream of the air mixing, based at least in part upon air temperatures in the separate interior portions.
    Type: Application
    Filed: November 27, 2019
    Publication date: March 26, 2020
    Applicant: Amazon Technologies, Inc.
    Inventors: David Edward Bryan, Christopher Strickland Beall, Darin Lee Frink
  • Publication number: 20200099653
    Abstract: Virtual networks may be launched in a provider network with an initial IP address space (e.g., an IPv4 CIDR block). Methods are described that allow additional IP address spaces to be added to a virtual network. A new IP address space for a virtual network may be specified via an API. The specified space may be checked to insure that it does not overlap with IP spaces that are associated with the virtual network. If there are no overlaps, the space is added to the network, for example by adding the space to the network's route tables.
    Type: Application
    Filed: November 27, 2019
    Publication date: March 26, 2020
    Applicant: Amazon Technologies, Inc.
    Inventors: Benjamin David Strauss, John D. Bomkamp, Steven Gerard Betten, Aniket Deepak Divecha, Mingxue Zhao, George Wickersham, Mahmoud Ali Abuelela, Shane Ashley Hall
  • Publication number: 20200099744
    Abstract: Methods and apparatus for coordinating inter-region operations in provider networks. An inter-region coordinator (IRC) operates asynchronously to the control planes of regional networks to coordinate inter-region operations. The IRC in a region may include one or more IRC servers. To perform inter-region operations, the servers may implement a local-remote-local method in which a server invokes an API in the local region to get work, sends the work to a control plane of a remote region, receives a response from the remote region, and informs the control plane in the local region of the status of the work.
    Type: Application
    Filed: November 27, 2019
    Publication date: March 26, 2020
    Applicant: Amazon Technologies, Inc.
    Inventors: Logan Michael Hood, Jonathan Galentine, Vincent Gerard Nicotra
  • Publication number: 20200099606
    Abstract: A distributed testing service for providing responsive and fault-tolerant testing computing platforms within a range of configurable testing conditions. The distributed testing service may be provide an independent worker registry service, a repository service, and multiple worker nodes. Further, the worker nodes may push, or initiate, transmissions to provide status information that may be used to determine appropriate worker nodes to client computers that are requesting worker nodes for executing test cases. The distributed testing service may provide network information for worker nodes to client computers so that communications involving executing the test cases on the worker nodes to not include the worker registry service or the repository service.
    Type: Application
    Filed: November 26, 2019
    Publication date: March 26, 2020
    Applicant: Amazon Technologies, Inc.
    Inventors: David Mozealous, Arpit Dhandhania