Patents by Inventor Kevin Christopher Miller
Kevin Christopher Miller has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Patent number: 11509577Abstract: Methods and apparatus that allow clients to connect resource instances to virtual networks in provider network environments via private IP. Via private IP linking methods and apparatus, a client of a provider network can establish private IP communications between the client's resource instances on the provider network and the client's resource instances provisioned in the client's virtual network via links from the private IP address space of the virtual network to the private IP address space of the provider network. The provider network client resource instances remain part of the client's provider network implementation and may thus also communicate with other resource instances on the provider network and/or with entities on external networks via public IP while communicating with the virtual network resource instances via private IP.Type: GrantFiled: August 2, 2019Date of Patent: November 22, 2022Assignee: Amazon Technologies, Inc.Inventors: Kevin Christopher Miller, Andrew Bruce Dickinson, Eric Wayne Schultze, Ian Roger Searle, Shane Ashley Hall, Deepak Mohan, David Brian Lennon
-
Patent number: 11463351Abstract: Methods and apparatus for interfaces to manage inter-regional connectivity for direct network peerings. A system may include a connectivity coordinator, a first resource collection in a first geographical zone and a second resource collection in a second geographical zone. The coordinator implements a programmatic interface defining connectivity operations. The coordinator receives a request via the interface to establish a logically isolated network path to the second resource collection on behalf of a client that has a dedicated physical link set up to connect to the first resource collection. In response to the request, the coordinator performs one or more configuration operations to enable traffic to flow from the client's network to the second resource collection over a logically isolated network path using the dedicated physical link.Type: GrantFiled: December 20, 2019Date of Patent: October 4, 2022Assignee: Amazon Technologies, Inc.Inventors: Andrew J. Doane, Kevin Christopher Miller, David B. Lennon
-
Publication number: 20220278903Abstract: Techniques are described for providing virtual networking functionality for managed computer networks. In some situations, a user may configure or otherwise specify a logical network topology for a managed computer network with multiple computing nodes that includes one or more virtual networking devices each associated with a specified group of the multiple computing nodes. Corresponding networking functionality may be provided for communications between the multiple computing nodes by emulating functionality that would be provided by the networking devices if they were physically present and configured to support the specified network topology. In some situations, the managed computer network is a virtual computer network overlaid on a substrate network, and the networking device functionality emulating includes receiving routing communications directed to the networking devices and using included routing information to update the specified network topology for the managed computer network.Type: ApplicationFiled: May 13, 2022Publication date: September 1, 2022Applicant: Amazon Technologies, Inc.Inventors: Eric Jason Brandwine, Kevin Christopher Miller, Andrew J. Doane
-
Publication number: 20220279040Abstract: Techniques are described for providing managed computer networks, such as for managed virtual computer networks overlaid on one or more other underlying computer networks. In some situations, the techniques include facilitating replication of a primary computing node that is actively participating in a managed computer network, such as by maintaining one or more other computing nodes in the managed computer network as replicas, and using such replica computing nodes in various manners. For example, a particular managed virtual computer network may span multiple broadcast domains of an underlying computer network, and a particular primary computing node and a corresponding remote replica computing node of the managed virtual computer network may be implemented in distinct broadcast domains of the underlying computer network, with the replica computing node being used to transparently replace the primary computing node in the virtual computer network if the primary computing node becomes unavailable.Type: ApplicationFiled: March 11, 2022Publication date: September 1, 2022Applicant: Amazon Technologies, Inc.Inventors: Eric Jason Brandwine, Kevin Christopher Miller, Andrew J. Doane
-
Patent number: 11336529Abstract: Techniques are described for providing virtual networking functionality for managed computer networks. In some situations, a user may configure or otherwise specify a logical network topology for a managed computer network with multiple computing nodes that includes one or more virtual networking devices each associated with a specified group of the multiple computing nodes. Corresponding networking functionality may be provided for communications between the multiple computing nodes by emulating functionality that would be provided by the networking devices if they were physically present and configured to support the specified network topology. In some situations, the managed computer network is a virtual computer network overlaid on a substrate network, and the networking device functionality emulating includes receiving routing communications directed to the networking devices and using included routing information to update the specified network topology for the managed computer network.Type: GrantFiled: February 21, 2020Date of Patent: May 17, 2022Assignee: Amazon Technologies, Inc.Inventors: Eric Jason Brandwine, Kevin Christopher Miller, Andrew J. Doane
-
Patent number: 11277471Abstract: Techniques are described for providing managed computer networks, such as for managed virtual computer networks overlaid on one or more other underlying computer networks. In some situations, the techniques include facilitating replication of a primary computing node that is actively participating in a managed computer network, such as by maintaining one or more other computing nodes in the managed computer network as replicas, and using such replica computing nodes in various manners. For example, a particular managed virtual computer network may span multiple broadcast domains of an underlying computer network, and a particular primary computing node and a corresponding remote replica computing node of the managed virtual computer network may be implemented in distinct broadcast domains of the underlying computer network, with the replica computing node being used to transparently replace the primary computing node in the virtual computer network if the primary computing node becomes unavailable.Type: GrantFiled: January 29, 2021Date of Patent: March 15, 2022Assignee: Amazon Technologies, Inc.Inventors: Eric Jason Brandwine, Kevin Christopher Miller, Andrew J. Doane
-
Patent number: 11269673Abstract: Methods and apparatus that allow clients to specify custom network rules for their resource instances or network constructs in a provider network environment. Services and interfaces may be provided that allow a client to provide an executable module that implements custom rules for their resources, or alternatively to specify or select custom rules for their resources. The module may be installed on a host device, and may apply the custom rules to packets to and from the client's resources. Alternatively, the client-defined rules may be applied to packet flows according to the custom rules specified by the client and applied by a client rules service implemented on the provider network external to the host device or on a client resource instance on the host device. The custom network rules may, for example, extend or modify standard network rules for the client's resources on the host device.Type: GrantFiled: May 17, 2019Date of Patent: March 8, 2022Assignee: Amazon Technologies, Inc.Inventors: Kevin Christopher Miller, Joseph E. Magerramov, Marcin Piotr Kowalski, Colm Gearóid MacCárthaigh
-
Publication number: 20220060550Abstract: A service implemented at a first isolated virtual network of a provider network is added to a database of privately-accessible services. Configuration changes that enable network packets to flow between the first isolated virtual network and a second isolated virtual network without utilizing a network address accessible from the public Internet are implemented. Service requests originating at the second isolated virtual network are transmitted to the first isolated virtual network via private pathways of the provider network. Metrics corresponding to service requests directed from the second isolated network to the service are collected and provided to the respective owners of one or both isolated virtual networks.Type: ApplicationFiled: November 5, 2021Publication date: February 24, 2022Applicant: Amazon Technologies, Inc.Inventors: Kyle Tailor Akers, Michael Siaosi Voegele, Kevin Christopher Miller, Chao Yuan, David Brian Lennon, Patrick Stephenson
-
Patent number: 11172032Abstract: A service implemented at a first isolated virtual network of a provider network is added to a database of privately-accessible services. Configuration changes that enable network packets to flow between the first isolated virtual network and a second isolated virtual network without utilizing a network address accessible from the public Internet are implemented. Service requests originating at the second isolated virtual network are transmitted to the first isolated virtual network via private pathways of the provider network. Metrics corresponding to service requests directed from the second isolated network to the service are collected and provided to the respective owners of one or both isolated virtual networks.Type: GrantFiled: August 23, 2019Date of Patent: November 9, 2021Assignee: Amazon Technologies, Inc.Inventors: Kyle Tailor Akers, Michael Siaosi Voegele, Kevin Christopher Miller, Chao Yuan, David Brian Lennon, Patrick Stephenson
-
Publication number: 20210258239Abstract: Respective network metrics sets corresponding to one or more data sources are examined at a network health manager. Network health states corresponding to one or more endpoint pair categories are determined based on the analysis of the network metric sets. An indication of the network health state of a particular endpoint pair category is stored.Type: ApplicationFiled: February 5, 2021Publication date: August 19, 2021Applicant: Amazon Technologies, Inc.Inventors: Kenneth Grey Richards, Schuyler David Thompson, Adam Siefker, Kevin Christopher Miller, Meenakshi Rameshkumar
-
Patent number: 11063819Abstract: Techniques are described for managing communications for a managed computer network by using a defined pool of alternative computing nodes of the managed computer network that are configured to operate as intermediate destinations to handle at least some communications that are sent by and/or directed to one or more other computing nodes of the managed computer network. For example, a manager module associated with a source computing node may select a particular alternative intermediate destination computing node from a defined pool to use for one or more particular communications from the source computing node to an indicated final destination, such as based on a configured logical network topology for the managed computer network and/or on one or more other selection criteria (e.g., to enable load balancing between the alternative computing nodes). The manager module then forwards those communications to the selected intermediate destination computing node for further handling.Type: GrantFiled: July 19, 2019Date of Patent: July 13, 2021Assignee: Amazon Technologies, Inc.Inventors: Eric Jason Brandwine, Kevin Christopher Miller
-
Publication number: 20210168032Abstract: Techniques are described for providing managed virtual computer networks that have a configured logical network topology with virtual networking devices, such as by a network-accessible configurable network service, with corresponding networking functionality provided for communications between multiple computing nodes of the virtual computer network by emulating functionality that would be provided by the virtual networking devices if they were physically present.Type: ApplicationFiled: December 11, 2020Publication date: June 3, 2021Applicant: Amazon Technologies, Inc.Inventors: Kevin Christopher Miller, Eric Jason Brandwine, Andrew J. Doane
-
Publication number: 20210152632Abstract: Techniques are described for providing managed computer networks, such as for managed virtual computer networks overlaid on one or more other underlying computer networks. In some situations, the techniques include facilitating replication of a primary computing node that is actively participating in a managed computer network, such as by maintaining one or more other computing nodes in the managed computer network as replicas, and using such replica computing nodes in various manners. For example, a particular managed virtual computer network may span multiple broadcast domains of an underlying computer network, and a particular primary computing node and a corresponding remote replica computing node of the managed virtual computer network may be implemented in distinct broadcast domains of the underlying computer network, with the replica computing node being used to transparently replace the primary computing node in the virtual computer network if the primary computing node becomes unavailable.Type: ApplicationFiled: January 29, 2021Publication date: May 20, 2021Applicant: Amazon Technologies, Inc.Inventors: Eric Jason Brandwine, Kevin Christopher Miller, Andrew J. Doane
-
Publication number: 20210152392Abstract: In accordance with a designation of a private alias endpoint as a routing target for traffic directed to a service from within an isolated virtual network of a provider network, a tunneling intermediary receives a baseline packet generated at a compute instance. The baseline packet indicates a public IP (Internet Protocol) address of the service as the destination, and a private IP address of the compute instance as the source. In accordance with a tunneling protocol, the tunneling intermediary generates an encapsulation packet comprising at least a portion of the baseline packet and a header indicating the isolated virtual network. The encapsulation packet is transmitted to a node of the service.Type: ApplicationFiled: November 19, 2020Publication date: May 20, 2021Applicant: Amazon Technologies, Inc.Inventors: Kevin Christopher Miller, Richard Alexander Sheehan, Douglas Stewart Laurence, Marwan Salah El-Din Oweis, Andrew Bruce Dickinson
-
Publication number: 20210119890Abstract: A determination is made that a graphical representation of network health state information pertaining to a client account of a provider network is to be provided. Using respective network metrics groups corresponding to several data sources, a network health state descriptor corresponding to a resource associated with the client account is generated. A data set usable to generate a graphical display of network health state information of the resource of the client account is transmitted.Type: ApplicationFiled: December 4, 2020Publication date: April 22, 2021Applicant: Amazon Technologies, Inc.Inventors: Kenneth Grey Richards, Schuyler David Thompson, Adam Siefker, Kevin Christopher Miller, Meenakshi Rameshkumar
-
Patent number: 10958653Abstract: A computing resource service provider grants a first set of security permissions to a principal (e.g., a user) which may be used to access a plurality of computing resources. The permissions may be associated with a first security token. The principal may access resources using the first set of security permissions, and a system (e.g., a service provider) may identify a subset of security permissions that are sufficient to provide access to the computing resources accessed by the principal using the first set of permissions. The subset may be associated with the principal. In some cases, the principal operating under the subset of permissions may be denied access to a computing resource and may be granted access to the computing resource by operating under the first set of permissions.Type: GrantFiled: June 27, 2017Date of Patent: March 23, 2021Assignee: Amazon Technologies, Inc.Inventors: Kevin Christopher Miller, Rebecca Claire Weiss
-
Patent number: 10924452Abstract: Techniques are disclosed for auditing an IP address prefix that has been assigned to an entity as part of an administrator policy, to determine whether the assignment was implemented on the network. In an embodiment, associations between IP addresses and their assignment are stored in a database. IP addresses are read and semi-authoritative sources (e.g., DNS servers) are queried for information about the IP addresses. Information received in response to the query may be used to validate the IP address (e.g., in a network, all IP addresses used for VM instances will have a corresponding URL in a specific format).Type: GrantFiled: August 30, 2013Date of Patent: February 16, 2021Assignee: Amazon Technologies, Inc.Inventors: Leonid Valentinovich Nikolayev, Michael Brooke Furr, Ryan David Murphy, Kevin Christopher Miller
-
Patent number: 10917324Abstract: Respective network metrics sets corresponding to one or more data sources are examined at a network health manager. Network health states corresponding to one or more endpoint pair categories are determined based on the analysis of the network metric sets. An indication of the network health state of a particular endpoint pair category is stored.Type: GrantFiled: September 28, 2016Date of Patent: February 9, 2021Assignee: Amazon Technologies, Inc.Inventors: Kenneth Grey Richards, Schuyler David Thompson, Adam Siefker, Kevin Christopher Miller, Meenakshi Rameshkumar
-
Patent number: 10911528Abstract: Techniques are described for providing managed computer networks, such as for managed virtual computer networks overlaid on one or more other underlying computer networks. In some situations, the techniques include facilitating replication of a primary computing node that is actively participating in a managed computer network, such as by maintaining one or more other computing nodes in the managed computer network as replicas, and using such replica computing nodes in various manners. For example, a particular managed virtual computer network may span multiple broadcast domains of an underlying computer network, and a particular primary computing node and a corresponding remote replica computing node of the managed virtual computer network may be implemented in distinct broadcast domains of the underlying computer network, with the replica computing node being used to transparently replace the primary computing node in the virtual computer network if the primary computing node becomes unavailable.Type: GrantFiled: March 20, 2020Date of Patent: February 2, 2021Assignee: Amazon Technologies, Inc.Inventors: Eric Jason Brandwine, Kevin Christopher Miller, Andrew J. Doane
-
Patent number: 10911263Abstract: A request to obtain network health information pertaining to a client account of a provider network is received via a programmatic interface. Respective sets of network metrics are obtained from several data sources of the provider network, and a respective network health state descriptor is generated for one or more resource sets associated with the client account. A response to the request is prepared using the network health state descriptor and transmitted.Type: GrantFiled: September 28, 2016Date of Patent: February 2, 2021Assignee: Amazon Technologies, Inc.Inventors: Kenneth Grey Richards, Schuyler David Thompson, Adam Siefker, Kevin Christopher Miller, Meenakshi Rameshkumar