SCHEDULED SYNCHRONIZATION OF A DATA STORE WITH CERTIFICATE REVOCATION LISTS INDEPENDENT OF CONNECTION REQUESTS
Granted: September 21, 2023
Application Number:
20230299980
A certificate revocation manager performs scheduled synchronization of a certificate revocation table with certificate revocation lists (CRLs) independent of connection requests from clients. The certificate revocation table includes entries that each indicate a client certificate that has been revoked by a certificate authority (CA). On a scheduled basis, the certificate revocation manager synchronizes the entries of the certificate revocation table with current CRLs obtained from…
CLIENT-DIRECTED PLACEMENT OF REMOTELY-CONFIGURED SERVICE INSTANCES
Granted: September 14, 2023
Application Number:
20230291786
Methods and apparatus for client-directed placement of remotely configured service instances are described. One or more placement target options are selected for a client of a network-accessible service based on criteria such as service characteristics of the placement targets. The selected options, including a particular placement target that includes instance hosts configurable from remote control servers, are indicated programmatically to the client. A determination is made that a…
DISTRIBUTED EVALUATION OF NETWORKING SECURITY RULES
Granted: September 14, 2023
Application Number:
20230291769
A plurality of security rule processing nodes is configured for network traffic of a set of sources and destinations. Respective subsets of configuration information of the sources and destinations, including security rules, are transmitted to the nodes. Respective addresses of at least a subset of the nodes are transmitted to a packet processing intermediary. The intermediary requests evaluation of applicable security rules with respect to packet flows by selected nodes prior to…
NETWORK HEALTH DATA AGGREGATION SERVICE
Granted: September 14, 2023
Application Number:
20230291674
Respective network metrics sets corresponding to one or more data sources are examined at a network health manager. Network health states corresponding to one or more endpoint pair categories are determined based on the analysis of the network metric sets. An indication of the network health state of a particular endpoint pair category is stored.
CONTACTLESS POWERING AND CONTROL OF CONVEYORS ON SHUTTLES
Granted: September 14, 2023
Application Number:
20230291439
Systems and methods are disclosed for contactless powering and control of conveyors on shuttles. An example system may include a track, a first transmitter disposed at a first location along the track, the first transmitter configured to transmit power and data wirelessly, and a shuttle configured to move along the track. The shuttle may include a conveyor, and a first receiver configured to wirelessly receive the power and the data from the first transmitter, where the power is used to…
DETERMINING AND PRESENTING INFORMATION RELATED TO A SEMANTIC CONTEXT OF ELECTRONIC MESSAGE TEXT OR VOICE DATA
Granted: September 7, 2023
Application Number:
20230281695
Systems, methods, and computer-readable media are disclosed for processing input data to determine an entity such as a product, service, user profile, etc. referenced in or otherwise relevant to a semantic context of the input data. Information related to the entity may be provided as an information package (e.g., a card) that is shareable as part of an electronic message. The card may include a representation of a network resource identifier that identifies a network resource, a network…
SYSTEM AND METHOD FOR THROTTLING SERVICE REQUESTS HAVING NON-UNIFORM WORKLOADS
Granted: September 7, 2023
Application Number:
20230283681
A system that provides services to clients may receive and service requests, various ones of which may require different amounts of work. The system may determine whether it is operating in an overloaded or underloaded state based on a current work throughput rate, a target work throughput rate, a maximum request rate, or an actual request rate, and may dynamically adjust the maximum request rate in response. For example, if the maximum request rate is being exceeded, the maximum request…
COORDINATING INTER-REGION OPERATIONS IN PROVIDER NETWORK ENVIRONMENTS
Granted: September 7, 2023
Application Number:
20230283661
Methods and apparatus for coordinating inter-region operations in provider networks. An inter-region coordinator (IRC) operates asynchronously to the control planes of regional networks to coordinate inter-region operations. The IRC in a region may include one or more IRC servers. To perform inter-region operations, the servers may implement a local-remote-local method in which a server invokes an API in the local region to get work, sends the work to a control plane of a remote region,…
NETWORK FLOW MANAGEMENT FOR ISOLATED VIRTUAL NETWORKS
Granted: September 7, 2023
Application Number:
20230283559
A network address assigned to a virtual network interface of a packet transformation node of a flow management service is identified. A packet of a particular network flow associated with an application implemented at an isolated virtual network is sent to the network address. Using a rewrite directive generated at a rewriting decisions node of the service and cached at the packet transformation node, a transformed packet corresponding to a packet received at the packet transformation…
LANGUAGE AGNOSTIC DRIFT CORRECTION
Granted: September 7, 2023
Application Number:
20230282006
Systems, methods, and computer-readable media are disclosed for language-agnostic subtitle drift detection and correction. A method may include determining subtitles and/or captions from media content (e.g., videos), the subtitles and/or captions corresponding to dialog in the media content. The subtitles may be broken up into segments which may be analyzed to determine a likelihood of drift (e.g., a likelihood that the subtitles are out of synchronization with the dialog in the media…
Managed Lifecycle Roles for Secure Credential Vending
Granted: September 7, 2023
Application Number:
20230281294
Managed lifecycle roles are disclosed. Managed lifecycle roles may be used for secure credential vending or otherwise. For instance, an entity (e.g., administrator or other entity) requests, via an interface of a role manager, creation of a role associated with a lifecycle definition (e.g., an expression of an enforceable expiration of the role or similar characteristic). The role manager stores the role and role lifecycle definition to a data store. Another entity requests to use the…
EXPERIMENT MANAGEMENT SERVICE
Granted: September 7, 2023
Application Number:
20230281276
Artifacts, including parameters are data sets, associated with experiment tasks are stored at an experiment management service. A query specifying a particular value of a parameter and a particular data set is received, and an indication of an experiment result associated with the particular data set and the particular parameter value is provided.
ADDING A READ-ONLY QUERY ENGINE TO PERFORM QUERIES TO A POINT-IN-TIME OF A WRITE-ACCESSIBLE DATABASE
Granted: September 7, 2023
Application Number:
20230281211
A database system may add a read-only query engine to perform read-only queries associated with points-in-time of a database. In various embodiments, the read-only query engine may be added in response to a manual request, an automatic refresh of a network endpoint, a query specifying a point-in-time, or a connection request. The read-only query engine may perform the point-in-time queries on a version the database at the point-in-time and return results for the queries. Upon completion…
SYSTEM AND METHOD FOR CLUSTERING DISTRIBUTED HASH TABLE ENTRIES
Granted: September 7, 2023
Application Number:
20230281181
A distributed storage system may store data object instances in persistent storage and may store keymap information for those data object instances in a distributed hash table on multiple computing nodes. Each data object instance may include a composite key containing a user key. The keymap information for each data object instance may map the user key to a locator and the locator to the data object instance. A request to store or retrieve keymap information for a data object instance…
SYSTEM AND METHOD FOR PROVIDING A COMMITTED THROUGHPUT LEVEL IN A DATA STORE
Granted: September 7, 2023
Application Number:
20230280908
A system that implements a scaleable data storage service may maintain tables in a data store on behalf of storage service clients. The service may maintain data in partitions stored on respective computing nodes in the system. The service may support multiple throughput models, including a committed throughput model and a best effort throughput model. A service request to create a table may specify that requests directed to the table should be serviced under a committed throughput model…
CONDITIONAL MASTER ELECTION IN DISTRIBUTED DATABASES
Granted: August 31, 2023
Application Number:
20230273937
Methods and apparatus for conditional master election in a distributed database are described. A plurality of replicas of a database object are stored by a distributed database service. Some types of operations corresponding to client requests directed at the database object are to be coordinated by a master replica. Client access to the database object is enabled prior to election of a master replica. In response to a triggering condition, a particular replica is elected master. The…
MEMORY TRAINING USING ELECTRONIC NOISE
Granted: August 31, 2023
Application Number:
20230273735
Technologies are provided for increasing electronic noise of a memory device during an initialization of the memory device and performing initialization operations, such as memory access centering operations, for the memory device while the electronic noise of the memory device is increased. The electronic noise of the memory device can be increased by increasing a level of ground bounce (or ground noise) during a training phase of the memory device. Increasing the ground noise can…
SHIPPABLE NETWORK-ATTACHED DATA STORAGE DEVICE WITH UPDATEABLE ELECTRONIC DISPLAY
Granted: August 24, 2023
Application Number:
20230267407
A network-attachable data transfer device housed within a shippable enclosure that incorporates an updateable electronic display for displaying shipping destination information is disclosed. The device may be initialized (e.g., prepared to receive data, and the updateable electronic shipping display set to the shipping destination) by a service provider and shipped, in accordance with the displayed destination address, as a self-contained shipping unit. The device may be installed onto a…
AUTOMATED PACKETLESS NETWORK REACHABILITY ANALYSIS
Granted: August 17, 2023
Application Number:
20230262087
Methods, systems, and computer-readable media for automated packetless network reachability analysis are disclosed. An analysis is performed of network configuration data for a network comprising a host computer. Based at least in part on the analysis, one or more ports at the host computer that are reachable from another computer are determined. Based at least in part on the analysis, one or more routes to the one or more ports are determined. A report is generated that is descriptive…
PERIPHERAL DEVICE ENABLING VIRTUALIZED COMPUTING SERVICE EXTENSIONS
Granted: August 17, 2023
Application Number:
20230262111
A peripheral device includes one or more processors and a memory storing program instructions that when executed implement an extension manager of a virtualized computing service. The extension manager establishes a secure network channel for communications between the peripheral device, which is located at a premise external to a provider network, and a data center of the provider network. The extension manager assigns a network address of the substrate network of the service to a…
