Separate authorization for managing stages in a data pipeline
Granted: February 11, 2025
Patent Number:
12223065
A resource-based authorization control may be added to a data processing service. A control-plane action requested by an account or entity creates a resource-based authorization policy. The resource-based authorization policy pertaining to respective resources allows recurrent data-plane actions to maintain a data flow in a data pipeline to be authorized independent of a separate authorization service.
Dynamically routing code for executing
Granted: February 11, 2025
Patent Number:
12225092
Code may be dynamically routed to computing resources for execution. Code may be received for execution on behalf of a client. Execution criteria for the code may be determined and computing resources that satisfy the execution criteria may be identified. The identified computing resources may then be procured for executing the code and then the code may be routed to the procured computing resources for execution. Permissions or authorization to execute the code may be shared to ensure…
Co-branded single sign-on service with sign-on tracking
Granted: February 11, 2025
Patent Number:
12224996
Techniques are described for providing customizable sign-on functionality, such as via an access manager system that provides single sign-on functionality and other functionality to other services for use with those services' users. The access manager system may maintain various sign-on and other account information for various users, and provide single sign-on functionality for those users using that maintained information on behalf of multiple unrelated services with which those users…
Techniques for cloud-based privacy controls
Granted: February 11, 2025
Patent Number:
12224991
Systems, devices, and methods are provided for cloud-based privacy controls. User content is encrypted using a content encryption key (CEK). The CEK may be double-encrypted by the data producer—the inner envelope is encrypted using keys associated with privacy domains that are authorized to access the user content. The outer envelope is encrypted using a cloud privacy control's public key. When a data consumer requests access the user content, the cloud privacy control evaluates…
Proxy computing device for executing virtual network communication manager
Granted: February 11, 2025
Patent Number:
12224895
Techniques are described for managing communications between multiple computing nodes, such as computing nodes that are separated by one or more physical networks. In some situations, the techniques may be used to provide a virtual network between multiple computing nodes that are separated by one or more intermediate physical networks, such as from the edge of the one or more intermediate physical networks by modifying communications that enter and/or leave the intermediate physical…
Search query-based replacement part interface
Granted: February 11, 2025
Patent Number:
12223534
The systems and methods disclosed herein can increase the speed and ease with which a user can discover compatible replacement parts for a specified model of a product by automatically determining when the user is interested in replacement parts. A replacement part system can conclude that a user is looking for replacement parts based on the user's search queries, the user's browsing behavior, or the user's prior purchases. By automatically deducing an intention to purchase a replacement…
Systems and methods for selecting product placement locations and products
Granted: February 11, 2025
Patent Number:
12223524
Systems, methods, and computer-readable media are disclosed for determining virtual product placement opportunities in a media content and determining product candidates for virtual insertion into the media content. The product placement system may determine shot segments from the media content and for each shot segment may determine candidate product placement locations. The product placement system may determine contextual information from the shot segments and from the contextual…
Determining a topology for distribution of services using demand aggregation
Granted: February 11, 2025
Patent Number:
12223521
Described are systems and methods directed to determining a topology for the efficient allocation and distribution of a service to customers that are distributed over a geographic area. For example, the topology can facilitate the planning, scheduling, and allocation of resources for the efficient provisioning of services to customers at locations distributed over the geographic area. Certain input parameters and/or constraints associated with the provisioning of the service may be…
Managing access of multiple executing programs to non-local block data storage
Granted: February 11, 2025
Patent Number:
12223182
Techniques are described for managing access of executing programs to non-local block data storage. In some situations, a block data storage service uses multiple server storage systems to reliably store network-accessible block data storage volumes that may be used by programs executing on other physical computing systems. A group of multiple server block data storage systems that store block data volumes may in some situations be co-located at a data center, and programs that use…
Row level security in natural language question answering
Granted: February 11, 2025
Patent Number:
12223080
This disclosure describes a natural language question (NLQ) query service within a service provider network that provides row level security (RLS) for autocomplete during entry of NLQs and fuzzy matching in NLQ answering. The rules take the form of per-user predicates such as Tim can only see rows with region=US. In configurations a complex extraction and preprocessing pipeline to extract distinct combinations of values against RLS predicate “rule keys” is used. Those distinct values…
Calibration garage for automated calibration of depth sensors in mobile robots
Granted: February 11, 2025
Patent Number:
12220813
Systems and techniques for performing a calibration test of an obstacle detection sensor of a drive unit are described. An example system includes a calibration region and at least one drive unit. The calibration region is disposed in an environment and includes a calibration apparatus. The at least one drive unit is operable to autonomously move throughout the environment. The at least one drive unit includes a sensor configured to detect one or more objects within the environment. The…
Graph-based detection of abusive computational nodes
Granted: February 11, 2025
Patent Number:
12223056
Devices and techniques are generally described for detection of abusive computational nodes. In various examples, first input data describing a first plurality of computational nodes and first data identifying a dimension along which to parse the first plurality of computational nodes may be received. A first computing device may generate input graph data representing the first plurality of computational nodes. The computational nodes of the first plurality of computational nodes may…
Combination boot for an integrated circuit
Granted: February 11, 2025
Patent Number:
12223052
A boot process for a computing device, such as integrated circuit, includes security features that are inaccessible during certain operation modes. An image including permission to access those security features is received during the boot process and may be verified using one or more keys. In operation, access to the security features is permitted during the operation modes after the image is verified. Such an approach enables a boot process to permit access to certain features after…
Propagating resource scaling information between source and target data stores of a materialized view
Granted: February 11, 2025
Patent Number:
12222932
A materialized view management service (MVMS) is capable of monitoring resource allocation changes of a source data object at a source data store and responsively generating resource change alerts to the owner of a target data object (the materialized view) in the target data store. Resource allocation changes may include autoscaling changes to the source data object's partition scheme, throughput limit, storage limit, and the like. The MVMS generates resource change alerts in response…
Data store selection and consistent routing using a pointer table
Granted: February 11, 2025
Patent Number:
12222920
A subscription storage service of a provider network may be used to select a particular datastore to store a topic subscription record for an IoT device (e.g., after the IoT device subscribes to an MQTT topic). The service may select the particular datastore based on the type of the subscription (e.g., non-wildcard vs. wildcard subscription) and one or more criteria associated with the topic (e.g., subscribe operation TPS for the topic). This may allow the service to store wildcard…
Detecting idle periods at network endpoints for management actions at processing clusters for managed databases
Granted: February 11, 2025
Patent Number:
12222908
Idle periods may be for management actions at processing clusters for managed databases. A leader node of a processing cluster for a managed database may monitor a network endpoint at a proxy service associated with a database managed by the database service. An idle period for the database may be detected. A management action for the processing cluster may be determined to be performed during the detected idle period. The leader node may cause the determined management action to be…
Intelligent file system with transparent storage tiering
Granted: February 11, 2025
Patent Number:
12222906
A file system manager implemented at a provider network identifies a storage device of a first group of storage devices of a provider network as an initial location of a file system object. Based on an access metric associated with the object, the file system manager initiates a transfer of contents of the object to a second storage device of a different storage device group, without receiving a client request specifying the transfer. In response to an access request received via a file…
Partial-width rack-mounted computing devices
Granted: February 11, 2025
Patent Number:
12222779
A computing system includes a rack having standard slots for computing devices and computing devices coupled to the rack. One or more of the computing devices includes a chassis, a circuit board assembly in a primarily horizontal orientation, and one or more processors coupled to the circuit board assembly. One or more stacks of hard disk drives are coupled to the chassis. The chassis has a width that is equal to or less than half of the width of one of the standard slots of the rack.
Heat sinks for bare die multi-chip packages
Granted: February 11, 2025
Patent Number:
12222776
Various mounting systems for mounting heat sink apparatus to bare die processors are disclosed. The mounting systems include an upper plate, which may include a heat transfer portion, positioned in proximity to the upper surface of bare die processors to provide heat conduction away from the processors. The disclosed mounting systems secure the upper plate to the processors with balanced and centralized forces to inhibit tilting of the upper plate and reduce the risk of damaging the…
Cap system for pallet jack
Granted: February 11, 2025
Patent Number:
12221147
In one example, a pallet jack cap system includes a stabilization outrigger secured around steer wheels of a pallet jack, a bonnet in an elevated position over forks of the pallet jack, an anchor base for attachment to the pallet jack, and a vertical extension system between the anchor base and the bonnet. The vertical extension system supports the bonnet in the elevated position over the forks of the pallet jack. The vertical extension system can include an elevating vertical support…
