Patent Grant
9774582
This disclosure relates generally to web services and cloud management services and, more particularly, to private cloud connected device clusters architecture.
The approaches described in this section could be pursued but are not necessarily approaches that have previously been conceived or pursued. Therefore, unless otherwise indicated, it should not be assumed that any of the approaches described in this section qualify as prior art merely by virtue of their inclusion in this section.
Conventional cloud computing allows sharing computing resources between various applications. In cloud computing, different services, such as storage and applications can be delivered to an organization's computers and devices through the Internet. Cloud computing involves a considerable management effort to support the software and technologies designed for operating, monitoring, optimization, and proper interaction between users, applications, data, and services residing in the cloud. Cloud management may also involve numerous tasks including performance monitoring, security and compliance auditing and management, and initiating and overseeing disaster recovery and contingency plans.
Conventional solutions to address various security concerns include private cloud platforms implemented on a Local-Area Network (LAN) within an organization's firewall. However, because private cloud storage services are managed internally by the organization, they involve high capital and maintenance costs. Additionally, the organization will need to take the responsibility for running and managing resources instead of passing that responsibility on to a third-party cloud provider.
This summary is provided to introduce a selection of concepts in a simplified form that are further described in the Detailed Description below. This summary is not intended to identify key features or essential features of the claimed subject matter, nor is it intended to be used as an aid in determining the scope of the claimed subject matter.
According to an aspect of the present disclosure, a system for secure cloud-based management of private cloud connected devices is provided. The system may include one or more on-site cloud connected devices located within an untrusted customer site. Furthermore, the system may include a user interface to facilitate access to the on-site cloud connected devices by a user associated with the untrusted customer site. The system may further include a multi-tenant cloud-based management service configured to manage the on-site cloud connected devices. The multi-tenant cloud-based management service may include a website domain configured to manage the user interface and a backend domain configured to manage the on-site cloud connected devices.
In another aspect of the present disclosure, a method for secure cloud-based management of private cloud connected devices is provided. The method may comprise providing a multi-tenant cloud-based management service configured to manage one or more on-site cloud connected devices located within an untrusted customer site. The method may further include providing a user interface to facilitate access to the on-site cloud connected devices located within the untrusted customer site by a user associated with the untrusted customer site.
In further example embodiments of the present disclosure, the method steps are stored on a machine-readable medium comprising instructions, which when implemented by one or more processors perform the recited steps. In yet further example embodiments, hardware systems or devices can be adapted to perform the recited steps. Other features, examples, and embodiments are described below.
Embodiments are illustrated by way of example, and not by limitation, in the figures of the accompanying drawings, in which like references indicate similar elements and in which:
The following detailed description includes references to the accompanying drawings, which form a part of the detailed description. The drawings show illustrations in accordance with example embodiments. These example embodiments, which are also referred to herein as “examples,” are described in enough detail to enable those skilled in the art to practice the present subject matter. The embodiments can be combined, other embodiments can be utilized, or structural, logical, and electrical changes can be made without departing from the scope of what is claimed. The following detailed description is therefore not to be taken in a limiting sense, and the scope is defined by the appended claims and their equivalents. In this document, the terms “a” and “an” are used, as is common in patent documents, to include one or more than one. In this document, the term “or” is used to refer to a nonexclusive “or,” such that “A or B” includes “A but not B,” “B but not A,” and “A and B,” unless otherwise indicated.
The techniques of the embodiments disclosed herein may be implemented using a variety of technologies. For example, the methods described herein may be implemented in software executing on a computer system or in hardware utilizing either a combination of microprocessors or other specially designed application-specific integrated circuits (ASICs), programmable logic devices, or various combinations thereof. In particular, the methods described herein may be implemented by a series of computer-executable instructions residing on a storage medium such as a disk drive, or computer-readable medium. It should be noted that methods disclosed herein can be implemented by a computer (e.g., a desktop computer, tablet computer, laptop computer), game console, handheld gaming device, cellular phone, smart phone, smart television system, and so forth.
The technology described herein allows implementing a private cloud computing platform securely behind a corporate firewall while allowing a third party provider to take responsibility for managing cloud computing resources, and providing efficient and seamless storage allocation and scalability, data security and integrity.
An architecture of an example system for secure cloud-based management of private cloud connected devices may include a user interface, i.e. an interface provided by a web application such as a Single Page Application (SPA), running within a web browser. The architecture may further include an on-site device domain supporting private cloud connected devices. The private cloud connected devices may include on-site cloud connected devices located within an untrusted or insecure customer site of an enterprise Local Area Network (LAN). The user interface may facilitate access to the on-site cloud connected devices by a user associated with the untrusted customer site. The example architecture may further include a multi-tenant cloud-based management service to manage the on-site cloud connected devices. The multi-tenant cloud-based management service may include a website domain supporting the user interface and backend domain supporting auto-discovery of the on-site cloud connected devices and registration of services to the cloud connected devices.
The website domain may include a controller coordinating secure requests, such as HTTPS, associated with the web application. The backend domain may include a backbone coordinating secure requests associated with the on-site cloud connected devices. The backend domain may include a rendezvous module to handle communication exchanges between the device domain and website domain. Typically, the web application and on-site cloud connected devices are located within an untrusted domain while the website and backend are located within a trusted domain, the trusted and untrusted domains being separated by a firewall. To ensure data integrity, communications between the untrusted and trusted domains may utilize various secure protocols, such as HTTPS.
Using one or more of the secure protocols, an unbound on-site cloud connected device may announce itself by posting a message to the mailbox of the rendezvous module upon a boot-up. The message may include a device IP address and other cloud connected device-related metadata. Once the unbound on-site cloud connected device is bound to a service associated with the user interface, further communications between the on-site cloud connected devices and user interface may be handed off to a service proxy mailbox. The private cloud connected devices can be assigned to the service proxy, with the private cloud connected device using the service proxy mailbox for posting messages to the backbone and another mailbox for receiving messages from the backbone.
The backend domain may also include a supervisor to manage the lifecycle of the service proxy instances. One or more proxies may be distributed among a plurality of machines to provide scalability. The supervisor may continue monitoring the mailbox for messages related to the service proxy.
An example interaction of components of the system for secure cloud-based management of private cloud connected devices may comprise the following steps. Firstly, an on-site cloud connected device associated with the architecture described above may announce its presence to the multi-tenant cloud-based management service. The on-site cloud connected device may include or be associated with an agent that can be used to announce the presence of the on-site cloud connected device to a rendezvous module of the multi-tenant cloud-based management service. The rendezvous module may register agent's availability with a controller in the backend domain. The controller may store agent's availability to a database.
A user, having an account with the service, may, upon a successful login, get redirected to a private cloud connected device discovery wizard. Upon verification of user credentials, the controller may enable the private cloud connected device discovery wizard so that the user is prompted to continue as the controller queries a database to determine whether any unbound on-site cloud connected devices may be possibly placed under administrative control of the user. A correlation can be made to filter available on-site cloud connected devices down to a small set of likely candidates.
The correlation may be based on a comparison of IP addresses. For example, a public IP address associated with the user interface can be compared to a public IP address of the unbound on-site cloud connected device. In some instances, a user outside the LAN may be allowed to utilize the system by providing an IP address manually.
After the comparison is made, candidates that can be possibly bound to the service are presented, e.g. displayed, to the user along with other information (e.g., a host name, IP, mac address, on-site device ID, cluster ID, versioning information) associated with the on-site cloud connected device. The user may be allowed to request administrative control of one or more of these unbound on-site cloud connected devices by selection of the one or more unbound on-site cloud connected devices.
Once the user selects an on-site cloud connected device, or a group of devices, the user will be required to prove the ownership of the on-site cloud connected device (or the user device associated with the on-site cloud connected device) by interacting with the on-site cloud connected device through an independent channel of communications, for example, by observing a display of the user device physically coupled to the on-site cloud connected device or any other output device. A code previously unknown to the user can be sent from the controller to the output device associated with the on-site cloud connected device. In other words, each selected on-site cloud connected device can make the code available for the user to read, for example, by displaying it on an LCD display associated with the device. The user is required to enter the code in the private cloud connected device discovery wizard to prove the ownership. Upon entering the code in the private cloud connected device discovery wizard, the administrative control of the user for the selected on-site cloud connected device may be confirmed.
The multi-tenant cloud-based management service 125 may include a service configured to manage the on-site cloud connected devices 110 associated with the user. The multi-tenant cloud-based management service 125 may include a website domain 140 configured to manage the user interface 127 and a backend domain 135 configured to manage the on-site cloud connected device 110. The system architecture 100 may also include a web server 130 responsible for communication between the backend domain 135, the website domain 140, and the on-site device domain 105. The web server 130 may utilize a firewall 145 separating a trusted domain (i.e., the backend domain 135 and the website domain 140) and an untrusted domain (i.e., the user interface 127 and the on-site cloud connected device 110). The web server 130 may communicate and transmit data using HTTP, HTTP Secure (HTTPS), or other protocols. The user interface 127 and the one or more on-site cloud connected devices 110 may use security protocols to communicate to the trusted domain while not bound to the multi-tenant cloud-based management service 125.
Although not shown in
The backend domain 135 may manage or support various services associated with the on-site cloud connected devices 110, as well as support auto-discovery of the on-site cloud connected devices 110. The backend domain 135 may include a backbone 150 for managing data transmission and handling requests from the on-site cloud connected devices 110 utilizing, for example, HTTP or HTTPS protocols. The backbone 150 may be associated or operatively coupled to a database referred herein as “mailbox” 155, which stores identifications, operation statuses, and messages associated with the on-site cloud connected devices 110. The backend domain 135 may further include a rendezvous module 160 configured to handle communication exchanges with the website domain 140 for unbound cloud connected devices 110 or unbound groups of devices and its components utilizing a protocol or protocols, which may be different from the protocol used for communications between the service proxy 170, the on-site cloud connected device 110, the website domain 140, and the web server 130. For example, the rendezvous module 160 may utilize JSON-RPC for communication with the website domain 140. Furthermore, the rendezvous module 160 may be associated or operatively coupled to another database referred herein as “mailbox” 190 which can be used by the rendezvous module 160 for sending messages to the unbound devices 110 or the groups of unbound devices. Furthermore, the service proxy 170 may be associated or operatively coupled to a database referred herein as “mailbox” 155, which stores identifications, operation statuses, and messages of the devices 110 or the groups of devices that have been bound to the service.
Furthermore, the rendezvous module 160 can assign various services to the cloud connected devices 110 or the group of cloud connected devices, and associate (bind) the unbound cloud connected device 110 or the unbound groups of cloud connected devices with the service once the user of the unbound cloud connected device 110 or the unbound group of cloud connected devices is authenticated and proves possession of the unbound cloud connected device 110 or the unbound group of cloud connected devices or associated user device(s) or output device(s).
Furthermore, as shown in the figure, the backend domain 135 may include a supervisor 165 for managing the lifecycle of the proxies 170 through monitoring the mailbox 155 for the statuses (flags) of the on-site cloud connected devices 110 or the group of devices, assigning various services for the on-site cloud connected devices 110, and associating (binding) the unbound on-site cloud connected devices with the on-site cloud connected devices 110 once the user of the unbound on-site cloud connected devices is authenticated and proves the possession of unbound on-site cloud connected devices or associated user device(s) or output device(s). Furthermore, the backend domain 135 may include a number of proxies 170, e.g. associated with the on-site cloud connected devices 110, through which communication and services may be provided. The proxy 170 may run on a separate machine (i.e., outside the backend domain 135) to provide sufficient scalability.
Still referring to
The website domain 140 and/or the backend domain 135 may utilize a number of auxiliary components, such as configuration databases, file servers, proxies, storages, computing units, network routers, and the like, which are omitted for clarity purposes.
As shown in
The backend domain may also include a supervisor configured to associate one or more unbound on-site cloud connected devices of the user with service proxy based on predetermined rules. Furthermore, the backend domain may include a proxy configured to be associated with the on-site cloud connected device. The proxy may run on a separate machine to provide scalability.
At operation 210 of the method 200, a user interface may be provided to facilitate access to the on-site cloud connected device located within the untrusted device domain by a user associated with the secure customer site. The user interface and the on-site cloud connected device may be located on a LAN. Furthermore, the user interface and the on-site cloud connected device may be located within an untrusted domain, while the website domain and the backend domain are located within a trusted domain. The trusted domain and the untrusted domain can be separated by a firewall. The user interface and the one or more unbound on-site cloud connected devices may use security protocols to communicate to the trusted domain.
At operation 304, the website domain of the multi-tenant cloud-based management service 125 may receive, from the user via the user interface 127, a request for the service, which may include service identifying data or other related information. At this step, the user may be also authenticated. For example, the user may be prompted to provide credentials (such as logins, passwords, pin codes, and the like), which can be matched to the data in the database. After verifying the user credentials, an SPA may be provided by the multi-tenant cloud-based management service 125 to the user interface 127 at operation 306.
At operation 308, the user may request an administrative control of one or more on-site cloud connected devices 110. At operation 310, the controller of the multi-tenant cloud-based management service 125 may correlate the service identifying data to the on-site cloud connected devices identifying data stored in the mailbox. In certain embodiments, the service identifying data may include a public IP address associated with the user interface 127 (user interface IP address), while the on-site cloud connected device identifying data may include an IP address associated with the one or more unbound on-site cloud connected devices (cloud connected device IP address). Accordingly, the correlation operation 310 may involve comparing the user interface IP address to the cloud connected device IP address. In various embodiments, the user interface IP address may be either automatically determined or manually provided by the user. Additionally, the correlation operation 310 may use request creation time, query time, and the like.
At operation 312, the controller may select one or more candidate unbound on-site cloud connected devices 125 from the one or more unbound on-site cloud connected devices based on the correlation and data stored in various databases and return a list of candidate unbound on-site cloud connected devices to the user interface 127. In certain embodiments, the cloud connected device IP address may relate to a plurality of user devices, network devices or other apparatuses. At operation 314, the available on-site cloud connected devices may be displayed to the user via the user interface 127. Accordingly, at operation 316, the user may be prompted to select one unbound on-site cloud connected device from the one or more candidate unbound on-site cloud connected devices based on the on-site cloud connected device identifying data. For example, the user may select the on-site cloud connected device that is specifically in the possession of the user. The controller may receive selected unbound on-site cloud connected devices from the user.
At operation 318, the controller (or, in certain circumstances, the backend domain) may create a code (referred to herein as machine generated code). At operation 320, the controller may send the machine generated code to a device associated with the selected on-site cloud connected device 110. The code may relate to alpha-numerical message (e.g., this code may be randomly generated), still or animated image, audio message, or activation instruction.
The representation of the process 300 continues on
At operation 324, the user may be prompted to confirm the ownership of the selected unbound on-site cloud connected device 110 by entering the machine generated code in the user interface 127.
At operation 326, the controller may receive from the user, via the user interface 127, a human entered code and compare the machine generated code to the human entered code. At operation 328, the controller may selectively bind the selected on-site cloud connected device 110 to the service based on the result of comparison in case the machine generated code and the human entered code match. This can be accomplished by the backend domain generating a corresponding record in the mailbox. In certain embodiments, the service may be handed off to the proxy to provide secure data communication. A number of other security and data integrity policies pertaining to the private data on-site cloud connected devices 110 may be also implemented. At operation 330, the user may be notified about successful binding of the on-site cloud connected device selected by the user to the multi-tenant cloud-based management service 125. If the machine generated code and the human entered code do not match, at operation 322 the user may be notified about the failure to bind the on-site cloud connected device 110 selected by the user to the multi-tenant cloud-based management service 125.
At the following operation 422, the handshake message may be transmitted to a service bus 408 (which may be associated, for example, with the webserver). At operation 424, the service bus 408 may retrieve corresponding information from the rendezvous module related to all or recent messages generated by the on-site cloud connected device 110. At operation 426, the service bus 408 may confirm safe receipt of the messages by the rendezvous module. Furthermore, at operation 428, the rendezvous module may generate a post handshake message including metadata associated with the unbound on-site cloud connected device, and transmit the metadata to a web API controller 404 (e.g., the controller 175 as shown on
Still referring to
Furthermore, as shown in
At operation 450, the user may select a desired unbound data on-site cloud connected device (which is in possession of the user) from the displayed list of candidate unbound on-site cloud connected devices and this selection is transmitted back to the web API controller 404. At operations 452, the web API controller 404 and the mailbox 155 can generate one or more challenge codes to ensure that the unbound data on-site cloud connected devices is indeed is used by or in possession of the user. At operation 454, the one or more challenge codes may be stored in the mailbox 155 or any other suitable database, and at operation 456, the one or more challenge codes can be sent to a task worker 406, which may refer to a dedicated process running on the controller. Furthermore, the task worker 406 may queue the one or more challenge codes for the unbound on-site cloud connected device and, at operation 458, transmit the codes to the unbound on-site cloud connected devices via the service bus 408 and/or the web server 130.
As shown in
As further shown in
Still referring to
At operation 486, the agent 412 may generate a yet another message regarding the current operation status of the on-site cloud connected device, and, at operation 488, the agent 412 may transmit this message to the backbone 150. The backbone 150 can forwards the new message to the service bus 408. At operation 490, the service bus 408 may respond to the backbone 150 confirming the safe receipt of this message. At operation 491, the backbone 150 may reply to the agent 412 to inform that the new message is received. The agent 412 then may set a connected key (flag) to the true state at the file server 416 at operation 492.
At operations 493, 494, the user may be informed about successful binding the on-site cloud connected device to the service. Otherwise, at operations 495, 496, the user may be informed that binding the on-site cloud connected device to the service was not successful.
The example computer system 500 includes a processor or multiple processors 505 (e.g., a central processing unit (CPU), a graphics processing unit (GPU), or both), and a main memory 510 and a static memory 515, which communicate with each other via a bus 520. The computer system 500 can further include a video display unit 525 (e.g., a liquid crystal display (LCD) or a cathode ray tube (CRT)). The computer system 400 also includes at least one input device 530, such as an alphanumeric input device (e.g., a keyboard), a cursor control device (e.g., a mouse), a microphone, a digital camera, a video camera, and so forth. The computer system 500 also includes a disk drive unit 535, a signal generation device 540 (e.g., a speaker), and a network interface device 545.
The disk drive unit 535 includes a computer-readable medium 550, which stores one or more sets of instructions and data structures (e.g., instructions 555) embodying or utilized by any one or more of the methodologies or functions described herein. The instructions 555 can also reside, completely or at least partially, within the main memory 510 and/or within the processors 505 during execution thereof by the computer system 500. The main memory 510 and the processors 505 also constitute machine-readable media.
The instructions 555 can further be transmitted or received over the network 460 via the network interface device 545 utilizing any one of a number of well-known transfer protocols (e.g., Hyper Text Transfer Protocol (HTTP), CAN, Serial, and Modbus).
While the computer-readable medium 550 is shown in an example embodiment to be a single medium, the term “computer-readable medium” should be taken to include a single medium or multiple media (e.g., a centralized or distributed database, and/or associated caches and servers) that store the one or more sets of instructions. The term “computer-readable medium” shall also be taken to include any medium that is capable of storing, encoding, or carrying a set of instructions for execution by the machine and that causes the machine to perform any one or more of the methodologies of the present application, or that is capable of storing, encoding, or carrying data structures utilized by or associated with such a set of instructions. The term “computer-readable medium” shall accordingly be taken to include, but not be limited to, solid-state memories, optical and magnetic media. Such media can also include, without limitation, hard disks, floppy disks, flash memory cards, digital video disks (DVDs), random access memory (RAM), read only memory (ROM), and the like.
The example embodiments described herein can be implemented in an operating environment comprising computer-executable instructions (e.g., software) installed on a computer, in hardware, or in a combination of software and hardware. The computer-executable instructions can be written in a computer programming language or can be embodied in firmware logic. If written in a programming language conforming to a recognized standard, such instructions can be executed on a variety of hardware platforms and for interfaces to a variety of operating systems. Although not limited thereto, computer software programs for implementing the present method can be written in any number of suitable programming languages such as, for example, Hypertext Markup Language (HTML), Dynamic HTML, Extensible Markup Language (XML), Extensible Stylesheet Language (XSL), Document Style Semantics and Specification Language (DSSSL), Cascading Style Sheets (CSS), Synchronized Multimedia Integration Language (SMIL), Wireless Markup Language (WML), Java™, Jini™, C, C++, Perl, UNIX Shell, Visual Basic or Visual Basic Script, Virtual Reality Markup Language (VRML), ColdFusion™ or other compilers, assemblers, interpreters or other computer languages or platforms.
Thus, private cloud connected device cluster architecture has been disclosed. Although embodiments have been described with reference to specific example embodiments, it will be evident that various modifications and changes can be made to these example embodiments without departing from the broader spirit and scope of the present application. Accordingly, the specification and drawings are to be regarded in an illustrative rather than a restrictive sense.
| Number | Name | Date | Kind |
|---|---|---|---|
| 4656604 | van Loon | Apr 1987 | A |
| 4660130 | Bartley et al. | Apr 1987 | A |
| 5420999 | Mundy | May 1995 | A |
| 5561778 | Fecteau et al. | Oct 1996 | A |
| 6098079 | Howard | Aug 2000 | A |
| 6167437 | Stevens et al. | Dec 2000 | A |
| 6314435 | Wollrath et al. | Nov 2001 | B1 |
| 6356916 | Yamatari et al. | Mar 2002 | B1 |
| 6480950 | Lyubashevskiy et al. | Nov 2002 | B1 |
| 7043494 | Joshi et al. | May 2006 | B1 |
| 7177980 | Milillo et al. | Feb 2007 | B2 |
| 7197622 | Torkelsson et al. | Mar 2007 | B2 |
| 7266555 | Coates et al. | Sep 2007 | B1 |
| 7293140 | Kano | Nov 2007 | B2 |
| 7392421 | Bloomstein et al. | Jun 2008 | B1 |
| 7403961 | Deepak et al. | Jul 2008 | B1 |
| 7454592 | Shah et al. | Nov 2008 | B1 |
| 7539836 | Klinkner | May 2009 | B1 |
| 7685109 | Ransil et al. | Mar 2010 | B1 |
| 7827218 | Mittal | Nov 2010 | B1 |
| 7990979 | Lu et al. | Aug 2011 | B2 |
| 8099605 | Billsrom et al. | Jan 2012 | B1 |
| 8132168 | Wires et al. | Mar 2012 | B2 |
| 8364887 | Wong et al. | Jan 2013 | B2 |
| 8407438 | Ranade | Mar 2013 | B1 |
| 8447733 | Sudhakar | May 2013 | B2 |
| 8572290 | Mukhopadhyay et al. | Oct 2013 | B1 |
| 8868926 | Hunt et al. | Oct 2014 | B2 |
| 9043567 | Modukuri et al. | May 2015 | B1 |
| 20020069340 | Tindal et al. | Jun 2002 | A1 |
| 20020087590 | Bacon et al. | Jul 2002 | A1 |
| 20030028585 | Yeager et al. | Feb 2003 | A1 |
| 20030056139 | Murray et al. | Mar 2003 | A1 |
| 20030072259 | Mor | Apr 2003 | A1 |
| 20030101173 | Lanzatella et al. | May 2003 | A1 |
| 20030115408 | Milillo et al. | Jun 2003 | A1 |
| 20040158588 | Pruet | Aug 2004 | A1 |
| 20040167898 | Margolus et al. | Aug 2004 | A1 |
| 20050071335 | Kadatch | Mar 2005 | A1 |
| 20050081041 | Hwang | Apr 2005 | A1 |
| 20050160170 | Schreter | Jul 2005 | A1 |
| 20060039371 | Castro et al. | Feb 2006 | A1 |
| 20060083247 | Mehta | Apr 2006 | A1 |
| 20060156396 | Hochfield et al. | Jul 2006 | A1 |
| 20060271540 | Williams | Nov 2006 | A1 |
| 20070005746 | Roe | Jan 2007 | A1 |
| 20070130232 | Therrien et al. | Jun 2007 | A1 |
| 20070203960 | Guo | Aug 2007 | A1 |
| 20070230368 | Shi et al. | Oct 2007 | A1 |
| 20070233828 | Gilbert | Oct 2007 | A1 |
| 20070271303 | Menendez et al. | Nov 2007 | A1 |
| 20080016507 | Thomas et al. | Jan 2008 | A1 |
| 20080133893 | Glew | Jun 2008 | A1 |
| 20080147872 | Regnier | Jun 2008 | A1 |
| 20080170550 | Liu et al. | Jul 2008 | A1 |
| 20080183973 | Aguilera et al. | Jul 2008 | A1 |
| 20080243938 | Kottomtharayil et al. | Oct 2008 | A1 |
| 20080244199 | Nakamura et al. | Oct 2008 | A1 |
| 20080292281 | Pecqueur et al. | Nov 2008 | A1 |
| 20090049240 | Oe et al. | Feb 2009 | A1 |
| 20090100212 | Boyd et al. | Apr 2009 | A1 |
| 20090172139 | Wong et al. | Jul 2009 | A1 |
| 20090198927 | Bondurant et al. | Aug 2009 | A1 |
| 20090307292 | Li et al. | Dec 2009 | A1 |
| 20090327312 | Kakivaya et al. | Dec 2009 | A1 |
| 20100031000 | Flynn et al. | Feb 2010 | A1 |
| 20100036862 | Das et al. | Feb 2010 | A1 |
| 20100114336 | Konieczny et al. | May 2010 | A1 |
| 20100122330 | McMillan | May 2010 | A1 |
| 20100161817 | Xiao et al. | Jun 2010 | A1 |
| 20100172180 | Paley et al. | Jul 2010 | A1 |
| 20100191783 | Mason et al. | Jul 2010 | A1 |
| 20100217953 | Beaman et al. | Aug 2010 | A1 |
| 20100228798 | Kodama et al. | Sep 2010 | A1 |
| 20100262797 | Rosikiewicz et al. | Oct 2010 | A1 |
| 20100318645 | Hoole et al. | Dec 2010 | A1 |
| 20100332456 | Prahlad et al. | Dec 2010 | A1 |
| 20110026439 | Rollins | Feb 2011 | A1 |
| 20110034176 | Lord et al. | Feb 2011 | A1 |
| 20110060918 | Troncoso Pastoriza et al. | Mar 2011 | A1 |
| 20110106795 | Maim | May 2011 | A1 |
| 20110213754 | Bindal et al. | Sep 2011 | A1 |
| 20110231374 | Jain et al. | Sep 2011 | A1 |
| 20110231524 | Lin et al. | Sep 2011 | A1 |
| 20110264712 | Ylonen | Oct 2011 | A1 |
| 20110264989 | Resch et al. | Oct 2011 | A1 |
| 20110271007 | Wang et al. | Nov 2011 | A1 |
| 20120030260 | Lu et al. | Feb 2012 | A1 |
| 20120047181 | Baudel | Feb 2012 | A1 |
| 20120060072 | Simitci et al. | Mar 2012 | A1 |
| 20120078915 | Darcy | Mar 2012 | A1 |
| 20120096217 | Son et al. | Apr 2012 | A1 |
| 20120147937 | Goss et al. | Jun 2012 | A1 |
| 20120173790 | Hetzler et al. | Jul 2012 | A1 |
| 20120179808 | Bergkvist et al. | Jul 2012 | A1 |
| 20120185555 | Regni et al. | Jul 2012 | A1 |
| 20120233251 | Holt et al. | Sep 2012 | A1 |
| 20120290535 | Patel et al. | Nov 2012 | A1 |
| 20120290629 | Beaverson et al. | Nov 2012 | A1 |
| 20120323850 | Hildebrand et al. | Dec 2012 | A1 |
| 20120331528 | Fu et al. | Dec 2012 | A1 |
| 20130013571 | Sorenson et al. | Jan 2013 | A1 |
| 20130041931 | Brand | Feb 2013 | A1 |
| 20130054924 | Dudgeon et al. | Feb 2013 | A1 |
| 20130073821 | Flynn et al. | Mar 2013 | A1 |
| 20130086004 | Chao et al. | Apr 2013 | A1 |
| 20130091180 | Vicat-Blanc-Primet et al. | Apr 2013 | A1 |
| 20130162160 | Ganton et al. | Jun 2013 | A1 |
| 20130166818 | Sela | Jun 2013 | A1 |
| 20130185508 | Talagala et al. | Jul 2013 | A1 |
| 20130235192 | Quinn et al. | Sep 2013 | A1 |
| 20130246589 | Klemba et al. | Sep 2013 | A1 |
| 20130262638 | Kumarasamy et al. | Oct 2013 | A1 |
| 20130263151 | Li et al. | Oct 2013 | A1 |
| 20130268644 | Hardin et al. | Oct 2013 | A1 |
| 20130268770 | Hunt et al. | Oct 2013 | A1 |
| 20130282798 | McCarthy et al. | Oct 2013 | A1 |
| 20130288668 | Pragada et al. | Oct 2013 | A1 |
| 20130311574 | Lal | Nov 2013 | A1 |
| 20130346591 | Carroll et al. | Dec 2013 | A1 |
| 20130346839 | Dinha | Dec 2013 | A1 |
| 20140006580 | Raghu | Jan 2014 | A1 |
| 20140007178 | Gillum et al. | Jan 2014 | A1 |
| 20140059405 | Syu et al. | Feb 2014 | A1 |
| 20140297604 | Brand | Oct 2014 | A1 |
| 20140317065 | Barrus | Oct 2014 | A1 |
| 20140335480 | Asenjo et al. | Nov 2014 | A1 |
| 20140351419 | Hunt et al. | Nov 2014 | A1 |
| 20140372490 | Barrus et al. | Dec 2014 | A1 |
| 20140379671 | Barrus et al. | Dec 2014 | A1 |
| 20150012763 | Cohen | Jan 2015 | A1 |
| 20150019491 | Hunt et al. | Jan 2015 | A1 |
| 20150066524 | Fairbrothers et al. | Mar 2015 | A1 |
| 20150081964 | Kihara et al. | Mar 2015 | A1 |
| 20150106335 | Hunt et al. | Apr 2015 | A1 |
| 20150106579 | Barrus | Apr 2015 | A1 |
| 20150172114 | Tarlano et al. | Jun 2015 | A1 |
| 20150220578 | Hunt et al. | Aug 2015 | A1 |
| Number | Date | Country |
|---|---|---|
| 1285354 | Feb 2003 | EP |
| 2575379 | Apr 2013 | EP |
| 2834749 | Feb 2015 | EP |
| 2834943 | Feb 2015 | EP |
| 2989549 | Mar 2016 | EP |
| 3000205 | Mar 2016 | EP |
| 3000289 | Mar 2016 | EP |
| 3008647 | Apr 2016 | EP |
| 3011428 | Apr 2016 | EP |
| 3019960 | May 2016 | EP |
| 3020259 | May 2016 | EP |
| 2004252663 | Sep 2004 | JP |
| 2010146067 | Jul 2010 | JP |
| 2011095976 | May 2011 | JP |
| 2012048424 | Mar 2012 | JP |
| WO2013152357 | Oct 2013 | WO |
| WO2013152358 | Oct 2013 | WO |
| WO2014176264 | Oct 2014 | WO |
| WO2014190093 | Nov 2014 | WO |
| WO2014201270 | Dec 2014 | WO |
| WO2014205286 | Dec 2014 | WO |
| WO2015006371 | Jan 2015 | WO |
| WO2015054664 | Apr 2015 | WO |
| WO2015057576 | Apr 2015 | WO |
| WO2015088761 | Jun 2015 | WO |
| WO2015116863 | Aug 2015 | WO |
| WO2015120071 | Aug 2015 | WO |
| Entry |
|---|
| International Search Report dated Aug. 6, 2013 Application No. PCT/US2013/035675. |
| Huck et al. Architectural Support for Translation Table Management in Large Address Space Machines. ISCA '93 Proceedings of the 20th Annual International Symposium on Computer Architecture, vol. 21, No. 2. May 1993. pp. 39-50. |
| International Search Report dated Aug. 2, 2013 Application No. PCT/US2013/035673. |
| International Search Report dated Sep. 10, 2014 Application No. PCT/US2014/035008. |
| Askitis, Nikolas et al., “HAT-trie: A Cache-conscious Trie-based Data Structure for Strings”. |
| International Search Report dated Sep. 24, 2014 Application No. PCT/US2014/039036. |
| International Search Report dated Oct. 22, 2014 Application No. PCT/US2014/043283. |
| International Search Report dated Nov. 7, 2014 Application No. PCT/US2014/042155. |
| International Search Report dated Jan. 21, 2015 Application No. PCT/US2014/060176. |
| International Search Report dated Feb. 24, 2015 Application No. PCT/US2014/060280. |
| International Search Report dated Mar. 4, 2015 Application No. PCT/US2014/067110. |
| International Search Report dated Apr. 2, 2015 Application No. PCT/US2014/045822. |
| International Sesarch Report dated May 14, 2015 Application No. PCT/US2015/013611. |
| International Sesarch Report dated May 15, 2015 Application No. PCT/US2015/014492. |
| Invitation pursuant to Rule 63(1) dated May 19, 2015 Application No. 13772293.0. |
| Extended European Search Report dated Aug. 4, 2015 Application No. 13771965.4. |
| Dabek et al. “Wide-area cooperative storage with CFS”, Proceedings of the ACM Symposium on Operating Systems Principles, Oct. 1, 2001. pp. 202-215. |
| Stoica et al. “Chord: A Scalable Peer-to-peer Lookup Service for Internet Applications”, Computer Communication Review, ACM, New York, NY, US, vol. 31, No. 4, Oct. 1, 2001. pp. 149-160. |
| Non-Final Office Action, Jun. 24, 2015, U.S. Appl. No. 13/441,592, filed Apr. 6, 2012. |
| Non-Final Office Action, Jun. 29, 2015, U.S. Appl. No. 14/055,662, filed Oct. 16, 2013. |
| Extended European Search Report dated Aug. 20, 2015 Application No. 13772293.0. |
| Office Action dated Mar. 15, 2016 in Japanese Patent Application No. 2015-504769 filed Apr. 8, 2013. |
| Office Action, dated Nov. 5, 2013, U.S. Appl. No. 13/441,715, filed Apr. 6, 2012. |
| Notice of Allowance, dated Mar. 27, 2014, U.S. Appl. No. 13/441,715, filed Apr. 6, 2012. |
| Office Action, dated Nov. 13, 2013, U.S. Appl. No. 13/441,592, filed Apr. 6, 2012. |
| Office Action, dated May 19, 2014, U.S. Appl. No. 13/441,592, filed Apr. 6, 2012. |
| Final Office Action, dated Nov. 20, 2014, U.S. Appl. No. 13/441,592, filed Apr. 6, 2012. |
| Advisory Action, dated Feb. 19, 2015, U.S. Appl. No. 13/441,592, filed Apr. 6, 2012. |
| Number | Date | Country | |
|---|---|---|---|
| 20150222616 A1 | Aug 2015 | US |
