公开(公告)号：US09565207B1

公开(公告)日：2017-02-07

申请号：US12554690

申请日：2009-09-04

Applicant: Michael David Marr ,  Matthew T. Corddry ,  James R. Hamilton

Inventor： Michael David Marr ,  Matthew T. Corddry ,  James R. Hamilton

IPC: G06F15/173 ,  H04L29/06 ,  G06F21/00

CPC classification number: H04L63/145 ,  G06F21/00 ,  G06F21/572 ,  G06F2221/2107 ,  H04L9/0894 ,  H04L9/3247

Abstract: When providing a user with native access to at least a portion of device hardware, the user can be prevented from modifying firmware and other configuration information by controlling the mechanisms used to update that information. In some embodiments, an asymmetric keying approach can be used to encrypt or sign the firmware. In other cases access can be controlled by enabling firmware updates only through a channel or port that is not exposed to the customer, or by mapping only those portions of the hardware that are to be accessible to the user. In other embodiments, the user can be prevented from modifying firmware by only provisioning the user on a machine after an initial mutability period wherein firmware can be modified, such that the user never has access to a device when firmware can be updated. Combinations and variations of the above also can be used.

Abstract translation: 当向用户提供对至少一部分设备硬件的本地访问时，可以通过控制用于更新该信息的机制来阻止用户修改固件和其他配置信息。 在一些实施例中，可以使用非对称密钥方法来加密或签名固件。 在其他情况下，只能通过不暴露给客户的通道或端口启用固件更新，或仅映射用户可访问的硬件部分来控制访问。 在其他实施例中，可以通过在可修改固件的初始可变性周期之后仅在机器上提供用户来防止用户修改固件，使得当固件可以被更新时，用户永远不能访问设备。 上述的组合和变化也可​​以使用。

公开(公告)号：US09396669B2

公开(公告)日：2016-07-19

申请号：US12139960

申请日：2008-06-16

Applicant: Chris Demetrios Karkanias ,  Michael J. Sinclair ,  James R. Hamilton ,  Oren Rosenbloom ,  Hubert Van Hoof

Inventor： Chris Demetrios Karkanias ,  Michael J. Sinclair ,  James R. Hamilton ,  Oren Rosenbloom ,  Hubert Van Hoof

IPC: G09B23/28 ,  G06T19/00 ,  A61B5/00 ,  G06F3/16 ,  G09B23/30 ,  G09B23/32 ,  G09B23/34 ,  G09B5/00 ,  G09B5/06 ,  G09B5/14 ,  G09B9/00 ,  A61B1/00 ,  A61B1/018 ,  A61B1/04 ,  A61B1/313 ,  A61B19/00 ,  A61B5/0215 ,  A61B5/06 ,  A61B5/107 ,  A61B5/1455 ,  B25J9/16 ,  G06F19/00 ,  G06F3/01 ,  G06T15/00 ,  A61B17/00 ,  A61B17/34

CPC classification number: G09B23/28 ,  A61B1/0005 ,  A61B1/00183 ,  A61B1/00193 ,  A61B1/018 ,  A61B1/04 ,  A61B1/042 ,  A61B1/3132 ,  A61B5/00 ,  A61B5/0215 ,  A61B5/061 ,  A61B5/1076 ,  A61B5/1455 ,  A61B34/10 ,  A61B34/20 ,  A61B34/35 ,  A61B34/37 ,  A61B34/70 ,  A61B34/76 ,  A61B34/77 ,  A61B90/03 ,  A61B90/30 ,  A61B90/361 ,  A61B2017/00115 ,  A61B2017/00128 ,  A61B2017/00707 ,  A61B2017/3405 ,  A61B2034/107 ,  A61B2034/2055 ,  A61B2034/2059 ,  A61B2034/2065 ,  A61B2034/301 ,  A61B2090/031 ,  A61B2090/064 ,  A61B2090/365 ,  A61B2090/3983 ,  B25J9/1689 ,  G06F3/016 ,  G06F19/00 ,  G06F19/3418 ,  G06F2203/015 ,  G06T15/00 ,  G06T19/00 ,  G06T2207/10021 ,  G06T2207/10068 ,  G06T2207/30004 ,  G06T2207/30241 ,  G06T2210/41 ,  G09B5/00 ,  G09B5/065 ,  G09B5/14 ,  G09B9/00 ,  G09B23/285 ,  G09B23/30 ,  G09B23/32 ,  G09B23/34 ,  G16H10/40 ,  G16H50/50

Abstract: A system for generating surgical procedure training media draws upon the realistic data of an actual surgical procedure for realistic training without the risks. A 3D capturing component records three-dimensional model plus imaging data over time of a portion of a patient's body undergoing a surgical procedure. A spatial detection system detects an orientation of a surgical instrument relative to the patient's body during the surgical procedure. A modeling component creates a four-dimensional model (3D model+time) of the portion of the patient's body. Animation such as contingent events, trainee prompts, a virtual surgical instrument, etc., can be added to the model to expand upon the training potential. A user interface processes and edits training media for playback of the four-dimensional model including defining triggers responsive to a trainee simulated surgical inputs to pace sequencing of playback. An interactive player responds to pacing the playback of the editing training media or to a spatially detected simulated surgical instrument held by the student for direct tissue interaction.

Abstract translation: 用于产生外科手术训练媒介的系统利用实际的外科手术的实际数据来实现现实的训练而没有风险。 3D捕获部件记录经过外科手术的患者身体的一部分的三维模型加上成像数据。 在外科手术过程中，空间检测系统检测手术器械相对于患者身体的取向。 建模组件创建了患者身体部分的四维模型（3D模型+时间）。 可以在模型中添加诸如偶然事件，实习生提示，虚拟手术器械等的动画，以扩大培训潜力。 用户界面处理和编辑用于四维模型的回放的训练媒体，包括响应于训练者模拟的外科输入来定义触发以重新播放顺序。 交互式播放器响应于编辑训练媒体的播放或由学生持有的用于直接组织交互的空间检测的模拟手术器械的播放。

公开(公告)号：US09367257B2

公开(公告)日：2016-06-14

申请号：US12209008

申请日：2008-09-11

Applicant: James R Hamilton ,  Michael J Manos ,  John D Dunagan ,  Alastair Wolman ,  Sharad Agarwal ,  Ming Zhang

Inventor： James R Hamilton ,  Michael J Manos ,  John D Dunagan ,  Alastair Wolman ,  Sharad Agarwal ,  Ming Zhang

IPC: G06F17/30 ,  G06F3/06

CPC classification number: G06F3/0647 ,  G06F3/0604 ,  G06F3/067

Abstract: An exemplary system includes a front-end component to receive requests for resources in a data center and configured to associate each request with identifying information, to locate one or more resources for each request and to store, in a log file, the identifying information and information about the location of the one or more resources; one or more distributed computation and storage components to acquire log file information and configured to analyze log information to decide if one or more resources associated with one or more requests should be migrated to a data center in a different geographical location; and a location service component to receive decisions made by the one or more distributed computation and storage components and configured to inform the front-end component when a decision causes one or more resources to be migrated to a data center in a different geographical location to thereby allow the front-end component to re-direct future requests for the one or more migrated resources to the data center in the different geographical location. Various other devices, systems and methods are also described.

Abstract translation: 示例性系统包括前端组件，用于接收对数据中心中的资源的请求，并且被配置为将每个请求与标识信息相关联，以便为每个请求定位一个或多个资源，并在日志文件中存储识别信息和 关于一个或多个资源的位置的信息; 一个或多个分布式计算和存储组件，用于获取日志文件信息并被配置为分析日志信息以确定与一个或多个请求相关联的一个或多个资源是否应迁移到不同地理位置的数据中心; 以及位置服务组件，用于接收由所述一个或多个分布式计算和存储组件做出的决定，并且被配置为当决策导致一个或多个资源迁移到不同地理位置中的数据中心时通知前端组件，从而 允许前端组件将一个或多个已迁移资源的未来请求重新定向到不同地理位置的数据中心。 还描述了各种其它装置，系统和方法。

公开(公告)号：US09148413B1

公开(公告)日：2015-09-29

申请号：US13539069

申请日：2012-06-29

Applicant: Michael David Marr ,  Matthew T. Corddry ,  James R. Hamilton

Inventor： Michael David Marr ,  Matthew T. Corddry ,  James R. Hamilton

IPC: H04L29/06 ,  G06F21/00

CPC classification number: G06F8/65 ,  G06F21/572 ,  G06F21/629 ,  H04L63/0428 ,  H04L63/08 ,  H04L63/20

Abstract: When providing a user with native access to at least a portion of device hardware, the user can be prevented from modifying firmware and other configuration information by controlling the mechanisms used to update that information. In some embodiments, an asymmetric keying approach can be used to encrypt or sign the firmware. In other cases access can be controlled by enabling firmware updates only through a channel or port that is not exposed to the customer, or by mapping only those portions of the hardware that are to be accessible to the user. In other embodiments, the user can be prevented from modifying firmware by only provisioning the user on a machine after an initial mutability period wherein firmware can be modified, such that the user never has access to a device when firmware can be updated. Combinations and variations of the above also can be used.

Abstract translation: 当向用户提供对至少一部分设备硬件的本地访问时，可以通过控制用于更新该信息的机制来阻止用户修改固件和其他配置信息。 在一些实施例中，可以使用非对称密钥方法来加密或签名固件。 在其他情况下，只能通过不暴露给客户的通道或端口启用固件更新，或仅映射用户可访问的硬件部分来控制访问。 在其他实施例中，可以通过在可修改固件的初始可变性周期之后仅在机器上提供用户来防止用户修改固件，使得当固件可以被更新时，用户永远不能访问设备。 上述的组合和变化也可​​以使用。

公开(公告)号：US09037922B1

公开(公告)日：2015-05-19

申请号：US13461068

申请日：2012-05-01

Applicant: Luis Felipe Cabrera ,  Eric Jason Brandwine ,  James R. Hamilton ,  Jonathan A. Jenkins ,  Matthew D. Klein ,  Nathan Thomas ,  Pradeep Vincent

Inventor： Luis Felipe Cabrera ,  Eric Jason Brandwine ,  James R. Hamilton ,  Jonathan A. Jenkins ,  Matthew D. Klein ,  Nathan Thomas ,  Pradeep Vincent

IPC: G06F11/00 ,  G06F11/30

CPC classification number: G06F11/3495 ,  G06F11/0709 ,  G06F11/076 ,  G06F11/079 ,  G06F11/3006 ,  G06F11/3065 ,  G06F11/3072 ,  G06F11/3409

Abstract: A set of techniques is described for monitoring and analyzing crashes and other malfunctions in a multi-tenant computing environment (e.g. cloud computing environment). The computing environment may host many applications that are executed on different computing resource combinations. The combinations may include varying types and versions of hardware or software resources. A monitoring service is deployed to gather statistical data about the failures occurring in the computing environment. The statistical data is then analyzed to identify abnormally high failure patterns. The failure patterns may be associated with particular computing resource combinations being used to execute particular types of applications. Based on these failure patterns, suggestions can be issued to a user to execute the application using a different computing resource combination. Alternatively, the failure patterns may be used to modify or update the various resources in order to correct the potential malfunctions caused by the resource.

Abstract translation: 描述了一组技术来监视和分析多租户计算环境（例如云​​计算环境）中的崩溃和其他故障。 计算环境可以承载在不同的计算资源组合上执行的许多应用。 组合可以包括硬件或软件资源的不同类型和版本。 部署监控服务来收集有关在计算环境中发生故障的统计数据。 然后分析统计数据以识别异常高的故障模式。 故障模式可以与用于执行特定类型的应用的特定计算资源组合相关联。 基于这些故障模式，可以向用户发出建议，以使用不同的计算资源组合来执行应用。 或者，可以使用故障模式来修改或更新各种资源，以便校正由资源引起的潜在的故障。

公开(公告)号：US20140088979A1

公开(公告)日：2014-03-27

申请号：US13625507

申请日：2012-09-24

Applicant: Matthew S. Garman ,  James R. Hamilton ,  William T. Shelton ,  Michael P. Czamara ,  Terrance Douglas Hanold ,  Abhinav Agrawal ,  John W. Eichelberg ,  Rajesh Viswanathan

Inventor： Matthew S. Garman ,  James R. Hamilton ,  William T. Shelton ,  Michael P. Czamara ,  Terrance Douglas Hanold ,  Abhinav Agrawal ,  John W. Eichelberg ,  Rajesh Viswanathan

IPC: G06Q99/00

CPC classification number: G06Q10/0631 ,  G06F21/86

Abstract: A system for providing resources to customers includes racks, sub-rack level secure containment units in the racks, and a provisioning control system. The sub-rack level secure containment units each enclose system resources. The racks hold two or more of the sub-rack level secure containment units. For each customer, the provisioning control system may provision a set of sub-rack level secure containment units to the customer. The provisioning control system may monitor, and create a record of, events of physical access to the system resources in each customer's set of sub-rack level secure containment units.

Abstract translation: 为客户提供资源的系统包括机架中的机架，子机架级安全容纳单元以及配置控制系统。 子机架级安全容纳单元各自包含系统资源。 机架固定两个或更多的子机架级安全封锁单元。 对于每个客户，配置控制系统可以向客户提供一组子机架级安全容纳单元。 配置控制系统可以监视并创建对每个客户的子机架级安全容纳单元组中的系统资源的物理访问事件的记录。

公开(公告)号：US08655187B2

公开(公告)日：2014-02-18

申请号：US12804120

申请日：2010-07-13

Applicant: Howard Lee Davidson ,  James R. Hamilton ,  Roderick A. Hyde ,  Arne Josefsberg ,  Edward K.Y. Jung ,  Jordin T. Kare ,  Robert W. Lord ,  Kenneth Lustig ,  William Henry Mangione-Smith ,  Michael Manos ,  Craig J. Mundie ,  Nathan P. Myhrvold ,  Richard F. Rashid ,  Burton Smith ,  Clarence T. Tegreene ,  Robert V. Welland ,  Charles Whitmer ,  Lowell L. Wood, Jr.

Inventor： Howard Lee Davidson ,  James R. Hamilton ,  Roderick A. Hyde ,  Arne Josefsberg ,  Edward K.Y. Jung ,  Jordin T. Kare ,  Robert W. Lord ,  Kenneth Lustig ,  William Henry Mangione-Smith ,  Michael Manos ,  Craig J. Mundie ,  Nathan P. Myhrvold ,  Richard F. Rashid ,  Burton Smith ,  Clarence T. Tegreene ,  Robert V. Welland ,  Charles Whitmer ,  Lowell L. Wood, Jr.

IPC: H04B10/00

CPC classification number: H04B10/1149

Abstract: A data center for executing a data processing application includes processing units, sub-units or servers. Each of the processing units, sub-units or servers can execute a part or all of the data processing application. The processing units, sub-units or servers are electrical disjoint with respect to data communications, but can communicate with each other over free space optical links.

公开(公告)号：US20140046908A1

公开(公告)日：2014-02-13

申请号：US13570088

申请日：2012-08-08

Applicant: Kestutis Patiejunas ,  James R. Hamilton ,  Colin L. Lazier ,  Alyssa H. Henry ,  Mark C. Seigle ,  Christian L. Claiborn

Inventor： Kestutis Patiejunas ,  James R. Hamilton ,  Colin L. Lazier ,  Alyssa H. Henry ,  Mark C. Seigle ,  Christian L. Claiborn

IPC: G06F17/30

CPC classification number: G06F17/30008 ,  G06F17/30073

Abstract: A cost-effective, durable and scalable archival data storage system is provided herein that allow customers to store, retrieve and delete archival data objects, among other operations. For data storage, in an embodiment, the system stores data in a transient data store and provides a data object identifier may be used by subsequent requests. For data retrieval, in an embodiment, the system creates a job corresponding to the data retrieval and provides a job identifier associated with the created job. Once the job is executed, data retrieved is provided in a transient data store to enable customer download. In various embodiments, jobs associated with storage, retrieval and deletion are scheduled and executed using various optimization techniques such as load balancing, batch processed and partitioning. Data is redundantly encoded and stored in self-describing storage entities increasing reliability while reducing storage costs. Data integrity is ensured by integrity checks along data paths.

Abstract translation: 本文提供了一种经济高效，可持续和可扩展的存档数据存储系统，允许客户存储，检索和删除存档数据对象以及其他操作。 对于数据存储，在一个实施例中，系统将数据存储在瞬态数据存储器中，并且可以由随后的请求使用提供的数据对象标识符。 对于数据检索，在一个实施例中，系统创建与数据检索相对应的作业，并提供与创建的作业相关联的作业标识符。 执行作业后，在瞬态数据存储中提供检索的数据，以便客户下载。 在各种实施例中，使用诸如负载平衡，批处理和分区之类的各种优化技术调度和执行与存储，检索和删除相关联的作业。 数据被冗余编码并存储在自描述存储实体中，从而提高可靠性，同时降低存储成本。 通过沿着数据路径的完整性检查来确保数据完整性。

公开(公告)号：US08589385B2

公开(公告)日：2013-11-19

申请号：US13246803

申请日：2011-09-27

Applicant: Brett R. Taylor ,  James R. Hamilton

Inventor： Brett R. Taylor ,  James R. Hamilton

IPC: G06F17/30 ,  G06F7/00

CPC classification number: H04L67/32 ,  G06F17/30775 ,  G06F17/30864 ,  G06F17/30867 ,  G06F17/30873 ,  G06F17/30893 ,  G06F17/30902 ,  H04L67/02 ,  H04L67/2842

Abstract: A remote browsing process is directed to the generation and management of a remote browse session at a network computing provider. A client computing device requests a remote browse session instance at a network computing provider. The network computing and storage provider processes the requested content for display, and provides a processed representation of the requested content to the client computing device for display. The network computing provider further provides a historical content representation corresponding to the requested content to a historical browse storage component for storage. The network computing provider may further provide historical content representations to the historical browse storage component for content directly or indirectly referenced by the requested content. The client computing device may subsequently search for content not previously displayed by the client computing device.

Abstract translation: 远程浏览过程针对在网络计算提供商处的远程浏览会话的生成和管理。 客户端计算设备在网络计算提供商处请求远程浏览会话实例。 网络计算和存储提供商处理所请求的内容以进行显示，并将所请求的内容的处理表示提供给客户端计算设备进行显示。 网络计算提供者还向历史浏览存储组件提供对应于所请求的内容的历史内容表示以进行存储。 网络计算提供者可以进一步向历史浏览存储组件提供历史内容表示，以供所请求内容直接或间接引用的内容。 客户端计算设备可以随后搜索客户端计算设备之前未显示的内容。

公开(公告)号：US08588618B2

公开(公告)日：2013-11-19

申请号：US12804132

申请日：2010-07-13

Applicant: Howard Lee Davidson ,  James R. Hamilton ,  Roderick A. Hyde ,  Arne Josefsberg ,  Edward K. Y. Jung ,  Jordin T. Kare ,  Robert W. Lord ,  Kenneth Lustig ,  William Henry Mangione-Smith ,  Michael Manos ,  Craig J. Mundie ,  Nathan P. Myhrvold ,  Richard F. Rashid ,  Burton Smith ,  Clarence T. Tegreene ,  Robert V. Welland ,  Charles Whitmer ,  Lowell L. Wood, Jr.

Inventor： Howard Lee Davidson ,  James R. Hamilton ,  Roderick A. Hyde ,  Arne Josefsberg ,  Edward K. Y. Jung ,  Jordin T. Kare ,  Robert W. Lord ,  Kenneth Lustig ,  William Henry Mangione-Smith ,  Michael Manos ,  Craig J. Mundie ,  Nathan P. Myhrvold ,  Richard F. Rashid ,  Burton Smith ,  Clarence T. Tegreene ,  Robert V. Welland ,  Charles Whitmer ,  Lowell L. Wood, Jr.

IPC: H04B10/00

CPC classification number: H04J14/0227 ,  H04B10/1149 ,  H04J14/0257 ,  H04J14/0275 ,  H04J14/0282 ,  H04J14/0284 ,  H04J14/0286 ,  H04J14/06

Abstract: A data center for executing a data processing application includes processing units, sub-units or servers. Each of the processing units, sub-units or servers can execute a part or all of the data processing application. The processing units, sub-units or servers are electrical disjoint with respect to data communications, but can communicate with each other over free space optical links.

Abstract translation: 用于执行数据处理应用的数据中心包括处理单元，子单元或服务器。 每个处理单元，子单元或服务器可以执行数据处理应用的一部分或全部。 处理单元，子单元或服务器对于数据通信而言是电不相交的，但是可以通过自由空间光链路彼此通信。