公开(公告)号：US10185497B2

公开(公告)日：2019-01-22

申请号：US15627101

申请日：2017-06-19

Applicant: Rackspace US, Inc.

Inventor： Gregory Lee Holt ,  Clay Gerrard ,  David Patrick Goetz ,  Michael Barton

IPC: G06F12/16 ,  G06F3/06 ,  G06F17/30 ,  G06F9/50 ,  H04L29/08 ,  H04L12/927

Abstract: An improved scalable object storage system allows multiple clusters to work together. In one embodiment, a trust and federation relationship is established between a first cluster and a second cluster. This is done by designating a first cluster as a trust root. The trust root receives contact from another cluster, and the two clusters exchange cryptographic credentials. The two clusters mutually authenticate each other based upon the credentials, and optionally relative to a third information service, and establish a service connection. Services from the remote cluster are registered as being available to the cluster designated as the trust root. Multi-cluster gateways can also be designated as the trust root, and joined clusters can be mutually untrusting. Two one-way trust and federation relationships can be set up to form a trusted bidirectional channel.

公开(公告)号：US09684453B2

公开(公告)日：2017-06-20

申请号：US14555289

申请日：2014-11-26

Applicant: Rackspace US, Inc.

Inventor： Gregory Lee Holt ,  Clay Gerrard ,  David Patrick Goetz ,  Michael Barton

IPC: G06F12/16 ,  G06F3/06 ,  G06F17/30 ,  G06F9/50 ,  H04L29/08 ,  H04L12/927

CPC classification number: G06F3/0608 ,  G06F3/0619 ,  G06F3/0631 ,  G06F3/0641 ,  G06F3/0644 ,  G06F3/067 ,  G06F9/5083 ,  G06F17/30197 ,  G06F17/30575 ,  H04L47/80 ,  H04L67/10 ,  H04L67/1006 ,  H04L67/1023 ,  H04L67/1095 ,  H04L67/1097 ,  Y10S707/9994 ,  Y10S707/99953

Abstract: An improved scalable object storage system allows multiple clusters to work together. In one embodiment, a trust and federation relationship is established between a first cluster and a second cluster. This is done by designating a first cluster as a trust root. The trust root receives contact from another cluster, and the two clusters exchange cryptographic credentials. The two clusters mutually authenticate each other based upon the credentials, and optionally relative to a third information service, and establish a service connection. Services from the remote cluster are registered as being available to the cluster designated as the trust root. Multi-cluster gateways can also be designated as the trust root, and joined clusters can be mutually untrusting. Two one-way trust and federation relationships can be set up to form a trusted bidirectional channel.

公开(公告)号：US09560093B2

公开(公告)日：2017-01-31

申请号：US14323726

申请日：2014-07-03

Applicant: Rackspace US, Inc.

Inventor： Gregory Lee Holt ,  Clay Gerrard ,  David Patrick Goetz ,  Michael Barton

IPC: G06F17/30 ,  H04L29/06 ,  G06F3/06 ,  G06F11/20 ,  H04L29/08 ,  G06F11/10

CPC classification number: H04L65/403 ,  G06F3/0619 ,  G06F3/0626 ,  G06F3/0644 ,  G06F3/065 ,  G06F3/067 ,  G06F11/1004 ,  G06F11/2097 ,  G06F17/30153 ,  G06F17/30156 ,  G06F17/30174 ,  G06F17/30318 ,  G06F17/30371 ,  G06F17/30575 ,  G06F17/30864 ,  G06F17/30887 ,  G06F2201/85 ,  H04L43/106 ,  H04L67/06 ,  H04L67/1095 ,  H04L67/1097 ,  H04L67/2828 ,  H04L69/04

Abstract: In one embodiment, there is a multi-cluster synchronization system between two or more clusters. The multi-cluster synchronization system uses variable compression to optimize the transfer of information between the clusters. Compression is used not only to minimize the total number of bytes sent between the two clusters, but to dynamically vary the size of the objects sent across the wire to optimize for higher throughput after considering packet loss, TCP windows, and block sizes. This includes both the packaging of multiple small files together into one larger compressed file, saving on TCP and header overhead, but also the chunking of large files into multiple smaller files that are less likely to have difficulties due to intermittent network congestion or errors. A further embodiment uses forward error correction to maximize the chances that the remote end will be able to correctly reconstitute the transmission.

Abstract translation: 在一个实施例中，在两个或更多个集群之间存在多集群同步系统。 多集群同步系统使用可变压缩来优化集群之间的信息传输。 压缩不仅用于最小化两个集群之间发送的字节总数，而且可以动态地改变通过电线发送的对象的大小，以便在考虑到数据包丢失，TCP窗口和块大小后进行优化。 这包括将多个小文件打包成一个较大的压缩文件，节省TCP和头部开销，还将大文件分块到由于间歇性网络拥塞或错误而不太可能遇到困难的较小文件。 另一实施例使用前向纠错来最大化远程端将能够正确地重构传输的机会。

公开(公告)号：US20160226931A9

公开(公告)日：2016-08-04

申请号：US14249301

申请日：2014-04-09

Applicant: Rackspace US, Inc.

Inventor： Gregory Lee Holt ,  Clay Gerrard ,  David Patrick Goetz ,  Michael Barton

IPC: H04L29/06

CPC classification number: H04L65/403 ,  G06F3/0619 ,  G06F3/0626 ,  G06F3/0644 ,  G06F3/065 ,  G06F3/067 ,  G06F11/1004 ,  G06F11/2097 ,  G06F17/30153 ,  G06F17/30156 ,  G06F17/30174 ,  G06F17/30318 ,  G06F17/30371 ,  G06F17/30575 ,  G06F17/30864 ,  G06F17/30887 ,  G06F2201/85 ,  H04L43/106 ,  H04L67/06 ,  H04L67/1095 ,  H04L67/1097 ,  H04L67/2828 ,  H04L69/04

Abstract: An improved scalable object storage system includes methods and systems allowing multiple clusters to work together. Users working with a first cluster, or with a multi-cluster gateway, can ask for services and have the request or data transparently proxied to a second cluster. This gives transparent cross-cluster replication, as well as multi-cluster compute or storage farms based upon spot availability or various provisioning policies. Vendors providing a cloud storage “frontend” can provide multiple backends simultaneously. In one embodiment, a multi-cluster gateway can have a two, three, or higher-level ring that transparently matches an incoming request with the correct cluster. In the ring, a request is first mapped to an abstract “partition” based on a consistent hash function, and then one or more constrained mappings map the partition number to an actual resource. In another embodiment, the multi-cluster gateway is a dumb gateway, and the rings are located only at the cluster level.

Abstract translation: 改进的可扩展对象存储系统包括允许多个集群一起工作的方法和系统。 使用第一个集群或多集群网关的用户可以要求服务，并将请求或数据透明地代理到第二个集群。 这将提供透明的跨群集复制，以及基于现场可用性或各种配置策略的多群集计算或存储场。 提供云存储“前端”的厂商可以同时提供多个后端。 在一个实施例中，多集群网关可以具有两个，三个或更高级别的环，其使用正确的集群透明地匹配传入请求。 在环中，请求首先基于一致的哈希函数映射到抽象“分区”，然后一个或多个约束映射将分区号映射到实际资源。 在另一个实施例中，多群集网关是哑网关，而环仅位于群集级。

公开(公告)号：US20150156136A1

公开(公告)日：2015-06-04

申请号：US14555289

申请日：2014-11-26

Applicant: Rackspace US, Inc.

Inventor： Gregory Lee Holt ,  Clay Gerrard ,  David Patrick Goetz ,  Michael Barton

IPC: H04L12/927 ,  H04L29/08

CPC classification number: G06F3/0608 ,  G06F3/0619 ,  G06F3/0631 ,  G06F3/0641 ,  G06F3/0644 ,  G06F3/067 ,  G06F9/5083 ,  G06F17/30197 ,  G06F17/30575 ,  H04L47/80 ,  H04L67/10 ,  H04L67/1006 ,  H04L67/1023 ,  H04L67/1095 ,  H04L67/1097 ,  Y10S707/9994 ,  Y10S707/99953

Abstract: An improved scalable object storage system allows multiple clusters to work together. In one embodiment, a trust and federation relationship is established between a first cluster and a second cluster. This is done by designating a first cluster as a trust root. The trust root receives contact from another cluster, and the two clusters exchange cryptographic credentials. The two clusters mutually authenticate each other based upon the credentials, and optionally relative to a third information service, and establish a service connection. Services from the remote cluster are registered as being available to the cluster designated as the trust root. Multi-cluster gateways can also be designated as the trust root, and joined clusters can be mutually untrusting. Two one-way trust and federation relationships can be set up to form a trusted bidirectional channel.

Abstract translation: 改进的可扩展对象存储系统允许多个集群一起工作。 在一个实施例中，在第一集群和第二集群之间建立信任和联合关系。 这是通过将第一个集群指定为信任根来完成的。 信任根接收来自另一个集群的联系人，两个集群交换加密凭据。 两个集群基于证书彼此相互认证，并且可选地相对于第三信息服务，并建立服务连接。 远程集群的服务被注册为指定为信任根的集群可用。 多集群网关也可以指定为信任根，并且连接的集群可以相互不可信。 可以设置两个单向信任和联合关系，形成可信双向通道。

公开(公告)号：US20150220561A1

公开(公告)日：2015-08-06

申请号：US14690040

申请日：2015-04-17

Applicant: Rackspace US, Inc.

Inventor： David Patrick Goetz ,  Gregory Lee Holt

IPC: G06F17/30

CPC classification number: G06F17/30194 ,  G06F3/0611 ,  G06F3/0644 ,  G06F3/067 ,  G06F17/30 ,  G06F17/30174 ,  G06F17/30182 ,  H04L67/02 ,  H04L67/10 ,  H04L67/1095 ,  H04L67/2842

Abstract: A system for exposing data stored in a cloud computing system to a content delivery network provider includes a database configured to receive and store metadata about the data, the database being implemented in the cloud computing system to store configuration metadata for the data related to the content delivery network, and an origin server configured to receive requests for the data from the content delivery network provider, and configured to provide the data to the content delivery network provider based on the metadata.

Abstract translation: 用于将存储在云计算系统中的数据暴露给内容传送网络提供者的系统包括被配置为接收和存储关于数据的元数据的数据库，该数据库被实施在云计算系统中以存储与内容有关的数据的配置元数据 传送网络和源服务器，其被配置为从内容传送网络提供商接收对数据的请求，并且被配置为基于所述元数据向所述内容传送网络提供者提供所述数据。

公开(公告)号：US20140304334A1

公开(公告)日：2014-10-09

申请号：US14249301

申请日：2014-04-09

Applicant: Rackspace US, Inc.

Inventor： Gregory Lee Holt ,  Clay Gerrard ,  David Patrick Goetz ,  Michael Barton

IPC: H04L29/06

CPC classification number: H04L65/403 ,  G06F3/0619 ,  G06F3/0626 ,  G06F3/0644 ,  G06F3/065 ,  G06F3/067 ,  G06F11/1004 ,  G06F11/2097 ,  G06F17/30153 ,  G06F17/30156 ,  G06F17/30174 ,  G06F17/30318 ,  G06F17/30371 ,  G06F17/30575 ,  G06F17/30864 ,  G06F17/30887 ,  G06F2201/85 ,  H04L43/106 ,  H04L67/06 ,  H04L67/1095 ,  H04L67/1097 ,  H04L67/2828 ,  H04L69/04

Abstract: An improved scalable object storage system includes methods and systems allowing multiple clusters to work together. Users working with a first cluster, or with a multi-cluster gateway, can ask for services and have the request or data transparently proxied to a second cluster. This gives transparent cross-cluster replication, as well as multi-cluster compute or storage farms based upon spot availability or various provisioning policies. Vendors providing a cloud storage “frontend” can provide multiple backends simultaneously. In one embodiment, a multi-cluster gateway can have a two, three, or higher-level ring that transparently matches an incoming request with the correct cluster. In the ring, a request is first mapped to an abstract “partition” based on a consistent hash function, and then one or more constrained mappings map the partition number to an actual resource. In another embodiment, the multi-cluster gateway is a dumb gateway, and the rings are located only at the cluster level.

Abstract translation: 改进的可扩展对象存储系统包括允许多个集群一起工作的方法和系统。 使用第一个集群或多集群网关的用户可以要求服务，并将请求或数据透明地代理到第二个集群。 这将提供透明的跨群集复制，以及基于现场可用性或各种配置策略的多群集计算或存储场。 提供云存储“前端”的供应商可以同时提供多个后端。 在一个实施例中，多集群网关可以具有两个，三个或更高级别的环，其使用正确的集群透明地匹配传入请求。 在环中，请求首先基于一致的哈希函数映射到抽象“分区”，然后一个或多个约束映射将分区号映射到实际资源。 在另一个实施例中，多群集网关是哑网关，而环仅位于群集级。

公开(公告)号：US20170208124A1

公开(公告)日：2017-07-20

申请号：US15419478

申请日：2017-01-30

Applicant: Rackspace US, Inc.

Inventor： Gregory Lee Holt ,  Clay Gerrard ,  David Patrick Goetz ,  Michael Barton

IPC: H04L29/08 ,  G06F17/30 ,  G06F11/20 ,  G06F3/06

CPC classification number: H04L65/403 ,  G06F3/0619 ,  G06F3/0626 ,  G06F3/0644 ,  G06F3/065 ,  G06F3/067 ,  G06F11/1004 ,  G06F11/2097 ,  G06F16/1744 ,  G06F16/1748 ,  G06F16/178 ,  G06F16/2219 ,  G06F16/2365 ,  G06F16/27 ,  G06F16/951 ,  G06F16/9566 ,  G06F2201/85 ,  H04L43/106 ,  H04L67/06 ,  H04L67/1095 ,  H04L67/1097 ,  H04L67/2828 ,  H04L69/04

Abstract: An improved scalable object storage system includes methods and systems allowing multiple clusters to work together. In one embodiment, there is a multi-cluster synchronization system between two or more clusters. The multi-cluster synchronization system uses variable compression to optimize the transfer of information between the clusters. Compression is used not only to minimize the total number of bytes sent between the two clusters, but to dynamically vary the size of the objects sent across the wire to optimize for higher throughput after considering packet loss, TCP windows, and block sizes. This includes both the packaging of multiple small files together into one larger compressed file, saving on TCP and header overhead, but also the chunking of large files into multiple smaller files that are less likely to have difficulties due to intermittent network congestion or errors. Depending on the state of the network and disks, the best size can vary. A further embodiment uses forward error correction to maximize the chances that the remote end will be able to correctly reconstitute the transmission.

公开(公告)号：US09489395B2

公开(公告)日：2016-11-08

申请号：US14690040

申请日：2015-04-17

Applicant: Rackspace US, Inc.

Inventor： David Patrick Goetz ,  Gregory Lee Holt

IPC: G06F17/30 ,  G06F3/06 ,  H04L29/08

CPC classification number: G06F17/30194 ,  G06F3/0611 ,  G06F3/0644 ,  G06F3/067 ,  G06F17/30 ,  G06F17/30174 ,  G06F17/30182 ,  H04L67/02 ,  H04L67/10 ,  H04L67/1095 ,  H04L67/2842

Abstract: A system for exposing data stored in a cloud computing system to a content delivery network provider includes a database configured to receive and store metadata about the data, the database being implemented in the cloud computing system to store configuration metadata for the data related to the content delivery network, and an origin server configured to receive requests for the data from the content delivery network provider, and configured to provide the data to the content delivery network provider based on the metadata.

公开(公告)号：US09405781B2

公开(公告)日：2016-08-02

申请号：US14249301

申请日：2014-04-09

Applicant: Rackspace US, Inc.

Inventor： Gregory Lee Holt ,  Clay Gerrard ,  David Patrick Goetz ,  Michael Barton

IPC: G06F17/30 ,  G06F11/20 ,  H04L29/08 ,  H04L29/06 ,  G06F11/10 ,  G06F3/06

CPC classification number: H04L65/403 ,  G06F3/0619 ,  G06F3/0626 ,  G06F3/0644 ,  G06F3/065 ,  G06F3/067 ,  G06F11/1004 ,  G06F11/2097 ,  G06F17/30153 ,  G06F17/30156 ,  G06F17/30174 ,  G06F17/30318 ,  G06F17/30371 ,  G06F17/30575 ,  G06F17/30864 ,  G06F17/30887 ,  G06F2201/85 ,  H04L43/106 ,  H04L67/06 ,  H04L67/1095 ,  H04L67/1097 ,  H04L67/2828 ,  H04L69/04

Abstract: An improved scalable object storage system includes methods and systems allowing multiple clusters to work together. Users working with a first cluster, or with a multi-cluster gateway, can ask for services and have the request or data transparently proxied to a second cluster. This gives transparent cross-cluster replication, as well as multi-cluster compute or storage farms based upon spot availability or various provisioning policies. Vendors providing a cloud storage “frontend” can provide multiple backends simultaneously. In one embodiment, a multi-cluster gateway can have a two, three, or higher-level ring that transparently matches an incoming request with the correct cluster. In the ring, a request is first mapped to an abstract “partition” based on a consistent hash function, and then one or more constrained mappings map the partition number to an actual resource. In another embodiment, the multi-cluster gateway is a dumb gateway, and the rings are located only at the cluster level.

Abstract translation: 改进的可扩展对象存储系统包括允许多个集群一起工作的方法和系统。 使用第一个集群或多集群网关的用户可以要求服务，并将请求或数据透明地代理到第二个集群。 这将提供透明的跨群集复制，以及基于现场可用性或各种配置策略的多群集计算或存储场。 提供云存储“前端”的供应商可以同时提供多个后端。 在一个实施例中，多集群网关可以具有两个，三个或更高级别的环，其使用正确的集群透明地匹配传入请求。 在环中，请求首先基于一致的哈希函数映射到抽象“分区”，然后一个或多个约束映射将分区号映射到实际资源。 在另一个实施例中，多群集网关是哑网关，而环仅位于群集级。