Cloud provider classification for different service deployment schemes
First Claim
1. A method comprising:
- at a cloud provider to provide one or more services that are cloud-based to tenants of the cloud provider over a network, wherein each service is configured according to a respective one of multiple service deployment schemes;
maintaining, for each service, hierarchical classification information, including;
a scheme type to identify the respective service deployment scheme;
a three-tuple cloud identifier including a cloud identifier to identify the cloud provider, a service identifier to identify the service, and a tenant identifier to identify a tenant permitted access to the service; and
one or more scheme-specific service identifiers to identify components of the service; and
distributing the classification information within the cloud provider, including to the one or more services, to enable a respective tenant to exchange Internet Protocol (IP) packets with, and thereby access, a respective service and components of that service based on the classification information, wherein each IP packet includes, for the respective service, the scheme type, the cloud identifier, the service identifier, the tenant identifier of the respective tenant, and the one or more scheme-specific service identifiers.
1 Assignment
0 Petitions
Accused Products
Abstract
A cloud provider provides services to tenants over a network. Each cloud-based service is configured according to a respective service deployment scheme. The cloud provider maintains, for each service, classification information, including: a scheme type; a three-tuple cloud identifier including a cloud identifier, a service identifier, and a tenant identifier; and one or more scheme-specific service identifiers. The cloud provider distributes the classification information within the cloud provider, including to the services, to enable a respective tenant to exchange Internet Protocol (IP) packets with, and thereby access, a respective service and components of the service based on the classification information. The IP packet includes, for the respective service, the scheme type, the cloud identifier, the service identifier, the tenant identifier of the respective tenant, and the one or more scheme-specific service identifiers.
17 Citations
20 Claims
-
1. A method comprising:
-
at a cloud provider to provide one or more services that are cloud-based to tenants of the cloud provider over a network, wherein each service is configured according to a respective one of multiple service deployment schemes; maintaining, for each service, hierarchical classification information, including; a scheme type to identify the respective service deployment scheme; a three-tuple cloud identifier including a cloud identifier to identify the cloud provider, a service identifier to identify the service, and a tenant identifier to identify a tenant permitted access to the service; and one or more scheme-specific service identifiers to identify components of the service; and distributing the classification information within the cloud provider, including to the one or more services, to enable a respective tenant to exchange Internet Protocol (IP) packets with, and thereby access, a respective service and components of that service based on the classification information, wherein each IP packet includes, for the respective service, the scheme type, the cloud identifier, the service identifier, the tenant identifier of the respective tenant, and the one or more scheme-specific service identifiers. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. An apparatus comprising:
-
a network interface unit to communicate with devices in a cloud provider configured to provide one or more services that are cloud-based to tenants of the cloud provider over a network, wherein each service is configured according to a respective one of multiple service deployment schemes; and a processor coupled to the network interface unit and configured to; maintain, for each service, hierarchical classification information, including; a scheme type to identify the respective service deployment scheme; a three-tuple cloud identifier including a cloud identifier to identify the cloud provider, a service identifier to identify the service, and a tenant identifier to identify a tenant permitted access to the service; and one or more scheme-specific service identifiers to identify components of the service; and distribute the classification information within the cloud provider, including to the one or more services, to enable a respective tenant to exchange Internet Protocol (IP) packets with, and thereby access, a respective service and components of that service based on the classification information, wherein each IP packet includes, for the respective service, the scheme type, the cloud identifier, the service identifier, the tenant identifier of the respective tenant, and the one or more scheme-specific service identifiers. - View Dependent Claims (14, 15, 16, 17)
-
-
18. A non-transitory computer readable storage media encoded with instructions that, when executed by a processor of a management system in a cloud provider configured to provide one or more services that are cloud-based to tenants of the cloud provider over a network, wherein each service is configured according to a respective one of multiple service deployment schemes, cause the processor to:
-
maintain, for each service, hierarchical classification information, including; a scheme type to identify the respective service deployment scheme; a three-tuple cloud identifier including a cloud identifier to identify the cloud provider, a service identifier to identify the service, and a tenant identifier to identify a tenant permitted access to the service; and one or more scheme-specific service identifiers to identify components of the service; and distribute the classification information within the cloud provider, including to the one or more services, to enable a respective tenant to exchange Internet Protocol (IP) packets with, and thereby access, a respective service and components of that service based on the classification information, wherein each IP packet includes, for the respective service, the scheme type, the cloud identifier, the service identifier, the tenant identifier of the respective tenant, and the one or more scheme-specific service identifiers. - View Dependent Claims (19, 20)
-
Specification