Storage gateway security model
First Claim
1. A method, comprising:
- initiating, by a storage gateway, at least one secure connection to a remote service provider for remotely managing the storage gateway and for storing customer data from a customer network to a remote data store via a storage service provided by the remote service provider, wherein the storage gateway operates between one or more customer processes on the customer network and the storage service to store customer data to the remote data store; and
receiving, by the storage gateway via the at least one secure connection to the remote service provider, management requests from a process on the customer network, wherein the management requests received by the storage gateway are specified by the process via a console process provided by the remote service provider.
0 Assignments
0 Petitions
Accused Products
Abstract
Methods, apparatus, and computer-accessible storage media for implementing a gateway to a remote service provider according to a security model. The gateway serves as an interface between processes on a customer network and the provider, for example to store customer data to a remote data store. The model may include an activation process initiated by the gateway to register with the provider and associate the gateway with a customer account; the gateway is provided with security credentials. The model may also include establishing secure connections to external processes, for example processes of the service provider. The gateway initiates connections; the external processes do not initiate connections. The model may also include the customer managing the gateway through the service provider. The model may also include encrypting communications between the gateway and the provider and the gateway including security credentials in communications to the provider.
37 Citations
20 Claims
-
1. A method, comprising:
-
initiating, by a storage gateway, at least one secure connection to a remote service provider for remotely managing the storage gateway and for storing customer data from a customer network to a remote data store via a storage service provided by the remote service provider, wherein the storage gateway operates between one or more customer processes on the customer network and the storage service to store customer data to the remote data store; and receiving, by the storage gateway via the at least one secure connection to the remote service provider, management requests from a process on the customer network, wherein the management requests received by the storage gateway are specified by the process via a console process provided by the remote service provider. - View Dependent Claims (2, 3, 4)
-
-
5. A device, comprising:
-
at least one processor; and a memory comprising program instructions, wherein the program instructions are executable by the at least one processor to implement a gateway process to perform; initiating at least one secure connection to a remote service provider for remotely managing the gateway process and for storing customer data from a customer network to a remote data store via a storage service provided to the customer by the remote service provider, wherein the gateway process operates between one or more customer processes on the customer network and the storage service to store customer data to the remote data store; and receiving via the at least one secure connection to the remote service provider, management instructions from an interface on the customer network, wherein the management instructions received by the gateway process are specified by the interface via a console process of the remote service provider. - View Dependent Claims (6, 7, 8, 9, 10, 11, 12)
-
-
13. A non-transitory computer-readable storage medium storing program instructions that when executed by a computer implement a gateway process, the program instructions further executable to cause the gateway process to perform:
-
initiating at least one secure connection to a remote service provider for remotely managing the gateway process and for storing customer data from a customer network to a remote data store via a storage service provided to the customer by the remote service provider, wherein the gateway process operates between one or more customer processes on the customer network and the storage service to store customer data to the remote data store; and receiving via the at least one secure connection to the remote service provider, management instructions from an interface on the customer network, wherein the management instructions received by the gateway process are specified by the interface via a console process of the remote service provider. - View Dependent Claims (14, 15, 16, 17, 18, 19, 20)
-
Specification