&#xfeff;<html>
  <head>
    <META http-equiv="Content-Type" content="text/html; charset=utf-8">
<link rel="stylesheet" type="text/css" href="html_style_eog.css"/>
<script type="text/javascript">
          function printpage()
          {
          window.print()
          }
        </script>
<script type="text/javascript" src="https://components.uspto.gov/js/ais/40-patentsgazette.js"></script></head>
  <body bgcolor='#FFFFFF' onload='javascript: if ((navigator.appName.indexOf("Netscape")!=-1) && parent.leftFrame!=null) parent.leftFrame.location.reload();'>
    <basefont face="Times New Roman, Times New Roman, Times New Roman " size="2">
      <div style="margin-left: +10pt">
        <table width="90%" border="0" rules="none" align="center">
          <tr align="center">
            <td width="20%" colspan="1" rowspan="2" align="left" valign="top"><a href="https://ppubs.uspto.gov/pubwebapp/external.html?q=11860673.pn.&amp;db=USPAT" target="popup"><input type="button" class="button" value="   Full Text   "></a></td>
            <td class="table_data"><b>US 11,860,673 B1</b></td>
            <td width="20%" colspan="1" rowspan="2" align="right" valign="top">
              <form><input type="button" value="Print this page" onclick="printpage()"></form>
            </td>
          </tr>
          <tr align="center">
            <td colspan="1" class="table_data" style="text-transform: uppercase"><b>Database with client-controlled encryption key</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b> Avinash Kodakandla,  Seattle, WA (US);  Akshat Vig,  Seattle, WA (US);  Ravi Math,  Redmond, WA (US);  Sroaj Sosothikul,  Seattle, WA (US);  Nicholas Gordon,  Seattle, WA (US);  Somasundaram Perianayagam,  Seattle, WA (US);  Mazen Moez Ali,  Seattle, WA (US); and  Sharan Rajesh Munyal,  Seattle, WA (US)</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Assigned to  Amazon Technologies, Inc.,  Seattle, WA (US)</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Filed by  Amazon Technologies, Inc.,  Seattle, WA (US)</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Filed on Nov.  22, 2019, as Appl. No. 16/693,166.</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Int. Cl. </b><i><b>G06F 16/23</b></i> (2019.01); <i><b>G06F 16/22</b></i> (2019.01); <i><b>H04L 9/08</b></i> (2006.01); <i><b>G06F 16/27</b></i> (2019.01)</td>
          </tr>
        </table>
        <table width="90%" border="0" rules="none" align="center">
          <colgroup>
            <col width="75%">
            <col width="15%">
          </colgroup>
          <tr align="left">
            <td class="table_data" align="left"><b>CPC </b><i><b>G06F 16/2358</b></i> (2019.01)&#xa0;[<i><b>G06F 16/2282</b></i> (2019.01); <i><b>G06F 16/2365</b></i> (2019.01); <i><b>G06F 16/27</b></i> (2019.01); <i><b>H04L 9/0822</b></i> (2013.01)]</td>
            <td class="table_data" align="right"><b>20 Claims</b></td>
          </tr>
        </table>
        <center><img src="US11860673-20240102-D00000.gif" alt="OG exemplary drawing"></center>
        <table width="90%" border="0" rules="none" align="center">
          <colgroup>
            <col width="90%">
          </colgroup>
          <tr>
            <td class="table_data" align="center">&#xa0;</td>
          </tr>
          <tr>
            <td valign="top" class="para_text">
              <div class="claim_text_root">1. A distributed database system, comprising:<div class="claim_text">at least one processor; and</div>
                <div class="claim_text">a memory comprising executable instructions that, in response to execution by the at least one processor, cause the distributed database system to at least:<div class="claim_text">cause a plurality of nodes of a distributed database to store a replicated version of an encrypted table, the encrypted table accessible using a table encryption key generated using a master encryption key, wherein access to the master encryption key is based at least in part on authorization to access the master encryption key granted by a client of the distributed database;</div>
                  <div class="claim_text">cause a sweeper process to monitor status information associated with the master encryption key, wherein the sweeper process examines metadata of each encrypted table of a plurality of encrypted tables maintained by the distributed database to identify the plurality of encrypted tables and respective master encryption key status of encryption keys associated with the plurality of encrypted tables maintained by the distributed database, wherein the examination by the sweeper process is based at least in part on the metadata maintained by the distributed database system, wherein the metadata comprises information associated with each of the plurality of encrypted tables and is indicative of a change in a status of the master encryption key;</div>
                  <div class="claim_text">detect, using the sweeper process, the change in the status of the master encryption key used to generate the table encryption key; and</div>
                  <div class="claim_text">initiate a response to the change in the status of the master encryption key, wherein the response maintains access to the encrypted table for a threshold period of time after the change in the status of the master encryption key and indicates whether restoration of authorization to access the master encryption key has been granted by the client of the distributed database, wherein the metadata is updated based at least in part on the response.</div>
                </div>
              </div>
            </td>
          </tr>
        </table>
      </div>
    
  </body>
</html>