	US 11,675,923 B2
	Secure in-memory database in container
Long Du, Xi'an (CN)
Assigned to SAP SE, Walldorf (DE)
Filed by SAP SE, Walldorf (DE)
Filed on Nov. 23, 2021, as Appl. No. 17/534,122.
Application 17/534,122 is a continuation of application No. 16/810,646, filed on Mar. 5, 2020, granted, now 11,200,335.
Prior Publication US 2022/0083681 A1, Mar. 17, 2022
This patent is subject to a terminal disclaimer.
Int. Cl. G06F 21/62 (2013.01); G06F 21/60 (2013.01); G06F 21/12 (2013.01); G06F 16/17 (2019.01); G06F 12/14 (2006.01)

CPC G06F 21/6218 (2013.01) [G06F 12/1425 (2013.01); G06F 16/1734 (2019.01); G06F 21/121 (2013.01); G06F 21/604 (2013.01); G06F 21/62 (2013.01); G06F 21/6281 (2013.01)]

20 Claims

1. A system comprising:

at least one hardware processor; and

a computer-readable medium storing instructions that, when executed by the at least one hardware processor, cause the at least one hardware processor to perform operations comprising:

storing an in-memory database management application inside of an enclave inside of a first container in a container-based cloud service, wherein the enclave utilizes central processing unit (CPU)-specific software instructions to shield data from software outside the enclave;

storing an instance of an in-memory database inside of a second container but outside of an enclave inside the second container;

storing data from the in-memory database inside the enclave inside the second container;

receiving, from one or more clients, a command; and

passing the command to the application stored inside the enclave in the first container, causing the in-memory database management application to issue a command to access the in-memory database in the second container.