Patents by Inventor Abraham Nathan
Abraham Nathan has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Publication number: 20170126624Abstract: Two-phase filtering for a firewall is disclosed. In the first, general phase, a request is filtered to verify one or more of: that the request is pursuant to a supported protocol, that a command of the request is allowed, that the length of the request does not exceed the allowed maximum for the command, and that characters of the request are of an allowable type. Upon first-phase verification, a second phase is invoked that is particular to the protocol of the request. In the second, specialized phase, the request is filtered to verify one or more of the source, the destination, and the content of the request. Upon second-phase verification, the request is allowed to pass. If either first- or second-phase verification fails, then the request is denied.Type: ApplicationFiled: January 12, 2017Publication date: May 4, 2017Inventors: Neta Amit, Eran Harel, Abraham Nathan, Nevet Basker
-
Patent number: 9596214Abstract: Two-phase filtering for a firewall is disclosed. In the first, general phase, a request is filtered to verify one or more of: that the request is pursuant to a supported protocol, that a command of the request is allowed, that the length of the request does not exceed the allowed maximum for the command, and that characters of the request are of an allowable type. Upon first-phase verification, a second phase is invoked that is particular to the protocol of the request. In the second, specialized phase, the request is filtered to verify one or more of the source, the destination, and the content of the request. Upon second-phase verification, the request is allowed to pass. If either first- or second-phase verification fails, then the request is denied.Type: GrantFiled: April 7, 2016Date of Patent: March 14, 2017Assignee: MICROSOFT TECHNOLOGY LICENSING, LLCInventors: Neta Amit, Eran Harel, Abraham Nathan, Nevet Basker
-
Publication number: 20160301665Abstract: Two-phase filtering for a firewall is disclosed. In the first, general phase, a request is filtered to verify one or more of: that the request is pursuant to a supported protocol, that a command of the request is allowed, that the length of the request does not exceed the allowed maximum for the command, and that characters of the request are of an allowable type. Upon first-phase verification, a second phase is invoked that is particular to the protocol of the request. In the second, specialized phase, the request is filtered to verify one or more of the source, the destination, and the content of the request. Upon second-phase verification, the request is allowed to pass. If either first- or second-phase verification fails, then the request is denied.Type: ApplicationFiled: April 7, 2016Publication date: October 13, 2016Inventors: Neta Amit, Eran Harel, Abraham Nathan, Nevet Basker
-
Patent number: 9319383Abstract: Two-phase filtering for a firewall is disclosed. In the first, general phase, a request is filtered to verify one or more of: that the request is pursuant to a supported protocol, that a command of the request is allowed, that the length of the request does not exceed the allowed maximum for the command, and that characters of the request are of an allowable type. Upon first-phase verification, a second phase is invoked that is particular to the protocol of the request. In the second, specialized phase, the request is filtered to verify one or more of the source, the destination, and the content of the request. Upon second-phase verification, the request is allowed to pass. If either first- or second-phase verification fails, then the request is denied.Type: GrantFiled: May 9, 2005Date of Patent: April 19, 2016Assignee: MICROSOFT TECHNOLOGY LICENSING, LLCInventors: Neta Amit, Eran Harel, Abraham Nathan, Nevet Basker
-
Patent number: 7398308Abstract: A distributed policy model for access control is disclosed. In an enterprise-only mode, each node within a networking environment has its resource access governed by the same enterprise-wide policy. The enterprise-wide policy is set through creation of one or more enterprise policy objects. In an integrated mode, nodes are organized in a number of arrays. Each array has an array-wide policy set through creation of an array policy object. Each array-wide policy initially inherits the enterprise-wide policy. Additional resource access and protocol use restrictions can be added to the individual array-wide policies. In an array-only mode, each array has an array-wide policy also set through creation of an array policy object, but the policy does not necessarily initially inherit an enterprise-wide policy. In a stand-alone mode, a single server has its own policy.Type: GrantFiled: January 19, 2006Date of Patent: July 8, 2008Assignee: Microsoft CorporationInventors: Guy Friedel, Ariel Katz, Abraham Nathan, Yaron Shamir
-
Patent number: 7266604Abstract: Proxy network address translation (PNAT) is disclosed, which combines proxy server capability with network address translation (NAT) capability. At a NAT component, address translation is performed at a packet level of a stream of packets originating from a client and destined for a server. The address translation redirects the packets to a proxy component, and masks the source of the packets. At the proxy component, filtering is performed at a stream level of the stream of packets. The proxy component transmits the packets to the server. A specific installed component is not required at clients for access through the PNAT. The PNAT retains the advantages of a proxy server, while retaining for the component-less nature of access of NAT.Type: GrantFiled: March 31, 2000Date of Patent: September 4, 2007Assignee: Microsoft CorporationInventors: Abraham Nathan, Vinod V. Valloppillil
-
Publication number: 20060168257Abstract: A distributed policy model for access control is disclosed. In an enterprise-only mode, each node within a networking environment has its resource access governed by the same enterprise-wide policy. The enterprise-wide policy is set through creation of one or more enterprise policy objects. In an integrated mode, nodes are organized in a number of arrays. Each array has an array-wide policy set through creation of an array policy object. Each array-wide policy initially inherits the enterprise-wide policy. Additional resource access and protocol use restrictions can be added to the individual array-wide policies. In an array-only mode, each array has an array-wide policy also set through creation of an array policy object, but the policy does not necessarily initially inherit an enterprise-wide policy. In a stand-alone mode, a single server has its own policy.Type: ApplicationFiled: January 19, 2006Publication date: July 27, 2006Applicant: Microsoft CorporationInventors: Guy Friedel, Ariel Katz, Abraham Nathan, Yaron Shamir
-
Patent number: 7013332Abstract: A distributed policy model for access control is disclosed. In an enterprise-only mode, each node within a networking environment has its resource access governed by the same enterprise-wide policy. The enterprise-wide policy is set through creation of one or more enterprise policy objects. In an integrated mode, nodes are organized in a number of arrays. Each array has an array-wide policy set through creation of an array policy object. Each array-wide policy initially inherits the enterprise-wide policy. Additional resource access and protocol use restrictions can be added to the individual array-wide policies. In an array-only mode, each array has an array-wide policy also set through creation of an array policy object, but the policy does not necessarily initially inherit an enterprise-wide policy. In a stand-alone mode, a single server has its own policy.Type: GrantFiled: January 9, 2001Date of Patent: March 14, 2006Assignee: Microsoft CorporationInventors: Guy Friedel, Ariel Katz, Yaron Shamir, Abraham Nathan
-
Publication number: 20050210294Abstract: Two-phase filtering for a firewall is disclosed. In the first, general phase, a request is filtered to verify one or more of: that the request is pursuant to a supported protocol, that a command of the request is allowed, that the length of the request does not exceed the allowed maximum for the command, and that characters of the request are of an allowable type. Upon first-phase verification, a second phase is invoked that is particular to the protocol of the request. In the second, specialized phase, the request is filtered to verify one or more of the source, the destination, and the content of the request. Upon second-phase verification, the request is allowed to pass. If either first- or second-phase verification fails, then the request is denied.Type: ApplicationFiled: May 9, 2005Publication date: September 22, 2005Applicant: Microsoft CorporationInventors: Neta Amit, Eran Harel, Abraham Nathan, Nevet Basker
-
Patent number: 6925572Abstract: Two-phase filtering for a firewall is disclosed. In the first, general phase, a request is filtered to verify one or more of: that the request is pursuant to a supported protocol, that a command of the request is allowed, that the length of the request does not exceed the allowed maximum for the command, and that characters of the request are of an allowable type. Upon first-phase verification, a second phase is invoked that is particular to the protocol of the request. In the second, specialized phase, the request is filtered to verify one or more of the source, the destination, and the content of the request. Upon second-phase verification, the request is allowed to pass. If either first-or second-phase verification fails, then the request is denied.Type: GrantFiled: February 28, 2000Date of Patent: August 2, 2005Assignee: Microsoft CorporationInventors: Neta Amit, Eran Harel, Abraham Nathan, Nevet Basker
-
Publication number: 20020138631Abstract: A distributed policy model for access control is disclosed. In an enterprise-only mode, each node within a networking environment has its resource access governed by the same enterprise-wide policy. The enterprise-wide policy is set through creation of one or more enterprise policy objects. In an integrated mode, nodes are organized in a number of arrays. Each array has an array-wide policy set through creation of an array policy object. Each array-wide policy initially inherits the enterprise-wide policy. Additional resource access and protocol use restrictions can be added to the individual array-wide policies. In an array-only mode, each array has an array-wide policy also set through creation of an array policy object, but the policy does not necessarily initially inherit an enterprise-wide policy. In a stand-alone mode, a single server has its own policy.Type: ApplicationFiled: January 9, 2001Publication date: September 26, 2002Inventors: Guy Friedel, Ariel Katz, Yaron Shamir, Abraham Nathan
-
Patent number: 4034008Abstract: A novel catalyst comprising the elements Mo, Bi, Fe, Si, Ni and/or Co and Ru and/or Sb, and, optionally Cl, and an oxidation process, is provided for oxidizing alpha, beta unsaturated monoolefins in the vapor phase with molecular oxygen to produce the corresponding alpha-beta unsaturated carboxylic acid and alpha-beta unsaturated aldehyde. The catalyst can also be used in corresponding ammoxidation reactions.Type: GrantFiled: August 25, 1975Date of Patent: July 5, 1977Assignee: Union Carbide CorporationInventors: Abraham Nathan Kurtz, Erlind Magnus Thorsteinson, Harry Joe Decker