Patents by Inventor Amy H. Kang
Amy H. Kang has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Publication number: 20230379161Abstract: Techniques for using signed nonces to secure cloud shells are provided. The techniques include receiving, by a session manager service, a request to connect a user device to a secure connection to a secure shell instance. The session manager service may authorize the user device to access the secure shell instance and may configure the secure shell instance, being described by a shell identifier of the secure shell instance. The techniques also include generating, by the session manager service, a nonce token and providing the shell identifier, and a router address of the secure shell router to the user device. The techniques also include generating, by the session manager service, a signed nonce token using the nonce token; and providing the signed nonce token and the shell identifier to a user device.Type: ApplicationFiled: August 1, 2023Publication date: November 23, 2023Applicant: Oracle International CorporationInventors: Christopher S. Kasso, Peter Grant Gavares, Linda K. Schneider, Amy H. Kang, Joseph John Snyder
-
Patent number: 11764961Abstract: Techniques for using signed nonces to secure cloud shells are provided. The techniques include receiving, by a session manager service, a request to connect a user device to a secure connection to a secure shell instance. The session manager service may authorize the user device to access the secure shell instance and may configure the secure shell instance, being described by a shell identifier of the secure shell instance. The techniques also include generating, by the session manager service, a nonce token and providing the shell identifier, and a router address of the secure shell router to the user device. The techniques also include generating, by the session manager service, a signed nonce token using the nonce token; and providing the signed nonce token and the shell identifier to a user device.Type: GrantFiled: May 19, 2022Date of Patent: September 19, 2023Assignee: Oracle International CorporationInventors: Christopher S. Kasso, Peter Grant Gavares, Linda K. Schneider, Amy H. Kang, Joseph John Snyder
-
Publication number: 20230275783Abstract: Techniques for utilizing multiple network interfaces for a cloud shell are provided. The techniques include receiving, by a computer system, a command to execute an operation by the computer system, the command being received from a router via a primary virtual network interface card (vNIC), the primary vNIC being configured to permit incoming traffic. The computer system may execute the operation, generating an output of the operation. The techniques also include transmitting, by the computer system, a message comprising the output of the operation to a shell subnet via a secondary vNIC, the secondary vNIC being configured to permit outgoing traffic from the computer system to the shell subnet.Type: ApplicationFiled: May 8, 2023Publication date: August 31, 2023Applicant: Oracle International CorporationInventors: Christopher S. Kasso, Peter G. Gavares, John Wells, Amy H. Kang, Joseph John Snyder
-
Patent number: 11711241Abstract: Techniques for utilizing multiple network interfaces for a cloud shell are provided. The techniques include receiving, by a computer system, a command to execute an operation by the computer system, the command being received from a router via a primary virtual network interface card (vNIC). The computer system may execute the operation, generating an output of the operation. The techniques also include transmitting, by the computer system, a message comprising the output of the operation to a shell subnet via a secondary vNIC, the secondary vNIC being configured for unidirectional transmission from the computer system to the shell subnet. The shell subnet may be configured to transmit the output of the operation to an external network via a network gateway.Type: GrantFiled: February 10, 2022Date of Patent: July 25, 2023Assignee: Oracle International CorporationInventors: Christopher S. Kasso, Peter G. Gavares, John Wells, Amy H. Kang, Joseph John Snyder
-
Publication number: 20220278842Abstract: Techniques for using signed nonces to secure cloud shells are provided. The techniques include receiving, by a session manager service, a request to connect a user device to a secure connection to a secure shell instance. The session manager service may authorize the user device to access the secure shell instance and may configure the secure shell instance, being described by a shell identifier of the secure shell instance. The techniques also include generating, by the session manager service, a nonce token and providing the shell identifier, and a router address of the secure shell router to the user device. The techniques also include generating, by the session manager service, a signed nonce token using the nonce token; and providing the signed nonce token and the shell identifier to a user device.Type: ApplicationFiled: May 19, 2022Publication date: September 1, 2022Applicant: Oracle International CorporationInventors: Christopher S. Kasso, Peter Grant Gavares, Linda K. Schneider, Amy H. Kang, Joseph John Snyder
-
Patent number: 11374792Abstract: Techniques for utilising multiple network interfaces for a cloud shell are provided. The techniques include receiving, by a computer system, a command to execute an operation by the computer system, the command being received from a router via a primary virtual network interface card (vNIC). The computer system may execute the operation, generating an output of the operation. The techniques also include transmitting, by the computer system, a message comprising the output of the operation to a shell subnet via a secondary vNIC, the secondary vNIC being configured for unidirectional transmission from the computer system to the shell subnet. The shell subnet may be configured to transmit the output of the operation to an external network via a network gateway.Type: GrantFiled: August 14, 2020Date of Patent: June 28, 2022Assignee: Oracle International CorporationInventors: Christopher S. Kasso, Peter Grant Gavares, John Wells, Amy H. Kang, Joseph J. Snyder
-
Publication number: 20220200819Abstract: Techniques for utilizing multiple network interfaces for a cloud shell are provided. The techniques include receiving, by a computer system, a command to execute an operation by the computer system, the command being received from a router via a primary virtual network interface card (vNIC). The computer system may execute the operation, generating an output of the operation. The techniques also include transmitting, by the computer system, a message comprising the output of the operation to a shell subnet via a secondary vNIC, the secondary vNIC being configured for unidirectional transmission from the computer system to the shell subnet. The shell subnet may be configured to transmit the output of the operation to an external network via a network gateway.Type: ApplicationFiled: February 10, 2022Publication date: June 23, 2022Applicant: Oracle International CorporationInventors: Christopher S. Kasso, Peter G. Gavares, John Wells, Amy H. Kang, Joseph John Snyder
-
Patent number: 11368306Abstract: Techniques for using signed nonces to secure cloud shells are provided. The techniques include receiving, by a session manager service, a request to connect a user device to a secure connection to a secure shell instance. The session manager service may authorize the user device to access the secure shell instance and may configure the secure shell instance, being described by a shell identifier of the secure shell instance. The techniques also include generating, by the session manager service, a nonce token and providing the shell identifier, and a router address of the secure shell router to the user device. The techniques also include generating, by the session manager service, a signed nonce token using the nonce token; and providing the signed nonce token and the shell identifier to a user device.Type: GrantFiled: August 14, 2020Date of Patent: June 21, 2022Assignee: Oracle International CorporationInventors: Christopher S. Kasso, Peter Grant Gavares, Linda K. Schneider, Amy H. Kang, Joseph John Snyder
-
Publication number: 20220052878Abstract: Techniques for utilising multiple network interfaces for a cloud shell are provided. The techniques include receiving, by a computer system, a command to execute an operation by the computer system, the command being received from a router via a primary virtual network interface card (vNIC). The computer system may execute the operation, generating an output of the operation. The techniques also include transmitting, by the computer system, a message comprising the output of the operation to a shell subnet via a secondary vNIC, the second ary vNIC being configured for unidirectional transmission from the computer system to the shell subnet. The shell subnet may be configured to transmit the output of the operation to an external network via a network gateway.Type: ApplicationFiled: August 14, 2020Publication date: February 17, 2022Applicant: Oracle International CorporationInventors: Christopher S. Kasso, Peter Grant Gavares, John Wells, Amy H. Kang, Joseph J. Snyder
-
Publication number: 20220052849Abstract: Techniques for using signed nonces to secure cloud shells are provided. The techniques include receiving, by a session manager service, a request to connect a user device to a secure connection to a secure shell instance. The session manager service may authorize the user device to access the secure shell instance and may configure the secure shell instance, being described by a shell identifier of the secure shell instance. The techniques also include generating, by the session manager service, a nonce token and providing the shell identifier, and a router address of the secure shell router to the user device. The techniques also include generating, by the session manager service, a signed nonce token using the nonce token; and providing the signed nonce token and the shell identifier to a user device.Type: ApplicationFiled: August 14, 2020Publication date: February 17, 2022Applicant: Oracle International CorporationInventors: Christopher S. Kasso, Peter Grant Gavares, Linda K. Schneider, Amy H. Kang, Joseph John Snyder
-
Patent number: 9197546Abstract: Described herein is a system and method for providing a messaging cluster with hybrid partitions. In accordance with an embodiment, a computer environment or messaging system includes a cluster of message brokers, which supports a hybrid of one or more fixed type partitions and/or on-demand type partitions. A message producer can be associated with a configuration that indicates a type of partition to be used for connection with that message producer. The cluster of message brokers assign to that connection a partition of the type indicated by the connection. Upon a load-balancing or failover of a message broker having active connections to message producers, those connections having an indication of fixed type partition are assigned to the same partition at a failed-over message broker, while those connections having an indication of on-demand type partition can be assigned to any on-demand partition at the failed-over message broker.Type: GrantFiled: August 6, 2013Date of Patent: November 24, 2015Assignee: ORACLE INTERNATIONAL CORPORATIONInventors: Amy H. Kang, Edward J. Bratt
-
Patent number: 9110745Abstract: Systems and methods are provided, for use in a messaging subsystem, which supports flow control of messages between producers and consumers. A system can include at least one producer that is operable to send messages in a batch to one or more consumers via at least one destination; and one or more consumers that are operable to process messages received from the at least one producer via the at least one destination. The system can also include a message broker which includes the at least one destination and which manages communications between the at least one producer and the one or more consumers. The message broker includes a flow controller that is operable to monitor a producing rate and a consuming rate, and dynamically adjust a batch size of the batch at the at least one producer based on the producing rate and the consuming rate to communicate the messages more efficiently.Type: GrantFiled: June 17, 2011Date of Patent: August 18, 2015Assignee: ORACLE INTERNATIONAL CORPORATIONInventors: Amy H. Kang, Edward J. Bratt
-
Publication number: 20150046541Abstract: Described herein is a system and method for providing a messaging cluster with hybrid partitions. In accordance with an embodiment, a computer environment or messaging system includes a cluster of message brokers, which supports a hybrid of one or more fixed type partitions and/or on-demand type partitions. A message producer can be associated with a configuration that indicates a type of partition to be used for connection with that message producer. The cluster of message brokers assign to that connection a partition of the type indicated by the connection. Upon a load-balancing or failover of a message broker having active connections to message producers, those connections having an indication of fixed type partition are assigned to the same partition at a failed-over message broker, while those connections having an indication of on-demand type partition can be assigned to any on-demand partition at the failed-over message broker.Type: ApplicationFiled: August 6, 2013Publication date: February 12, 2015Applicant: Oracle International CorporationInventors: Amy H. Kang, Edward J. Bratt
-
Publication number: 20120324000Abstract: Systems and methods are provided, for use in a messaging subsystem, which supports flow control of messages between producers and consumers. A system can include at least one producer that is operable to send messages in a batch to one or more consumers via at least one destination; and one or more consumers that are operable to process messages received from the at least one producer via the at least one destination. The system can also include a message broker which includes the at least one destination and which manages communications between the at least one producer and the one or more consumers. The message broker includes a flow controller that is operable to monitor a producing rate and a consuming rate, and dynamically adjust a batch size of the batch at the at least one producer based on the producing rate and the consuming rate to communicate the messages more efficiently.Type: ApplicationFiled: June 17, 2011Publication date: December 20, 2012Applicant: ORACLE INTERNATIONAL CORPORATIONInventors: Amy H. Kang, Edward J. Bratt
-
Patent number: 7685573Abstract: For a flexible error trace mechanism, embodiments may be implemented for C/C++ interface libraries, or in programs written in C/C++ or other programming languages. In one embodiment, when an error occurs in a function call, a trace element may be recorded that may include the source file name, function name, line number and other information that may be used to identify the error. In one embodiment, the library function may call a plurality of library functions in a function call stack. For each of the plurality of library functions, if the library function generates an error, an error trace element may be added to the error trace. After completion of the library function, the program may obtain the error trace for the library function. The error(s), if any, may be debugged using the information in the obtained error trace.Type: GrantFiled: August 28, 2003Date of Patent: March 23, 2010Assignee: Sun Microsystems, Inc.Inventors: Amy H. Kang, Joseph F. Di Pol, Linda K. Schneider, Christopher S. Kasso
-
Patent number: 6954792Abstract: A system and method for providing pluggable authentication and access control in computer systems and services are described. The authentication and access control process may be categorized into three components: an authentication protocol, a user repository and an access control model. In one embodiment, the authentication and access control mechanism may be implemented as three pluggable modules: an authentication protocol handler module for the authenticator side, an authentication protocol handler for the side to be authenticated, and an access control context module on the authenticator side. The pluggable modules may be exchangeable to support a variety of authentication types, user repositories, and access control models. The authentication protocol handlers provide symmetrical methods to handle requests and responses in the authentication process that reflect the symmetrical nature of the authentication process.Type: GrantFiled: June 29, 2001Date of Patent: October 11, 2005Assignee: Sun Microsystems, Inc.Inventors: Amy H. Kang, George Tharakan, Joseph F. Di Pol, Christopher S. Kasso
-
Publication number: 20030005117Abstract: A system and method for providing pluggable authentication and access control in computer systems and services are described. The authentication and access control process may be categorized into three components: an authentication protocol, a user repository and an access control model. In one embodiment, the authentication and access control mechanism may be implemented as three pluggable modules: an authentication protocol handler module for the authenticator side, an authentication protocol handler for the side to be authenticated, and an access control context module on the authenticator side. The pluggable modules may be exchangeable to support a variety of authentication types, user repositories, and access control models. The authentication protocol handlers provide symmetrical methods to handle requests and responses in the authentication process that reflect the symmetrical nature of the authentication process.Type: ApplicationFiled: June 29, 2001Publication date: January 2, 2003Inventors: Amy H. Kang, George Tharakan, Joseph F. Di Pol, Christopher S. Kasso