Patents by Inventor Hector Aguilar-Macias
Hector Aguilar-Macias has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Patent number: 10762191Abstract: An identity management system detects the occurrence of a trigger event, such as a time period expiration, or an action on the identity management system. The identity management system accordingly generates a new password for an account of a user on a third-party service and causes the account of the user on the third-party service to use the new password. The identity management system can also detect a manual user change of a password for a third-party service and cause configuration of client devices of the user to reflect the new password.Type: GrantFiled: November 26, 2018Date of Patent: September 1, 2020Assignee: Okta, Inc.Inventors: Hector Aguilar-Macias, Reman P. Child, Xin Gu, Jonathan R. Todd, Thomas M. Belote
-
Patent number: 10505980Abstract: An identity management system prevents users' credential information from being harvested by phishing attackers. The identity management system can installed as a plug in on users' devices. Destinations that solicit users' credential information are verified. For example, web addresses or registered names of websites that receive users' credential information can be verified against known web addresses or registered names to verify their authenticity. When verification of the authenticity of a destination fails, a user is alerted and submission of credential information needs to be confirmed.Type: GrantFiled: September 6, 2016Date of Patent: December 10, 2019Assignee: Okta, Inc.Inventors: Reman P. Child, Hector Aguilar-Macias
-
Publication number: 20190095609Abstract: An identity management system detects the occurrence of a trigger event, such as a time period expiration, or an action on the identity management system. The identity management system accordingly generates a new password for an account of a user on a third-party service and causes the account of the user on the third-party service to use the new password. The identity management system can also detect a manual user change of a password for a third-party service and cause configuration of client devices of the user to reflect the new password.Type: ApplicationFiled: November 26, 2018Publication date: March 28, 2019Inventors: Hector Aguilar-Macias, Reman P. Child, Xin Gu, Jonathan R. Todd, Thomas M. Belote
-
Patent number: 10169569Abstract: An identity management system detects the occurrence of a trigger event, such as a time period expiration, or an action on the identity management system. The identity management system accordingly generates a new password for an account of a user on a third-party service and causes the account of the user on the third-party service to use the new password. The identity management system can also detect a manual user change of a password for a third-party service and cause configuration of client devices of the user to reflect the new password.Type: GrantFiled: January 26, 2018Date of Patent: January 1, 2019Assignee: Okta, Inc.Inventors: Hector Aguilar-Macias, Reman P. Child, Xin Gu, Jonathan R. Todd, Thomas M. Belote
-
Patent number: 10097533Abstract: An identity management system provides single sign-on (SSO) services to clients, logging the clients into a variety of third-party services for which the clients have accounts. An SSO integration is stored for each of the third-party services, the SSO integration including information that allows the identity management system to automate the login for the corresponding third-party service, such as locations of the login pages, and/or identities of username and password fields. The identity management system uses different techniques in different embodiments to detect that a given SSO integration is broken (i.e., no longer permits login for its corresponding third-party service) and/or to repair the SSO integration.Type: GrantFiled: September 4, 2015Date of Patent: October 9, 2018Assignee: OKTA, INC.Inventors: Reman P. Child, Hassen Karaa, Xin Gu, Hector Aguilar-Macias, Andrew P. Drozdov
-
Publication number: 20180150631Abstract: An identity management system detects the occurrence of a trigger event, such as a time period expiration, or an action on the identity management system. The identity management system accordingly generates a new password for an account of a user on a third-party service and causes the account of the user on the third-party service to use the new password. The identity management system can also detect a manual user change of a password for a third-party service and cause configuration of client devices of the user to reflect the new password.Type: ApplicationFiled: January 26, 2018Publication date: May 31, 2018Inventors: Hector Aguilar-Macias, Reman P. Child, Xin Gu, Jonathan R. Todd, Thomas M. Belote
-
Patent number: 9916437Abstract: An identity management system detects the occurrence of a trigger event, such as a time period expiration, or an action on the identity management system. The identity management system accordingly generates a new password for an account of a user on a third-party service and causes the account of the user on the third-party service to use the new password. The identity management system can also detect a manual user change of a password for a third-party service and cause configuration of client devices of the user to reflect the new password.Type: GrantFiled: July 29, 2015Date of Patent: March 13, 2018Assignee: Okta, Inc.Inventors: Hector Aguilar-Macias, Reman P. Child, Xin Gu, Jonathan R. Todd, Thomas M. Belote
-
Patent number: 9852286Abstract: An identity management system detects the occurrence of a trigger event, such as a time period expiration, or an action on the identity management system. The identity management system accordingly generates a new password for an account of a user on a third-party service and causes the account of the user on the third-party service to use the new password. The identity management system may also a mobile device management system to configure a client of the user with the new password.Type: GrantFiled: May 27, 2015Date of Patent: December 26, 2017Assignee: Okta, Inc.Inventors: Hector Aguilar-Macias, Reman P. Child, Xin Gu, Jonathan R. Todd, Thomas M. Belote
-
Publication number: 20170078326Abstract: An identity management system prevents users' credential information from being harvested by phishing attackers. The identity management system can installed as a plug in on users' devices. Destinations that solicit users' credential information are verified. For example, web addresses or registered names of websites that receive users' credential information can be verified against known web addresses or registered names to verify their authenticity. When verification of the authenticity of a destination fails, a user is alerted and submission of credential information needs to be confirmed.Type: ApplicationFiled: September 6, 2016Publication date: March 16, 2017Inventors: Reman P. Child, Hector Aguilar-Macias
-
Publication number: 20160080360Abstract: An identity management system provides single sign-on (SSO) services to clients, logging the clients into a variety of third-party services for which the clients have accounts. An SSO integration is stored for each of the third-party services, the SSO integration including information that allows the identity management system to automate the login for the corresponding third-party service, such as locations of the login pages, and/or identities of username and password fields. The identity management system uses different techniques in different embodiments to detect that a given SSO integration is broken (i.e., no longer permits login for its corresponding third-party service) and/or to repair the SSO integration.Type: ApplicationFiled: September 4, 2015Publication date: March 17, 2016Inventors: Reman P. Child, Hassen Karaa, Xin Gu, Hector Aguilar-Macias, Andrew P. Drozdov
-
Publication number: 20160034684Abstract: An identity management system detects the occurrence of a trigger event, such as a time period expiration, or an action on the identity management system. The identity management system accordingly generates a new password for an account of a user on a third-party service and causes the account of the user on the third-party service to use the new password. The identity management system can also detect a manual user change of a password for a third-party service and cause configuration of client devices of the user to reflect the new password.Type: ApplicationFiled: July 29, 2015Publication date: February 4, 2016Inventors: Hector Aguilar-Macias, Reman P. Child, Xin Gu, Jonathan R. Todd, Thomas M. Belote
-
Publication number: 20160036806Abstract: An identity management system detects the occurrence of a trigger event, such as a time period expiration, or an action on the identity management system. The identity management system accordingly generates a new password for an account of a user on a third-party service and causes the account of the user on the third-party service to use the new password. The identity management system may also a mobile device management system to configure a client of the user with the new password.Type: ApplicationFiled: May 27, 2015Publication date: February 4, 2016Inventors: Hector Aguilar-Macias, Reman P. Child, Xin Gu, Jonathan R. Todd, Thomas M. Belote
-
Publication number: 20140244650Abstract: A distributed event processing method includes providing a plurality of connectors. Each provided connector is configured to acquire event data from an assigned data source, partition acquired event data into clusters, and divide each cluster into chunks. The method also includes collecting the chunks from the plurality of connectors and storing the chunks to a data file that can be queried.Type: ApplicationFiled: December 20, 2011Publication date: August 28, 2014Inventors: Yizheng Zhou, Wei Huang, Michael Scott Weston, Hector Aguilar-Macias, David Earl Wiser
-
Patent number: 8613083Abstract: In one embodiment, the present invention provides for receiving security events from a network device by a distributed software agent of a network security system, determining a priority of each received security event, and storing the security events in a plurality of prioritized event buffers based on the determined priorities for a period of time determined by a timer. Upon expiration of the timer, a batch of security events for transport to a security event manager of the network security system can be created by including security events in the batch in order of priority until the batch is full.Type: GrantFiled: April 25, 2007Date of Patent: December 17, 2013Assignee: Hewlett-Packard Development Company, L.P.Inventors: Hugh S. Njemanze, Hector Aguilar-Macias, Christian Friedrich Beedgen
-
Patent number: 8577829Abstract: An “unstructured event parser” analyzes an event that is in unstructured form and generates an event that is in structured form. A mapping phase determines, for a given event token, possible fields of the structured event schema to which the token could be mapped and the probabilities that the token should be mapped to those fields. Particular tokens are then mapped to particular fields of the structured event schema. By using the Naïve Bayesian probability model, a “probabilistic mapper” determines, for a particular token and a particular field, the probability that that token maps to that field. The probabilistic mapper can also be used in a “regular expression creator” that generates a regex that matches an unstructured event and a “parameter file creator” that helps a user create a parameter file for use with a parameterized normalized event generator to generate a normalized event based on an unstructured event.Type: GrantFiled: September 13, 2010Date of Patent: November 5, 2013Assignee: Hewlett-Packard Development Company, L.P.Inventors: Rajiv Subrahmanyam, Hector Aguilar-Macias
-
Patent number: 8230507Abstract: The present invention provides for the receipt of a request to modify a software agent's configuration at a server-based manager. A determination of the modifications to the software agent is made at the server-based manager. The requested modifications are then delivered to the software agent. The software agent interprets the requested modifications and implements them.Type: GrantFiled: June 1, 2010Date of Patent: July 24, 2012Assignee: Hewlett-Packard Development Company, L.P.Inventors: Hugh S. Njemanze, Hector Aguilar-Macias, Qiang Zeng, Christian Friedrich Beedgen
-
Patent number: 8099782Abstract: A network system can have a plurality of distributed software agents configured to collect events from network devices. In one embodiment, the agents are configured to aggregate the events. In one embodiment of the present invention, an agent includes a device interface to receive an event from a network device, a plurality of aggregation profiles, and an agent aggregate module to select one of the plurality of aggregation profiles, and increment an event count of an aggregate event representing the received event using the selected aggregation profile.Type: GrantFiled: November 17, 2009Date of Patent: January 17, 2012Assignee: Hewlett-Packard Development Company, L.P.Inventors: Debabrata Dash, Hector Aguilar-Macias
-
Publication number: 20110066585Abstract: An “unstructured event parser” analyzes an event that is in unstructured form and generates an event that is in structured form. A mapping phase determines, for a given event token, possible fields of the structured event schema to which the token could be mapped and the probabilities that the token should be mapped to those fields. Particular tokens are then mapped to particular fields of the structured event schema. By using the Naïve Bayesian probability model, a “probabilistic mapper” determines, for a particular token and a particular field, the probability that that token maps to that field. The probabilistic mapper can also be used in a “regular expression creator” that generates a regex that matches an unstructured event and a “parameter file creator” that helps a user create a parameter file for use with a parameterized normalized event generator to generate a normalized event based on an unstructured event.Type: ApplicationFiled: September 13, 2010Publication date: March 17, 2011Applicant: ARCSIGHT, INC.Inventors: Rajiv Subrahmanyam, Hector Aguilar-Macias
-
Publication number: 20100306285Abstract: A system for generating a parser and using the parser to parse a target file includes a target file description, an output format description, a Parser generator, a Parser, a target file, and a result object. The target file description and the output format description are included in one or more “properties files”, which are text files that include one or more name/value pairs (“properties”). The target file description and the output format description are input into the Parser generator, which outputs the Parser. The target file is input into the Parser, which outputs the result object. The target file description specifies one or more parsers and/or tokenizers that can be used to parse the target file. The parsers and/or tokenizers specified by the target file description are part of the generated Parser. These parsers and/or tokenizers make the Parser more flexible, which enables the Parser to parse semi-structured data.Type: ApplicationFiled: May 27, 2010Publication date: December 2, 2010Applicant: ARCSIGHT, INC.Inventors: Dhaval M. Shah, William M. Alexander, Hector Aguilar-Macias, Rubin Jin
-
Patent number: 7844999Abstract: Device discovery can be made efficient using certain embodiments of the present invention. In one embodiment, the present invention includes accessing a message in a message log, wherein the message log associates a host identifier with the message, the host identifier being an identifier of a host that sent the message to the message log. Then a list of parsers associated with the host identifier associated with the message can be accessed and parsing the message using parsers from the list of parsers associated with the host identifier can be attempted. If the parsing is unsuccessful, a device type of an originator of the message can be discovered, and a parser associated with the discovered device type can be added to the list of parsers associated with the host identifier.Type: GrantFiled: March 1, 2005Date of Patent: November 30, 2010Assignee: ArcSight, Inc.Inventors: Hector Aguilar-Macias, Rajiv Subrahmanyam