Patents by Inventor J. Drozd
J. Drozd has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Patent number: 10659495Abstract: In one example, a method for managing user access is performed by or at the direction of an application, and includes receiving a token from an authentication service, and the token includes an application role and associated privilege mask. An authentication request is then received from a sender seeking access to an application. Information in the authentication request is compared with the token, and the authentication request is approved when the information in the authentication request matches the token. Alternatively, access to the application is denied when the information in the authentication request does not match the token.Type: GrantFiled: July 21, 2016Date of Patent: May 19, 2020Assignee: EMC IP HOLDING COMPANY LLCInventors: Michael G. Roche, Michal J. Drozd
-
Publication number: 20200153870Abstract: In one example, a method for managing user access to data contained in a computing system, includes receiving a token from an authentication service, wherein the token includes an application role and associated privilege mask; receiving an authentication request from an entity seeking access to an application; comparing information in the authentication request with the token; approving the authentication request when the information in the authentication request matches the token, and granting access to the application when the authentication request has been approved, and denying access to the application when the information in the authentication request does not match the token. The receiving, comparing, approving, granting, and denying processes are performed by the application to which the entity is seeking access, and wherein when the entity, or a different entity, seeks access to another application, user access to the another application is controlled by the another application.Type: ApplicationFiled: January 15, 2020Publication date: May 14, 2020Inventors: Michael G. Roche, Michal J. Drozd
-
Patent number: 10057246Abstract: A first request is received to execute a batch of a plurality of tasks from a user via a command-line interface (CLI). A predetermined storage location is accessed to determine whether there is an access token associated with the user. If not, the user is prompted via the CLI interface for login credentials. The login credentials are transmitted to an authentication and authorization (AUTH) request to a remote AUTH server to allow the AUTH server to authenticate and authorize the user. An access token associated with the user is received from the AUTH server containing authorization information of the user for accessing resources of one or more cloud servers. The access token is stored in the predetermined storage location. One or more of the cloud servers are accessed using the access token to perform the tasks of the batch without having to log in multiple times.Type: GrantFiled: August 31, 2015Date of Patent: August 21, 2018Assignee: EMC IP HOLDING COMPANY LLCInventors: Michal J. Drozd, Michael G. Roche, Aliaksandr Shtop
-
Patent number: 10044723Abstract: A user is authenticated based on user credentials obtained from a request in response to the request received from a client device. A plurality of tenants is identified in which the user is a member and, for each of the tenants associated with the user, one or more roles of the user are determined within the tenant. For each of the one or more roles, one or more privileges the user is entitled within a capacity of the role are determined. An authorization token is generated based on information identifying the tenants associated with the user, one or more roles of the user within each tenant, and one or more privileges associated with each role. The authorization token is transmitted to the client device to allow the client device to determine whether the user is authenticated and allowed to access the resource of a particular tenant.Type: GrantFiled: June 30, 2015Date of Patent: August 7, 2018Assignee: EMC IP HOLDING COMPANY LLCInventors: Ilia Fischer, Aliaksandr Shtop, Michal J. Drozd, Vitaly Morozov, Michael G. Roche
-
Patent number: 10009337Abstract: A first request is received from a first user to revoke an access right of a second user of a first tenant for accessing data of a second tenant, where the first tenant is a parent tenant of the second tenant. In one embodiment, in response to the first request, a first role of the first user within the second tenant and a second role of the first user within the first tenant are determined. A first and second access privileges of the first role and second role of the first user, respectively, are determined to allow the first user to revoke the access right to the second tenant. In response to the first user having a revoke privilege in the first and second tenant, the first user is allowed to remove the second tenant from the first tenant.Type: GrantFiled: June 30, 2015Date of Patent: June 26, 2018Assignee: EMC IP Holding Company LLCInventors: Ilia Fischer, Michal J. Drozd, Aliaksandr Shtop, Vitaly Morozov, Michael G. Roche
-
Patent number: 9992186Abstract: In response to a request received from a client device, the user is authenticated based on user credentials extracted from the request. Upon having successfully authenticated the user, tenants and one or more roles of each of the tenants associated with the user are identified. In one embodiment, an authorization token having information identifying the plurality of tenants and their respective one or more roles of the user is generated. The information of each of the tenants and its respective roles are encrypted with a specific key corresponding to the tenant. The authorization token containing the encrypted tenants and the roles of the user is transmitted to the client device to allow the client device to determine whether the user is allowed to access a requested resource based on the authorization token.Type: GrantFiled: June 30, 2015Date of Patent: June 5, 2018Assignee: EMC IP Holding Company LLCInventors: Michal J. Drozd, Aliaksandr Shtop, Ilia Fischer, Vitaly Morozov, Michael G. Roche
-
Patent number: 9774586Abstract: In response to a request received from a client device to authorize a user for accessing a resource associated with a tenant, user roles of the user within the tenant are determined. For each of the user roles, user privileges the user is entitled within a capacity of the user role are determined based on static access control settings associated with the user. A tenant authorization profile associated with the tenant is accessed to determine tenant roles and tenant privileges for each tenant role. For each of the user roles that matches at least one of the tenant roles, at least one user privilege is modified based on corresponding tenant privileges of the matched tenant role. A token is generated based on the user roles and the modified user privileges and transmitted to the client device to determine whether the user is allowed to access the resource of the tenant.Type: GrantFiled: August 31, 2015Date of Patent: September 26, 2017Assignee: EMC IP Holding Company LLCInventors: Michael G. Roche, Michal J. Drozd
-
Patent number: 9442808Abstract: A ticket request is transmitted from an execution engine to an authentication engine. In response, a ticket comprising privileges is received from the authentication engine. The ticket is transmitted to a client, and a service request including the ticket is received back from the client. A service is executed in response to the ticket received from the client and results are transmitted to the client.Type: GrantFiled: December 30, 2014Date of Patent: September 13, 2016Assignee: EMC CORPORATIONInventors: Michal J Drozd, Michael G Roche, Aliaksandr Shtop
-
Patent number: 9432379Abstract: In one example, a method for managing user access includes creating a set of user characteristics for authorization of a user. The user characteristics are compared to application roles included in respective application authorization profiles, each of which corresponds to a different respective application. Matches are identified between the user characteristics and multiple application roles, and matching application roles and associated respective privilege masks are extracted from the application authorization profiles. The extracted information is used to create multiple tokens, each of which corresponds to a respective application. The tokens are returned to the applications and enable access control to be performed by the respective applications to which the tokens are returned.Type: GrantFiled: October 9, 2014Date of Patent: August 30, 2016Assignee: EMC CORPORATIONInventors: Michael G. Roche, Michal J. Drozd
-
Patent number: 9098525Abstract: A method and system for providing shared access to a target storage device by multiple clients through one or more network storage nodes. A network server includes control interfaces to the one or more storage nodes and executes logic processes that control the node processes. The logic processes contain definitions of the storage nodes, maps of which storage nodes have access to the desired target storage, and assigns the preferred storage nodes to the client upon request. Each storage node implements a dynamic volume sharing process that replaces existing monolithic daemon processes and allows for scalability of backup/restore operations and concurrent execution of different storage access operations and different types of storage access operations.Type: GrantFiled: June 14, 2012Date of Patent: August 4, 2015Assignee: EMC CORPORATIONInventors: Vladimir Mandic, Michal J. Drozd
-
Patent number: 8683099Abstract: Methods and systems are directed to a hybrid multi-thread/multi-process model to service a large number of network requests in network storage applications and systems. The process utilizes defined parameters of target session number, maximum session number, and maximum process number to determine an optimum load balance for read/write operations of a disk access session on a single storage node. This helps to achieve higher performance when using the single node to read or write a large number of separate and parallel data streams, and represents a marked improvement over current methods that multiplex the multiple data streams or use multiple I/O processes to write each data stream.Type: GrantFiled: June 14, 2012Date of Patent: March 25, 2014Assignee: EMC CorporationInventors: Vladimir Mandic, Michal J. Drozd
-
Patent number: 7438128Abstract: A method for identifying annular gas sources in a wellbore is disclosed. In one embodiment, the method comprises providing a set of parameters, wherein the set of parameters corresponds to depths in the wellbore. In addition, the method comprises analyzing annular gas in the wellbore to provide isotopic data of the annular gas. The method further comprises correlating the isotopic data to the set of parameters to identify the annular gas source.Type: GrantFiled: May 4, 2005Date of Patent: October 21, 2008Assignee: Halliburton Energy Services, Inc.Inventors: Richard J. Drozd, Louis W. Elrod, Patrick Jacobs
-
Publication number: 20070295590Abstract: In embodiments of the present invention improved capabilities are described for a method of cleaning a solid fuel that may provide a starting solid fuel sample data relating to one or more characteristics of a solid fuel to be treated by a solid fuel treatment facility; may provide a desired solid fuel characteristic; may compare the starting solid fuel sample data relating to one or more characteristics to the desired solid fuel characteristic to determine a solid fuel composition delta; may determine an operational treatment parameter for the operation of the solid fuel treatment facility to clean the solid fuel based at least in part on the solid fuel composition delta; and may monitor contaminants emitted from the solid fuel during treatment of the solid fuel and regulating the operational treatment parameter with respect thereto to create a cleaned solid fuel.Type: ApplicationFiled: April 2, 2007Publication date: December 27, 2007Inventors: Jerry Weinberg, Neil Ginther, Jed Aten, Ru Wang, J. Drozd
-
Publication number: 20070151147Abstract: A method for drying coal using microwave energy to achieve a controlled aggregate moisture content target range without starting combustion or degrading the coking qualities of the coal. Coal feed stock is first separated into fine grade coal and one or more larger grades. The fine grade coal is loaded onto a conveyor as a bed of fixed depth. The fine grade coal is conveyed continuously through a microwave-energized heating chamber for drying. The fine grade coal is dried sufficiently so that when it is combined with the larger grade coals, the moisture content of the aggregate is within a target moisture content range. By volumetrically and uniformly heating the coal, the microwave heating chamber boils away the water without heating the coal itself above about 90° C. In this way, the coal does not combust or oxidize, and its coking qualities are retained.Type: ApplicationFiled: November 27, 2006Publication date: July 5, 2007Inventors: Trevor Learey, J. Drozd
-
Publication number: 20070131678Abstract: Heating and drying devices including generally rectangular waveguide applicators forming exposure chambers for uniformly heating materials. Material to be heated enters and exits a microwave exposure region of the chamber through entrance and exit ports at opposite ends of the chamber. Various techniques are used to achieve uniform or preferred heating effects.Type: ApplicationFiled: December 14, 2005Publication date: June 14, 2007Applicant: INDUSTRIAL MICROWAVE SYSTEMS, L.L.C.Inventors: Esther Drozd, J. Drozd
-
Publication number: 20070012692Abstract: The invention uses rapid heating to effect a material property change in a biomaterial. The biomaterial is heated to a predetermined real temperature, whereas the biomaterial's total thermal treatment is described by an equivalent temperature and an equivalent time defining a point above a minimum gel set temperature line, above a reduction in bacteria line, below a water loss line, and below a maximum gel set temperature line. According to one aspect of the invention, the biomaterial is heated by exposing the biomaterial to a relatively uniform electric field. The material is heated to a predetermined temperature for a predetermined time in order to achieve a food product characterized by a preselected refrigerated shelf life of from about two weeks to about forty-two weeks. The food product may be packaged prior to the microwave exposure so as to sterilize the packaging and decrease product loss.Type: ApplicationFiled: June 28, 2006Publication date: January 18, 2007Inventors: Tyre Lanier, Josip Simunovic, Kenneth Swartzel, J. Drozd, Alexander Riemann
-
Patent number: 6967322Abstract: Method and apparatus for providing real-time data indicative of the isotopic composition of formation fluids during drilling. The method includes the steps of: (a) providing a reference fluid having a known isotopic composition in a reference cell; (b) capturing a sample of formation; (c) providing at least one laser beam; (e) passing a beam through the reference fluid, measuring the reference-measurement beam before and after it passes through the reference fluid; (f) and passing a beam through the sample, measuring the beam before and after it passes through the sample, and calculating a first isotope concentration from those measurements. The measurements can provide information relating to the carbon isotopic composition of individual compounds in hydrocarbon gas mixtures, with the individual compounds including methane, ethane, propane, iso- or normal butane, or iso- or normal pentane.Type: GrantFiled: March 1, 2004Date of Patent: November 22, 2005Assignee: Halliburton Energy Services, Inc.Inventors: Christopher Jones, Zvi Sofer, Richard J. Drozd
-
Patent number: 6912898Abstract: A method for measuring the infiltration of coring fluid into a core sample taken from a formation comprises a) providing a coring fluid containing cesium in a first concentration, b) using the coring fluid and a coring means to generate the core sample, c) determining the concentration of cesium present in the core sample; and d) comparing the core sample cesium concentration to the first concentration. A further preferred step comprises using the comparison in step d) to calculate the degree of infiltration of the coring fluid into the core sample.Type: GrantFiled: July 8, 2003Date of Patent: July 5, 2005Assignee: Halliburton Energy Services, Inc.Inventors: Christopher Jones, Jon Burger, Patrick Jacobs, Richard J. Drozd
-
Patent number: 6888127Abstract: Method and apparatus for providing real-time data indicative of the isotopic composition of formation fluids during drilling. The method includes the steps of: (a) providing a reference fluid having a known isotopic composition in a reference cell; (b) capturing a sample of formation; (c) providing at least one laser beam; (e) passing a beam through the reference fluid, measuring the reference-measurement beam before and after it passes through the reference fluid; (f) and passing a beam through the sample, measuring the beam before and after it passes through the sample, and calculating a first isotope concentration from those measurements. The measurements can provide information relating to the carbon isotopic composition of individual compounds in hydrocarbon gas mixtures, with the individual compounds including methane, ethane, propane, iso- or normal butane, or iso- or normal pentane.Type: GrantFiled: February 26, 2002Date of Patent: May 3, 2005Assignee: Halliburton Energy Services, Inc.Inventors: Christopher Jones, Zvi Sofer, Richard J. Drozd
-
Publication number: 20040164237Abstract: Method and apparatus for providing real-time data indicative of the isotopic composition of formation fluids during drilling. The method includes the steps of: (a) providing a reference fluid having a known isotopic composition in a reference cell; (b) capturing a sample of formation; (c) providing at least one laser beam; (e) passing a beam through the reference fluid, measuring the reference-measurement beam before and after it passes through the reference fluid; (f) and passing a beam through the sample, measuring the beam before and after it passes through the sample, and calculating a first isotope concentration from those measurements. The measurements can provide information relating to the carbon isotopic composition of individual compounds in hydrocarbon gas mixtures, with the individual compounds including methane, ethane, propane, iso- or normal butane, or iso- or normal pentane.Type: ApplicationFiled: March 1, 2004Publication date: August 26, 2004Applicant: Halliburton Energy Services, Inc.Inventors: Christopher Jones, Zvi Sofer, Richard J. Drozd