Patents by Inventor Jason D. Forrester
Jason D. Forrester has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Patent number: 9515991Abstract: Techniques for managing authentication requests. At a gateway device to a network, packets of a message intended for said network are received. Fields within payloads of the packets which contain authentication or authorization information are read. The message is redirected to an authentication server. The authentication server determines that a requester who sent the message to the gateway device is authorized to access a target resource specified in the message and responds to the gateway device that the requester is authorized to access the target resource. The gateway device responds to the requester that the requester is authorized to access the target resource. The gateway device notifies a server hosting the target resource that the requester is authorized to access the target resource. If the gateway device receives a subsequent message from the requester to utilize the target resource, the gateway device forwards the message toward the server.Type: GrantFiled: February 1, 2016Date of Patent: December 6, 2016Assignee: International Business Machines CorporationInventors: Richard S. Curtis, Jason D. Forrester
-
Publication number: 20160149859Abstract: Techniques for managing authentication requests. At a gateway device to a network, packets of a message intended for said network are received. Fields within payloads of the packets which contain authentication or authorization information are read. The message is redirected to an authentication server. The authentication server determines that a requester who sent the message to the gateway device is authorized to access a target resource specified in the message and responds to the gateway device that the requester is authorized to access the target resource. The gateway device responds to the requester that the requester is authorized to access the target resource. The gateway device notifies a server hosting the target resource that the requester is authorized to access the target resource. If the gateway device receives a subsequent message from the requester to utilize the target resource, the gateway device forwards the message toward the server.Type: ApplicationFiled: February 1, 2016Publication date: May 26, 2016Inventors: Richard S. Curtis, Jason D. Forrester
-
Patent number: 9253151Abstract: Computer system, method and program for managing authentication requests. At a gateway device to a network, packets of a message intended for said network are received. In response, fields within payloads of said packets which contain authentication or authorization information are read. In response, the message is redirected to an authentication server. In response to receipt of the redirected message from the gateway device, the authentication server determines that a requester who sent the message to the gateway device is authorized to access a target resource specified in the message and responds to the gateway device that the requester is authorized to access the target resource. In response, the gateway device responds to the requester that the requester is authorized to access the target resource.Type: GrantFiled: May 25, 2006Date of Patent: February 2, 2016Assignee: International Business Machines CorporationInventors: Richard S. Curtis, Jason D. Forrester
-
Patent number: 8104042Abstract: A system, method and program product for operating a cluster of servers. A load balancer, separate from the servers, selects servers to handle respective work requests assigned to the cluster based on a load balancing algorithm, and sends the work requests to the selected servers. The load balancer receives a request from another server not currently a member of the cluster. The request requests that the other server become a member of the cluster to handle work requests. In response to the request, the load balancer joins the other server as a member of the cluster to handle some work requests subsequently assigned to the cluster. The other server specifies to the load balancer a load threshold for the other server. The other server specifies to the load balancer a time-out to be used for the other server. The time-out indicates a time allotted for the other server to send a hello message since sending a previous hello message.Type: GrantFiled: May 6, 2008Date of Patent: January 24, 2012Assignee: International Business Machines CorporationInventor: Jason D. Forrester
-
Patent number: 7877506Abstract: Computer system, method and program for routing. A nonencrypted message packet is received. In response, a payload in the message packet is read to determine if the payload contains sensitive information. If the payload contains sensitive information, the message packet is encrypted and subsequently, routed to a nonsecure communication path. If the payload does not contain sensitive information, the message packet is routed to a nonsecure communication path without encrypting the message packet. The payload can be read to determine if it contains sensitive information by determining a standard for a format of the message packet, and based on the standard, determining a location of data within the message packet and a type of the data at the location.Type: GrantFiled: May 26, 2006Date of Patent: January 25, 2011Assignee: International Business Machines CorporationInventors: Richard S. Curtis, Jason D. Forrester
-
Publication number: 20080209044Abstract: A system, method and program product for operating a cluster of servers. A load balancer, separate from the servers, selects servers to handle respective work requests assigned to the cluster based on a load balancing algorithm, and sends the work requests to the selected servers. The load balancer receives a request from another server not currently a member of the cluster. The request requests that the other server become a member of the cluster to handle work requests. In response to the request, the load balancer joins the other server as a member of the cluster to handle some work requests subsequently assigned to the cluster. The other server specifies to the load balancer a load threshold for the other server. The other server specifies to the load balancer a time-out to be used for the other server. The time-out indicates a time allotted for the other server to send a hello message since sending a previous hello message.Type: ApplicationFiled: May 6, 2008Publication date: August 28, 2008Applicant: INTERNATIONAL BUSINESS MACHINES CORPORATIONInventor: Jason D. Forrester
-
Patent number: 7389510Abstract: A system, method and program product for operating a cluster of servers. A load balancer, separate from the servers, selects servers to handle respective work requests assigned to the cluster based on a load balancing algorithm, and sends the work requests to the selected servers. The load balancer receives a request from another server not currently a member of the cluster. The request requests that the other server become a member of the cluster to handle work requests. In response to the request, the load balancer joins the other server as a member of the cluster to handle some work requests subsequently assigned to the cluster. The other server specifies to the load balancer a load threshold for the other server. The other server specifies to the load balancer a time-out to be used for the other server. The time-out indicates a time allotted for the other server to send a hello message since sending a previous hello message.Type: GrantFiled: November 6, 2003Date of Patent: June 17, 2008Assignee: International Business Machines CorporationInventor: Jason D. Forrester
-
Publication number: 20070277228Abstract: Computer system, method and program for managing authentication requests. At a gateway device to a network, packets of a message intended for said network are received. In response, fields within payloads of said packets which contain authentication or authorization information are read. In response, the message is redirected to an authentication server. In response to receipt of the redirected message from the gateway device, the authentication server determines that a requester who sent the message to the gateway device is authorized to access a target resource specified in the message and responds to the gateway device that the requester is authorized to access the target resource. In response, the gateway device responds to the requester that the requester is authorized to access the target resource.Type: ApplicationFiled: May 25, 2006Publication date: November 29, 2007Applicant: International Business Machines CorporationInventors: Richard S. Curtis, Jason D. Forrester
-
Publication number: 20070276958Abstract: Computer system, method and program for routing. A nonencrypted message packet is received. In response, a payload in the message packet is read to determine if the payload contains sensitive information. If the payload contains sensitive information, the message packet is encrypted and subsequently, routed to a nonsecure communication path. If the payload does not contain sensitive information, the message packet is routed to a nonsecure communication path without encrypting the message packet. The payload can be read to determine if it contains sensitive information by determining a standard for a format of the message packet, and based on the standard, determining a location of data within the message packet and a type of the data at the location.Type: ApplicationFiled: May 26, 2006Publication date: November 29, 2007Applicant: International Business Machines CorporationInventors: Richard S. Curtis, Jason D. Forrester