Patents by Inventor Morteza Ansari
Morteza Ansari has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Patent number: 11233742Abstract: One or more lower-level attributes of a first network policy are translated to one or more higher-level attributes of the first network policy, and one or more lower-level attributes of a second network policy are translated to one or more higher-level attributes of the second network policy. The first network policy controls how first network traffic is handled, and the second network policy controls how second network traffic is handled. The one or more higher-level attributes of the first network policy are compared with the one or more higher-level attributes of the second network policy. Based on the comparing, it is determined whether the first network traffic and the second network traffic are handled in a functionally equivalent manner. If not, the first network policy is dynamically updated to generate an updated first network policy that causes the first network traffic to be handled in the functionally equivalent manner.Type: GrantFiled: November 5, 2019Date of Patent: January 25, 2022Assignee: CISCO TECHNOLOGY, INC.Inventors: Samir Dilipkumar Saklikar, Jayaraman Iyer, Robin Edgard Martherus, Morteza Ansari, Jyoti Verma
-
Publication number: 20210135995Abstract: One or more lower-level attributes of a first network policy are translated to one or more higher-level attributes of the first network policy, and one or more lower-level attributes of a second network policy are translated to one or more higher-level attributes of the second network policy. The first network policy controls how first network traffic is handled, and the second network policy controls how second network traffic is handled. The one or more higher-level attributes of the first network policy are compared with the one or more higher-level attributes of the second network policy. Based on the comparing, it is determined whether the first network traffic and the second network traffic are handled in a functionally equivalent manner. If not, the first network policy is dynamically updated to generate an updated first network policy that causes the first network traffic to be handled in the functionally equivalent manner.Type: ApplicationFiled: November 5, 2019Publication date: May 6, 2021Inventors: Samir Dilipkumar Saklikar, Jayaraman Iyer, Robin Edgard Martherus, Morteza Ansari, Jyoti Verma
-
Patent number: 10540507Abstract: A device obtains access to an application resource from a remote application server based on an authenticated device identifier. The device sends a request to access the application resource provided by the remote application server. The device receives a first message from the remote application server directing the device to send an authentication message to a device identity server. The authentication message requests an authenticated device identity for the device. The device attaches metadata associated with the device to the authentication message and sends the authentication message with the attached metadata to the device identity server. The device receives the authenticated device identity from the device identity server and sends the authenticated device identity to the remote application. The device obtains access to the application resource from the remote application server based on the authenticated device identity.Type: GrantFiled: May 17, 2017Date of Patent: January 21, 2020Assignee: Cisco Technology, Inc.Inventors: Steven Richard Stites, Morteza Ansari, Syam Sundar V Appala, Prashanth Patil
-
Publication number: 20180337920Abstract: A device obtains access to an application resource from a remote application server based on an authenticated device identifier. The device sends a request to access the application resource provided by the remote application server. The device receives a first message from the remote application server directing the device to send an authentication message to a device identity server. The authentication message requests an authenticated device identity for the device. The device attaches metadata associated with the device to the authentication message and sends the authentication message with the attached metadata to the device identity server. The device receives the authenticated device identity from the device identity server and sends the authenticated device identity to the remote application. The device obtains access to the application resource from the remote application server based on the authenticated device identity.Type: ApplicationFiled: May 17, 2017Publication date: November 22, 2018Inventors: Steven Richard Stites, Morteza Ansari, Syam Sundar V Appala, Prashanth Patil
-
Patent number: 9356928Abstract: Techniques are provided for authenticating a subject of a client device to access a software-as-a-service (SaaS) server. A network access device receives a request from a client device to establish a network session and transfers identity information of the subject, the client device and the network session to a session directory database. A request is sent to access an application on a SaaS server. If it does not contain an identity assertion that identifies the subject, the request is redirected to an identity provider device, to provide identity assertion services to the subject. A network session identifier is inserted into the request by a network access device and the request is forwarded to the identity provider device. The identity provider device uses the network session identifier to query the session directory database for the identity information to be used for a security assertion of the subject to the SaaS server.Type: GrantFiled: December 16, 2014Date of Patent: May 31, 2016Assignee: Cisco Technology, Inc.Inventors: Nathan Sowatskey, Nancy Cam-Winget, Susan E. Thomson, David Jones, Morteza Ansari, Klaas Wierenga, Joseph Salowey
-
Patent number: 9203899Abstract: Managing network event information from a plurality of network appliances is disclosed. Each network appliance provides a network service and each has a version of a common database. Managing includes detecting network event information at a first network appliance, updating a version of the common database on the first network appliance with the network event information, and propagating the network event information to other versions of the database on other network appliances.Type: GrantFiled: September 29, 2011Date of Patent: December 1, 2015Assignee: Infoblox Inc.Inventors: Morteza Ansari, Stuart M. Bailey
-
Patent number: 9069774Abstract: A method is disclosed. A graphical representation is displayed of a network map of a network. A context indication is received for a network information specification for a first network segment of the network displayed on the graphical representation of the network map of the network. A first information is displayed on the graphical representation for the first network segment in response to the context indication. An action indication is received for a network management specification for the first network segment based at least in part on an interaction with the graphical representation of the network. The first network segment is modified based at least in part on the network management specification in response to the action indication.Type: GrantFiled: November 3, 2009Date of Patent: June 30, 2015Assignee: Infoblox Inc.Inventors: Morteza Ansari, Eric Duchene, Etienne M. Liu, Barry A. Frew
-
Patent number: 9063965Abstract: Maintaining consistent DNS information is disclosed. Information associated with a resource is received. A resource record is populated with the information. View information is derived from the resource record.Type: GrantFiled: June 27, 2013Date of Patent: June 23, 2015Assignee: Infoblox Inc.Inventors: Ivan W. Pulleyn, Stuart M. Bailey, Morteza Ansari, Etienne M. Liu, Ulf P. Ekberg, Srinath Gutti
-
Publication number: 20150106617Abstract: Techniques are provided for authenticating a subject of a client device to access a software-as-a-service (SaaS) server. A network access device receives a request from a client device to establish a network session and transfers identity information of the subject, the client device and the network session to a session directory database. A request is sent to access an application on a SaaS server. If it does not contain an identity assertion that identifies the subject, the request is redirected to an identity provider device, to provide identity assertion services to the subject. A network session identifier is inserted into the request by a network access device and the request is forwarded to the identity provider device. The identity provider device uses the network session identifier to query the session directory database for the identity information to be used for a security assertion of the subject to the SaaS server.Type: ApplicationFiled: December 16, 2014Publication date: April 16, 2015Inventors: Nathan Sowatskey, Nancy Cam-Winget, Susan E. Thomson, David Jones, Morteza Ansari, Klaas Wierenga, Joseph Salowey
-
Patent number: 8949938Abstract: Techniques are provided for authenticating a subject of a client device to access a software-as-a-service (SaaS) server. A network access device receives a request from a client device to establish a network session and transfers identity information of the subject, the client device and the network session to a session directory database. A request is sent to access an application on a SaaS server. If it does not contain an identity assertion that identifies the subject, the request is redirected to an identity provider device (IdP), to provide identity assertion services to the subject. A network session identifier is inserted into the request by a network access device and the request is forwarded to the IdP. The IdP uses the network session identifier to query the session directory database for the identity information to be used for a security assertion of the subject to the SaaS server.Type: GrantFiled: October 27, 2011Date of Patent: February 3, 2015Assignee: Cisco Technology, Inc.Inventors: Nathan Sowatskey, Nancy Cam-Winget, Susan E. Thomson, David Jones, Morteza Ansari, Klaas Wierenga, Joseph Salowey
-
Publication number: 20140012828Abstract: Maintaining consistent DNS information is disclosed. Information associated with a resource is received. A resource record is populated with the information. View information is derived from the resource record.Type: ApplicationFiled: June 27, 2013Publication date: January 9, 2014Inventors: Ivan W. Pulleyn, Stuart M. Bailey, Morteza Ansari, Etienne M. Liu, Ulf P. Eckberg, Srinath Gutti
-
Patent number: 8498971Abstract: Maintaining consistent DNS information is disclosed. Information associated with a resource is received. A resource record is populated with the information. View information is derived from the resource record.Type: GrantFiled: November 23, 2010Date of Patent: July 30, 2013Assignee: Infoblox Inc.Inventors: Ivan W. Pulleyn, Stuart M. Bailey, Morteza Ansari, Etienne M. Liu, Ulf P. Eckberg, Srinath Gutti
-
Publication number: 20130111549Abstract: Techniques are provided for authenticating a subject of a client device to access a software-as-a-service (SaaS) server. A network access device receives a request from a client device to establish a network session and transfers identity information of the subject, the client device and the network session to a session directory database. A request is sent to access an application on a SaaS server. If it does not contain an identity assertion that identifies the subject, the request is redirected to an identity provider device (IdP), to provide identity assertion services to the subject. A network session identifier is inserted into the request by a network access device and the request is forwarded to the IdP. The IdP uses the network session identifier to query the session directory database for the identity information to be used for a security assertion of the subject to the SaaS server.Type: ApplicationFiled: October 27, 2011Publication date: May 2, 2013Applicant: CISCO TECHNOLOGY, INC.Inventors: Nathan Sowatskey, Nancy Cam-Winget, Susan E. Thomson, David Jones, Morteza Ansari, Klaas Wierenga, Joseph Salowey
-
Publication number: 20120023195Abstract: Managing network event information from a plurality of network appliances is disclosed. Each network appliance provides a network service and each has a version of a common database. Managing includes detecting network event information at a first network appliance, updating a version of the common database on the first network appliance with the network event information, and propagating the network event information to other versions of the database on other network appliances.Type: ApplicationFiled: September 29, 2011Publication date: January 26, 2012Applicant: INFOBLOX INC.Inventors: Morteza Ansari, Stuart M. Bailey
-
Patent number: 8060534Abstract: Managing network event information from a plurality of network appliances is disclosed. Each network appliance provides a network service and each has a version of a common database. Managing includes detecting network event information at a first network appliance, updating a version of the common database on the first network appliance with the network event information, and propagating the network event information to other versions of the database on other network appliances.Type: GrantFiled: September 21, 2005Date of Patent: November 15, 2011Assignee: Infoblox Inc.Inventors: Morteza Ansari, Stuart M. Bailey
-
Publication number: 20110113020Abstract: Maintaining consistent DNS information is disclosed. Information associated with a resource is received. A resource record is populated with the information. View information is derived from the resource record.Type: ApplicationFiled: November 23, 2010Publication date: May 12, 2011Applicant: INFOBLOX INC.Inventors: Ivan W. Pulleyn, Stuart M. Bailey, Morteza Ansari, Etienne M. Liu, Ulf P. Eckberg, Srinath Gutti
-
Patent number: 7865617Abstract: Maintaining consistent DNS information is disclosed. Information associated with a resource is received. A resource record is populated with the information. View information is derived from the resource record.Type: GrantFiled: August 1, 2005Date of Patent: January 4, 2011Assignee: Infoblox Inc.Inventors: Ivan W. Pulleyn, Stuart M. Bailey, Morteza Ansari, Etienne M. Liu, Ulf P. Eckberg, Srinath Gutti