Patents by Inventor Santhosh Cheeniyil
Santhosh Cheeniyil has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Patent number: 10581827Abstract: In general, in one aspect, embodiments relate to receiving, by a system comprising one or more network devices, a first client authentication information comprising a first indication that a first client device was successfully authenticated by a first authentication server based on credentials provided by the first client device, and forwarding, by the system, the first client authentication information to a second authentication server without determining that the client device was already successfully authenticated by the first authentication server based on the credentials provided by the first client device. The operations further include receiving, by the system from the second authentication server, a second indication that the first client device was successfully authenticated, and based on the second indication received by the system from the second authentication server, granting, by the system, network access to the first client device.Type: GrantFiled: January 29, 2019Date of Patent: March 3, 2020Assignee: HEWLETT PACKARD ENTERPRISE DEVELOPMENT LPInventors: Venkatraju Tumkur Venkatanaranappa, Rajesh Kumar Ganapathy Achari, Anoop Kumaran Nair, Santhosh Cheeniyil
-
Publication number: 20190173871Abstract: In general, in one aspect, embodiments relate to receiving, by a system comprising one or more network devices, a first client authentication information comprising a first indication that a first client device was successfully authenticated by a first authentication server based on credentials provided by the first client device, and forwarding, by the system, the first client authentication information to a second authentication server without determining that the client device was already successfully authenticated by the first authentication server based on the credentials provided by the first client device. The operations further include receiving, by the system from the second authentication server, a second indication that the first client device was successfully authenticated, and based on the second indication received by the system from the second authentication server, granting, by the system, network access to the first client device.Type: ApplicationFiled: January 29, 2019Publication date: June 6, 2019Inventors: Venkatraju Tumkur Venkatanaranappa, Rajesh Kumar Ganapathy Achari, Anoop Kumaran Nair, Santhosh Cheeniyil
-
Patent number: 10193878Abstract: In general, in one aspect, embodiments relate to receiving, by a system comprising one or more network devices, a first client authentication information comprising a first indication that a first client device was successfully authenticated by a first authentication server based on credentials provided by the first client device, and forwarding, by the system, the first client authentication information to a second authentication server without determining that the client device was already successfully authenticated by the first authentication server based on the credentials provided by the first client device. The operations further include receiving, by the system from the second authentication server, a second indication that the first client device was successfully authenticated, and based on the second indication received by the system from the second authentication server, granting, by the system, network access to the first client device.Type: GrantFiled: October 31, 2013Date of Patent: January 29, 2019Assignee: Hewlett Packard Enterprise Development LPInventors: Venkatraju Tumkur Venkatanaranappa, Rajesh Kumar Ganapathy Achari, Anoop Kumaran Nair, Santhosh Cheeniyil
-
Patent number: 9590972Abstract: In general, in one aspect, embodiments relate to receiving, by a system of one or more network devices from a client device, a request to access one or more applications, determining, by the system, that the client device has already been authenticated to access a network, and based on determining that the client device has already been authenticated to access the network, causing authenticating of the client device for accessing the one or more applications.Type: GrantFiled: October 31, 2013Date of Patent: March 7, 2017Assignee: ARUBA NETWORKS, INC.Inventors: Venkatraju Tumkur Venkatanaranappa, Rajesh Kumar Ganapathy Achari, Anoop Kumaran Nair, Santhosh Cheeniyil
-
Patent number: 9516503Abstract: A non-transitory computer readable medium for location based access includes instructions which, when executed by one or more devices, causes performance of operations including identifying a physical location of a client device, determining that the physical location of the client device meets a criterion for allowing access through an entryway, identifying a permission level associated with the client device, determining that the permission level associated with the client device meets a criterion for allowing access through the entryway, and, responsive at least to determining that the criterion have been met, allowing access through the entryway.Type: GrantFiled: October 31, 2013Date of Patent: December 6, 2016Assignee: Aruba Networks, Inc.Inventors: Adam Michael Berns, Santhosh Cheeniyil, Madhava K. Kidambi, Varun A. Shah
-
Publication number: 20150121465Abstract: A non-transitory computer readable medium for location based access includes instructions which, when executed by one or more devices, causes performance of operations including identifying a physical location of a client device, determining that the physical location of the client device meets a criterion for allowing access through an entryway, identifying a permission level associated with the client device, determining that the permission level associated with the client device meets a criterion for allowing access through the entryway, and, responsive at least to determining that the criterion have been met, allowing access through the entryway.Type: ApplicationFiled: October 31, 2013Publication date: April 30, 2015Applicant: ARUBA NETWORKS INC.Inventors: Adam Michael Berns, Santhosh Cheeniyil, Madhava K. Kidambi, Varun A. Shah
-
Publication number: 20150121481Abstract: In general, in one aspect, embodiments relate to receiving, by a system of one or more network devices from a client device, a request to access one or more applications, determining, by the system, that the client device has already been authenticated to access a network, and based on determining that the client device has already been authenticated to access the network, causing authenticating of the client device for accessing the one or more applications.Type: ApplicationFiled: October 31, 2013Publication date: April 30, 2015Applicant: Aruba Networks, Inc.Inventors: Venkatraju Tumkur Venkatanaranappa, Rajesh Kumar Ganapathy Achari, Anoop Kumaran Nair, Santhosh Cheeniyil
-
Publication number: 20150121500Abstract: In general, in one aspect, embodiments relate to receiving, by a system comprising one or more network devices, a first client authentication information comprising a first indication that a first client device was successfully authenticated by a first authentication server based on credentials provided by the first client device, and forwarding, by the system, the first client authentication information to a second authentication server without determining that the client device was already successfully authenticated by the first authentication server based on the credentials provided by the first client device. The operations further include receiving, by the system from the second authentication server, a second indication that the first client device was successfully authenticated, and based on the second indication received by the system from the second authentication server, granting, by the system, network access to the first client device.Type: ApplicationFiled: October 31, 2013Publication date: April 30, 2015Applicant: ARUBA NETWORKS, INC.Inventors: Venkatraju Tumkur Venkatanaranappa, Rajesh Kumar Ganapathy Achari, Anoop Kumaran Nair, Santhosh Cheeniyil
-
Publication number: 20140237543Abstract: A method and apparatus for integrating various network access control frameworks under the control of a single policy decision point (PDP). The apparatus supports pluggable protocol terminators to interface to any number of access protocols or backend support services. The apparatus contains Trust and Identity Mediators to mediate between the protocol terminators and a canonical policy subsystem, translating attributes between framework representations, and a canonical representation using extensible data-driven dictionaries.Type: ApplicationFiled: April 29, 2014Publication date: August 21, 2014Applicant: ARUBA NETWORKS, INC.Inventors: Santhosh Cheeniyil, Krishna Prabhakar, Michael Fine
-
Patent number: 8713639Abstract: A method and apparatus for integrating various network access control frameworks under the control of a single policy decision point (PDP). The apparatus supports pluggable protocol terminators to interface to any number of access protocols or backend support services. The apparatus contains Trust and Identity Mediators to mediate between the protocol terminators and a canonical policy subsystem, translating attributes between framework representations, and a canonical representation using extensible data-driven dictionaries.Type: GrantFiled: July 13, 2012Date of Patent: April 29, 2014Assignee: Aruba Networks, Inc.Inventors: Santhosh Cheeniyil, Krishna Prabhakar, Michael Fine
-
Publication number: 20130042002Abstract: A method and apparatus for integrating various network access control frameworks under the control of a single policy decision point (PDP). The apparatus supports pluggable protocol terminators to interface to any number of access protocols or backend support services. The apparatus contains Trust and Identity Mediators to mediate between the protocol terminators and a canonical policy subsystem, translating attributes between framework representations, and a canonical representation using extensible data-driven dictionaries.Type: ApplicationFiled: July 13, 2012Publication date: February 14, 2013Inventors: Santhosh Cheeniyil, Krishna Prabhakar, Michael Fine
-
Patent number: 8245281Abstract: A method and apparatus for integrating various network access control frameworks under the control of a single policy decision point (PDP). The apparatus supports pluggable protocol terminators to interface to any number of access protocols or backend support services. The apparatus contains Trust and Identity Mediators to mediate between the protocol terminators and a canonical policy subsystem, translating attributes between framework representations, and a canonical representation using extensible data-driven dictionaries.Type: GrantFiled: December 28, 2007Date of Patent: August 14, 2012Assignee: Aruba Networks, Inc.Inventors: Santhosh Cheeniyil, Krishna Prabhakar, Michael Fine
-
Patent number: 8051464Abstract: A method for provisioning client devices securely and automatically by means of a network provisioning system is disclosed. Provisioning occurs before the client is granted access to the network. The provisioning is determined dynamically at the time a client connects to the network and may depend on a multitude of factors specified by data dictionaries of the provisioning system.Type: GrantFiled: December 19, 2007Date of Patent: November 1, 2011Assignee: Avenda Systems, Inc.Inventors: Santhosh Cheeniyil, Krishna Prabhakar
-
Publication number: 20080168547Abstract: A method for provisioning client devices securely and automatically by means of a network provisioning system is disclosed. Provisioning occurs before the client is granted access to the network. The provisioning is determined dynamically at the time a client connects to the network and may depend on a multitude of factors specified by data dictionaries of the provisioning system.Type: ApplicationFiled: December 19, 2007Publication date: July 10, 2008Applicant: Avenda Systems, Inc.Inventors: Santhosh Cheeniyil, Krishna Prabhakar
-
Publication number: 20080163340Abstract: A method and apparatus for integrating various network access control frameworks under the control of a single policy decision point (PDP). The apparatus supports pluggable protocol terminators to interface to any number of access protocols or backend support services. The apparatus contains Trust and Identity Mediators to mediate between the protocol terminators and a canonical policy subsystem, translating attributes between framework representations, and a canonical representation using extensible data-driven dictionaries.Type: ApplicationFiled: December 28, 2007Publication date: July 3, 2008Applicant: AVENDA SYSTEMS, INC.Inventors: Santhosh Cheeniyil, Krishna Prabhakar, Michael Fine