Patents by Inventor Anthony Paterra

Anthony Paterra has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).

  • Patent number: 10333986
    Abstract: Methods, systems, and media for producing a firewall rule set are provided herein. Exemplary methods may include receiving a declarative policy associated with a computer network security policy; collecting information from at least one external system of record; generating a firewall rule set using the declarative policy and information, the firewall rule set including addresses to or from which network communications are permitted, denied, redirected or logged, the firewall rule set being at a lower level of abstraction than the declarative policy; and provisioning the firewall rule set to a plurality of enforcement points of a distributed firewall, the firewall selectively policing network communications among workloads using the firewall rule set.
    Type: Grant
    Filed: April 5, 2017
    Date of Patent: June 25, 2019
    Assignee: vArmour Networks, Inc.
    Inventors: Jia-Jyi Lian, Anthony Paterra, Marc Woolward
  • Patent number: 10009381
    Abstract: Methods, systems, and media for a security system are provided herein. Exemplary methods may include: acquiring a firewall security policy from a policy compiler; receiving network traffic originating from a source machine and directed to a destination machine; analyzing the network traffic using the firewall security policy; forwarding or dropping each of the network traffic according to the security policy; and redirecting one or more network packets of the network traffic according to the security policy.
    Type: Grant
    Filed: January 27, 2016
    Date of Patent: June 26, 2018
    Assignee: vArmour Networks, Inc.
    Inventors: Jia-Jyi Lian, Anthony Paterra, Marc Woolward
  • Publication number: 20170208100
    Abstract: Methods, systems, and media for producing a firewall rule set are provided herein. Exemplary methods may include receiving a declarative policy associated with a computer network security policy; collecting information from at least one external system of record; generating a firewall rule set using the declarative policy and information, the firewall rule set including addresses to or from which network communications are permitted, denied, redirected or logged, the firewall rule set being at a lower level of abstraction than the declarative policy; and provisioning the firewall rule set to a plurality of enforcement points of a distributed firewall, the firewall selectively policing network communications among workloads using the firewall rule set.
    Type: Application
    Filed: April 5, 2017
    Publication date: July 20, 2017
    Inventors: Jia-Jyi Lian, Anthony Paterra, Marc Woolward
  • Patent number: 9621595
    Abstract: Methods, systems, and media for producing a firewall rule set are provided herein. Exemplary methods may include receiving a declarative policy associated with a computer network security policy; collecting information from at least one external system of record; generating a firewall rule set using the declarative policy and information, the firewall rule set including addresses to or from which network communications are permitted, denied, redirected or logged, the firewall rule set being at a lower level of abstraction than the declarative policy; and provisioning the firewall rule set to a plurality of enforcement points of a distributed firewall, the firewall selectively policing network communications among workloads using the firewall rule set.
    Type: Grant
    Filed: May 10, 2016
    Date of Patent: April 11, 2017
    Assignee: vArmour Networks, Inc.
    Inventors: Jia-Jyi Lian, Anthony Paterra, Marc Woolward
  • Publication number: 20170063795
    Abstract: Methods, systems, and media for producing a firewall rule set are provided herein. Exemplary methods may include receiving a declarative policy associated with a computer network security policy; collecting information from at least one external system of record; generating a firewall rule set using the declarative policy and information, the firewall rule set including addresses to or from which network communications are permitted, denied, redirected or logged, the firewall rule set being at a lower level of abstraction than the declarative policy; and provisioning the firewall rule set to a plurality of enforcement points of a distributed firewall, the firewall selectively policing network communications among workloads using the firewall rule set.
    Type: Application
    Filed: May 10, 2016
    Publication date: March 2, 2017
    Inventors: Jia-Jyi Lian, Anthony Paterra, Marc Woolward
  • Publication number: 20160294875
    Abstract: Methods, systems, and media for a security system are provided herein. Exemplary methods may include: acquiring a firewall security policy from a policy compiler; receiving network traffic originating from a source machine and directed to a destination machine; analyzing the network traffic using the firewall security policy; forwarding or dropping each of the network traffic according to the security policy; and redirecting one or more network packets of the network traffic according to the security policy.
    Type: Application
    Filed: January 27, 2016
    Publication date: October 6, 2016
    Inventors: Jia-Jyi Lian, Anthony Paterra, Marc Woolward
  • Patent number: 9380027
    Abstract: Methods, systems, and media for producing a firewall rule set are provided herein. Exemplary methods may include receiving a declarative policy associated with a computer network security policy; collecting information from at least one external system of record; generating a firewall rule set using the declarative policy and information, the firewall rule set including addresses to or from which network communications are permitted, denied, redirected or logged, the firewall rule set being at a lower level of abstraction than the declarative policy; and provisioning the firewall rule set to a plurality of enforcement points of a distributed firewall, the firewall selectively policing network communications among workloads using the firewall rule set.
    Type: Grant
    Filed: March 30, 2015
    Date of Patent: June 28, 2016
    Assignee: vArmour Networks, Inc.
    Inventors: Jia-Jyi Lian, Anthony Paterra, Marc Woolward
  • Patent number: 9294442
    Abstract: Methods, systems, and media for a security system are provided herein. Exemplary methods may include: acquiring a firewall security policy from a policy compiler; receiving network traffic originating from a source machine and directed to a destination machine; analyzing the network traffic using the firewall security policy; forwarding or dropping each of the network traffic according to the security policy; accumulating the network traffic and metadata associated with the network traffic; and initiating an update to the firewall security policy by the policy compiler using at least one of the accumulated network traffic and metadata.
    Type: Grant
    Filed: March 30, 2015
    Date of Patent: March 22, 2016
    Assignee: vArmour Networks, Inc.
    Inventors: Jia-Jyi Lian, Anthony Paterra, Marc Woolward