Patents by Inventor Ashish Kolli
Ashish Kolli has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Patent number: 11516255Abstract: The present disclosure relates generally to threat detection, and more particularly, to techniques for analyzing security events using dynamic policies and displaying a consolidated view of active threats and user activity including the dynamic policies being triggered by the active threats and user activity. Some aspects are directed to the concept of a policy bus for injecting and communicating the dynamic policies to multiple enforcement entities and the ability of the entities to respond to the policies dynamically. Other aspects are directed providing a consolidated view of active threat categories, a count of policies being triggered for each threat category, and associated trends. Yet other aspects are directed to providing a consolidated view of users, applications being accessed by users, and the access policies, if any, implicated by the such accesses.Type: GrantFiled: December 16, 2019Date of Patent: November 29, 2022Assignee: ORACLE INTERNATIONAL CORPORATIONInventors: Aji Joseph, Paresh Raote, Lakshmi Hariharan, Kanishk Mahajan, Ashish Kolli, Moushmi Banerjee, Yitzchak Weiser, Weifang Xie, Jingyu Cui
-
Patent number: 11334601Abstract: Techniques are provided for creating a unified data model for entities in components of an access management system. A method can include identifying an entity of a component, identifying a first attribute metadata for the entity, creating a data type for the first attribute metadata of the entity, defining the entity in accordance with the created data type, and storing the defined entity in a unified storage.Type: GrantFiled: September 16, 2016Date of Patent: May 17, 2022Assignee: Oracle International CorporationInventors: Ashish Kolli, Ramakrishna Bollu, Elangovan Subramanian
-
Patent number: 11019103Abstract: The present disclosure relates generally to techniques for controlling access to resources accessible in a distributed environment. One of the techniques includes connecting a security agent to a policy server through a default port using a default protocol. The security agent is configured to intercept requests for access to a resource in a distributed environment, and work with the policy server to control access to the resource based on policies stored on the policy server. The technique further includes obtaining a configuration file from the policy server such that the security agent can initialize and determine the distributed environment in which the security agent resides, analyzing ports of communication within the distributed environment to identify a preferred port that is available for connection to the policy server, and connecting to the policy server through the preferred port to access the policies for controlling the access to the resource.Type: GrantFiled: November 6, 2019Date of Patent: May 25, 2021Assignee: Oracle International CorporationInventors: Vamsi Motukuru, Ashish Kolli
-
Patent number: 10868793Abstract: The present disclosure relates generally to Lightweight Directory Access Protocol (LDAP), and more particularly, to techniques for improving query performance on an LDAP server. One particular technique includes receiving a LDAP query having search criteria, identifying one or more search filters within the search criteria; evaluating one or more mappings for search filter patterns to index query hints based on the identified one or more search filters; identifying one or more query hints based on the evaluation of the one or more mappings; selecting one or more indices based on the one or more query hints; and executing the LDAP query on an LDAP directory using the selected one or more indices.Type: GrantFiled: November 29, 2018Date of Patent: December 15, 2020Assignee: Oracle International CorporationInventors: Hitaisinee Himadri Tanaya, Lutfiye Umit Yalcinalp, Ashish Kolli
-
Publication number: 20200120141Abstract: The present disclosure relates generally to threat detection, and more particularly, to techniques for analyzing security events using dynamic policies and displaying a consolidated view of active threats and user activity including the dynamic policies being triggered by the active threats and user activity. Some aspects are directed to the concept of a policy bus for injecting and communicating the dynamic policies to multiple enforcement entities and the ability of the entities to respond to the policies dynamically. Other aspects are directed providing a consolidated view of active threat categories, a count of policies being triggered for each threat category, and associated trends. Yet other aspects are directed to providing a consolidated view of users, applications being accessed by users, and the access policies, if any, implicated by the such accesses.Type: ApplicationFiled: December 16, 2019Publication date: April 16, 2020Applicant: Oracle International CorporationInventors: Aji Joseph, Paresh Raote, Lakshmi Hariharan, Kanishk Mahajan, Ashish Kolli, Moushmi Banerjee, Yitzchak Weiser, Weifang Xie, Jingyu Cui
-
Publication number: 20200076860Abstract: The present disclosure relates generally to techniques for controlling access to resources accessible in a distributed environment. One of the techniques includes connecting a security agent to a policy server through a default port using a default protocol. The security agent is configured to intercept requests for access to a resource in a distributed environment, and work with the policy server to control access to the resource based on policies stored on the policy server. The technique further includes obtaining a configuration file from the policy server such that the security agent can initialize and determine the distributed environment in which the security agent resides, analyzing ports of communication within the distributed environment to identify a preferred port that is available for connection to the policy server, and connecting to the policy server through the preferred port to access the policies for controlling the access to the resource.Type: ApplicationFiled: November 6, 2019Publication date: March 5, 2020Applicant: Oracle International CorporationInventors: Vamsi Motukuru, Ashish Kolli
-
Patent number: 10547646Abstract: The present disclosure relates generally to threat detection, and more particularly, to techniques for analyzing security events using dynamic policies and displaying a consolidated view of active threats and user activity including the dynamic policies being triggered by the active threats and user activity. Some aspects are directed to the concept of a policy bus for injecting and communicating the dynamic policies to multiple enforcement entities and the ability of the entities to respond to the policies dynamically. Other aspects are directed providing a consolidated view of active threat categories, a count of policies being triggered for each threat category, and associated trends. Yet other aspects are directed to providing a consolidated view of users, applications being accessed by users, and the access policies, if any, implicated by the such accesses.Type: GrantFiled: September 15, 2017Date of Patent: January 28, 2020Assignee: ORACLE INTERNATIONAL CORPORATIONInventors: Aji Joseph, Paresh Raote, Lakshmi Hariharan, Kanishk Mahajan, Ashish Kolli, Moushmi Banerjee, Yitzchak Weiser, Weifang Xie, Jingyu Cui
-
Patent number: 10505982Abstract: The present disclosure relates generally to techniques for controlling access to resources accessible in a distributed environment. One of the techniques includes connecting a security agent to a policy server through a default port using a default protocol. The security agent is configured to intercept requests for access to a resource in a distributed environment, and work with the policy server to control access to the resource based on policies stored on the policy server. The technique further includes obtaining a configuration file from the policy server such that the security agent can initialize and determine the distributed environment in which the security agent resides, analyzing ports of communication within the distributed environment to identify a preferred port that is available for connection to the policy server, and connecting to the policy server through the preferred port to access the policies for controlling the access to the resource.Type: GrantFiled: October 21, 2016Date of Patent: December 10, 2019Assignee: Oracle International CorporationInventors: Vamsi Motukuru, Ashish Kolli
-
Publication number: 20190334856Abstract: The present disclosure relates generally to Lightweight Directory Access Protocol (LDAP), and more particularly, to techniques for improving query performance on an LDAP server. One particular technique includes receiving a LDAP query having search criteria, identifying one or more search filters within the search criteria; evaluating one or more mappings for search filter patterns to index query hints based on the identified one or more search filters; identifying one or more query hints based on the evaluation of the one or more mappings; selecting one or more indices based on the one or more query hints; and executing the LDAP query on an LDAP directory using the selected one or more indices.Type: ApplicationFiled: November 29, 2018Publication date: October 31, 2019Applicant: Oracle International CorporationInventors: Hitaisinee Himadri Tanaya, Lutfiye Umit Yalcinalp, Ashish Kolli
-
Patent number: 10447738Abstract: The present disclosure relates generally to threat detection, and more particularly, to techniques for analyzing security events using dynamic policies and displaying a consolidated view of active threats and user activity including the dynamic policies being triggered by the active threats and user activity. Some aspects are directed to the concept of a policy bus for injecting and communicating the dynamic policies to multiple enforcement entities and the ability of the entities to respond to the policies dynamically. Other aspects are directed providing a consolidated view of active threat categories, a count of policies being triggered for each threat category, and associated trends. Yet other aspects are directed to providing a consolidated view of users, applications being accessed by users, and the access policies, if any, implicated by the such accesses.Type: GrantFiled: September 15, 2017Date of Patent: October 15, 2019Assignee: Oracle International CorporationInventors: Aji Joseph, Paresh Raote, Lakshmi Hariharan, Kanishk Mahajan, Ashish Kolli, Moushmi Banerjee, Yitzchak Weiser, Weifang Xie, Jingyu Cui
-
Patent number: 10432671Abstract: The present disclosure relates generally to threat detection, and more particularly, to techniques for analyzing security events using dynamic policies and displaying a consolidated view of active threats and user activity including the dynamic policies being triggered by the active threats and user activity. Some aspects are directed to the concept of a policy bus for injecting and communicating the dynamic policies to multiple enforcement entities and the ability of the entities to respond to the policies dynamically. Other aspects are directed providing a consolidated view of active threat categories, a count of policies being triggered for each threat category, and associated trends. Yet other aspects are directed to providing a consolidated view of users, applications being accessed by users, and the access policies, if any, implicated by the such accesses.Type: GrantFiled: September 15, 2017Date of Patent: October 1, 2019Inventors: Aji Joseph, Paresh Raote, Lakshmi Hariharan, Kanishk Mahajan, Ashish Kolli, Moushmi Banerjee, Yitzchak Weiser, Weifang Xie, Jingyu Cui
-
Patent number: 10079820Abstract: Web-based single sign-on can enable a user to log in to a single interface (such as through a web browser or thin client) and then provide SSO services to the user for one or more web applications. The web-based SSO system can be extended to support one or more different access control methods, such as form-fill, Federated (OIF), SSO Protected (OAM), and other policies. The web-based SSO system can include a user interface through which the user can access different web applications, systems, etc. and manage their credentials. Each SSO service can be associated with a web interface allowing the SSO services to be accessed over the web. The web interfaces can provide CRUD (create, read, update, delete) functionality for each SSO service. To support different access policy types, the web-based SSO system can include an extensible data manager that can manage data access to different types of repositories transparently.Type: GrantFiled: September 22, 2014Date of Patent: September 18, 2018Assignee: Oracle International CorporationInventors: Ashish Kolli, Mrudul Uchil, Josh Brunaugh, Dharmvir Singh
-
Publication number: 20180084011Abstract: The present disclosure relates generally to threat detection, and more particularly, to techniques for analyzing security events using dynamic policies and displaying a consolidated view of active threats and user activity including the dynamic policies being triggered by the active threats and user activity. Some aspects are directed to the concept of a policy bus for injecting and communicating the dynamic policies to multiple enforcement entities and the ability of the entities to respond to the policies dynamically. Other aspects are directed providing a consolidated view of active threat categories, a count of policies being triggered for each threat category, and associated trends. Yet other aspects are directed to providing a consolidated view of users, applications being accessed by users, and the access policies, if any, implicated by the such accesses.Type: ApplicationFiled: September 15, 2017Publication date: March 22, 2018Inventors: Aji Joseph, Paresh Raote, Lakshmi Hariharan, Kanishk Mahajan, Ashish Kolli, Moushmi Banerjee, Yitzchak Weiser, Weifang Xie, Jingyu Cui
-
Publication number: 20180084010Abstract: The present disclosure relates generally to threat detection, and more particularly, to techniques for analyzing security events using dynamic policies and displaying a consolidated view of active threats and user activity including the dynamic policies being triggered by the active threats and user activity. Some aspects are directed to the concept of a policy bus for injecting and communicating the dynamic policies to multiple enforcement entities and the ability of the entities to respond to the policies dynamically. Other aspects are directed providing a consolidated view of active threat categories, a count of policies being triggered for each threat category, and associated trends. Yet other aspects are directed to providing a consolidated view of users, applications being accessed by users, and the access policies, if any, implicated by the such accesses.Type: ApplicationFiled: September 15, 2017Publication date: March 22, 2018Inventors: Aji Joseph, Paresh Raote, Lakshmi Hariharan, Kanishk Mahajan, Ashish Kolli, Moushmi Banerjee, Yitzchak Weiser, Weifang Xie, Jingyu Cui
-
Publication number: 20180084012Abstract: The present disclosure relates generally to threat detection, and more particularly, to techniques for analyzing security events using dynamic policies and displaying a consolidated view of active threats and user activity including the dynamic policies being triggered by the active threats and user activity. Some aspects are directed to the concept of a policy bus for injecting and communicating the dynamic policies to multiple enforcement entities and the ability of the entities to respond to the policies dynamically. Other aspects are directed providing a consolidated view of active threat categories, a count of policies being triggered for each threat category, and associated trends. Yet other aspects are directed to providing a consolidated view of users, applications being accessed by users, and the access policies, if any, implicated by the such accesses.Type: ApplicationFiled: September 15, 2017Publication date: March 22, 2018Inventors: Aji Joseph, Paresh Raote, Lakshmi Hariharan, Kanishk Mahajan, Ashish Kolli, Moushmi Banerjee, Yitzchak Weiser, Weifang Xie, Jingyu Cui
-
Publication number: 20170116303Abstract: Techniques are provided for creating a unified data model for entities in components of an access management system. A method can include identifying an entity of a component, identifying a first attribute metadata for the entity, creating a data type for the first attribute metadata of the entity, defining the entity in accordance with the created data type, and storing the defined entity in a unified storage.Type: ApplicationFiled: September 16, 2016Publication date: April 27, 2017Applicant: Oracle International CorporationInventors: Ashish Kolli, Ramakrishna Bollu, Elangovan Subramanian
-
Publication number: 20170118249Abstract: The present disclosure relates generally to techniques for controlling access to resources accessible in a distributed environment. One of the techniques includes connecting a security agent to a policy server through a default port using a default protocol. The security agent is configured to intercept requests for access to a resource in a distributed environment, and work with the policy server to control access to the resource based on policies stored on the policy server. The technique further includes obtaining a configuration file from the policy server such that the security agent can initialize and determine the distributed environment in which the security agent resides, analyzing ports of communication within the distributed environment to identify a preferred port that is available for connection to the policy server, and connecting to the policy server through the preferred port to access the policies for controlling the access to the resource.Type: ApplicationFiled: October 21, 2016Publication date: April 27, 2017Applicant: Oracle International CorporationInventors: Vamsi Motukuru, Ashish Kolli
-
Patent number: 9081836Abstract: A method, mechanism, and computer program product for managing, referencing, and accessing centrally managed information are disclosed. Transparency is provided to the centrally managed data by introducing a mapping system between locally expected data and the central data repository. This allows, for example, local relational database systems to transparently access information from a central LDAP directory.Type: GrantFiled: June 28, 2004Date of Patent: July 14, 2015Assignee: ORACLE INTERNATIONAL CORPORATIONInventors: Ashish Kolli, Daniel ManHung Wong
-
Publication number: 20150089580Abstract: Web-based single sign-on can enable a user to log in to a single interface (such as through a web browser or thin client) and then provide SSO services to the user for one or more web applications. The web-based SSO system can be extended to support one or more different access control methods, such as form-fill, Federated (OIF), SSO Protected (OAM), and other policies. The web-based SSO system can include a user interface through which the user can access different web applications, systems, etc. and manage their credentials. Each SSO service can be associated with a web interface allowing the SSO services to be accessed over the web. The web interfaces can provide CRUD (create, read, update, delete) functionality for each SSO service. To support different access policy types, the web-based SSO system can include an extensible data manager that can manage data access to different types of repositories transparently.Type: ApplicationFiled: September 22, 2014Publication date: March 26, 2015Inventors: Marc B. Manza, Ayman Sorial, Ashish Kolli, Mrudul Uchil, Josh Brunaugh, Dharmvir Singh, Smith William Cornwell, Siva Sundeep Kuppala, Swati Jain, Paresh Raote
-
Publication number: 20150089620Abstract: Web-based single sign-on can enable a user to log in to a single interface (such as through a web browser or thin client) and then provide SSO services to the user for one or more web applications. The web-based SSO system can be extended to support one or more different access control methods, such as form-fill, Federated (OIF), SSO Protected (OAM), and other policies. The web-based SSO system can include a user interface through which the user can access different web applications, systems, etc. and manage their credentials. Each SSO service can be associated with a web interface allowing the SSO services to be accessed over the web. The web interfaces can provide CRUD (create, read, update, delete) functionality for each SSO service. To support different access policy types, the web-based SSO system can include an extensible data manager that can manage data access to different types of repositories transparently.Type: ApplicationFiled: September 22, 2014Publication date: March 26, 2015Inventors: Marc B. Manza, Ayman Sorial, Ashish Kolli, Mrudul Uchil, Josh Brunaugh, Dharmvir Singh, Smith William Cornwell, Siva Sundeep Kuppala, Swati Jain, Paresh Raote