Patents by Inventor Burton S. Kaliski, Jr.

Burton S. Kaliski, Jr. has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).

  • Patent number: 11831597
    Abstract: Systems and methods for out-of-band communications in the domain name system (DNS) are disclosed. Embodiments include a system for negotiating DNS services in the DNS. The system includes an in-band communication channel connecting a first party and a second party, and one or more out-of-band communication channels connecting the first party and the second party. The first party performs messaging for the DNS services with the second party using the in-band communication channel. Further, the first party advertises terms of the DNS service offered by the second party using the one or more out-of-band communication channels.
    Type: Grant
    Filed: June 28, 2021
    Date of Patent: November 28, 2023
    Assignee: VeriSign, Inc.
    Inventors: Burton S. Kaliski, Jr., Shumon Huque
  • Publication number: 20230362050
    Abstract: In one embodiment, a zone resiliency application indicates that an authoritative name server is in a degraded state. In operation, the zone resiliency application determines that the authoritative name server is in a degraded state. The zone resiliency application then generates a status record that indicates the degraded state. Subsequently, the zone resiliency application associates the status record with a domain name service (DNS) response to a DNS query. The zone resiliency application then transmits the DNS response and the associated status record to a requester.
    Type: Application
    Filed: July 13, 2023
    Publication date: November 9, 2023
    Applicant: VeriSign, Inc.
    Inventors: Burton S. KALISKI, JR., Eric OSTERWEIL, Duane WESSELS, Frank SCALZO, Glen WILEY, Shumon HUQUE
  • Patent number: 11743107
    Abstract: In one embodiment, a zone resiliency application indicates that an authoritative name server is in a degraded state. In operation, the zone resiliency application determines that the authoritative name server is in a degraded state. The zone resiliency application then generates a status record that indicates the degraded state. Subsequently, the zone resiliency application associates the status record with a domain name service (DNS) response to a DNS query. The zone resiliency application then transmits the DNS response and the associated status record to a requester.
    Type: Grant
    Filed: January 26, 2018
    Date of Patent: August 29, 2023
    Assignee: VeriSign, Inc.
    Inventors: Burton S. Kaliski, Jr., Eric Osterweil, Duane Wessels, Frank Scalzo, Glen Wiley, Shumon Huque
  • Publication number: 20230231856
    Abstract: One or more DNS services are provided that are configured to not only tolerate some commonly observed DNSSEC misconfigurations (while still providing DNSSEC's security guarantees), but also provide a more intelligent DNS resolution process informed by DNSSEC.
    Type: Application
    Filed: March 24, 2023
    Publication date: July 20, 2023
    Applicant: VeriSign, Inc.
    Inventors: Burton S. Kaliski, JR., Eric Osterweil
  • Publication number: 20230155834
    Abstract: Systems and methods for updating a Domain Name System (DNS) registry are disclosed. Embodiments perform operations including maintaining a domain name record of a DNS registrant recorded in a database of the DNS registry by a primary DNS interface. The operations also include receiving a request to update the domain name record of the DNS registrant via a secondary DNS interface. The operations further include modifying the domain name record of the DNS registrant in the DNS database in accordance with the request.
    Type: Application
    Filed: January 20, 2023
    Publication date: May 18, 2023
    Applicant: Verisign, Inc.
    Inventors: Burton S. KALISKI, JR., Scott HOLLENBECK
  • Publication number: 20230154458
    Abstract: In one embodiment, a domain-name based framework implemented in a digital assistant ecosystem uses domain names as unique identifiers for request types, requesting entities, responders, and target entities embedded in a natural language request. Further, the framework enables interpreting natural language requests according to domain ontologies associated with different responders. A domain ontology operates as a keyword dictionary for a given responder and defines the keywords and corresponding allowable values to be used for request types and request parameters. The domain-name based framework thus enables the digital assistant to interact with any responder that supports a domain ontology to generate precise and complete responses to natural language based requests.
    Type: Application
    Filed: January 18, 2023
    Publication date: May 18, 2023
    Applicant: VeriSign, Inc.
    Inventors: Andrew FREGLY, Burton S. KALISKI, JR., Swapneel SHETH
  • Patent number: 11616788
    Abstract: One or more DNS services are provided that are configured to not only tolerate some commonly observed DNSSEC misconfigurations (while still providing DNSSEC's security guarantees), but also provide a more intelligent DNS resolution process informed by DNSSEC.
    Type: Grant
    Filed: July 24, 2020
    Date of Patent: March 28, 2023
    Assignee: VeriSign, Inc.
    Inventors: Burton S. Kaliski, Jr., Eric Osterweil
  • Patent number: 11580962
    Abstract: In one embodiment, a domain-name based framework implemented in a digital assistant ecosystem uses domain names as unique identifiers for request types, requesting entities, responders, and target entities embedded in a natural language request. Further, the framework enables interpreting natural language requests according to domain ontologies associated with different responders. A domain ontology operates as a keyword dictionary for a given responder and defines the keywords and corresponding allowable values to be used for request types and request parameters. The domain-name based framework thus enables the digital assistant to interact with any responder that supports a domain ontology to generate precise and complete responses to natural language based requests.
    Type: Grant
    Filed: April 28, 2020
    Date of Patent: February 14, 2023
    Assignee: VeriSign, Inc.
    Inventors: Andrew Fregly, Burton S. Kaliski, Jr., Swapneel Sheth
  • Patent number: 11563581
    Abstract: Systems and methods for updating a Domain Name System (DNS) registry are disclosed. Embodiments perform operations including maintaining a domain name record of a DNS registrant recorded in a database of the DNS registry by a primary DNS interface. The operations also include receiving a request to update the domain name record of the DNS registrant via a secondary DNS interface. The operations further include modifying the domain name record of the DNS registrant in the DNS database in accordance with the request.
    Type: Grant
    Filed: April 12, 2021
    Date of Patent: January 24, 2023
    Assignee: VeriSign, Inc.
    Inventors: Burton S. Kaliski, Jr., Scott Hollenbeck
  • Publication number: 20220376898
    Abstract: Techniques for provisioning a key server to facilitate secure communications between a web server and a client by providing the client with a first data structure including information on how the web server may obtain a target symmetric key are presented. The techniques can include: provisioning the key server with a second data structure including information on how the key server may generate the first data structure; receiving a request on behalf of a web server for a third data structure comprising information on how the client may obtain the first data structure from the key server; and obtaining the third data structure, such that the third data structure is published in association with an identification of the web server, and such that the client uses the third data structure to obtain the first data structure and uses the first data structure to communicate with the web server.
    Type: Application
    Filed: August 5, 2022
    Publication date: November 24, 2022
    Applicant: VeriSign, Inc.
    Inventors: Burton S. KALISKI, JR., Glen S. WILEY
  • Patent number: 11488589
    Abstract: Techniques for processing a voice initiated request by a web server are presented. The techniques may include receiving, by a web server, request data representing a voice command to a user device, the request data including an identification of a requested webpage; determining, by the web server, that a response to the request data will continue a voice interaction; and providing, by the web server and to the user device, data for a voice enabled webpage associated with the requested webpage, where the data for the voice enabled webpage is configured to invoke a voice interface for the user device.
    Type: Grant
    Filed: December 21, 2018
    Date of Patent: November 1, 2022
    Assignee: VeriSign, Inc.
    Inventors: Andrew Fregly, Andrew Kaizer, Burton S. Kaliski, Jr., Patrick Kane, Swapneel Sheth, Hari Sola, Paul Tidwell, Pedro Vasquez
  • Patent number: 11438318
    Abstract: Techniques for provisioning a key server to facilitate secure communications between a web server and a client by providing the client with a first data structure including information on how the web server may obtain a target symmetric key are presented. The techniques can include: provisioning the key server with a second data structure including information on how the key server may generate the first data structure; receiving a request on behalf of a web server for a third data structure comprising information on how the client may obtain the first data structure from the key server; and obtaining the third data structure, such that the third data structure is published in association with an identification of the web server, and such that the client uses the third data structure to obtain the first data structure and uses the first data structure to communicate with the web server.
    Type: Grant
    Filed: May 19, 2020
    Date of Patent: September 6, 2022
    Assignee: VeriSign, Inc.
    Inventors: Burton S. Kaliski, Jr., Glen S. Wiley
  • Patent number: 11329821
    Abstract: Systems and methods for updating a Domain Name System (DNS) registry are disclosed. Embodiments perform operations including maintaining a domain name record of a DNS registrant recorded in a database of the DNS registry by a primary DNS interface. The operations also include receiving a request to update the domain name record of the DNS registrant via a secondary DNS interface. The operations further include modifying the domain name record of the DNS registrant in the DNS database in accordance with the request.
    Type: Grant
    Filed: December 28, 2015
    Date of Patent: May 10, 2022
    Assignee: VeriSign, Inc.
    Inventors: Burton S. Kaliski, Jr., Scott Hollenbeck
  • Publication number: 20210273779
    Abstract: Techniques for signing internet data are disclosed. The techniques include accessing a plurality of internet data records. The techniques also include generating, using at least one electronic processor, leaf nodes from the plurality of internet data records, and constructing a recursive hash tree from the plurality of leaf nodes. The techniques also include deriving information sufficient to validate the root node, and publishing, in an internet public key infrastructure (PKI) as a synthesized public key, the information sufficient to validate the root node. The techniques also include providing, through the internet and as a signature on at least one of the plurality of internet data records, validation data including sibling path data from the recursive hash tree, such that an internet client validates the at least one of the internet data records using at least the validation data and the synthesized public key.
    Type: Application
    Filed: February 16, 2021
    Publication date: September 2, 2021
    Inventor: Burton S. Kaliski, JR.
  • Patent number: 11082392
    Abstract: Systems and methods for out-of-band communications in the domain name system (DNS) are disclosed. Embodiments include a system for negotiating DNS services in the DNS. The system includes an in-band communication channel connecting a first party and a second party, and one or more out-of-band communication channels connecting the first party and the second party. The first party performs messaging for the DNS services with the second party using the in-band communication channel. Further, the first party advertises terms of the DNS service offered by the second party using the one or more out-of-band communication channels.
    Type: Grant
    Filed: October 30, 2019
    Date of Patent: August 3, 2021
    Assignee: VERISIGN, INC.
    Inventors: Burton S. Kaliski, Jr., Shumon Huque
  • Publication number: 20210234696
    Abstract: Systems and methods for updating a Domain Name System (DNS) registry are disclosed. Embodiments perform operations including maintaining a domain name record of a DNS registrant recorded in a database of the DNS registry by a primary DNS interface. The operations also include receiving a request to update the domain name record of the DNS registrant via a secondary DNS interface. The operations further include modifying the domain name record of the DNS registrant in the DNS database in accordance with the request.
    Type: Application
    Filed: April 12, 2021
    Publication date: July 29, 2021
    Inventors: Burton S. Kaliski, JR., Scott Hollenbeck
  • Publication number: 20210185028
    Abstract: In one aspect, authentication information is received from a first processing device in a second processing device, and a digital signature is generated in the second processing device by signing data that incorporates at least a portion of the received authentication information. The received authentication information is generated at least in part from a secret seed stored in the first processing device. The received authentication information may be combined with the digital signature generated by the second processing device to form a joint signature that is transmitted to an authentication server. In an illustrative embodiment, the received authentication information comprises a tokencode and the digital signature is generated by signing data that incorporates the tokencode. The data that is signed to generate the digital signature may comprise an electronic document having the tokencode appended thereto.
    Type: Application
    Filed: February 5, 2021
    Publication date: June 17, 2021
    Inventors: Daniel V. Bailey, John G. Brainard, Ari Juels, Burton S. Kaliski, JR.
  • Patent number: 11032127
    Abstract: In one embodiment, a resolution resiliency application performs robust domain name system (DNS) resolution. In operation, the resolution resiliency application determines that an authoritative name server that is responsible for a domain name specified in a DNS query is unavailable. In response to determining that the authoritative name server is unavailable, the resolution resiliency application performs operation(s) that modify one or more DNS records stored in a cache based on one or more resiliency policies associated with the authoritative name server. The resolution resiliency application then generates a DNS response to the DNS query based on a DNS record stored in the modified cache. Notably, unlike conventional techniques that may generate inaccurate DNS responses based on stale DNS records, the disclosed techniques increase the likelihood of providing clients with DNS responses that accurately provide requested information.
    Type: Grant
    Filed: June 26, 2017
    Date of Patent: June 8, 2021
    Assignee: VERISIGN, INC.
    Inventors: Shumon Huque, Burton S. Kaliski, Jr., Eric Osterweil, Frank Scalzo, Glen Wiley
  • Patent number: 11025407
    Abstract: Techniques for signing internet data are disclosed. The techniques include accessing a plurality of internet data records. The techniques also include generating, using at least one electronic processor, leaf nodes from the plurality of internet data records, and constructing a recursive hash tree from the plurality of leaf nodes. The techniques also include deriving information sufficient to validate the root node, and publishing, in an internet public key infrastructure (PKI) as a synthesized public key, the information sufficient to validate the root node. The techniques also include providing, through the internet and as a signature on at least one of the plurality of internet data records, validation data including sibling path data from the recursive hash tree, such that an internet client validates the at least one of the internet data records using at least the validation data and the synthesized public key.
    Type: Grant
    Filed: June 2, 2017
    Date of Patent: June 1, 2021
    Assignee: VERISIGN, INC.
    Inventor: Burton S. Kaliski, Jr.
  • Patent number: 11025482
    Abstract: In one embodiment, a resolution resiliency application modifies domain name service (DNS) resolution. In operation, the resolution resiliency application determines that an authoritative name server has begun recovering from a degraded state or receives a flush list update from the authoritative name server. In response, the resolution resiliency application performs operation(s) that modify a query rate and/or a cache. The query rate specifies a frequency associated with DNS queries transmitted to the first authoritative name server. The cache stores DNS record(s) received from the first authoritative name server. Finally, the resolution resiliency application generates a DNS response to a DNS query based on the modified query rate and/or the modified cache.
    Type: Grant
    Filed: January 26, 2018
    Date of Patent: June 1, 2021
    Assignee: VERISIGN, INC.
    Inventors: Shumon Huque, Burton S. Kaliski, Jr., Eric Osterweil, Frank Scalzo, Duane Wessels, Glen Wiley