Patents by Inventor Craig Farley NEWELL
Craig Farley NEWELL has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Publication number: 20240111954Abstract: A method implements evidence network navigation. The method includes receiving a user input corresponding to an entity of an ontology library; and generating an evidence graph using the user input, wherein the evidence graph includes an evidence node representing the entity from the ontology library and includes an evidence edge representing a file that includes the entity in a result graph, and wherein the result graph includes a result node representing the entity and a result edge representing a semantic relationship of the result node in a sentence from the file. The method further includes presenting the evidence graph.Type: ApplicationFiled: September 30, 2022Publication date: April 4, 2024Applicant: Scinapsis Analytics Inc., dba BenchSciInventors: Craig Farley NEWELL, Tom LEUNG, Elvis WIANDA, Amit BRONNER, Christian BATTISTA
-
Patent number: 11886602Abstract: Disclosed are various approaches for sharing uniform resource locators (URLs) and enforcing browser restrictions along with a shared URL. Browser restrictions can be identified by appending commands to the shared URL that instruct the receiving browser to activate certain browser restrictions. Browser restrictions can also be enforced using a URL restriction validator, which is a server process that can facilitate enforcement of browser restrictions along with a shared URL.Type: GrantFiled: April 4, 2022Date of Patent: January 30, 2024Assignee: VMware, Inc.Inventors: Rohit Pradeep Shetty, Sharun Varghese Samuel, Erich Peter Stuntebeck, Ramani Panchapakesan, Craig Farley Newell
-
Publication number: 20230421565Abstract: Disclosed are various approaches for verifying the compliance of a TLS session with TLs policies. Traffic between an application and a destination server can be routed through a TLS gateway. The TLS gateway can inspect TLS handshake messages for compliance with TLS policies.Type: ApplicationFiled: September 8, 2023Publication date: December 28, 2023Inventors: SANJAY PATIL, CRAIG FARLEY NEWELL, LEUNG TAO KWOK, AMIT KUMAR YADAV
-
Patent number: 11849038Abstract: Disclosed are various embodiments for providing access to a recovery key of a managed device and rotating the recovery key after it has been accessed. In one example, among others, a system includes a computing device and program instructions. The program instructions can cause the computing device to authenticate a user on the computing device in order to unlock an operating system based on a first recovery key. A key rotation command can be received from the management service. The key rotation command can include an instruction to rotate the first recovery key. The computing device can generate a second recovery key and transmit the second recovery key to the management service.Type: GrantFiled: February 2, 2023Date of Patent: December 19, 2023Assignee: VMware, Inc.Inventors: John Richards, Craig Farley Newell
-
Patent number: 11848962Abstract: Disclosed are various approaches for providing authentication of a user and a client device. A user's credentials can be authenticated by an identity provider. In addition, a device posture assessment that analyzes the device from which the authentication request originates is also performed. An authentication request can be authenticated based upon whether the device posture assessment reveals that device to be a managed device that is in compliance with compliance rules.Type: GrantFiled: September 24, 2020Date of Patent: December 19, 2023Assignee: AirWatch, LLCInventors: Craig Farley Newell, Jonathan Blake Brannon, Kabir Barday, Ashish Jain
-
Patent number: 11824965Abstract: The technology disclosed herein enables packet handling based on user information included in packet headers. In a particular embodiment, a method provides, in a gateway to a network environment, establishing a first connection with a first connection endpoint outside of the network environment. The first connection is established based on authentication of user information received from the first connection endpoint. The method further provides adding the user information to a packet header of one or more first packets carrying a request to establish a second connection between the gateway and a second connection endpoint within the network environment. Also, the method provides transferring the one or more first packets towards the second connection endpoint.Type: GrantFiled: February 8, 2022Date of Patent: November 21, 2023Assignee: VMware, Inc.Inventors: Suman Aluvala, Craig Farley Newell, Amit Kumar Yadav, Pavan Rajkumar Rangain, Rohit Pradeep Shetty
-
Patent number: 11792202Abstract: Disclosed are various approaches for verifying the compliance of a TLS session with TLs policies. Traffic between an application and a destination server can be routed through a TLS gateway. The TLS gateway can inspect TLS handshake messages for compliance with TLS policies.Type: GrantFiled: October 29, 2021Date of Patent: October 17, 2023Assignee: VMware, Inc.Inventors: Sanjay Patil, Craig Farley Newell, Leung Tao Kwok, Amit Kumar Yadav
-
Patent number: 11689581Abstract: Disclosed are various examples for segregating virtual private network (VPN) traffic based on the originating client application. A network gateway receives network traffic from a tunnel endpoint of an application-specific virtual private network tunnel. The network traffic originates from a client application executed in a client device. The network gateway identifies a particular virtual local area network through which the network traffic is received. The network gateway determines, using an identifier of the particular virtual local area network and a mapping of virtual local area network identifiers, characteristics of the client application or the client device from a set of mobile device management attributes. The network gateway determines whether to route the network traffic to a destination based at least in part on the characteristics.Type: GrantFiled: August 20, 2019Date of Patent: June 27, 2023Assignee: VMware, INC.Inventor: Craig Farley Newell
-
Publication number: 20230188339Abstract: Disclosed are various embodiments for providing access to a recovery key of a managed device and rotating the recovery key after it has been accessed. In one example, among others, a system includes a computing device and program instructions. The program instructions can cause the computing device to authenticate a user on the computing device in order to unlock an operating system based on a first recovery key. A key rotation command can be received from the management service. The key rotation command can include an instruction to rotate the first recovery key. The computing device can generate a second recovery key and transmit the second recovery key to the management service.Type: ApplicationFiled: February 2, 2023Publication date: June 15, 2023Inventors: John Richards, Craig Farley Newell
-
Patent number: 11595208Abstract: Disclosed are various embodiments for providing access to a recovery key of a managed device and rotating the recovery key after it has been accessed. In one example, among others, a system includes a computing device and program instructions. The program instructions can cause the computing device to store a first recovery key for a first managed computing device. The first recovery key is configured to access an encrypted data store of the first managed computing device. A request is received for the first recovery key from a second managed computing device. The first recovery key is transmitted for display on the second managed computing device. A key rotation command is generated for a command queue of the first managed computing device to rotate the first recovery key after transmitting the first recovery key. The second recovery key is received from the second computing device.Type: GrantFiled: October 11, 2021Date of Patent: February 28, 2023Assignee: VMware, Inc.Inventors: John Richards, Craig Farley Newell
-
Patent number: 11509645Abstract: Disclosed are various approaches for providing authentication of a user and a client device. A user's credentials can be authenticated by an identity provider. In addition, a device posture assessment that analyzes the device from which the authentication request originates is also performed. An authentication request can be authenticated based upon whether the device posture assessment reveals that device to be a managed device that is in compliance with compliance rules.Type: GrantFiled: July 16, 2019Date of Patent: November 22, 2022Assignee: AirWatch LLCInventors: Craig Farley Newell, Jonathan Blake Brannon, Kabir Barday, Ashish Jain
-
Patent number: 11431826Abstract: Computer networks for secure demand-driven file distribution are described. In one example, a client device receives a notification to check in for updates. In response, the client device checks in with a device services computing device on a computer network. The device services computing device determines a path list to certain cache computing devices on the computer network for receipt of the files, builds a markup file including the path list to the files, and transmits the markup file to the client device. The markup file can also include unique identifiers of the files and an encryption key for secure distribution of the files. Using the markup file, the client device can request the files, and the computer network is physically and logically arranged to distribute the files among the cache computing devices and to the client device in a secure and demand-driven manner.Type: GrantFiled: January 4, 2019Date of Patent: August 30, 2022Assignee: AirWatch LLCInventors: Craig Farley Newell, Michael Robert Jones, Ravishankar Chamarajnagar, Hai James Le
-
Publication number: 20220229920Abstract: Disclosed are various approaches for sharing uniform resource locators (URLs) and enforcing browser restrictions along with a shared URL. Browser restrictions can be identified by appending commands to the shared URL that instruct the receiving browser to activate certain browser restrictions. Browser restrictions can also be enforced using a URL restriction validator, which is a server process that can facilitate enforcement of browser restrictions along with a shared URL.Type: ApplicationFiled: April 4, 2022Publication date: July 21, 2022Inventors: ROHIT PRADEEP SHETTY, SHARUN VARGHESE SAMUEL, ERICH PETER STUNTEBECK, RAMANI PANCHAPAKESAN, CRAIG FARLEY NEWELL
-
Publication number: 20220174046Abstract: Disclosed are various examples for configuring network security based on device management characteristics. In one example, a specification of a set of network resources on an internal network is received from an administrator client. The set of network resources are those network resources that a particular application executed in client devices on an external network should be authorized to access. A gateway from the external network to the internal network is then configured to permit the particular application to have access to the set of network resources.Type: ApplicationFiled: February 21, 2022Publication date: June 2, 2022Inventors: CRAIG FARLEY NEWELL, SULAY SHAH, LEUNG TAO KWOK, ADAM RYKOWSKI
-
Publication number: 20220166858Abstract: The technology disclosed herein enables packet handling based on user information included in packet headers. In a particular embodiment, a method provides, in a gateway to a network environment, establishing a first connection with a first connection endpoint outside of the network environment. The first connection is established based on authentication of user information received from the first connection endpoint. The method further provides adding the user information to a packet header of one or more first packets carrying a request to establish a second connection between the gateway and a second connection endpoint within the network environment. Also, the method provides transferring the one or more first packets towards the second connection endpoint.Type: ApplicationFiled: February 8, 2022Publication date: May 26, 2022Inventors: SUMAN ALUVALA, CRAIG FARLEY NEWELL, AMIT KUMAR YADAV, PAVAN RAJKUMAR RANGAIN, ROHIT PRADEEP SHETTY
-
Patent number: 11314878Abstract: Disclosed are various approaches for sharing uniform resource locators (URLs) and enforcing browser restrictions along with a shared URL. Browser restrictions can be identified by appending commands to the shared URL that instruct the receiving browser to activate certain browser restrictions. Browser restrictions can also be enforced using a URL restriction validator, which is a server process that can facilitate enforcement of browser restrictions along with a shared URL.Type: GrantFiled: November 20, 2019Date of Patent: April 26, 2022Assignee: VMware, Inc.Inventors: Rohit Pradeep Shetty, Sharun Varghese Samuel, Erich Peter Stuntebeck, Ramani Panchapakesan, Craig Farley Newell
-
Patent number: 11290425Abstract: Disclosed are various examples for configuring network security based on device management characteristics. In one example, a specification of a set of network resources on an internal network is received from an administrator client. The set of network resources are those network resources that a particular application executed in client devices on an external network should be authorized to access. A gateway from the external network to the internal network is then configured to permit the particular application to have access to the set of network resources.Type: GrantFiled: February 1, 2016Date of Patent: March 29, 2022Assignee: AirWatch LLCInventors: Craig Farley Newell, Sulay Shah, Leung Tao Kwok, Adam Rykowski
-
Publication number: 20220086121Abstract: Disclosed are various embodiments for providing split-tunneled network connectivity on a per-application basis. A DNS query is received from a locally hosted DNS resolver. A first recursive DNS query is sent to an external DNS server and a second recursive DNS query is sent to an internal DNS server. A first recursive DNS response is then received from the external DNS server and a second recursive DNS response is received from the external DNS server. A response is then provided to the DNS query.Type: ApplicationFiled: November 23, 2021Publication date: March 17, 2022Inventors: PURAN CHAND, CRAIG FARLEY NEWELL, AMIT KUMAR YADAV
-
Patent number: 11272043Abstract: The technology disclosed herein enables packet handling based on user information included in packet headers. In a particular embodiment, a method provides, in a gateway to a network environment, establishing a first connection with a first connection endpoint outside of the network environment. The method further provides identifying first user information associated with the first connection and adding the first user information to a packet header of one or more first packets associated with the first connection. Also, the method provides transferring the one or more first packets into the network environment.Type: GrantFiled: March 11, 2020Date of Patent: March 8, 2022Assignee: VMware, Inc.Inventors: Suman Aluvala, Craig Farley Newell, Amit Kumar Yadav, Pavan Rajkumar Rangain, Rohit Pradeep Shetty
-
Publication number: 20220046024Abstract: Disclosed are various approaches for verifying the compliance of a TLS session with TLs policies. Traffic between an application and a destination server can be routed through a TLS gateway. The TLS gateway can inspect TLS handshake messages for compliance with TLS policies.Type: ApplicationFiled: October 29, 2021Publication date: February 10, 2022Inventors: SANJAY PATIL, CRAIG FARLEY NEWELL, LEUNG TAO KWOK, AMIT KUMAR YADAV