Patents by Inventor Donald E. Schmidt
Donald E. Schmidt has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Publication number: 20130283354Abstract: A selective cross-realm authenticator associates an identifier with a request from an entity authenticated in one realm to access a resource associated with a second realm. The identifier indicates that the entity was authenticated in a realm other than the realm associated with the requested resource. A domain controller associated with the resource performs an access check to verify that the authenticated user is authorized to authenticate to the requested resource. Permissions associated with the resource can be used to specify levels of access to be granted to entities authenticated by a domain controller associated with another realm.Type: ApplicationFiled: June 18, 2013Publication date: October 24, 2013Inventors: Praerit Garg, Cliff Van Dyke, Karthik Jaganathan, Mark Pustilnik, Donald E. Schmidt
-
Patent number: 8510818Abstract: A selective cross-realm authenticator associates an identifier with a request from an entity authenticated in one realm to access a resource associated with a second realm. The identifier indicates that the entity was authenticated in a realm other than the realm associated with the requested resource. A domain controller associated with the resource performs an access check to verify that the authenticated user is authorized to authenticate to the requested resource. Permissions associated with the resource can be used to specify levels of access to be granted to entities authenticated by a domain controller associated with another realm.Type: GrantFiled: May 20, 2009Date of Patent: August 13, 2013Assignee: Microsoft CorporationInventors: Praerit Garg, Cliff Van Dyke, Karthik Jaganathan, Mark Pustilnik, Donald E. Schmidt
-
Patent number: 8245051Abstract: Systems and methods directed at enhancing the capability of a federated authentication system by configuring the system with extensibility points for adding new account stores and customizing claim transformations. The federated authentication system includes accounts stores, a security token service (STS), and custom claim transformation modules. The account stores are configured to maintain data associated with accounts and to provide security claims in an intermediate format. The STS is configured to retrieve the security claims provided by the account stores and includes built-in transformations for transforming each security claim from the intermediate format to formats associated with resource providers. The STS is further configured to provide extensibility points for custom claim transformations that are not available from the built-in transformations. The custom claim transformation modules are configured to perform at least one custom claim transformation.Type: GrantFiled: May 13, 2005Date of Patent: August 14, 2012Assignee: Microsoft CorporationInventors: Ryan D. Johnson, Donald E. Schmidt, Jeffrey F. Spelman, Kahren Tevosyan, Vijayavani Nori
-
Publication number: 20110257364Abstract: Disclosed are methods of purifying glycopeptides that are substituted with one or more substituents each comprising one or more phosphono groups that are useful as antibacterial agents. The methods include contacting a solution of the glycopeptide derivatives with a polystyrene-containing resin, eluting the resin with an aqueous solution, and isolating the purified glycopeptide derivative.Type: ApplicationFiled: November 16, 2010Publication date: October 20, 2011Applicant: THERAVANCE, INC.Inventors: Donald E. SCHMIDT, JR., Jeanmarie Donovan Sganga
-
Patent number: 7858583Abstract: Disclosed are methods of purifying glycopeptides that are substituted with one or more substituents each comprising one or more phosphono groups that are useful as antibacterial agents. The methods include contacting a solution of the glycopeptide derivatives with a polystyrene-containing resin, eluting the resin with an aqueous solution, and isolating the purified glycopeptide derivative.Type: GrantFiled: November 17, 2008Date of Patent: December 28, 2010Assignee: Theravance, Inc.Inventors: Donald E. Schmidt, Jr., Jeanmarie Donovan Sganga
-
Patent number: 7748046Abstract: Systems and methods directed at transforming security claims in a federated authentication system using an intermediate format. The systems and methods described herein are directed at transforming security claims in a federated authentication system using an intermediate format. The federated authentication system includes an identity provider and a resource provider. The identity provider receives a request for information from the resource provider to authenticate an account by an application associated with the resource provider. A security claim associated with the account is retrieved where the security claim is provided by an account store in a format specific to the account store. The security claim is transformed from the account store specific format to an intermediate format. The security claim is then transformed from the intermediate format to a federated format recognized by the resource provider. The transformed security claim is provided in a security token to the resource provider.Type: GrantFiled: April 29, 2005Date of Patent: June 29, 2010Assignee: Microsoft CorporationInventors: Ryan D. Johnson, Donald E. Schmidt, Jeffrey F. Spelman, Kahren Tevosyan, Vijayavani Nori
-
Patent number: 7702917Abstract: The described systems, methods, and data structures are directed at data transfer using Hyper-Text Transfer Protocol (HTTP) query strings. A block of data is partitioned into sections. Each section is encoded in a query string of a HTTP message. Each HTTP message is sent to a server by redirecting through a client. Multiple redirected messages are sent until the entire block of data is transferred to the server. The data block may be stored as a cookie on the client so that the data block does not have to persist on any server. Data transfer using HTTP query strings may be implemented to transfer a security token from a security token service (STS) server to an application server.Type: GrantFiled: November 19, 2004Date of Patent: April 20, 2010Assignee: Microsoft CorporationInventors: Kahren Tevosyan, Matthew Hur, Ryan D Johnson, Donald E Schmidt, Jeffrey F Spelman
-
Patent number: 7698381Abstract: Methods and systems are provided for controlling the scope of delegation of authentication credentials within a network environment. A server is configured to provide a trusted third-party with a ticket authenticating the server, information about a target service that a server seeks to access on behalf of the client, and a service ticket associated with the client. This service ticket may be provided by the client or may be a previously granted service ticket granted to the server for itself in the name of the client. The trusted third-party grants a new service ticket to access the target service to the server, in the client's name, if such delegation is permitted according to delegation constraints associated with the client.Type: GrantFiled: June 20, 2001Date of Patent: April 13, 2010Assignee: Microsoft CorporationInventors: John E. Brezak, Richard B. Ward, Donald E. Schmidt
-
Patent number: 7617522Abstract: An enterprise network architecture has a trust link established between two autonomous network systems that enables transitive resource access between network domains of the two network systems. The trust link is defined by data structures maintained by each of the respective network systems. The first network system maintains namespaces that correspond to the second network system and a domain controller in the first network system, or a first network system administrator, indicates whether to trust individual namespaces. An account managed by a domain in the second network system can request authentication via a domain controller in the first network system. The first network system determines from the trust link to communicate the authentication request to the second network system. The first network system also determines from the trust link where to communicate authorization requests when administrators manage group memberships and access control lists.Type: GrantFiled: April 24, 2006Date of Patent: November 10, 2009Assignee: Microsoft CorporationInventors: Donald E. Schmidt, Clifford P. Van Dyke, Paul J. Leach, Praerit Garg, Murli D. Satagopan
-
Patent number: 7603555Abstract: A system for authenticating computer users comprising a single active directory disposed in an intranet, a web server disposed in a DMZ associated with the intranet, and a web client coupled to the web server through an internet connection that is capable of signing on to the web server.Type: GrantFiled: June 30, 2005Date of Patent: October 13, 2009Assignee: Microsoft CorporationInventors: Donald E. Schmidt, Ryan D. Johnson, Kahren Tevosyan, Jeffrey F. Spelman, Krishnanand Shenoy, Harini Raghavan, David R. Mowers, Matthew Hur
-
Publication number: 20090228969Abstract: A selective cross-realm authenticator associates an identifier with a request from an entity authenticated in one realm to access a resource associated with a second realm. The identifier indicates that the entity was authenticated in a realm other than the realm associated with the requested resource. A domain controller associated with the resource performs an access check to verify that the authenticated user is authorized to authenticate to the requested resource. Permissions associated with the resource can be used to specify levels of access to be granted to entities authenticated by a domain controller associated with another realm.Type: ApplicationFiled: May 20, 2009Publication date: September 10, 2009Applicant: Microsoft CorporationInventors: Praerit Garg, Cliff Van Dyke, Karthik Jaganathan, Mark Pustilnik, Donald E. Schmidt
-
Publication number: 20090215673Abstract: Disclosed are methods of purifying glycopeptides that are substituted with one or more substituents each comprising one or more phosphono groups that are useful as antibacterial agents. The methods include contacting a solution of the glycopeptide derivatives with a polystyrene-containing resin, eluting the resin with an aqueous solution, and isolating the purified glycopeptide derivative.Type: ApplicationFiled: November 17, 2008Publication date: August 27, 2009Inventors: Donald E. Schmidt, JR., Jeanmarie Donovan Sganga
-
Patent number: 7568218Abstract: A selective cross-realm authenticator associates an identifier with a request from an entity authenticated in one realm to access a resource associated with a second realm. The identifier indicates that the entity was authenticated in a realm other than the realm associated with the requested resource. A domain controller associated with the resource performs an access check to verify that the authenticated user is authorized to authenticate to the requested resource. Permissions associated with the resource can be used to specify levels of access to be granted to entities authenticated by a domain controller associated with another realm.Type: GrantFiled: October 31, 2002Date of Patent: July 28, 2009Assignee: Microsoft CorporationInventors: Praerit Garg, Cliff Van Dyke, Karthik Jaganathan, Mark Pustilnik, Donald E. Schmidt
-
Patent number: 7468420Abstract: Disclosed are methods of purifying glycopeptides that are substituted with one or more substituents each comprising one or more phosphono groups that are useful as antibacterial agents. The methods include contacting a solution of the glycopeptide derivatives with a polystyrene-containing resin, eluting the resin with an aqueous solution, and isolating the purified glycopeptide derivative.Type: GrantFiled: October 25, 2007Date of Patent: December 23, 2008Assignee: Theravance, Inc.Inventors: Donald E. Schmidt, Jr., Jeanmarie Donovan Sganga
-
Patent number: 7401235Abstract: Methods and systems are provided to allow users that are authenticated by a trusted external service to gain controlled levels of access to selected local computing resources without requiring the user to also have conventional access control capabilities for the resources.Type: GrantFiled: May 10, 2002Date of Patent: July 15, 2008Assignee: Microsoft CorporationInventors: David R. Mowers, Daniel Doubrovkine, Roy Leban, Donald E. Schmidt, Ram Viswanathan, John E. Brezak, Richard B. Ward
-
Patent number: 7375181Abstract: Disclosed are methods of purifying glycopeptides that are substituted with one or more substituents each comprising one or more phosphono groups that are useful as antibacterial agents. The methods include contacting a solution of the glycopeptide derivatives with a polystyrene-containing resin, eluting the resin with an aqueous solution, and isolating the purified glycopeptide derivative.Type: GrantFiled: December 13, 2005Date of Patent: May 20, 2008Assignee: Theravance, Inc.Inventors: Donald E. Schmidt, Jr., Jeanmarie Donovan Sganga
-
Patent number: 7185359Abstract: An enterprise network architecture has a trust link established between two autonomous network systems that enables transitive resource access between network domains of the two network systems. The trust link is defined by data structures maintained by each of the respective network systems. The first network system maintains namespaces that correspond to the second network system and a domain controller in the first network system, or a first network system administrator, indicates whether to trust individual namespaces. An account managed by a domain in the second network system can request authentication via a domain controller in the first network system. The first network system determines from the trust link to communicate the authentication request to the second network system. The first network system also determines from the trust link where to communicate authorization requests when administrators manage group memberships and access control lists.Type: GrantFiled: December 21, 2001Date of Patent: February 27, 2007Assignee: Microsoft CorporationInventors: Donald E. Schmidt, Clifford P. Van Dyke, Paul J. Leach, Praerit Garg, Murli D. Satagopan
-
Patent number: 7015307Abstract: Disclosed are methods of purifying glycopeptides that are substituted with one or more substituents each comprising one or more phosphono groups that are useful as antibacterial agents. The methods include contacting a solution of the glycopeptide derivatives with a polystyrene-containing resin, eluting the resin with an aqueous solution, and isolating the purified glycopeptide derivative.Type: GrantFiled: August 23, 2002Date of Patent: March 21, 2006Assignee: Theravance, Inc.Inventors: Donald E. Schmidt, Jeanmarie Donovan Sganga
-
Patent number: 6828299Abstract: Disclosed are polyhydroxy derivatives of glycopeptides and pharmaceutical compositions containing such glycopeptide derivatives. The disclosed glycopeptide derivatives are useful as antibacterial agents.Type: GrantFiled: May 1, 2001Date of Patent: December 7, 2004Assignee: Theravance, Inc.Inventors: Guang Yang, Donald E. Schmidt, Jr., J. Kevin Judice
-
Publication number: 20040098615Abstract: Systems and related methods enable a web service to map a unique identifier received from a client to the client's user account in a directory service using an authentication protocol and thereby receive permission to access resources for the client in the service's domain or in a distant domain. When the unique identifier is a web service unique identifier (PUID), the PUID is changed to a user principal name (UPN) mappable to the client's user account object in the directory service.Type: ApplicationFiled: November 16, 2002Publication date: May 20, 2004Inventors: David R. Mowers, John E. Brezak, Richard B. Ward, Scott A. Field, Todd F. Stecher, Paul J. Leach, Donald E. Schmidt