Patents by Inventor Duane Fredrick Buss

Duane Fredrick Buss has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).

  • Patent number: 10275723
    Abstract: Policy enforcement via attestations is provided. A principal operates within an environment and assumes roles having certain access rights to resources and the principal takes actions while assuming those roles. The roles and actions are monitored and attestations are raised under the proper set of circumstances. The attestations trigger policy restrictions that are enforced against the principal. The policy restrictions circumscribe the access rights to the resources.
    Type: Grant
    Filed: December 13, 2006
    Date of Patent: April 30, 2019
    Assignee: ORACLE INTERNATIONAL CORPORATION
    Inventors: Duane Fredrick Buss, Stephen R. Carter
  • Patent number: 10270741
    Abstract: A user of a system defines a limited use access token for an external user for that external user to access defined resources of the system based on the user's account with the system. An access control system validates the access token when the external user attempts to access the defined resources and grants the external principal access to the defined resources.
    Type: Grant
    Filed: January 25, 2016
    Date of Patent: April 23, 2019
    Assignee: NetIQ Corporation
    Inventors: Lloyd Leon Burch, Robert Skousen Stilmar, Duane Fredrick Buss, Baha Masoud
  • Publication number: 20190036915
    Abstract: A Time-based One-Time Password (TOTP) validator is interposed between a principal and a network service. The validator interacts with a mobile application (app) on the mobile device associated with the principal to dynamically supply a validator secret. The secret and, perhaps, other information are processed by the app to generate a TOTP when the principal attempts to access a protected resource of the network service. The validator independently generates the TOTP and compares the app generated TOTP, and on a successful match, a principal's access device is redirected for access to the protected resource.
    Type: Application
    Filed: August 23, 2018
    Publication date: January 31, 2019
    Inventors: Lloyd Leon Burch, Duane Fredrick Buss, Larry Hal Henderson
  • Patent number: 10084773
    Abstract: A Time-based One-Time Password (TOTP) validator is interposed between a principal and a network service. The validator interacts with a mobile application (app) on the mobile device associated with the principal to dynamically supply a validator secret. The secret and, perhaps, other information are processed by the app to generate a TOTP when the principal attempts to access a protected resource of the network service. The validator independently generates the TOTP and compares the app generated TOTP, and on a successful match, a principal's access device is redirected for access to the protected resource.
    Type: Grant
    Filed: April 26, 2016
    Date of Patent: September 25, 2018
    Assignee: NetIQ Corporation
    Inventors: Lloyd Leon Burch, Duane Fredrick Buss, Larry Hal Henderson
  • Publication number: 20170374096
    Abstract: Systems and methods are described that support information security and sub-system operational conformance with protocols. In some embodiments, agent access to resources can be controlled via generation of credentials and/or tokens and/or conditioned external authentication. In some embodiments, workflows used to assess protocol conformance can be conditionally triggered at sub-systems.
    Type: Application
    Filed: August 21, 2017
    Publication date: December 28, 2017
    Applicant: ORACLE INTERNATIONAL CORPORATION
    Inventors: Stephen R. Carter, Lee Edward Lowry, Paul Alexandre Turner, Robert Mark Ward, Lloyd Leon Burch, Dale Robert Olds, Duane Fredrick Buss
  • Patent number: 9843490
    Abstract: Techniques for inserting analytic logic into network requests are presented. In an embodiment, instructions are dynamically inserted into web pages as the pages are requested. The instructions enable analytics to be captured and/or tracked when the web pages are processed. In another embodiment, web requests are intercepted and processed to include analytic instructions.
    Type: Grant
    Filed: March 14, 2013
    Date of Patent: December 12, 2017
    Assignee: NetIQ Corporation
    Inventors: Lloyd Leon Burch, Duane Fredrick Buss
  • Patent number: 9781154
    Abstract: Systems and methods are described that support information security and sub-system operational conformance with protocols. In some embodiments, agent access to resources can be controlled via generation of credentials and/or tokens and/or conditioned external authentication. In some embodiments, workflows used to assess protocol conformance can be conditionally triggered at sub-systems.
    Type: Grant
    Filed: September 26, 2016
    Date of Patent: October 3, 2017
    Assignee: ORACLE INTERNATIONAL CORPORATION
    Inventors: Stephen R. Carter, Lee Edward Lowry, Paul Alexandre Turner, Robert Mark Ward, Lloyd Leon Burch, Dale Robert Olds, Duane Fredrick Buss
  • Publication number: 20170264634
    Abstract: Systems and methods are described that support information security and sub-system operational conformance with protocols. In some embodiments, agent access to resources can be controlled via generation of credentials and/or tokens and/or conditioned external authentication. In some embodiments, workflows used to assess protocol conformance can be conditionally triggered at sub-systems.
    Type: Application
    Filed: September 26, 2016
    Publication date: September 14, 2017
    Applicant: ORACLE INTERNATIONAL CORPORATION
    Inventors: Stephen R. Carter, Lee Edward Lowry, Paul Alexandre Turner, Robert Mark Ward, Lloyd Leon Burch, Dale Robert Olds, Duane Fredrick Buss
  • Publication number: 20160241550
    Abstract: A Time-based One-Time Password (TOTP) validator is interposed between a principal and a network service. The validator interacts with a mobile application (app) on the mobile device associated with the principal to dynamically supply a validator secret. The secret and, perhaps, other information are processed by the app to generate a TOTP when the principal attempts to access a protected resource of the network service. The validator independently generates the TOTP and compares the app generated TOTP, and on a successful match, a principal's access device is redirected for access to the protected resource.
    Type: Application
    Filed: April 26, 2016
    Publication date: August 18, 2016
    Inventors: Lloyd Leon Burch, Duane Fredrick Buss, Larry Hal Henderson
  • Patent number: 9411977
    Abstract: System and method for enforcing role membership removal requirements are described. In one embodiment, the method includes, responsive to receipt of a removal request, performing a role evaluation of the removal request to generate a policy request; performing a policy evaluation of the policy request; generating a policy response in accordance with the policy evaluation; and enforcing the policy response.
    Type: Grant
    Filed: June 25, 2014
    Date of Patent: August 9, 2016
    Assignee: ORACLE INTERNATIONAL CORPORATION
    Inventor: Duane Fredrick Buss
  • Publication number: 20160173453
    Abstract: A user of a system defines a limited use access token for an external user for that external user to access defined resources of the system based on the user's account with the system.
    Type: Application
    Filed: January 25, 2016
    Publication date: June 16, 2016
    Inventors: Lloyd Leon Burch, Robert Skousen Stilmar, Duane Fredrick Buss, Baha Masoud
  • Patent number: 9332008
    Abstract: A Time-based One-Time Password (TOTP) validator is interposed between a principal and a network service. The validator interacts with a mobile application (app) on the mobile device associated with the principal to dynamically supply a validator secret. The secret and, perhaps, other information are processed by the app to generate a TOTP when the principal attempts to access a protected resource of the network service. The validator independently generates the TOTP and compares the app generated TOTP, and on a successful match, a principal's access device is redirected for access to the protected resource.
    Type: Grant
    Filed: March 28, 2014
    Date of Patent: May 3, 2016
    Assignee: NetIQ Corporation
    Inventors: Lloyd Leon Burch, Duane Fredrick Buss, Larry Hal Henderson
  • Patent number: 9245103
    Abstract: A user of a system defines a limited use access token for an external user for that external user to access defined resources of the system based on the user's account with the system. An access control system validates the access token when the external user attempts to access the defined resources and grants the external principal access to the defined resources.
    Type: Grant
    Filed: March 31, 2014
    Date of Patent: January 26, 2016
    Assignee: NetIQ Corporation
    Inventors: Lloyd Leon Burch, Robert Skousen Stilmar, Duane Fredrick Buss, Baha Masoud
  • Publication number: 20150281222
    Abstract: A Time-based One-Time Password (TOTP) validator is interposed between a principal and a network service. The validator interacts with a mobile application (app) on the mobile device associated with the principal to dynamically supply a validator secret. The secret and, perhaps, other information are processed by the app to generate a TOTP when the principal attempts to access a protected resource of the network service. The validator independently generates the TOTP and compares the app generated TOTP, and on a successful match, a principal's access device is redirected for access to the protected resource.
    Type: Application
    Filed: March 28, 2014
    Publication date: October 1, 2015
    Applicant: Novell, Inc.
    Inventors: Lloyd Leon Burch, Duane Fredrick Buss, Larry Hal Henderson
  • Publication number: 20150278500
    Abstract: A user of a system defines a limited use access token for an external user for that external user to access defined resources of the system based on the user's account with the system. An access control system validates the access token when the external user attempts to access the defined resources and grants the external principal access to the defined resources.
    Type: Application
    Filed: March 31, 2014
    Publication date: October 1, 2015
    Applicant: Novell, Inc.
    Inventors: Lloyd Leon Burch, Robert Skousen Stilmar, Duane Fredrick Buss, Baha Masoud
  • Publication number: 20140310768
    Abstract: System and method for enforcing role membership removal requirements are described. In one embodiment, the method includes, responsive to receipt of a removal request, performing a role evaluation of the removal request to generate a policy request; performing a policy evaluation of the policy request; generating a policy response in accordance with the policy evaluation; and enforcing the policy response.
    Type: Application
    Filed: June 25, 2014
    Publication date: October 16, 2014
    Inventor: Duane Fredrick Buss
  • Publication number: 20140280867
    Abstract: Techniques for inserting analytic logic into network requests are presented. In an embodiment, instructions are dynamically inserted into web pages as the pages are requested. The instructions enable analytics to be captured and/or tracked when the web pages are processed. In another embodiment, web requests are intercepted and processed to include analytic instructions.
    Type: Application
    Filed: March 14, 2013
    Publication date: September 18, 2014
    Applicant: Novell, Inc.
    Inventors: Lloyd Leon Burch, Duane Fredrick Buss
  • Patent number: 8769604
    Abstract: System and method for enforcing role membership removal requirements are described. In one embodiment, the method includes, responsive to receipt of a removal request, performing a role evaluation of the removal request to generate a policy request; performing a policy evaluation of the policy request; generating a policy response in accordance with the policy evaluation; and enforcing the policy response.
    Type: Grant
    Filed: May 15, 2006
    Date of Patent: July 1, 2014
    Assignee: Oracle International Corporation
    Inventor: Duane Fredrick Buss
  • Publication number: 20110314513
    Abstract: In various embodiments, techniques for role management systems/services are provided. According to an embodiment, a method is provided to allow a role management system to be configured, modified, and restricted. Specific roles assignments may be decorated to be meaningful to an application but which are not generally applicable to an original role specification. A Policy Enforcement Point (PEP) role request response may be modified by an augmentation service, which evaluates a resource association to identify an appropriate resource profile. Resource decorations are identified by the selected profile and are applied to the role request response.
    Type: Application
    Filed: August 31, 2011
    Publication date: December 22, 2011
    Inventors: Stephen R. Carter, Duane Fredrick Buss
  • Patent number: 8032558
    Abstract: In various embodiments, techniques for role management systems are provided. According to an embodiment, a method is provided to allow a role management system to be configured, modified, and restricted. Specific roles assignments may be decorated to be meaningful to an application but which are not generally applicable to an original role specification. A Policy Enforcement Point (PEP) role request response may be modified by an augmentation service, which evaluates a resource association to identify an appropriate resource profile. Resource decorations are identified by the selected profile, and are applied to the role request response.
    Type: Grant
    Filed: January 10, 2007
    Date of Patent: October 4, 2011
    Assignee: Novell, Inc.
    Inventors: Stephen R. Carter, Duane Fredrick Buss