Patents by Inventor Hemma Prafullchandra
Hemma Prafullchandra has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Patent number: 10033756Abstract: A trust management system may be configured to compute a trust level for a compute resource based on a trust manifest corresponding to compute resource. Based on the construction of a trust manifest for each class of compute resources, a trust level may be computed for a wide range of compute resources, including bare-metal hosts, hypervisor hosts, virtual machines and containers. A trust manifest may specify one or more inputs for calculating the trust level, as well as how the inputs are to be processed to arrive at the trust level. The one or more inputs may include integrity measurements determined in accordance with one or more integrity measurement methods and security assessments determined in accordance with one or more security assessment methods. The inputs for the trust level calculation may be evaluated by one or more rule statements specified in the trust manifest, the evaluation of which returns the trust level for the compute resource.Type: GrantFiled: October 26, 2017Date of Patent: July 24, 2018Assignee: HyTrust, Inc.Inventors: Govindarajan Rangarajan, Hemma Prafullchandra, Sean Patrick Murphy, Laxmana Kumar Bhavandla
-
Patent number: 9781165Abstract: An agile governance system provides recommendations for infrastructure change requests concerning a cloud-based computer environment in accordance with security policies regarding data to be used in connection with applications impacted by the requests. The nature and character of the data is determined using an interactive dialog with a requesting entity. Possible responses provided by the requesting entity are mapped to security policy requirements, which, in turn, are used to determine infrastructure stack requirements. Where pre-approved solutions that satisfy the security needs for the requested infrastructure change exist, they are recommended; otherwise, the requesting entity is presented with the recommendation for the requested infrastructure change along with a list of required approvals and approvers.Type: GrantFiled: July 5, 2017Date of Patent: October 3, 2017Assignee: HyTrust, Inc.Inventors: Hemma Prafullchandra, Govindarajan Rangarajan
-
Patent number: 9736188Abstract: An agile governance system provides recommendations for infrastructure change requests concerning a cloud-based computer environment in accordance with security policies regarding data to be used in connection with applications impacted by the requests. The nature and character of the data is determined using an interactive dialog with a requesting entity. Possible responses provided by the requesting entity are mapped to security policy requirements, which, in turn, are used to determine infrastructure stack requirements. Where pre-approved solutions that satisfy the security needs for the requested infrastructure change exist, they are recommended; otherwise, the requesting entity is presented with the recommendation for the requested infrastructure change along with a list of required approvals and approvers.Type: GrantFiled: January 6, 2017Date of Patent: August 15, 2017Assignee: HYTRUST, INC.Inventors: Hemma Prafullchandra, Govindarajan Rangarajan
-
Patent number: 9734349Abstract: A harmonized governance system for a heterogeneous agile environment affords abstraction and normalization of resources, operations, and roles, and respective attributes and contexts of such resources, operations, and roles, of respective individual agile environments that make up the heterogeneous agile environment. Such abstraction frees administrators from having to understand and be conversant in agile environment-specific syntaxes required for management of the different agile environments, and allows for normalized reporting and auditing across them. Data sources of the harmonized governance system store information mappings that facilitate this abstraction and normalization of the agile environment-specific syntaxes and as new attributes and contexts of resources, operations, and roles of the agile environment-specific syntax are discovered they are mapped to new counterparts in a heterogeneous agile environment syntax.Type: GrantFiled: July 15, 2016Date of Patent: August 15, 2017Assignee: HYTRUST, INC.Inventors: Hemma Prafullchandra, Govindarajan Rangarajan
-
Publication number: 20170230419Abstract: A harmonized governance system for a heterogeneous agile environment affords abstraction and normalization of resources, operations, and roles, and respective attributes and contexts of such resources, operations, and roles, of respective individual agile environments that make up the heterogeneous agile environment. Such abstraction frees administrators from having to understand and be conversant in agile environment-specific syntaxes required for management of the different agile environments, and allows for normalized reporting and auditing across them. Data sources of the harmonized governance system store information mappings that facilitate this abstraction and normalization of the agile environment-specific syntaxes and as new attributes and contexts of resources, operations, and roles of the agile environment-specific syntax are discovered they are mapped to new counterparts in a heterogeneous agile environment syntax.Type: ApplicationFiled: February 8, 2016Publication date: August 10, 2017Inventors: Hemma Prafullchandra, Govindarajan Rangarajan
-
Publication number: 20170228552Abstract: A harmonized governance system for a heterogeneous agile environment affords abstraction and normalization of resources, operations, and roles, and respective attributes and contexts of such resources, operations, and roles, of respective individual agile environments that make up the heterogeneous agile environment. Such abstraction frees administrators from having to understand and be conversant in agile environment-specific syntaxes required for management of the different agile environments, and allows for normalized reporting and auditing across them. Data sources of the harmonized governance system store information mappings that facilitate this abstraction and normalization of the agile environment-specific syntaxes and as new attributes and contexts of resources, operations, and roles of the agile environment-specific syntax are discovered they are mapped to new counterparts in a heterogeneous agile environment syntax.Type: ApplicationFiled: July 15, 2016Publication date: August 10, 2017Inventors: Hemma Prafullchandra, Govindarajan Rangarajan
-
Patent number: 9578066Abstract: An agile governance system provides recommendations for infrastructure change requests concerning a cloud-based computer environment in accordance with security policies regarding data to be used in connection with applications impacted by the requests. The nature and character of the data is determined using an interactive dialog with a requesting entity. Possible responses provided by the requesting entity are mapped to security policy requirements, which, in turn, are used to determine infrastructure stack requirements. Where pre-approved solutions that satisfy the security needs for the requested infrastructure change exist, they are recommended; otherwise, the requesting entity is presented with the recommendation for the requested infrastructure change along with a list of required approvals and approvers.Type: GrantFiled: September 14, 2016Date of Patent: February 21, 2017Assignee: HYTRUST, INC.Inventors: Hemma Prafullchandra, Govindarajan Rangarajan
-
Patent number: 9450940Abstract: A service request for a managed computer system is received and once a primary authorization for same has been given, a secondary authorization management system (SAMS) determines whether or not the service request requires secondary authorization. This determination is made according to a context of the managed computer system and an authorization profile for the received service request. If needed, the SAMS resolves the secondary authorization request and returns the resolution decision.Type: GrantFiled: February 3, 2015Date of Patent: September 20, 2016Assignee: HyTrust, Inc.Inventors: Boris Belov, Hemma Prafullchandra, Govindarajan Rangarajan
-
Publication number: 20160191467Abstract: Virtualization platforms and management clients therefor are communicatively coupled to one another via a control layer logically disposed therebetween. The control layer is configured to proxy virtualization management commands from the management clients to the virtualization platforms, but only after successful authentication of users (which may include automated agents and processes) issuing those commands and privileges of those users as defined by access control information accessible to the control layer. The control layer may be instantiated as an application running on a physical appliance logically interposed between the virtualization platforms and management clients, or a software package running on dedicated hardware logically interposed between the virtualization platforms and management clients, or as an application encapsulated in a virtual machine running on a compatible virtualization platform logically interposed between the virtualization platforms and management client.Type: ApplicationFiled: March 8, 2016Publication date: June 30, 2016Inventors: Renata Budku, Eric Ming Chiu, Boris Belov, Boris Strongin, Hemma Prafullchandra
-
Patent number: 9288052Abstract: A method and apparatus to provide an authoring tool enabling a user to create content and to selectively encrypt content is described. The encryption is designed to associate an entitlement with the content, the entitlement restricting access to the content. The system in one embodiment further includes a reading tool to access various content, the reading tool to enable an integrated reading of clear-text content and encrypted content. The system, in one embodiment, is designed to interact with a secure content service to provide a decryption key when an authorized user wishes to access the encrypted content.Type: GrantFiled: October 31, 2006Date of Patent: March 15, 2016Assignee: Moreover Acquisition CorporationInventors: Hemma Prafullchandra, Michael Graves, Ryan Emory Lundberg, Hans Granqvist, Gary Krall
-
Publication number: 20160044013Abstract: A service request for a managed computer system is received and once a primary authorization for same has been given, a secondary authorization management system (SAMS) determines whether or not the service request requires secondary authorization. This determination is made according to a context of the managed computer system and an authorization profile for the received service request. If needed, the SAMS resolves the secondary authorization request and returns the resolution decision.Type: ApplicationFiled: February 3, 2015Publication date: February 11, 2016Inventors: Boris Belov, Hemma Prafullchandra, Govindarajan Rangarajan
-
Patent number: 8966578Abstract: A service request for a managed computer system is received and once a primary authorization for same has been given, a secondary authorization management system (SAMS) determines whether or not the service request requires secondary authorization. This determination is made according to a context of the managed computer system and an authorization profile for the received service request. If needed, the SAMS resolves the secondary authorization request and returns the resolution decision.Type: GrantFiled: August 7, 2014Date of Patent: February 24, 2015Assignee: Hytrust, Inc.Inventors: Boris Belov, Hemma Prafullchandra, Govindarajan Rangarajan
-
Patent number: 8832784Abstract: Resources of a virtualized ecosystem are intelligently secured by defining and analyzing object handling security control information for one or more logical resources in the virtualized ecosystem and deriving therefrom object properties for each of the logical resources involved in the execution of a virtual machine in any given context within the virtualized ecosystem.Type: GrantFiled: December 17, 2012Date of Patent: September 9, 2014Assignee: HyTrust, Inc.Inventors: Renata Budko, Hemma Prafullchandra, Eric Ming Chiu, Boris Strongin
-
Publication number: 20130254882Abstract: An identity management deployment, interoperability, and compliance verification is discussed. In one embodiment, the system also provides on-demand services including automated certification, monitoring, alerting, routing, and translation of tokens for federated identity related interactions between multi-domain identity management systems is provided.Type: ApplicationFiled: April 29, 2013Publication date: September 26, 2013Inventors: Lakshmanan Kannappan, Vijay S. Simha, Hemma Prafullchandra
-
Patent number: 8539589Abstract: An automated configuration management system (ACMS) oversees resources of a virtualized ecosystem by establishing a baseline configuration (including, e.g., security controls) for the resources; and, repeatedly, monitoring and collecting data from the resources, analyzing the data collected, making recommendations concerning configuration changes for the resources of the virtualized ecosystem based on the analysis, and either adopting and implementing the recommendations or not, wherein new states of the virtualized ecosystem and reactions to recommended changes are observed and applied in the form of new recommendations, and/or as adjustments to the baseline. The recommendations may be implemented automatically or only upon review by an administrator before being implemented or not.Type: GrantFiled: April 13, 2012Date of Patent: September 17, 2013Assignee: Hytrust, Inc.Inventors: Hemma Prafullchandra, Russell Weisz, Renata Budko, Eric Ming Chiu, Boris Belov
-
Patent number: 8434129Abstract: A method and apparatus to provide identity management deployment interoperability and compliance verification. In one embodiment, the system also provides on-demand services including automated certification, monitoring, alerting, routing, and translation of tokens for federated identity related interactions between multi-domain identity management systems is provided.Type: GrantFiled: August 4, 2008Date of Patent: April 30, 2013Assignee: Fugen Solutions, Inc.Inventors: Lakshmanan Kannappan, Vijay S. Simha, Hemma Prafullchandra
-
Patent number: 8336079Abstract: Resources of a virtualized ecosystem are intelligently secured by defining and analyzing object handling security control information for one or more logical resources in the virtualized ecosystem and deriving therefrom object properties for each of the logical resources involved in the execution of a virtual machine in any given context within the virtualized ecosystem.Type: GrantFiled: December 31, 2008Date of Patent: December 18, 2012Assignee: Hytrust, Inc.Inventors: Renata Budko, Hemma Prafullchandra, Eric Ming Chiu, Boris Strongin
-
Publication number: 20120204267Abstract: An automated configuration management system (ACMS) oversees resources of a virtualized ecosystem by establishing a baseline configuration (including, e.g., security controls) for the resources; and, repeatedly, monitoring and collecting data from the resources, analyzing the data collected, making recommendations concerning configuration changes for the resources of the virtualized ecosystem based on the analysis, and either adopting and implementing the recommendations or not, wherein new states of the virtualized ecosystem and reactions to recommended changes are observed and applied in the form of new recommendations, and/or as adjustments to the baseline. The recommendations may be implemented automatically or only upon review by an administrator before being implemented or not.Type: ApplicationFiled: April 13, 2012Publication date: August 9, 2012Inventors: Hemma Prafullchandra, Russell Weisz, Renata Budko, Eric Ming Chiu, Boris Belov
-
Patent number: 8166552Abstract: An automated configuration management system (ACMS) oversees resources of a virtualized ecosystem by establishing a baseline configuration (including, e.g., security controls) for the resources; and, repeatedly, monitoring and collecting data from the resources, analyzing the data collected, making recommendations concerning configuration changes for the resources of the virtualized ecosystem based on the analysis, and either adopting and implementing the recommendations or not, wherein new states of the virtualized ecosystem and reactions to recommended changes are observed and applied in the form of new recommendations, and/or as adjustments to the baseline. The recommendations may be implemented automatically or only upon review by an administrator before being implemented or not.Type: GrantFiled: January 16, 2009Date of Patent: April 24, 2012Assignee: Hytrust, Inc.Inventors: Hemma Prafullchandra, Russell Weisz, Renata Budko, Eric Ming Chiu, Boris Belov
-
Publication number: 20120036561Abstract: Virtualization platforms and management clients therefor are communicatively coupled to one another via a control layer logically disposed therebetween. The control layer is configured to proxy virtualization management commands from the management clients to the virtualization platforms, but only after successful authentication of users (which may include automated agents and processes) issuing those commands and privileges of those users as defined by access control information accessible to the control layer. The control layer may be instantiated as an application running on a physical appliance logically interposed between the virtualization platforms and management clients, or a software package running on dedicated hardware logically interposed between the virtualization platforms and management clients, or as an application encapsulated in a virtual machine running on a compatible virtualization platform logically interposed between the virtualization platforms and management clients.Type: ApplicationFiled: October 14, 2011Publication date: February 9, 2012Inventors: Renata Budko, Eric Ming Chiu, Boris Belov, Boris Strongin, Hemma Prafullchandra