Patents by Inventor Jeromy S. Statia
Jeromy S. Statia has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Patent number: 11216514Abstract: A secure DNS query may be made by establishing a secure connection with a specific DNS server to determine an address for a hostname. A client device may have a database that may contain a record of a secure DNS server for one or more hostnames. When a DNS request contains one of the specified hostnames, an authenticated session may be created with the designated secure DNS server and a network address for the hostname is returned using the session. The authenticated session may authenticate a client device to the server as well as authenticate the server to the client. In some embodiments, the secure DNS server may accept connections from authenticated clients and may disregard connection requests from non authenticated clients.Type: GrantFiled: July 28, 2017Date of Patent: January 4, 2022Assignee: Microsoft Technology Licensing, LLCInventors: Jeromy S. Statia, Christopher J. Engdahl, Lee Walker, William Dixon
-
Publication number: 20190306169Abstract: Methods, systems, and apparatuses for managing access to a stored object/resource are provided. A shared access credential service may manage access attempts to the stored object by a client. A first request is received by the service from the client. The first request includes an authorization token. Whether an application in the client is authorized to access the stored object based upon the authorization token is determined. In response to determining the application to be authorized to access the stored object, (a) a shared access credential is generated to replace a prior-generated shared access credential (if existing) associated with the stored object, (b) the replacement shared access credential is associated with the stored object, and (c) the replacement shared access credential is provided by the service to the client. The replacement shared access credential is configured to be presented by the application to enable access to the stored object.Type: ApplicationFiled: March 27, 2018Publication date: October 3, 2019Inventors: Jeromy S. Statia, Xiaodong Wang
-
Publication number: 20170329850Abstract: A secure DNS query may be made by establishing a secure connection with a specific DNS server to determine an address for a hostname. A client device may have a database that may contain a record of a secure DNS server for one or more hostnames. When a DNS request contains one of the specified hostnames, an authenticated session may be created with the designated secure DNS server and a network address for the hostname is returned using the session. The authenticated session may authenticate a client device to the server as well as authenticate the server to the client. In some embodiments, the secure DNS server may accept connections from authenticated clients and may disregard connection requests from non authenticated clients.Type: ApplicationFiled: July 28, 2017Publication date: November 16, 2017Inventors: Jeromy S. Statia, Christopher J. Engdahl, Lee Walker, William Dixon
-
Patent number: 9740781Abstract: A secure DNS query may be made by establishing a secure connection with a specific DNS server to determine an address for a hostname. A client device may have a database that may contain a record of a secure DNS server for one or more hostnames. When a DNS request contains one of the specified hostnames, an authenticated session may be created with the designated secure DNS server and a network address for the hostname is returned using the session. The authenticated session may authenticate a client device to the server as well as authenticate the server to the client. In some embodiments, the secure DNS server may accept connections from authenticated clients and may disregard connection requests from non authenticated clients.Type: GrantFiled: January 12, 2015Date of Patent: August 22, 2017Assignee: Microsoft Technology Licensing, LLCInventors: Jeromy S. Statia, Christopher J. Engdahl, Lee Walker, William Dixon
-
Publication number: 20150199430Abstract: A secure DNS query may be made by establishing a secure connection with a specific DNS server to determine an address for a hostname. A client device may have a database that may contain a record of a secure DNS server for one or more hostnames. When a DNS request contains one of the specified hostnames, an authenticated session may be created with the designated secure DNS server and a network address for the hostname is returned using the session. The authenticated session may authenticate a client device to the server as well as authenticate the server to the client. In some embodiments, the secure DNS server may accept connections from authenticated clients and may disregard connection requests from non authenticated clients.Type: ApplicationFiled: January 12, 2015Publication date: July 16, 2015Inventors: Jeromy S. Statia, Christopher J. Engdahl, Lee Walker, William Dixon
-
Patent number: 8935748Abstract: A secure DNS query may be made by establishing a secure connection with a specific DNS server to determine an address for a hostname. A client device may have a database that may contain a record of a secure DNS server for one or more hostnames. When a DNS request contains one of the specified hostnames, an authenticated session may be created with the designated secure DNS server and a network address for the hostname is returned using the session. The authenticated session may authenticate a client device to the server as well as authenticate the server to the client. In some embodiments, the secure DNS server may accept connections from authenticated clients and may disregard connection requests from non authenticated clients.Type: GrantFiled: October 31, 2007Date of Patent: January 13, 2015Assignee: Microsoft CorporationInventors: Jeromy S. Statia, Christopher J. Engdahl, Lee Walker, William Dixon
-
Patent number: 8874693Abstract: A method is disclosed that includes assigning a service address to a service of a private network. The service of the private network is accessible, via a gateway, by a client computer. The method also includes turning off duplicate address detection at the gateway. The gateway is associated with a public network address that is different from the service address.Type: GrantFiled: February 20, 2009Date of Patent: October 28, 2014Assignee: Microsoft CorporationInventors: Nir Nice, Jeromy S. Statia, Samer J. Karim
-
Patent number: 8635440Abstract: A proxy system may use Layer 3 security mechanisms to establish secure communications between two devices. Each device may establish a secure session with the proxy using the same or a different configuration of a secure session. The proxy may pass traffic between the two devices and perform translation of the traffic between the two secure sessions. The proxy may also perform application layer gateway translations for communication traffic. Some embodiments may comprise a distribution or master proxy that may assign a communication session to a slave proxy in a scalable architecture.Type: GrantFiled: December 13, 2007Date of Patent: January 21, 2014Assignee: Microsoft CorporationInventor: Jeromy S. Statia
-
Patent number: 7895319Abstract: An address resolver such as a DNS service may use the identity of a requesting client device to determine a response of a network address for a hostname in a request. A requesting client device may transmit a hardware or user identifier to an address resolving server in order to authenticate the client. The server may determine if the requesting client is authorized to have access to the requested hostname, and respond with the network address when the client is authorized. The address resolver may be used to limit access for users to various devices or hosts across a network and in some cases may track which users are accessing which hosts.Type: GrantFiled: October 31, 2007Date of Patent: February 22, 2011Assignee: Microsoft CorporationInventors: Jeromy S. Statia, Christopher J. Engdahl
-
Publication number: 20100218247Abstract: A method is disclosed that includes assigning a service address to a service of a private network. The service of the private network is accessible, via a gateway, by a client computer. The method also includes turning off duplicate address detection at the gateway. The gateway is associated with a public network address that is different from the service address.Type: ApplicationFiled: February 20, 2009Publication date: August 26, 2010Applicant: Microsoft CorporationInventors: Nir Nice, Jeromy S. Statia, Samer J. Karim
-
Publication number: 20090158416Abstract: A proxy system may use Layer 3 security mechanisms to establish secure communications between two devices. Each device may establish a secure session with the proxy using the same or a different configuration of a secure session. The proxy may pass traffic between the two devices and perform translation of the traffic between the two secure sessions. The proxy may also perform application layer gateway translations for communication traffic. Some embodiments may comprise a distribution or master proxy that may assign a communication session to a slave proxy in a scalable architecture.Type: ApplicationFiled: December 13, 2007Publication date: June 18, 2009Applicant: Microsoft CorporationInventor: Jeromy S. Statia
-
Publication number: 20090113074Abstract: An address resolver such as a DNS service may use the identity of a requesting client device to determine a response of a network address for a hostname in a request. A requesting client device may transmit a hardware or user identifier to an address resolving server in order to authenticate the client. The server may determine if the requesting client is authorized to have access to the requested hostname, and respond with the network address when the client is authorized. The address resolver may be used to limit access for users to various devices or hosts across a network and in some cases may track which users are accessing which hosts.Type: ApplicationFiled: October 31, 2007Publication date: April 30, 2009Applicant: Microsoft CorporationInventors: Jeromy S. Statia, Christopher J. Engdahl
-
Publication number: 20090109857Abstract: A connection monitor utility may monitor the availability of various resources, display a status, and provide various optimization functions for each resource. Performance data may be collected and displayed, and the performance data may be used to optimize, troubleshoot, and notify administrators or users for each connection. Some embodiments may store optimized parameters for connections from different locations. In one use model, the monitor utility may be used with a secure connection to a private network to provide visual feedback of connectivity to various resources and simple optimization of the connections.Type: ApplicationFiled: October 31, 2007Publication date: April 30, 2009Applicant: Microsoft CorporationInventors: Jeromy S. Statia, Christopher J. Engdahl
-
Publication number: 20090112814Abstract: A secure DNS query may be made by establishing a secure connection with a specific DNS server to determine an address for a hostname. A client device may have a database that may contain a record of a secure DNS server for one or more hostnames. When a DNS request contains one of the specified hostnames, an authenticated session may be created with the designated secure DNS server and a network address for the hostname is returned using the session. The authenticated session may authenticate a client device to the server as well as authenticate the server to the client. In some embodiments, the secure DNS server may accept connections from authenticated clients and may disregard connection requests from non authenticated clients.Type: ApplicationFiled: October 31, 2007Publication date: April 30, 2009Applicant: Microsoft CorporationInventors: Jeromy S. Statia, Christopher J. Engdahl, Lee Walker, William Dixon
-
Patent number: 7346767Abstract: A method and apparatus for configuring a plurality of computers, each of which requires interaction with at least one resource to advance a configuration state of the computer. A request for access to a resource may be received from at least one of the computers, and a resource needed may be determined. An availability of the resource needed may be determined, and the computer instructed to interact with the resource if the resource is available. If the resource is not available, the computer may be caused to not interact with the resource.Type: GrantFiled: May 2, 2005Date of Patent: March 18, 2008Assignee: Microsoft CorporationInventors: Richard D. Chinn, Jason E. Robarts, Jeromy S. Statia, William D. Wasserstrum