Patents by Inventor Maroun Touma
Maroun Touma has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Patent number: 11195066Abstract: A computing system for learning a device type and message formats used by a device is provided. The computing system includes an interface and a processor. The interface is receptive of documents describing identification information and communication and application protocols of devices. The processor is coupled with the interface to obtain rules of network packet analysis using document analytics and identify identification information and communication and application protocols of network messages from devices using the rules.Type: GrantFiled: September 11, 2018Date of Patent: December 7, 2021Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATIONInventors: Seraphin B. Calo, Douglas M. Freimuth, Dilip D. Kandlur, Thai F. Le, Erich Nahum, Jorge J. Ortiz, Maroun Touma, Dinesh C. Verma
-
Patent number: 11005920Abstract: A method is provided of using a set of servers to provide deferential services that have a pre-negotiated time for notice to release the servers. The method includes defining a virtual checkpoint frame interval that is constrained to a duration of up to half of the pre-negotiated time for notice to release the servers. The method includes, responsive to an end of the interval, (i) writing, to a shared state database, a state of processing of the packets and transactions occurring during the interval that are processed by a current one of the servers, and (ii) releasing the packets and transactions occurring during the interval. The method includes copying the packets and transactions occurring during the interval, and the state, from the current server to another server for subsequent processing, responsive to an indication of an instance loss on the current server.Type: GrantFiled: September 5, 2019Date of Patent: May 11, 2021Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATIONInventors: Seraphin B. Calo, Douglas M. Freimuth, Franck V. Le, Maroun Touma, Dinesh C. Verma
-
Patent number: 10785288Abstract: A method includes configuring worker services to operate in a stateless manner and providing support services that enable the worker services to operate in the stateless manner. The support services include (i) a management service for providing notifications of server removal and addition, (ii) a state maintenance service for maintaining state information in a central location, and (iii) a load balancer service for distributing requests among worker services. The method includes altering a number of servers allocated to at least one worker service, responsive to a notification from the management service. A private protocol is used between the worker services and load balancer service (a) to send, from the worker services to the load balancer service, a respective pointer to the state information associated with the requests, and (b) to include the respective pointer in the requests when any of the requests are forwarded to any worker service.Type: GrantFiled: February 22, 2017Date of Patent: September 22, 2020Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATIONInventors: Seraphin B. Calo, Douglas M. Freimuth, Franck V. Le, Erich M. Nahum, Maroun Touma, Dinesh C. Verma
-
Patent number: 10778753Abstract: A method includes configuring worker services to operate in a stateless manner and providing support services that enable the worker services to operate in the stateless manner. The support services include (i) a management service for providing notifications of server removal and addition, (ii) a state maintenance service for maintaining state information in a central location, and (iii) a load balancer service for distributing requests among worker services. The method includes altering a number of servers allocated to at least one worker service, responsive to a notification from the management service. A private protocol is used between the worker services and load balancer service (a) to send, from the worker services to the load balancer service, a respective pointer to the state information associated with the requests, and (b) to include the respective pointer in the requests when any of the requests are forwarded to any worker service.Type: GrantFiled: November 8, 2017Date of Patent: September 15, 2020Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATIONInventors: Seraphin B. Calo, Douglas M. Freimuth, Franck V. Le, Erich M. Nahum, Maroun Touma, Dinesh C. Verma
-
Patent number: 10749941Abstract: A method is provided of using a set of servers to provide deferential services that have a pre-negotiated time for notice to release the servers. The method includes defining a virtual checkpoint frame interval that is constrained to a duration of up to half of the pre-negotiated time for notice to release the servers. The method includes collecting packets and transactions occurring during the interval that are processed by a current server. The method includes, responsive to an end of the interval, (i) writing, to a shared state database, a state of processing of the packets and transactions occurring during the interval, and (ii) releasing the packets and transactions occurring during the interval. The method includes copying the packets and transactions occurring during the interval, and the state, from the current server to another server for subsequent processing, responsive to an indication of an instance loss on the current server.Type: GrantFiled: November 8, 2017Date of Patent: August 18, 2020Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATIONInventors: Seraphin B. Calo, Douglas M. Freimuth, Franck V. Le, Maroun Touma, Dinesh C. Verma
-
Patent number: 10735525Abstract: A network function modification method, system, and computer program product, include terminating the connection-oriented session between a client and a server via at least two proxies, running a multipath connection-oriented session between the at least two proxies, if an insertion request is received, establishing a first multipath subflow with the new multipath subflow traversing the network function of the insertion request, and if a removal request is received, establishing a second multipath subflow with the new multipath subflow not traversing the network function of the removal request.Type: GrantFiled: January 10, 2019Date of Patent: August 4, 2020Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATIONInventors: Seraphin Calo, Douglas Freimuth, Thai V. Le, Christian Makaya, Erich Nahum, Maroun Touma, Dinesh Verma
-
Patent number: 10616374Abstract: Systems, methods, and computer program products are disclosed for dynamically determining an optimal node of an overlay network for client attachment. An optimal node can be selected from a group of potential attachment nodes in the overlay network through which a client can establish a connection to the overlay network. Network parameter training data can be determined and used to train a network optimization model. Once trained, the network optimization model can be used to determine—based on network parameter data associated with the group of potential attachment nodes—the optimal node for the client to attach to. If a different node than a current attachment node is determined to be a new optimal node, a connection path can be established between this new optimal node and the client, and an existing connection path between the client and the previous optimal node can be terminated or simultaneously maintained.Type: GrantFiled: March 14, 2017Date of Patent: April 7, 2020Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATIONInventors: Douglas M. Freimuth, Dilip D. Kandlur, Franck T. Le, Christian Makaya, Erich M. Nahum, Maroun Touma
-
Publication number: 20200082231Abstract: A computing system for learning a device type and message formats used by a device is provided. The computing system includes an interface and a processor. The interface is receptive of documents describing identification information and communication and application protocols of devices. The processor is coupled with the interface to obtain rules of network packet analysis using document analytics and identify identification information and communication and application protocols of network messages from devices using the rules.Type: ApplicationFiled: September 11, 2018Publication date: March 12, 2020Inventors: Seraphin B. Calo, Douglas M. Freimuth, Dilip D. Kandlur, Thai F. Le, Erich Nahum, Jorge J. Ortiz, Maroun Touma, Dinesh C. Verma
-
Publication number: 20190394262Abstract: A method is provided of using a set of servers to provide deferential services that have a pre-negotiated time for notice to release the servers. The method includes defining a virtual checkpoint frame interval that is constrained to a duration of up to half of the pre-negotiated time for notice to release the servers. The method includes, responsive to an end of the interval, (i) writing, to a shared state database, a state of processing of the packets and transactions occurring during the interval that are processed by a current one of the servers, and (ii) releasing the packets and transactions occurring during the interval. The method includes copying the packets and transactions occurring during the interval, and the state, from the current server to another server for subsequent processing, responsive to an indication of an instance loss on the current server.Type: ApplicationFiled: September 5, 2019Publication date: December 26, 2019Inventors: Seraphin B. Calo, Douglas M. Freimuth, Franck V. Le, Maroun Touma, Dinesh C. Verma
-
Patent number: 10419968Abstract: A method includes positioning a proxy between a client and a server; the proxy receiving the client's Transmission Control Protocol (TCP) communications intended for establishing a communication connection to the server; the proxy initiating a TCP communication with the server after receiving the client's TCP; and the proxy determining a TCP congestion control algorithm based upon identifying information of the received client's TCP and on properties of the sever to provide optimum communications as a communication proxy between the client and the server.Type: GrantFiled: March 30, 2016Date of Patent: September 17, 2019Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATIONInventors: Dakshi Agrawal, Erich M Nahum, Vasileios Pappas, Franck Le Thai, Maroun Touma, Dinesh C Verma
-
Patent number: 10341428Abstract: A method is provided of using a set of servers to provide deferential services that have a pre-negotiated time for notice to release the servers. The method includes defining a virtual checkpoint frame interval that is constrained to a duration of up to half of the pre-negotiated time for notice to release the servers. The method includes collecting packets and transactions occurring during the interval that are processed by a current server. The method includes, responsive to an end of the interval, (i) writing, to a shared state database, a state of processing of the packets and transactions occurring during the interval, and (ii) releasing the packets and transactions occurring during the interval. The method includes copying the packets and transactions occurring during the interval, and the state, from the current server to another server for subsequent processing, responsive to an indication of an instance loss on the current server.Type: GrantFiled: February 22, 2017Date of Patent: July 2, 2019Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATIONInventors: Seraphin B. Calo, Douglas M. Freimuth, Franck V. Le, Maroun Touma, Dinesh C. Verma
-
Publication number: 20190149616Abstract: A network function modification method, system, and computer program product, include terminating the connection-oriented session between a client and a server via at least two proxies, running a multipath connection-oriented session between the at least two proxies, if an insertion request is received, establishing a first multipath subflow with the new multipath subflow traversing the network function of the insertion request, and if a removal request is received, establishing a second multipath subflow with the new multipath subflow not traversing the network function of the removal request.Type: ApplicationFiled: January 10, 2019Publication date: May 16, 2019Inventors: Seraphin Calo, Douglas Freimuth, Thai V. Le, Christian Makaya, Erich Nahum, Maroun Touma, Dinesh Verma
-
Patent number: 10257283Abstract: A network function modification method, system, and computer program product, include terminating the connection-oriented session between a client and a server via at least two proxies, running a multipath connection-oriented session between the at least two proxies, if an insertion request is received, establishing a first multipath subflow with the new multipath subflow traversing the network function of the insertion request, and if a removal request is received, establishing a second multipath subflow with the new multipath subflow not traversing the network function of the removal request.Type: GrantFiled: October 3, 2016Date of Patent: April 9, 2019Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATIONInventors: Seraphin Calo, Douglas Freimuth, Thai V. Le, Christian Makaya, Erich Nahum, Maroun Touma, Dinesh Verma
-
Patent number: 10177980Abstract: A middlebox includes a network monitor module configured to determine a quality-affective factor in a connection between a client and a server in a network. A processor is configured to compare the quality-affective factor to a threshold to determine whether the connection would benefit from a network processing function. A network control module is configured to configure a router to exclude the middlebox from the connection if the connection would not benefit from the network processing function and if the middlebox is already present in the connection to cease operation of the middlebox on the connection. Router configuration is delayed until the connection is idle.Type: GrantFiled: July 21, 2016Date of Patent: January 8, 2019Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATIONInventors: Seraphin B. Calo, William Cornejo, Thai F. Le, Erich M. Nahum, Maroun Touma, Dinesh C. Verma
-
Publication number: 20180270330Abstract: Systems, methods, and computer program products are disclosed for dynamically determining an optimal node of an overlay network for client attachment. An optimal node can be selected from a group of potential attachment nodes in the overlay network through which a client can establish a connection to the overlay network. Network parameter training data can be determined and used to train a network optimization model. Once trained, the network optimization model can be used to determine—based on network parameter data associated with the group of potential attachment nodes—the optimal node for the client to attach to. If a different node than a current attachment node is determined to be a new optimal node, a connection path can be established between this new optimal node and the client, and an existing connection path between the client and the previous optimal node can be terminated or simultaneously maintained.Type: ApplicationFiled: March 14, 2017Publication date: September 20, 2018Inventors: Douglas M. Freimuth, Dilip D. Kandlur, Franck T. Le, Christian Makaya, Erich M. Nahum, Maroun Touma
-
Publication number: 20180241807Abstract: A method includes configuring worker services to operate in a stateless manner and providing support services that enable the worker services to operate in the stateless manner. The support services include (i) a management service for providing notifications of server removal and addition, (ii) a state maintenance service for maintaining state information in a central location, and (iii) a load balancer service for distributing requests among worker services. The method includes altering a number of servers allocated to at least one worker service, responsive to a notification from the management service. A private protocol is used between the worker services and load balancer service (a) to send, from the worker services to the load balancer service, a respective pointer to the state information associated with the requests, and (b) to include the respective pointer in the requests when any of the requests are forwarded to any worker service.Type: ApplicationFiled: November 8, 2017Publication date: August 23, 2018Inventors: Seraphin B. Calo, Douglas M. Freimuth, Franck V. Le, Erich M. Nahum, Maroun Touma, Dinesh C. Verma
-
Publication number: 20180241806Abstract: A method includes configuring worker services to operate in a stateless manner and providing support services that enable the worker services to operate in the stateless manner. The support services include (i) a management service for providing notifications of server removal and addition, (ii) a state maintenance service for maintaining state information in a central location, and (iii) a load balancer service for distributing requests among worker services. The method includes altering a number of servers allocated to at least one worker service, responsive to a notification from the management service. A private protocol is used between the worker services and toad balancer service (a) to send, from the worker services to the load balancer service, a respective pointer to the state information associated with the requests, and (b) to include the respective pointer in the requests when any of the requests are forwarded to any worker service.Type: ApplicationFiled: February 22, 2017Publication date: August 23, 2018Inventors: Seraphin B. Calo, Douglas M. Freimuth, Franck V. Le, Erich M. Nahum, Maroun Touma, Dinesh C. Verma
-
Publication number: 20180241803Abstract: A method is provided of using a set of servers to provide deferential services that have a pre-negotiated time for notice to release the servers. The method includes defining a virtual checkpoint frame interval that is constrained to a duration of up to half of the pre-negotiated time for notice to release the servers. The method includes collecting packets and transactions occurring during the interval that are processed by a current server. The method includes, responsive to an end of the interval, (i) writing, to a shared state database, a state of processing of the packets and transactions occurring during the interval, and (ii) releasing the packets and transactions occurring during the interval. The method includes copying the packets and transactions occurring during the interval, and the state, from the current server to another server for subsequent processing, responsive to an indication of an instance loss on the current server.Type: ApplicationFiled: February 22, 2017Publication date: August 23, 2018Inventors: Seraphin B. Calo, Douglas M. Freimuth, Franck V. Le, Maroun Touma, Dinesh C. Verma
-
Publication number: 20180241804Abstract: A method is provided of using a set of servers to provide deferential services that have a pre-negotiated time for notice to release the servers. The method includes defining a virtual checkpoint frame interval that is constrained to a duration of up to half of the pre-negotiated time for notice to release the servers. The method includes collecting packets and transactions occurring during the interval that are processed by a current server. The method includes, responsive to an end of the interval, (i) writing, to a shared state database, a state of processing of the packets and transactions occurring during the interval, and (ii) releasing the packets and transactions occurring during the interval. The method includes copying the packets and transactions occurring during the interval, and the state, from the current server to another server for subsequent processing, responsive to an indication of an instance loss on the current server.Type: ApplicationFiled: November 8, 2017Publication date: August 23, 2018Inventors: Seraphin B. Calo, Douglas M. Freimuth, Franck V. Le, Maroun Touma, Dinesh C. Verma
-
Publication number: 20180225355Abstract: An approach for self-improving classification. The approach receives sensor data of a machine, wherein the sensor data is collected during operation of the machine. The approach defines one or more categories, wherein each category of the one or more categories is associated with one or more parameters. The approach determines whether the sensor data matches one or more parameters of a first category of the one or more categories. Responsive to a determination that the sensor data matches the one or more parameters of the first category, the approach classifies the sensor data into the first category. The approach applies a first category label to the sensor data, wherein the first category label is associated with the first category.Type: ApplicationFiled: February 7, 2017Publication date: August 9, 2018Inventors: Nancy A. Greco, Bong Jun Ko, Maroun Touma, Dinesh C. Verma, David A. Wood