Patents by Inventor Mitchell T. Christensen
Mitchell T. Christensen has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Publication number: 20230362130Abstract: Systems and techniques are described for monitoring network communications using a distributed firewall. One of the techniques includes receiving, at a driver executing in a guest operating system of a virtual machine, a request to open a network connection from a process associated with a user, wherein the driver performs operations comprising: obtaining identity information for the user; providing the identity information and data identifying the network connection to an identity module external to the driver; and receiving, by a distributed firewall, data associating the identity information with the data identifying the network connection from the identity module, wherein the distributed firewall performs operations comprising: receiving an outgoing packet from the virtual machine; determining that the identity information corresponds to the outgoing packet; and evaluating one or more routing rules based at least in part on the identity information.Type: ApplicationFiled: July 3, 2023Publication date: November 9, 2023Inventors: Anirban Sengupta, Subrahmanyam Manuguri, Mitchell T. Christensen, Azeem Feroz, Todd Sabin
-
Patent number: 11695731Abstract: Systems and techniques are described for monitoring network communications using a distributed firewall. One of the techniques includes receiving, at a driver executing in a guest operating system of a virtual machine, a request to open a network connection from a process associated with a user, wherein the driver performs operations comprising: obtaining identity information for the user; providing the identity information and data identifying the network connection to an identity module external to the driver; and receiving, by a distributed firewall, data associating the identity information with the data identifying the network connection from the identity module, wherein the distributed firewall performs operations comprising: receiving an outgoing packet from the virtual machine; determining that the identity information corresponds to the outgoing packet; and evaluating one or more routing rules based at least in part on the identity information.Type: GrantFiled: October 5, 2020Date of Patent: July 4, 2023Assignee: NICIRA, INC.Inventors: Anirban Sengupta, Subrahmanyam Manuguri, Mitchell T. Christensen, Azeem Feroz, Todd Sabin
-
Publication number: 20210036990Abstract: Systems and techniques are described for monitoring network communications using a distributed firewall. One of the techniques includes receiving, at a driver executing in a guest operating system of a virtual machine, a request to open a network connection from a process associated with a user, wherein the driver performs operations comprising: obtaining identity information for the user; providing the identity information and data identifying the network connection to an identity module external to the driver; and receiving, by a distributed firewall, data associating the identity information with the data identifying the network connection from the identity module, wherein the distributed firewall performs operations comprising: receiving an outgoing packet from the virtual machine; determining that the identity information corresponds to the outgoing packet; and evaluating one or more routing rules based at least in part on the identity information.Type: ApplicationFiled: October 5, 2020Publication date: February 4, 2021Inventors: Anirban Sengupta, Subrahmanyam Manuguri, Mitchell T. Christensen, Azeem Feroz, Todd Sabin
-
Patent number: 10798058Abstract: Systems and techniques are described for monitoring network communications using a distributed firewall. One of the techniques includes receiving, at a driver executing in a guest operating system of a virtual machine, a request to open a network connection from a process associated with a user, wherein the driver performs operations comprising: obtaining identity information for the user; providing the identity information and data identifying the network connection to an identity module external to the driver; and receiving, by a distributed firewall, data associating the identity information with the data identifying the network connection from the identity module, wherein the distributed firewall performs operations comprising: receiving an outgoing packet from the virtual machine; determining that the identity information corresponds to the outgoing packet; and evaluating one or more routing rules based at least in part on the identity information.Type: GrantFiled: July 20, 2018Date of Patent: October 6, 2020Assignee: NICIRA, INC.Inventors: Anirban Sengupta, Subrahmanyam Manuguri, Mitchell T. Christensen, Azeem Feroz, Todd Sabin
-
Publication number: 20180351912Abstract: Systems and techniques are described for monitoring network communications using a distributed firewall. One of the techniques includes receiving, at a driver executing in a guest operating system of a virtual machine, a request to open a network connection from a process associated with a user, wherein the driver performs operations comprising: obtaining identity information for the user; providing the identity information and data identifying the network connection to an identity module external to the driver; and receiving, by a distributed firewall, data associating the identity information with the data identifying the network connection from the identity module, wherein the distributed firewall performs operations comprising: receiving an outgoing packet from the virtual machine; determining that the identity information corresponds to the outgoing packet; and evaluating one or more routing rules based at least in part on the identity information.Type: ApplicationFiled: July 20, 2018Publication date: December 6, 2018Inventors: Anirban Sengupta, Subrahmanyam Manuguri, Mitchell T. Christensen, Azeem Feroz, Todd Sabin
-
Patent number: 10033693Abstract: Systems and techniques are described for monitoring network communications using a distributed firewall. One of the techniques includes receiving, at a driver executing in a guest operating system of a virtual machine, a request to open a network connection from a process associated with a user, wherein the driver performs operations comprising: obtaining identity information for the user; providing the identity information and data identifying the network connection to an identity module external to the driver; and receiving, by a distributed firewall, data associating the identity information with the data identifying the network connection from the identity module, wherein the distributed firewall performs operations comprising: receiving an outgoing packet from the virtual machine; determining that the identity information corresponds to the outgoing packet; and evaluating one or more routing rules based at least in part on the identity information.Type: GrantFiled: October 1, 2013Date of Patent: July 24, 2018Assignee: NICIRA, INC.Inventors: Anirban Sengupta, Subrahmanyam Manuguri, Mitchell T. Christensen, Azeem Feroz, Todd Sabin
-
Publication number: 20160218921Abstract: The present invention is related to a method and system for facilitating the integration of a plurality of dissimilar systems by allowing networks of integration framework installations and/or other compatible B2B servers to inter-operate across corporate enterprise boundaries to integrate the disparate systems operating within each corporate enterprise.Type: ApplicationFiled: January 22, 2015Publication date: July 28, 2016Inventors: Mitchell T. Christensen, Danny R. Sojka
-
Publication number: 20150096007Abstract: Systems and techniques are described for monitoring network communications using a distributed firewall. One of the techniques includes receiving, at a driver executing in a guest operating system of a virtual machine, a request to open a network connection from a process associated with a user, wherein the driver performs operations comprising: obtaining identity information for the user; providing the identity information and data identifying the network connection to an identity module external to the driver; and receiving, by a distributed firewall, data associating the identity information with the data identifying the network connection from the identity module, wherein the distributed firewall performs operations comprising: receiving an outgoing packet from the virtual machine; determining that the identity information corresponds to the outgoing packet; and evaluating one or more routing rules based at least in part on the identity information.Type: ApplicationFiled: October 1, 2013Publication date: April 2, 2015Applicant: VMware, Inc.Inventors: Anirban Sengupta, Subrahmanyam Manuguri, Mitchell T. Christensen, Azeem Feroz, Todd Sabin
-
Patent number: 8972599Abstract: The present invention is related to a host system for full customization of functional process logic in an integrated system having multiple nodes, each node being independent of other nodes in said system, said system capable of handling standard markup language data. The system has functional process logic that uses one of agents and agent management services approach and a payload processor approach. Each unit of functional process logic is a service, multiple services are grouped together to form an agent, and incoming standard markup language data is processed as a document object method and system for facilitating the integration of a plurality of dissimilar systems by allowing networks of integration framework installations and/or other compatible B2B servers to inter-operate across corporate enterprise boundaries to integrate the disparate systems operating within each corporate enterprise.Type: GrantFiled: July 30, 2010Date of Patent: March 3, 2015Inventors: Mitchell T. Christensen, Danny R. Sojka
-
Patent number: 8312522Abstract: A solution is provided for associating network traffic traversing on a networked environment according to a selected category item, such as a user name or other network entity identity-related information, by using a monitor device. The solution includes: obtaining user information from the directory service by obtaining at least one set of user object attributes from the directory service; identifying at least one authentication exchange packet from packets traversing on the networked environment; extracting a user ID and a network address from the authentication exchange packet; filtering or selecting packets traversing on the network environment that each have a network address equivalent to the extracted network address; and associating packets that were selected with user information having a name attribute equivalent to the extracted user ID.Type: GrantFiled: May 3, 2010Date of Patent: November 13, 2012Assignee: Packetmotion, Inc.Inventors: Pramod John, Tsehua A. Chen, Mitchell T. Christensen, Maxine R. Erlund
-
Patent number: 7941827Abstract: A solution is provided for associating network traffic traversing on a networked environment according to a selected category item, such as a user name or other network entity identity-related information, by using a monitor device. The solution includes: obtaining user information from the directory service by obtaining at least one set of user object attributes from the directory service; identifying at least one authentication exchange packet from packets traversing on the networked environment; extracting a user ID and a network address from the authentication exchange packet; filtering or selecting packets traversing on the network environment that each have a network address equivalent to the extracted network address; and associating packets that were selected with user information having a name attribute equivalent to the extracted user ID.Type: GrantFiled: April 4, 2006Date of Patent: May 10, 2011Assignee: Packetmotion, Inc.Inventors: Pramod John, Tsehua A. Chen, Mitchell T. Christensen, Maxine R. Erlund
-
Patent number: 7904353Abstract: A payment processing method and system is described which involves serially processing remittance documents, e.g. financial instruments, remittances, and associated documents obtained from diverse sources, electronically scanning the financial instruments and other remittance documents, thereby converting the information contained thereon into a digital format. The digital information is passed through a series of software programs and associated hardware that read the scanned financial instruments, remittances, and other documents, and compares the information obtained with preexisting information about the payor, detects errors, and the like automatically, with minimal human intervention. It also allows the information to be corrected and passed to a check encoding machine or process which imparts desired information on said checks before they are sent to a bank for deposit.Type: GrantFiled: April 17, 2007Date of Patent: March 8, 2011Inventors: Mitchell T. Christensen, Daniel J. King, Srinivasan Sangameswara, Robert F. Crothers, Paul T. Ortiz, Bruno O. Angelin, Yuping He
-
Publication number: 20100325223Abstract: The present invention is related to a host system for full customization of functional process logic in an integrated system having multiple nodes, each node being independent of other nodes in said system, said system capable of handling standard markup language data. The system has functional process logic that uses one of agents and agent management services approach and a payload processor approach. Each unit of functional process logic is a service, multiple services are grouped together to form an agent, and incoming standard markup language data is processed as a document object method and system for facilitating the integration of a plurality of dissimilar systems by allowing networks of integration framework installations and/or other compatible B2B servers to inter-operate across corporate enterprise boundaries to integrate the disparate systems operating within each corporate enterprise.Type: ApplicationFiled: July 30, 2010Publication date: December 23, 2010Inventors: Mitchell T. Christensen, Danny R. Sojka
-
Publication number: 20100281527Abstract: A solution is provided for associating network traffic traversing on a networked environment according to a selected category item, such as a user name or other network entity identity-related information, by using a monitor device. The solution includes: obtaining user information from the directory service by obtaining at least one set of user object attributes from the directory service; identifying at least one authentication exchange packet from packets traversing on the networked environment; extracting a user ID and a network address from the authentication exchange packet; filtering or selecting packets traversing on the network environment that each have a network address equivalent to the extracted network address; and associating packets that were selected with user information having a name attribute equivalent to the extracted user ID.Type: ApplicationFiled: May 3, 2010Publication date: November 4, 2010Inventors: Pramod John, Tsehua A. Chen, Mitchell T. Christensen, Maxine R. Erlund
-
Patent number: 7797452Abstract: The present invention is related to a method and system for facilitating the integration of a plurality of dissimilar systems by allowing networks of integration framework installations and/or other compatible B2B servers to inter-operate across corporate enterprise boundaries to integrate the disparate systems operating within each corporate enterprise.Type: GrantFiled: September 19, 2006Date of Patent: September 14, 2010Inventors: Mitchell T. Christensen, Danny R. Sojka
-
Publication number: 20080262950Abstract: A payment processing method and system is described which involves serially processing remittance documents, e.g. financial instruments, remittances, and associated documents obtained from diverse sources, electronically scanning the financial instruments and other remittance documents, thereby converting the information contained thereon into a digital format. The digital information is passed through a series of software programs and associated hardware that read the scanned financial instruments, remittances, and other documents, and compares the information obtained with preexisting information about the payor, detects errors, and the like automatically, with minimal human intervention. It also allows the information to be corrected and passed to a check encoding machine or process which imparts desired information on said checks before they are sent to a bank for deposit.Type: ApplicationFiled: April 17, 2007Publication date: October 23, 2008Inventors: Mitchell T. Christensen, Daniel J. King, Srinivasan Sangameswara, Robert F. Crothers, Paul T. Ortiz, Bruno O. Angelin, Yuping He
-
Patent number: 7143190Abstract: The present invention is related to a method and system for facilitating the integration of a plurality of dissimilar systems by allowing networks of integration framework installations and/or other compatible B2B servers to inter-operate across corporate enterprise boundaries to integrate the disparate systems operating within each corporate enterprise.Type: GrantFiled: April 1, 2002Date of Patent: November 28, 2006Inventors: Mitchell T. Christensen, Danny R. Sojka
-
Publication number: 20020169842Abstract: The present invention is related to a method and system for facilitating the integration of a plurality of dissimilar systems by allowing networks of integration framework installations and/or other compatible B2B servers to inter-operate across corporate enterprise boundaries to integrate the disparate systems operating within each corporate enterprise.Type: ApplicationFiled: April 1, 2002Publication date: November 14, 2002Applicant: Centegy CorporationInventors: Mitchell T. Christensen, Danny R. Sojka