Patents by Inventor Murli Satagopan
Murli Satagopan has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Patent number: 10574750Abstract: Network services may include data associated with one or more entities. An aggregator service may host respective application programming interfaces (APIs) of the services at a single endpoint of the network such that the entities, including associations and relationships between entities, may be federated. For example, the services may register the entities of which the data of each of the services is associated with through a declarative entity model to establish an API schema for each of the services, which may be published at the aggregator service. In response to receipt of a request for entity related data from a client, the aggregator service may employ the declarative entity model to determine which of the services are associated with the entity related data such that a query may be submitted to the services, and how to aggregate responses to the query received from the services for transmission to the client.Type: GrantFiled: September 1, 2015Date of Patent: February 25, 2020Assignee: Microsoft Technology Licensing, LLCInventors: Yina Arenas, Dmitry Pugachev, Robert Howard, Sriram Dhanasekaran, Marek Rycharski, Vijaya Manohararaj, Daniel Kershaw, James Kleewein, Anthony Bloesch, Titus Miron, Vikrant Arora, Murli Satagopan, Jon Rosenberg, Yordan Rouskov
-
Patent number: 9525679Abstract: A session token can be requested to be sent to a first computing service from a second computing service, and a first computing service can receive the requested session token from the second computing service. The first computing service can send a message that includes the session token through a passive client to the second computing service. The second computing service can receive the message that includes the session token from the passive client, and the second computing service can verify that the message is valid. This verification of the validity of the message can include verifying that the session token received back from the passive client matches the session token the second computing service sent to the first computing service.Type: GrantFiled: January 19, 2016Date of Patent: December 20, 2016Assignee: Microsoft Technology Licensing, LLCInventors: Seshadri Mani, William Taylor, Haytham Abuel-Futuh, Titus Miron, Murli Satagopan
-
Publication number: 20160350011Abstract: Embodiments described herein are directed to providing scalability to software applications. A computer system partitions a portion of data stored in a directory services system into multiple different data partitions. Each data partition includes a primary writable copy and at least one secondary read-only copy of the data. The computer system receives a client request for a portion of the data that is stored in the directory services system and accesses various stored partition mappings to determine which of the different data partitions includes the requested data. The computer system also accesses a dynamic copy locator to determine which of the read-only copies of the indicated partition to access and provide the accessed primary writeable copy of the indicated partition and the determined read-only copy to the client in a virtualized manner so that the client is not aware of the data partitions.Type: ApplicationFiled: December 22, 2015Publication date: December 1, 2016Inventors: Jeffrey Bruce Parham, Bhalchandra Pandit, Mark Robbin Brown, Murli Satagopan
-
Publication number: 20160316016Abstract: Network services may include data associated with one or more entities. An aggregator service may host respective application programming interfaces (APIs) of the services at a single endpoint of the network such that the entities, including associations and relationships between entities, may be federated. For example, the services may register the entities of which the data of each of the services is associated with through a declarative entity model to establish an API schema for each of the services, which may be published at the aggregator service. In response to receipt of a request for entity related data from a client, the aggregator service may employ the declarative entity model to determine which of the services are associated with the entity related data such that a query may be submitted to the services, and how to aggregate responses to the query received from the services for transmission to the client.Type: ApplicationFiled: September 1, 2015Publication date: October 27, 2016Inventors: Yina Arenas, Dmitry Pugachev, Robert Howard, Sriram Dhanasekaran, Marek Rycharski, Vijaya Manohararaj, Daniel Kershaw, James Kleewein, Anthony Bloesch, Titus Miron, Vikrant Arora, Murli Satagopan, Jon Rosenberg, Yordan Rouskov
-
Publication number: 20160134617Abstract: A session token can be requested to be sent to a first computing service from a second computing service, and a first computing service can receive the requested session token from the second computing service. The first computing service can send a message that includes the session token through a passive client to the second computing service. The second computing service can receive the message that includes the session token from the passive client, and the second computing service can verify that the message is valid. This verification of the validity of the message can include verifying that the session token received back from the passive client matches the session token the second computing service sent to the first computing service.Type: ApplicationFiled: January 19, 2016Publication date: May 12, 2016Applicant: Microsoft Technology Licensing, LLCInventors: Seshadri Mani, William Taylor, Haytham Abuel-Futuh, Titus Miron, Murli Satagopan
-
Patent number: 9218136Abstract: Embodiments described herein are directed to providing scalability to software applications. A computer system partitions a portion of data stored in a directory services system into multiple different data partitions. Each data partition includes a primary writable copy and at least one secondary read-only copy of the data. The computer system receives a client request for a portion of the data that is stored in the directory services system and accesses various stored partition mappings to determine which of the different data partitions includes the requested data. The computer system also accesses a dynamic copy locator to determine which of the read-only copies of the indicated partition to access and provide the accessed primary writeable copy of the indicated partition and the determined read-only copy to the client in a virtualized manner so that the client is not aware of the data partitions.Type: GrantFiled: February 4, 2014Date of Patent: December 22, 2015Assignee: Microsoft Technology Licensing, LLCInventors: Jeffrey Bruce Parham, Bhalchandra Pandit, Mark Robbin Brown, Murli Satagopan
-
Patent number: 9063993Abstract: Coexistence tools are described for synchronizing properties between on-premises customer locations and remote hosting services. These tools may provide methods that send the tools for installation onto on-premises infrastructure located at customer sites, execute the tools to manage the customer infrastructure remotely via a hosted service, and synchronize properties at the customer site with the hosted service. Other methods may include receiving the tools from the hosted service, communicating configuration parameters related to operating the tools, and executing the tools in response to the configuration parameters. The tools may also provide systems that include on-premises servers associated with the customer infrastructure, with the on-premises servers including on-premises coexistence components for maintaining the property at the customer site. These systems may also include administrative servers associated with the hosted service.Type: GrantFiled: January 31, 2008Date of Patent: June 23, 2015Assignee: Microsoft Technology Licensing, LLCInventors: Vineeth Madhusudanan, Anandhi Somasekaran, Ananda Sinha, Erik Ashby, Murli Satagopan, Edward Wu, Thane David Peterson, Richard William Meadows, Robert Charles Ward
-
Patent number: 8972695Abstract: Embodiments described herein are directed to providing scalability to software applications. A computer system partitions a portion of data stored in a directory services system into multiple different data partitions. Each data partition includes a primary writable copy and at least one secondary read-only copy of the data. The computer system receives a client request for a portion of the data that is stored in the directory services system and accesses various stored partition mappings to determine which of the different data partitions includes the requested data. The computer system also accesses a dynamic copy locator to determine which of the read-only copies of the indicated partition to access and provide the accessed primary writeable copy of the indicated partition and the determined read-only copy to the client in a virtualized manner so that the client is not aware of the data partitions.Type: GrantFiled: February 4, 2014Date of Patent: March 3, 2015Assignee: Microsoft CorporationInventors: Jeffrey Bruce Parham, Bhalchandra Pandit, Mark Robbin Brown, Murli Satagopan
-
Publication number: 20140223135Abstract: Embodiments described herein are directed to providing scalability to software applications. A computer system partitions a portion of data stored in a directory services system into multiple different data partitions. Each data partition includes a primary writable copy and at least one secondary read-only copy of the data. The computer system receives a client request for a portion of the data that is stored in the directory services system and accesses various stored partition mappings to determine which of the different data partitions includes the requested data. The computer system also accesses a dynamic copy locator to determine which of the read-only copies of the indicated partition to access and provide the accessed primary writeable copy of the indicated partition and the determined read-only copy to the client in a virtualized manner so that the client is not aware of the data partitions.Type: ApplicationFiled: February 4, 2014Publication date: August 7, 2014Applicant: Microsoft CorporationInventors: Jeffrey Bruce Parham, Bhalchandra Pandit, Mark Robbin Brown, Murli Satagopan
-
Publication number: 20140149702Abstract: Embodiments described herein are directed to providing scalability to software applications. A computer system partitions a portion of data stored in a directory services system into multiple different data partitions. Each data partition includes a primary writable copy and at least one secondary read-only copy of the data. The computer system receives a client request for a portion of the data that is stored in the directory services system and accesses various stored partition mappings to determine which of the different data partitions includes the requested data. The computer system also accesses a dynamic copy locator to determine which of the read-only copies of the indicated partition to access and provide the accessed primary writeable copy of the indicated partition and the determined read-only copy to the client in a virtualized manner so that the client is not aware of the data partitions.Type: ApplicationFiled: February 4, 2014Publication date: May 29, 2014Inventors: Jeffrey Bruce Parham, Bhalchandra Pandit, Mark Robbin Brown, Murli Satagopan
-
Patent number: 8645660Abstract: Embodiments described herein are directed to providing scalability to software applications. A computer system partitions a portion of data stored in a directory services system into multiple different data partitions. Each data partition includes a primary writable copy and at least one secondary read-only copy of the data. The computer system receives a client request for a portion of the data that is stored in the directory services system and accesses various stored partition mappings to determine which of the different data partitions includes the requested data. The computer system also accesses a dynamic copy locator to determine which of the read-only copies of the indicated partition to access and provide the accessed primary writeable copy of the indicated partition and the determined read-only copy to the client in a virtualized manner so that the client is not aware of the data partitions.Type: GrantFiled: December 10, 2009Date of Patent: February 4, 2014Assignee: Microsoft CorporationInventors: Jeffrey Bruce Parham, Bhalchandra Pandit, Mark Robbin Brown, Murli Satagopan
-
Patent number: 8473634Abstract: In accordance with various aspects, the present invention relates to accessing and publishing documents between two computer systems or nodes that are connected together in a network environment. The system and method for name resolution stores an identity information document containing a user-friendly handle signifying identity, such as an email address, and a machine location, such as an IP address, for the publishing computer system where the documents are stored. Next, the system and method intercepts an initial request for access to documents when the initial request includes a user-friendly handle and replaces the user-friendly handle with the machine location, so that network users may easily access these documents through knowledge only of the user-friendly handle.Type: GrantFiled: October 23, 2003Date of Patent: June 25, 2013Assignee: Microsoft CorporationInventors: Murli Satagopan, Kim Cameron
-
Publication number: 20110145526Abstract: Embodiments described herein are directed to providing scalability to software applications. A computer system partitions a portion of data stored in a directory services system into multiple different data partitions. Each data partition includes a primary writable copy and at least one secondary read-only copy of the data. The computer system receives a client request for a portion of the data that is stored in the directory services system and accesses various stored partition mappings to determine which of the different data partitions includes the requested data. The computer system also accesses a dynamic copy locator to determine which of the read-only copies of the indicated partition to access and provide the accessed primary writeable copy of the indicated partition and the determined read-only copy to the client in a virtualized manner so that the client is not aware of the data partitions.Type: ApplicationFiled: December 10, 2009Publication date: June 16, 2011Applicant: MICROSOFT CORPORATIONInventors: Jeffrey Bruce Parham, Bhalchandra Pandit, Mark Robbin Brown, Murli Satagopan
-
Patent number: 7822988Abstract: In accordance with various aspects, the present invention relates to methods and systems for sending an identity information document comprising selecting identity information from a self-identity information store for inclusion in the identity information document. The selected identity information is read from a self-identity information store. The identity information document is generated to include the selected identity information and one or more keys, and signed using a key associated with one of the keys included in the identity information document. The identity information document is then sent to a recipient. Receiving an identity information document comprises receiving a signed identity information document from an originator. A determination is made as to whether identity information in the identity information document is reliable. The identity information is saved in a recognized identity information store if the identity information is determined to be reliable.Type: GrantFiled: October 23, 2003Date of Patent: October 26, 2010Assignee: Microsoft CorporationInventors: Kim Cameron, Arun Nanda, Don Hacherl, Murli Satagopan, Stuart Kwan, Colin Brace, Walter Smith, Melissa Dunn
-
Patent number: 7814312Abstract: An improved network architecture employs a super authority having an identity catalog to direct login authentication tasks to appropriate authorities. Authentication tasks may be performed by authorities across namespace boundaries if so directed by the super authority, such that a principal account may be moved without alteration of the account ID. In an embodiment of the invention, the identity catalog comprises a listing associating account IDs with appropriate authenticating authorities.Type: GrantFiled: March 31, 2008Date of Patent: October 12, 2010Assignee: Microsoft CorporationInventors: Jeffrey B. Parham, Brendan Dixon, Murli Satagopan, Richard Bruce Ward
-
Patent number: 7779248Abstract: An improved network architecture employs a super authority having an identity catalog to direct login authentication tasks to appropriate authorities. Authentication tasks may be performed by authorities across namespace boundaries if so directed by the super authority, such that a principal account may be moved without alteration of the account ID. In an embodiment of the invention, the identity catalog comprises a listing associating account IDs with appropriate authenticating authorities.Type: GrantFiled: March 18, 2008Date of Patent: August 17, 2010Assignee: Microsoft CorporationInventors: Jeffrey B. Parham, Brendan Dixon, Murli Satagopan, Richard Bruce Ward
-
Patent number: 7593951Abstract: In the present invention, data relating to principals known to a computer system is centrally stored and objects having a standardized principal application programming interface (API) for finding, managing and accessing that data is provided to applications in lieu of having the applications independently store the principal data. The present invention eliminates the need for each application to create duplicate principal data. It also ensures that principal data are consistent throughout the applications on the computer system. In addition, the present invention allows any application with objects having the principal API to manage and change the principal data making such principal data easy to update. The principal API includes methods to find principals based on an identity reference to a principal or an identity claim that uniquely identifies the principal on computer system.Type: GrantFiled: May 30, 2006Date of Patent: September 22, 2009Assignee: Microsoft CorporationInventors: Matthew Rimer, Andy Harjanto, Kim Cameron, Murli Satagopan, Nitin Karmarkar, Don Hacherl
-
Publication number: 20090198835Abstract: Coexistence tools are described for synchronizing properties between on-premises customer locations and remote hosting services. These tools may provide methods that send the tools for installation onto on-premises infrastructure located at customer sites, execute the tools to manage the customer infrastructure remotely via a hosted service, and synchronize properties at the customer site with the hosted service. Other methods may include receiving the tools from the hosted service, communicating configuration parameters related to operating the tools, and executing the tools in response to the configuration parameters. The tools may also provide systems that include on-premises servers associated with the customer infrastructure, with the on-premises servers including on-premises coexistence components for maintaining the property at the customer site. These systems may also include administrative servers associated with the hosted service.Type: ApplicationFiled: January 31, 2008Publication date: August 6, 2009Applicant: MICROSOFT CORPORATIONInventors: Vineeth Madhusudanan, Anandhi Somasekaran, Ananda Sinha, Erik Ashby, Murli Satagopan, Edward Wu, Thane David Peterson, Richard William Meadows, Robert Charles Ward
-
Publication number: 20080184343Abstract: An improved network architecture employs a super authority having an identity catalog to direct login authentication tasks to appropriate authorities. Authentication tasks may be performed by authorities across namespace boundaries if so directed by the super authority, such that a principal account may be moved without alteration of the account ID. In an embodiment of the invention, the identity catalog comprises a listing associating account IDs with appropriate authenticating authorities.Type: ApplicationFiled: March 31, 2008Publication date: July 31, 2008Applicant: MICROSOFT CORPORATIONInventors: Jeffrey B. Parham, Brendan Dixon, Murli Satagopan, Richard Bruce Ward
-
Publication number: 20080163348Abstract: An improved network architecture employs a super authority having an identity catalog to direct login authentication tasks to appropriate authorities. Authentication tasks may be performed by authorities across namespace boundaries if so directed by the super authority, such that a principal account may be moved without alteration of the account ID. In an embodiment of the invention, the identity catalog comprises a listing associating account IDs with appropriate authenticating authorities.Type: ApplicationFiled: March 18, 2008Publication date: July 3, 2008Applicant: MICROSOFT CORPORATIONInventors: Jeffrey B. Parham, Brendan Dixon, Murli Satagopan, Richard Bruce Ward