Patents by Inventor Prince Kohli
Prince Kohli has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Patent number: 8695084Abstract: A method of a device for filtering messages routing across a network includes extracting, by a filter configured on the device, a plurality of message components from messages received via a network. The plurality of message components is identified as having at least a field name in common, including a first field name. A learning engine configured on the device creates a list of data types for values of the first field name. The list includes one or more data types of a value of the first field name identified for each of the plurality of message components. The learning engine determines a most restrictive data type from the list of data types for the values of the first field name of the plurality of message components.Type: GrantFiled: August 17, 2011Date of Patent: April 8, 2014Assignee: Citrix Systems, Inc.Inventors: Abhishek Chauhan, Rajiv Mirani, Prince Kohli, Namit Sikka
-
Patent number: 8695083Abstract: A security gateway receives messages, such as URL requests, rejected by a message filter based on a set of rules. The security gateway maintains frequencies with which the messages were rejected by the rules. The security gateway finds rejected messages having a high frequency of occurrence. Since messages having a high frequency of occurrences are more likely to represent legitimate requests rather than malicious attacks, the security gateway generates exception rules, which would allow similar messages to pass through the gateway.Type: GrantFiled: June 30, 2010Date of Patent: April 8, 2014Assignee: Citrix Systems, Inc.Inventors: Abhishek Chauhan, Rajiv Mirani, Prince Kohli, Priya Nanduri
-
Patent number: 8458783Abstract: A security gateway receives messages transmitted between a server and a client device on a network and parses the messages into a plurality of data objects, such as strings and name-value pairs. The data objects may represent user personal identification information, such as user name, social security number, credit card number, patient code, driver's license number, and other personal identification information. The security gateway uses rules to recognize data objects and validate the data objects to determine whether the recognized data objects are appropriately included within the context. The security gateway may also perform an action on the data objects. Data objects that are not appropriately included in the context may be transformed, suppressed or disallowed.Type: GrantFiled: January 9, 2009Date of Patent: June 4, 2013Assignee: Citrix Systems, Inc.Inventors: Robert V. Walters, Abhishek Chauhan, Rajiv Mirani, Prince Kohli
-
Patent number: 8261340Abstract: A security gateway receives messages rejected by a message filter based on a set of rules. The security gateway also receives attributes of the rejected messages that triggered the rules. The security gateway maintains frequencies with which the messages with a particular attribute were rejected by the rules. The security gateway finds rejected messages or attributes having a high frequency of occurrence. Since messages or attributes having a high frequency of occurrences are more likely to represent legitimate requests rather than malicious attacks, the security gateway generates exception rules, which would allow messages that have similar attributes to pass through the gateway.Type: GrantFiled: January 27, 2010Date of Patent: September 4, 2012Assignee: Citrix Systems, Inc.Inventors: Abhishek Chauhan, Rajiv Mirani, Prince Kohli
-
Publication number: 20120216274Abstract: A method of a device for filtering messages routing across a network includes extracting, by a filter configured on the device, a plurality of message components from messages received via a network. The plurality of message components is identified as having at least a field name in common, including a first field name. A learning engine configured on the device creates a list of data types for values of the first field name. The list includes one or more data types of a value of the first field name identified for each of the plurality of message components. The learning engine determines a most restrictive data type from the list of data types for the values of the first field name of the plurality of message components.Type: ApplicationFiled: August 17, 2011Publication date: August 23, 2012Inventors: Abhishek Chauhan, Rajiv Mirani, Prince Kohli, Namit Sikka
-
Patent number: 8011009Abstract: A method of a device for filtering messages routing across a network includes extracting, by a filter configured on the device, a plurality of message components from messages received via a network. The plurality of message components is identified as having at least a field name in common, including a first field name. A learning engine configured on the device creates a list of data types for values of the first field name. The list includes one or more data types of a value of the first field name identified for each of the plurality of message components. The learning engine determines a most restrictive data type from the list of data types for the values of the first field name of the plurality of message components.Type: GrantFiled: September 29, 2009Date of Patent: August 30, 2011Assignee: Citrix Systems, Inc.Inventors: Abhishek Chauhan, Rajiv Mirani, Prince Kohli, Namit Sikka
-
Patent number: 7890996Abstract: A security gateway receives messages rejected by a message filter based on a set of rules. The security gateway also receives attributes of the rejected messages that triggered the rules. The security gateway maintains frequencies with which the messages with a particular attribute were rejected by the rules. The security gateway finds rejected messages or attributes having a high frequency of occurrence. Since messages or attributes having a high frequency of occurrences are more likely to represent legitimate requests rather than malicious attacks, the security gateway generates exception rules, which would allow messages that have similar attributes to pass through the gateway.Type: GrantFiled: February 18, 2004Date of Patent: February 15, 2011Assignee: Teros, Inc.Inventors: Abhishek Chauhan, Rajiv Mirani, Prince Kohli
-
Publication number: 20100269170Abstract: A security gateway receives messages, such as URL requests, rejected by a message filter based on a set of rules. The security gateway maintains frequencies with which the messages were rejected by the rules. The security gateway finds rejected messages having a high frequency of occurrence. Since messages having a high frequency of occurrences are more likely to represent legitimate requests rather than malicious attacks, the security gateway generates exception rules, which would allow similar messages to pass through the gateway.Type: ApplicationFiled: June 30, 2010Publication date: October 21, 2010Inventors: Abhishek Chauhan, Rajiv Mirani, Prince Kohli, Priya Nanduri
-
Patent number: 7774834Abstract: A security gateway receives messages, such as URL requests, rejected by a message filter based on a set of rules. The security gateway maintains frequencies with which the messages were rejected by the rules. The security gateway finds rejected messages having a high frequency of occurrence. Since messages having a high frequency of occurrences are more likely to represent legitimate requests rather than malicious attacks, the security gateway generates exception rules, which would allow similar messages to pass through the gateway.Type: GrantFiled: February 18, 2004Date of Patent: August 10, 2010Assignee: Citrix Systems, Inc.Inventors: Abhishek Chauhan, Rajiv Mirani, Prince Kohli, Priya Nanduri
-
Publication number: 20100132029Abstract: A security gateway receives messages rejected by a message filter based on a set of rules. The security gateway also receives attributes of the rejected messages that triggered the rules. The security gateway maintains frequencies with which the messages with a particular attribute were rejected by the rules. The security gateway finds rejected messages or attributes having a high frequency of occurrence. Since messages or attributes having a high frequency of occurrences are more likely to represent legitimate requests rather than malicious attacks, the security gateway generates exception rules, which would allow messages that have similar attributes to pass through the gateway.Type: ApplicationFiled: January 27, 2010Publication date: May 27, 2010Inventors: Abhishek Chauhan, Rajiv Mirani, Prince Kohli
-
Publication number: 20100017869Abstract: A method of a device for filtering messages routing across a network includes extracting, by a filter configured on the device, a plurality of message components from messages received via a network. The plurality of message components is identified as having at least a field name in common, including a first field name. A learning engine configured on the device creates a list of data types for values of the first field name. The list includes one or more data types of a value of the first field name identified for each of the plurality of message components. The learning engine determines a most restrictive data type from the list of data types for the values of the first field name of the plurality of message components.Type: ApplicationFiled: September 29, 2009Publication date: January 21, 2010Inventors: Abhishek Chauhan, Rajiv Mirani, Prince Kohli, Namit Sikka
-
Patent number: 7617531Abstract: A security gateway receives messages and extracts components thereof, typically in the form of field name-value pairs. The security gateway determines a data type of the values for individual field names to infer the most restrictive data type of the values for that field. The security gateway may then generates rules, which would block messages that do not have values that match the most restrictive data type. Since the most restrictive data type defines a data type of values for the field as narrowly as possible, the generated rules will make it more difficult for an intruder to guess a valid data type of a value. Since messages that have values that do not match the most restrictive data type are likely to represent malicious attacks, the more narrowly the data type of values is defined, the greater the number of illegitimate messages that will be blocked.Type: GrantFiled: February 18, 2004Date of Patent: November 10, 2009Assignee: Citrix Systems, Inc.Inventors: Abhishek Chauhan, Rajiv Mirani, Prince Kohli, Namit Sikka
-
Publication number: 20090119768Abstract: A security gateway receives messages transmitted between a server and a client device on a network and parses the messages into a plurality of data objects, such as strings and name-value pairs. The data objects may represent user personal identification information, such as user name, social security number, credit card number, patient code, driver's license number, and other personal identification information. The security gateway uses rules to recognize data objects and validate the data objects to determine whether the recognized data objects are appropriately included within the context. The security gateway may also perform an action on the data objects. Data objects that are not appropriately included in the context may be transformed, suppressed or disallowed.Type: ApplicationFiled: January 9, 2009Publication date: May 7, 2009Inventors: Robert V. Walters, Abhishek Chauhan, Rajiv Mirani, Prince Kohli