Patents by Inventor Raghuram Rajan
Raghuram Rajan has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Patent number: 11818127Abstract: Software development kit (“SDK”) applications may be implemented with user data on an enterprise end-user or shared device subsequent to a single check-out process on the device. A user profile and a context ID for a user can be accessed based on user provided credentials. An agent application can set a value of an agent context ID to a server context ID corresponding to the context ID for the user profile. A status of a local context ID (“LCID”) of an SDK application can be determined in response to an application launch. Using the LCD, a context ID comparison can be performed on the device with a value of a context ID from one of the SDK application, the server, and the agent application based on the LCID status. The SDK application can be implemented with user specific user data obtained from one of the SDK application and the agent application based on a result of the context ID comparison.Type: GrantFiled: April 29, 2021Date of Patent: November 14, 2023Assignee: VMware, Inc.Inventors: Lucas Chen, Sanjay Satagopan, Raghuram Rajan, Rajiv Singh
-
Patent number: 11799868Abstract: Software development kit (“SDK”) applications may be implemented with user data on an enterprise end-user or shared device subsequent to a single check-out process on the device. A user profile and a context ID for a user can be accessed based on user provided credentials. An SDK application can be identified as one application of an application cluster including at least two applications. A status of a local context ID (“LCID”) of the SDK application can be determined, and a value for the LCID can be established based on the status and a value of a comparison context ID obtained from a server or an agent application. The LCID and a context ID for a keychain for the application cluster can be compared, and the SDK application can be implemented with user specific user data obtained from the agent application or the keychain based on a result of the comparison.Type: GrantFiled: May 21, 2021Date of Patent: October 24, 2023Assignee: VMware, Inc.Inventors: Lucas Chen, Sanjay Satagopan, Raghuram Rajan, Rajiv Singh
-
Patent number: 11184346Abstract: Aspects of providing single sign on (SSO) sessions are described. An access interval key is generated using an access code as a seed to a key derivative function. The access interval key is encrypted using a public key of an SSO-enabled application to generate an encrypted access interval key for a sign on session. The sign on session is established by storing the encrypted access interval key in a memory location of an SSO session map shared by SSO-enabled applications.Type: GrantFiled: September 16, 2019Date of Patent: November 23, 2021Assignee: VMWARE, INC.Inventors: Kishore Sajja, Lucas Chen, Raghuram Rajan, Anuj Panwar, Sandeep Naga Kaipu, Rajiv Singh
-
Publication number: 20210281574Abstract: Software development kit (“SDK”) applications may be implemented with user data on an enterprise end-user or shared device subsequent to a single check-out process on the device. A user profile and a context ID for a user can be accessed based on user provided credentials. An SDK application can be identified as one application of an application cluster including at least two applications. A status of a local context ID (“LCID”) of the SDK application can be determined, and a value for the LCID can be established based on the status and a value of a comparison context ID obtained from a server or an agent application. The LCID and a context ID for a keychain for the application cluster can be compared, and the SDK application can be implemented with user specific user data obtained from the agent application or the keychain based on a result of the comparison.Type: ApplicationFiled: May 21, 2021Publication date: September 9, 2021Inventors: Lucas Chen, Sanjay Satagopan, Raghuram Rajan, Rajiv Singh
-
Publication number: 20210266317Abstract: Software development kit (“SDK”) applications may be implemented with user data on an enterprise end-user or shared device subsequent to a single check-out process on the device. A user profile and a context ID for a user can be accessed based on user provided credentials. An agent application can set a value of an agent context ID to a server context ID corresponding to the context ID for the user profile. A status of a local context ID (“LCID”) of an SDK application can be determined in response to an application launch. Using the LCD, a context ID comparison can be performed on the device with a value of a context ID from one of the SDK application, the server, and the agent application based on the LCID status. The SDK application can be implemented with user specific user data obtained from one of the SDK application and the agent application based on a result of the context ID comparison.Type: ApplicationFiled: April 29, 2021Publication date: August 26, 2021Inventors: Lucas Chen, Sanjay Satagopan, Raghuram Rajan, Rajiv Singh
-
Patent number: 11019058Abstract: Software development kit (“SDK”) applications may be implemented with user data on an enterprise end-user or shared device subsequent to a single check-out process on the device. A user profile and a context ID for a user can be accessed based on user provided credentials. An agent application can set a value of an agent context ID to a server context ID corresponding to the context ID for the user profile. A status of a local context ID (“LCID”) of an SDK application can be determined in response to an application launch. Using the LCD, a context ID comparison can be performed on the device with a value of a context ID from one of the SDK application, the server, and the agent application based on the LCID status. The SDK application can be implemented with user specific user data obtained from one of the SDK application and the agent application based on a result of the context ID comparison.Type: GrantFiled: January 10, 2019Date of Patent: May 25, 2021Assignee: VMware, Inc.Inventors: Lucas Chen, Sanjay Satagopan, Raghuram Rajan, Rajiv Singh
-
Patent number: 11019067Abstract: Software development kit (“SDK”) applications may be implemented with user data on an enterprise end-user or shared device subsequent to a single check-out process on the device. A user profile and a context ID for a user can be accessed based on user provided credentials. An SDK application can be identified as one application of an application cluster including at least two applications. A status of a local context ID (“LCID”) of the SDK application can be determined, and a value for the LCID can be established based on the status and a value of a comparison context ID obtained from a server or an agent application. The LCID and a context ID for a keychain for the application cluster can be compared, and the SDK application can be implemented with user specific user data obtained from the agent application or the keychain based on a result of the comparison.Type: GrantFiled: January 10, 2019Date of Patent: May 25, 2021Assignee: VMware, Inc.Inventors: Lucas Chen, Sanjay Satagopan, Raghuram Rajan, Rajiv Singh
-
Publication number: 20200228528Abstract: Software development kit (“SDK”) applications may be implemented with user data on an enterprise end-user or shared device subsequent to a single check-out process on the device. A user profile and a context ID for a user can be accessed based on user provided credentials. An agent application can set a value of an agent context ID to a server context ID corresponding to the context ID for the user profile. A status of a local context ID (“LCID”) of an SDK application can be determined in response to an application launch. Using the LCD, a context ID comparison can be performed on the device with a value of a context ID from one of the SDK application, the server, and the agent application based on the LCID status. The SDK application can be implemented with user specific user data obtained from one of the SDK application and the agent application based on a result of the context ID comparison.Type: ApplicationFiled: January 10, 2019Publication date: July 16, 2020Inventors: Lucas Chen, Sanjay Satagopan, Raghuram Rajan, Rajiv Singh
-
Publication number: 20200228534Abstract: Software development kit (“SDK”) applications may be implemented with user data on an enterprise end-user or shared device subsequent to a single check-out process on the device. A user profile and a context ID for a user can be accessed based on user provided credentials. An SDK application can be identified as one application of an application cluster including at least two applications. A status of a local context ID (“LCID”) of the SDK application can be determined, and a value for the LCID can be established based on the status and a value of a comparison context ID obtained from a server or an agent application. The LCID and a context ID for a keychain for the application cluster can be compared, and the SDK application can be implemented with user specific user data obtained from the agent application or the keychain based on a result of the comparison.Type: ApplicationFiled: January 10, 2019Publication date: July 16, 2020Inventors: Lucas Chen, Sanjay Satagopan, Raghuram Rajan, Rajiv Singh
-
Patent number: 10592259Abstract: Various examples for application management detection are described. In one example, depending upon whether an installation token includes a unique token value, a client device can determine whether an application is managed or unmanaged. Additionally, the client device can determine whether the application is managed or unmanaged based on whether a keychain installation token includes a unique token value, a value of a keychain installation token, and a value of a launched flag for the application. Using the concepts described herein, an unmanaged application can proceed to execute with limited functionality, present a notification that it should be reinstalled by the management service, stop executing, or take other measures.Type: GrantFiled: June 20, 2017Date of Patent: March 17, 2020Assignee: AIRWATCH LLCInventors: Lucas Chen, Raghuram Rajan, Jonathan Blake Brannon
-
Publication number: 20200014681Abstract: Aspects of providing single sign on (SSO) sessions are described. An access interval key is generated using an access code as a seed to a key derivative function. The access interval key is encrypted using a public key of an SSO-enabled application to generate an encrypted access interval key for a sign on session. The sign on session is established by storing the encrypted access interval key in a memory location of an SSO session map shared by SSO-enabled applications.Type: ApplicationFiled: September 16, 2019Publication date: January 9, 2020Inventors: Kishore Sajja, Lucas Chen, Raghuram Rajan, Anuj Panwar, Sandeep Naga Kaipu, Rajiv Singh
-
Patent number: 10469478Abstract: To extend a sign on session among applications, an inter-application workflow request can be initiated from a first to a second application. The workflow request can identify one or more memory locations in a shared memory for secure data transfer between the applications. The first application can then monitor the memory locations for the presence of a public key stored in shared memory by the second application in response to the workflow request. Once the public key is present in the shared memory, the first application can retrieve and use it to encrypt an access interval key. The encrypted access interval key can then be stored in the shared memory for retrieval by the second application. The access interval key is associated with a sign on session of the first application, and the second application can retrieve and decrypt it to extend the sign on session to the second application.Type: GrantFiled: February 24, 2017Date of Patent: November 5, 2019Assignee: VMWARE, INC.Inventors: Kishore Sajja, Lucas Chen, Raghuram Rajan, Anuj Panwar, Sandeep Naga Kaipu, Rajiv Singh
-
Patent number: 10447681Abstract: To establish a sign on session among single sign on (SSO)-enabled applications, a user can be prompted by an application for an access code. An access interval key can be generated using a key derivative function based on the access code. The access interval key can be considered a session key, and it can be used during a valid SSO session to decrypt a master key stored in a shared memory. In turn, the master key can be used to encrypt and decrypt the contents of the shared memory. To securely distribute the access interval key among the SSO-enabled applications during a current session, individual SSO-enabled applications can each store a public key in the shared memory. The access interval key can then be encrypted, respectively, by the public keys of the SSO-enabled applications and stored in the shared memory to be retrieved securely by the SSO-enabled applications.Type: GrantFiled: February 24, 2017Date of Patent: October 15, 2019Assignee: VMWARE, INC.Inventors: Kishore Sajja, Lucas Chen, Raghuram Rajan, Anuj Panwar, Sandeep Naga Kaipu, Rajiv Singh
-
Patent number: 10382306Abstract: Disclosed are examples that relate to monitoring network usage by client devices and enforcing compliance rules related thereto. In various examples, a system can intercept a network call in transit from a client application to an operating system of a client device, wherein the network call is configured to cause a content provider to transmit content to the operating system over a carrier network, and wherein the network call is further configured to cause the operating system to transmit the content to the client application; can modify the configuration of the network call such that the network call causes the operating system to transmit the content to the management component; can receive the content from the operating system; can analyze the content for network usage; can create a network usage analysis; and, can provide the content to the client application.Type: GrantFiled: July 6, 2015Date of Patent: August 13, 2019Assignee: AIRWATCH LLCInventors: Lucas Chen, Deep Singh, Iury Bessa, Rajiv Singh, Raghuram Rajan
-
Patent number: 10341315Abstract: Disclosed are examples of managing access sessions for a computing device. In some examples, a key is generated using a code obtained through a user interface. The key decrypts data stored in a data store of a client device. The key is decrypted using a boot time that represents a latest time the client device was booted. The key is stored in secured storage that is accessible by the at least one application based on a developer certificate.Type: GrantFiled: March 29, 2018Date of Patent: July 2, 2019Assignee: AIRWATCH LLCInventors: Lucas Chen, Adam Rykowski, Raghuram Rajan, Sridhar Kommireddy
-
Publication number: 20180219843Abstract: Disclosed are examples of managing access sessions for a computing device. In some examples, a key is generated using a code obtained through a user interface. The key decrypts data stored in a data store of a client device. The key is decrypted using a boot time that represents a latest time the client device was booted. The key is stored in secured storage that is accessible by the at least one application based on a developer certificate.Type: ApplicationFiled: March 29, 2018Publication date: August 2, 2018Inventors: Lucas Chen, Adam Rykowski, Raghuram Rajan, Sridhar Kommireddy
-
Publication number: 20180159843Abstract: To establish a sign on session among single sign on (SSO)-enabled applications, a user can be prompted by an application for an access code. An access interval key can be generated using a key derivative function based on the access code. The access interval key can be considered a session key, and it can be used during a valid SSO session to decrypt a master key stored in a shared memory. In turn, the master key can be used to encrypt and decrypt the contents of the shared memory. To securely distribute the access interval key among the SSO-enabled applications during a current session, individual SSO-enabled applications can each store a public key in the shared memory. The access interval key can then be encrypted, respectively, by the public keys of the SSO-enabled applications and stored in the shared memory to be retrieved securely by the SSO-enabled applications.Type: ApplicationFiled: February 24, 2017Publication date: June 7, 2018Inventors: Kishore Sajja, Lucas Chen, Raghuram Rajan, Anuj Panwar, Sandeep Naga Kaipu, Rajiv Singh
-
Publication number: 20180157433Abstract: To extend a sign on session among applications, an inter-application workflow request can be initiated from a first to a second application. The workflow request can identify one or more memory locations in a shared memory for secure data transfer between the applications. The first application can then monitor the memory locations for the presence of a public key stored in shared memory by the second application in response to the workflow request. Once the public key is present in the shared memory, the first application can retrieve and use it to encrypt an access interval key. The encrypted access interval key can then be stored in the shared memory for retrieval by the second application. The access interval key is associated with a sign on session of the first application, and the second application can retrieve and decrypt it to extend the sign on session to the second application.Type: ApplicationFiled: February 24, 2017Publication date: June 7, 2018Inventors: Kishore Sajja, Lucas Chen, Raghuram Rajan, Anuj Panwar, Sandeep Naga Kaipu, Rajiv Singh
-
Patent number: 9954833Abstract: Disclosed are examples of managing access sessions for a computing device. In some examples, a computing device obtains a key and timeout data from secured storage. The computing device determines whether an access session has expired based on the timeout data. Responsive to determining that the access session has expired, the computing device erases the key from the secured storage.Type: GrantFiled: July 23, 2015Date of Patent: April 24, 2018Assignee: Airwatch LLCInventors: Lucas Chen, Adam Rykowski, Raghuram Rajan, Sridhara Kommireddy
-
Publication number: 20170286129Abstract: Various examples for application management detection are described. In one example, depending upon whether an installation token includes a unique token value, a client device can determine whether an application is managed or unmanaged. Additionally, the client device can determine whether the application is managed or unmanaged based on whether a keychain installation token includes a unique token value, a value of a keychain installation token, and a value of a launched flag for the application. Using the concepts described herein, an unmanaged application can proceed to execute with limited functionality, present a notification that it should be reinstalled by the management service, stop executing, or take other measures.Type: ApplicationFiled: June 20, 2017Publication date: October 5, 2017Inventors: Lucas Chen, Raghuram Rajan, Jonathan Black Brannon