Patents by Inventor Roger Chickering

Roger Chickering has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).

  • Patent number: 10050804
    Abstract: Methods, systems, and computer programs are presented for managing a network in the presence of layer-2 loops. One method includes an operation for detecting, by a network device, a loop at a layer 2 of a network. The network device is configured to execute a network device operation system (ndOS), where network devices executing ndOS share a global switch table. The method further includes an operation for blocking ports associated with the loop where incoming packets received at the blocked ports are discarded except for loop-probe packets. Further, the method includes operations for sending loop-probe packets by one or more network devices executing ndOS through one or more ports, and for unblocking a first port of the blocked ports based on the loop-probe packets when a lack of receipt of a loop-probe packet within a predetermined amount of time is detected for the first blocked port which indicates that the first blocked port is not part of the loop.
    Type: Grant
    Filed: June 1, 2016
    Date of Patent: August 14, 2018
    Assignee: Pluribus Networks, Inc.
    Inventors: Roger Chickering, Sunay Tripathi
  • Patent number: 9858104
    Abstract: A network switch includes ports, memory, and a processor. The switch is operable to switch packets of a layer 2 network, and the memory is for storing a tunneling engine computer program. The processor executes the tunneling engine, where the processor identifies a second switch operable to switch layer-2 network packets. The identification includes detecting that the second switch is connected to the network switch over a layer 3 connection, and the tunneling engine creates a tunnel over the layer 3 connection between the switches to exchange layer-2 packets. The tunnels encapsulates and decapsulates the packets that are exchanged between the switches. When the processor determines that a packet from a first node to a second node that is connected to the second switch, the processor creates an encapsulation flow on the network switch to encapsulate packets from the first node to the second node over the tunnel.
    Type: Grant
    Filed: September 21, 2015
    Date of Patent: January 2, 2018
    Assignee: Pluribus Networks, Inc.
    Inventors: Sunay Tripathi, Roger Chickering, Jon Gainsley
  • Publication number: 20170353328
    Abstract: Methods, systems, and computer programs are presented for managing a network in the presence of layer-2 loops. One method includes an operation for detecting, by a network device, a loop at a layer 2 of a network. The network device is configured to execute a network device operation system (ndOS), where network devices executing ndOS share a global switch table. The method further includes an operation for blocking ports associated with the loop where incoming packets received at the blocked ports are discarded except for loop-probe packets. Further, the method includes operations for sending loop-probe packets by one or more network devices executing ndOS through one or more ports, and for unblocking a first port of the blocked ports based on the loop-probe packets when a lack of receipt of a loop-probe packet within a predetermined amount of time is detected for the first blocked port which indicates that the first blocked port is not part of the loop.
    Type: Application
    Filed: June 1, 2016
    Publication date: December 7, 2017
    Inventors: Roger Chickering, Sunay Tripathi
  • Patent number: 9621502
    Abstract: A graphical user interface between a user of a computer service and the computer service includes a list of other users of the computer service selected by the user as significant to the user and an icon associated with one of the other listed users indicating that a communication has occurred between the user and the other user.
    Type: Grant
    Filed: July 8, 2016
    Date of Patent: April 11, 2017
    Assignee: AOL Inc.
    Inventors: Mitchell Chapin Green, Roger Chickering, David Gang
  • Publication number: 20160323228
    Abstract: A graphical user interface between a user of a computer service and the computer service includes a list of other users of the computer service selected by the user as significant to the user and an icon associated with one of the other listed users indicating that a communication has occurred between the user and the other user.
    Type: Application
    Filed: July 8, 2016
    Publication date: November 3, 2016
    Inventors: Mitchell Chapin GREEN, Roger CHICKERING, David GANG
  • Patent number: 9479538
    Abstract: An endpoint integrity system controls access to resources of a protected network for endpoint devices attempting to access the protected network. The system may include a number of evaluation modules that communicate with an endpoint device. The evaluation modules generate policy results for the endpoint device, in which each of the policy results assume one of three or more states, called a multi-state policy result. The multi-state policy results are combined to produce a combined Boolean policy result.
    Type: Grant
    Filed: January 31, 2014
    Date of Patent: October 25, 2016
    Assignee: Juniper Networks, Inc.
    Inventors: Roger Chickering, Stephen R. Hanna, Paul Funk, Panagiotis Kougiouris, Paul James Kirner
  • Patent number: 9391941
    Abstract: A graphical user interface between a user of a computer service and the computer service includes a list of other users of the computer service selected by the user as significant to the user and an icon associated with one of the other listed users indicating that a communication has occurred between the user and the other user.
    Type: Grant
    Filed: July 17, 2015
    Date of Patent: July 12, 2016
    Assignee: AOL Inc.
    Inventors: Mitchell Chapin Green, Roger Chickering, David Gang
  • Publication number: 20160087885
    Abstract: A network switch includes ports, memory, and a processor. The switch is operable to switch packets of a layer 2 network, and the memory is for storing a tunneling engine computer program. The processor executes the tunneling engine, where the processor identifies a second switch operable to switch layer-2 network packets. The identification includes detecting that the second switch is connected to the network switch over a layer 3 connection, and the tunneling engine creates a tunnel over the layer 3 connection between the switches to exchange layer-2 packets. The tunnels encapsulates and decapsulates the packets that are exchanged between the switches. When the processor determines that a packet from a first node to a second node that is connected to the second switch, the processor creates an encapsulation flow on the network switch to encapsulate packets from the first node to the second node over the tunnel.
    Type: Application
    Filed: September 21, 2015
    Publication date: March 24, 2016
    Inventors: Sunay Tripathi, Roger Chickering, Jon Gainsley
  • Publication number: 20150358271
    Abstract: A graphical user interface between a user of a computer service and the computer service includes a list of other users of the computer service selected by the user as significant to the user and an icon associated with one of the other listed users indicating that a communication has occurred between the user and the other user.
    Type: Application
    Filed: July 17, 2015
    Publication date: December 10, 2015
    Inventors: Mitchell Chapin GREEN, Roger CHICKERING, David GANG
  • Patent number: 9100218
    Abstract: A graphical user interface between a user of a computer service and the computer service includes a list of other users of the computer service selected by the user as significant to the user and an icon associated with one of the other listed users indicating that a communication has occurred between the user and the other user.
    Type: Grant
    Filed: November 18, 2003
    Date of Patent: August 4, 2015
    Assignee: AOL Inc.
    Inventors: Mitchell Chapin Green, Roger Chickering, David Gang
  • Patent number: 8800006
    Abstract: A method may include authenticating a node over layer 2 in a network based on authentication rules; sending a node authentication code to the node; and providing layer 3 network access based on the node authentication code.
    Type: Grant
    Filed: August 31, 2012
    Date of Patent: August 5, 2014
    Assignee: Juniper Networks, Inc.
    Inventors: Roger Chickering, Derek Brown, Paul Funk, Oliver Tavakoli
  • Publication number: 20140150053
    Abstract: An endpoint integrity system controls access to resources of a protected network for endpoint devices attempting to access the protected network. The system may include a number of evaluation modules that communicate with an endpoint device. The evaluation modules generate policy results for the endpoint device, in which each of the policy results assume one of three or more states, called a multi-state policy result. The multi-state policy results are combined to produce a combined Boolean policy result.
    Type: Application
    Filed: January 31, 2014
    Publication date: May 29, 2014
    Applicant: JUNIPER NETWORKS, INC.
    Inventors: Roger CHICKERING, Stephen R. HANNA, Paul FUNK, Panagiotis KOUGIOURIS, Paul James KIRNER
  • Patent number: 8661505
    Abstract: A module may include interface logic to receive information identifying a state related to a client device via logic related to a controlled environment, and to send a valid policy result to a host device, where the valid policy result is related to the state. The module may include processing logic to process policy content according to a resource policy, where the processing is based on the information, and to produce the valid policy result based on the processing using the resource policy, where the valid policy result is adapted for use by the host device when implementing the network policy with respect to a destination device when the client device attempts to communicate with the destination device.
    Type: Grant
    Filed: December 27, 2012
    Date of Patent: February 25, 2014
    Assignee: Juniper Networks, Inc.
    Inventors: Panagiotis Kougiouris, Roger Chickering, Paul James Kirner, Stephen R. Hanna
  • Patent number: 8369224
    Abstract: An endpoint integrity system controls access to resources of a protected network for endpoint devices attempting to access the protected network. The system may include a number of evaluation modules that communicate with an endpoint device. The evaluation modules generate policy results for the endpoint device, in which each of the policy results assume one of three or more states, called a multi-state policy result. The multi-state policy results are combined to produce a combined Boolean policy result.
    Type: Grant
    Filed: September 8, 2006
    Date of Patent: February 5, 2013
    Assignee: Juniper Networks, Inc.
    Inventors: Roger Chickering, Stephen R. Hanna, Paul Funk, Panagiotis Kouriouris, Paul James Kirner
  • Patent number: 8352998
    Abstract: A module may include interface logic to receive information identifying a state related to a client device via logic related to a controlled environment, and to send a valid policy result to a host device, where the valid policy result is related to the state. The module may include processing logic to process policy content according to a resource policy, where the processing is based on the information, and to produce the valid policy result based on the processing using the resource policy, where the valid policy result is adapted for use by the host device when implementing the network policy with respect to a destination device when the client device attempts to communicate with the destination device.
    Type: Grant
    Filed: August 17, 2006
    Date of Patent: January 8, 2013
    Assignee: Juniper Networks, Inc.
    Inventors: Panagiotis Kougiouris, Roger Chickering, Paul James Kirner, Stephen R. Hanna
  • Publication number: 20120331530
    Abstract: A method may include authenticating a node over layer 2 in a network based on authentication rules; sending a node authentication code to the node; and providing layer 3 network access based on the node authentication code.
    Type: Application
    Filed: August 31, 2012
    Publication date: December 27, 2012
    Applicant: Juniper Networks, Inc.
    Inventors: Roger Chickering, Derek Brown, Paul Funk, Oliver Tavakoli
  • Patent number: 8281371
    Abstract: A method may include authenticating a node over layer 2 in a network based on authentication rules; sending a node authentication code to the node; and providing layer 3 network access based on the node authentication code.
    Type: Grant
    Filed: April 30, 2007
    Date of Patent: October 2, 2012
    Assignee: Juniper Networks, Inc.
    Inventors: Roger Chickering, Derek Brown, Paul Funk, Oliver Tavakoli
  • Patent number: 8108904
    Abstract: A controller may receive a request from an endpoint and determine whether the endpoint connects via a first network or a second network. The controller may download first software to the endpoint when the endpoint connects via the first network, where the first software facilitates authentication of the endpoint via another device and instructs the endpoint to not store information regarding the controller. The controller may download second software to the endpoint when the endpoint connects via the second network, where the second software facilitates authentication of the endpoint by the device and instructs the endpoint to store information regarding the controller.
    Type: Grant
    Filed: September 29, 2006
    Date of Patent: January 31, 2012
    Assignee: Juniper Networks, Inc.
    Inventors: Roger Chickering, Paul Funk
  • Patent number: 8001610
    Abstract: An endpoint defense system uses endpoint health indicators and user identity information to provide fine-grain access control over network resources. For example, the endpoint defense system may include a controller, a set of protection devices, and a set of agents. The agents are software applications installed on a set of endpoints to gather the health information that represents security states of the endpoint devices. The agents send updated health information to the controller. In response to a login attempt, the controller processes the health indicators and identity information through a set of administrator-defined policies to generate a set of access rights. The controller transfers the set of access rights to the protection devices. The protection devices then control user access to network resources according to the set of access rights. The controller sends updated sets of access rights to the protection devices whenever the access rights change.
    Type: Grant
    Filed: September 28, 2005
    Date of Patent: August 16, 2011
    Assignee: Juniper Networks, Inc.
    Inventors: Roger Chickering, Sampath Srinivas, Timothy Liu
  • Publication number: 20060010422
    Abstract: A toolkit for developing user-interfaces for a system administration program. The toolkit has a server-side application-programming interface (API). The server-side has task-registry files that each describe a task group. The toolkit also has a client-side API. A developer can customize product-specific properties files for a specific product and write code that calls the server-side and client-side APIs to create a graphical user interface for the specific product.
    Type: Application
    Filed: September 12, 2005
    Publication date: January 12, 2006
    Inventors: Kirthiga Reddy, Wesley Smith, John Relph, Rebecca Underwood, Jenny Leung, James Orosz, Roger Chickering, Christiaan Beekhuis, Elizabeth Zeller, Sandeep Jain, Delle Maxwell