Patents by Inventor Sanjeeb Kumar Sahoo
Sanjeeb Kumar Sahoo has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Publication number: 20260039480Abstract: According to certain implementations, a certificate management service of a cloud service provider requests a certificate for a domain from a certificate authority utilizing an HTTP-based challenge. The certificate authority responds with a challenge string and a subdirectory within the domain. The challenge string and subdirectory within the domain are sent from the certificate management service to a proxy server of the cloud service provider that manages a flow of data to a host that hosts the domain. When the certificate authority sends a request to the subdirectory within the domain, the request is intercepted at the proxy server. Instead of forwarding the request to the host that hosts the domain, the proxy server responds to the certificate authority with the challenge string. This verifies ownership of the domain, which is required to obtain the certificate for the domain.Type: ApplicationFiled: July 7, 2025Publication date: February 5, 2026Applicant: Oracle International CorporationInventors: Sanjeeb Kumar Sahoo, Anthony Furious Long, Benjamin Charles Gay, Mina Anes, Shane Burgess
-
Patent number: 12411973Abstract: Systems, computer program products, and methods are described herein for enhanced encryption orchestration and application integration frameworks. The system performs steps of initializing a broker application to act as a data security broker within a computing environment; providing an application programming interface (API) for external application interaction; receiving and processing requests via the API for access to encrypted code and data; containerizing the code and data within an isolated environment, subject to predefined rules; monitoring usage to ensure adherence to these rules; initiating self-destruction of the container upon reaching a predetermined usage limit or condition; and securely erasing all sensitive data and code after usage completion.Type: GrantFiled: November 8, 2023Date of Patent: September 9, 2025Assignee: BANK OF AMERICA CORPORATIONInventors: Maharaj Mukherjee, Dihong Qiu, Sanjeeb Kumar Sahoo, Venkat P. Ravula, Veerandra S. Srivastava, Riazuddin Khaja, Swetha Guddannagari, Mayank Sharma, Esada Qazi
-
Publication number: 20250278469Abstract: Techniques described herein relate to authorization between integrated cloud products. An example includes receiving, by a computing device and from a first resource, a first request for permission to access a certificate to verify a requestor's identity. The computing device can transmit a second request to a second resource to authorize permitting access to the certificate. The computing device can receive a response from the second resource comprising an authorization to permit access to the certificate. The computing device can grant permission to the first resource to access the certificate, wherein the first resource is configured to verify the requestor's identity based on accessing the certificate. The computing device can receive a third request from the first resource to generate an association object between the first resource and the certificate. The computing device can generate the association object, wherein the association object associates the first resource and the certificate.Type: ApplicationFiled: May 19, 2025Publication date: September 4, 2025Applicant: Oracle International CorporationInventors: Mauruthi Geetha Mohan, Anthony Long, Mina Michel Gorgy Anes, Sanjeeb Kumar Sahoo, Yingyu Yang, Bakhtiyar Uddin, Thomas James Andrews
-
Patent number: 12375296Abstract: According to certain implementations, a certificate management service of a cloud service provider requests a certificate for a domain from a certificate authority utilizing an HTTP-based challenge. The certificate authority responds with a challenge string and a subdirectory within the domain. The challenge string and subdirectory within the domain are sent from the certificate management service to a proxy server of the cloud service provider that manages a flow of data to a host that hosts the domain. When the certificate authority sends a request to the sub directory within the domain, the request is intercepted at the proxy server. Instead of forwarding the request to the host that hosts the domain, the proxy server responds to the certificate authority with the challenge string. This verifies ownership of the domain, which is required to obtain the certificate for the domain.Type: GrantFiled: October 26, 2022Date of Patent: July 29, 2025Assignee: Oracle International CorporationInventors: Sanjeeb Kumar Sahoo, Anthony Furious Long, Benjamin Charles Gay, Mina Anes, Shane Burgess
-
Publication number: 20250165360Abstract: In response to a request to replicate resources from a primary region data center to a secondary region data center, information is obtained about first resources at the primary region data center and second resources at the secondary region data center. An executable configuration file that references the resources utilizing generic resource identifiers instead of primary region identifiers used within the primary region data center is created. The executable configuration file is then executed at the secondary region data center to create replicated resources at the secondary region data center.Type: ApplicationFiled: January 24, 2025Publication date: May 22, 2025Applicant: Oracle International CorporationInventors: Sanjeeb Kumar Sahoo, Rajesh Desai, Graham Bromley
-
Publication number: 20250148109Abstract: Systems, computer program products, and methods are described herein for enhanced encryption orchestration and application integration frameworks. The system performs steps of initializing a broker application to act as a data security broker within a computing environment; providing an application programming interface (API) for external application interaction; receiving and processing requests via the API for access to encrypted code and data; containerizing the code and data within an isolated environment, subject to predefined rules; monitoring usage to ensure adherence to these rules; initiating self-destruction of the container upon reaching a predetermined usage limit or condition; and securely erasing all sensitive data and code after usage completion.Type: ApplicationFiled: November 8, 2023Publication date: May 8, 2025Applicant: BANK OF AMERICA CORPORATIONInventors: Maharaj Mukherjee, Dihong Qiu, Sanjeeb Kumar Sahoo, Venkat P. Ravula, Veerandra S. Srivastava, Riazuddin Khaja, Swetha Guddannagari, Mayank Sharma, Esada Qazi
-
Patent number: 12229026Abstract: In response to a request to replicate resources from a primary region data center to a secondary region data center, an executable configuration file that describes the resources and their configuration is created utilizing information about the resources at the primary region data center. A correspondence table is also updated to include entries for to such resources. Utilizing the correspondence table, the executable configuration file is transformed to create a transformed executable configuration file that references the resources utilizing generic resource identifiers instead of primary region identifiers used within the primary region data center. The transformed executable configuration file is then executed at the secondary region data center to create replicated resources at the secondary region data center.Type: GrantFiled: October 26, 2022Date of Patent: February 18, 2025Assignee: Oracle International CorporationInventors: Sanjeeb Kumar Sahoo, Rajesh Desai, Graham Bromley
-
Publication number: 20240283852Abstract: When a cloud services provider infrastructure (CSPI) receives a request from an administrator to perform an operation on an appliance, a load balancer may select a first server within the CSPI to process the request. If the first server does not have a connection with the appliance, the first server may generate a redirect response that includes server identification information identifying a particular server having a pre-established connection with the appliance. The first server may send the redirect response to the application that the administrator used to send the request. The application may then generate a second request that includes the server identification information, and send the second request to the CSPI. A load balancer in the CSPI may then forward the second request to the particular server, and the particular server may use the pre-established connection to send a request to the appliance requesting performance of the operation.Type: ApplicationFiled: April 30, 2024Publication date: August 22, 2024Applicant: Oracle International CorporationInventors: Sanjeeb Kumar Sahoo, Jagwinder Singh Brar
-
Patent number: 12047473Abstract: When a cloud services provider infrastructure (CSPI) receives a request from an administrator to perform an operation on an appliance, a load balancer may select a first server within the CSPI to process the request. If the first server does not have a connection with the appliance, the first server may generate a redirect response that includes server identification information identifying a particular server having a pre-established connection with the appliance. The first server may send the redirect response to the application that the administrator used to send the request. The application may then generate a second request that includes the server identification information, and send the second request to the CSPI. A load balancer in the CSPI may then forward the second request to the particular server, and the particular server may use the pre-established connection to send a request to the appliance requesting performance of the operation.Type: GrantFiled: June 13, 2023Date of Patent: July 23, 2024Assignee: Oracle International CorporationInventors: Sanjeeb Kumar Sahoo, Jagwinder Singh Brar
-
Publication number: 20240146543Abstract: According to certain implementations, a certificate management service of a cloud service provider requests a certificate for a domain from a certificate authority utilizing an HTTP-based challenge. The certificate authority responds with a challenge string and a subdirectory within the domain. The challenge string and subdirectory within the domain are sent from the certificate management service to a proxy server of the cloud service provider that manages a flow of data to a host that hosts the domain. When the certificate authority sends a request to the sub directory within the domain, the request is intercepted at the proxy server. Instead of forwarding the request to the host that hosts the domain, the proxy server responds to the certificate authority with the challenge string. This verifies ownership of the domain, which is required to obtain the certificate for the domain.Type: ApplicationFiled: October 26, 2022Publication date: May 2, 2024Applicant: Oracle International CorporationInventors: Sanjeeb Kumar Sahoo, Anthony Furious Long, Benjamin Charles Gay, Mina Anes, Shane Burgess
-
Publication number: 20240143459Abstract: In response to a request to replicate resources from a primary region data center to a secondary region data center, an executable configuration file that describes the resources and their configuration is created utilizing information about the resources at the primary region data center. A correspondence table is also updated to include entries for to such resources. Utilizing the correspondence table, the executable configuration file is transformed to create a transformed executable configuration file that references the resources utilizing generic resource identifiers instead of primary region identifiers used within the primary region data center. The transformed executable configuration file is then executed at the secondary region data center to create replicated resources at the secondary region data center.Type: ApplicationFiled: October 26, 2022Publication date: May 2, 2024Applicant: Oracle International CorporationInventors: Sanjeeb Kumar Sahoo, Rajesh Desai, Graham Bromley
-
Publication number: 20240119133Abstract: Techniques described herein relate to authorization between integrated cloud products. An example includes receiving, by a computing device and from a first resource, a first request for permission to access a certificate to verify a requestor's identity. The computing device can transmit a second request to a second resource to authorize permitting access to the certificate. The computing device can receive a response from the second resource comprising an authorization to permit access to the certificate. The computing device can grant permission to the first resource to access the certificate, wherein the first resource is configured to verify the requestor's identity based on accessing the certificate. The computing device can receive a third request from the first resource to generate an association object between the first resource and the certificate. The computing device can generate the association object, wherein the association object associates the first resource and the certificate.Type: ApplicationFiled: October 10, 2022Publication date: April 11, 2024Applicant: Oracle International CorporationInventors: Mauruthi Geetha Mohan, Anthony Long, Mina Michel Gorgy Anes, Sanjeeb Kumar Sahoo, Yingyu Yang, Bakhtiyar Uddin, Thomas James Andrews
-
Publication number: 20230328152Abstract: When a cloud services provider infrastructure (CSPI) receives a request from an administrator to perform an operation on an appliance, a load balancer may select a first server within the CSPI to process the request. If the first server does not have a connection with the appliance, the first server may generate a redirect response that includes server identification information identifying a particular server having a pre-established connection with the appliance. The first server may send the redirect response to the application that the administrator used to send the request. The application may then generate a second request that includes the server identification information, and send the second request to the CSPI. A load balancer in the CSPI may then forward the second request to the particular server, and the particular server may use the pre-established connection to send a request to the appliance requesting performance of the operation.Type: ApplicationFiled: June 13, 2023Publication date: October 12, 2023Applicant: Oracle International CorporationInventors: Sanjeeb Kumar Sahoo, Jagwinder Singh Brar
-
Patent number: 11722580Abstract: When a cloud services provider infrastructure (CSPI) receives a request from an administrator to perform an operation on an appliance, a load balancer may select a first server within the CSPI to process the request. If the first server does not have a connection with the appliance, the first server may generate a redirect response that includes server identification information identifying a particular server having a pre-established connection with the appliance. The first server may send the redirect response to the application that the administrator used to send the request. The application may then generate a second request that includes the server identification information, and send the second request to the CSPI. A load balancer in the CSPI may then forward the second request to the particular server, and the particular server may use the pre-established connection to send a request to the appliance requesting performance of the operation.Type: GrantFiled: July 28, 2021Date of Patent: August 8, 2023Assignee: Oracle International CorporationInventors: Sanjeeb Kumar Sahoo, Jagwinder Singh Brar
-
Publication number: 20220141310Abstract: When a cloud services provider infrastructure (CSPI) receives a request from an administrator to perform an operation on an appliance, a load balancer may select a first server within the CSPI to process the request. If the first server does not have a connection with the appliance, the first server may generate a redirect response that includes server identification information identifying a particular server having a pre-established connection with the appliance. The first server may send the redirect response to the application that the administrator used to send the request. The application may then generate a second request that includes the server identification information, and send the second request to the CSPI. A load balancer in the CSPI may then forward the second request to the particular server, and the particular server may use the pre-established connection to send a request to the appliance requesting performance of the operation.Type: ApplicationFiled: July 28, 2021Publication date: May 5, 2022Inventors: Sanjeeb Kumar Sahoo, Jagwinder Singh Brar
-
Patent number: 11108884Abstract: When a cloud services provider infrastructure (CSPI) receives a request from an administrator to perform an operation on an appliance, a load balancer may select a first server within the CSPI to process the request. If the first server does not have a connection with the appliance, the first server may generate a redirect response that includes server identification information identifying a particular server having a pre-established connection with the appliance. The first server may send the redirect response to the application that the administrator used to send the request. The application may then generate a second request that includes the server identification information, and send the second request to the CSPI. A load balancer in the CSPI may then forward the second request to the particular server, and the particular server may use the pre-established connection to send a request to the appliance requesting performance of the operation.Type: GrantFiled: October 29, 2020Date of Patent: August 31, 2021Assignee: Oracle International CorporationInventors: Sanjeeb Kumar Sahoo, Jagwinder Singh Brar
-
Patent number: 10721095Abstract: Described herein are systems and methods that can support bridging VCNs in a manner which addresses customer needs with respect to access mechanisms, connectivity, regional availability, service complexity, and customer isolation/security. The system and methods that can support bridging VCNs as described herein have particular utility with respect to providing etcd-as-a-Service. In particular embodiments virtual network interface (VNIC) features are used to implement a bridge between a subnet of an etcd VCN and a subnet of a customer VCN in order to bridge the subnets.Type: GrantFiled: May 3, 2018Date of Patent: July 21, 2020Assignee: ORACLE INTERNATIONAL CORPORATIONInventors: Sanjeeb Kumar Sahoo, Mahesh Kannan
-
Patent number: 10613834Abstract: In accordance with an embodiment, described herein is a system and method for supporting a reactive response using a dependency injection (DI) framework. The DI framework can determine the dependencies of a response object, and invoke a plurality of services for retrieving dependency objects from backend systems to satisfy those dependencies. Each service can return a reactive object, which the DI framework can match to a dependency object, thereby enabling the DI framework to orchestrate asynchronous concurrent calls to the services on behalf of an application. Each reactive object can be used to retrieve a corresponding dependency object at a later time. The DI framework can use the dependency object to compose the response object and inject the response object to an application at the server environment.Type: GrantFiled: February 15, 2017Date of Patent: April 7, 2020Assignee: ORACLE INTERNATIONAL CORPORATIONInventors: Sanjeeb Kumar Sahoo, Mahesh Kannan
-
Patent number: 10248703Abstract: A system and method for cluster-wide replication of embedded component configuration. In accordance with an embodiment, the system comprises an application server acting as a host and including one or more embedded components. When the configuration of an embedded component is modified from its original configuration, a configuration replication logic and deployment interface determines one or more appropriate configuration commands which, if executed at a target application server instance, for example, at another application server instance within a cluster, would result in an equivalent change in the state of an embedded component at that instance. The configuration commands are packaged within a configuration archive as one or more command payloads, which are distributed to target instances, and invoked on an embedded component thereon, to synchronize the configuration of the embedded components at the target instances with that of the host.Type: GrantFiled: January 8, 2014Date of Patent: April 2, 2019Assignee: ORACLE INTERNATIONAL CORPORATIONInventors: Sivakumar Thyagarajan, Sanjeeb Kumar Sahoo
-
Publication number: 20190097838Abstract: Described herein are systems and methods that can support bridging VCNs in a manner which addresses customer needs with respect to access mechanisms, connectivity, regional availability, service complexity, and customer isolation/security. The system and methods that can support bridging VCNs as described herein have particular utility with respect to providing etcd-as-a-Service. In particular embodiments virtual network interface (VNIC) features are used to implement a bridge between a subnet of an etcd VCN and a subnet of a customer VCN in order to bridge the subnets.Type: ApplicationFiled: May 3, 2018Publication date: March 28, 2019Inventors: SANJEEB KUMAR SAHOO, MAHESH KANNAN