Patents by Inventor Steven M. Dawson

Steven M. Dawson has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).

  • Patent number: 9571523
    Abstract: A network security policy may be implemented at network switches as a set of active packet disposition directives. In a dynamically programmable network, the network switches can be dynamically reprogrammed with packet disposition directives. A security actuator receives flow policy directives from a number of network applications. The flow policy directives express higher-level network security policy goals, including blocking and/or redirecting network traffic. The security actuator converts a flow policy directive into one or more packet disposition directives. The packet disposition directives may include trigger rules to cause network communications to be monitored for matching trigger packets. An automated mechanism initiated by the security actuator may cause trigger packets to be forwarded to the security actuator for analysis. The security actuator may generate packet disposition directives in response to receiving the trigger packets.
    Type: Grant
    Filed: July 2, 2014
    Date of Patent: February 14, 2017
    Assignee: SRI INTERNATIONAL
    Inventors: Phillip A. Porras, Keith M. Skinner, Steven M. Dawson
  • Publication number: 20140317684
    Abstract: A network security policy may be implemented at network switches as a set of active packet disposition directives. In a dynamically programmable network, the network switches can be dynamically reprogrammed with packet disposition directives. A security actuator receives flow policy directives from a number of network applications. The flow policy directives express higher-level network security policy goals, including blocking and/or redirecting network traffic. The security actuator converts a flow policy directive into one or more packet disposition directives. The packet disposition directives may include trigger rules to cause network communications to be monitored for matching trigger packets. An automated mechanism initiated by the security actuator may cause trigger packets to be forwarded to the security actuator for analysis. The security actuator may generate packet disposition directives in response to receiving the trigger packets.
    Type: Application
    Filed: July 2, 2014
    Publication date: October 23, 2014
    Inventors: Phillip A. Porras, Keith M. Skinner, Steven M. Dawson
  • Patent number: 7177867
    Abstract: A scalable method and architecture for efficiently locating desired resources within a network containing a plurality of server nodes, each of which hosts or otherwise provides access to a subset of a global resource set. In one aspect of the invention, each of the server nodes are assigned membership in at least two sets, an “announce” set and a “request” set.
    Type: Grant
    Filed: September 12, 2002
    Date of Patent: February 13, 2007
    Assignee: SRI International
    Inventors: David W. J. Stringer-Calvert, Patrick D. Lincoln, Steven M. Dawson
  • Patent number: 7095444
    Abstract: A method and apparatus for deconstructing video into a hierarchical structure, distributing the deconstructed video and reconstructing the deconstructed video to form a video signal having characteristics that match the capabilities of a user device. The video stream may be deconstructed using a single dimension deconstruction or a multidimensional deconstruction.
    Type: Grant
    Filed: November 6, 2000
    Date of Patent: August 22, 2006
    Assignee: SRI International
    Inventors: Patrick D. Lincoln, David W. J. Stringer-Calvert, Steven M. Dawson
  • Patent number: 6922696
    Abstract: Despite advances in recent years in the area of mandatory access control in database systems, today's information repositories remain vulnerable to inference and data association attacks that can result in serious information leakage. Without support for coping against these attacks, sensitive information can be put at risk because of release of other (less sensitive) related information. The ability to protect information disclosure against such improper leakage would be of great benefit to governmental, public, and private institutions, which are, today more than ever, required to make portions of their data available for external release. In accordance with the invention, a solution to the problem of classifying information by enforcing explicit data classification as well as inference and association constraints is provided.
    Type: Grant
    Filed: November 9, 2000
    Date of Patent: July 26, 2005
    Assignee: SRI International
    Inventors: Patrick D. Lincoln, Steven M. Dawson, Pierangela Samarati, Sabrina De Capitani di Vimercati
  • Publication number: 20030074402
    Abstract: A scalable method and architecture for efficiently locating desired resources within a network containing a plurality of server nodes, each of which hosts or otherwise provides access to a subset of a global resource set. In one aspect of the invention, each of the server nodes are assigned membership in at least two sets, an “announce” set and a “request” set.
    Type: Application
    Filed: September 12, 2002
    Publication date: April 17, 2003
    Applicant: SRI International
    Inventors: David W. J. Stringer-Calvert, Patrick D. Lincoln, Steven M. Dawson
  • Publication number: 20020056010
    Abstract: Client-transparent methods and apparatus are taught for compressing and transmitting requested network server data and uncompressing this data on client browsers. A network request for a file from a typical client specifies a list of acceptable encoding schemes. In response, the file is compressed using a substantially lossless encoding format or codes that is one of the acceptable encoding schemes listed. In some embodiments, compression is performed dynamically in response to requests. A particular content delivery server may be chosen to handle each network request for a file at least partly based upon one or more criteria indicating a relative quality of connectivity between the selected server and the requesting client. Compression is performed as a further element of a content delivery business service, and may be performed either dynamically or statically and in either a centralized or distributed manner.
    Type: Application
    Filed: March 19, 2001
    Publication date: May 9, 2002
    Applicant: SRI International
    Inventors: Patrick D. Lincoln, David W. J. Stringer-Calvert, Steven M. Dawson