Patents by Inventor Subramanian Srinivasan

Subramanian Srinivasan has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).

  • Patent number: 11075923
    Abstract: Systems and methods for limiting calls to access a cloud-based system are disclosed. The systems and methods obtain a rate limiting policy including at least one attribute and a counting interval, the at least one attribute including at least one of a username associated with a client, an instance, an organization associated with the client, a resource being requested, a service being requested, a geographical access region, and an Application Programming Interface (API) being requested. The systems and methods also mark an entry, based on the rate limiting policy, in a database for each call the client makes. The systems and methods further enforce the rate liming policy by not processing calls from the client associated with the at least one attribute that are made for a count of calls marked that is beyond the counting interval.
    Type: Grant
    Filed: May 29, 2020
    Date of Patent: July 27, 2021
    Assignee: Zscaler, Inc.
    Inventors: Subramanian Srinivasan, Arvind Nadendla
  • Patent number: 10848395
    Abstract: Systems and methods for managing configurations of distributed computing services include responsive to an update to a configuration of a service, performing a write to a cryptographically bound journal; validating the write by a plurality of validators; responsive to validation of the write, permanently recording the write in the cryptographically bound journal in a block chain; and providing an update to the cryptographically bound journal to the distributed computing services.
    Type: Grant
    Filed: April 10, 2018
    Date of Patent: November 24, 2020
    Assignee: Zscaler, Inc.
    Inventor: Subramanian Srinivasan
  • Publication number: 20200195614
    Abstract: Systems and methods, in a lightweight connector including a processor communicatively coupled to a network interface, include connecting to a cloud-based system, via the network interface; connecting to one or more of a file share and an application, via the network interface; and providing access to a user device to the one or more of the file share and the application via a stitched connection between the network interface and the user device through the cloud-based system. The systems and methods can further include receiving a query for discovery; and responding to the query based on the one or more of the file share and the application connected thereto.
    Type: Application
    Filed: February 25, 2020
    Publication date: June 18, 2020
    Inventors: John A. Chanak, Patrick Foxhoven, William Fehring, Denzil Wessels, Kunal Shah, Subramanian Srinivasan
  • Patent number: 10616180
    Abstract: Virtual private access systems and methods implemented in a clientless manner on a user device are disclosed. The systems and methods include receiving a request to access resources from a Web browser on the user device at an exporter in a cloud system. The resources are located in one of a public cloud and an enterprise network and the user device is remote therefrom on the Internet. The systems and methods also include performing a series of connections between the exporter and i) the Web browser and ii) centralized components to authenticate a user of the user device for the resources. The systems and methods further include, subsequent to authentication, exchanging data between the Web browser and the resources through the exporter. The exporter has a first secure tunnel to the Web browser and a second secure tunnel to the resources.
    Type: Grant
    Filed: May 23, 2018
    Date of Patent: April 7, 2020
    Assignee: Zscaler, Inc.
    Inventors: John A. Chanak, Patrick Foxhoven, William Fehring, Denzil Wessels, Kunal Shah, Subramanian Srinivasan
  • Publication number: 20190312792
    Abstract: Systems and methods for managing configurations of distributed computing services include responsive to an update to a configuration of a service, performing a write to a cryptographically bound journal; validating the write by a plurality of validators; responsive to validation of the write, permanently recording the write in the cryptographically bound journal in a block chain; and providing an update to the cryptographically bound journal to the distributed computing services.
    Type: Application
    Filed: April 10, 2018
    Publication date: October 10, 2019
    Inventor: Subramanian Srinivasan
  • Publication number: 20180270201
    Abstract: Virtual private access systems and methods implemented in a clientless manner on a user device include receiving a request to access resources from a Web browser on the user device at an exporter in a cloud system, wherein the resources are located in one of a public cloud and an enterprise network and the user device is remote therefrom on the Internet; performing a series of connections between the exporter and i) the Web browser and ii) centralized components including a crypto service, database, cookie store, and Security Assertion Markup Language (SAML) Service Provider (SP) component to authenticate a user of the user device for the resources; and, subsequent to authentication, exchanging data between the Web browser and the resources through the exporter, wherein the exporter has a first secure tunnel to the Web browser and a second secure tunnel to the resources.
    Type: Application
    Filed: May 23, 2018
    Publication date: September 20, 2018
    Inventors: John A. Chanak, Patrick Foxhoven, William Fehring, Denzil Wessels, Kunal Shah, Subramanian Srinivasan
  • Patent number: 8612295
    Abstract: The invention is directed to techniques for processing order messages exchanged between a client and an order server. The order messages can be for products and services that the customer orders from a vendor. The client provides the input order messages, which contain order commands in a predefined document format, to an order message manager of the order server, which also provides an order message sorter and message processing modules. The order message sorter reads the input document in the input order message to determine a type for the message and then directs the message to a message processing module capable of processing that type of order message. The message processing module processes the input document, obtains data if needed from an order database, and prepares an output document to include in an output order message to be returned to the client.
    Type: Grant
    Filed: September 9, 2011
    Date of Patent: December 17, 2013
    Assignee: Cisco Technology, Inc.
    Inventors: Arvind D. Gidwani, Subramanian Srinivasan, Dharmesh Parikh
  • Publication number: 20130030964
    Abstract: A location-based payer charging system includes a charging database including at least one transportation charge element associated with a transportation provider. A system provider device in the location-based payer charging system is coupled to a network and the charging database. The system provider device is operable to receive first location data from a payer device over the network in response to the payer device entering a first transportation area, and then receive second location data from the payer device over the network in response to the payer device exiting a second transportation area. The system provider device will then determine a payment amount using the first location data, the second location data, and a transportation charge element retrieved from the charging data, and send an instruction to charge the payment amount to a payer account that is associated with the payer device.
    Type: Application
    Filed: June 8, 2012
    Publication date: January 31, 2013
    Applicant: eBAY, INC.
    Inventors: Frank Anthony Nuzzi, Farah Naz Amin, Subramanian Srinivasan
  • Publication number: 20110320299
    Abstract: The invention is directed to techniques for processing order messages exchanged between a client and an order server. The order messages can be for products and services that the customer orders from a vendor. The client provides the input order messages, which contain order commands in a predefined document format, to an order message manager of the order server, which also provides an order message sorter and message processing modules. The order message sorter reads the input document in the input order message to determine a type for the message and then directs the message to a message processing module capable of processing that type of order message. The message processing module processes the input document, obtains data if needed from an order database, and prepares an output document to include in an output order message to be returned to the client.
    Type: Application
    Filed: September 9, 2011
    Publication date: December 29, 2011
    Inventors: Arvind D. Gidwani, Subramanian Srinivasan, Dharmesh Parikh
  • Patent number: 8019647
    Abstract: The invention is directed to techniques for processing order messages exchanged between a client and an order server. The order messages can be for products and services that the customer orders from a vendor. The client provides the input order messages, which contain order commands in a predefined document format, to an order message manager of the order server, which also provides an order message sorter and message processing modules. The order message sorter reads the input document in the input order message to determine a type for the message and then directs the message to a message processing module capable of processing that type of order message. The message processing module processes the input document, obtains data if needed from an order database, and prepares an output document to include in an output order message to be returned to the client.
    Type: Grant
    Filed: March 20, 2007
    Date of Patent: September 13, 2011
    Assignee: Cisco Technology, Inc.
    Inventors: Arvind D. Gidwani, Subramanian Srinivasan, Dharmesh Parikh
  • Patent number: 8005000
    Abstract: In one embodiment, one or more network devices located on a call path for packets destined to a server running applications examines payloads included in the packets to associate different ones of the packets to different ones of the applications. Information about the packets and the associations are used to determine which ones of the applications conform to their respective Service Level Agreements (SLAs).
    Type: Grant
    Filed: April 6, 2007
    Date of Patent: August 23, 2011
    Assignee: Cisco Technology, Inc.
    Inventor: Subramanian Srinivasan
  • Patent number: 7881967
    Abstract: A method of product configuration validation prior to ordering is described. The present method is comprised of receiving a product configuration transmitted from a procuring computer system. The product configuration is received by a computer system. The computer system is configured to cause the distribution of a product utilized in said product configuration to said procuring computer system. The product configuration is compared with parameters relative to functionality of said product when in said product configuration. The functionality parameters are stored on the computer system. The comparing is for validating the product configuration.
    Type: Grant
    Filed: February 14, 2003
    Date of Patent: February 1, 2011
    Assignee: Cisco Technology, Inc.
    Inventors: Subramanian Srinivasan, Deepak Bhargava, Rama Chinta
  • Patent number: 7792975
    Abstract: A networking device comprises an interface configured to receive and transmit data from and to a network; policy data configured to specify, for one or more application-layer messages, a session key that uniquely identifies an application session associated with the application-layer messages; logic encoded in one or more media for execution and when executed operable to receive a particular application-layer message through the interface, generate a particular session key for the particular application-layer message based on the policy data, and provide the particular session key to a message processing function.
    Type: Grant
    Filed: March 12, 2007
    Date of Patent: September 7, 2010
    Assignee: Cisco Technology, Inc.
    Inventors: Vinod Dashora, Subramanian Srinivasan, Sandeep Kumar
  • Patent number: 7551567
    Abstract: A method is disclosed for interpreting an application message at a network element using sampling and heuristics. Using this method, a network element such as a router can determine, based solely on a data packet's packet headers, whether the network element ought to invest the time and processing power required to inspect and interpret the data packet's payload portion, or whether the network element can send the data packet toward the data packet's destination without inspecting and interpreting the data packet's payload portion. According to one aspect, while in a sampling state, the network element determines shared packet header characteristics possessed by packet headers of all data packets that require application layer message inspection. While in a processing state, the network element forgoes application layer message inspection relative to data packets whose packet headers do not possess the shared packet header characteristics. The network element alternates between the states.
    Type: Grant
    Filed: January 5, 2005
    Date of Patent: June 23, 2009
    Assignee: Cisco Technology, Inc.
    Inventors: Tefcros Anthias, Sunil Potti, Subramanian Srinivasan, Nitesh Trikha
  • Patent number: 7496750
    Abstract: Techniques are provided for performing security functions on a message payload in a network element. According to one aspect, a network element receives one or more data packets. The network element performs a security function on at least a portion of an application layer message that is contained in one or more payload portions of the one or more data packets. According to another aspect, a network element receives a first request that is destined for a first application. The network element sends, to a second application that sent the first request, a second request for authentication information. The network element receives the authentication information and determines whether the authentication information is valid. If the authentication information is not valid, then the network element prevents the first request from being sent to the first application.
    Type: Grant
    Filed: December 7, 2004
    Date of Patent: February 24, 2009
    Assignee: Cisco Technology, Inc.
    Inventors: Sandeep Kumar, Subramanian Srinivasan, Tefcros Anthias, Subramanian N. Iyer, Christopher R. Wiborg
  • Patent number: 7203658
    Abstract: The invention is directed to techniques for processing order messages exchanged between a client and an order server. The order messages can be for products and services that the customer orders from a vendor. The client provides the input order messages, which contain order commands in a predefined document format, to an order message manager of the order server, which also provides an order message sorter and message processing modules. The order message sorter reads the input document in the input order message to determine a type for the message and then directs the message to a message processing module capable of processing that type of order message. The message processing module processes the input document, obtains data if needed from an order database, and prepares an output document to include in an output order message to be returned to the client.
    Type: Grant
    Filed: March 19, 2001
    Date of Patent: April 10, 2007
    Assignee: Cisco Technology, Inc.
    Inventors: Arvind D. Gidwani, Subramanian Srinivasan, Dharmesh Parikh
  • Patent number: 7096189
    Abstract: In an order processing system, mechanisms and techniques receive a change to an existing order in the order processing system and generate a change order based on the existing order. The change order includes the change to the existing order. The system can then compare the change order to the existing order to generate change order result that indicates differences between a change order in the existing order. The system then provides the change order result to at least one recipient such that the recipient may distinguish the differences between a change order in the existing order. Since a change to an existing order can result in changes other than those specifically specified in the received change, the system of the invention allows a person making the change to be presented with the change order results that convey all of the changes that result to the existing order.
    Type: Grant
    Filed: January 12, 2001
    Date of Patent: August 22, 2006
    Assignee: Cisco Technology, Inc.
    Inventor: Subramanian Srinivasan
  • Publication number: 20060155862
    Abstract: A method is disclosed for application layer message-based load balancing. According to one aspect, when a network element receives one or more data packets that collectively contain an application layer message, the network element determines a message classification to which the application layer message belongs. Using a load-balancing algorithm that is mapped to the message classification, the network element selects a server from among a plurality of servers, and sends the message toward that server. According to one “adaptive” load-balancing algorithm, the network element selects the server based on multiple servers' average historical response times and average outstanding request wait times. The network element continuously maintains these statistics for each server toward which the network element has sent requests. The network element tracks response times by recording how much time passes between the sending of a request to a server and the receiving of a corresponding response from that server.
    Type: Application
    Filed: January 6, 2005
    Publication date: July 13, 2006
    Inventors: Hari Kathi, Subramanian Srinivasan, Pravin Singhal
  • Publication number: 20060146879
    Abstract: A method is disclosed for interpreting an application message at a network element using sampling and heuristics. Using this method, a network element such as a router can determine, based solely on a data packet's packet headers, whether the network element ought to invest the time and processing power required to inspect and interpret the data packet's payload portion, or whether the network element can send the data packet toward the data packet's destination without inspecting and interpreting the data packet's payload portion. According to one aspect, while in a sampling state, the network element determines shared packet header characteristics possessed by packet headers of all data packets that require application layer message inspection. While in a processing state, the network element forgoes application layer message inspection relative to data packets whose packet headers do not possess the shared packet header characteristics. The network element alternates between the states.
    Type: Application
    Filed: January 5, 2005
    Publication date: July 6, 2006
    Inventors: Tefcros Anthias, Sunil Potti, Subramanian Srinivasan, Nitesh Trikha
  • Publication number: 20060123226
    Abstract: A method is disclosed for performing security functions on a message payload in a network element. According to one aspect, a network element receives one or more data packets. The network element performs a security function on at least a portion of an application layer message that is contained in one or more payload portions of the one or more data packets. According to another aspect, a network element receives a first request that is destined for a first application. The network element sends, to a second application that sent the first request, a second request for authentication information. The network element receives the authentication information and determines whether the authentication information is valid. If the authentication information is not valid, then the network element prevents the first request from being sent to the first application.
    Type: Application
    Filed: December 7, 2004
    Publication date: June 8, 2006
    Inventors: Sandeep Kumar, Subramanian Srinivasan, Tefcros Anthias, Subramanian Iyer, Christopher Wiborg