Patents by Inventor Sudeep Das
Sudeep Das has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Patent number: 11909769Abstract: Technologies for privacy-safe security policy evaluation are disclosed herein. An example apparatus includes at least one memory, and at least one processor to execute instructions to at least identify one or more non-sensitive parameters of a plurality of policy parameters and one or more sensitive parameters of the plurality of the policy parameters, the plurality of the policy parameters obtained from a computing device in response to a request from a cloud analytics server for the plurality of the policy parameters, encrypt the one or more sensitive parameters to generate encrypted parameter data in response to the identification of the one or more sensitive parameters, and transmit the encrypted parameter data to the cloud analytics server, the cloud analytics server to curry a security policy function based on one or more of the plurality of the policy parameters.Type: GrantFiled: January 20, 2021Date of Patent: February 20, 2024Assignee: MUSARUBRA US LLCInventors: Sudeep Das, Rajesh Poornachandran, Ned M. Smith, Vincent J. Zimmer, Pramod Sharma, Arthur Zeigler, Sumant Vashisth, Simon Hunt
-
Patent number: 11902388Abstract: In an example, there is disclosed a system and method for providing a service-oriented architecture, including request/response, over a publish/subscribe framework. In one embodiment, a system is disclosed for adding layers upon a publish/subscribe messaging framework for sophisticated messaging such as point-to-point (request/response) and the ability to query for available services, in a reliable, scalable manner.Type: GrantFiled: July 23, 2021Date of Patent: February 13, 2024Assignee: Musarubra US LLCInventors: Christopher Smith, Sudeep Das
-
Patent number: 11863470Abstract: An apparatus includes a network interface and a processing unit. The network interface transmits a security payload. The processing unit determines a first partition of a queuing service for the security payload at a first time, at least in part based on a determination that an initial attempt to transmit the security payload failed. The processing unit also instructs a retrieval of the security payload from the first partition to perform a first retry attempt to transmit the security payload, at least in part based on a determination that a first retry interval since the first time has elapsed.Type: GrantFiled: November 10, 2021Date of Patent: January 2, 2024Assignee: Musarubra US LLCInventors: Senthil K. Venkatesan, Arthur S. Zeigler, Sudeep Das, Anders Swanson
-
Publication number: 20230334055Abstract: In various embodiments, an intent-based query processing application processes search queries. The intent-based query processing application computes lexical similarity scores between a search query and a set of entities. The intent-based query processing application computes entity relevance scores based on the lexical similarity scores and user engagement scores associated with both the search query and the set of entities. The intent-based query processing application computes a first category relevance score associated with both the search query and a first category based on the entity relevance scores. The intent-based query processing application determines an intent associated with the search query based on the first category relevance score. The intent-based query processing application generates a response to the search query based on the intent.Type: ApplicationFiled: April 12, 2023Publication date: October 19, 2023Inventors: Sudeep DAS, Ivan Gennadievich PROVALOV, Weidong ZHANG, Yi ZHANG
-
Publication number: 20230214434Abstract: In various embodiments, structured pages are dynamically generated based on user inputs. In response to a user input such as a query, a page generating engine ranks content items according to relevance to the user input in order to generate a list of the content items that is ordered based on the relevance. The page generating engine further maps the content items to collections of content items that can be displayed together in a page. Then, the page generating engine generates a structured page that includes a subset of the collections and associated content items that are assigned to collections within the subset of collections based on relevance and/or coherence criteria. Thereafter, the structured page is transmitted to a client device for display via user interface.Type: ApplicationFiled: November 1, 2022Publication date: July 6, 2023Inventors: Weidong ZHANG, Sudarshan D. LAMKHEDE, Michael Albert GALASSI, Aisha Jackson Lei FENTON, Yi ZHANG, Fang LI, Sudeep DAS, Ivan PROVALOV, Gary YEH
-
Patent number: 11354417Abstract: A disclosed example apparatus includes memory; and at least one processor to execute first instructions, the first instructions obtained from first encrypted firmware, the at least one processor to: encrypt handoff data with an original equipment manufacturer key to generate encrypted handoff data; decrypt second encrypted firmware based on the original equipment manufacturer key to generate second instructions; and provide access to the encrypted handoff data to the second instructions, the second instructions to perform initialization of a computer based on the handoff data obtained from the encrypted handoff data.Type: GrantFiled: January 4, 2021Date of Patent: June 7, 2022Assignee: McAfee, LLCInventors: Jiewen Yao, Rangasai V. Chaganty, Xiang Ma, Ravi Poovalur Rangarajan, Rajesh Poornachandran, Nivedita Aggarwal, Giri P. Mudusuru, Vincent J. Zimmer, Satya P. Yarlagadda, Amy Chan, Sudeep Das
-
Publication number: 20220150187Abstract: An apparatus includes a network interface and a processing unit. The network interface transmits a security payload. The processing unit determines a first partition of a queuing service for the security payload at a first time, at least in part based on a determination that an initial attempt to transmit the security payload failed. The processing unit also instructs a retrieval of the security payload from the first partition to perform a first retry attempt to transmit the security payload, at least in part based on a determination that a first retry interval since the first time has elapsed.Type: ApplicationFiled: November 10, 2021Publication date: May 12, 2022Inventors: Senthil K. Venkatesan, Arthur S. Zeigler, Sudeep Das, Anders Swanson
-
Publication number: 20220053059Abstract: In an example, there is disclosed a system and method for providing a service-oriented architecture, including request/response, over a publish/subscribe framework. In one embodiment, a system is disclosed for adding layers upon a publish/subscribe messaging framework for sophisticated messaging such as point-to-point (request/response) and the ability to query for available services, in a reliable, scalable manner.Type: ApplicationFiled: July 23, 2021Publication date: February 17, 2022Applicant: McAfee, LLCInventors: Christopher Smith, Sudeep Das
-
Patent number: 11076003Abstract: There is disclosed in one example a data exchange layer (DXL) broker, including: a network interface to communicatively couple to a data exchange layer (DXL), the DXL including an enterprise service bus (ESB) configured to provide one-to-one device communications over a publish-subscribe fabric; hardware including at least a processor; and instructions encoded on one or more computer-readable mediums to instruct the processor to provide DXL broker software configured to: receive a DXL request message via the DXL, the request message directed to a DXL service; determine that the DXL service is available; and forward the request message to a DXL endpoint via the DXL.Type: GrantFiled: December 29, 2018Date of Patent: July 27, 2021Assignee: McAfee, LLCInventors: Christopher Smith, Sudeep Das
-
Publication number: 20210168176Abstract: Technologies for privacy-safe security policy evaluation are disclosed herein. An example apparatus includes at least one memory, and at least one processor to execute instructions to at least identify one or more non-sensitive parameters of a plurality of policy parameters and one or more sensitive parameters of the plurality of the policy parameters, the plurality of the policy parameters obtained from a computing device in response to a request from a cloud analytics server for the plurality of the policy parameters, encrypt the one or more sensitive parameters to generate encrypted parameter data in response to the identification of the one or more sensitive parameters, and transmit the encrypted parameter data to the cloud analytics server, the cloud analytics server to curry a security policy function based on one or more of the plurality of the policy parameters.Type: ApplicationFiled: January 20, 2021Publication date: June 3, 2021Inventors: Sudeep Das, Rajesh Poornachandran, Ned M. Smith, Vincent J. Zimmer, Pramod Sharma, Arthur Zeigler, Sumant Vashisth, Simon Hunt
-
Publication number: 20210124829Abstract: A disclosed example apparatus includes memory; and at least one processor to execute first instructions, the first instructions obtained from first encrypted firmware, the at least one processor to: encrypt handoff data with an original equipment manufacturer key to generate encrypted handoff data; decrypt second encrypted firmware based on the original equipment manufacturer key to generate second instructions; and provide access to the encrypted handoff data to the second instructions, the second instructions to perform initialization of a computer based on the handoff data obtained from the encrypted handoff data.Type: ApplicationFiled: January 4, 2021Publication date: April 29, 2021Inventors: Jiewen Yao, Rangasai V. Chaganty, Xiang Ma, Ravi Poovalur Rangarajan, Rajesh Poornachandran, Nivedita Aggarwal, Giri P. Mudusuru, Vincent J. Zimmer, Satya P. Yarlagadda, Amy Chan, Sudeep Das
-
Patent number: 10911496Abstract: Technologies for privacy-safe security policy evaluation are disclosed herein.Type: GrantFiled: August 12, 2019Date of Patent: February 2, 2021Assignee: MCAFEE, LLCInventors: Sudeep Das, Rajesh Poornachandran, Ned M. Smith, Vincent J. Zimmer, Pramod Sharma, Arthur Zeigler, Sumant Vashisth, Simon Hunt
-
Patent number: 10885199Abstract: A pre-boot initialization technique for a computing system allows for encrypting both a manufacturer and original equipment manufacturer firmware routines, as well as handing off data between the manufacturer and original equipment manufacturer firmware routines encrypted with a key provisioned in field programmable fuses with an original equipment manufacturer key. By encrypting the firmware routines and handoff data, security of the pre-boot initialization process is enhanced. Original equipment manufacturer updatable product data may also be encrypted with the original equipment manufacturer key. Additional security may be provided by using trusted input/output capabilities of a trusted execution environment to display information to and receive information from a user. Furthermore, multiple secure phases of configuration may be achieved using wireless credentials exchange components.Type: GrantFiled: September 26, 2016Date of Patent: January 5, 2021Assignee: McAfee, LLCInventors: Jiewen Yao, Rangasai V. Chaganty, Xiang Ma, Ravi Poovalur Rangarajan, Rajesh Poornachandran, Nivedita Aggarwal, Giri P. Mudusuru, Vincent J. Zimmer, Satya P. Yarlagadda, Amy Chan, Sudeep Das
-
Publication number: 20190370470Abstract: A pre-boot initialization technique for a computing system allows for encrypting both a manufacturer and original equipment manufacturer firmware routines, as well as handing off data between the manufacturer and original equipment manufacturer firmware routines encrypted with a key provisioned in field programmable fuses with an original equipment manufacturer key. By encrypting the firmware routines and handoff data, security of the pre-boot initialization process is enhanced. Original equipment manufacturer updatable product data may also be encrypted with the original equipment manufacturer key. Additional security may be provided by using trusted input/output capabilities of a trusted execution environment to display information to and receive information from a user. Furthermore, multiple secure phases of configuration may be achieved using wireless credentials exchange components.Type: ApplicationFiled: September 26, 2016Publication date: December 5, 2019Inventors: Jiewen Yao, Rangasai V. Chaganty, Xiang Ma, Ravi Poovalur Rangarajan, Rajesh Poornachandran, Nivedita Aggarwal, Giri P. Mudusuru, Vincent J. Zimmer, Satya P. Yarlagadda, Amy Chan, Sudeep Das
-
Publication number: 20190364074Abstract: Technologies for privacy-safe security policy evaluation are disclosed herein.Type: ApplicationFiled: August 12, 2019Publication date: November 28, 2019Inventors: Sudeep Das, Rajesh Poornachandran, Ned M. Smith, Vincent J. Zimmer, Pramod Sharma, Arthur Zeigler, Sumant Vashisth, Simon Hunt
-
Patent number: 10447714Abstract: There is disclosed in one example a data exchange layer (DXL) broker, including: a hardware platform including a processor; and instructions encoded in a memory to instruct the processor to communicatively couple to a DXL fabric configured to operate a one to-many (1:N, N>1) publish-subscribe fabric; provide an interface to authenticate and register DXL endpoints with the DXL broker; and provide DXL messaging, including maintaining a routing table of registered DXL endpoints; receiving from a first registered DXL endpoint a one-to-one (1:1) request for an endpoint of the DXL fabric, wherein the endpoint is not a registered DXL endpoint of the broker; and publishing the 1:1 request to the DXL fabric.Type: GrantFiled: October 17, 2018Date of Patent: October 15, 2019Assignee: McAfee, LLCInventors: Hemang Satish Nadkarni, Sudeep Das
-
Patent number: 10382489Abstract: Technologies for privacy-safe security policy evaluation include a cloud analytics server, a trusted data access mediator (TDAM) device, and one or more client devices. The cloud analytics server curries a security policy function to generate a privacy-safe curried function set. The cloud analytics server requests parameter data from the TDAM device, which collects the parameter data, identifies sensitive parameter data, encrypts the sensitive parameter data, and transmits the encrypted sensitive parameter data to the cloud analytics server. The cloud analytics server evaluates one or more curried functions using non-sensitive parameters to generate one or more sensitive functions that each take a sensitive parameter. The cloud analytics server transmits the sensitive functions and the encrypted sensitive parameters to a client computing device, which decrypts the encrypted sensitive parameters and evaluates the sensitive functions with the sensitive parameters to return a security policy.Type: GrantFiled: December 29, 2016Date of Patent: August 13, 2019Assignee: Mcafee, LLCInventors: Sudeep Das, Rajesh Poornachandran, Ned M. Smith, Vincent J. Zimmer, Pramod Sharma, Arthur Zeigler, Sumant Vashisth, Simon Hunt
-
Publication number: 20190141143Abstract: There is disclosed in one example a data exchange layer (DXL) broker, including: a network interface to communicatively couple to a data exchange layer (DXL), the DXL including an enterprise service bus (ESB) configured to provide one-to-one device communications over a publish-subscribe fabric; hardware including at least a processor; and instructions encoded on one or more computer-readable mediums to instruct the processor to provide DXL broker software configured to: receive a DXL request message via the DXL, the request message directed to a DXL service; determine that the DXL service is available; and forward the request message to a DXL endpoint via the DXL.Type: ApplicationFiled: December 29, 2018Publication date: May 9, 2019Applicant: McAfee, LLCInventors: Christopher Smith, Sudeep Das
-
Publication number: 20190052657Abstract: There is disclosed in one example a data exchange layer (DXL) broker, including: a hardware platform including a processor; and instructions encoded in a memory to instruct the processor to communicatively couple to a DXL fabric configured to operate a one to-many (1:N, N>1) publish-subscribe fabric; provide an interface to authenticate and register DXL endpoints with the DXL broker; and provide DXL messaging, including maintaining a routing table of registered DXL endpoints; receiving from a first registered DXL endpoint a one-to-one (1:1) request for an endpoint of the DXL fabric, wherein the endpoint is not a registered DXL endpoint of the broker; and publishing the 1:1 request to the DXL fabric.Type: ApplicationFiled: October 17, 2018Publication date: February 14, 2019Applicant: McAfee, LLCInventors: Hemang Satish Nadkarni, Sudeep Das
-
Patent number: 10205798Abstract: In an example, there is disclosed a method or system for merging multiple system trees of different resources based in multiple locations over a data exchange layer. In one embodiment, there is disclosed a system for merging assets of different types within one or more tree-based locations. For example, an end node may be represented in a single location, a single message broker may provide services for and be represented in multiple locations. The asset to asset relationships within merged trees may be used to ensure availability of services and visualization of the system for management purposes.Type: GrantFiled: December 19, 2013Date of Patent: February 12, 2019Assignee: McAfee, LLCInventors: Sudeep Das, Don R. Hanson, II