Founder’s Patent Portfolio

Patents

Sl#	Title	Date
1	High efficiency compilation framework for streamlining the execution of compiled code	Issued August 21, 2012
2	Virtualization of file system encryption	Issued March 15, 2011
3	Extensible access control list framework	Issued Sep 16, 2014
4	Domains based security for clusters	Issued Nov 26, 2013
5	Mathematical definition of roles and authorizations in RBAC system	Issued February 14, 2012
6	Locking Access to Data Storage Shared By A Plurality Of Compute Nodes	Issued Feb 3, 2015
7	System and computer program product for dynamically resizing file systems	Issued March 20, 2012
8	System and computer program product for dynamically resizing file systems	Issued March 19, 2013
9	Authorized authorization set in RBAC model	Issued June 5, 2012
10	Domain based isolation of network ports	Issued Jan 14, 2014
11	Method and apparatus for threaded background function support	Issued March 5, 2013
12	Extensible access control list framework	Issued July 20, 2016
13	Client based resource isolation with domains	Issued Nov 17, 2015
14	Security key distribution in a cluster	Issued Dec 2, 2014
15	Domain aware time-based logins	Issued Feb 12, 2013
16	Second failure data capture problem determination using user selective memory protection to trace application failures	Published Apr 29 2010
17	Domain-based isolation and access control on dynamic objects	Issued August 26, 2014
18	Managing memory – Virtualization of kernel heap for virtual image – Managing memory	Issued August 28, 2012
19	Managing access to class objects in a system utilizing a role-based access control framework	Issued Sep 01, 2015
20	Time-based control of user access in a data processing system incorporating a role-based access control model	Published Nov 20 2008
21	Managing access to class objects in a system utilizing a role-based access control framework	Issued Feb 10, 2015
22	System And Method For Security Levels With Cluster Communications	Published Oct 04 2012
23	Privilege management	Issued March 13, 2012
24	Domain based isolation of objects	Issued April 23, 2013
25	Role-based access control limited by application and hostname	Published may 24 2012
26	Domain based access control of physical memory space	Issued Sep 9, 2014
27	Security framework	Pending
28	Providing programming support to debuggers	Issued Sep 2, 2014
29	Domain based user mapping of objects	Published Feb 21 2013
30	Reducing Application Downtime During Failover	Issued May 3, 2016
31	Reducing Application Downtime During Failover	Issued May 3, 2016
32	Domain based resource isolation in multi-core systems	Issued March 26, 2019
33	Access Control Lists	Issued Nov 17 2022
34	Network security	Published Jul 23 2020

** Holds 27 Granted and 6 Pending Patents

IEEE Papers by the Founder

IEEE Publication : Cloud Computing and Emerging Market – 2016

Title: Performance Boost Framework in UNIX Kernel for Cloud Applications

Abstract
Volcanic growth of expanding business and increasing market dimensions lead to need for high performing applications particularly in this internet era. Forrester predicts performance and availability should not to be taken lightly. To fight this onslaught, a business organisation no longer can just accelerate current practices and rely on human intelligence. The company’s software also needs to be autonomic. One key aspect for a software to be considered as autonomic is its ability to analyse the system conditions and invoke appropriate actions to optimise the performance and thereby maintaining user satisfaction. Gone are those days where a system would have about five or ten features embedded into the kernel which would have about few hundred services to serve the application requirements. With growing data center it will be impossible to maintain the performance of an application or a system one by one. This clearly dictates the need for automation. In this paper I will discuss about a performance boost framework in UNIX kernel which shall enable the applications take appropriate actions immediately. I shall also provide a demonstration of how this is achieved in a UNIX platform and deployed into distributed cloud environment.

Keywords– Performance, kernel, UNIX

IEEE Publication : Cloud Computing and Emerging Market – 2012

Title: Object Isolation for Cloud with Domain RBAC

Abstract— Cloud computing has taken technology into a mix of networking, virtualization and clustering environment which has opened up a new era with lots of opportunities thereby making business highly scalable. However there are several challenges that need to be addressed, in particular, security, which Forrester [1] has listed as being one of the most crucial concerns.

One of the most effective and time-tested ways to ensure security is via Role Based Access Control (RBAC) [2]; with emphasis in cloud computing environments on data protection, authentication and authorization. RBAC provides a policy framework to enable delegation of responsibilities of the super user permissions to other users. This framework helps define non-root users with proper authorizations to perform specific system administration tasks.

However it does not provide a mechanism to define the set of objects on which these roles could be exercised. By default, all Role based tasks can be performed on all objects of that type. Therefore to address this issue DOMAIN RBAC has been implemented, with object isolation feature included, as an extension of RBAC. Object Isolation marks a boundary across system resources and users by defining which users can access specified resources on the system while the RBAC roles would determine what operations can be performed on the accessible resources.

In this paper we present and describe a method by which object isolation has been implemented via DOMAIN RBAC along with a use case. We also illustrate our approach by showing how it is implemented on IBM’s AIX version 7 Operating System which can be leveraged in cloud environment.

Keywords– Domains, Resource Isolation, RBAC, AIX, Security