DR. CYRUS PEIKARI, M.D.
Osteopathic Medicine at Walnut Hill Ln, Dallas, TX

2005020, Sep 15, 2005

Dec 8, 2004

11/007513

Cyrus Peikari - Dallas TX, US

H04L012/28

370242000

A system for optimizing the security of data communication on wireless mesh networks invention uses existing mesh network nodes to control new nodes that attempt to join the network. In a preferred embodiment, this is achieved by (1) testing that a new node is “clean” before allowing it to join the wireless mesh network by scanning the new node for viruses, checking for security patches, etc., (2) quarantining an “infected” node from joining the wireless mesh network until it is cleaned, (3) signaling other nodes in the existing mesh network that a node is either “infected” or “clean”, (4) cleaning a new node by supplying it with antivirus software, vendor patches, etc. from nearby nodes in the existing wireless mesh network, (5) updating the wireless mesh network in real time with a list of clean and infected nodes, and (6) performing the above steps without the need for a central, controlling server.

2004014, Jul 22, 2004

Jan 17, 2003

10/346956

Cyrus Peikari - Dallas TX, US

G06F011/30

713/200000

The present invention provides a method and apparatus for increasing the security of data processing devices that use embedded operating systems (embedded devices). This invention utilizes an “embedded firewall” that improves security of the device by selectively filtering communication directly on the embedded device itself, rather than relying on an external firewall. In a preferred embodiment, this is achieved by (1) entering the desired filter specification at the user layer using an embedded user interface (UI) program or an imported specification file, (2) compiling the specification to be subsequently used by the embedded filtering engine, (3) Using an embedded dynamic link library (DLL) as an intermediary to isolate the user program from the lower kernel level, thus providing a system-independent interface, (4) communicating the specification to the kernel layer using the embedded DLL, (5) monitoring packets in the kernel level as they enter from the lower network level using an embedded packet driver, (6) filtering packets at the kernel level using the embedded filtering engine and the previously defined filter specification, (7) reporting the results from the kernel level back up to the user level through the embedded DLL.

2002016, Nov 7, 2002

May 2, 2001

09/847571

Cyrus Peikari - Dallas TX, US

H04B001/74

714/038000

The present invention provides a method and apparatus for increasing the efficiency at which computer viruses and corrupted files are detected on computer operating systems that support multitasking. The flexibility of the system allows data processing systems to reduce scanning time by utilizing multitasking to perform virus scans in parallel, subject to the amount of available memory and the number of simultaneous tasks that are available to be used by the parallel processes. This is achieved by (1) detecting the maximum number of simultaneous tasks which the operating system can allocate to the scanning operation, (2) detecting the maximum amount of free memory which can be made available to the scanning operation, (3) calculating the maximum number of processes (tasks) that can be supported by the currently available free memory, (4) launching multiple, simultaneous processes to scan for computer virus signatures, (5) detecting the subsequent amount of system memory and the number of simultaneous tasks available, (6) providing negative or positive feedback depending on the amount of system memory and the number of simultaneous tasks currently available, (7) modifying the number of active tasks based on this feedback, and (8) repeating and maintaining this feedback process in real-time.

7512809, Mar 31, 2009

Aug 21, 2004

10/923434

Cyrus Peikari - Dallas TX, US

G06F 9/00

713188, 713189, 713194, 713165, 713166

A method and apparatus optimizes the protection of computing networks. This protection utilizes attenuated (weakened) strains of live, replicating, malicious code such as viruses and worms, analogous to the development of live, attenuated, human vaccines in the medical field. In a preferred embodiment, this is achieved by (1) attenuating a malicious program, e. g. a virus or worm, or software vulnerability by limiting its virulence, i. e. , limiting its damage and resource usage, (2) modifying the virus to confer immunity on the network that it infects, e. g. , automatically patching a vulnerability, or marking the infected host as immune to further infection, (3) releasing the newly attenuated virus into the network, (4) tracking the attenuated virus and its success rate (e. g. , rate and ratio of successfully patched to un-patched vulnerable hosts), and (5) limiting the spread of the virus vaccine, e. g. , emergency termination, timeout to die, “white-list” of hosts not to touch, network IP address limitation, restricted IP ranges, variable address selection algorithm.

7239850, Jul 3, 2007

Jul 22, 2004

10/896809

Cyrus Peikari - Dallas TX, US

H04B 1/00, H04B 7/00

455 69, 455 24, 455421, 4554221, 455423, 455 6711, 455512

The invention optimizes the security of data communication on wireless local area networks (WLANs). This invention uses radio frequency (RF) radiation sensors (sensors) on the physical perimeter of a campus, or between nodes in a wireless mesh network, to detect signal bleed outside of an acceptable geographic range. In a preferred embodiment, this is achieved by () setting the acceptable signal strength (“bleed”) to be allowed at the perimeter, () sensing the RF signal strength at the perimeter sensors, () providing feedback from the sensors to the central radiation source controller (controller), () adjusting the central radiation source signal strength upwards or downwards based on acceptable ranges, () repeating this procedure in real time to provide constant optimization.

2005021, Sep 29, 2005

Mar 24, 2005

11/089391

Cyrus Peikari - Dallas TX, US

H04L009/00

713200000

A system for optimizing the security of embedded, mobile devices such as personal data assistants and Smartphones by protecting against soft and hard reset code attacks. In a preferred embodiment, this is achieved by 1. Scanning the active memory for evidence of “hard reset attack” code. 2. Scanning the filesystem for evidence of “hard reset attack” code. 3. Scanning the active memory for evidence of “soft reset attack” code. 4. Scanning the filesystem for evidence of “soft reset attack” code. 5. Automatically blocking and cleaning the reset code, based on user preference. 6. Providing optional user control over which programs are allowed to write to the startup folder.