PATRICK DREW MCDANIEL
Pilots at Chestnut Rdg Dr, State College, PA

2013026, Oct 3, 2013

May 24, 2013

13/902206

Patrick MCDANIEL - State College PA, US
Subhabrata SEN - New Providence NJ, US
Oliver SPATSCHECK - Randolph NJ, US
Jacobus E. VAN DER MERWE - New Providence NJ, US

H04L 29/06

726 11

An application provisioning device may be used to manage a profile of a host and provide data corresponding to a selected application for installation at a host. A reverse firewall may use the profile of the host to determine whether to allow or block particular network communication from an application running on the host. An indication of a selected application may be received at the application provisioning device. Configuration information may also be received at the application provisioning device. The application provisioning server may request an update to the profile of a host and transmit such a request. The profile may be updated to reflect the configuration information and/or information of the selected application. Data corresponding to the selected application may be updated and transmitted to a host computer, where it may be installed. Therefore, the installed application running on the host may operate without being prematurely blocked by the reverse firewall.

8453227, May 28, 2013

Dec 27, 2006

11/616325

William A. Aiello - Vancouver, CA
Patrick McDaniel - State College PA, US
Subhabrata Sen - New Providence NJ, US
Oliver Spatscheck - Randolph NJ, US
Jacobus E. Van Der Merwe - New Providence NJ, US

AT&T Intellectual Property II, L.P. - Reno NV

H04L 29/06

726 11

An application provisioning device may be used to manage a profile of a host and provide data corresponding to a selected application for installation at a host. A reverse firewall may use the profile of the host to determine whether to allow or block particular network communication from an application running on the host. An indication of a selected application may be received at the application provisioning device. Configuration information may also be received at the application provisioning device. The application provisioning server may request an update to the profile of a host and transmit such a request. The profile may be updated to reflect the configuration information and/or information of the selected application. Data corresponding to the selected application may be updated and transmitted to a host computer, where it may be installed. Therefore, the installed application running on the host may operate without being prematurely blocked by the reverse firewall.

2010019, Aug 5, 2010

Dec 8, 2005

11/275083

Patrick McDaniel - State College PA, US
Subhabrata Sen - New Providence NJ, US
Oliver Spatschek - Morris NJ, US
Jacobus E. Van de Merwe - Union NJ, US

AT&T Corporation - New York NY

G06F 15/173, G06F 15/16

709224, 709231

The current invention relates to a system and method for tracking or locating a target entity on a data network, such as the public Internet, by analyzing network traffic and communication among interacting network nodes. The invention describes a system of creating an information set of data related to the traffic patterns associated with a specific entity over a time period, and comparing the information set to other information related to the traffic patterns associated with a group of entities over the same time period. By excluding information that is common to both the specific entity and the group of entities from the information set, the information set is left with only the information that helps identify the specific entity on the network.

2011003, Feb 10, 2011

Aug 5, 2010

12/851046

Kevin R. Butler - State College PA, US
Stephen E. McLaughlin - State College PA, US
Patrick D. McDaniel - State College PA, US

The Penn State Research Foundation - University Park PA

G06F 21/24

726 27

Rootkit-resistant disks (RRD) label all immutable system binaries and configuration files at installation time. During normal operation, the disk controller inspects all write operations received from the host operating system and denies those made for labeled blocks. To upgrade, the host is booted into a safe state and system blocks can only be modified if a security token is attached to the disk controller. By enforcing immutability at the disk controller, a compromised operating system is prevented from infecting its on-disk image.

2006019, Aug 24, 2006

Nov 30, 2005

11/290976

William Aiello - Vancouver, CA
Charles Kalmanek - Short Hills NJ, US
William Leighton - Scotch Pines NJ, US
Patrick McDaniel - State College PA, US
Subhabrata Sen - New Providence NJ, US
Oliver Spatscheck - Randolph NJ, US
Jacobus Van der Merwe - New Providence NJ, US

AT&T Corp - New York NY

G06F 15/16

726011000

A reverse firewall for removing undesirable traffic from a computing network, such as a virtual private network (VPN), is disclosed. The reverse firewall uses firewall rules that may be determined and maintained within the enterprise network to control communication sent between computers in the computing network. The reverse firewall rules may be used to identify the communications between computers in the network that are undesirable and/or intrusive. For example, a computer in a network that is infected with a worm or that is surreptitiously hosting a denial-of-service attack may be identified by the reverse firewall and quarantined. The reverse firewall may be implemented in hardware and/or software.

2009031, Dec 17, 2009

Jun 16, 2008

12/140068

SUBHABRATA SEN - Providence NJ, US
Albert G. Greenberg - Seattle WA, US
Charles Kalmanek - Short Hills NJ, US
Patrick Drew McDaniel - State College PA, US

H04L 12/28

370254

A method and apparatus for creating one or more router configurations in a network are disclosed. For example, the method receives a request to create a router configuration, and retrieves automatically one or more templates in response to the request. The method then instantiates the router configuration by applying the one or more templates.

2009031, Dec 17, 2009

Jun 16, 2008

12/140072

SUBHABRATA SEN - N. Providence NJ, US
ALBERT G. GREENBERG - Seattle WA, US
CHARLES KALMANEK - Short Hills NJ, US
PATRICK DREW MCDANIEL - State College PA, US

H04L 12/28, H04L 12/66

370254, 370352

A method and apparatus for creating router configuration templates are disclosed. For example, the method creates one or more command strings for performing at least one of: a context substitution, or a functional substitution, and stores the one or more command strings as the router configuration template.

7975044, Jul 5, 2011

Dec 27, 2005

11/317256

Oliver Spatscheck - Randolph NJ, US
Subhabrata Sen - New Providence NJ, US
Jacobus E. Van der Merwe - New Providence NJ, US
Patrick McDaniel - State College PA, US

AT&T Intellectual Property I, L.P. - Atlanta GA

G06F 15/173

709224

Provided are methods for partitioning communication data in a network and disambiguating fixed or non-ephemeral communication data from ephemeral communication data and services. In one example, kmeans data clustering is used to partition or cluster server ports based on a location of the server ports in a 2-dimensional space. The location of the server ports may be based on a number of connections per server port and the number of servers using that port.