John M Garrison

US Patent:

6708170, Mar 16, 2004

Filed:

Dec 14, 1999

Appl. No.:

09/460849

Inventors:

Debora Jean Byrne - Austin TX
John Michael Garrison - Austin TX

Assignee:

International Business Machines Corporation - Armonk NY

International Classification:

G06F 1730

US Classification:

707 9, 709223

Abstract:

A process for maintaining authentication information in a distributed network of servers generates and maintains a non-local access server list, queries non-local servers using a Lightweight Directory Access Protocol (LDAP) search request, caches responses to queries from non-local servers, updates the cached directory entries and applies an LDAP operation to the cached directory entries and the local access control data. A variety of techniques are used to update cache information. When a request to authenticate a user with a distinguished name is received, the cached directory entries and the local access control data are searched for the distinguished name and, once the distinguished name is located, the user is authenticated with each server in the non-local access server list.

US Patent:

6714930, Mar 30, 2004

Filed:

May 31, 2000

Appl. No.:

09/583409

Inventors:

John Michael Garrison - Austin TX
Donna E. Skibbie - Round Rock TX

Assignee:

International Business Machines Corporation - Armonk NY

International Classification:

G06F 1730

US Classification:

707 9, 707 3, 707 10, 709203, 709206, 709219, 709225, 709229

Abstract:

A trusted process for use with a hierarchical directory service such as LDAP for enabling different security systems to store and retrieve unique identifiers that are shared or common to the entire directory. The trusted process allows LDAP users to store and to retrieve unique identifiers on LDAP using standard LDAP interfaces. It also allows security systems to share unique identifier information. The trusted process generates or verifies a unique identifier, guarantees the uniqueness of a unique identifier within the entire directory (rather than just within a single security system), and guarantees that any unique identifier returned to an LDAP user is a trusted unique identifier.

US Patent:

6769118, Jul 27, 2004

Filed:

Dec 19, 2000

Appl. No.:

09/740434

Inventors:

John M. Garrison - Austin TX
Rose Anne Swart - Austin TX

Assignee:

International Business Machines Corporation - Armonk NY

International Classification:

G06F 9445

US Classification:

717177, 717172, 717173, 717176, 709201, 709203, 709217

Abstract:

An administrative management system comprising an administrative server and a client is disclosed. In response to a selection of an administrative procedure to be executed on the client, the administrative server determines if an execution of the administrative procedure on the client is in compliance with one or more corresponding policies. If the execution is in compliance with the corresponding policy or policies, the administrative server determines the storage location of the administrative procedure. If the selected administrative procedure is stored on the client, the administrative server executes the administrative procedure on the client. If the selected administrative procedure is stored on the administrative server, the administrative server pushes a corresponding script of the administrative procedure from the administrative server to the client and then installs and executes the script on the client. If the selected administrative procedure is stored at a remote location, the administrative server pushes a corresponding script of the administrative procedure from the remote location to the client and then installs and executes the script on the client.

US Patent:

6785811, Aug 31, 2004

Filed:

Mar 23, 2000

Appl. No.:

09/533140

Inventors:

John Charles Bihlmeyer - Wake Forest NC
Mark Charles Davis - Durham NC
John Michael Garrison - Austin TX
David Gerard Kuehr-McLaren - Apex NC
Reid L. Sayre - Raleigh NC

Assignee:

International Business Machines Corporation - Armonk NY

International Classification:

H04L 900

US Classification:

713167, 380 28, 380255

Abstract:

Methods, systems and computer program products are provided which provide cryptographic services to an application by incorporating in the application an indication of at least one authorized cryptographic function for the application. The indication of at least one authorized cryptographic function for the application is communicated to a cryptographic library that supports a plurality of cryptographic functions. The at least one authorized cryptographic function corresponding to the indication of at least one authorized cryptographic function is then identified as a valid cryptographic function for the application.

US Patent:

6928556, Aug 9, 2005

Filed:

Aug 30, 2001

Appl. No.:

09/942745

Inventors:

Steven C. Black - Round Rock TX, US
Herve Debar - Caen, FR
John Michael Garrison - Austin TX, US
RoseAnne Swart - Austin TX, US

Assignee:

International Business Machines Corporation - Armonk NY

International Classification:

G06L011/30

US Classification:

713201, 713400, 714 4, 714 26

Abstract:

A method, apparatus, and computer implemented instructions for handling a situation in a data processing system. In response to detecting a situation, an aging function is applied to the situation. Alerts regarding the situation based on the aging function are presented.

US Patent:

7039953, May 2, 2006

Filed:

Aug 30, 2001

Appl. No.:

09/942633

Inventors:

Steven Black - Round Rock TX, US
Herve Debar - Caen, FR
John Michael Garrison - Austin TX, US
Andreas Wespi - Mettmenhasli, CH

Assignee:

International Business Machines Corporation - Armonk NY

International Classification:

G06F 15/16
G06F 15/173
G06F 17/60

US Classification:

726 14, 726 23, 726 25, 709203, 709223, 709224, 709227, 709229, 705 1, 705 7, 705 10

Abstract:

A method, computer program product, and apparatus for presenting data about security-related events that puts the data into a concise form is disclosed. Events are abstracted into a set data-type. Sets with common elements are grouped together, and summaries of the groups—“situations” are established from groups whose severity exceeds a threshold value. These groups and situations are then propagated up a hierarchical arrangement of systems and further aggregated so as to provide summary information over a larger group of systems. This hierarchical scheme allows for scalability of the event correlation process across larger networks of systems.

US Patent:

7278160, Oct 2, 2007

Filed:

Aug 16, 2001

Appl. No.:

09/931301

Inventors:

Steven Black - Round Rock TX, US
Herve Debar - Caen, FR
John Michael Garrison - Austin TX, US

Assignee:

International Business Machines Corporation - Armonk NY

International Classification:

G06F 11/00
G06F 7/04
G06F 17/30
G06F 15/173
G06K 9/00
H04L 9/32
H04L 9/00
H04K 1/00

US Classification:

726 23, 726 4, 726 5, 726 6, 726 7, 726 13, 726 14, 726 27, 713151, 713152, 713153, 713154, 713188, 713182, 709223, 709224, 709225, 709226

Abstract:

A method, computer program product, and apparatus for presenting data about security-related events that puts the data into a concise form is disclosed. Events are abstracted into a set data-type. Sets with common elements are grouped together, and summaries of the groups—“situations”—are presented to a user or administrator.

US Patent:

7308689, Dec 11, 2007

Filed:

Dec 18, 2002

Appl. No.:

10/324569

Inventors:

Steven Black - Round Rock TX, US
Herve Debar - Louvigny, FR
John Michael Garrison - Austin TX, US
Andreas Wespi - Mettmenhasli, CH

Assignee:

International Business Machines Corporation - Armonk NY

International Classification:

G06F 13/00

US Classification:

719318, 709223, 709224

Abstract:

An event handler is provided that associates events from heterogeneous data sources. In a first phase, incoming events are translated to vectors of event attributes. Based on the data source, implicit information about the event and its attributes may be available. This information is used to normalize the information provided by the event. Normalization actions may include renaming the attributes, deriving new attributes from given attributes, and transforming attribute value ranges. In a second phase, a determination is made as to whether two or more events are considered to be associated based on the vectors. Different vectors of core attributes may be created in order to create associations with different semantics.