David Leo Presotto, Age 71730 Webster St, Palo Alto, CA 94301

7565405, Jul 21, 2009

Sep 24, 2004

10/948879

Eric Henry Grosse - Berkeley Heights NJ, US
David Leo Presotto - Mountain View CA, US

Alcatel-Lucent USA Inc. - Murray Hill NJ

G06F 13/00

709214, 709226, 707 10

A method and apparatus for enhanced data storage in peer-to-peer (P2P) networks. Users subscribe to a P2P storage network that allows each user to store files on the storage network by swapping blocks of the user's files with blocks from storage of a peer, or peers, on the network. A user desiring to utilize the storage network for a certain data block must take back an equal, or substantially equal, storage block from another peer on the network thereby insuring no net change, or minimal net change, in total storage across the P2P storage network. In addition, the diffusion of data blocks throughout the storage network is employed whereby individual peers swap data blocks on a random basis thereby further enhancing the security of the swapped blocks from direct attacks.

7882231, Feb 1, 2011

May 2, 2008

12/114350

Timo Burkard - Mountain View CA, US
David Presotto - Palo Alto CA, US

Google Inc. - Mountain View CA

G06F 13/00

709226, 709224, 709229

A system which regulates communication with a server is described. During operation, the system determines a retransmission rate of data packets during a first set of conversations between a group of users and the server via a peering link. Next, the system compares the retransmission rate and an historical retransmission rate of data packets during a second set of conversations between a second group of users and the server via the peering link. The system then adjusts a target acceptance rate of the server to requests to initiate conversations with additional users via the peering link based on the comparison of the retransmission rate and the historical retransmission rate. Additionally, the system accepts or rejects a request to initiate a conversation between another user and the server via the peering link based on an actual acceptance rate of the server to requests to initiate the conversations and the target acceptance rate.

8224942, Jul 17, 2012

Oct 2, 2007

11/865969

David Presotto - Palo Alto CA, US
Ankur Jain - Mountain View CA, US
Aspi Siganporia - Saratoga CA, US
Sushant Jain - San Jose CA, US

Google Inc. - Mountain View CA

G06F 15/173

709223, 709224, 709225

A number of requests for an alternative network location are identified, where the requests for the alternative network location are generated after failure of one or more previous requests to reach a first, previous network location as a result of a network brownout. It is determined if the number of requests for the alternative network location exceed a threshold value for a period of time, and if so, an alarm is generated.

8302169, Oct 30, 2012

Mar 6, 2009

12/399754

David Leo Presotto - Palo Alto CA, US
Michal P. Szymaniak - Mountain View CA, US
James F. Keller - Sunnyvale CA, US
Mark Klenk - Saratoga CA, US

Google Inc. - Mountain View CA

G06F 7/04

726 5, 713155, 726 18, 726 19

A server system receives requests from client systems and sends responses back to the client systems. For a subset of the requests, in addition to responding to a request from a client system, the method includes creating a cryptographic object at the server system. The cryptographic object is used to cryptographically protect information related to the request, and the cryptographically protected information associated with the cryptographic object is stored at the server system. The server system then sends the cryptographic object to the client system, and in conjunction with sending the cryptographic object to the client system, irreversibly modifies the cryptographic object on the server system. For example, in some embodiments the cryptographic object includes an cryptographic key, and the server system deletes or truncates the only instances of the cryptographic object on the server system when the server system finishes responding to the request from the client system.

8566531, Oct 22, 2013

Aug 21, 2009

12/545225

Timo Burkard - San Francisco CA, US
David Presotto - Palo Alto CA, US

Google Inc. - Mountain View CA

G06F 12/12

711138, 711134, 711159

A system and method is provided wherein, in one aspect, a currently-requested item of information is stored in a cache based on whether it has been previously requested and, if so, the time of the previous request. If the item has not been previously requested, it may not be stored in the cache. If the subject item has been previously requested, it may or may not be cached based on a comparison of durations, namely (1) the duration of time between the current request and the previous request for the subject item and (2) for each other item in the cache, the duration of time between the current request and the previous request for the other item. If the duration associated with the subject item is less than the duration of another item in the cache, the subject item may be stored in the cache.

8572327, Oct 29, 2013

Aug 19, 2011

13/213779

Timo Burkard - San Francisco CA, US
David Presotto - Palo Alto CA, US

Google Inc. - Mountain View CA

G06F 12/12

711138, 711134, 711159

A system and method is provided wherein, in one aspect, a currently-requested item of information is stored in a cache based on whether it has been previously requested and, if so, the time of the previous request. If the item has not been previously requested, it may not be stored in the cache. If the subject item has been previously requested, it may or may not be cached based on a comparison of durations, namely (1) the duration of time between the current request and the previous request for the subject item and (2) for each other item in the cache, the duration of time between the current request and the previous request for the other item. If the duration associated with the subject item is less than the duration of another item in the cache, the subject item may be stored in the cache.

2003011, Jun 12, 2003

Mar 1, 2002

10/090075

David Presotto - Berkeley Heights NJ, US
Lookman Fazal - Somerset NJ, US

H04L009/00

713/201000

A computer network is made more secure from attack attacks by partitioning the network into sub-networks and placing firedoors in association with the links that connect each sub-network to areas outside the sub-network. The firedoors scan traffic that flows through these links to identify—based on pre-stored pattern information—whether the traffic contains a virus, or some other attack, and blocks it from leaving the sub-network. The firedoors are coupled to a firedoor keeper, through which a firedoor informs the firedoor keeper whenever it detects unusual activity that suggests a successful virus breach of the protection intended for the gateway's network and, conversely, the firedoor keeper updates a pre-stored patterns file in all of the firedoors, or directs the firedoors to take specific action, e.g., blocking all traffic, whenever the firedoor keeper deemed it necessary.

2006014, Jun 29, 2006

Dec 23, 2004

11/021061

Eric Grosse - Berkeley Heights NJ, US
David Presotto - Palo Alto CA, US

G06F 12/14

726024000

A method and apparatus for the early detection of machines infected by e-mail based computer viruses advantageously employs a network behavioral analysis rather than a direct technical analysis of attached executable code. Specifically, an SMTP (Simple Mail Transfer Protocol) log associated with a mail gateway system interconnected to a plurality of machines is examined, and based on an analysis of information comprised in a plurality of log entries thereof, it may be determined that one of these machines has a possible infection by an e-mail based computer virus. Illustratively, information extracted from each entry in the SMTP log (i.e., for each incoming e-mail message) of the mail gateway includes (i) the unique identity of the sending machine; (ii) the “hello” name that the sending machine calls itself, (iii) the e-mail “From:” address; and (iv) whether the message contains a potentially virus-like (e.g., executable) attachment.