Richard L Masters

Author:

Richard Masters

ISBN #:

0952773600

US Patent:

6374300, Apr 16, 2002

Filed:

Jul 15, 1999

Appl. No.:

09/353335

Inventors:

Richard R. Masters - Seattle WA

Assignee:

F5 Networks, Inc. - Seattle WA

International Classification:

G06F 1300

US Classification:

709229, 709219, 709105, 709225, 709313

Abstract:

A method and system for inserting and examining Cookies in the data streams of HTTP connections for the purpose of persistently directing HTTP connections to the same destination. The present invention enables a network transmission device, e. g. , a router or controller, to reliably and efficiently direct subsequent HTTP connections from the same client to the same server (destination) for accessing the requested resources. There are four modes for employing the Cookie to persistently direct HTTP connections. The associative mode inserts a Cookie into an HTTP response that uniquely identifies the client so that when a clients subsequent HTTP request is compared to a table, the HTTP request will be routed to a previously selected destination associated with the client. The passive mode inserts Cookie information into an HTTP response that uniquely identifies a previously selected destination such as a node server so that when a clients subsequent HTTP request is examined, it will be provided to the previously selected destination. In the rewrite mode, a network transmission device manages the destination information that is rewritten over blank Cookie information generated by the destination producing the HTTP response.

US Patent:

6473802, Oct 29, 2002

Filed:

Dec 4, 2001

Appl. No.:

10/006555

Inventors:

Richard R. Masters - Seattle WA

Assignee:

F5 Networks, Inc. - Seattle WA

International Classification:

G06F 1300

US Classification:

709229, 709105, 709225, 709219

Abstract:

A method and system for inserting and examining Cookies in the data streams of HTTP connections for the purpose of persistently directing HTTP connections to the same destination. The invention enables a network device to direct subsequent HTTP connections from the same client to the same server (destination) for accessing the requested resources. There are four modes for employing the Cookie to persistently direct HTTP connections. The associative mode inserts a Cookie that uniquely identifies the client into an HTTP response. The passive mode inserts Cookie information that uniquely identifies a previously selected destination into an HTTP response. In the rewrite mode, a network device manages the destination information that is rewritten over blank Cookie information generated by the destination producing the HTTP response. The insert mode inserts and removes Cookie information in the data packets for HTTP requests and responses prior to processing by the destination.

US Patent:

6970933, Nov 29, 2005

Filed:

Oct 28, 2002

Appl. No.:

10/284035

Inventors:

Richard R. Masters - Seattle WA, US

Assignee:

F5 Networks, Inc. - Seattle WA

International Classification:

G06F013/00

US Classification:

709229, 709219, 709225

Abstract:

A method and system for inserting and examining Cookies in the data streams of HTTP connections for the purpose of persistently directing HTTP connections to the same destination. The invention enables a network device to direct subsequent HTTP connections from the same client to the same server (destination) for accessing the requested resources. There are four modes for employing the Cookie to persistently direct HTTP connections. The associative mode inserts a Cookie that uniquely identifies the client into an HTTP response. The passive mode inserts Cookie information that uniquely identifies a previously selected destination into an HTTP response. In the rewrite mode, a network device manages the destination information that is rewritten over blank Cookie information generated by the destination producing the HTTP response. The insert mode inserts and removes Cookie information in the data packets for HTTP requests and responses prior to processing by the destination.

US Patent:

7102996, Sep 5, 2006

Filed:

Apr 9, 2002

Appl. No.:

10/119433

Inventors:

Carlton G. Amdahl - Fremont CA, US
Robert George Gilde - Issaquah WA, US
David D. Schmitt - Seattle WA, US
Paul I. Szabo - Seattle WA, US
Richard Roderick Masters - Seattle WA, US

Assignee:

F5 Networks, Inc. - Seattle WA

International Classification:

H04J 1/16
H04J 3/14

US Classification:

370230, 370401

Abstract:

A method and system for distributing network traffic to multiple traffic management devices. A distributor receives each packet from a network and may act as a layer 2 switch, a router, or distribute the packet to one of a group of traffic management devices. The distributor may receive packets from servers that the traffic management devices are managing communications to. When distributing packets to traffic management devices, information such as source and destination addresses may be used to determine which traffic management device each packet should be sent to. The distributor causes packets that are part of a flow to be delivered to the same traffic management device. Many configurations are possible for connecting the distributor to the traffic management devices, including connecting each traffic management device to a physical or virtual port on the distributor, connecting the traffic management devices to the distributor using a virtual local area network, and connecting the traffic management devices to a layer 2 switch.

US Patent:

7287084, Oct 23, 2007

Filed:

Sep 26, 2005

Appl. No.:

11/235643

Inventors:

Richard R. Masters - Seattle WA, US

Assignee:

F5 Networks, Inc. - Seattle WA

International Classification:

G06F 13/00

US Classification:

709229, 709219, 709225, 709249

Abstract:

A method and system for inserting and examining encrypted identification information in the data streams of application level connections for the purpose of persistently directing application connections to the same destination. The invention enables a network device to direct subsequent application level connections from the same client to the same server (destination) for accessing the requested resources. There are four modes for employing the encrypted information to persistently direct application level connections. The associative mode inserts information that uniquely identifies the client into a response. The passive mode inserts information that uniquely identifies a previously selected destination into a response. In the rewrite mode, a network device manages the destination information that is rewritten over blank information generated by the destination producing the response. The insert mode inserts and removes identification information in the data packets for application level requests and responses prior to processing by the destination.

US Patent:

7346695, Mar 18, 2008

Filed:

Oct 26, 2005

Appl. No.:

11/260651

Inventors:

Richard R. Masters - Seattle WA, US

Assignee:

F5 Networks, Inc. - Seattle WA

International Classification:

G06F 13/00

US Classification:

709228, 709219, 709225, 709229

Abstract:

A method and apparatus for inserting and examining Cookies in the data streams of HTTP connections for the purpose of persistently directing HTTP connections to the same destination. A network device directs subsequent HTTP connections from the same client to the same server (destination) for accessing the requested resources. There are four modes for employing the Cookie to persistently direct HTTP connections. The associated mode inserts a Cookie that uniquely identifies the client into an HTTP response. The passive mode inserts Cookie information that uniquely identifies a previously selected destination into an HTTP response. In the rewrite mode, a network device manages the destination information that is rewritten over blank Cookie information generated by the destination producing the HTTP response. The insert mode inserts and removes Cookie information in the data packets for HTTP requests and response prior to processing by the destination.

US Patent:

7376967, May 20, 2008

Filed:

Dec 2, 2002

Appl. No.:

10/308844

Inventors:

John R. Hughes - Seattle WA, US
Richard Roderick Masters - Seattle WA, US
David D. Schmitt - Seattle WA, US

Assignee:

F5 Networks, Inc. - Seattle WA

International Classification:

G06F 15/16
G06F 17/00
G06F 9/00

US Classification:

726 14, 380 30, 713189

Abstract:

A system and method for performing asynchronous cryptographic operations. A cryptographic toolkit receives requests for cryptographic operations, and initiates the cryptographic operations within a thread of execution. The toolkit detects when the cryptographic operations are complete, retrieves the results, and returns the results to a calling program. The cryptographic operations are performed in an asynchronous manner, without blocking a calling program. The calling program can specify whether the requested operations are to be performed without blocking.

US Patent:

7430755, Sep 30, 2008

Filed:

Sep 3, 2002

Appl. No.:

10/234416

Inventors:

John R. Hughes - Seattle WA, US
Richard Roderick Masters - Seattle WA, US
Robert George Gilde - Issaquah WA, US

Assignee:

FS Networks, Inc. - Seattle WA

International Classification:

H04L 9/00

US Classification:

726 3, 726 4, 726 5

Abstract:

A system and method for providing persistence in a secure network access by using a client certificate sent by a client device to maintain the identity of a target. A security handshake is performed with a client device to establish a secure session. A target is determined. A client certificate is associated with the target. During subsequent secure sessions, the client certificate is used to maintain persistent communications between the client and a target. A session ID can be used in combination with the client certificate, by identifying the target based on the session ID or the client certificate, depending on which one is available in a client message.