Patents Examined by Harris C Wang
-
Patent number: 11979383Abstract: Transparent web browsing recording is disclosed. A request is received, at a browser isolation system, from a client browser executing on a client device, to connect with a remote resource. A surrogate browser is provided to facilitate communications between the client browser and the remote resource. A set of browsing activities associated with use of the surrogate browser by the client browser is recorded.Type: GrantFiled: May 3, 2021Date of Patent: May 7, 2024Assignee: Menlo Security, Inc.Inventors: Lionel Litty, Todd Ignasiak, Rodrigo Graf
-
Patent number: 11962589Abstract: Systems and methods include intercepting traffic on the user device; forwarding the traffic to a cloud-based system for security processing therein; and, responsive to unavailability of the cloud-based system preventing the forwarding, performing local security processing of the traffic at the user device including determining whether the traffic is allowed based on a cache at the user device, forwarding the traffic separate from the cloud-based system when it is allowed, and blocking the traffic when it is not allowed.Type: GrantFiled: January 21, 2021Date of Patent: April 16, 2024Assignee: Zscaler, Inc.Inventors: Patrick Foxhoven, Amit Sinha, Vikas Mahajan, Rohit Goyal
-
Patent number: 11960619Abstract: A computer-implemented system and method for tracking use of personally identifiable information by a computer asset of a firm. The method includes receiving one or more data elements associated with the computer asset, receiving an individual type associated with the one or more data elements, and determining whether the one or more data elements individually or as a combination constitute PII. In response to determining that the data elements constitute PII, the method includes determining whether enhanced data controls are necessary for the computer asset according to the one or more data elements that constitute the PII, determining a sensitivity of the PII, and recording the individual type, whether enhanced data controls are necessary, and the sensitivity of the PII in association with the computer asset in a database communicably coupled to the computer system.Type: GrantFiled: November 18, 2019Date of Patent: April 16, 2024Assignee: Morgan Stanley Services Group Inc.Inventors: Christopher Florentino, Graham Coull, Helen Le, Damien Moore
-
Patent number: 11954239Abstract: A drive subsystem engages in data communication with a storage controller by establishing first and second communication ports, wherein the second port is configured for decryption and forwarding of decrypted communications to the first port. The drive subsystem receives and processes data communications having selective encryption and identification of target port, by (1) for a security command containing secret data (e.g. a passphrase) enabling operation of a target drive, receiving the security command at the second port, decrypting the security command and forwarding it to the first port for delivery to the target drive, and (2) for data commands by which the storage controller stores and retrieves data to/from the target drive, receiving the data commands in non-encrypted form at the first port directly from the storage controller for delivery to the target drive.Type: GrantFiled: December 27, 2021Date of Patent: April 9, 2024Assignee: Dell Products L.P.Inventor: Gregory W. Lazar
-
Patent number: 11949689Abstract: A unified authentication system for decentralized identity platforms is disclosed. In various embodiments, a request comprising one or more identity claims and a digital address is received. The digital address is used to verify, via a verification node associated with a digital address provider, the one or more identity claims. Access to a service is provided, in response to the request, based at least in part on a response from the verification node indicating the one or more identity claims have been verified. The verification node is configured to obtain consent, in real time, from a user with which the digital address is associated, prior to providing said response indicating the one or more identity claims have been verified.Type: GrantFiled: August 11, 2020Date of Patent: April 2, 2024Assignee: ADI AssociationInventors: Ramesh Kesanupalli, Soonhyung Lee, Changsoo Kim, Mark Chen, Jason S. Burnett, Kiran Pandurang Addepalli
-
Patent number: 11928236Abstract: Systems, methods, and apparatuses for providing a central location to manage permissions provided to third-parties and devices to access and use user data and to manage accounts at multiple entities. A central portal may allow a user to manage all access to account data and personal information as well as usability and functionality of accounts. The user need not log into multiple third-party systems or customer devices to manage previously provided access to the information, provision new access to the information, and to manage financial or other accounts. A user is able to have user data and third-party accounts of the user deleted from devices, applications, and third-party systems via a central portal. The user is able to impose restrictions on how user data is used by devices, applications, and third-party systems, and control such features as recurring payments and use of rewards, via a central portal.Type: GrantFiled: August 27, 2020Date of Patent: March 12, 2024Assignee: Wells Fargo Bank, N.A.Inventors: Lila Fakhraie, Brian M. Pearce, Steven Pulido, Benjamin Soccorsy, James Stahley, Mojdeh Tomsich
-
Patent number: 11921910Abstract: A hardware secure element includes a processing unit and a receiver circuit configured to receive data comprising a command field and a parameter field adapted to contain a plurality of parameters. The hardware secure element also includes at least one hardware parameter check module configured to receive at an input a parameter to be processed selected from the plurality of parameters, and to process the parameter to be processed to verify whether the parameter has given characteristics. The hardware parameter check module has associated one or more look-up tables configured to receive at an input the command field and a parameter index identifying the parameter to be processed by the hardware parameter check module, and to determine for the command field and the parameter index a configuration data element.Type: GrantFiled: July 27, 2021Date of Patent: March 5, 2024Assignees: STMicroelectronics Application GMBH, STMicroelectronics S.r.l.Inventors: Roberto Colombo, Nicolas Bernard Grossier, Giovanni Disirio
-
Patent number: 11924199Abstract: Described herein are computerized methods and systems for user authentication using an imaged machine-readable identity document. A server receives an authentication request from a first client device, including image files corresponding to a user's machine-readable identity document. The server displays on the first client device user-identifying data elements extracted from the image files. The server captures additional user-identifying data elements from the first client device, and verifies the user's identity based upon the user-identifying data elements. The server determines user contact channel data based upon the verified identity. The server displays the contact channel data on the first client device, and generates a transient access code upon receiving a contact channel selection.Type: GrantFiled: May 10, 2023Date of Patent: March 5, 2024Assignee: FMR, LLCInventors: Carsten Miller, Brett Edminster
-
Patent number: 11924242Abstract: In some embodiments, techniques for displaying a URL comprise receiving a URL; normalizing the URL, wherein normalizing the URL includes standardizing an encoding of a character contained in the URL; determining a first element of the URL, wherein the first element of the URL includes a domain; determining a second element of the URL; displaying the URL, wherein displaying the URL includes emphasizing the first element of the URL, and wherein emphasizing the first element of the URL includes displaying the first element of the URL using a first font attribute; and wherein displaying the URL includes displaying a first portion of the second element of the URL using a second font attribute and eliding a second portion of the second element of the URL; and responsive to an interaction with a user interface element, providing a view of the URL in its entirety.Type: GrantFiled: January 25, 2021Date of Patent: March 5, 2024Assignee: Huawei Technologies Co., Ltd.Inventors: Aaron T. Emigh, James A. Roskind
-
Patent number: 11916912Abstract: A computer-implemented method, system and computer program product for providing secure access to devices enabled for connectivity using access control are disclosed. The computer-implemented method for providing secure access to devices enabled for connectivity comprises dynamically associating each of the one or more devices to at least one user account; assigning an IP address to each of the one or more devices enabled for connectivity; dynamically generating at least one access-control list (ACL) for each of the one or more devices associated with the at least one user account; and restricting access only to the at least one user account via ACL generated for the one or more devices.Type: GrantFiled: August 20, 2020Date of Patent: February 27, 2024Assignee: Aeris Communications, Inc.Inventors: Karan Kapoor, Asit Goel, Drew Johnson, Amit Khetawat
-
Patent number: 11914743Abstract: Systems, methods, and apparatuses for providing a central location to manage permissions provided to third-parties and devices to access and use user data and to manage accounts at multiple entities. A central portal may allow a user to manage all access to account data and personal information as well as usability and functionality of accounts. The user need not log into multiple third-party systems or customer devices to manage previously provided access to the information, provision new access to the information, and to manage financial or other accounts. A user is able to have user data and third-party accounts of the user deleted from devices, applications, and third-party systems via a central portal. The user is able to impose restrictions on how user data is used by devices, applications, and third-party systems, and control such features as recurring payments and use of rewards, via a central portal.Type: GrantFiled: September 14, 2020Date of Patent: February 27, 2024Assignee: Wells Fargo Bank, N.A.Inventors: Lila Fakhraie, Brian M. Pearce, Steven Pulido, Benjamin Soccorsy, James Stahley, Mojdeh Tomsich
-
Patent number: 11899819Abstract: Embodiments seek to protect privacy of potentially sensitive client resources in web transactions using crowd-disambiguation. Crowd-disambiguation machines can aggregate information about resources from multiple clients as resource fingerprints, and can use the fingerprints to provide crowd-sourced services in a privacy-protected manner. For example, embodiments can communicate a resource fingerprint as a fully ambiguated resource instance (FARI) and a partially disambiguated resource instance (PDRI). When one (or few) clients communicates the resource fingerprint, the identity of the resource remains obfuscated from the crowd-disambiguation machine. As more clients communicate fingerprints for the same resource (e.g., identified by the matching FARIs), respective, differently generated PDRIs of those fingerprints enable the crowd-disambiguation machine to resolve further portions of the resource, ultimately permitting the resource to be revealed and considered non-private (e.g.Type: GrantFiled: September 28, 2021Date of Patent: February 13, 2024Assignee: Viasat, Inc.Inventors: David F Lerner, Peter J Lepeska, Douglas C Larrick, Devin R Toth
-
Patent number: 11886613Abstract: Systems, methods, and apparatuses for providing a central location to manage permissions provided to third-parties and devices to access and use user data and to manage accounts at multiple entities. A central portal may allow a user to manage all access to account data and personal information as well as usability and functionality of accounts. The user need not log into multiple third-party systems or customer devices to manage previously provided access to the information, provision new access to the information, and to manage financial or other accounts. A user is able to have user data and third-party accounts of the user deleted from devices, applications, and third-party systems via a central portal. The user is able to impose restrictions on how user data is used by devices, applications, and third-party systems, and control such features as recurring payments and use of rewards, via a central portal.Type: GrantFiled: November 10, 2021Date of Patent: January 30, 2024Assignee: Wells Fargo Bank, N.A.Inventors: Lila Fakhraie, Brian M. Pearce, Steven Pulido, Benjamin Soccorsy, James Stahley, Mojdeh Tomsich
-
Patent number: 11868497Abstract: Differential privacy composition determination in secure computation and communication of a dataset is provided. A method for differential privacy composition determination includes determining a differential privacy configuration that includes a first privacy parameter and a second privacy parameter, determining a privacy loss distribution, and providing a number of composition operations. The method also includes determining a third privacy parameter and a fourth privacy parameter for a differential privacy composition based on the differential privacy configuration, the privacy loss distribution, and the number of composition operations. The method further includes controlling the dataset based on at least one of the third privacy parameter and the fourth privacy parameter.Type: GrantFiled: April 7, 2023Date of Patent: January 9, 2024Assignee: Lemon Inc.Inventors: Bo Jiang, Jian Du, Haohao Qian, Yongjun Zhao, Qiang Yan
-
Patent number: 11855993Abstract: Techniques to facilitate protection of data resources from unauthorized access are disclosed herein. In at least one implementation, a data shield server instructs a user to replace an address and a port associated with a data resource with an updated address associated with the data shield server and a unique port that is uniquely assigned to the user. A request from the user to access the data resource is received at the updated address associated with the data shield server and on the unique port that is uniquely assigned to the user. In response to the request, the user is authenticated using multi-factor authentication to verify that an identity of the user that submitted the request matches the user assigned to the unique port on which the request was received. Upon successful authentication, the data shield server operates as a proxy to connect the user through to the data resource.Type: GrantFiled: February 3, 2021Date of Patent: December 26, 2023Assignee: DELINEA INC.Inventor: James Greene
-
Patent number: 11853456Abstract: Systems, methods, and apparatuses for providing a central location to manage permissions provided to third-parties and devices to access and use user data and to manage accounts at multiple entities. A central portal may allow a user to manage all access to account data and personal information as well as usability and functionality of accounts. The user need not log into multiple third-party systems or customer devices to manage previously provided access to the information, provision new access to the information, and to manage financial or other accounts. A user is able to have user data and third-party accounts of the user deleted from devices, applications, and third-party systems via a central portal. The user is able to impose restrictions on how user data is used by devices, applications, and third-party systems, and control such features as recurring payments and use of rewards, via a central portal.Type: GrantFiled: October 25, 2021Date of Patent: December 26, 2023Assignee: Wells Fargo Bank, N.A.Inventors: Lila Fakhraie, Brian M. Pearce, Steven Pulido, Benjamin Soccorsy, James Stahley, Mojdeh Tomsich
-
Patent number: 11843601Abstract: Methods, systems, and computer readable mediums for securely establishing credential data for a computing device are disclosed. According to one example, a method includes assigning, by a credential manager, credential set data to a computing device and mapping the credential set data to a device identifier key associated with the computing device in a credential data store accessible by the credential manager. The method further includes receiving, from a provisioning service client, a credential set request message including the device identifier key by the credential manager in response to an activation of the computing device at a customer location site and sending, by the credential manager to the provisioning service client, the credential set data for authenticating the computing device at the customer location site.Type: GrantFiled: August 21, 2020Date of Patent: December 12, 2023Assignee: EMC IP HOLDING COMPANY LLCInventors: Jonathan Peter Streete, Christopher Michael Davis
-
Patent number: 11843606Abstract: Embodiments are directed monitoring network traffic using network monitoring computers. Activity associated with a document in a network may be determined based on the network traffic. A profile may be generated based on a summarization of the activity associated with the document such that the profile may be stored in a data store that stores other profiles. Similar profiles may be determined based on a classification of each profile in the data store based on similarities between the profile and the other profiles in the data store. In response to determining similar profiles, locations in the network associated with documents that correspond to the similar profiles may be determined. Locations may be classified based on the activity, the similar profiles and access policies. In response to portions of the locations being classified as inconsistent with the access policies may be reported.Type: GrantFiled: March 30, 2022Date of Patent: December 12, 2023Assignee: ExtraHop Networks, Inc.Inventors: Xue Jun Wu, Swagat Dasgupta, Matthew Alexander Schurr
-
Patent number: 11799855Abstract: Systems, methods, and related technologies for device identification are described. In certain aspects, packet data associated with a device can be analyzed and a score determined. The score and the threshold can be compared to determine a device identification for the device.Type: GrantFiled: November 5, 2020Date of Patent: October 24, 2023Assignee: FORESCOUT TECHNOLOGIES, INC.Inventors: Yang Zhang, Siying Yang
-
Patent number: 11799860Abstract: Systems and methods include providing a user interface to an administrator associated with a tenant of a cloud-based system, wherein the tenant has a plurality of users each having an associated user device; receiving a plurality of client forwarding policies for the plurality of users, wherein each client forwarding policy of the client forwarding policies define rules related to how application requests from the plurality of users are forwarded for zero trust access; and providing the rules to corresponding user devices of the plurality of users.Type: GrantFiled: November 24, 2020Date of Patent: October 24, 2023Assignee: Zscaler, Inc.Inventors: Kunal Shah, John A. Chanak, David Creedy