Patents by Inventor Geoffrey H. Cooper
Geoffrey H. Cooper has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Publication number: 20220027894Abstract: Technologies for device commissioning include a rendezvous server to receive, from a buyer device, a request to transfer ownership of a compute device to the buyer device. The rendezvous server verifies the provenance of the compute device based on a block chain and establishes a secure session with the compute device in response to verification of the provenance. The block chain identifies each transaction associated with ownership of the compute device.Type: ApplicationFiled: October 8, 2021Publication date: January 27, 2022Applicant: INTEL CORPORATIONInventors: Ned M. Smith, David W. Grawrock, Geoffrey H. Cooper
-
Patent number: 11144911Abstract: Technologies for device commissioning include a rendezvous server to receive, from a buyer device, a request to transfer ownership of a compute device to the buyer device. The rendezvous server verifies the provenance of the compute device based on a block chain and establishes a secure session with the compute device in response to verification of the provenance. The block chain identifies each transaction associated with ownership of the compute device.Type: GrantFiled: June 20, 2016Date of Patent: October 12, 2021Assignee: INTEL CORPORATIONInventors: Ned M. Smith, David W. Grawrock, Geoffrey H. Cooper
-
Patent number: 10997141Abstract: An appliance includes a processor, a medium, a registration application, and a monitoring application. The registration application includes instructions in the medium that, when read and executed by the processor, configure the registration application to write a transaction identifier to a start message, the transaction identifier identifying the appliance, write a dataset of interest identifier to the start message, and send the start message to a database. The dataset of interest identifies a group of appliances including the appliance. The monitoring application includes instructions in the medium that, when read and executed by the processor, configure the monitoring application to monitor operations executed on the appliance, write data resulting from the operations to a data message, and send the data message anonymously to the database. The data message is signed with a member key associated with the group of appliances.Type: GrantFiled: March 29, 2019Date of Patent: May 4, 2021Assignee: McAfee LLCInventors: Geoffrey H. Cooper, Guy L. AILee, Jr.
-
Patent number: 10833863Abstract: A computing device is provisioned to be remotely managed by a current owner. The device has an initial cryptographic basis of trust, and an owner identifier that facilitates establishment of communication with the current owner of the device. The ownership may change one or more times while the device may remain inoperative. Later, the device receives a transfer-of-ownership indication, which it verifies against the initial basis of trust to establish a new current owner. The device may then communicate with a device management service of the new current owner based on the transfer-of-ownership indication.Type: GrantFiled: July 1, 2016Date of Patent: November 10, 2020Assignee: Intel CorporationInventors: Ernie F. Brickell, Geoffrey H. Cooper
-
Patent number: 10482446Abstract: Particular embodiments described herein provide for an electronic device that can be configured to couple to a terminal, verify an account with an account institution using Direct Anonymous Attestation (DAA), and request an action related to the account using DAA. In an example, the DAA is accomplished using enhanced privacy identification (EPID). The account institution can be a banking institution, and the requested action can be to add an electronic representation of monetary funds to the account. In another example, the device is a payment card, the terminal is a point of sale terminal, and the requested action is related to a sale of goods or services.Type: GrantFiled: July 2, 2016Date of Patent: November 19, 2019Assignee: Intel CorporationInventors: Geoffrey H. Cooper, Guy L. AlLee, Jr.
-
Publication number: 20190228001Abstract: An appliance includes a processor, a medium, a registration application, and a monitoring application. The registration application includes instructions in the medium that, when read and executed by the processor, configure the registration application to write a transaction identifier to a start message, the transaction identifier identifying the appliance, write a dataset of interest identifier to the start message, and send the start message to a database. The dataset of interest identifies a group of appliances including the appliance. The monitoring application includes instructions in the medium that, when read and executed by the processor, configure the monitoring application to monitor operations executed on the appliance, write data resulting from the operations to a data message, and send the data message anonymously to the database. The data message is signed with a member key associated with the group of appliances.Type: ApplicationFiled: March 29, 2019Publication date: July 25, 2019Inventors: Geoffrey H. Cooper, Guy L. AILee, JR.
-
Publication number: 20190158461Abstract: A custody transfer of a device can include sending a start of transfer request to an attestation device over a short range wireless communication channel, a nonce is received from the attestation device in association with the start of transfer request, and the nonce is signed at the particular gateway device. The signed nonce is sent to the attestation device, a transfer confirmation message is received from the attestation device, and a transfer message is sent to a management system to report a transfer in custody of the attestation device involving the particular gateway device and another gateway device.Type: ApplicationFiled: January 14, 2019Publication date: May 23, 2019Applicant: McAfee, LLCInventors: Jesse Randall Walker, Howard C. Herbert, Kirk D. Brannock, Geoffrey H. Cooper, David A. deVries, David M. Amols, Sven Schrecker, Stephen H. Price
-
Patent number: 10289610Abstract: An appliance includes a processor, a medium, a registration application, and a monitoring application. The registration application includes instructions in the medium that, when read and executed by the processor, configure the registration application to write a transaction identifier to a start message, the transaction identifier identifying the appliance, write a dataset of interest identifier to the start message, and send the start message to a database. The dataset of interest identifies a group of appliances including the appliance. The monitoring application includes instructions in the medium that, when read and executed by the processor, configure the monitoring application to monitor operations executed on the appliance, write data resulting from the operations to a data message, and send the data message anonymously to the database. The data message is signed with a member key associated with the group of appliances.Type: GrantFiled: December 23, 2015Date of Patent: May 14, 2019Assignee: McAfee, LLCInventors: Geoffrey H. Cooper, Guy L. AlLee, Jr.
-
Patent number: 10193858Abstract: A custody transfer of a device can include sending a start of transfer request to an attestation device over a short range wireless communication channel, a nonce is received from the attestation device in association with the start of transfer request, and the nonce is signed at the particular gateway device. The signed nonce is sent to the attestation device, a transfer confirmation message is received from the attestation device, and a transfer message is sent to a management system to report a transfer in custody of the attestation device involving the particular gateway device and another gateway device.Type: GrantFiled: December 22, 2015Date of Patent: January 29, 2019Assignee: McAfee, LLCInventors: Jesse Randall Walker, Howard C. Herbert, Kirk D. Brannock, Geoffrey H. Cooper, David A. deVries, David M. Amols, Sven Schrecker, Stephen H. Price
-
Patent number: 10044696Abstract: An apparatus is provided that includes at least one processor device, an energy storage module to power the apparatus, memory to store a secret such that powering down and restarting the apparatus causes the secret to be lost, logic executable by the at least one processor device to generate attestation data using the secret that data abstracts the secret, and a communications interface to send the attestation data to another device.Type: GrantFiled: December 22, 2015Date of Patent: August 7, 2018Assignee: McAfee, LLCInventors: Jesse Randall Walker, Howard C. Herbert, Kirk D. Brannock, Stephen H. Price, Geoffrey H. Cooper, David A. deVries, David M. Amols, Sven Schrecker
-
Publication number: 20180183861Abstract: Cloud container resource binding and tasking using keys is generally described herein. An exemplary device to perform a transaction with a peer device includes a server having a transaction resource finite state automaton (FSA) to perform the transaction. The transaction resource includes a current state property identifying a current state and a state graph property defining a protocol for the transaction. The example device may further include a client having a transaction engine to interface with the transaction resource to post messages to the peer device based on the current state property and the state graph property.Type: ApplicationFiled: December 28, 2016Publication date: June 28, 2018Inventors: Ned M. Smith, Gregory Burns, Ravi Subramaniam, Geoffrey H. Cooper, Guy Louis AlLee, JR.
-
Patent number: 9893897Abstract: Technologies are provided in example embodiments for analyzing an encrypted network flow. The technologies include monitoring the encrypted network flow between a first node and a second node, the network flow initiated from the first node; duplicating the encrypted network flow to form a copy of the encrypted network flow; decrypting the copy of the encrypted network flow using a shared secret, the shared secret associated with the first node and the second node; and scanning the network flow copy for targeted data.Type: GrantFiled: November 2, 2015Date of Patent: February 13, 2018Assignee: Intel CorporationInventors: Xiaoning Li, Karanvir S. Grewal, Geoffrey H. Cooper, John R. Guzik
-
Publication number: 20180005211Abstract: Particular embodiments described herein provide for an electronic device that can be configured to couple to a terminal, verify an account with an account institution using Direct Anonymous Attestation (DAA), and request an action related to the account using DAA. In an example, the DAA is accomplished using enhanced privacy identification (EPID). The account institution can be a banking institution, and the requested action can be to add an electronic representation of monetary funds to the account. In another example, the device is a payment card, the terminal is a point of sale terminal, and the requested action is related to a sale of goods or services.Type: ApplicationFiled: July 2, 2016Publication date: January 4, 2018Applicant: Intel CorporationInventors: Geoffrey H. Cooper, Guy L. AlLee, JR.
-
Publication number: 20170364908Abstract: Technologies for device commissioning include a rendezvous server to receive, from a buyer device, a request to transfer ownership of a compute device to the buyer device. The rendezvous server verifies the provenance of the compute device based on a block chain and establishes a secure session with the compute device in response to verification of the provenance. The block chain identifies each transaction associated with ownership of the compute device.Type: ApplicationFiled: June 20, 2016Publication date: December 21, 2017Inventors: Ned M. Smith, David W. Grawrock, Geoffrey H. Cooper
-
Publication number: 20170250814Abstract: A computing device is provisioned to be remotely managed by a current owner. The device has an initial cryptographic basis of trust, and an owner identifier that facilitates establishment of communication with the current owner of the device. The ownership may change one or more times while the device may remain inoperative. Later, the device receives a transfer-of-ownership indication, which it verifies against the initial basis of trust to establish a new current owner. The device may then communicate with a device management service of the new current owner based on the transfer-of-ownership indication.Type: ApplicationFiled: July 1, 2016Publication date: August 31, 2017Inventors: Ernie F. Brickell, Geoffrey H. Cooper
-
Publication number: 20170180341Abstract: An apparatus is provided that includes at least one processor device, an energy storage module to power the apparatus, memory to store a secret such that powering down and restarting the apparatus causes the secret to be lost, logic executable by the at least one processor device to generate attestation data using the secret that data abstracts the secret, and a communications interface to send the attestation data to another device.Type: ApplicationFiled: December 22, 2015Publication date: June 22, 2017Applicant: McAfee, Inc.Inventors: Jesse Randall Walker, Howard C. Herbert, Kirk D. Brannock, Stephen H. Price, Geoffrey H. Cooper, David A. deVries, David M. Amols, Sven Schrecker
-
Publication number: 20170180314Abstract: A custody transfer of a device can include sending a start of transfer request to an attestation device over a short range wireless communication channel, a nonce is received from the attestation device in association with the start of transfer request, and the nonce is signed at the particular gateway device. The signed nonce is sent to the attestation device, a transfer confirmation message is received from the attestation device, and a transfer message is sent to a management system to report a transfer in custody of the attestation device involving the particular gateway device and another gateway device.Type: ApplicationFiled: December 22, 2015Publication date: June 22, 2017Inventors: Jesse Randall Walker, Howard C. Herbert, Kirk D. Brannock, Geoffrey H. Cooper, David A. deVries, David M. Amols, Sven Schrecker, Stephen H. Price
-
Publication number: 20170054562Abstract: An appliance includes a processor, a medium, a registration application, and a monitoring application. The registration application includes instructions in the medium that, when read and executed by the processor, configure the registration application to write a transaction identifier to a start message, the transaction identifier identifying the appliance, write a dataset of interest identifier to the start message, and send the start message to a database. The dataset of interest identifies a group of appliances including the appliance. The monitoring application includes instructions in the medium that, when read and executed by the processor, configure the monitoring application to monitor operations executed on the appliance, write data resulting from the operations to a data message, and send the data message anonymously to the database. The data message is signed with a member key associated with the group of appliances.Type: ApplicationFiled: December 23, 2015Publication date: February 23, 2017Inventors: Geoffrey H. Cooper, Guy L. AILee, JR.
-
Publication number: 20160173288Abstract: Technologies are provided in example embodiments for analyzing an encrypted network flow. The technologies include monitoring the encrypted network flow between a first node and a second node, the network flow initiated from the first node; duplicating the encrypted network flow to form a copy of the encrypted network flow; decrypting the copy of the encrypted network flow using a shared secret, the shared secret associated with the first node and the second node; and scanning the network flow copy for targeted data.Type: ApplicationFiled: November 2, 2015Publication date: June 16, 2016Applicant: Intel CorporationInventors: Xiaoning Li, Karanvir S. Grewal, Geoffrey H. Cooper, John R. Guzik
-
Patent number: 9176838Abstract: Technologies are provided in example embodiments for analyzing an encrypted network flow. The technologies include monitoring the encrypted network flow between a first node and a second node, the network flow initiated from the first node; duplicating the encrypted network flow to form a copy of the encrypted network flow; decrypting the copy of the encrypted network flow using a shared secret, the shared secret associated with the first node and the second node; and scanning the network flow copy for targeted data.Type: GrantFiled: October 19, 2012Date of Patent: November 3, 2015Assignee: Intel CorporationInventors: Xiaoning Li, Karanvir S. Grewal, Geoffrey H. Cooper, John R. Guzik