Patents Examined by Abiy Getachew
  • Patent number: 10438155
    Abstract: A multiplier is utilized to quantify a cybersecurity risk level of a portfolio of entities (e.g., companies) and enable actions to mitigate that quantified risk. In doing so, features or attributes of one or more companies in a portfolio are compared to features or attributes of one or more companies that experienced an adverse cybersecurity event (e.g. a data breach). Further, a degree of dependency, such as a matrix of a number of shared vendors and the proximity of those vendors to the companies, can be measured between (1) portfolio companies and one or more companies that experienced a cybersecurity event, and/or (2) the portfolio companies themselves to better quantify the risk. That is, to more meaningfully analyze a cybersecurity event that occurred at one or more companies and better predict the likelihood of an occurrence at portfolio companies, embodiments can determine an n-degree interdependency between companies.
    Type: Grant
    Filed: January 10, 2019
    Date of Patent: October 8, 2019
    Assignee: SecurityScorecard, Inc.
    Inventors: Jue Mo, Luis Vargas, A. Robert Sohval
  • Patent number: 10425409
    Abstract: A method and an apparatus for providing a connection between electronic devices using authentication based on biometric information are provided. The electronic device includes: a first communication circuit to support NFC; a second communication circuit to support non-NFC; a biometric sensor; a memory to store first authentication information corresponding to an external device; and a processor.
    Type: Grant
    Filed: February 17, 2017
    Date of Patent: September 24, 2019
    Assignee: Samsung Electronics Co., Ltd.
    Inventors: Gwiho Lee, Hakjoo Kim, Sangho Park, Yong-Jun Park, Jong-Hoon Park, In-Jun Son, Yang Soo Lee, Moonsu Chang, Ho-Dong Jwa, Wooyoung Choi
  • Patent number: 10419932
    Abstract: The invention relates to a method for authenticating to a mobile network. According to the invention, the method comprises the following steps. A device activates only a first temporary subscription identifier. The device sends to a first server the first temporary subscription identifier and first data. The first server sends to the device a first result message including an authentication failure based upon the first data. The device activates only a second temporary subscription identifier. The device sends to the first server the second temporary subscription identifier and second data. And the first server sends to the device a second result message including an authentication success based upon the associated first and second temporary subscription identifiers and the second data. The invention also relates to corresponding device and system and a server for authenticating devices to a mobile network.
    Type: Grant
    Filed: November 4, 2016
    Date of Patent: September 17, 2019
    Assignee: THALES DIS FRANCE SA
    Inventors: Daniel Mavrakis, François Zannin, Hervé Troadec, Jean-François Kuc, Pierre Girard
  • Patent number: 10419425
    Abstract: Embodiments of the present application relate to a method and device for access control of a cloud hosting service. The method includes receiving a first authentication request from a client, performing a first authentication of the first account information, in the event that the first authentication is successful, generating an authentication password and communicating the authentication password to the client, receiving a second authentication request from a proxy server, wherein the second authentication request comprises the authentication password transmitted to the proxy server by the client, performing a second authentication of the authentication password and causing the proxy server to request the cloud host to perform a third authentication of second account information, and in the event that the third authentication is successful, causing the client to access one or more service resources deployed on the cloud host via the proxy server.
    Type: Grant
    Filed: August 30, 2016
    Date of Patent: September 17, 2019
    Assignee: Alibaba Group Holding Limited
    Inventor: Jie Cui
  • Patent number: 10404672
    Abstract: Systems and methods for reducing cyber security incidents in video surveillance and security systems with intelligent password management are provided. Some methods can include assessing a vulnerability of a current password for each of a plurality of cameras, responsive to detecting that the current password for at least one of the plurality of cameras is vulnerable, automatically generating an updated password for the at least one of the plurality of cameras, and assigning the updated password to the at least one of the plurality of cameras.
    Type: Grant
    Filed: March 23, 2017
    Date of Patent: September 3, 2019
    Assignee: Honeywell International Inc.
    Inventors: Avijit Saha, Manu Thomas, Jitendra Sitaram Chaurasia, Deepak Sundar Meganathan
  • Patent number: 10380354
    Abstract: A method is provided for safeguarding values of attributes of a data record that can be stored in a first relational database against unauthorized access, wherein a value of a foreign key attribute of the data record refers to a key for the first relation or for a second relation, and wherein the value of the foreign key attribute is stored in a mapping relation, the values of attributes of the data record that are not foreign key attributes are stored in the first relation, and the mapping relation is stored in a volatile data memory.
    Type: Grant
    Filed: August 12, 2016
    Date of Patent: August 13, 2019
    Assignee: UNISCON UNIVERSAL IDENTITY CONTROL GMBH
    Inventors: Hubert Jäger, Dau Khiem Nguyen, Christos Karatzas
  • Patent number: 10372928
    Abstract: A data access method in a cloud computing environment is disclosed. The method may comprise, in a service object space of the cloud computing environment, receiving a request of a user for accessing a data package, the request including a user identification, determining a service object space of the data package corresponding to the request, and providing the data package to the user according to the service object space of the data package and the user identification.
    Type: Grant
    Filed: August 24, 2016
    Date of Patent: August 6, 2019
    Assignee: ALIBABA GROUP HOLDING LIMITED
    Inventors: Panfeng Yuan, Dong Guo, Wei Zhang, Zihua Pan, Tingliang Chen
  • Patent number: 10375143
    Abstract: Presented herein are techniques for classifying devices as being infected with malware based on learned indicators of compromise. A method includes receiving at a security analysis device, traffic flows from a plurality of entities destined for a plurality of users, aggregating the traffic flows into discrete bags of traffic, wherein the bags of traffic comprise a plurality of flows of traffic for a given user over a predetermined period of time, extracting features from the bags of traffic and aggregating the features into per-flow feature vectors, aggregating the per-flow feature vectors into per-destination domain aggregated vectors, combining the per-destination-domain aggregated vectors into a per-user aggregated vector, and classifying a computing device used by a given user as infected with malware when indicators of compromise detected in the bags of traffic indicate that the per-user aggregated vector for the given user includes suspicious features among the extracted features.
    Type: Grant
    Filed: August 26, 2016
    Date of Patent: August 6, 2019
    Assignee: Cisco Technology, Inc.
    Inventors: Tomas Pevny, Petr Somol
  • Patent number: 10354088
    Abstract: Systems and methods for preprocessing data to facilitate DLP pattern matching are provided. An input string is received by a Data Leak Prevention (DLP) system. The input string is converted by the DLP system into a fixed string pattern. The conversion is performed based on one or more of multiple class definitions, including a digit class, a letter class and a symbol class. A determination is then made by the DLP system regarding whether the input string contains potential sensitive data to which a full-match is to be applied by matching the fixed string pattern against one or more stored target strings representative of sensitive data.
    Type: Grant
    Filed: August 1, 2018
    Date of Patent: July 16, 2019
    Assignee: Fortinet, Inc.
    Inventor: Juneng Zheng
  • Patent number: 10346377
    Abstract: Setting or verification of a monitoring rule in response to a monitoring target environment is supported. An information processing system includes a situation information receiving unit that receives an input of situation information indicating a situation in a monitoring target environment. The information processing system further includes a normal situation storage unit. The normal situation storage unit stores environment information indicating the monitoring target environment in association with a set of situation information indicating a situation that is not abnormal in the monitoring target environment. The information processing system further includes a retrieval unit. The retrieval unit refers to the normal situation storage unit upon receiving the input of the situation information indicating the information in the monitoring target environment.
    Type: Grant
    Filed: April 15, 2014
    Date of Patent: July 9, 2019
    Assignee: NEC CORPORATION
    Inventors: Yoshio Ishizawa, Satoshi Nakazawa
  • Patent number: 10341306
    Abstract: Systems and methods for application identification in accordance with embodiments of the invention are disclosed. In one embodiment, a user device includes a processor and memory configured to store an application, a session manager, an application identifier, and at least one shared library, and the processor is configured by the session manager to communicate the application identifier and the application identifier data to an authentication server and permit the execution of the application in response to authentication of the application by the authentication server.
    Type: Grant
    Filed: August 21, 2017
    Date of Patent: July 2, 2019
    Assignee: DIVX, LLC
    Inventors: Eric William Grab, Kourosh Soroushian, Tung Lin, Francis Yee-Dug Chan, Evan Wallin, William David Amidei
  • Patent number: 10341698
    Abstract: Systems and methods for performing adaptive bitrate streaming using alternative streams of protected content in accordance with embodiments of the invention are described. One embodiment of the invention includes a processor, and memory containing a client application. In addition, the client application configures the processor to: request a top level index file identifying a plurality of alternative streams of protected content, where each of the alternative streams of protected content are encrypted using common cryptographic information; obtain the common cryptographic information; request portions of content from at least the plurality of alternative streams of protected content; access the protected content using the common cryptographic information; and playback the content.
    Type: Grant
    Filed: October 9, 2018
    Date of Patent: July 2, 2019
    Assignee: DIVX, LLC
    Inventors: Michael George Kiefer, Eric William Grab, Jason Braness
  • Patent number: 10326745
    Abstract: A system and method are provided for the secure sharing of information across and open network and for performing management of keys used for encrypting and decrypting data.
    Type: Grant
    Filed: June 4, 2018
    Date of Patent: June 18, 2019
    Assignee: PKWARE, Inc.
    Inventor: Yuri Basin
  • Patent number: 10326797
    Abstract: Methods and systems related to provisioning a secure connection are disclosed. One disclosed method includes storing a device secret on a secure element in a first device, storing a mapping from the device secret to a device identifier of the first device on a cloud architecture, generating a pairing key using a first connection protocol key generator on the secure element and the device secret, and generating the pairing key using a second connection protocol key generator on the cloud architecture and the device secret. The method also includes transmitting the pairing key from the cloud architecture to a second device in response to receiving the device identifier, mutually authenticating the first and second device using the pairing key, and adding the secure connection to the inter-device connection using the pairing key as stored on the first device and as stored on the second device.
    Type: Grant
    Filed: October 3, 2018
    Date of Patent: June 18, 2019
    Assignee: Clover Network, Inc
    Inventors: Brian Jeremiah Murray, Narayanan Gopalakrishnan
  • Patent number: 10320795
    Abstract: Metadata associated with IoT devices is stored. The metadata may include categories associated with the IoT devices. At least a first category may be hierarchical such that the first category includes at least two hierarchical levels, with each hierarchical level including at least two categories, and such that each category in a hierarchical level that is below another hierarchical level is a subset of one of the categories in the hierarchical levels above that hierarchical level. User information associated with users is stored. A request associated with one of the users and further associated with access to at least one of the IoT devices is received. Responsive to the request, the access is selectively granted to the at least one of the IoT devices based upon the stored user information and the stored metadata.
    Type: Grant
    Filed: February 17, 2017
    Date of Patent: June 11, 2019
    Assignee: Microsoft Technology Licensing, LLC
    Inventors: Arjmand Samuel, Juan Perez
  • Patent number: 10310712
    Abstract: Aspects of the disclosure relate to multicomputer processing of client device request data with centralized event orchestration. A computing platform may receive, from a client computing device, event definition information defining an event. Subsequently, the computing platform may receive, from a recipient computing device associated with the event, a request for a delivery selection user interface. The computing platform may send the delivery selection user interface to the recipient computing device and may receive, from the recipient computing device, delivery selection information identifying a destination for the event selected by a user of the recipient computing device. Subsequently, the computing platform may generate one or more event orchestration commands directing an external event processor to execute one or more actions associated with the event, and may send the one or more event orchestration commands to the external event processor via an external event processing interface.
    Type: Grant
    Filed: December 11, 2017
    Date of Patent: June 4, 2019
    Assignee: Bank of America Corporation
    Inventors: Matthew R. Leavenworth, Eileen M. Holcomb, Kay Griep, Dean L. Henry, Brandon Castagna, Tracey A. Mochnal, Robert Foote, Ather Williams, III, Jack Vaalburg
  • Patent number: 10303335
    Abstract: Aspects of the disclosure relate to multicomputer processing of client device request data with centralized event orchestration. A computing platform may receive, from a client computing device, event definition information defining an event. Subsequently, the computing platform may receive, from a recipient computing device associated with the event, a request for a delivery selection user interface. The computing platform may send the delivery selection user interface to the recipient computing device and may receive, from the recipient computing device, delivery selection information identifying a destination for the event selected by a user of the recipient computing device. Subsequently, the computing platform may generate one or more event orchestration commands directing an external event processor to execute one or more actions associated with the event, and may send the one or more event orchestration commands to the external event processor via an external event processing interface.
    Type: Grant
    Filed: December 8, 2016
    Date of Patent: May 28, 2019
    Assignee: Bank of America Corporation
    Inventors: Dean L. Henry, Matthew R. Leavenworth, Ather Williams, III, Eileen M. Holcomb
  • Patent number: 10296882
    Abstract: Aspects of the disclosure relate to multicomputer processing of client device request data using a centralized event orchestrator and a link discovery engine. A computing platform may receive event definition information defining an event. Subsequently, the computing platform may receive a request for a recipient-selection user interface. The computing platform may mine alias data associated with a unique alias linked to a recipient computing device and may generate one or more relational user interface elements having relational content mined from the alias data. Then, the computing platform may send a delivery selection user interface having the one or more relational user interface elements to the recipient computing device. The computing platform may receive delivery selection information from the recipient computing device and may generate and send one or more event orchestration commands directing an event processor to execute one or more actions associated with the event.
    Type: Grant
    Filed: December 8, 2016
    Date of Patent: May 21, 2019
    Assignee: Bank of America Corporation
    Inventors: Akiva Kates, Joseph Benjamin Castinado, Rob Oddy
  • Patent number: 10296731
    Abstract: An apparatus includes a determination unit, an authentication unit, and a using unit. The determination unit determines, from among application programs enabling user authentication using user identification information stored in a storage medium, an application program having application information containing information representing that the user authentication can be performed, as an application program to be used for the user authentication. Using the application program determined by the determination unit, the authentication unit determines whether input information that is input by a user matches the user identification information stored in the storage medium so as to perform the user authentication. When the input information and the user identification information match, the using unit uses the information stored in the storage medium.
    Type: Grant
    Filed: March 9, 2016
    Date of Patent: May 21, 2019
    Assignee: RICOH COMPANY, LTD.
    Inventor: Jongsook Eun
  • Patent number: 10298972
    Abstract: A source device for transmitting content to a sink device is provided. The source device may include an interface configured to perform high-bandwidth digital content protection (HDCP) authentication with the sink device, and a controller configured to determine an HDCP version supported by the sink device, convert the content so as to be encrypted in the HDCP version supported by the sink device in response to a determination that another HDCP version applied to the content is not supported by the sink device, encrypt the converted content in the HDCP version supported by the sink device, and control the interface to transmit the content to the sink device.
    Type: Grant
    Filed: September 29, 2017
    Date of Patent: May 21, 2019
    Assignee: SAMSUNG ELECTRONICS CO., LTD.
    Inventor: Sung-bo Oh