Patents Examined by Andrew J Steinle
  • Patent number: 11233792
    Abstract: A method for secure storage and distribution of account tokens includes: storing blockchain data comprised of a plurality of blocks, each block including at least a block header and one or more data values, where each data value includes at least an identification value, an account token, and one or more usage rules; receiving a login request including at least a specific identification value and a set of credentials; identifying a specific data value included in the blockchain data where the included identification value corresponds to the received specific identification value; validating the set of credentials based on the identified specific data value and access to the account token included in the specific data value based on the included one or more usage rules; and transmitting the account token included in the identified specific data value in response to the login request upon successful validation.
    Type: Grant
    Filed: May 2, 2018
    Date of Patent: January 25, 2022
    Assignee: MASTERCARD INTERNATIONAL INCORPORATED
    Inventors: Shreya Mittal, Amit Gupta, Ankur Arora
  • Patent number: 11228443
    Abstract: The present disclosure includes apparatuses, methods, and systems for using memory as a block in a block chain. An embodiment includes a memory, and circuitry configured to generate a block in a block chain for validating data stored in the memory, wherein the block includes a cryptographic hash of a previous block in the block chain and a cryptographic hash of the data stored in the memory, and the block has a digital signature associated therewith that indicates the block is included in the block chain.
    Type: Grant
    Filed: March 25, 2019
    Date of Patent: January 18, 2022
    Assignee: Micron Technology, Inc.
    Inventors: Alberto Troia, Antonino Mondello
  • Patent number: 11228611
    Abstract: Disclosed herein are methods, systems, and processes for scanning unexposed web applications for security vulnerabilities. A web application executing on a client computing device is accessed and a determination is made that elements in a document object model (DOM) associated with the web application are completely loaded. A brute force operation is performed to identify unexposed actionable events associated with the elements in the DOM. The unexposed actionable events identified as part of performing the brute force operation are received from the client computing device, and the web application is scanned for security vulnerabilities based on the unexposed actionable events.
    Type: Grant
    Filed: August 20, 2019
    Date of Patent: January 18, 2022
    Assignee: Rapid7, Inc.
    Inventors: Jijo John, Dmitriy Kashitsyn, Andrew Tisdale
  • Patent number: 11223473
    Abstract: Techniques are provided for client-driven shared secret updates for client authentication. One method comprises, in response to a first authentication of a client by a server using a given shared secret, updating, by the client, the given shared secret to generate an updated shared secret and storing the updated shared secret with the server; and submitting the updated shared secret to the server as part of a second authentication of the client. The updating is optionally performed by one or more of a password vault and a browser extension. The client may randomly select the updated shared secret or compute the updated shared secret in a predefined manner. The server may evaluate whether the client stores the updated shared secret with the server in connection with the first authentication and implement one or more predefined steps when the updated shared secret is not stored with the server.
    Type: Grant
    Filed: February 1, 2019
    Date of Patent: January 11, 2022
    Assignee: EMC IP Holding Company LLC
    Inventors: Brian C. Mullins, Kevin Bowers
  • Patent number: 11223470
    Abstract: A computing entity accesses one or more blocks of a blockchain, encrypts the content of the one or more blocks using a first cryptographic technique to generate one or more first encrypted block values, and writes a first side chain block comprising the one or more first encrypted block values and a first signature to a first side chain. The computing entity accesses at least one of (a) at least one block of a particular second set of one or more second sets of the plurality of blocks or (b) one or more first side chain blocks corresponding to blocks of the second set, encrypts the content of the accessed block(s) using a second cryptographic technique to generate at least one second encrypted block value, and writes a second side chain block comprising the at least one second encrypted block value and a second signature to a second side chain.
    Type: Grant
    Filed: March 6, 2020
    Date of Patent: January 11, 2022
    Assignee: Wells Fargo Bank, N.A.
    Inventors: Brad A. Shea, Jeff J. Stapleton, Robert L. Carter, Jr., Pierre Arbajian, Peter Bordow, Michael Erik Meinholz
  • Patent number: 11216588
    Abstract: A cross-measurement system gathers data from a set of publishers to determine cross-publisher statistics about content provided on multiple online platforms associated with different publishers. The cross-measurement system receives a set of publisher-specific Bloom filters associated with content exposure of a content set by each of the multiple publishers. using the received publisher-specific Bloom filters, the cross-measurement system generates a cross-publisher Bloom filter, for example, by combining the publisher-specific Bloom filters. Then, the cross-measurement system analyzes the cross-publisher Bloom filter to determine cross-publisher statistics reflecting the content exposure of the content set across the set of publishers, such as a cross-publisher reach of the content set.
    Type: Grant
    Filed: May 21, 2020
    Date of Patent: January 4, 2022
    Assignee: Meta Platforms, Inc.
    Inventors: Ran An, Payman Mohassel, Sanjay Kanaka Sai Tirupattur Saravanan
  • Patent number: 11218293
    Abstract: Systems and methods are provided for implementing swarm learning while using blockchain technology and election/voting mechanisms to ensure data privacy. Nodes may train local instances of a machine learning model using local data, from which parameters are derived or extracted. Those parameters may be encrypted and persisted until a merge leader is elected that can merge the parameters using a public key generated by an external key manager. A decryptor that is not the merge leader can be elected to decrypt the merged parameter using a corresponding private key, and the decrypted merged parameter can then be shared amongst the nodes, and applied to their local models. This process can be repeated until a desired level of learning has been achieved. The public and private keys are never revealed to the same node, and may be permanently discarded after use to further ensure privacy.
    Type: Grant
    Filed: January 27, 2020
    Date of Patent: January 4, 2022
    Assignee: Hewlett Packard Enterprise Development LP
    Inventors: Sathyanarayanan Manamohan, Vishesh Garg, Krishnaprasad Lingadahalli Shastry, Saikat Mukherjee
  • Patent number: 11218314
    Abstract: A network function service invocation method includes sending, by a first network function network element, a first request message to an authorization network element, wherein the first request message is used to request permission to invoke a first network function service provided by a second network function network element, performing, by the authorization network element, identity authentication on the first network function network element; generating, by the authorization network element, a token when determining that the identity authentication succeeds, wherein the token is used to indicate that the first network function network element has the permission to invoke the first network function service of the second network function network element, and sending, by the authorization network element, a token to the first network function network element.
    Type: Grant
    Filed: September 10, 2019
    Date of Patent: January 4, 2022
    Assignee: HUAWEI TECHNOLOGIES CO., LTD.
    Inventors: Shuaishuai Tan, Lu Gan, Bo Zhang, Rong Wu
  • Patent number: 11212091
    Abstract: A method for pairing a first terminal, called a communications terminal, seeking to transmit and receive data with a second terminal, called an acceptor terminal. The method includes: a first non-secured pairing phase for pairing the transactional terminal with the communications terminal, delivering at least one pairing parameter for pairing with the communications terminal, by using a first radio-type bidirectional wireless communications channel; a second phase of secured pairing of the transactional terminal with the communications terminal, the second pairing phase implementing a second unidirectional communications channel used by the transactional terminal to transmit a piece of securing data from the first communications channel to the communications terminal, as a function of the at least one parameter for pairing with the communications terminal.
    Type: Grant
    Filed: December 12, 2018
    Date of Patent: December 28, 2021
    Assignee: INGENICO INC.
    Inventor: Christopher Rotsaert
  • Patent number: 11200345
    Abstract: Techniques for a firewall to determine access to a portion of memory are provided. In one aspect, an access request to access a portion of memory within a pool of shared memory may be received at a firewall. The firewall may determine whether the access request to access the portion of memory is allowed. The access request may be allowed to proceed based on the determination. The operation of the firewall may not utilize address translation.
    Type: Grant
    Filed: July 29, 2015
    Date of Patent: December 14, 2021
    Assignee: Hewlett Packard Enterprise Development LP
    Inventors: Mark Lillibridge, Paolo Faraboschi, Chris I. Dalton
  • Patent number: 11196720
    Abstract: A streaming one time Pad cipher using a One Time Pad (OTP) provides secure data storage and retrieval. The data that is encrypted using the one time pad is stored in a repository that is separate from the generation and/or storage for the one time pad.
    Type: Grant
    Filed: January 9, 2018
    Date of Patent: December 7, 2021
    Assignee: Introspective Power, Inc.
    Inventors: Anthony Scott Thompson, Steven Paul Cummings, Margaret A. Philpot, Brian E. Meilke
  • Patent number: 11182470
    Abstract: The present disclosure provides a new and innovative system, method, and non-transitory computer-readable medium for securely recovering access to an online service account. Secret splitting is utilized to require multiple recovery mechanisms in order to recover access to an online service account, thus decreasing the likelihood that a malicious attacker will compromise all of the recovery mechanisms to gain access to the online service account. The secret is split into a quantity of tokens via a secret sharing function that can reconstruct the secret with a predetermined threshold quantity of the tokens. The level of security provided by the system is flexible by adjusting the quantity of recovery mechanisms and the predetermined threshold quantity of tokens required to reconstruct the secret.
    Type: Grant
    Filed: May 21, 2020
    Date of Patent: November 23, 2021
    Assignee: Qatar Foundation for Education, Science and Community Development
    Inventors: Roberto Di Pietro, Simone Raponi
  • Patent number: 11184175
    Abstract: Implementations of the disclosure are directed to using a distributed ledger network and a location beacon device that transmits a secured representations of a location distributed ledger addresses to prove the presence of a user at a particular location and time. In implementations, a method includes: receiving, at a first time, a first beacon, the first beacon including a first secured representation of a distributed ledger address associated with a location; transmitting the first secured representation of the blockchain address to a server system operating as a node on a distributed ledger network; receiving a request from the server system to obtain, at a second time after the first time, a second secured representation of a distributed ledger address; in response to the request, obtaining a second secured representation of a blockchain address associated with a location; and transmitting to the server system, the second secured representation of the blockchain address associated with the location.
    Type: Grant
    Filed: July 30, 2018
    Date of Patent: November 23, 2021
    Assignee: Hewlett Packard Enterprise Development LP
    Inventors: Abilash Soundararajan, Michael Reid Tennefoss
  • Patent number: 11176257
    Abstract: A system and method for reducing risk of smart contracts in blockchains in a computer environment are presented. One or more smart contracts may be accepted or rejected from a secondary blockchain to a primary blockchain according to a risk assessment to recursive call attack vulnerabilities.
    Type: Grant
    Filed: August 13, 2019
    Date of Patent: November 16, 2021
    Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATION
    Inventors: Stefano Braghin, Emanuele Ragnoli, Killian Levacher
  • Patent number: 11178111
    Abstract: A proxy is modified, to form an enhanced proxy, wherein the proxy is configured to inspect a header portion of a Hypertext Transfer Protocol (http) message, the modifying enabling the enhanced proxy to identify, at the enhanced proxy, a set of http header types in the http message received from a system. An external licensing authority (LA) is modified, to form an enhanced LA, wherein the enhanced LA is configured to verify a header parameter corresponding to a header type in the set of header types and return a license information corresponding to the system. The http message is modified by modifying the header portion in the http message according to the header type and a threshold corresponding to the header type, the header type and the threshold being identified in the license information. The modified http message is transmitted.
    Type: Grant
    Filed: November 28, 2018
    Date of Patent: November 16, 2021
    Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATION
    Inventors: Michael Joseph Santelia, Mauro Marzorati, Seda Özses, Juraj Nyíri
  • Patent number: 11172356
    Abstract: Disclosed embodiments provide techniques for data communication to mobile electronic devices utilizing nodes equipped with directional transmitters. The mobile electronic devices are classified as registered or unregistered. A current location for each mobile electronic device in an area is determined. A registered mobile electronic device is identified from a group of mobile electronic devices. Based on the determined location, a distance to a registered mobile electronic device from a transmitter is determined. The transmitter is a directional transmitter, capable of transmitting along a sector. A sector corresponding to the registered mobile electronic device based on an angle range and distance from a transmitter to the registered mobile electronic device is determined.
    Type: Grant
    Filed: May 27, 2020
    Date of Patent: November 9, 2021
    Assignee: International Business Machines Corporation
    Inventors: Vijay Ekambaram, Padmanabha Venkatagiri Seshadri, Srikanth K. Murali, Aparna Seshadri
  • Patent number: 11170113
    Abstract: A method for testing a software application program (22) includes storing in a vulnerability database records of security vulnerabilities identified in execution of the program. Each record includes a location field containing a respective signature indicative of a location in the execution at which a corresponding security vulnerability was detected and a metadata field indicative of a respective control flow path on which the corresponding security vulnerability occurred. Upon detecting a further security vulnerability at a given location in a subsequent execution of the program, a new signature of the given location is computed and compared to the location field of the records in the database. When no record is found to match the new signature, an indication is output to a developer of the program of an occurrence of a new security vulnerability.
    Type: Grant
    Filed: January 1, 2018
    Date of Patent: November 9, 2021
    Assignee: CHECKMARX LTD.
    Inventors: Maty Siman, Alexander Roichman, Shimon Eshkenazi
  • Patent number: 11163869
    Abstract: A method, a system and a computer program product are provided for identity authentication. A personal identity information indicative of an identity is received. A plurality of questions, is presented, each of the questions being related to an aspect of features of the password associated with the personal identity information. The A responsive answer is received to the questions including individual answers to the questions. The identity is authenticated in response to determining that the responsive answer is correct.
    Type: Grant
    Filed: October 27, 2017
    Date of Patent: November 2, 2021
    Assignee: International Business Machines Corporation
    Inventors: Xin He, Qu Jiang, Tao Qian, Tan Sheng
  • Patent number: 11157832
    Abstract: Method and apparatus for using machine learning to monitor biometric data to provide intelligent alerts are provided. At a first moment in time, first biometric data for a plurality of users are received from a plurality of sensor devices. A group metric is generated by processing the first biometric data using at least one trained machine learning model, and it is determined that the group metric does not satisfy one or more predefined criteria. At a second moment in time, second biometric data for the plurality of users is received from the plurality of sensor devices, and an updated group metric is generated by processing the second biometric data using the at least one trained machine learning model. Upon determining that the updated group metric satisfies the one or more predefined criteria, an indication is provided that the one or more predefined criteria have been satisfied.
    Type: Grant
    Filed: December 19, 2017
    Date of Patent: October 26, 2021
    Assignee: International Business Machines Corporation
    Inventors: Amitava Kundu, Sujan Sarathi Ghosh, Abhijit Singh
  • Patent number: 11153292
    Abstract: An authentication apparatus according to the present application includes an acquiring unit, a first specifying unit, a second specifying unit, and an authentication unit. The acquiring unit acquires context information on a target user who becomes a target for authentication. The first specifying unit specifies a belonging cluster based on information related to a plurality of cluster groups and the context information on the target user, in each of the plurality of the cluster groups. The second specifying unit specifies, for each belonging cluster based on a classification model used to specify a predetermined candidate user in the belonging cluster specified by the first specifying unit, a candidate user, in a partial candidate user group that belongs to the belonging cluster, who satisfies a predetermined condition. The authentication unit authenticates the target user based on information related to the candidate user specified by the second specifying unit.
    Type: Grant
    Filed: February 28, 2018
    Date of Patent: October 19, 2021
    Assignee: YAHOO JAPAN CORPORATION
    Inventors: Kota Tsubouchi, Shuuji Yamaguchi