Patents Examined by Darren B Schwartz
  • Patent number: 10129296
    Abstract: A proxy server in a cloud-based proxy service receives a message that indicates that a domain, whose traffic passes through the proxy server, may be under a denial-of-service (DoS) attack. The proxy server enables a rule for the domain that specifies that future requests for resources at that domain are subject to at least initially passing a set of one or more challenges. In response to receiving a request for a resource of that domain from a visitor, the proxy server presents the set of challenges that, if not passed, are an indication that that the visitor is part of the DoS attack. If the set of challenges are passed, the request may be processed. If the set of challenges are not passed, the request may be dropped.
    Type: Grant
    Filed: May 23, 2017
    Date of Patent: November 13, 2018
    Assignee: CLOUDFLARE, INC.
    Inventors: Lee Hahn Holloway, Srikanth N. Rao, Matthew Browning Prince, Matthieu Philippe Fran├žois Tourne, Ian Gerald Pye, Ray Raymond Bejjani, Terry Paul Rodery, Jr.
  • Patent number: 10126830
    Abstract: The disclosure relates to methods, devices, and systems to identify a user of a wearable fitness monitor using data obtained using the wearable fitness monitor. Data obtained from motion sensors of the wearable fitness monitor and data obtained from heartbeat waveform sensors of the wearable fitness monitor may be used to identify the user.
    Type: Grant
    Filed: November 14, 2017
    Date of Patent: November 13, 2018
    Assignee: Fitbit, Inc.
    Inventors: Shelten Gee Jao Yuen, James Park, Atiyeh Ghoreyshi, Anjian Wu
  • Patent number: 10122696
    Abstract: The technology described in this document can be embodied in a computer implemented method that includes receiving, at a processing device, information about one or more assets associated with a network of devices. The method also includes generating, for at least one of the assets, a security token that is based at least on a portion of the received information about the corresponding asset. The security token can be configured to identify a home network defined for the asset, and to restrict access to the corresponding asset upon detecting an occurrence of an unauthorized activity involving the asset. The method further includes storing, in a storage device, information about the security token and information linking the security token to the corresponding asset, and initiating integration of the security token with the corresponding asset.
    Type: Grant
    Filed: March 6, 2017
    Date of Patent: November 6, 2018
    Assignee: Document Dynamics, LLC
    Inventor: Robert G. Caffary, Jr.
  • Patent number: 10116637
    Abstract: The present disclosure describes techniques for configuring and participating in encrypted audio calls, audio conferences, video calls, and video conferences. In particular, a call initiator generates a meeting identifier and a first meeting key, which are encrypted using a first encryption key and distributed to one or more participants of the call. The one or more participants decrypt the meeting identifier and the first meeting key, and use that information to participate in the encrypted call. Further, participants respond to the encrypted communication data by encrypting their reply data with the first meeting key. The call initiator decrypts the reply data using the first meeting key.
    Type: Grant
    Filed: December 15, 2016
    Date of Patent: October 30, 2018
    Assignee: Wickr Inc.
    Inventors: Dipakkumar R. Kasabwala, Thomas Michael Leavy
  • Patent number: 10110595
    Abstract: In a machine-to-machine/Internet-of-things environment, end-to-end authentication of devices separated by multiple hops is achieved via direct or delegated/intermediated negotiations using pre-provisioned hop-by-hop credentials, uniquely generated hop-by-hop credentials, and-or public key certificates, whereby remote resources and services may be discovered via single-hop communications, and then secure communications with the remote resources may be established using secure protocols appropriate to the resources and services and capabilities of end devices, and communication thereafter conducted directly without the overhead or risks engendered hop-by-hop translation.
    Type: Grant
    Filed: March 16, 2016
    Date of Patent: October 23, 2018
    Assignee: Convida Wireless, LLC
    Inventors: Vinod Kumar Choyi, Dale N. Seed, Yogendra C. Shah, Quang Ly, William Robert Flynn, IV, Michael F. Starsinic, Shamim Akbar Rahman, Zhuo Chen, Qing Li
  • Patent number: 10110520
    Abstract: A secure chat client is described that allows users to exchange encrypted communications via secure chat rooms, as well as one-to-one communications. In particular, the secure chat client allows users to create, configure, and manage secure chat rooms. Furthermore, the secure chat client provides users with the ability to recover secure messages when they obtain a new device or otherwise lose communications.
    Type: Grant
    Filed: June 26, 2017
    Date of Patent: October 23, 2018
    Assignee: Wickr Inc.
    Inventors: Thomas Michael Leavy, Gerard Ryan
  • Patent number: 10104103
    Abstract: A domain scanning and website analysis system may be utilized to determine whether an entity is registering one or more websites maliciously in the name of a particular organization (e.g., or using a particular brand name, trademark, or other protected name of the organization). The system may be configured to: (1) scan a plurality of web domains to identify a particular name or variation thereof; (2) perform a registry lookup for any identified web domains that include the particular name; (3) determine based on registration information determined from the registry lookup, whether the identified domain or sub-domain is registered to a potentially malicious entity; (4) scan one or more webpages in the identified domain to determine content; and (5) determine, based on the determined content and whether the web domain is registered to a potentially malicious entity, whether to take action against the identified domain or sub-domain.
    Type: Grant
    Filed: January 19, 2018
    Date of Patent: October 16, 2018
    Assignee: OneTrust, LLC
    Inventors: Richard Beaumont, John Mannix
  • Patent number: 10097357
    Abstract: Embodiments disclosed herein provide a method that includes receiving, at a client-side web browser, a minimal bootstrap payload from an application server; storing, by a client-side processor, the minimal bootstrap payload in a client-side local cache, where the locally cached minimal bootstrap payload is executed by the client-side processor before executing an application from the application server; the minimal bootstrap payload includes at least one public key and at least one Uniform Resource Location (URL) address of an application code payload.
    Type: Grant
    Filed: August 10, 2017
    Date of Patent: October 9, 2018
    Assignee: Cyph, Inc.
    Inventors: Ryan Lester, Jann Horn, Bryant Zadegan
  • Patent number: 10091186
    Abstract: The invention relates to a method for a first communication device to perform authenticated distance measurement between the first communication device and a second communication device, wherein the first and the second communication device share a common secret and the common secret is used for performing the distance measurement between the first and the second communication device. The invention also relates to a method of determining whether data stored on a first communication device are to be accessed by a second communication device. Moreover, the invention relates to a communication device for performing authenticated distance measurement to a second communication device. The invention also relates to an apparatus for playing back multimedia content comprising a communication device.
    Type: Grant
    Filed: November 16, 2016
    Date of Patent: October 2, 2018
    Assignee: Koninklijke Philips N.V.
    Inventor: Franciscus L. A. J. Kamperman
  • Patent number: 10083287
    Abstract: A fingerprint sensing device includes a sensing circuit configured to extract sensing data from nodes included in each of sampling regions of a sensor array. The fingerprint sensing device also includes a control circuit configured to calculate a number of the nodes based on the extracted sensing data to produce sensing data distributions for each of the sampling regions and compare the sensing data distributions with reference distributions, configured to determine that the sampling regions from which the sensing data distributions corresponding to the reference distributions are extracted are effective contact regions, and configured to generate fingerprint information from the sensor array when the number of effective contact regions is greater than or equal to a threshold.
    Type: Grant
    Filed: April 19, 2016
    Date of Patent: September 25, 2018
    Assignee: SAMSUNG ELECTRONICS CO., LTD.
    Inventors: Tae Hyeon Kwon, Kang Joo Kim, Yong Il Kwon
  • Patent number: 10078759
    Abstract: In certain embodiments, a data structure including first and second data structure portions may be obtained, where the first data structure portion is generated based on a first cryptographic scheme, and the second data structure portion is generated based on a second cryptographic scheme. The data structure may be processed to determine the first cryptographic scheme for extracting data from the first data structure portion and the second cryptographic scheme for extracting data from the second data structure portion. In some embodiments, a computer program may use the first cryptographic scheme to decrypt the first data structure portion to extract the first information from the first data structure portion, and the same computer program may use the second cryptographic scheme to decrypt the second data structure portion to extract the second information from the second data structure portion.
    Type: Grant
    Filed: January 19, 2018
    Date of Patent: September 18, 2018
    Assignee: GRIFFIN GROUP GLOBAL, LLC
    Inventors: Jonathan B. Fishbeck, William F. Heapes, Matthew Jenks
  • Patent number: 10068099
    Abstract: In certain embodiments, first and second information to be represented in a data structure (accessible to a plurality of entities) may be obtained. First and second sets of permissions associated with the first and second information may be respectively obtained. A first cryptographic scheme may be determined for the first information based on the first set of permissions being associated with the first information. A second cryptographic scheme may be determined for the second information based on the second set of permission being associated with the second information. A first data structure portion may be generated based on the first cryptographic scheme, where the first data structure portion represents the first information in the data structure. A second data structure portion may be generated based on the second cryptographic scheme, where the second data structure portion represents the second information in the data structure.
    Type: Grant
    Filed: January 19, 2018
    Date of Patent: September 4, 2018
    Assignee: GRIFFIN GROUP GLOBAL, LLC
    Inventors: Jonathan B. Fishbeck, William F. Heapes, Matthew Jenks
  • Patent number: 10063574
    Abstract: A method, apparatus, and medium are provided for tracing the origin of network transmissions. Connection records are maintained at computer system for storing source and destination addresses. The connection records also maintain a statistical distribution of data corresponding to the data payload being transmitted. The statistical distribution can be compared to that of the connection records in order to identify the sender. The location of the sender can subsequently be determined from the source address stored in the connection record. The process can be repeated multiple times until the location of the original sender has been traced.
    Type: Grant
    Filed: March 4, 2015
    Date of Patent: August 28, 2018
    Assignee: The Trustees of Columbia University in the City of New York
    Inventor: Salvatore J. Stolfo
  • Patent number: 10063568
    Abstract: A method, system and computer-usable medium are disclosed for generating a cyber behavior profile, comprising: monitoring user interactions between a user and an information handling system; converting the user interactions and the information about the user into electronic information representing the user interactions; generating a unique cyber behavior profile based upon the electronic information representing the user interactions and the information about the user; and, storing information relating to the unique cyber behavior profile in a behavior blockchain.
    Type: Grant
    Filed: January 24, 2018
    Date of Patent: August 28, 2018
    Assignee: Forcepoint LLC
    Inventors: Richard Anthony Ford, Brandon L. Swafford, Christopher Brian Shirey, Matthew P. Moynahan, Richard Heath Thompson
  • Patent number: 10061911
    Abstract: In accordance with one embodiment, a method for locally verifying the identification of a user with an electronic device is disclosed. The method includes regenerating a neuro-mechanical fingerprint (NFP) in response to a micro-motion signal sensed at a body part. In response to a plurality of authorized user calibration parameters, a match percentage of the neuro-mechanical fingerprint is determined. The match percentage is determined without the use of a calibration NFP that was previously used to generate the user calibration parameters. Access to the electronic device and its software applications is then controlled by the match percentage. If the match percentage is greater than or equal to an access match level, access to the electronic device is granted. If the match percentage is less than the access match level, access is denied. Subsequent access requires further regeneration of the NFP and a determination of its match percentage in response.
    Type: Grant
    Filed: February 2, 2017
    Date of Patent: August 28, 2018
    Assignee: Proprius Technolgies S.A.R.L
    Inventors: Martin Zizi, Hugh Sharkey
  • Patent number: 10061636
    Abstract: In a general aspect, a conversion scheme is used in a public key cryptosystem. In some aspects, an error vector derivation function is applied to a random value and a message value to produce an error vector. A plaintext value is generated based on the random value, the message value, and the error vector. The error vector and the plaintext value are used in an encryption function to produce a ciphertext component, and the ciphertext component is provided for transmission in a communication system.
    Type: Grant
    Filed: December 22, 2017
    Date of Patent: August 28, 2018
    Assignee: ISARA Corporation
    Inventors: Edward William Eaton, Atsushi Yamada, Kassem Kalach
  • Patent number: 10044726
    Abstract: Described herein are systems and methods for performing potentially malicious activity detection operations. Embodiments may include receiving data associated with a plurality of authentication messages; analyzing the received data associated with the plurality of authentication messages; determining, based on the analyzing, a plurality of characteristics of the data associated with the authentication messages; receiving data associated with a new authentication message communicated over the network; determining a plurality of characteristics of the data associated with the new authentication message; comparing at least one determined characteristic of the new authentication message data with at least one of: a determined characteristic of the plurality of authentication messages data, known valid data, and known invalid data; and generating, based on the comparison, an assessment of whether the new authentication message is indicative of the potentially malicious activity in the network.
    Type: Grant
    Filed: May 5, 2016
    Date of Patent: August 7, 2018
    Assignee: CyberArk Software Ltd.
    Inventors: Andrey Dulkin, Lavi Lazarovitz
  • Patent number: 10044688
    Abstract: A secure chat client is described that allows users to exchange encrypted communications via secure chat rooms, as well as one-to-one communications. In particular, the secure chat client allows users to create, configure, and manage secure chat rooms. Furthermore, the secure chat client provides users with the ability to recover secure messages when they obtain a new device or otherwise lose communications.
    Type: Grant
    Filed: September 28, 2017
    Date of Patent: August 7, 2018
    Assignee: Wickr Inc.
    Inventors: Thomas Michael Leavy, Gerard Ryan
  • Patent number: 10045054
    Abstract: A device is configured to perform a method that detects a trigger marker for an action corresponding to a segment of a multimedia signal. A fingerprint is generated based on the segment of the multimedia signal at a trigger time point. The generated fingerprint is stored in a database and communicated to the device. During playback of the multimedia signal, fingerprints of segments of the multimedia signal are generated and matched against fingerprints in the database. When a match is found, one or more associated actions for the segment are retrieved by the device. The trigger time point may be determined as a time point near or at the segment of the multimedia signal with the matched fingerprint. In this way, trigger markers for actions may be enabled without modifying the multimedia signal.
    Type: Grant
    Filed: June 13, 2017
    Date of Patent: August 7, 2018
    Assignee: Gracenote, Inc.
    Inventors: Job Cornelis Oostveen, Warner Rudolph Theophile Ten Kate, Adrianus Johannes Maria Denissen, David K. Roberts
  • Patent number: 10033709
    Abstract: A method and apparatus for enhancing privacy of a data packet stream between first and second network nodes over a channel having a total bandwidth receives data packets of the data packet stream at the first network node and determines a current bandwidth used by the received data packets. The first node generates multiple spoof packets and interleaves the spoof packets and the received packets to generate an interleaved packet stream having a bandwidth that is greater than the current bandwidth and less than the total bandwidth. The first node transmits the interleaved packet stream to the second network node.
    Type: Grant
    Filed: November 20, 2017
    Date of Patent: July 24, 2018
    Assignee: Microsoft Technology Licensing, LLC
    Inventors: Amer A. Hassan, Gareth L. Bridges, Russell A. Penar