Patents Examined by Dereena T Cattungal
  • Patent number: 10417403
    Abstract: A method and system for improving automated software execution is provided. The method includes receiving in real time from a video retrieval device, visual data associated with a user of a hardware device. The user is identified with respect to the visual data. Internal software applications and hardware structures are scanned in real time and relationships between a group of Web based software applications and a group of internal software applications and hardware structures authorized for access by the user are determined. Information associated with network and hardware device access by the user is analyzed actions for execution with respect to access to the group of Web based software applications and internal software applications and hardware structures are determined. In response, the automated actions are executed with respect to access to the group of Web based software applications and internal software applications and hardware structures.
    Type: Grant
    Filed: June 29, 2017
    Date of Patent: September 17, 2019
    Assignee: International Business Machines Corporation
    Inventors: Giuseppe Ciano, Gianluca Della Corte, Giuseppe Longobardi, Antonio M. Sgro
  • Patent number: 10409979
    Abstract: A computer-implemented method for preventing addictive application usage may include (i) identifying a user of a software application, (ii) monitoring the user's habits in relation to accessing the software application, (iii) determining that the user's habits indicate potentially addictive behavior relative to a baseline behavior in relation to accessing the software application, and (iv) automatically executing an application control action in response to determining that the user's habits indicate potentially addictive behavior. Various other methods, systems, and computer-readable media are also disclosed.
    Type: Grant
    Filed: August 15, 2016
    Date of Patent: September 10, 2019
    Assignee: Symantec Corporation
    Inventors: Lei Gu, Keith Newstadt
  • Patent number: 10382195
    Abstract: Generally described, physical computing devices in a virtual network can be configured to host a number of virtual machine instances. The physical computing devices can be operably coupled with offload devices. In accordance with an aspect of the present disclosure, a security component can be incorporated into an offload device. The security component can be a physical device including a microprocessor and storage. The security component can include a set of instructions configured to validate an operational configuration of the offload device or the physical computing device to establish that they are configured in accordance with a secure or trusted configuration. In one example, a first security component on the offload device can validate the operational computing environment on the offload device and a second security component on the physical computing device can validate the operational computing environment on the physical computing device.
    Type: Grant
    Filed: May 23, 2017
    Date of Patent: August 13, 2019
    Assignee: AMAZON TECHNOLOGIES, INC.
    Inventors: Eric Jason Brandwine, David R. Richardson, Matthew Shawn Wilson, Ian Paul Nowland, Anthony Nicholas Liguori, Brian William Barrett
  • Patent number: 10367814
    Abstract: Methods and systems for preventing unsecured mobile applications from accessing encrypted resources are presented. In some embodiments, a mobile device may determine that a background process associated with a mobile application is requesting to access an encrypted resource. The mobile device may further determine whether the mobile application has been secured with authentication information. In response to determining that the mobile application has not been secured, the mobile device may suspend the background process until the mobile application has been secured and transmit a request to a mobile application management agent to secure the mobile application using authentication information.
    Type: Grant
    Filed: June 10, 2015
    Date of Patent: July 30, 2019
    Assignee: Citrix Systems, Inc.
    Inventor: James Walker
  • Patent number: 10366212
    Abstract: A verification system, includes: an arithmetic/logic unit (“ALU”) to perform one or more mathematical operations and compare selected variables; a register to hold a value from a comparison of selected variables performed by the ALU; an instruction decoder to provide read and write commands to memory; an address bus to provide an address to memory for a read or write operation; and a data bus to provide or access data for a write or read operation to or from memory, wherein the ALU generates and provides a recipient identifier to a target computational device, the recipient identifier being related to an identity of the target computational device and/or a target device human operator, and write the recipient identifier to memory in response to a write command issued by the instruction decoder and, as a part of a transaction, the ALU receives, from a user computational device of a first user, the recipient identifier and a credential of the first user and/or user computational device, compares each of the rec
    Type: Grant
    Filed: November 9, 2018
    Date of Patent: July 30, 2019
    Inventor: John K. Thomas
  • Patent number: 10320813
    Abstract: A service provider may deploy a security threat detection and mitigation platform in a multi-tenant virtualization environment that includes pluggable data collection, data analysis, and response components. The data analysis components may apply machine learning techniques to generate (based on training data sets) and refine (based on subsequently received data sets and feedback about the resulting classifications) predictors configured to detect particular types of security threats, such as denial of service attacks, botnets, scans, or remote desktop attacks. A data collection layer may collect, filter, organize, and curate network packet traffic data, network packet header data, or other information emitted by computing instances or applications executing on them, and provide the curated data as streams to the analysis layer.
    Type: Grant
    Filed: April 30, 2015
    Date of Patent: June 11, 2019
    Assignee: Amazon Technologies, Inc.
    Inventors: Khaja Ehteshamuddin Ahmed, Anthony Joseph Suarez, Dmitry Petrovich Andreychuk
  • Patent number: 10313327
    Abstract: Systems and methods are provided for facilitating account login, wherein the method is implemented by a first server that is associated with a first account. In some embodiments, the method comprises receiving, from a terminal device, a request to log into a second account associated with a second server, wherein the request includes a first identifier associated with the first account and a second identifier associated with the second server. The method further comprises generating account information to be transmitted to the second server based on the first identifier; and transmitting the account information to the second server based on the second identifier; wherein the transmission of the account information enables the second account to be automatically logged into at the second server.
    Type: Grant
    Filed: October 22, 2015
    Date of Patent: June 4, 2019
    Assignee: Alibaba Group Holding Limited
    Inventor: Jie Hua
  • Patent number: 10313322
    Abstract: Provided is a process, including: sending, via a first channel, to a client computing device, a challenge of a test to determine whether a human or a computer is generating input; receiving, via a second channel, a response to the challenge, wherein the second channel and the first channel are not both accessible to a client-application in which the response is input, and wherein the test includes an image recognition task by which the response is determined from the challenge; and determining whether a human or computer generated the response based on performance in the image recognition task indicated by the response.
    Type: Grant
    Filed: September 2, 2016
    Date of Patent: June 4, 2019
    Assignee: CA, Inc.
    Inventors: Gowtham Sen Potnuru, Gaurav Kumar, Mitta Sarath Kumar, Dwibhashyam V S Chaitanya
  • Patent number: 10296744
    Abstract: A method and related apparatus for performing inspection of flows within a software defined network includes monitoring an indicator indicative of a presence of malware in a selected flow in an electronic communications network, when the indicator suggests the presence of malware in the selected flow, requesting a network device to redirect the selected flow, or to copy the selected flow and send a resulting copy of the selected flow, to a security appliance, and causing the security appliance to be reconfigured in response to the indicator that suggest the presence of malware in the selected flow.
    Type: Grant
    Filed: September 24, 2015
    Date of Patent: May 21, 2019
    Assignee: Cisco Technology, Inc.
    Inventors: David McGrew, Kenneth S. Beck, Jyoti Verma, Jason R. Brvenik
  • Patent number: 10282538
    Abstract: Technologies to enable, disable and control hardware subscription features. Computing devices communicate over a network to a subscription server to provide hardware platform information for each of the computing devices. As the subscription server receives hardware platform information, the subscription server determines the hardware features that are enabled, and further determines what hardware subscription options are available for each of the computing devices. When a hardware subscription option is selected/purchased by a computing device, subscription server provides a pre-boot update mechanism, such as a Unified Extensible Firmware Interface (UEFI) capsule, to act as a boot level program that enables hardware features on the computing device. Hardware subscription features are also securely protected using cryptographic engine modules.
    Type: Grant
    Filed: December 27, 2014
    Date of Patent: May 7, 2019
    Assignee: Intel Corporation
    Inventors: Sudhakar Otturu, Krishna Kumar Ganesan, Erik Holt
  • Patent number: 10282558
    Abstract: An apparatus maintains a segregated database in a multiple distributed ledger system. The apparatus includes a storage device that stores software instructions for controlling a processor that when executed by the processor configure the processor to: create distributed ledgers, each created distributed ledger being associated with a respective individual profile; maintain a segregated database apart from the distributed ledgers including, for each individual profile, profile balance data; and process a data exchange between exchanging profiles.
    Type: Grant
    Filed: September 2, 2016
    Date of Patent: May 7, 2019
    Assignee: The Toronto-Dominion Bank
    Inventors: Paul Mon-Wah Chan, Perry Aaron Jones Haldenby, John Jong Suk Lee
  • Patent number: 10275591
    Abstract: In one implementation, a method for providing security on an externally connected controller includes launching, by the controller, a security layer that includes a whitelist of permitted processes on the controller, the whitelist including (i) signatures for processes that are authorized to be executed and (ii) context information identifying permitted controller contexts within which the processes are authorized to be executed; determining, by the security layer, whether the particular process is permitted to be run on the controller based on a comparison of the determined signature with a verified signature for the particular process from the whitelist; identifying, by the security layer, a current context for the controller; determining, by the security layer, whether the particular process is permitted to be run on the controller based on a comparison of the current context with one or more permitted controller contexts for the particular process from the whitelist.
    Type: Grant
    Filed: June 19, 2018
    Date of Patent: April 30, 2019
    Assignee: KARAMBA SECURITY LTD.
    Inventors: Tal Efraim Ben David, Assaf Harel, Amiram Dotan, David Barzilai
  • Patent number: 10268831
    Abstract: A self-protection device includes a flexible display having a display side. One or more actuating devices are arranged on a back side of the flexible display opposite the display side. A monitoring mechanism is configured to monitor one or more conditions such that if a triggering event occurs, the monitoring mechanism triggers the one or more actuating devices to obtain a self-protecting pose to protect the flexible display.
    Type: Grant
    Filed: July 8, 2015
    Date of Patent: April 23, 2019
    Assignee: International Business Machines Corporation
    Inventors: Sarbajit K. Rakshit, John D. Wilson
  • Patent number: 10248778
    Abstract: A method for improving unlocking speed and a mobile terminal are provided. The method is applicable to the mobile terminal in a screen-off state and equipped with a metal dome array. The method includes the follows. A first thread is executed when a current unlock mode of the mobile terminal is press-to-trigger fingerprint unlock in the screen-off state, and a second thread is executed during the execution of the first thread. The first thread includes the following. An operation instruction is received when a user touches a fingerprint module, a fingerprint image is acquired, the fingerprint image acquired is compared with a preset fingerprint image, and unlock after a successful match. The second thread includes the following. An operation instruction is received when the user presses the metal dome array, and wait for unlocking success and then a display screen is lit up.
    Type: Grant
    Filed: May 24, 2018
    Date of Patent: April 2, 2019
    Assignee: Guangdong Oppo Mobile Telecommunications Corp., Ltd.
    Inventors: Haiping Zhang, Yibao Zhou
  • Patent number: 10243739
    Abstract: Generally described, physical computing devices in a virtual network can be configured to host a number of virtual machine instances. The physical computing devices can be operably coupled with offload devices. In accordance with an aspect of the present disclosure, a security component can be incorporated into an offload device. The security component can be a physical device including a microprocessor and storage. The security component can include a set of instructions configured to validate an operational configuration of the offload device or the physical computing device to establish that they are configured in accordance with a secure or trusted configuration. In one example, a first security component on the offload device can validate the operational computing environment on the offload device and a second security component on the physical computing device can validate the operational computing environment on the physical computing device.
    Type: Grant
    Filed: March 30, 2015
    Date of Patent: March 26, 2019
    Assignee: AMAZON TECHNOLOGIES, INC.
    Inventors: Eric Jason Brandwine, David R. Richardson, Matthew Shawn Wilson, Ian Paul Nowland, Anthony Nicholas Liguori, Brian William Barrett
  • Patent number: 10237306
    Abstract: A disclosed method includes operations of a control computer and interceptor computer. The control computer creates a certificate request and sends it to a certificate issuer, the certificate request created with an encrypted blob including a service private key S-PrK encrypted with an escrow server public key E-PuK. The control computer receives the certificate from the certificate issuer and provisions it to the service server along with S-PRK for use in secured communications with clients. The interceptor computer monitors session-establishment communications, e.g. a TLS handshake, between the service server and client to obtain the digital certificate, and retrieves the encrypted blob from the certificate and sends it to the escrow server. The escrow computer retrieves S-PrK by decrypting the encrypted blob using the escrow private key E-PrK, and returns S-PrK to the interceptor, where it is used to decrypt secure-session communications between the client and service server.
    Type: Grant
    Filed: June 30, 2016
    Date of Patent: March 19, 2019
    Assignee: EMC IP Holding Company LLC
    Inventor: Peter Alan Robinson
  • Patent number: 10230697
    Abstract: A non-transitory computer-readable recording medium storing computer-readable instructions that, when executed by a first user terminal, cause the first user terminal to perform a method including: receiving a first message including a first attached file, generating at least one encryption key for encrypting the first message by taking into account a type of the first attached file, encrypting the first attached file of the first message by using the encryption key, adding sender information of the first message to the first message, and transmitting the first message including the sender information to a message server, may be provided.
    Type: Grant
    Filed: July 6, 2016
    Date of Patent: March 12, 2019
    Assignee: Line Corporation
    Inventors: Ki Bin Shin, Jong Il Won
  • Patent number: 10229286
    Abstract: An online computer system including a database uses an encrypted table that allows for write protection its contents. Middleware logic operating on the system acts as an interface for access to the database, so that any business logic on the system accesses the database through simple procedural calls to the middleware rather than directly to the database itself. The middleware logic abstracts logic that helps implement write protection with the encrypted table. Data to be encrypted that has been traditionally written to other tables is migrated to the encrypted table, where the data encrypted using an authenticated encryption with additional data (AEAD) algorithm. To implement AEAD, the original table, column, and primary key indicating where the data would have otherwise been stored are together used as additional authenticated data (AAD). This tuple of information is also stored in the encrypted table.
    Type: Grant
    Filed: June 22, 2017
    Date of Patent: March 12, 2019
    Assignee: Airbnb, Inc.
    Inventors: Ismail Cem Paya, Nelson Aurel Gauthier, Kevin Nguyen
  • Patent number: 10223182
    Abstract: According to an embodiment, a communication device is connected with external devices by quantum communication channels and a classical communication channel, and generates an encryption key with photons exchanged over the quantum communication channel. The communication device includes an acquirer, a calculator, a selector, and a communicating unit. The acquirer is configured to acquire a quantum error rate for each quantum communication channel. The calculator is configured to calculate a metric of a first path to each external device based on the quantum error rate. The selector is configured to select a second path in the classical communication channel to a specific one of the external devices based on the metric. The communicating unit is configured to transmit an application key to the specific one of the external devices over the second path.
    Type: Grant
    Filed: October 16, 2015
    Date of Patent: March 5, 2019
    Assignee: Kabushiki Kaisha Toshiba
    Inventor: Ririka Takahashi
  • Patent number: 10223514
    Abstract: A method for improving unlocking speed and a mobile terminal are provided. The method is applicable to the mobile terminal in a screen-off state and includes the follows. An operation of entering an unlocking password by a user is received. Match the unlocking password entered and a preset password. A display screen of the mobile terminal is unlocked and lit up, at least after a successful match. The display screen of the mobile terminal is lit up by invoking light sensation data and color temperature data used when the display screen of the mobile terminal was lit up last time.
    Type: Grant
    Filed: November 28, 2017
    Date of Patent: March 5, 2019
    Assignee: Guangdong Oppo Mobile Telecommunications Corp., Ltd.
    Inventors: Haiping Zhang, Yibao Zhou