Patents Examined by Edward Zee
-
Patent number: 11930031Abstract: Techniques, methods and/or apparatuses are disclosed that enable passive scanning of a network. Through the disclosed techniques, methods and/or apparatuses, endpoint passive scanners are deployed at endpoints of the network to provide more comprehensive view of assets and asset information of the network. Also, this can enable better correlation of network data to location, and also enable improved vulnerability analysis for endpoint products.Type: GrantFiled: June 23, 2020Date of Patent: March 12, 2024Assignee: TENABLE, INC.Inventors: Benjamin Smith, Manoj Srivastava
-
Patent number: 11924215Abstract: The present disclosure generally relates to systems and methods that intelligently generate reassignment value conditions for reassigning access rights. The systems and methods include executing a trained contextual machine-learning model to generate predictions of value components of the reassignment value condition, which once satisfied, enables an access-right requestor to have an assigned access right reassigned to the access-right requestor.Type: GrantFiled: September 22, 2022Date of Patent: March 5, 2024Assignee: Live Nation Entertainment, Inc.Inventors: John Carnahan, Mathieu Rodrigue
-
Patent number: 11921903Abstract: Data is received that characterizes artefacts associated with each of a plurality of layers of a first machine learning model. Fingerprints are then generated for each of the artefacts in the layers of the first machine learning model. These generated fingerprints collectively form a model indicator for the first machine learning model. It is then determined whether the first machine learning model is derived from another machine learning model by performing a similarity analysis between the model indicator for the first machine learning model and model indicators generated for each of a plurality of reference machine learning models each comprising a respective set of fingerprints. Data characterizing the determination can be provided to a consuming application or process. Related apparatus, systems, techniques and articles are also described.Type: GrantFiled: June 1, 2023Date of Patent: March 5, 2024Assignee: HiddenLayer, Inc.Inventors: David Beveridge, Andrew Davis
-
Patent number: 11924166Abstract: In an embodiment, a computer-implemented method for providing dynamic mechanisms for resource-path-based, dynamic group membership support for local and external membership groups is described. A method comprises: detecting, by a group resolver implemented in a management and control plane, that information about an object stored in the plane was created or updated; determining whether a URI of the object matches a URI regular expression and other conditions specified in membership criteria created for a membership group; in response to determining that a URI of the object matches a URI regular expression and other conditions specified in membership criteria created for a membership group: distributing the information about the object to network agents implemented in transport nodes to cause the network agents to automatically update a group membership policy associated with the membership group; and wherein the group membership policy affects packet forwarding behavior of a forwarding node.Type: GrantFiled: July 23, 2021Date of Patent: March 5, 2024Assignee: VMware, Inc.Inventors: Dileep Devireddy, Hitesh Patel
-
Patent number: 11916936Abstract: The present disclosure relates generally to security solutions. More specifically, techniques (e.g., systems, methods, and devices) are provided to implement an incentivized-based intrusion detection system to detect malicious acts against an asset. The incentive may lure or facilitate the actor to provide information detecting malicious actions against an asset.Type: GrantFiled: September 29, 2022Date of Patent: February 27, 2024Assignee: NAGRAVISION S.A.Inventors: Pierre Dumont, Frederic Thabaret-Diebold, Cristian Ruiz, Riccardo Succa
-
Patent number: 11907343Abstract: Methods, systems, and apparatuses are described herein for improving the accuracy of authentication questions using transaction limitations provided by users. A request for access to an account associated with a user may be received from a user device. An account restrictions database may be queried to determine one or more transaction rules associated with the account. The one or more transaction rules may have been created by the user and indicate limitations on financial transactions that may be performed via the account. An authentication question may be generated that is associated with a violation of the one or more transaction rules. The authentication question may be provided to the user device, and a response to the authentication question may be received. Access to the account may be provided to the user device based on the response.Type: GrantFiled: May 7, 2021Date of Patent: February 20, 2024Assignee: Capital One Services, LLCInventors: Viraj Chaudhary, David Septimus, Jenny Melendez, Samuel Rapowitz, Tyler Maiman, Joshua Edwards
-
Patent number: 11909772Abstract: Systems and methods for providing least privilege access to a resource within a secured server are disclosed. The systems and method can include receiving an access request from a client requesting access to the resource, the access request comprising a role or policy associated with the client and one or more actions associated with the resource. A rules engine can be initialized, the engine defining one or more rules usable by the system to determine whether the access request complies with a least privilege policy. The systems and method can analyze the role or policy and the access request with the rules engine to determine whether the access request complies with the least privilege policy. When the access request complies with the rules, access to the resource can be granted; when the access request does not comply with the rules, access to the resource can be denied.Type: GrantFiled: March 8, 2021Date of Patent: February 20, 2024Assignee: CAPITAL ONE SERVICES, LLCInventors: Jordan Hale, Devon Powley, Wesley Sham, Thomas Shaffer, Jared Baker, John Bollinger, Robert Stump, Gabriel Duke
-
Patent number: 11907358Abstract: A communication device may receive from a server authentication information, and may register the authentication information in a memory. The communication device may send first location information in the communication device to the server. The communication device may register a first password in the memory in a case where the authentication information is received from the server and a registration request is received from the terminal device. The communication device may send the authentication information and second location information in the communication device to the server in a case where a first change instruction is obtained after the authentication information and the first password have been registered in the memory. The communication device may change the first password in the memory to a second password in a case where a change request is received from the terminal device.Type: GrantFiled: December 2, 2021Date of Patent: February 20, 2024Assignee: Brother Kogyo Kabushiki KaishaInventor: Satoru Yanagi
-
Patent number: 11895094Abstract: The example embodiments are directed to a system and method for managing blockchain transaction processing. In an example, the method includes one or more of receiving a message transmitted from a client device, the message including a predefined structural format for processing by a service providing computing system, determining a type of the message and detecting one or more sensitive fields within the message based on the determined type of the message, anonymizing values of the one or more sensitive fields within the message while leaving the predefined structural format intact, and transmitting the anonymized message including the one or more anonymized values with the predefined structural format remaining intact to the service providing computing system. The system can anonymize data from a private network before it is transmitted to a public service.Type: GrantFiled: November 18, 2019Date of Patent: February 6, 2024Assignee: International Business Machines CorporationInventors: David G. Druker, Matthew Elsner, Ariel Farkash, Igor Gokhman, Brian R. Matthiesen, Patrick R. Wardrop, Ilgen B. Yuceer
-
Patent number: 11895142Abstract: The systems and methods disclosed herein comprise computer-based platforms configured for automated early-stage application security monitoring for allowing users (e.g., application developers) to make decisions at the early stage of the application development.Type: GrantFiled: December 21, 2022Date of Patent: February 6, 2024Assignee: American Express Travel Related Services Company, Inc.Inventors: Asish Soudhamma, Dilip Kumar, Pratik Rajendraprasad Kasat, Andrew Michael Zammit, Gregory Huff
-
Patent number: 11882159Abstract: A client request message is received at a policy enforcement system from a client-side application intended for a server-side application. The client request message is forwarded to a server-side application. An application response message from the server-side application is intercepted at the policy enforcement system in response to the client request message, resulting in an intercepted application response message. The intercepted application response message is analyzed in view of context information and a network policy. Code to inject into the intercepted application response message is determined based on the analyzing. The code has instructions for eliminating accumulation of stale computing sessions. The code is injected into the intercepted application response message, resulting in a modified message. The modified message is forwarded to the client-side application for automatically executing the instructions on the client-side application.Type: GrantFiled: May 6, 2022Date of Patent: January 23, 2024Assignee: Oracle International CorporationInventors: Ranjan Khanna, Chuni Lal Kukreja, Sreenivasa Chitturi
-
Patent number: 11874954Abstract: The present disclosure prevents the leakage of user data by preserving user data working not in an electronic computing machine. A part of a storage area of a main memory of a user terminal is used as a RAM disk. User data working is encrypted and stored in the RAM disk. The user data stored in the RAM disk is sent to a network storage, the RAM disk and the network storage are synchronized. Since the user data is controlled by using a driverware technology inside the electronic computing machine, and sent to the network, therefore the security is ensured.Type: GrantFiled: November 27, 2019Date of Patent: January 16, 2024Assignee: SCIENCE PARK CORPORATIONInventor: Koichiro Shoji
-
Patent number: 11843700Abstract: Example embodiments of systems and methods for data transmission between a contactless card, a client device, and one or more servers are provided. The contactless card may include one or more processors and memory, which may include one or more applets. The client device may include one or more processors and memory. The client device may be in data communication with the contactless card. One or more servers may be in data communication with the client device. A first set of information may be transmitted from the contactless card to the client device. The first set of information may include one or more links to activate the contactless card via a designated email program. Upon validation of the first set of information by the one or more servers, the contactless card may be activated.Type: GrantFiled: July 26, 2022Date of Patent: December 12, 2023Assignee: CAPITAL ONE SERVICES, LLCInventors: Jeffrey Rule, Melissa Heng, Wayne Lutz, James Ashfield, Colin Hart, Rajko Ilincic
-
Patent number: 11836241Abstract: Methods, computer-readable media, software, and apparatuses may assist a user in automatically updating their personal information across a plurality of entities which have previously stored the user's personal information.Type: GrantFiled: March 17, 2020Date of Patent: December 5, 2023Assignee: Allstate Insurance CompanyInventors: Ullas Unnikrishnan, Nicole Kristine Frana, Daniel Carrasco Garcia, Joe Rule, E. Mitchell Hopper
-
Patent number: 11829475Abstract: The present disclosure describes systems and methods for hardware-assisted malware detection. One such system comprises a memory; and a hardware processor of a computing device operatively coupled to the memory. The hardware processor is configured to execute a software application suspected of being malware; monitor behavior of the software application at run-time; and acquire an input time sequence of data records based on a trace analysis of the software application, wherein the input time sequence comprises a plurality of features of the software application. The hardware processor is further configured to classify the software application as being a malicious software application based on the plurality of features of the software application; and output a ranking of a subset plurality of features by their respective contributions towards the classification of the software application as being malicious software.Type: GrantFiled: October 13, 2021Date of Patent: November 28, 2023Assignee: University of Florida Research Foundation, Inc.Inventors: Prabhat Kumar Mishra, Zhixin Pan, Jennifer M. Sheldon
-
Patent number: 11829516Abstract: Systems and methods for automated actions for application policy violations are disclosed. For example, policy violation evaluation components may monitor requests and/or responses from one or more applications to identify content policy violations. When a violation is identified, an automated decision engine utilizes data representing the policy violation along with, in example, contextual information about the policy violation to identify a rule from a rules database that is associated with the policy violation. An action is determined from the selected rule, and a command is generated to perform the action in response to the policy violation.Type: GrantFiled: September 30, 2020Date of Patent: November 28, 2023Assignee: Amazon Technologies, Inc.Inventor: Madhura Ashwin Raj
-
Patent number: 11831673Abstract: Aspects of the present disclosure involve systems, methods, computer program products, and the like, for an orchestrator device associated with a scrubbing environment of a telecommunications network that receives one or more announced routing protocol advertisements from a customer device under an attack. In response to receiving the announcement, the orchestrator may configure one or more scrubbing devices of the network to begin providing the scrubbing service to packets matching the received routing announcement. A scrubbing service state for the customer may also be obtained or determined by the orchestrator. With the received route announcement and the customer profile and state information, the orchestrator may provide instructions to configure the scrubbing devices of the network based on the received information to dynamically automate scrubbing techniques without the need for a network administrator to manually configure the scrubbing environment or devices.Type: GrantFiled: September 2, 2022Date of Patent: November 28, 2023Assignee: Level 3 Communications, LLCInventors: Todd J. Williamson, Brent W. Smith
-
Patent number: 11822659Abstract: Disclosed herein are systems and method for anti-malware scanning, including identifying a plurality of objects in a backup archive that is connected to a first network comprising a plurality of computing devices; scanning the plurality of objects in the backup archive to generate a whitelist indicating a subset of the plurality of objects that do not need to be scanned at a subsequent time; performing, using the whitelist, a first malware scan in a computing device of the plurality of computing devices; detecting that the computing device has left the first network to join a second network; and performing a second malware scan on the computing device, wherein the second malware scan uses a different whitelist of the second network, and wherein the second malware scan comprises scanning a first object that is not in the different whitelist and was not scanned in the first malware scan.Type: GrantFiled: January 5, 2023Date of Patent: November 21, 2023Assignee: Acronis International GmbhInventors: Dmitry Gryaznov, Oleg Ishanov, Vladimir Strogov, Andrey Kulaga, Igor Kornachev, Stanislav Protasov, Serguei Beloussov
-
Patent number: 11818144Abstract: A security appliance monitors streams of events and detects anomalous behavior by users with respect to software defined infrastructure. The security appliance creates baselines of activities for each user. After generating baselines, the security appliance compares events to the activity baselines of users to detect deviations. If a deviation is detected, then a violation report is generated.Type: GrantFiled: April 11, 2022Date of Patent: November 14, 2023Assignee: Palo Alto Networks, Inc.Inventors: Chandra Mouleeswaran, Wayne Jensen
-
Patent number: 11818264Abstract: Disclosed are various embodiments for implementing a key escrow system without disclosure of a client's encryption key to third parties. An encryption key is split into a plurality of key segments pursuant to a shared secret protocol. A plurality of peer client devices are then identified. Each peer client device in the plurality of peer client devices is then verified and the respective one of the plurality of key segments are sent to a respective one of the plurality of peer client devices. A response is then received from each respective one of the plurality of peer client devices, the response confirming receipt of the respective one of the plurality of key segments. A list identifying the plurality of peer client devices is finally provided to a key escrow service, the list comprising key-value pairs that identify each respective one of the plurality of peer client devices and the respective one of the plurality of key segments.Type: GrantFiled: June 22, 2021Date of Patent: November 14, 2023Assignee: VMWARE, INC.Inventors: Chaoting Xuan, Qimin Yao, Litao Shen