Patents Examined by Ellen Tran
  • Patent number: 10873448
    Abstract: An invention aimed at keeping in a secret and indecipherable form any type of information or data that can be stored, transmitted, displayed or expressed by any means or format, regardless of what its content or purpose may be and to keep the original information inaccessible to unauthorized persons, by means of a cryptographic technique, procedure or process of encryption widely applicable, either physically (hardware), logically (software) or mixed (Firmware) and other forms that may be created in the future.
    Type: Grant
    Filed: November 28, 2016
    Date of Patent: December 22, 2020
    Inventors: Agustin Murguia Cosentino, Santiago Murguia Cosentino, Julian Murguia Hughes
  • Patent number: 10872156
    Abstract: A method of scanning software code to identify security flaws or risks and reporting those flaws or risks to a software developer or other interested party, where the software code is written in a language for which a vulnerability scanner is not available.
    Type: Grant
    Filed: August 10, 2018
    Date of Patent: December 22, 2020
    Inventors: Laura J Schornack, Anna Borowski, Sandeep V Chandan, Sonia L D'Souza, Derek M Ferguson, Daniel F Gleeson, Sreevani Rachakonda, Kaushik Ravichandran, Ankit Shah, Dayann Thompson, Arunkumar Unniparambath
  • Patent number: 10873590
    Abstract: Disclosed are systems and methods for cloud detection, investigation and elimination of targeted attacks. In one exemplary aspect, the system comprises a computer protection module configured to: gather information on an object in a computer in a network; and save a security notification with the object in an object database in the network; and a module for protection against targeted attacks configured to: search for the object in a threat database in the network; add one or more tags to the object when the object is found in the threat database and adding a correspondence between a record in the object database and the threat database; and determine that a computer attack has occurred when the one or more tags correspond to signatures in a database of computer attacks.
    Type: Grant
    Filed: March 16, 2018
    Date of Patent: December 22, 2020
    Assignee: AO Kaspersky Lab
    Inventors: Sergey V. Gordeychik, Konstantin V. Sapronov, Yury G. Parshin, Teymur S. Kheirkhabarov, Sergey V. Soldatov
  • Patent number: 10868800
    Abstract: A secure communication system includes a wearable secure communication device which may receive and transmit information via a network. A wearable secure communication device may include a noise generator. The wearable secure communication device further includes a power input connection. Additionally, the wearable secure communication device may include a communication processor. The secure communication system and the wearable secure communication device may provide access to a secure information exchange system.
    Type: Grant
    Filed: August 3, 2018
    Date of Patent: December 15, 2020
    Assignee: WK Consulting, LLC
    Inventor: Wallace Lindsey
  • Patent number: 10860723
    Abstract: A compliance checker to verify that a device complies with a policy is described. In one embodiment, the compliance checker comprises a compliance checker agent, to initiate the compliance check, in response to receiving the request, and an encryption checker upper driver above a level of a disk encryption driver, and an encryption checker lower driver, below the level of the disk encryption driver with a comparator to determine whether known data read from the upper driver is identical to known data read from the lower driver. The compliance checker plug-in in one embodiment verifies the compliance status of the device, based on the data from the comparator.
    Type: Grant
    Filed: October 19, 2016
    Date of Patent: December 8, 2020
    Assignee: Alertsec, Inc.
    Inventors: Ebba Ulrika Margareta Blitz, Leif Olov Billstrom, Kurt Uno Lennartsson, Hans Fredrik Loevstedt, Erik Magnus Ahlberg
  • Patent number: 10862895
    Abstract: Systems and methods for NAC access policy creation and reconfiguration of access points to enforce same are provided. A NAC device maintains (i) an access point model that maps logical networks to a corresponding enforcement action implementation for each access point associated with a private network and (ii) access policies each specifying a current state of a particular endpoint device and an enforcement action, specified with reference to a logical network. Responsive to an event associated with an endpoint, the NAC device receives an attribute of the endpoint. A matching access policy is identified based on the attribute. The corresponding enforcement action implementation for the access point to which the endpoint is connected is retrieved based on the logical network specified in the matching access policy. Finally, the access point is reconfigured by the NAC device to perform the enforcement action based on the retrieved enforcement action implementation.
    Type: Grant
    Filed: October 8, 2018
    Date of Patent: December 8, 2020
    Assignee: Fortinet, Inc.
    Inventor: Bradley J. Trimby
  • Patent number: 10855659
    Abstract: An apparatus for securely configuring a tenant VLAN includes a processor and a memory that stores code executable by the processor. The code is executable by the processor to detect connection of a new device to a computing system. The new device is designated for use by a new tenant and the new device in a default state prior to configuration for use by the new tenant. The computing system is a multi-tenant system. The code is executable by the processor to command the new device to enter a provisioning state in response to detecting connection of the new device. The new device in the provisioning state is unable to access operational equipment of the computing system and data stored by tenants of the computing system.
    Type: Grant
    Filed: September 12, 2017
    Date of Patent: December 1, 2020
    Assignee: LENOVO Enterprise Solutions (Singapore) PTE. LTD
    Inventors: Gary D. Cudak, Fred A. Bower
  • Patent number: 10855689
    Abstract: Obtaining information may be increasingly more challenging in modern times. The systems described herein enable a user to have access to one or more data streams. For example, the data stream may include messages from a famous person provided to an online social networking service, where the messages may be limited character messages. Yet, in some instances, the data stream may also include images posted on a blog, videos posted on a social networking service for connecting people, a list of searches and/or search strings by a famous person, and a number of purchase orders by an actress. The systems may also control the user's access to the one or more data streams, possibly limiting the access to portions of the one or more data streams.
    Type: Grant
    Filed: February 25, 2019
    Date of Patent: December 1, 2020
    Assignee: PayPal, Inc.
    Inventors: Akshay Sanjeevaiah Krishnaiah, Sandy Lynn Godsey, Michael Charles Todasco, Rohan Baddam, Cheng Tian, Philip Chuang, Srivathsan Narasimhan
  • Patent number: 10841099
    Abstract: Method for generating a digital signature for a digital content using a computer and trustworthy signature hardware connected thereto for data exchange, includes generating a message digest from the digital content by an application executed on the computer; generating descriptive data relating to the electronic digital signature; transmitting the message digest and the descriptive data to the trustworthy signature hardware; outputting the descriptive data at an output device of the trustworthy signature hardware; carrying out a user interaction as precondition for the continuation of the method; generating signature data from the message digest and the descriptive data by the trustworthy signature hardware; and transmitting the signature data from the trustworthy signature hardware to the computer and in particular the application.
    Type: Grant
    Filed: July 17, 2015
    Date of Patent: November 17, 2020
    Inventor: Frank Morgner
  • Patent number: 10833852
    Abstract: Techniques to transmit encoded data along a physical medium, e.g. tape, and decode the transmitted data along the physical medium are provided. Some techniques include logic to encode data transmitted along a physical medium, such as a tape suitable for any purpose including the encoding of multimedia data, where the encoding is pursuant to a conversion between a first and second colorspace. The logic may further be configured to decode the data once it is received at a node along the tape, where the colorspace conversion provides the basis, key, or cipher for preforming the decoding operation. The logic may be further configured to alter the encryption and decryption basis, key, or cypher by altering the colorspace scheme defining the encoding (and by extension the decoding) during transmission, including a transmission that takes place after a previous transmission governed by the previously defined (and subsequently altered) colorspace conversion scheme. Other embodiments are described and claimed.
    Type: Grant
    Filed: October 3, 2019
    Date of Patent: November 10, 2020
    Assignee: Capital One Services, LLC
    Inventors: Jeremy Edward Goodsitt, Austin Grant Walters
  • Patent number: 10834130
    Abstract: A method by a security system for detecting malicious attempts to access a decoy database object in a database. The database includes database objects accessible by clients of the database called database clients. The method includes detecting access to a decoy database object of the database is being attempted by a database client over a connection to the database, where the decoy database object is a database object that is created for the purpose of deceiving an attacker as opposed to being a legitimate database object, determining that the connection is of an application connection type, where the application connection type is a type of connection over which queries generated by a database client are submitted, and responsive to the determination that the connection is of the application connection type, causing an alert to be generated.
    Type: Grant
    Filed: March 16, 2018
    Date of Patent: November 10, 2020
    Assignee: Imperva, Inc.
    Inventors: Elad Erez, Amichai Shulman
  • Patent number: 10834109
    Abstract: Particular embodiments described herein provide for an electronic device that can be configured to identify a process running on the electronic device, assign a reputation to the process if the process has a known reputation, determine if the process includes executable code, determine a reputation for the executable code, and combine the reputation for the executable code with the reputation assigned to the process to create a new reputation for the process.
    Type: Grant
    Filed: December 23, 2014
    Date of Patent: November 10, 2020
    Assignee: McAfee, LLC
    Inventor: Joel R. Spurlock
  • Patent number: 10819519
    Abstract: Data can be protected in a centralized tokenization environment. A security value is received by a central server from a client device. The central server accesses a token table corresponding to the client device and generates a reshuffled static token table from the accessed token table based on the received security value. When the client device subsequently provides data to be protected to the central server, the central server tokenizes the provided data using the reshuffled static token table and stores the tokenized data in a multi-tenant database. By reshuffling token tables using security values unique to client devices, the central server can protect and store data for each of multiple tenants such that if the data of one tenant is compromised, the data of each other tenant is not compromised.
    Type: Grant
    Filed: November 13, 2018
    Date of Patent: October 27, 2020
    Assignee: Protegrity Corporation
    Inventors: David Clyde Williamson, George Curran, Raul Ortega, Jan Boberg, Rajnish Jain, Yigal Rozenberg
  • Patent number: 10812501
    Abstract: Techniques for Domain Generation Algorithm (DGA) behavior detection are provided. In some embodiments, a system, process, and/or computer program product for DGA behavior detection includes receiving passive Domain Name System (DNS) data that comprises a plurality of DNS responses at a security device; and applying a signature to the passive DNS data to detect DGA behavior, in which applying the signature to the passive DNS data to detect DGA behavior further comprises: parsing each of the plurality of DNS responses to determine whether one or more of the plurality of DNS responses correspond to a non-existent domain (NXDOMAIN) response.
    Type: Grant
    Filed: February 1, 2018
    Date of Patent: October 20, 2020
    Assignee: Palo Alto Networks, Inc.
    Inventors: Wei Xu, Xin Ouyang
  • Patent number: 10790963
    Abstract: The blockchain generation apparatus 1 includes: a synchronizer 121 that acquires shared data 111 which includes the blockchain data 112 and transaction datasets 113 not included in the blockchain data 112; a transaction pattern count calculator 124 that calculates the number of transaction patterns for a generating party using the blockchain generation apparatus 1, based on the transaction datasets which are in the blockchain data 112 and are related to an identifier of the generating party; a block generation condition checker 125 that determines whether the generating party is qualified to generate the new blockchain data, based on the number of transaction patterns calculated by the transaction pattern count calculator; and a blockchain generator 126 that tries to generate the new blockchain by referring to the shared data 111 if the block generation condition checker 125 determines that the generating party is qualified.
    Type: Grant
    Filed: November 8, 2016
    Date of Patent: September 29, 2020
    Assignee: Nippon Telegraph and Telephone Corporation
    Inventors: Hiroki Watanabe, Akihito Akutsu, Yasuhiko Miyazaki, Atsushi Nakadaira, Shigeru Fujimura, Junichi Kishigami
  • Patent number: 10778431
    Abstract: An encryption device (500) includes an encryption unit (504), a detection element generation unit (505), and a transmission unit (506). The encryption unit (504) encrypts a plain text by using one of a pair of keys to generate an encrypted text into which the plain text has been encrypted and which can be subjected to homomorphic computation. The detection element generation unit (505) generates a detection element E used to detect a change in the encrypted text by using the one key and the encrypted text. The transmission unit (506) transmits the encrypted text and the detection element.
    Type: Grant
    Filed: January 18, 2016
    Date of Patent: September 15, 2020
    Inventors: Yutaka Kawai, Takato Hirano, Yoshihiro Koseki
  • Patent number: 10754984
    Abstract: In some examples, a method of privacy preservation in a security information sharing platform includes comparing, by a system comprising a hardware processor in the security information sharing platform that enables sharing of security information among a plurality of users, a set of profiles wherein each profile of the set of profiles is associated with an individual user; identifying, by the system based on the comparing, that a badge associated with a particular profile of the set of profiles is predictive of an identity of the individual user, the badge based on a contribution of security information by the individual user to the security information sharing platform, and the badge comprising user attributes associated with the individual user; and modifying, by the system based on the identifying, a visibility of the badge within the security information sharing platform.
    Type: Grant
    Filed: October 9, 2015
    Date of Patent: August 25, 2020
    Assignee: Micro Focus LLC
    Inventors: Joshua Hailpern, Tomas Sander
  • Patent number: 10749884
    Abstract: Techniques for ascertaining legitimacy of communications received during a digital interaction with a client device. The techniques include: receiving a communication; identifying from the communication a first secured token; processing the first secured token by: obtaining, from the first secured token, information indicating a state of the digital interaction; and using the information indicating the state to determine whether the communication is from the client device; and when it is determined that the communication is from the client device, causing at least one action responsive to the communication to be performed; updating the information indicating the state of the digital interaction to obtain updated information indicating the state of the digital interaction; and providing a second secured token to the client device for use in a subsequent communication during the digital interaction, the second secured token comprising the updated information indicating the state of the digital interaction.
    Type: Grant
    Filed: December 26, 2018
    Date of Patent: August 18, 2020
    Inventors: Christopher Everett Bailey, Randy Lukashuk, Gary Wayne Richardson
  • Patent number: 10735197
    Abstract: An embodiment herein provides a processor implemented method for blockchain-based secure credential and token management for open identity management that enables a first device to provision at least one additional device to present tokens issued to the first device, that includes i) creating, using a hardware-based cryptographic processor on a first device associated with an end user, a first set of credentials; ii) obtaining and caching at least one attestation token from one or attestation issuing parties, the at least one attestation token is restricted by default to be unusable from any device other than the first device; (iii) providing the at least one attestation token to at least one relying party that is interested in receiving attestations about the end user; and iv) signing a trust record on the blockchain using the first device associated with the end user.
    Type: Grant
    Filed: April 24, 2018
    Date of Patent: August 4, 2020
    Assignee: Workday, Inc.
    Inventors: Prakash Sundaresan, Lionello G. Lunesu, Antoine Cote
  • Patent number: 10735966
    Abstract: Systems and methods for initiating enrollment of a local device in a cloud environment using a separate device are presented. In an example embodiment, a device identifier for the local device is received from the local device by a separate device that is trusted by a cloud computing system. The separate device causes the displaying of an indicator for the local device. In response to receiving an activation of the indicator for the local device, the separate device issues a request to the cloud computing system to receive credential information enabling the local device to enroll with the cloud computing system. The separate device receives the credential information from the cloud computing system and transmits the credential information to the local device.
    Type: Grant
    Filed: August 30, 2017
    Date of Patent: August 4, 2020
    Assignee: General Electric Company
    Inventors: Jiaqi Wu, Jesus Valenzuela, Gregory Lammers