Patents Examined by Khoi V Le
  • Patent number: 11763188
    Abstract: Techniques that facilitate layered stochastics anonymization of data are provided. In one example, a system includes a machine learning component and an evaluation component. The machine learning component performs a machine learning process for first data associated with one or more features to generate second data indicative of one or more example datasets within a degree of similarity to the first data. The first data and the second data comprise a corresponding data format. The evaluation component evaluates the second data for a particular feature from the one or more features and generates third data indicative of a confidence score for the second data.
    Type: Grant
    Filed: May 3, 2018
    Date of Patent: September 19, 2023
    Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATION
    Inventors: Patrick Watson, Maria Chang, Tengfei Ma, Aldis Sipolins
  • Patent number: 11757893
    Abstract: Embodiments of the present invention provide a system for authorizing entity users based on augmented reality and LiDAR technology. In particular, the system may be configured to determine that a user has accessed an entity application provided by an entity via a user device, receive a unique identifier from the user device of the user, via the entity application, where the unique identifier is scanned using LiDAR technology present in the user device of the user, determine location of the user based on the unique identifier, determine an entity device associated with the unique identifier and location of the user, perform authentication of the user using at least one authentication method, determine that the authentication is successful, and in response to determining that the authentication is successful, provide access to an entity device.
    Type: Grant
    Filed: March 11, 2021
    Date of Patent: September 12, 2023
    Assignee: BANK OF AMERICA CORPORATION
    Inventors: Elliott Leonard Lillard, Regina Yee Cadavid, Gloria Youngsook Joo, Jinyoung Nathan Kim, Ramkumar Korlepara, Nia Mack, Philip Lone Mintac, Michael Jacob Richardson, Brandon Sloane, Srilekha Mudumbai Srinivasa
  • Patent number: 11755349
    Abstract: The disclosure provides an approach for authenticating a user of a computer system, wherein the computer system implements a virtual desktop infrastructure (VDI), the method comprising connecting to a computing device through a network, receiving from the computing device authentication credentials, and determining whether the authentication credentials match an authorized user of the computer system. The approach further comprises extracting from the computing device features of the computing device, retrieving a machine learning (ML) model associated with the authorized user, wherein the ML model is at least one of (a) a supervised ML model or (b) an unsupervised ML model, and executing the ML model to authenticate the features of the computing device.
    Type: Grant
    Filed: November 1, 2021
    Date of Patent: September 12, 2023
    Assignee: VMWARE, INC
    Inventors: Sisimon Soman, Matthew Conover, Arindam Nag
  • Patent number: 11757858
    Abstract: A method that includes operating a bus monitoring system having at least one interface configured to be coupled to at least one communication bus and receive bus traffic transmitted over the communication bus(es). The method also includes, using a device authentication system of the bus monitoring system, analyzing the bus traffic received via the at least one interface. Analyzing the bus traffic includes obtaining a message in the bus traffic (where the message identifies a source), identifying a support vector machine that corresponds to the source of the message, applying a wave transform to a waveform of the received message in order to generate a transformed waveform, inputting the transformed waveform to the identified support vector machine, and taking action in response to the identified support vector machine determining that the transformed waveform or the associated information does not correspond to the source.
    Type: Grant
    Filed: April 21, 2020
    Date of Patent: September 12, 2023
    Assignee: Raytheon Company
    Inventors: Amanda L. Buchanan, David A. Kwietniewski
  • Patent number: 11757896
    Abstract: In some embodiments, Uniform Resource Locator (URL) parameters may be used to bind access tokens to authorize web-browser-initiated network operations. In some embodiments, a user input at a data exchange gateway associated with a first website to perform a first network operation (e.g., a request to access resources associated with the first website) may be detected. In response to the detected user input, an access token may be generated based on user specific information associated with the user, where the access token is associated with one or more network operation parameters. In response to a use of the access token for authorizing the first network operation and successful authorization of the first network operation, the access token may be configured to be bound to a first URL identifier parameter associated with the first website.
    Type: Grant
    Filed: October 31, 2022
    Date of Patent: September 12, 2023
    Assignee: Capital One Services, LLC
    Inventors: Varun Gupta, Allison Fenichel, Johanna Davis
  • Patent number: 11756660
    Abstract: A system includes a plurality of tracking devices, such as RFID tags, affixed to items, such as vehicles, a data collection engine, client devices and backend devices. The backend devices include trained machine learning models, business logic, and attributes of a plurality of events. A plurality of data collection engines and systems send attributes of new events to the backend devices. The backend devices can track the items and predict particular outcomes of new events based upon the attributes of the new events utilizing the trained machine learning models.
    Type: Grant
    Filed: April 17, 2020
    Date of Patent: September 12, 2023
    Assignee: Brain Trust Innovations I, LLC
    Inventor: David LaBorde
  • Patent number: 11750563
    Abstract: Techniques for providing flow meta data exchanges between network and security functions for a security service are disclosed. In some embodiments, a system/process/computer program product for providing flow meta data exchanges between network and security functions for a security service includes receiving a flow at a network gateway of a security service from a software-defined wide area network (SD-WAN) device; inspecting the flow to determine meta information associated with the flow; and communicating the meta information associated with the flow to the SD-WAN device.
    Type: Grant
    Filed: July 14, 2021
    Date of Patent: September 5, 2023
    Assignee: Palo Alto Networks, Inc.
    Inventors: Anand Oswal, Arivu Mani Ramasamy, Bhaskar Bhupalam, Shu Lin
  • Patent number: 11729614
    Abstract: The present invention provides a method of allowing a wearable device connected to a user equipment device to communicate with a mobile communications network, wherein the user equipment device transmits non-access stratum messages to the mobile communications network for performance of an identification and an authentication of the wearable device in the mobile communications network and monitors transmissions sent by the mobile communications network in paging occasions, wherein paging occasions for paging messages intended for the wearable device are time aligned with paging occasions for paging messages intended for the user equipment device.
    Type: Grant
    Filed: July 26, 2017
    Date of Patent: August 15, 2023
    Assignee: IPCOM GMBH & CO. KG
    Inventors: Achim Luft, Martin Hans
  • Patent number: 11729155
    Abstract: A first host receives a packet from a first compute node for a second compute node of a second host. The payload is larger than a maximum transmission unit size. The first packet is encapsulated with an outer header. The first host analyzes a length of at least a portion of the outer header in determining a size of an encrypted segment of the payload. Then, the first host forms a plurality of packets where each packet in the packets includes an encrypted segment of the payload, a respective encryption header, and a respective authentication value. The payload of the first packet is segmented to form a plurality of encrypted segments based on the size. The first host sends the packets to the second host and receives an indication that a packet was not received. A second packet including the encrypted segment is sent to the second compute node.
    Type: Grant
    Filed: August 27, 2021
    Date of Patent: August 15, 2023
    Assignee: NICIRA, INC.
    Inventors: Wenyi Jiang, Daniel G. Wing, Bin Qian, Dexiang Wang
  • Patent number: 11729190
    Abstract: An industrial asset may have monitoring nodes that generate current monitoring node values. A dynamic, resilient estimator may split a temporal monitoring node space into normal and one or more abnormal subspaces associated with different kinds of attack vectors. According to some embodiments, a neutralization model is constructed and trained for each attack vector using supervised learning and the associated abnormal subspace. In other embodiments, a single model is created using out-of-range values for abnormal monitoring nodes. Responsive to an indication of a particular abnormal monitoring node or nodes, the system may automatically invoke the appropriate neutralization model to determine estimated values of the particular abnormal monitoring node or nodes (e.g., by selecting the correct model or using out-of-range values). The series of current monitoring node values from the abnormal monitoring node or nodes may then be replaced with the estimated values.
    Type: Grant
    Filed: October 29, 2019
    Date of Patent: August 15, 2023
    Assignee: GENERAL ELECTRIC COMPANY
    Inventors: Subhrajit Roychowdhury, Masoud Abbaszadeh, Mustafa Tekin Dokucu
  • Patent number: 11711357
    Abstract: Various embodiments of the present application set forth a computer-implemented method that includes receiving, by a first service operating within a computing system, a modified identity data object from a second service operating within the computing system, where the modified identity data object includes at least one identifier associated with a client of the computing system determining, by the first service, that the second service performed a first action on an identity data object to generate the modified identity data object, and validating the modified identity data object based on whether the second service is authorized to perform the first action.
    Type: Grant
    Filed: August 16, 2019
    Date of Patent: July 25, 2023
    Assignee: NETFLIX, INC.
    Inventors: Travis Nelson, Justin Ryan, Sunny Singh
  • Patent number: 11711373
    Abstract: Providing access to an external application includes receiving login credentials to access a client instance, wherein the login credentials are associated with a user account, causing the client instance to provide a link to an external application in the client instance, detecting a request to navigate to the external application from the link, generating a authentication record for the user account and the external application, storing information for the user account based on the authentication record, and generating a URL for the external application based on the authentication record. Providing access to the external application also includes receiving, from a remote client device hosting the external application, an authorization request comprising nonce information, determining that the user account is authorized to access the external application based on the authentication table, and providing access to the external application.
    Type: Grant
    Filed: October 27, 2020
    Date of Patent: July 25, 2023
    Assignee: ServiceNow, Inc.
    Inventors: Jerome Daniel O'Connell, John H. Kim, Subbaraya Kumar Deverakonda Venkata, Kai Xu
  • Patent number: 11704410
    Abstract: A system for detecting malicious software, comprising at least one hardware processor adapted to: execute a tested software object in a plurality of computing environments each configured according to a different hardware and software configuration; monitor a plurality of computer actions performed in each of the plurality of computing environments when executing the tested software object; identify at least one difference between the plurality of computer actions performed in a first of the plurality of computing environments and the plurality of computer actions performed in a second of the plurality of computing environments; and instruct a presentation of an indication of the identified at least one difference on a hardware presentation unit.
    Type: Grant
    Filed: May 19, 2021
    Date of Patent: July 18, 2023
    Assignee: NEC Corporation Of America
    Inventors: Tsvi Lev, Yaacov Hoch
  • Patent number: 11700128
    Abstract: A system for cryptographically secured outputs from telemedicine sessions includes a computing device at a first location, the computing device configured to initiate a secure communication interface between the computing device and a client device associated with a human subject and at a second location, receive, from at least a remote sensor at the second location, a plurality of current biological data associated with the human subject, input, using the secure communication interface, an identifier of a biochemical element, determine, as a function of the plurality of current biological data, a tolerability of the biochemical element, and generate a digitally signed authorization datum as a function of the determination.
    Type: Grant
    Filed: February 1, 2021
    Date of Patent: July 11, 2023
    Assignee: KPN INNOVATIONS, LLC.
    Inventor: Kenneth Neumann
  • Patent number: 11700529
    Abstract: A method for authenticating a mobile device in real-time. The method includes detecting the mobile device, sending a text message containing a unique uniform resource locator (“URL”) to the mobile device, and detecting an access of the unique URL by the mobile device through a first communication path. In response to detecting the access of the unique URL, requesting and subsequently receiving, by the host system in real-time, a phone number and a subscriber identification ID associated with the mobile device through a second communication path distinct from the first communication path, and a device fingerprint of the mobile device through the first communication path. The method further includes initiating a risk analysis based on the phone number, the subscriber ID, and the device fingerprint and determining an authentication status of the mobile device based on the risk analysis.
    Type: Grant
    Filed: January 27, 2021
    Date of Patent: July 11, 2023
    Assignee: The Western Union Company
    Inventors: Abhinav Gupta, Bernard McManus, Don McNelley
  • Patent number: 11695763
    Abstract: Methods and systems are presented for generating a device fingerprint based on data obtained from one or more sensors on a device. A plurality of data points corresponding to sensor readings are obtained from the one or more sensors on the device. A set of time-domain features and a set of frequency-domain features are extracted from the plurality of data points and inputted to a neural network trained using a triplet network. A device fingerprint that may be used to identify the device is obtained from the neural network.
    Type: Grant
    Filed: September 11, 2020
    Date of Patent: July 4, 2023
    Assignee: PAYPAL, INC.
    Inventors: Zhe Chen, Hewen Wang
  • Patent number: 11689513
    Abstract: Systems, methods, and software are disclosed herein to execute functionalities of a blockchain operating system. A transactional request for an operating system instruction is received from a user device in a distributed network of nodes. The transactional request is authenticated in the distributed network of nodes based on data associated with the transactional request. A blockchain is then evaluated for one or more scripts associated with the transactional request. In response, the operating system instruction is generated based on the one or more scripts. The operating system instruction is then transferred to the user device in the distributed network or nodes.
    Type: Grant
    Filed: July 17, 2020
    Date of Patent: June 27, 2023
    Assignee: Americorp Investments LLC
    Inventor: Jordan Simons
  • Patent number: 11683153
    Abstract: There is provided a method including receiving a playback system identifier corresponding to a playback system, generating a blockchain corresponding to a content identifier identifying a content, wherein the blockchain is uniquely associated with the content identifier, establishing, in the blockchain, a block corresponding to the playback system identifier, sending an encrypted version of the content to the playback system, and in response to one or more updates to the blockchain by the playback system, providing a content encryption key to the playback system for decrypting the encrypted version of the content.
    Type: Grant
    Filed: March 30, 2021
    Date of Patent: June 20, 2023
    Assignee: Disney Enterprises, Inc.
    Inventors: Artin Nazarian, Mark Arana, Derek Prestegard
  • Patent number: 11683319
    Abstract: A system and process for applying access groups for controlling data access, by a processor device. The process receives from a user a request to access data associated with a person from a file system, whereby the request invokes at least one software method. Next method interception is performed by matching the at least one software method. Group membership of the user and at least one group membership of the person is accessed. Determining if each of the following conditions of i) the user is a member of a specific group and ii) the specific group contains the person are verified. In response to the conditions being verified, the process sends the data to a user device to display to the user, otherwise denying the request to access data. Each group can have one or more criteria, which add patients to that group based on the conditions of those criteria.
    Type: Grant
    Filed: December 18, 2020
    Date of Patent: June 20, 2023
    Assignee: International Business Machines Corporation
    Inventor: Dominic James Panarello
  • Patent number: 11683183
    Abstract: Systems and methods are described that include a plurality of devices triggered to be configured with a portable user account to synchronize account events to a distributed log. The plurality of devices includes at least one device configured to trigger a query to determine access rights for the at least one other device. In response to receiving an approval response to the query, the at least one device assigns a provision status to the at least one other device, provides, for the at least one other device, access to at least a subset of the portable user account according to the assigned provision status, and updates the distributed log to include the at least one other device based on the provision status.
    Type: Grant
    Filed: October 6, 2020
    Date of Patent: June 20, 2023
    Assignee: Google LLC
    Inventor: Jody Sankey