Patents Examined by Matthew Smithers
  • Patent number: 10929540
    Abstract: There is disclosed in one example a computing apparatus, including: a hardware platform including a processor and a memory; a whitelist; an updater, the updater being an executable object authorized to modify files within the whitelist and to launch one or more child processes; and instructions encoded within the memory to provide a system management agent to: maintain a chain of trust between the one or more child processes and the updater, wherein the one or more child processes inherit whitelist permissions associated with the updater; and track the chain of trust across a system reboot, including granting a child process the chain of trust after a reboot only if the child process has associated with it a valid certificate.
    Type: Grant
    Filed: September 10, 2019
    Date of Patent: February 23, 2021
    Assignee: McAfee, LLC
    Inventors: Preet Mohinder, Ratnesh Pandey, Jaskaran Singh Khurana, Amritanshu Johri
  • Patent number: 10931649
    Abstract: A communication network encrypts a first portion of a transaction associated with point-to-point communications using a point-to-point encryption key. A second portion of the transaction associated with end-to-end communications is encrypted using an end-to-end encryption key.
    Type: Grant
    Filed: August 20, 2020
    Date of Patent: February 23, 2021
    Assignee: Seven Networks, LLC
    Inventors: Lee R. Boynton, Trevor A. Fiatal, Scott M. Burke, Mark Sikes
  • Patent number: 10924484
    Abstract: A method and system for determining a cost to allow a blockchain-based admission to a protected entity. The method includes identifying, in a blockchain network, a conversion transaction identifying a conversion of a first-type of access tokens with access tokens of a second-type, wherein the transaction designates at least the protected entity; determining a conversion value for converting the first-type of access tokens into the second-type access tokens, wherein the conversion value is determined based on at least one access parameter; and converting, based on the determined conversion value, a first sum of the first-type access tokens into a second sum of the second-type access-tokens, wherein a client spends the second sum of the second-type access tokens to access the protected entity, the determined conversion value is the access cost to the protected entity.
    Type: Grant
    Filed: May 31, 2018
    Date of Patent: February 16, 2021
    Assignee: Radware, Ltd.
    Inventors: Alon Lelcuk, David Aviv
  • Patent number: 10915909
    Abstract: Embodiments of the present disclosure provide a terminal verification method, a terminal device and a computer readable storage medium. The method includes: reading machine verification parameters of a target terminal, determining that the target terminal is a fake in response to determining that the machine verification parameters of the target terminal satisfy a first condition, a second condition and a third condition, and displaying on a user interface of the target terminal that the target terminal is a fake.
    Type: Grant
    Filed: June 6, 2018
    Date of Patent: February 9, 2021
    Assignee: ZHUHAI JUNTIAN ELECTRONIC TECHNOLOGY CO., LTD.
    Inventors: Zhengyang Duan, Honglei Chu, Liming Zhang, Chengzhi Jiang
  • Patent number: 10915666
    Abstract: Embodiments of the present disclosure provide a terminal verification method, a terminal device and a computer readable storage medium. The method includes: reading machine verification parameters of a target terminal, determining that a system of the target terminal is modified in response to determining that the machine verification parameters of the target terminal satisfy a first condition, a second condition and a third condition, and displaying on a user interface of the target terminal that, the system of the target terminal is modified.
    Type: Grant
    Filed: June 5, 2018
    Date of Patent: February 9, 2021
    Assignee: ZHUHAI JUNTIAN ELECTRONIC TECHNOLOGY CO., LTD.
    Inventors: Zhengyang Duan, Honglei Chu, Liming Zhang, Chengzhi Jiang
  • Patent number: 10917387
    Abstract: An information processing device includes: a first communication unit which transmits and receives communication data through a network connected to a first GW, a second GW, and at least one electronic control unit; a monitoring unit which determines whether the communication data is normal; and a notification unit which transmits, at least to the second GW, a notification that brings the network to a state in which one of a transfer function of the first GW and a transfer function of the second GW gateway is active and the other one of the transfer functions is inactive, when the monitoring unit does not determine that the communication data is normal.
    Type: Grant
    Filed: July 23, 2018
    Date of Patent: February 9, 2021
    Assignee: PANASONIC INTELLECTUAL PROPERTY MANAGEMENT CO., LTD.
    Inventors: Toshihisa Nakano, Jun Anzai, Masato Tanabe, Kaoru Yokota
  • Patent number: 10911431
    Abstract: The present disclosure describes techniques that allow for a client-side application, located on a first client device, to generate a random encryption key and encrypt locally-stored application data with the random encryption key. In order to ensure that the client-device application is unable to decrypt the locally-stored encrypted application data prior to authenticating with an external authentication source (i.e., SSO, IdP), the client-side application divides the random encryption key into at least a first share and a second share according to a secret sharing algorithm. The first share is transmitted to a trusted third party, while the second share is encrypted locally and stored in a secure location on the client device. Upon successful authentication, the trusted third party returns the second share to the first client device. The client-side application derives the random encryption key and decrypts the locally-stored encrypted application data to be used by the client-side application.
    Type: Grant
    Filed: August 21, 2018
    Date of Patent: February 2, 2021
    Assignee: Wickr Inc.
    Inventors: Thomas Michael Leavy, Joël Alwen, Christopher Howell
  • Patent number: 10911419
    Abstract: An apparatus and method for encrypting messages from a first node splits the message into a plurality of message units, each of which is encrypted. The encrypted message units are split into path units, each of which is directed to a different route path to a destination node. At the destination node, the path units are received and reassembled into encrypted message units, which are decrypted into message fragments and concatenated to form a message corresponding to the original one sent.
    Type: Grant
    Filed: April 2, 2018
    Date of Patent: February 2, 2021
    Assignee: Silicon Laboratories Inc.
    Inventors: Sriram Mudulodu, Venkat Mattela
  • Patent number: 10909251
    Abstract: Host data can be received at a memory sub-system. A determination can be made that the host data exceeds a threshold size associated with an encryption operation. The host data can be separated into segments based on the threshold size associated with the encryption operation. Each of the segments can be encrypted based on the encryption operation. Furthermore, the encrypted segments can be stored at the memory sub-system.
    Type: Grant
    Filed: August 24, 2018
    Date of Patent: February 2, 2021
    Assignee: MICRON TECHNOLOGY, INC.
    Inventors: Jeffrey Munsil, Michael Danielson
  • Patent number: 10909267
    Abstract: A computer system detects, at time period one, that a first user of a computing device has not paid a transmitted invoice. In response to the detecting, at time period one, that the first user of the computing device has not paid the transmitted invoice, the computer system applies one or more restrictions to a first social media account corresponding to the first user. In response to the detecting, at time period two, that the first user has paid the transmitted invoice, the computer system removes the one or more restrictions from the first social media account, wherein time period two is after time period one.
    Type: Grant
    Filed: August 20, 2018
    Date of Patent: February 2, 2021
    Assignee: PayPal, Inc.
    Inventor: Bryant Skarda
  • Patent number: 10909232
    Abstract: Embodiments of the present disclosure provide a terminal verification method, a terminal device and a computer readable storage medium. The method includes: reading machine verification parameters of a target terminal, determining that the target terminal is incompletely configured in response to determining that the machine verification parameters of the target terminal satisfy a first condition and a second condition, and displaying on a user interface of the target terminal that, the target terminal is incompletely configured. The machine verification parameters of the target terminal include N terminal configuration parameters. The first condition includes abnormally reading the GPU manufacturer parameter and the GPU renderer parameter. The second condition includes normally reading a first group of terminal configuration parameters of the machine verification parameters of the target terminal. The first group of terminal configuration parameters includes (N?2) terminal configuration parameters.
    Type: Grant
    Filed: June 6, 2018
    Date of Patent: February 2, 2021
    Assignee: ZHUHAI JUNTIAN ELECTRONIC TECHNOLOGY CO., LTD.
    Inventors: Zhengyang Duan, Honglei Chu, Liming Zhang, Chengzhi Jiang
  • Patent number: 10911249
    Abstract: A first communication request including a digital certificate of a first node sent from the first node in a blockchain is received at a second node in the blockchain, where the digital certificate of the first node is stored in the blockchain. Certificate validity information stored in the blockchain and associated with the nodes in the blockchain is accessed by the second node based on the first communication request, where the certificate validity information reflects the validity status information of digital certificates of the nodes in the blockchain. A verification of whether the digital certificate of the first node is valid is performed by the second node based on the first communication request and the accessed certificate validity information. A communication connection to the first node is established by the second node in response to verifying that the digital certificate of the first node is valid.
    Type: Grant
    Filed: December 19, 2019
    Date of Patent: February 2, 2021
    Assignee: Advanced New Technologies Co., Ltd.
    Inventor: Honglin Qiu
  • Patent number: 10902099
    Abstract: A method for generating debuggable obfuscated script includes embedding into a Web page, a query to a data store of a client for a key disposed within fixed storage of the client, further embedding into the Web page both an encrypted network reference to an un-obfuscated, clear form of a script, the encrypted network reference being decryptable with the key, and also an un-encrypted reference to an obfuscated form of the script and yet further embedding into the Web page, a selection directive selecting and decrypting the encrypted network reference to retrieve the un-obfuscated form upon loading the Web page on the condition that the key is found in the fixed storage, but otherwise selecting the un-encrypted reference to retrieve the obfuscated form. The method additionally includes serving the Web page to the client.
    Type: Grant
    Filed: July 12, 2019
    Date of Patent: January 26, 2021
    Assignee: International Business Machines Corporation
    Inventors: Giulia Carnevale, Marco Gianfico, Ciro Ragusa, Roberto Ragusa
  • Patent number: 10902153
    Abstract: Methods, systems and computer program products for operating a mobile device in a limited access mode are provided. Aspects include detecting an input from a user via an input device of the mobile device, the input configured to place the mobile device in the limited access mode. Aspects also include determining an active application of the mobile device at a time of the detected input and restricting the mobile device from performing one or more tasks based on the active application of the mobile device at the time of the detected input, wherein the one or more tasks include switching from the active application.
    Type: Grant
    Filed: June 29, 2018
    Date of Patent: January 26, 2021
    Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATION
    Inventors: Ying Li, Jia Yu Hu, Chi Yang Li, Fei Shen
  • Patent number: 10897481
    Abstract: A relay device coupled to a network including a plurality of information processing devices, the relay device includes a port coupled to any one of the plurality of information processing devices, and a processor coupled to the port and configured to specify a first number which is a number of packets of a first communication protocol transmitted from the port, specify a second number which is a number of packets of the first communication protocol received at the port, and determine, based on comparison of a ratio of the first number and the second number and a threshold corresponding to a third number which is a number of the plurality of information processing devices included in the network, whether an attack by at least one information processing device of the plurality of information processing devices occurs.
    Type: Grant
    Filed: May 14, 2018
    Date of Patent: January 19, 2021
    Assignee: FUJITSU LIMITED
    Inventor: Yoshihiro Takabe
  • Patent number: 10897475
    Abstract: In one embodiment, a device in a network intercepts a Domain Name System (DNS) query sent by a node in the network to a DNS service. The device inserts metadata information about the node into the DNS query before sending the DNS query on to the DNS service. The device extracts policy information regarding the node from a DNS response sent from the DNS service back to the node in response to the DNS query. The device implements a network policy for the node within the network based on the policy information extracted from the DNS response.
    Type: Grant
    Filed: August 10, 2017
    Date of Patent: January 19, 2021
    Assignee: Cisco Technology, Inc.
    Inventors: Joseph Michael Clarke, Charles Calvin Byers, Gonzalo Salgueiro
  • Patent number: 10897483
    Abstract: A method for automated determination of IP address information of malicious attacks. An intrusion detection system may receive an index tree for storing IP addresses in one or more nodes of the index tree in a predefined sorting order. The instruction detection system may receive a data structure including a first set of one or more IP addresses from a honeypot system. The intrusion detection may receive unstructured data indicative of a second set of one or more IP addresses from a predefined data source. The intrusion detection system may process the unstructured data to determine the second set of one or more IP addresses. The intrusion detection system may insert each IP address of the first and second sets of one or more IP addresses into one or more nodes of the index tree.
    Type: Grant
    Filed: August 10, 2018
    Date of Patent: January 19, 2021
    Assignee: International Business Machines Corporation
    Inventors: Dirk Harz, Matthias Seul, Jens Thamm, Gideon Zenz
  • Patent number: 10885216
    Abstract: Secure substring searching on encrypted data may involve a first preprocessing comprising fragmenting a plaintext string slated for remote secure storage, in a plurality of overlapping plaintext substrings. A second preprocessing encrypts these substrings into ciphertexts (e.g., utilizing Frequency-Hiding Order Preserving Encryption) further including position information of the substring. A search index and a secret state result from the first and second preprocessing. The ciphertexts and search index are outsourced to a database within an unsecure server. An engine within the server determines candidate ciphertexts matching a query request received from a secure client. The engine returns ciphertexts to the client for decryption according to the secret state. Preprocessing may be delegated to a third party for outsourcing search index/ciphertexts to the server, and the secret state to the client.
    Type: Grant
    Filed: January 18, 2018
    Date of Patent: January 5, 2021
    Assignee: SAP SE
    Inventors: Florian Hahn, Nicolas Loza, Florian Kerschbaum
  • Patent number: 10872485
    Abstract: A communication system for managing usage rights to a vehicle, having a vehicle which includes a communication module inside the vehicle, a mobile terminal, and an electronic vehicle key which communicates with the communication module inside the vehicle and with the mobile terminal and allocates usage rights for the vehicle. Allocation of usage rights for the vehicle, which are carried out by the electronic vehicle key, are controlled by the mobile terminal.
    Type: Grant
    Filed: August 11, 2017
    Date of Patent: December 22, 2020
    Assignee: Volkswagen AG
    Inventors: Hendrik Decke, André Oberschachtsiek
  • Patent number: 10873600
    Abstract: An information processing device is provided. A first communication unit transmits and receives communication data through a network. The network is connected to a first gateway, a second gateway, and at least one electronic control unit. A monitoring unit determines whether the communication data is normal. A notification unit transmits, at least to the second gateway, a notification that brings the network to a state in which one of a transfer function of the first gateway and a transfer function of the second gateway is active and the other one of the transfer functions is inactive, when the monitoring unit determines that the communication data is not normal.
    Type: Grant
    Filed: April 6, 2018
    Date of Patent: December 22, 2020
    Assignee: PANASONIC INTELLECTUAL PROPERTY MANAGEMENT CO., LTD.
    Inventors: Toshihisa Nakano, Jun Anzai, Masato Tanabe, Kaoru Yokota