Patents Examined by Mohammed Waliullah
  • Patent number: 11374770
    Abstract: Systems and methods for developing a novel public/private key pair having unique properties are disclosed, whereby standard data security operations in existing data security infrastructures return a data integrity validation result—but do not provide the intended data security of such infrastructures. These novel keys are referred to as degenerate keys and may be used to replace the public and private keys in existing public/private key cryptosystems. Because degenerate key data integrity validation may leverage existing data security infrastructures that are already widely-implemented, such examples may be applied immediately and configured to seamlessly transition from integrity only modes back to secure modes. In some instances, the degenerate key examples described herein may be employed during a software testing and/or factory validation stage of product development to allow for data integrity validation before burning in a developer's active (i.e.
    Type: Grant
    Filed: November 25, 2019
    Date of Patent: June 28, 2022
    Inventor: Michael John Line
  • Patent number: 11368283
    Abstract: A system on a chip (SoC) includes a security processor configured to determine that a first channel ID describing a {source, destination} tuple for a crypto packet matches a second channel ID describing a corresponding {source, destination} tuple for a preceding crypto packet received immediately prior to the crypto packet. The SoC also includes a decryption engine configured to, responsive to the determination that the first channel ID matches the second channel ID: obtain a set of round keys applied to perform an add round key computational stage of a previous decryption datapath used to decrypt a preceding cipher text block obtained from the preceding crypto packet, and to reuse the set of round keys to perform a corresponding add round key computational stage of a current decryption datapath used to decrypt a cipher text block obtained from the crypto packet.
    Type: Grant
    Filed: December 20, 2019
    Date of Patent: June 21, 2022
    Assignee: Facebook Technologies, LLC
    Inventors: Sudhir Satpathy, Wojciech Stefan Powiertowski
  • Patent number: 11354390
    Abstract: Techniques are disclosed relating to biometric authentication. In one embodiment, a computing device includes a controller circuit, a camera, and a secure circuit. The controller circuit is coupled to a button and detects when the button has been pressed. The camera captures a set of biometric data of a user. The secure circuit performs an authentication of the user by confirming that a notification identifying the button being pressed was received from the controller circuit and by comparing the set of biometric data with another set of biometric data for an authorized user of the computing device. In some embodiments, the controller circuit is configured to maintain a timestamp indicative of when the button has been pressed and usable by the secure circuit to confirm that the button is pressed within a threshold time period of the authentication being performed.
    Type: Grant
    Filed: September 11, 2017
    Date of Patent: June 7, 2022
    Assignee: Apple Inc.
    Inventors: Charles T. Ahn, Libor Sykora, Gianpaolo Fasoli
  • Patent number: 11354429
    Abstract: A device and method for provided access to distributed data sources includes a cloud security server configured to associate any number of data sources and client devices with a cloud security server account. The cloud security server assigns trust levels to the data sources and the client devices. A client device requests data from the cloud security server. The cloud security server authenticates the client device and verifies the trust levels of the client device and the requested data. If verified, the cloud security server brokers a connection between the client device and the data source, and the client device accesses the requested data. Data sources may include cloud service providers and local storage devices. The cloud security server may assign a trust level to a client device for a limited time or revoke a trust level assigned to a client device. Other embodiments are described and claimed.
    Type: Grant
    Filed: July 7, 2020
    Date of Patent: June 7, 2022
    Assignee: Intel Corporation
    Inventors: Manish Dave, Vishwa Hassan, Bhaskar D. Gowda, Mrigank Shekhar
  • Patent number: 11354386
    Abstract: A method for detecting, identifying, and mitigating advanced persistent threats in a computer network having one or more computers includes a processor in the computer network: receiving a request to access a resource in the computer network; identifying the request as originating from an application executing on the computer network; executing an anomaly operation to determine a behavior of the application is one of anomalous and not anomalous; executing a privilege operation to determine the request is one of permanently allowed and not-permanently allowed; granting access to the resource for both a non-anomalous-behaving application and a permanently allowed request; and generating and displaying, on a graphical user interface of the computer network, and prompt for either an anomalous-behaving application or a not-permanently allowed request.
    Type: Grant
    Filed: April 3, 2020
    Date of Patent: June 7, 2022
    Assignee: Architecture Technology Corporation
    Inventors: Joseph Sirianni, Matthew Donovan
  • Patent number: 11347769
    Abstract: Importation and exportation allows software services in blockchain environments. Blockchains may import data and export data, thus allowing blockchains to offer software services to clients (such as other blockchains). Individual users, businesses, and governments may create their own blockchains and subcontract or outsource operations to other blockchains. Moreover, the software services provided by blockchains may be publically ledgered by still other blockchains, thus providing two-way blockchain interactions and two-way ledgering for improved record keeping.
    Type: Grant
    Filed: June 19, 2020
    Date of Patent: May 31, 2022
    Assignee: Inveniam Capital Partners, Inc.
    Inventor: Paul Snow
  • Patent number: 11343075
    Abstract: Blockchain environments may mix-and-match different encryption, difficulty, and/or proof-of-work schemes when mining blockchain transactions. Each encryption, difficulty, and/or proof-of-work scheme may be separate, stand-alone programs, files, or third-party services. Blockchain miners may be agnostic to a particular coin's or network's encryption, difficulty, and/or proof-of-work schemes, thus allowing any blockchain miner to process or mine data in multiple blockchains. GPUs, ASICs, and other specialized processing hardware components may be deterred by forcing cache misses, cache latencies, and processor stalls. Hashing, difficulty, and/or proof-of-work schemes require less programming code, consume less storage space/usage in bytes, and execute faster. Blockchain mining schemes may further randomize byte or memory block access, further improve cryptographic security.
    Type: Grant
    Filed: September 30, 2020
    Date of Patent: May 24, 2022
    Assignee: Inveniam Capital Partners, Inc.
    Inventor: Paul Snow
  • Patent number: 11336654
    Abstract: Various systems and methods of establishing and utilizing device management (DM) services in Internet of Things (IoT) networks and similar distributed network architectures, are described herein. In an example, a Cloud-To-OCF Device mediator service may be established from OCF services definition; this mediator service may be used to establish connectivity between a cloud-capable device and a cloud-based service. Further systems and methods to provide a proxy access service (PAS) hosted on a cloud service provider, that enable a PAS to coordinate and preserve device-to-device interactions from end-to-end, are also disclosed.
    Type: Grant
    Filed: June 15, 2018
    Date of Patent: May 17, 2022
    Assignee: Intel Corporation
    Inventor: Ned M. Smith
  • Patent number: 11336440
    Abstract: The disclosed exemplary embodiments include computer-implemented systems, devices, and processes that securely manage and regenerate cryptographic keys using permissioned distributed ledgers. For example, a device may receive, from a first computing system, data indicative of a recordation of a first public key onto a distributed ledger. Based on an occurrence of a regeneration condition, the device may transmit, to a second computing system, a second public key and a first digital signature, and the second computing system may validate the first digital signature, apply a second digital signature to the second public key, and transmit the second public key and the digital signatures to the first computing system. The device also receives, from the first computing system, additional data indicative of a recordation of the second public key onto the distributed ledger, and based on the additional data, the device may invalidate the first private key.
    Type: Grant
    Filed: December 16, 2019
    Date of Patent: May 17, 2022
    Assignee: The Toronto-Dominion Bank
    Inventors: Alexey Shpurov, Albert Louis Rothenstein, Adrian Chung-Hey Ma, Buturab Rizvi, Alexandra Tsourkis, Francis James Alexander Guttridge
  • Patent number: 11330441
    Abstract: A system including: a transceiver; a boot processor configured to: capture an image of a container of the system, determine whether the system container image has been modified, and post, to a node of a distributed ledger network, a first attestation based on a determination of whether an anomaly exists in the system container image; a system processor; and a memory storing instructions that instruct the system processor to: receive a request to connect to an external device, request a second attestation from a node of the distributed ledger network as to whether an anomaly exists in the external device container image, determine whether an anomaly exists in the external device container image, and either: establish, in response to determining that an anomaly does not exist, a connection with the external device, or deny the request to connect to the external device in response to determining that an anomaly exists.
    Type: Grant
    Filed: May 14, 2019
    Date of Patent: May 10, 2022
    Assignee: T-Mobile USA, Inc.
    Inventor: Ahmad Arash Obaidi
  • Patent number: 11328091
    Abstract: A method comprises predefining a reference data item; creating a relation and inserting a given data item of the set of data items into the relation; inserting each data item of the set of data items into the created relation using a traversal method, wherein the order comparing step comprises in case a comparison result of the currently traversed data item with the reference data item is different from a comparison result of the to be inserted data item with the reference data item inverting the decision logic, and using the inverted decision logic in the decision step; and providing the created relation.
    Type: Grant
    Filed: June 2, 2020
    Date of Patent: May 10, 2022
    Assignee: Compugroup Medical SE
    Inventors: Jan Lehnhardt, Tobias Rho
  • Patent number: 11323456
    Abstract: Novel tools and techniques are provided for implementing a telemetry hub, and, more particularly, to methods, systems, and apparatuses for implementing a telemetry hub that obtains sensor data from a plurality of sources and that determines one or more first actions to take in response to receiving the first sensor data. In operation, a telemetry hub might receive first sensor data from one or more sensors. The telemetry hub may determine whether the first sensor data can be trusted and whether the first sensor data is valid. Based on a determination that the first sensor data can be trusted and is valid, the telemetry hub might analyze the first sensor data to determine one or more first actions to take. The telemetry hub might then implement the one or more first actions based at least in part on the analysis of the first sensor data.
    Type: Grant
    Filed: May 5, 2020
    Date of Patent: May 3, 2022
    Assignee: CenturyLink Intellectual Property LLC
    Inventors: Kevin M. McBride, Steven M. Casey, Stephen Opferman, Hunter Rudd, James E. Sutherland
  • Patent number: 11323243
    Abstract: An example operation may include one or more of receiving one or more responses to a storage request for a blockchain from one or more endorser nodes of the blockchain, extracting transaction data of the storage request included in the one or more responses, generating a zero-knowledge proof of endorsement based on the extracted transaction data and the one or more responses, and transmitting the zero-knowledge proof to a blockchain node for inclusion within a data block among a hash-linked chain of data blocks.
    Type: Grant
    Filed: April 5, 2019
    Date of Patent: May 3, 2022
    Assignee: International Business Machines Corporation
    Inventors: Yanyan Hu, Yuan Yuan, Shengjiao Cao, Angelo De Caro
  • Patent number: 11323246
    Abstract: A system stores transaction data in a ring chain architecture. A ring chain comprises blocks of data stored as a length-limited block chain in a ring buffer configuration. A block of transactions is stored on a ring chain until enough new blocks are added to overwrite the ring buffer with new blocks. The system stores multiple ring chains that update at varying frequencies. A new block on a lower frequency ring chain stores an aggregation of data from the blocks that were added to a higher frequency ring chain in the time since the previous addition of a block to the lower frequency ring chain. Thus, a system of ring chains stores progressively summarized state transition data over progressively longer time intervals while maintaining immutability of the record and reducing storage requirements.
    Type: Grant
    Filed: December 11, 2019
    Date of Patent: May 3, 2022
    Assignee: The Bank of New York Mellon
    Inventors: Daniel DeValve, Swaminathan Bhaskar, Hood Qaim-Maqami
  • Patent number: 11316857
    Abstract: Disclosed embodiments include techniques for automatically provisioning dynamic privileged access resources. Aspects may involve receiving a notification that an identity is seeking to participate in a privileged session with an access-restricted network resource, and automatically provisioning, in response to the notification, a privileged access resource for use by the identity in participating in the privileged session with the access-restricted network resource. Further, aspects may include determining that the privileged session with the access-restricted network resource has ended, and automatically deprovisioning, based on the determination, the privileged access resource.
    Type: Grant
    Filed: July 11, 2018
    Date of Patent: April 26, 2022
    Assignee: Cyber Ark Software Ltd.
    Inventor: Asaf Hecht
  • Patent number: 11316898
    Abstract: A method and system for managing shared use of an asset. An asset device and an owner device accomplish an initial setup procedure to register the owner with the asset. One or more secure policies are then sent from the owner device, or another device authorized to create policies, to one or more user devices. The policies express user conditions and limitations for using the asset. Subsequently, the user device transmits the secure policy to the asset device. Once the policy has been transferred from the user device to the asset device, user associated with the user device can request use of the asset and will be granted the requested use if the requested use is permitted by the policy.
    Type: Grant
    Filed: June 28, 2018
    Date of Patent: April 26, 2022
    Assignee: IRDETO B.V.
    Inventors: Yaser Eftekhari Roozbehani, Clifford Liem
  • Patent number: 11316835
    Abstract: Techniques for securing communication. The techniques include using at least one device to perform method for encrypting input data using a cipher associated with a plurality of languages including a first language, the first language associated with a first set of ciphertext symbols, a first permutation for the first set, and a first partition for the first permutation. The method includes obtaining, from the input data, a first plaintext symbol; mapping the first plaintext symbol to a first ciphertext symbol using the cipher, the mapping including: identifying a first set of candidate ciphertext symbols using the first plaintext symbol, the first permutation, and the first partition; and identifying, at random, the first ciphertext symbol from the first set of candidate ciphertext symbols; and outputting the first ciphertext symbol.
    Type: Grant
    Filed: June 24, 2019
    Date of Patent: April 26, 2022
    Assignee: Virtual Software Systems, Inc.
    Inventors: Charles H. Kaman, Richard D. Fiorentino
  • Patent number: 11314893
    Abstract: Systems, methods, and other embodiments described herein relate to securing personally identifiable information associated with riding in a vehicle. In one embodiment, a method includes, in response to receiving, in a mobile device from the vehicle, telematics data about a current trip of the vehicle, securing the telematics data according to at least a mobile cryptographic key associated with the mobile device to provide the telematics data as secured data that is obfuscated. The method includes generating, by the mobile device, a secure packet including at least the secured data and a signature from the vehicle associated with the secured data. The method includes communicating, by the mobile device, the secure packet to a remote computing device to cause the remote computing device to securely store the secured data without identifying a user associated with the mobile device.
    Type: Grant
    Filed: August 27, 2019
    Date of Patent: April 26, 2022
    Assignee: Toyota Motor Engineering & Manufacturing North America, Inc.
    Inventor: Vladimeros Vladimerou
  • Patent number: 11308184
    Abstract: A method of integrating a cryptographically secured digital asset into a digital video game application includes receiving a digital asset identification (ID) code representative of cryptographically secure digital asset. The digital asset ID code exists together with a unique owner ID code on a distributed blockchain ledger, and includes a code string segmented into a series of code subsets. A first plurality of the code subsets includes data indicative of a plurality of attributes of the digital asset. The digital asset ID code is provided to a virtual object generator, which returns a virtual object constructed from the first plurality of the code subsets of the unique owner ID code, and where the virtual object further including a plurality of object attributes. At least one of the character attributes is then modified according to at least one of the object attributes.
    Type: Grant
    Filed: December 9, 2019
    Date of Patent: April 19, 2022
    Assignee: NIKE, Inc.
    Inventors: Christopher Andon, Matthew Davis, Hien Tommy Pham, Jeremy Schroeder
  • Patent number: 11310048
    Abstract: Highly secure portable storage device may include a security controller, a data transfer controller and a memory controller. The security controller self-verifies, without a host, an access code. After the verification, the security controller may retrieve a concealed encryption key and a transformation key that were previously self-generated by the security controller. The encryption keys are not generated by the host, a user, or the memory controller. The transformation key is sent to the memory controller via a side channel during a first time period. The concealed encryption key is sent to the memory controller via the side channel during a different time period. After extracting an operating encryption key, the memory controller may notify the data transfer controller to initiate an enumeration process with the host. Data transfer from and to the host is performed via interfaces different from the side channel. Other methods and implementations are also described.
    Type: Grant
    Filed: March 27, 2020
    Date of Patent: April 19, 2022
    Assignee: APRICORN
    Inventors: Paul Cameron Brown, Roy Walter Younggren