Patents Examined by Samuel Ambaye
  • Patent number: 11449753
    Abstract: A method for federative learning of an artificial neural network model on a plurality of sets of training data. The learning method used a plurality of data suppliers each having a distinct set of training data and a symmetric key, and an aggregation platform aggregating partial models trained on a sub-plurality of these sets, in each iteration. In each iteration, the platform selects a sub-plurality of data suppliers and supplies the parameters of the model to them, in homomorphically encrypted form. Each training data supplier decrypts these parameters, trains the model on his own data set and returns the parameters of the partial model thus obtained, encrypted by his symmetric key, to the platform. The aggregation platform then transcrypts these partial models in the homomorphic domain, and combines them in the homomorphic domain to obtain a global model.
    Type: Grant
    Filed: June 11, 2020
    Date of Patent: September 20, 2022
    Assignee: COMMISSARIAT A L'ENERGIE ATOMIQUE ET AUX ENERGIES ALTERNATIVES
    Inventors: Renaud Sirdey, Sergiu Carpov
  • Patent number: 11445363
    Abstract: In accordance with one embodiment, a method of modifying data in a telecommunication system can be implemented by receiving a communication comprising voice data and non-voice data at a first processor; sending the non-voice data from the first processor to a second processor; sending the voice data from the first processor to a third processor; receiving a sensitive-data-alert-message at the second processor from a fourth processor; and, in response to the sensitive-data-alert-message from the fourth processor, producing a set of modified-non-voice data at the second processor by removing a set of sensitive data contained within the non-voice data.
    Type: Grant
    Filed: June 21, 2019
    Date of Patent: September 13, 2022
    Assignee: INTRANEXT Software, Inc.
    Inventors: Patrick Brown, James Mitch, Michael Verlare
  • Patent number: 11444954
    Abstract: An authentication/authorization server that manages access to a resource server is provided. The server comprises a management unit that manages an expected completion time of a change to an access destination authentication/authorization server with respect to a client for which the access destination authentication/authorization server is to be changed; an issuing unit that issues an access token for accessing the resource server, the token having an expiration time; and a response unit that returns the access token to the client, wherein if an expected completion time of the change to the access destination authentication/authorization server is managed with respect to the client that is the source of the token issuance request, the issuing unit sets the expiration time of the access token that has been issued to expire no later than the expected completion time of the change.
    Type: Grant
    Filed: April 10, 2020
    Date of Patent: September 13, 2022
    Assignee: Canon Kabushiki Kaisha
    Inventor: Kei Kitagata
  • Patent number: 11444919
    Abstract: The subject matter of this specification can be embodied in, among other things, a computer system that includes a first processor system configured to communicate with a network, a second processor system configured to control a process, and a third processor system configured to selectively operate in a first configuration and a second configuration, wherein the third processor system is configured to selectively block predetermined types of communications from the first processor system to the second processor system in the first configuration, and the third processor system is configured to permit the predetermined types of communications from the first processor system to the second processor system in the second configuration.
    Type: Grant
    Filed: May 20, 2019
    Date of Patent: September 13, 2022
    Assignee: Woodward, Inc.
    Inventor: Jacob A. de Bes
  • Patent number: 11438157
    Abstract: The present disclosure discloses a method and system for data ownership confirmation based on encryption. The method comprises following steps: determining whether data is open; and if the data can be open, encrypting, by a data owner, the data by using a private key of the data owner to complete ownership declaration, and ending a process; or if the data cannot be open, determining whether the data is shared; and if the data cannot be shared, encrypting, by the data owner, the data by using a public key of the data owner to complete data protection, and ending a process; or if the data can be shared, proceeding to ownership declaration and protection steps. The method achieves data ownership confirmation, technically ensures proprietary of data ownership, and implements unique ownership of the data owner for the data, laying a foundation for data responsibility, right, and profit allocation.
    Type: Grant
    Filed: March 25, 2020
    Date of Patent: September 6, 2022
    Assignee: CHENGDU YUNSHUZHILIAN TECHNOLOGY CO., LTD.
    Inventors: Fang Miao, Yan Xie, Wenhui Yang
  • Patent number: 11405779
    Abstract: A stopped vehicle information remote retrieval method includes an emergency personnel or first responder vehicle (FRV) establishing a vehicle connection between an infotainment system of a stopped vehicle and the FRV. The FRV sends a vehicle information request to the infotainment system of the stopped vehicle, via the vehicle connection, seeking release of vehicle information. The FRV obtains authentication of the vehicle information received in response to the vehicle information request. The FRV determines occupant status based on the vehicle information. The FRV communicates the passenger status to a first responder.
    Type: Grant
    Filed: February 19, 2021
    Date of Patent: August 2, 2022
    Assignee: The Government of the United States of America, as represented by the Secretary of Homeland Security
    Inventors: Daniel A. Boyd, Kelli L. Biegger, Chang Ellison, Brandon P. Gutierrez, Jason Lim, William Washington
  • Patent number: 11394545
    Abstract: The present invention provides a secure technique that allows two communication apparatus that perform encrypted communication to have a common initial solution. A large number of user apparatuses all have a function of generating the same solution under the same condition as far as the user apparatuses have the same initial solution, and can perform encrypted communication using solutions successively generated in synchronization from the same initial solution. All the user apparatuses and a server share the same initial solution and have a function of generating the same solution under the same condition and thus can generate synchronized solutions. The server generates synchronization information, which is information required to generate the initial solution but is not the initial solution itself (S2002), and transmits the synchronization information to at least one of two user apparatuses performing encrypted communication (S2003).
    Type: Grant
    Filed: December 6, 2017
    Date of Patent: July 19, 2022
    Assignee: NTI, INC.
    Inventor: Takatoshi Nakamura
  • Patent number: 11388194
    Abstract: An identity verification method and a verifying device, where the verifying device receives an account for requesting password reset. When the account is invalid, the verifying device sends a fake identification and a first verification request to a requesting device. The verification request mentioned requests a user to determine whether to send verification information to a first communication address. The fake identification and the first communication address are associated with the first account.
    Type: Grant
    Filed: June 11, 2020
    Date of Patent: July 12, 2022
    Assignee: HUAWEI CLOUD COMPUTING TECHNOLOGIES CO., LTD.
    Inventor: Duanhao Ou
  • Patent number: 11381549
    Abstract: Methods and apparatus for control of data and content protection mechanisms across a network using a download delivery paradigm. In one embodiment, conditional access (CA), digital rights management (DRM), and trusted domain (TD) security policies are delivered, configured and enforced with respect to consumer premises equipment (CPE) within a cable television network. A trusted domain is established within the user's premises within which content access, distribution, and reproduction can be controlled remotely by the network operator. The content may be distributed to secure or non-secure “output” domains consistent with the security policies enforced by secure CA, DRM, and TD clients running within the trusted domain. Legacy and retail CPE models are also supported.
    Type: Grant
    Filed: July 22, 2019
    Date of Patent: July 5, 2022
    Assignee: Time Warner Cable Enterprises LLC
    Inventors: William L. Helms, John B. Carlucci, Jason Kazmir Schnitzer
  • Patent number: 11368839
    Abstract: Systems and methods for provisioning user privacy parameters necessary for network security in 5G telecommunication networks are provided, such as the subscriber permanent identifier (SUPI), the routing indicator, the protection scheme identifier, or the home network key. In order to protect the user privacy parameters, the techniques disclosed herein use private and public key encryption, as well as integrity protection offered by 5G telecommunications protocols. Such techniques use registration response messages, update location requests, or update notification request messages to provide end-to-end or end-to-middle security in the provisioning process. Unlike existing over-the-air (OTA) techniques, the techniques described herein provision user privacy parameters or other similar data in a secure and verifiable manner.
    Type: Grant
    Filed: December 13, 2019
    Date of Patent: June 21, 2022
    Assignee: T-MOBILE USA, INC.
    Inventor: Yousif Targali
  • Patent number: 11368841
    Abstract: Embodiments of the prevent disclosure provide a network access authentication method and device. The method includes: receiving an authentication request message sent by a first serving network, the authentication request message carrying a user equipment alias identifier generated by user equipment; determining whether a local user equipment alias identifier is asynchronous with the user equipment alias identifier generated by the user equipment; and when the determination result is positive, obtaining an encrypted International Mobile Subscriber Identification Number IMSI for performing network access authentication on the user equipment.
    Type: Grant
    Filed: July 25, 2017
    Date of Patent: June 21, 2022
    Assignee: ZTE Corporation
    Inventors: Shilin You, Hongjun Liu, Jiyan Cai, Zaifeng Zong, Jin Peng, Zhaoji Lin, Yunyin Zhang
  • Patent number: 11368485
    Abstract: Provided is an arrangement for monitoring, a monitoring device and intermediary device and method for monitoring an encrypted connection between a client and an access point in a network, wherein—an Extensible Authentication Protocol is used for access authentication of the client to the network on an authentication server, and—a transport layer security protocol having a key disclosure function is executed within the Extensible Authentication Protocol, in which security information for the cryptographic protection of the connection is provided to an intermediary device and is transmitted from the intermediary device to a monitoring device for monitoring the connection. Also provided is a computer program product of the same.
    Type: Grant
    Filed: April 8, 2019
    Date of Patent: June 21, 2022
    Inventors: Rainer Falk, Steffen Fries
  • Patent number: 11356459
    Abstract: A method and console are provided to create and manage dispatch unit identities on multiple independent communications systems. A console server receives a first dispatch unit list from a first radio system. The first dispatch unit list includes a first plurality of dispatch unit IDs from the first radio system. The console server receives a second dispatch unit list from a second radio system. The second dispatch unit list includes a second plurality of dispatch unit IDs from the second radio system. The console server creates a first role that includes at most one dispatch unit ID from each radio system. Multiple roles can be created by the console server. Upon authenticating a dispatcher at the console server, the console server presents a menu of roles available to the dispatcher. The menu of roles can include all roles on the console server or only the roles that the dispatcher is allowed to choose and that are currently available.
    Type: Grant
    Filed: May 8, 2020
    Date of Patent: June 7, 2022
    Assignee: MOTOROLA SOLUTIONS, INC.
    Inventors: Kurt Lund Andreasen, John L. Finch
  • Patent number: 11350276
    Abstract: The secure IoT registry and associated provisioning method simplifies the IoT cloud provider operations with respect to managing mobile IoT eSIM credential provisioning/certificate key management. The secure IoT Registry enables network operators such as a Mobile Network Operator (MNO) to understand and map the IoT device ownership in relationship to cloud providers to facilitate business functions like charge back mechanisms. The secure IoT registry integrates a next generation registry based Certificate Authority (CA) system enabling trusted and simpler mechanisms to validate certificates and their state.
    Type: Grant
    Filed: June 2, 2020
    Date of Patent: May 31, 2022
    Assignee: Canadian Internet Registration Authority
    Inventors: Jacques Latour, Dave Chiswell
  • Patent number: 11349657
    Abstract: A device implementing a system for device-relationship based communication includes at least one processor configured to establish, by a first device associated with a first user, a secure communication channel with a second device associated with a second user via a direct wireless connection. The at least one processor is configured to transmit, over the secure communication channel, first device-identifying information to the second device, and receive, over the secure communication channel, second device-identifying information from the second device. The at least one processor is configured to establish a particular type of relationship with the second device, store the second device-identifying information in association with an indication of the particular type of relationship established with the second device, and transmit, to the second device and over the secure communication channel, the indication of the particular type of relationship established with the second device.
    Type: Grant
    Filed: May 29, 2020
    Date of Patent: May 31, 2022
    Assignee: Apple Inc.
    Inventors: Andrew J. Daley, Nicholas J. Circosta, Ryan W. Baker, Elliot T. Garner
  • Patent number: 11343069
    Abstract: Systems and methods that may implement an Oracle-aided protocol for producing and using FHE encrypted data. The systems and methods may initially encrypt and store input data in one encrypted form that is not performed using FHE, which does not substantially increase the size of the data and storage resources required to store the encrypted data. In accordance with the Oracle-aided protocol, the encrypted data is re-encrypted as FHE encrypted data when FHE encrypted data is required.
    Type: Grant
    Filed: February 6, 2020
    Date of Patent: May 24, 2022
    Assignee: Intuit Inc.
    Inventors: Margarita Vald, Laetitia Kahn, Boaz Sapir, Yaron Sheffer, Yehezkel Shraga Resheff
  • Patent number: 11330436
    Abstract: A system and method for enabling two-way communication between a residents of a secure facility (inmate, patient, suspect, etc.) and outside parties shares a limited number of telephone numbers (ANIs) by creating distinct communication channels using other data in addition to the shared ANIs.
    Type: Grant
    Filed: November 10, 2019
    Date of Patent: May 10, 2022
    Assignee: PRODIGY SOLUTIONS INC.
    Inventor: James B. Hartman
  • Patent number: 11323240
    Abstract: An interactive multi-party system for collaboratively performing homomorphic operations, such that no party has access to unencrypted data or an unencrypted operator. A first party device may add noise to encrypted data and an encrypted linear operator to generate noisy encrypted data and a noisy encrypted operator, and transmit the noisy encrypted data and operator to a second party device possessing a secret decryption key for the encryption. The second party device may decrypt the noisy encrypted data and noisy encrypted operator to generate unencrypted noisy data and an unencrypted noisy operator, solve the linear operation using the unencrypted noisy data and an unencrypted noisy operator to generate a noisy solution, encrypt the noisy solution to the linear operation, and transmit it to the first party device. The first party device may then cancel the noise of the encrypted noisy solution to generate the encrypted solution to the linear operation.
    Type: Grant
    Filed: February 27, 2019
    Date of Patent: May 3, 2022
    Assignee: DUALITY TECHNOLOGIES INC.
    Inventor: Vinod Vaikuntanathan
  • Patent number: 11317290
    Abstract: According to one aspect of the present invention, an information processing apparatus includes a determination unit that determines whether an identifier extracted from a one-way communication packet received from a sensor includes a first value indicating another information processing apparatus as a legitimate destination, a second value indicating a user different from a user of the information processing apparatus as the legitimate destination, or a third value indicating a sensor different from a sensor associated with the information processing apparatus as an origination, and a transmission unit that transmits, to a server, a second packet in which the first, the second, or the third value is stored, if the identifier includes the first, the second, or the third value.
    Type: Grant
    Filed: January 3, 2020
    Date of Patent: April 26, 2022
    Assignees: OMRON HEALTHCARE CO., LTD., OMRON CORPORATION
    Inventors: Nobuo Kubo, Toru Deno, Hideki Kondo
  • Patent number: 11310285
    Abstract: Adaptive network security policies can be selected by assigning a number of risk values to security intelligence associated with network traffic, and identifying a number of security policies to implement based on the risk values.
    Type: Grant
    Filed: July 2, 2019
    Date of Patent: April 19, 2022
    Assignee: Trend Micro Incorporated
    Inventors: Harry A. Bryson, Malcolm Dodds, Wei Lu, Julian Palmer