Patents by Inventor Aleksandrs J. Rudzitis
Aleksandrs J. Rudzitis has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Patent number: 11184155Abstract: A cryptographic key management service receives a request to import a first cryptographic key. In response to the request, the service creates a public cryptographic key and a private cryptographic key. The private cryptographic key is encrypted using a second cryptographic key to create an import key token. The import key token and the public cryptographic key are provided in response to the request. The service receives an encrypted first cryptographic key, which the service decrypts using the private cryptographic key to obtain the first cryptographic key. The service stores the first cryptographic key and enables its use for the performance of cryptographic operations.Type: GrantFiled: October 29, 2018Date of Patent: November 23, 2021Assignee: Amazon Technologies, Inc.Inventors: Aleksandrs J. Rudzitis, Alexis Lynn Carlough, Gregory Alan Rubin, Matthew John Campagna
-
Patent number: 10909250Abstract: A network-based service for the management of cryptographic key, such as a key management service (“KMS”), provides a web service application programming interface (“API”). Cryptographic keys managed by the service may be stored in a one or more network-connected cryptographic devices such as network-connected hardware security modules (“HSM”). The key management service maintains metadata associated with the cryptographic keys. When a request is received by the key management service, the key management service uses an identifier provided with the request to identify metadata associated with a cryptographic key used to fulfill the request. The key management service uses the metadata to identify a cryptographic device containing the cryptographic key. The key management service generates a set of commands for fulfilling the request such that the commands are compatible with a protocol implemented by the identified cryptographic device, and the set of commands are sent to the identified cryptographic device.Type: GrantFiled: May 2, 2018Date of Patent: February 2, 2021Assignee: Amazon Technologies, Inc.Inventors: Aleksandrs J. Rudzitis, Sreekumar Mukundan Pisharody, John Kenneth Beer, Benjamin Tillman Farley
-
Patent number: 10616209Abstract: Various approaches discussed herein enable validation of an application on a computing device, such as a mobile computing device, prior to that application being invoked by activation of a link in another application. Upon activation of the link in a calling application, the computing device determines a target application to be invoked in response to the activation. Sensitive or confidential data, such as login credentials, may be included in the link to be passed to the target application. By validating either the calling or the target application, the data may be safeguarded by confirming an identity of an application associated with the link.Type: GrantFiled: November 14, 2018Date of Patent: April 7, 2020Assignee: AMAZON TECHNOLOGIES, INC.Inventors: Muhammad Wasiq, Aleksandrs J. Rudzitis, Nima Sharifi Mehr
-
Publication number: 20190342079Abstract: A network-based service for the management of cryptographic key, such as a key management service (“KMS”), provides a web service application programming interface (“API”). Cryptographic keys managed by the service may be stored in a one or more network-connected cryptographic devices such as network-connected hardware security modules (“HSM”). The key management service maintains metadata associated with the cryptographic keys. When a request is received by the key management service, the key management service uses an identifier provided with the request to identify metadata associated with a cryptographic key used to fulfill the request. The key management service uses the metadata to identify a cryptographic device containing the cryptographic key. The key management service generates a set of commands for fulfilling the request such that the commands are compatible with a protocol implemented by the identified cryptographic device, and the set of commands are sent to the identified cryptographic device.Type: ApplicationFiled: May 2, 2018Publication date: November 7, 2019Inventors: Aleksandrs J. Rudzitis, Sreekumar Mukundan Pisharody, John Kenneth Beer, Benjamin Tillman Farley
-
Publication number: 20190081944Abstract: Various approaches discussed herein enable validation of an application on a computing device, such as a mobile computing device, prior to that application being invoked by activation of a link in another application. Upon activation of the link in a calling application, the computing device determines a target application to be invoked in response to the activation. Sensitive or confidential data, such as login credentials, may be included in the link to be passed to the target application. By validating either the calling or the target application, the data may be safeguarded by confirming an identity of an application associated with the link.Type: ApplicationFiled: November 14, 2018Publication date: March 14, 2019Inventors: Muhammad Wasiq, Aleksandrs J. Rudzitis, Nima Sharifi Mehr
-
Publication number: 20190068363Abstract: A cryptographic key management service receives a request to import a first cryptographic key. In response to the request, the service creates a public cryptographic key and a private cryptographic key. The private cryptographic key is encrypted using a second cryptographic key to create an import key token. The import key token and the public cryptographic key are provided in response to the request. The service receives an encrypted first cryptographic key, which the service decrypts using the private cryptographic key to obtain the first cryptographic key. The service stores the first cryptographic key and enables its use for the performance of cryptographic operations.Type: ApplicationFiled: October 29, 2018Publication date: February 28, 2019Inventors: Aleksandrs J. Rudzitis, Alexis Lynn Carlough, Gregory Alan Rubin, Matthew John Campagna
-
Patent number: 10135808Abstract: Various approaches discussed herein enable validation of an application on a computing device, such as a mobile computing device, prior to that application being invoked by activation of a link in another application. Upon activation of the link in a calling application, the computing device determines a target application to be invoked in response to the activation. Sensitive or confidential data, such as login credentials, may be included in the link to be passed to the target application. By validating either the calling or the target application, the data may be safeguarded by confirming an identity of an application associated with the link.Type: GrantFiled: December 10, 2015Date of Patent: November 20, 2018Assignee: Amazon Technologies, Inc.Inventors: Muhammad Wasiq, Aleksandrs J. Rudzitis, Nima Sharifi Mehr
-
Patent number: 10116440Abstract: A cryptographic key management service receives a request to import a first cryptographic key. In response to the request, the service creates a public cryptographic key and a private cryptographic key. The private cryptographic key is encrypted using a second cryptographic key to create an import key token. The import key token and the public cryptographic key are provided in response to the request. The service receives an encrypted first cryptographic key, which the service decrypts using the private cryptographic key to obtain the first cryptographic key. The service stores the first cryptographic key and enables its use for the performance of cryptographic operations.Type: GrantFiled: August 17, 2016Date of Patent: October 30, 2018Assignee: Amazon Technologies, Inc.Inventors: Aleksandrs J. Rudzitis, Alexis Lynn Carlough, Gregory Alan Rubin, Matthew John Campagna
-
Patent number: 9141986Abstract: A mobile messaging data management service is disclosed. Using a computing device, a merchant or other user of the service may transmit an operation to be run on data in a data store to an interactive computing system. In some embodiments, the operation is transmitted as part of a short messaging service (SMS) message. The interactive computing system may process the operation, and return the results to the computing device from which the message was received. The data management service may also enable a merchant or other user to specify one or more custom operations for future use.Type: GrantFiled: June 11, 2012Date of Patent: September 22, 2015Assignee: Amazon Technologies, Inc.Inventors: Jianguo Zhang, Aleksandrs J. Rudzitis, Gaurav Jain