Patents by Inventor Ariel Gordon

Ariel Gordon has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).

  • Patent number: 10898811
    Abstract: Authenticating an E-tournament identity using personal identity credentials. A method includes determining that a gaming device is configured for use in an E-tournament. The method further includes receiving from the device, user personal identity credentials. As a result, the method further includes, signing in to an E-tournament identity using the personal identity credentials.
    Type: Grant
    Filed: November 29, 2018
    Date of Patent: January 26, 2021
    Assignee: MICROSOFT TECHNOLOGY LICENSING, LLC
    Inventors: Ariel Gordon, Sarat Chandra Subramaniam, Benjamin Richard Vincent
  • Publication number: 20210014224
    Abstract: Methods, systems, apparatuses, and computer program products are provided for automatically determining a home realm. An authentication request receiver interface may receive a request to access a resource and a device identifier from a client device. An authenticator may be enacted in response to receiving the request to access the resource that includes a home realm discoverer and an authentication user interface (UI) provider. The home realm discoverer may determine, based at least on the device identifier, the home realm from a plurality of realms. The authentication UI provider may provide, to the client device, an authentication UI via which a flat-name username can be submitted. Based at least on a flat-name user name and the determined home realm, access to the resource may be granted. In this manner, a user may input a flat-name username during sign-in, rather than inputting a realm or an entire e-mail address.
    Type: Application
    Filed: July 10, 2019
    Publication date: January 14, 2021
    Inventors: Ariel Gordon, Paul Garner, Rachel Anne Brown Teller
  • Publication number: 20200412732
    Abstract: A device including a processor and a memory, in which the memory includes executable instructions for detecting that a first user has invited a second user to a communication session, wherein the first user is associated with a first user account registered to a first domain platform and the second user is not associated with any of user accounts registered to the first domain platform, the first domain platform defining a first user privilege granted to the user accounts registered to the first domain platform; causing a second user account associated with the second user to be created and registered to a second domain platform, the second domain platform being different from the first domain platform and defining a second user privilege granted to user accounts registered to the second domain platform; and granting the second user account the second user privilege.
    Type: Application
    Filed: September 20, 2019
    Publication date: December 31, 2020
    Applicant: MICROSOFT TECHNOLOGY LICENSING, LLC
    Inventors: Arvind Muthukrishnan, Mansoor Jafry, Ramakrishna Juluri, Ariel Gordon
  • Patent number: 10862681
    Abstract: An identity provider IP service provides an optimized sign out experience for a user accessing a single account service. The IP service designates a first account of a service as signed in based on first credentials provided by a user. The IP service provides a first security token for the first account to the service. Upon receiving a first sign out notification, the IP service determines whether the user wants to switch to a second account of the service. Upon determining that the user wants to switch to the second account, the IP service designates the second account as signed in based on second credentials provided by the user, provides a second security token for the second account to the service, and designates the first account as soft signed out so that the user can switch to the first account without re-providing the first credentials.
    Type: Grant
    Filed: April 4, 2017
    Date of Patent: December 8, 2020
    Assignee: MICROSOFT TECHNOLOGY LICENSING, LLC
    Inventors: Ariel Gordon, John H. Forrest, Jason Walter
  • Publication number: 20200314202
    Abstract: Performing late binding of a social network identification (ID) to a guest ID for use in an identity platform. A guest ID is created for a second user that gives access to a shared application of an identity platform that is associated with a first user. Subsequent to creating the guest ID, permission is requested from the second user to bind social network IDs of social networks of which the second user is a member to the guest ID. In response to receiving permission, binding the social network IDs to the guest ID is performed. The binding gives the identity platform access to profile attributes of the second user from the social networks, and allows it to write information such as a merit badge back on the second user's social network profile. A federation binding may also be created that allows the second user to sign into the shared application using their social network ID.
    Type: Application
    Filed: March 27, 2019
    Publication date: October 1, 2020
    Inventors: Ariel GORDON, Ankur PATEL, Benjamin R. VINCENT
  • Patent number: 10749875
    Abstract: Described technologies enhance cybersecurity and facilitate computing system account usage by configuring a primary account and a supplementary account together in a security configuration lifecycle. The primary account user may be a parent or other adult, while the supplementary account user may be a child or other person with less capacity than the primary user. Over time, the accounts may transition together through security configurations to give more capabilities to the supplementary user, e.g., login separate from the primary user, and to reduce the control of the primary user over the supplementary account. Security configuration lifecycle stages are implemented, e.g., using capability-security pair data structures and account security configuration code. Despite the security configuration linkage of the accounts, each account may have its own personalized content and its own recommendation history.
    Type: Grant
    Filed: June 28, 2018
    Date of Patent: August 18, 2020
    Assignee: Microsoft Technology Licensing, LLC
    Inventors: Benjamin Vincent, Ariel Gordon
  • Patent number: 10693882
    Abstract: The automatic selection of an identity provider to be used to authenticate users when requesting to access network resources for a tenant. The authentication is initiated by checking the username against the directory of the tenant. If that check results in finding an entry for the username in that directory, the entry is checked for an identity provider. If that check results in finding an identity provider, the user is directed to that found identity provider for authentication. Thus, in many, most, or all cases, an identity provider is found and selected for authentication of the user without the user having to manually select the identity provider. The username may be an internal user of an entity. The selection of the identity provider works in either case since there would still be an entry for that user in the directory of the tenant.
    Type: Grant
    Filed: October 31, 2017
    Date of Patent: June 23, 2020
    Assignee: MICROSOFT TECHNOLOGY LICENSING, LLC
    Inventors: Ariel Gordon, Sarat Chandra Subramaniam, Yordan I. Rouskov, Paul H. J. Garner, Benjamin R. Vincent
  • Publication number: 20200171390
    Abstract: Authenticating an E-tournament identity using personal identity credentials. A method includes determining that a gaming device is configured for use in an E-tournament. The method further includes receiving from the device, user personal identity credentials. As a result, the method further includes, signing in to an E-tournament identity using the personal identity credentials.
    Type: Application
    Filed: November 29, 2018
    Publication date: June 4, 2020
    Inventors: Ariel GORDON, Sarat Chandra SUBRAMANIAM, Benjamin Richard VINCENT
  • Publication number: 20200169558
    Abstract: A limited purpose account can be provided to a legitimate user to avoid some types of anti-abuse mechanisms from being triggered when the user connects to an identity verifier using a username known to belong to a limited purpose account. A limited purpose account is an account in which certain privileges of ordinary use are disabled or curtailed. A limited purpose account may be an account that can only be used with a limited number of applications or for a limited amount of time, thus reducing the ability of the limited purpose user to gain unauthorized access to resources. The operating system can reset itself to a previous state when the account is disconnected or when the device is turned off.
    Type: Application
    Filed: November 26, 2018
    Publication date: May 28, 2020
    Inventors: Ariel GORDON, Kristina Karen HOTZ, Jesus Ferrer LABAYEN
  • Patent number: 10630676
    Abstract: A sign-in system can be protected against enumeration attacks while providing an improved sign-in experience for legitimate users by disclosing whether or not an account exists. An account within a specified domain can be identified by an account identifier such as a username. Before a threshold throttling value is reached, account existence/non-existence information can be provided in response to an access request. In response to reaching or exceeding a specified threshold throttling value, account existence/non-existence information can cease to be provided. Entering a valid account identifier/authenticating credential credentials pair provides access to the computer system regardless of whether or not the threshold was reached or exceeded or not reached.
    Type: Grant
    Filed: November 24, 2017
    Date of Patent: April 21, 2020
    Assignee: Microsoft Technology Licensing, LLC
    Inventors: Ariel Gordon, Timothy Colin Larson
  • Publication number: 20200053166
    Abstract: Heuristics can be used to determine if an alternate behavior is desired on a particular mobile device to enable one-touch sign-out. The alternate behavior can be the appearance of a sign-out experience and mechanism. For example, instead of a “sign out” link appearing, an “end of shift” link can be displayed. Heuristics can be used to determine if a particular mobile device is a shared device. If the device is a shared device, this information can be made discoverable to mobile applications (e.g. by including a “shared device” flag in authentication tokens). When a mobile application finds the shared device flag indicates the device is shared, the “Sign-out” link for the mobile application can be replaced with an “End my shift” link. In response to a user clicking on the link, a global sign out can delete session artifacts on the device and/or on the server. Refresh tokens can be revoked to ensure that a user is signed out of third party mobile applications.
    Type: Application
    Filed: August 10, 2018
    Publication date: February 13, 2020
    Inventors: Ariel GORDON, Brandon WERNER
  • Patent number: 10542010
    Abstract: Provisioning a user account. A method includes, at a local entity contacting an identity system to begin user account provisioning. The method further includes receiving from the identity system a correlating factor related to a verification code sent to the user from the identity system. The method further includes receiving from the user, profile information entered into the local entity, where the profile information is to be stored in the user account. The method further includes receiving from the user the verification code corresponding to the correlating factor. The method further includes sending the correlating factor, user entered verification code and the user entered profile information to the identity system, where the identity system determines that the verification code properly correlates to the correlating factor, and as a result provisions the user account and stores the profile information in the user account.
    Type: Grant
    Filed: May 27, 2016
    Date of Patent: January 21, 2020
    Assignee: Microsoft Technology Licensing, LLC
    Inventors: Ariel Gordon, John Erik Araya
  • Patent number: 10536450
    Abstract: A method and system performed by a computing system for signing in using personal identifiers input via a sign-in portal that supports multiple tenants is provided. The system receives a sign-in request for a user that includes a personal identifier. The personal identifier uniquely identifies a person but does not include an identification of a tenant. The system performs a verification based on the personal identifier to authenticate the user. The system identifies, from a mapping, a tenant to which the personal identifier is mapped. The mapping maps personal identifiers of users to tenants. The system retrieves, from a user store for the tenant, user information relating to the user. The system then creates a security token based on the user information. If verification of the user was successful, the system sends the security token to the sign-in portal as evidence that the user has been authenticated.
    Type: Grant
    Filed: April 18, 2017
    Date of Patent: January 14, 2020
    Assignee: MICROSOFT TECHNOLOGY LICENSING, LLC.
    Inventors: Ariel Gordon, Sarat Chandra Subramaniam, Ben Vincent, Paul Garner
  • Publication number: 20200007554
    Abstract: Described technologies enhance cybersecurity and facilitate computing system account usage by configuring a primary account and a supplementary account together in a security configuration lifecycle. The primary account user may be a parent or other adult, while the supplementary account user may be a child or other person with less capacity than the primary user. Over time, the accounts may transition together through security configurations to give more capabilities to the supplementary user, e.g., login separate from the primary user, and to reduce the control of the primary user over the supplementary account. Security configuration lifecycle stages are implemented, e.g., using capability-security pair data structures and account security configuration code. Despite the security configuration linkage of the accounts, each account may have its own personalized content and its own recommendation history.
    Type: Application
    Filed: June 28, 2018
    Publication date: January 2, 2020
    Inventors: Benjamin VINCENT, Ariel GORDON
  • Patent number: 10397199
    Abstract: A system for creating an account with an identity provider. The system receives a request to create an identity provider account with the identity provider for use in logging onto a third-party system. The system generates one or more display pages for providing an integrated-consent user experience. The integrated-consent user experience includes a display page for collecting both new-account information and scope-of-consent information whereby a user consents to share information with the third-party system. After the user provides the new-account information that includes user credentials for the identity provider account and consents to share account information of the identity provider account with the third-party system, the system creates the identity provider account for the user.
    Type: Grant
    Filed: December 9, 2016
    Date of Patent: August 27, 2019
    Assignee: MICROSOFT TECHNOLOGY LICENSING, LLC
    Inventors: Ariel Gordon, Benjamin Richard Vincent, Stuart Lup-Sing Kwan
  • Patent number: 10320844
    Abstract: Allowing an entity managed device to access a tenant associated with the e on a public cloud service while preventing the device from accessing one or more other tenants on the cloud service. A method includes, at the cloud service, obtaining policy from the entity with respect to tenant access. The method further includes, at the cloud service, receiving a request from the entity managed device to access a tenant at the cloud service. The method further includes granting or denying the access request based on the policy obtained from the entity.
    Type: Grant
    Filed: January 13, 2016
    Date of Patent: June 11, 2019
    Assignee: Microsoft Technology Licensing, LLC
    Inventors: Benjamin Richard Vincent, Ross Peter Adams, Ariel Gordon, Konstantin Ryvkin
  • Publication number: 20190166112
    Abstract: A sign-in system can be protected against enumeration attacks while providing an improved sign-in experience for legitimate users by disclosing whether or not an account exists. An account within a specified domain can be identified by an account identifier such as a username. Before a threshold throttling value is reached, account existence/non-existence information can be provided in response to an access request. In response to reaching or exceeding a specified threshold throttling value, account existence/non-existence information can cease to be provided. Entering a valid account identifier/authenticating credential credentials pair provides access to the computer system regardless of whether or not the threshold was reached or exceeded or not reached.
    Type: Application
    Filed: November 24, 2017
    Publication date: May 30, 2019
    Inventors: Ariel GORDON, Timothy Colin LARSON
  • Publication number: 20190147339
    Abstract: Methods, systems, and apparatus, including computer programs encoded on a computer storage medium, for training neural networks. In one aspect, a system includes a neural network shrinking engine that is configured to receive a neural network being trained and generate a reduced neural network by a shrinking process. The shrinking process includes training the neural network based on a shrinking engine loss function that includes terms penalizing active neurons of the neural network and removing inactive neurons from the neural network. The system includes a neural network expansion engine that is configured to receive the neural network being trained and generate an expanded neural network by an expansion process including adding new neurons to the neural network and training the neural network based on an expanding engine loss function. The system includes a training subsystem that generates reduced neural networks and expanded neural networks.
    Type: Application
    Filed: November 15, 2017
    Publication date: May 16, 2019
    Inventors: Ofir Nachum, Ariel Gordon, Elad Eban, Bo Chen
  • Patent number: 10284492
    Abstract: A method and system for controlling casting to a media renderer is provided. A casting control system receives from a requesting device a request to cast media to the media renderer. In response to receiving the request, the casting control system identifies a gatekeeper for the media renderer and notifies the gatekeeper that a request has been received to cast media to the media renderer. After the casting control system receives from the gatekeeper an indication to grant or deny the request, the casting control system allows or denies the casting of the media to the media renderer.
    Type: Grant
    Filed: August 10, 2016
    Date of Patent: May 7, 2019
    Assignee: MICROSOFT TECHNOLOGY LICENSING, LLC
    Inventors: Ariel Gordon, Steven James Ball, Benjamin Richard Vincent
  • Publication number: 20190132325
    Abstract: The automatic selection of an identity provider to be used to authenticate users when requesting to access network resources for a tenant. The authentication is initiated by checking the username against the directory of the tenant. If that check results in finding an entry for the username in that directory, the entry is checked for an identity provider. If that check results in finding an identity provider, the user is directed to that found identity provider for authentication. Thus, in many, most, or all cases, an identity provider is found and selected for authentication of the user without the user having to manually select the identity provider. The username may be an internal user of an entity. The selection of the identity provider works in either case since there would still be an entry for that user in the directory of the tenant.
    Type: Application
    Filed: October 31, 2017
    Publication date: May 2, 2019
    Inventors: Ariel GORDON, Sarat Chandra SUBRAMANIAM, Yordan I. ROUSKOV, Paul H. J. GARNER, Benjamin R. VINCENT