Patents by Inventor David P. Moore
David P. Moore has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Patent number: 11343341Abstract: An indication is sent to a host server device. The indication includes a request for a push notification service identification (PNSID). The PNSID is used to establish a secure registration between one or more applications on the computing device of a user and the host server device. The PNSID is received from the host server device. An input is received from the user. The input includes one or more application server devices that may send push notifications to the computing device. A unique key is generated for each application server device. The PNSID and a different unique key are sent to each application server device. Each different unique key is associated with a different application server device. A registration is received from each application server device.Type: GrantFiled: January 7, 2019Date of Patent: May 24, 2022Assignee: International Business Machines CorporationInventors: David P. Moore, Craig A. Pearson, Shane B. Weeden
-
Publication number: 20190141154Abstract: An indication is sent to a host server device. The indication includes a request for a push notification service identification (PNSID). The PNSID is used to establish a secure registration between one or more applications on the computing device of a user and the host server device. The PNSID is received from the host server device. An input is received from the user. The input includes one or more application server devices that may send push notifications to the computing device. A unique key is generated for each application server device. The PNSID and a different unique key are sent to each application server device. Each different unique key is associated with a different application server device. A registration is received from each application server device.Type: ApplicationFiled: January 7, 2019Publication date: May 9, 2019Inventors: David P. Moore, Craig A. Pearson, Shane B. Weeden
-
Patent number: 10237270Abstract: A biometric server receives, a transmission of a biometric sample and an encrypted enrollment template of the user from a client device, wherein the encrypted enrollment template comprises an encrypted mathematical representation of historical biometric data of the user, and wherein the biometric sample comprises a current snapshot of the biometric data. The biometric server decrypts the encrypted enrollment template to an enrollment template using an enrollment template key. The biometric server converts the biometric sample to a biometric template. The biometric server, based on determining that the biometric template is similar to the enrollment template associated with the user, sends an access token to the client device.Type: GrantFiled: September 29, 2016Date of Patent: March 19, 2019Assignee: International Business Machines CorporationInventors: Leo M. M. Farrell, Benjamin M. E. Martin, David P. Moore, Jasmine A. Smith, Shane B. Weeden
-
Patent number: 10225359Abstract: An indication is sent to a host server device. The indication includes a request for a push notification service identification (PNSID). The PNSID is used to establish a secure registration between one or more applications on the computing device of a user and the host server device. The PNSID is received from the host server device. An input is received from the user. The input includes one or more application server devices that may send push notifications to the computing device. A unique key is generated for each application server device. The PNSID and a different unique key are sent to each application server device. Each different unique key is associated with a different application server device. A registration is received from each application server device.Type: GrantFiled: September 22, 2016Date of Patent: March 5, 2019Assignee: International Business Machines CorporationInventors: David P. Moore, Craig A. Pearson, Shane B. Weeden
-
Patent number: 10205723Abstract: A biometric server receives, a transmission of a biometric sample and an encrypted enrollment template of the user from a client device, wherein the encrypted enrollment template comprises an encrypted mathematical representation of historical biometric data of the user, and wherein the biometric sample comprises a current snapshot of the biometric data. The biometric server decrypts the encrypted enrollment template to an enrollment template using an enrollment template key. The biometric server converts the biometric sample to a biometric template. The biometric server, based on determining that the biometric template is similar to the enrollment template associated with the user, sends an access token to the client device.Type: GrantFiled: March 6, 2018Date of Patent: February 12, 2019Assignee: International Business Machines CorporationInventors: Leo M. M. Farrell, Benjamin M. E. Martin, David P. Moore, Jasmine A. Smith, Shane B. Weeden
-
Patent number: 10171457Abstract: An indication is received that a user has initiated an access to a website hosted by a service provider. Access to the website requires an authorization of a user identification associated with the user and a password associated with the user. A token is requested. The token provides access to an application programming interface. The token is received. The token is stored by the service provider.Type: GrantFiled: December 29, 2015Date of Patent: January 1, 2019Assignee: International Business Machines CorporationInventors: David P. Moore, Trevor S. Norvill, Philip A. J. Nye, Robert T. Trotter
-
Publication number: 20180167388Abstract: A biometric server receives, a transmission of a biometric sample and an encrypted enrollment template of the user from a client device, wherein the encrypted enrollment template comprises an encrypted mathematical representation of historical biometric data of the user, and wherein the biometric sample comprises a current snapshot of the biometric data. The biometric server decrypts the encrypted enrollment template to an enrollment template using an enrollment template key. The biometric server converts the biometric sample to a biometric template. The biometric server, based on determining that the biometric template is similar to the enrollment template associated with the user, sends an access token to the client device.Type: ApplicationFiled: March 6, 2018Publication date: June 14, 2018Inventors: Leo M. M. Farrell, Benjamin M. E. Martin, David P. Moore, Jasmine A. Smith, Shane B. Weeden
-
Publication number: 20180091505Abstract: A biometric server receives, a transmission of a biometric sample and an encrypted enrollment template of the user from a client device, wherein the encrypted enrollment template comprises an encrypted mathematical representation of historical biometric data of the user, and wherein the biometric sample comprises a current snapshot of the biometric data. The biometric server decrypts the encrypted enrollment template to an enrollment template using an enrollment template key. The biometric server converts the biometric sample to a biometric template. The biometric server, based on determining that the biometric template is similar to the enrollment template associated with the user, sends an access token to the client device.Type: ApplicationFiled: September 29, 2016Publication date: March 29, 2018Inventors: Leo M. M. Farrell, Benjamin M. E. Martin, David P. Moore, Jasmine A. Smith, Shane B. Weeden
-
Publication number: 20180084071Abstract: An indication is sent to a host server device. The indication includes a request for a push notification service identification (PNSID). The PNSID is used to establish a secure registration between one or more applications on the computing device of a user and the host server device. The PNSID is received from the host server device. An input is received from the user. The input includes one or more application server devices that may send push notifications to the computing device. A unique key is generated for each application server device. The PNSID and a different unique key are sent to each application server device. Each different unique key is associated with a different application server device. A registration is received from each application server device.Type: ApplicationFiled: September 22, 2016Publication date: March 22, 2018Inventors: David P. Moore, Craig A. Pearson, Shane B. Weeden
-
Patent number: 9906558Abstract: A method sends a request for a delegated authorization grant data set, receives a delegated authorization grant data set that defines the delegated authorization grant scope, with respect to a resource. The delegated authorization grant data set includes a scope variable value having been selected by a delegator entity through a delegation grant scope user interface on the delegator device. The scope controls access to the resource in a manner limited by the scope of the delegated authorization grant defined by the delegated authorization grant data set.Type: GrantFiled: June 24, 2015Date of Patent: February 27, 2018Assignee: International Business Machines CorporationInventors: David P. Moore, Craig Pearson
-
Patent number: 9818085Abstract: A method and system for integrating restrictions in an identity management system is provided. The method includes generating a role/account attribute table storage from static and dynamic rule defined values. A role request for a first role associated with a user is received and a set of attributes comprising a result of the role request are calculated. The set of attributes are transmitted to a target system for evaluation and a result is received.Type: GrantFiled: January 8, 2014Date of Patent: November 14, 2017Assignee: International Business Machines CorporationInventors: Rune H. Larsen, David P. Moore, Franz Wolfhagen
-
Publication number: 20170187708Abstract: An indication is received that a user has initiated an access to a website hosted by a service provider. Access to the website requires an authorization of a user identification associated with the user and a password associated with the user. A token is requested. The token provides access to an application programming interface. The token is received. The token is stored by the service provider.Type: ApplicationFiled: December 29, 2015Publication date: June 29, 2017Inventors: David P. Moore, Trevor S. Norvill, Philip A.J. Nye, Robert T. Trotter
-
Patent number: 9692765Abstract: Embodiments of the present invention disclose a method, computer program product, and system for determining role-based access. In one embodiment, the method includes receiving an audit event for a restricted resource and a first user id associated with the audit event. The method further includes determining based at least in part on the audit event, a historical reference, the historical reference including at least one audit event associated with at least one user id. The method further includes determining access activity associated with the first user id. The method further includes determining based at least in part on the historical reference and the access activity, at least one recommended role for the first user id.Type: GrantFiled: August 21, 2014Date of Patent: June 27, 2017Assignee: International Business Machines CorporationInventors: Christopher Y. Choi, Rune H. Larsen, David P. Moore, Franz Wolfhagen
-
Publication number: 20160381021Abstract: A method sends a request for a delegated authorization grant data set, receives a delegated authorization grant data set that defines the delegated authorization grant scope, with respect to a resource. The delegated authorization grant data set includes a scope variable value having been selected by a delegator entity through a delegation grant scope user interface on the delegator device. The scope controls access to the resource in a manner limited by the scope of the delegated authorization grant defined by the delegated authorization grant data set.Type: ApplicationFiled: June 24, 2015Publication date: December 29, 2016Inventors: David P. Moore, Craig Pearson
-
Publication number: 20160284146Abstract: An approach for access authorization to a protected resource is provided. The approach provisions a physical access badge identifier to a door controller. The approach receives a swipe event, wherein the swipe event includes a door controller identifier and the physical access badge identifier. The approach creates an authorization request to access a protected resource, wherein the authorization request includes a request from a user for access to a protected resource. The approach identifies one or more security policies for the protected resource. The approach determines whether to permit access to the protected resource based, at least in part, on the one or more security policies and the swipe event. Responsive to a determination to permit access to the protected resource, the approach permits access to the protected resource, wherein permitting access to the protected resource includes validating an authentication session for a user.Type: ApplicationFiled: December 18, 2015Publication date: September 29, 2016Inventors: David P. Moore, Craig Pearson
-
Publication number: 20160284141Abstract: An approach for access authorization to a protected resource is provided. The approach provisions a physical access badge identifier to a door controller. The approach receives a swipe event, wherein the swipe event includes a door controller identifier and the physical access badge identifier. The approach creates an authorization request to access a protected resource, wherein the authorization request includes a request from a user for access to a protected resource. The approach identifies one or more security policies for the protected resource. The approach determines whether to permit access to the protected resource based, at least in part, on the one or more security policies and the swipe event. Responsive to a determination to permit access to the protected resource, the approach permits access to the protected resource, wherein permitting access to the protected resource includes validating an authentication session for a user.Type: ApplicationFiled: March 27, 2015Publication date: September 29, 2016Inventors: David P. Moore, Craig Pearson
-
Publication number: 20160057150Abstract: Embodiments of the present invention disclose a method, computer program product, and system for determining role-based access. In one embodiment, the method includes receiving an audit event for a restricted resource and a first user id associated with the audit event. The method further includes determining based at least in part on the audit event, a historical reference, the historical reference including at least one audit event associated with at least one user id. The method further includes determining access activity associated with the first user id. The method further includes determining based at least in part on the historical reference and the access activity, at least one recommended role for the first user id.Type: ApplicationFiled: August 21, 2014Publication date: February 25, 2016Inventors: Christopher Y. Choi, Rune H. Larsen, David P. Moore, Franz Wolfhagen
-
Publication number: 20150193273Abstract: A method and system for integrating restrictions in an identity management system is provided. The method includes generating a role/account attribute table storage from static and dynamic rule defined values. A role request for a first role associated with a user is received and a set of attributes comprising a result of the role request are calculated. The set of attributes are transmitted to a target system for evaluation and a result is received.Type: ApplicationFiled: January 8, 2014Publication date: July 9, 2015Applicant: INTERNATIONAL BUSINESS MACHINES CORPORATIONInventors: Rune H. Larsen, David P. Moore, Franz Wolfhagen
-
Patent number: 8847729Abstract: A host organization system for a host organization of a physical site, receives a request, by a visitor with an identifier of a visitor organization for a visitor access medium, for access to the physical site controlled by a physical access control system requiring presentation of the visitor access medium for access to the physical site, wherein there is an electronic trust relationship between the host organization system and a visitor organization system for the visitor organization via a network, wherein the visitor organization system maintains an electronic identity profile for the visitor. Responsive to the host organization system receiving an authenticated identifier for the visitor from the visitor organization system and validating the authenticated identifier from the visitor organization system, issuing a visitor access medium to the visitor for controlling access to the physical site.Type: GrantFiled: August 29, 2011Date of Patent: September 30, 2014Assignee: International Business Machines CorporationInventors: David P. Moore, Craig Pearson
-
Patent number: 8681780Abstract: An electronically authenticated internet voice connection can be initiated on an institution's website. Authentication of the customer's identity can be determined based upon already established credentials, such as a username and password. Upon verifying the identity of the customer, the institution's web server can generate and transmit a unique identifier to the customer's browser. The unique identifier can be an encrypted identifier used to authenticate the customer when establishing a subsequent voice connection.Type: GrantFiled: February 12, 2009Date of Patent: March 25, 2014Assignee: International Business Machines CorporationInventors: Scott M. Andrews, Anthony B. Ferguson, David P. Moore, John T. Robertson