Patents by Inventor Matthew Lourie

Matthew Lourie has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).

  • Publication number: 20210194919
    Abstract: A system, apparatus, method, and machine-readable medium are described for defending against malicious code injection. For example, one embodiment of an apparatus comprises: a processor to execute an application to access a web page on the Internet in response to user input, the web page having one or more resource descriptors and/or code descriptors associated therewith; an authenticator engine to validate the web page based, at least in part, on the resource descriptors and/or code descriptors, by connecting to a trusted entity; and wherein the trusted entity is configured to generate a signature on a cryptographic assertion that includes one or more resource descriptor objects associated with the one or more resource descriptors and/or one or more code descriptor objects associated with the one or more code descriptors.
    Type: Application
    Filed: December 18, 2019
    Publication date: June 24, 2021
    Inventors: Rolf Lindemann, Matthew Lourie
  • Publication number: 20200280550
    Abstract: A system, apparatus, method, and machine-readable medium are described for endorsing authenticators. For example, one embodiment of an apparatus comprises: a first instance of an authenticator associated with a first app to allow a user of the first app to authenticate with a first relying party; a secure key store accessible by the first instance of the authenticator to securely store authentication data related to the first app; and a synchronization processor to share at least a portion of the authentication data with a second instance of the authenticator associated with a second app to be executed on the apparatus.
    Type: Application
    Filed: February 28, 2019
    Publication date: September 3, 2020
    Inventors: Rolf Lindemann, Matthew Lourie
  • Patent number: 10404754
    Abstract: A system, apparatus, method, and machine-readable medium are described for determining the authentication capabilities. For example, one embodiment of a method comprises: receiving a policy identifying a set of acceptable authentication capabilities; determining a set of client authentication capabilities; and filtering the set of acceptable authentication capabilities based on the determined set of client authentication capabilities to arrive at a filtered set of one or more authentication capabilities for authenticating a user of the client.
    Type: Grant
    Filed: April 16, 2018
    Date of Patent: September 3, 2019
    Assignee: Nok Nok Labs, Inc.
    Inventors: Davit Baghdasaryan, Matthew Lourie, Rolf Lindemann, Brendon J. Wilson, Marc Briceno
  • Publication number: 20180241779
    Abstract: A system, apparatus, method, and machine-readable medium are described for determining the authentication capabilities. For example, one embodiment of a method comprises: receiving a policy identifying a set of acceptable authentication capabilities; determining a set of client authentication capabilities; and filtering the set of acceptable authentication capabilities based on the determined set of client authentication capabilities to arrive at a filtered set of one or more authentication capabilities for authenticating a user of the client.
    Type: Application
    Filed: April 16, 2018
    Publication date: August 23, 2018
    Inventors: Davit BAGHDASARYAN, Matthew LOURIE, Rolf LINDEMANN, Brendon J. WILSON, Marc BRICENO
  • Patent number: 9985993
    Abstract: A system, apparatus, method, and machine readable medium are described for determining the authentication capabilities. For example, one embodiment of a method comprises: receiving a policy identifying a set of acceptable authentication capabilities; determining a set of client authentication capabilities; and filtering the set of acceptable authentication capabilities based on the determined set of client authentication capabilities to arrive at a filtered set of one or more authentication capabilities for authenticating a user of the client.
    Type: Grant
    Filed: September 20, 2015
    Date of Patent: May 29, 2018
    Assignee: NOK NOK LABS, INC.
    Inventors: Davit Baghdasaryan, Matthew Lourie, Rolf Lindemann, Brendon J. Wilson, Marc Briceno
  • Patent number: 9306754
    Abstract: A system, apparatus, method, and machine readable medium are described for performing transaction signing within an authentication framework.
    Type: Grant
    Filed: December 28, 2012
    Date of Patent: April 5, 2016
    Assignee: NOK NOK LABS, INC.
    Inventors: Davit Baghdasaryan, Matthew Lourie
  • Publication number: 20160014162
    Abstract: A system, apparatus, method, and machine readable medium are described for determining the authentication capabilities. For example, one embodiment of a method comprises: receiving a policy identifying a set of acceptable authentication capabilities; determining a set of client authentication capabilities; and filtering the set of acceptable authentication capabilities based on the determined set of client authentication capabilities to arrive at a filtered set of one or more authentication capabilities for authenticating a user of the client.
    Type: Application
    Filed: September 20, 2015
    Publication date: January 14, 2016
    Inventors: Davit Baghdasaryan, Matthew Lourie, Rolf Lindemann, Brendon J. Wilson, Marc Briceno
  • Patent number: 9219732
    Abstract: A system, apparatus, method, and machine readable medium are described for transparently requesting a new random challenge from a server within an authentication framework. For example, one embodiment of a method comprises: transmitting a random challenge and an indication of a timeout period associated with the random challenge from a server to a client within the context of a network registration or authentication process using authentication devices communicatively coupled to the client; automatically detecting that the random challenge is no longer valid based on the timeout period; and responsively transmitting a request for a new random challenge from the client to a server, wherein transmitting is performed transparently to a user of the client.
    Type: Grant
    Filed: December 28, 2012
    Date of Patent: December 22, 2015
    Assignee: NOK NOK LABS, INC.
    Inventors: Davit Baghdasaryan, Matthew Lourie, Brendon J. Wilson, Naga Nagarajan
  • Patent number: 9172687
    Abstract: A system, apparatus, method, and machine readable medium are described for determining the authentication capabilities. For example, one embodiment of a method comprises: receiving a policy identifying a set of acceptable authentication capabilities; determining a set of client authentication capabilities; and filtering the set of acceptable authentication capabilities based on the determined set of client authentication capabilities to arrive at a filtered set of one or more authentication capabilities for authenticating a user of the client.
    Type: Grant
    Filed: December 28, 2012
    Date of Patent: October 27, 2015
    Assignee: NOK NOK LABS, INC.
    Inventors: Davit Baghdasaryan, Matthew Lourie, Rolf Lindemann, Brendon J. Wilson, Marc Briceno
  • Publication number: 20140189360
    Abstract: A system, apparatus, method, and machine readable medium are described for performing transaction signing within an authentication framework.
    Type: Application
    Filed: December 28, 2012
    Publication date: July 3, 2014
    Inventors: Davit Baghdasaryan, Matthew Lourie
  • Publication number: 20140189828
    Abstract: A system, apparatus, method, and machine readable medium are described for transparently requesting a new random challenge from a server within an authentication framework. For example, one embodiment of a method comprises: transmitting a random challenge and an indication of a timeout period associated with the random challenge from a server to a client within the context of a network registration or authentication process using authentication devices communicatively coupled to the client; automatically detecting that the random challenge is no longer valid based on the timeout period; and responsively transmitting a request for a new random challenge from the client to a server, wherein transmitting is performed transparently to a user of the client.
    Type: Application
    Filed: December 28, 2012
    Publication date: July 3, 2014
    Inventors: Davit Baghdasaryan, Matthew Lourie, Brendon J. Wilson, Naga Nagarajan