Patents by Inventor Paul Koster
Paul Koster has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Patent number: 11914738Abstract: Some embodiments are directed to a categorization system for categorizing a sensitive data field in a dataset, e.g., a disease classification according to the ICD classification. A client device is to obtain categories for one or more records of the dataset. The client device determines categorization data for the categorization. The categorization data comprises homomorphic encryptions of possible values of the sensitive data field and encodings of the categories associated to the respective possible values, thus keeping the categorization secret. A data provider device stores the dataset and determines homomorphic encryption indicating differences between the value of the sensitive data field for a record and respective possible values. A categorization device determines which of those encryptions indicates a match and provides a category encoding associated with a matching possible value to the client device. The client device associates the encoded category to the record.Type: GrantFiled: May 14, 2020Date of Patent: February 27, 2024Assignee: Koninklijke Philips N.V.Inventors: Peter Petrus van Liesdonk, Daniel Pletea, Paul Koster
-
Publication number: 20230289450Abstract: A mechanism for determining the trustworthiness of training a first neural network, and thereby of the trained first neural network. Values of a set of weights of the first neural network are monitored during the training process. The monitored values are used to determine the trustworthiness of the training of the first neural network.Type: ApplicationFiled: April 13, 2021Publication date: September 14, 2023Inventors: Daniel Pletea, Peter Petrus van Liesdonk, Robert Paul Koster
-
Publication number: 20210303791Abstract: A system or method generates de-identified output from a data set of patient data comprising unstructured text (100) in natural language phrases. A blacklist (105) has word items that are not allowed. The unstructured text is processed to determine a word count (110) comprising a list of low-rate word items that have a number of occurrences (k) in the unstructured text below a threshold (120). Subsequently, the low-rate word items and the blacklist word items are masked (130) in the unstructured text to generate the de-identified output (140).Type: ApplicationFiled: October 10, 2019Publication date: September 30, 2021Inventors: DANIEL PLETEA, ROBERT PAUL KOSTER, PETER PETRUS VAN LIESDONK
-
Publication number: 20210248263Abstract: Some embodiments are directed to a categorization system for 100 categorizing a sensitive data field in a dataset, e.g., a disease classification according to the ICD classification. A client device is to obtain categories for one or more records of the dataset. The client device determines categorization data for the categorization. The categorization data comprises homomorphic encryptions of possible values of the sensitive data field and encodings of the categories associated to the respective possible values, thus keeping the categorization secret. A data provider device stores the dataset and determines homomorphic encryption indicating differences between the value of the sensitive data field for a record and respective possible values. A categorization device determines which of those encryptions indicates a match and provides a category encoding associated with a matching possible value to the client device. The client device associates the encoded category to the record.Type: ApplicationFiled: May 14, 2020Publication date: August 12, 2021Inventors: Peter Petrus van Liesdonk, Daniel Pletea, Paul Koster
-
Patent number: 10545554Abstract: The resource metering system comprises: an end-point device (25) consuming a resource, in particular for usage in a building (2) or in an outdoor lighting system, said device comprising a detection unit that produces status information and an indicator of usefulness; a smart meter (20) comprising: a communication circuitry provided with an interface adapted for receiving from said device status information and said indicator of usefulness; a metrology device connected to a medium (17) that provides the resource to said device; and a control circuitry connected to the metrology device for collecting resource consumption data, the control circuitry being connected to the communication circuitry and adapted to produce monitoring data to be securely transmitted to a server (10) after processing the status information and said indicator. Monitoring data are used when determining consumption tariffs, so as to encourage energy efficient usage of the device.Type: GrantFiled: October 24, 2011Date of Patent: January 28, 2020Assignee: SIGNIFY HOLDING B.V.Inventors: Robert Paul Koster, Klaus Kursawe, Alphons Antonius Maria Lambertus Bruekers, Paulus Mathias Hubertus Mechtildis Anton Gorissen, Ileana R. Buhan, Petrus Johannes Lenoir, Sye Loong Keoh
-
Patent number: 10038686Abstract: This invention relates to a system and a method of generating an Authorized Domain (AD) by selecting a domain identifier, and binding at least one person (P1, P2, . . . , PN1), at least one device (D1, D2, . . . , DM), and at least one content item (C1, C2, . . . , CN2) to the Authorized Domain (AD) given by the domain identifier (Domain_ID). Hereby, a number of verified devices (D1, D2, . . . , DM) and a number of verified persons (P1, P2, . . . , PN1) that is authorized to access a content item of the Authorized Domain (100) is obtained. In this way, access to a content item of an authorized domain by a person operating a device is obtained either by verifying that the content item and the person are linked to the same domain or by verifying that the device and the content item are linked to the same domain. Thereby, enhanced flexibility for one or more persons when accessing content in an authorized domain is obtained while security of the content is still maintaining.Type: GrantFiled: February 27, 2015Date of Patent: July 31, 2018Assignee: KONINKLIJKE PHILIPS N.V.Inventors: Franciscus L. A. J. Kamperman, Robert Paul Koster, Geert Jan Schrijen
-
Patent number: 9881128Abstract: This invention relates to a method of healthcare data handling by a trusted agent possessing or having an access to decryption keys for accessing healthcare data. A request is received from a requestor requesting accessing healthcare data. A log is generated containing data relating to the request or the requestor or both. Finally, the requestor is provided with an access to the healthcare data.Type: GrantFiled: May 29, 2009Date of Patent: January 30, 2018Assignee: Koninklijke Philips N.V.Inventors: Robert Paul Koster, Milan Petkovic, Julien Kunzi
-
Patent number: 9684770Abstract: A method of performing measurement of a subject comprises measuring a physiological parameter of a subject, deriving data from the measured parameter, optionally, obtaining metadata relating to the measurement of the physiological parameter, determining the quality of the derived data from the derived data and/or the obtained metadata, and if the determined quality matches a predefined criteria, performing a predefined corrective action. In one embodiment, the method further comprises calculating one or more qualifiers from the derived data and/or from the obtained metadata, and wherein the step of determining the quality of the derived data comprises determining the quality of the derived data from the calculated qualifiers.Type: GrantFiled: October 16, 2009Date of Patent: June 20, 2017Assignee: Koninklijke Philips N.V.Inventors: Rafih Berkane, Marijn Christian Damstra, Robert Paul Koster, Stefan Katzenbeisser, Milan Petkovic
-
Patent number: 9635013Abstract: A system for executing a virtual machine instance is provided. An executing environment (11) is arranged for creating a virtual machine instance (10). The virtual machine instance (10) comprises an instance authorization unit (1) for receiving an instance authorization credential, wherein the instance authorization credential is uniquely associated with the virtual machine instance (10). A data key unit (2) is arranged for generating a request for a data key, based on the instance authorization credential associated with the virtual machine instance (10). A decryption unit (3) is arranged for decrypting a data item (7) based on the data key. A key server system (6) is arranged for issuing keys to a virtual machine instance (10). An instance authorization providing unit (22) is arranged for providing the instance authorization credential to the virtual machine instance (10).Type: GrantFiled: September 9, 2013Date of Patent: April 25, 2017Assignee: Koninklijke Philips N.V.Inventors: Robert Paul Koster, Milan Petkovic, Mina Deng
-
Patent number: 9356938Abstract: This invention relates to a method (100) for creating, on a device (200), an authorized domain (102) for sharing a (103) of a content item (104) between a first person (105) and a second person (106). The method (100) alleviates the hassle of having end-users managing authorized domains. If the first person is bound (107) to the right (103), and the device is bound (108) to the first person (105), the device (200) grants (110) the second person (106) the right (103) in response to the device (200) associating (109) to the second person (106).Type: GrantFiled: January 27, 2006Date of Patent: May 31, 2016Assignee: KONINKLIJKE PHILIPS N.V.Inventors: Johan Gerhard Herman Reuzel, Robert Paul Koster
-
Publication number: 20150244710Abstract: A system for executing a virtual machine instance is provided. An executing environment (11) is arranged for creating a virtual machine instance (10). The virtual machine instance (10) comprises an instance authorization unit (1) for receiving an instance authorization credential, wherein the instance authorization credential is uniquely associated with the virtual machine instance (10). A data key unit (2) is arranged for generating a request for a data key, based on the instance authorization credential associated with the virtual machine instance (10). A decryption unit (3) is arranged for decrypting a data item (7) based on the data key. A key server system (6) is arranged for issuing keys to a virtual machine instance (10). An instance authorization providing unit (22) is arranged for providing the instance authorization credential to the virtual machine instance (10).Type: ApplicationFiled: September 9, 2013Publication date: August 27, 2015Inventors: Robert Paul Koster, Milan Petkovic, Mina Deng
-
Publication number: 20150172279Abstract: This invention relates to a system and a method of generating an Authorized Domain (AD) by selecting a domain identifier, and binding at least one person (P1, P2, . . . , PN1), at least one device (D1, D2, . . . , DM), and at least one content item (C1, C2, . . . , CN2) to the Authorized Domain (AD) given by the domain identifier (Domain_ID). Hereby, a number of verified devices (D1, D2, . . . , DM) and a number of verified persons (P1, P2, . . . , PN1) that is authorized to access a content item of the Authorized Domain (100) is obtained. In this way, access to a content item of an authorized domain by a person operating a device is obtained either by verifying that the content item and the person are linked to the same domain or by verifying that the device and the content item are linked to the same domain. Thereby, enhanced flexibility for one or more persons when accessing content in an authorized domain is obtained while security of the content is still maintaining.Type: ApplicationFiled: February 27, 2015Publication date: June 18, 2015Inventors: Franciscus L.A.J. KAMPERMAN, Robert Paul KOSTER, Geert Jan SCHRIJEN
-
Patent number: 9009308Abstract: This invention relates to a system and a method of generating an Authorized Domain (AD) by selecting a domain identifier, and binding at least one person (P1, P, PN1), at least one device (D1, D2, . . . , DM), and at least one content item (C1, C2, . . . , CNZ) to the Authorized Domain (AD) given by the domain identifier (Domain ID). Hereby, a number of verified devices (D1, D2, . . . , DM) and a number of verified persons (P1, P2, . . . , PN1) that is authorized to access a content item of the Authorized Domain (100) is obtained. In this way, access to a content item of an authorized domain by a person operating a device is obtained either by verifying that the content item and the person are linked to the same domain or by verifying that the device and the content item are linked to the same domain. Thereby, enhanced flexibility for one or more persons when accessing content in an authorized domain is obtained while security of the content is still maintaining.Type: GrantFiled: July 14, 2004Date of Patent: April 14, 2015Assignee: Koninklijke Philips N.V.Inventors: Franciscus Lucas Antonius Johannes Kamperman, Robert Paul Koster, Geert Jan Schrijen
-
Patent number: 8881304Abstract: A method of controlled access to content, comprising joining an access sharing network, obtaining a content item from the access sharing network which requires access control data to enable playback, obtaining the access control data, determining from the access control data that a particular other device is authorized to play back the content item, and enabling playback of the content item in accordance with the access control data upon a positive determination that said other device is a member of said access sharing network. Preferably the access control data is used also during a predetermined period of time after making a determination that said other device has ceased to be a member of the access sharing network. Also a device (101) configured to carry out the method.Type: GrantFiled: July 7, 2006Date of Patent: November 4, 2014Assignee: Koninklijke Philips N.V.Inventors: Koen Hendrik Johan Vrielink, Robert Paul Koster, Lukasz Szostek
-
Patent number: 8863239Abstract: This invention relates to a system and a method of generating an Authorized Domain (AI)), the method comprising the steps of selecting a domain identifier (Domain ID) uniquely identifying the Authorized Domain, binding at least one user (P1, P2, . . . , PN1) to the domain identifier (Domain ID), and binding at least one device (D1, D2, . . . , DM) to at least one user (P1, P2, . . . , PN1), thereby obtaining a number of devices (D1, D2, . . . , DM) and a number of users (P1, P2, . . . , PN1) that is authorized to access a content item (C1, C2, CN2) of said Authorized Domain (100). Hereby, a number of verified devices (D1, D2, . . . , DM) and a number of verified persons (P1, P2, . . . , PN1) that is authorized to access a content item of said Authorized Domain (100) is obtained. Additionally, it is possible to enable automatic assignment of imported content being imported on a device belonging to the Authorized Domain (AD) since it now is given to which person a given authorized device belongs to.Type: GrantFiled: March 15, 2005Date of Patent: October 14, 2014Assignee: Adrea, LLCInventors: Petrus Johannes Lenoir, Franciscus Lucas Antonius Johannes Kamperman, Sebastiaan Antonius Fransiscus Van Den Heuvel, Robert Paul Koster
-
Patent number: 8761398Abstract: In a domain comprising a plurality of devices, the devices in the domain sharing a common domain key, a method of enabling a entity that is not a member of the domain to create an object that can be authenticated and/or decrypted using the common domain key, the method comprising providing to the entity that is not a member of the domain a diversified key that is derived using a one-way function from at least the common domain key for creating authentication data related to said object and/or for encrypting said object, the devices in the domain being configured to authenticate and/or decrypt said object using the diversified key.Type: GrantFiled: April 25, 2007Date of Patent: June 24, 2014Assignee: Koninkljijke Philips N.V.Inventors: Robert Paul Koster, Javier Montaner, Sorin Marcel Iacob, Najib Koraichi
-
Publication number: 20130297087Abstract: The resource metering system comprises: an end-point device (25) consuming a resource, in particular for usage in a building (2) or in an outdoor lighting system, said device comprising a detection unit that produces status information and an indicator of usefulness; a smart meter (20) comprising: a communication circuitry provided with an interface adapted for receiving from said device status information and said indicator of usefulness; a metrology device connected to a medium (17) that provides the resource to said device; and a control circuitry connected to the metrology device for collecting resource consumption data, the control circuitry being connected to the communication circuitry and adapted to produce monitoring data to be securely transmitted to a server (10) after processing the status information and said indicator. Monitoring data are used when determining consumption tariffs, so as to encourage energy efficient usage of the device.Type: ApplicationFiled: October 24, 2011Publication date: November 7, 2013Applicant: KONINKLIJKE PHILIPS ELECTRONICS N.V.Inventors: Robert Paul Koster, Klaus Kursawe, Alphons Antonius Maria Lambertus Bruekers, Paulus Mathias Hubertus Mechtildis anton Gorissen, Ileana Buhan, Petrus Johannes Lenoir, Sye Loong Keoh
-
Patent number: 8572397Abstract: Authentication of a user to an electronic device in a communication network is described. The method comprises obtaining a biometric characteristic of the user, transmitting, to a social networking service, information that specifies at least one primary user of the device, receiving, from the social networking service, information that specifies a group of persons who have a social relationship with the at least one primary user, obtaining information that specifies a result from a biometric matching operation with the biometric characteristic of the user and biometric characteristics of persons in the specified group of persons, the result indicating whether or not the user is authenticated to the electronic device. By narrowing down the size of the searching space-needed during a matching operation by utilizing information regarding a group of persons in a social network, the false acceptance rate is reduced and biometric authentication of a user to an electronic device is thereby facilitated, e.g.Type: GrantFiled: June 17, 2009Date of Patent: October 29, 2013Assignee: Koninklijke Philips N.V.Inventors: Robert Paul Koster, Antonius Hermanus Maria Akkermans, Bartholomeus Johannes Van Rijnsoever
-
Patent number: 8561210Abstract: The invention relates to a method of allowing access to an authorized domain (100), the authorized domain (100) being managed by a domain manager (210), comprising a step in which a user authentication device (220), which user authentication device is linked to a foreign device (201), asserts to the domain manager that a local link (205) between the user authentication device and the foreign device is limited in distance, and a step in which the domain manager allows the foreign device to operate as a member of the authorized domain if the assertion is accepted as accurate.Type: GrantFiled: October 28, 2005Date of Patent: October 15, 2013Assignee: Koninklijke Philips N.V.Inventors: Koen Hendrik Johan Vrielink, Petrus Johannes Lenoir, Robert Paul Koster, Joost Reuzel
-
Patent number: 8239962Abstract: This invention relates to a method of processing rights relating to content, that can be communicated between devices. Typically, a Digital Rights Management (DRM) system imposes limitations of use and distribution, imposed by the service provider, content provider or distributor. The method of the invention renders it possible for a user who has received DRM rights to restrict the right further. The invention is more particularly related to the receipt of DRM rights to Authorized Domain Digital Rights Management (AD-DRM) systems and the introduction of user attributed rights in the form of further restrictions introduced to the received DRM rights. The invention further relates to a Rights Program Template (RPT) facilitating the introduction of such further restrictions in a user friendly way. Finally, the invention relates to a system supporting the method of the invention.Type: GrantFiled: May 10, 2005Date of Patent: August 7, 2012Assignee: Koninlijke Philips Electronics N.V.Inventors: Franciscus Lucas Antonius Johannes Kampeman, Milan Petkovic, Robert Paul Koster, Koen Hendrik Johan Vrielink