Patents Issued in April 18, 2017
  • Patent number: 9626473
    Abstract: A CMOS device comprises a substrate with a plurality of regions, the regions including an N-type region and a P-type region which meet each other in a PN-boundary, two or more P-type active regions embedded in the N-type region, and two or more N-type active regions embedded in the P-type region. The PN-boundary or a section of the PN-boundary is a chain of line segments. Any two adjoining line segments of the chain are angled relative to each other at their connecting point. The CMOS device can be designed using abutting standard cells. For each of two or more operating points, rise delays and fall delays associated with one or more clock cells are estimated. If the estimated rise delays and fall delays satisfy a given set of constraints, the layout of the CMOS device is accepted. Otherwise the layout is updated and a new analysis round is performed.
    Type: Grant
    Filed: January 4, 2016
    Date of Patent: April 18, 2017
    Assignee: NXP USA, INC.
    Inventors: Denis Borisovich Malashevich, Viacheslav Sergeyevich Kalashnikov, Mikhail Yurievich Semenov
  • Patent number: 9626474
    Abstract: Aspects of the disclosed technology relate to techniques for determining expanded canonical forms of layout patterns. Coordinates of vertices of geometric elements in a window of a layout design are first transformed into new coordinates of the vertices, wherein the coordinates of vertices do not comprise clipped coordinates and the transforming comprises: performing a translation on the coordinates of vertices based on differences between maximum and minimum X/Y coordinate values of the vertices. Based on sums of X/Y coordinate values of the new coordinates of the vertices, a canonical form of the geometric elements is determined. The canonical form coordinates of the vertices for a plurality of windows may then be determined. The plurality of windows comprise the window, are centered in the same location as the window, and have different sizes.
    Type: Grant
    Filed: July 1, 2015
    Date of Patent: April 18, 2017
    Assignee: Mentor Graphics Corporation
    Inventor: Wu-Tung Cheng
  • Patent number: 9626475
    Abstract: An approach to facilitating event-based currency is provided. A first virtual currency usable by users of a game space to purchase in-space benefits may be managed. An event in the game space that is conducted during an event time period may be managed such that, during the event time period, an event virtual currency may be distributed to one or more of the users as a reward for certain operations and/or achievements performed in the game space during the event time period. Exchanges of in-space benefits associated with the event virtual currency may be effectuated for one or more of the users. In some implementations, the event virtual currency may not available to the users after the event time period, while the first virtual currency may be available to the users during and after the event time period.
    Type: Grant
    Filed: April 18, 2013
    Date of Patent: April 18, 2017
    Assignee: Kabam, Inc.
    Inventors: Stephanie K. Schultz, Michael C. Caldarone
  • Patent number: 9626476
    Abstract: An apparatus, method and computer-readable storage medium are provided for processing images, such as medical images, in accordance with an imaging calibration function during execution of an image viewing application, and also for processing other types of images with a different calibration function during execution of a different application. In regards to an apparatus, the apparatus is caused to identify, in conjunction with an image viewing application, an imaging calibration function. The apparatus is also caused to transform a digital image during execution of the image viewing application in accordance with the imaging calibration function and to output the digital image, following transformation, in accordance with the image viewing application.
    Type: Grant
    Filed: March 27, 2014
    Date of Patent: April 18, 2017
    Assignee: Change Healthcare LLC
    Inventor: Mahmoud Ramze Rezaee
  • Patent number: 9626477
    Abstract: A method and system for displaying images captured by an in vivo imaging device are disclosed. Embodiments according to the present invention display image sequence data in a first display area. When a first annotated image is displayed in the first display area, a first thumbnail image in a second display area corresponding to the first annotated image is replaced to indicate an occurring correspondence between the first annotated image and the first thumbnail image corresponding to the first annotated image being displayed. In one embodiment, the method further comprises displaying the first thumbnail image in the second display area when one other image of the image sequence data is displayed in the first display area after the first annotated image is displayed.
    Type: Grant
    Filed: February 23, 2016
    Date of Patent: April 18, 2017
    Assignee: CAPSOVISION INC
    Inventors: Kang-Huai Wang, Gordon C. Wilson
  • Patent number: 9626478
    Abstract: A system and method for tracking biological age over time based upon heart rate variability includes an activity monitoring device configured to measure and transmit one or more biological age parameters, including heart rate variability, to a biological age calculation and display module configured to calculate a biological age factor as a function of the biological age parameters, calculate biological age as a function of the biological age factor and the user's actual age, and display the biological age.
    Type: Grant
    Filed: April 3, 2014
    Date of Patent: April 18, 2017
    Assignee: LOGITECH EUROPE, S.A.
    Inventor: Judd Armstrong
  • Patent number: 9626479
    Abstract: Computer implemented methods and systems operating on real-time data derived from a plurality of data sources for supporting user-definable rules and providing user notifications for providing user notifications and smart alarms. A user-interface configured to dynamically display a parameter and toggle between a tabular display and a graphical display is generated. At least one of a user-defined rule or a threshold value associated with the parameter from a user-interface element is received. A notification is provided to a user when the parameter satisfies the user-defined rule or exceeds the threshold value.
    Type: Grant
    Filed: February 20, 2014
    Date of Patent: April 18, 2017
    Assignee: BERNOULLI ENTERPRISE, INC.
    Inventor: John Zaleski
  • Patent number: 9626480
    Abstract: Various systems and methods of operating an analyte measurement device is provided. The device has a display, user interface, processor, memory and user interface buttons. In one example, one of the methods can be achieved by measuring an analyte with the analyte measurement device; displaying a value representative of the analyte; prompting a user to activate a test reminder; and activating the test reminder to remind a user to conduct a test measurement at a different time. Other methods and systems are also described and illustrated.
    Type: Grant
    Filed: November 21, 2014
    Date of Patent: April 18, 2017
    Assignee: LifeScan Scotland Limited
    Inventors: Antony Smith, Allan Faulkner
  • Patent number: 9626481
    Abstract: A dose counter for a metered dose inhaler includes a force sensor, an electronic controller, a memory for storing data indicative of a remaining number of doses and an electronic display device coupled to the controller for displaying the remaining number of doses. The dose counter is attached or integrated into a base of a canister containing medicament such that force applied to the base of the canister is registered by the force sensor, the controller being configured to measure force applied to the dose counter when depressing the canister and being responsive to measured force to decrement the remaining number of doses stored in the memory and shown on the display device.
    Type: Grant
    Filed: June 24, 2013
    Date of Patent: April 18, 2017
    Assignee: Teva Pharmaceutical Industries Ltd.
    Inventors: Ian Solomon, Moti Goldhirsh
  • Patent number: 9626482
    Abstract: Work flows are modeled as a graph of interdependent tasks to be performed. The tasks to be performed are set by a task file module configured to enable interactions between tasks and including modules for event viewing, protocol assistance, smart messaging, smart indices, reference material lookup. A decision support manager module is configured to construct data and model profiles for storage in a data and model profile bank, events for storage in a decision support events bank, and protocols for storage in a decision support protocol bank. Configuration files are provided to specify a configuration for execution of one of the tasks. Data entered through a user interface or from a network via a wireless or wired communication module may define task files in the task files module, configuration files in the configuration files module, as well as data, events, and protocols to be used for a defibrillation procedure.
    Type: Grant
    Filed: March 15, 2013
    Date of Patent: April 18, 2017
    Assignee: Physio-Control, Inc.
    Inventors: Ken Peterson, Mitchell A Smith, Denny Craig Edwards, Nathaniel Paul Barcelos, James Wootten, Clayton Young, Randy L. Merry, Dana S Lewis, John C Daynes, Paul R Juhasz, David Okey, Steven Witters, Ira M Turner
  • Patent number: 9626483
    Abstract: A method of administering medication. Medication is stored in a plurality of drawers wherein each of the plurality of drawers includes a drawer electrical connector, a medication conveyor, and a non-volatile read/write memory to store data about the drawer. A drawer of the plurality of drawers is inserted into a receptacle of a housing, wherein the receptacle is one of a plurality of receptacles, and the housing also includes a plurality of housing electrical connectors corresponding to the plurality of receptacles, wherein one of the housing electrical connectors is coupled to the electrical connector of the drawer when the drawer is inserted in the receptacle.
    Type: Grant
    Filed: June 5, 2013
    Date of Patent: April 18, 2017
    Assignee: Advantage Pharmacy Services LLC
    Inventors: John Todd Barrett, Fred P. Schoville
  • Patent number: 9626484
    Abstract: A medication storage and dispensing workstation for use in a medication management system administering the inventory and distribution of pharmaceuticals and medical supplies in a healthcare environment is disclosed. The workstation incorporates a linear drawer assembly having a plurality of discrete, removable, storage modules for containing medications and/or other medical supplies. The storage modules are arranged in a linear array extending longitudinally along the travel path of the linear drawer assembly. Each storage module, in turn, comprises a drawer that is extensible laterally relative to the linear arrangement of the storage modules. As such, the drawer assemblies comprise a compartmentalized “drawer-in-drawer” arrangement that provides an efficient use of storage space and enables a user to utilize the workstation in a workspace having a smaller footprint that traditional storage cabinet apparatus.
    Type: Grant
    Filed: July 10, 2015
    Date of Patent: April 18, 2017
    Assignee: TOUCHPOINT MEDICAL, INC.
    Inventors: Jeffrey C. Olson, Scott Curtis Miller, James Leo Kilgallon, Tobin H. Williams, Paul Prickett, Karl Haiden, Scott Harshbarger, Adam Troup, Patrick Sweeney
  • Patent number: 9626485
    Abstract: A portable medication dispensing system is described. In some embodiments, the system includes a portable medication tote comprising a securable compartment configured to hold medication, and a controller, responsive to access information, configured to assign a patient to the securable compartment such that medications for the patient are authorized for placement into the securable compartment. The controller is also configured to selectively permit a user access to the medications for the patient in the securable compartment when the access information indicates the user has access to the securable compartment, and restrict access to retrieval of the medications for the patient in the securable compartment when the access information indicates the user does not have access to the securable compartment. The system also includes an information output module configured to output usage information regarding access to the securable compartment.
    Type: Grant
    Filed: May 27, 2016
    Date of Patent: April 18, 2017
    Assignee: CareFusion 303, Inc.
    Inventors: Barry Arthur Brown, Duane E. Veach, James David Defreece
  • Patent number: 9626486
    Abstract: In an environment where it is beneficial for chronic health care patients to receive individualized attention on a daily basis, a health care network (10) is provided. Each patient receives a user interface device (12) such as a set top box for accessing the network (10). Based on the patient's health care history, a nurse or other health care professional interfaces with a server (22) and constructs a care plan specific to that patient by filling out appropriate sections of a care plan template. An itinerary arrangement processor (32) organizes content gleaned from the patient's care plan and constructs a serially arranged itinerary for the patient to experience each day. The patient logs on to the network (10) and is immediately presented with the day's itinerary, without having to navigate any menus. Resultantly, the patient will have an easier experience, and will not miss any material.
    Type: Grant
    Filed: October 31, 2007
    Date of Patent: April 18, 2017
    Assignee: Koninklijke Philips N.V.
    Inventors: Tadashi Egami, Gilbert C. Lemke, John C. Ryan
  • Patent number: 9626487
    Abstract: Methods and systems for a security-activated production device include but are not limited to obtaining access to an object data file configured to produce one or more objects on the production device; verifying an authorization code associated with the object data file; and controlling operation of the production device to enable or prevent production of the one or more objects pursuant to the authorization code in accordance with one or more predetermined conditions.
    Type: Grant
    Filed: March 27, 2008
    Date of Patent: April 18, 2017
    Assignee: Invention Science Fund I, LLC
    Inventors: Edward K. Y. Jung, Royce A. Levien, Robert W. Lord, Mark A. Malamud, John D. Rinaldo, Jr., Clarence T. Tegreene, Lowell L. Wood, Jr.
  • Patent number: 9626488
    Abstract: A non-transitory computer readable storage medium including computer readable code that, when executed by a processor, is configured to receive, from a user network device, a first request to execute an application on the user network device. The first request includes a user identification, routing information, and requested application information, encrypted using a public key. The user network device is configured to display the application on a television display device. The code is further configured to decrypt the routing information and requested application information using a private key, send a second request for subscription information to a service provider, receive the subscription information from the service provider, and determine that a license corresponding to the application is associated with the user. The code is further configured to generate and send an application package configured to deploy the application using a Java Runtime Environment on the user network device.
    Type: Grant
    Filed: October 14, 2011
    Date of Patent: April 18, 2017
    Assignee: Oracle America, Inc.
    Inventors: Bernard A. Traversat, Mohamed M. Abdelaziz, Michael J. Duigou, Henry Jen, Brian Goetz
  • Patent number: 9626489
    Abstract: Systems and methods are described that protect intellectual property rights in connection with 3-dimensional printing processes. In certain embodiments, an object a user would like to render with a 3-dimensional printing device may be compared with one or more managed objects having certain associated intellectual property rights. If the object is found to be similar to a managed object (e.g., similar in shape, function, composition, etc.), policy associated with the managed object may be enforced in connection with rendering the object. In this manner, intellectual property rights associated with the managed objects may be enforced.
    Type: Grant
    Filed: March 13, 2014
    Date of Patent: April 18, 2017
    Assignee: Intertrust Technologies Corporation
    Inventor: Jarl A. Nilsson
  • Patent number: 9626490
    Abstract: Systems and methods for accessing digital content using electronic tickets and ticket tokens are disclosed. In one system, a user device includes a processor, a network interface, and memory configured to store an electronic ticket, and a ticket token, and the processor is configured by an application to send a request for digital content, receive a ticket token from a merchant server, wherein the ticket token is generated by a DRM server and associated with an electronic ticket that enables playback of the requested digital content, send the ticket token to a DRM server, receive an electronic ticket that enables playback of requested digital content, request the digital content associated with the electronic ticket, and play back the requested digital content using the electronic ticket.
    Type: Grant
    Filed: December 11, 2014
    Date of Patent: April 18, 2017
    Assignee: Sonic IP, Inc.
    Inventors: Ben Ziskind, David Smith, Ramon Davila
  • Patent number: 9626491
    Abstract: A method, system and computer program product for enforcing licensing terms when distributing content via a container image running in a container. Upon receiving a request for a service from the container by the isolation code, where the isolation code limits, accounts and isolates resource usage of process groups, the commerce code application programming interfaces (APIs) of the isolation code read a key of the container. The key contains licensing terms applied to the component(s) (e.g., applications) of the container. The commerce code APIs will then confirm that the container is in compliance with those licensing terms. If the container is in compliance with the licensing terms, the container will be allowed to execute. Otherwise, the container will be prevented from executing. In this manner, the commerce code APIs can enforce the licensing terms, including restrictions and enforcement of payment to the licensor upon distributing content in the container.
    Type: Grant
    Filed: May 15, 2015
    Date of Patent: April 18, 2017
    Assignee: International Business Machines Corporation
    Inventors: Paul M. Bercow, Daniel E. Kloud, Victor S. Moore, Aaron J. Quirk
  • Patent number: 9626492
    Abstract: Obfuscating denotational logic in a source program. A non-rule-based object oriented source program is received. The source program is transformed into a rule-based source program that includes an object model and a ruleset. Attribute domains of the rule-based source program are characterized by a structure of their values in which the structure of the values is nominal, ordered, interval, or ratio. A minimum cardinality is calculated for each domain attribute. First domain attributes are randomly mapped to second domain attributes, each second domain attribute having the same value structure and a same or higher cardinality as the corresponding first domain attribute. For each randomly mapped pair a domain range of the first domain attribute is mapped to a domain range of the second domain attribute. In the rule-based source program first domain input fields and values are replaced with the respective second domain input fields and values.
    Type: Grant
    Filed: July 20, 2016
    Date of Patent: April 18, 2017
    Assignee: International Business Machines Corporation
    Inventors: Thomas Baudel, Nicolas Changhai Ke, Pierre-Andre Paumelle, Jean-Yves Rigolet
  • Patent number: 9626493
    Abstract: Data from one or more sensors of a computing device can be employed to provide continuous protection of digital content. After user authentication and authorization, sensor data can be utilized to control access to protected content. More specifically, sensor data can be employed as a basis for initially providing an authorized user access to protected content and subsequently terminating access to the protected content. For additional security, content can be embedded with user identifying information in the form of a watermark. Further, such user identifying information can be provided to a content owner identifying one or more users who viewed the content.
    Type: Grant
    Filed: June 8, 2013
    Date of Patent: April 18, 2017
    Assignee: Microsoft Technology Licensing, LLC
    Inventor: Yair Cohen
  • Patent number: 9626494
    Abstract: Disclosed is a method which comprises receiving a user input which includes a password component and a non-password component that is defined by a user, the non-password component is arranged relative to the password component in a random manner determined by the user; verifying a presence of a pre-assigned password within the user input, wherein the pre-assigned password is associated with the user and stored in a first database; and based on the verified presence of the pre-assigned password within the received user input, identifying the non-password component. This way, even if a third party has full view of the user input entry, the visitor would be unable to discover the password and additional information individually.
    Type: Grant
    Filed: November 21, 2014
    Date of Patent: April 18, 2017
    Assignee: VORSZ ONE PTE. LTD
    Inventor: Ajie Milya
  • Patent number: 9626495
    Abstract: An approach for authenticating a device is provided. The approach includes a computer implemented method for receiving a first stage biometric variable verification data for accessing the device. The approach further includes a computer-implemented method for computing a second stage binary authentication data for accessing the device. The approach further includes analyzing the received first stage biometric variable verification data and the second stage binary authentication data. The approach further includes receiving the second binary authentication data for accessing the device.
    Type: Grant
    Filed: November 17, 2014
    Date of Patent: April 18, 2017
    Assignee: International Business Machines Corporation
    Inventors: Suzanne C. Deffeyes, Francis J. Hildenbrand, Jr., Garreth J. Jeremiah, Amir Khan, C. Steven Lingafelt
  • Patent number: 9626496
    Abstract: A system that incorporates teachings of the subject disclosure may include, for example, a method for detecting, by a system including at least one processor, a presence of an object from sensor data generated by a sensor device, retrieving, by the system, from a memory device a plurality of profiles biometrically descriptive of approved objects, asserting, by the system, an alarm responsive to determining from the sensor data that the detected object is not biometrically correlated to any of the plurality of profiles, classifying, by the system, the detected object as an authorized object responsive to determining from the sensor data that the detected object is biometrically correlated to at least one of the plurality of profiles, and notifying, by the system, at least one neighboring device responsive to asserting the alarm or responsive to classifying the detected object as the authorized object. Other embodiments are disclosed.
    Type: Grant
    Filed: February 12, 2016
    Date of Patent: April 18, 2017
    Assignee: AT&T Intellectual Property I, L.P.
    Inventor: Lee Friedman
  • Patent number: 9626497
    Abstract: A system for sharing a USB Key by multiple virtual machines located at different hosts including at least two virtual machine managers, each virtual machine manager including a virtual machine transceiver module which is configured to receive a request for accessing a USB Key from a virtual machine within its host; a storage module which is configured to store an association relationship between a USB Key and the virtual machine authenticated by the USB Key; a verification module which is configured to, in response to judging that the virtual machine of the received request can access the USB Key, transmit the request for accessing the USB Key to a USB Key transceiver module of a virtual machine manager of the host where the USB Key is located; and a USB Key transceiver module which is configured to receive a request for accessing a USB Key, and to transmit an access request to a connected USB Key.
    Type: Grant
    Filed: April 5, 2016
    Date of Patent: April 18, 2017
    Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATION
    Inventors: Lijun Wei, Binqi Zhang, Qian Zhang, Qing Hong Zhuang
  • Patent number: 9626498
    Abstract: A system of authorizing access to a resource including a processor obtaining sensor information related to at least two users from one or more sensors, the sensor information including one or more of image information and proximity information of each of the at least two users. Further, an act of identifying current gestures is performed for each of the at least two users in accordance with the sensor information. The current gestures may be compared with pre-stored gesture information related to predetermined gestures and an order of the predetermined gestures. Further, access to the resource may be authorized when it is determined that the current gestures are in accordance with the predetermined gestures and the order of the predetermined gestures.
    Type: Grant
    Filed: December 14, 2012
    Date of Patent: April 18, 2017
    Assignee: FRANCE TELECOM
    Inventors: Julian Gay, Adam Odessky
  • Patent number: 9626499
    Abstract: A system and machine-implemented method for matching input gestures on a touch interface to a security pattern to allow user access to an electronic device or account. The security pattern may correspond to a combination of linear and non-linear input gestures relating to directional changes of the input gestures. A determination of the security pattern may be based on the end motion and speed of each input gesture.
    Type: Grant
    Filed: May 13, 2015
    Date of Patent: April 18, 2017
    Assignee: Google Inc.
    Inventors: Alexander Friedrich Kuscher, Andrew Warr
  • Patent number: 9626500
    Abstract: A method, system or computer usable program product for managing access to an electronic system through a touchscreen device including presenting a display of a first and a second scrolling stream of icons; responsive to user input, detecting contemporaneous selection of a first icon from the first scrolling stream and a second icon from the second scrolling stream; and responsive to the selection of the first and second icon matching an established unlock pattern, unlocking the electronic system.
    Type: Grant
    Filed: June 9, 2015
    Date of Patent: April 18, 2017
    Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATION
    Inventors: Faraz Ahmad, Adekunle Bello, Gregory J. Boss, Anto A. R. John
  • Patent number: 9626501
    Abstract: The described embodiments relate generally to methods and systems for user authentication for a computing device. In one embodiment, the method comprises: enabling receipt of input in relation to selection of a plurality of authenticators for consecutive use by the computing device to authenticate a user; and storing reference information identifying the selected plurality of authenticators in a memory of the computing device. The computing device may comprise a mobile device.
    Type: Grant
    Filed: April 15, 2013
    Date of Patent: April 18, 2017
    Assignee: BlackBerry Limited
    Inventors: Neil Patrick Adams, Richard Paul Sibley
  • Patent number: 9626502
    Abstract: A manageability engine (ME) receives an authentication response from a user during pre-boot authentication and registers the user with a key distribution center (KDC), indicating that the user has successfully authenticated to the PC. The KDC supplies the ME with single-sign-on credentials in the form of a Key Encryption Key (KEK). The KEK may later be used by the PC to obtain a credential used to establish secure access to Enterprise servers.
    Type: Grant
    Filed: October 7, 2014
    Date of Patent: April 18, 2017
    Assignee: Intel Corporation
    Inventors: Ned M. Smith, Purushottam Goel
  • Patent number: 9626503
    Abstract: Computationally implemented methods and systems include acquiring property data regarding at least one property of one or more devices, generating anonymized data by altering the acquired property data to obscure one or more portions of the acquired property data that uniquely identify the one or more devices and/or one or more users of the one or more devices, presenting the anonymized data to one or more service providers configured to generate one or more services, and acquiring the generated one or more services, said generated one or more services at least partly based on the anonymized data. In addition to the foregoing, other aspects are described in the claims, drawings, and text.
    Type: Grant
    Filed: December 31, 2012
    Date of Patent: April 18, 2017
    Assignee: Elwha LLC
    Inventors: Edward K. Y. Jung, Royce A. Levien, Richard T. Lord, Robert W. Lord, Mark A. Malamud
  • Patent number: 9626504
    Abstract: This technology relates to an information processing device and an information processing method capable of detecting that at least one of data and a parameter of a command is falsified. A command reception unit of an IC card receives a read command from a reader/writer through an antenna. A MAC calculation unit calculates a MAC based on a read address included in a parameter of the read command and read data to be transmitted to the reader/writer. A response transmission unit transmits the read data and the MAC to the reader/writer through the antenna. This technology is applicable to the IC card, for example.
    Type: Grant
    Filed: April 11, 2012
    Date of Patent: April 18, 2017
    Assignee: SONY CORPORATION
    Inventor: Hidekazu Tomizawa
  • Patent number: 9626505
    Abstract: A method of and an apparatus for managing authentication in an electronic apparatus are provided. The method includes obtaining authentication information using an authentication module; pairing the authentication information with an object to which access is controlled; and displaying an image related to the object together with the authentication information. The electronic apparatus includes an authentication module configured to obtain authentication information; a control module configured to pair the authentication information with an object to which access is controlled; and a display module configured to display an image related to the object together with the authentication information.
    Type: Grant
    Filed: April 10, 2015
    Date of Patent: April 18, 2017
    Assignee: Samsung Electronics Co., Ltd
    Inventors: Mooyoung Kim, Moonsoo Kim, Yohan Lee, Jungeun Lee
  • Patent number: 9626506
    Abstract: Generating and authenticating a dynamic password. A first password string is received from a user. One or more string generation rules with corresponding reference character positions of the first password string are received. The first password string, the string generation rules, and the corresponding reference character positions of the first password string are associated with login credentials of a user. For authentication, a first password string associated with a user is received. A second password string is generated, based on a partial password string and one or more string generation rules, with corresponding reference character positions of the partial password string, all associated with the user. The first password string is compared with the second password string, and the user is authenticated if the strings match.
    Type: Grant
    Filed: December 17, 2015
    Date of Patent: April 18, 2017
    Assignee: International Business Machines Corporation
    Inventors: Ashrith Shetty, Rohit Shetty
  • Patent number: 9626507
    Abstract: This specification describes technologies relating to software execution. A sandboxing computer system accesses at least one application file and instantiates a sandbox environment. The sandbox environment does not having allocated, when instantiated, a memory buffer for use by a running application. The application file is run in the sandbox environment to produce an application output. A memory buffer is for use by the running application after the application has begun running, and a client computer system is provided with the application output.
    Type: Grant
    Filed: April 6, 2012
    Date of Patent: April 18, 2017
    Assignee: Google Inc.
    Inventors: Ivan Krasin, Anand Mistry
  • Patent number: 9626508
    Abstract: In one embodiment, an apparatus includes a control transfer termination (CTT) state machine configured to raise a fault when an indirect control transfer instruction of a process is not terminated by a CTT instruction. A virtual machine monitor (VMM) is configured to selectively enable the CTT state machine for the process. In addition, a binary translation engine is configured to receive fault information associated with a fault raised by the CTT state machine, provide at least some of the fault information to a security agent associated with the process, and responsive to direction from the security agent, to translate a code block of the process to a translated code block including a first CTT instruction associated with the indirect control transfer instruction, such that when the translated code block including the indirect control transfer instruction and the first CTT instruction is to be executed, the CTT state machine will not raise a fault. Other embodiments are described and claimed.
    Type: Grant
    Filed: October 20, 2014
    Date of Patent: April 18, 2017
    Assignee: Intel Corporation
    Inventors: Ravi L. Sahita, Vedvyas Shanbhogue
  • Patent number: 9626509
    Abstract: Techniques for efficient and effective malicious content detection in plural versions of a software application are described herein. According to one embodiment, multiple versions of a software application are concurrently within a virtual machine (VM) executed within a data processing system. For each of the versions of the software application, a corresponding one of the versions is invoked to access a malicious content suspect within the VM without switching to another VM. The behaviors of each of the versions of the software application in response to the malicious content suspect is monitored to detect anomalous behavior indicative of malicious content in the malicious content suspect during execution of any of the versions of the software application. The detected anomalous behaviors, and, associated therewith, a version number corresponding to each of the versions of the software application whose execution resulted in the anomalous behavior are stored.
    Type: Grant
    Filed: March 13, 2013
    Date of Patent: April 18, 2017
    Assignee: FireEye, Inc.
    Inventors: Yasir Khalid, Muhammad Amin, Emily Jing, Muhammad Rizwan
  • Patent number: 9626510
    Abstract: A method, an apparatus and a system for processing a computer virus. The method comprises: obtaining the file type of a file which is infected with a computer virus and the process information of a process which is used by the virus when accessing the file; monitoring whether a malicious event occurs in s system, wherein the malicious event is an event which is triggered when the process corresponding to the process information accesses the file of the file type; and refusing the process to access the file of the file type when it is monitored that the malicious event occurs.
    Type: Grant
    Filed: June 1, 2012
    Date of Patent: April 18, 2017
    Assignee: BEIJING QIHOO TECHNOLOGY COMPANY LIMITED
    Inventors: Bo Li, Guiqiang Zou
  • Patent number: 9626511
    Abstract: Application authorization management is provided without installation of an agent at an operating system level. A component runs outside of the operating system, in an AMT environment. AMT is utilized to examine the operating system for applications. Identified applications are checked against a whitelist or a blacklist. Responsive to determining that an identified application is not authorized, AMT is used to redirect input/output requests targeting the application to an alternative image, which can, for example, warn the user that the application is not authorized.
    Type: Grant
    Filed: August 26, 2008
    Date of Patent: April 18, 2017
    Assignee: Symantec Corporation
    Inventors: Bruce McCorkendale, Matthew Steele, William E. Sobel
  • Patent number: 9626512
    Abstract: Generally described, physical computing devices in a virtual network can be configured to host a number of virtual machine instances. The physical computing devices can be operably coupled with offload devices. In accordance with an aspect of the present disclosure, a security component can be incorporated into an offload device. The security component can be a physical device including a microprocessor and storage. The security component can include a set of instructions configured to validate an operational configuration of the offload device or the physical computing device to establish that they are configured in accordance with a secure or trusted configuration. In one example, a first security component on the offload device can validate the operational computing environment on the offload device and a second security component on the physical computing device can validate the operational computing environment on the physical computing device.
    Type: Grant
    Filed: March 30, 2015
    Date of Patent: April 18, 2017
    Assignee: AMAZON TECHNOLOGIES, INC.
    Inventors: Eric Jason Brandwine, David R. Richardson, Matthew Shawn Wilson, Ian Paul Nowland, Anthony Nicholas Liguori, Brian William Barrett
  • Patent number: 9626513
    Abstract: An electronic device includes a boot memory, a hardware memory programmed with a signing key, and a processor configured to implement a fixed trusted module and a dynamic trusted image module. The fixed trusted module contains a digital certificate, which includes a platform key used to verify a first boot module, and a package verification key used to validate authenticity of an image update file. The dynamic trusted image module contains a platform certificate signed by the signing key. The platform certificate includes a platform verification key used to validate at least one of (i) a second boot module, (ii) an operating system loader, (iii) an operating system, or (iv) a file system. The platform certificate also includes image information associated with one or more images stored in the platform certificate, key information associated with one or more public keys, and electronic device-specific data.
    Type: Grant
    Filed: October 14, 2013
    Date of Patent: April 18, 2017
    Assignee: Marvell International Ltd.
    Inventors: Tolga Aytek, Joseph Jolicoeur, Minda Zhang
  • Patent number: 9626514
    Abstract: A system for selectively enabling a microprocessor-based system is disclosed. State information that describes the operating conditions or circumstances under which a user intends to operate the system is obtained. In the preferred embodiment of the invention, a valid hash value is determined, preferably based on the state information and preferably by locating the valid hash value within a table of valid hash values indexed by the state information. Candidate authorization information is obtained from the user, and a candidate hash value is generated by applying a hashing algorithm to the candidate authorization information, the state information, or a combination of the candidate authorization information and state information. The candidate hash value and the valid hash value are then compared, and the microprocessor-based system is enabled if the candidate hash value matches the valid hash value.
    Type: Grant
    Filed: October 22, 2014
    Date of Patent: April 18, 2017
    Assignee: Creative Mines LLC
    Inventors: W. Daniel Hillis, Bran Ferren
  • Patent number: 9626515
    Abstract: An electronic system includes: a control unit configured to: calculating a risk score based on a permission requested by an application, generating a summary presentation based on the risk score for presenting a risk visualization of a privacy risk posed by an application, generating a subcategory presentation based on the risk score for presenting the risk visualization of the privacy risk posed to a device feature by the application, and a user interface, coupled to the control unit, configure to present a risk presentation including the summary presentation, the subcategory presentation, or a combination thereof for displaying on a device.
    Type: Grant
    Filed: December 30, 2014
    Date of Patent: April 18, 2017
    Assignee: Samsung Electronics Co., Ltd.
    Inventors: Ruoxu Wang, Na Wang, Hongxia Jin, Alan Messer
  • Patent number: 9626516
    Abstract: An ElectroMagnetic Pulse (EMP) emitter can be positioned to introduce an EMP burst or series of EMP bursts into a passageway, such as a passageway providing access relative to a secure area. The EMP burst or series of EMP bursts can be introduced into the passageway at an intensity configured for rendering inoperable an electronic device, such as a device capable of data storage and transport through the passageway. Such an arrangement may be used for the prevention of theft, sabotage, or release of data maintained within the secure area.
    Type: Grant
    Filed: November 18, 2015
    Date of Patent: April 18, 2017
    Assignee: Amazon Technologies, Inc.
    Inventor: Brock Robert Gardner
  • Patent number: 9626517
    Abstract: A non-deterministic encryption functionality receives and encrypts an open-text input stream. Codes for error-correction are generated for the encrypted stream, and a correctable amount of non-deterministic random error is overlaid onto the encrypted stream and the codes for error-correction. The error-injected encrypted stream and codes for error-correction are re-encrypted and delivered to a using process. A non-deterministic decryption functionality reverses the encryption, in some embodiments using key values used during the encryption, and delivers an open-text stream to a using process. Some embodiments of a non-deterministic encryption include a reversible scrambling layer. In some embodiments, the non-deterministic encryption and decryption functionalities are performed, at least in part, by a controller of a solid state disk. In some embodiments, the functionalities are performed within a secure physical boundary provided by implementation within a single integrated circuit.
    Type: Grant
    Filed: January 20, 2014
    Date of Patent: April 18, 2017
    Assignee: Seagate Technology LLC
    Inventor: Dmitry Obukhov
  • Patent number: 9626518
    Abstract: Avoiding encryption in a deduplication vault. In one example embodiment, a method may include analyzing an allocated plain text block stored in the source storage to determine if the block is already stored in the deduplication storage, in response to the block not being stored, encrypting the allocated plain text block and analyzing the encrypted block to determine if the encrypted block is already stored in the deduplication storage, analyzing a second allocated plain text block stored in the source storage to determine if the block is already stored in the deduplication storage, in response to the block already being stored, avoiding encryption of the second allocated plain text block by not encrypting the second allocated plain text block and instead associating the location of the second allocated plain text block in the source storage with the location of the duplicate block already stored.
    Type: Grant
    Filed: December 11, 2015
    Date of Patent: April 18, 2017
    Assignee: STORAGECRAFT TECHNOLOGY CORPORATION
    Inventor: Andrew Lynn Gardner
  • Patent number: 9626519
    Abstract: The present invention relates to a motion input device for portable terminal and an operation method using the same. A motion input device of a portable terminal of the present invention includes a sensor unit configured to collect a sensor signal from at least one sensor; an operation recognition unit configured to generate a motion signal corresponding to an operation of portable terminal based on the sensor signal; a scenario preparation unit configured to generate an input scenario based on at least one motion signal; and a scenario mapping unit configured to detect, in a scenario database, a standards scenario corresponding to the input scenario, and to generate an input signal corresponding to the standards scenario.
    Type: Grant
    Filed: October 17, 2014
    Date of Patent: April 18, 2017
    Assignee: Samsung Electronics Co., Ltd.
    Inventors: Jaemyeon Lee, Hyunsu Hong, Jinyong Kim, Kyunghwa Kim, Seungwoo Shin, Jihye Ban, Jungyeob Oh, Myeonglo Lee
  • Patent number: 9626520
    Abstract: A policy-based framework is described. This policy-based framework may be used to specify the privileges for logical entities to perform operations associated with an access-control element (such as an electronic Subscriber Identity Module) located within a secure element in an electronic device. Note that different logical entities may have different privileges for different operations associated with the same or different access-control elements. Moreover, the policy-based framework may specify types of credentials that are used by the logical entities during authentication, so that different types of credentials may be used for different operations and/or by different logical entities. Furthermore, the policy-based framework may specify the security protocols and security levels that are used by the logical entities during authentication, so that different security protocols and security levels may be used for different operations and/or by different logical entities.
    Type: Grant
    Filed: July 31, 2015
    Date of Patent: April 18, 2017
    Assignee: Apple Inc.
    Inventors: Christopher B. Sharp, Yousuf H. Vaid, Li Li, Jerrold Von Hauck, Arun G. Mathias, Xiangying Yang, Kevin P. McLaughlin
  • Patent number: 9626521
    Abstract: Systems and methods are provided for encoding and decoding data (such as, for example, an encryption key) using a physiological signal. A data item string is separated into a defined number of component segments and each component segment is used as a coefficient of a polynomial equation. A plurality of signal features are then identified from a physiological signal and a plurality of ordered pairs are created based on the plurality of identified signal features using the polynomial equation. A data package including the plurality of ordered pairs and obfuscated by a plurality of chaff points is transmitted to another system. The receiver system uses a corresponding physiological signal to filter out the chaff points and to reconstruct the polynomial equation, for example, by LaGrangian interpolation. The coefficients of the reconstructed polynomial equation are then used to derive the encoded data item string.
    Type: Grant
    Filed: April 16, 2015
    Date of Patent: April 18, 2017
    Assignee: ARIZONA BOARD OF REGENTS ON BEHALF OF ARIZONA STATE UNIVERSITY
    Inventors: Sandeep Gupta, Ayan Banerjee
  • Patent number: 9626522
    Abstract: To date, there is no method to test the network steganographic effectiveness of network security hardware or software using a plurality of attack techniques. The invention specified herein represents such a method. The present invention enables an operator to test network security products in their ability to perform in areas including but not limited to detecting steganograms, preventing steganograms, normalizing packets transmitting covert data, steganographic operation without negatively impacting the performance/reliability of a network, and other activities related to network steganography. Assertions made by network security manufacturers with regard to their network firewall and security appliances must be supported by empirical evidence. The invention described herein provides quantitative and qualitative data to support or refute manufacturer assertions that their network security hardware or software can effectively perform as claimed as it relates to network steganography.
    Type: Grant
    Filed: November 16, 2016
    Date of Patent: April 18, 2017
    Inventor: Robert Henry Flowers, Jr.