Patents Issued in February 20, 2024
-
Patent number: 11909697Abstract: Systems, apparatuses, methods, and computer-readable media are provided for remote interference management (RIM) in wireless networks, including RIM reference signals (RIM-RS) transmitted to assist victim radio access network (RAN) nodes to identify aggressor RAN nodes due to, for example, atmospheric ducting. The RIM-RS is also flexibly configured. Other embodiments may be described and/or claimed.Type: GrantFiled: September 19, 2022Date of Patent: February 20, 2024Assignee: Apple Inc.Inventors: Hassan Ghozlan, Qian Li, Dawei Ying, Geng Wu
-
Patent number: 11909698Abstract: A method and bot assistance system (101) for identifying ideal virtual assistant bots for providing response to user queries is disclosed. The bot assistance system receives user query. The user query is processed to identify context and intent using Natural Language Processing (NLP). The bot assistance system identifies at least one virtual assistant bot for responding to user query based on confidence score of each virtual assistant bot associated with intent of user query, using pretrained model. The identification of at least one virtual assistant bot includes either determining ideal virtual assistant bot based on context of user query, using predefined governance rules. Otherwise, initiating polling between plurality of predefined virtual assistant bots when context of user query is unidentified. The plurality of predefined virtual assistance bots is provided to user associated with user query if each of predefined virtual assistance bots are selected during polling.Type: GrantFiled: January 15, 2021Date of Patent: February 20, 2024Assignee: BITONIC TECHNOLOGY LABS, INC.Inventors: Jaya Kishore Reddy Gollareddy, Raghavendra Kumar Ravinutala, Rashid Ahmad Khan, Biddwan Ahmed, Surender Selvaraj
-
Patent number: 11909699Abstract: Apparatuses, methods, and systems for generating short messages for electronic messages of electronic marketing messages. One method includes receiving, by a server, information related to the electronic marketing message, receiving, by the server, a plurality of N short messages (text) generated based on the received information from a generative text engine model, reducing, by the server, the plurality of N short messages down to M short messages, displaying messages based on the M short messages to a merchant user, identifying merchant actions in response to the displaying of the messages based on the M short messages, and fine-tuning, by the server, the generative text engine model based on the identified merchant actions.Type: GrantFiled: January 19, 2023Date of Patent: February 20, 2024Assignee: Klaviyo, IncInventors: Charles T. Natoli, Devin Patel, Sofiane Hadji, Gal Gila Korcia, Nick Vessella, Robert Huselid, Andrew Piliero, Tristan Mills, Harsh Mehta
-
Patent number: 11909700Abstract: Disclosed herein are system, method, and computer program product embodiments for an enterprise micro-forum network receiving a request message to subscribe to an originating node of a first enterprise micro-forum operative within an organization's enterprise micro-forum network configured with a first topic, wherein the first enterprise micro-forum is configured with one or more rules to at least process the request message to subscribe. The embodiment further operates by receiving a topic message to be transmitted to a subscriber recipient node within a second enterprise micro-forum operative within the enterprise micro-forum network. The topic message comprises modified content from the first topic and is transmitted based on transmission parameters for the originating node to transmit the topic message to the recipient node and acceptance parameters of the subscriber recipient node. The topic message is retained in the second topic of the subscriber recipient node.Type: GrantFiled: February 9, 2023Date of Patent: February 20, 2024Assignee: INNER-MACHINATIONS, L.L.C.Inventor: Arpana Thakur Mansfield
-
Patent number: 11909701Abstract: Dynamic content can be delivered via email. Email messages include HTML content with one or more hyperlinks referring to a network-connected dynamic content server. The hyperlinks are accessed upon rendering of the email on a client device, triggering a request to a dynamic content server. The dynamic content server determines a content item to be served in response to the request. The dynamic content item determination may be based on factors including the identity of the requester, the email communication in which the hyperlink is embedded, recent activities or behavior on the part of the requester, and/or known preference or demographic information associated with the requester. The request can be directed to a selected content item stored within a content delivery network, for transmission back to the requester and display to the user within the email.Type: GrantFiled: July 2, 2019Date of Patent: February 20, 2024Assignee: Zeta Global Corp.Inventors: Christian Monberg, Barney Govan, Tim Hudson
-
Patent number: 11909702Abstract: A data processing system is configured to perform a computer implemented method for facilitation of efficient processing of electronic messages via a network from message sources. The method includes receiving an electronic message including actionable object data and textual object data from a message source device. The actionable object data includes parameters actionable by at least one data processing transaction device to perform data processing transactions external to the network device and the textual object data including descriptors of the parameters actionable by the at least one data processing transaction device. The textual object data is operable by devices incompatible with the actionable object data. The method includes calculating an execution command for the data processing transaction in response to the actionable object data and based on at least the parameters of the actionable object data.Type: GrantFiled: December 7, 2022Date of Patent: February 20, 2024Assignee: Chicago Mercantile Exchange Inc.Inventors: Carrick John Pierce, Baris Mestanogullari, Ajay Kumar Jain, Agnes Casenave, David Bernard Barton, Nicholas Bandy
-
Patent number: 11909703Abstract: Embodiments of the present invention provide systems and methods for processing comments provided to a live chat stream. By way of example, embodiments obviate or mitigate problems associated with conventional live chat streams by assessing semantic uniqueness of collections of comments in a live chat stream and then determining a final importance score for each collection based on its semantic-uniqueness and activity score. The display of each collection can then be controlled based on its final importance score.Type: GrantFiled: August 26, 2021Date of Patent: February 20, 2024Assignee: International Business Machines CorporationInventors: Emma Jane Dawson, Gwilym Benjamin Lee Newton
-
Patent number: 11909704Abstract: A device, a network, and a method for wireless communication are provided. In an embodiment, the method, performed by a first communication node, includes generating at least one of a spatial-specific receiving pattern and a first spatial-specific processing pattern, receiving a waveform signal from one or more second nodes in accordance with the at least one of the spatial-specific receiving pattern or the first spatial-specific processing pattern, determining a second spatial-specific processing pattern and a channel status of a channel, wherein the channel status of the channel is according to the at least one of the spatial-specific receiving pattern and the second spatial-specific processing pattern and transmitting a signal along a transmission direction, wherein the transmission direction is in accordance with the at least one of the spatial-specific receiving pattern and the second spatial-specific processing pattern.Type: GrantFiled: November 19, 2021Date of Patent: February 20, 2024Assignee: Futurewei Technologies, Inc.Inventors: Jialing Liu, Weimin Xiao
-
Patent number: 11909705Abstract: A method of sharing an item from an external resource comprises displaying a user interface for the external resource in a messaging application and navigating within the external resource based on user input received in the user interface presented in the messaging application. Upon receipt of selection of an item or state within the external resource based on user input, the identity of one or more recipients is obtained. Information representing the item or state is then transmitted to a device of at least one recipient and information representing the item or state is displayed in a chat interface of a messaging application running on a device of the recipient(s).Type: GrantFiled: October 4, 2021Date of Patent: February 20, 2024Assignee: Snap Inc.Inventors: Laurent Desserrey, Dylan Shane Eirinberg, Matthew Colin Grantham, Patrick Mandia, David Whyte
-
Patent number: 11909706Abstract: Delivering a transcribed voice message includes detecting receipt of a voice message for delivery to a user, the voice message related to an incoming call for the user; determining a current presence of the user on at least one of a plurality of messaging channels in real time during receipt of the voice message; transcribing the voice message to text in real time; and delivering, in real time, the transcribed voice message to the at least one messaging channel on which the current presence of the user is determined. Delivering the transcribed voice message can also include receiving from the user initial identification of different user accounts, along with authorizations and permissions.Type: GrantFiled: November 9, 2021Date of Patent: February 20, 2024Assignee: Avaya Management L.P.Inventors: Navin Daga, Pushkar Yashavant Deole, Sandesh Chopdekar
-
Patent number: 11909707Abstract: Systems and methods for providing message schema migration in messaging systems. In one implementation, a definition of a messaging schema is received. One or more transformation files associated with the messaging schema is received, wherein the one or more transformation files define a plurality of transformations to be applied to incoming messages. An order of applying the plurality of transformations is determined. The plurality of transformations is applied to a message of the incoming messages according to the determined order. The message is forwarded to a messaging system.Type: GrantFiled: April 15, 2022Date of Patent: February 20, 2024Assignee: Red Hat, Inc.Inventors: Carles Arnal Castello, Paolo Antinori
-
Patent number: 11909708Abstract: The present invention is directed to data communication systems and techniques thereof. In a specific embodiment, the present invention provides a network connector that includes an interface for connecting to a host. The interface includes a circuit for utilizing two data paths for the host. The circuit is configured to transform the host address to different addresses based on the data path being used. There are other embodiments as well.Type: GrantFiled: September 9, 2022Date of Patent: February 20, 2024Assignee: Marvell Asia Pte LtdInventors: Whay Sing Lee, Arash Farhoodfar
-
Patent number: 11909709Abstract: The present invention relates to a networked device configuration identifying method.Type: GrantFiled: December 9, 2022Date of Patent: February 20, 2024Assignee: FLYTECH TECHNOLOGY CO., LTD.Inventor: Hsiang-Yi Cheng
-
Patent number: 11909710Abstract: A method for communication includes provisioning each node in a network with a respective set of two or more network addresses. Each node in succession is assigned a respective network address from the respective provisioned set that has not been assigned for use by any preceding node. Upon finding for a given node that all the network addresses in the respective provisioned set were assigned to preceding nodes, the preceding nodes are searched to identify a candidate node having an additional network address in the respective provisioned set, other than the assigned respective network address, that was not yet assigned to any of the nodes. The additional network address is assigned to the candidate node instead of the respective network address that was previously assigned to the candidate node, and the assigning of the network addresses to the nodes in the succession resumes following the candidate node.Type: GrantFiled: July 7, 2022Date of Patent: February 20, 2024Assignee: MELLANOX TECHNOLOGIES, LTD.Inventors: Eitan Zahavi, Guy Rozenberg, Matty Kadosh, Lion Levi, Boris Pismenny, Alex Netes, Miriam Menes, Lior Hodaya Bezen, Michael Tahar
-
Patent number: 11909711Abstract: An example method includes receiving a domain name server (DNS) query initiated by an endpoint device, determining a current port assignment for the endpoint device, changing an allocation of ports for the endpoint device from the current port assignment based on a predicted port allocation need for a current communication session associated with the domain name server query, and performing a network address translation in accordance with the allocation of ports for the endpoint device.Type: GrantFiled: May 18, 2021Date of Patent: February 20, 2024Assignee: AT&T Intellectual Property I, L.P.Inventors: Robert Sayko, Avinash Lingala
-
Patent number: 11909712Abstract: Methods, systems, and apparatus, including computer programs encoded on a computer storage medium, for receiving a packet from a client, the packet having header information including a destination Internet Protocol (IP) address, a destination port, a source IP address, and a source port, and wherein the source IP address and source port are associated with the client; selecting a destination virtual machine based on the destination port; modifying the packet by replacing the destination IP address in the header information with an IP address of the selected destination virtual machine; and sending the modified packet to the destination virtual machine.Type: GrantFiled: November 6, 2020Date of Patent: February 20, 2024Assignee: Google LLCInventor: Evan K. Anderson
-
Patent number: 11909713Abstract: Systems, methods, and computer-readable media relate to providing a network management service. A system is configured to request first network information from a first component of a network using a public IP address for the first component, wherein the first network information includes private IP addresses for a second component in the network and translate, based on a mapping information for a private IP address space to a public IP address space, the private IP address for a second component to a public IP address for the second component. The system is further configured to request second network information from the second component using the public IP address and provide a network management service for the network based on the second network information.Type: GrantFiled: May 3, 2021Date of Patent: February 20, 2024Assignee: Cisco Technology, Inc.Inventors: Vivek Balamurugan, Chandra Nagarajan, Divjyot Sethi, Chaitanya Velpula, Manvesh Vyas, Ramana Rao Kompella, Pradhap Muthuraman
-
Patent number: 11909714Abstract: The present invention relates to systems and methods for matching and collecting user data and/or user device data within a current Internet access session of a user for use by user notification systems that generate, distribute and display informational messages over the Internet. The system comprises a source data reception unit configured to receive a source IP address and a source user device port matched with the translated IP address and with the translated port of the operator or the provider from the NAT service, and a data matching unit configured to match user data and/or user device data from all available sources, including but not limited to operator or provider databases, using the received source IP address and the received user device port. Advantageously, the invention provides delivery of informational messages based on collected/matched user data and/or user device data provided according to the present system to the maximum number of real identified users.Type: GrantFiled: December 27, 2022Date of Patent: February 20, 2024Assignee: DEXAMERON LIMITED (DEXAMERON LTD)Inventors: Ilya Alexandrovich Volynkin, Oleg Sergeevich Kopitsyn, Sergei Aleksandrovich Vakhotin
-
Patent number: 11909715Abstract: A DNS resolution request for a hostname of a CDN is received. An edge server of the CDN may be identified, which may be associated with a subnet. The subnet is used to generate a response IP address, where the remaining bits of the response IP address may be used to store requestor information (e.g., a requestor IP address). When a client computing device uses the response IP address to access the edge server, requestor information is extracted and associated with client computing device information (e.g., an IP address and/or location, etc.) in an association record. Association records may be used to determine predicted characteristics for devices served by a requestor. When the authoritative DNS server resolves a request from the requestor, such predicted characteristics may be used rather than relying solely on information about a requestor. Thus, an edge server proximate to the predicted location may be returned instead.Type: GrantFiled: February 26, 2023Date of Patent: February 20, 2024Assignee: Level 3 Communications, LLCInventor: Kevin Johns
-
Patent number: 11909716Abstract: Leaf nodes of a tree structure, also having a root node and intermediate nodes, communicate with endpoints via access networks and store mappings from permanent virtual IP (VIP) addresses for the endpoints to physical IP (PIP) addresses for the endpoints on the access networks. The root node and intermediate nodes store pointers for the endpoints' leaf nodes and associated access networks. When a connection setup request (CSR) for a destination endpoint is received from a corresponding node, the receiving leaf node passes the CSR up through the tree structure to a lowest common ancestor (LCA) node for the receiving leaf node and one or more destination leaf nodes associated with the destination endpoint. The LCA node uses its pointers to pass the CSR down towards the one or more destination leaf nodes, which use the corresponding VIP-to-PIP mappings to forward the CSR to the destination endpoint.Type: GrantFiled: December 8, 2022Date of Patent: February 20, 2024Assignee: Nokia Solutions and Networks OyInventors: Randeep Bhatia, Steven Benno, Fang Hao, Yu Mi, T V Lakshman
-
Patent number: 11909717Abstract: An example network device determines to assign a number of global Internet protocol (IP) addresses to respective network interfaces, determines a subnetwork for the network interfaces, determines a prefix corresponding to the subnetwork, determines a first global IP address having the prefix, determines a range value that is equal to or greater than the number of global IP addresses, generates a message according to Duplicate Address Detection Protocol (DAD) including data indicating that the message includes a range of addresses, the data further indicating the first global IP address and the range value, and sends the message according to DAD to one or more host network devices to determine whether any global IP address in a range starting with the first global IP address and through the range value is in use by the one or more host network devices.Type: GrantFiled: February 9, 2023Date of Patent: February 20, 2024Assignee: Juniper Networks, Inc.Inventors: Manoj Nayak, Rafik Puttur
-
Patent number: 11909718Abstract: Methods for configuring a monitoring device to communicate with a service server are provided. The method includes the monitoring device sending a message including a monitoring device identifier used by a control server to identify the service server associated with the monitoring device, receiving one or more service server addresses associated with the identified service sever from the control server, and establishing a service connection between the monitoring device and the identified service server using the one or more addresses received from the control server. A control server adapted to configure a monitoring device in a monitoring system and a method for configuring the control server are also provided.Type: GrantFiled: February 24, 2023Date of Patent: February 20, 2024Assignee: Axis ABInventors: Joacim Tullberg, Johan Adolfsson, Martin Gren
-
Patent number: 11909719Abstract: Techniques and technologies for an Internet Protocol (IP) address management (IPAM) system to track and manage IP address workflows in a network. The IPAM system can be used to define and enforce management policies or rules regarding IP address management, such as allocation policies, refill policies, and so forth. For instance, the IPAM system can enforce allocation policies that define rules to allow or deny allocation of IP addresses based on types of resources for which the IP addresses are requested, registered user accounts that are requesting the IP addresses, the purpose of the resources receiving the IP addresses, and so forth. Additionally, the IPAM system can enforce refill policies that define rules for replenishing inventories of IP addresses that have been allocated for different domains in the network. The IPAM system can improve the management of IP address workflows by enforcing policy and tracking IP address workflows in networks.Type: GrantFiled: November 24, 2021Date of Patent: February 20, 2024Assignee: AMAZON TECHNOLOGIES, INC.Inventors: Jonathan Paul Kramer, Michael Erik Untereiner, Samuel Lough, John Jeffrey Schlachtenhaufen, Masood Karimi, Eric Andrew Rubin-Smith, Joshua D Leaverton, Shovan Kumar Das
-
Patent number: 11909720Abstract: A computer-implemented method includes: connecting, by a computing device, to a database using an outbound connection, wherein the computing device is an information technology (IT) product in a private network and the database is outside the private network; receiving, by the computing device, a response from the database, the response including a command; executing, by the computing device, the command; and sending, by the computing device, result data to the database, wherein the result data is data that results from executing the command on the computing device.Type: GrantFiled: September 17, 2021Date of Patent: February 20, 2024Assignee: KYNDRYL, INC.Inventors: Grzegorz Piotr Szczepanik, Tiberiu Suto, Nadiya Kochura, Nicolo' Sgobba, Erik Rueger
-
Patent number: 11909721Abstract: A firewall configuration server includes a processor in communication with a memory device. The processor is configured to: receive, from an admin computer device, group-based firewall rules, wherein the group-based firewall rules identify a plurality of groups of virtual machines (VMs) executable on a VM server system and a respective set of firewall policies to be applied to the VMs in each group; receive, from a virtual machine (VM) server system, group membership data, the group membership data identifying the plurality of groups and a respective list of VMs associated with each group; parse the group membership data according to the group-based firewall rules to generate VM-specific firewall rules; and transmit the VM-specific firewall rules to a firewall, wherein each VM-specific firewall rule is configured for application by the firewall to communication requests identifying an IP address of one of the VMs.Type: GrantFiled: December 29, 2020Date of Patent: February 20, 2024Assignee: MASTERCARD INTERNATIONAL INCORPORATEDInventor: Michael Keiser
-
Patent number: 11909722Abstract: Various techniques for detecting homographs of domain names are disclosed. In some embodiments, a system, process, and/or computer program product for detecting homographs of domain names includes receiving a DNS data stream, wherein the DNS data stream includes a DNS query and a DNS response for resolution of the DNS query; applying a homograph detector for each domain in the DNS data stream; and detecting a homograph of a domain name in the DNS data stream using the homograph detector.Type: GrantFiled: May 27, 2022Date of Patent: February 20, 2024Assignee: Infoblox Inc.Inventor: Femi Olumofin
-
Patent number: 11909723Abstract: Techniques for auto-starting a VPN in a MAM environment are disclosed. A MAM-controlled application is launched on a computer system. Policy is queried and a determination is made as to whether to auto-start a VPN application based on the policy. Based on the policy, the VPN application is auto-started, and the VPN application initiates a VPN tunnel that is usable by at least the MAM-controlled application. Network communications transmitted to or from the MAM-controlled application then pass through the VPN tunnel.Type: GrantFiled: June 15, 2021Date of Patent: February 20, 2024Assignee: Microsoft Technology Licensing, LLCInventors: James Matthew Hamilton Oakley, Neil Adam Jacobson
-
Patent number: 11909724Abstract: A network node residing in a mobile network identifies a first network slice of the mobile network for use by a first session between a first user equipment device (UE) and a first application hosted by a first hosting device. The network node obtains a first security profile based on an identity of the first application and based on the identified first network slice, and establishes, using the obtained first security profile, a first secure tunnel between the network node and the first hosting device for transporting first data units associated with the first session between the network node and the first hosting device.Type: GrantFiled: May 4, 2022Date of Patent: February 20, 2024Assignee: Verizon Patent and Licensing Inc.Inventors: Amir Saghir, Said Hanbaly, Mun Wei Low, Nimalan Kanagasabai
-
Patent number: 11909725Abstract: Disclosed are systems and methods for improving interactions with and between computers in content generating, searching, hosting and/or providing systems supported by or configured with personal computing devices, servers and/or platforms. The systems interact to identify and retrieve data within or across platforms, which can be used to improve the quality of data used in processing interactions between or among processors in such systems. The disclosed systems and methods provide systems and methods for privacy-aware machine learning using an improved data encoding that withholds more information. The disclosed systems and methods encode a corpus of data and encode each query used in searching and generating query results from the corpus of encoded data.Type: GrantFiled: August 31, 2022Date of Patent: February 20, 2024Assignee: YAHOO ASSETS LLCInventors: Eric Bax, Charlotte Bax
-
Patent number: 11909726Abstract: A method for applying control to a vehicle. The method includes: receiving, by way of a second control unit of a second vehicle to which control is to be applied, a signal encompassing a message encrypted using a valid symmetrical key of a first control unit of a first vehicle; ascertaining, by way of the second control unit, a decryptability of the encrypted message using a valid symmetrical key of the second control unit or a symmetrical reserve key of the second control unit ascertained by way of the second control unit; ecrypting the encrypted message, depending on the ascertained decryptability, by way of the second control unit using the valid symmetrical key of the second control unit or the symmetrical reserve key of the second control unit; and applying control, based on the decrypted message, to the second vehicle to which control is to be applied.Type: GrantFiled: April 28, 2020Date of Patent: February 20, 2024Assignee: ROBERT BOSCH GMBHInventors: Soheil Gherekhloo, Jan-Felix Van Dam, Ralf Prenzel
-
Patent number: 11909727Abstract: An Internet-connected device, such as a car, refrigerator, or even a laptop can use a second device, such as a cell phone, to support cryptographic operations and communication with token service providers or other processing services requiring pre-provisioned capabilities that may include cryptographic secrets. By removing the need to store personally sensitive data in “Internet of Things” (IoT) devices, a user's personal information and other sensitive financial information may be contained to a relatively small number of devices. This may help prevent theft of goods or services by IoT devices that are not always under the close control of the user.Type: GrantFiled: August 31, 2022Date of Patent: February 20, 2024Assignee: Visa International Service AssociationInventors: Hari Krishna Annam, Mohit Gupta, Soumendra Bhattacharya
-
Patent number: 11909728Abstract: Methods and systems are provided for use with digital data processing systems to control or otherwise limit access to networked resources based, at least in part, on transactional artifacts and/or derived artifacts.Type: GrantFiled: September 6, 2016Date of Patent: February 20, 2024Assignee: CHENG HOLDINGS, LLCInventor: Thomas W. Lynch
-
Patent number: 11909729Abstract: A method (400) for a website authentication is provided. The method includes receiving a reference uniform resource locator (URL) (130) at a browser (120) and determining whether the reference URL adheres to an authentication protocol (202) including a credential identifier (132c) and a web authentication host URL (132a). When the reference URL adheres to the authentication protocol, the method also includes extracting the credential identifier and the web authentication host URL from the reference URL. The method further includes obtaining credential data (160) from a remote service (150) using the credential identifier and sending web authentication instructions (170) to the browser. The web authentication instructions include the web authentication host URL and the credential data.Type: GrantFiled: April 26, 2018Date of Patent: February 20, 2024Assignee: Google LLCInventors: Clifton Kaznocha, Erik Gustavson, Scott Kriz
-
Patent number: 11909730Abstract: Authentication of a networked device with limited computational resources for secure communications over a network. Authentication of the device begins with the supplicant node transmitting a signed digital certificate with its authentication credentials to a proxy node. Upon verifying the certificate, the proxy node then authenticates the supplicant's credentials with an authentication server accessible over the network, acting as a proxy for the supplicant node. Typically, this verification includes decryption according to a public/private key scheme. Upon successful authentication, the authentication server creates a session key for the supplicant node and communicates it to the proxy node. The proxy node encrypts the session key with a symmetric key, and transmits the encrypted session key to the supplicant node which, after decryption, uses the session key for secure communications. In some embodiments, the authentication server encrypts the session key with the symmetric key.Type: GrantFiled: October 11, 2022Date of Patent: February 20, 2024Assignee: TEXAS INSTRUMENTS INCORPORATEDInventors: Kumaran Vijayasankar, Oliver Shih, Arvind K. Raghu, Ramanuja Vedantham, Xiaolin Lu
-
Patent number: 11909731Abstract: Disclosed embodiments relate to providing dynamic and least-privilege access to network resources. Techniques include receiving a request from a network identity to access a network resource, authenticating the network identity using a native client and communication protocol, authorizing the network identity based on one or more access policy, generating a least privilege ephemeral account having ephemeral credentials, accessing the network resource using the ephemeral credentials, and enabling the network identity to access the network resource using the least-privilege ephemeral account using the native client and communication protocol. The techniques may further include matching an existing account to the network identity based on the one or more access policy and enabling the network identity to access the network resource using the matched existing account using the native client and communication protocol.Type: GrantFiled: November 29, 2022Date of Patent: February 20, 2024Assignee: CYBERARK SOFTWARE LTDInventors: Tomer Dayan, Ofir Iluz, Yaron Nisimov
-
Patent number: 11909732Abstract: A server computer hosting an extended reality world receives a first transmission over a communication network from a computing device associated with a user, the first transmission including a request for the user to access the extended reality world. The server computer transmits a presentation of the extended reality world to the communication device over the communications network based at least in part on the request, and displays the presentation of the extended reality world on the computing device, where the presentation includes at least an avatar associated with the user. The server computer receives a command for the avatar to store a phrase selected by the user in a location associated with a virtual object within the extended reality world. The server computer displays, within the presentation of the extended reality world on the computing device, the avatar storing the phrase at the location in the extended reality world.Type: GrantFiled: July 31, 2023Date of Patent: February 20, 2024Assignee: Intuit Inc.Inventor: Michael William Mitchell
-
Patent number: 11909733Abstract: Various embodiments of the present disclosure provide techniques for facilitating a credential-less exchange over a network using a plurality of identifier mapping and member interfaces. The techniques may include initiating the presentation of an enrollment user interface via a client device of a user and receiving selection data indicative of a selection of a service provider instrument from the enrollment user interface. The techniques include generating a matching code for authenticating the user, providing the matching code to a service provider platform, and receiving the matching code from a partner platform. In response to an authentication of the user based on the matching code, the techniques may include generating an UUEK for the user that may be used to replace persistent credentials.Type: GrantFiled: October 20, 2023Date of Patent: February 20, 2024Assignee: 1080 Network, Inc.Inventors: Christopher Michael Petersen, Tim Kuchlein
-
Patent number: 11909734Abstract: Systems and methods are disclosed that provide for secure communications between a user device and an authentication system. The systems and methods create a dynamic identification for the device that is stored in both the device and authentication system.Type: GrantFiled: January 13, 2020Date of Patent: February 20, 2024Assignee: National Technology & Engineering Solutions of Sandia, LLCInventors: Sung Nam Choi, David John Zage, Tam Dang Le, Susan L Washburn
-
Patent number: 11909735Abstract: Techniques are provided for multi-cloud authentication of data requests. One method comprises obtaining, by a first authentication entity of a first cloud environment, from a service on the first cloud environment, a request for data stored by a second cloud environment; determining a signature for the service; verifying the determined signature for the service by requesting a signature for the service registered with a second authentication entity of the second cloud environment; requesting the data from the second authentication entity of the second cloud environment in response to the determined signature being verified; and providing the requested data to the service. The requested data from the second cloud environment may be encrypted with an encryption key, and the method may further comprise decrypting the requested data with a decryption key obtained from the second cloud environment. The signature for the service may be registered as part of a deployment of the service.Type: GrantFiled: November 13, 2020Date of Patent: February 20, 2024Assignee: EMC IP Holding Company LLCInventors: Tomer Shachar, Yevgeni Gehtman, Maxim Balin
-
Systems and methods for authenticating an electronic transaction using hosted authentication service
Patent number: 11909736Abstract: Systems and methods for authenticating an electronic transaction using a hosted authentication service. The systems and methods determine whether an authentication is required based on a first electronic message received from a first data system. Upon determining the authentication is required, the systems and methods transmit a dummy authentication request and a hosted authentication service uniform resource locator to the first data system. The systems and methods further determine or receive an indication whether a user authentication challenge is required based on a transaction risk analysis by a second data system. Upon determining the user authentication challenge is required, the systems and methods provide, at a user interface, an electronic form including a challenge request. The systems and methods transmit, to the first data system, another electronic form including a dummy authentication response generated based on a challenge result.Type: GrantFiled: November 29, 2021Date of Patent: February 20, 2024Assignee: Worldpay LimitedInventor: Christopher S. Dee -
Patent number: 11909737Abstract: A system, method and tangible non-transitory storage medium are disclosed. The system includes an integration platform configured to generate in interactive graphical user interface (GUI) that simultaneously displays and provides access to a combination of services, internal resources and external resources. Responsive to receiving input from a user device, the interactive GUI provide access to one or more selected services, internal resources and/or external resources. The integration platform may also monitor and capture interaction data associated with activity between the user device and the integration platform, execute machine learning model(s) to predict user-specific interaction tendencies, and revise one or more aspects of interactive GUI based on the predicted user-specific interaction tendencies.Type: GrantFiled: July 17, 2023Date of Patent: February 20, 2024Assignee: Citizens Financial Group, Inc.Inventor: Ross Pringle
-
Patent number: 11909738Abstract: This application provides a network access control method. Before a second device accesses a target to-be-accessed device in an internal network, authentication is first performed on the second device by using a local domain name carried in a domain name request packet. Only when the local domain name is authenticated, an IP address of the second device and an IP address of the target device to be accessed by the second device are recorded in forwarding information. Therefore, when a data request packet is received, it may be determined, based on a source IP address, a destination IP address, and the forwarding information that are carried in the data request packet, whether to forward the data request packet.Type: GrantFiled: May 10, 2021Date of Patent: February 20, 2024Assignee: Huawei Technologies Co., Ltd.Inventors: Jingyun Cao, Huazhi Yang
-
Patent number: 11909739Abstract: A method includes determining a corresponding level of a security model associated with each device of a plurality of devices connected to a network, each level of the security model having a corresponding tag; applying, to each of the plurality of devices, the corresponding tag based on the corresponding level of the security model with which each of the plurality of devices are associated; receiving, over a network connection, network traffic from at least one of the plurality of devices and the corresponding tag; analyzing the corresponding tag associated with the network traffic; determining a destination for the network traffic; applying one or more security measures to the network traffic based on the corresponding tag for the at least one device and a corresponding tag of the destination for the network traffic; and sending the network traffic to the destination with the corresponding tag of the destination.Type: GrantFiled: August 6, 2021Date of Patent: February 20, 2024Assignee: Cisco Technology, Inc.Inventors: Jerome Henry, Robert Edgar Barton, Elango Ganesan, Flemming Stig Andreasen
-
Patent number: 11909740Abstract: A method of accessing and managing content in a network based on unique standardized hierarchical identifications of products is provided. The method receives a notification that a first electronic device has completed an ownership event associated with a first product that includes a unique standardized hierarchical identification comprising a plurality of hierarchical sections. A first plurality of temporarily owned profiles is assigned to the first electronic device. Each profile in the first plurality of temporarily owned profiles is associated with one hierarchical section in the plurality of hierarchical sections of the first product. A temporarily owned profile associated with the lowest level in the first unique standardized hierarchical identification is associated with an item identification of the first product.Type: GrantFiled: May 27, 2022Date of Patent: February 20, 2024Inventor: Farzad Salimi Jazi
-
Patent number: 11909741Abstract: In one embodiment, a device in a network receives an access policy and a class behavioral model for a node in the network that are associated with a class asserted by the node. The device applies the access policy and class behavioral model to traffic associated with the node. The device identifies a deviation in a behavior of the node from the class behavioral model, based on the application of the class behavioral model to the traffic associated with the node. The device causes performance of a mitigation action in the network based on the identified deviation in the behavior of the node from the class behavioral model.Type: GrantFiled: May 26, 2021Date of Patent: February 20, 2024Assignee: CISCO TECHNOLOGY, INC.Inventors: Brian E. Weis, Blake Harrell Anderson, Rashmikant B. Shah, David McGrew
-
Patent number: 11909742Abstract: Embodiments of the present disclosure relate to managing admin-controlled access of external resources to group-based communication interfaces associated with an organization, via a group-based communication system including APIs for improved external resource permissioning, provisioning, and access handling. Embodiments include methods, computer program products, apparatuses, and systems configured to receive an external resource access request, determine an organization identifier, obtain an admin response indication, set an external resource permission status for the external resource based on the admin response indication, and cause rendering of the requested group-based communication interface based on the admin response indication. Embodiments further relate to provisioning and handling requests for services associated with an external resource by managing one or more single-interface access tokens linked to a multi-interface access token.Type: GrantFiled: February 18, 2022Date of Patent: February 20, 2024Assignee: Salesforce, Inc.Inventors: Salman Suhail, Saurabh Sahni, Kefan Xie, Emilio Aurea, Shilpi Sanchetee, Nupur Goyal, Carly Robinson
-
Patent number: 11909743Abstract: Systems and methods for an organization-level account for an organization on a data platform, users of which can possess administrative or management privileges with respect to the organization and across one or more others accounts of the organization.Type: GrantFiled: July 13, 2023Date of Patent: February 20, 2024Assignee: Snowflake Inc.Inventors: Christine A. Avanessians, Damien Carru, Ramachandran Natarajan Iyer, Dennis Edgar Lynch, Subramanian Muralidhar
-
Patent number: 11909744Abstract: A network verification system obtains configuration data of a plurality of network devices, where a data model of the configuration data is described by using a general data modeling language independent of the network devices; and the network verification system verifies data links between the plurality of network devices based on the configuration data of the plurality of network devices and a topology structure between the plurality of network devices. The network verification system verifies the data links between the plurality of network devices based on the topology structure between the plurality of network devices and the configuration data described by using the general data modeling language independent of the network devices. This helps improve scalability of the network verification system and avoids relatively poor scalability of network simulation software that occurs when conventional network simulation software provides a template for configuration data of each type of network device.Type: GrantFiled: June 28, 2021Date of Patent: February 20, 2024Assignee: HUAWEI TECHNOLOGIES CO., LTD.Inventors: Chao Xing, Keke Xu, Ying Chen
-
Patent number: 11909745Abstract: Systems and methods are disclosed for utilizing sender-recipient pair data to establish sender-level trust in future communication. One method comprises receiving raw communication data over a network and testing the received raw communication data against trained machine learning data to predict whether the raw communication data is associated with expected communication data. The raw communication data is sorted for expected communication data, which is further analyzed for sender-recipient pair data and assigned an expected communication pair data score. Senders associated with an expected communication pair data score that meets or exceeds a threshold are labeled and stored in a database as trusted. As a result of the sender-recipient pair analysis, recipients at-risk for being scammed can be identified, senders misidentified as spammers can be properly classified, and machine learning techniques utilized for analyzing raw communication data can be fine-tuned.Type: GrantFiled: October 3, 2022Date of Patent: February 20, 2024Assignee: Yahoo Assets LLCInventors: Lachlan A. Maxwell, Donald J. Mcqueen, Paul S. Rock
-
Patent number: 11909746Abstract: Embodiments of systems and methods are provided to enhance network security by providing secure, multi-path user authentication, while also providing a more convenient login experience to the user. In the present disclosure, a cloud-based user authentication and threat detection system is provided with an artificial intelligence (AI) engine and a training dataset. Utilizing a cloud-based system enables the AI engine to collect data from multiple devices located within different physical locations or environments (such as, for example, the user's home and office). The collected data is stored within the training dataset and used to create a personalized user profile for each user. Each time a user initiates login to a system or network from a particular location, the AI engine collects data from multiple devices within that location and utilizes the user profile data previously stored within the training dataset to securely authenticate the user or detect potential security threats.Type: GrantFiled: February 4, 2021Date of Patent: February 20, 2024Assignee: Dell Products L.P.Inventors: Fnu Jasleen, Joseph P. Marquardt