Patents Issued in February 20, 2024
  • Patent number: 11909697
    Abstract: Systems, apparatuses, methods, and computer-readable media are provided for remote interference management (RIM) in wireless networks, including RIM reference signals (RIM-RS) transmitted to assist victim radio access network (RAN) nodes to identify aggressor RAN nodes due to, for example, atmospheric ducting. The RIM-RS is also flexibly configured. Other embodiments may be described and/or claimed.
    Type: Grant
    Filed: September 19, 2022
    Date of Patent: February 20, 2024
    Assignee: Apple Inc.
    Inventors: Hassan Ghozlan, Qian Li, Dawei Ying, Geng Wu
  • Patent number: 11909698
    Abstract: A method and bot assistance system (101) for identifying ideal virtual assistant bots for providing response to user queries is disclosed. The bot assistance system receives user query. The user query is processed to identify context and intent using Natural Language Processing (NLP). The bot assistance system identifies at least one virtual assistant bot for responding to user query based on confidence score of each virtual assistant bot associated with intent of user query, using pretrained model. The identification of at least one virtual assistant bot includes either determining ideal virtual assistant bot based on context of user query, using predefined governance rules. Otherwise, initiating polling between plurality of predefined virtual assistant bots when context of user query is unidentified. The plurality of predefined virtual assistance bots is provided to user associated with user query if each of predefined virtual assistance bots are selected during polling.
    Type: Grant
    Filed: January 15, 2021
    Date of Patent: February 20, 2024
    Assignee: BITONIC TECHNOLOGY LABS, INC.
    Inventors: Jaya Kishore Reddy Gollareddy, Raghavendra Kumar Ravinutala, Rashid Ahmad Khan, Biddwan Ahmed, Surender Selvaraj
  • Patent number: 11909699
    Abstract: Apparatuses, methods, and systems for generating short messages for electronic messages of electronic marketing messages. One method includes receiving, by a server, information related to the electronic marketing message, receiving, by the server, a plurality of N short messages (text) generated based on the received information from a generative text engine model, reducing, by the server, the plurality of N short messages down to M short messages, displaying messages based on the M short messages to a merchant user, identifying merchant actions in response to the displaying of the messages based on the M short messages, and fine-tuning, by the server, the generative text engine model based on the identified merchant actions.
    Type: Grant
    Filed: January 19, 2023
    Date of Patent: February 20, 2024
    Assignee: Klaviyo, Inc
    Inventors: Charles T. Natoli, Devin Patel, Sofiane Hadji, Gal Gila Korcia, Nick Vessella, Robert Huselid, Andrew Piliero, Tristan Mills, Harsh Mehta
  • Patent number: 11909700
    Abstract: Disclosed herein are system, method, and computer program product embodiments for an enterprise micro-forum network receiving a request message to subscribe to an originating node of a first enterprise micro-forum operative within an organization's enterprise micro-forum network configured with a first topic, wherein the first enterprise micro-forum is configured with one or more rules to at least process the request message to subscribe. The embodiment further operates by receiving a topic message to be transmitted to a subscriber recipient node within a second enterprise micro-forum operative within the enterprise micro-forum network. The topic message comprises modified content from the first topic and is transmitted based on transmission parameters for the originating node to transmit the topic message to the recipient node and acceptance parameters of the subscriber recipient node. The topic message is retained in the second topic of the subscriber recipient node.
    Type: Grant
    Filed: February 9, 2023
    Date of Patent: February 20, 2024
    Assignee: INNER-MACHINATIONS, L.L.C.
    Inventor: Arpana Thakur Mansfield
  • Patent number: 11909701
    Abstract: Dynamic content can be delivered via email. Email messages include HTML content with one or more hyperlinks referring to a network-connected dynamic content server. The hyperlinks are accessed upon rendering of the email on a client device, triggering a request to a dynamic content server. The dynamic content server determines a content item to be served in response to the request. The dynamic content item determination may be based on factors including the identity of the requester, the email communication in which the hyperlink is embedded, recent activities or behavior on the part of the requester, and/or known preference or demographic information associated with the requester. The request can be directed to a selected content item stored within a content delivery network, for transmission back to the requester and display to the user within the email.
    Type: Grant
    Filed: July 2, 2019
    Date of Patent: February 20, 2024
    Assignee: Zeta Global Corp.
    Inventors: Christian Monberg, Barney Govan, Tim Hudson
  • Patent number: 11909702
    Abstract: A data processing system is configured to perform a computer implemented method for facilitation of efficient processing of electronic messages via a network from message sources. The method includes receiving an electronic message including actionable object data and textual object data from a message source device. The actionable object data includes parameters actionable by at least one data processing transaction device to perform data processing transactions external to the network device and the textual object data including descriptors of the parameters actionable by the at least one data processing transaction device. The textual object data is operable by devices incompatible with the actionable object data. The method includes calculating an execution command for the data processing transaction in response to the actionable object data and based on at least the parameters of the actionable object data.
    Type: Grant
    Filed: December 7, 2022
    Date of Patent: February 20, 2024
    Assignee: Chicago Mercantile Exchange Inc.
    Inventors: Carrick John Pierce, Baris Mestanogullari, Ajay Kumar Jain, Agnes Casenave, David Bernard Barton, Nicholas Bandy
  • Patent number: 11909703
    Abstract: Embodiments of the present invention provide systems and methods for processing comments provided to a live chat stream. By way of example, embodiments obviate or mitigate problems associated with conventional live chat streams by assessing semantic uniqueness of collections of comments in a live chat stream and then determining a final importance score for each collection based on its semantic-uniqueness and activity score. The display of each collection can then be controlled based on its final importance score.
    Type: Grant
    Filed: August 26, 2021
    Date of Patent: February 20, 2024
    Assignee: International Business Machines Corporation
    Inventors: Emma Jane Dawson, Gwilym Benjamin Lee Newton
  • Patent number: 11909704
    Abstract: A device, a network, and a method for wireless communication are provided. In an embodiment, the method, performed by a first communication node, includes generating at least one of a spatial-specific receiving pattern and a first spatial-specific processing pattern, receiving a waveform signal from one or more second nodes in accordance with the at least one of the spatial-specific receiving pattern or the first spatial-specific processing pattern, determining a second spatial-specific processing pattern and a channel status of a channel, wherein the channel status of the channel is according to the at least one of the spatial-specific receiving pattern and the second spatial-specific processing pattern and transmitting a signal along a transmission direction, wherein the transmission direction is in accordance with the at least one of the spatial-specific receiving pattern and the second spatial-specific processing pattern.
    Type: Grant
    Filed: November 19, 2021
    Date of Patent: February 20, 2024
    Assignee: Futurewei Technologies, Inc.
    Inventors: Jialing Liu, Weimin Xiao
  • Patent number: 11909705
    Abstract: A method of sharing an item from an external resource comprises displaying a user interface for the external resource in a messaging application and navigating within the external resource based on user input received in the user interface presented in the messaging application. Upon receipt of selection of an item or state within the external resource based on user input, the identity of one or more recipients is obtained. Information representing the item or state is then transmitted to a device of at least one recipient and information representing the item or state is displayed in a chat interface of a messaging application running on a device of the recipient(s).
    Type: Grant
    Filed: October 4, 2021
    Date of Patent: February 20, 2024
    Assignee: Snap Inc.
    Inventors: Laurent Desserrey, Dylan Shane Eirinberg, Matthew Colin Grantham, Patrick Mandia, David Whyte
  • Patent number: 11909706
    Abstract: Delivering a transcribed voice message includes detecting receipt of a voice message for delivery to a user, the voice message related to an incoming call for the user; determining a current presence of the user on at least one of a plurality of messaging channels in real time during receipt of the voice message; transcribing the voice message to text in real time; and delivering, in real time, the transcribed voice message to the at least one messaging channel on which the current presence of the user is determined. Delivering the transcribed voice message can also include receiving from the user initial identification of different user accounts, along with authorizations and permissions.
    Type: Grant
    Filed: November 9, 2021
    Date of Patent: February 20, 2024
    Assignee: Avaya Management L.P.
    Inventors: Navin Daga, Pushkar Yashavant Deole, Sandesh Chopdekar
  • Patent number: 11909707
    Abstract: Systems and methods for providing message schema migration in messaging systems. In one implementation, a definition of a messaging schema is received. One or more transformation files associated with the messaging schema is received, wherein the one or more transformation files define a plurality of transformations to be applied to incoming messages. An order of applying the plurality of transformations is determined. The plurality of transformations is applied to a message of the incoming messages according to the determined order. The message is forwarded to a messaging system.
    Type: Grant
    Filed: April 15, 2022
    Date of Patent: February 20, 2024
    Assignee: Red Hat, Inc.
    Inventors: Carles Arnal Castello, Paolo Antinori
  • Patent number: 11909708
    Abstract: The present invention is directed to data communication systems and techniques thereof. In a specific embodiment, the present invention provides a network connector that includes an interface for connecting to a host. The interface includes a circuit for utilizing two data paths for the host. The circuit is configured to transform the host address to different addresses based on the data path being used. There are other embodiments as well.
    Type: Grant
    Filed: September 9, 2022
    Date of Patent: February 20, 2024
    Assignee: Marvell Asia Pte Ltd
    Inventors: Whay Sing Lee, Arash Farhoodfar
  • Patent number: 11909709
    Abstract: The present invention relates to a networked device configuration identifying method.
    Type: Grant
    Filed: December 9, 2022
    Date of Patent: February 20, 2024
    Assignee: FLYTECH TECHNOLOGY CO., LTD.
    Inventor: Hsiang-Yi Cheng
  • Patent number: 11909710
    Abstract: A method for communication includes provisioning each node in a network with a respective set of two or more network addresses. Each node in succession is assigned a respective network address from the respective provisioned set that has not been assigned for use by any preceding node. Upon finding for a given node that all the network addresses in the respective provisioned set were assigned to preceding nodes, the preceding nodes are searched to identify a candidate node having an additional network address in the respective provisioned set, other than the assigned respective network address, that was not yet assigned to any of the nodes. The additional network address is assigned to the candidate node instead of the respective network address that was previously assigned to the candidate node, and the assigning of the network addresses to the nodes in the succession resumes following the candidate node.
    Type: Grant
    Filed: July 7, 2022
    Date of Patent: February 20, 2024
    Assignee: MELLANOX TECHNOLOGIES, LTD.
    Inventors: Eitan Zahavi, Guy Rozenberg, Matty Kadosh, Lion Levi, Boris Pismenny, Alex Netes, Miriam Menes, Lior Hodaya Bezen, Michael Tahar
  • Patent number: 11909711
    Abstract: An example method includes receiving a domain name server (DNS) query initiated by an endpoint device, determining a current port assignment for the endpoint device, changing an allocation of ports for the endpoint device from the current port assignment based on a predicted port allocation need for a current communication session associated with the domain name server query, and performing a network address translation in accordance with the allocation of ports for the endpoint device.
    Type: Grant
    Filed: May 18, 2021
    Date of Patent: February 20, 2024
    Assignee: AT&T Intellectual Property I, L.P.
    Inventors: Robert Sayko, Avinash Lingala
  • Patent number: 11909712
    Abstract: Methods, systems, and apparatus, including computer programs encoded on a computer storage medium, for receiving a packet from a client, the packet having header information including a destination Internet Protocol (IP) address, a destination port, a source IP address, and a source port, and wherein the source IP address and source port are associated with the client; selecting a destination virtual machine based on the destination port; modifying the packet by replacing the destination IP address in the header information with an IP address of the selected destination virtual machine; and sending the modified packet to the destination virtual machine.
    Type: Grant
    Filed: November 6, 2020
    Date of Patent: February 20, 2024
    Assignee: Google LLC
    Inventor: Evan K. Anderson
  • Patent number: 11909713
    Abstract: Systems, methods, and computer-readable media relate to providing a network management service. A system is configured to request first network information from a first component of a network using a public IP address for the first component, wherein the first network information includes private IP addresses for a second component in the network and translate, based on a mapping information for a private IP address space to a public IP address space, the private IP address for a second component to a public IP address for the second component. The system is further configured to request second network information from the second component using the public IP address and provide a network management service for the network based on the second network information.
    Type: Grant
    Filed: May 3, 2021
    Date of Patent: February 20, 2024
    Assignee: Cisco Technology, Inc.
    Inventors: Vivek Balamurugan, Chandra Nagarajan, Divjyot Sethi, Chaitanya Velpula, Manvesh Vyas, Ramana Rao Kompella, Pradhap Muthuraman
  • Patent number: 11909714
    Abstract: The present invention relates to systems and methods for matching and collecting user data and/or user device data within a current Internet access session of a user for use by user notification systems that generate, distribute and display informational messages over the Internet. The system comprises a source data reception unit configured to receive a source IP address and a source user device port matched with the translated IP address and with the translated port of the operator or the provider from the NAT service, and a data matching unit configured to match user data and/or user device data from all available sources, including but not limited to operator or provider databases, using the received source IP address and the received user device port. Advantageously, the invention provides delivery of informational messages based on collected/matched user data and/or user device data provided according to the present system to the maximum number of real identified users.
    Type: Grant
    Filed: December 27, 2022
    Date of Patent: February 20, 2024
    Assignee: DEXAMERON LIMITED (DEXAMERON LTD)
    Inventors: Ilya Alexandrovich Volynkin, Oleg Sergeevich Kopitsyn, Sergei Aleksandrovich Vakhotin
  • Patent number: 11909715
    Abstract: A DNS resolution request for a hostname of a CDN is received. An edge server of the CDN may be identified, which may be associated with a subnet. The subnet is used to generate a response IP address, where the remaining bits of the response IP address may be used to store requestor information (e.g., a requestor IP address). When a client computing device uses the response IP address to access the edge server, requestor information is extracted and associated with client computing device information (e.g., an IP address and/or location, etc.) in an association record. Association records may be used to determine predicted characteristics for devices served by a requestor. When the authoritative DNS server resolves a request from the requestor, such predicted characteristics may be used rather than relying solely on information about a requestor. Thus, an edge server proximate to the predicted location may be returned instead.
    Type: Grant
    Filed: February 26, 2023
    Date of Patent: February 20, 2024
    Assignee: Level 3 Communications, LLC
    Inventor: Kevin Johns
  • Patent number: 11909716
    Abstract: Leaf nodes of a tree structure, also having a root node and intermediate nodes, communicate with endpoints via access networks and store mappings from permanent virtual IP (VIP) addresses for the endpoints to physical IP (PIP) addresses for the endpoints on the access networks. The root node and intermediate nodes store pointers for the endpoints' leaf nodes and associated access networks. When a connection setup request (CSR) for a destination endpoint is received from a corresponding node, the receiving leaf node passes the CSR up through the tree structure to a lowest common ancestor (LCA) node for the receiving leaf node and one or more destination leaf nodes associated with the destination endpoint. The LCA node uses its pointers to pass the CSR down towards the one or more destination leaf nodes, which use the corresponding VIP-to-PIP mappings to forward the CSR to the destination endpoint.
    Type: Grant
    Filed: December 8, 2022
    Date of Patent: February 20, 2024
    Assignee: Nokia Solutions and Networks Oy
    Inventors: Randeep Bhatia, Steven Benno, Fang Hao, Yu Mi, T V Lakshman
  • Patent number: 11909717
    Abstract: An example network device determines to assign a number of global Internet protocol (IP) addresses to respective network interfaces, determines a subnetwork for the network interfaces, determines a prefix corresponding to the subnetwork, determines a first global IP address having the prefix, determines a range value that is equal to or greater than the number of global IP addresses, generates a message according to Duplicate Address Detection Protocol (DAD) including data indicating that the message includes a range of addresses, the data further indicating the first global IP address and the range value, and sends the message according to DAD to one or more host network devices to determine whether any global IP address in a range starting with the first global IP address and through the range value is in use by the one or more host network devices.
    Type: Grant
    Filed: February 9, 2023
    Date of Patent: February 20, 2024
    Assignee: Juniper Networks, Inc.
    Inventors: Manoj Nayak, Rafik Puttur
  • Patent number: 11909718
    Abstract: Methods for configuring a monitoring device to communicate with a service server are provided. The method includes the monitoring device sending a message including a monitoring device identifier used by a control server to identify the service server associated with the monitoring device, receiving one or more service server addresses associated with the identified service sever from the control server, and establishing a service connection between the monitoring device and the identified service server using the one or more addresses received from the control server. A control server adapted to configure a monitoring device in a monitoring system and a method for configuring the control server are also provided.
    Type: Grant
    Filed: February 24, 2023
    Date of Patent: February 20, 2024
    Assignee: Axis AB
    Inventors: Joacim Tullberg, Johan Adolfsson, Martin Gren
  • Patent number: 11909719
    Abstract: Techniques and technologies for an Internet Protocol (IP) address management (IPAM) system to track and manage IP address workflows in a network. The IPAM system can be used to define and enforce management policies or rules regarding IP address management, such as allocation policies, refill policies, and so forth. For instance, the IPAM system can enforce allocation policies that define rules to allow or deny allocation of IP addresses based on types of resources for which the IP addresses are requested, registered user accounts that are requesting the IP addresses, the purpose of the resources receiving the IP addresses, and so forth. Additionally, the IPAM system can enforce refill policies that define rules for replenishing inventories of IP addresses that have been allocated for different domains in the network. The IPAM system can improve the management of IP address workflows by enforcing policy and tracking IP address workflows in networks.
    Type: Grant
    Filed: November 24, 2021
    Date of Patent: February 20, 2024
    Assignee: AMAZON TECHNOLOGIES, INC.
    Inventors: Jonathan Paul Kramer, Michael Erik Untereiner, Samuel Lough, John Jeffrey Schlachtenhaufen, Masood Karimi, Eric Andrew Rubin-Smith, Joshua D Leaverton, Shovan Kumar Das
  • Patent number: 11909720
    Abstract: A computer-implemented method includes: connecting, by a computing device, to a database using an outbound connection, wherein the computing device is an information technology (IT) product in a private network and the database is outside the private network; receiving, by the computing device, a response from the database, the response including a command; executing, by the computing device, the command; and sending, by the computing device, result data to the database, wherein the result data is data that results from executing the command on the computing device.
    Type: Grant
    Filed: September 17, 2021
    Date of Patent: February 20, 2024
    Assignee: KYNDRYL, INC.
    Inventors: Grzegorz Piotr Szczepanik, Tiberiu Suto, Nadiya Kochura, Nicolo' Sgobba, Erik Rueger
  • Patent number: 11909721
    Abstract: A firewall configuration server includes a processor in communication with a memory device. The processor is configured to: receive, from an admin computer device, group-based firewall rules, wherein the group-based firewall rules identify a plurality of groups of virtual machines (VMs) executable on a VM server system and a respective set of firewall policies to be applied to the VMs in each group; receive, from a virtual machine (VM) server system, group membership data, the group membership data identifying the plurality of groups and a respective list of VMs associated with each group; parse the group membership data according to the group-based firewall rules to generate VM-specific firewall rules; and transmit the VM-specific firewall rules to a firewall, wherein each VM-specific firewall rule is configured for application by the firewall to communication requests identifying an IP address of one of the VMs.
    Type: Grant
    Filed: December 29, 2020
    Date of Patent: February 20, 2024
    Assignee: MASTERCARD INTERNATIONAL INCORPORATED
    Inventor: Michael Keiser
  • Patent number: 11909722
    Abstract: Various techniques for detecting homographs of domain names are disclosed. In some embodiments, a system, process, and/or computer program product for detecting homographs of domain names includes receiving a DNS data stream, wherein the DNS data stream includes a DNS query and a DNS response for resolution of the DNS query; applying a homograph detector for each domain in the DNS data stream; and detecting a homograph of a domain name in the DNS data stream using the homograph detector.
    Type: Grant
    Filed: May 27, 2022
    Date of Patent: February 20, 2024
    Assignee: Infoblox Inc.
    Inventor: Femi Olumofin
  • Patent number: 11909723
    Abstract: Techniques for auto-starting a VPN in a MAM environment are disclosed. A MAM-controlled application is launched on a computer system. Policy is queried and a determination is made as to whether to auto-start a VPN application based on the policy. Based on the policy, the VPN application is auto-started, and the VPN application initiates a VPN tunnel that is usable by at least the MAM-controlled application. Network communications transmitted to or from the MAM-controlled application then pass through the VPN tunnel.
    Type: Grant
    Filed: June 15, 2021
    Date of Patent: February 20, 2024
    Assignee: Microsoft Technology Licensing, LLC
    Inventors: James Matthew Hamilton Oakley, Neil Adam Jacobson
  • Patent number: 11909724
    Abstract: A network node residing in a mobile network identifies a first network slice of the mobile network for use by a first session between a first user equipment device (UE) and a first application hosted by a first hosting device. The network node obtains a first security profile based on an identity of the first application and based on the identified first network slice, and establishes, using the obtained first security profile, a first secure tunnel between the network node and the first hosting device for transporting first data units associated with the first session between the network node and the first hosting device.
    Type: Grant
    Filed: May 4, 2022
    Date of Patent: February 20, 2024
    Assignee: Verizon Patent and Licensing Inc.
    Inventors: Amir Saghir, Said Hanbaly, Mun Wei Low, Nimalan Kanagasabai
  • Patent number: 11909725
    Abstract: Disclosed are systems and methods for improving interactions with and between computers in content generating, searching, hosting and/or providing systems supported by or configured with personal computing devices, servers and/or platforms. The systems interact to identify and retrieve data within or across platforms, which can be used to improve the quality of data used in processing interactions between or among processors in such systems. The disclosed systems and methods provide systems and methods for privacy-aware machine learning using an improved data encoding that withholds more information. The disclosed systems and methods encode a corpus of data and encode each query used in searching and generating query results from the corpus of encoded data.
    Type: Grant
    Filed: August 31, 2022
    Date of Patent: February 20, 2024
    Assignee: YAHOO ASSETS LLC
    Inventors: Eric Bax, Charlotte Bax
  • Patent number: 11909726
    Abstract: A method for applying control to a vehicle. The method includes: receiving, by way of a second control unit of a second vehicle to which control is to be applied, a signal encompassing a message encrypted using a valid symmetrical key of a first control unit of a first vehicle; ascertaining, by way of the second control unit, a decryptability of the encrypted message using a valid symmetrical key of the second control unit or a symmetrical reserve key of the second control unit ascertained by way of the second control unit; ecrypting the encrypted message, depending on the ascertained decryptability, by way of the second control unit using the valid symmetrical key of the second control unit or the symmetrical reserve key of the second control unit; and applying control, based on the decrypted message, to the second vehicle to which control is to be applied.
    Type: Grant
    Filed: April 28, 2020
    Date of Patent: February 20, 2024
    Assignee: ROBERT BOSCH GMBH
    Inventors: Soheil Gherekhloo, Jan-Felix Van Dam, Ralf Prenzel
  • Patent number: 11909727
    Abstract: An Internet-connected device, such as a car, refrigerator, or even a laptop can use a second device, such as a cell phone, to support cryptographic operations and communication with token service providers or other processing services requiring pre-provisioned capabilities that may include cryptographic secrets. By removing the need to store personally sensitive data in “Internet of Things” (IoT) devices, a user's personal information and other sensitive financial information may be contained to a relatively small number of devices. This may help prevent theft of goods or services by IoT devices that are not always under the close control of the user.
    Type: Grant
    Filed: August 31, 2022
    Date of Patent: February 20, 2024
    Assignee: Visa International Service Association
    Inventors: Hari Krishna Annam, Mohit Gupta, Soumendra Bhattacharya
  • Patent number: 11909728
    Abstract: Methods and systems are provided for use with digital data processing systems to control or otherwise limit access to networked resources based, at least in part, on transactional artifacts and/or derived artifacts.
    Type: Grant
    Filed: September 6, 2016
    Date of Patent: February 20, 2024
    Assignee: CHENG HOLDINGS, LLC
    Inventor: Thomas W. Lynch
  • Patent number: 11909729
    Abstract: A method (400) for a website authentication is provided. The method includes receiving a reference uniform resource locator (URL) (130) at a browser (120) and determining whether the reference URL adheres to an authentication protocol (202) including a credential identifier (132c) and a web authentication host URL (132a). When the reference URL adheres to the authentication protocol, the method also includes extracting the credential identifier and the web authentication host URL from the reference URL. The method further includes obtaining credential data (160) from a remote service (150) using the credential identifier and sending web authentication instructions (170) to the browser. The web authentication instructions include the web authentication host URL and the credential data.
    Type: Grant
    Filed: April 26, 2018
    Date of Patent: February 20, 2024
    Assignee: Google LLC
    Inventors: Clifton Kaznocha, Erik Gustavson, Scott Kriz
  • Patent number: 11909730
    Abstract: Authentication of a networked device with limited computational resources for secure communications over a network. Authentication of the device begins with the supplicant node transmitting a signed digital certificate with its authentication credentials to a proxy node. Upon verifying the certificate, the proxy node then authenticates the supplicant's credentials with an authentication server accessible over the network, acting as a proxy for the supplicant node. Typically, this verification includes decryption according to a public/private key scheme. Upon successful authentication, the authentication server creates a session key for the supplicant node and communicates it to the proxy node. The proxy node encrypts the session key with a symmetric key, and transmits the encrypted session key to the supplicant node which, after decryption, uses the session key for secure communications. In some embodiments, the authentication server encrypts the session key with the symmetric key.
    Type: Grant
    Filed: October 11, 2022
    Date of Patent: February 20, 2024
    Assignee: TEXAS INSTRUMENTS INCORPORATED
    Inventors: Kumaran Vijayasankar, Oliver Shih, Arvind K. Raghu, Ramanuja Vedantham, Xiaolin Lu
  • Patent number: 11909731
    Abstract: Disclosed embodiments relate to providing dynamic and least-privilege access to network resources. Techniques include receiving a request from a network identity to access a network resource, authenticating the network identity using a native client and communication protocol, authorizing the network identity based on one or more access policy, generating a least privilege ephemeral account having ephemeral credentials, accessing the network resource using the ephemeral credentials, and enabling the network identity to access the network resource using the least-privilege ephemeral account using the native client and communication protocol. The techniques may further include matching an existing account to the network identity based on the one or more access policy and enabling the network identity to access the network resource using the matched existing account using the native client and communication protocol.
    Type: Grant
    Filed: November 29, 2022
    Date of Patent: February 20, 2024
    Assignee: CYBERARK SOFTWARE LTD
    Inventors: Tomer Dayan, Ofir Iluz, Yaron Nisimov
  • Patent number: 11909732
    Abstract: A server computer hosting an extended reality world receives a first transmission over a communication network from a computing device associated with a user, the first transmission including a request for the user to access the extended reality world. The server computer transmits a presentation of the extended reality world to the communication device over the communications network based at least in part on the request, and displays the presentation of the extended reality world on the computing device, where the presentation includes at least an avatar associated with the user. The server computer receives a command for the avatar to store a phrase selected by the user in a location associated with a virtual object within the extended reality world. The server computer displays, within the presentation of the extended reality world on the computing device, the avatar storing the phrase at the location in the extended reality world.
    Type: Grant
    Filed: July 31, 2023
    Date of Patent: February 20, 2024
    Assignee: Intuit Inc.
    Inventor: Michael William Mitchell
  • Patent number: 11909733
    Abstract: Various embodiments of the present disclosure provide techniques for facilitating a credential-less exchange over a network using a plurality of identifier mapping and member interfaces. The techniques may include initiating the presentation of an enrollment user interface via a client device of a user and receiving selection data indicative of a selection of a service provider instrument from the enrollment user interface. The techniques include generating a matching code for authenticating the user, providing the matching code to a service provider platform, and receiving the matching code from a partner platform. In response to an authentication of the user based on the matching code, the techniques may include generating an UUEK for the user that may be used to replace persistent credentials.
    Type: Grant
    Filed: October 20, 2023
    Date of Patent: February 20, 2024
    Assignee: 1080 Network, Inc.
    Inventors: Christopher Michael Petersen, Tim Kuchlein
  • Patent number: 11909734
    Abstract: Systems and methods are disclosed that provide for secure communications between a user device and an authentication system. The systems and methods create a dynamic identification for the device that is stored in both the device and authentication system.
    Type: Grant
    Filed: January 13, 2020
    Date of Patent: February 20, 2024
    Assignee: National Technology & Engineering Solutions of Sandia, LLC
    Inventors: Sung Nam Choi, David John Zage, Tam Dang Le, Susan L Washburn
  • Patent number: 11909735
    Abstract: Techniques are provided for multi-cloud authentication of data requests. One method comprises obtaining, by a first authentication entity of a first cloud environment, from a service on the first cloud environment, a request for data stored by a second cloud environment; determining a signature for the service; verifying the determined signature for the service by requesting a signature for the service registered with a second authentication entity of the second cloud environment; requesting the data from the second authentication entity of the second cloud environment in response to the determined signature being verified; and providing the requested data to the service. The requested data from the second cloud environment may be encrypted with an encryption key, and the method may further comprise decrypting the requested data with a decryption key obtained from the second cloud environment. The signature for the service may be registered as part of a deployment of the service.
    Type: Grant
    Filed: November 13, 2020
    Date of Patent: February 20, 2024
    Assignee: EMC IP Holding Company LLC
    Inventors: Tomer Shachar, Yevgeni Gehtman, Maxim Balin
  • Patent number: 11909736
    Abstract: Systems and methods for authenticating an electronic transaction using a hosted authentication service. The systems and methods determine whether an authentication is required based on a first electronic message received from a first data system. Upon determining the authentication is required, the systems and methods transmit a dummy authentication request and a hosted authentication service uniform resource locator to the first data system. The systems and methods further determine or receive an indication whether a user authentication challenge is required based on a transaction risk analysis by a second data system. Upon determining the user authentication challenge is required, the systems and methods provide, at a user interface, an electronic form including a challenge request. The systems and methods transmit, to the first data system, another electronic form including a dummy authentication response generated based on a challenge result.
    Type: Grant
    Filed: November 29, 2021
    Date of Patent: February 20, 2024
    Assignee: Worldpay Limited
    Inventor: Christopher S. Dee
  • Patent number: 11909737
    Abstract: A system, method and tangible non-transitory storage medium are disclosed. The system includes an integration platform configured to generate in interactive graphical user interface (GUI) that simultaneously displays and provides access to a combination of services, internal resources and external resources. Responsive to receiving input from a user device, the interactive GUI provide access to one or more selected services, internal resources and/or external resources. The integration platform may also monitor and capture interaction data associated with activity between the user device and the integration platform, execute machine learning model(s) to predict user-specific interaction tendencies, and revise one or more aspects of interactive GUI based on the predicted user-specific interaction tendencies.
    Type: Grant
    Filed: July 17, 2023
    Date of Patent: February 20, 2024
    Assignee: Citizens Financial Group, Inc.
    Inventor: Ross Pringle
  • Patent number: 11909738
    Abstract: This application provides a network access control method. Before a second device accesses a target to-be-accessed device in an internal network, authentication is first performed on the second device by using a local domain name carried in a domain name request packet. Only when the local domain name is authenticated, an IP address of the second device and an IP address of the target device to be accessed by the second device are recorded in forwarding information. Therefore, when a data request packet is received, it may be determined, based on a source IP address, a destination IP address, and the forwarding information that are carried in the data request packet, whether to forward the data request packet.
    Type: Grant
    Filed: May 10, 2021
    Date of Patent: February 20, 2024
    Assignee: Huawei Technologies Co., Ltd.
    Inventors: Jingyun Cao, Huazhi Yang
  • Patent number: 11909739
    Abstract: A method includes determining a corresponding level of a security model associated with each device of a plurality of devices connected to a network, each level of the security model having a corresponding tag; applying, to each of the plurality of devices, the corresponding tag based on the corresponding level of the security model with which each of the plurality of devices are associated; receiving, over a network connection, network traffic from at least one of the plurality of devices and the corresponding tag; analyzing the corresponding tag associated with the network traffic; determining a destination for the network traffic; applying one or more security measures to the network traffic based on the corresponding tag for the at least one device and a corresponding tag of the destination for the network traffic; and sending the network traffic to the destination with the corresponding tag of the destination.
    Type: Grant
    Filed: August 6, 2021
    Date of Patent: February 20, 2024
    Assignee: Cisco Technology, Inc.
    Inventors: Jerome Henry, Robert Edgar Barton, Elango Ganesan, Flemming Stig Andreasen
  • Patent number: 11909740
    Abstract: A method of accessing and managing content in a network based on unique standardized hierarchical identifications of products is provided. The method receives a notification that a first electronic device has completed an ownership event associated with a first product that includes a unique standardized hierarchical identification comprising a plurality of hierarchical sections. A first plurality of temporarily owned profiles is assigned to the first electronic device. Each profile in the first plurality of temporarily owned profiles is associated with one hierarchical section in the plurality of hierarchical sections of the first product. A temporarily owned profile associated with the lowest level in the first unique standardized hierarchical identification is associated with an item identification of the first product.
    Type: Grant
    Filed: May 27, 2022
    Date of Patent: February 20, 2024
    Inventor: Farzad Salimi Jazi
  • Patent number: 11909741
    Abstract: In one embodiment, a device in a network receives an access policy and a class behavioral model for a node in the network that are associated with a class asserted by the node. The device applies the access policy and class behavioral model to traffic associated with the node. The device identifies a deviation in a behavior of the node from the class behavioral model, based on the application of the class behavioral model to the traffic associated with the node. The device causes performance of a mitigation action in the network based on the identified deviation in the behavior of the node from the class behavioral model.
    Type: Grant
    Filed: May 26, 2021
    Date of Patent: February 20, 2024
    Assignee: CISCO TECHNOLOGY, INC.
    Inventors: Brian E. Weis, Blake Harrell Anderson, Rashmikant B. Shah, David McGrew
  • Patent number: 11909742
    Abstract: Embodiments of the present disclosure relate to managing admin-controlled access of external resources to group-based communication interfaces associated with an organization, via a group-based communication system including APIs for improved external resource permissioning, provisioning, and access handling. Embodiments include methods, computer program products, apparatuses, and systems configured to receive an external resource access request, determine an organization identifier, obtain an admin response indication, set an external resource permission status for the external resource based on the admin response indication, and cause rendering of the requested group-based communication interface based on the admin response indication. Embodiments further relate to provisioning and handling requests for services associated with an external resource by managing one or more single-interface access tokens linked to a multi-interface access token.
    Type: Grant
    Filed: February 18, 2022
    Date of Patent: February 20, 2024
    Assignee: Salesforce, Inc.
    Inventors: Salman Suhail, Saurabh Sahni, Kefan Xie, Emilio Aurea, Shilpi Sanchetee, Nupur Goyal, Carly Robinson
  • Patent number: 11909743
    Abstract: Systems and methods for an organization-level account for an organization on a data platform, users of which can possess administrative or management privileges with respect to the organization and across one or more others accounts of the organization.
    Type: Grant
    Filed: July 13, 2023
    Date of Patent: February 20, 2024
    Assignee: Snowflake Inc.
    Inventors: Christine A. Avanessians, Damien Carru, Ramachandran Natarajan Iyer, Dennis Edgar Lynch, Subramanian Muralidhar
  • Patent number: 11909744
    Abstract: A network verification system obtains configuration data of a plurality of network devices, where a data model of the configuration data is described by using a general data modeling language independent of the network devices; and the network verification system verifies data links between the plurality of network devices based on the configuration data of the plurality of network devices and a topology structure between the plurality of network devices. The network verification system verifies the data links between the plurality of network devices based on the topology structure between the plurality of network devices and the configuration data described by using the general data modeling language independent of the network devices. This helps improve scalability of the network verification system and avoids relatively poor scalability of network simulation software that occurs when conventional network simulation software provides a template for configuration data of each type of network device.
    Type: Grant
    Filed: June 28, 2021
    Date of Patent: February 20, 2024
    Assignee: HUAWEI TECHNOLOGIES CO., LTD.
    Inventors: Chao Xing, Keke Xu, Ying Chen
  • Patent number: 11909745
    Abstract: Systems and methods are disclosed for utilizing sender-recipient pair data to establish sender-level trust in future communication. One method comprises receiving raw communication data over a network and testing the received raw communication data against trained machine learning data to predict whether the raw communication data is associated with expected communication data. The raw communication data is sorted for expected communication data, which is further analyzed for sender-recipient pair data and assigned an expected communication pair data score. Senders associated with an expected communication pair data score that meets or exceeds a threshold are labeled and stored in a database as trusted. As a result of the sender-recipient pair analysis, recipients at-risk for being scammed can be identified, senders misidentified as spammers can be properly classified, and machine learning techniques utilized for analyzing raw communication data can be fine-tuned.
    Type: Grant
    Filed: October 3, 2022
    Date of Patent: February 20, 2024
    Assignee: Yahoo Assets LLC
    Inventors: Lachlan A. Maxwell, Donald J. Mcqueen, Paul S. Rock
  • Patent number: 11909746
    Abstract: Embodiments of systems and methods are provided to enhance network security by providing secure, multi-path user authentication, while also providing a more convenient login experience to the user. In the present disclosure, a cloud-based user authentication and threat detection system is provided with an artificial intelligence (AI) engine and a training dataset. Utilizing a cloud-based system enables the AI engine to collect data from multiple devices located within different physical locations or environments (such as, for example, the user's home and office). The collected data is stored within the training dataset and used to create a personalized user profile for each user. Each time a user initiates login to a system or network from a particular location, the AI engine collects data from multiple devices within that location and utilizes the user profile data previously stored within the training dataset to securely authenticate the user or detect potential security threats.
    Type: Grant
    Filed: February 4, 2021
    Date of Patent: February 20, 2024
    Assignee: Dell Products L.P.
    Inventors: Fnu Jasleen, Joseph P. Marquardt