Position Dependent Or Authenticating Patents (Class 380/258)
  • Patent number: 10740478
    Abstract: A method of performing an operation on a data storage for storing data being encrypted with a key KD associated with an owner of the data is provided. The method includes deriving, for each authorized client Cj, a first key KCj and a second key KTj, providing the client Cj with the first key KCj, and providing a Trusted Third Party (TTP) with the second key KTj. The method further includes, at a Policy Enforcement Point, receiving a request for performing the operation on the data storage from a client Ck of the authorized clients, acquiring a first key KCk from the client Ck, acquiring a second key KTk from the TTP, deriving the key KD from the first key KCk and the second key KTk, and performing the operation on the data storage using the derived key KD. The disclosed trust model uses two-part secret sharing.
    Type: Grant
    Filed: July 31, 2017
    Date of Patent: August 11, 2020
    Assignee: Telefonaktiebolaget LM Ericsson (publ)
    Inventors: Mats Näslund, Christian Schaefer
  • Patent number: 10716007
    Abstract: A telecommunication device protects data stored in a security module. The device has a near field communication (NFC) router with a plurality of individually assignable gates and a routing table. In response to a request to assign a communication pipe to one of the gates, the device creates and stores a reference signature for the pipe based on at least one of a personal code of an authorized user of the device or an identifier of a radio frequency gate of the router. In response to a request to provide data from the security module to the NFC router, the device creates a current signature corresponding to the request to provide data. The device verifies whether the current signature corresponds to the stored reference signature and prevents a provision of the requested data based on a failure to verify the current signature corresponds to the stored reference signature.
    Type: Grant
    Filed: March 22, 2019
    Date of Patent: July 14, 2020
    Assignee: PROTON WORLD INTERNATIONAL N.V.
    Inventors: Thierry Huque, Olivier Van Nieuwenhuyze
  • Patent number: 10631154
    Abstract: Systems and methods are provided for checking many users in to a location using a Bluetooth® low energy (BLE) beacon. The provided systems and methods may allow a BLE beacon to facilitate a check in with a remote server that processes check ins and then disconnect from the device used to check in. The device may be assigned a unique identifier that may be broadcast from the device during the check in so that the BLE beacon can quickly scan for the identifier and connect with the device based on the identifier to provide content and other information to the device.
    Type: Grant
    Filed: April 2, 2019
    Date of Patent: April 21, 2020
    Assignee: PAYPAL, INC.
    Inventor: John Hastings Granbery
  • Patent number: 10630795
    Abstract: Systems and methods are provided for transferring state between devices. In one implementation, a gestural input is detected, and a state of a source application is transferred from a first device to a second device in response to the gestural input. The second device may then generate an instance of a target application that corresponds to a representation of the state of the source application received from the first device. In an additional implementation, a state of the target application is transferred from the second device to the first device. The first device then updates a state of the source application to correspond to a representation of the state of the target application received from the second device.
    Type: Grant
    Filed: March 30, 2012
    Date of Patent: April 21, 2020
    Assignee: Oath Inc.
    Inventors: Norihiro Edwin Aoki, Christina Wick, Todd Brannam, Leotis Givens, Jr.
  • Patent number: 10621373
    Abstract: A mobile storage device includes first and second memory regions in one or more semiconductor memory devices, a positioning system configured to generate positional information indicating a position of the mobile storage device, and a controller. The controller is configured to allow access to the first memory region and prohibit access to the second memory region when the positional information indicates that the position of the mobile storage device is within a first area, and prohibit access to the first memory region and allow access to the second memory region when the positional information indicates that the position of the memory storage device is within a second area, which is different from and does not overlap with the first area.
    Type: Grant
    Filed: February 21, 2017
    Date of Patent: April 14, 2020
    Assignee: Toshiba Memory Corporation
    Inventors: Makoto Iwai, Teruji Yamakawa, Isao Sakai, Koki Kanda
  • Patent number: 10609042
    Abstract: Various systems and methods for determining whether to allow or continue to allow access to a protected data asset are disclosed herein. For example, one method involves receiving a request to access a protected data asset, wherein the request is received from a first user device; determining whether to grant access to the protected data asset, wherein the determining comprises evaluating one or more criteria associated with the first user device, and the criteria comprises first information associated with a first policy constraint; and in response to a determination that access to the protected data asset is to be granted, granting access to the protected data asset.
    Type: Grant
    Filed: December 21, 2016
    Date of Patent: March 31, 2020
    Assignee: Cisco Technology, Inc.
    Inventors: Paul Quinn, Michael E. Lipman, Mike Milano, David D. Ward, James Guichard, Leonid Sandler, Moshe Kravchik, Alena Lifar, Darrin Miller
  • Patent number: 10608818
    Abstract: A communication system and a comparison method for securing a communication path for a legitimate user via a terminal apparatus (“TA”). A vehicle-mounted communication device (“VMCD”) transmits a device ID identifying the VMCD to a TA, acquires a terminal ID from the TA, and transmits the device ID and the terminal ID acquired from the TA to a central apparatus. The TA transmits a terminal ID identifying the TA to the VMCD, acquires a device ID from the VMCD, and transmits the terminal ID and the device ID acquired from the VMCD to the central apparatus. The central apparatus receives a device ID and a terminal ID transmitted from the VMCD and a device ID and a terminal ID transmitted from the TA, and compares the device ID and the terminal ID received from the VMCD with the device ID and the terminal ID received from the TA.
    Type: Grant
    Filed: January 16, 2015
    Date of Patent: March 31, 2020
    Assignees: AutoNetworks Technologies, Ltd., Sumitomo Wiring Systems, Ltd., Sumitomo Electric Industries, Ltd.
    Inventors: Masashi Watanabe, Akinori Usami, Naoki Adachi, Tetsuya Noda, Hideaki Shiranaga
  • Patent number: 10542000
    Abstract: System and method are disclosed for providing authentication of a terminal device. One embodiment includes a method implemented by a first terminal device. The method may include receiving first location information and receiving a first predetermined signal. The method may also include transmitting status information and the first location information to a server upon receiving the first predetermined signal to allow the server to compare the first location information with second location information received from a second terminal device and to allow the server to transmit the status information to the second terminal device. The status information may indicate that the first terminal device is authenticated and the first location information may indicate a current location of the first terminal device.
    Type: Grant
    Filed: October 16, 2015
    Date of Patent: January 21, 2020
    Assignee: ALIBABA GROUP HOLDING LIMITED
    Inventor: Hua Lu
  • Patent number: 10516676
    Abstract: A processor-implemented method alters a computer resource based on its new geolocation. One or more processors receive a message that a computer resource has moved from a first geolocation to a new geolocation. The processor(s) receive an identifier of the new geolocation for the computer resource. In response to receiving the identifier of the new geolocation for the computer resource, the processor(s) request and receive encrypted data from the new geolocation. The processor(s) apply decryption information to the encrypted data from the new geolocation, where the decryption information is specifically for decrypting encrypted data from the new geolocation. In response to the decryption information failing to decrypt the encrypted data from the new geolocation, the processor(s) determine that the identifier of the new geolocation is false and apply a geolocation based resource policy to alter the computer resource at the new geolocation.
    Type: Grant
    Filed: January 3, 2017
    Date of Patent: December 24, 2019
    Assignee: International Business Machines Corporation
    Inventors: Ashish Kundu, Dimitrios Pendarakis, David R. Safford
  • Patent number: 10498603
    Abstract: Provided are a computer program product, system, and method for providing backup and restore services to network attached appliances in a network. Configuration settings comprising configuration settings used in a network attached appliance are gathered and a unique identifier for the network attached appliance is determined. A backup request is generated including the configuration settings, the unique identifier, and a backup operation code. The backup request is broadcasted on the network to be received by the backup servers to store the configuration settings for the unique identifier.
    Type: Grant
    Filed: May 25, 2016
    Date of Patent: December 3, 2019
    Assignee: International Business Machines Corporation
    Inventors: Reinhard T. Buendgen, Joerg Mueller, Thomas Prause
  • Patent number: 10462183
    Abstract: Centralized monitoring of plural file systems that operate within or in association with an enterprise computing environment is provided. Each of the plural file systems are provided with a security policy, wherein the security policy defines one or more file system access activities to be monitored at the file system. Each file system is instrumented with a software agent that intercepts the relevant file system access activity. A centralized collector component is operative to receive from each of the plural file systems audit trail data, wherein the audit trail data is data that has been generated locally as file system access activity is intercepted at the file system by the local software agent in accordance with the applicable security policy. The collector applies the security policy against the audit trail data received from at least one of the plural file systems and, in response thereto, takes a given action.
    Type: Grant
    Filed: July 21, 2015
    Date of Patent: October 29, 2019
    Assignee: International Business Machines Corporation
    Inventors: Sean Christopher Foley, Christopher J. Berube, Sagi Shechter
  • Patent number: 10454944
    Abstract: Disclosed is an approach to incorporate geographical access control features for a cloud-based storage platform. This allows, for example, enterprise administrators to define geographical areas (geofences) with arbitrary precision within which content access can be denied for items of data.
    Type: Grant
    Filed: December 28, 2017
    Date of Patent: October 22, 2019
    Assignee: Box, Inc.
    Inventors: Kirill Minkovich, Pranava Adduri
  • Patent number: 10447653
    Abstract: An apparatus of a communication network system, which routes data packets and stores trusted routes between different communication network systems in a database, detects (S12) that a data packet requires a route with a specific level of trust, determines (S13), from the trusted routes stored in the database, a specific trusted route towards a destination as indicated in the data packet, and sets (S15) the data packet on the specific trusted route towards the destination.
    Type: Grant
    Filed: December 18, 2014
    Date of Patent: October 15, 2019
    Assignee: NOKIA SOLUTIONS AND NETWORKS OY
    Inventors: Silke Holtmanns, Ian Justin Oliver
  • Patent number: 10440570
    Abstract: Systems and methods are provided that may be implemented to use angle of arrival (AoA) of a signal transmitted between two Bluetooth Low Energy (BLE) wireless devices to initially authenticate a connection between the two BLE devices. In one example, bonding or pairing with a first BLE device may be restricted to only those other BLE devices having an antenna currently positioned to transmit a signal to the first BLE device from an allowed direction and within a predefined permitted range of AoA relative to the first BLE device.
    Type: Grant
    Filed: December 21, 2016
    Date of Patent: October 8, 2019
    Assignee: Silicon Laboratories Inc.
    Inventor: Jani K. Knaappila
  • Patent number: 10437979
    Abstract: A mobile device detects its location and other devices in proximity to the mobile device. When the device is in an untrusted location, or is in physical proximity to an untrusted device, the mobile device ensures existing security and authentication mechanisms are in place, and may additionally require enhanced security measures on the device. In addition, the device may modify its functionality based on the mobile device being in an untrusted location or in physical proximity to an untrusted device.
    Type: Grant
    Filed: February 4, 2017
    Date of Patent: October 8, 2019
    Assignee: International Business Machines Corporation
    Inventors: Eric L. Barsness, Jay S. Bryant, James E. Carey, Joseph W. Cropper, John M. Santosuosso
  • Patent number: 10437830
    Abstract: A method, apparatus and computer program product are provided to facilitate the identification of one or more media files stored on respective ones of a plurality of user devices. In the context of a method, a current context is determined. The method also automatically identifies one or more media files stored on respective ones of a plurality of user devices based upon a relationship between a context associated with the respective media file and the current context. The method also causes the one or more media files to be transferred to an output device for presentation. A corresponding apparatus and computer program product are also provided.
    Type: Grant
    Filed: October 14, 2013
    Date of Patent: October 8, 2019
    Assignee: Nokia Technologies Oy
    Inventors: David Nguyen, Praveen Krishnan, Vijo Cherian, Tsaifa Yao
  • Patent number: 10437978
    Abstract: A mobile device detects its location and other devices in proximity to the mobile device. When the device is in an untrusted location, or is in physical proximity to an untrusted device, the mobile device ensures existing security and authentication mechanisms are in place, and may additionally require enhanced security measures on the device. In addition, the device may modify its functionality based on the mobile device being in an untrusted location or in physical proximity to an untrusted device.
    Type: Grant
    Filed: February 4, 2017
    Date of Patent: October 8, 2019
    Assignee: International Business Machines Corporation
    Inventors: Eric L. Barsness, Jay S. Bryant, James E. Carey, Joseph W. Cropper, John M. Santosuosso
  • Patent number: 10403063
    Abstract: A method operates a server that is coupled to a network controlling door actuators at physical geo-locations. The server receives through a wireless communication network a request to enable physical access at a portal using a secure channel and a geo-location estimate from a mobile device. A circuit of the mobile device receives radio signal magnitude, phase, and power from at least one transmitter and authentication input from a user interface. Dual secured communications paths protect the server on its separately provisioned request channel and actuator command channel. Each legacy electronically controlled access portal is enabled to support smartphones without installing a replacement multi-band radio frequency reader at the geo-location.
    Type: Grant
    Filed: December 28, 2016
    Date of Patent: September 3, 2019
    Assignee: BRIVO SYSTEM LLC
    Inventors: Dean Drako, Steven Van Till, Eoin Cosgrave, Lee Odess, John Szczygiel
  • Patent number: 10382413
    Abstract: A client device bootstraps against a trusted server by obtaining an activation code that includes an identifier and a one time password. The client device sends a message to a public server requesting an address of a trusted server associated with the identifier. The client device receives the address of the trusted server from the public server and initiates a communication session with the trusted server at the address provided by the public server. The one time password is used as a shared secret to secure the communication session. The client device downloads cryptographic information from the trusted server.
    Type: Grant
    Filed: December 23, 2016
    Date of Patent: August 13, 2019
    Assignee: Cisco Technology, Inc.
    Inventors: Owen Brendan Friel, Jason Cresswell, Pandit Panburana
  • Patent number: 10331690
    Abstract: A method of sorting and displaying data on a portable electronic device includes: determining geographical coordinates of the portable electronic device, providing search criteria to the portable electronic device, performing a search in a database based on the search criteria resulting in a list of database records, determining a search area of the portable electronic device and displaying selected records from the list of database records on a display screen of the portable electronic device. Each of the selected records is located within a search radius, which originates at the geographical coordinates of the portable electronic device, and within the search area, which is determined based on a pointing direction of the portable electronic device.
    Type: Grant
    Filed: June 8, 2016
    Date of Patent: June 25, 2019
    Assignee: BLACKBERRY LIMITED
    Inventor: Nicholas Blommesteijn
  • Patent number: 10334009
    Abstract: Embodiments relate to methods and systems for managing media content distribution rights to a media client on a craft to ensure that the distribution of media content items is consistent with media content distribution rights.
    Type: Grant
    Filed: July 13, 2016
    Date of Patent: June 25, 2019
    Assignee: Viasat, Inc.
    Inventors: Nirmalkumar Velayudhan, Brian T Sleight
  • Patent number: 10284527
    Abstract: Systems and methods may be provided for constructing and deconstructing encoded messages. A method for constructing an encoded message comprising: providing an unencoded message having one or more unencoded characters; identifying one or more suitable human-readable phrases indexed from one or more codebooks wherein characters from extended character sets are mapped to standard characters having similar appearances to the characters from the extended character sets to create one or more human-readable phrases; selecting a suitable human-readable phrase from the one or more codebooks; and generating an encoded message by mapping the unique and repeating characters of the unencoded messages to the extended character set provided by the selected human-readable phrase. Corresponding systems, and computer system products may be provided.
    Type: Grant
    Filed: February 2, 2016
    Date of Patent: May 7, 2019
    Assignee: TUMBLE TELL LTD.
    Inventors: Juan Martin Garcia, Jesse Capon, Francis Syms
  • Patent number: 10268821
    Abstract: Disclosed herein is a method for detection of a cyber-threat to a computer system. The method is arranged to be performed by a processing apparatus. The method comprises receiving input data associated with a first entity associated with the computer system, deriving metrics from the input data, the metrics representative of characteristics of the received input data, analyzing the metrics using one or more models, and determining, in accordance with the analyzed metrics and a model of normal behavior of the first entity, a cyber-threat risk parameter indicative of a likelihood of a cyber-threat. A computer readable medium, a computer program and a threat detection system are also disclosed.
    Type: Grant
    Filed: August 3, 2015
    Date of Patent: April 23, 2019
    Assignee: Darktrace Limited
    Inventors: Jack Stockdale, Alex Markham
  • Patent number: 10257556
    Abstract: Disclosed are various embodiments for determining whether a client device is authorized to receive media content based at least in part on the call signs of broadcast stations that the client device is able to receive. A computing device receives a broadcast station identifier and a program identifier from a client computing device. The computing device determines that the client computing device is authorized to access media content identified by the program identifier based at least in part on the broadcast station identifier. Finally, the computing device streams the media content to the client computing device in response to determining that the client computing device is authorized to access the media content.
    Type: Grant
    Filed: October 12, 2017
    Date of Patent: April 9, 2019
    Assignee: Amazon Technologies, Inc.
    Inventors: Jeromey Russell Goetz, Christopher Shingee Park, Varadarajan Gopalakrishnan
  • Patent number: 10251041
    Abstract: Systems and methods are provided for checking many users in to a location using a Bluetooth® low energy (BLE) beacon. The provided systems and methods may allow a BLE beacon to facilitate a check in with a remote server that processes check ins and then disconnect from the device used to check in. The device may be assigned a unique identifier that may be broadcast from the device during the check in so that the BLE beacon can quickly scan for the identifier and connect with the device based on the identifier to provide content and other information to the device.
    Type: Grant
    Filed: February 13, 2017
    Date of Patent: April 2, 2019
    Assignee: PayPal, Inc.
    Inventor: John Hastings Granbery
  • Patent number: 10239452
    Abstract: A route learning system for a vehicle and a method of using the system is described. The method includes: in response to determining that a current location matches a historical location, retrieving from memory false alert geotag that includes historical path data; and based on determining that a currently-predicted path does not match the historical path, replacing the currently-predicted path with the historical path to mitigate a false warning to a driver of a host vehicle.
    Type: Grant
    Filed: November 15, 2017
    Date of Patent: March 26, 2019
    Assignee: FORD GLOBAL TECHNOLOGIES, LLC
    Inventors: Alex Szczepaniak, Gopichandra Surnilla, Hao Zhang, Dennis Craig Reed, Timothy Mark Feldkamp
  • Patent number: 10242214
    Abstract: A method and associated system. Before allowing a user to use a secured resource, a first security check may be performed with respect to the user and/or the secured resource to determine whether a first security condition is satisfied. In response to a first security condition being satisfied, allowing the user to use the secured resource. In response to failing to satisfy the at least one first security condition, performing a second security check on the user with a second security condition. In response to passing a second security condition, allowing the user to use the secured resource. The first security condition may include a dynamic evaluation of at least one available data point to calculate a projected security risk of the user using the secured resource and the level of complexity of the second security condition may be set based on the calculated projected security risk.
    Type: Grant
    Filed: October 19, 2016
    Date of Patent: March 26, 2019
    Assignee: International Business Machines Corporation
    Inventors: Venkata V. Gadepalli, Trudy L. Hewitt, Ashok K. Iyengar, James M. Moreno
  • Patent number: 10230531
    Abstract: A control device performs an admissions control process with a first device to determine whether the first device is authorized to communicate over the communication fabric that supports memory semantic operations.
    Type: Grant
    Filed: October 23, 2014
    Date of Patent: March 12, 2019
    Assignee: Hewlett Packard Enterprise Development LP
    Inventors: Nigel Edwards, Michael R. Krause
  • Patent number: 10225209
    Abstract: In accordance with an embodiment, described herein is a system and method for supporting interceptors in an application server environment. The method can provide, at one or more computers, including an application server environment executing thereon, a plurality of deployable resources which can be used within the application server environment, one or more partitions, wherein each partition provides an administrative and runtime subdivision of a domain, and an interceptor framework, the interceptor framework comprising a plurality of interceptors. The method can further select and trigger, on a call for a method invocation, an interceptor chosen from the plurality of interceptors. The method can interrupt, by the triggered interceptor, the call for the method invocation, wherein the interceptor is selected based at least upon the call for a method invocation.
    Type: Grant
    Filed: March 9, 2016
    Date of Patent: March 5, 2019
    Assignee: ORACLE INTERNATIONAL CORPORATION
    Inventors: Rajendra Inamdar, Mahesh Kannan, Michael Cico, Sandeep Shrivastava, Anthony Vlatas
  • Patent number: 10225266
    Abstract: A transmission system includes a multiplexing apparatus and a message authentication code generating apparatus. The multiplexing apparatus multiplexes MMTP packets for video data and audio data to be transmitted to generate multiplexed data. The message authentication code generating apparatus generates a message authentication code in accordance with a message authentication scheme, using data except for at least either a time stamp or a packet counter in the MMTP packet included in the multiplexed data. The message authentication code generating apparatus adds the message authentication code to the MMTP packet.
    Type: Grant
    Filed: March 9, 2017
    Date of Patent: March 5, 2019
    Assignee: KABUSHIKI KAISHA TOSHIBA
    Inventors: Tatsuya Tanaka, Tomoo Yamakage
  • Patent number: 10218715
    Abstract: An apparatus and method are provided for implementing one or more security services to messages and data being communicated between a first network and a second network. In particular, a network bridge device is provided for applying communications security services to data passing by means of the device from a first network to a second network, the device having a first network interface for linking to the first network, a second network interface for linking to the second network, and a unidirectional link between the first and second network interfaces within the device incorporating a first hardware logic module, configured to apply one or more predetermined data security functions to message data received via the first network interface, and a second hardware logic module, arranged to apply a predetermined scheme for authentication of the source of messages passing through the device.
    Type: Grant
    Filed: June 3, 2015
    Date of Patent: February 26, 2019
    Assignee: BAE SYSTEMS PLC
    Inventors: James Richard Thomson, Jonathan Roy Paisley, Christopher Guy Sabey, Richard Christopher Charles Byng
  • Patent number: 10176315
    Abstract: A method, electronic device, and non-transitory computer-readable medium for establishing graphical authentication on an electronic device are disclosed. The method comprises: receiving a first user input corresponding to an image, the image comprising a plurality of points of interest; receiving a second user input corresponding to a selected point of interest in the plurality of points of interest in the image; receiving a third user input corresponding to a selected password element; and storing the selected image, the selected point of interest, and the selected password element in association with a user authentication profile in a memory of the electronic device.
    Type: Grant
    Filed: May 14, 2015
    Date of Patent: January 8, 2019
    Assignee: BlackBerry Limited
    Inventor: Martin Philip Riddiford
  • Patent number: 10172008
    Abstract: A system and method is provided to determine location information of a portable computing device and, in particular, to a secure and scalable system and method of decoupling and exposing handset originated location information to third parties. The system includes a location platform to determine location information of a remote user, and an encryption service configured to secure the location information of the remote user and send the secure location information to a content provider.
    Type: Grant
    Filed: March 3, 2017
    Date of Patent: January 1, 2019
    Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATION
    Inventors: Pramodh D. Narayan, Sri Ramanathan, Matthew A. Terry, Matthew B. Trevathan
  • Patent number: 10163332
    Abstract: An emergency alert system, method device are disclosed. The invention employs an emergency alert message, which directs end users to take some particular action like evacuating an identified geographic area. The invention further employs a geographic area message, which is based on a particular geographic area within which all persons should receive the emergency alert message. The invention utilizes an emergency alert enabled device that receives both the emergency alert message and the geographic area message. The emergency alert enabled device determines whether it is located within the geographic area of concern, and if so, presents the emergency alert message to the end user.
    Type: Grant
    Filed: January 13, 2017
    Date of Patent: December 25, 2018
    Assignee: ADVANCED COMPUTER AND COMMUNICATIONS, L.L.C.
    Inventor: Darren M. Vallaire
  • Patent number: 10152541
    Abstract: The present disclosure provides user-interface methods and systems for submitting search requests to search engines and presenting search results therefrom customized using content preferences learned about a user, comprising sending query information to at least two search engines, including a query identifying desired content, and user information, including context information describing the environment in which the query information is being sent, and a user signature representing content preferences learned about the user; receiving at least one set of a search result and auxiliary information from the at least one search engine in response to sending the query information, including information describing attributes of the search result that led to the search result being chosen by the at least one search engine; ordering the at least one search result based at least in part on the auxiliary information; and presenting the ordered search results to the user.
    Type: Grant
    Filed: May 19, 2015
    Date of Patent: December 11, 2018
    Assignee: Veveo, Inc.
    Inventors: Rakesh Barve, Pankaj Garg, Sashikumar Venkataraman, Murali Aravamudan, Keyur Vallabhbhai Faldu, Vineet Agarwal, Apurv Anand
  • Patent number: 10135838
    Abstract: A method of network connection control for mobile terminals, includes: classifying network access points accessible to a mobile terminal according to their security levels, and applications of the mobile terminal according to the security level of the networks that the applications are allowed to connect to; setting applications of different security level to connect to the network through access points at corresponding security levels; setting the security level of each network access point and application of the mobile terminal; and searching the security level of the application and the security levels of the network access points that the application is allowed to connect to.
    Type: Grant
    Filed: July 30, 2015
    Date of Patent: November 20, 2018
    Assignee: HUIZHOU TCL MOBILE COMMUNICATION CO., LTD.
    Inventors: Weiqin Yang, Bin Yu
  • Patent number: 10116760
    Abstract: An active data push system comprising a plurality of human-detection devices and a management system is presented. The human-detection devices respectively send a trigger signal when detecting a human entrance into one of a plurality of zones. The management system recognizes the zone detected with the human entrance when receiving the trigger signal, and retrieves a basic data of each electronic device installed in the recognized zone, and transmits the retrieved basic data to a mobile device held by the human.
    Type: Grant
    Filed: June 2, 2015
    Date of Patent: October 30, 2018
    Assignee: DELTA ELECTRONICS, INC.
    Inventors: Chia-Ching Chan, Tuan-Feng Chen, Tung-Yi Hsieh
  • Patent number: 10116583
    Abstract: Various examples for controlling resources used by client devices are disclosed. A management application executing in at least one computing device can identify client devices executing an instance of a client application that are available for management, where the client application is configured to control at least one function of a respective one of the client devices. A mode of operation can be changed on the at least one computing device where at least one resource is shared with the client devices, such as on a display of the client devices. Through communication between the management application and the client application executing on individual ones of the client devices, access to the at least one function can be restricted while the at least one resource is shared with the plurality of client devices.
    Type: Grant
    Filed: October 5, 2016
    Date of Patent: October 30, 2018
    Assignee: AirWatch LLC
    Inventors: Spencer Gibson Reagan, John Joseph Manton
  • Patent number: 10108789
    Abstract: A method for preventing unauthorized access to and/or modification of a page of a device and/or system according to one embodiment includes presenting a question via a graphical user interface; receiving a response to the question; allowing access to and/or modification of the page when the response to the question includes the answer; and not allowing access to and/or modification of the page when the response to the question does not include the answer. An answer to the question includes a characteristic of the device and/or system.
    Type: Grant
    Filed: January 5, 2017
    Date of Patent: October 23, 2018
    Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATION
    Inventors: Stefan Lehmann, Khanh V. Ngo
  • Patent number: 10091007
    Abstract: A method for authenticating a user device by an authentication computing device is provided. The method includes generating, using the authentication computing device, a locked data file for use in authenticating a user device enrolled in an authentication service, the locked data file is configured to process a challenge and generate a challenge response. The method further includes transmitting the locked data file from the authentication computing device to a first user device as part of the first device enrolling in the authentication service, receiving, at the authentication computing device, an authentication request, generating, using the authentication computing device, the challenge based on the authentication request, transmitting the challenge from the authentication computing device to the first user device, and receiving, at the authentication computing device, the challenge response from the first user device to authenticate the first user device.
    Type: Grant
    Filed: April 4, 2016
    Date of Patent: October 2, 2018
    Assignee: MASTERCARD INTERNATIONAL INCORPORATED
    Inventor: Manoneet Kohli
  • Patent number: 10091188
    Abstract: Systems and methods for providing accelerated passphrase verification are disclosed. In one embodiment, a method includes receiving a full security string, generating a full security string hash code, storing the full security string hash code in a memory, determining at least one substring based on an entropy value associated with one or more leading characters in the full security string, generating at least one substring hash code and at least one corresponding character count value, such that the corresponding character count value equals a number of characters in the at least one substring, and storing the at least one substring hash code and the at least one corresponding character count value in the memory.
    Type: Grant
    Filed: March 30, 2015
    Date of Patent: October 2, 2018
    Assignee: QUALCOMM Incorporated
    Inventors: Lu Xiao, Satyajit Patne
  • Patent number: 10083288
    Abstract: Unlocking an electronic device includes displaying a lock screen containing a simulated parallaxing three-dimensional scene on a touch screen of the electronic device; receiving user input gestures on the touch screen; parallaxing the displayed scene in accordance with the input gestures; and determining if the input gestures satisfy input requirements to unlock the electronic device and, if so, unlock the electronic device.
    Type: Grant
    Filed: March 25, 2014
    Date of Patent: September 25, 2018
    Assignee: Sony Corporation and Sony Mobile Communications, Inc.
    Inventor: David de Leon
  • Patent number: 10068084
    Abstract: In one aspect, a method of mutual certificate authentication between a first device and a second device based on location is described. This embodiment of a method comprises receiving a request from a first device, wherein the request comprises a location of the first device; registering a first public key for the first device in response to the request, wherein the registration associates the first device with the first public key; determining at least one second device that can be accessed by the first device based upon a location of the second device relative to the location of the first device; registering a second public key for the second device, wherein the registration associates the second device with the second public key; sending the second public key to the first device; sending the first public key to the second device; and mutually authenticating the first device to the second device when the first device and the second device are connected.
    Type: Grant
    Filed: June 27, 2011
    Date of Patent: September 4, 2018
    Assignee: General Electric Company
    Inventor: Sitaraman Suthamali Lakshminarayanan
  • Patent number: 10069802
    Abstract: A method for securely configuring a customer premise equipment in a network. The network including a configuration server, a DHCP server, and the customer premise equipment. The method includes receiving a request from the customer premise equipment for leasing an Internet Protocol (IP) address to the customer premise equipment. The method further includes embedding at least a portion of a Media Access Control (MAC) address of the customer premise equipment into the IP address leased to the customer premise equipment. The method includes leasing the IP address to the customer premise equipment. Further, the method enables authentication of customer premise equipment, before providing configuration to the customer premise equipment. The method includes use of characteristic attributes of the customer premise equipment to generate cryptographic keys for secure connection.
    Type: Grant
    Filed: February 18, 2014
    Date of Patent: September 4, 2018
    Assignee: Ciena Corporation
    Inventors: Simon Paul Parry, James Alexander Ivens Holtom
  • Patent number: 10063998
    Abstract: Systems, methods, and non-transitory computer-readable storage media for using mobile network authentication factors to authenticate a mobile device.
    Type: Grant
    Filed: November 5, 2015
    Date of Patent: August 28, 2018
    Assignee: Tevnos LLC
    Inventors: Stuart Alexander Jacobson, Joshua Goldbard
  • Patent number: 10063542
    Abstract: A computer-implemented method is described for authenticating an identity of a user requesting execution of a computerized transaction via a first client computing device. The first device and a second client computing device in proximity each execute applications for communicating with a server. The first and second devices contemporaneously capture voice sequences including at least one audible sound vocalized by the user, and a timestamp indicating when the sound is captured. The identity of the user is validated based upon a determination that the user vocalized the pass phrase, and a difference between the first timestamp and the second timestamp is below a predetermined threshold. The first device executes a computerized transaction with the server computing device upon receiving validation of the identity of the user.
    Type: Grant
    Filed: March 16, 2018
    Date of Patent: August 28, 2018
    Assignee: FMR LLC
    Inventor: Jason Kao
  • Patent number: 10050948
    Abstract: Methods, systems, and devices for updating access permissions of users in an access control system are described. The access permissions are capable of being updated based on rules and thresholds that include as at least one variable presence or contextual information associated with a user. The presence or contextual information associated with a user may be analyzed to trigger a credential update process for that user or other users within the access control system.
    Type: Grant
    Filed: July 26, 2013
    Date of Patent: August 14, 2018
    Assignee: ASSA ABLOY AB
    Inventors: Stig Lagerstedt, Daniel Berg, Daniel Bailin, Mark Robinton, Masha Leah Davis
  • Patent number: 10025926
    Abstract: A method for analyzing side-channel leakage of an application running on a device including loading the application on a system comprising a device simulator, wherein the application is configured to accept public inputs and secret inputs and selecting a set of public inputs. The method includes, for each public input in the set of public inputs, executing the application on the system comprising the device simulator based on a respective public input and a first value for a secret input and extracting first intermediate values for the simulated device, and executing the application on the system based on the respective public input and a second value for the secret input and extracting second intermediate values for the simulated device. The method includes determining an amount of dependency of a location of the simulated device on the secret input based on a plurality of the first and second intermediate values.
    Type: Grant
    Filed: June 18, 2015
    Date of Patent: July 17, 2018
    Assignee: THE MITRE CORPORATION
    Inventors: Dan Walters, Andrew Hagen
  • Patent number: 10009099
    Abstract: Various embodiments are directed to techniques for employing a camera to receive multiple light transmissions conveying at least identifying data from multiple body-carried devices to enable locations of those devices within a venue to be determined and transmissions to individual ones of those devices to be made. An apparatus to communicate via light transmissions includes an analysis component to analyze a set of consecutively captured frames of a portion of a venue to determine whether a light source present in at least a predetermined number of the consecutively captured frames is a light transmission from a body-carried device located within the portion of the venue, and to demodulate the light transmission to retrieve an identification (ID) data associated with the body-carried device from the light transmission; and a communications component to employ the ID data to wirelessly transmit a command to the body-carried device. Other embodiments are described and claimed.
    Type: Grant
    Filed: March 29, 2014
    Date of Patent: June 26, 2018
    Assignee: INTEL CORPORATION
    Inventors: Mathys C. Walma, Richard D. Roberts, Bradley A. Jackson
  • Patent number: 10002264
    Abstract: A storage device includes a memory including a first storage area configured to store area information that indicates a geographical area, and a second storage area configured to store data, and a processor coupled to the memory and configured to append data storage information, which indicates a location of the storage device, to the data to be stored in the second storage area, and allow a piece of the data stored in the second storage area to become available, the piece having the data storage information indicating that the location of the storage device falls within an area indicated by the area information, while the storage device is located within the area indicated by the area information.
    Type: Grant
    Filed: December 2, 2013
    Date of Patent: June 19, 2018
    Assignee: FUJITSU LIMITED
    Inventors: Ayumi Takano, Toru Irisawa, Shigeru Ikushima, Takuma Yamada