Nonlinear (e.g., Pseudorandom) Patents (Class 380/46)
  • Patent number: 11368844
    Abstract: A system that incorporates the subject disclosure may include, for example, instructions which when executed cause a device processor to perform operations comprising sending a service request to a remote management server; receiving from the management server an authentication management function and an encryption key generator for execution by a secure element and an encryption engine for execution by a secure device processor, sending a request to establish a communication session with a remote device; and communicating with the remote device via a channel established using an application server. The secure element and the secure device processor authenticate each other using a mutual authentication keyset. The secure element, the secure device processor and the device processor each have a security level associated therewith; the security level associated with the secure device processor is intermediate between that of the secure element and that of the device processor. Other embodiments are disclosed.
    Type: Grant
    Filed: June 26, 2020
    Date of Patent: June 21, 2022
    Assignee: AT&T Intellectual Property I, L.P.
    Inventors: Walter Cooper Chastain, Stephen Emille Chin
  • Patent number: 11368312
    Abstract: Technologies are generally described for methods and devices for generating a final signature. The methods may comprise receiving a message by a processor. The methods may comprise generating a random number by a random number generator. The methods may comprise forwarding, by the processor, the random number to a cloaking element generator. The methods may comprise forwarding, by the processor, a private key to the cloaking element generator. The methods may comprise forwarding, by the processor, a group to the cloaking element generator. The methods may comprise forwarding, by the processor, a homomorphism to the cloaking element generator. The methods may comprise processing, by the cloaking element generator, the random number, the group, the private key, and the homomorphism to produce a cloaking element. The methods may comprise applying the cloaking element to transform the message into the final signature.
    Type: Grant
    Filed: November 22, 2019
    Date of Patent: June 21, 2022
    Inventors: Iris Anshel, Dorian Goldfeld
  • Patent number: 11347895
    Abstract: A method of authenticated encryption and decryption includes generating a first digital signature with an encryption circuit of a first processor component. Concatenating the first digital signature to a plaintext message to generate a concatenated message. Encrypting the concatenated message into a ciphertext. Transmitting the ciphertext via a communications channel to a second processor component. Decrypting the ciphertext into a decrypted first digital signature and a decrypted plaintext message with a decryption circuit in the second processor component. Comparing, with the decryption circuit, the decrypted first digital signature with a second digital signature, thereby authenticating the decrypted plaintext message.
    Type: Grant
    Filed: December 3, 2019
    Date of Patent: May 31, 2022
    Assignee: Aptiv Technologies Limited
    Inventors: Ranjit V. Abhyankar, Madhurima Lekkala, Akhila P, Sriram Yarlagadda
  • Patent number: 11343088
    Abstract: Quantum optical device authentication technologies are described herein. A first device includes an optical transmitter transmits a plurality of pulses to an optical receiver included on a second device. The optical pulses each have one of two non-orthogonal optical states. The optical receiver measures each of the pulses and the second device records a measured value of the optical state of each pulse. Subsequently, the second device transmits the measured values of the optical states of the pulses to the first device. The first device outputs an indication of whether the second device is authenticated based upon the measured values received from the second device and the optical states of the pulses transmitted by the optical transmitter.
    Type: Grant
    Filed: October 1, 2019
    Date of Patent: May 24, 2022
    Assignee: National Technology & Engineering Solutions of Sandia, LLC
    Inventors: Daniel Beom Soo Soh, Scott E. Bisson
  • Patent number: 11323256
    Abstract: A method, cryptographic device, and computer readable memory with instructions, for generating a cryptographic key from at least one prime number, by performing during runtime of the cryptographic device by obtaining from memory a challenge and at least one associated increment number, generating a seed by applying a Physically Unclonable function to said obtained challenge, generating at least one prime number from said generated seed by performing said cryptographic prime numbers generation algorithm and by performing therein as many incrementation steps as said obtained at least one increment number, and generating the cryptographic key from the generated prime number.
    Type: Grant
    Filed: April 24, 2019
    Date of Patent: May 3, 2022
    Inventors: Olivier Fourquin, Alexandre Berzati, Benjamin Duval
  • Patent number: 11321459
    Abstract: The disclosure generally provides methods, systems and apparatus for an improved a Physically Unclonable Function (PUF). In one embodiment, the disclosure relates to a method to provide data from a Physically Unclonable Function (PUF) circuit array. The method includes storing a plurality of first data bits into a respective ones of a plurality of first bitcells of the PUF array to form a first dataset; storing a plurality of second data bits into a respective ones of a plurality of second bitcells of the PUF array, the plurality of second data bits defining a helper dataset; reading the first dataset from the plurality of first bitcells to provide a first read dataset; applying an error correction factor to the first read data dataset to form a security key dataset; and outputting the security key dataset from the PUF circuit array.
    Type: Grant
    Filed: December 27, 2018
    Date of Patent: May 3, 2022
    Inventors: Kuan-Yueh Shen, David Johnston, Rachael J. Parker, Javier Dacuna Santos
  • Patent number: 11290277
    Abstract: Provided is a data processing system in which data are uploaded from a user terminal A to data storage server, and data are accessed from a user terminal B. User terminal A and B have a key KA and KB, respectively. Data storage server has a replacement key KA?B. User terminal A generates an authenticator tag with data M and temporary key R, generated by user terminal A, and generates a key k with temporary key R and key KA. User terminal A transmits data M, key k, and authenticator tag to the data storage server. Data storage server generates a key k? from key k and replacement key KA?B, and transmits data M, key k?, and the message authenticator tag to user terminal B. User terminal B generates temporary key R with key k? and key KB and generates an authenticator tag? to compare with the received authenticator tag.
    Type: Grant
    Filed: February 18, 2016
    Date of Patent: March 29, 2022
    Assignee: HITACHI, LTD.
    Inventor: Hisayoshi Sato
  • Patent number: 11282413
    Abstract: Embodiments of a secure multi-party computation method are provided. The method can include: dynamically converting a multi-party computation program segment into a first garbled circuit by using a multi-party computation operator of a first main body, and executing garbled gates of the first garbled circuit in sequence through an execution engine of the first main body, to encrypt data of the first main body; transmitting to a second main body the encrypted data of the first main body and identifiers for garbled gates of the first garbled circuit; performing a second encryption on the encrypted data of the first main body by the second main body in sequence according to the received identifiers for the garbled gates of the first garbled circuit, and returning to the first main body a result of the second encryption on the encrypted data of the first main body.
    Type: Grant
    Filed: June 3, 2019
    Date of Patent: March 22, 2022
    Assignee: Baidu Online Network Technology (Beijing) Co., Ltd.
    Inventors: Zhi Feng, Yu Zhang, Xiaoning Yu, Haosu Guo
  • Patent number: 11270024
    Abstract: Methods for secure data monitoring utilizing secure private set intersections are disclosed. In embodiments, a computer-implemented method includes: generating a garbled circuit program compiled into a first and second half; sending the second half of the garbled circuit program to a client server of a client; receiving social network data from a social network provider; and generating search results, utilizing the first half of the garbled circuit program in cooperation with the second half of the garbled circuit program, based on client data input at the second half of the garbled circuit program. The client data is private with respect to the social network provider and the social network data is private with respect to the client.
    Type: Grant
    Filed: July 12, 2019
    Date of Patent: March 8, 2022
    Inventors: Dennis Kramer, Jeb R. Linton, Michael Amisano, David K. Wright, John Melchionne, John Behnken
  • Patent number: 11251965
    Abstract: A hash function is computed for each item of a partial string obtained by dividing a message received according to a group testing matrix representing combinatorial group testing relating to the message, and an authentication tag for the partial string is generated using a value obtained by a combining operation of individual hash values by a combiner, wherein the combiner performs the combining operation of the individual hash values, by using a hash value of an item of an empty string as an identity element of the operation.
    Type: Grant
    Filed: April 17, 2017
    Date of Patent: February 15, 2022
    Inventor: Kazuhiko Minematsu
  • Patent number: 11250080
    Abstract: Methods, systems, and devices, including computer programs encoded on computer storage media, for establishing a question and answer (QA) system are provided. One of the methods includes: determining QA pair data according to an extraction template and a target data source; adjusting the extraction template according to anomaly information corresponding to the QA pair data; updating the QA pair data according to the target data source and the adjusted extraction template; and determining a QA index according to the updated QA pair data to establish a QA system.
    Type: Grant
    Filed: June 28, 2019
    Date of Patent: February 15, 2022
    Inventors: Qiang Zhang, Changdong Han, Xiaojun Wang, Chuan Qin, Hanyang Zeng
  • Patent number: 11218308
    Abstract: In a post-quantum asymmetric key generation method and system, a processing unit generates, based on a prime and an arithmetic function or a classical string, a prime vector which has an infinite number of components; generates a prime array based on the prime vector; generates an associated matrix based on the prime array; obtains, based on the associated matrix and a first reference prime, a first reference inverse prime array that serves as a private key; and obtains a public key that is paired with the private key based on a second reference inverse prime array. The second reference inverse prime array is obtained based on the associated matrix, the first reference prime, a second reference prime, and a randomization array.
    Type: Grant
    Filed: June 21, 2019
    Date of Patent: January 4, 2022
    Assignee: National Chiao Tung University
    Inventors: Ricardo Neftali Pontaza Rodas, Ying-Dar Lin
  • Patent number: 11210428
    Abstract: Technologies are disclosed herein for running a long-term on-demand service for executing actively-secure computations. A function circuit may be represented as a stream of buckets, in which each bucket represents a logical AND gate. A pool having a plurality of garbled AND gates is generated. Garbled AND gates are randomly selected from the pool for placement in one of the buckets. An output for the bucket is determined by an evaluation of the selected garbled AND gates. The output represents an execution of the logical AND gate. The determined output is applied as a parameter in a secure protocol.
    Type: Grant
    Filed: June 6, 2019
    Date of Patent: December 28, 2021
    Inventors: Ruiyu Zhu, Yan Huang
  • Patent number: 11204836
    Abstract: A method for execution by a distributed storage (DS) unit of a dispersed storage network (DSN), includes receiving a set of write slice requests that includes a set of slice names that are not utilized to store encoded data slices (EDSs), where each write slice request from the set of slice names that are not utilized to store encoded data slices includes a trap slice. The method continues with an access slice request that includes a requested slice name being received from a second DSN client, and then continues by determining whether the requested slice name corresponds to a trap slice stored by the DS unit. When the requested slice name corresponds to a trap slice, an action is determined for the access slice request based on an anomaly processing scheme.
    Type: Grant
    Filed: August 16, 2019
    Date of Patent: December 21, 2021
    Assignee: PURE STORAGE, INC.
    Inventors: Jason K. Resch, Adam M. Gray
  • Patent number: 11190496
    Abstract: Systems, methods, and computing device readable media for implementing fast oblivious transfer between two computing devices may improve data security and computational efficiency. The various aspects may use random oracles with or without key agreements to improve the security of oblivious transfer key exchanges. Some techniques may include public/private key strategies for oblivious transfer, while other techniques may use key agreements to achieve simultaneous and efficient cryptographic key exchange.
    Type: Grant
    Filed: June 7, 2019
    Date of Patent: November 30, 2021
    Inventors: Daniel Siegfried Werner Masny, Peter Byerley Rindal
  • Patent number: 11171955
    Abstract: A system on a chip (SoC) includes memory, a processor coupled to the memory, and link protection circuitry coupled to the memory and the processor. The link protection circuitry includes an SoC encryption engine to receive first data from the memory and a first key, generate, by an SoC encryption counter of the SoC encryption engine, an SoC encryption counter value, encrypt the first data using the SoC encryption counter value and the first key to generate first encrypted data, and cause the first encrypted data to be transmitted to a device including a device decryption counter synchronized with the SoC encryption counter.
    Type: Grant
    Filed: March 11, 2019
    Date of Patent: November 9, 2021
    Assignee: Intel Corporation
    Inventors: Vedvyas Shanbhogue, Siddhartha Chhabra
  • Patent number: 11159327
    Abstract: A Material eXchange Format (MXF) digital file generated by a digital electronic processor is disclosed that includes a generic container for a media file. The MXF file also includes a SDTI-CP (Serial Data Transport Interface-Content Package) compatible system item. The SDTI-CP compatible system item has a media file metadata and a blockchain hash digest information formed from the media file. The blockchain hash digest information of the media file may be a blockchain hash digest used to error check the media file. Alternatively, the blockchain hash digest information of the media file may be a link to a cloud-based blockchain hash digest used to error check the media file.
    Type: Grant
    Filed: August 6, 2018
    Date of Patent: October 26, 2021
    Inventor: Tyson York Winarski
  • Patent number: 11153074
    Abstract: A computing system receives encrypted data that can be decrypted by a first secret to obtain data, wherein the first secret is securely stored by the system, determines that the data encodes a second secret and executable code usable to perform cryptographic operations, and run the executable code to perform the cryptographic operations. The first secret may be a one-time pad.
    Type: Grant
    Filed: June 18, 2018
    Date of Patent: October 19, 2021
    Assignee: Amazon Technologies, Inc.
    Inventors: Dalton James Nikitas, Steve Preston Lightner Norum, Avni Harilal Rambhia
  • Patent number: 11144649
    Abstract: A method for exporting sensitive information an integrated circuit, the method comprising: fabricating an integrated circuit, the integrated circuit having a register-transfer level “RTL” key fabricated in the integrated circuit, wherein the RTL key is a pre-determined cryptographic key; signing the sensitive information using the RTL key using a signature; and exporting the signed sensitive information and the signature for validation.
    Type: Grant
    Filed: January 2, 2019
    Date of Patent: October 12, 2021
    Assignees: Kigen (UK) Limited, Altair Semiconductor Ltd
    Inventors: Asaf Shen, Patrick Biget, Avishay Sharaga, Omer Botvinik
  • Patent number: 11120116
    Abstract: A system and methods for authenticating an electronic signature using a biometric fingerprint includes registering a subscriber to the service. The subscriber asks document signers enter their fingerprint(s) by a fingerprint reader. The fingerprint data is applied to a fingerprint matcher which generates a gallery pair table of fingerprint minutiae for each signer. A secret user ID or operation number is generated. A sharing module splits the fingerprint information into N shares and generates a threshold number S. The secret is applied to the sharing module and N shares of the secret are generated. The N shares of fingerprint data are each combined with one share the secret to form N combined shares. The N combined shares are each stored in different cloud storage locations. Retrieval of the secret to authenticate the signers requires S signers to enter their fingerprints and S combined shares to be downloaded from the clouds.
    Type: Grant
    Filed: April 21, 2021
    Date of Patent: September 14, 2021
    Assignee: King Abdulaziz University
    Inventor: Fahad Alsolami
  • Patent number: 11121855
    Abstract: Systems and methods for secure communication are provided. A sender encrypts a first starting block with one of a number of random blocks. The encrypted first starting block is sent to a receiver, which expands it by a random amount. The expanded block is divided into a first expanded block and a second expanded block. A source data block is encrypted with the second expanded block and transmitted to the receiver, where it is decrypted with the decrypted first starting block. The first expanded block replaces the starting block for subsequent transmission.
    Type: Grant
    Filed: February 7, 2020
    Date of Patent: September 14, 2021
    Assignee: Rankin Labs, LLC
    Inventor: John Rankin
  • Patent number: 11070356
    Abstract: In one example in accordance with the present disclosure, a method may receiving a plaintext to be encrypted. The plaintext may include a first block, a second block and a third block. The method may include generating a preliminary ciphertext based on the first block and the second block and generating, using an encryption key, a first ciphertext using an encryption operation receiving the third block and the preliminary ciphertext as inputs. The method may also include generating, using the encryption key, a first finalized ciphertext using the encryption operation receiving the first block and the first ciphertext as inputs and generating, using the encryption key, a second finalized ciphertext using the encryption operation receiving the second block and the first finalized ciphertext as inputs.
    Type: Grant
    Filed: March 24, 2016
    Date of Patent: July 20, 2021
    Assignee: Hewlett Packard Enterprise Development LP
    Inventor: Liqun Chen
  • Patent number: 11057223
    Abstract: The communication system includes a communication buffer and a communication terminal. The communication buffer includes a physical unclonable function (PUF) device, and the communication buffer provides a security key generated by the PUF device. The communication terminal is coupled to the communication buffer, and transmits a mapping request to the communication buffer to ask for the security key. The communication terminal manipulates the transmission data with the security key to generate the encrypted data, and transmits the encrypted data to the communication buffer. The communication buffer further restores the transmission data from the encrypted data according to the security key.
    Type: Grant
    Filed: October 11, 2018
    Date of Patent: July 6, 2021
    Assignee: eMemory Technology Inc.
    Inventors: Meng-Yi Wu, Hsin-Ming Chen
  • Patent number: 11050554
    Abstract: Technologies for managing exact match hash table growth include a network computing device which includes a compute engine and a network interface controller (NIC). The NIC is configured to allocate a plurality of physical bucket addresses in non-contiguous chunks of memory of the compute engine, configure a bucket threshold value as a function of a hash size of the hash table, generate a plurality of virtual bucket addresses as a function of the bucket threshold value, and map each generated virtual bucket address to an allocated physical bucket address. Other embodiments are described herein.
    Type: Grant
    Filed: December 30, 2017
    Date of Patent: June 29, 2021
    Assignee: Intel Corporation
    Inventors: Naru Sundar, Chih-Jen Chang, Robert Southworth, Hsi-Cheng Chu
  • Patent number: 11038680
    Abstract: Embodiments of the invention provide an electronic system for generating secret information comprising a Physically Unclonable Function (PUF) circuit, the PUF circuit being configured to provide a difference between two values of a physical variable of the PUF in response to a challenge applied to the PUF circuit. The system is configured to apply a set of challenges during an enrolment phase, and measure the physical variable difference provided by the PUF in response to each challenge.
    Type: Grant
    Filed: December 21, 2017
    Date of Patent: June 15, 2021
    Assignee: SECURE-IC SAS
    Inventors: Jean-Luc Danger, Philippe Nguyen
  • Patent number: 11032503
    Abstract: A seed value of a random number is generated in a more preferable manner by utilizing characteristics of a solid-state imaging device. A solid-state imaging device includes a pixel array unit in which a plurality of pixels is arrayed, and a processing unit that generates a seed value of a random number on the basis of each pixel value of predetermined one or more target pixels of the plurality of pixels, in which the pixel array unit is arranged on a first substrate, the processing unit is arranged on a second substrate, and a plurality of substrates including at least the first substrate and the second substrate is stacked so that the second substrate is located in a lower layer than the first substrate.
    Type: Grant
    Filed: April 24, 2018
    Date of Patent: June 8, 2021
    Inventor: Isao Ohdaira
  • Patent number: 11018857
    Abstract: The present invention discloses a method for computing a secret value including a first secret using a function including an operation, comprising: computing, by a host, a first encrypted value of the first secret with a first key; sending, by the host, the first encrypted value to a value holder and the first key to a key holder, wherein the value holder and the key holder are independently trusted by the host; computing, by the value holder, a computed encrypted value from the first encrypted value using the function; and computing, by the key holder, a computed key from the first key using the function.
    Type: Grant
    Filed: January 16, 2018
    Date of Patent: May 25, 2021
    Assignee: ABB Schweiz AG
    Inventors: Johannes Schneider, Matus Harvan, Roman Schlegel, Sebastian Obermeier, Thomas Locher
  • Patent number: 11003799
    Abstract: System and method for integrity assurance in a virtual environment are provided. The system includes a memory. The memory is configured to receive and store one or more artifacts. The system also includes a processing subsystem operatively coupled to the memory. The processing subsystem is configured to create one or more binary files for a stored one or more artifacts. The processing subsystem is also configured to incorporate the one or more artifacts into a blockchain platform. The processing subsystem is further configured to request the blockchain platform to trigger a crypto sealing process for the one or more artifacts. The processing subsystem is further configured to copy one or more crypto sealed artifacts to a repository. The processing subsystem is further configured to request the blockchain to trigger a verification process to one or more copied artifacts for integrity assurance.
    Type: Grant
    Filed: April 20, 2018
    Date of Patent: May 11, 2021
    Assignee: Marlabs Innovations Private Limited
    Inventors: Sreejith Gireesan, Balasubramanian K Pethayapera, Bimal Mankara Balan
  • Patent number: 10990356
    Abstract: An access restriction system having a true random number generator (TRNG) to generate true random keys based on quantum-level physical properties and hub computer to provide those keys. An access-restricted component executes one or more tasks in response to receiving a verified task instruction. A component computer associated with the access-restricted component receives true random keys from the hub computer and stores the keys to a memory. A controller provides a task request to the component computer that includes a task instruction paired with a key. The component computer then verifies the task instruction by comparing and ensuring that the true random key stored to the memory matches the key received from the controller with the task request and then provides the verified task to the access-restricted component. The access-restricted component then carries out the verified task instruction.
    Type: Grant
    Filed: August 20, 2020
    Date of Patent: April 27, 2021
    Assignee: Quantum Lock Technologies LLC
    Inventor: Erica Grant
  • Patent number: 10983785
    Abstract: Information about firmware modules for a power unit (e.g., a battery backup unit or a power supply unit) can be downloaded, along with the firmware modules themselves. The firmware modules, which may constitute less than a complete firmware re-flash, can be used to update firmware of the power unit from a first version type to a second version type.
    Type: Grant
    Filed: June 28, 2018
    Date of Patent: April 20, 2021
    Assignee: Amazon Technologies, Inc.
    Inventors: David Edward Bryan, Ligong Wang
  • Patent number: 10972251
    Abstract: Systems and methods for end-to-end encryption of a web browsing process are described herein. A web query is encrypted at a client using a homomorphic encryption scheme. The encrypted query is sent to a server where the encrypted query is evaluated over web content to generate an encrypted response without decrypting the encrypted query and without decrypting the response. The encrypted response is sent to the client where it is decrypted to obtain the results of the query without revealing the query or results to the owner of the web content, an observer, or an attacker.
    Type: Grant
    Filed: January 19, 2018
    Date of Patent: April 6, 2021
    Assignee: Enveil, Inc.
    Inventor: Ryan Carr
  • Patent number: 10937510
    Abstract: A method for identifying cell coupling in a memory system includes generating a two-dimensional pseudorandom binary sequence array. The method also includes performing an erase operation on a plurality of cells of a memory block of the memory system. The method also includes performing a write operation on the plurality of cells using the two-dimensional pseudorandom binary sequence array. The method also includes performing a read operation on the plurality of cells to identify a voltage value for each cell of the plurality of cells. The method also includes identifying cell coupling between respective cells of the plurality of cells using the voltage value for each of the cells of the plurality of cells.
    Type: Grant
    Filed: June 28, 2019
    Date of Patent: March 2, 2021
    Assignee: Western Digital Technologies, Inc.
    Inventors: Richard Galbraith, Jonas Goode, Henry Yip, Ravi Kumar, Niranjay Ravindran
  • Patent number: 10929103
    Abstract: Multiple random numbers are generated. The multiple random numbers are N different random numbers. N is a positive integer. Generating the multiple random numbers includes generating a random number array including N storage units. The multiple random numbers are shuffled. A random number obtaining instruction is received. A random number is obtained from the multiple random numbers based on the random number obtaining instruction.
    Type: Grant
    Filed: June 19, 2020
    Date of Patent: February 23, 2021
    Assignee: Advanced New Technologies Co., Ltd.
    Inventor: Jiaxiang Wen
  • Patent number: 10924303
    Abstract: A secure training sequence (STS) is included in wireless packets communicated between electronic devices to assist with channel estimation and wireless ranging. The STS includes multiple STS segments generated based on outputs from a cryptographically secure pseudo-random number generator (CSPRNG), the STS segments being separated by guard intervals and formatted in accordance with an 802.15.4 data symbol format that uses burst position modulation (BPM) and binary phase shift keying (BPSK) to map bits from the CSPRNG to burst positions and pulse polarities for the STS symbols. Both a first electronic device, which generates the STS, and a second electronic device, which estimates a communication channel using the STS, have prior private knowledge of cryptographic keys required to generate a non-repetitive single-use pseudo-random (PR) sequence by the CSPRNG. The STS includes two burst position intervals per STS symbol and two possible burst positions within each burst position interval.
    Type: Grant
    Filed: March 4, 2019
    Date of Patent: February 16, 2021
    Assignee: Apple Inc.
    Inventors: Anuj Batra, Joachim S. Hammerschmidt, Eren Sasoglu
  • Patent number: 10862680
    Abstract: In embodiments, an apparatus for microcontroller (?C) or system-on-chip (SoC) computing includes a set of fuses disposed in a ?C or a SoC to store a seed value and M pairs of loop counter values (LCVs) with which to locally generate M private keys from the seed value on the microcontroller or SoC, where M is a positive integer, each private key to decrypt data encrypted with a pre-defined public key cryptosystem, wherein each private key includes two prime numbers p and q (p,q), the LCVs being a number of iterations of a key derivation function (KDF) needed to respectively obtain p and q from the seed value; and a key decoder, disposed in the (?C) or the SoC, and coupled to the set of fuses, to read the seed value and the M pairs of LCVs, and, for each of the M private keys to: respectively generate (p,q) from the seed value by respectively iterating the KDF by the LCVs for that key.
    Type: Grant
    Filed: September 26, 2018
    Date of Patent: December 8, 2020
    Assignee: Intel Corporation
    Inventors: Daniel Nemiroff, Xiaoyu Ruan, William Stevens, Jr.
  • Patent number: 10855440
    Abstract: The present application describes a method, system, and non-transitory computer-readable medium for generating new keys during a secure communication session. A key derivation function is operatively connected to both a counter and a memory. The key derivation function generates new key material from a first input and a second input in response to a signal provided by the counter. The key derivation function generates the new key material and outputs it to the memory.
    Type: Grant
    Filed: November 8, 2017
    Date of Patent: December 1, 2020
    Assignee: Wickr Inc.
    Inventors: Joël Alwen, Thomas Michael Leavy
  • Patent number: 10833870
    Abstract: Examples of the present disclosure describe systems and methods for performing cryptographic operations in an isolated collection. In an example, a user may have an associated user resource within the isolated collection, which may be associated with a cryptographic key. Other users may access the user's key from a known location to manually or automatically perform one or more cryptographic operations. In another example, a key may be generated when initiating a group conversation. The key may be encrypted for and provided to each participant using each participant's public key. Each participant may then use the cryptographic key during the conversation. A new participant may receive authorization to join the conversation from an existing participant, wherein the encrypted key of the existing participant may be decrypted and re-encrypted using the new participant's public key. The new participant may then use the re-encrypted key to participate in the conversation.
    Type: Grant
    Filed: January 6, 2017
    Date of Patent: November 10, 2020
    Assignee: Microsoft Technology Licensing, LLC
    Inventor: Christopher L. Mullins
  • Patent number: 10826922
    Abstract: In some embodiments, an industrial asset may be associated with a plurality of monitoring nodes, each monitoring node generating a series of monitoring node values over time that represent operation of the industrial asset. A threat detection computer may determine that an attacked monitoring node is currently being attacked. Responsive to this determination, a virtual sensor coupled to the plurality of monitoring nodes may estimate a series of virtual node values for the attacked monitoring node(s) based on information received from monitoring nodes that are not currently being attacked. The virtual sensor may then replace the series of monitoring node values from the attacked monitoring node(s) with the virtual node values. Note that in some embodiments, virtual node values may be estimated for a particular node even before it is determined that the node is currently being attacked.
    Type: Grant
    Filed: November 11, 2019
    Date of Patent: November 3, 2020
    Assignee: General Electric Company
    Inventors: Lalit Keshav Mestha, Hema Kumari Achanta, Justin Varkey John, Cody Joe Bushey
  • Patent number: 10785025
    Abstract: Presented herein are techniques for synchronizing a cloud service and a key management service via a single indirect synchronous message sent by a client device. In particular, a cloud service receives a service request message sent by a client device. Embedded into the service request message is an encrypted key management message. The cloud service is configured to extract the encrypted key management message from the service request message and then send the encrypted key management message to the key management service.
    Type: Grant
    Filed: October 26, 2018
    Date of Patent: September 22, 2020
    Inventors: Matthew A. Miller, Andrew Biggs, Bo Zou, Panos Kozanian
  • Patent number: 10769625
    Abstract: Dynamically generated quick response (QR) codes are used for secure communication to/from mobile devices. In one example, a QR code identifies a product or service selected by a user using a mobile device. The mobile device generates the QR code identifying the user's selection, and displays the QR code for reading by a retail kiosk. The retail kiosk, such as movie-rental kiosk, extracts the product or service selection encoded in QR code and provides the identified product or service to the user. The QR code can additionally identify a user account, such that payment for the product or service is automatically charged to the account identified from the QR code. In another example, the QR code is used to transfer money and/or credits between a user and a retailer, or between two users.
    Type: Grant
    Filed: December 20, 2013
    Date of Patent: September 8, 2020
    Inventors: Vijayakumar Pandiarajan, William Dakota Commons, Siva Patnam, Jayant Ghoshal, Ramakrishna Kannamangalam
  • Patent number: 10753438
    Abstract: A lifting drive device for a Z-axis spindle inserted into a guide tube and guided via an air layer including: a wire extending upward from the inside of the Z-axis spindle and having its upper end supported by the guide tube, a piston connected to an lower end of the wire, a cylinder that moves up-and-down relative to the piston by an air supplied to a cylinder chamber provided to the Z-axis spindle and partitioned by the piston, a driving roller provided to the guide tube and in contact with the surface of the Z-axis spindle, and a motor for driving the driving roller, so as to achieve highly precise linear movement and swift lifting of the Z-axis spindle guided by an air bearing and to be suitable for structural simplification, weight reduction and vibration countermeasures.
    Type: Grant
    Filed: February 27, 2018
    Date of Patent: August 25, 2020
    Inventors: Yoshiharu Kimura, Yoshikazu Ooyama, Kazuaki Kawarai
  • Patent number: 10728022
    Abstract: A method of secure hash table implementation includes performing a secret key exchange between a server enclave of a server device and a client enclave of a client device and establishing an encrypted channel between the server enclave and the client enclave using the exchanged secret keys. The method includes generating a random key for a keyed hash function or a pseudo random function (PRF) and communicating the random key to the client enclave. The method includes receiving hashes of input data at the server enclave. The method includes building a hash table based on key-value pairs included in the received hashes. The method includes receiving a hash table query that includes keys. The method includes retrieving values that correspond to the keys. The method includes returning the retrieved values that correspond to the keys or a null if a value has not been inserted into the hash table for one of the keys.
    Type: Grant
    Filed: December 28, 2017
    Date of Patent: July 28, 2020
    Inventors: Avradip Mandal, Arnab Roy, Hart Montgomery, John C. Mitchell
  • Patent number: 10708043
    Abstract: Perfect secrecy can only be assumed if the length of the key is as long the message sent and the cardinality of the key space is the same as that of the message. The preferred embodiment will demonstrate how to implement a one-pad communication system between a transmitter and a receiver where only a few parameters need to be transferred to the receiver. The preferred embodiment will also demonstrate that a true random number will be generated and used. In an M-sequence LFSR, the integers N+K=M will be used. 2N will be the number of random number runs and 2K will be the quantity of random numbers generated during the runs. The formula is: (2N?1)*(2K)+(2K?1).
    Type: Grant
    Filed: March 7, 2013
    Date of Patent: July 7, 2020
    Inventor: David Mayer Hutchinson
  • Patent number: 10708048
    Abstract: Embodiments of a wireless device and methods for rekeying with reduced packet loss in a wireless network are generally described herein. In some embodiments, during rekeying operations a new key for reception may be installed early (i.e., prior to receipt of a rekeying confirmation message). The use of the new key for transmission may be delayed until after receipt of the rekeying confirmation message. The early installation of the new key for reception may allow both the new key and old key to be active at the same time for use decrypting received packets to reduce packet loss during rekeying operations. The rekeying confirmation message may be the fourth message of a four-way handshake for rekeying. In some embodiments, two key identifiers may be alternated between four-way handshakes to prevent deletion of the old key.
    Type: Grant
    Filed: January 4, 2018
    Date of Patent: July 7, 2020
    Assignee: Intel Corporation
    Inventors: Emily H. Qi, Jesse R. Walker, Robert J. Stacey, Herbert Liondas, Marc Jalfon
  • Patent number: 10693659
    Abstract: A generator device being configured for generating pseudo random numbers, the generator device comprising a computing device operable for (i) calculating a first hash chain from an initial hash value (H_0), the first hash chain comprising a first sequence of M hash values (HA_1, HA_2, . . . , HA_M); (ii) calculating a second hash chain (20) comprising a second sequence of M hash values (HB_1, HB_2, . . . , HB_M) from the initial hash value (H_0) and the hash values (HA_1, HA_2, . . . , HA_M) of the first sequence; and (iii) determining the pseudo random numbers from the hash values (HB_1, HB_2, . . . , HB_M) of the second sequence. Also disclosed are a method for generating pseudo random numbers and a method for quantum computing secure authentication, as well as a computer program product and a data processing system.
    Type: Grant
    Filed: January 20, 2017
    Date of Patent: June 23, 2020
    Assignee: International Business Machines Corporation
    Inventor: Tobias U. Bergmann
  • Patent number: 10691415
    Abstract: Multiple random numbers are generated. The multiple random numbers are N different random numbers. N is a positive integer. Generating the multiple random numbers includes generating a random number array including N storage units. The multiple random numbers are shuffled. A random number obtaining instruction is received. A random number is obtained from the multiple random numbers based on the random number obtaining instruction.
    Type: Grant
    Filed: September 14, 2018
    Date of Patent: June 23, 2020
    Assignee: Alibaba Group Holding Limited
    Inventor: Jiaxiang Wen
  • Patent number: 10659224
    Abstract: An apparatus and method for performing operation being secure against side channel attack are provided. The apparatus and method generate values equal to values obtained through an exponentiation operation or a scalar multiplication operation of a point using values extracted from previously generated parameter candidate value sets and an operation secure against side-channel attack, thereby improving security against side-channel attack without degrading performance.
    Type: Grant
    Filed: January 5, 2018
    Date of Patent: May 19, 2020
    Assignee: SAMSUNG SDS CO., LTD.
    Inventors: Kyu-Young Choi, Duk-Jae Moon, Hyo-Jin Yoon, Ji-Hoon Cho
  • Patent number: 10616191
    Abstract: Information is removed from data transmitted over networks and stored in data storage facilities by generating non-informational data as an output from a series of nodes (routers, computing devices or logical routing applications) by using a function that applies random data to the data received at each node. The function may be an XOR and the random data may be a pseudorandom string of the same length as the informational data. The non-informational data may be managed normally without concern for security. When the informational data is needed it can be re-generated using the non-informational data and a cascade of the random data from the series of nodes as inputs to an inverse function (XOR is its own inverse). The random data may be generated from a smaller random seed.
    Type: Grant
    Filed: April 5, 2017
    Date of Patent: April 7, 2020
    Assignee: TFOR LLC
    Inventor: David von Vistauxx
  • Patent number: 10613833
    Abstract: The present relates to invention deals with an execution unit configured to execute a computer program instruction to generate random numbers based on a predetermined probability distribution. The execution unit comprises a hardware pseudorandom number generator configured to generate at least randomised bit string on execution of the instruction and adding circuitry which is configured to receive a number of bit sequences of a predetermined bit length selected from the randomised bit string and to sum them to produce a result.
    Type: Grant
    Filed: February 1, 2018
    Date of Patent: April 7, 2020
    Assignee: Graphcore Limited
    Inventors: Stephen Felix, Godfrey Da Costa
  • Patent number: 10594473
    Abstract: A database server stores encrypted vector data in which each of a plurality of elements is encrypted by encryption maintaining semi-homomorphism between calculation before encryption and calculation after encryption. The database server receives an obfuscated query (N-randomized query) from a terminal device, performs calculation for each of a plurality of segments of vectors of the obfuscated query with a segment of the encrypted vector data, and transmits the calculation to the terminal device in reply. The terminal device may acquire a result of decryption calculation transmitted in reply by a decryption device.
    Type: Grant
    Filed: August 4, 2017
    Date of Patent: March 17, 2020
    Inventors: Tomoyuki Yamada, Masahiro Hattori