Database Access Control Methods Patents (Class 707/781)
  • Patent number: 11182271
    Abstract: In an approach for providing a self-learning framework for performance analysis using content-oriented analysis, a processor initiates a performance analysis of a dump on a thread. A processor presents time information and an associated location of the time information. A processor analyzes the time information by registering the time information into a knowledge base to debug errors in a computer program. Subsequent to a query for dump information, a processor displays the analyzed time information, based on the performance analysis.
    Type: Grant
    Filed: July 29, 2016
    Date of Patent: November 23, 2021
    Assignee: International Business Machines Corporation
    Inventor: Jijiang Xu
  • Patent number: 11184445
    Abstract: Disclosed is a method and system (102) for establishing communication between users. The method comprises receiving, from a first user operating on a social networking platform, a unique identifier associated with a second user to whom the first user wishes to send an anonymous notification, for communicating over a social networking platform. A tag is stored over a server for establishing communication between the first user and the second user, on said social networking platform. The tag expires after a predefined time period. The anonymous notification is delivered to the second user, indicating a known person's interest to communicate with the second user. Communication is established between the first user and the second user, over said social networking platform, after the second user correctly predicts the first user to be the sender associated with the anonymous notification, before expiry of the predefined time period associated with the tag.
    Type: Grant
    Filed: September 27, 2020
    Date of Patent: November 23, 2021
    Inventor: Jean-Michel Michel Cloutier
  • Patent number: 11163904
    Abstract: A method, system and computer program for implementing fine-grained access control (FGAC) of data stored in a dataset. In response to receiving a data query statement from a user, any representational index exclusions that are relevant to the data query statement are identified, wherein each index exclusion specifies an access restriction to the data. It is then determined whether any of the identified representational index exclusions are to be applied to the data query statement, and if ‘yes’ then the data query statement is modified before being processed, so that processing of the query takes place by searching the dataset under restriction of the representational index exclusions. The proposed approach allows for easy creation and modification of FGAC privacy rules without introducing performance gaps in processing the data query statements.
    Type: Grant
    Filed: September 4, 2018
    Date of Patent: November 2, 2021
    Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATION
    Inventors: Pedro M. Barbas, David Kelly, Martin J. Neary, Johnson Uman
  • Patent number: 11146569
    Abstract: Systems and methods are described for providing escalation-resistant network-accessible services by providing the service through a set of service instances, each executing in an environment with privileges scoped based on a user requesting to access the service. Each service instance can be implemented by code on a serverless code system, executed in response to a user request to access the service. Because the code is executed in an environment with privileges scoped to those of a requesting user, the code itself need not attempt to limit the privileges or a requesting user. For that reason, potential for privilege escalations of the service are reduced, even if vulnerabilities in the code might otherwise allow for such escalations.
    Type: Grant
    Filed: June 28, 2018
    Date of Patent: October 12, 2021
    Assignee: Amazon Technologies, Inc.
    Inventors: Marc John Brooker, Ajay Nair, Colm MacCárthaigh
  • Patent number: 11120146
    Abstract: A method for securely sharing a common software package includes storing, within a database, a set of software packages associated with a first namespace, then storing, within the database, a common software package associated with the set of software packages. The common software package is obfuscated and includes an access modifier. A request to install a first software package selected from the set of software packages associated with the namespace is received by a subscriber. In response to the request from the subscriber, the system installs the first software package and the common software package in accordance with the access modifier.
    Type: Grant
    Filed: April 27, 2020
    Date of Patent: September 14, 2021
    Assignee: salesforce.com, Inc.
    Inventors: Ganesh Mathrubootham, Jeffrey M. Bartolotta, Reid A. Elliott
  • Patent number: 11122031
    Abstract: At least one processor device is configured to receive a first authentication request for authenticating a first user, the first user having been authenticated on a first application with a first user identification (ID) using a first ID federation between the first application and a federation server, determine that the first user is authorized to access information of a second user on a second application based on the first user ID, the second user being associated with a second user ID, and send a second authentication request for authenticating the first user to the second application with the second user ID using a second ID federation between the federation server and the second application.
    Type: Grant
    Filed: November 1, 2019
    Date of Patent: September 14, 2021
    Assignee: International Business Machines Corporation
    Inventors: Miki Ishikawa, Yuji Watanabe
  • Patent number: 11100056
    Abstract: A method for tracking actions performed in association with a data set includes identifying multiple sources of historical information describing actions performed on the data set. The method periodically gathers this historical information from the multiple sources and compiles the historical information in a centralized repository. In certain embodiments, the method stores the historical information in the form of individual records associated with the data set. In the event any actions performed on the data set are the result of policies established for the data set, the method determines the policies associated with the actions where possible. The method includes these policies with the historical information in the centralized repository. A corresponding system and computer program product are also disclosed.
    Type: Grant
    Filed: May 17, 2016
    Date of Patent: August 24, 2021
    Assignee: International Business Machines Corporation
    Inventors: Philip R. Chauvet, Andrew E. Deiss, Kenneth J. Owin, David C. Reed
  • Patent number: 11100175
    Abstract: The present disclosure provides user-interface methods and systems for submitting search requests to search engines and presenting search results therefrom customized using content preferences learned about a user, comprising sending query information to at least two search engines, including a query identifying desired content, and user information, including context information describing the environment in which the query information is being sent, and a user signature representing content preferences learned about the user; receiving at least one set of a search result and auxiliary information from the at least one search engine in response to sending the query information, including information describing attributes of the search result that led to the search result being chosen by the at least one search engine; ordering the at least one search result based at least in part on the auxiliary information; and presenting the ordered search results to the user.
    Type: Grant
    Filed: May 4, 2020
    Date of Patent: August 24, 2021
    Assignee: Veveo, Inc.
    Inventors: Rakesh Barve, Pankaj Garg, Sashikumar Venkataraman, Murali Aravamudan, Keyur Vallabhbhai Faldu, Vineet Agarwal, Apurv Anand
  • Patent number: 11100246
    Abstract: A computer-implemented method for completing queries propagated across a plurality of datasources that may include receiving a search query comprising a search string via an application user interface. Identity information regarding an end user associated with the search query may also be received. At least one role of the end user may be automatically determined and authorization metadata corresponding to the at least one role may be automatically appended to the search query. A plurality of adapters corresponding to the datasources may be invoked and the appended search query may be passed to the adapters. The appended search query may be translated by the adapters into a plurality of translated search queries according to the syntax and format configurations of the datasources. The translated search queries may be automatically submitted to the corresponding datasources. Responsive results may be automatically received and presented at an end user computing device.
    Type: Grant
    Filed: October 10, 2018
    Date of Patent: August 24, 2021
    Assignee: Mastercard International Incorporated
    Inventors: Matthew Edward Hopkins, Vikranth Kumar Anneboina, Sandeep Chakravarthy Chimakurthi
  • Patent number: 11087359
    Abstract: Methods, systems, and apparatus, including computer programs encoded on a computer storage medium, for distributing content items. In one aspect, a method includes presenting an immersive content item at a client device. The immersive content item includes a first presentation interface that includes a scrollable image portion that presents an image having a first interaction point and a preview graphic indicating the availability of other images for presentation. The immersive content item also includes a second presentation interface that is initiated upon interaction with the first interaction point. The second presentation interface includes a scrollable image portion that presents an image from a plurality of images and an image sequencing indicator.
    Type: Grant
    Filed: March 22, 2016
    Date of Patent: August 10, 2021
    Assignee: Google LLC
    Inventors: Ayush Agarwal, Sheng Chen, Jason W. Blythe, Sundeep Jain, Awaneesh Verma, Yunkai Zhou
  • Patent number: 11032263
    Abstract: Provided are a computer program product, system, and method for providing access to data storage services in a network environment. Multi-tenancy information for each of a plurality of clients has at least one tenant assigned to the client, at least one data source assigned to the tenant assigned to the client, and for each of the at least one data source, information on at least one user assigned to the data source and permitted access to the data source. A user is provided an isolate tag comprising a client tag identifying one client, a tenant tag identifying one tenant, and a data source tag identifying one data source to which the user is permitted to access data. A user access request with an isolate tag is processed in response to determining that the multi-tenancy information indicates that the client, tenant, and data source identified by the isolate tag are related.
    Type: Grant
    Filed: February 6, 2020
    Date of Patent: June 8, 2021
    Assignee: International Business Machines Corporation
    Inventors: Senthil Bakthavachalam, Paul R. Bastide, Hubertus Franke
  • Patent number: 11030335
    Abstract: A computer system, in response to intercepting a database server response with a result set issued by a database server in response to a database query received by the database server, extracts a selection of data from the result set, the selection of data identifying dynamic query elements of the dynamic database query as constructed by the database server at runtime. The database activity monitoring service determines whether the dynamic query elements comply with any security policies. The database activity monitoring service, in response to determining that the dynamic query elements fail to comply with any security policies, issues a security alert.
    Type: Grant
    Filed: July 31, 2019
    Date of Patent: June 8, 2021
    Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATION
    Inventor: Leonid Rodniansky
  • Patent number: 11004041
    Abstract: A user is provided with insights into their upcoming day. One or more calendars for the user are identified. The identified calendars are then heuristically analyzed to calculate one or more insights into an upcoming day for the user, and these calculated insights are provided to the user. One or more electronic messages each of which was received by or sent by the user are also identified. The identified electronic messages are then heuristically analyzed to calculate one or more insights into an upcoming day for the user, and these calculated insights are provided to the user. The identified calendars and the identified electronic messages are also heuristically analyzed together to calculate one or more insights into an upcoming day for the user, and these calculated insights are provided to the user.
    Type: Grant
    Filed: August 24, 2016
    Date of Patent: May 11, 2021
    Assignee: Microsoft Technology Licensing, LLC
    Inventors: Kevin Niels Stratvert, Ashmeet Oberoi, Manikandeswaran Janagaraj, Evan Ming Lew, Sunny Verma, Arif Saifee, Andranik Kurghinyan
  • Patent number: 10992730
    Abstract: Systems and methods are provided for delaying publicizing, at a second source, upload of a content item to a first source, until confirmation of availability of the content item at the first source. In one or more aspects, a system includes an upload component configured to upload content to a content server, a share component configured to receive selection of a sharing source to post a notification that informs users regarding availability of the content at the content server, a confirmation component configured to receive confirmation from the content server in response to the content becoming available at the content server following the upload of the content, and a notification component configured to post the notification at the sharing source in response to receipt of the confirmation.
    Type: Grant
    Filed: July 3, 2019
    Date of Patent: April 27, 2021
    Assignee: Google LLC
    Inventors: Reed Morse, Jason Toff, David Matthew Patierno
  • Patent number: 10991000
    Abstract: In accordance with embodiments, there are provided mechanisms and methods for advertisement distribution using a multi-tenant on-demand database system. These mechanisms and methods for distributing advertisements using a multi-tenant on-demand database system can integrate an advertisement distribution service with the services provided by the multi-tenant on-demand database system. The ability to provide an advertisement distribution service with the services provided by the multi-tenant on-demand database system can enable the distribution of advertisements to take advantage of other data stored by and/or services provided by the multi-tenant on-demand database system.
    Type: Grant
    Filed: February 19, 2013
    Date of Patent: April 27, 2021
    Assignee: salesforce.com, inc.
    Inventor: Sridhar Palakurthy
  • Patent number: 10958480
    Abstract: Examples described herein include systems and methods for creating a per-app virtual private network (“VPN”) using hooking, even though an isolated process is used for networking functions. The isolated process can include networking functions of the WebView class for ANDROID. The application can start an HTTP proxy server to receive local HTTP requests. Then, the application can trigger a broadcast to the isolated process, causing the isolated process to route its HTTP requests to the HTTP proxy of the application. The application can then hook HTTP requests and send them to a virtual private network (“VPN”) tunnel server. This can allow an application to securely connect to enterprise files or data even though the networking functions occur in the isolated process.
    Type: Grant
    Filed: September 12, 2018
    Date of Patent: March 23, 2021
    Assignee: VMWARE, INC.
    Inventors: Suman Aluvala, Sivasubramaniam Sivakumar, Ben Joseph
  • Patent number: 10931669
    Abstract: Methods and systems are disclosed for endpoint protection and authentication schemes for a host computer system having an internet isolation system. A first host computer system may include a first memory space and a second memory space. The first memory space may be configured to enable storage and operation of a workspace configured to execute a first set of one or more applications and processes running on an operating system of the first host computer system. The second memory space may be configured to enable storage and operation of a second set of one or more applications and processes associated with an isolated computing environment (e.g., a sandboxed computing environment) configured to run on the operating system. When the first host computer system is connected to a network that is known or associated with a predetermined security policy, the first host computer system may instantiate a predetermined security policy configuration.
    Type: Grant
    Filed: September 26, 2018
    Date of Patent: February 23, 2021
    Assignee: L3 Technologies, Inc.
    Inventors: Glenn Coleman, Peter Martz, Kenneth Moritz
  • Patent number: 10924435
    Abstract: A system includes servers that are connected in series, and a top of rack (TOR) switch having a first TOR switch port and a second TOR switch port that are connected to a first end and a second end, respectively, of the series connected servers. A multi chassis link aggregation group may be established on the first TOR switch port and the second TOR switch port to transform the series connected servers into a single logical channel. A highest media access control address is determined from the servers to represent the single logical channel.
    Type: Grant
    Filed: May 15, 2019
    Date of Patent: February 16, 2021
    Assignee: Dell Products, L.P.
    Inventors: Lee Eric Ballard, Wade Andrew Butcher
  • Patent number: 10915650
    Abstract: Methods and systems for securely sharing files with user devices based on location are described herein. A computing device may receive, from a user device, a request to share a file. The computing device may determine other user devices at the location of the user device desiring to share a file. Unique tokens and/or unique session identifiers may be generated to facilitate secure sharing of the file, and each token and/or session identifier may correspond to a different user device. The computing device may send, to each different user device, the device's corresponding token and/or session identifier. The computing device may also send, to the user device desiring to share the file, the tokens and/or session identifiers for the other user devices. The user device may securely send the file to one or more of the other user devices using the tokens and/or session identifiers.
    Type: Grant
    Filed: October 30, 2018
    Date of Patent: February 9, 2021
    Assignee: Citrix Systems, Inc.
    Inventors: Praveen Raja Dhanabalan, Saurabh Pant
  • Patent number: 10915946
    Abstract: Systems, methods, and machine-readable medium are described for customizing an application. A method includes receiving, by a network-based transaction facility, a selection of a first geographically targeted website. The method also includes receiving, by the network-based transaction facility, geographically targeted site preferences for the selected first geographically targeted website. Finally, the method includes receiving a request to create a first transaction listing, the first transaction listing to be created at the first geographically targeted website based on the first geographically targeted website preferences.
    Type: Grant
    Filed: July 31, 2018
    Date of Patent: February 9, 2021
    Assignee: eBay Inc.
    Inventors: Robert Dean Veres, Ching-Jye Liang
  • Patent number: 10902042
    Abstract: In one embodiment, a method is illustrated as including receiving a search query, the search query relating to a patent, retrieving data relating to a term contained in a claim limitation in the patent, the data including at least one of intrinsic or extrinsic evidence associated with the term by a hyperlink, and displaying the claim limitation and the hyperlink. Further, a computer system is illustrated as including a receiver to receive a search query, the search query relating to a patent, a retriever to retrieve data relating to a term contained in a claim limitation in the patent, the data including at least one of intrinsic or extrinsic evidence associated with the term by a hyperlink, and a display to display the claim limitation and the hyperlink.
    Type: Grant
    Filed: June 8, 2015
    Date of Patent: January 26, 2021
    Inventor: Gary J. Speier
  • Patent number: 10877983
    Abstract: A system and method can be provided to facilitate the comparison of different data sets associated with different organizations. A first data set belonging to a first organization and a second data set belonging to a second organization can be provided. Permissions can be set such that users associated with the first organization cannot view the data contained in the second data set and vice versa. The data sets can be compared based on selected data categories to generate a third data set of match results. The comparison can comprise the use of fuzzy logic. Unmatched data can be excluded from the third data set to protect sensitive data of each organization. The third data set can then be shared between the first and second organization.
    Type: Grant
    Filed: January 31, 2019
    Date of Patent: December 29, 2020
    Assignee: Anthem Entertainment (GP) Inc.
    Inventors: Robert Ott, Christopher Giansante
  • Patent number: 10873551
    Abstract: A notification apparatus according to an example aspect of the invention includes a memory that stores instructions; and at least one processor coupled to the memory, the at least one processor being configured to executing the instructions to: determine a second terminal from a plurality of terminals based on a distance between each of the plurality of terminals and a first terminal in a particular state; and perform a notification to a manager of the second terminal, the notification relating to a situation where the first terminal is in the particular state.
    Type: Grant
    Filed: December 12, 2017
    Date of Patent: December 22, 2020
    Assignee: NEC CORPORATION
    Inventor: Kazuya Yamamoto
  • Patent number: 10862750
    Abstract: A network configuration apparatus includes a user interface module configured to receive a traffic request from a user. The traffic request includes a source and a destination for desired traffic. A barrier identification module obtains network data indicating a set of networking devices present in a route between the source and the destination. For each of the devices, the barrier identification module determines whether the device may block traffic from reaching the destination and, if so, adds the device to a set of potential barriers. A route analysis module, for each device of the potential barriers, flags the device if it will block the desired traffic. The user interface module, in response to there being at least one flagged device, transmits an alert that the traffic request is a failure; and, in response to there being zero flagged devices, transmits an alert that the traffic request is a success.
    Type: Grant
    Filed: March 31, 2019
    Date of Patent: December 8, 2020
    Assignee: TD Ameritrade IP Company, Inc.
    Inventors: William Victor Wollman, Donald Robert Steinmetz, Jr.
  • Patent number: 10860811
    Abstract: The present disclosure provides a method and a device for generating a review article of hot news, and a terminal device. By way of example, the method may include: determining hot news based on reading feedback information and publishing time of respective news in a current webpage library; obtaining review data corresponding to the hot news; selecting a target review set from the review data based on a preset high-quality review model; and generating the review article based on the hot news and the target review set corresponding to the hot news.
    Type: Grant
    Filed: October 12, 2018
    Date of Patent: December 8, 2020
    Assignee: BEIJING BAIDU NETCOM SCIENCE AND TECHNOLOGY CO., LTD.
    Inventors: Xi Shi, Shiliang Diao, Sijiao Chen, Yu Luo
  • Patent number: 10853470
    Abstract: Some aspects of the disclosure provide a method comprising receiving, on a digital device, a selection of a first application state of a set of application states of an application, identifying and retrieving path instructions indicating a series of steps to navigate the application to the selected first application state of the set of application states, providing the path instructions to an accessibility module configured to provide accessibility services to a user of the digital device, and navigating, by the accessibility module, the application using the path instructions to configure the application to the selected first application state.
    Type: Grant
    Filed: December 29, 2014
    Date of Patent: December 1, 2020
    Assignee: Samsung Electronics Co., Ltd.
    Inventors: Manikandan Sankaranarasimhan, Kalyan Desineni
  • Patent number: 10824651
    Abstract: In one embodiment, a method includes, for each of a plurality of channels at a well site, converting channel data from a source data format to a common data format in real-time as the channel data is generated. The common data format includes a plurality of elements organized into a plurality of sets. Each element includes a minimum collection of fields. The method further includes, for each of the plurality of channels, storing the converted channel data in a data store as part of the at least one element.
    Type: Grant
    Filed: March 18, 2019
    Date of Patent: November 3, 2020
    Assignee: Petrolink International Ltd.
    Inventors: Richard Abraham, Mark Patrick Farnan
  • Patent number: 10824648
    Abstract: Techniques and solutions are described for facilitating the installation of software application extensions in a multi-tenant environment. A package for an extension may include code for a plurality of objects of the extension. Extension objects can be generated or non-generated. Generated objects can be user modifiable or not user modifiable. A software-implemented classification assistant can examine properties of the objects and classify them for deployment to a shared container or prompt a user to select whether an object should be deployed to the shared container or to a tenant-specific container. Properties of objects in the shared container may be set by the classification assistant such they are not modifiable by tenants.
    Type: Grant
    Filed: April 18, 2018
    Date of Patent: November 3, 2020
    Assignee: SAP SE
    Inventor: Garima Srivastava
  • Patent number: 10817382
    Abstract: Methods and systems are provided for concurrently upgrading a primary database and a standby database that is synchronized with the primary database, while still protecting the stored data from the risk of hardware or other failure during the upgrade process. The standby database is mounted to an NFS (Network File System) located on a database access node. The upgraded primary and standby databases are built and mounted to the NFS mount point. A level-zero backup and one or more incremental backups of the deprecated standby database are generated. Each backup may be concurrently transferred to the upgraded databases via the mount point. Upon generation of a final incremental backup, the primary database is frozen and the tablespace metadata to transferred to the upgraded databases via the mount point. The upgraded primary database may be started upon importing of the tablespace metadata.
    Type: Grant
    Filed: May 17, 2017
    Date of Patent: October 27, 2020
    Assignee: Dell Products, L.P.
    Inventors: Ponnayan Sekar, Deepa Sreekumar, Sathish Kumar Bikumala
  • Patent number: 10819693
    Abstract: Disclosed herein are systems and methods that allow for secure access to websites and web-based applications and other resources available through the browser. Also described are systems and methods for secure use and retention of user credentials, as well as methods for dynamic authentication of users and integrity checking of service providers in online environments. Thus, described in the present specification are systems and methods for constructing and destroying private, secure, browsing environments (a secure disposable browser), insulating the user from the threats associated with being online for the purposes of providing secure, policy-based interaction with online services.
    Type: Grant
    Filed: June 24, 2019
    Date of Patent: October 27, 2020
    Assignee: Authentic8, Inc.
    Inventors: Ramesh Rajagopal, James K. Tosh, Fredric L. Cox, Perry F. Nguyen, Jason T. Champion
  • Patent number: 10819726
    Abstract: Systems, methods, and media for detecting network anomalies are provided. In some embodiments, a training dataset of communication protocol messages having argument strings is received. The content and structure associated with each of the argument strings is determined and a probabilistic model is trained using the determined content and structure of each of the argument strings. A communication protocol message having an argument string that is transmitted from a first processor to a second processor across a computer network is received. The received communication protocol message is compared to the probabilistic model and then it is determined whether the communication protocol message is anomalous.
    Type: Grant
    Filed: July 26, 2018
    Date of Patent: October 27, 2020
    Assignee: The Trustees of Columbia University in the City of New York
    Inventors: Yingbo Song, Angelos D. Keromytis, Salvatore J. Stolfo
  • Patent number: 10812571
    Abstract: Distributed Service Layer Transactions (DSLTs) may be supported by a DSLT service at a service layer of a communications network to offload applications from the burden of managing the processing of DSLTs.
    Type: Grant
    Filed: March 16, 2018
    Date of Patent: October 20, 2020
    Assignee: Convida Wireless, LLC
    Inventors: Dale N. Seed, Zhuo Chen, Shoshana Loeb, Quang Ly, Catalina Mihaela Mladin, William Robert Flynn, IV, Rocco Di Girolamo
  • Patent number: 10810165
    Abstract: A distributed storage server includes a plurality of data server devices and a plurality of metadata server devices. The metadata server devices store metadata associated with data which is distributively stored in the data server devices. A selected metadata server device checks whether a dangling directory occurs by performing a rename operation, based on information associated with a full path of a parent directory of a source and a full path of a parent directory of a target included in a request of the rename operation. When it is determined that the dangling directory does not occur, the selected metadata server device processes transactions directed to the metadata such that the rename operation is performed. The checking whether the dangling directory occurs is performed before a transaction period for processing the transactions.
    Type: Grant
    Filed: May 3, 2017
    Date of Patent: October 20, 2020
    Assignee: Electronics and Telecommunications Research Institute
    Inventors: Myung Hoon Cha, Sang-Min Lee, Young Kyun Kim, Hong Yeon Kim
  • Patent number: 10769276
    Abstract: A system for securing electronic devices includes a processor, non-transitory machine readable storage medium communicatively coupled to the processor, security applications, and a security controller. The security controller includes computer-executable instructions on the medium that are readable by the processor. The security application is configured to determine a suspicious file from a client using the security applications, identify whether the suspicious file has been encountered by other clients using the security applications, calculate a time range for which the suspicious file has been present on the clients, determine resources accessed by the suspicious file during the time range, and create a visualization of the suspicious file, a relationship between the suspicious file and the clients, the time range, and the resources accessed by the suspicious file during the time range.
    Type: Grant
    Filed: September 17, 2018
    Date of Patent: September 8, 2020
    Assignee: McAfee, LLC
    Inventors: Derek Pearcy, Jessica Heinrich, Michael Bishop, Cristian Fiorentino, Jessica Gaskins, Martina Borkowsky
  • Patent number: 10742755
    Abstract: Systems and methods of monitoring online activity may include providing, by a server of a linking system, a cookie of the linking system to a client device responsive to receiving a first request from a first resource to access a first link encoded by the linking system and linked to a second resource. The server may identify from the first request, the cookie, the first resource and the second resource. The server may receive from the client device, a second request to access a second link that is encoded by the linking system and linked to a third resource. The server may identify from the second request, the same cookie provided to the client device and the third resource. The server may identify, via the cookie provided to the client device, that the client device has accessed the first, second and third resources.
    Type: Grant
    Filed: August 8, 2016
    Date of Patent: August 11, 2020
    Assignee: BITLY, INC.
    Inventors: Christopher Comstock, Robert Platzer
  • Patent number: 10728286
    Abstract: In accordance with a security policy regarding a setting value of an information processing apparatus, restriction information indicating whether to restrict modification of the setting value of information processing apparatus stored in a first storage unit is generated and stored in a second storage unit different to the first storage unit. Based on the restriction information stored in the second storage unit, modification of the setting value of the information processing apparatus is restricted.
    Type: Grant
    Filed: October 6, 2016
    Date of Patent: July 28, 2020
    Assignee: Canon Kabushiki Kaisha
    Inventor: Jun Omata
  • Patent number: 10728261
    Abstract: A cyber security threat detection system for one or more endpoints within a computing environment is disclosed. The system includes one or more collector engines. Each of the collector engines includes a service and an agent operating on a corresponding system endpoint of the system endpoints. The service is configured to take a first snapshot of the corresponding system endpoint. The first snapshot includes event activity information associated with the system endpoint. The agent is configured to take a second snapshot of the corresponding system endpoint. The second snapshot includes behavioral activity information associated with the corresponding system endpoint. The system further includes an aggregator engine configured to aggregate the first snapshot and the second snapshot from each of the system endpoints into an aggregated snapshot.
    Type: Grant
    Filed: September 8, 2017
    Date of Patent: July 28, 2020
    Assignee: ResponSight Pty Ltd
    Inventor: Jeffrey Paine
  • Patent number: 10701089
    Abstract: A cyber security threat detection system for one or more endpoints within a computing environment is disclosed. The system comprises a plurality of collector engines. Each of the collector engines is previously installed on an endpoint of a plurality of endpoints and configured to acquire statistical information at the endpoint. The statistical information includes behavioral information, resource information, and metric information associated with the endpoint. The system further comprises an aggregator engine configured to aggregate the statistical information from each of the endpoints into aggregated information. The system further comprises an analytics engine configured to receive the aggregated information, and to invoke learning models to output deviation information for each of the endpoints based on the aggregated information and expected fingerprints associated with the endpoints.
    Type: Grant
    Filed: November 13, 2017
    Date of Patent: June 30, 2020
    Assignee: ResponSight Pty Ltd
    Inventor: Jeffrey Paine
  • Patent number: 10686827
    Abstract: An endpoint encrypts local files with a key to protect file contents. If the endpoint or processes on the endpoint becomes exposed to potentially harmful locations or resources, the key can be revoked to prevent access to encrypted files on the endpoint. In order to facilitate continued operation of the endpoint, files that are currently open can be encrypted with a second key so that the corresponding data is isolated from the other encrypted files while remaining accessible to current users.
    Type: Grant
    Filed: April 14, 2016
    Date of Patent: June 16, 2020
    Assignee: Sophos Limited
    Inventors: Harald Schutz, Anthony John Merry, Kenneth D. Ray, Andreas Berger
  • Patent number: 10664924
    Abstract: Computer-implemented methods, computerized systems and articles of manufacture for processing sensitive electronic tax return data. A tax logic agent reads runtime data of the electronic tax return from a shared data store and identifies logic computations to be performed given a directed completion graph and runtime data. Certain logic computations involve sensitive runtime data (name, social security number, other personal identification data, and private data such as address, telephone number and account numbers), are indicated as such, and may be processed differently than other logic computations involving runtime data not indicated to be sensitive data. Logic computations involving sensitive data may be performed locally, whereas logic computations not involving sensitive data may be performed by a remote computing resource, in which case computation results are merged and used to generate a non-binding suggestion of a topic or question to present to the user via the user interface controller.
    Type: Grant
    Filed: April 30, 2015
    Date of Patent: May 26, 2020
    Assignee: INTUIT INC.
    Inventors: Luis F. Cabrera, Gang Wang, Kevin M. McCluskey
  • Patent number: 10657547
    Abstract: A system and method perform calibration of a forecast model for resource allocation. The method includes receiving inputs to the forecast model derived from historical data for a period of time, and executing the forecast model to obtain one or more forecast levels for each interval within the period of time, the forecast level corresponding with a quantified forecast of a forecast parameter that is forecast by the forecast model for the interval. Obtaining an actual level for each interval within the period of time according to the historical data is followed by comparing the one or more forecast levels with the actual level for the period of time according to a metric to adjust a mapping within the forecast model between values of the quantified forecast and the forecast levels based on the comparing to obtain a calibrated forecast model. The calibrated forecast model is used for resource allocation.
    Type: Grant
    Filed: October 7, 2016
    Date of Patent: May 19, 2020
    Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATION
    Inventor: Amith Singhee
  • Patent number: 10635779
    Abstract: According to one example embodiment, a remote server includes a memory configured to store computer-readable instructions, and a processor. The processor is configured to execute the computer-readable instructions for installing a medical application at a target destination by determining a deployment configuration of the target destination, determining whether to transform the medical application prior to installing the medical application at the target destination based on the determined deployment configuration of the target destination, and deploying at least one of the medical application or a transformed version of the medical application to the target destination.
    Type: Grant
    Filed: July 22, 2016
    Date of Patent: April 28, 2020
    Assignee: Siemens Healthcare GmbH
    Inventor: Vladyslav Ukis
  • Patent number: 10614119
    Abstract: A system for enforcing restrictive access control with respect to a set of digital objects accessible by a first device and second device of a user. The system includes the first device of the user configured to: detect an update associated with a first system access control rule, wherein the first system access control rule is to block access to at least a first digital object included in the set of digital objects on the first device; determine, based at least in part on the update to the first system access control rule, to block access to at least a second digital object included in the set of digital objects on a second device; and provide, to the second device, the update associated with a first system access control rule to maintain restrictive access control over the set of digital objects on a second device.
    Type: Grant
    Filed: January 19, 2017
    Date of Patent: April 7, 2020
    Assignee: REGWEZ, INC.
    Inventor: Ragy Farouk Eleish
  • Patent number: 10601804
    Abstract: Provided are a computer program product, system, and method for providing access to data storage services in a network environment. Multi-tenancy information for each of a plurality of clients has at least one tenant assigned to the client, at least one data source assigned to the tenant assigned to the client, and for each of the at least one data source, information on at least one user assigned to the data source and permitted access to the data source. A user is provided an isolate tag comprising a client tag identifying one client, a tenant tag identifying one tenant, and a data source tag identifying one data source to which the user is permitted to access data. A user access request with an isolate tag is processed in response to determining that the multi-tenancy information indicates that the client, tenant, and data source identified by the isolate tag are related.
    Type: Grant
    Filed: December 11, 2017
    Date of Patent: March 24, 2020
    Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATION
    Inventors: Senthil Bakthavachalam, Paul R. Bastide, Hubertus Franke
  • Patent number: 10599720
    Abstract: The example embodiments are directed to a system and method for tag mapping. In one example, the method includes receiving a request to perform tag mapping for a target tag of a master data set, the target tag representing a target component of an asset, querying a customer data for a plurality of candidate tag records based on the target tag, tokenizing the plurality of candidate tag records included in the customer data set, reducing an amount of the tokenized tag records in the customer data set based on the target tag and each tokenized candidate tag record, performing tag mapping with the reduced amount of tokenized tag records to identify at least one candidate tag that is a possible match to the target tag, and outputting information concerning the identified at least one matching candidate tag.
    Type: Grant
    Filed: June 28, 2017
    Date of Patent: March 24, 2020
    Assignee: General Electric Company
    Inventors: Ian Moore, Massoud Seifi, Alex Clark
  • Patent number: 10587575
    Abstract: The disclosed technology is generally directed to firewalls. In one example of the technology, a first firewall is used such that communication is blocked from a first subsystem of a device upon boot of the device. The first firewall is enabled to be configured by secure code subsequent to boot such that code that is not secure code is prevented from configuring the first firewall. After configuration of the first firewall, based on the configuration, the first firewall is used to selectively allow the first subsystem access to the first memory based on ranges of addresses of the first memory configured as accessible to the first subsystem.
    Type: Grant
    Filed: May 26, 2017
    Date of Patent: March 10, 2020
    Assignee: Microsoft Technology Licensing, LLC
    Inventors: George Thomas Letey, Douglas L. Stiles, Edmund B. Nightingale
  • Patent number: 10581866
    Abstract: A device may provide a verification indicator to a device associated with a website. The verification indicator may be associated with verifying access to the website. The device may detect that the verification indicator has been associated with code associated with the website based on processing the code. The device may provide a script to the device. The script may be included in the code. The script may be associated with monitoring operations of the website. The device may receive data related to the operations. The device may analyze the data using a model. The model may be associated with making a prediction related to at least one of: a value to be received via the website, or traffic associated with the website. The device may perform one or more actions related to the website based on a result of the analyzing.
    Type: Grant
    Filed: May 8, 2019
    Date of Patent: March 3, 2020
    Assignee: Capital One Services, LLC
    Inventors: Joshua Edwards, Abdelkadar M'Hamed Benkreira, Michael Mossoba
  • Patent number: 10579606
    Abstract: An apparatus and a method are provided. The apparatus of data analytics in a key-value solid state device (KVSSD) are disclosed. The KVSSD includes at least one KVSSD data container; and at least one KVSSD analytics container associated with at least one of the at least one KVSSD data container. The KVSSD data and analytics containers may be configured to store data and data analytics results in key-value pairs. The apparatus may include a virtual analytics container which is configured to utilize a field programmable gate array (FPGA) for performing a logical operation on data stored in multiple containers. A key in a key-value pair stored in a KVSSD analytics container may include a KVSSD data container identifier, a logical offset, and a user key that is also a key in a KVSSD data container associated with the KVSSD data container identifier. A value in a key-value pair may include a header of a fixed size, and analytics result information that depends on a type stored in the header.
    Type: Grant
    Filed: May 9, 2018
    Date of Patent: March 3, 2020
    Assignee: Samsung Electronics Co., Ltd
    Inventors: Kumar Kanteti, Vish Maram
  • Patent number: 10558702
    Abstract: According to one embodiment, a master storage node receives a search query for searching images from a client, where the master storage node is coupled to a number of worker storage nodes over a storage network. The master storage node performs a hash operation on one or more keywords of the search query using a first predetermined hash function, generating a first hash value. A first of the worker storage nodes is identified based on the first hash value. The master storage node redirects the search query to the first worker storage node to allow the first worker storage node service the search query. The first worker storage node is to identify one or more images from a first system memory of the first worker storage node based on the search query and to transmit the one or more images to the client.
    Type: Grant
    Filed: April 6, 2016
    Date of Patent: February 11, 2020
    Assignee: BAIDU USA LLC
    Inventors: Haojun Wang, Shaoshan Liu, James Peng
  • Patent number: 10546035
    Abstract: A system and method for web application navigation control includes updating navigation data models used in navigation constraints with received data from an end-user or system. Without needing a centralized application-specific controller, from a collection of extensible navigation rules associated with each page of a plurality of pages, the extensible navigation rules are automatically selected which depend on changed data values and need re-evaluation. The navigation constraints associated only with the pages potentially changing their ready state to execute from among the plurality of pages in an entire application are evaluated to determine which pages are ready to run based on updated data from the navigation data models. A preferred page to be actually navigated to next is selected from among a set of all available and ready pages by execution of a set of second and separate navigation constraints using results of the navigation constraints of the evaluating step.
    Type: Grant
    Filed: August 3, 2018
    Date of Patent: January 28, 2020
    Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATION
    Inventors: Rahul P. Akolkar, John M. Boyer, Charles F. Wiecha