Privileged Access (707/9) Patents (Class 707/999.009)
  • Patent number: 11032321
    Abstract: Mechanisms for obtaining performance metric information securely are provided. A first application server executing on a computing device comprising a processor establishes that communications with a plurality of remote application servers utilize an encrypted communication protocol. Iteratively, over a period of time, each respective remote application server of the plurality of remote application servers is sent an encrypted message requesting performance metric information of the respective remote application server using the encrypted communication protocol. Over the period of time, encrypted requested performance metric information is received. The requested performance metric information is stored in a storage device.
    Type: Grant
    Filed: July 16, 2018
    Date of Patent: June 8, 2021
    Assignee: Red Hat, Inc.
    Inventor: John J. Mazzitelli
  • Patent number: 11030334
    Abstract: An embodiment of a method for securing stored data includes assigning a first user security label to a first user. The method further includes adding an object compartment created by the first user to the first user security label assigned to the first user. The method further includes assigning the object compartment to an object created by the first user by creating the object compartment in an object security label. The method further includes enabling a second user to access to the object created by the first user by assigning the object compartment assigned to the object to a second user security label of a second user. The method further includes determining, by a processing device, whether to permit the second user to access to the object based at least in part on the object security label and the second user security label.
    Type: Grant
    Filed: February 4, 2019
    Date of Patent: June 8, 2021
    Assignee: BAKER HUGHES, A GE COMPANY, LLC
    Inventors: Robert Rundle, Nicolaas Pleun Bax, Michelangelo Partipilo
  • Patent number: 11030593
    Abstract: A system, apparatus, and method for expediting the authorization of an electronic payment transaction. Authorization of a transaction at a node of an authorization network is the result of inferring the trustworthiness of a customer to the transaction using data obtained from a different node of the authorization network. The authorization process is expedited by relying on the previous authentication decision of another node, where the previous decision may have been made based on a different payment device or different user inputs. The invention uses a decision made by a first node in the authorization network as a proxy for the authorization decision at a different node, thereby transferring the trustworthiness of a consumer, consumer's device, payment device, or other aspect of the transaction from the first node to the second.
    Type: Grant
    Filed: May 8, 2020
    Date of Patent: June 8, 2021
    Assignee: Visa International Service Association
    Inventor: Ayman Hammad
  • Patent number: 11010212
    Abstract: Methods, systems, and computer program products are described herein for supporting and negotiating multiple (e.g. static) application programming interface (API) versions across multiple products. Interoperable programs, such as different web browser applications, may provide simultaneous support for multiple versions of an API. An API and program-API adapters may be versioned to manage compatibility for asynchronously developed programs and APIs that may be asynchronously installed and updated in many computing environments. An adapter may comprise a versioned portion of program source code. In-development program code and APIs may be forked to create versioned snapshots of stable interfaces. An “in-development” version of an API and adapters may coexist with versioned APIs and adapters. Compatible version negotiation may occur, for example, during process launch. Negotiation may activate the highest API version supported by both programs.
    Type: Grant
    Filed: June 13, 2019
    Date of Patent: May 18, 2021
    Assignee: Microsoft Technology Licensing, LLC
    Inventors: Tony E. Schreiner, Michael J. Ens, Clifton J. Hebert, Corey M. Bloodstein, Christian Fortini
  • Patent number: 11003732
    Abstract: A method for synchronizing, in a browser state of a web browser application, both automatically-generated content and user-generated content includes retrieving, by a controller application executing on a first computing device, from a profile database, profile content. The method includes receiving, by a first browser application, from the controller application, a first request including automatically-generated content based on the retrieved profile content. The method includes transmitting, by the first browser application, a first network request, the network request including the automatically-generated content. The method includes synchronizing, by a second browser application, a browser state of the second browser application with a browser state of the first browser application. The method includes receiving, by the second browser application, a second request including user-generated content.
    Type: Grant
    Filed: June 20, 2018
    Date of Patent: May 11, 2021
    Assignee: Diluvian LLC
    Inventor: Gregory Bricin Tseng
  • Patent number: 10992783
    Abstract: A method and a device to communicate between a mobile terminal and at least two backend servers, and the method of the present invention includes the following steps: registering a user of the mobile terminal as a user of the first backend server; obtaining the coding information by the barcode image taken through decoding the mobile terminal; the first backend server parsing the coding information to determine whether the barcode image is generated according to a preset coding rule, if the barcode image is generated according to the preset coding rule, executing subsequent steps; if the barcode image is not generated according to the preset coding rule, stopping executing the method after the mobile terminal is connected to a webpage corresponding to the coding information; the mobile terminal extracting service information corresponding to the coding information according to the coding information; the second backend server providing a service to the mobile terminal.
    Type: Grant
    Filed: July 3, 2014
    Date of Patent: April 27, 2021
    Inventor: Wei Xu
  • Patent number: 10970675
    Abstract: In particular embodiments, a data processing data inventory generation system is configured to: (1) generate a data model (e.g., a data inventory) for one or more data assets utilized by a particular organization; (2) generate a respective data inventory for each of the one or more data assets; and (3) map one or more relationships between one or more aspects of the data inventory, the one or more data assets, etc. within the data model. In particular embodiments, a data asset (e.g., data system, software application, etc.) may include, for example, any entity that collects, processes, contains, and/or transfers personal data (e.g., such as a software application, “internet of things” computerized device, database, website, data-center, server, etc.). For example, a first data asset may include any software or device (e.g., server or servers) utilized by a particular entity for such data collection, processing, transfer, storage, etc.
    Type: Grant
    Filed: May 6, 2019
    Date of Patent: April 6, 2021
    Assignee: OneTrust, LLC
    Inventors: Kabir A. Barday, Mihir S. Karanjkar, Steven W. Finch, Ken A. Browne, Nathan W. Heard, Aakash H. Patel, Jason L. Sabourin, Richard L. Daniel, Dylan D. Patton-Kuhl, Jonathan Blake Brannon
  • Patent number: 10951625
    Abstract: Techniques are described for unified identity and access management (IAM) across multiple applications in a distributed (e.g., cloud) computing environment. Implementations provide for IAM across multiple applications through use of a single, unified IAM tool including an IAM interface. The IAM tool can manage user identity and user access rights for multiple applications in the platform environment. The IAM tool can also employ a unified IAM database, which stores user profiles that each describes user access rights for a user in one or more applications. Through use of the unified IAM tool, an operator can access a single interface to manage user identity and access privileges across multiple applications which may have their own identity management interfaces, with user roles in different applications mapped through use of an equivalency matrix in some cases. The IAM tool can be used to add, remove, or edit user access privileges for multiple applications.
    Type: Grant
    Filed: November 1, 2018
    Date of Patent: March 16, 2021
    Assignee: Accenture Global Solutions Limited
    Inventors: Praveen Jadhav, Abdul Zafar, Jagaran Das
  • Patent number: 10936242
    Abstract: Causing data in an in-band storage device coupled to a host computing system to be transferred to an out-of-band (OOB) storage device includes coupling the in-band storage device to the OOB storage device, the in-band storage device detecting commands from the host computing system to transfer the data in the in-band storage device to a cloud storage, and the in-band storage device transferring the data in the in-band storage device to the to the OOB storage device in response to receiving a command from the host computing system to transfer the data in the in-band storage device to the cloud storage. The OOB storage device may be coupled to the cloud storage. Causing data in an in-band storage device to be transferred to an OOB storage device may also include causing data stored at the OOB storage device to be transferred to the cloud storage.
    Type: Grant
    Filed: July 26, 2018
    Date of Patent: March 2, 2021
    Assignee: EMC IP Holding Company LLC
    Inventor: Douglas E. LeCrone
  • Patent number: 10937088
    Abstract: Embodiments of mobile banking systems are described herein. Other examples and related methods are also disclosed herein.
    Type: Grant
    Filed: April 19, 2018
    Date of Patent: March 2, 2021
    Assignee: Green Dot Corporation
    Inventors: Steven William Streit, Samuel Harris Altman, Alok Deshpande, David Kenneth Schreiber
  • Patent number: 10922184
    Abstract: A method, article of manufacture, and apparatus for accessing data during data recovery. In some embodiments, this includes sending an I/O request from an application to an object, wherein the object is being recovered, establishing an I/O intercept, intercepting the application's I/O request with the I/O intercept, and redirecting the I/O request based on the status of the object's sub-objects.
    Type: Grant
    Filed: July 20, 2018
    Date of Patent: February 16, 2021
    Assignee: EMC IP HOLDING COMPANY LLC
    Inventors: Michael John Dutch, Christopher Hercules Claudatos, Mandavilli Navneeth Rao
  • Patent number: 10911381
    Abstract: One or more computing devices, systems, and/or methods for presenting augmented reality (AR) experiences and/or sharing AR objects are provided. For example, a request to initiate an AR experience may be received from a device associated with an email account. A real time view of a camera of the device may be displayed using an AR interface, where a set of AR objects are overlaid onto the real time view of the camera. An edited set of AR objects may be generated based upon one or more inputs corresponding to one or more edits to the set of AR objects. The edited set of AR objects may be overlaid onto the real time view of the camera. An email comprising the edited set of AR objects may be transmitted to one or more email accounts responsive to receiving a second request to share the edited set of AR objects.
    Type: Grant
    Filed: December 27, 2018
    Date of Patent: February 2, 2021
    Assignee: Verizon Media Inc.
    Inventors: Mohit Goenka, Ashish Khushal Dharamshi, Nikita Varma, Gnanavel Shanmugam
  • Patent number: 10885179
    Abstract: A method of provisioning organization users in a multi-tenant database system includes receiving a request via a single sign-on protocol from an organization user to create a new multi-tenant database user account for access to the multi-tenant database system. The method retrieves rules that specify how to derive user permissions for access to the multi-tenant database system from stored user attributes of the organization user. The method continues with applying the rules to the stored user attributes to determine permissions for the users to access particular objects in the multi-tenant database system, and creating the new user account with the determined user permissions for access to the multi-tenant database system.
    Type: Grant
    Filed: June 1, 2012
    Date of Patent: January 5, 2021
    Assignee: salesforce.com, inc.
    Inventor: Jong Lee
  • Patent number: 10877953
    Abstract: A method and apparatus for processing service requests for non-transactional databases are disclosed. In the method and apparatus, the execution of a first operation may be initiated based at least in part on receiving a service request from a user. The first operation may be executed synchronously with receipt of the request. Further, one or more execution workflows may be provisioned for asynchronous execution of one or more other operations.
    Type: Grant
    Filed: November 8, 2016
    Date of Patent: December 29, 2020
    Assignee: Amazon Technologies, Inc.
    Inventors: Noah Anthony Eisner, Kevin Gillett, Himanshu Khurana, Arun Ponniah Sethuramalingam, Nagesh Pradhan Cadabam, Liangliang Wang, Sharad Kala, Stephen Joseph Oakley, Nandhini Nandiwada Santhanam
  • Patent number: 10880845
    Abstract: In accordance with an example embodiment of the present invention, a method comprising: initiate, by a user equipment, a search of at least one carrier frequency as part of an initial access procedure; determine possible values for a first parameter and a second parameter based on the at least one carrier frequency, wherein the first parameter relates to a synchronization signal block index and the second parameter relates to at least one of: a periodicity and a synchronization signal block configuration; detect a reference signal from a first cell comprising signaling information indicating a first value for the first parameter and a second value for the second parameter; and synchronize timing for transmission and/or reception of data with the first cell based at least on the first value and the second value.
    Type: Grant
    Filed: April 24, 2018
    Date of Patent: December 29, 2020
    Assignee: Nokia Technologies Oy
    Inventors: Sami-Jukka Hakola, Jorma Kaikkonen
  • Patent number: 10872142
    Abstract: Systems and methods are described for management of data transmitted between computing devices in a communication network. An administrative component can configure one or more devices in the communication path of messages to be exchanged by devices to interpret codes embedded in the communication messages. A receiving device can review incoming messages for one or more processing codes or instructions that are embedded in the portion of the communication typically utilized solely to identify the subject matter of the communication, generally referred to as the topic portion of the communication. The receiving devices can then process the embedded codes to determine how the communication message will be routed or otherwise processed.
    Type: Grant
    Filed: March 2, 2018
    Date of Patent: December 22, 2020
    Assignee: Amazon Technologies, Inc.
    Inventors: Rahul Sharma, Sanjeev Krishnan, Timothy Wells Hunt
  • Patent number: 10852964
    Abstract: Devices and techniques are disclosed herein for verifying host generated physical addresses at a memory device during a host-resident FTL mode of operation to ameliorate erroneous or potentially malicious access to the memory device.
    Type: Grant
    Filed: September 25, 2018
    Date of Patent: December 1, 2020
    Assignee: Micron Technology, Inc.
    Inventor: Nadav Grosz
  • Patent number: 10834072
    Abstract: A cloud-based access to child care planning and outcome resource is described. The resource allows multiple end-users to access content related to child care. Such content includes reports, table, graphs, multimedia, lists, forms, reminders, and/or other appropriate elements. The content may be presented via one or more graphical user interfaces (GUIs). Each such GUI may include various input elements such as tabs, buttons, icons, etc. and various content elements such as portlets, or frames, etc. Each GUI may be customized for a particular end-user and/or a particular group of end-users. In this way, an administrator or super-user may generate multiple GUIs, where each is associated with a user group (e.g., parents, teachers, administrators, etc.). In addition, each end-user may be able to customize the GUIs available to the end user. Such customization may include selection of input and/or content elements, layout of elements, graphical features, and/or other appropriate customizations.
    Type: Grant
    Filed: April 13, 2015
    Date of Patent: November 10, 2020
    Inventor: Hamid Kelishadi
  • Patent number: 10779143
    Abstract: According to an embodiment of the present disclosure, a method for operating an electronic device includes displaying a result of recognizing at least one other electronic device as at least one item, and sending a message requesting the at least one other electronic device to output an identifiable signal.
    Type: Grant
    Filed: April 28, 2015
    Date of Patent: September 15, 2020
    Assignee: Samsung Electronics Co., Ltd
    Inventors: Tae-Young Lee, Jae-Eun Kang, Han-Su Kang, Sung-Il Park, Seong-Hee Park, Bong-Jhin Shin, Chil-Youl Yang, Myoung-Hwan Lee, Jang-Hee Lee, Chun-Ho Lee
  • Patent number: 10776285
    Abstract: In an active-active system, if write lock permission is granted to a second storage array, a first storage array sends to-be-written data and a lock revocation request together to a lock server; the lock server sends a lock revocation request carrying the to-be-written data to the second storage array; after storing the to-be-written data, the second storage array sends a lock revocation success message to the lock server; the lock server gives the write lock permission to the first storage array; and the first storage array obtains the write lock permission and stores the to-be-written data.
    Type: Grant
    Filed: May 11, 2018
    Date of Patent: September 15, 2020
    Assignee: Huawei Technologies Co., Ltd.
    Inventors: Lei Chen, Keji Huang
  • Patent number: 10769262
    Abstract: A system enables use of credentials, including determining that a user has been authorized by a first credential-issuing organization and enabling the user to use a first credential issued by the first credential-issuing organization based on the determination that the user has been authorized by the first credential-issuing organization. Trust data indicating whether the user should be enabled to use a second credential issued by a second credential-issuing organization as a result of the user having been authorized by the first credential-issuing organization is accessed. A determination is made that the accessed trust data indicates that the user should be enabled to use the second credential issued by the second credential-issuing organization as a result of the user having been authorized by the first credential-issuing organization, and the user is enabled to use the second credential.
    Type: Grant
    Filed: January 16, 2015
    Date of Patent: September 8, 2020
    Assignee: MicroStrategy Incorporated
    Inventors: Siamak Ziraknejad, John Gehret, Gang Chen
  • Patent number: 10769023
    Abstract: A structured query language server may receive a command from a backup control server to provision a virtual device and perform a backup operation on the structured query language server. The structured query language server may be configured to write data to the virtual device in order to be transmitted to a data storage service. The backup and restore operations directed to the structured query language server may include a web service application programming interface request to the data storage service to cause the data written to the virtual device to be stored as a data object in the data storage service.
    Type: Grant
    Filed: December 17, 2014
    Date of Patent: September 8, 2020
    Assignee: Amazon Technologies, Inc.
    Inventor: Steven John Abraham, Jr.
  • Patent number: 10757100
    Abstract: A machine implemented method for protecting a target domain and a source domain from unauthorized accesses. The method comprising: identifying an exit call gateway comprising an exit transition instruction and at least one exit access parameter, said exit access parameters restricting exit from said source domain; identifying an entry call gateway corresponding to said exit call gateway, said entry call gateway comprising a transition instruction and at least one entry access parameter, said entry access parameters restricting access to said target domain; determining that said exit access parameters and said entry access parameters are compatible with each other; and performing a context switch from said source domain to said target domain, when said exit access parameters and said entry access parameters are complied with.
    Type: Grant
    Filed: July 26, 2017
    Date of Patent: August 25, 2020
    Assignee: ARM IP Limited
    Inventors: Alessandro Angelino, Milosch Meriac
  • Patent number: 10706170
    Abstract: Implementations include providing a database system that a plurality of tenant systems interact with, providing a shared database schema and a plurality of tenant database schemas, the shared database schema including a shared table, and each tenant database schema being assigned to a respective tenant and including a view into the shared table, which includes a tenant specification field, and a row visibility field, the tenant specification field indicating a tenant, to which a respective row is assigned, and the row visibility field indicating visibility of a respective row to respective tenants.
    Type: Grant
    Filed: March 16, 2017
    Date of Patent: July 7, 2020
    Assignee: SAP SE
    Inventors: Juergen Specht, Volker Driesen
  • Patent number: 10705919
    Abstract: An information processing apparatus, backup method, and program product that enable efficient differential backup. In one embodiment, an information processing apparatus for files stored in a storage device includes: a metadata management unit for managing metadata of files stored in the storage device; a map generation unit for generating a map which indicates whether metadata associated with an identification value uniquely identifying a file in the storage device is present or absent; and a backup management unit for scanning the metadata to detect files that have been created, modified, or deleted since the last backup, and storing at least a data block and the metadata for a detected file in a backup storage device as backup information in association with the identification value.
    Type: Grant
    Filed: November 21, 2017
    Date of Patent: July 7, 2020
    Assignee: International Business Machines Corporation
    Inventors: Norie Iwasaki, Sosuke Matsui, Tsuyoshi Miyamura, Terue Watanabe, Noriko Yamamoto
  • Patent number: 10693862
    Abstract: A method is disclosed that includes receiving a notification about an activity pertaining to a user, the notification being directed to a first application and a second application, and identity of the user being associated with a token. The method also includes identifying a first instance of the first application and a first instance of the second application at a user device of the user, and determining the first instance of the first application and the first instance of the second application are associated with the token. The method further includes selecting one of the first instance of the first application or the first instance of the second application to provide the notification at the user device based on the token, and providing the notification to the selected one of the first instance of the first application or the first instance of the second application at the user device.
    Type: Grant
    Filed: December 13, 2017
    Date of Patent: June 23, 2020
    Assignee: Google LLC
    Inventors: Benoît de Boursetty, Nathan Hunt
  • Patent number: 10685338
    Abstract: A system, apparatus, and method for expediting the authorization of an electronic payment transaction. Authorization of a transaction at a node of an authorization network is the result of inferring the trustworthiness of a customer to the transaction using data obtained from a different node of the authorization network. The authorization process is expedited by relying on the previous authentication decision of another node, where the previous decision may have been made based on a different payment device or different user inputs. The invention uses a decision made by a first node in the authorization network as a proxy for the authorization decision at a different node, thereby transferring the trustworthiness of a consumer, consumer's device, payment device, or other aspect of the transaction from the first node to the second.
    Type: Grant
    Filed: August 5, 2019
    Date of Patent: June 16, 2020
    Assignee: Visa International Service Association
    Inventor: Ayman Hammad
  • Patent number: 10678661
    Abstract: Provided are a computer program product, system, and method for processing a recall request for data migrated from a primary storage system having data mirrored to a secondary storage system mirroring data from the primary storage system to the at least one secondary storage system. The primary storage system receives a recall request to recall a data object that was migrated from the primary storage system to a remote storage location. The recall request is transmitted to each of the at least one secondary storage system to cause each of the at least one secondary storage system receiving the recall request to directly retrieve the data object from the remote storage location. The primary storage system retrieves the data object from the remote storage location in response to the recall request. The primary storage system returns complete to the recall request in response to the data object being confirmed as restored to the primary storage system and the at least one secondary storage system.
    Type: Grant
    Filed: March 20, 2017
    Date of Patent: June 9, 2020
    Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATION
    Inventors: Gregory E. McBride, Carol S. Mellgren, David C. Reed
  • Patent number: 10673836
    Abstract: Method, system, and programs for performing two-factor authentication for a controlled access application via one or more third-party host verification servers. An example method includes receiving a request to a controlled access application after a user has successfully logged into an enterprise system with a first Identifier (ID) factor, the controlled access application requiring additional authentication with a second ID factor, obtaining first information to complete the second ID factor, at least some of the first information being obtained from the user, and generating a first web form using the first information. The method also includes submitting the first web form to a host verification server, receiving an indication of successful verification from the host verification server; and initiating, in response to receiving the indication of successful verification, access to the controlled access application.
    Type: Grant
    Filed: April 30, 2018
    Date of Patent: June 2, 2020
    Assignee: DRFIRST.COM, INC.
    Inventor: Zilong Tang
  • Patent number: 10663956
    Abstract: An I/O-abstracted configuration is defined for a field device that has not yet been assigned or allocated to communicate via a particular I/O device or I/O network within a plant, and this configuration is stored in a device placeholder object in a back-end environment of the plant. Thereafter other objects, modules, applications, user interfaces, etc., that are to execute in the back-end environment of the plant to communicate with the field device during on-line operation of the plant may be designed, built, configured, and tested using the device placeholder object without any actual communications with the field device and without assigning the device placeholder object to a particular I/O channel or I/O network.
    Type: Grant
    Filed: October 12, 2016
    Date of Patent: May 26, 2020
    Assignee: FISHER-ROSEMOUNT SYSTEMS, INC.
    Inventors: Larry O. Jundt, Gary K. Law, Cristopher Ian S. Uy, Deborah R. Colclazier, Sergio Diaz, Julian K. Naidoo, Neil J. Peterson, Kent A. Burr, Daniel R. Strinden
  • Patent number: 10657273
    Abstract: A dynamic data minimization server implements minimization protocols to entity-specific information based on access rights (e.g., privacy rights) of a requesting entity. The minimization may be applied on the fly (e.g., as the entity-specific information is requested) and the level, type, protocol, etc., of encryption (or other minimization process) may be selected based on a particular type of a data item. The dynamic data minimization server may determine and apply transformation functions, such as encryption, to items of protected information, transforming those items of protected information into items of minimized information. If a requesting entity has appropriate rights, the dynamic data minimization server may selectively apply a reverse transformation function, such as decryption, to recover the original information.
    Type: Grant
    Filed: March 5, 2018
    Date of Patent: May 19, 2020
    Assignee: Palantir Technologies Inc.
    Inventors: Kyle Erickson, Nicholas Miyake, Dominique Alessi
  • Patent number: 10652332
    Abstract: Systems and methods are provided for dynamically authorizing access to content stored on a front-end system by one or more applications hosted on a remote back-end system. The content stored on the front-end system may be static files. The front-end system may store content in distinct content storage locations. Each content storage location may correspond to a respective application hosted by the back-end system. In one embodiment, there may be multiple back-end systems each hosting one or more applications. Each application on the back-end system may employ operation logic to determine authorization to a content storage location associated with the application.
    Type: Grant
    Filed: July 9, 2018
    Date of Patent: May 12, 2020
    Assignee: Oracle International Corporation
    Inventors: Darrel Laursen, Yang Liu, Antonia M. Garcia, Xia Rao
  • Patent number: 10623408
    Abstract: Aspects of the present disclosure relate to the generation and delivery of content including unique and shared components. A content delivery network service provider can obtain requests for content from client computing devices. Based on information provided in the request or otherwise managed by executable code on the client computing device, the CDN service provider obtains one or more pieces of content that may be shared by more than one user or client computing devices. Additionally, the CDN service provider obtains one or more pieces of content that will not be shared by more than one user or more than one client computing device. Responsive to the content request, the CDN service provider can combine the one or more pieces of shared content and the one or more pieces of unique content and deliver the combined content to the requested client computing device.
    Type: Grant
    Filed: April 2, 2012
    Date of Patent: April 14, 2020
    Assignee: Amazon Technologies, Inc.
    Inventors: Bradley E. Marshall, Tal Saraf, Craig W. Howard, David Alexander Dunlap, Nicholas J. Maniscalco
  • Patent number: 10616280
    Abstract: Embodiments of the present invention provide an automated network security system for dynamically managing network security rules. The system uses a cognitive engine to capture network traffic and analyze behavioral data about said network traffic. Based on analysis of the behavioral data, the system may identify one or more vulnerabilities in the network security system and determine one or more changes to the network security rules to remedy the one or more vulnerabilities. The system further uses a robotic process automation system to test, simulate, and implement the one or more changes to the network security rules for the network.
    Type: Grant
    Filed: October 25, 2017
    Date of Patent: April 7, 2020
    Assignee: BANK OF AMERICA CORPORATION
    Inventor: Sasidhar Purushothaman
  • Patent number: 10592650
    Abstract: Some embodiments include a method of providing security and privacy for a message sender. The method can include a messaging application determining that a messaging interface of the computing device is active and is revealing or about to reveal the electronic message. The messaging application can identify a recipient account of a messaging server system that is associated with the electronic message according to the electronic message or the messaging server system. The messaging application can then monitor a data feed from a sensor of the computing device to detect a biometric pattern that matches against a biometric profile model associated with the recipient account utilizing a biometric recognition process. In response to determining that the detected biometric pattern does not match the biometric profile model associated with the recipient account, the messaging application can activate a privacy shield to prevent content of the electronic message from being revealed.
    Type: Grant
    Filed: October 17, 2017
    Date of Patent: March 17, 2020
    Assignee: FaceToFace Biometrics, Inc.
    Inventors: Eric Leuthardt, Scott Stern
  • Patent number: 10586618
    Abstract: Among other things, a user of a browser is exposed simultaneously to three interfaces: A viewing interface for at least one image of a subject that is stored on a device on which the browser is running, a decision support interface that aids the user in determining the state of the subject based on the image, and a template interface that aids the user in capturing uniform descriptive information about the state of the subject. At least two of the viewing interface, the decision support interface, and the template interface operate cooperatively so that actions of the user with respect to one of the two interfaces causes changes in content exposed by the other of the two interfaces.
    Type: Grant
    Filed: May 7, 2014
    Date of Patent: March 10, 2020
    Assignee: LIFETRACK MEDICAL SYSTEMS PRIVATE LTD.
    Inventors: Eric Schulze, Brendan Philip Rees, Dennis Mejia
  • Patent number: 10585822
    Abstract: A method of operating a storage device controller which controls a storage device includes receiving a debugging data request command through a peripheral component interconnect express (PCIe) interface of the storage device controller from outside of the storage device controller, and storing debugging data in a register included in the PCIe interface.
    Type: Grant
    Filed: July 13, 2018
    Date of Patent: March 10, 2020
    Assignee: SAMSUNG ELECTRONICS CO., LTD.
    Inventors: Chul-Woo Lee, Wonhee Cho
  • Patent number: 10560455
    Abstract: Authentication systems and methods can selectively authenticate a request to access a resource data store storing access rights associated with a user device. The systems and methods can scalably execute challenges workflows as part of the authentication process. For example, a request to access one or more access rights stored in the data store can be received from the user device. The user device can be authenticated using challenge workflows selected based on a device identifier of the user device. The selected challenge workflows can be executed to determine whether or not to grant access to the access rights stored in the resource data store.
    Type: Grant
    Filed: January 18, 2019
    Date of Patent: February 11, 2020
    Assignee: Live Nation Entertainment, Inc.
    Inventors: Dan Cernoch, Ajay Pondicherry, David Refsland, Kenneth Ives-Halperin
  • Patent number: 10554769
    Abstract: Among other disclosures, a method may include collecting historical communication data and personal data relating to a portion of a plurality of communications, a sender of one or more of the communications or one or more recipients of the communications. The method may include depositing the collected data into a repository of historical communication data and personal data. The method may include presenting one or more items in the repository on a mobile device, in response to user behavior.
    Type: Grant
    Filed: July 1, 2017
    Date of Patent: February 4, 2020
    Assignee: OATH INC.
    Inventors: Matthew Brezina, Adam Smith, Jeffrey Bonforte
  • Patent number: 10536950
    Abstract: A method for detecting interferences in wireless networks is disclosed. A salient idea is to use a first access point for detecting an interference disturbing a wireless device associated with a second access point, wherein the device at the origin of the interference is in the range of the first access point, but not in the range of the second access point. Leveraging on the difference of coverage between different wireless networking technologies, the first access point is capable of detecting both a data traffic of a second access point and a short-range interfering device in a same frequency channel.
    Type: Grant
    Filed: February 12, 2018
    Date of Patent: January 14, 2020
    Assignee: INTERDIGITAL CE PATENT HOLDINGS
    Inventors: Thierry Filoche, Ghislaine Pondaven, Pascal Le Guyadec, Christoph Neumann
  • Patent number: 10536853
    Abstract: A method for network authentication of wireless devices at a gateway is provided that includes scanning a wireless network by the gateway to discover unjoined wireless devices, joining a discovered wireless device to the gateway using a non-internet protocol implemented by the wireless device, wherein the joining results in an encrypted connection between the gateway and the wireless device, and authenticating the discovered wireless device to the gateway via the encrypted connection, wherein authentication is performed according to an authentication protocol of a network protocol management layer of the gateway.
    Type: Grant
    Filed: March 3, 2017
    Date of Patent: January 14, 2020
    Assignee: TEXAS INSTRUMENTS INCORPORATED
    Inventors: Ramanuja Vedantham, Alejandro Martin Lampropulos, Arvind Kandhalu Raghu
  • Patent number: 10530774
    Abstract: Disclosed is a system for delegating authentication of an untrusted application executing on a client device. For delegated authentication, an untrusted application relies on a trusted application executing in the same environment for authentication purposes. The delegated authentication process avoids requiring the user of the untrusted application to provide authentication credentials. The disclosed system for delegating authentication enables any trusted application executing in the same computing environment to authenticate the untrusted application.
    Type: Grant
    Filed: February 5, 2018
    Date of Patent: January 7, 2020
    Assignee: Twitter, Inc.
    Inventors: Jeffrey Seibert, Jr., Michael Ducker
  • Patent number: 10510061
    Abstract: A method, electronic device, and computer readable storage medium, for capturing user inputs in a fillable electronic form into an electronic wallet. A method includes: populating fields in a fillable electronic form with secured information from record fields in an electronic wallet at the electronic device while in an online transaction with an online vendor's server; receiving user input entering changes into the fields in the fillable electronic form overwriting the secured information to changed information in the fillable electronic form; upon determining that changes have been made in any field in the fillable electronic form, copying the changed information from the fields in the fillable electronic form and writing the changed information into corresponding record fields as secured information in the electronic wallet; and continuing with the online transaction using the fillable electronic form with the online vendor's server.
    Type: Grant
    Filed: September 22, 2017
    Date of Patent: December 17, 2019
    Assignee: BlackBerry Limited
    Inventor: Eric Chan
  • Patent number: 10498769
    Abstract: A method, comprising: obtaining a current version of a policy associated with an application or website; comparing the current version against a previous version to identify differences in key words or phrases, each difference corresponding to interactions of the application or website, the interactions comprising use of computing device functionality or personal information; for each difference previously associated with a particular level of privacy risk, retrieving the particular level from a database; for each difference not previously associated with the particular level: generating a respective level of privacy risk associated with particular interactions of the application or website corresponding to the difference; associating the respective level to the difference; and storing in the database the difference and the respective level associated with the difference; generating a current privacy risk score based on each of the particular levels and on each of the respective levels associated with the one
    Type: Grant
    Filed: April 9, 2018
    Date of Patent: December 3, 2019
    Assignee: The Privacy Factor, LLC
    Inventor: Mark A. Sartor
  • Patent number: 10499453
    Abstract: A method and a device for Bluetooth connection control for multiple playing devices, and a music playing system are provided. The method includes the following. A broadcast message is sent after a playing device is turned on, where the broadcast message is configured to inquire whether a Bluetooth function is enabled in other playing devices within the same music playing system of the playing device. Whether a response returned by the other playing devices is detected according to the broadcast message is received, where the response is configured to indicate that a playing device that returned the response has enabled the Bluetooth function. The Bluetooth function of the playing device is disabled when the response is received by the playing device. The Bluetooth function of the playing device is enabled when no response is received by the playing device.
    Type: Grant
    Filed: November 20, 2018
    Date of Patent: December 3, 2019
    Assignee: Guangdong Oppo Mobile Telecommunications Corp., Ltd.
    Inventor: Shangbo Lin
  • Patent number: 10482281
    Abstract: Techniques for providing a real-time service that protects personal data of clients from customer service agents are provided. Customer data that includes personal data indicative of sensitive information of a customer can be received from the customer. The personal data within the received customer data can be detected and a token that does not include the sensitive information of the customer can be generated. The personal data and the generated token can be stored along with data indicating a relationship between the token and the personal data. The personal data in the received customer data can be replaced by the token to form modified customer data. The modified customer data can be provided to a customer service representative. The token within the modified customer data can later be detected and associated with the personal data without revealing the personal data to the customer service representative.
    Type: Grant
    Filed: October 8, 2018
    Date of Patent: November 19, 2019
    Assignee: Capital One Services, LLC
    Inventors: Fardin Abdi Taghi Abad, Austin Grant Walters, Jeremy Edward Goodsitt, Reza Farivar, Vincent Pham, Mark Louis Watson, Kenneth Taylor, Anh Truong
  • Patent number: 10445493
    Abstract: An information processing system made up of a plurality of controllers in a vehicle has a tamperproof configuration by including, in a specific controller among the plurality of controllers: a starter putting the specific controller among the plurality of controllers in a executable state which enables the specific controller among the plurality of controllers to execute a preset program; a determiner determining, before the specific controller among the plurality of controllers is put in the executable state, whether software that is memorized in a preset memory area and at least includes the preset program is tampered; and an outputter outputting, to one of processing devices outside the vehicle. In such manner, the tampering of the software is quickly detectable while preventing an increase of communication load of a communication network and/or the information processing system.
    Type: Grant
    Filed: March 15, 2017
    Date of Patent: October 15, 2019
    Assignee: DENSO CORPORATION
    Inventors: Hiroki Suzuki, Tomohisa Kishigami
  • Patent number: 10437503
    Abstract: A data alignment (DA) computing device is communicatively coupled to a first and a second data storage device. The first data storage device stores an array of partitions including a first subset and a second subset of partitions, and metadata associated with the array that includes a reference pointer for each partition. The DA computing device updates the metadata to remove the reference pointers for the second subset of partitions and thereby remove the second subset from the array, stores a partition table defining the first subset within the first data storage device and the second subset within the second data storage device, stores the metadata associated with the array within the second data storage device, updates the second data storage device to include the second subset of partitions, and updates the metadata stored by the data storage devices to link the second subset of partitions to the array.
    Type: Grant
    Filed: August 2, 2017
    Date of Patent: October 8, 2019
    Assignee: MASTERCARD INTERNATIONAL INCORPORATED
    Inventors: Wesley Alan Szwarc, Gerard Tierney
  • Patent number: 10430609
    Abstract: A method and system are provided. The method includes separating initial user-inputted data into terms. The method further includes determining which terms are identity-related terms relating to an identity of a user, and which terms are clarity-related terms relating to subject-matter clarity. The method also includes calculating a population. The population is a number of individuals satisfying the identity-related terms. The method additionally includes assigning, for each clarity-related term, a clarity level, representing a respective amount of clarity for a respective one of the clarity-related terms. The method further includes creating amended user-inputted data by amending the initial user-inputted data such that the population is greater than or equal to a first threshold, and such that the clarity level, assigned for each clarity-related term, is greater than or equal to a second threshold.
    Type: Grant
    Filed: September 23, 2016
    Date of Patent: October 1, 2019
    Assignee: International Business Machines Corporation
    Inventors: Kohichi Kamijoh, Masaki Ono
  • Patent number: 10404460
    Abstract: The present invention provides a data management method, a computer program for the same, a recording medium thereof, a user client for executing the method, and a security policy server. The method is executed by a user client that is network-linked to a DB server and a security policy server, the method including: 1) recognizing a user ID through a user authentication; 2) detecting whether a DB control application is executed; 3) determining whether the application is allowed to be used for the user ID; 4) determining whether the DB server is allowed to be accessed by the user ID when determining that the application is allowed to be used; 5) allowing access to the DB server when determining that the DB server is allowed to be accessed; and 6) when data is transmitted from the DB server, encrypting and managing the data according to a preset user right policy.
    Type: Grant
    Filed: August 26, 2015
    Date of Patent: September 3, 2019
    Assignee: FASOO. COM CO., LTD
    Inventors: Kyugon Cho, Ohseung Kwon, Junghyun Cho