Network Resources Access Controlling Patents (Class 709/229)
  • Patent number: 10044726
    Abstract: Described herein are systems and methods for performing potentially malicious activity detection operations. Embodiments may include receiving data associated with a plurality of authentication messages; analyzing the received data associated with the plurality of authentication messages; determining, based on the analyzing, a plurality of characteristics of the data associated with the authentication messages; receiving data associated with a new authentication message communicated over the network; determining a plurality of characteristics of the data associated with the new authentication message; comparing at least one determined characteristic of the new authentication message data with at least one of: a determined characteristic of the plurality of authentication messages data, known valid data, and known invalid data; and generating, based on the comparison, an assessment of whether the new authentication message is indicative of the potentially malicious activity in the network.
    Type: Grant
    Filed: May 5, 2016
    Date of Patent: August 7, 2018
    Assignee: CyberArk Software Ltd.
    Inventors: Andrey Dulkin, Lavi Lazarovitz
  • Patent number: 10044808
    Abstract: In certain example embodiments, heterogeneous cloud-store provider access systems (HCPAS), and/or associated methods, are provided. Certain example embodiments provide users with managed access to cloud stores distributed across multiple, disparate providers, in a device-independent manner. A common API and user-friendly user interface allow for a single sign-on access to the various providers. Advantageously, users need not download and install differing cloud store provider access software for each provider, device, and/or provider-device combination, used to access the cloud drives. Instead, by using the HCPAS, a user can manage the distributed storage and provide improved common access, e.g., in terms of administrative and operational functions.
    Type: Grant
    Filed: December 20, 2012
    Date of Patent: August 7, 2018
    Assignee: SOFTWARE AG USA, INC.
    Inventor: Prasadarao Yendluri
  • Patent number: 10038685
    Abstract: Methods and apparatuses for service request authentication are disclosed to prevent a terminal or a first server that does not sign an agreement with a gateway from bypassing the gateway to directly access a second server. The method includes receiving a service request and determining a session in which the service request is located; determining whether a token corresponding to the session exists, the token corresponding to a session in which a service request from a gateway is located; if the token exists, determining that the authentication of the service request passes and proceeds to process a corresponding service; if the token does not exist, determining that the authentication of the service request fails and the processing of the corresponding service is refused. Thus, since only a session corresponding to service requests forwarded by the gateway can have a token, the authentication of each service request that belongs to such session will pass.
    Type: Grant
    Filed: January 28, 2016
    Date of Patent: July 31, 2018
    Assignee: Alibaba Group Holding Limited
    Inventor: Xiaochuan Zhang
  • Patent number: 10038699
    Abstract: A management device manages information of a task having been executed by users cooperatively. An electronic data access unit accesses electronic data by using authentication information of a corresponding user. A management unit manages, for each task, task information in which pieces of authentication information of the users having participated in the task are associated with access destination information. A receiver receives a request, from a user, for access to the electronic data. When the electronic data access unit needs the authentication information of a user different from the requester user having participated in the task same as the task in which the requester user has participated to access the electric data as a target of the request, the electronic data access unit acquires the authentication information of the different user based on the task information and accesses the electronic data using the acquired authentication information of the different user.
    Type: Grant
    Filed: March 17, 2016
    Date of Patent: July 31, 2018
    Assignee: RICOH COMPANY, LTD.
    Inventor: Kazushige Asada
  • Patent number: 10039002
    Abstract: Various technologies described herein pertain to utilization of shared Wi-Fi. For instance, network access rights of a Wi-Fi network can be controlled by a mobile device of a point of contact for the Wi-Fi network. Moreover, utilization of a Wi-Fi network can be tracked and usage data indicative of historic utilization of the Wi-Fi network can be retained. Further, groups of users between whom Wi-Fi credentials are shared can be created.
    Type: Grant
    Filed: November 4, 2013
    Date of Patent: July 31, 2018
    Assignee: MICROSOFT TECHNOLOGY LICENSING, LLC
    Inventors: Shai Guday, David Neil MacDonald, Tyler Edward Hennessy, Sidharth Nabar, Brent Edward Ford
  • Patent number: 10033535
    Abstract: A method of providing one or more assertions about a subject is provided. The method includes obtaining, at an assertion directory access server and over a network, a first assertion about a first attribute of the subject from a first assertion issuer; obtaining, at the assertion directory access server and over a network, a second assertion about a second attribute of the subject from a second assertion issuer; and providing, from the assertion directory access server, the first assertion and the second assertion to an assertion directory authority server over a network.
    Type: Grant
    Filed: March 16, 2016
    Date of Patent: July 24, 2018
    Assignee: VERISIGN, INC.
    Inventors: Burton S. Kaliski, Jr., Glen Wiley
  • Patent number: 10027661
    Abstract: A method for receiving a virtual machine image comprising configuring a user device to receive a virtual machine image, receive a biometric input from a user, send a request for a virtual machine image to a server, the request including data corresponding to the biometric input, and receive the virtual machine image.
    Type: Grant
    Filed: November 5, 2015
    Date of Patent: July 17, 2018
    Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATION
    Inventors: Eli M. Dow, Thomas D. Fitzsimmons, Tynan J. Garrett, Emily M. Metruck
  • Patent number: 10027777
    Abstract: A mechanism is provided for optimizing web page pre-loading. Source codes of a web page file are analyzed to generate a module dependency graph that describes load dependency relationships between respective modules in the web page file. A load flow graph that indicates load flows of respective modules in the web page file is generated based on the module dependency graph. The load flow graph and the module dependency graph are analyzed to determine pre-load sequences of respective modules in the web page file. A pre-load profile is then generated based on the determined pre-load sequences.
    Type: Grant
    Filed: October 28, 2015
    Date of Patent: July 17, 2018
    Assignee: International Business Machines Corporation
    Inventors: Hao Chen, Ya Bin Dang, Feng Li, Shao Chun Li, Xin Zhou
  • Patent number: 10027770
    Abstract: In an approach for authenticating a user attempting to access to a resource, a processor receives an indication of a user attempting to access a resource within a timeframe, wherein the indication includes a location of the user. A processor identifies a location requirement for the user attempting to access the resource, wherein the location requirement originates from an entry indicating an expected location of the user within the timeframe, and wherein the entry is unmodifiable by the user. A processor determines whether the expected location of the user matches, within a threshold, the received location of the user attempting to access the resource.
    Type: Grant
    Filed: April 21, 2014
    Date of Patent: July 17, 2018
    Assignee: International Business Machines Corporation
    Inventors: Jose Bravo, Jeffery L. Crume
  • Patent number: 10027585
    Abstract: A network routing table includes destination addresses of destination applications hosted on peer nodes of a network. A primary processor registers a first destination application and a second destination application, where the first destination application is the same as the second destination application and both the first destination application and the second destination application have the same destination address. That processor also provides the peer nodes and a secondary processor with a copy of the table. When the first destination application is inactivated, all peer nodes and the secondary processor are provided with a copy of an updated routing table indicating inactivation of the first destination application and routing of the application message to the second destination application.
    Type: Grant
    Filed: September 14, 2017
    Date of Patent: July 17, 2018
    Assignee: Nasdaq Technology AB
    Inventors: Björn Carlson, Robert Adolfsson
  • Patent number: 10021151
    Abstract: Social network information may be shared across online service providers. Thus, one online service provider M that maintains a membership separate from a second online service provider N may nevertheless use the social network maintained by the second online service provider N to tailor content and/or services based on such social network information.
    Type: Grant
    Filed: July 14, 2014
    Date of Patent: July 10, 2018
    Assignee: Oath Inc.
    Inventors: Barry Appelman, Steven Greenberg
  • Patent number: 10021069
    Abstract: A system and method for facilitating controlled access by a client device to one or more services provided by a server are disclosed. The client device's access to the services provided by the server may be dynamically controlled by a controller, which may generate instructions to an agent to effectuate the access control. The agent may be configured to control one or more access components associated with the server. The instructions generated by the controller may instruct the agent to cause the access control components to grant or remove the client device's access to the services provided by the server. In some implementations, the controller may generate such instructions based on a status of a session established between the controller and the client device.
    Type: Grant
    Filed: October 2, 2015
    Date of Patent: July 10, 2018
    Assignee: Aunigma Network Security Corp.
    Inventors: Karl E. Elliott, Kenneth W. Garrard, Andy Huang, Peter Gratzer
  • Patent number: 10021158
    Abstract: Described embodiments provide user equipment for converting a first type data stream to a second type data stream. The user equipment may include a request message transmitting unit, a first stream receiving unit, a converting unit, and a reproducing unit. The request message transmitting unit may transmit a content request message to a streaming server in order to request a predetermined content stored in the streaming server. The first stream receiving unit may receive, from the streaming server, a first type data stream created from the requested content based on a first protocol in response to the content request message. The converting unit may convert the received first type data stream to a second type data stream. The second type data stream may be a data stream generated based on a second protocol. The reproducing unit may reproduce the requested content based on the second type data stream.
    Type: Grant
    Filed: January 11, 2013
    Date of Patent: July 10, 2018
    Assignee: KT CORPORATION
    Inventors: Soon-Uk Seol, Seung-Jae Lee
  • Patent number: 10015136
    Abstract: This disclosure relates to controlling unwanted traffic to a device (40) in a communication network (30). The idea is to provide a more fine-grained control of incoming packets or connection attempts, by using an inclusive firewall (10) i.e. a firewall operating on “white-listed” traffic to a device (40). The disclosure, relates to a method for controlling a data flow to a device in a communication network, using a firewall located in the path between said device and a source node. The method comprises receiving (210), in said firewall, at least one data packet of said data flow. The firewall then reads (220), a predefined selection of bits of said at least one data packet, wherein the selection of bits is contained in at least one field of said data packet. The at least field or fields, including the selection of bits, carry a first type information. The firewall then forwards (240) the at least one data packet to the device, if selection of bits fulfills a policy of said device.
    Type: Grant
    Filed: January 31, 2013
    Date of Patent: July 3, 2018
    Assignee: TELEFONAKTIEBOLAGET LM ERICSSON (PUBL)
    Inventors: Jari Arkko, Fredrik Garneij
  • Patent number: 10009479
    Abstract: Network devices receive configuration settings for a portable data account with a service provider. The portable data account provides for mobile data over a broadband cellular network. The network devices receive, via a mobile device, user credentials, for a user, to activate a portable data service for the mobile device. The network devices determine that the user credentials correspond to the portable data account, the portable data account being different than a default account associated with the mobile device. The network devices map a temporary mobile directory number (MDN), which is associated with the portable data account, to a unique identifier for the mobile device, and enforce the configuration settings for a portable data session, associated with the temporary MDN, for the portable data account.
    Type: Grant
    Filed: December 12, 2016
    Date of Patent: June 26, 2018
    Assignee: Verizon Patent and Licensing Inc.
    Inventors: Che D. Phillip, Praveen Atreya, Mervin G. Johnson, Manian Krishnamoorthy
  • Patent number: 10009480
    Abstract: A system and method for the management of a device, including the establishment and enforcement of policies/rules associated with feature or functions that may be performed with the device. Modern devices are capable of many things, including making and receiving calls, exchanging data, playing games and music, sending and receiving email, accessing web sites, and paying for goods and services. Depending on who is using the device, such as a child, student, or an employee, there may be a need or desire to regulate how that device can be used and to determine who will pay for what goods or services. In addition to providing all of the features associated with a device, service providers need to be able to establish and enforce rules (policies) regulating how and when that device can be used and who will pay for a good or service requested by the user of the device.
    Type: Grant
    Filed: January 6, 2015
    Date of Patent: June 26, 2018
    Assignee: KAJEET, INC.
    Inventors: Matthew Donald Baker, Michael Merrill Flood, Steven Ira Geller, Douglas Owen Kesser, Daniel John Neal, Carol Ann Politi, Ben Julian Weintraub
  • Patent number: 10003652
    Abstract: In an embodiment, a subordinate mobile communication device (SMCD) receives a content access profile from a dispatcher. The content access profile includes (i) proxy server selection criteria to facilitate the SMCD to select between a plurality of proxy servers based on a current transport mechanism type (e.g., WiFi, 3G, Satellite, etc.), each of the plurality of proxy servers being configured by the dispatcher to provide different degrees of support for Internet-based services to the SMCD, and/or (ii) a set of Internet-based service access rules to facilitate the SMCD to independently determine whether to grant or deny access by the SMCD to Internet-based services based on the current transport mechanism type of a connection between the SMCD and an access network. The SMCD determines its current transport mechanism type and uses the content access profile to selectively engage with a given Internet-based service.
    Type: Grant
    Filed: July 27, 2012
    Date of Patent: June 19, 2018
    Assignee: OMNITRACS, LLC
    Inventors: David S. Cha, Daniel A. Deninger, Kenneth H. Oertle, Jason M. Riggs
  • Patent number: 10002332
    Abstract: Methods and systems for resource and organization achievement are described. In one embodiment, outcome data associated with a resource may be received. The outcome data may include an outcome time period, an outcome title, an outcome priority, an outcome status, and an outcome access level. The outcome status may identify progress by the resource toward an outcome. The outcome access level may define resource access to an outcome item. The outcome data may be stored in a database. A display of an outcome item associated with the resource may be generated based on at least a portion of the outcome data. The outcome item may represent the outcome for the resource. Additional methods and systems are disclosed.
    Type: Grant
    Filed: May 21, 2010
    Date of Patent: June 19, 2018
    Assignee: Shared Performance, LLC
    Inventor: David T. De Spong
  • Patent number: 10002171
    Abstract: Various systems and methods can provide a flexible database schema. One method can store information identifying a first entity in a first table. A unified data model includes several tables, including the first table and a metadata table. Each of the tables stores information describing one or more entities belonging to a respective archetype. The first table already stores information identifying a second entity when the information identifying the first entity is stored. The second entity is already related to another entity when the information identifying the first entity is stored. The first entity is a new type of entity not already stored in the first table when the information identifying the first entity is stored. The method then stores metadata associated with the first entity in a metadata table. The metadata then identifies the new type of entity.
    Type: Grant
    Filed: May 11, 2015
    Date of Patent: June 19, 2018
    Assignee: Symantec Corporation
    Inventors: Craig Robert King, Richard K. Freeman
  • Patent number: 10002204
    Abstract: A system includes reception of time-series tuples of a first portion of business data, automatic generation of a weighted graph describing relationships between the time-series tuples, automatic generation of one or more causal loop diagrams based on the relationships and on one or more knowledge models associated with the business data, automatic transformation of each of the one or more causal loop diagrams into a respective state flow diagram, automatic annotation of each of the one or more state flow diagrams with parameters and equations, generation of a simulated system based on the one or more annotated state flow diagrams, and evaluation of the simulated system based on a second portion of the business data.
    Type: Grant
    Filed: May 19, 2015
    Date of Patent: June 19, 2018
    Assignee: SAP SE
    Inventors: Marc Drobek, Wasif Gilani, David Redlich, Thomas Molka
  • Patent number: 10003550
    Abstract: An apparatus comprising a method for allocating shared processing resources, comprising the steps of (A) predicting a first amount of processing resources needed to complete each of a plurality of transcoding jobs in a work queue of a project, (B) determining a second amount of processing resources available prior to processing the project and (C) adding processing resources needed to complete the project. The processing resources are added in a fixed number of predetermined processing units. The fixed number of computer resources are added (a) to minimize an overall use of said processing resources needed to complete the project and (b) to complete the project within a target time.
    Type: Grant
    Filed: March 14, 2014
    Date of Patent: June 19, 2018
    Assignee: Amazon Technologies
    Inventors: Trevor Babcock, Dustin Encelewski
  • Patent number: 10003594
    Abstract: Authentication mechanisms are disclosed. For example, an enterprise associated number or a social security number (SSN) can be provided to enter a first level. Then, any one of a ZIP code number, a device identifier, a date of birth, and a portion of the SSN can be provided to access applications in the first level. Lastly, a PIN can be provided to enter a second level of the enterprise. Additionally, these authentication mechanisms can be added and/or changed. In the former case, if a user used a SSN to enter the mentioned first level, then a date of birth can be used to update an authentication mechanism. Alternatively, if a user used an enterprise number to gain such access, then part of the SSN can be used for the update. If the user wants to change the authentication mechanism, the date of birth can be used for the update.
    Type: Grant
    Filed: July 17, 2017
    Date of Patent: June 19, 2018
    Assignee: United Services Automobile Association
    Inventors: Richard E. Moore, Hector J. Castillo
  • Patent number: 9992180
    Abstract: Systems and methods for protecting communications between at least two nodes protect the identity of a node requesting information, provide content of communications being sent and/or obscuring a type of communications being sent. Varying degrees of protection options including encryption, intermediate node termination and direct node communications are provided.
    Type: Grant
    Filed: April 22, 2016
    Date of Patent: June 5, 2018
    Assignee: SMART SECURITY SYSTEMS LLC
    Inventor: Kenneth C. Tola, Jr.
  • Patent number: 9990473
    Abstract: Securely sharing content between a first system and a second system is provided. A hardware-based root of trust is established between the first system and a server. Content requested by a user and an encrypted license blob associated with the content is received by the first system from the server. A first agent on the first system connects with a second agent on the second system. The encrypted license blob and a sub-license request are sent from the first agent to a security processor on the first system. The first security processor decrypts the encrypted license blob, validates the sub-license request, and if allowed, creates a sub-license to allow the second system to play the content. The first security processor sends the sub-license to a security processor on the second system. The first system provides access to the content to the second system for future playback according to the sub-license.
    Type: Grant
    Filed: December 8, 2011
    Date of Patent: June 5, 2018
    Assignee: Intel Corporation
    Inventors: Mojtaba Mirashrafi, Mousumi M. Hazra, Ramesh Pendakur, Daniel Nemiroff
  • Patent number: 9986083
    Abstract: An information transmitting method includes the following steps: generating a connecting code and displaying the connecting code on a display of the information sending device; receiving a second unique identity from the server; obtaining contents selected by a user; generating an information sending request; and sending the information sending request to the server. According to above information transmitting method, by establishing a connection between two terminals, or two browser applications, information of different categories can be efficiently transmitted from one terminal to the other terminal. In addition, this disclosure also publishes an information transmitting device and an information transmitting system.
    Type: Grant
    Filed: June 27, 2014
    Date of Patent: May 29, 2018
    Assignee: TENCENT TECHNOLOGY (SHENZHEN) COMPANY LIMITED
    Inventor: Yisha Lu
  • Patent number: 9985843
    Abstract: According to one exemplary embodiment, a method for parallel processing a network of nodes having at least one ordering constraint and at least one conflict constraint is provided. The method may include breaking a plurality of loops caused by the at least one ordering constraint. The method may also include determining a node order based on the at least one ordering constraint. The method may then include determining a conflict order based on the at least one conflict constraint, whereby no new loops are created in the network. The method may further include performing parallel processing of the network of nodes based on the node order and the conflict order.
    Type: Grant
    Filed: February 27, 2015
    Date of Patent: May 29, 2018
    Assignee: International Business Machines Corporation
    Inventors: Hemlata Gupta, David J. Hathaway, Kerim Kalafala, Ronald D. Rose
  • Patent number: 9973875
    Abstract: The invention provides a computer-based method for logging a user mobile device onto a server computer system including registering a unique identifier of a user mobile device, receiving a first message from the user mobile device, detecting an Internet Protocol address associated with the user mobile device, receiving the unique identifier corresponding to the Internet Protocol address; and transmitting to the user mobile device a second message.
    Type: Grant
    Filed: January 22, 2013
    Date of Patent: May 15, 2018
    Assignee: IHEARTMEDIA MANAGEMENT SERVICES, INC.
    Inventors: Evan Schwartz, Lasse Hamre, Michael Moss, Dan MacTiernan
  • Patent number: 9973573
    Abstract: Reducing concurrency in a system comprising a plurality of services sending a plurality of concurrent requests to a back-end service through a concurrency reduction service. The concurrency reduction service maps each concurrent incoming request to a key; and determines if the key to which the concurrent incoming request is mapped matches a key mapped from another concurrent incoming request from the plurality of concurrent requests. If the key to which the concurrent incoming request is mapped matches a key mapped from at least one other concurrent incoming request from the plurality of concurrent requests, then the service groups the concurrent incoming request with the at least one other concurrent incoming request to be sent to the back-end service. The concurrency reduction service sends one outgoing request to the back-end service for each of the keys to which the plurality of concurrent incoming requests were mapped.
    Type: Grant
    Filed: June 8, 2016
    Date of Patent: May 15, 2018
    Assignee: International Business Machines Corporation
    Inventors: Timothy M. Burns, Ryan M. Graham, Mark A. Huffman, Todd E. Kaplinger
  • Patent number: 9973549
    Abstract: Aspects of the subject disclosure may include, for example, receiving from a web real-time communications gateway a first request for communication services from a network resource, where the network resource does not utilize a web real-time communications protocol and where the first request is compliant with a markup language that differs from the web real-time communications protocol, directing the network resource to provide the communication services identified in the first request, receiving a first message from the web real-time communications gateway, where the first message is compliant with the markup language, translating the first message to a first updated message conforming to a protocol used by the network resource, where protocol differs from the markup language used for communicating with the web real-time communications gateway, and transmitting the updated first message to the network resource facilitating the communication services identified in the first request.
    Type: Grant
    Filed: November 29, 2016
    Date of Patent: May 15, 2018
    Assignee: AT&T MOBILITY II, LLC
    Inventors: Arturo Maria, Thomas J. Routt
  • Patent number: 9973600
    Abstract: A method for packet inspection in a computer network includes receiving a plurality of network streams from a plurality of client systems at a first load balancer; allocating the network streams across a proxy instances; and inspecting and filtering the network streams by the proxy instances. The method further includes forwarding the filtered network streams to a second load balancer; allocating the filtered network streams to a plurality of application instances; and processing and responding to the network streams at the application instances. The method still further includes inspecting and filtering the responses to the network streams by the proxy instances; and forwarding the response to the client systems.
    Type: Grant
    Filed: May 4, 2016
    Date of Patent: May 15, 2018
    Assignee: SECUREWORKS CORP.
    Inventors: Daniel Good, Sai Bathina, Ihor Bilyy, Seungyoung Kim
  • Patent number: 9965643
    Abstract: This invention discloses a system and method for selective erasure, encryption and or copying of data on a remote device if the remote device has been compromised or the level of authorization of a roaming user in charge of the remote device has been modified.
    Type: Grant
    Filed: April 28, 2017
    Date of Patent: May 8, 2018
    Assignee: BlackBerry Limited
    Inventors: Daniel J. Mendez, Mason NG
  • Patent number: 9959195
    Abstract: An agent installed on application server having a WSGI web application dynamically instruments that web application. The agent may modify the application via instrumentation such that it can be monitored without specific details of the WSGI application framework. A configuration file may be modified upon detecting a call to the application configuration file through a gateway interface that receives the call. After modifying the configuration file, the modified configuration file is executed in response to the call. Additionally, for subsequent calls to that particular web application, the WSGI gateway will call the modified WSGI configuration file for execution instead of the original WSGI file.
    Type: Grant
    Filed: April 29, 2015
    Date of Patent: May 1, 2018
    Assignee: Cisco Technology, Inc.
    Inventors: Sanjay Nagaraj, Dan Koepke
  • Patent number: 9955519
    Abstract: A communication system maintains a signal processing license within a memory of the communication system. The signal processing license allows the communication system to perform a license-enabled signal processing function on signals received from one or more devices external to the communication system while the signal processing license is maintained within the memory. As such, the communication system detects that an additional communication system is within a transfer range of the communication system, and, in response, performs a transfer operation in which the signal processing license is transferred from the communication system to the additional communication system such that the signal processing license is no longer maintained within the memory once the transfer operation is completely performed.
    Type: Grant
    Filed: April 28, 2017
    Date of Patent: April 24, 2018
    Assignee: Sonova AG
    Inventor: Marc Secall
  • Patent number: 9953642
    Abstract: A robot apparatus including an input unit to receive a voice command from a user, a determination unit to determine whether a voice command is repeated a predetermined number of times, and a control unit to register a shortcut command to shorten a voice command if it is determined a voice command is repeated a predetermined number of times. A shortcut command to shorten a voice command of a user is generated, and thus user convenience is enhanced.
    Type: Grant
    Filed: December 19, 2008
    Date of Patent: April 24, 2018
    Assignee: SAMSUNG ELECTRONICS CO., LTD.
    Inventor: Hyun-ryong Jung
  • Patent number: 9954861
    Abstract: Novel tools and techniques might provide for implementing application, service, and/or content access control. Based at least in part on a consumer's choice of applications, services, content, and/or content providers—particular in exchange for a subsidy on content and/or network access fees provided to the consumer by chosen content providers—, a computing system may determine whether access to applications, services, and/or content not associated with the chosen content providers (“other content”) should be allowed or restricted. If restricted, the computing system might utilize various network access techniques and/or technologies to block the consumer's access to the other content, to allow access to the other content on a charge per access basis, or to allow access to the other content at reduced network access speeds. In some embodiments, an access provider (e.g., an Internet service provider, etc.) might perform both determination and implementation of content access and restriction.
    Type: Grant
    Filed: January 21, 2015
    Date of Patent: April 24, 2018
    Assignee: CenturyLink Intellectual Property LLC
    Inventors: Michael J. Fargano, Charles I. Cook, Kevin M. McBride, John T. Pugaczewski
  • Patent number: 9948674
    Abstract: An origin server selectively enables an intermediary (e.g., an edge server) to shunt into and out of an active TLS session that is on-going between a client and the origin server. The technique allows for selective pieces of a data stream to be delegated from an origin to the edge server for the transmission (by the edge server) of authentic cached content, but without the edge server having the ability to obtain control of the entire stream or to decrypt arbitrary data after that point. The technique enables an origin to authorize the edge server to inject cached data at certain points in a TLS session, as well as to mathematically and cryptographically revoke any further access to the stream until the origin deems appropriate.
    Type: Grant
    Filed: December 26, 2016
    Date of Patent: April 17, 2018
    Assignee: Akamai Technologies, Inc.
    Inventors: Charles E. Gero, Michael R. Stone
  • Patent number: 9948662
    Abstract: Systems and methods for optimizing system resources by selectively enabling various scanning functions relating to user traffic streams based on the level of trust associated with the destination are provided. According to one embodiment, a network security device within an enterprise network receives an application protocol request directed to an external network that is originated by a client device associated with the enterprise network. It is determined by the network security device whether a network parameter of the external network is associated with a set of trusted networks. When a result of the determining is affirmative, application of a subset of security features of multiple security features is selectively disabled, based on a trust level associated with the external network, by the network security device while the client device is accessing the external network.
    Type: Grant
    Filed: July 31, 2015
    Date of Patent: April 17, 2018
    Assignee: Fortinet, Inc.
    Inventor: Robert A. May
  • Patent number: 9948722
    Abstract: Disclosed are a path computation element communication protocol (PCEP) session establishment method and device. The technical solution comprises: at a PCC or PCE node device side, before needing to establish a PCEP session, allocating a TCP connection communication end attribute to a PCC or a PCE at either end in the manner of static configuration/dynamic designation or election mechanism automatic allocation; or detecting whether to establish a TCP connection relationship, if not, actively connecting the opposite end, and if a plurality of TCP connection relationships has been established, simultaneously cutting off a plurality of connections at both ends, and reinitiating a TCP connection after waiting a random time respectively. The present invention achieves the establishment of a PCEP session in the multi-PCE cooperation computation scenario under the condition of meeting two constraint conditions which are specified by a protocol.
    Type: Grant
    Filed: April 9, 2013
    Date of Patent: April 17, 2018
    Assignee: ZTE CORPORATION
    Inventors: Xuping Cao, Zhihong Wang, Gang Lu, Jia Qian
  • Patent number: 9940283
    Abstract: The present subject matter discloses methods and systems of application sharing in multi-host computing system (100) running multiple operating systems. In one embodiment, the method for application sharing in a multi-host computing system (100) comprises receiving a request to launch an application in a first operating system of the multi-host computing system (100) from a second operating system of the multi-host computing system (100), generating an application launch request to launch the application and transmitting the application launch request to a widget daemon running on the first operating system using a PCIe to PCIe application redirection engine. The method further comprises initiating an application sharing session between the first operating system of the multi-host computing system (100) from the second operating system of the multi-host computing system (100).
    Type: Grant
    Filed: April 9, 2012
    Date of Patent: April 10, 2018
    Assignee: Ineda Systems Inc.
    Inventors: Balaji Kanigicherla, Sridhar Adusumilli, Sarveshwar Bandi, Narsi Reddy Annapureddy, Chandra Kumar Chettiar, Kishor Arumilli
  • Patent number: 9942216
    Abstract: A method for routing IP packets with IPSec AH authentication is disclosed. The method includes locating overlay edge routers between private domains and their associated NAT routers. Outbound packets from a source private domain are modified by its overlay edge router to include IPSec AH authorization data computed using IP source and destination addresses that match a packet's final source and destination IP address upon final NAT translation immediately prior to delivery to a host of a destination private domain.
    Type: Grant
    Filed: May 1, 2017
    Date of Patent: April 10, 2018
    Inventor: Praveen Raju Kariyanahalli
  • Patent number: 9934079
    Abstract: A system, and computer usable program product for fast remote communication and computation between processors are provided in the illustrative embodiments. A direct core to core communication unit (DCC) is configured to operate with a first processor, the first processor being a remote processor. A memory associated with the DCC receives a set of bytes, the set of bytes being sent from a second processor. An operation specified in the set of bytes is executed at the remote processor such that the operation is invoked without causing a software thread to execute.
    Type: Grant
    Filed: May 27, 2010
    Date of Patent: April 3, 2018
    Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATION
    Inventors: John Bruce Carter, Elmootazbellah Nabil Elnozahy, Ahmed Gheith, Eric Van Hansbergen, Karthick Rajamani, William Evan Speight, Lixin Zhang
  • Patent number: 9930387
    Abstract: Methods and apparatus for conserving bandwidth within a network based on two or more different service levels. In an exemplary embodiment, programming that is simulcast on two or more program channels is mapped to one physical channel during periods when the programming is scheduled at only one service level (e.g., standard definition), thereby conserving bandwidth on the network that would otherwise be consumed by the simultaneous broadcast on the two or more channels. When the programming service level becomes heterogeneous across the channels (e.g., SD and HD simulcast), physical channel(s) supporting the HD content are provided within a local service area only “on-demand” using, for example, a switched digital channel allocation. Accordingly, no HD broadcast occurs within a given area until at least one user requests it, thereby further conserving network bandwidth.
    Type: Grant
    Filed: March 28, 2016
    Date of Patent: March 27, 2018
    Assignee: Time Warner Cable Enterprises LLC
    Inventor: Michael L. LaJoie
  • Patent number: 9930705
    Abstract: A mobile terminal control method includes: acquiring, by a mobile terminal, system permission of an operating system of the mobile terminal; establishing, by the mobile terminal, a connection to a remote control device; receiving, by the mobile terminal, a remote control instruction from the remote control device, the remote control instruction being an instruction recognizable to the operating system of the mobile terminal, and the remote control instruction being used for remote control over the mobile terminal; and recognizing, by the mobile terminal, the remote control instruction by using the operating system, and executing an operation corresponding to the remote control instruction on the basis of the system permission.
    Type: Grant
    Filed: May 19, 2016
    Date of Patent: March 27, 2018
    Assignee: TENCENT TECHNOLOGY (SHENZHEN) COMPANY LIMITED
    Inventor: Danhua Li
  • Patent number: 9930022
    Abstract: There is provided an information processing system, information processing apparatus, and a method of controlling the same. Upon receiving an encrypted application and encrypted license information, the information processing apparatus decrypts the encrypted license information and the encrypted application. It is determined whether or not the decrypted application is a web application, and in the case where the application is determined to be a web application, a URL contained in the application and information contained in the license information are registered, and a display item corresponding to the application is displayed in a menu screen.
    Type: Grant
    Filed: August 7, 2015
    Date of Patent: March 27, 2018
    Assignee: CANON KABUSHIKI KAISHA
    Inventor: Hiroshi Yasuhara
  • Patent number: 9927858
    Abstract: Sleeping device(s) may be changed from a sleeping state to an awake state using a multicast packet that sent to a multicast address of a multicast wake-up group. The packet may include an identifier for one or more particular device(s) in the multicast group, which, when received by the device(s), causes the device(s) to wake up.
    Type: Grant
    Filed: February 29, 2016
    Date of Patent: March 27, 2018
    Assignee: MICROSOFT TECHNOLOGY LICENSING, LLC
    Inventors: Sumit Garg, Murari Sridharan
  • Patent number: 9928086
    Abstract: A method includes providing a computer readable code configured to perform a process of feature management. The computer code includes one or more configurable features having a feature property. The feature property includes a state. The method also includes: running the computer readable code on the local computer; connecting by the local computer with a feature computer server; identifying an instance of an installed computer program including the computer readable code, and retrieving a feature record associated with the installed computer program or the member from the feature server; and configuring a state of one or more of a set of the feature properties of the installed computer program based on a retrieved feature record. A system to perform the method is also described.
    Type: Grant
    Filed: March 14, 2013
    Date of Patent: March 27, 2018
    Assignee: Corel Corporation
    Inventors: Alireza Fakhraei, Matthew Robert Schnarr
  • Patent number: 9930067
    Abstract: A client establishes a network session with a server. The network session is used to establish an encrypted communications session. The client establishes another network session with another server, such as after terminating the first network session. The client resumes the encrypted communications session over the network session with the other server. The other server is configured to receive encrypted communications from the client and forward them to the appropriate server.
    Type: Grant
    Filed: December 18, 2014
    Date of Patent: March 27, 2018
    Assignee: Amazon Technologies, Inc.
    Inventors: Jesper Mikael Johansson, Darren Ernest Canavor, Jon Arron McClintock, Gregory Branchek Roth, Gregory Alan Rubin, Nima Sharifi Mehr
  • Patent number: 9923847
    Abstract: A presence-based capability discovery mechanism for in-call services in the rich communication services (RCS) release 6 suite of services is provided. A method can comprise receiving a unique identifier representing a communication between a first user device and a second user device, the unique identifier comprising a concatenation of a first string, a second string, and a third string, as a function of the second string, performing a look up of a first presence tuple associated with the first user device; and associating the unique identifier to first presence tuple.
    Type: Grant
    Filed: December 9, 2016
    Date of Patent: March 20, 2018
    Assignee: AT&T INTELLECTUAL PROPERTY I, L.P.
    Inventors: Matthew Wayne Stafford, Min Lu
  • Patent number: 9923934
    Abstract: A system and method for establishing a voice over Internet protocol link to a called party's mobile telephony device utilizes push notifications to activate a communications application on the called party's mobile telephony communications device. When a request to establish a voice over Internet protocol link to a mobile device is received by an incoming proxy server of a voice over Internet protocol service provider, the service provider causes a push notification to be sent to the mobile device. The called party can respond to the push notification in a manner that causes a communications application on the mobile device to be activated. Once the push notification has caused the communications application to activate, the communications application sends a special registration request to an outbound proxy server.
    Type: Grant
    Filed: July 26, 2011
    Date of Patent: March 20, 2018
    Assignee: Vonage Business Inc.
    Inventors: Sushant Singh, Daniel Keil, Mark Loeser, Michael South, Pasquale Villani
  • Patent number: 9921961
    Abstract: A multi-level memory management circuit can remap data between near and far memory. In one embodiment, a register array stores near memory addresses and far memory addresses mapped to the near memory addresses. The number of entries in the register array is less than the number of pages in near memory. Remapping logic determines that a far memory address of the requested data is absent from the register array and selects an available near memory address from the register array. Remapping logic also initiates writing of the requested data at the far memory address to the selected near memory address. Remapping logic further writes the far memory address to an entry of the register array corresponding to the selected near memory address.
    Type: Grant
    Filed: January 6, 2017
    Date of Patent: March 20, 2018
    Assignee: Intel Corporation
    Inventors: Christopher B. Wilkerson, Alaa R. Alameldeen, Zhe Wang, Zeshan A. Chishti