Network Resources Access Controlling Patents (Class 709/229)
  • Patent number: 10182071
    Abstract: A system for mitigating network attacks includes a protected network and one or more attack mitigation devices communicatively coupled to the protected network. The attack mitigation devices are configured to receive a request from a host having an IP address and determine whether the IP address is included in a first probabilistic data structure representing addresses of hosts having failed to authenticate using a first authentication procedure. The attack mitigation devices are also configured to perform the first authentication procedure, responsive to a determination that the IP address of the host is not included in the first data structure. The attack mitigation devices are yet further configured to allow the host to access the protected network, responsive to successful completion of the first authentication procedure and to update the first data structure to include the IP address of the host, responsive to unsuccessful completion of the first authentication procedure.
    Type: Grant
    Filed: July 29, 2016
    Date of Patent: January 15, 2019
    Assignee: Arbor Networks, Inc.
    Inventors: Lawrence B. Huston, III, Mathew R. Richardson
  • Patent number: 10180930
    Abstract: Systems and methods of the present invention provide for one or more server computers communicatively coupled to a network and configured to: monitor a character stream; identify characters comprising a domain name request; identify a token in a language character map comprising the characters and associated with a language; generate, using a software translation engine, a translation of the first token into a second language; generate candidate domain names comprising: a domain name comprising the token; and a second domain name comprising the second token; modify, in real time, a user interface control to display the list of candidate domain names.
    Type: Grant
    Filed: May 10, 2016
    Date of Patent: January 15, 2019
    Assignee: Go Daddy Operating Company, Inc.
    Inventors: Wei-Cheng Lai, Yang Zhao
  • Patent number: 10182161
    Abstract: A method for modifying a quality of a connection between a terminal and an application server of a network is described. The application server provides a service to the terminal via the connection. The method includes sending, by the terminal, a quality modification request for a desired modification of a quality of the provided service, and determining, by the network, a condition of the connection to be modified based on the quality modification request. The determined condition to be modified is associated with the quality of the provided service. The method includes determining, by the network, a charging price for the determined condition of the connection to be modified, modifying, by the network, a condition of the connection, and charging, by the network, for modifying the condition of the connection.
    Type: Grant
    Filed: April 27, 2012
    Date of Patent: January 15, 2019
    Assignee: Telefonaktiebolaget L M Ericsson (publ)
    Inventors: Alfredo Gonzalez Plaza, Ricardo Barcena, Jose Luis Mariz Rios
  • Patent number: 10180764
    Abstract: Systems and methods for modifying a social timeline are described. A method for modifying a social timeline includes generating data to display a timeline graphic. The time graphic includes a chronology bar that is associated with at least two dates. The method further includes associating image data with the at least two dates to display images along the timeline graphic. The images describe a life story of an account holder. The method includes generating data to allow the account holder to post a comment to the life story along the timeline graphic.
    Type: Grant
    Filed: September 14, 2012
    Date of Patent: January 15, 2019
    Assignee: Google LLC
    Inventors: Andrew Halliday, Christopher Lunt
  • Patent number: 10178014
    Abstract: A file system includes a plurality of information-processing-devices, a plurality of storage devices and a management device, each connected to a communications network, wherein each information processing devices includes a transmission unit for transmitting state information indicating utilization state of the communications network by the information-processing-device to the management device, and the management device includes a determination unit for determining an information-processing-device to execute an inputted job, and a first storage device, and further determine a first path in the communications network for the information-processing-device to access to the first storage device, a collection unit for collecting the state information, and an alteration unit configured to identify, based on the collected state information, a second storage device enhancing access efficiency and a second path in the communications network enhancing access efficiency, and alter the first storage device and the firs
    Type: Grant
    Filed: October 5, 2015
    Date of Patent: January 8, 2019
    Assignee: FUJITSU LIMITED
    Inventor: Yoshinori Naguchi
  • Patent number: 10178110
    Abstract: Systems and methods are provided for detecting and mitigating a sleep deprivation attack (SDA). A method for detection of the SDA includes one of tracking power consumption rate of a device, incoming request signals received by the device, or an activity duration of one or more physical interfaces of the device. A system for mitigation of the SDA includes the device to be protected from the SDA, a counter to count request signals received by the device from another device, a counter attack circuit to pose one or more security challenges by sending a request message to the other device once a counted number of request signals exceeds a pre-determined number, and a control circuit to terminate connection with the other device if an expected reply based on the request message is not received from the other device within a pre-determined time duration.
    Type: Grant
    Filed: May 25, 2016
    Date of Patent: January 8, 2019
    Assignee: Broadcom Corporation
    Inventor: Sreenadh Kareti
  • Patent number: 10178081
    Abstract: An authentication system according to an embodiment is provided with a service providing apparatus, an IDaaS corporation apparatus, and an authentication providing apparatus. Based on the user ID and SSO request transmitted from the user terminal, the authentication providing apparatus executes authentication processing for the user. If the result of the authentication processing indicates success, the IDaaS corporation apparatus having SSO account information including the SSO account identifier identical to the user ID, permits SSO authentication to be executed for the service identified by the service account identifier included in the service account information associated with the SSO account information. The service providing apparatus transmits information related to the service to the user terminal.
    Type: Grant
    Filed: May 6, 2016
    Date of Patent: January 8, 2019
    Assignees: KABUSHIKI KAISHA TOSHIBA, TOSHIBA SOLUTIONS CORPORATION
    Inventors: Rieko Tsurumi, Akio Nishimura, Tatsuro Ikeda
  • Patent number: 10175920
    Abstract: An information processing apparatus includes: a memory that stores authentication information on a user that utilizes a service provided by a service device in correlation with each application for utilizing the service; a unit that executes the application in response to an instruction from the user; a unit that requests user authentication by acquiring the user authentication information correlated with the executed application from the memory and transmitting the acquired authentication information to the service device; a unit that acquires an authentication result transmitted in response to the authentication information; and a unit that re-requests user authentication, when the authentication result indicates a failure in authentication, by an authentication method different from that used in a case of the failure in authentication, by acquiring user authentication information correlated with an application different from the executed application from the memory and transmitting the acquired authenticat
    Type: Grant
    Filed: March 3, 2017
    Date of Patent: January 8, 2019
    Assignee: FUJI XEROX CO., LTD.
    Inventor: Yutaka Sakai
  • Patent number: 10178082
    Abstract: Disclosed are various embodiments that facilitate bootstrap authentication of a second application by way of a user confirmation via a first application. The first application is authenticated using trusted credentials. A first application is authenticated with an authentication service using the security credential. Text input is sent from the first application to the second application via the network. The text input is sent to a text entry field on the second application.
    Type: Grant
    Filed: June 23, 2017
    Date of Patent: January 8, 2019
    Assignee: Amazon Technologies, Inc.
    Inventors: Harsha Ramalingam, Jesper Mikael Johansson, Bharath Kumar Bhimanaik
  • Patent number: 10178044
    Abstract: Providing a guest with access to content of a social network includes identifying a guest associated with content posted by a user on a social network, sending, via electronic mail (email), a notification to the guest's email address to notify the guest of the content on the social network, receiving, via an identity provider, an identity assertion associated with the guest's email address, and providing, based on the identity assertion, access to the content posted by the user on the social network to allow the guest to view the content, in which the identity provider is identified by a domain of the guest's email address.
    Type: Grant
    Filed: June 27, 2014
    Date of Patent: January 8, 2019
    Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATION
    Inventors: Jonathan F. Brunn, Jessica W. Forrester, Stephen C. Hess, Jeffrey R. Hoy
  • Patent number: 10171483
    Abstract: An intrusion device identifies network data to be sent to a destination endpoint and determines a sensitivity level of the destination endpoint based on asset valuation. The intrusion device identifies a subset of signatures that corresponds to the sensitivity level of the destination endpoint and determines whether the network data includes an intrusion based on the subset of signatures.
    Type: Grant
    Filed: August 23, 2013
    Date of Patent: January 1, 2019
    Assignee: Symantec Corporation
    Inventor: Deb Banerjee
  • Patent number: 10169367
    Abstract: The disclosed embodiments disclose techniques for managing opportunistic locks in a distributed filesystem. Two or more cloud controllers collectively manage distributed filesystem data that is stored in the cloud storage systems; the cloud controllers ensure data consistency for the stored data, and each cloud controller caches portions of the distributed filesystem. During operation, a client sending a request to access a file from a cloud controller also requests an opportunistic lock for the file. If there are no other outstanding client accesses on the other cloud controllers that preclude the requested opportunistic lock, the cloud controller grants the client file access and the opportunistic lock.
    Type: Grant
    Filed: June 6, 2014
    Date of Patent: January 1, 2019
    Assignee: Panzura, Inc.
    Inventors: Yun Lin, John Richard Taylor
  • Patent number: 10171507
    Abstract: Microsegmentation in a heterogeneous software-defined network can be performed by classifying endpoints associated with a first virtualized environment into respective endpoint groups based on respective attributes, and classifying endpoints associated with a second virtualized environment into respective security groups based on respective attributes. Each respective endpoint group can correspond to a respective security group having the same attribute. Each respective endpoint group and corresponding security group can be associated with a respective policy model defining rules for processing associated traffic. Each of the respective security groups can be used to generate a respective network attribute endpoint group, which can include the network addresses of those endpoints in the respective security group. Each respective network attribute endpoint group can inherit the policy model of the respective endpoint group corresponding to the respective security group.
    Type: Grant
    Filed: May 19, 2016
    Date of Patent: January 1, 2019
    Assignee: CISCO TECHNOLOGY, INC.
    Inventors: Praveen Jain, Munish Mehta, Saurabh Jain, Yibin Yang
  • Patent number: 10171438
    Abstract: User input is received from a user for identifying a particular account from among multiple accounts. A set of questions specific for the particular account is selected. Further user input comprising one or more responses to each question of the set of questions is received. A password is generated based on the one or more received responses.
    Type: Grant
    Filed: April 4, 2017
    Date of Patent: January 1, 2019
    Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATION
    Inventors: Alessandro Dinia, Riccardo Rossi, Antonio Secomandi, Viviana Tripodi
  • Patent number: 10171381
    Abstract: Providing a guest with access to content of a social network includes identifying a guest associated with content posted by a user on a social network, sending, via electronic mail (email), a notification to the guest's email address to notify the guest of the content on the social network, receiving, via an identity provider, an identity assertion associated with the guest's email address, and providing, based on the identity assertion, access to the content posted by the user on the social network to allow the guest to view the content, in which the identity provider is identified by a domain of the guest's email address.
    Type: Grant
    Filed: March 10, 2015
    Date of Patent: January 1, 2019
    Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATION
    Inventors: Jonathan F. Brunn, Jessica W. Forrester, Stephen C. Hess, Jeffrey R. Hoy
  • Patent number: 10162950
    Abstract: Mechanisms for controlling access to credentials are disclosed. A computing device receives, at a first time, a request associated with a user to initiate a plurality of actions against a computing resource of a plurality of computing resources, the request including a credential identifier that identifies a credential. A memory is accessed, based on the credential identifier, to retrieve the credential identified by the credential identifier that was stored in the memory at a time prior to the first time, the credential comprising authentication information configured to authenticate the plurality of actions to the computing resource. The computing device communicates the request and the authentication information to an orchestration engine for execution of the plurality of actions against the computing resource.
    Type: Grant
    Filed: June 8, 2017
    Date of Patent: December 25, 2018
    Assignee: Red Hat, Inc.
    Inventors: Michael P. DeHaan, Christopher S. Church, Christopher L. Houseknecht, Matthew W. Jones
  • Patent number: 10164958
    Abstract: Authentication of devices to receive services provided by service providers over communications networks such as open access networks, wherein the provider of the network need not have access to secret information shared between the devices and the service providers. A request is received from a device to receive services from a service provider and is forwarded to the service provider. A challenge and an expected response is received from the service provider and the challenge is forwarded to the device. A response to the challenge is received from the device the device is authenticated to receive services from the service provider if the response received from the device matches the expected response provided by the service provider.
    Type: Grant
    Filed: January 18, 2016
    Date of Patent: December 25, 2018
    Assignee: Entry Point, LLC
    Inventors: Christopher D. Becker, Sneha Kumar Kasera, Jacobus E Van der Merwe
  • Patent number: 10165484
    Abstract: A method (500) of indicating a process to be implemented in support of a mobility transfer operation and a method (600) of responding to a mobility transfer operation being initiated. A session initiation protocol (SIP) request (120, 124, 128, 220, 226, 228) can be generated. The SIP request can indicate a mobility transfer type that corresponds to the mobility transfer operation. The SIP request can be sent from a first device (102, 106) participating in the mobility transfer operation to at least a second device (106, 102) participating in the mobility transfer operation.
    Type: Grant
    Filed: March 14, 2016
    Date of Patent: December 25, 2018
    Assignee: Google Technology Holdings LLC
    Inventors: Michael F. Coulas, Apostolis K. Salkintzis
  • Patent number: 10164833
    Abstract: In the described embodiments, a device configuration file is used to set configuration settings on a computing device during a configuration operation (e.g., an initial configuration or a re-configuration of the computing device). The device configuration file is retrieved from a location where the device configuration file is hosted using a reference to the location from a bootstrap configuration. The bootstrap configuration is provided by a bootstrap configuration server and is retrieved by the computing device from the bootstrap configuration server during the configuration operation.
    Type: Grant
    Filed: October 6, 2016
    Date of Patent: December 25, 2018
    Assignee: Apple Inc.
    Inventors: Mark W. Whittemore, Michael D. Santos, Todd R. Fernandez, Christopher G. Skogen, Jussi-Pekka Mantere, David Rahardja
  • Patent number: 10158487
    Abstract: A server sends information to a client that allows the client to establish a first key at the client. The server then receives a session ID that has been encrypted using the first key. The first key is then established at the server, which can then decrypt the session ID using the first key. After the server validates the session ID, it determines a second key that is different from the first key. The server then receives the session ID encrypted with the second key, and decrypts the session ID encrypted with the second key.
    Type: Grant
    Filed: July 16, 2015
    Date of Patent: December 18, 2018
    Assignee: Cisco Technology, Inc.
    Inventors: James Anil Pramod Kotwal, Christopher Blayne Dreier, David Aaron Wyde, Kellen Mac Arb, David McGrew, Scott Fluhrer
  • Patent number: 10154052
    Abstract: Complex web applications may be susceptible to cyber-attacks that affect the security of customer sessions. Session theft and exploitation may be predicted and controlled by monitoring records of requests made to the web application and providing notifications of possible compromise of a session, session service or a machine using a session service.
    Type: Grant
    Filed: May 23, 2014
    Date of Patent: December 11, 2018
    Assignee: Amazon Technologies, Inc.
    Inventors: Jon Arron McClintock, George Nikolaos Stathakopoulos
  • Patent number: 10149256
    Abstract: A method for a terminal controlling power in a wireless communication system, according to the present invention, comprises the steps of: receiving from a base station power setting information on the difference in power setting values between a first channel for eNodeB-to-device (eNB2D) communication, and a second channel for device-to-device (D2D) communication; and controlling the power of the first channel and/or the second channel in accordance with the power setting information, wherein the power is controlled in accordance with a predetermined priority, which is based on a plurality of channels and a plurality of transmitted data items, which are different from each other are simultaneously transmitted by the terminal at a specific time.
    Type: Grant
    Filed: July 5, 2013
    Date of Patent: December 4, 2018
    Assignee: LG ELECTRONICS INC.
    Inventors: Seungmin Lee, Inkwon Seo, Hanbyul Seo, Joonkui Ahn, Suckchel Yang
  • Patent number: 10148647
    Abstract: In general, aspects of the disclosure are directed towards techniques for initiating an authorization flow with a user to enable a user interface-limited client computing device to obtain access to protected resources hosted by a resource service. In some aspects, a computing device comprises at least one processor. The computing device also comprises a short-range wireless communication module operable by the at least one processor to receive, using short-range wireless communication, an authentication request from a client device. The computing device also comprises an authorization module operable by the at least one processor to receive authorization to provide at least one security credential to the client device, wherein the authorization module is further configured to, responsive to receiving the authorization, send an indication of the authorization to an authentication service.
    Type: Grant
    Filed: August 7, 2018
    Date of Patent: December 4, 2018
    Assignee: Google LLC
    Inventors: Alain Vongsouvanh, Claudio Cherubino
  • Patent number: 10142294
    Abstract: Multiple protocol tunnels (e.g., IPsec tunnels) are deployed to enable an access terminal that is connected to a network to access a local network associated with a femto access point. A first protocol tunnel is established between a security gateway and the femto access point. A second protocol tunnel is then established in either of two ways. In some implementations the second protocol tunnel is established between the access terminal and the security gateway. In other implementations the second protocol tunnel is established between the access terminal and the femto access point, whereby a portion of the tunnel is routed through the first tunnel.
    Type: Grant
    Filed: April 27, 2016
    Date of Patent: November 27, 2018
    Assignee: QUALCOMM Incorporated
    Inventors: Peerapol Tinnakornsrisuphap, Anand Palanigounder, Ranjith Jayaram, Lakshminath Reddy Dondeti, Jun Wang
  • Patent number: 10140471
    Abstract: A method, at a terminal in a digital communications network, comprising: establishing direct or indirect communication access and linkage between the user-operated terminal and at least one remote computer(s) on which are stored, or by which access is available to prevent legible display of, stored user account object data; displaying indicia, or broadcasting data, representative of or indicating one or more predetermined criteria for selecting a subset of the stored user account object data; collecting data, representative of, or indicating, only the subset of the stored user account object data; and transmitting instructions to prevent legible display of the subset of the stored user account object data, according to the collected data representative of, or indicating, the one or more predetermined criteria for selecting the subset of the stored user account object data, from the terminal to the at least one remote computer(s). A terminal, system, and computer readable medium are also disclosed.
    Type: Grant
    Filed: July 11, 2016
    Date of Patent: November 27, 2018
    Inventor: Benjamin Ashley Smyth
  • Patent number: 10142377
    Abstract: A system includes a client device capable of being associated with a number of networked devices through a computer network to: process an embedded object, constrain an executable environment in a security sandbox, and execute a sandboxed application in the executable environment. The embedded object is processed through the sandboxed application. The system also includes a relevancy-matching server to: receive primary data generated from fingerprint data of each of the number of networked devices, match the primary data with targeted data based on a relevancy factor, search a storage for the targeted data, and cause rendering of the targeted data through the embedded object processed through the sandboxed application of the client device. The primary data is any one of a content identification data and a content identification history.
    Type: Grant
    Filed: December 1, 2017
    Date of Patent: November 27, 2018
    Assignee: FREE STREAM MEDIA CORP.
    Inventor: David Harrison
  • Patent number: 10133787
    Abstract: Collecting contact information for a plurality of contact entities from various sources and ranking the contact information based at least on the sources. The ranking of the contact information is determined based on the reliability of the sources. The ranked contact information is shared with users subject to privacy settings. The privacy setting allows the users or the contact entity to share certain contact information with others while keeping certain contact information privately or sharing the contact information with a limited number of users. After a change in the contact information from a reliable source is detected, the change may be propagated to other sources or client devices of the users.
    Type: Grant
    Filed: September 12, 2013
    Date of Patent: November 20, 2018
    Assignee: Facebook, Inc.
    Inventors: Erick Tseng, Luke Jonathan Shepard
  • Patent number: 10135884
    Abstract: A system for mediating access to a computer network comprises the steps of identifying a user who wishes to access the computer network, obtaining quality of service data specific to the user, generating a token comprising the quality of service data and providing an output derived from the token to the user. Optionally, the system can further comprise receiving a request from the user for access to the computer network and providing access to the computer network to the user according to the token.
    Type: Grant
    Filed: May 21, 2013
    Date of Patent: November 20, 2018
    Assignee: International Business Machines Corporation
    Inventor: Adam J. Pilkington
  • Patent number: 10129242
    Abstract: A method of installing an application on a device configured with a plurality of personas is disclosed. The method includes receiving an indication to engage a first persona of the plurality of personas. The method further includes causing an indication of the first persona to be displayed. The method further includes receiving, via an interface associated with the first persona, an indication to install a first application. The method further includes causing the first application to be installed. The method further includes causing the installed first application to be associated with the first persona.
    Type: Grant
    Filed: November 7, 2013
    Date of Patent: November 13, 2018
    Assignee: AirWatch LLC
    Inventors: William DeWeese, Jonathan Blake Brannon, Erich Stuntebeck
  • Patent number: 10123086
    Abstract: Systems and methods may provide for communication between a plurality of client devices of a broadcast system. The communication may be, for example, a recommendation of a program that is communicated from one subscriber to another subscriber or subscribers via their client devices. The communication also may be a comment regarding a program, for example, recently viewed at the client device of the one subscriber. In general, the communication may be a message from one subscriber to another subscriber or subscribers. Further, the communication may be configured to perform a function on one or more other client devices. Such a function may include, but is not limited to, setting a timer to record a program, ordering or purchasing a program or service, cancelling an ordered/purchased program or service, setting or altering user preferences, controlling access to channels, etc.
    Type: Grant
    Filed: March 21, 2017
    Date of Patent: November 6, 2018
    Assignee: DISH Technologies L.L.C.
    Inventors: David Christopher St. John-Larkin, David A. Kummer, John Anthony Card, II
  • Patent number: 10122717
    Abstract: Hierarchical case model access roles and permissions are described. A system creates, for a child node associated with a parent node in a case model, a reference to a case role associated with the parent node. The system assigns another set of access permissions to the reference. . The system determines access to the child node based on the set of access permissions in response to a request associated with the case role to access the child node.
    Type: Grant
    Filed: December 31, 2013
    Date of Patent: November 6, 2018
    Assignee: Open Text Corporation
    Inventors: Satyapal P. Reddy, Muthukumarappa Jayakumar, Arnaud Viltard, Ravikumar Meenakshisundaram
  • Patent number: 10114802
    Abstract: Provided herein are methods, devices, and systems for use in social networking and messaging applications. In particular, methods, devices, and systems for providing a user with access to a third party platform (e.g., a Public Number) in a messaging application are disclosed. Provided herein is a “My Apps” feature providing a stable and intuitive point of entry for a user to view, access, and manage Public Numbers. Also provided herein is a “Connector” feature that facilitates forwarding and saving information in a Public Number for processing. Additionally provided herein is a “Historic Messages” feature allowing a user to view a Public Number's historic messages without following the Public Number.
    Type: Grant
    Filed: April 28, 2013
    Date of Patent: October 30, 2018
    Assignee: TENCENT TECHNOLOGY (SHENZHEN) COMPANY LIMITED
    Inventor: Tianqing Huang
  • Patent number: 10110638
    Abstract: The invention enables a client device that does not support IEEE 802.1X authentication to access at least some resources provided through a switch that supports 802.1X authentication by using dynamic authentication with different protocols. When the client device attempts to join a network, the switch monitors for an 802.1X authentication message from the client device. In one embodiment, if the client fails to send an 802.1X authentication message, respond to an 802.1X request from the switch, or a predefined failure condition is detected the client may be deemed incapable of supporting 802.1X authentication. In one embodiment, the client may be initially placed on a quarantine VLAN after determination that the client fails to perform an 802.1X authentication within a backoff time limit. However, the client may still gain access to resources based on various non-802.1X authentication mechanisms, including name/passwords, digital certificates, or the like.
    Type: Grant
    Filed: June 17, 2016
    Date of Patent: October 23, 2018
    Assignee: McAfee, LLC
    Inventors: Alexandru Z. Vank, Xin Shen, Matt B. Cobb, Brad Robel-Forrest, Evan M. Phoenix
  • Patent number: 10110701
    Abstract: A method performed at a server system includes: receiving a request from a client device for an information page associated with an entity of an entity class; identifying historical user activity logged by the server system associated with users with respect to one or more of the entity and the entity class; identifying information and multiple information types associated with the entity; generating and formatting a structured information page structured according to the identified information types, where the identified information types include predefined information types and dynamically selected information types, and the dynamically selected information types are selected from a set of candidate information types in accordance with relative importance of the candidate information types as determined by the server system based on the historical user activity; populating the structured information page with the identified information; and transmitting the structured information page to the client device f
    Type: Grant
    Filed: November 16, 2015
    Date of Patent: October 23, 2018
    Assignee: GOOGLE LLC
    Inventors: Ankita Goel, Jeromy William Henry, Emily Moxley, Jeremy Silber, Kai Conragan
  • Patent number: 10108434
    Abstract: A system is described for replacing the desktop image on a computing device with a network-based desktop image (e.g., a backup copy of a desktop image) while allowing the user to resume working on the computing device with the new desktop with minimal downtime. The computing device is booted directly from the backed-up desktop image on the network. After boot, the system allows the user to use the computing device with the new desktop image by directing read requests for information that is only available on the network to the desktop image on the network. Write operations are performed on the local disk of the computing device. While the user is using the computing device, the desktop image is streamed in the background and stored on the local disk.
    Type: Grant
    Filed: September 11, 2015
    Date of Patent: October 23, 2018
    Assignee: VMware, Inc.
    Inventor: Tal Zamir
  • Patent number: 10104092
    Abstract: One embodiment of the present invention provides a system for retrieving a content collection over a network. During operation, the system determines additional information associated with the piece of content that is needed for consumption of the content collection; generates a plurality of Interests, which includes at least one Interest for a catalog of the content collection and at least one Interest for the additional information; and forwards, concurrently, the plurality of Interests, thereby facilitating parallel retrieval of the content collection and the additional information.
    Type: Grant
    Filed: June 29, 2017
    Date of Patent: October 16, 2018
    Assignee: Cisco Technology, Inc.
    Inventors: Ignacio Solis, Glenn C. Scott, Ersin Uzun
  • Patent number: 10104670
    Abstract: To adjust a transmit power for device-to-device communication, a user equipment which performs the device-to-device communication using the transmit power detects that the user equipment enters a coverage area of a radio communication unit. The transmit power of the user equipment for the device-to-device communication is decreased in response to detecting that the user equipment enters the coverage area of the radio communication unit.
    Type: Grant
    Filed: May 22, 2014
    Date of Patent: October 16, 2018
    Assignees: SONY CORPORATION, SONY MOBILE COMMUNICATIONS INC.
    Inventors: Na Wei, Feng Chen, Dahai Liu, Yong Zhao
  • Patent number: 10103875
    Abstract: Client requests may be directed through a secret holding proxy system such that the secret holding proxy system may insert a secret into a client request before arriving at the destination. The insertion of a secret may include inserting a digital signature, token or other information that includes a secret or information based upon a secret, which may include secret exchange or authentication protocols. The secret holding proxy system may also remove secrets and/or transform incoming messages such that the client may transparently receive the underlying content of the message.
    Type: Grant
    Filed: December 20, 2011
    Date of Patent: October 16, 2018
    Assignee: Amazon Technologies, Inc.
    Inventors: Gregory B. Roth, Graeme D. Baer, Nathan R. Fitch, Eric D. Crahen, Eric J. Brandwine
  • Patent number: 10097463
    Abstract: To improve the efficiency of media delivery over the Internet, a system and a method are provided for caching remote media files and retrieving cached media files, comprising hardware and software modules as well as steps for storing a remote media file into the cache and retrieving the cached media file based on a signature created by hashing only discrete parts of the media file. The signature is a key for finding the cached media files in the cache upon subsequent requests for the same media file, even if it is received from a different internet location. Media files may be adapted to the characteristics of different media clients, and adapted media files may be equally cached.
    Type: Grant
    Filed: July 25, 2013
    Date of Patent: October 9, 2018
    Assignee: VANTRIX CORPORATION
    Inventors: Marc Courtemanche, Jean Mayrand
  • Patent number: 10097704
    Abstract: An authentication control apparatus includes a first authenticating unit, a second authenticating unit, a controller, and an outputting unit. The first authenticating unit performs first authentication using authentication information stored in association with a memory area. The second authenticating unit performs second authentication using authentication information stored in association with a user. The controller performs control to perform one of authentication operations that are the first authentication and the second authentication when the user uses the memory area. The outputting unit outputs information if the one of the authentication operations performed under the control of the controller does not succeed. The information prompts the user to input authentication information to be used in an authentication operation performed when the user uses the memory area.
    Type: Grant
    Filed: November 10, 2016
    Date of Patent: October 9, 2018
    Assignee: FUJI XEROX CO., LTD.
    Inventors: Mitsuo Hayashi, Toshihide Omori, Masato Sugii, Haruhisa Hoshino, Daigo Yamagishi
  • Patent number: 10097667
    Abstract: Methods and systems are provided for regulating access to a database by a server. One exemplary method involves the server receiving one or more requests for an activity with respect to the database and determining an attempted usage for the activity over a monitoring period by a source of the requests. When the attempted usage exceeds an allowed usage of the activity for the monitoring period, the server creates an entry in a cache that includes an identifier associated with the source of the one or more requests. Thereafter, the requested activity with respect to the database on behalf of the source may be prevented based on the entry in the cache.
    Type: Grant
    Filed: December 29, 2015
    Date of Patent: October 9, 2018
    Assignee: salesforce.com, inc.
    Inventors: Zhaogang Wo, Venkata Muralidhar Tejomurtula, Maryann Patel, Fang Wong, Atul Singh, Christopher Williams, Pawan Nachnani
  • Patent number: 10098174
    Abstract: In one aspect, the application running on mobile device creates a unique identifier. This unique identifier acts as the “permanent address” for sending packets from the proxy server to the mobile application. The current IP address of the device is used as a “temporary forwarding address” for the packet. When the IP address of the mobile device changes, the application on the device quickly informs the proxy server about this change. This allows the proxy server to continue sending the remaining data of this download session to the newly acquired IP address without having to restart the entire download session from scratch.
    Type: Grant
    Filed: August 4, 2015
    Date of Patent: October 9, 2018
    Inventor: Chetan Ahuja
  • Patent number: 10097373
    Abstract: A system transports a plurality of UDP datagrams from a sending application to a receiving application by creating a TCP tunnel between a TCP sending-end and a TCP receiving-end, encapsulating the datagrams in TCP packets at the TCP transmitting-end, transmitting the TCP packets via the TCP tunnel to the TCP receiving-end over a network using a TCP/IP protocol, and extracting the datagrams from the TCP packet and forwarding the extracted datagrams to the receiving application. The TCP tunnel may provide the same delay and responsiveness as UDP protocol. The TCP receiving-end may detect when a packet is missing and request retransmission when a packet is missing, so that the TCP sending-end retransmits the missing packets. The transmitting of TCP packets to the TCP receiving-end continues when the receiving-end detects a missing packet, so that there is no lag in the forwarding of the extracted datagrams. Retransmitted packets may be discarded.
    Type: Grant
    Filed: August 15, 2014
    Date of Patent: October 9, 2018
    Assignee: LiveQoS Inc.
    Inventors: Shane Daniel Barnes, Matthew Robert Williams, Miika Anttoni Klemetti, Vijayendran Mahendran, Uri Nebogatov, Mohan Krishna Vemulapali
  • Patent number: 10091220
    Abstract: A device for protecting a network environment from cyber security threats includes a processing unit and a non-transitory memory having processor-executable instructions stored thereon. The processing unit is configured to execute the processor-executable instructions to: (a) perform one or more auditing stages for examining and analyzing network devices by retrieving information, via a network adapter, from each of the network devices, so as to enable automatically monitoring, scanning and learning the network environment and its security configurations; (b) generate a cyber-security check report that reflects the results of the one or more auditing stages; and (c) give recommendations according to the report in order to increase a security level of the network.
    Type: Grant
    Filed: December 29, 2016
    Date of Patent: October 2, 2018
    Assignee: DEUTSCHE TELEKOM AG
    Inventors: Asaf Shabtai, Yuval Elovici, Christoph Peylo, Barak Chizi, Barak Zacharish, David Mimran, Tobias Glemser
  • Patent number: 10091182
    Abstract: A computer-implemented system and method for pool-based identity authentication for service access without use of stored credentials is disclosed. The method in an example embodiment includes providing provisioning information for storage in a provisioning repository; receiving a service request from a service consumer, the service request including requestor identifying information; generating an authentication request to send to an authentication authority, the authentication request including requestor identifying information; receiving validation of an authenticated service request from the authentication authority; and providing the requested service to the service consumer.
    Type: Grant
    Filed: November 16, 2017
    Date of Patent: October 2, 2018
    Assignee: eBay Inc.
    Inventors: Raju Venkata Kolluru, Michael Dean Kleinpeter
  • Patent number: 10091329
    Abstract: A computing environment is disclosed that receives from devices requests directed toward services accessible in the environment, and that forwards communications from services in the environment to devices registered with the environment. During a registration process at the environment, devices are assigned a device identifier that is used to identify and authenticate each particular device and requests communicated from and to the device via the environment. The computing environment maintains state information for each device that has been registered with the system. As the device interacts with the system, the state information is updated to reflect the changes in the device. When requests to perform functions are received from devices, the computing environment determines for the particular device and the particular function requested what processing needs to be performed by the environment in response to the request.
    Type: Grant
    Filed: June 30, 2015
    Date of Patent: October 2, 2018
    Assignee: Amazon Technologies, Inc.
    Inventors: Calvin Yue-Ren Kuo, James Christopher Sorenson, III, Alan Conrad Rawcliffe, Shyam Krishnamoorthy, Jonathan I. Turow, Marco Argenti
  • Patent number: 10089055
    Abstract: A system configured to synchronize the displays of multiple infusion pumps is provided. In some embodiments, the system includes a plurality of infusion pumps in communication with a server. An individual infusion pump synchronizes its internal clock by communicating with the server. Based on the synchronized internal clock, the infusion pump determines the current time, calculates a parameter based on the current time, and causes screen content corresponding to the calculated parameter to be displayed.
    Type: Grant
    Filed: January 3, 2018
    Date of Patent: October 2, 2018
    Assignee: ICU Medical, Inc.
    Inventor: Marshall Fryman
  • Patent number: 10091306
    Abstract: A system and method for managing customer premise equipment (CPE) devices. A wake signal is issued to the CPE device. Action parameters are communicated to the CPE device in response to receiving acknowledgement of the wake signal from the CPE device. A management session is established with the CPE device utilizing an address for secure communications in response to the CPE device acknowledging the action parameters. Communications are performed through the management session to perform operation, administration, and maintenance of the CPE device. The management session with the CPE device is terminated.
    Type: Grant
    Filed: January 11, 2017
    Date of Patent: October 2, 2018
    Assignee: CenturyLink Intellectual Property LLC
    Inventors: Michael Morrissey, Clinton Smoyer, Jade Kerr, Andrew Cook, Kevin McBride
  • Patent number: 10091286
    Abstract: Enhanced client-server communication in a cached communication environment is described. A server computer executes a server application. The server application requests a server communication application to generate a server object. The server object is independent from a client object that is modified to communicate client data. The server object is associated with a server object identifier. The server application receives a copy of the client object from the server communication application. The copy of the client object is associated with a client object identifier. The server application determines whether the server object identifier has an expected relationship with the client object identifier. The server application applies a disposition rule to data referenced in the copy of the client object if the server object identifier has the expected relationship with the client object identifier.
    Type: Grant
    Filed: July 24, 2012
    Date of Patent: October 2, 2018
    Assignee: EMC IP HOLDING COMPANY LLC
    Inventors: Darlene J. Ruben, William D. Berry, Peter A. Spooner
  • Patent number: 10089365
    Abstract: A system maintains data objects representing insights. The system captures an insight object as a segmented media object. The system maintains user circles based on various topics of interest to users. The system assigns expertise scores to users within a circle. A user may have different expertise scores for different topics. The systems assigns significance scores for the insight objects based on user interactions performed with the insight object, the interactions weighted by expertise scores of users performing the interactions for topics associated with the insight. The system determines a schedule for repeated delivery of the insight to one or more users. The system adjusts the delivery of the insight to a user based on scheduled events or user activity of the user and delivers the insight in accordance with the schedule.
    Type: Grant
    Filed: February 17, 2016
    Date of Patent: October 2, 2018
    Assignee: HUMANLEARNING LTD.
    Inventors: Arti Khanna, Kapil Singhal