Network Resources Access Controlling Patents (Class 709/229)
  • Patent number: 9871887
    Abstract: A method of accessing an operating system in a distributed computer arrangement comprising loading an auxiliary operating system from a write-protected area of a removable storage medium, executing the loaded auxiliary operating system on a first computer, setting up a data link between the first computer and a second computer via a data network under control of the auxiliary operating system, executing a main operating system on the second computer and progressively transmitting inputs from a user from the first computer via the data link to the main operating system, and progressively transmitting outputs from the main operating system via the data link to the first computer.
    Type: Grant
    Filed: September 28, 2011
    Date of Patent: January 16, 2018
    Assignee: Fujitsu Technology Solutions Intellectual Property GmbH
    Inventors: Thorsten Höhnke, Susanne Pudlitz
  • Patent number: 9866925
    Abstract: In one embodiment, a method of a relevancy-matching server includes generating a fingerprint data using a television, matching primary data generated from the fingerprint data with targeted data based on a relevancy factor, and searching a storage for the targeted data, a reference and/or a metadata. The primary data is a content identification data and/or a content identification history. An embedded object is processed using a mobile device capable of being associated with the television. An executable environment is constrained in a security sandbox of the mobile device. A sandboxed application is executed in the executable environment. The fingerprint data from the television and/or the mobile device is processed through a content identification server. The primary data from the fingerprint data is communicated to any devices with an access to identification data of the television and/or an automatic content identification service through the content identification server.
    Type: Grant
    Filed: July 23, 2016
    Date of Patent: January 9, 2018
    Assignee: FREE STREAM MEDIA CORP.
    Inventor: David Harrison
  • Patent number: 9858095
    Abstract: A method for providing dynamic resizing of at least one virtual machine in a cloud infrastructure includes steps of: obtaining a measure of resource usage for the virtual machine and/or application performance of an application running on the virtual machine; determining, as a function of prescribed rules relating to resource usage and the measure of resource usage and/or application performance, whether the virtual machine requires resizing; and resizing the virtual machine to dynamically change resource availability for the virtual machine so as to maintain resource usage and/or application performance within prescribed limits defined by the prescribed rules.
    Type: Grant
    Filed: September 17, 2012
    Date of Patent: January 2, 2018
    Assignee: International Business Machines Corporation
    Inventors: David Breitgand, Dilma M. Da Silva, Amir Epstein, Alexander Glikson, Michael R. Hines, Kyung D. Ryu, Marcio A. Silva
  • Patent number: 9860225
    Abstract: A network directory service, responsive to receiving a target device symbolic name from a client, identifies a network access server in communication with a network on which the target device resides, notifies the network access server of an expected connection from the client, and returns a device access token to the client. The network access server, responsive to receiving and validating the device access token, forwards the client-originated traffic to the target device by implementing a Network Address Translation (NAT) scheme.
    Type: Grant
    Filed: May 15, 2014
    Date of Patent: January 2, 2018
    Assignee: Amazon Technologies, Inc.
    Inventors: Roderick Peter Chamberlin, Michael Ellsworth Bundy, Timothy Craig Worsley, Charles Edward Rice
  • Patent number: 9854330
    Abstract: A method, apparatus, and system related to relevancy improvement through targeting of information based on data gathered from a television associated with a security sandbox of a mobile device are disclosed. In one aspect, a system may include a television to generate a fingerprint data. The fingerprint data is an audio fingerprint data and/or a video fingerprint data. A relevancy-matching server matches primary data generated from the fingerprint data with targeted data based on a relevancy factor, and searches a storage for at least one of the targeted data, a reference to the targeted data, and a metadata of the targeted data. The primary data is a content identification data and/or a content identification history. A mobile device capable of being associated with the television processes an embedded object, constrains an executable environment in a security sandbox, and executes a sandboxed application in the executable environment.
    Type: Grant
    Filed: April 27, 2016
    Date of Patent: December 26, 2017
    Inventor: David Harrison
  • Patent number: 9853980
    Abstract: A method is provided for configuring access to a network, to authorize an access to the network for at least one invited terminal associated with an invited user. The method is implemented by a first network access management module associated with a host user. The method includes: receiving, from a terminal associated with the host user, an offer to share the access to the network intended for the invited user, the users being connected via a social network; obtaining, from a second network access management module associated with the invited user, information identifying the invited terminal; obtaining, from the network, configuration information allowing access to the network by the invited terminal, following a sending, to the network, of an access configuration request comprising the identification information; and sending, to the second management module, configuration information intended for the invited terminal allowing it access to the network.
    Type: Grant
    Filed: November 11, 2014
    Date of Patent: December 26, 2017
    Assignee: ORANGE
    Inventors: Benoit Radier, Sebastien Nicaisse
  • Patent number: 9848250
    Abstract: In one embodiment, a method of a relevancy-matching server includes matching primary data generated from a fingerprint data with targeted data based on a relevancy factor and locating in a storage the targeted data, a reference and/or a metadata. A mobile device is associated with a television. An executable environment is constrained in a security sandbox of the mobile device. A sandboxed application is executed capable of bypassing at least one access control of the security sandbox. An embedded object is processed in the sandboxed application. The television and/or the mobile device is to generate the fingerprint data from characteristic features of media data. The fingerprint data from the television and/or the mobile device is processed through a content identification server. The primary data is communicated to any device with access to identification data of the television and/or an automatic content identification service.
    Type: Grant
    Filed: July 23, 2016
    Date of Patent: December 19, 2017
    Assignee: FREE STREAM MEDIA CORP.
    Inventor: David Harrison
  • Patent number: 9841899
    Abstract: A method for execution by one or more processing modules of a dispersed storage network (DSN) includes receiving a data access request for at least one data segment stored in the DSN. A vault associated with data access request is identified along with one of a plurality of sub-vaults associated with the vault. Access information corresponding to the one of the plurality of sub-vaults is retrieved to determine whether the access request is allowed. When the access request is allowed, a sub-vault directory associated with the one of the plurality of sub-vaults is retrieved to identify a DSN address corresponding to the data access request, and fulfilling the data access request based on the DSN address.
    Type: Grant
    Filed: August 5, 2014
    Date of Patent: December 12, 2017
    Assignee: International Business Machines Corporation
    Inventors: Wesley Leggette, Bart Cilfone
  • Patent number: 9838393
    Abstract: Methods, systems, and computer-readable media for reviewing inputted commands and preventing the execution of accidentally or maliciously entered adverse commands are disclosed. These commands may be operating system commands, resource commands, device commands, application commands, and so on. Some aspects of the disclosure provide ways to split entry and/or approval of commands prior to their execution. In some aspects, execution of the command may be undone or reversed if the command is not successfully validated. Commands may be encapsulated in a control wrapper to identify commands subject to split approval or co-entry process, and criteria regarding the commands or the user(s) entering the commands may be used to determine whether co-entry or split approval and/or post-execution validation is required. Indications of approval or denial of a command may be transmitted to other computing devices to reduce or eliminate malicious or accidental activity.
    Type: Grant
    Filed: August 3, 2015
    Date of Patent: December 5, 2017
    Assignee: Bank of America Corporation
    Inventors: Manu Kurian, Sorin N. Cismas
  • Patent number: 9836340
    Abstract: A method, system, and computer program product for safe management of data storage using a VM are provided in the illustrative embodiments. An I/O request is received from the VM. A determination is made whether the I/O request requests a data manipulation on the data storage in an address range that overlaps with an address range of a VM signature stored on the data storage. In response to determining that the address range of the data manipulation overlaps with the address range of the VM signature, a determination is made whether an identifier of the VM matches an identifier of a second VM associated with the signature. In response to determining that the identifier of the VM does not match the identifier of the second VM, the I/O request is failed, thereby preventing an unsafe overwriting of the signature on the data storage.
    Type: Grant
    Filed: October 3, 2011
    Date of Patent: December 5, 2017
    Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATION
    Inventors: Adenkunle Bello, Radhika Chirra, Anil Kumar Kaniveedu Damodaran, Rakesh Thoutem
  • Patent number: 9838758
    Abstract: In one embodiment, a method of a relevancy-matching server includes matching primary data generated from a fingerprint data with targeted data based on a relevancy factor, locating in a storage the targeted data, a reference to the targeted data, and/or a metadata of the targeted data. A mobile device is associated with a television. An executable environment is constrained in a security sandbox of the mobile device. A sandboxed application is executed in the executable environment capable of bypassing at least one access control of the security sandbox. An embedded object is processed in the sandboxed application. The television and/or the mobile device are to generate the fingerprint data from characteristic features of media data. The relevancy-matching server is to match the targeted data with the primary data such that the relevancy-matching server is to locate in the storage an item based on a relevancy factor.
    Type: Grant
    Filed: April 27, 2016
    Date of Patent: December 5, 2017
    Inventor: David Harrison
  • Patent number: 9838370
    Abstract: A cloud infrastructure system includes one or more computing devices and is configured to receive subscription order information related to one or more services subscribed to by a customer of the cloud infrastructure system, the service selected from one or more services provided by the cloud infrastructure system. The cloud infrastructure system receives a set of one or more mapping rules configured to map business attributes to resource provisioning information for one or more of the one or more services provided by the cloud infrastructure system. The cloud infrastructure system determines whether one or more business attributes in the subscription order information satisfy one or more mapping rules in the set of mapping rules and generates resource provisioning information for one or more resources associated with the one or more services based on resource provisioning information in the one or more mapping rules satisfied by the one or more business attributes in the subscription order information.
    Type: Grant
    Filed: March 15, 2013
    Date of Patent: December 5, 2017
    Assignee: Oracle International Corporation
    Inventors: Jeffrey Ryan Doering, Prashant Kumar Shetty, Gopalan Arun, Pradeep Maheshwaran Lakshmanan, Vishnupriyan Venkatesan
  • Patent number: 9838241
    Abstract: The subject system allows electronic devices in an infrastructure network to discover direct peer-to-peer services, such as screencasting, access to peripheral devices, etc., that can be provided over the infrastructure network. Since the electronic devices already have a layer two (link layer) connection with each other over the infrastructure network, pre-association device and/or service discovery protocols, such as those provided by Wi-Fi Direct and the like, are not available to the electronic devices. Thus, the subject system provides a post-association mechanism that allows the electronic devices to query, advertise, discover, and access direct peer-to-peer services over the infrastructure network. Furthermore, the subject system extends access of the direct peer-to-peer services to wired networks, such as Ethernet networks, Multimedia over Coax Alliance (MoCA) networks, powerline networks, and the like.
    Type: Grant
    Filed: February 5, 2015
    Date of Patent: December 5, 2017
    Assignee: AVAGO TECHNOLOGIES GENERAL IP (SINGAPORE) PTE. LTD.
    Inventors: Steven Hartley, Stephen Ray Palm
  • Patent number: 9838419
    Abstract: A method comprises obtaining data characterizing web browsing activity of a group of users of an enterprise, processing the data characterizing the web browsing activity to identify one or more patterns of web browsing activity of the group of users, selecting, based on the patterns of web browsing activity, at least one website to check for evidence of a watering hole attack threat to the enterprise, analyzing elements of said at least one website to identify executable code evidencing the watering hole attack threat to the enterprise, and modifying access by one or more client devices of the enterprise to said at least one website responsive to identifying executable code of said at least one website evidencing the watering hole attack threat to the enterprise.
    Type: Grant
    Filed: November 30, 2015
    Date of Patent: December 5, 2017
    Assignee: EMC IP Holding Company LLC
    Inventors: Uri Fleyder, Rotem Kerner, Zeev Rabinovich, Rotem Salinas, Daniel Frank, Lior Ben-Porat
  • Patent number: 9838483
    Abstract: Methods, systems, and computer readable media for analyzing virtualization related information related to a telecommunications network for managing network virtualization are disclosed. In one embodiment, a system for analyzing virtualization related information related to a telecommunications network for managing network virtualization includes an information concentrator for analyzing virtualization related information related to a telecommunications network. The information concentrator may include a first interface for receiving the virtualization related information and an analysis engine for collecting and analyzing the received information, for determining a set of network virtualization related data based on the information, and for directing the network virtualization related data set to a node for making virtualization decisions.
    Type: Grant
    Filed: November 21, 2013
    Date of Patent: December 5, 2017
    Assignee: Oracle International Corporation
    Inventors: Sam Eric McMurry, Ajay Padmakar Deo
  • Patent number: 9825984
    Abstract: A computer-implemented method includes receiving, at a primary security sub-system, code to be served from a web server system to one or more computing devices; forwarding a representation of the code to a secondary security sub-system that is remote from the primary security sub-system; receiving, from the secondary sub-system and in response to the forwarding, a template created from analysis of the representation of the code that indicates changes to be made to the code and locations of the changes; and using the template to recode the code, by the primary security sub-system, before serving the code to the one or more computing devices.
    Type: Grant
    Filed: August 27, 2014
    Date of Patent: November 21, 2017
    Assignee: Shape Security, Inc.
    Inventors: Roger S. Hoover, Marc R. Hansen, Justin D. Call
  • Patent number: 9826018
    Abstract: Systems and methods described herein are directed to a browser mode that provides a secure type of browsing window or a public type of browsing window. Within the secure type of browsing window, systems and methods may enforce all connections as being over Hypertext Transfer Protocol Secure (HTTPS). Within the public type of browsing window, connections that require login, text entry, or HTTPS are prevented since session cookies and browsing activity from the public type of window may be eavesdropped by a third party. The browser provides separate cookie jars (which store the browser cookies) for the secure type window and the public type window.
    Type: Grant
    Filed: March 15, 2013
    Date of Patent: November 21, 2017
    Assignee: GOOGLE INC.
    Inventor: Sheldon Israel Walfish
  • Patent number: 9817860
    Abstract: Methods of generating filters automatically from data processing jobs are described. In an embodiment, these filters are automatically generated from a compiled version of the data processing job using static analysis which is applied to a high-level representation of the job. The executable filter is arranged to suppress rows and/or columns within the data to which the job is applied and which do not affect the output of the job. The filters are generated by a filter generator and then stored and applied dynamically at a filtering proxy that may be co-located with the storage node that holds the data. In another embodiment, the filtered data may be cached close to a compute node which runs the job and data may be provided to the compute node from the local cache rather than from the filtering proxy.
    Type: Grant
    Filed: December 13, 2011
    Date of Patent: November 14, 2017
    Assignee: Microsoft Technology Licensing, LLC
    Inventors: Christos Gkantsidis, Dimitrios Vytiniotis, Orion Hodson, Dushyanth Narayanan, Antony Rowstron
  • Patent number: 9819653
    Abstract: A computer-implemented method, system, and/or computer program product protects access to resources through use of a secure processor. A resource server receives an encrypted request from a requesting computer for access to a requested resource within the resource server. The requested resource is physically within an isolation area in the resource server that is initially communicatively protected from a network that connects the requesting computer to the resource server. The resource server establishes a communication session between a first secure processor in the resource server and a second processor in the requesting computer to provide secure communication between the requesting computer and the requested resource.
    Type: Grant
    Filed: September 25, 2015
    Date of Patent: November 14, 2017
    Assignee: International Business Machines Corporation
    Inventors: Richard H. Boivie, Robert R. Friedlander, James R. Kraemer, Jeb R. Linton
  • Patent number: 9819643
    Abstract: A method is implemented by a content centric network (CCN) naming layer executed by a network device. The naming layer is configured to enable processing of regular expressions as part of a hierarchical CCN name, where regular expressions are sequences of characters that form a search pattern. The method processes regular expressions utilized in a one to many scenario between a plurality of CCN clients and at least one CCN serving node. The method includes receiving a CCN interest from a CCN forwarding layer, accessing a forwarding information base (FIB) to find FIB entries matching a path of the CCN name and the regular expression, accessing a content store to find content objects matching the FIB entries, and creating a new CCN interest for each of the FIB entries not found in the content store.
    Type: Grant
    Filed: October 13, 2014
    Date of Patent: November 14, 2017
    Assignee: TELEFONAKTIEBOLAGET L M ERICSSON (PUBL)
    Inventors: Hari Rangarajan, Yvan Royon
  • Patent number: 9811654
    Abstract: In accordance with embodiments of the present disclosure, an information handling system may include a processor, an input/output port communicatively coupled to the processor, and an access controller communicatively coupled to the processor. The an input/output port may be configured to receive an external input/output device and communicatively couple such input/output device to one or more information handling resources of the information handling system. The access controller may be configured to responsive to an attempted management operation at the information handling system, determine if an input/output device coupled to the input/output port is authenticated as a trusted input/output device. The access controller may also be configured to, responsive to determining that the input/output device is authenticated as a trusted input/output device, allow execution of the attempted management operation.
    Type: Grant
    Filed: June 11, 2014
    Date of Patent: November 7, 2017
    Assignee: Dell Products L.P.
    Inventors: Rajeshkumar Ichchhubhai Patel, Chandrasekhar Puthillathe, Elie Antoun Jreij, Shawn Joel Dube, Pablo Rafael Arias
  • Patent number: 9813547
    Abstract: A device may receive one or more preferences for providing a message-based data service. The device may receive, in a text message and from a mobile device, a content request. The content request may identify content to be obtained via a data connection. The device may filter the content request, based on the one or more preferences, to generate a filtered request. The device may obtain the content based on the filtered request and via a data connection. The device may process the content to prepare the content for providing in a text message. The device may provide the content to the mobile device in a text message after processing the content.
    Type: Grant
    Filed: May 20, 2015
    Date of Patent: November 7, 2017
    Assignee: Verizon Patent and Licensing Inc.
    Inventors: Woo Beum Lee, Jeffrey M. Walsh, Michelle Felt
  • Patent number: 9813285
    Abstract: Systems and techniques are disclosed for providing a rule set from an authorization server to a broker associated with an enterprise server. The broker can be configured to receive a broker understandable restricted action request from an agent associated with the enterprise server, the request originated by an endpoint device. The request can be analyzed by the broker in view of the rule set and an approve, deny, partially approve or partially deny decision can be provided from the broker to the agent. The agent can prevent the endpoint device to performing the restricted action based on the decision provided by the broker.
    Type: Grant
    Filed: March 14, 2013
    Date of Patent: November 7, 2017
    Assignee: CA, Inc.
    Inventors: Mark McGovern, James Matthew Dew
  • Patent number: 9813258
    Abstract: Measures for routing data packets in a data center network are provided. A packet forwarding function in a server in a data center network is configured to forward data packets to/from virtual systems hosted on that server. The packet forwarding function is configured to make forwarding decisions for received data packets based on the destination internet protocol (IP) address of the received data packet, and forward the data packet at least on the basis of the forwarding decision.
    Type: Grant
    Filed: March 31, 2014
    Date of Patent: November 7, 2017
    Assignee: Tigera, Inc.
    Inventor: Christopher David Liljenstolpe
  • Patent number: 9810766
    Abstract: An example method includes identifying a link that is one of a plurality of links of a wireless locating system, the link being defined by at least a reference signal source, a first receiver unit, and a second receiver unit; determining a reliability metric for signal transmission via a link based on first link data, the link data describing first reference signal events for the link; and modifying the reliability metric based on second link data describing second reference signal events for the link, wherein modifying the reliability metric includes: determining whether the second link data is consistent with the first link data; adjusting the reliability metric using a first function when the second link data is consistent with the first link data; and adjusting the reliability metric using a second function different than the first function when the second link data is inconsistent with the second link data.
    Type: Grant
    Filed: June 17, 2016
    Date of Patent: November 7, 2017
    Assignee: ZIH Corp.
    Inventor: Robert W. Boyd
  • Patent number: 9807593
    Abstract: Embodiments of the present invention provide a communications system, a capability openness gateway, and a method for opening a wireless pipe capability. The system includes: a COGW and at least one wireless pipe network element, where a first interface is provided between the COGW and the capability openness object, and a second interface is provided between the COGW and the at least one wireless pipe network element; the COGW is configured to converge a capability of the at least one wireless pipe network element through the second interface, and supply the capability of the at least one wireless pipe network element to the capability openness object through the first interface; and the capability openness object is configured to use the capability of the at least one wireless pipe network element, thereby implementing openness of a wireless pipe capability.
    Type: Grant
    Filed: June 30, 2015
    Date of Patent: October 31, 2017
    Assignee: Huawei Technologies Co., Ltd.
    Inventors: Wentao Zhou, Wenbo Diao, Qingshun Liu, Wenyong Han
  • Patent number: 9794622
    Abstract: A system and method for remotely transcoding content includes a set top box generating a playlist corresponding to content titles stored in a memory of the set top box. A user device is in communication with the cloud location and the set top box through a network. The user device reviews the playlist and selects a first content title from the playlist to form a selection. The cloud location includes a transcoder device transcoding content corresponding to the selection to form transcoded content. One of the cloud location and the set top box communicates the transcoded content to the user device.
    Type: Grant
    Filed: October 20, 2014
    Date of Patent: October 17, 2017
    Assignee: The DIRECTV Group, Inc.
    Inventors: Khader B. Syed, Michael J. Koehnlein, Scott D. Casavant, Sean S. Lee, Kuriacose Joseph, Jorge H. Guzman
  • Patent number: 9794274
    Abstract: An attack detection apparatus (6) collects packets a transmission source or a transmission destination of which is a protection target apparatus (5), and generates packet information by setting an entry for each collected packet and describing attribute data of the packet together with occurrence time of the packet for each entry. Further, the attack detection apparatus (6) stores definition information which defines an extraction time width and an extraction condition for each category of attack.
    Type: Grant
    Filed: September 8, 2014
    Date of Patent: October 17, 2017
    Assignee: Mitsubishi Electric Corporation
    Inventors: Shoji Sakurai, Kiyoto Kawauchi
  • Patent number: 9785927
    Abstract: According to an embodiment, access to an online resource is enabled by associating a telephony number with a network resource that is made available at a network location, where network resource is protected so as to be inaccessible without access being provided for users individually. A particular user may be detected in initiating a telephony session using the number. Access to the network resource may be activated or authorized for the particular user in response to detecting the user initiating the telephony session.
    Type: Grant
    Filed: November 2, 2007
    Date of Patent: October 10, 2017
    Assignee: Persony, Inc.
    Inventors: Shenchang Eric Chen, Herbert Samuel Levitin
  • Patent number: 9787521
    Abstract: Techniques are described for determining non-session-related content of a web page through operations that are performed at least partly concurrently with operations for determining session-related content for the page. Session data may be stored on, or accessed through, a centralized session data service that is in communication with a plurality of content servers configured to serve web pages. To mitigate latency incurred through network communications between the content server(s) and the session data service, the generation or retrieval of non-session-related content may begin after the receipt of a page request in a session, and may proceed at least partly in parallel with operations to validate the session identifier, retrieve session data associated with the session identifier, or determine session-related content for the page based on the session data.
    Type: Grant
    Filed: September 16, 2013
    Date of Patent: October 10, 2017
    Assignee: Amazon Technologies, Inc.
    Inventor: Jeremy Boynes
  • Patent number: 9785381
    Abstract: A computer system with a plurality of storage systems connected to each other via a network, each storage system including a virtual machine whose data is stored in hierarchized storage areas. When a virtual machine of a first storage system is migrated from the first storage system to a second storage system, the second storage system stores data of the virtual machine of the first storage system as well as data of its own virtual machine, in the hierarchized storage areas in the second storage system.
    Type: Grant
    Filed: July 13, 2015
    Date of Patent: October 10, 2017
    Assignee: Hitachi, Ltd.
    Inventors: Kenta Shiga, Kazuyoshi Serizawa
  • Patent number: 9787683
    Abstract: The exemplary embodiments include a method to perform, based on at least one of hypertext transport protocol and non-hypertext transport protocol traffic tests failing, sending an hypertext transport protocol message to a subscription remediation server URI that carries a package1 message, receiving an hypertext transport protocol response from the subscription mediation server with a package2 message, and automatically replacing a password with a new value, automatically initiating creation of a new client certificate, or launching a browser to a URI provided in the response to enable user intervention. In addition, to receive an access request from a device, determining whether credentials are valid, and if the credentials are determined valid, sending an access-accept message with a success indication, and if the credentials are determined not valid, sending an access-accept message with a success indication and an indication that access by the device is limited to only a subscription remediation server.
    Type: Grant
    Filed: March 14, 2016
    Date of Patent: October 10, 2017
    Assignee: Nokia Technologies Oy
    Inventors: Basavaraj Patil, Gabor Bajko
  • Patent number: 9781102
    Abstract: An improved technique involves setting an administrator password in a server to a temporary password upon receipt of a request for administrator access to the server. Along these lines, when a support engineer receives a support ticket from a customer, the support engineer sends a request to obtain administrator access to the customer's server to an access control computer. The access control computer, upon receipt of the request, generates a temporary password that grants the support engineer a one-time administrator access to the server. The access control computer then changes the administrator password on the server to the temporary password and reveals the temporary password to the support engineer. At some time either after the engineer obtains administrator access to the server or after some specified time has passed, the access control computer invalidates the temporary password by changing the administrator password to a different password.
    Type: Grant
    Filed: March 7, 2014
    Date of Patent: October 3, 2017
    Assignee: EMC IP Holding Company LLC
    Inventors: Denis Knjazihhin, Joseph Xavier Lawrence, Jr., David Shapiro, Dan Uwe Zehme
  • Patent number: 9774450
    Abstract: Network-based service content protection techniques are described. In one or more implementations, content is edited locally by a computing device. The edited content is automatically encrypted without any user intervention by the computing device using an encryption credential, e.g., encryption key or other secret. The automatic encryption is performed responsive to a request to store the content at a network-based service provider such that the encrypted content can only be decrypted and accessed with the encryption credential and the encrypted content is uploaded to the network-based service provider.
    Type: Grant
    Filed: August 28, 2015
    Date of Patent: September 26, 2017
    Assignee: Adobe Systems Incorporated
    Inventor: Reza Jalili
  • Patent number: 9775036
    Abstract: Access to femto cell service can be managed through access control list(s) (e.g., white list(s), or black list(s)). White list(s) includes a set of subscriber station(s) identifier numbers, codes, or tokens, and also can include additional fields for femto cell access management based on desired complexity. White list(s) can have associated white list profile(s) therewith to establish logic of femto coverage access based on the white list(s). Values of attribute fields that determine white list(s), black list(s), or white list profile(s) can be generated through various sources. An access list management component facilitates generation and maintenance of white list(s), black list(s), or white list profile(s). Values for identifier attribute field(s) available for inclusion in a white list are validated prior to inclusion therein.
    Type: Grant
    Filed: June 10, 2016
    Date of Patent: September 26, 2017
    Assignee: AT&T MOBILITY II LLC
    Inventors: Kurt Donald Huber, Judson John Flynn, William Gordon Mansfield
  • Patent number: 9769101
    Abstract: A message or system may receive a message, and may determine contents and metadata associated with the message. The contents and metadata may be used to identify another user device, such as a device located at a different entity. A notification message or a copy of the message may be forward to the other device. The copy may be formatted to be compatible with the other device. The notification message or the copy of the message may be forwarded to the other device. Additionally, an interface may be forwarded to the other device to enable the other device to access data regarding the message or other messages.
    Type: Grant
    Filed: January 9, 2015
    Date of Patent: September 19, 2017
    Assignee: Verizon Patent and Licensing Inc.
    Inventors: Nitheesh Tejaprakash, Shekhar Kopuri, Angan Adhikari
  • Patent number: 9767097
    Abstract: A disclosure range determination method includes accepting a disclosure range of data and metadata of the data, extracting attribute information of a user that belongs to the disclosure range of the data accepted in the accepting based on association information associating a disclosure range of data with attribute information of a user that belongs to the disclosure range, converting the metadata accepted in the accepting into a keyword based on association information associating a conversion rule that converts the metadata into significant information with a keyword corresponding to the conversion rule, and determining, by a computer, whether or not a user that belongs to the disclosure range accepted in the accepting qualifies for the disclosure range accepted in the accepting, based on whether or not the keyword converted in the converting is included in the attribute information extracted in the extracting.
    Type: Grant
    Filed: January 17, 2013
    Date of Patent: September 19, 2017
    Assignee: FUJITSU LIMITED
    Inventors: Hiroyasu Sugano, Shinichi Shiotsu, Isamu Yamada, Akira Itasaki, Daisuke Yamashita, Hideki Tanaka, Koichi Yokota
  • Patent number: 9761061
    Abstract: Systems and methods which provide a shipping interface within a user interface are shown. A shipping interface of embodiments is provided within a open architecture or multiple application user interface, such as a browser user interface. A user may be enabled to use a same shipping account with respect to any number of applications or functions. Moreover, a user may be enabled to select a shipping provider of preference, even where the underlying application or function does not support the selected shipping provider or any shipping functions. Embodiments provide comparison of various shipping providers to a user for selection. Embodiments comprise a browser plug-in operable to provide a shipping interface, such a by inserting one or more shipping buttons within a page displayed by the browser, within a popup window, within a frame along the main browser window, within a browser menu bar, tool tray, etcetera.
    Type: Grant
    Filed: October 26, 2006
    Date of Patent: September 12, 2017
    Assignee: Stamps.com Inc.
    Inventors: Keith D. Bussell, Geoffrey C. Begen
  • Patent number: 9762692
    Abstract: A content delivery network has at least a first tier of servers. A content delivery method includes, at a first server in the first tier of servers, obtaining a request from a client for a resource. If the resource is available at the first server or at a peer of the first server, then the resource is served to the client from the first server. Otherwise, it is determined whether the resource is popular, and if the resource is determined to be popular, then the first server obtains the resource and the first server serves the resource to the client. If the resource is determined not to be popular, the client is directed to a second server, not in the first tier of servers, and the second server serves the resource to the client. The second server may be in a second tier of servers or it may be an origin server.
    Type: Grant
    Filed: September 13, 2010
    Date of Patent: September 12, 2017
    Assignee: Level 3 Communications, LLC
    Inventors: David Fullagar, Christopher Newton, Laurence Lipstone
  • Patent number: 9762543
    Abstract: Using DNS communications to filter domain names is disclosed. A domain name is extracted from a received DNS request. The received DNS request is blocked in response to determining based on a policy that access to the domain name of the DNS request is not permitted. In some cases, such a DNS request is responded to with a spoofed DNS response.
    Type: Grant
    Filed: May 3, 2016
    Date of Patent: September 12, 2017
    Assignee: Palo Alto Networks, Inc.
    Inventor: Huagang Xie
  • Patent number: 9762615
    Abstract: A device management apparatus sets a first password required to reflect a security policy managed by the device management apparatus on a device or change the security policy in a device, generates distribution data including the security policy and the set first password, and distributes the generated distribution data to a selected device.
    Type: Grant
    Filed: July 7, 2015
    Date of Patent: September 12, 2017
    Assignee: Canon Kabushiki Kaisha
    Inventor: Junji Sato
  • Patent number: 9756059
    Abstract: Service providers may operate one or more services configured to detect requests generated by automated agents. A CAPTCHA may be transmitted in response to requests generated by automated agents. The CAPTCHAs may be included in a modal pop-up box configured to be displayed by a client application displaying a webpage to a customer of the service provider. Furthermore, the CAPTCHAs included in the modal pop-up box may be rendered inactive and caused not to be displayed by client application executing the webpage. Submitted solutions to CAPTCHAs may be presented with a cookie that enables access to resources of the service provider without restriction. Cookies may be tracked and their use may be used to detect automated agent activity.
    Type: Grant
    Filed: June 1, 2016
    Date of Patent: September 5, 2017
    Assignee: Amazon Technologies, Inc.
    Inventors: Sevag Demirjian, John Lindsay Bates, Mark Evans Brighton, Samuel Charles Goodwin, Colin James Hawkett, Blair Livingstone Hotchkies, Forrest MacKenzie Vines
  • Patent number: 9756099
    Abstract: Processing elements in a streaming application may contain one or more optional code modules—i.e., computer-executable code that is executed only if one or more conditions are met. In one embodiment, an optional code module is executed based on evaluating data flow rate between components in the streaming application. As an example, the stream computing application may monitor the incoming data rate between processing elements and select which optional code module to execute based on this rate. For example, if the data rate is high, the stream computing application may choose an optional code module that takes less time to execute. Alternatively, a high data rate may indicate that the incoming data is important; thus, the streaming application may choose an optional code module containing a more rigorous data processing algorithm, even if this algorithm takes more time to execute.
    Type: Grant
    Filed: December 5, 2012
    Date of Patent: September 5, 2017
    Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATION
    Inventors: Michael J. Branson, John M. Santosuosso
  • Patent number: 9751012
    Abstract: Techniques to interact with an application via messaging are described. An apparatus may comprise an application support component and a communication component. The application support component may be operative to generate an image representing a state of an application and to update the state of the application according to a text command. The communication component may be operative to transmit the image to a client device via a messaging system as an image attachment to a first message and to receive a second message from the client device via the messaging system, the second message comprising the text command. Other embodiments are described and claimed.
    Type: Grant
    Filed: December 12, 2016
    Date of Patent: September 5, 2017
    Assignee: FACEBOOK, INC.
    Inventors: Oded Blayer, Ittai Golde, Ran Makavy, Amir Rosenfeld
  • Patent number: 9749476
    Abstract: Toll-free application data network access is disclosed. In one aspect, there is a device for providing data connectivity. The device includes a connection detector configured to receive a data connectivity request from an application installed on the device. The device further includes an authorization transceiver. The authorization transceiver is configured to transmit an authorization request to a service provider associated with the application via a telecommunication connection, the authorization request including an application identifier for the application and an operator identifier for the service provider. The authorization transceiver is further configured to receive an authorization response indicative of operator specific billing for the application from the service provider. The device also includes a connection manager configured to establish data connectivity via the telecommunication connection based on the authorization response.
    Type: Grant
    Filed: June 25, 2014
    Date of Patent: August 29, 2017
    Assignee: ORANGE
    Inventor: Subash Mandanapu
  • Patent number: 9747296
    Abstract: A method and apparatus for reserving a usable storage space on a storage device is provided. The method includes collecting context data representing an environment surrounding the storage device; selecting at least one file from among files stored in the storage device by using at least one of the context data and user profile data; and processing the selected file and reserving a usable storage space on the storage device. The method reserves the usable storage space by using the context data or user profile data, thereby allowing efficient reserving of usable storage space without a user's manual intervention and preventing waste of unnecessary resources.
    Type: Grant
    Filed: November 12, 2013
    Date of Patent: August 29, 2017
    Assignee: SAMSUNG ELECTRONICS CO., LTD.
    Inventors: Muthukumar Subramanian, Revoti Prasad Bora
  • Patent number: 9747450
    Abstract: An attestation system for asserting and verifying assertions of a known-good state of a computer system is provided. The attestation system allows a challenger and a prover to conduct an attestation so that the challenger can verify an assertion of the prover. To conduct the attestation, the prover sends, as an assertion of its state, a combined measurement of resources along with a constituent measurement of each resource to the challenger. The challenger verifies the assertion by verifying that the asserted constituent measurements represent known-good measurements and verifying that the asserted combined measurement can be generated from the asserted constituent measurements. To verify the asserted constituent measurements, the challenger determines whether each asserted constituent measurement for a resource is a known-good measurement for that resource.
    Type: Grant
    Filed: February 10, 2015
    Date of Patent: August 29, 2017
    Assignee: Facebook, Inc.
    Inventors: Oded Horovitz, Sahil Rihan, Stephen A. Weis, Daniel Arai
  • Patent number: 9749413
    Abstract: Methods and apparatus to provide peer-to-peer interrupt signaling between devices coupled via one or more interconnects are described. In one embodiment, a NIC (Network Interface Card such as a Remote Direct Memory Access (RDMA) capable NIC) transfers data directly into or out of the memory of a peer device that is coupled to the NIC via one or more interconnects, bypassing a host computing/processing unit and/or main system memory. Other embodiments are also disclosed.
    Type: Grant
    Filed: May 29, 2012
    Date of Patent: August 29, 2017
    Assignee: Intel Corporation
    Inventors: Mark S. Hefty, Robert J. Woodruff, Jerrie L. Coffman, William R. Magro
  • Patent number: 9749362
    Abstract: The present invention provides a method, device, and system for obtaining an address of a SIP registration server. The method includes: obtaining, by a branch device, a domain name system DNS resource record for specifying the location of service SRV response message; adding information of a SIP local survivable registration server to the DNS SRV response message; and returning the DNS SRV response message to which the information of the SIP local survivable registration server is added to a branch terminal, so that the branch terminal obtains an Internet protocol IP address of the SIP local survivable registration server according to the information of the SIP local survivable registration server in the DNS SRV response message. The solutions provided by the present invention ensure normal working of the branch terminal and saves costs.
    Type: Grant
    Filed: September 9, 2013
    Date of Patent: August 29, 2017
    Assignee: Huawei Technologies Co., Ltd.
    Inventors: Xiaojun Yan, Wenjun Wang
  • Patent number: 9740854
    Abstract: Systems, methods, and techniques are disclosed for. An example method of providing code protection includes identifying a set of methods including one or more code portions to extract from an application. The method also includes extracting the one or more code portions from the set of methods. The one or more extracted code portions is executable on a computing device remote from a client. The method further includes inserting an interface into the application. The interface enables the client to remotely execute the one or more extracted code portions. The method also includes transmitting the application including the interface and without the one or more extracted code portions to the client.
    Type: Grant
    Filed: October 25, 2013
    Date of Patent: August 22, 2017
    Assignee: RED HAT, INC.
    Inventors: Filip Nguyen, Marek Baluch