Network Resources Access Controlling Patents (Class 709/229)
  • Patent number: 10002171
    Abstract: Various systems and methods can provide a flexible database schema. One method can store information identifying a first entity in a first table. A unified data model includes several tables, including the first table and a metadata table. Each of the tables stores information describing one or more entities belonging to a respective archetype. The first table already stores information identifying a second entity when the information identifying the first entity is stored. The second entity is already related to another entity when the information identifying the first entity is stored. The first entity is a new type of entity not already stored in the first table when the information identifying the first entity is stored. The method then stores metadata associated with the first entity in a metadata table. The metadata then identifies the new type of entity.
    Type: Grant
    Filed: May 11, 2015
    Date of Patent: June 19, 2018
    Assignee: Symantec Corporation
    Inventors: Craig Robert King, Richard K. Freeman
  • Patent number: 10003594
    Abstract: Authentication mechanisms are disclosed. For example, an enterprise associated number or a social security number (SSN) can be provided to enter a first level. Then, any one of a ZIP code number, a device identifier, a date of birth, and a portion of the SSN can be provided to access applications in the first level. Lastly, a PIN can be provided to enter a second level of the enterprise. Additionally, these authentication mechanisms can be added and/or changed. In the former case, if a user used a SSN to enter the mentioned first level, then a date of birth can be used to update an authentication mechanism. Alternatively, if a user used an enterprise number to gain such access, then part of the SSN can be used for the update. If the user wants to change the authentication mechanism, the date of birth can be used for the update.
    Type: Grant
    Filed: July 17, 2017
    Date of Patent: June 19, 2018
    Assignee: United Services Automobile Association
    Inventors: Richard E. Moore, Hector J. Castillo
  • Patent number: 10003652
    Abstract: In an embodiment, a subordinate mobile communication device (SMCD) receives a content access profile from a dispatcher. The content access profile includes (i) proxy server selection criteria to facilitate the SMCD to select between a plurality of proxy servers based on a current transport mechanism type (e.g., WiFi, 3G, Satellite, etc.), each of the plurality of proxy servers being configured by the dispatcher to provide different degrees of support for Internet-based services to the SMCD, and/or (ii) a set of Internet-based service access rules to facilitate the SMCD to independently determine whether to grant or deny access by the SMCD to Internet-based services based on the current transport mechanism type of a connection between the SMCD and an access network. The SMCD determines its current transport mechanism type and uses the content access profile to selectively engage with a given Internet-based service.
    Type: Grant
    Filed: July 27, 2012
    Date of Patent: June 19, 2018
    Assignee: OMNITRACS, LLC
    Inventors: David S. Cha, Daniel A. Deninger, Kenneth H. Oertle, Jason M. Riggs
  • Patent number: 10002204
    Abstract: A system includes reception of time-series tuples of a first portion of business data, automatic generation of a weighted graph describing relationships between the time-series tuples, automatic generation of one or more causal loop diagrams based on the relationships and on one or more knowledge models associated with the business data, automatic transformation of each of the one or more causal loop diagrams into a respective state flow diagram, automatic annotation of each of the one or more state flow diagrams with parameters and equations, generation of a simulated system based on the one or more annotated state flow diagrams, and evaluation of the simulated system based on a second portion of the business data.
    Type: Grant
    Filed: May 19, 2015
    Date of Patent: June 19, 2018
    Assignee: SAP SE
    Inventors: Marc Drobek, Wasif Gilani, David Redlich, Thomas Molka
  • Patent number: 10002332
    Abstract: Methods and systems for resource and organization achievement are described. In one embodiment, outcome data associated with a resource may be received. The outcome data may include an outcome time period, an outcome title, an outcome priority, an outcome status, and an outcome access level. The outcome status may identify progress by the resource toward an outcome. The outcome access level may define resource access to an outcome item. The outcome data may be stored in a database. A display of an outcome item associated with the resource may be generated based on at least a portion of the outcome data. The outcome item may represent the outcome for the resource. Additional methods and systems are disclosed.
    Type: Grant
    Filed: May 21, 2010
    Date of Patent: June 19, 2018
    Assignee: Shared Performance, LLC
    Inventor: David T. De Spong
  • Patent number: 10003550
    Abstract: An apparatus comprising a method for allocating shared processing resources, comprising the steps of (A) predicting a first amount of processing resources needed to complete each of a plurality of transcoding jobs in a work queue of a project, (B) determining a second amount of processing resources available prior to processing the project and (C) adding processing resources needed to complete the project. The processing resources are added in a fixed number of predetermined processing units. The fixed number of computer resources are added (a) to minimize an overall use of said processing resources needed to complete the project and (b) to complete the project within a target time.
    Type: Grant
    Filed: March 14, 2014
    Date of Patent: June 19, 2018
    Assignee: Amazon Technologies
    Inventors: Trevor Babcock, Dustin Encelewski
  • Patent number: 9992180
    Abstract: Systems and methods for protecting communications between at least two nodes protect the identity of a node requesting information, provide content of communications being sent and/or obscuring a type of communications being sent. Varying degrees of protection options including encryption, intermediate node termination and direct node communications are provided.
    Type: Grant
    Filed: April 22, 2016
    Date of Patent: June 5, 2018
    Assignee: SMART SECURITY SYSTEMS LLC
    Inventor: Kenneth C. Tola, Jr.
  • Patent number: 9990473
    Abstract: Securely sharing content between a first system and a second system is provided. A hardware-based root of trust is established between the first system and a server. Content requested by a user and an encrypted license blob associated with the content is received by the first system from the server. A first agent on the first system connects with a second agent on the second system. The encrypted license blob and a sub-license request are sent from the first agent to a security processor on the first system. The first security processor decrypts the encrypted license blob, validates the sub-license request, and if allowed, creates a sub-license to allow the second system to play the content. The first security processor sends the sub-license to a security processor on the second system. The first system provides access to the content to the second system for future playback according to the sub-license.
    Type: Grant
    Filed: December 8, 2011
    Date of Patent: June 5, 2018
    Assignee: Intel Corporation
    Inventors: Mojtaba Mirashrafi, Mousumi M. Hazra, Ramesh Pendakur, Daniel Nemiroff
  • Patent number: 9986083
    Abstract: An information transmitting method includes the following steps: generating a connecting code and displaying the connecting code on a display of the information sending device; receiving a second unique identity from the server; obtaining contents selected by a user; generating an information sending request; and sending the information sending request to the server. According to above information transmitting method, by establishing a connection between two terminals, or two browser applications, information of different categories can be efficiently transmitted from one terminal to the other terminal. In addition, this disclosure also publishes an information transmitting device and an information transmitting system.
    Type: Grant
    Filed: June 27, 2014
    Date of Patent: May 29, 2018
    Assignee: TENCENT TECHNOLOGY (SHENZHEN) COMPANY LIMITED
    Inventor: Yisha Lu
  • Patent number: 9985843
    Abstract: According to one exemplary embodiment, a method for parallel processing a network of nodes having at least one ordering constraint and at least one conflict constraint is provided. The method may include breaking a plurality of loops caused by the at least one ordering constraint. The method may also include determining a node order based on the at least one ordering constraint. The method may then include determining a conflict order based on the at least one conflict constraint, whereby no new loops are created in the network. The method may further include performing parallel processing of the network of nodes based on the node order and the conflict order.
    Type: Grant
    Filed: February 27, 2015
    Date of Patent: May 29, 2018
    Assignee: International Business Machines Corporation
    Inventors: Hemlata Gupta, David J. Hathaway, Kerim Kalafala, Ronald D. Rose
  • Patent number: 9973549
    Abstract: Aspects of the subject disclosure may include, for example, receiving from a web real-time communications gateway a first request for communication services from a network resource, where the network resource does not utilize a web real-time communications protocol and where the first request is compliant with a markup language that differs from the web real-time communications protocol, directing the network resource to provide the communication services identified in the first request, receiving a first message from the web real-time communications gateway, where the first message is compliant with the markup language, translating the first message to a first updated message conforming to a protocol used by the network resource, where protocol differs from the markup language used for communicating with the web real-time communications gateway, and transmitting the updated first message to the network resource facilitating the communication services identified in the first request.
    Type: Grant
    Filed: November 29, 2016
    Date of Patent: May 15, 2018
    Assignee: AT&T MOBILITY II, LLC
    Inventors: Arturo Maria, Thomas J. Routt
  • Patent number: 9973875
    Abstract: The invention provides a computer-based method for logging a user mobile device onto a server computer system including registering a unique identifier of a user mobile device, receiving a first message from the user mobile device, detecting an Internet Protocol address associated with the user mobile device, receiving the unique identifier corresponding to the Internet Protocol address; and transmitting to the user mobile device a second message.
    Type: Grant
    Filed: January 22, 2013
    Date of Patent: May 15, 2018
    Assignee: IHEARTMEDIA MANAGEMENT SERVICES, INC.
    Inventors: Evan Schwartz, Lasse Hamre, Michael Moss, Dan MacTiernan
  • Patent number: 9973573
    Abstract: Reducing concurrency in a system comprising a plurality of services sending a plurality of concurrent requests to a back-end service through a concurrency reduction service. The concurrency reduction service maps each concurrent incoming request to a key; and determines if the key to which the concurrent incoming request is mapped matches a key mapped from another concurrent incoming request from the plurality of concurrent requests. If the key to which the concurrent incoming request is mapped matches a key mapped from at least one other concurrent incoming request from the plurality of concurrent requests, then the service groups the concurrent incoming request with the at least one other concurrent incoming request to be sent to the back-end service. The concurrency reduction service sends one outgoing request to the back-end service for each of the keys to which the plurality of concurrent incoming requests were mapped.
    Type: Grant
    Filed: June 8, 2016
    Date of Patent: May 15, 2018
    Assignee: International Business Machines Corporation
    Inventors: Timothy M. Burns, Ryan M. Graham, Mark A. Huffman, Todd E. Kaplinger
  • Patent number: 9973600
    Abstract: A method for packet inspection in a computer network includes receiving a plurality of network streams from a plurality of client systems at a first load balancer; allocating the network streams across a proxy instances; and inspecting and filtering the network streams by the proxy instances. The method further includes forwarding the filtered network streams to a second load balancer; allocating the filtered network streams to a plurality of application instances; and processing and responding to the network streams at the application instances. The method still further includes inspecting and filtering the responses to the network streams by the proxy instances; and forwarding the response to the client systems.
    Type: Grant
    Filed: May 4, 2016
    Date of Patent: May 15, 2018
    Assignee: SECUREWORKS CORP.
    Inventors: Daniel Good, Sai Bathina, Ihor Bilyy, Seungyoung Kim
  • Patent number: 9965643
    Abstract: This invention discloses a system and method for selective erasure, encryption and or copying of data on a remote device if the remote device has been compromised or the level of authorization of a roaming user in charge of the remote device has been modified.
    Type: Grant
    Filed: April 28, 2017
    Date of Patent: May 8, 2018
    Assignee: BlackBerry Limited
    Inventors: Daniel J. Mendez, Mason NG
  • Patent number: 9959195
    Abstract: An agent installed on application server having a WSGI web application dynamically instruments that web application. The agent may modify the application via instrumentation such that it can be monitored without specific details of the WSGI application framework. A configuration file may be modified upon detecting a call to the application configuration file through a gateway interface that receives the call. After modifying the configuration file, the modified configuration file is executed in response to the call. Additionally, for subsequent calls to that particular web application, the WSGI gateway will call the modified WSGI configuration file for execution instead of the original WSGI file.
    Type: Grant
    Filed: April 29, 2015
    Date of Patent: May 1, 2018
    Assignee: Cisco Technology, Inc.
    Inventors: Sanjay Nagaraj, Dan Koepke
  • Patent number: 9953642
    Abstract: A robot apparatus including an input unit to receive a voice command from a user, a determination unit to determine whether a voice command is repeated a predetermined number of times, and a control unit to register a shortcut command to shorten a voice command if it is determined a voice command is repeated a predetermined number of times. A shortcut command to shorten a voice command of a user is generated, and thus user convenience is enhanced.
    Type: Grant
    Filed: December 19, 2008
    Date of Patent: April 24, 2018
    Assignee: SAMSUNG ELECTRONICS CO., LTD.
    Inventor: Hyun-ryong Jung
  • Patent number: 9955519
    Abstract: A communication system maintains a signal processing license within a memory of the communication system. The signal processing license allows the communication system to perform a license-enabled signal processing function on signals received from one or more devices external to the communication system while the signal processing license is maintained within the memory. As such, the communication system detects that an additional communication system is within a transfer range of the communication system, and, in response, performs a transfer operation in which the signal processing license is transferred from the communication system to the additional communication system such that the signal processing license is no longer maintained within the memory once the transfer operation is completely performed.
    Type: Grant
    Filed: April 28, 2017
    Date of Patent: April 24, 2018
    Assignee: Sonova AG
    Inventor: Marc Secall
  • Patent number: 9954861
    Abstract: Novel tools and techniques might provide for implementing application, service, and/or content access control. Based at least in part on a consumer's choice of applications, services, content, and/or content providers—particular in exchange for a subsidy on content and/or network access fees provided to the consumer by chosen content providers—, a computing system may determine whether access to applications, services, and/or content not associated with the chosen content providers (“other content”) should be allowed or restricted. If restricted, the computing system might utilize various network access techniques and/or technologies to block the consumer's access to the other content, to allow access to the other content on a charge per access basis, or to allow access to the other content at reduced network access speeds. In some embodiments, an access provider (e.g., an Internet service provider, etc.) might perform both determination and implementation of content access and restriction.
    Type: Grant
    Filed: January 21, 2015
    Date of Patent: April 24, 2018
    Assignee: CenturyLink Intellectual Property LLC
    Inventors: Michael J. Fargano, Charles I. Cook, Kevin M. McBride, John T. Pugaczewski
  • Patent number: 9948722
    Abstract: Disclosed are a path computation element communication protocol (PCEP) session establishment method and device. The technical solution comprises: at a PCC or PCE node device side, before needing to establish a PCEP session, allocating a TCP connection communication end attribute to a PCC or a PCE at either end in the manner of static configuration/dynamic designation or election mechanism automatic allocation; or detecting whether to establish a TCP connection relationship, if not, actively connecting the opposite end, and if a plurality of TCP connection relationships has been established, simultaneously cutting off a plurality of connections at both ends, and reinitiating a TCP connection after waiting a random time respectively. The present invention achieves the establishment of a PCEP session in the multi-PCE cooperation computation scenario under the condition of meeting two constraint conditions which are specified by a protocol.
    Type: Grant
    Filed: April 9, 2013
    Date of Patent: April 17, 2018
    Assignee: ZTE CORPORATION
    Inventors: Xuping Cao, Zhihong Wang, Gang Lu, Jia Qian
  • Patent number: 9948674
    Abstract: An origin server selectively enables an intermediary (e.g., an edge server) to shunt into and out of an active TLS session that is on-going between a client and the origin server. The technique allows for selective pieces of a data stream to be delegated from an origin to the edge server for the transmission (by the edge server) of authentic cached content, but without the edge server having the ability to obtain control of the entire stream or to decrypt arbitrary data after that point. The technique enables an origin to authorize the edge server to inject cached data at certain points in a TLS session, as well as to mathematically and cryptographically revoke any further access to the stream until the origin deems appropriate.
    Type: Grant
    Filed: December 26, 2016
    Date of Patent: April 17, 2018
    Assignee: Akamai Technologies, Inc.
    Inventors: Charles E. Gero, Michael R. Stone
  • Patent number: 9948662
    Abstract: Systems and methods for optimizing system resources by selectively enabling various scanning functions relating to user traffic streams based on the level of trust associated with the destination are provided. According to one embodiment, a network security device within an enterprise network receives an application protocol request directed to an external network that is originated by a client device associated with the enterprise network. It is determined by the network security device whether a network parameter of the external network is associated with a set of trusted networks. When a result of the determining is affirmative, application of a subset of security features of multiple security features is selectively disabled, based on a trust level associated with the external network, by the network security device while the client device is accessing the external network.
    Type: Grant
    Filed: July 31, 2015
    Date of Patent: April 17, 2018
    Assignee: Fortinet, Inc.
    Inventor: Robert A. May
  • Patent number: 9940283
    Abstract: The present subject matter discloses methods and systems of application sharing in multi-host computing system (100) running multiple operating systems. In one embodiment, the method for application sharing in a multi-host computing system (100) comprises receiving a request to launch an application in a first operating system of the multi-host computing system (100) from a second operating system of the multi-host computing system (100), generating an application launch request to launch the application and transmitting the application launch request to a widget daemon running on the first operating system using a PCIe to PCIe application redirection engine. The method further comprises initiating an application sharing session between the first operating system of the multi-host computing system (100) from the second operating system of the multi-host computing system (100).
    Type: Grant
    Filed: April 9, 2012
    Date of Patent: April 10, 2018
    Assignee: Ineda Systems Inc.
    Inventors: Balaji Kanigicherla, Sridhar Adusumilli, Sarveshwar Bandi, Narsi Reddy Annapureddy, Chandra Kumar Chettiar, Kishor Arumilli
  • Patent number: 9942216
    Abstract: A method for routing IP packets with IPSec AH authentication is disclosed. The method includes locating overlay edge routers between private domains and their associated NAT routers. Outbound packets from a source private domain are modified by its overlay edge router to include IPSec AH authorization data computed using IP source and destination addresses that match a packet's final source and destination IP address upon final NAT translation immediately prior to delivery to a host of a destination private domain.
    Type: Grant
    Filed: May 1, 2017
    Date of Patent: April 10, 2018
    Inventor: Praveen Raju Kariyanahalli
  • Patent number: 9934079
    Abstract: A system, and computer usable program product for fast remote communication and computation between processors are provided in the illustrative embodiments. A direct core to core communication unit (DCC) is configured to operate with a first processor, the first processor being a remote processor. A memory associated with the DCC receives a set of bytes, the set of bytes being sent from a second processor. An operation specified in the set of bytes is executed at the remote processor such that the operation is invoked without causing a software thread to execute.
    Type: Grant
    Filed: May 27, 2010
    Date of Patent: April 3, 2018
    Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATION
    Inventors: John Bruce Carter, Elmootazbellah Nabil Elnozahy, Ahmed Gheith, Eric Van Hansbergen, Karthick Rajamani, William Evan Speight, Lixin Zhang
  • Patent number: 9927858
    Abstract: Sleeping device(s) may be changed from a sleeping state to an awake state using a multicast packet that sent to a multicast address of a multicast wake-up group. The packet may include an identifier for one or more particular device(s) in the multicast group, which, when received by the device(s), causes the device(s) to wake up.
    Type: Grant
    Filed: February 29, 2016
    Date of Patent: March 27, 2018
    Assignee: MICROSOFT TECHNOLOGY LICENSING, LLC
    Inventors: Sumit Garg, Murari Sridharan
  • Patent number: 9928086
    Abstract: A method includes providing a computer readable code configured to perform a process of feature management. The computer code includes one or more configurable features having a feature property. The feature property includes a state. The method also includes: running the computer readable code on the local computer; connecting by the local computer with a feature computer server; identifying an instance of an installed computer program including the computer readable code, and retrieving a feature record associated with the installed computer program or the member from the feature server; and configuring a state of one or more of a set of the feature properties of the installed computer program based on a retrieved feature record. A system to perform the method is also described.
    Type: Grant
    Filed: March 14, 2013
    Date of Patent: March 27, 2018
    Assignee: Corel Corporation
    Inventors: Alireza Fakhraei, Matthew Robert Schnarr
  • Patent number: 9930067
    Abstract: A client establishes a network session with a server. The network session is used to establish an encrypted communications session. The client establishes another network session with another server, such as after terminating the first network session. The client resumes the encrypted communications session over the network session with the other server. The other server is configured to receive encrypted communications from the client and forward them to the appropriate server.
    Type: Grant
    Filed: December 18, 2014
    Date of Patent: March 27, 2018
    Assignee: Amazon Technologies, Inc.
    Inventors: Jesper Mikael Johansson, Darren Ernest Canavor, Jon Arron McClintock, Gregory Branchek Roth, Gregory Alan Rubin, Nima Sharifi Mehr
  • Patent number: 9930387
    Abstract: Methods and apparatus for conserving bandwidth within a network based on two or more different service levels. In an exemplary embodiment, programming that is simulcast on two or more program channels is mapped to one physical channel during periods when the programming is scheduled at only one service level (e.g., standard definition), thereby conserving bandwidth on the network that would otherwise be consumed by the simultaneous broadcast on the two or more channels. When the programming service level becomes heterogeneous across the channels (e.g., SD and HD simulcast), physical channel(s) supporting the HD content are provided within a local service area only “on-demand” using, for example, a switched digital channel allocation. Accordingly, no HD broadcast occurs within a given area until at least one user requests it, thereby further conserving network bandwidth.
    Type: Grant
    Filed: March 28, 2016
    Date of Patent: March 27, 2018
    Assignee: Time Warner Cable Enterprises LLC
    Inventor: Michael L. LaJoie
  • Patent number: 9930022
    Abstract: There is provided an information processing system, information processing apparatus, and a method of controlling the same. Upon receiving an encrypted application and encrypted license information, the information processing apparatus decrypts the encrypted license information and the encrypted application. It is determined whether or not the decrypted application is a web application, and in the case where the application is determined to be a web application, a URL contained in the application and information contained in the license information are registered, and a display item corresponding to the application is displayed in a menu screen.
    Type: Grant
    Filed: August 7, 2015
    Date of Patent: March 27, 2018
    Assignee: CANON KABUSHIKI KAISHA
    Inventor: Hiroshi Yasuhara
  • Patent number: 9930705
    Abstract: A mobile terminal control method includes: acquiring, by a mobile terminal, system permission of an operating system of the mobile terminal; establishing, by the mobile terminal, a connection to a remote control device; receiving, by the mobile terminal, a remote control instruction from the remote control device, the remote control instruction being an instruction recognizable to the operating system of the mobile terminal, and the remote control instruction being used for remote control over the mobile terminal; and recognizing, by the mobile terminal, the remote control instruction by using the operating system, and executing an operation corresponding to the remote control instruction on the basis of the system permission.
    Type: Grant
    Filed: May 19, 2016
    Date of Patent: March 27, 2018
    Assignee: TENCENT TECHNOLOGY (SHENZHEN) COMPANY LIMITED
    Inventor: Danhua Li
  • Patent number: 9923847
    Abstract: A presence-based capability discovery mechanism for in-call services in the rich communication services (RCS) release 6 suite of services is provided. A method can comprise receiving a unique identifier representing a communication between a first user device and a second user device, the unique identifier comprising a concatenation of a first string, a second string, and a third string, as a function of the second string, performing a look up of a first presence tuple associated with the first user device; and associating the unique identifier to first presence tuple.
    Type: Grant
    Filed: December 9, 2016
    Date of Patent: March 20, 2018
    Assignee: AT&T INTELLECTUAL PROPERTY I, L.P.
    Inventors: Matthew Wayne Stafford, Min Lu
  • Patent number: 9923934
    Abstract: A system and method for establishing a voice over Internet protocol link to a called party's mobile telephony device utilizes push notifications to activate a communications application on the called party's mobile telephony communications device. When a request to establish a voice over Internet protocol link to a mobile device is received by an incoming proxy server of a voice over Internet protocol service provider, the service provider causes a push notification to be sent to the mobile device. The called party can respond to the push notification in a manner that causes a communications application on the mobile device to be activated. Once the push notification has caused the communications application to activate, the communications application sends a special registration request to an outbound proxy server.
    Type: Grant
    Filed: July 26, 2011
    Date of Patent: March 20, 2018
    Assignee: Vonage Business Inc.
    Inventors: Sushant Singh, Daniel Keil, Mark Loeser, Michael South, Pasquale Villani
  • Patent number: 9922205
    Abstract: Various systems and methods for managing user information on mobile devices are described herein. A selection of user information is received from a user operating a user device. A privacy setting for the selection of user information is received from the user, the privacy setting to permit or deny access to the user information to a third-party application. The selection of user information and the privacy setting is transmitted from the user device to a receiving device, where the receiving device is configured to enforce the privacy setting for the third-party application executing on the receiving device.
    Type: Grant
    Filed: July 27, 2015
    Date of Patent: March 20, 2018
    Assignee: Intel Corporation
    Inventors: Gyan Prakash, Rajesh Poornachandran
  • Patent number: 9921961
    Abstract: A multi-level memory management circuit can remap data between near and far memory. In one embodiment, a register array stores near memory addresses and far memory addresses mapped to the near memory addresses. The number of entries in the register array is less than the number of pages in near memory. Remapping logic determines that a far memory address of the requested data is absent from the register array and selects an available near memory address from the register array. Remapping logic also initiates writing of the requested data at the far memory address to the selected near memory address. Remapping logic further writes the far memory address to an entry of the register array corresponding to the selected near memory address.
    Type: Grant
    Filed: January 6, 2017
    Date of Patent: March 20, 2018
    Assignee: Intel Corporation
    Inventors: Christopher B. Wilkerson, Alaa R. Alameldeen, Zhe Wang, Zeshan A. Chishti
  • Patent number: 9916439
    Abstract: The subject disclosure is directed towards securing network data traffic through a trusted partition of the computing environment. A proxy service may communicate transaction data from a client to security-critical code within the trusted partition, which compares the transaction data to a security policy from a commercial electronic entity. If the transaction data includes malicious content, a security component framework of the trusted partition may reject the transaction data and terminate communications with the client. If the transaction data does not include malicious content, the security component framework may communicate a secured version of the transaction data and retrieve response data from the commercial electronic entity, which may be further communicated back to the client.
    Type: Grant
    Filed: March 22, 2012
    Date of Patent: March 13, 2018
    Assignee: MICROSOFT TECHNOLOGY LICENSING, LLC
    Inventors: Mariusz H. Jakubowski, Marcus Peinado
  • Patent number: 9913079
    Abstract: A first wireless communication device (UE device) associated with a certain user (or included in a specified set/group of UE devices) may establish a first communication link with an accessory device according to a short-range radio access technology, and transmit link (pairing) information associated with the first communication link to a server, such as a cloud-based server. The server may share this (first) link information with other UE devices associated with the same user (or belonging to the same specified group of UE devices as the first UE device). Link information associated with the other UE devices (i.e. second link information) may equally be shared with the accessory device, and the other UE devices and accessory device may use the first link information and second link information in establishing respective communication links between any of the other UE devices and the accessory device without having to undergo a pairing procedure.
    Type: Grant
    Filed: September 30, 2015
    Date of Patent: March 6, 2018
    Assignee: Apple Inc.
    Inventors: Akshay Mangalam Srivatsa, Craig P. Dooley, David John Shaw, Ganesha Adkasthala Ganapathi Batta, Michael Jason Giles, Sriram Hariharan
  • Patent number: 9912651
    Abstract: An example computer implemented method to create an authenticated server view includes sending a client secret to an online-synchronized content management system and receiving an authentication key. The example method can then include generating a server view of the online-synchronized content management system using instantiation data. The instantiation data can include a resource address and the authentication key. The server view can be configured to request server elements from the online-synchronized content management system using the instantiation data and render the server elements.
    Type: Grant
    Filed: October 13, 2015
    Date of Patent: March 6, 2018
    Assignee: Dropbox, Inc.
    Inventors: Maxime Larabie-Belanger, Sang Tian, Joshua Kaplan, Eduardo Escardo Raffo
  • Patent number: 9912664
    Abstract: Allowing a subscriber of media content services or products to receive filtered content based on the current viewer's profile (i.e., age, gender, maturity, etc.) as opposed to the viewer's physical location is provided. Media content for which filtering may apply may be in the form of movies, television shows, music for listening/downloading, video games, internet browsing, and the like. Upon logging in from the endpoint device interface (television/set-top-box, desktop computer, laptop computer, smart-phone, touch computer, etc.), log-in information may be compared with predefined profiles set up by the primary account holder and filtered media content may be delivered to match the profile of the current logged in end user.
    Type: Grant
    Filed: March 31, 2011
    Date of Patent: March 6, 2018
    Assignee: Cox Communications, Inc.
    Inventors: Daniel D. Lam, Jayasri Devalapalli, Jay P. Langa, Yousef Wasef Nijim
  • Patent number: 9910929
    Abstract: A web browser-based content management system which includes a web browser; a web server engine embedded into the web browser so that the web browser has web server functionality, the web server engine having web server, database and scripting language components; and a content management system to support the creation, collection, management and publication of digital content, the content management system deployed on the web browser embedded web server to provide a web browser-based content management system. Also included is a browser to browser content sharing system.
    Type: Grant
    Filed: October 24, 2012
    Date of Patent: March 6, 2018
    Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATION
    Inventor: Suraj Shinde
  • Patent number: 9904767
    Abstract: A method and apparatus for setting an imaging environment of a medical apparatus based on one or more signals transmitted from a plurality of clients are provided. The method of setting an imaging environment of a medical apparatus based on one or more signals transmitted from a plurality of clients includes transmitting information regarding an imaging operation of the medical apparatus to the plurality of clients, receiving one or more response signals with respect to the information from the plurality of clients, and setting the imaging environment of the medical apparatus based on the one or more response signals.
    Type: Grant
    Filed: August 26, 2014
    Date of Patent: February 27, 2018
    Assignee: SAMSUNG ELECTRONICS CO., LTD.
    Inventors: Nasir Desai, Toshihiro Rifu, Yeon-ju Lee, Jin-mo Jung
  • Patent number: 9906533
    Abstract: A cloud computing system includes a plurality of tenants that are permitted to access cloud hosted applications. The system includes an input governance layer associated with each application, and an output governance layer associated with each application. The input governance layer and the output governance layer include an encapsulation of a cloud hosted application. The governance layers receive a request from a tenant-user to access a first application on the cloud computing system, check a governance database to determine if the tenant-user is authorized to access the first application, and allows or denies access accordingly.
    Type: Grant
    Filed: March 10, 2016
    Date of Patent: February 27, 2018
    Assignee: CA, Inc.
    Inventor: Kenneth James Kranz
  • Patent number: 9907010
    Abstract: Systems and methods for a multi-tenant communication platform. At a multi-tenant communication platform, and responsive to authentication of a communication request provided by an external system, a routing address record of the communication platform is determined that matches a communication destination of the communication request. The matching routing address record associates the communication destination with a plurality of external communication providers. At least one communication provider associated with the matching routing address record is selected, and a request to establish communication with the communication destination is provided to each selected communication provider. The communication request specifies the communication destination and account information.
    Type: Grant
    Filed: November 18, 2015
    Date of Patent: February 27, 2018
    Assignee: Twilio, Inc.
    Inventor: Patrick Malatack
  • Patent number: 9894520
    Abstract: Methods and systems for caching of remote server MAC authentication to enable fast roaming are provided. According to one embodiment, a wireless network controller of a wireless local area network (WLAN) receives an authentication request relating to a wireless client device from a wireless access point (AP) managed by the wireless network controller. It is determined whether a prior authentication result associated with the client is present in a cache of the controller. The client is permitted to access the WLAN via the AP when the prior authentication result is present and indicates the client was previously successfully authenticated. The authentication request is issued to a remote authentication device associated with the WLAN to determine a current authentication status of the client. Responsive to receipt of the current authentication status, information regarding the current authentication status is stored by the controller within the cache.
    Type: Grant
    Filed: September 24, 2014
    Date of Patent: February 13, 2018
    Assignee: Fortinet, Inc.
    Inventor: Yong Zhang
  • Patent number: 9893897
    Abstract: Technologies are provided in example embodiments for analyzing an encrypted network flow. The technologies include monitoring the encrypted network flow between a first node and a second node, the network flow initiated from the first node; duplicating the encrypted network flow to form a copy of the encrypted network flow; decrypting the copy of the encrypted network flow using a shared secret, the shared secret associated with the first node and the second node; and scanning the network flow copy for targeted data.
    Type: Grant
    Filed: November 2, 2015
    Date of Patent: February 13, 2018
    Assignee: Intel Corporation
    Inventors: Xiaoning Li, Karanvir S. Grewal, Geoffrey H. Cooper, John R. Guzik
  • Patent number: 9894036
    Abstract: A cyber threat attenuation system. The system comprises a cyber threat data store, a plurality of sensor control points (SCPs), wherein at least one SCP is located in each local area network (LAN) segment of an enterprise network, and an analytics correlation system (ACS). Each SCP comprises a plurality of sensor applications that analyze data packets transported by the LAN segment in which the SCP is located and transmits a notification identifying the transmitting sensor, an identity of the source of the data packet, an identity of the destination of the data packet, and a notification reason to the data store. The ACS comprises an application that determines unusual data packet traffic in the enterprise network and transmits a notification comprising information about the unusual data packet traffic and an identity of a host computer associated with the unusual data packet traffic to the data store.
    Type: Grant
    Filed: November 17, 2015
    Date of Patent: February 13, 2018
    Assignee: Cyber adAPT, Inc.
    Inventors: Michael Weinberger, Devin Jones, Scott E. Millis, J. Kirsten Bay
  • Patent number: 9893944
    Abstract: An approach is provided in which a network bandwidth manager receives a first request to access site content from a source site over a computer network. The network bandwidth manager analyzes the site content against a domain corpora that corresponds to one or more organizational needs of an organization. When the network bandwidth manager receives a second request corresponding to the source site, the network bandwidth manager modifies a quality of service of the computer network to access the source site based upon the previous analysis. In turn, the network bandwidth manager provides access to the source site over the computer network utilizing the modified quality of service.
    Type: Grant
    Filed: October 1, 2014
    Date of Patent: February 13, 2018
    Assignee: International Business Machines Corporation
    Inventors: Corville O. Allen, Andrew R. Freed
  • Patent number: 9886585
    Abstract: Data may be encrypted using a public key. From a plurality of functions executable on the data, one or more functions may be selected. The selected one or more functions may be associated with the encrypted data. The selected one or more functions may provide exclusive access to the data. A data structure specifying conditions for access to the one or more functions may be created. An exclusive interface to provide access to the one or more functions may be created. The interface, upon determining that one or more conditions from the conditions are satisfied, may grant access to the one or more functions. The encrypted data, the associated one or more functions, the data structure, and the interface may be included into an object.
    Type: Grant
    Filed: June 14, 2013
    Date of Patent: February 6, 2018
    Assignee: SAP SE
    Inventors: Marek Piotr Zielinski, Jan Harm Petrus Eloff
  • Patent number: 9887931
    Abstract: A system, method, and computer-readable medium for point of presence (POP) based traffic surge detection and mitigation are provided. The system detects a traffic surge for a target group of resources directed at a source POP based on the target group's rank shifts and volume changes among recent time intervals. The system mitigates the detected traffic surge by identifying destination POPs with spare capacity and routing at least a portion of incoming requests for the target group of resources to the destination POPs in accordance with their spare capacities.
    Type: Grant
    Filed: March 30, 2015
    Date of Patent: February 6, 2018
    Assignee: Amazon Technologies, Inc.
    Inventors: Hardeep Singh Uppal, Prashanth Acharya, Craig Wesley Howard
  • Patent number: 9888015
    Abstract: A method and system are provided for managing access to resources available remotely from at least one computing device. The resources include at least one software application and at least one hardware component. The method and system involve storing access level indicators for indicating different types of access; storing identifiers for identifying different users with access to the at least one computing device and possible access to the resources; for each resource and each identifier, storing an access level indicator for that resource and that user; and before granting access to a resource for a user seeking access to the resource, operating a processor to: determine an identifier identifying the user; determine the access level indicator stored in the storage module for the identifier and the resource; and if access is consistent with the determined access level indicator, grant access to the resource, otherwise, deny access to the resource.
    Type: Grant
    Filed: April 25, 2017
    Date of Patent: February 6, 2018
    Assignee: SPHERE 3D INC
    Inventor: Giovanni Morelli, Jr.