Multiple Computer Communication Using Cryptography Patents (Class 713/150)
  • Patent number: 10176304
    Abstract: A method and an apparatus for storing a redeem code and a method and an apparatus for verifying a redeem code. The method for storing a redeem code includes generating a random value and determining an index of the random value according to an order in which the random value is generated, generating a number pair according to the random value and the index of the random value, mapping the number pair to a string and generating a redeem code according to the string, and determining a storage location of the random value according to the index of the random value, and saving the random value at the determined storage location.
    Type: Grant
    Filed: March 8, 2017
    Date of Patent: January 8, 2019
    Assignee: TENCENT TECHNOLOGY (SHENZHEN) COMPANY LIMITED
    Inventor: Jian Zhou
  • Patent number: 10171561
    Abstract: A construct having a plurality of distributed resources can include a portion of a second rack having a plurality of computing devices controlled by a second management node. The second management node can determine it contains insufficient construct data such as user data, group data, resource data, or authorization policy data to execute an operation associated with the construct. The second management node can synchronize at least a portion of construct data with a first management node. The first management node can be associated with the construct and a mutual trust relationship can exist between the first management node and the second management node. The first management node and the second management node can comprise autonomous management nodes capable of functioning independent of the network.
    Type: Grant
    Filed: November 10, 2015
    Date of Patent: January 1, 2019
    Assignee: International Business Machines Corporation
    Inventors: John Yow-Chun Chang, Ching-Yun Chao, Patrick L. Davis, Rohan Gandhi, Yuhsuke Kaneyasu, Lewis Lo, Ki H. Park, Ankit Patel, Kin Ueng, Iqbal M. Umair, Leonardo A. Uzcategui, Barbara J. Vander Weele
  • Patent number: 10171234
    Abstract: A method for a method for mapping an input message to an output message by a keyed cryptographic operation in a cryptographic system, including a plurality of rounds wherein each round has a substitution layer, wherein wide encoding is used on the substitution layer in the rounds that require protection from attacks.
    Type: Grant
    Filed: December 16, 2015
    Date of Patent: January 1, 2019
    Assignee: NXP B.V.
    Inventors: Wilhelmus Petrus Adrianus Johannus Michiels, Joppe Willem Bos, Philippe Teuwen
  • Patent number: 10162967
    Abstract: A system for evaluating a target file includes an endpoint computer that receives similarity digests of legitimate files, receives a target file, and generates a similarity digest of the target file. The endpoint computer determines whether or not the target file is legitimate based on a comparison of the similarity digest of the target file against the similarity digests of the legitimate files. The system further includes a backend computer system that receives the legitimate files, generates the similarity digests of the legitimate files, and provides the similarity digests of the legitimate files to the endpoint computer.
    Type: Grant
    Filed: August 17, 2016
    Date of Patent: December 25, 2018
    Assignee: Trend Micro Incorporated
    Inventors: Jonathan James Oliver, Jayson Pryde, Victor Hargrave, Scott Forman, Chun Cheng
  • Patent number: 10158483
    Abstract: The present disclosure discloses a method of storing data in a distributed data storage system, the distributed data storage system including a plurality of server and client nodes. The method includes receiving unencrypted data from a client node for storing at a server node. The received data is split into one or more data chunks of one or more sizes. Further, each data chunk is encrypted using a key based on the content of corresponding data chunk, and each encrypted chunk is stored at a memory of a server node using a unique data reference. Furthermore, an index chunk is formed that contains one or more data references of one or more encrypted chunks in a predefined order, along with one or more corresponding encryption keys of one or more encrypted chunks, which after being encrypted and stored, the corresponding data reference of this encrypted index chunk is provided to the client node.
    Type: Grant
    Filed: April 30, 2018
    Date of Patent: December 18, 2018
    Assignee: XANADU BIG DATA, LLC
    Inventor: Rhys Andrew Newman
  • Patent number: 10157153
    Abstract: Aspects disclosed in the detailed description include inline cryptographic engine (ICE) for peripheral component interconnect express (PCIe). In this regard, in one aspect, an ICE is provided in a PCIe root complex (RC) in a host system. The PCIe RC is configured to receive at least one transport layer packet (TLP), which includes a TLP prefix, from a storage device. In a non-limiting example, the TLP prefix includes transaction-specific information that may be used by the ICE to provide data encryption and decryption. By providing the ICE in the PCIe RC and receiving the transaction-specific information in the TLP prefix, it is possible to encrypt and decrypt data in the PCIe RC in compliance with established standards, thus ensuring adequate protection during data exchange between the PCIe RC and the storage device.
    Type: Grant
    Filed: February 3, 2016
    Date of Patent: December 18, 2018
    Assignee: QUALCOMM Incorporated
    Inventors: Assaf Shacham, Eyal Skulsky, Shaul Yohai Yifrach
  • Patent number: 10158992
    Abstract: An example electronic device includes memory for storing a program for unlocking the first electronic device using a wearable electronic device; wireless communication circuitry; and one or more processors configured to execute the program stored in the memory to cause the electronic device to at least establish wireless communication, via the wireless communication circuitry, with the wearable electronic device when the wearable electronic device is in a wireless communication range of the first electronic device; determine whether the wearable second electronic device is authenticated for unlocking the first electronic device; determine whether the wearable electronic device is in a specific range of the first electronic device based on a signal transmitted from the wearable electronic device being worn; and unlock the first electronic device based on determining that the wearable electronic device is authenticated and is in the specific range of the electronic device.
    Type: Grant
    Filed: January 26, 2017
    Date of Patent: December 18, 2018
    Assignee: SAMSUNG ELECTRONICS CO., LTD.
    Inventors: Hun-Cheol Oh, Yong-Joon Jeon, Doo-Suk Kang, Seung-Nyun Kim
  • Patent number: 10154384
    Abstract: A method for communication by a scanner is described. The method includes receiving a broadcast message from a broadcasting device in a connectionless mode. The method also includes performing back channel communication with the broadcasting device on a contention basis while maintaining the connectionless mode. The scanner may send a packet to the broadcasting device while maintaining a connectionless relationship with the broadcasting device.
    Type: Grant
    Filed: June 22, 2016
    Date of Patent: December 11, 2018
    Assignee: QUALCOMM Incorporated
    Inventors: Mayank Batra, Brian Redding, Robin Heydon
  • Patent number: 10153902
    Abstract: Methods, systems, and apparatus, including computer programs encoded on computer storage media, for secure data transmission using natural language. One of the methods includes: obtaining sensitive information for a user; obtaining a natural language key for the user, wherein the natural language key for the user includes one or more natural language tokens; generating decoding data for the sensitive information for the user, wherein generating the decoding data comprises: for each place in the sensitive information for the user: assigning a respective one of the natural language tokens in the natural language key for the user to the value at the place, and generating one or more respective dummy natural language tokens for each value of the respective set of possible values for the place other than the value at the place; and providing the decoding data for use in decoding the natural language key into the sensitive information.
    Type: Grant
    Filed: July 31, 2018
    Date of Patent: December 11, 2018
    Assignee: botbotbotbot Inc.
    Inventors: Yi Ma, Antoine Raux, Paul Yang, Felicia Wong
  • Patent number: 10147066
    Abstract: A business process framework (BPF) may be used to provide a vendor agnostic interface to allow one or more business users to design, deploy, test and/or monitor an operation of one or more business processes using a common user interface. The BPF may allow a user access to a business process management (BPM) system using a common interface, regardless of a vendor or version of BPM system being used by a business organization. The BPF may include a business process modeling interface allowing the business user to model, via the common user interface, regardless of the version or vendor of the BPM system product being used. The BPF may also include an execution interface capable of communicating with an execution engine included in different BRMS products. The execution interface may include a translator to translate a business model into a format compatible with each of a plurality of execution engines.
    Type: Grant
    Filed: October 2, 2014
    Date of Patent: December 4, 2018
    Assignee: Bank of America Corporation
    Inventors: Mohana K. Viswanathan, Sundar Krishnamoorthy, Suresh G. Nair
  • Patent number: 10136324
    Abstract: The present invention discloses a method and apparatus for controlling an application to read verification information. The method comprises: setting, in a terminal, a safe application strategy for reading a verification information, wherein the verification information is a message for verifying identity or permission of the terminal or a user in the process of executing a specific service; after the terminal receives the verification information from a network device, the application requesting to acquire the verification information; judging whether the application satisfies the safe application strategy, and according to the judging result, allowing only the application that satisfies the safe application strategy to read the verification information; and using the verification information for verifying identity or permission of the terminal or a user in the process of executing the specific service.
    Type: Grant
    Filed: May 29, 2015
    Date of Patent: November 20, 2018
    Assignee: Beijing Qihoo Technology Company Limited
    Inventor: Yuguang Hu
  • Patent number: 10135611
    Abstract: Methods and systems for delivering a segmented content item from a server to a first and second device are provided. A first key is used to encrypt the segmented content item into a first plurality of encrypted segments and a second key is used to encrypt the segmented content item into a second plurality of encrypted segments. The first and second keys are different. The first plurality of encrypted segments is delivered to the first device, and the second plurality of encrypted segments is delivered to the second device.
    Type: Grant
    Filed: February 14, 2017
    Date of Patent: November 20, 2018
    Assignee: CSC Holdings, LLC
    Inventors: Lawrence Robert Martell, Brett Henriksen, Michael Lariccio, Brian Sweeney
  • Patent number: 10121019
    Abstract: Provided is a process including: receiving a request to write a new version of a document to a tamper-evident, immutable data repository; determining that the new version of the document is different from the previous version of the document; and in response to determining, storing a difference between the previous version of the document and the new version of the document in the tamper-evident, immutable data repository.
    Type: Grant
    Filed: August 11, 2017
    Date of Patent: November 6, 2018
    Assignee: ALTR Solutions, Inc.
    Inventor: Christopher Edward Struttmann
  • Patent number: 10123257
    Abstract: According to embodiments of the invention, a first wireless access point discovers a second wireless access point, the first wireless access point tunes its radio and privacy settings, without user input, based upon parameters automatically exchanged in response to the discovery of the second wireless access point, and a secure direct wireless connection is established between the first and second wireless access points using the radio and privacy settings. Adding the first wireless to an existing mesh network includes a determination of the best available direct wireless connection.
    Type: Grant
    Filed: May 19, 2017
    Date of Patent: November 6, 2018
    Assignee: SonicWALL Inc.
    Inventors: Zhuangzhi Duo, Zhong Chen, John Gmuender
  • Patent number: 10110667
    Abstract: A system and method for providing or maintaining data and application continuity in a computer system. According to an embodiment, the system comprises a communication interface for a client system, a network layer for receiving data from the client system, a hardware infrastructure for creating instances of the client system for replicating data, and an applications module for executing one or more applications on the replicated data. According to a further aspect, the system includes a portal interface configured for providing a remote user with control, audit and other functions associated with the user's system configuration.
    Type: Grant
    Filed: June 5, 2017
    Date of Patent: October 23, 2018
    Assignee: Geminare Inc.
    Inventor: Joshua B. Geist
  • Patent number: 10110429
    Abstract: Exemplary embodiments for enabling planned network changes such as an upgrade or downgrade of a network device are disclosed. The systems and methods provide for planned upgrades and downgrades for network devices without impacting existing network sessions, by utilizing two network devices simultaneously, and creating a redirect network session for a predetermined period of time. In so doing, all network traffic may be gradually transferred to the second network device, until the sessions processed by the first network device time out. The first network device can then be taken offline for upgrade or downgrade, without any disruption to the network service or loss of network traffic.
    Type: Grant
    Filed: October 30, 2017
    Date of Patent: October 23, 2018
    Assignee: A10 NETWORKS, INC.
    Inventors: Ali Golshan, Swaminathan Sankar, Venky Natham
  • Patent number: 10110594
    Abstract: A header section of a package may be downloaded from a server. The header section may be analyzed to determine if a data section of the package is secure and a correct version. The data section of the package is downloaded, if the data section is secure and the correct version. The package is a single file.
    Type: Grant
    Filed: September 4, 2013
    Date of Patent: October 23, 2018
    Assignee: Hewlett-Packard Development Company, L.P.
    Inventors: Fletcher Liverance, Daryl T Poe, Matthieu Clemenceau
  • Patent number: 10104553
    Abstract: Certain aspects of the present disclosure generally relate to wireless communications and, more particularly, to protecting control frames with power-related subfields. One example apparatus for wireless communications generally includes a processing system configured to generate a control frame comprising one or more power-related subfields and an integrity check value calculated based, at least in part, on the one or more power-related subfields and a transmitter configured to transmit the control frame. In aspects, a power management (PM) subfield, an end-of-service-period (EOSP) subfield, a more data (MD) subfield, or a traffic identifier (TID) subfield can be added to a group of additional authentication data (AAD) and the integrity check value is calculated based on the group of AAD.
    Type: Grant
    Filed: March 30, 2017
    Date of Patent: October 16, 2018
    Assignee: QUALCOMM Incorporated
    Inventors: Maarten Menzo Wentink, Alfred Asterjadhi, Jouni Kalevi Malinen
  • Patent number: 10104717
    Abstract: A wireless communication device can include a processor to operate multiple virtual network interfaces that communicate simultaneously over a common wireless physical interface with different wireless networks. A first virtual network interface can be an infrastructure virtual interface to communicate over a first infrastructure network, and a second virtual network interfaces can be an ad-hoc interface to communicate over a second ad-hoc network. Another virtual network interfaces can be a Station (STA) infrastructure interface to communicate with an Access Point (AP) over a first infrastructure wireless network, and another virtual network interface can be a AP infrastructure interface to communicate with a STA over a second infrastructure wireless network. Another virtual network interface can be a Wireless Distribution System (WDS) interface to allow the AP infrastructure interface to communicate with another Access Point.
    Type: Grant
    Filed: May 29, 2014
    Date of Patent: October 16, 2018
    Assignee: SRI International
    Inventor: David Gurevich
  • Patent number: 10097493
    Abstract: A method for managing an electronic mail. A command list of a communication electronic mail transmission protocol is partitioned into command sub-lists using recursive parameters appearing in the command list prior to the partitioning of the command list. Each recursive parameter is a command that is repeated in respective command sub-lists as a result of the partitioning. Each command sub-list includes at least one command pertaining to a receiver or sender of the electronic mail. Each command sub-list is individually selectable for subsequent use of the at least one command in a subsequently selected command sub-list in implementing the electronic mail. A selection of at least one of the command sub-lists viewable in a user interface is received. Each command of the at least one command specifies a respective aspect of how to implement the electronic mail in a subsequent implementation of the electronic mail.
    Type: Grant
    Filed: January 4, 2017
    Date of Patent: October 9, 2018
    Assignee: International Business Machines Corporation
    Inventor: Deepak Gupta
  • Patent number: 10095852
    Abstract: In a computing device, when a user requests to carry out an operation, the device determines the type of operation requested and the time period since the user was last authenticated. The operation is enabled only if the determined time period does not exceed a threshold for the requested operation.
    Type: Grant
    Filed: October 13, 2016
    Date of Patent: October 9, 2018
    Assignee: Nokia Technologies Oy
    Inventors: Craig Robin Paskett Heath, Leon Clarke
  • Patent number: 10097557
    Abstract: A system including a domain controller and a document, policy, and collaboration servers. The document server receives a request signal based on an input received at a web browser of a user device and generates an authentication signal. The request signal requests access to a document. The document server provides a cloud-based service for access to the document. The domain controller, based on the authentication signal, determines a profile or authorization level of a user. The document server, based on the profile or the authorization level, transmits a second authentication signal to the user device. The policy server stores a digital rights management policy for the user. The collaboration server: based on the second authentication signal, receives a digital rights management signal from the user device; and based on the digital rights management policy of the user, permits a controller of the user device to access the document.
    Type: Grant
    Filed: January 27, 2016
    Date of Patent: October 9, 2018
    Assignee: LAM RESEARCH CORPORATION
    Inventor: Michael Armer
  • Patent number: 10091637
    Abstract: The present disclosure relates to a method performed by a network element 2 in a communication network 1. The method comprises detecting a machine device (MD) 4 able to provide a first type of information to the network. The method also comprises receiving an information message comprising a token of a service 3 which is interested in receiving the first type of information. The method also comprises sending a request message to the MD comprising the token and a request for the MD to send the first type of information together with the token. The present disclosure also relates to a machine device as well as to the network element and a rendezvous point, and methods thereof, in the network.
    Type: Grant
    Filed: January 28, 2014
    Date of Patent: October 2, 2018
    Assignee: Telefonaktiebolaget LM Ericsson (publ)
    Inventors: Ari Keränen, Tero Kauppinen, Jan Melén
  • Patent number: 10089591
    Abstract: Methods and arrangements for providing classification for a business process hierarchy. Packaged application objects are received, comprising at least one of the standard application objects and custom objects. At least one of the standard application objects is mapped to at least one node of a business process hierarchy, thereby forming at least one mapping template. At least one of the standard application objects is mapped to at least one of the custom objects to create a first mapping, and at least one of the custom objects is mapped to at least one of the standard application objects to create a second mapping. The at least one mapping template, the first mapping and the second mapping are combined, to create a mapping of at least one of the custom objects to the business process hierarchy. Other variants and embodiments are broadly contemplated herein.
    Type: Grant
    Filed: June 4, 2013
    Date of Patent: October 2, 2018
    Assignee: International Business Machines Corporation
    Inventors: Biswaroop Chatterjee, Pankaj Dhoolia, Anjan Nandy, Diptikalyan Saha, Ramesh Babu Tirukoti
  • Patent number: 10084825
    Abstract: Systems and methods for coordinating security operations among members of a cooperative security fabric (CSF) are provided. According to one embodiment, a first network security appliance of a CSF receives incoming network traffic and determines whether the network traffic has been transmitted from a second network security appliance based on a flag carried by one or more packets of the network traffic. If the incoming network traffic is from the second network security appliance, the first network security appliance determines network security operations that are executed by the second network security appliance and then determines local network security operations. The first network security appliance executes the local network security operations on the network traffic.
    Type: Grant
    Filed: September 27, 2017
    Date of Patent: September 25, 2018
    Assignee: Fortinet, Inc.
    Inventor: Xiaodong Xu
  • Patent number: 10084780
    Abstract: A user device may request access to a service provided by an application server. The application server may request that an identity server authenticate the user device. The identity server may have a network authentication system assist with the authentication of the user device. Once authenticated by the network authentication system, the application server may be informed and may grant the user device access to the requested service. Additionally, the identity server may help determine whether the user device is a security threat by comparing user information from the network authentication system with user information from the application server. Additionally, the network authentication system may provide the application server with user information to enable the application server to automatically register the user device for a particular service.
    Type: Grant
    Filed: March 2, 2016
    Date of Patent: September 25, 2018
    Assignee: Verizon Patent and Licensing Inc.
    Inventors: Guanqun Bao, Brian Libonate, Raymond C. Counterman
  • Patent number: 10079870
    Abstract: The present invention teaches new solutions based on an alternative approach to controlling client behavior in adaptive streaming applications, namely, server managed adaptive streaming. in this approach, the client makes requests for streaming content and provides extra information about its behaviors, and the server verifies the information to determine if the requests can be granted. This way, even if the client is not trusted, its behaviors can be properly and effectively controlled. Moreover, all of the solutions resulting from adopting this server managed adaptive streaming approach fit into the MPEG/3GPP standards of Dynamic Adaptive Streaming over HTTP (DASH).
    Type: Grant
    Filed: August 1, 2016
    Date of Patent: September 18, 2018
    Assignee: Futurewei Technologies, Inc.
    Inventors: Xin Wang, Yongliang Liu, Shaobo Zhang
  • Patent number: 10075469
    Abstract: Information can be added to the headers of email messages to ensure the messages are delivered using encryption, without the user having to manage keys or perform the encryption. A user can select an option in an email program that causes a flag to be added to the message header. Each mail server along the delivery path can provide (or expose) information about the type(s) of encryption supported, and if the encryption is not sufficient then the message will not be delivered to that server. This ensures the transport will remain encrypted before delivering the message to the next hop along the path. If the message cannot be delivered encrypted then the message will not be transmitted past that point. An end user then only needs to click a button or perform another such action to ensure encrypted message delivery.
    Type: Grant
    Filed: August 31, 2015
    Date of Patent: September 11, 2018
    Assignee: AMAZON TECHNOLOGIES, INC.
    Inventors: Nicholas Howard Brown, Gregory Branchek Roth
  • Patent number: 10057055
    Abstract: A method in a User Equipment (UE) of an Evolved Packet System (EPS) establishes a security key (K_eNB) for protecting Radio Resource Control/User Plane (RRC/UP) traffic exchanged with a serving eNodeB. The method comprises sending a Non-Access Stratum (NAS) Service Request to a Mobility Management Entity (MME), the request indicating a NAS uplink sequence number (NAS_U_SEQ). The method further comprises receiving an indication of the NAS_U_SEQ of the NAS Service Request sent to the MME, back from the MME via the eNodeB. The method further comprises deriving the K_eNB from at least the received indication of the NAS_U_SEQ and from a stored Access Security Management Entity-key (K_ASME) shared with said MME.
    Type: Grant
    Filed: February 27, 2017
    Date of Patent: August 21, 2018
    Assignee: Telefonaktiebolaget LM Ericsson (publ)
    Inventors: Rolf Blom, Gunnar Mildh, Karl Norrman
  • Patent number: 10044719
    Abstract: Systems and methods, implemented by one or more nodes in a cloud-based security system, for enforcing application-based control of network resources include receiving a request from a user device for the network resources; evaluating the request through the cloud-based security system and determining an application on the user device performing the request; and performing one of (1) denying the request if the application is unauthorized to access the network resources, (2) redirecting the request to an authorized application on the user device if the application is legitimate but unauthorized to access the network resources, and (3) allowing the request if the application is authorized to access the network resources.
    Type: Grant
    Filed: January 29, 2016
    Date of Patent: August 7, 2018
    Assignee: Zscaler, Inc.
    Inventors: Purvi Desai, Abhinav Bansal
  • Patent number: 10033724
    Abstract: A system which generates composite passwords which can act to trigger a designated event; said system comprising a database having stored thereon at least first and second hints associated with at least respective first and second passwords, all of which are associated with a designated user; the system storing hints and passwords for multiple designated users and wherein each hint and password pair is generated by an association procedure whereby the password is uniquely derivable from the hint by the designated user with which that hint and password pair is associated; a composite password generated by the system presenting in a designated order of at least first and second hints to a designated user in response to which the designated user inputs respective first and second passwords to a local device thereby to assemble a composite password from the first and second passwords; the composite password then being stored on the local device.
    Type: Grant
    Filed: March 30, 2015
    Date of Patent: July 24, 2018
    Inventor: Ben Damian Donohue
  • Patent number: 10033471
    Abstract: A wireless connection pairing method and a first electronic device are provided. The method includes: broadcasting, through an audio system, an acoustic signal which carries pairing information for establishing wireless connection with a first electronic device; the first electronic device receiving from a second electronic device a request for establishing wireless connection with the first electronic device through a wireless network, where the request contains the pairing information extracted from the acoustic signal; and the first electronic device sending a notice of permission to the second electronic device. By employing the method, a mobile device can use connection service conveniently without inputting a password manually.
    Type: Grant
    Filed: December 31, 2013
    Date of Patent: July 24, 2018
    Assignee: Harman International Industries, Incorporated
    Inventors: Jianjun Ma, Zhaolong Kang, Zeng Yang
  • Patent number: 10033703
    Abstract: The present document describes systems and methods that provide pluggable cipher suites. In one embodiment, a client and a server perform a secure transport handshake that negotiates a set of supported cipher suites. The server determines if the cipher suites supported by the client are acceptable. When the server determines that the cipher suites supported by the client are not acceptable, the server provides a pluggable cipher suite to the client. The client runs the pluggable cipher suite in a sandboxed environment, and uses the pluggable cipher suite to add support for one or more additional cipher suites. In some implementations, the pluggable cipher suite is provided by a third-party server.
    Type: Grant
    Filed: June 16, 2015
    Date of Patent: July 24, 2018
    Assignee: Amazon Technologies, Inc.
    Inventor: Nima Sharifi Mehr
  • Patent number: 10034169
    Abstract: Methods, systems, apparatuses, and devices are described for authenticating in a network. A mobile device may establish a group account with an authentication server associated with the group. Upon successfully completing group account establishment, the mobile device receives a group authentication token that includes information associated with the authentication server, the group, the mobile device, a group key, versioning information, etc. The mobile device may use the group authentication token to authenticate with another mobile device that is a member of the same group. The versioning information may support backwards-compatibility between the group authentication tokens having different versions.
    Type: Grant
    Filed: November 12, 2014
    Date of Patent: July 24, 2018
    Assignee: QUALCOMM Incorporated
    Inventors: Soo Bum Lee, Abhishek Pramod Patil, George Cherian, Santosh Paul Abraham, Anand Palanigounder
  • Patent number: 10013566
    Abstract: In embodiments of the present invention improved capabilities are described for securely viewing computer data content, such as documents, presentations, spreadsheets, emails, blog entries, texts, and the like, wherein a secure exchange server is controlled by an intermediate business entity, and access to retention restricted computer data content is granted to a user of a second business entity when the secure exchange server receives appropriate login authentication data, wherein the retention restricted computer data content is accessible to the at least one user of the second business entity as limited by the content retention restriction, which is provided by a user of a third business entity.
    Type: Grant
    Filed: December 16, 2016
    Date of Patent: July 3, 2018
    Assignee: Intralinks, Inc.
    Inventors: Jerry Lee Meyer, Sudhakar Velamoor, Mushegh Hakhinian
  • Patent number: 10009316
    Abstract: A method for detecting network intrusion, performed by a processor is provided. The method includes coupling a computing or communication device to a network device and determining a geolocation of the network device. The method includes comparing the geolocation of the network device to an expected value and determining whether to connect to a network based on the comparing. A computer readable media containing instructions and a device are also provided.
    Type: Grant
    Filed: June 23, 2015
    Date of Patent: June 26, 2018
    Assignee: SYMANTEC CORPORATION
    Inventors: Michael Shavell, Keith Newstadt
  • Patent number: 10009770
    Abstract: An example electronic device includes memory for storing a program for unlocking the first electronic device using a wearable electronic device; wireless communication circuitry; and one or more processors configured to execute the program stored in the memory to cause the electronic device to at least establish wireless communication, via the wireless communication circuitry, with the wearable electronic device when the wearable electronic device is in a wireless communication range of the first electronic device; determine whether the wearable second electronic device is authenticated for unlocking the first electronic device; determine whether the wearable electronic device is in a specific range of the first electronic device based on a signal transmitted from the wearable electronic device being worn; and unlock the first electronic device based on determining that the wearable electronic device is authenticated and is in the specific range of the electronic device.
    Type: Grant
    Filed: January 26, 2017
    Date of Patent: June 26, 2018
    Assignee: SAMSUNG ELECTRONICS CO., LTD.
    Inventors: Hun-Cheol Oh, Yong-Joon Jeon, Doo-Suk Kang, Seung-Nyun Kim
  • Patent number: 10003590
    Abstract: An electronic device with a display detects an input in a user interface for a second application not associated with a server system. In response to detecting the first input, the device sends a first request from the second application to a first application associated with the server system. In response to the first request, the device sends a first command from the first application to the server system on behalf of the second application. The first command is a command for performance of a first operation at the server system. The first operation corresponds to the input detected by the device. The device receives a voucher, or an indication that a voucher has been created, at the second application pre-authorizing performance of a predefined second operation at the server system upon receipt, by the server system, of a second command from the second application.
    Type: Grant
    Filed: June 2, 2015
    Date of Patent: June 19, 2018
    Assignee: FACEBOOK, INC.
    Inventors: Jason Duane Clark, Eugene Zarakhovsky
  • Patent number: 9992187
    Abstract: In one embodiment, a method includes initiating at a client application at a client device, a single sign-on authentication with a security device, receiving at the client application, a session identifier and location of a web portal for the single sign-on authentication from the security device, and passing the session identifier and location of the web portal from the client application to a browser installed at the client device, for use by the browser in performing the single sign-on authentication at the client device. An apparatus and logic are also disclosed herein.
    Type: Grant
    Filed: December 21, 2015
    Date of Patent: June 5, 2018
    Assignee: Cisco Technology, Inc.
    Inventors: Jiajun Lu, Songling Han, Andrzej Kielbasinski, Peter Davis
  • Patent number: 9985966
    Abstract: Technologies are generally described for providing an anonymous signature scheme. In some examples, a method performed under control of an end device ma 320 include receiving public parameters from a central system; generating an enciphering function based at least in part on the received public parameters; calculating parameters for a signature based at least in part on the generated enciphering function; and transmitting, to a verifying device, the signature that includes a message, a key of the end device and the calculated parameters for the signature.
    Type: Grant
    Filed: January 7, 2014
    Date of Patent: May 29, 2018
    Assignee: EMPIRE TECHNOLOGY DEVELOPMENT LLC
    Inventor: Masahiro Yagisawa
  • Patent number: 9977906
    Abstract: A user device may strengthen the protection level of a digital content by dividing the security and normal modes and performing an operation. In order to further strengthen the protection level of the digital content, the user device may determine whether the main operating system is hacked or not, and blocks the operation in the secure mode. Otherwise, the device authorization information indicating the device security level of the user device is authorized by the content service server, and the user device blocks the operation in the secure mode according to the result.
    Type: Grant
    Filed: August 31, 2015
    Date of Patent: May 22, 2018
    Assignee: Samsung Electronics Co., Ltd.
    Inventors: Moon-Soo Chang, Seul-Han Park, Yang-Soo Lee
  • Patent number: 9980139
    Abstract: An example electronic device includes memory for storing a program for unlocking the first electronic device using a wearable electronic device; wireless communication circuitry; and one or more processors configured to execute the program stored in the memory to cause the electronic device to at least establish wireless communication, via the wireless communication circuitry, with the wearable electronic device when the wearable electronic device is in a wireless communication range of the first electronic device; determine whether the wearable second electronic device is authenticated for unlocking the first electronic device; determine whether the wearable electronic device is in a specific range of the first electronic device based on a signal transmitted from the wearable electronic device being worn; and unlock the first electronic device based on determining that the wearable electronic device is authenticated and is in the specific range of the electronic device.
    Type: Grant
    Filed: January 26, 2017
    Date of Patent: May 22, 2018
    Assignee: SAMSUNG ELECTRONICS CO., LTD.
    Inventors: Hun-Cheol Oh, Yong-Joon Jeon, Doo-Suk Kang, Seung-Nyun Kim
  • Patent number: 9971898
    Abstract: The invention relates to a method for providing an anonymized value for a data element stored with an original value in a database of a database system, wherein the method comprises the following steps: (i) producing a supplementary data element for the data element stored in the database; (ii) determining the anonymized value of the data element from the original value on the basis of a mapping rule for ascertaining anonymized values that is stored in the database system, and storing the anonymized value in the supplementary data element; and (iii) linking the supplementary data element to the data element such that, based on the reception of an access command relating to the data element from a user connected to the database system, the supplementary data element is read and the anonymized value contained therein is transmitted to the user.
    Type: Grant
    Filed: September 2, 2014
    Date of Patent: May 15, 2018
    Assignee: KABEL DEUTSCHLAND VERTRIEB UND SERVICE GMBH
    Inventors: Harald Badstieber, Daniel Guenther, Jens von Knethen, Viktor Palai, Florian Mertl
  • Patent number: 9973335
    Abstract: Examples are disclosed for exchanging a key between an input/output device for network device and a first processing element operating on the network device. Data having a destination associated with the first processing element may be received by the input/output device. The exchanged key may be used to encrypt the received data. The encrypted data may then be sent to a buffer maintained at least in part in a memory for the network device. The memory may be arranged to enable sharing of the buffer with at least a second processing element operating on the network device. Examples are also disclosed for the processing element to receive an indication of the storing of the encrypted data in the buffer. The processing element may then obtain the encrypted data from the buffer and decrypt the data using the exchanged key.
    Type: Grant
    Filed: March 15, 2013
    Date of Patent: May 15, 2018
    Assignee: INTEL CORPORATION
    Inventors: Ben-Zion Friedman, Eliezer Tamir, Eliel Louzoun, Ohad Falik
  • Patent number: 9967287
    Abstract: Disclosed are approaches for detecting attempts to circumvent security policies on a client device. A deletion of a user account on a computing device is detected, wherein the deletion is initiated locally on the computing device and the user account is associated with an enrollment of the computing device with a management service. Data stored in a memory of the computing device that is subject to a policy received from the management service is identified. The data is deleted from the memory of the computing device. The policy is then deleted from the memory of the computing device.
    Type: Grant
    Filed: October 27, 2015
    Date of Patent: May 8, 2018
    Assignee: AIRWATCH LLC
    Inventors: Varun Murthy, Kalyan Regula, Shravan Shantharam, Jason Roszak
  • Patent number: 9954877
    Abstract: Example methods and systems directed to an Alert Manager are described. According to various embodiments, the Alert Manager detects receipt of a message. The message includes a selectable functionality for accessing an external resource and message data indicative of a source of the message. The Alert Manager predicts when a recipient of the message will interact with the selectable functionality. Prior to the recipient's predicted interaction with the selectable functionality, the Alert Manager generates a message alert feature based on a degree of a difference between the external resource and the source of the message.
    Type: Grant
    Filed: December 21, 2015
    Date of Patent: April 24, 2018
    Assignee: eBay Inc.
    Inventors: Sergio Pinzon Gonzales, Jr., Romi Akpala
  • Patent number: 9954898
    Abstract: This disclosure makes public a data flow forwarding method and device, and in this method, a second health state is acquired based on the first health state of one or more pieces of identifying information of the received data flow, wherein the first health state and second health state are associated with the access rights of the user and/or user device that sent the data flow; it employs firewall policy property sets to determine whether or not to forward the data flow, wherein the firewall policy property sets comprise: the second health state. The technical schemes based on this disclosure improve the ability of a firewall to identify network attacks or abnormal activities and reduce administration costs.
    Type: Grant
    Filed: July 31, 2014
    Date of Patent: April 24, 2018
    Assignee: Hillstone Networks, Corp.
    Inventors: Timothy Liu, Zhong Wang, Lingling Zhang, Bin Jia
  • Patent number: 9948695
    Abstract: Disclosed are an apparatus and method configured to perform media file encryption. One example method may include retrieving a media file stored in a memory during a play time operation, executing the media file and receiving additional portions of the media file during the play time operation. The method may also include processing the media file and the additional portions of the media file to generate an output media and displaying the output media on a display of a user device.
    Type: Grant
    Filed: March 16, 2012
    Date of Patent: April 17, 2018
    Assignee: Alcatel Lucent
    Inventors: Rajesh J. Vale, Danny De Vleeschauwer
  • Patent number: 9947011
    Abstract: A method includes receiving a request for registered payment options associated with a user computing device, where the request includes an identifier uniquely identifying one of the user computing device and the user. The method includes identifying one or more payment options associated with the device identifier, where each of the one or more payment options is associated with respective payment instrument information. The method includes providing one or more codes, where each code of the one or more codes identifies a respective payment option of the one or more payment options. The method includes receiving a first code of the one or more codes and transaction information. The method includes accessing, based upon the first code, payment instrument information associated with the payment option identified by the first code, and causing the processing of the payment instrument information in relation to a transaction identified by the transaction data.
    Type: Grant
    Filed: January 31, 2013
    Date of Patent: April 17, 2018
    Assignee: PAYPAL, INC.
    Inventors: Andrew Kortina, William Ready, Dan Manges, John Sturino, Juan Benitez, II
  • Patent number: 9935769
    Abstract: Cipher suites and/or other parameters for cryptographic protection of communications are dynamically selected to more closely match the intended uses of the sessions. A client indicates a planned use of a session to a server. The client's indication of the planned use may be explicit or implicit. The server selects an appropriate set of parameters for cryptographic protection of communications based at least in part on the indicated planned use and the client and server complete a handshake process to establish a cryptographically protected communications session to use the selected set of parameters.
    Type: Grant
    Filed: December 12, 2014
    Date of Patent: April 3, 2018
    Assignee: Amazon Technologies, Inc.
    Inventor: Nima Sharifi Mehr