By Certificate Patents (Class 713/156)
  • Patent number: 12099594
    Abstract: Disclosed is a method and apparatus for verifying socket connections. The method includes receiving a socket connection request and determining a process executable that initiated the socket connection request. The method further includes determining, by a processing device, whether verification data associated with the process executable corresponds to expected verification data of the process executable. Finally, the method includes in response to the verification data corresponding to the expected verification data, permitting a socket connection corresponding to the socket connection request.
    Type: Grant
    Filed: March 8, 2024
    Date of Patent: September 24, 2024
    Assignee: Here Enterprise Inc.
    Inventors: Chuck Doerr, Andrew Westacott
  • Patent number: 12101306
    Abstract: Systems and methods are provided that may be implemented to orchestrate trusted enrollment of an endpoint client information handling system by deploying a signed payload of an enrollment package to the endpoint client system, and by using a client software agent executing on the endpoint client system to first verify the distribution chain and/or signature of the deployed enrollment package before proceeding to use other information contained in the enrollment package to contact a registration server to enroll the endpoint client system.
    Type: Grant
    Filed: August 26, 2021
    Date of Patent: September 24, 2024
    Assignee: Dell Products L.P.
    Inventors: Chooi Peng Low, Michael Phillips
  • Patent number: 12095904
    Abstract: A method includes encrypting a first message that contains a first public key of a first peer, by using a second public key of a second peer; and decrypting a second message sent from the second peer by using a first private key paired with the first public key. The second message may be encrypted at the second peer by using the first public key, and may contain an encrypted data encrypted by the second peer using the second public key and hashed by using a secret key of the first peer. The first public key, the second public key, the first private key and the secret key may be physically unclonable function (PUF)-based keys.
    Type: Grant
    Filed: December 7, 2022
    Date of Patent: September 17, 2024
    Assignee: TAIWAN SEMICONDUCTOR MANUFACTURING COMPANY LTD.
    Inventor: Mei-Chien Liu
  • Patent number: 12088577
    Abstract: Various embodiments of the present disclosure include a scalable distributed computing and network system that is configured to install, update or revoke certificates in a multitude of passive devices in many isolated networks. Various embodiments may include a processor in a computing device associating a certificate profile with one or more passive devices in a plurality of passive devices in one or more isolated networks, generating a certificate signing request (CSR) message for each of the associated passive devices, sending the generated CSR messages to a certificate authority, receiving digital certificates from the certificate authority, and sending the received digital certificates to their respective associated passive devices.
    Type: Grant
    Filed: October 26, 2020
    Date of Patent: September 10, 2024
    Assignee: Viakoo, Inc.
    Inventors: David A. Nelson-Gal, Alex B. Sternberg, Eric L. Green, Maxwell A. Nelson-Gal, Shibani P. Thakkar
  • Patent number: 12081535
    Abstract: Systems and methods are directed to improvements for secure communications between client systems and a vehicle integration platform associated with a service provider entity. In one example, a communication infrastructure is provided which includes a vehicle integration platform that includes a plurality of application programming interfaces configured to facilitate communication among clients. The communication infrastructure includes a security integration system which is configured to receive and validate a client certificate forwarded to the vehicle integration platform from a client and determine an identity of the client and an origin of a request associated with the client certificate.
    Type: Grant
    Filed: May 24, 2021
    Date of Patent: September 3, 2024
    Assignee: Uber Technologies, Inc.
    Inventors: Andrii Iasynetskyi, Matthew Charles Ellis Wood, Mark Yen, Meenakshi Vohra, Roman Kuzmenko
  • Patent number: 12058274
    Abstract: Described herein is a method and network-security monitoring platform, also identified as Security Network Monitoring Platform (SNMP), for detecting anomalies in SSL and/or TLS communications set up in a communications network. The SNMP analyses data packets (DP) for detecting anomalous SSL and/or TLS handshake procedures in a monitoring interval, wherein each SSL and/or TLS handshake procedure comprises a first message sent by a respective client to a respective server for starting the respective SSL or TLS communication, and a corresponding second message sent by the respective server to the respective client. Next, the SNMP determines for each handshake procedure a first signature as a function of the data sent with the first message and a second signature as a function of the data of one or more certificates of the chain of certificates (CERT) sent with the second message. The SNMP then analyses the first and the second signatures to determine the respective popularity values.
    Type: Grant
    Filed: June 14, 2022
    Date of Patent: August 6, 2024
    Assignee: AIZOON S.r.l.
    Inventors: Daniele Ucci, Filippo Sobrero, Federica Bisio
  • Patent number: 12047422
    Abstract: Examples herein describe systems and methods for application-specific compliance enforcement. An example method can include receiving, at a user device, profiles containing application-specific restrictions. When a first application is opened, a management agent compares the corresponding application-specific restrictions with current device settings. This can be done with a checksum comparison where the checksums are created based on a hash with an application- or profile-specific identifier. If they differ, the management agent stores the current device settings and prompts for, or automatically changes, the device settings to new compliant values before allowing the first application to operate in the foreground of the user device screen. If the first application is closed or minimized, the stored device settings can be restored. The management agent can compare those against application-specific restrictions of the second application before allowing the second application to run in the foreground.
    Type: Grant
    Filed: September 13, 2021
    Date of Patent: July 23, 2024
    Assignee: VMware LLC
    Inventors: Gaurav Verma, Manjunath Subramani, Suchit Shivashankar, Karthikeyan Palanisamy
  • Patent number: 12047369
    Abstract: In variants, a fleet management method can include determining information about a device S100; sending information to a device S200, and operating the device according to the information S300 (e.g., example shown in FIG. 1). The fleet management system can function to scalably manage the operation and permissioning of one or more fleets of devices.
    Type: Grant
    Filed: July 21, 2023
    Date of Patent: July 23, 2024
    Assignee: Viam Inc.
    Inventors: Eliot Horowitz, Eric Daniels
  • Patent number: 12039309
    Abstract: At least one processor cause an information processing apparatus to act as the following units. A first installation unit installs a first application. A second installation unit installs a second application for activating the first application. An acquisition unit acquires identification information unique to the first application installed by the first installation unit. An acceptance unit accepts a request for activation of the first application which uses a deep link. A first determination unit, in a case where the acceptance unit accepts a request for activation, determines whether or not to activate, by the second application, the first application by using the identification information acquired by the acquisition unit. An activation unit activates, by the second application, the first application based on a result of the determination by the first determination unit.
    Type: Grant
    Filed: July 28, 2021
    Date of Patent: July 16, 2024
    Assignee: Canon Kabushiki Kaisha
    Inventor: Keisuke Wada
  • Patent number: 12034873
    Abstract: An apparatus operating as a certificate authority (CA) is described. The apparatus can perform operations including receiving, from a plurality of requesting devices, a request to join a group. The request can include identification information for the group and attestation evidence for the plurality of requesting devices. Responsive to receiving the request, the apparatus can provide a group certificate for the group to the plurality of requesting devices.
    Type: Grant
    Filed: March 27, 2020
    Date of Patent: July 9, 2024
    Assignee: Intel Corporation
    Inventors: Bhushan Girishkumar Parikh, Hari K. Tadepalli, Stephen T. Palermo, Thomas Joseph O'Dwyer, Abhilasha Bhargav-Spantzel, Ned M. Smith
  • Patent number: 12034853
    Abstract: In some aspects, methods and systems for a digital trust architecture are provided. In some aspects, the architecture includes a user account provisioning process. The provisioning process may make use of in person verifications of some personal information to ensure authenticity of the user information. Once the authenticity of user information is established, an account may be created. The user account may include a user email account, with integrated access to digital certificates linked to the user account. Account creation may also automatically publish the new user's public key in a publicly accessible directory, enabling encrypted email information to be easily sent to the new user.
    Type: Grant
    Filed: December 12, 2022
    Date of Patent: July 9, 2024
    Assignee: United States Postal Service
    Inventor: Clayton C. Bonnell
  • Patent number: 12026535
    Abstract: Controlling and provisioning a robot of a virtual machine (VM) includes transmitting a connection request between a first service installed in a virtual machine and a second service. The robot is associated with at least one process running on the virtual machine. The virtual machine is authenticated based on a token associated with the second service and the virtual machine. A connection is established between the first service and the second service. A command is transmitted associated with the controlling of the robot from the second service to the first service based on the authentication of the virtual machine. The command is associated with a corresponding command identifier for identifying a type of the command. The command is then executed for controlling the robot.
    Type: Grant
    Filed: September 27, 2021
    Date of Patent: July 2, 2024
    Assignee: UiPath, Inc.
    Inventors: Tao Ma, Clement Fauchere
  • Patent number: 12015722
    Abstract: Methods and network interface devices for establishing a secure and authenticated network connection are provided. The method comprises: receiving, from a requesting entity, a destination IP address and a first certificate that is used to establish a secure network connection, wherein the first certificate comprises a first security attribute that is associated with a source destination IP address; identifying, with aid of one or more processors, a stored second security attribute associated with the destination IP address; and determining, with aid of the one or more processors, a policy action based at least in part on the first security attribute and the second security attribute.
    Type: Grant
    Filed: December 20, 2018
    Date of Patent: June 18, 2024
    Assignee: Pensando Systems, Inc.
    Inventors: Vipin Jain, Ravi Kumar Gadde, Enrico Schiattarella, Sukhesh Halemane
  • Patent number: 12015598
    Abstract: Methods and apparatus to enable a distinction between “new” and “used” digital content and to enable a market in used digital content files between mobile phone terminals and an electronic store, securely, by means of a wireless telephony network and a server complex to handle contents right management, transaction reporting, inventory, content delivery, payment, and billing. A server receives a signal generated by a wireless user device that was sent over a wireless telephony network. The signal indicates an election for returning at least one previously purchased digital content item. The server deletes user rights for the at least one digital content item identified by the received signal and sends information to the user device that generated the signal. Access to the associated digital content item at the user device is removed according to the sent information.
    Type: Grant
    Filed: August 8, 2022
    Date of Patent: June 18, 2024
    Assignee: Integic Technologies LLC
    Inventors: William L. Valenti, Edward P. Flinchem
  • Patent number: 12015718
    Abstract: A system and method for signing and authenticating electronic documents using public key cryptography applied by one or more server computer clusters operated in a trustworthy manner, which may act in cooperation with trusted components controlled and operated by the signer. The system employs a presentation authority for presenting an unsigned copy of an electronic document to a signing party and a signature authority for controlling a process for affixing an electronic signature to the unsigned document to create a signed electronic document. The system provides an applet for a signing party's computer that communicates with the signature authority.
    Type: Grant
    Filed: November 13, 2022
    Date of Patent: June 18, 2024
    Assignee: Signix, Inc.
    Inventor: Robert T. Oswalt
  • Patent number: 12015690
    Abstract: An embodiment includes a method of client-server trust management. The method includes receiving, at a client device, a public key of a system server and locally seeding the public key in a secure storage at the client device. The method includes receiving a certificate list signed by a private key of the system server and verifying a source of the certificate list using the seeded public key. The method includes initiating a handshake process with a second device during which a digital device certificate of the second device is received. The method includes halting the handshake process and validating the second device by matching the digital device certificate with a certificate included on the verified certificate list. Based on the validation, the method includes managing a communication session with the second device to enable or prevent data transfer between the client device and the second device.
    Type: Grant
    Filed: February 9, 2022
    Date of Patent: June 18, 2024
    Assignee: Ivanti, Inc.
    Inventors: Gregory Paul Olsen, Blake Alan Thompson, Tanner Reese Lindsay
  • Patent number: 12008560
    Abstract: An on-boarding server is configured to receive a data set and a manufacturer identifier from a communications device, validate an identity of an entity from the data set, and locate a first terminal cryptographic key associated with the manufacturer identifier in a terminal database. The on-boarding server is configured to confirm, using the located first terminal cryptographic key, that the manufacturer identifier received from the communications device was signed with a second terminal cryptographic key. The located first terminal cryptographic key and the second terminal cryptographic key are an asymmetric cryptographic key pair. The on-boarding server is configured to determine an acquirer server from the data set, and authorize the entity to effect electronic payments by providing the communications device with a merchant identifier and transmitting the merchant identifier to the acquirer server.
    Type: Grant
    Filed: April 17, 2023
    Date of Patent: June 11, 2024
    Assignee: The Toronto-Dominion Bank
    Inventors: Robert Hayhow, Jeffrey Aaron Ecker, Igor Elkhinovich, Keith Willard
  • Patent number: 11983977
    Abstract: An access control system for electric vehicle charging is provided that includes an access device, a secure reservation interface, a reservation server and a smartphone application installed on the smartphone. The access device includes a short-range wireless communication module connected to a processor having control of an electric vehicle charger. The secure reservation interface receives a reservation request for a reservation at a given destination. The reservation server receives the reservation request for the destination, issues a reservation certificate, and transmits the reservation certificate from the reservation server to a smartphone. The smartphone application has access to a short range wireless communication setting corresponding to the access device. The access device receives the reservation certificate from the smartphone application based on use by the smartphone application of the short-range wireless communication setting.
    Type: Grant
    Filed: September 8, 2022
    Date of Patent: May 14, 2024
    Assignee: Urban Intel, Inc.
    Inventors: Chris Outwater, William Gibbens Redmann
  • Patent number: 11983976
    Abstract: An access control system for electric vehicle charging is provided that includes an access device, a secure reservation interface, a reservation server and a smartphone application installed on the smartphone. The access device includes a short-range wireless communication module connected to a processor having control of an electric vehicle charger. The secure reservation interface receives a reservation request for a reservation at a given destination. The reservation server receives the reservation request for the destination, issues a reservation certificate, and transmits the reservation certificate from the reservation server to a smartphone. The smartphone application has access to a short range wireless communication setting corresponding to the access device. The access device receives the reservation certificate from the smartphone application based on use by the smartphone application of the short-range wireless communication setting.
    Type: Grant
    Filed: September 8, 2022
    Date of Patent: May 14, 2024
    Assignee: Urban Intel, Inc.
    Inventors: Chris Outwater, William Gibbens Redmann
  • Patent number: 11979505
    Abstract: The present invention relates to the field of data identification, and in particular to two-dimensional code technology. Provided in the present invention is a two-dimensional code-based file acquisition method, comprising: step 1, parsing a two-dimensional code to acquire two-dimensional code encoded data, wherein the encoded data comprises a first unique value, encrypted data, and signature data; step 2, verifying the signature data; step 3, decrypting the encrypted data to acquire a file address and an. nth data segment In; step 4, acquiring an. encrypted file according to the nth data segment In and the file address; step 5, verifying the encrypted file according to the first unique value to acquire a decrypted file. The present invention solves the technical problems of easy tampering and poor security when data is stored and acquired on the basis of a two-dimensional code, and implements secure and reliable information protection.
    Type: Grant
    Filed: March 9, 2020
    Date of Patent: May 7, 2024
    Assignee: UNI2K Information Technology Co., Ltd.
    Inventors: Xiaoxue Xu, Zhehai Zhu, Shaolei Liu, Yi Shen, Nianqing Luo
  • Patent number: 11973885
    Abstract: A method for obtaining a secured routing functionality in a white-boxes based cluster which comprises a plurality of standalone white-boxes, wherein at least two of the standalone white-boxes were manufactured by different manufacturers, and wherein the method comprising identifying a serial number (S/N) associated with each white-box to be included in that cluster, determining pre-defined properties of each respective white-box based on the identification, and installing each of the white-boxes together with a respective computing platform software comprising a software agent provided by the manufacturer of that white-box.
    Type: Grant
    Filed: November 16, 2019
    Date of Patent: April 30, 2024
    Assignee: DRIVENETS LTD.
    Inventors: Timor Sherf, Yuval Moshe, Eli Fedida
  • Patent number: 11972015
    Abstract: Removal of PII is provided. Sensor data is captured using sensors of a vehicle. Object detection is performed on the sensor data to create a sematic labeling of objects in the sensor data. A model is utilized to classify regions of the sensor data with a public or private labeling according to the sematic labeling and a PII filter corresponding to a jurisdiction of a current location of the vehicle. The sensor data is utilized in accordance with the public or private labeling.
    Type: Grant
    Filed: June 1, 2021
    Date of Patent: April 30, 2024
    Assignee: Ford Global Technologies, LLC
    Inventors: David Michael Herman, Gregg William Byrne, Akshay Vaidya
  • Patent number: 11968315
    Abstract: Systems and methods leverage trust anchors to generate tokens which can then be used by network functions (NFs). A virtualization infrastructure manager (VIM) for a virtualized platform receives a NF software package and a certificate request token (CRT) from a management function. The NF is a virtual NF, a containerized NF, or another virtual entity (xNF) to be deployed. The CRT is digitally signed by the management function and includes a network address of a trust anchor platform and a NF profile. The VIM deploys the NF and provides the CRT to the NF. The NF obtains from the CRT the network address of the trust anchor platform, generates a certificate signing request (CSR) for a digital certificate, and submits the CSR and the CRT to the trust anchor platform. The NF receives a digital certificate from the trust anchor platform based on validation of both the CSR and CRT.
    Type: Grant
    Filed: November 9, 2022
    Date of Patent: April 23, 2024
    Assignee: Verizon Patent and Licensing Inc.
    Inventors: Vinod Kumar Choyi, Sudhakar Reddy Patil, Jayesh Kumar Laad
  • Patent number: 11956144
    Abstract: Systems, computer program products, and methods are described herein for network traffic routing and load balancing in an electronic network. The present disclosure is configured to identify, by an application layer, at least one website access request by a user account, wherein a website access request comprises a website identifier; transmit the website access request to a traffic routing layer; identify, by the traffic routing layer, a plurality of potential websites; determine, by the traffic routing layer, whether a routing identifier is present for the user account and in response to determining the routing identifier, pin the user account to a pinned website of the potential websites based on the routing identifier; and determine, by the traffic routing layer, whether the pinned website comprises an up attribute or down attribute, and to direct the website access request based on at least this up or down attribute.
    Type: Grant
    Filed: August 15, 2023
    Date of Patent: April 9, 2024
    Assignee: BANK OF AMERICA CORPORATION
    Inventors: Kamal D Sharma, Kevin A. Delson, Gilbert Gatchalian, Satya Veerabhadra Rao Iruku, Noell York Eury, Dhananjay Bhat, Russ Ferguson, Matthew Eisenhauer, Larry A. Davis, Jr., Aaron Gee, Kurt Clarence Blust
  • Patent number: 11943262
    Abstract: A method is presented for secure communication, the method including generating a signature using a private key, a nonce, and at least one of an identifier and a key component; and transmitting the signature, the nonce, a security parameter, and the at least one of the identifier and the key component, wherein the security parameter associates a user identity with a public key, the public key being associated with the private key.
    Type: Grant
    Filed: May 17, 2021
    Date of Patent: March 26, 2024
    Assignee: MALIKIE INNOVATIONS LIMITED
    Inventors: Michael Eoin Buckley, Michael Charles Hollatz, Robert John Lambert, Nevine Maurice Nassif Ebeid
  • Patent number: 11936632
    Abstract: A system and method for homomorphic encryption in a healthcare network environment is provided and includes receiving digital data over the healthcare network at a data custodian server in a plurality of formats from various data sources, encrypting the data according to a homomorphic encryption scheme, receiving a query at the data custodian server from a data consumer device concerning a portion of the encrypted data, initiating a secure homomorphic work session between the data custodian server and the data consumer device, generating a homomorphic work space associated with the homomorphic work session, compiling, by the data custodian server, a results set satisfying the query, loading the results set into the homomorphic work space, and building an application programming interface (API) compatible with the results set, the API facilitating encrypted analysis on the results set in the homomorphic work space.
    Type: Grant
    Filed: March 15, 2023
    Date of Patent: March 19, 2024
    Assignee: NANTHEALTH, INC.
    Inventors: Patrick Soon-Shiong, Harsh Kupwade-Patil, Ravi Seshadri, Nicholas J. Witchey
  • Patent number: 11930009
    Abstract: A method including receiving, at a processor, credential requests for accessing the VPN environment from a first user device using a first interface and from a second user device using a second interface; transmitting, to the first user device, a first credential based at least in part on the first user device using the first interface; and transmitting, to the second user device, a second credential based at least in part on the second user device using the second interface, the first credential being different from the second credential. Various other aspects are contemplated.
    Type: Grant
    Filed: October 17, 2021
    Date of Patent: March 12, 2024
    Assignee: Oversec, UAB
    Inventor: Kazimieras Celiesius
  • Patent number: 11928449
    Abstract: An embodiment of the present application discloses an information processing method, device and apparatus, a medium, and a program.
    Type: Grant
    Filed: October 22, 2021
    Date of Patent: March 12, 2024
    Assignees: CHINA MOBILE (SUZHOU) SOFTWARE TECHNOLOGY CO., LTD., CHINA MOBILE COMMUNICATIONS GROUP CO., LTD.
    Inventors: Chunxiu Chen, Jiale Li, Jingkai Wu, Zhiling Hu
  • Patent number: 11930123
    Abstract: Digital certificates are generated for devices by a Certificate Authority (CA), which communicates with devices via another entity—registration authority (RA)—so that the CA and RA cannot associate certificates with devices. Each certificate is associated with a public signature key, and with a public encryption key used by CA to encrypt the certificate to hide it from the RA. Both keys are derived by CA from a single key. For example, the signature key can be derived from the public encryption key rather than generated independently. However, high security is obtained even when the CA does not sign the encrypted certificate. Reduced bandwidth and computational costs are obtained as a result. Other embodiments are also provided.
    Type: Grant
    Filed: April 30, 2021
    Date of Patent: March 12, 2024
    Assignees: LG Electronics Inc., University of Sao Paulo
    Inventors: Marcos A. Simplicio, Jr., Eduardo Lopes Cominetti, Harsh Kupwade Patil, Jefferson E. Ricardini Fernandez, Marcos Vinicius M. Silva
  • Patent number: 11930126
    Abstract: The present invention provides systems and methods for supporting encrypted communications with a medical device, such as an implantable device, through a relay device to a remote server, and may employ cloud computing technologies. An implantable medical device is generally constrained to employ a low power transceiver, which supports short distance digital communications. A relay device, such as a smartphone or WiFi access point, acts as a conduit for the communications to the internet or other network, which need not be private or secure. The medical device supports encrypted secure communications, such as a virtual private network technology. The medical device negotiates a secure channel through a smartphone or router, for example, which provides application support for the communication, but may be isolated from the content.
    Type: Grant
    Filed: February 15, 2023
    Date of Patent: March 12, 2024
    Assignee: Piltorak Technologies LLC
    Inventor: Alexander I Poltorak
  • Patent number: 11924662
    Abstract: Aspects of the subject disclosure may include, for example, a method that includes providing, by a processing system including a processor, a controller function for a user plane function (UPF) of a communication network; the controller function facilitates automated procedures for authentication, deployment, configuration, testing, and/or controlling availability of the UPF, independent of a source of the UPF. The method also includes providing, by the processing system, an interface to facilitate communication between the controller function and the UPF; the controller function uses the interface to facilitate the procedures. Other embodiments are disclosed.
    Type: Grant
    Filed: November 13, 2020
    Date of Patent: March 5, 2024
    Assignee: AT&T INTELLECTUAL PROPERTY I, L.P.
    Inventors: David Midkiff, Douglas Eng
  • Patent number: 11924331
    Abstract: Systems and processes are described for a message service with distributed key caching for server-side encryption. Message requests are received by message handlers of the message service that cache data encryption keys used to encrypt and decrypt messages that are stored to message containers in back end storage. A metadata service obtains the data encryption keys from a key management service, caches the keys locally, and sends the keys to the message handlers upon request, where the keys are cached, again. The key management service may generate the data encryption keys based on a master key (e.g., a client's master key). The message handlers may send both message data encrypted using the data encryption key and an encrypted copy of the data encryption key to be stored together in the data store.
    Type: Grant
    Filed: February 18, 2022
    Date of Patent: March 5, 2024
    Assignee: Amazon Technologies, Inc.
    Inventors: Petr Shveykin, Kelvin Yiu, Jakub Wojciak
  • Patent number: 11917081
    Abstract: An issuing device is configured to: respond to a challenge request by transmitting a challenge; and respond to a certification request including a public key and ownership information thereof by issuing a digital certificate certifying the ownership information. The ownership information includes counterparty identity information relating to a ledger of a distributed database. The digital certificate is issued if it is successfully verified that a valid response to the challenge has been posted to the ledger of the distributed database and is associated therein with the counterparty identity information of the certification request. The digital certificate facilitates proofing that an owner of a public key is a given counterparty to a blockchain ledger. Also, a corresponding requesting device and corresponding methods and computer program products for issuing and requesting a digital certificate are disclosed.
    Type: Grant
    Filed: October 7, 2019
    Date of Patent: February 27, 2024
    Assignee: Siemens Aktiengesellschaft
    Inventors: Hans Aschauer, Fabrizio De Santis, Steffen Fries
  • Patent number: 11909882
    Abstract: Various embodiments of systems and methods are provided to bind a system identifier that uniquely identifies an information handling system (IHS) to the system platform, so that the identity of the IHS can be cryptographically verified. More specifically, the present disclosure provides methods to bind a unique system identifier to an IHS platform, and methods to cryptographically verify the identity of the IHS using the unique system identifier and a plurality of keys generated and stored with a Trusted Platform Module (TPM) of the IHS. Systems are provided herein to perform such methods. As such, the systems and methods disclosed herein enable system identity to be irrefutably verified, thereby preventing theft and misuse of system identity.
    Type: Grant
    Filed: January 30, 2020
    Date of Patent: February 20, 2024
    Assignee: Dell Products L.P.
    Inventors: Charles D. Robison, Nicholas D. Grobelny, Amy C. Nelson
  • Patent number: 11902454
    Abstract: An information processing method is executed by a processor of an apparatus, and includes a step of generating a public key of the apparatus based on a private key of the apparatus (S2), a step of generating a hash value based on the public key and a predetermined hash function (S3), and a step of determining an IP address of the apparatus based on the hash value (S6).
    Type: Grant
    Filed: February 15, 2019
    Date of Patent: February 13, 2024
    Assignee: CONNECTFREE CORPORATION
    Inventor: Kristopher Andrew Tate
  • Patent number: 11893074
    Abstract: According to a first aspect of the disclosure, there is provided a method of accessing data from one or more destination transactions stored on a blockchain, wherein the method comprises selecting one or more hyperlinks linking to the destination transaction(s). According to a second aspect of the disclosure, there is provided a request-response protocol for requesting access to data from a destination transaction.
    Type: Grant
    Filed: August 19, 2020
    Date of Patent: February 6, 2024
    Assignee: nChain Licensing AG
    Inventors: Brock Doiron, Craig Steven Wright
  • Patent number: 11895365
    Abstract: Systems and methods are disclosed including techniques for rendering a 360-degree media content. Techniques disclosed include receiving a 360-degree media content and associated metadata that include a classification of a first spatial region from the received content. Techniques disclosed further include determining that a detected user movement is associated with a rendering of the first spatial region and determining whether the classification associated with the first spatial region complies with a stored user preference. If the classification violates the user preference, a path for gradually shifting the content rendering from a currently rendered spatial region to a spatial region that complies with the user preference is determined, and the received content is rendered according to the determined path.
    Type: Grant
    Filed: February 6, 2023
    Date of Patent: February 6, 2024
    Assignee: InterDigital Madison Patent Holdings, SAS
    Inventors: Yong He, Yan Ye, Ali C. Begen, Ahmed Hamza
  • Patent number: 11895537
    Abstract: A network device may select a first user plane function for establishing, with a user equipment, a protocol data unit session with a single flow and may receive an application function trigger associated with a first new flow for a first application of the user equipment. The network device may select a second user plane function for the first new flow and may create a first traffic filter for the first new flow. The network device may cause the first traffic filter to be provided to the user equipment so that first application traffic is routed, based on the first traffic filter, to the second user plane function and a first multi-access edge computing device associated with the second user plane function.
    Type: Grant
    Filed: May 11, 2021
    Date of Patent: February 6, 2024
    Assignee: Verizon Patent and Licensing Inc.
    Inventors: Sudhakar Reddy Patil, Jignesh S. Panchal, Maqbool Chauhan, Violeta Cakulev, Vishwanath Ramamurthi
  • Patent number: 11892963
    Abstract: A device is configured to receive, from a controller, an instruction requesting data for the device and determine a comparison result value based on a comparison of the data for the device and a reference value. The device is further configured to determine whether to respond to the instruction based on the comparison result value and, in response to a determination to respond to the instruction, output, to the controller, the comparison result value, wherein, to output the comparison result value, the device is configured to refrain from outputting the data for the device.
    Type: Grant
    Filed: July 7, 2022
    Date of Patent: February 6, 2024
    Assignee: Infineon Technologies AG
    Inventors: Markus Ekler, Christian Walther, Christian Heiling
  • Patent number: 11888993
    Abstract: A vehicle-to-everything terminal provides a vehicle-to-everything server with a security credential that can prove an identity of the vehicle-to-everything terminal, and requests the vehicle-to-everything server to apply for a certificate for the vehicle-to-everything terminal. The security credential may be a token preconfigured in the vehicle-to-everything terminal, or may be a digital signature of the vehicle. The vehicle-to-everything server performs identity verification on the vehicle-to-everything terminal based on the security credential. After the verification succeeds, the vehicle-to-everything server selects a proper certificate server to apply for a certificate for the vehicle-to-everything terminal.
    Type: Grant
    Filed: April 6, 2021
    Date of Patent: January 30, 2024
    Assignee: HUAWEI CLOUD COMPUTING TECHNOLOGIES CO., LTD.
    Inventors: Jintao Zhu, Yucai Peng
  • Patent number: 11888826
    Abstract: A method for collecting data from a group of entitled members. The method may include receiving, by a collection unit, a message and a message signature; validating, by the collection unit, whether the message was received from any of the entitled members of the group, without identifying the entitled member that sent the message; wherein the validating comprises applying a second plurality of mathematical operations on a first group of secrets, a second group of secrets, and a first part of the message signature; and rejecting, by the collection unit, the message when validating that the message was not received from any entitled member of the group.
    Type: Grant
    Filed: August 1, 2022
    Date of Patent: January 30, 2024
    Assignee: Mobileye Vision Technologies Ltd.
    Inventor: Aviad Kipnis
  • Patent number: 11889307
    Abstract: The present disclosure describes techniques that facilitate the encryption of data communications between a home and VPLMN, along with the verification of a content and origin of encrypted messages at each end of a data communication. In one non-limiting example, the process of verifying the content and origin of an encrypted message is facilitated partly by an exchange of network public keys between the HPLMN and VPLMNs. In another example, a network certificate aggregator (NCA) may act as a certificate authority (CA) by verifying the identities of interacting home and VPLMNs. The NCA may facilitate and exchange public keys between a home and VPLMN, whereby the HPLMN and VPLMNs need only trust and verify an identity of the NCA. Alternatively, the NCA may act as a conduit for data communications between the HPLMN and VPLMN.
    Type: Grant
    Filed: March 4, 2019
    Date of Patent: January 30, 2024
    Assignee: T-Mobile USA, Inc.
    Inventors: Paul Farag, Raymond Ball, Andrew Watts
  • Patent number: 11880436
    Abstract: Security systems for microelectronic devices physically lock the hardware itself and serve as a first line of defense by preventing overwriting, modification, manipulation or erasure of data stored in a device's memory. Implementations of the security systems can respond to lock/unlock commands that do not require signal or software interactivity with the functionality of the protected device, and which therefore may be consistent across devices.
    Type: Grant
    Filed: February 1, 2019
    Date of Patent: January 23, 2024
    Assignee: Nanolock Security Inc.
    Inventors: Eran Fine, Nitzan Daube
  • Patent number: 11870919
    Abstract: An issuing authority (IA) may validate the identity of a user and issue a digital license to the user. IA may generate IA public-private key pair, and provide IA public key to the certification authority (CA). IA may sign the digital license with IA private key, and provision the signed digital license on the user device. IA may request CA to certify the digital license. CA may use IA public key to validate the digital license, and sign IA public key with CA private key, thereby generating a digital certificate associated with the issuing authority that is linked to the digital license. A relying party may use CA public key to validate the digital license. The relying party can retrieve the information from the digital license and trust that the retrieved information is legitimate.
    Type: Grant
    Filed: December 16, 2021
    Date of Patent: January 9, 2024
    Assignee: Visa International Service Association
    Inventors: Andreas Aabye, Christopher McMillan, Adam Clark, Christian Aabye, Simon Hurry
  • Patent number: 11863546
    Abstract: In accordance with an embodiment, a method for delivering a certificate to a vehicle comprising transmitting the certificate to the vehicle via near field coupling is provided. The near field coupling can be accomplished by transmitting data using a near field coupled antenna to a receiver. The near field coupled antenna can also be used for content delivery such as for example, a streaming video signal, a streaming webcast signal, non-streaming transfer of information, etc. The method can be used for location validation of land vehicles, marine vehicles, and pedestrians as well as content delivery, and payment mechanisms. In accordance with another embodiment a traffic control system is configured to control vehicles and pedestrians in an intelligent transportation system.
    Type: Grant
    Filed: May 2, 2020
    Date of Patent: January 2, 2024
    Assignee: Eberle Design, Inc.
    Inventor: Timothy McCall
  • Patent number: 11843706
    Abstract: Techniques are disclosed to automate TLS certificate rotation. For example, a certificate rotation event may be detected from a certificate management tool. The certificate rotation event may be associated with a first certificate and may indicate that the first certificate is to be updated with a second certificate. An application server that is running on a host and to which the first certificate is bound may be identified. A certificate identifier for the second certificate may be provided to one or more agents running on the host. A distribution service may obtain certificate information, e.g., a public key, a private key, or a certificate identifier for the second certificate, from the certificate rotation tool. Some or all of the certificate information for the second certificate may be obtained by the one or more agents running on the host. The one or more agents may instruct the application server to bind the second certificate.
    Type: Grant
    Filed: November 19, 2019
    Date of Patent: December 12, 2023
    Assignee: Amazon Technologies, Inc.
    Inventors: Zhe Jiang, Eugene S. Lam, Emil Velichkov
  • Patent number: 11843604
    Abstract: A system, method, and computer-readable medium are disclosed for performing a data center connectivity management operation.
    Type: Grant
    Filed: April 28, 2022
    Date of Patent: December 12, 2023
    Assignee: Dell Products L.P.
    Inventors: Dominique Prunier, Michael E. Brown, Eric Williams
  • Patent number: 11842115
    Abstract: A printer may include a controller configured to: in a case where a predetermined instruction is obtained from a user under a situation where a service state of the printer for receiving a print job providing service from a server is a disabled state, shift the service state from the disabled state to an enabled state; in a case where a registration instruction to register printer information related to the printer in the server is obtained, send the printer information to the server; in a case where the registration instruction is obtained under the situation where the service state is the disabled state, shift the service state from the disabled state to the enabled state without obtaining the predetermined instruction from the user.
    Type: Grant
    Filed: March 6, 2023
    Date of Patent: December 12, 2023
    Assignee: Brother Kogyo Kabushiki Kaisha
    Inventor: Ryo Yamamoto
  • Patent number: 11831788
    Abstract: Certain example embodiments relate to systems and techniques for a client device outside of a cloud infrastructure to securely access services in the cloud infrastructure by relying on one or more keys that are validated by the cloud infrastructure based on a heartbeat message received from the client device. The heartbeat message may be secured by a certificate generated for the client device.
    Type: Grant
    Filed: April 15, 2021
    Date of Patent: November 28, 2023
    Assignee: DUPLOCLOUD, INC.
    Inventors: Thiruvengadam Venketesan, Sukhjit Parihar
  • Patent number: 11831776
    Abstract: A system allows a user to store his personally identifiable information (PII) on a personal device. When a third party wants to access the user's PII (e.g., to update the PII or to retrieve the PII), a notification will be presented to the user on the personal device seeking consent to the access. The notification may inform the user as to what information is being requested and which entity is requesting the access. The requested access will be denied unless the user consents to the access. In this manner, the user is given control over the dissemination of his PII. Additionally, the system alters or adjusts the PII that is stored in third-party servers so that even if these servers are breached, the user's actual PII is not exposed.
    Type: Grant
    Filed: March 27, 2023
    Date of Patent: November 28, 2023
    Assignee: THE PRUDENTIAL INSURANCE COMPANY OF AMERICA
    Inventors: Venkatesh Sarvottamrao Apsingekar, Sahil Vinod Motadoo, Christopher John Schille, James Francis Lavine