Having Particular Address Related Cryptography Patents (Class 713/162)
  • Patent number: 11556273
    Abstract: A method of operating a storage means, wherein for writing and storing a storage item to the storage means the storage item to be written and stored—in particular by using the concept and theory of identification—is provided, a encoding process by means of randomization is applied to the storage item to generate and to provide a randomized encoded storage item, and the randomized encoded storage item is written and stored to the storage means. At least a first randomization process is underlying the encoding process and is a randomization process dedicated and assigned to the underlying storage means. The present disclosure further refers to a unit for operating a storage means, to a storage means and to a system for processing data. By having two randomization processes underlying the encoding process, a distinction can be made between a secrecy insuring and secrecy non-ensuring randomization processes.
    Type: Grant
    Filed: June 19, 2019
    Date of Patent: January 17, 2023
    Assignee: Technische Universität
    Inventors: Sebastian Baur, Holger Boche, Christian Deppe
  • Patent number: 11516260
    Abstract: Techniques for utilizing an enterprise traffic interception service (TIS) to enforce policies that mandate how clients access software as a service (SaaS) offered by service providers and selectively intercept enterprise network traffic utilizing a domain name service (DNS) and a single sign-on (SSO) service on a per-client per-service basis. The TIS may include a DNS server, an identity provider service, a TLS inspecting proxy, and/or a policy server. The DNS server may handle requests to resolve an address of a service, and identify a policy, stored in the policy server, to redirect the client based on the identity of the client and the service. The identity provider service may later query the policy server during client authorization for the service to verify that the client request is in line with the policy and allow or deny access to the service.
    Type: Grant
    Filed: February 3, 2021
    Date of Patent: November 29, 2022
    Assignee: Cisco Technology, Inc.
    Inventors: Alessandro Duminuco, Hendrikus G. P. Bosch, Jeffrey Michael Napper, Vinny Parla, Julien Barbot, Sape Jurrien Mullender
  • Patent number: 11516232
    Abstract: Systems and methods are provided to generate an attack surface for a protected entity. The method an include receiving identifying information associated with the protected entity; scanning one or more third parties to identify a host associated with the protected entity; determining that the host resolves to a webpage; resolving the webpage; extracting a uniform resource locator (URL) from the resolved webpage; determining, based on at least one rule, that the URL is associated with the protected entity; and generating the attack surface for the protected entity, the attack surface comprising the URL.
    Type: Grant
    Filed: October 1, 2021
    Date of Patent: November 29, 2022
    Assignee: ZeroFOX, Inc.
    Inventors: Jason Emile Sumpter, James Christopher Foster, Michael Morgan Price
  • Patent number: 11489947
    Abstract: A relay node and method for encapsulating a packet based on a tunneling protocol. The relay node includes a communication device, a storage device, and a processor. The communication device communicates with a receiving node and a transmitting node; the storage device stores multiple instructions; and the processor is coupled to the communication device and the storage device for loading and executing the multiple instructions stored in the storage device to: control the communication device to receive a packet transmitted by the transmitting node; generate a protocol header related to the packet based on the packet, and calculate a checksum as a checksum block in the multiple sections using multiple sections in the protocol header at least; generate an encapsulated packet including the protocol header and the packet; and transmit the encapsulated packet to the receiving node through the communication device for verifying the checksum block.
    Type: Grant
    Filed: November 27, 2020
    Date of Patent: November 1, 2022
    Assignee: INSTITUTE FOR INFORMATION INDUSTRY
    Inventors: Jing-Ping Wang, Wen-Yao Chang
  • Patent number: 11483133
    Abstract: A method comprising receiving, by a one-time pad (OTP) hub, from a first user of a computer network, a communication encrypted with an OTP associated with said first user, wherein said communication is intended for a second user; encrypting, by said hub, said communication with an OTP associated with said second user; decrypting, by said hub, said communication with an OTP associated with said first user; and delivering said communication to said second user.
    Type: Grant
    Filed: December 4, 2018
    Date of Patent: October 25, 2022
    Assignee: DEFENDER CYBER TECHNOLOGIES LTD.
    Inventors: Maria Solomon, Doron Solomon
  • Patent number: 11463425
    Abstract: Traffic broadcast to a VLAN is restricted. To do so, a plurality of stations are associated with a BSSID (basic service set identifier). A first VLAN is configured by sending a first group key to each station from the plurality of stations that is a member of the first VLAN, wherein each VLAN is associated with a unique group key. One or more frames addressed to the first VLAN are received. The one or more frames are encrypted with the first group key to prevent stations without the first group key from being able to decrypt the one or more frames. The one or more encrypted VLAN frames are broadcast to the plurality of stations associated with the BSSID.
    Type: Grant
    Filed: October 13, 2017
    Date of Patent: October 4, 2022
    Assignee: Fortinet, Inc.
    Inventors: Mohan Ram, Sung-Wook Han
  • Patent number: 11418481
    Abstract: Systems and methods may include sending, to a network registrar, a first message including a first nonce generated by a host computing device, and receiving, from the network registrar, a second message including a second nonce, the second nonce being signed by the network registrar via a private key of a first public key infrastructure (PKI) key pair of the network registrar via a first signature. The method further includes sending a first neighbor advertisement (NA) message to the host computing device including the second nonce. The second nonce and the private key of the network registrar verifies the first signature from the network registrar, the verification of the first signature indicating that the router is not impersonating the network.
    Type: Grant
    Filed: October 1, 2021
    Date of Patent: August 16, 2022
    Assignee: Cisco Technology, Inc.
    Inventors: Pascal Thubert, Eric Levy-Abegnoli, Jonas Zaddach, Patrick Wetterwald
  • Patent number: 11405346
    Abstract: A verified method of high-value, person-to-person communication is provided. The method comprises creating a unique dynamic messaging link recognizable to a selected intended recipient; creating a transmissible personal hypermedia message to which the link is assigned; and storing the hypermedia message on a device accessible to a network. The link comprises a recognizable proprietary domain name and a random hash code. The individual is sent a direct message and the device is monitored for transmission thereto of the link, analyzing and storing accompanying metadata. The direct message contains an invitation to click on the link over the imprimatur of a person known to the recipient. The invitation contains descriptive material relating to the hypermedia message. Upon activation of the link, without redirection, the hypermedia message is transmitted to the recipient and the sender is notified. The sender is alerted if the link has not been activated within a predetermined period.
    Type: Grant
    Filed: February 24, 2017
    Date of Patent: August 2, 2022
    Inventor: Jeffrey N. Murphy
  • Patent number: 11381526
    Abstract: Multi-tenant optimized serverless placement using network interface card and commodity storage may be provided. A first request to execute a first function may be received. Next, it may be determined to execute the first function at a first network interface card. The first network interface card may include a plurality of processors. Then, a container may be created at the first network interface card. The container may have at least one processor of the plurality of processors. The first function may be executed at the container.
    Type: Grant
    Filed: May 8, 2019
    Date of Patent: July 5, 2022
    Assignee: CISCO TECHNOLOGY, INC.
    Inventors: Kyle Andrew Donald Mestery, Ian James Wells
  • Patent number: 11366938
    Abstract: A method for operating a bus system, in which a message of the bus system is received and its validity is ascertained, wherein, if it was ascertained that the message is “malicious”, a new message is sent to the designated receiver of this “non-malicious” message, the content of the new message having been previously rated as “non-malicious.
    Type: Grant
    Filed: September 20, 2017
    Date of Patent: June 21, 2022
    Assignee: Robert Bosch GmbH
    Inventors: Benjamin Herrmann, Liem Dang, Antonio La Marca, Timo Gentner
  • Patent number: 11356493
    Abstract: Embodiments of the present disclosure may provide a system comprising a client source device, a server, and a client viewing device. The client source device may be configured to: encode content as a plurality of fragments of at least one quality parameter, send each encoded fragment to a cloud storage, generate metadata associated with each encoded fragment, and provide the generated metadata associated with each encoded fragment. The server may be configured to: receive each encoded fragment, store each encoded fragment into the cloud storage for retrieval, and facilitate an authentication for access to the metadata associated with each encoded fragment. A client viewing device configured to request the authentication for access to the metadata, receive the metadata, determine a desired fragment of the plurality of fragments encoded in a desired quality parameter, and retrieve the desired fragment in the desired quality parameter.
    Type: Grant
    Filed: December 27, 2020
    Date of Patent: June 7, 2022
    Assignee: Streaming Global, Inc.
    Inventor: Richard Oesterreicher
  • Patent number: 11308936
    Abstract: A speech signal processing method of a user terminal includes: receiving a speech signal, detecting a personalized information section including personal information in the speech signal, performing data processing on the personalized information section of the speech signal by using a personalized model generated based on the personal information, and receiving, from a server, a result of the data processing performed by the server on a general information section of the speech signal that is different than the personalized information section of the speech signal.
    Type: Grant
    Filed: April 30, 2019
    Date of Patent: April 19, 2022
    Assignee: SAMSUNG ELECTRONICS CO., LTD.
    Inventors: Tae-yoon Kim, Sang-ha Kim, Sung-Soo Kim, Jin-sik Lee, Chang-woo Han, Eun-kyoung Kim, Jae-won Lee
  • Patent number: 11233825
    Abstract: An information handling system may include a host system having an initial operating system image deployed thereon; and a management controller configured to provide out-of-band management of the information handling system. The management controller may be further configured to: receive, via a secure management network, a request to configure a plurality of operating system settings; transmit, to an initial agent executing on the operating system, one or more instructions to configure the plurality of operating system settings in accordance with the request; and after the configuration of the plurality of operating system settings, allow a user to log in to the operating system via a non-secure data network.
    Type: Grant
    Filed: June 30, 2020
    Date of Patent: January 25, 2022
    Assignee: Dell Products L.P.
    Inventors: Lixia Hu, Zhuo Zhang, Niannian Xia
  • Patent number: 11222132
    Abstract: Methods, systems, and apparatuses embodied herein control and track access to secured data independent of the asset storing the secured data. In this regard, some embodiments organize volumes including one or more datasets and attach one or more assets to each volume. Some embodiments further receive data permissions of use information, for example from a data steward device, for the volume and datasets, which are registered with the volume and the datasets. Some embodiments further receive a set of restrictions, retrieve the dataset permissions of use information for one or more dataset identifiers, and determine the restrictions do not conflict with the dataset permissions of use information. Some embodiments further generate, and subsequently store, an indication the set of restrictions is valid when the dataset permissions of use information does not conflict. Permissions of use information may be organized into persona data objects assigned to various user profiles.
    Type: Grant
    Filed: October 3, 2019
    Date of Patent: January 11, 2022
    Assignee: OPTUM, INC.
    Inventors: Daniel L. Binkley, Lisa A. Hodne
  • Patent number: 11166338
    Abstract: An intelligent disaster prevention system and an intelligent disaster prevention method are provided. The intelligent disaster prevention system includes a server and an electronic device coupled to the server. The server detects the electronic device in a disaster area and obtains a location information of the electronic device. The server obtains real-time disaster information from a website. The server obtains a real-time aerial image corresponding to the disaster area. The server selects a first refuge from a plurality of refuges corresponding to the disaster area according to the location information, the real-time disaster information, and the real-time aerial image, and calculates an evacuation route from the location information to the first refuge. The electronic device receives the first refuge and the evacuation route, and displays the first refuge and the evacuation route on a map.
    Type: Grant
    Filed: March 5, 2020
    Date of Patent: November 2, 2021
    Assignee: Osense Technology Co., Ltd.
    Inventors: You-Kwang Wang, Chao-Chuan Lu
  • Patent number: 11032769
    Abstract: A mesh receiver has a wakeup receiver for reception of a wakeup sequence formed by keyed RF or a sequence of wireless packets and gaps, a transmitter forming low speed RF wakeup sequence to other mesh stations, a mesh receiver for reception of high speed WLAN packets, the transmitter sending a wireless ACK packet in response to a wakeup sequence, the mesh receiver thereafter receiving wireless packets from a remote station, the mesh transmitter sending an ACK, the mesh station thereafter identifying a next hop station, and sending a wakeup sequence to that station, after receipt of an ACK, sending the data, the mesh receiver and mesh transmitter thereafter going to sleep.
    Type: Grant
    Filed: December 18, 2017
    Date of Patent: June 8, 2021
    Assignee: Silicon Laboratories Inc.
    Inventors: Partha Sarathy Murali, Nagaraja Reddy Anakala, Ajay Mantha
  • Patent number: 10951578
    Abstract: Presented herein are techniques that provide for a way to associate a policy, or signal the policy for a user equipment (UE), directly from the UE traffic, inband or, in other words, within the data plane. The policies are effectively embedded in the address of the UE traffic. When the Neutral Host Network (NHN) receives the UE traffic, the policy can be determined directly from the address associated with the UE traffic. This provides for a unique way of integrating a service chain identifier in the Internet Protocol address of the UE to identify the services/policies to be applied to UE traffic in a stateless manner.
    Type: Grant
    Filed: January 15, 2020
    Date of Patent: March 16, 2021
    Assignee: Cisco Technology, Inc.
    Inventors: Nagendra Kumar Nainar, Carlos M. Pignataro, Rajiv Asati
  • Patent number: 10938560
    Abstract: A key originating device generates a subject key that is managed by a policy. The subject key may be generated and the policy configured at the instruction of a user, an application, or a service, such as a provisioning service. The policy that manages the subject key identifies at least one or more entities that are authorized to receive the subject key. The subject key is provided varying layers of encryption as it is communicated between the originating device, an escrow services, and an authorized entity.
    Type: Grant
    Filed: June 21, 2017
    Date of Patent: March 2, 2021
    Assignee: Microsoft Technology Licensing, LLC
    Inventors: Stefan Thom, Torsten Stein
  • Patent number: 10922643
    Abstract: A system and method that provides for the routing and delivery of services to consumers by providers is disclosed. The system enables providers to advertise and list the products and services they provide, and customers to solicit bids or to otherwise seek to engage a provider to perform a service or from whom to purchase a good. The system may store customer and provider information in databases to be searched to identify a match between customer and provider. The system transmits navigation information to the provider's device to travel to the final destination. The navigation information includes an intermediary destination the provider must reach before being presented with the final destination. The system may include a notification feature to notify a customer or third party regarding the location of the provider or the status of a requested service or delivery.
    Type: Grant
    Filed: March 13, 2018
    Date of Patent: February 16, 2021
    Assignee: KONNEKTI, INC.
    Inventor: Shawn Fallah
  • Patent number: 10924270
    Abstract: The secret calculation system comprises three secret calculation apparatuses. An ith secret calculation apparatus (i=1, 2, 3) comprises a holder that holds (S[i], T[i]) and (S?[i], T?[i]) as distributed values of an n-bit number W and an n-bit W? (n is any natural number), respectively; a first multiplicator that derives a logical conjunction of S[i] and S?[i]; a second multiplicator that derives a logical conjunction of T[i] and T?[i]; and a first subtractor that derives a difference between the logical conjunction derived by the first multiplicator and the logical conjunction derived by the second multiplicator.
    Type: Grant
    Filed: August 29, 2016
    Date of Patent: February 16, 2021
    Assignee: NEC CORPORATION
    Inventor: Jun Furukawa
  • Patent number: 10904000
    Abstract: Proof onions for transactions for smart contracts are stored. Details of the transactions are stored on blockchains separate from the proof onions. The proof onions are evidence structures for the steps taken to create any transaction for the smart contract. The proof onions include a plurality of signatures or other cryptographic proofs. A proof request that is associated with at least a first transaction of the transactions is received. A first proof onion of the proof onions that corresponds to the first transaction is retrieved. A plurality of public keys associated with the first proof onion is obtained. The plurality of public keys is used to validate the first proof onion. In response to the validation of the first proof onion, the proof request is responded to with at least an indication of the validity of the first transaction.
    Type: Grant
    Filed: April 26, 2018
    Date of Patent: January 26, 2021
    Assignee: Microsoft Technology Licensing, LLC
    Inventor: John Marley Gray
  • Patent number: 10902099
    Abstract: A method for generating debuggable obfuscated script includes embedding into a Web page, a query to a data store of a client for a key disposed within fixed storage of the client, further embedding into the Web page both an encrypted network reference to an un-obfuscated, clear form of a script, the encrypted network reference being decryptable with the key, and also an un-encrypted reference to an obfuscated form of the script and yet further embedding into the Web page, a selection directive selecting and decrypting the encrypted network reference to retrieve the un-obfuscated form upon loading the Web page on the condition that the key is found in the fixed storage, but otherwise selecting the un-encrypted reference to retrieve the obfuscated form. The method additionally includes serving the Web page to the client.
    Type: Grant
    Filed: July 12, 2019
    Date of Patent: January 26, 2021
    Assignee: International Business Machines Corporation
    Inventors: Giulia Carnevale, Marco Gianfico, Ciro Ragusa, Roberto Ragusa
  • Patent number: 10893020
    Abstract: Methods and systems for a device identification system may be provided. The device identification system may determine an identity of a user device associated with a transaction. The identity may be determined by network address information, hard link information, soft link information, and/or other such information. The network address information may include IPv4 information, IPv6 information, a device ID, and/or other such information. The identity of the user device may be determined and a transaction conducted from the user device may be assigned a fraudulent transaction risk score according to the information. Transactions that are determined to be at a high risk of fraud may be reviewed or otherwise flagged and/or canceled.
    Type: Grant
    Filed: November 11, 2019
    Date of Patent: January 12, 2021
    Assignee: PAYPAL, INC.
    Inventors: Zahid Nasiruddin Shaikh, Srivathsan Narasimhan
  • Patent number: 10873469
    Abstract: The present invention provides an information processing apparatus including: a destination setting unit configured to set a destination of an issuance request for an electronic certificate of a public key; a transmitting unit configured to transmit the issuance request to the destination at a time specified by a user; and an acquiring unit configured to acquire, from an external apparatus that is the destination, the electronic certificate that is issued on the basis of the issuance request transmitted to the destination. The information processing apparatus further includes a display control unit configured to display a setting screen on a display unit, the setting screen being a screen for receiving a setting of the destination. The display control unit prevents the setting screen from being displayed while the setting for transmitting the issuance request at the time specified by the user is in an enable state.
    Type: Grant
    Filed: June 19, 2019
    Date of Patent: December 22, 2020
    Assignee: Canon Kabushiki Kaisha
    Inventor: Naoya Kakutani
  • Patent number: 10846381
    Abstract: An information processing apparatus includes a determination unit, a first acquisition unit, and a controller. The determination unit receives, from a first terminal apparatus, a request for use issued to a document management apparatus and specifies an authentication mode necessary for the use. The first acquisition unit acquires information indicating an authentication mode supported by the first terminal apparatus. The controller performs, in a case where the authentication mode indicated by the acquired information does not match the specified authentication mode, control to output to the first terminal apparatus information on a second terminal apparatus that supports the specified authentication mode.
    Type: Grant
    Filed: May 16, 2019
    Date of Patent: November 24, 2020
    Assignee: FUJI XEROX CO., LTD.
    Inventor: Yoshiharu Suzuki
  • Patent number: 10841283
    Abstract: A method implemented by a sending host entity comprises sending, by the sending host entity, a data packet to a receiving host entity, a source identifier field of the data packet comprising an anonymized identifier of the sending host entity, the anonymized identifier being a temporary identifier of the sending host entity, and sending, by the sending host entity to a distributed mapping system, a request for the distributed mapping system to send information identifying the sending host entity to the receiving host entity.
    Type: Grant
    Filed: December 6, 2017
    Date of Patent: November 17, 2020
    Assignee: Futurewei Technologies, Inc.
    Inventors: Alexander Clemm, Uma S. Chunduri, Padmadevi Pillay-Esnault, Yingzhen Qu
  • Patent number: 10841754
    Abstract: The present disclosure relates to a verification code obtaining method. In one example method, a verification code obtaining request is sent by an application to a server. The application is installed on a terminal. Applications installed on the terminal further include an input method application and a Short Message Service (SMS) message application. An SMS message that includes a verification code and that is sent by the server is received by the SMS message application. The verification code in the SMS message is read by the input method application. The terminal does not allow an application other than the input method application and the SMS message application to read an SMS message in the terminal.
    Type: Grant
    Filed: December 31, 2015
    Date of Patent: November 17, 2020
    Assignee: HUAWEI TECHNOLOGIES CO., LTD.
    Inventors: Xi Huang, Zuoqiang Zhang
  • Patent number: 10831917
    Abstract: A processing system may obtain an operations set associated with database sources of a database system from a client entity, the operations set including a statement, the statement including a query, identify data sets from the operations set, transmit, a request to a first owner to permit access to a first data set, and a request to a second owner to permit access to a second data set, and receive approvals from the first and second owners. The processing system may retrieve a first portion of data stored in the first data set and a second portion of data stored in the second data set in accordance with the approvals, execute the operations set in accordance with the first portion of data and the second portion of data to generate a result set, and provide the client entity access to the result set.
    Type: Grant
    Filed: October 29, 2018
    Date of Patent: November 10, 2020
    Assignee: AT&T INTELLECTUAL PROPERTY I, L.P.
    Inventors: Andrew Vishnyakov, Dan Flynn
  • Patent number: 10798779
    Abstract: Multicast messaging may be managed in a machine-to-machine/Internet of things context, such as a CoAP network, via the inclusion of server selection criterion in multicast request messages and/or resource directory registration management. Server selection criteria may be explicit or implicit. An explicit criterion may be expressed, for example, as an IP address, a server identifier relative to a group context, or a Bloom filter. An implicit criterion may, for example, relate to the context of the request or the requestor, and include such information as data accuracy, data type, application, operating system, network location, geolocation, resource creation time, and resource update time. Server selection criteria may be maintained by a resource directory and/or via a user interface.
    Type: Grant
    Filed: August 12, 2016
    Date of Patent: October 6, 2020
    Assignee: Convida Wireless, LLC
    Inventors: Chonggang Wang, Rocco Di Girolamo, Shamim Akbar Rahman, Xu Li, Zhuo Chen, Quang Ly, Vinod Kumar Choyi, Lijun Dong
  • Patent number: 10713352
    Abstract: A method and an apparatus for trusted measurement, where the method includes: obtaining a first processing result by performing a first-manner processing on a code segment, and using a result obtained by performing a second-manner processing on the first processing result as a reference value; obtaining, at a first moment when the system is running, a second processing result by performing the first-manner processing on the code segment, and obtaining a first measurement value by performing the second-manner processing on the second processing result; and determining whether the first measurement value and the reference value are equal, and when the first measurement value and the reference value are equal, the system is trusted, where the code segment in the memory is a code segment that does not change with normal running of the system during one start-up and a running process of the system.
    Type: Grant
    Filed: March 16, 2017
    Date of Patent: July 14, 2020
    Assignee: Huawei Technologies Co., Ltd.
    Inventors: Chong Zhou, Tianfu Fu
  • Patent number: 10616739
    Abstract: A method, apparatus, and computer program product are disclosed for locally monitoring Internet of Things (IoT) devices without the need to interact via an IoT network intermediary. An example method includes receiving signals transmitted by one or more devices and identifying, by a communication device, a nearest device of the one or more devices based on the received signals. The method subsequently includes intercepting, by the communication device, advertisements transmitted by the nearest device, and causing display, based on the intercepted advertisements, of state information of the nearest device.
    Type: Grant
    Filed: December 17, 2014
    Date of Patent: April 7, 2020
    Assignee: Nokia Technologies Oy
    Inventors: Janne Ilmari Ofversten, Pekka Eerikki Leinonen
  • Patent number: 10558788
    Abstract: A method for generating debuggable obfuscated script includes embedding into a Web page, a query to a data store of a client for a key disposed within fixed storage of the client, further embedding into the Web page both an encrypted network reference to an un-obfuscated, clear form of a script, the encrypted network reference being decryptable with the key, and also an un-encrypted reference to an obfuscated form of the script and yet further embedding into the Web page, a selection directive selecting and decrypting the encrypted network reference to retrieve the un-obfuscated form upon loading the Web page on the condition that the key is found in the fixed storage, but otherwise selecting the un-encrypted reference to retrieve the obfuscated form. The method additionally includes serving the Web page to the client.
    Type: Grant
    Filed: January 14, 2018
    Date of Patent: February 11, 2020
    Assignee: International Business Machines Corporation
    Inventors: Giulia Carnevale, Marco Gianfico, Ciro Ragusa, Roberto Ragusa
  • Patent number: 10547598
    Abstract: A method for cryptographic material management is provided. The method includes receiving into a computing device, through an API of the computing device, a designation of which of a plurality of key-producing cloud services sources each of a plurality of keys and which of a plurality of key-consuming cloud service providers uses each of the plurality of keys for encrypting or decrypting data. The method includes directing, from the computing device through a first plurality of end modules each interfaced to a specific API of a specific one of the plurality of key-producing cloud services, production of one or more of the plurality of keys. The method includes directing, from the computing device through a second plurality of end modules each interfaced to a specific API of a specific one of the plurality of key-consuming cloud service providers usage of one or more of the plurality of keys.
    Type: Grant
    Filed: March 28, 2017
    Date of Patent: January 28, 2020
    Assignee: THALES ESECURITY, INC.
    Inventors: Solomon Cates, Richard Kettlewell, Nicholas Smith
  • Patent number: 10536446
    Abstract: A system and method for single authentication to a multi-tenancy single-page application hosted in a plurality of different datacenters. The method comprises: receiving, from a client device, a login request to access the single-page application; receiving an access token in response to an authentication of a user of the client device, wherein the access token designates at least tenant identification data; determining a datacenter of the plurality of different datacenters executing an instance of the single-page application supporting a tenant of the authenticated user; retrieving, from the determined datacenter, a single web page of the single-page application, wherein the retrieved signal web page includes at least references to resources pointing to a location of the determined datacenter; and serving the web single page to the client device.
    Type: Grant
    Filed: May 8, 2017
    Date of Patent: January 14, 2020
    Assignee: MICROSOFT TECHNOLOGY LICENSING, LLC.
    Inventors: Yarin Miran, Nir Mardiks
  • Patent number: 10516728
    Abstract: Computing systems, devices, and associated methods of operation of filtering packets at virtual switches implemented at hosts in a distributed computing system are disclosed herein. In one embodiment, a method includes receiving, at the virtual switch, a packet having a header and a payload and processing, at the virtual switch, the received packet based on multiple match action tables arranged in a hierarchy in which first and second layers individually contain one or more match action tables that individually contain one or more entries each containing a condition and a corresponding processing action.
    Type: Grant
    Filed: June 30, 2017
    Date of Patent: December 24, 2019
    Assignee: Microsoft Technology Licensing, LLC
    Inventor: Daniel Firestone
  • Patent number: 10476838
    Abstract: Methods and systems for a device identification system may be provided. The device identification system may determine an identity of a user device associated with a transaction. The identity may be determined by network address information, hard link information, soft link information, and/or other such information. The network address information may include IPv4 information, IPv6 information, a device ID, and/or other such information. The identity of the user device may be determined and a transaction conducted from the user device may be assigned a fraudulent transaction risk score according to the information. Transactions that are determined to be at a high risk of fraud may be reviewed or otherwise flagged and/or canceled.
    Type: Grant
    Filed: September 18, 2018
    Date of Patent: November 12, 2019
    Assignee: PAYPAL, INC.
    Inventors: Zahid Nasiruddin Shaikh, Srivathsan Narasimhan
  • Patent number: 10469494
    Abstract: A home network system using a Z-Wave network includes a wired/wireless Z-Wave bridge having a Z-Wave communication unit to which a plurality of home automation devices are accessed through the Z-Wave network and an Ethernet communication unit which is accessed to a main server through the Internet, and a main server providing an application for a remote control of the home automation device, and performing MAC authentication to allow access to the wired/wireless Z-Wave bridge upon request by the portable terminal, in which the MAC authenticated portable terminal of the wired/wireless Z-Wave bridge is accessed to the home automation devices to perform remote control.
    Type: Grant
    Filed: December 11, 2015
    Date of Patent: November 5, 2019
    Assignee: KYUNG DONG ONE CORPORATION
    Inventor: Se Young Oh
  • Patent number: 10462154
    Abstract: A method of transferring information between subscribers associated with a communication service is disclosed. The method includes receiving a first handle address associated with a first subscriber device, in which the first subscriber device transfers information to a group of subscriber devices, each of the group of subscriber devices is linked to different handle addresses, and each of the different handle addresses is included in a group of handle addresses. The method also includes determining whether the first handle address is included in the group of handle addresses, transferring information from the first subscriber device to the group of subscriber devices in response to the first handle address being included in the group of handle addresses, and verifying that the transferred information was received by the group of subscriber devices. A corresponding system and computer-readable device are also disclosed.
    Type: Grant
    Filed: October 1, 2018
    Date of Patent: October 29, 2019
    Assignee: AT&T Mobility II LLC
    Inventors: Sheldon Kent Meredith, Mark Austin
  • Patent number: 10389719
    Abstract: Example implementations relate to a security information sharing platform that enables sharing of security information among a plurality of members. For example, in an implementation, a system may determine that a first member of a community of a security information sharing platform is entitled access to a first set of encrypted information shared by a second member of the community. The system may also receive a request, from the first member, to access the first set of encrypted information, the request including a masked parameter. The system may also determine that the masked parameter matches an access parameter for accessing the first set of encrypted information and provide the first member access to the first set of encrypted information in response to determining that the masked parameter matches the access parameter.
    Type: Grant
    Filed: October 28, 2016
    Date of Patent: August 20, 2019
    Assignee: ENTIT SOFTWARE LLC
    Inventors: Terence Spies, Tomas Sander, Susan K. Langford
  • Patent number: 10356058
    Abstract: Computer-implemented methods are provided for communicating message data from a sender computer to a receiver computer via a network. The sender computer encrypts the message data in dependence on a cryptographic key to produce a ciphertext, and establishes an access password for the ciphertext with a host computer connected to the network. The sender computer sends the ciphertext via the network to the host computer, and sends an email, containing the cryptographic key in cleartext, to the receiver computer via the network. The cryptographic key comprises a random cryptographic value which is independent of the access password. The host computer receives the ciphertext from the sender computer and stores the ciphertext in association with the access password. The receiver computer receives the email from the sender computer and sends an access request for the ciphertext, and an input password, to the host computer via the network.
    Type: Grant
    Filed: October 1, 2015
    Date of Patent: July 16, 2019
    Assignee: International Business Machines Corporation
    Inventors: Jan L. Camenisch, Anja Lehmann, Gregory Neven, Kai Samelin
  • Patent number: 10310886
    Abstract: Some embodiments provide a method for configuring a logical middlebox in a hosting system that includes a set of nodes. The logical middlebox is part of a logical network that includes a set of logical forwarding elements that connect a set of end machines. The method receives a set of configuration data for the logical middlebox. The method uses a stored set of tables describing physical locations of the end machines to identify a set of nodes at which to implement the logical middlebox. The method provides the logical middlebox configuration for distribution to the identified nodes.
    Type: Grant
    Filed: January 4, 2017
    Date of Patent: June 4, 2019
    Assignee: NICIRA, INC.
    Inventors: Ronghua Zhang, Teemu Koponen, IV, Pankaj Thakkar, Amar Padmanabhan, Martin Casado
  • Patent number: 10291595
    Abstract: A platform, apparatus and method for Internet of Things Implementations. For example, one embodiment of a system comprises: an Internet of Things (IoT) hub comprising a network interface to couple the IoT hub to an IoT service over a wide area network (WAN), and programming logic to program an identification device with one or more encryption keys usable to establish encrypted communication with an IoT device; and at least one IoT device interfacing with the identification device following programming of the identification device by the IoT hub; wherein once the identification device is programmed and interfaced with the IoT device, the IoT device uses the one or more keys to establish a secure communication channel with the IoT hub and/or the IoT service.
    Type: Grant
    Filed: November 28, 2017
    Date of Patent: May 14, 2019
    Assignee: Afero, Inc.
    Inventors: Joe Britt, Shin Matsumura, Houman Forood, Scott Zimmerman, Phillip Myles, Sean Zawicki, Daisuke Kutami, Shannon Holland
  • Patent number: 10144304
    Abstract: Various techniques described herein relate to electric vehicle power management system for managing a plurality of battery modules in a battery pack. Such electric vehicle power management system may include a plurality of battery management systems corresponding to a plurality of battery modules, and an energy management system for managing the plurality of battery management systems. The energy management system and the plurality of battery management systems may adopt master-slave wireless communication, and may use a single wireless frequency channel or a plurality of assigned wireless frequency channels.
    Type: Grant
    Filed: July 20, 2016
    Date of Patent: December 4, 2018
    Assignee: THUNDER POWER NEW ENERGY VEHICLE DEVELOPMENT COMPANY LIMITED
    Inventor: Yu-Ting Dai
  • Patent number: 10135739
    Abstract: A data processing device includes a first packet communication interface for communication with at least one host processor via a network interface controller (NIC) and a second packet communication interface for communication with a packet data network. A memory holds a flow state table containing context information with respect to multiple packet flows conveyed between the host processor and the network via the first and second interfaces packet communication interfaces. Acceleration logic, coupled between the first and second packet communication interfaces, performs computational operations on payloads of packets in the multiple packet flows using the context information in the flow state table.
    Type: Grant
    Filed: May 4, 2016
    Date of Patent: November 20, 2018
    Assignee: MELLANOX TECHNOLOGIES, LTD.
    Inventors: Shachar Raindel, Shlomo Raikin, Liran Liss
  • Patent number: 10127194
    Abstract: Methods, systems, and apparatus for performing recursive embedding by URL parameterization are provided. Recursive embedding by URL parameterization may be performed by receiving a display parameter for defining a window display area within a portion of a first document associated with a first application having a first format, and a URL-based identifier specifying a portion of a second document associated with a second application having a second format. The first and second formats are different from each other. A display of the portion of first including the window display area is generated. The specified portion of the second document is displayed within the window display area, and the first and second documents are independently executable with respect to each other.
    Type: Grant
    Filed: May 27, 2016
    Date of Patent: November 13, 2018
    Assignee: Google LLC
    Inventor: Christopher Richard Uhlik
  • Patent number: 10031233
    Abstract: This application discloses a GNSS reference apparatus having a vector error generator and a reference data server. The vector error generator generates one or more sequences of keyed intentional errors made confidential with confidential error keys, and then combines the sequences to generate a sequence of reference erroneous positions. The reference data server issues GNSS position-determination reference data based on the reference erroneous positions where the keyed intentional errors for at least one of the confidential sequences are reversible with confidential access to the corresponding confidential error key for determining a GNSS-based position.
    Type: Grant
    Filed: November 25, 2015
    Date of Patent: July 24, 2018
    Assignee: Trimble Inc.
    Inventor: David G. Bird
  • Patent number: 10021036
    Abstract: Systems and methods for management of persistent cookies in a corporate web portal are described. A plurality of zones may be defined and stored in memory. Each zone may be associated with a zone property indicative of whether cookies are allowed. A resource request may be received from a user device over a network where access to the requested resource may require a cookie. The user device may be classified into a zone from the plurality of zones based on the attributes of the user device. The cookie may be automatically installed on the user device based on a zone property for the zone and for those resources that have been configured to require installation of a cookie installed without requiring further user interaction following the request.
    Type: Grant
    Filed: January 8, 2016
    Date of Patent: July 10, 2018
    Assignee: SonicWALL Inc.
    Inventors: Christopher D. Peterson, Jeetendra Kulkarni
  • Patent number: 9977685
    Abstract: Some embodiments provide a method of operating several logical networks over a network virtualization infrastructure. The method defines a managed physical switching element (MPSE) that includes several ports for forwarding packets to and from a plurality of virtual machines. Each port is associated with a unique media access control (MAC) address. The method defines several managed physical routing elements (MPREs) for the several different logical networks. Each MPRE is for receiving data packets from a same port of the MPSE. Each MPRE is defined for a different logical network and for routing data packets between different segments of the logical network. The method provides the defined MPSE and the defined plurality of MPREs to a plurality of host machines as configuration data.
    Type: Grant
    Filed: December 20, 2013
    Date of Patent: May 22, 2018
    Assignee: NICIRA, INC.
    Inventors: Ganesan Chandrashekhar, Rahul Korivi Subramaniyam, Ram Dular Singh, Vivek Agarwal, Howard Wang
  • Patent number: 9860251
    Abstract: A system and computer program product for implementing a method for restricting access to information transmitted over a computing network. A computer receives a resource request for a resource to be located. The resource request contains a universal resource locator (URL). The computer determines that the requested resource is available and in response, the computer locates the requested resource contained in the resource request. The computer determines whether encryption of the contained. URL is required. The computer may determine whether encryption is required for a return URL of the requested resource that is to be returned to a location of the resource request. After the computer determines that the requested resource is available, the computer may: determine that encryption of the requested resource is required and in response, determine an encrypted value of the requested resource.
    Type: Grant
    Filed: January 30, 2017
    Date of Patent: January 2, 2018
    Assignee: International Business Machines Corporation
    Inventors: Michael P. Carlson, Srinivas Chowdhury
  • Patent number: 9811831
    Abstract: A system may include a point-of-sale system that gathers payment card track data from a payment card and a payment card gateway that processes the track data to authorize purchase transactions. The point-of-sale system may remove sensitive data such as a portion of a primary account number from the track data and may compress the removed data. The compressed version of the data may be appended to a discretionary field in the track data. The discretionary field may be encrypted following insertion of the compressed data. Track data that has been modified in this way may be conveyed to the payment gateway for processing.
    Type: Grant
    Filed: February 21, 2014
    Date of Patent: November 7, 2017
    Assignee: ENTIT SOFTWARE LLC
    Inventors: Terence Spies, Matthew J. Pauker, Jacob Green, Michael S. Leong, Richard T. Minner