Particular Communication Authentication Technique Patents (Class 713/168)
  • Patent number: 11330474
    Abstract: Disclosed herein are a method and procedure for processing protection data for protecting data privacy in an M2M system. According to an embodiment of the present disclosure, an M2M apparatus located in an M2M platform in an M2M system includes a communicator configured to transmit and receive a signal and a processor configured to control the communicator. Herein, the processor generates a resource at a resource generation request for administering data received by the communicator, generates a resource at a resource generation request for storing the data received by the communicator, determines whether the data received by the communicator are protection data, and when the data are determined as protection data, performs data processing for privacy protection.
    Type: Grant
    Filed: June 30, 2020
    Date of Patent: May 10, 2022
    Assignees: Hyundai Motor Company, Kia Motors Corporation
    Inventor: Jae Seung Song
  • Patent number: 11329960
    Abstract: A first container of a first device can receive information that identifies a configuration of a first interface and a second interface of a second container of the first device. The first container can include a self-contained execution environment. The first container can configure a firewall of the first device to enable network traffic to be transferred between a second device and a third container of a third device via the first interface and the second interface.
    Type: Grant
    Filed: October 29, 2019
    Date of Patent: May 10, 2022
    Assignee: Verizon Patent and Licensing Inc.
    Inventors: Jianfang Li, Yuhang Zhao, Manish Chugtu
  • Patent number: 11321704
    Abstract: A method securely manages smart card transactions. A processing entity receives a smart card identifier from a smart card, where the smart card is a virtual card on a mobile computing device that comprises a processor, where the smart card identifier is a transaction-specific identifier for a transaction. A protected application is received at the mobile computing device, where a received protected application initially cannot be utilized by an operating system for execution by the processor. A security object is received at the mobile computing device, where the security object is used to convert the received protected application into an executable application that can be utilized by the operating system for execution by the processor. The processor executes the executable application to act as the virtual card, where the virtual card provides a functionality of a predefined physical electronic card.
    Type: Grant
    Filed: September 9, 2019
    Date of Patent: May 3, 2022
    Assignee: International Business Machines Corporation
    Inventors: Robert R. Friedlander, James R. Kraemer, Jeb R. Linton
  • Patent number: 11321446
    Abstract: An access credential is modified at one device, wherein the device is part of a secure private network of multiple devices. Each other device in the secure private network receives notification of the modification. The credential modification is implemented when at least a subset of the other devices each accept the credential modification.
    Type: Grant
    Filed: December 16, 2019
    Date of Patent: May 3, 2022
    Assignee: Dell Products L.P.
    Inventors: Parminder Singh Sethi, Anshul Saxena, Vamsi Krishna Tadikamalla
  • Patent number: 11323260
    Abstract: One embodiment provides a method and system for identity verification. During operation, a digital identity client executing on a computer receives an identity-verification request comprising an identifier of a user, sends a query for available identity-verification services to identity-verification-service-publishing blockchain, determines an identity-verification server based on a result of the query, interacts with the determined identity-verification server to complete identity verification of the user, generates a public-private key pair comprising a public key and a private key corresponding to the identifier of the user, and stores, in identity-verification blockchain, identity-verification information associated with the user. The identity-verification information comprises at least a hash value of the public key, thereby facilitating subsequent identity verification of the user based on the identity-verification information stored in the identity-verification blockchain.
    Type: Grant
    Filed: January 29, 2021
    Date of Patent: May 3, 2022
    Assignee: Advanced New Technologies Co., Ltd.
    Inventors: Zhiwei Wang, Wenbo Yang
  • Patent number: 11323265
    Abstract: A storage device includes a basic memory to store a message received from an external device, a security memory to store an authentication key for authenticating the message, a controller to output a control signal, and a security engine to obtain the authentication key from the security memory with an authority to access the security memory in response to the control signal from the controller and to block an access of the controller to the security memory.
    Type: Grant
    Filed: November 27, 2019
    Date of Patent: May 3, 2022
    Assignee: Samsung Electronics Co., Ltd.
    Inventors: Yoonjick Lee, Sunghyun Kim, Junho Huh
  • Patent number: 11321305
    Abstract: Aspects of the disclosure relate to utilizing independently stored validation keys to enable auditing of instrument measurement data maintained in a blockchain. A computing platform may receive, from a first block generator, a first data block comprising first measurement data captured by a first instrument and associated with a sample. Subsequently, the computing platform may receive a first validation key for the first data block calculated from contents of the first data block. Then, the computing platform may store the first data block and the first validation key for the first data block in a blockchain associated with the data management computing platform. Next, the computing platform may send the first validation key for the first data block to a data escrow database system, which may cause the data escrow database system to store the first validation key in a validation keys database.
    Type: Grant
    Filed: December 11, 2019
    Date of Patent: May 3, 2022
    Assignee: Thermo Electron Scientific Instruments LLC
    Inventor: Mark C. Grandau
  • Patent number: 11324027
    Abstract: The disclosure discloses a method, a user equipment, and a computer storage medium for reporting a buffer status report, wherein the method includes: adding information related to an integrity-checking section to the buffer status report when a manner for reporting memory data is a first manner for reporting memory data; the first manner for reporting memory data is to report with data of the integrity-checking section counted; and sending the buffer status report to the network side.
    Type: Grant
    Filed: April 29, 2020
    Date of Patent: May 3, 2022
    Assignee: GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP., LTD.
    Inventor: Ning Yang
  • Patent number: 11323251
    Abstract: A method for transfer of a dataset includes provisioning or generating a user-side Diffie Hellman key pair, including a secret user key and a public user key; transferring the public user key to the server; provisioning or generating a server-side Diffie Hellman key pair, including secret server and public server keys; provisioning a dataset on the server; generating a server-side Diffie Hellman key using the secret server key and the public user key, and encrypting the dataset to generate an encrypted dataset, via a resulting server-side Diffie Hellman key generated on the server side; transferring the encrypted dataset to the cloud service; retrieving the public server key and the encrypted dataset from the cloud service; and generating a user-side Diffie Hellman key using the secret user key and the public server key retrieved, and decrypting the encrypted dataset on the user device using the user-side Diffie Hellman key.
    Type: Grant
    Filed: December 17, 2019
    Date of Patent: May 3, 2022
    Assignee: SIEMENS HEALTHCARE GMBH
    Inventors: Steffen Fries, Ute Rosenbaum
  • Patent number: 11317291
    Abstract: A data processing method, an access network device, and a core network device are provided. The method comprises: the access network device receives first information sent by the core network device or a terminal device; the access network device determines, according to the first information, whether to perform security processing on data to be processed.
    Type: Grant
    Filed: August 7, 2020
    Date of Patent: April 26, 2022
    Assignee: GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP., LTD.
    Inventor: Jianhua Liu
  • Patent number: 11316663
    Abstract: Techniques for authentication using a blockchain hash value as a moving factor. The techniques include retrieving, by an authenticating device and from a blockchain, a current hash value of the blockchain, where the authenticating device and an authenticator server share a secret key value and each have access to the blockchain. The techniques further including generating, by the authenticating device, a secure token based on the secret key value and the current hash value. The techniques further including transmitting the secure token to the authenticator server and receiving an indication of authentication from the authenticator server.
    Type: Grant
    Filed: January 25, 2019
    Date of Patent: April 26, 2022
    Assignee: International Business Machines Corporation
    Inventors: Narayana Aditya Madineni, Leigh Stuart McLean, Michael Wallace Gray, James Evans
  • Patent number: 11316701
    Abstract: A decentralized certificate module generates a unique key pair. The decentralized certificate module creates a certificate signing request (CSR) based at least on a public key of the unique key pair. The decentralized certificate module signs the CSR with pre-installed system data to generate a signed trust certificate. The decentralized certificate module initiates a secure communication that includes the signed trust certificate.
    Type: Grant
    Filed: October 22, 2019
    Date of Patent: April 26, 2022
    Assignee: ZT Group Int'l, Inc.
    Inventor: Oscar Alfredo Perez
  • Patent number: 11310269
    Abstract: Systems and methods are disclosed for an ADV to leverage pre-defined static objects along a planned route of travel to detect and counter attacks that attempt to change the destination or the planned route. The ADV may detect updates to the static objects if the planned route is changed. Based on the updated static objects, the ADV determines if there is an abnormal re-routing of the planned route or if there is a new route due to a suspicious destination change. The ADV may also leverage the static objects to detect spoofing attacks against the sensor system. The ADV may evaluate if sensors of the sensor system are able to detect and identify the static objects to identify an impaired sensor. The ADV may perform cross-check on the ability of the sensors to detect and identify dynamic objects to gain confidence that the impaired sensor is due to spoofing attacks.
    Type: Grant
    Filed: October 15, 2019
    Date of Patent: April 19, 2022
    Assignee: BAIDU USA LLC
    Inventors: Xiaodong Liu, Ning Qu
  • Patent number: 11308225
    Abstract: A method comprising executing, by a core of a processor, a first instruction requesting access to a parameter associated with data for storage in a main memory coupled to the processor, the first instruction including a reference to the parameter, a reference to a wrapping key, and a reference to an encrypted encryption key, wherein execution of the first instruction comprises decrypting the encrypted encryption key using the wrapping key to generate a decrypted encryption key; requesting transfer of the data between the main memory and the processor core; and performing a cryptographic operation on the parameter using the decrypted encryption key.
    Type: Grant
    Filed: December 20, 2019
    Date of Patent: April 19, 2022
    Assignee: Intel Corporation
    Inventors: Michael E. Kounavis, Santosh Ghosh, Sergej Deutsch, David M. Durham
  • Patent number: 11310058
    Abstract: The invention is a method for digitally signing an electronic file (48), comprising the steps carried out by a server: generating a challenge value (50) comprising a projection parameter (52), transferring the challenge value (50) to a client device through a communications channel, receiving, through a communications channel, an evidence record (70), the electronic file (48) to be signed, and a user's biometric data (54) from the client device, generating reduced biometric verification data by applying a projection utilising the projection parameter (52), generating a verification evidence record and comparing it against the evidence record (70) sent by the client device, generating a server certificate, signing the server certificate applying the server's private signing key, thereby generating a signed server certificate, generating a digital signature by associating at least the signed server certificate and the hash (49) of the electronic file (48), and associating the digital signature with the electron
    Type: Grant
    Filed: January 6, 2020
    Date of Patent: April 19, 2022
    Inventors: Balazs Csik, Csaba Lengyel, Antal Rogan
  • Patent number: 11302130
    Abstract: A smart locking system with biometrics authentication allows a user with a portable electronic device installed with an application program and a biometrics characteristics extractor. The portable electronic device includes an identification code, a biometric characteristics retrieving module and an input unit. The application program has the identification code registered in a controller of a smart lock device and has the biometric characteristics retrieving module retrieve the biometric characteristics of the user. After matching and authentication of the application program, a password is produced and input into a biometric characteristics button of the input unit correspondingly.
    Type: Grant
    Filed: November 4, 2020
    Date of Patent: April 12, 2022
    Inventor: Li-Shih Liao
  • Patent number: 11303434
    Abstract: A method for conducting a transaction is disclosed. A processor in a thin client may receive transaction data from a portable device of a first portable device type. The processor may determine that the portable device is the first portable device type. The processor may apply an encryption protocol associated with a second portable device type to the transaction data to create encrypted data. The processor may transmit the encrypted data to a remote computer, wherein the remote computer utilizes the encryption protocol to decrypt the transaction data, and thereafter process the transaction data to conduct the transaction.
    Type: Grant
    Filed: March 11, 2019
    Date of Patent: April 12, 2022
    Assignee: VISA INTERNATIONAL SERVICE ASSOCIATION
    Inventors: Yuexi Chen, Marc Kekicheff, Philippe Martin
  • Patent number: 11297051
    Abstract: A virtual session manager of an electronic device maintains a web session for a user across multiple electronic devices. The virtual session manager receives an authentication request from a first electronic device that is in a communication range of the device. The virtual session manager transmits the authentication request to an endpoint device with a grant token without providing the first electronic device with any access to the grant token. The virtual session manager will receive, from the endpoint device, a first access token in response to the first authentication request. The virtual session manager will transmit the first access token to the first electronic device so that the first electronic device can establish a virtual session with the first web resource.
    Type: Grant
    Filed: September 10, 2019
    Date of Patent: April 5, 2022
    Assignee: Google LLC
    Inventors: Guibin Kong, Naveen Agarwal
  • Patent number: 11297042
    Abstract: An example apparatus comprises a memory resource configured to store a private key associated with a vehicle and store a data matrix comprising data corresponding to operation of the vehicle. The apparatus may further include a processing resource configured to generate a first secure message comprising data corresponding to the vehicle, transmit the first secure message, receive a second secure message comprising an updated data matrix, and update the data matrix based, at least in part, on the updated data matrix.
    Type: Grant
    Filed: March 13, 2020
    Date of Patent: April 5, 2022
    Assignee: Micron Technology, Inc.
    Inventors: Alberto Troia, Antonino Mondello
  • Patent number: 11294548
    Abstract: An method for playing video contents including detecting whether or not a play condition for playing a video content corresponding to a first content block in a video display page is met. When it is detected that the play condition for playing the video content corresponding to the first content block is met, adjusting a player instance corresponding to the video display page to the first content block, and playing the video content corresponding to the first content block through the player instance. The technical solution of the present disclosure simplify a play process of playing a video content, avoid that a user browses information related to the video content after entering into a new detail page by clicking icons on the video display page one by one, and enable the user to directly watch a video content corresponding to a content block on the video display page.
    Type: Grant
    Filed: March 7, 2016
    Date of Patent: April 5, 2022
    Assignee: BANMA ZHIXING NETWORK (HONGKONG) CO., LIMITED
    Inventors: Ding Sheng, Mian Peng
  • Patent number: 11296989
    Abstract: Most of the internet traffic today is carried out via the Transmission Control Protocol (TCP). The main advantage of TCP is that it provides reliable data transfer to the application layer and simplifies programming. The protocol maximizes data throughput but may also lead to noticeable transmission delay in wide area networks (WAN). A client-server based medical image viewing system is disclosed that achieves high data throughput over TCP without impacting responsiveness. Special timestamp messages inserted into the data stream allow the system to detect situations where network latency increases noticeably and to obtain a reliable estimate of sustained transfer bandwidth. The system applies a feedback scheme that avoids network delays by limiting send bandwidth. In addition other parameters, in particular image compression settings, are dynamically adjusted depending on current network quality.
    Type: Grant
    Filed: August 5, 2020
    Date of Patent: April 5, 2022
    Assignee: PME IP PTY LTD
    Inventors: Detlev Stalling, Malte Westerhoff
  • Patent number: 11290411
    Abstract: Systems and methods are disclosed for determining whether a message received by a client may be spam, in a computing environment that preserves privacy. The message may be encrypted. A client invokes the methods when a message is received from a sender that is not known to the client. A client can decrypt the message, break the message into chunks, and apply a differentially private algorithm to the set of chunks. The client transmits the differentially private message sketches to an aggregation server. The aggregation server receives a large collection of such message sketches for a large plurality of clients. The aggregation server returns aggregated message chunk (e.g. frequency) information to the client to assist the client in determining whether the message may be spam. The client can process the message based on the determination without disclosing the message content to the server.
    Type: Grant
    Filed: September 11, 2020
    Date of Patent: March 29, 2022
    Assignee: Apple Inc.
    Inventors: Eric D. Friedman, Ritwik K. Kumar, Lucas Winstrom
  • Patent number: 11290420
    Abstract: Methods and related systems are presented that relate to automatically avoiding address conflicts when establishing a secure communications link over a public network between a local computer, associated with a local network, and a remote device, located outside the local network. Local network addresses on the local network reserved for use, and a block of local network addresses that do not conflict with the reserved local network addresses, are identified. At least one local network address is selected from the block and assigned as an address of the local device for use in communicating with the remote device securely over the public network. Communication is facilitated with the remote device using the network driver based on the assigned at least one local network address.
    Type: Grant
    Filed: March 30, 2020
    Date of Patent: March 29, 2022
    Assignee: VirnetX, Inc.
    Inventors: Robert Dunham Short, Michael Williamson, Victor Larson
  • Patent number: 11283790
    Abstract: The invention described herein is that of systems and methods for agentless identity-based authentication of network-enabled devices for control of network traffic to and from each device based on identity. The invention leverages X.509 certificates associated with network devices and comprises at least one querying device in communication with at least target device and optionally at least one intermediate device, such as but not limited to a switching device that can interface with the target device and enable the querying device to query the target device to obtain an X.509 certificate and any extensions, then dictate switching actions, which may be carried out by the querying device according to instructions provided by a switching module residing on the querying device or located external to the querying device. The systems and methods described herein are suitable for validation of the identities of fixed application devices to prevent unauthorized network access.
    Type: Grant
    Filed: June 18, 2020
    Date of Patent: March 22, 2022
    Assignee: IP Technology Labs, LLC
    Inventors: Gary Mitchell, Scott Whittle, Kurt Quasebarth
  • Patent number: 11283916
    Abstract: The present disclosure generally relates to interfaces and techniques for media playback on one or more devices. In accordance with some embodiments, an electronic device includes a display, one or more processors, and memory. The electronic device receives user input and, in response to receiving the user input, displays, on the display, a multi-device interface that includes: one or more indicators associated with a plurality of available playback devices that are connected to the device and available to initiate playback of media from the device, and a media playback status of the plurality of available playback devices.
    Type: Grant
    Filed: March 3, 2020
    Date of Patent: March 22, 2022
    Assignee: Apple Inc.
    Inventors: Patrick L. Coffman, David Chance Graham
  • Patent number: 11281393
    Abstract: A data management and storage (DMS) cluster of peer DMS nodes manages data of a tenant of a multi-tenant compute infrastructure. The compute infrastructure includes an envoy connecting the DMS cluster to virtual machines of the tenant executing on the compute infrastructure. The envoy provides the DMS cluster with access to the virtual tenant network and the virtual machines of the tenant connected via the virtual tenant network for DMS services such as data fetch jobs to generate snapshots of the virtual machines. The envoy sends the snapshot from the virtual machine to a peer DMS node via the connection for storage within the DMS cluster. The envoy provides the DMS cluster with secure access to authorized tenants of the compute infrastructure while maintaining data isolation of tenants within the compute infrastructure.
    Type: Grant
    Filed: November 26, 2018
    Date of Patent: March 22, 2022
    Assignee: Rubrik, Inc.
    Inventors: Abdul Jabbar Abdul Rasheed, Soham Mazumdar, Hardik Vohra, Mudit Malpani
  • Patent number: 11283635
    Abstract: Various approaches for memory encryption management within an edge computing system are described. In an edge computing system deployment, a computing device includes capabilities to store and manage encrypted data in memory, through processing circuitry configured to: allocate memory encryption keys according to a data isolation policy for a microservice domain, with respective keys used for encryption of respective sets of data within the memory (e.g., among different tenants or tenant groups); and, share data associated with a first microservice to a second microservice of the domain. Such sharing may be based on the communication of an encryption key, used to encrypt the data in memory, from a proxy (such as a sidecar) associated with the first microservice to a proxy associated with the second microservice; and maintaining the encrypted data within the memory, for use with the second microservice, as accessible with the communicated encryption key.
    Type: Grant
    Filed: December 20, 2019
    Date of Patent: March 22, 2022
    Assignee: Intel Corporation
    Inventors: Ned M. Smith, Kshitij Arun Doshi, Francesc Guim Bernat, Mona Vij
  • Patent number: 11275847
    Abstract: Technologies for secure certificate management include a computing device that receives a keystore command related to an encryption key, converts the keystore command into an encrypted database command, unlocks an encrypted database stored by the computing device with an obfuscated passphrase, and executes the encrypted database command. The encrypted database includes a key table to store binary copies of encryption keys and a metadata table to store metadata related to the encryption keys. The computing device returns a response to the keystore command in response to executing the encrypted database command. The keystore command may be received and the response may be returned via a command-line interface or a machine-to-machine interface. The computing device may load multiple encoded passphrase segments from corresponding predetermined file system locations, decode the encoded passphrase segments, and compound the decoded passphrase segments to generate the passphrase.
    Type: Grant
    Filed: September 21, 2016
    Date of Patent: March 15, 2022
    Assignee: INTEL CORPORATION
    Inventors: Alexander R. McMillan, Deloy P. Bitner
  • Patent number: 11277406
    Abstract: In one example a prover device comprises one or more processors, a computer-readable memory, and signature logic to store a first cryptographic representation of a first trust relationship between the prover device and a verifier device, the first cryptographic representation based on a pair of asymmetric hash-based multi-time signature keys, receive an attestation request message from the verifier device, the attestation request message comprising attestation data for the verifier device and a hash-based signature generated by the verifier device, and in response to the attestation request message, to verify the attestation data, verify the hash-based signature generated by the verifier device using a public key associated with the verifier device, generate an attestation reply message using a hash-based multi-time private signature key and send the attestation reply message to the verifier device. Other examples may be described.
    Type: Grant
    Filed: June 28, 2019
    Date of Patent: March 15, 2022
    Assignee: INTEL CORPORATION
    Inventors: Xiruo Liu, Rafael Misoczki, Santosh Ghosh, Manoj Sastry
  • Patent number: 11275822
    Abstract: An authentication system includes a user authentication unit. The user authentication unit performs user authentication by combining password authentication and handwriting authentication, the password authentication being performed by collating an entire character string of a password inputted using an operation input unit and a handwriting input unit with an entire character string of a registration password stored in a storage unit, the handwriting authentication being performed by collating the handwriting information of a part of characters of the password inputted by the handwriting input unit with handwriting information of handwriting data of this inputted character stored in the storage unit.
    Type: Grant
    Filed: June 19, 2019
    Date of Patent: March 15, 2022
    Assignee: KYOCERA DOCUMENT SOLUTIONS INC.
    Inventor: Koichiro Tazuke
  • Patent number: 11271932
    Abstract: A method for integrating an authentication device and a website, the method comprising: a registration plug-in receiving user registration information from a website and a registration result identifier corresponding to the user registration information, and determining whether the user has registered successfully according to the registration result identifier; if yes, then sending registered information to the website and ending the registration process; otherwise, sending a request to obtain device registration, which comprises a user identifier, to an authentication server; receiving the device registration request from the authentication server; sending the device registration request to an authentication device by means of a browser; receiving device registration data, which is generated by the authentication device, by means of the browser; sending a first authentication request comprising the device registration data to the authentication server; receiving a first authentication result from the authen
    Type: Grant
    Filed: January 31, 2018
    Date of Patent: March 8, 2022
    Assignee: Feitian Technologies Co., Ltd.
    Inventors: Zhou Lu, Huazhang Yu
  • Patent number: 11271731
    Abstract: A request for password generation is received from a host system. In response to receiving the request, a password derivation key is generated based on a key derivation seed. A password is derived from the password derivation key, and a wrapping key is derived from the password. The wrapping key is used to wrap an authorization state indication, which is stored in local memory. Encrypted data is generated based on an encryption of the key derivation seed using an asymmetric encryption key. The encrypted data is provided in response to the request.
    Type: Grant
    Filed: November 7, 2019
    Date of Patent: March 8, 2022
    Assignee: Micron Technology, Inc.
    Inventors: James Ruane, Robert W. Strong
  • Patent number: 11270541
    Abstract: A method for opening a secured lockbox through a digital signature includes: storing, in a memory of a computing device in a lockbox, a public key of a cryptographic key pair; receiving, by an input device of the computing device, a digital signature from an external communication device; validating, by a processing device of the computing device, the digital signature using the public key of the cryptographic key pair; and transmitting, by a transmitter of the computing device, a signal to an electronic locking mechanism of the lockbox interfaced with the computing device; and opening, by the electronic locking mechanism of the lockbox, an electronic lock granting access to contents of the lockbox upon receipt of the signal.
    Type: Grant
    Filed: March 4, 2019
    Date of Patent: March 8, 2022
    Assignee: MASTERCARD INTERNATIONAL INCORPORATED
    Inventors: Vipul Mehrotra, Ved Pratap Singh Chauhan, Jaipal Singh Kumawat
  • Patent number: 11272354
    Abstract: Aspects of the subject disclosure may include, for example, a system that manages reuse of mobile subscriber identity information. Further aspects may include mobile subscriber identity information used in a device having multiple device profiles indexed, directly or indirectly, by multiple ki (e.g. shared secret keys). Other embodiments are disclosed.
    Type: Grant
    Filed: August 17, 2020
    Date of Patent: March 8, 2022
    Assignees: AT&T Intellectual Property I, L.P., AT&T Mobility II LLC
    Inventors: Walter Cooper Chastain, Stephen Emille Chin
  • Patent number: 11271718
    Abstract: Methods and systems can prove to an independent verifier that multiple activities registered on decentralized BASE network belong to the same user, without revealing true identity of the user. A selective linkability algorithm provides for linking together activities done under various of user's pseudonyms, without revealing the true user's identity. A reward calculation mechanism calculates a reward based on activities linked using the linking proof. For example, if user can prove that she already successfully completed 10 prior transactions, she might be deemed more valuable to the business making a new offer and hence eligible for a higher reward.
    Type: Grant
    Filed: September 11, 2019
    Date of Patent: March 8, 2022
    Assignee: Bitclave Pte. Ltd.
    Inventors: Alexander Bessonov, Patrick Tague, Mark Shwartzman, Stephen Winston, Vadim Gore
  • Patent number: 11260174
    Abstract: Systems and methods presented herein relate to managing ambulatory medical device data access. A computing system of a networked computing environment can establish a direct end-to-end data connection to an ambulatory medical device via a wireless wide area network. A public key of the computing system may be transmitted to the ambulatory medical device permitting the ambulatory medical device to encrypt data to be transmitted to the computing system. The computing system may receive, via the direct end-to-end data connection, encrypted data from the ambulatory medical device, and upon decrypting the data can generate a therapy report based at least in part on the therapy data. This therapy report may include time-series therapy data relating to the therapy delivered by the ambulatory medical device over a particular time period. The computing system can restrict access to the therapy report to authorized users.
    Type: Grant
    Filed: October 2, 2020
    Date of Patent: March 1, 2022
    Assignee: Beta Bionics, Inc.
    Inventors: Himanshu Patel, Edward R. Damiano, Firas H. El-Khatib, Michael J. Rosinko
  • Patent number: 11263294
    Abstract: An apparatus comprises a logic processor and at least one hardware device the processor being configured to orchestrate at least one virtual machine, wherein each device and virtual machine respectively forms an isolated execution environment, the processor being configured to: generate a unique ID associated with the request for the result; commit to the unique ID; transmit to the data source the request for data, to trigger the data source to generate and return the result and to generate an authenticity proof of the result by leveraging at least one software attestation technique or at least one hardware attestation technique; verify the authenticity proof; and transmit to the remote application the returned result and verified authenticity proof. This apparatus can be used to provably enforce the correct execution of a given process without relying on the security of a single isolated execution environment only.
    Type: Grant
    Filed: July 18, 2018
    Date of Patent: March 1, 2022
    Inventor: Thomas Bertani
  • Patent number: 11256433
    Abstract: Techniques are provided for aggregate inline deduplication and volume granularity encryption. For example, data that is exclusive to a volume of a tenant is encrypted using an exclusive encryption key accessible to the tenant. The exclusive encryption key of that tenant is inaccessible to other tenants. Shared data that has been deduplicated and shared between the volume and another volume of a different tenant is encrypted using a shared encryption key of the volume. The shared encryption key is made available to other tenants. In this way, data can be deduplicated across multiple volumes of different tenants of a storage environment, while maintaining security and data privacy at a volume level.
    Type: Grant
    Filed: March 15, 2019
    Date of Patent: February 22, 2022
    Assignee: NetApp, Inc.
    Inventors: Srinivasan Narayanamurthy, Dnyaneshwar Nagorao Pawar, Jagadish Vasudeva, Parag Deshmukh, Siddhartha Nandi
  • Patent number: 11257091
    Abstract: Systems and methods for performing fraud detection at POA devices based on analysis of feature sets are disclosed. In one embodiment, an exemplary method may comprise: obtaining, by a POS device, upon initiation of a transaction involving a card or a card and mobile device associated with an individual initiating the transaction, one or more sensory inputs and an identifier; mapping, by the POS device, the one or more sensory inputs to a first cluster position of a plurality of clusters; determining whether the cluster position of the cluster mapped for the transaction corresponds to a second cluster position of the at least one expected cluster associated with the known owner of the card and/or mobile device; and initiating, by the POS device, at least one second factor authentication process to establish that the individual is the known owner of the card and/or mobile device being used in the transaction.
    Type: Grant
    Filed: August 17, 2020
    Date of Patent: February 22, 2022
    Assignee: Capital One Services, LLC
    Inventors: Austin Walters, Galen Rafferty, Jeremy Goodsitt
  • Patent number: 11258617
    Abstract: A client device may be provisioned with a digital certificate to support various operations. The client may transmit a certificate request to a server. The server may initiate a key agreement process using a short-lived private key generated at the server and a public key of the device to derive a symmetric key. The symmetric key may be used to encrypt a payload that includes the digital certificate and an associated private key. Further, the server initiates a key agreement process using the partial private key that was generated for the client and the short-lived public key. A partial key agreement result, and the encrypted payload may be transmitted to the client. The client may complete the key agreement process using the partial key agreement result and a respective portion of the private key. The client may derive the encryption key and decrypt the payload to access the digital certificate.
    Type: Grant
    Filed: December 4, 2020
    Date of Patent: February 22, 2022
    Assignee: salesforce.com, inc.
    Inventors: Prasad Peddada, Taher Elgamal
  • Patent number: 11258609
    Abstract: A client application component of a device may provide a request to an authentication component of the device for an authentication token, in order to authenticate an application with a server. The authentication component may generate the authentication token to be one-way encrypted, based on a server token and a data string associated with security information corresponding to the application, and device information that identifies the device. The client application component may receive the authentication token from the authentication component. The client application component may generate, based on the authentication token, a client token and transmit the client token to the server to authenticate the client application.
    Type: Grant
    Filed: November 4, 2019
    Date of Patent: February 22, 2022
    Assignee: Verizon Patent and Licensing Inc.
    Inventors: Hany Samir Atiya, Jyotsna Kachroo, Manuel Enrique Caceres, Mauricio Pati Caldeira De Andrada
  • Patent number: 11251936
    Abstract: A system and method for converting an input dataset based on a query received via a user interface into one or more defined range values is provided wherein the input dataset is converted into one or more defined range values based on a conversion value matrix. The present invention provides for encrypting the defined range values of the input dataset into a first cipher text matrix. Further, the present invention provides for encrypting the conversion value matrix into second cipher text matrix. The present invention provides for performing a computation operation between the first cipher text matrix and the second cipher text matrix to generate an aggregated cipher text matrix. The present invention provides for decrypting the aggregated cipher text matrix into a decrypted result matrix. The present invention provides for performing an aggregation operation by counting pre-defined digit in each column of the decrypted result matrix.
    Type: Grant
    Filed: January 13, 2020
    Date of Patent: February 15, 2022
    Assignee: COGNIZANT TECHNOLOGY SOLUTIONS INDIA PVT. LTD
    Inventors: Babu Chinniah Lakshmanan, Prasad Soundararajan, Velayudhaperumal Tamilarasi Karthik Kumar, Semeerali Koniyath
  • Patent number: 11250166
    Abstract: Disclosed are techniques for automating records related to devices coupled to a network, such as servers, clients and memory banks. The fingerprint-based configuration typing and classification described herein may identify a fingerprint for a first device located on a network, the first device having a plurality of hardware components and the fingerprint generated based on a combination of at least two hardware components of the first device. The fingerprint is assigned to the first device. If the device does not have a first identifier assigned to it that identifies the plurality of hardware components, the fingerprint is compared to a plurality of stored fingerprints, with at least some of the stored fingerprints having a respective identifier. If the fingerprint matches one of the plurality of stored fingerprints and that stored fingerprint has an identifier associated therewith, the identifier associated with the stored fingerprint is assigned to the first device as the first identifier.
    Type: Grant
    Filed: November 13, 2018
    Date of Patent: February 15, 2022
    Assignee: ServiceNow, Inc.
    Inventors: Josiah Sullivan, Kelly Vincent
  • Patent number: 11250419
    Abstract: A transaction card includes a near-field communication (NFC) component, a security component, a wireless component, one or more memories, and one or more processors communicatively coupled to the one or more memories. The device receives a signal from a user device attempting to access a secure application, and energizes the NFC component based on the signal received from the user device. The device causes the security component to generate an encrypted code based on the NFC component being energized, and provides, via the security component, the encrypted code to the wireless component. The device provides, via the wireless component, the encrypted code to the user device to permit the user device to utilize the encrypted code as authentication for accessing the secure application.
    Type: Grant
    Filed: October 15, 2019
    Date of Patent: February 15, 2022
    Assignee: Capital One Services, LLC
    Inventors: James Zarakas, Molly Johnson, Robert Perry, Adam Koeppel, Tyler Locke
  • Patent number: 11251974
    Abstract: A method of provisioning a first digital certificate and a second digital certificate based on an existing digital certificate includes receiving information related to the existing digital certificate. The existing digital certificate includes a first name listed in a Subject field and a second name listed in a SubjectAltName extension. The method also includes receiving an indication from a user to split the existing digital certificate and extracting the first name from the Subject field and the second name from the SubjectAltName extension of the existing digital certificate. The method further includes extracting the public key from the existing digital certificate, provisioning the first digital certificate with the first name listed in a Subject field of the first digital certificate and the public key, and provisioning the second digital certificate with the second name listed in a Subject field of the second digital certificate and the public key.
    Type: Grant
    Filed: January 25, 2013
    Date of Patent: February 15, 2022
    Assignee: DigiCert, Inc.
    Inventors: Quentin Liu, Marc Williams, Richard F. Andrews
  • Patent number: 11251968
    Abstract: The present disclosure provides techniques that may be applied, for example, in a multi-slice network for maintaining privacy when attempting to access the network. An exemplary method generally includes transmitting a registration request message to a serving network to register with the serving network; receiving a first confirmation message indicating a secure connection with the serving network has been established; transmitting, after receiving the first confirmation message, a secure message to the serving network comprising an indication of at least one configured network slice that the UE wants to communicate over, wherein the at least one configured network slice is associated with a privacy flag that is set; and receiving a second confirmation message from the serving network indicating that the UE is permitted to communicate over the at least one configured network slice.
    Type: Grant
    Filed: September 6, 2019
    Date of Patent: February 15, 2022
    Assignee: QUALCOMM Incorporated
    Inventors: Soo Bum Lee, Stefano Faccin, Anand Palanigounder, Miguel Griot, Adrian Edward Escott
  • Patent number: 11252144
    Abstract: An authentication-target apparatus stores a first authentication-target key, a second authentication-target key, a first password, a second password, identification information of the authentication-target apparatus, the first key identification information, and the second key identification information. An authentication apparatus performs a first authentication session using a password corresponding to key identification information common to the authentication-target apparatus and the authentication apparatus. When the first authentication session is successful, the authentication apparatus performs a second authentication session using an authentication-target key corresponding to a common key identification information.
    Type: Grant
    Filed: March 19, 2020
    Date of Patent: February 15, 2022
    Assignee: Canon Kabushiki Kaisha
    Inventor: Hisashi Enomoto
  • Patent number: 11250409
    Abstract: This invention relates generally to methods and apparatus for providing secure services using a mobile device, and in particular for securely making transactions, such as payments, using mobile phones and smartphones.
    Type: Grant
    Filed: September 27, 2013
    Date of Patent: February 15, 2022
    Assignee: BELL IDENTIFICATION BV
    Inventor: Mohammed Chakib Bouda
  • Patent number: 11244061
    Abstract: A centralized framework for managing the data encryption of resources is disclosed. A data encryption service is disclosed that provides various services related to the management of the data encryption of resources. The services may include managing application policies, cryptographic policies, and encryption objects related to applications. The encryption objects may include encryption keys and certificates used to secure the resources. In an embodiment, the data encryption service may be included or implemented in a cloud computing environment and may provide a centralized framework for effectively managing the data encryption requirements of various applications hosted or provided by different customer systems. The disclosed data encryption service may provide monitoring and alert services related to encryption objects managed by the data encryption service and transmit the alerts related to the encryption objects via various communication channels.
    Type: Grant
    Filed: July 12, 2019
    Date of Patent: February 8, 2022
    Assignee: ORACLE INTERNATIONAL CORPORATION
    Inventors: Amit Agarwal, Srikant Krishnapuram Tirumalai, Krishnakumar Sriramadhesikan
  • Patent number: 11245652
    Abstract: A user profile information providing method for a messaging server that provides an instant messaging service to provide user profile information, includes: receiving private profile information set in a terminal of a user who uses the instant messaging service for a targeted friend; storing the private profile information corresponding to the targeted friend; and transmitting the private profile information to a terminal of the targeted friend. The private profile information is displayed differently from default profile information of the user, and is displayed as a profile of the user only in the terminal of the targeted friend. The default profile information is displayed as a profile of the user in terminals of friends, in which the private profile information is not set, among friends of the user.
    Type: Grant
    Filed: December 11, 2020
    Date of Patent: February 8, 2022
    Assignee: KAKAO CORP.
    Inventor: Je Keun Moon