Particular Communication Authentication Technique Patents (Class 713/168)
  • Patent number: 10291587
    Abstract: A method for anonymous authentication may comprise: issuing token information to a first node registered with a network entity, wherein the token information indicates one or more tokens for the first node; distributing a token list to a plurality of nodes registered with the network entity, wherein the token list is associated with respective tokens for the plurality of nodes comprising at least the first node and a second node, and wherein the token information and the token list are used for an anonymous authentication between the first node and the second node.
    Type: Grant
    Filed: June 25, 2013
    Date of Patent: May 14, 2019
    Assignee: Nokia Technologies Oy
    Inventor: Zheng Yan
  • Patent number: 10291725
    Abstract: A network of systems to automatically record videos of one or multiple freely moving subjects using one or multiple cameras. The networked systems employ essential software for recording high quality videos. The network allows the development and use of additional software applications that modify and supplement the essential software. The network of systems further provides features for posting, playing, and streaming videos on a dedicated website, video hosting websites, and/or on social networking websites.
    Type: Grant
    Filed: November 20, 2013
    Date of Patent: May 14, 2019
    Assignee: H4 ENGINEERING, INC.
    Inventors: Christopher T. Boyle, Scott K. Taylor, Alexander G. Sammons
  • Patent number: 10291592
    Abstract: Techniques are disclosed for secure electronic communication. Examples of metadata include identification of a relationship of a sender and receiver, timing of a communication between the sender and receiver, and frequency of communication between the sender and receiver. The described techniques, for instance, may be implemented to allow a user device to request delivery from a server of an electronic communication and receive the electronic communication without the server being aware of which electronic communication was received.
    Type: Grant
    Filed: October 17, 2016
    Date of Patent: May 14, 2019
    Assignee: Microsoft Technology Licensing, LLC
    Inventors: Srinath Tumkur Venkatacha Setty, Sebastian G. Angel
  • Patent number: 10289274
    Abstract: A vehicle driver assistance apparatus in a vehicle, the apparatus including a display; a vehicle information acquisition unit configured to acquire vehicle information of another vehicle which is driving or standing in a vicinity thereof; a wireless communication unit configured to wirelessly communicate with the other vehicle; and a processor configured to display information on the display corresponding to at least one service related to the acquired vehicle information, the at least one service being authorized by the other vehicle to be accessed by the vehicle, and execute the at least one service in response to a selection of the information on the display.
    Type: Grant
    Filed: December 30, 2015
    Date of Patent: May 14, 2019
    Assignee: LG ELECTRONICS INC.
    Inventors: Soyoung Kim, Hyunsun Lyu, Jiyeong Park
  • Patent number: 10291807
    Abstract: An import unit of an image forming apparatus performs control as follows. If an import target setting value corresponds to a device setting, the import unit determines whether the setting value complies with the security rule. If it is determined that the setting value complies with the security rule, the import unit executes the import processing of the setting value. If it is determined that the setting value does not comply with the security rule, the import unit does not execute the import processing of the setting value. Further, if an import target setting value corresponds to an individual setting, the import unit executes the import processing of the setting value regardless of the security rule.
    Type: Grant
    Filed: February 27, 2015
    Date of Patent: May 14, 2019
    Assignee: Canon Kabushiki Kaisha
    Inventor: Hideo Asahara
  • Patent number: 10285010
    Abstract: A range between a first wireless device and a second wireless device is estimated using a first mechanism based on messages transmitted over a first communication channel. The first communication channel is associated with a first radio access technology capability of the wireless devices. One or more metrics indicative of an accuracy of the range estimates provided by the first mechanism are obtained. A second mechanism to estimate a range between the first wireless device and the second wireless device may be implemented in favor of the first mechanism when the metric fails to satisfy a criterion. The second mechanism is based on unicast messages transmitted over a second communication channel. The second communication channel is associated with a second radio access technology capability of the wireless devices and may be the same as, or different from, the first communication channel.
    Type: Grant
    Filed: September 18, 2017
    Date of Patent: May 7, 2019
    Assignee: QUALCOMM Incorporated
    Inventors: Venkatesan Nallampatti Ekambaram, Urs Niesen, Jubin Jose, Xinzhou Wu
  • Patent number: 10282730
    Abstract: A method for managing at least one transaction implemented by an electronic payment terminal having a magnetic stripe reader for reading a paycard of a user. The method includes the following acts implemented in a secured remote server: receiving, from the electronic payment terminal, a transaction message carrying a piece of data of the card, read by the magnetic stripe reader and encrypted by the electronic payment terminal, and an identifier of a mobile communications terminal of the user; sending, to the mobile terminal, a transaction validation request message carrying a piece of information on the transaction; receiving, from the mobile terminal, a validation message carrying a response to the validation request message; managing the transaction.
    Type: Grant
    Filed: July 10, 2015
    Date of Patent: May 7, 2019
    Assignee: INGENICO INC.
    Inventor: Christopher Rotsaert
  • Patent number: 10277609
    Abstract: A system and methods comprise a touchscreen at a premises. The touchscreen includes a processor coupled to a security system at the premises. User interfaces are presented via the touchscreen. The user interfaces include a security interface that provides control of functions of the security system and access to data collected by the security system, and a network interface that provides access to network devices. Network devices at the premises are coupled to the touchscreen. Application programming interfaces (APIs) are coupled to the processor and provide access to the plurality of network devices. A security server at a remote location is coupled to the touchscreen. The security server comprises a client interface through which remote client devices exchange data with the touchscreen and security system, a web application that accesses a first set of the APIs, and a server application that accesses a second set of the APIs.
    Type: Grant
    Filed: March 10, 2014
    Date of Patent: April 30, 2019
    Assignee: iControl Networks, Inc.
    Inventors: Paul Dawes, Micah Koch, David Proft, Kun Xu
  • Patent number: 10277588
    Abstract: Systems, methods, and non-transitory computer-readable media can receive an indication that a user is attempting to authenticate as a particular identity. A media content item captured using a front-facing device camera can be acquired. The media content item can include graphical data representing the user. The graphical data can be analyzed, at least in part, to produce a confidence score representing a likelihood that the user corresponds to the particular identity. The user can be authenticated as the particular identity when the confidence score at least meets a specified authentication threshold.
    Type: Grant
    Filed: November 3, 2014
    Date of Patent: April 30, 2019
    Assignee: Facebook, Inc.
    Inventors: Allison Elaine Ball, Franklin Ray Gaw, Sameer Madan
  • Patent number: 10275956
    Abstract: The subject matter described in this specification includes a computer-readable medium storing instructions that cause one or more processors to perform various operations including receiving, from a first client device associated with a user account of a first user, a request for sharing a key. The key is associated with the user account of the first user, and permits access to a resource. The operations include generating, at a server, one or more representations of the key, transmitting the representations of the key to the first client device, and receiving, from a second client device associated with a user account of a second user, a request to access the key. The request to access the key is derived from one of the one or more representations of the key. The operations further include communicating, to the second client device, a message indicating whether access to the key has been granted.
    Type: Grant
    Filed: March 27, 2017
    Date of Patent: April 30, 2019
    Assignee: MicroStrategy Incorporated
    Inventors: John Gehret, Siamak Ziraknejad
  • Patent number: 10277407
    Abstract: The present invention provides for streamlined issuance of certificates and other tokens that are contingent on key attestation of keys from a trusted platform module within a computing platform. Various methods are described for wrapping the requested token in a secret, such as an AES key, that is encrypted to a TPM based key in a key challenge. If the requesting platform fails the key challenge, the encrypted certificate or token cannot be decrypted. If requesting platform passes the challenge, the encrypted certificate or token can be decrypted using the AES key recovered from the key challenge.
    Type: Grant
    Filed: August 26, 2016
    Date of Patent: April 30, 2019
    Assignee: Microsoft Technology Licensing, LLC
    Inventors: Christopher Edward Fenner, Peter David Waxman, Gabriel Fortunato Stocco, Kam Kouladjie, Cristian Stefan Salvan, Prabu Raju, Himanshu Soni, Giridhar Viswanathan
  • Patent number: 10277406
    Abstract: Embodiments presented herein provide techniques for managing a digital certificate enrollment process. In particular, embodiments presented herein provide techniques for a certificate authority to issue short-lived SSL certificates and an authentication method for validating certificate signing requests (CSR) for short-lived certificates.
    Type: Grant
    Filed: September 5, 2014
    Date of Patent: April 30, 2019
    Assignee: DigiCert, Inc.
    Inventors: Hari Veladanda, Hoa Ly, Gaurav Khanna
  • Patent number: 10277403
    Abstract: A method for signing and subsequently verifying a digital message, including the following steps: generating an irreducible monic polynomial f(x) of degree n in a ring Fq[x]; generating an irreducible monic polynomial F(y) of degree n in a ring Fq[y]; producing first and second finite fields as Fq[x]/(f(x)) and Fq[y]/(F(y)), respectively; producing a secret isomorphism from the first finite field to the second finite field; producing and publishing a public key that depends on F(y); producing a private key that depends on the secret isomorphism; producing a message digest by applying a hash function to the digital message and the public key; producing a digital signature using the message digest and the private key; and performing a verification procedure utilizing the digital signature and the public key.
    Type: Grant
    Filed: February 24, 2017
    Date of Patent: April 30, 2019
    Assignee: Onboard Security, Inc.
    Inventors: Jeffrey Hoffstein, Jill Pipher, Joseph H Silverman, William J Whyte, Zhenfei Zhang
  • Patent number: 10277437
    Abstract: Telematics, telemetry, including medical telemetry and telematics, one or multiple Remote Control (RC) or Universal Remote Control (URC) devices, Multimode 5G, 4G and 3G Mobile Modulation Format Selectable (MFS) communications wireless and wired communication networks, cellular systems and devices with fingerprint signal authentication. Touchscreen and motion detectors are controlling mobile devices. Processing, modulating and transmitting stored analog or digital information, such as stored music or stored video, or stored images, or stored scanned data information or other stored information. Method and system for processing and displaying and/or transmitting in mobile devices a heart rate sensor and/or pacemaker provided signal. Remote Control (RC) or Universal Remote Control (URC) signals and devices are used to control home security systems and automobiles. Device receiving, demodulating and processing spread spectrum signal into processed Orthogonal Frequency Division Multiplexed (OFDM) signal.
    Type: Grant
    Filed: June 7, 2018
    Date of Patent: April 30, 2019
    Inventor: Kamilo Feher
  • Patent number: 10270593
    Abstract: In response to at least one message received by a processor of a gateway server from a user device wherein each message requests that an encryption key be downloaded to the user device, the processor generates at least one unique encryption key for each message and sends the at least one generated encryption key to the user device, but does not store any of the generated encryption keys in the cloud. For each encryption key having been sent to the user device, the processor receives each encryption key returned from the user device. For each encryption key received from the user device, the processor stores each received encryption key in the cloud.
    Type: Grant
    Filed: January 31, 2018
    Date of Patent: April 23, 2019
    Assignee: International Business Machines Corporation
    Inventors: Jonathan M. Barney, Cataldo Mega, Edmond Plattier, Daniel Suski
  • Patent number: 10270755
    Abstract: A method, system, and computer-readable memory containing instructions include receiving a DNS request containing authentication information, validating the authentication information, determining an appropriate action to take based on the validating status, and taking the appropriate action. Actions may include responding with an individualized network layer address or service location address, delaying sending a response message, sending a network layer address or service location address corresponding to a site containing authentication information, and sending a response with a network layer address or service location address with a web address configured to mimic the website related to the requested resource.
    Type: Grant
    Filed: October 3, 2011
    Date of Patent: April 23, 2019
    Assignee: VERISIGN, INC.
    Inventors: Danny McPherson, Joseph Waldron, Eric Osterweil
  • Patent number: 10270591
    Abstract: A method is performed at a client device distinct from an application server. In the method, a first key is stored in a secure store of the client device. A wrapped second key is received from the application server. The first key is retrieved from the secure store and used to unwrap the second key. Encrypted media content is received from the application server, decrypted using the unwrapped second key, and decoded for playback.
    Type: Grant
    Filed: June 30, 2016
    Date of Patent: April 23, 2019
    Assignee: ActiveVideo Networks, Inc.
    Inventors: Ronald Brockmann, Gerrit Hiddink
  • Patent number: 10263997
    Abstract: A system performs cryptographic operations utilizing information usable to verify validity of plaintext. To prevent providing information about a plaintext by providing the information usable to verify the validity of the plaintext, the system provides the information usable to verify validity of the plaintext to an entity on a condition that the entity is authorized to access the plaintext. The information usable to verify validity of the plaintext may be persisted in ciphertext along with the plaintext to enable the plaintext to be verified when decrypted.
    Type: Grant
    Filed: July 22, 2016
    Date of Patent: April 16, 2019
    Assignee: Amazon Technologies, Inc.
    Inventors: Gregory Branchek Roth, Gregory Alan Rubin, Matthew John Campagna, Petr Praus
  • Patent number: 10261920
    Abstract: An apparatus and method of a static image RAM drive is provided. The system includes a field programmable gate array (FPGA), a volatile memory drive, a non-volatile memory drive, and a power source. The non-volatile memory drive has a secure memory space. The secure memory space is programmed with an encryption key and an encrypted disk image. In response to a power cycle, the FPGA reads the encrypted disk image from the non-volatile memory, authenticates the disk image using the encryption key, decrypts the encrypted disk image, and writes the decrypted disk image to the volatile memory. The decrypted disk image is used to boot a computer. The computer is booted to a known good state each time the power is cycled.
    Type: Grant
    Filed: September 7, 2017
    Date of Patent: April 16, 2019
    Assignee: The United States of America as presented by the Secretary of the Navy
    Inventor: Donna Bell
  • Patent number: 10264510
    Abstract: Disclosed are a method and a device for transmitting and receiving data in a wireless LAN system. A connection method performed in a terminal comprises the steps of: transmitting a probe request frame; receiving, from a main-access point, a probe response frame which is a response to the probe request frame; and transmitting, to the main-access point, an ACK frame which is a response to the probe response frame if it is determined that an operation is performed in an uplink relay mode on the basis of information included in the probe response frame. Thus, the wireless transmission efficiency of a wireless LAN system is capable of being improved.
    Type: Grant
    Filed: November 6, 2014
    Date of Patent: April 16, 2019
    Assignee: KT Corporation
    Inventors: Yang Seok Jeong, Joo Young Kim
  • Patent number: 10252149
    Abstract: An interactive vending system includes at least one vending machine, at least one portable device, a management server and two routers. The first router is connected to the vending machine, thereby connecting the vending machine to the internet. The portable device is connected to the internet. The second router is connected to the management server, thereby connecting the management server to the internet.
    Type: Grant
    Filed: March 13, 2017
    Date of Patent: April 9, 2019
    Inventor: Ming-Jian Huang
  • Patent number: 10257232
    Abstract: An endpoint security agent facilitates a security policy on an endpoint computing device. The endpoint agent comprises an engine and one or more plugins that each provide a particular security feature. The endpoint agent receives a policy from a cloud server specifying one or more plug-ins used by the policy and configuration of those plug-ins. The endpoint agent retrieves, installs, and configures the one or more plugins. The endpoint agent updates a communication table with command subscription information obtained from each installed plugin indicating command types subscribed to by each plug-in. When a command is received, a lookup of the command type is performed in the table, and the command is sent to the subscribing plugin.
    Type: Grant
    Filed: September 13, 2017
    Date of Patent: April 9, 2019
    Assignee: Malwarebytes Inc.
    Inventors: Kevin Douglas Breton, Mark William Patton
  • Patent number: 10257183
    Abstract: Techniques for an ID federation gateway include determining whether a user associated with a request for a particular network resource is to be identified by the provider of the particular service or by a different party. The service also comprises causing the different party to provide identification data that indicates an identity for the user, if the user is to be identified by the different party. The method further comprises causing user credentials data, based on the identification data, to be sent to an authentication process of the provider for a set of one or more network resources that includes the particular network resource requested by the user, if the data indicates that the user is successfully identified.
    Type: Grant
    Filed: May 22, 2017
    Date of Patent: April 9, 2019
    Assignee: Nokia Technologies Oy
    Inventors: Jari Tapio Otranen, Jari Anssi Petteri Mononen, Jari Mikael Pehkonen, Pasi Allan Lantiainen
  • Patent number: 10255429
    Abstract: Systems, methods, and other embodiments associated with setting an authorization level at enrollment. According to one embodiment, a method includes a accessing an interface on a device. Initiation information for a user of the device is provided to an authorizer. The authorizer is associated with a class. Verification data is received from the authorizer. An enrollment token is then generated based on the verification data. The enrollment token includes an authorization level that defines security parameters for the device.
    Type: Grant
    Filed: October 3, 2014
    Date of Patent: April 9, 2019
    Assignee: Wells Fargo Bank, N.A.
    Inventors: Adam Evans Vancini, Christopher Phillip Clausen, Darrell L. Suen
  • Patent number: 10257187
    Abstract: A login request initiated by a user at a current page is received. Whether there exists an account record matched with a login account name and login password combination in the login request is searched from an account table of the current page. If a result is positive, the user is allowed to log in. If a result is not positive, a preconfigured account name collection corresponding to the login account name is acquired. The account name collection includes login account names of the user's registered accounts in a plurality of member systems. A login account name in a member system to which the current page belongs is searched from the account name collection, and the found login account name is provided to the user. The techniques of the present disclosure prompts a correct login account name to the user, especially when there are many user login account names, thereby reducing memory burden of the user and assisting the user in implementing a quick login under multi-account management.
    Type: Grant
    Filed: June 15, 2017
    Date of Patent: April 9, 2019
    Assignee: Alibaba Group Holding Limited
    Inventor: Lijuan Ji
  • Patent number: 10255580
    Abstract: An improved system and method for submitting, distributing and/or managing digital products with respect to a product distribution system are disclosed. The submission of digital products to the product distribution system can operate to electronically submit not only the digital products but also product information, developer information and distribution parameters. The product distribution system can present the digital products for distribution at an online product distribution site in accordance with the distribution parameters. The online product distribution site can present potential purchasers with product information and/or developer information prior to any purchase.
    Type: Grant
    Filed: September 26, 2008
    Date of Patent: April 9, 2019
    Assignee: Apple Inc.
    Inventors: Sam Gharabally, Yoon Sub Hwang, Mark Miller, Andrew Wadycki
  • Patent number: 10250573
    Abstract: A client application cryptographically protects application data using an application-layer cryptographic key. The application-layer cryptographic key is derived from cryptographic material provided by a cryptographically protected network connection. The client exchanges the cryptographically protected application data with a service application via the cryptographically protected network connection. The client and service applications acquire matching application-layer cryptographic keys by leveraging shared secrets negotiated as part of establishing the cryptographically protected network connection. The shared secrets may include information that is negotiated as part of establishing a TLS session such as a pre-master secret, master secret, or session key. The application-layer cryptographic keys may be derived in part by applying a key derivation function, a one-way function or a cryptographic hash function to the shared secret information.
    Type: Grant
    Filed: September 21, 2017
    Date of Patent: April 2, 2019
    Assignee: Amazon Technologies, Inc.
    Inventors: Muhammad Wasiq, Nima Sharifi Mehr
  • Patent number: 10246053
    Abstract: This disclosure relates to, inter alia, a method for checking the authorization to open a receiving compartment of an unmanned vehicle. A step of the method includes obtaining a request to open the receiving compartment of the unmanned vehicle and first proof of authorization information. A position of the unmanned vehicle and at least one environmental parameter dependent on the position of the unmanned vehicle is captured. The authorization of the request to open the receiving compartment of the unmanned vehicle is checked in dependence on the obtained first proof of authorization information, the captured position of the unmanned vehicle, and the captured environmental parameter. The receiving compartment of the unmanned vehicle is opened or caused to open only when the checking reveals that the request to open the receiving compartment of the unmanned vehicle is authorized.
    Type: Grant
    Filed: October 4, 2017
    Date of Patent: April 2, 2019
    Assignee: Deutsche Post AG
    Inventors: Ralph Wiechers, Christian Ibach
  • Patent number: 10250389
    Abstract: Systems and methods of the present invention provide for one or more server computers communicatively coupled to a network and configured to: identify, within a data store: a web page including a script tag; a URL in the script tag referencing a location for a second server hosting a script file; and a first hash data in the script tag generated from the script file using a hash function algorithm. The server computer(s) execute a request that accesses the script file and a second hash generated from the script file and stored on the second server computer. If the second hash data does not match the first hash data, execution of the script tag is disabled, and a notification is generated.
    Type: Grant
    Filed: January 17, 2017
    Date of Patent: April 2, 2019
    Assignee: GO DADDY OPERATING COMPANY, LLC
    Inventor: Arnold Blinn
  • Patent number: 10243957
    Abstract: Disclosed are various embodiments for preventing the unintended leakage of cookie data between network sites using a shared high-level domain and vice versa. In one embodiment, a browser application stores data from a first network site having a high-level domain in a client computing device. Access to the data is limited to one or more network sites having the high-level domain. A first classification is assigned to the first network site. A second classification is assigned to a second network site having the high-level domain. The data is sent to the second network site in response to determining that the first classification matches the second classification.
    Type: Grant
    Filed: August 27, 2015
    Date of Patent: March 26, 2019
    Assignee: Amazon Technologies, Inc.
    Inventors: Muhammad Wasiq, Nima Sharifi Mehr
  • Patent number: 10243964
    Abstract: A reputation service running on a server, for example as a cloud server, includes receiving a request from a first user device and a second user device. The reputation management for both internet services and service providers, as well as the individuals who provide reputation feedback on those services and providers and each other. The service operates in zero-knowledge verifiable computing in order to enable strong assurance of anonymity among all participating parties. The method includes receiving, from a user using a zero-knowledge protocol to ensure privacy of the user, a rating with a unique token associated with the user, and identifier of a party to be rated. The party in one example is a person or a business entity. The unique token in one example is one or more of a tax identifier, an e-passport, or a private key of a DNS Domain registered with a certificate authority.
    Type: Grant
    Filed: September 7, 2016
    Date of Patent: March 26, 2019
    Assignee: International Business Machines Corporation
    Inventors: James R. Kraemer, Jeb R. Linton
  • Patent number: 10242176
    Abstract: A computing device includes a bus controller and an endpoint device that are in communication over an internal bus. The bus controller initiates a discovery message to the endpoint device requesting a computational value based on the discovery message, wherein the computational value is generated by the endpoint device using a predefined algorithm and the discovery message includes a preconfigured identification code associated with the bus controller. The bus controller receives a response from the endpoint device, which includes the computational value, when the endpoint device authenticates the controller based on the preconfigured identification code. If the bus controller successfully authenticates the endpoint device based on the computational value, the controller sends an acknowledgment message to the endpoint device and registers it as being owned by the bus controller. Otherwise, the bus controller sends a failure message to the endpoint device and logs it as being unmanageable by the controller.
    Type: Grant
    Filed: January 17, 2017
    Date of Patent: March 26, 2019
    Assignee: Cisco Technology, Inc.
    Inventors: Kiran Bangalore Sathyanarayana, Rajaganesh Rathinasabapathi, Sriranjan Bose
  • Patent number: 10244395
    Abstract: The invention relates to techniques for restricting a wireless network access for a mobile device (200). There is provided an additional cross-checking functionality on a comparator (106) of an intermediate node (100). The mobile device (200) receives a user key (88) indicating a general validation to access the WLAN of a third party. The third party operates a key server (300). The key server (300) issues a key pair, consisting of the user key (88) and an operator key (99). The operator key (99) is sent to the intermediate node (100) and is processed by a processor (105). The mobile device (200) applies the received user key (88) to an identification set (200i), identifying the device's user, and sends a reference message (22) to the intermediate node (100) via a second communication channel (2). Thereinafter, the device (200) sends its identification set (200i) via another first communication channel (1) for authentication and for cross checking to the intermediate node (100).
    Type: Grant
    Filed: January 14, 2014
    Date of Patent: March 26, 2019
    Assignee: Telefonaktiebolaget LM Ericsson (publ)
    Inventors: Thomas Weidenfeller, Ralf Berger
  • Patent number: 10243733
    Abstract: A system and method performs a moving target blind rendezvous by exchanging data through a distributed hash table. The system allows users to securely send small pieces of information over a network while only requiring an exchange of public keys ahead of time. The system relies on the size and resilience of the BitTorrent Distributed Hash Table and the security properties of cryptographic constructions such as Elliptic Curve Diffie-Hellman key exchange and secure one-way hash functions.
    Type: Grant
    Filed: March 16, 2017
    Date of Patent: March 26, 2019
    Assignee: Virginia Tech Intellectual Properties, Inc.
    Inventors: Christopher F. Morrell, Reese A. Moore, Joseph G. Tront, Randolph C. Marchany
  • Patent number: 10235335
    Abstract: Systems and methods that permit the querying of encrypted data in a cryptographically-secure manner. Generally, data that has been encrypted cannot be queried using plaintext terms because it is in ciphertext. Accordingly, use of filters that correspond to the encrypted data and are generated by multiple parties permits querying of the data without decrypting the data or compromising the security of the encrypted data or of the queries against that data.
    Type: Grant
    Filed: July 3, 2018
    Date of Patent: March 19, 2019
    Assignee: Ionic Security Inc.
    Inventors: Ryan Mark Speers, Adam Ghetti, Brian Michael Vohaska, Jeremy Michael Eckman, Katrina Jean Ray, Jonathan Thomas Burns
  • Patent number: 10225749
    Abstract: Disclosed is method and apparatus for operation of a base station in wireless communications, including self-configuration of the base station for secure and authenticated communications with other base stations.
    Type: Grant
    Filed: October 30, 2017
    Date of Patent: March 5, 2019
    Assignee: Signal Trust for Wireless Innovation
    Inventors: Peter S. Wang, Ulises Olvera-Hernandez, James M. Miller, Louis J. Guccione
  • Patent number: 10223511
    Abstract: A method of mapping an input message to an output message by a keyed cryptographic encryption operation, wherein the keyed cryptographic encryption operation includes a first round, including: performing a substitution function on a first portion of the input message to produce an output, wherein the substitution function incorporates a portion of a cryptographic key; and performing a watermarking function on the output, wherein the watermarking function produces a watermark output when the first input portion has a specific predetermined value, wherein the watermark output uniquely identifies the keyed cryptographic encryption operation.
    Type: Grant
    Filed: March 30, 2016
    Date of Patent: March 5, 2019
    Assignee: NXP B.V.
    Inventors: Wilhelmus Petrus Adrianus Johannus Michiels, Stefan Kuipers
  • Patent number: 10225260
    Abstract: Systems, methods, and apparatus, including computer-readable storage media storing executable instructions, for enhanced authentication security. In some implementations, an authentication request associated with a first communication session is received. A second communication session having parameter values derived from parameter values for the first communication session. An authorization code corresponding to the second communication session is generated. The first communication session as closed. The authentication code is provided to the device in response to the authentication request.
    Type: Grant
    Filed: May 4, 2018
    Date of Patent: March 5, 2019
    Inventors: Gary Gabriel, Sergey Mironenko
  • Patent number: 10225138
    Abstract: In one example, in a Dynamic Host Configuration Protocol (DHCP) network comprising one or more configuration computing systems, a method includes receiving one or more augmented DHCP configuration messages. The method also includes determining that each of the one or more augmented DHCP configuration messages includes a message tag indicating that the respective augmented DHCP configuration message contains parameter information that includes a client identifier associated with a respective one of the one or more network devices. The method further includes determining, based on the parameter information included in each of the one or more augmented DHCP configuration messages, configuration data that is usable to configure the one or more network devices. The method also includes configuring, based on the configuration data, the one or more network devices.
    Type: Grant
    Filed: February 16, 2016
    Date of Patent: March 5, 2019
    Assignee: Architecture Technology Corporation
    Inventors: John Wu, Nathan Bahr, Ranga Ramanujan, Brett Thompson, Steven M. Schneider, Corey Webster
  • Patent number: 10216953
    Abstract: An image communication apparatus includes a storage unit including a shared address book area and an individual address book area, a communication unit configured to receive an import file including shared address book data shared among a plurality of users or private address book data limiting users who can utilize the data, and a CPU, and if the import file includes the private address book data and the shared address book area is designated as an import destination, the CPU warns the user that the private address book data may be shared and prevents the user from importing the import file.
    Type: Grant
    Filed: March 27, 2014
    Date of Patent: February 26, 2019
    Assignee: Canon Kabushiki Kaisha
    Inventor: Yasuaki Kawashima
  • Patent number: 10210680
    Abstract: It is presented a method performed for controlling access to a physical space. The method is performed in an access control device and comprises the steps of: communicating with an electronic key to authenticate the electronic key; performing a lookup of an access right using an identity of the electronic key in a credential cache when the access control device is unable to communicate with an access control server; and sending an unlock signal when the access right indicates that the electronic key should be granted access; retrieving, from the access control server, an access right indicating whether the electronic key should have access or not, when the access control device is able to communicate with the access control server; and updating the credential cache dential cache with the access right retrieved from the access control server.
    Type: Grant
    Filed: June 14, 2016
    Date of Patent: February 19, 2019
    Assignee: ASSA ABLOY AB
    Inventor: Russell Wagstaff
  • Patent number: 10212689
    Abstract: A system and method for locating a network device. A location provider determines, based on location data, a location of a wireless access point. The location data includes location data from each of a plurality of network devices, wherein the location data for each network device includes the network device's location and data representative of a distance between the wireless access point and each network device. The location provider generates, based on the location of the wireless access point, location information for the wireless access point, signs the location information with a credential to form signed location information, and communicates the signed location information to the wireless access point.
    Type: Grant
    Filed: December 22, 2017
    Date of Patent: February 19, 2019
    Assignee: Google LLC
    Inventors: Vinit Chandrakant Deshpande, Prerepa V. Viswanadham
  • Patent number: 10204520
    Abstract: A method includes defining a flight plan of an unmanned aerial vehicle from a rest location thereof to a destination location within a memory of the unmanned aerial vehicle, and capturing, through one or more sensor(s) communicatively coupled to the unmanned aerial vehicle and a server through a computer network, data related to an environment of a specific location covered by the one or more sensor(s). The method also includes detecting, through a processor associated with the one or more sensor(s) and/or the server, a security breach and/or a security threat at the specific location based on analyzing the captured data, and automatically activating, through the one or more sensor(s) or the server, the flight plan on the unmanned aerial vehicle in response to the detection of the security breach and/or the security threat to dispatch the unmanned aerial vehicle to perform additional surveillance of the specific location.
    Type: Grant
    Filed: March 30, 2017
    Date of Patent: February 12, 2019
    Inventors: Orestis Demetriades, Vitalijs Bondarenko
  • Patent number: 10206269
    Abstract: A system includes a light fixture for installation at a location that is configured to be programmed to operate according to a control program. A communication interface is used for communication with the controller. An optical receiver of the fixture is configured for receiving an optical signal. The controller monitors provisioning commands received by the fixture and determines receipt of the provisioning commands in order to monitor inputs to the optical receiver and detect an optical selection signal for selecting the fixture. Upon detecting an optical selection signal the fixture processes commissioning commands. The controller, upon determining that the provisioning commands have not been received, further configured for ignoring inputs to the optical receiver so the fixture cannot be selected and programmed with commissioning commands.
    Type: Grant
    Filed: November 21, 2016
    Date of Patent: February 12, 2019
    Assignee: LSI Industries, Inc.
    Inventors: Mark Van Wagoner, Robin Tim Frodsham, Mike Hagen
  • Patent number: 10205595
    Abstract: Methods and apparatus to authenticate and differentiate virtually identical resources using session chaining are disclosed. In response to a session request from at least one of a management device or a resource, example methods and apparatus locate a session chain stack associated with an identifier of the at least one of the management device or the resource, and determine whether a first nonce at a top of the session chain stack associated with the identifier of the at least one of the management device or the resource is equal to a second nonce associated with the session request from the at least one of the management device or the resource.
    Type: Grant
    Filed: August 22, 2016
    Date of Patent: February 12, 2019
    Assignee: VMWARE, INC.
    Inventor: Gregory A. Frascadore
  • Patent number: 10205711
    Abstract: A strong authentication token supporting multiple instances associated with different users and protected by a user identity verification mechanism is disclosed. A multi-instance strong authentication token may be adapted to generate dynamic credentials using cryptographic secrets that are specific to a particular instance stored in the token. A method and a system to secure remotely accessible applications using strong authentication tokens supporting multiple instances are disclosed. A method for loading additional tokens into a multi-instance authentication token is disclosed.
    Type: Grant
    Filed: October 30, 2015
    Date of Patent: February 12, 2019
    Assignee: ONESPAN NORTH AMERICA INC.
    Inventors: Frederik Mennes, Guy Couck, Bert Fierens, Sebastien Lavigne, Harm Braams, Tom De Wasch, Guillaume Teixeron
  • Patent number: 10205776
    Abstract: According to the embodiments of the present disclosure, a first terminal device may create a peer-to-peer (P2P) group, and then determine a Service Set Identifier (SSID) and a connection password of the P2P group, and then send the SSID and the connection password to a second terminal device so that the second terminal device is able to connect to the first terminal device according to the SSID and the connection password. In this way, prior to establishment of the wireless connection, the second terminal device may acquire the SSID and the connection password of the P2P group created by the first terminal device, thus second terminal device may directly use the SSID and the connection password to connect to the first terminal device without cumbersome discovery and negotiation processes as used in establishment of a conventional P2P connection.
    Type: Grant
    Filed: August 18, 2015
    Date of Patent: February 12, 2019
    Assignee: XIAOMI INC.
    Inventors: Xin Liang, Ping Wu, Xin Liu, Bo Liu, Guizhou Wu
  • Patent number: 10200345
    Abstract: An e-mail server decrypts attachments of an e-mail message with a key associated with a sending device such that failure of the decryption indicates the e-mail message can be harmful. The sending device inserts its device identifier into the e-mail message as a header and uses an encryption key associated with the device identifier and a digital fingerprint of the sending device to encrypt all attachments of the e-mail message. The delivering e-mail server processes the e-mail message. If the e-mail message contains no identifier, if no key is associated with the parsed identifier, or if attempted encryption fails, the e-mail server determines that the e-mail message is potentially harmful and disarms the e-mail message.
    Type: Grant
    Filed: October 27, 2014
    Date of Patent: February 5, 2019
    Assignee: Uniloc 2017 LLC
    Inventor: Dono Harjanto
  • Patent number: 10193878
    Abstract: In general, in one aspect, embodiments relate to receiving, by a system comprising one or more network devices, a first client authentication information comprising a first indication that a first client device was successfully authenticated by a first authentication server based on credentials provided by the first client device, and forwarding, by the system, the first client authentication information to a second authentication server without determining that the client device was already successfully authenticated by the first authentication server based on the credentials provided by the first client device. The operations further include receiving, by the system from the second authentication server, a second indication that the first client device was successfully authenticated, and based on the second indication received by the system from the second authentication server, granting, by the system, network access to the first client device.
    Type: Grant
    Filed: October 31, 2013
    Date of Patent: January 29, 2019
    Assignee: Hewlett Packard Enterprise Development LP
    Inventors: Venkatraju Tumkur Venkatanaranappa, Rajesh Kumar Ganapathy Achari, Anoop Kumaran Nair, Santhosh Cheeniyil
  • Patent number: 10193895
    Abstract: A method and apparatus for authenticating a user for access to a service provider over a network is disclosed. It includes a first device configured to receive a request for a ticket, generate the ticket, send the ticket to at least one additional device, generate a first partial signature of the ticket, receive additional partial signatures of the ticket, generate a complete signature of the ticket, encrypt the ticket and the complete signature of the ticket, send the encrypted ticket and encrypted complete signature of the ticket to the service provider, receive an encrypted verification code from the service provider, decrypt the encrypted verification code, and display the decrypted verification code.
    Type: Grant
    Filed: November 16, 2016
    Date of Patent: January 29, 2019
    Inventors: Abdulrahman Alhothaily, Arwa Alrawais