Authentication Of An Entity And A Message Patents (Class 713/170)
  • Patent number: 10666628
    Abstract: Systems, methods, and computer-readable media may be provided for securely authenticating device identification and/or user identification for low throughput device-to-device wireless communication.
    Type: Grant
    Filed: August 6, 2018
    Date of Patent: May 26, 2020
    Assignee: APPLE INC.
    Inventors: Julien F. Freudiger, Andrew J. Ringer, Yannick L. Sierra, Farouk Belghoul, Samuel D. Post
  • Patent number: 10666434
    Abstract: Providing verification of the identity of a digital entity may include including receiving information and a public key of the digital entity, the information having been previously attested to in an attestation transaction stored within a centralized or distributed ledger at an attestation address, the centralized or distributed ledger providing a record of transactions. The system may derive an attestation address using the information and the public key of the digital entity. The system may verify the existence of the attestation transaction at the attestation address in the centralized or distributed ledger and verify that the attestation transaction has not been revoked. The processor associated with the user may receive a cryptographic challenge nonce signed by the digital entity's private key; and may verify the digital entity's identity with the cryptographic challenge nonce signed by the digital entity's key.
    Type: Grant
    Filed: April 28, 2017
    Date of Patent: May 26, 2020
    Assignee: Civic Technologies, Inc.
    Inventors: Jonathan Robert Smith, Vinodan Karthikeya Lingham, John Driscoll, Iain Charles Fraser
  • Patent number: 10650448
    Abstract: The systems and methods described herein allow consumers to lock or unlock their credit files at multiple credit bureaus in real-time or near real-time. The service may allow a consumer to provide identifying information, such as a personal identifier to lock or unlock credit files at a plurality of credit bureaus over a network. Upon receiving the personal identifier, the system may use the personal identifier to translate the identifier into a plurality of access codes for respective credit bureaus, for example by accessing a data structure, such as a database or table, that stores a personal identifier and access codes that are associated with a consumer. The system may then use the access codes to automatically initiate locking or unlocking of credit files for the consumer at the respective credit bureaus.
    Type: Grant
    Filed: September 28, 2018
    Date of Patent: May 12, 2020
    Assignee: Experian Information Solutions, Inc.
    Inventors: Eric Haller, Kelly Kent
  • Patent number: 10642976
    Abstract: Particular embodiments described herein provide for an electronic device that can be configured to analyze data related to a digital certificate and assign a reputation to the digital certificate, where the reputation includes an indication if the data is proper. The analysis of the data can include determining if code signing for the digital certificate matches binary code for the digital certificate, if the digital certificate has been grafted to the data by modifying a portable executable file header, or the digital certificate is the same as another trusted digital certificate associated with different data.
    Type: Grant
    Filed: June 27, 2015
    Date of Patent: May 5, 2020
    Assignee: McAfee, LLC
    Inventors: Joel R. Spurlock, Ramnath Venugopalan
  • Patent number: 10628615
    Abstract: An integrated circuit (IC) provisioned for asset protection has a primary circuit portion, such as a microprocessor or system-on-chip, that can be selectively disabled and enabled via an operability control input. The IC includes a secure register to store lock state indicia and unlock criteria, where a signal at the operability control input is responsive to the lock state indicia. In operation, a firmware data store receives and stores firmware code that includes a lock/unlock command, and firmware data that includes an unlock key. An authorization module verifies authenticity of the firmware code. A lock/unlock (LUL) module is operative to write lock state indicia to the secure register based on the lock/unlock command only in response to a positive verification of the authenticity of the firmware code by the authorization module, and to write lock state indicia to the secure register.
    Type: Grant
    Filed: May 21, 2018
    Date of Patent: April 21, 2020
    Assignee: Intel Corporation
    Inventors: Ramamurthy Krithivas, Donald C. Soltis, Jr., Bradley Burres
  • Patent number: 10630688
    Abstract: The present disclosure relates to a sensor network, Machine Type Communication (MTC), Machine-to-Machine (M2M) communication, and technology for Internet of Things (IoT). The present disclosure may be applied to intelligent services based on the above technologies, such as smart home, smart building, smart city, smart car, connected car, health care, digital education, smart retail, security and safety services. A method for controlling contents and an electronic device thereof are provided. An operation method of an electronic device includes the operations of setting an access authority for one or more contents, if there is a request for an access of at least one application to the contents, resetting the access authority for the contents, and controlling the access by the application to the contents in accordance with the reset access authority of the application for the contents.
    Type: Grant
    Filed: April 11, 2018
    Date of Patent: April 21, 2020
    Assignee: Samsung Electronics Co., Ltd
    Inventors: Okseon Lee, Yongseok Park, Jinho Lee, Youngki Hong
  • Patent number: 10614207
    Abstract: Aspects described herein may allow for the application of generating captcha images using variations of the same object. A GAN model may generate objects and backgrounds of the captcha images and the model may be trained based on ground-truth images to obtain refined model parameters. Further aspects described herein may provide for generating variants of the objects based on the trained model and the refined model parameters. The synthetic captcha images may be created based on the backgrounds and variants of the objects. Finally, the synthetic captcha images and ground-truth images may be presented as security challenges and user access requests may be granted or denied based on responses to the security challenges.
    Type: Grant
    Filed: July 9, 2019
    Date of Patent: April 7, 2020
    Assignee: Capital One Services, LLC
    Inventors: Anh Truong, Jeremy Goodsitt, Galen Rafferty, Vincent Pham, Austin Walters
  • Patent number: 10614417
    Abstract: A system and a method provide a lead verification service. A lead generator contacts a verification server when a visitor lands on a hosting site of the lead generator to enter lead information into a form. The verification server issues a reference key (token) to the lead generator and collects information about the visitor and the hosting site of the lead generator, using the reference key to identify the collected information. When the visitor submits the form, the lead generator sends the form data, which includes the entered lead information and the reference key received from the verification server, to at least one interested party. When the verification server receives a request for the collected information from the interested party, the collected information is retrieved based on the reference key included in the request and sent to the requesting interested party.
    Type: Grant
    Filed: May 12, 2011
    Date of Patent: April 7, 2020
    Assignee: ActiveProspect, Inc.
    Inventors: Steven M. Rafferty, Rickie N. Benavidez, Alexander K. Wolfe, Michael Shapiro
  • Patent number: 10616212
    Abstract: The invention is a method for managing a response generated by an application embedded in a secure token in response to a command requesting opening a proactive session. An applicative server relies on an OTA server to securely send the command to the application. The method comprises the steps of: the application retrieves a data from the command and derives a key using a preset function, the application generates the response to the command, builds a secured response packet comprising the response secured with the derived key and sends the secured response packet to the applicative server.
    Type: Grant
    Filed: August 21, 2015
    Date of Patent: April 7, 2020
    Assignee: THALES DIS FRANCE SA
    Inventors: Xavier Berard, HongQian Karen Lu
  • Patent number: 10614264
    Abstract: A system, computer-readable storage medium, and computer-implemented method for signing a document involving generating copies of the document in response to receiving actions to perform on the document. In particular, a web service can transmit a document for signing to a client device such that the document is viewable through graphical user interfaces while the underlying content of the document remains non-editable by the client devices through the web service. Responsive to receiving actions, the web service can generate one or more copies of the document that may include modifications that correspond to the received actions.
    Type: Grant
    Filed: March 21, 2016
    Date of Patent: April 7, 2020
    Assignee: DocuSign, Inc.
    Inventor: Glenn Shimkus
  • Patent number: 10594682
    Abstract: Method for managing data for connection to a device via a network. The method includes: receiving, by a referencing server, originating from the device, data for connection to the device and at least one authentication token constituting an authentication datum for the assembly constituted by the device and a user of the device; and referencing of the device by the referencing server by storage of the connection data received in association with at least one referencing key including the at least one authentication token.
    Type: Grant
    Filed: December 11, 2014
    Date of Patent: March 17, 2020
    Assignee: ORANGE
    Inventors: Alexandre Francois, Cyril Vizzari, Ludovic Eschard
  • Patent number: 10594873
    Abstract: In a method of payment for service of a portable communication unit, a customer prepays a dealer for said service, the dealer forwards transaction order information about the pre-payment to a prepaid management center (PMC); and the PMC provides a bank the transaction order information. The bank, upon receipt of the transaction order information from the PMC, determines whether there are sufficient funds in the dealer account to cover the transaction. If there is insufficient cash on hand, the dealer is notified and is provided an opportunity to replenish the account so that the transaction may proceed. If there are adequate funds in the dealer account, the bank automatically transfers the amount of the purchase transaction in the SPS account, less the dealer's fee for the purchase. After funds are transferred from the dealer account, the PMC is notified of the transfer, at which time the PMC generates codes and issues the codes to the dealer.
    Type: Grant
    Filed: February 26, 2019
    Date of Patent: March 17, 2020
    Assignee: Precis Group LLC
    Inventors: Peter D. Wendt, Daniel S. Karvonen
  • Patent number: 10587650
    Abstract: A method is provided for detecting an interception of a communications session established by a user over a network, comprising the steps of: (i) monitoring communications sessions by the user over a profile time period to capture information identifying distinct communications to one or more identified network addresses and their timing over the profile time period; (ii) monitoring communications sessions within the profile time period to capture information characterising the content of transactions initiated in respect of said one or more network addresses; (iii) using the captured information to generate a profile characterising communications sessions established in respect of said one or more network addresses over the profile time period; and (iv) monitoring communications sessions with said one or more network addresses within a configurable detection time period to determine one or more measures of deviation from the profile generated at step (iii) thereby to detect the presence of an interception oc
    Type: Grant
    Filed: December 19, 2014
    Date of Patent: March 10, 2020
    Assignee: Detica Patent Limited
    Inventors: Uday Krishna Kamath, Kevin O'Leary, Kilian Colleran
  • Patent number: 10572669
    Abstract: A computer-based method is disclosed for checking a target computer system for unnecessary privileges. The method includes receiving, at a computer-based privileges checking system, a listing of all privileges available the target computer system; receiving, at the computer-based privileges checking system, information about end-user activities on the target computer system over a specified period of time; for each respective one of the end-user activities, querying a computer-based entry point finder for any privileges that were checked at the target system for that activity; and removing the privileges that were checked at the target system for the end-user activities from the listing of all privileges available at the target system to produce a listing of unnecessary privileges at the target system.
    Type: Grant
    Filed: August 14, 2017
    Date of Patent: February 25, 2020
    Assignee: Onapsis, Inc.
    Inventors: Sergio Javier Abraham, Pablo Agustín Artuso
  • Patent number: 10560447
    Abstract: Provided is an authentication system that achieves simple single sign-on used by an MFP. A management application includes a first authentication-request unit that transmits an authentication request to a management server and delivers a token to an execution platform. The other application includes a second authentication-request unit that sends an authentication request together with the token to another server. The application-execution platform includes a token-delivery unit that delivers the token to the other application. The management server includes a first authentication unit that returns a token to the first authentication-request unit, a token-creation unit, and a second authentication unit that performs authentication for an inquiry from the other server that uses a token. The other server includes a third authentication-request unit that transfers an authentication request, and transfers an authentication OK message to the second authentication-request unit.
    Type: Grant
    Filed: January 10, 2018
    Date of Patent: February 11, 2020
    Assignee: KYOCERA Document Solutions Inc.
    Inventors: Takashi Oguma, Masafumi Sato, Zhenyu Sun
  • Patent number: 10555144
    Abstract: Systems and methods for providing inter-application communication in a network of moving things. As non-limiting examples, various aspects of this disclosure provide configurable systems and methods for providing inter-application communication in a network of moving things, for example in which clients may register for participation, subscribe to topics, publish different types of messages, etc.
    Type: Grant
    Filed: February 28, 2018
    Date of Patent: February 4, 2020
    Assignee: Veniam, Inc.
    Inventor: Henrique Cabral
  • Patent number: 10552618
    Abstract: A method for secured data transmission of visually encoded data from a mobile end device to a processing unit includes supplying on a security element of the end device a datum to be transmitted. The datum is encrypted in session-specific fashion through the security element. From the encrypted datum visually encoded image data are generated in the form of a bar code or a sequence of bar codes. The visually encoded image data are displayed through the end device.
    Type: Grant
    Filed: April 30, 2014
    Date of Patent: February 4, 2020
    Assignee: GIESECKE+DEVRIENT MOBILE SECURITY GMBH
    Inventor: Vui Huang Tea
  • Patent number: 10547452
    Abstract: The present application relates to a methodology of verifying secret keys in a distributed network comprising a plurality of nodes connected to a shared medium. Each node of the plurality of nodes is member of at least one group of a plurality of groups. Each group is associated with a secret group key. A verification request is broadcast to the plurality of nodes and verification responses broadcast from the plurality of nodes are received. Each verification response comprises one code sequence for each logical group, of which the broadcasting node is member. Each code sequence of the verification request is generated on the basis of a secret group key associated with a respective logical group from a predefined data sequence. The code sequences are collected and the integrity of the plurality of nodes is confirmed by comparing the code sequences.
    Type: Grant
    Filed: January 10, 2018
    Date of Patent: January 28, 2020
    Assignee: NXP B.V.
    Inventor: Thierry G. C. Walrant
  • Patent number: 10541819
    Abstract: A forged command filtering system includes: a secure command generating device for performing a digital signature operation on a selected command to generate a command request; a command transmitting device for receiving and transmitting the command request; a target device; and a command authentication circuit. The command authentication circuit includes: a communication interface for communicating with the command transmitting device or the target device; a secure micro-controller for storing a signature verification key of the secure command generating device; a control circuit for cooperating with the secure micro-controller to authenticate the command request using the signature verification key; and a storage circuit for storing data required for the operations of the control circuit.
    Type: Grant
    Filed: August 3, 2017
    Date of Patent: January 21, 2020
    Assignee: JRSYS INTERNATIONAL CORP.
    Inventor: Jia-Hong Chen
  • Patent number: 10536570
    Abstract: A safety event is determined as affecting a user based at least in part context data collected at a user device associated with the user. In some aspects, context data is detected from sensors on the client device, the context data describing a present context of the user. A deviation of the present context from a historical context is determined to be beyond a threshold. Determining that the deviation is beyond the threshold can be determined to correspond to a safety event potentially jeopardizing safety of the user. In some aspects, an action can be launched in response to determining the safety event.
    Type: Grant
    Filed: November 10, 2016
    Date of Patent: January 14, 2020
    Assignee: McAfee, LLC
    Inventors: Srikanth Nalluri, Dattatraya Kulkarni, Raja Sinha, Venkatasubrahmanyam Krishnapur, Yogesh Jain, Kaushal Kumar Dhruw, Kamlesh Halder
  • Patent number: 10528364
    Abstract: Computing device and a method for loading module codes, the module codes required for executing an action, the method comprising: receiving, by the computing device, a request for executing the action, the action being executable using a first module code; acquiring, from the first predetermined index a first module code reference indicating a first module code location and the indication that executing the first module code requires a second module code; acquiring, from a second predetermined index, a second module code reference, the second module code reference indicating a second module code location; based on the first module code reference, acquiring the first module code from the first module code location; based on the second module code reference, acquiring the second module code from the second module code location; executing the action by running the first module code and the second module code.
    Type: Grant
    Filed: April 25, 2019
    Date of Patent: January 7, 2020
    Assignee: YANDEX EUROPE AG
    Inventors: Aleksandr Aleksandrovich Zinchuk, Sergey Sergeevich Konstantinov
  • Patent number: 10523435
    Abstract: By implementing a mutable certificates approach, a server to which a digital certificate has been issued may update one or more certificate fields without the need for a new certificate or other intervention from the issuing certificate authority. A certificate authority uses extensions to identify fields that a server may update, and to identify a set or range of allowable values for those fields. A server may use the extensions to identify one or more fields to be updated, and the values to which those fields should be updated. The server may sign those field values with its private key. A client, upon receiving a digital certificate from a server with fields for updating, validates the field values using the server's public key, and then proceeds to update the certificate field values.
    Type: Grant
    Filed: July 1, 2016
    Date of Patent: December 31, 2019
    Assignee: DigiCert, Inc.
    Inventor: Jared Pilcher
  • Patent number: 10516663
    Abstract: A method including: parsing a first portion of data into at least one first data word having a default first word length; outputting, in a default word length mode, the at least one first data word; outputting a transition word indicative of transitioning to a variable word length mode; outputting, after the transition word, a first word length word indicative of a second word length; parsing a second portion of the data into at least one second data word having the second word length; and outputting, after the first word length word, the at least one second data word having the second word length.
    Type: Grant
    Filed: September 11, 2018
    Date of Patent: December 24, 2019
    Assignee: KARA PARTNERS LLC
    Inventors: Brian Penny, Desmond Penny
  • Patent number: 10516675
    Abstract: A method and a computing system for allowing just-in-time (“JIT”) access to a machine is provided. A system receives a request to allow JIT access to the machine. The system directs a port of the machine to be opened for a JIT access period. The system also directs the machine to alter security relating to applications allowed to execute on the machine for the JIT access period. During the JIT access period, the machine can be accessed via the port with the altered security relating to applications. After the JIT access period, the system directs the port to be closed and directs the security to return to the unaltered security.
    Type: Grant
    Filed: May 25, 2017
    Date of Patent: December 24, 2019
    Assignee: Microsoft Technology Licensing, LLC
    Inventors: Gilad Michael Elyashar, Royi Ronen, Efim Hudis
  • Patent number: 10491384
    Abstract: An electronic device that implements each module of a plurality of modules to jointly perform a secure multiparty cryptographic process to generate authorisation data based on input data, the authorisation data being suitable for use in authorising the electronic device, wherein each module uses secure data that is not shared outside that module to generate intermediate data for use in the secure multiparty cryptographic process to generate authentication data.
    Type: Grant
    Filed: May 16, 2016
    Date of Patent: November 26, 2019
    Assignee: BARCLAYS SERVICES LIMITED
    Inventors: George French, Evan Hood, Peter Dooman, David Taylor
  • Patent number: 10491451
    Abstract: Systems and methods for timestamp-based matching of identifiers are provided. Information may be stored in memory regarding a plurality of identifiers each unique to an associated website or to an associated browser. Stored information may further include one or more maps each associating a device identifier with at least one immutable browser identifier or mutable browser identifier. The device identifier may be unique to an associated computing device. Information may be received from a computing device that has used a browser to download a website, where the downloaded website includes a reference to a browser identifier specific to the downloaded website. The received information may be determined to include a timestamp and an internet protocol (IP) address. The timestamp and IP in the received information may further be determined to correspond to a computing device associated with one of the stored maps, where the corresponding computing device is identified by a corresponding device identifier.
    Type: Grant
    Filed: September 22, 2015
    Date of Patent: November 26, 2019
    Assignee: PARRABLE INC.
    Inventor: Justin E. Greene
  • Patent number: 10469356
    Abstract: An in-vehicle infotainment system interoperability testing device for testing the interoperability between an in-vehicle infotainment system and an auxiliary device includes an in-vehicle infotainment system interface arranged to communicatively connect the in-vehicle infotainment system with the testing device. An auxiliary device interface is arranged to communicatively connect the auxiliary device with the testing device. A control is arranged to generate auxiliary device control signals based on at least one test instruction. The control signals are arranged to be transmitted to the auxiliary device, thus causing the desired interaction between the in-vehicle infotainment system and the auxiliary device. An in-vehicle infotainment system behavior logging is arranged to generate a log of behavior in response to the control signals by receiving at least one response signal from the in-vehicle infotainment system, thereby outputting results of at least one interoperability test.
    Type: Grant
    Filed: August 16, 2016
    Date of Patent: November 5, 2019
    Assignee: NEXTGEN TECHNOLOGY LTD
    Inventors: James Scales, Harbans Dass
  • Patent number: 10470040
    Abstract: After an initial user sign-on with an identity provider, and in response to an intention of the user to use a third-party application executing on a client device of the user and requiring user sign-on, the identity provider provides a client script to the third-party application. The client script facilitates user and application authentication and invokes a trusted broker application that interacts with the identity provider to enable the user to use the third-party application. The use of the trusted broker application provided by the identity provider frees the authors of third-party applications from the need to modify their applications to explicitly sign in with the identify provider. For enhanced security, conformance to an organizational security policy is verified at time of sign-on, and an authenticatable link is used to invoke the third-party application to foil attempts by malicious software to substitute another application.
    Type: Grant
    Filed: August 27, 2017
    Date of Patent: November 5, 2019
    Assignee: OKTA, INC.
    Inventors: Thomas M. Belote, Hassen Karaa, Christine Wang, Vinoth Jayaraman, Marc Powell, Shaolin Shen, Naveed Makhani, Ankit Garg
  • Patent number: 10462105
    Abstract: Private information is frequently made public or semi-public, often without foresight as to the consequences of such a divulgence. Additionally, intentionally divulged information that is intended to be maintained as private is routinely sold to advertisers and information brokers. Example embodiments of the present invention relate to a method, an apparatus and a computer-program product for encrypting privacy-related information in a data stream. The method includes receiving a data stream transmitted from a source. A contextual analysis is then performed on the content of privacy-related portions of the data stream. The privacy-related portions of the data stream are then encrypted according to the contextual analysis before being forwarded to the intended destination.
    Type: Grant
    Filed: September 28, 2011
    Date of Patent: October 29, 2019
    Assignee: EMC IP Holding Company LLC
    Inventors: Wayne A. Pauley, Jr., Stephen J. Todd, Michel F. Fisher
  • Patent number: 10440015
    Abstract: Techniques and apparatus for providing peer-based management of user accounts are described. In one embodiment, for example, an apparatus may include at least one memory and logic coupled to the at least one memory. The logic may be configured to receive a request from at least one first user account to unlock a second user account locked responsive to a fraud event, determine a safe authentication value for the fraud event, and unlock the second user account responsive to the at least one first user account being a safe authentication account and the safe authentication value being over a safe authentication threshold value. Other embodiments are described.
    Type: Grant
    Filed: January 10, 2019
    Date of Patent: October 8, 2019
    Assignee: CAPITAL ONE SERVICES, LLC
    Inventors: Vincent Pham, Reza Farivar, Jeremy Edward Goodsitt, Fardin Abdi Taghi Abad, Anh Truong, Kate Key, Austin Grant Walters
  • Patent number: 10432646
    Abstract: There provided a method, including executing on a processor the steps of: monitoring DNS related network traffic including domain name-to-IP key value pairs, monitoring at least such non-DNS related network traffic that is targeting routable IP addresses, determining whether the monitored non-DNS related network traffic is related to a domain name, in the event that the monitored non-DNS related network traffic is determined to be related to a domain name, searching the monitored DNS related network traffic for a matching domain name, in the event that the matching domain name is found in the search, determining whether IP addresses related to the matching domain names also match, and in the event that the IP addresses related to the matching domain names do not match, determining that an internal name-to-IP resolution from a local configuration file is used for the domain name and triggering an alert.
    Type: Grant
    Filed: December 14, 2016
    Date of Patent: October 1, 2019
    Assignee: F-Secure Corporation
    Inventor: Daavid Hentunen
  • Patent number: 10425411
    Abstract: Systems and apparatuses for a secure mobile cloud framework (referred to as MobiCloud) for mobile computing and communication are disclosed. Embodiments of MobiCloud transfer each mobile node from a traditional strictly layer-structured communication node into a service node (SN). Each SN may be used as a service provider or a service broker according its capability. Each SN may be incorporated as a virtualized component of the MobiCloud. In some embodiments, MobiCloud mirrors an SN to one or multiple virtual images in the Cloud for addressing communication and computation deficiencies of mobile devices. Virtual images can create a visualized MANET routing and communication layer that can maximally assist the mobile nodes to enable pervasive computing services for each mobile device owner. A secure data processing framework is disclosed for the MobiCloud.
    Type: Grant
    Filed: March 13, 2014
    Date of Patent: September 24, 2019
    Assignee: Arizona Board of Regents on Behalf of Arizona State University
    Inventor: Dijiang Huang
  • Patent number: 10423505
    Abstract: Example implementations relate to network namespaces. The multiple network namespaces host a set of virtual machines, with each network namespace being defined, at least in part, by a set of rules by which the individual virtual machines are to access the set of network resources. An agent is initiated to operate autonomously to detect at least one of network namespace corruption or network namespace failure for each of the multiple network namespaces.
    Type: Grant
    Filed: October 18, 2017
    Date of Patent: September 24, 2019
    Assignee: Hewlett Packard Enterprise Development LP
    Inventor: Vinod Kumar
  • Patent number: 10404471
    Abstract: In a system and methods for secure ledger assurance tokenization, a request circuit is structured to access a first block of a first blockchain. The first block includes a first block identifier of the first blockchain and first block content. The request circuit is structured to audit the first block content so as to generate a first audit result. A secure ledger assurance token (SLAT) generation circuit is structured to generate a first SLAT, the first SLAT comprising the first block identifier of the first blockchain and the first audit result. The cryptographic circuit is structured to cryptographically protect the first SLAT. The SLAT generation circuit stores the cryptographically protected first SLAT in a journal, where the cryptographically protected first SLAT is accessible by an authorized stakeholder to provide integrity and origin authenticity of the first audit result.
    Type: Grant
    Filed: April 26, 2017
    Date of Patent: September 3, 2019
    Assignee: WELLS FARGO BANK, N.A.
    Inventors: Phillip H. Griffin, Jeffrey J. Stapleton
  • Patent number: 10395033
    Abstract: In one embodiment, a binary translator to perform binary translation of code is to: perform a first binary analysis of a first code block to determine whether a second control transfer instruction is included in the first code block, where the first code block includes a return target of a first control transfer instruction; perform a second binary analysis of a second code block to determine whether the second code block includes the first control transfer instruction, where the second code block includes a call target of the second control transfer instruction; and store an address pair associated with the first control transfer instruction in a whitelist if the second control transfer instruction is included in the first code block and the first control transfer instruction is included in the second code block. Other embodiments are described and claimed.
    Type: Grant
    Filed: September 30, 2016
    Date of Patent: August 27, 2019
    Assignee: Intel Corporation
    Inventors: Tugrul Ince, Koichi Yamada, Ajay Harikumar, Alex Nayshtut
  • Patent number: 10390264
    Abstract: In a wireless communications network, the presence of a wireless local area network in a cell segment is determined. An identifier of the wireless local area network in the cell segment is sent to at least one mobile station in the cell segment to enable the at least one mobile station to hand off to the wireless local area network. Optionally, information identifying geographic boundaries of cell segments and the wireless local area network can be sent to the at least one mobile station.
    Type: Grant
    Filed: June 28, 2018
    Date of Patent: August 20, 2019
    Assignee: Apple Inc.
    Inventors: Anit Lohtia, Yuqiang Tang, Miroslav Budic
  • Patent number: 10389868
    Abstract: This disclosure relates to, among other things, systems and methods for authenticating a device with a network carrier using secure hardware and software systems. Embodiments disclosed herein may provide for a hybrid SIM implementation that uses both trusted software and hardware. A hybrid SIM implementation consistent with aspects of the disclosed embodiments may leverage a relatively small amount of trusted hardware in conjunction with secure software to perform SIM-related operations. In various embodiments, such a hybrid solution may provide a SIM implementation that is more secure than solutions implemented by software alone, while still relating retaining some of the benefits of software solutions including improved update flexibility and/or carrier portability.
    Type: Grant
    Filed: June 15, 2018
    Date of Patent: August 20, 2019
    Assignee: Intertrust Technologies Corporation
    Inventor: Yutaka Nagao
  • Patent number: 10387986
    Abstract: A cell phone is disclosed for acquiring information to be transmitted to a receiving facility and for transmitting such thereto. A capture device captures information from an external source. A processor is provided for associating with the captured information a representation of the date and time of the capture of the information, such that the representation of the date and time information in association with the captured information forms augmented captured information. The processor also places the augmented captured information in association with subscriber information in a transmission of the augmented captured information to a receiving facility requiring such subscriber information. A transmitter transmits the transmission including the augmented captured information and the subscriber information to the receiving facility.
    Type: Grant
    Filed: March 20, 2018
    Date of Patent: August 20, 2019
    Assignee: MYPORT IP, INC.
    Inventors: Michael F. Malone, Frederick J. Murphy
  • Patent number: 10372942
    Abstract: A method for providing a notary service for a file is provided. The method includes steps in which: (a) when a notary service request for a specific file is obtained, a server generates, by using a hash function, or supports the generation of, a message digest of the specific file; and (b) if a predetermined condition is satisfied, the server registers, in a database, or supports the registration of, a representative hash value or a value obtained by processing the representative hash value, the representative hash value being generated by calculating at least one neighboring hash value that matches a specific hash value, wherein the specific hash value is a hash value of the result of encrypting the message digest with a private key of a specific user and a private key of the server.
    Type: Grant
    Filed: February 6, 2019
    Date of Patent: August 6, 2019
    Assignee: Coinplug, Inc.
    Inventors: Joon Sun Uhr, Jay Wu Hong, Joo Han Song
  • Patent number: 10366555
    Abstract: An electromechanical locking system includes one or more moveable locking elements and one or more actuators configured to move each of the one or more moveable locking elements between positions. The system includes an interface configured to receive information from a keycard, a processor, and a computer-readable storage medium. The processor causes the interface to scan the keycard and detect one or more features of the keycard when the keycard is detected by the interface, identify a first code that corresponds to the detected features of the keycard, apply functions to the first code to yield a second code that represents one of the plurality of positions for each of the one or more moveable locking elements, and cause the actuator to move the one or more movable locking elements to the one or more positions that correspond to the second code.
    Type: Grant
    Filed: January 25, 2018
    Date of Patent: July 30, 2019
    Assignee: Xerox Corporation
    Inventor: Jeffrey M. Fowler
  • Patent number: 10361849
    Abstract: Providing verification of the identity of a digital entity may include including receiving information and a public key of the digital entity, the information having been previously attested to in an attestation transaction stored within a centralized or distributed ledger at an attestation address, the centralized or distributed ledger providing a record of transactions. The system may derive an attestation address using the information and the public key of the digital entity. The system may verify the existence of the attestation transaction at the attestation address in the centralized or distributed ledger and verify that the attestation transaction has not been revoked. The processor associated with the user may receive a cryptographic challenge nonce signed by the digital entity's private key; and may verify the digital entity's identity with the cryptographic challenge nonce signed by the digital entity's key.
    Type: Grant
    Filed: May 4, 2018
    Date of Patent: July 23, 2019
    Assignee: Civic Technologies, Inc.
    Inventors: Jonathan Robert Smith, Vinodan Karthikeya Lingham, John Driscoll, Iain Charles Fraser
  • Patent number: 10356089
    Abstract: An electronic device includes a processor and a memory functionally connected to the processor. The electronic device acquires user's biometric information through a biometric sensor, determines virtual biometric information corresponding to the acquired biometric information, and transmits the virtual biometric information to an external electronic device through communication circuitry. The electronic device may include the biometric sensor, the communication circuitry, and the memory may be electrically connected to the biometric sensor and the communication module and store instructions to be executed by the processor.
    Type: Grant
    Filed: December 16, 2016
    Date of Patent: July 16, 2019
    Assignee: Samsung Electronics Co., Ltd.
    Inventors: Moon-Soo Chang, Hak-Joo Kim, Sang-Ho Park, Yong-Jun Park, Jong-Hoon Park, In-Jun Son, Yang-Soo Lee, Hyung-Joo Cho, Ho-Dong Jwa, Woo-Young Choi, Dong-Hyun Yeom
  • Patent number: 10356082
    Abstract: Disclosed are various examples for facilitating distribution of an authentication code to installation of managed applications. An identity certificate is sent to a device by installing a configuration profile on the client device. The configuration profile includes the identity certificate. A management service can also initiate installation of a managed application. The identity certificate can be used to authenticate the client device so that an authentication key can be provided to the managed application.
    Type: Grant
    Filed: November 17, 2017
    Date of Patent: July 16, 2019
    Assignee: Airwatch LLC
    Inventor: Adam Stephen Rykowski
  • Patent number: 10348503
    Abstract: A method and system including a display; a memory storing processor-executable process steps; and a processor to execute the processor-executable process steps to cause the system to: receive a first request at a server; generate a first dataset and a second dataset at the server, wherein the second dataset is encrypted; transmit the first and second dataset to a client; receive at the server a second request and the encrypted dataset, wherein the second request includes a request to execute an action with at least one data element in the first data set; and in response to receipt of the second request and encrypted dataset, decrypt the encrypted dataset to validate the second request. Numerous other aspects are provided.
    Type: Grant
    Filed: December 12, 2016
    Date of Patent: July 9, 2019
    Assignee: SAP PORTALS ISRAEL LTD.
    Inventor: Alex Volchok
  • Patent number: 10341121
    Abstract: The system, method, and computer program product described herein may provide the capability to handle a variety of types of transactions, not just payment transactions. In addition, system, method, and computer program product described herein may provide the capability for users to be able to control the confidentiality of their transactions, for the system to control access to transactions, for the system to be capable of auditing transactions, and to provide accountability of the validating entities.
    Type: Grant
    Filed: March 5, 2018
    Date of Patent: July 2, 2019
    Assignee: International Business Machines Corporation
    Inventors: Elli Androulaki, Angelo De Caro, Thorsten Kramp, Alessandro Sorniotti, Marko Vukolic
  • Patent number: 10341357
    Abstract: A device within the network receives a domain name service (DNS) request for an address of a first resource outside the network, the first resource associated with a security policy of the network. An address of a second resource within the network is returned to the device within the network in response the DNS request, the second resource address having previously been associated with the first resource address. A first encrypted connection is established between the device and the second resource, and a second encrypted connection is established between the second resource and the first resource, to facilitate encrypted communication traffic between the device and the first resource. The encrypted communication traffic passing between the device and the first resource is selectively decrypted and inspected depending on the address of the first resource.
    Type: Grant
    Filed: April 30, 2014
    Date of Patent: July 2, 2019
    Assignee: iboss, Inc.
    Inventor: Paul Michael Martini
  • Patent number: 10330536
    Abstract: A busbar (21) is provided for electrically connecting a temperature detecting member 40 to adjacent electrode terminals (12A, 12B) of unit cells (11). The busbar (21) is overlapped with the electrode terminals (12A, 12B) of the unit cells (11). The temperature detecting member (40) includes a plate-like heat transfer plate (42) that is overlapped in an area of the busbar (21) other than an area of the busbar (21) that is to be laser-welded to the electrode terminals (12A, 12B) and is attached to the busbar (21) by laser welding.
    Type: Grant
    Filed: December 10, 2015
    Date of Patent: June 25, 2019
    Assignees: AutoNetworks Technologies, Ltd., Sumitomo Wiring Systems, Ltd., SUMITOMO ELECTRIC INDUSTRIES, LTD.
    Inventors: Ryouya Okamoto, Osamu Nakayama
  • Patent number: 10327139
    Abstract: Embodiments of the present invention provide a multi-level authentication system to provide an additional level of authentication using phone application level data. The system extracts application level data and generates a questionnaire based on the extracted application level data. This questionnaire is transmitted to the device of the user by the system to receive an input related to the questionnaire. The system authorizes a request to execute an action upon validating the input received.
    Type: Grant
    Filed: October 6, 2016
    Date of Patent: June 18, 2019
    Assignee: BANK OF AMERICA CORPORATION
    Inventors: Samuel Massa Moiyallah, Jr., Joseph Benjamin Castinado
  • Patent number: 10305906
    Abstract: Systems, devices and processes are described for implementing an access heartbeat role on a hardware security module (HSM) that stores secure data on behalf of a secure data owner. Heartbeat and access credentials are established and distributed by the HSM. Access to the secure data is prevented unless the HSM receives valid heartbeats prior to a time expiration along with a valid access request. Generally, heartbeats are signed messages and include heartbeat credentials. Access requests may also be signed messages and include access credentials. The access credentials may be suspended, revoked or the entire HSM may be zeroized (e.g., plaintext keys erased), dependent upon a failure to receive valid heartbeats in a timely fashion. Heartbeats may be required from multiple entities, in some embodiments. Some example configurable features include heartbeat expiration time, the source of the credentials, the access denial options, and how many sources of distinct heartbeats are required.
    Type: Grant
    Filed: September 13, 2016
    Date of Patent: May 28, 2019
    Assignee: Amazon Technologies, Inc.
    Inventor: Steven Preston Lightner Norum
  • Patent number: 10306058
    Abstract: A method of processing call setup signalling at a telecommunications switch. The telecommunications switch receives call setup signalling, comprising at least a caller ID. The telecommunications switch is connected via a plurality of trunks which connect the telecommunications switch to two or more other telecommunications switches capable of transmitting call setup signalling to the telecommunications switch. The telecommunications switch detects at least one of the plurality of trunks via which the call setup signalling has arrived at said telecommunications switch. The telecommunications switch determines a call handling option to be applied to the incoming call setup signalling based at least in part on the detecting and the caller ID.
    Type: Grant
    Filed: August 27, 2018
    Date of Patent: May 28, 2019
    Assignee: Metaswitch Networks Ltd.
    Inventor: Duncan Archer