Intelligent Token Patents (Class 713/172)
  • Patent number: 12205103
    Abstract: A contactless card can include a plurality of keys for a specific operation, e.g., encryption or signing a communication. The contactless card can also include an applet which uses a key selection module. The key selection module can select one of the plurality of keys and the applet can use the key to, e.g., encrypt or sign a communication using an encryption or signature algorithm. The contactless card can send the encrypted or signed communication to a host computer through a client device. The host computer can repeat the key selection technique of the contactless device to select the same key and thereby decrypt or verify the communication.
    Type: Grant
    Filed: December 7, 2022
    Date of Patent: January 21, 2025
    Assignee: Capital One Services, LLC
    Inventors: Jeffrey Rule, Srinivasa Chigurupati, Kevin Osborn
  • Patent number: 12197628
    Abstract: A method and apparatus for processing biometric information in an electronic device including a processor that operates at a normal mode or at a secure mode, the method comprising, detecting a biometric input event from a biometric sensor module at normal mode, creating biometric data based on sensed data from the biometric sensor module at the secure mode, performing biometric registration or biometric authentication based on the created biometric data at the secure mode, and providing result information of biometric registration or biometric authentication at the normal mode.
    Type: Grant
    Filed: June 2, 2023
    Date of Patent: January 14, 2025
    Assignee: Samsung Electronics Co., Ltd.
    Inventors: Teain An, Taeho Kim, Hyungjoon Kim, Seulhan Park, Jonghoon Park, Heejun You, Yangsoo Lee, Moonsu Chang, Jinho Hyeon
  • Patent number: 12192204
    Abstract: A computer implemented system for controlling access to data associated with an entity includes a data storage device having a computer memory, and one or more processors. The one or more processors are configured for: storing a secret key associated with the entity in a computer memory associated with the entity; upon receiving entity data, storing the entity data in the computer memory; and upon receiving an access grant signal, enabling communication of information relating to the entity data.
    Type: Grant
    Filed: July 10, 2023
    Date of Patent: January 7, 2025
    Assignee: ROYAL BANK OF CANADA
    Inventors: Edison U. Ortiz, Arya Pourtabatabaie, Ambica Pawan Khandavilli, Margaret Inez Salter, Jordan Alexander Richards, Iustina-Miruna Vintila, Sarah Rachel Waigh Yean Wilkinson
  • Patent number: 12192368
    Abstract: A user authentication method performed in an unmanned delivery system including a server, a buyer customer device, a deliveryman customer device, and an autonomous delivery vehicle includes: generating, by the server, a session key based on order information received from the buyer customer device, and transmitting the generated session key to the deliveryman customer device and the buyer customer device; generating, by the deliveryman customer device, a One-Time Password (OTP) based on the session key; applying, by the deliveryman customer device as a first application step, a hash function to the OTP a first predetermined number of times; additionally applying, by the deliveryman customer device as a second application step, the hash function to the OTP generated in the first application step a second predetermined number of times; and generating, by the deliveryman customer device, a first Quick Response (QR) code based on the OTP generated in the second application step.
    Type: Grant
    Filed: June 12, 2023
    Date of Patent: January 7, 2025
    Assignee: RESEARCH COOPERATION FOUNDATION OF YEUNGNAM UNIVERSITY
    Inventors: Seung Yeob Nam, Yu Na Park, Seong Eun Yang
  • Patent number: 12174933
    Abstract: A method for accessing secured data stored in an eID card using combined MoC and MRZ technology is provided. The eID card receives from a card reader an extracted biological feature that is obtained by a biometric device extracting a biological feature of a user. When the extracted biological feature matches a pre-stored biometric template, the eID card permits the card reader to acquire a digital access code stored therein the content of which is identical to a printed MRZ code on the eID card. Upon receipt of the digital access code, the card reader establishes secured communication with the eID card to access the secured data that is stored in the eID card.
    Type: Grant
    Filed: September 14, 2022
    Date of Patent: December 24, 2024
    Assignee: MK GROUP JSC
    Inventor: Khang Trong Nguyen
  • Patent number: 12166907
    Abstract: The disclosure provides an approach for certificate management for cryptographic agility. Embodiments include receiving, by a cryptographic agility system, a cryptographic request related to an application. Embodiments include selecting, by the cryptographic agility system, a cryptographic technique based on contextual information associated with the cryptographic request. Embodiments include determining, by the cryptographic agility system, based on the cryptographic request, a certificate for authenticating a key related to the cryptographic technique. Embodiments include providing, by the cryptographic agility system, the certificate to an endpoint related to the cryptographic request for use in authenticating the key.
    Type: Grant
    Filed: July 27, 2023
    Date of Patent: December 10, 2024
    Assignee: VMware LLC
    Inventors: Marc Wayne Brotherson, Mark Benson, Daniel James Beveridge, Sean Huntley, Akeem Jenkins, David Ott
  • Patent number: 12159275
    Abstract: A method of authenticating a card for use with a mobile pay function of a mobile device is provided. The method includes: receiving a payment transaction from the mobile device; identifying the payment transaction from the mobile device as an authentication request by determining that the payment transaction includes a payment amount less than or equal to a predefined amount, wherein the authentication request includes a cryptogram; decrypting the cryptogram; verifying and approving the authentication request that was generated by the card and wirelessly transmitted to the mobile device from the card based on the decrypted cryptogram; transmitting an authentication decision to the mobile device based on the approval; and, enabling the mobile pay function for the card for the mobile device to complete mobile pay transactions utilizing the card.
    Type: Grant
    Filed: May 12, 2021
    Date of Patent: December 3, 2024
    Assignee: Wells Fargo Bank, N.A.
    Inventor: Peter Ho
  • Patent number: 12158967
    Abstract: In some implementations, a system may receive a first request including a user internet protocol (IP) address associated with the first request, and a user e-mail address associated with an e-mail account of a user. The system may store the submission IP address in association with the first request. The system may transmit a confirmation e-mail message to the user e-mail address. The confirmation e-mail message may include image data associated with the first request. The system may receive, from an e-mail client associated with the user e-mail account, a second request to access the image data. The second request may include a confirmation IP address. The system may perform a comparison of the requesting and submission IP addresses and the submission IP address. The system may transmit, to the e-mail client, an image associated with the image data and based on the comparison.
    Type: Grant
    Filed: November 10, 2022
    Date of Patent: December 3, 2024
    Assignee: Capital One Services, LLC
    Inventors: Kelly Morse Kornman, Aaron Wright, Omer Alrefaai
  • Patent number: 12141326
    Abstract: Enhanced dynamic security with partial data access to preserve anonymity is provided herein. An example method comprises storing personally identifying information (PII) about an end user in a database, organizing data in the database into tokens, determining, upon receiving a request for the PII from an agent in communication with the end user, that the agent is authorized to access the PII, granting the agent temporary access to the PII, and removing the PII from a device associated with the agent.
    Type: Grant
    Filed: April 12, 2024
    Date of Patent: November 12, 2024
    Assignee: ONLINE MEDIA HOLDINGS LIMITED
    Inventors: Jonathan Barouch, Peter Williams
  • Patent number: 12143506
    Abstract: Technology is shown for establishing a chain of trust for an unknown root certificate in an isolated network that is verified using a chain of trust external to the network. A bootstrap executable and a leaf certificate rooted in the external chain of trust are configured with an OID. The leaf certificate is received in the isolated network and used to sign a new root certificate created in the isolated network to create a blob that is stored in a pre-determined location. The bootstrap executable is executed to instantiate a client machine, which retrieves the blob and verifies its signature using the leaf certificate. The client machine verifies that the OID values from the blob and bootstrap executable match. If the signature and OID checks are successful, then the new root certificate is distributed within the isolated network and installed in a PKI certificate chain of trust.
    Type: Grant
    Filed: January 26, 2022
    Date of Patent: November 12, 2024
    Assignee: Microsoft Technology Licensing, LLC
    Inventors: Pu Liu, Yingchang Charley Zhang, Sahil S. Chavan, Deyang Gu, Lucius B. Fleuchaus, Akshay Kishor Kulkarni, David Nunez Tejerina
  • Patent number: 12124384
    Abstract: An integrated circuit device including processing circuitry, communications circuitry configured to provide a communication link with a communication apparatus external to the integrated circuit device, and a memory accessible by the processing circuitry and by the communications circuitry, the memory comprising a memory region to which the processing circuitry has write access and to which the communications circuitry has read access, in which the processing circuitry is configured to write information to the memory region indicative of one or more use conditions of the integrated circuit device, and in which the communications circuitry is configured to access the memory region and to provide the information indicative of the one or more use conditions of the integrated circuit device via the communication link.
    Type: Grant
    Filed: August 5, 2022
    Date of Patent: October 22, 2024
    Assignee: Arm Limited
    Inventors: James Edward Myers, Shidhartha Das
  • Patent number: 12126727
    Abstract: Systems, methods, and computer-readable storage media for ensuring electronic communications have not been intercepted and manipulated. An exemplary device generates a public/private pair of keys, and transmits the public key to another device with information about the data to be shared. The second device encrypts associated data, while also executing a hash function on at least a portion of the data. The first device receives the encrypted data, decrypts it, and verifies its accuracy using a third party. The third party also executes the hash function on the data received from the first device, and transmits the output of that hash function to the first device. Both the first device and second devices and display the hash values, allowing users to visually determine if the data has been manipulated during the transaction.
    Type: Grant
    Filed: July 7, 2023
    Date of Patent: October 22, 2024
    Assignee: Capital One Services, LLC
    Inventors: Austin Walters, Mark Watson, Vincent Pham, Reza Farivar, Fardin Abdi Taghi Abad, Jeremy Goodsitt
  • Patent number: 12105789
    Abstract: Unknown devices may be bound to an identity using a four step process that involves trusted relationships only between known partner entities and a known user attribute. The identity may be an account, such as a personal account number (PAN). The PAN may be abstracted using a token for use with the device. The unknown device may first be enrolled at a service to establish a cryptographically verifiable identity. A binding request for the enrolled device may be sent to an issuer of the PAN resulting in the issuer generating a challenge. After a successful authentication of the challenge at the token service provider, the binding of the token to the device is complete.
    Type: Grant
    Filed: March 23, 2020
    Date of Patent: October 1, 2024
    Assignee: Visa International Service Association
    Inventors: Sanjeev Sharma, Manjush Menon, Dmitri Bannikov
  • Patent number: 12105804
    Abstract: Securely executing instructions of software on a computerized device by accessing a software of a computerized device, wherein the software includes a plurality of instructions and respective reference message authentication codes (MACs), generating a cryptographic key based at least in part on a key derivation function, wherein arguments of the key derivation function are based at least in part on a unique identifier of the computerized device and a value extended from a measurement of a content of the software of an extension mechanism of a platform configuration register of the computerized device, verifying an instruction of the plurality of instructions of the software based at least in part on the cryptographic key and a reference MAC of the respective reference MACs, and in response to verifying the instruction of the plurality of instructions of the software, executing the instruction.
    Type: Grant
    Filed: July 17, 2021
    Date of Patent: October 1, 2024
    Assignee: International Business Machines Corporation
    Inventors: Wojciech Ozga, Silvio Dragone
  • Patent number: 12095918
    Abstract: Embodiments of the invention are directed to systems, methods, and computer program products for generation of dynamic authentication tokens for use in system-to-system transaction authorization and user identity verification. The system utilizes user biometric data to generate unique authentication tokens which are customized to a particular user. Furthermore, the system rotates not only the encryption algorithms used, but also the datasets being encrypted in order to provide a high level of security such that even if a user's biometric data was compromised, it would be highly unlikely that an attacker would be able to recreate the authentication token stemming from said biometric data at any given point in time. The system eliminates the need for user-provided authentication credentials and provides a more secure and more efficient method of authenticating data exchange between multiple systems or applications.
    Type: Grant
    Filed: August 3, 2023
    Date of Patent: September 17, 2024
    Assignee: BANK OF AMERICA CORPORATION
    Inventors: Joseph Benjamin Castinado, Brandon Ingram, Naoll Addisu Merdassa, Kevin Graham Robberts, Ann Ta
  • Patent number: 12088570
    Abstract: The techniques herein are directed generally to a “zero-knowledge” data management network. Users are able to share verifiable proof of data and/or identity information, and businesses are able to request, consume, and act on the data—all without a data storage server or those businesses ever seeing or having access to the raw sensitive information (where server-stored data is viewable only by the intended recipients, which may even be selected after storage). In one embodiment, source data is encrypted with a source encryption key (e.g., source public key), with a rekeying key being an encrypting combination of a source decryption key (e.g., source private key) and a recipient's public key. Without being able to decrypt the data, the storage server can use the rekeying key to re-encrypt the source data with the recipient's public key, to then be decrypted only by the corresponding recipient using its private key, accordingly.
    Type: Grant
    Filed: December 15, 2023
    Date of Patent: September 10, 2024
    Assignee: Journey.ai
    Inventors: Brett Shockley, Alexander John Shockley, Michael Joseph Frendo, Shmuel Shaffer, Kenneth Keiter, James M. Behmke
  • Patent number: 12081546
    Abstract: A method of accessing data at a device, wherein the data is stored remotely from the device or in removable storage. The method may the following steps: (i) sending a request from the device to access the data, the request including an identification code of a secure element or a memory card associated with the device, (ii) verifying, based at least partly on the identification code, whether access to the data is to be allowed or denied, and (iii) allowing or denying the device access to the data accordingly.
    Type: Grant
    Filed: January 8, 2021
    Date of Patent: September 3, 2024
    Assignee: Liberty Vaults Limited
    Inventors: Christopher Iain Johnston, Michel Leduc
  • Patent number: 12061690
    Abstract: Disclosed embodiments include systems, methods, and computer-readable media for maintaining and accessing security metadata associated with a micro service. Aspects include generating security metadata associated with a micro service. The security metadata may be separate from an executable portion of the micro service and define a plurality of security attributes of the micro service. Examples of security attributes include a security grade level for the micro service, a security sensitive operation that the micro service is programmed to perform, a function classification for the micro service, and an idempotence property for the micro service, among others. Aspects also include accessing the security metadata, and determining, based on the security metadata, whether to perform a control action of various different types for the micro service.
    Type: Grant
    Filed: June 21, 2018
    Date of Patent: August 13, 2024
    Assignee: CYBERARK SOFTWARE LTD.
    Inventor: Evgeny Beskrovny
  • Patent number: 12058165
    Abstract: A storage system that determines coupling priority of a plurality of coupling candidate servers includes a control unit. The control unit is configured to acquire information on security strength from the coupling candidate servers, determine coupling priority of the respective coupling candidate servers on a basis of the security strength of the coupling candidate servers and processing speed performance in processing relating to security with the coupling candidate servers, and cause the determined coupling priority of the coupling candidate servers to be stored in a prescribed memory.
    Type: Grant
    Filed: March 18, 2022
    Date of Patent: August 6, 2024
    Assignee: Hitachi, Ltd.
    Inventors: Ryo Okutani, Hajime Sato
  • Patent number: 12052354
    Abstract: Various embodiments are generally directed to techniques of generating a unique biometric key, hashing and salting the key, and storing it. Embodiments include techniques to analyze biological information associated with a user and determine one or more biological characteristics from the analyzed information. The biological characteristics may be used to generate a character string unique to the user, which may be used to generate the biometric key based on a cryptographic algorithm. The hash values, salt values, or the hash function may be changed at a predetermined interval.
    Type: Grant
    Filed: September 23, 2021
    Date of Patent: July 30, 2024
    Assignee: Capital One Services, LLC
    Inventors: Ryan Fox, Keith Hamburg
  • Patent number: 12032971
    Abstract: Systems, computer program products, and methods are described herein for dynamically reconfiguring electronic applications based on user requests. The present invention may be configured to analyze multiple applications to determine configurations, programming interfaces, functions, and data formats of each application of the applications and receive payload data, where the payload data is based on a user request, and where the user request includes a user identifier associated with a user that provided the user request and information identifying an engineering request. The present invention may be further configured to determine, based on the payload data, an application, of the applications, for performing the engineering request and convert the payload data to a data format, of the data formats, for the application to obtain converted data. The present invention may be further configured to perform, on the application and based on the converted data, the engineering request.
    Type: Grant
    Filed: April 29, 2021
    Date of Patent: July 9, 2024
    Assignee: BANK OF AMERICA CORPORATION
    Inventor: Rama Venkata Siva Kumar Golthi
  • Patent number: 12034838
    Abstract: Public-key cryptography allows putting into practice concepts of digital signatures and public-key key exchange; methods used on a daily basis in digital systems. A method generates a protected secret value k? used as a first operand in a cryptographic group operation involving a base group element G of order n and including: generating random positive integers k1 and k2, that are strictly smaller than the order of the group element G due to a cryptographically secure random number generator, such that the generated random positive integers k1 and k2 do not share any divisor with the order n other than 1; generating the protected secret value k? based on the generating random positive integers such as k?=k1*k2, the protected secret value k? being used as a second operand in the group operation.
    Type: Grant
    Filed: May 18, 2017
    Date of Patent: July 9, 2024
    Assignee: NAGRAVISION S.A.
    Inventors: Marco Macchetti, Karine Villegas
  • Patent number: 12034716
    Abstract: A method and apparatus provides for securely unlocking a locked program domain by a third party wishing to gain extraordinary access to the program domain by a third party. The third party and the program domain are mutually authenticated using exclusive self-escrow of credentials that are generated, revealed, or stored within the program domain. Multiple third parties that are required for unlocking the program domain may also be authenticated prior to unlocking the program domain. The method and apparatus provides extraordinary access without the use of backdoors or having the program domain provide credentials to third parties.
    Type: Grant
    Filed: September 28, 2023
    Date of Patent: July 9, 2024
    Assignee: OBOREN SYSTEMS, INC.
    Inventors: James C. Collier, Michael Pompa
  • Patent number: 12026720
    Abstract: Systems and methods for blockchain-based asset authentication are described. The disclosed embodiments leverage the traceability and immutability of blockchains (or distributed ledgers, in general) to enable the authentication and ownership of assets, e.g., luxury goods. In an example, this is achieved by first pairing an authentication chip with a physical product, and writing a transaction correlated with the first pairing to a blockchain. The product being acquired (reacquired) results in the blockchain being updated (e.g., an updated transaction being written to the blockchain) and the (subsequent) owner being provided with a digital passport that can be added to the owner's digital Web3 wallet. The described embodiments advantageously enable digital identities to be associated with physical goods, which adds value for customers making a long-term investment in a luxury good, and promotes sustainability and transparency in manufacturing and retail processes.
    Type: Grant
    Filed: November 30, 2023
    Date of Patent: July 2, 2024
    Assignee: Steel American Luxury, LLC
    Inventor: Nicole Steel
  • Patent number: 12022158
    Abstract: Technologies are disclosed for associating a subscriber's subscription profile established with a local media content delivery network, or MSO, with a remote CPE and/or network gateway device, perhaps for example served by the same MSO. One or more techniques may control the delivery of a subscriber's media content, perhaps for example by a media control device. Techniques may include receiving one or more credentials by the media control device, where the media control device is geographically remote from the subscriber's local media content delivery network. A signal may be sent to a media content delivery network device, where the signal may include information corresponding to the credentials. A configuration may be received for the subscriber's local media content delivery network in response to the signal. The configuration may be installed on the media control device. Media content may be delivered by the media control device.
    Type: Grant
    Filed: April 23, 2021
    Date of Patent: June 25, 2024
    Assignee: ARRIS Enterprises LLC
    Inventors: William P. Franks, Vinod S. Jatti
  • Patent number: 12021865
    Abstract: The technology described herein discloses systems and methods for upgrading biometric authentication system. The system can receive first biometric information in connection with an authentication request from a user. The system can authenticate the user via a first authentication system by comparing the first biometric information received in connection with the authentication request with second biometric information. The user can be automatically enrolled into a second authentication system using the first biometric information received in connection with the authentication request.
    Type: Grant
    Filed: April 5, 2023
    Date of Patent: June 25, 2024
    Assignee: United Services Automobile Association (USAA)
    Inventor: Maland Keith Mortensen
  • Patent number: 12015607
    Abstract: A system and method are provided for authenticating client devices communicating with an enterprise system. The method includes providing a policy enforcement interceptor to intercept API calls and enabling the policy enforcement interceptor to communicate with a policy information point to query the at least one endpoint for entitlements associated with an account. The method also includes intercepting an API call to the application API, communicating with the policy information point to determine entitlements associated with the account by having the policy information point query an entitlements database and, when the entitlements returned to the policy enforcement interceptor are valid, invoking a policy decision point to validate the client device. The method also includes, when the client device is validated, permitting invocation of the API. The method also includes providing an API response to the client device to permit access to the application via the API.
    Type: Grant
    Filed: August 13, 2021
    Date of Patent: June 18, 2024
    Assignee: The Toronto-Dominion Bank
    Inventors: Christian Joseph Bouffard, Saeed Alhajyousef
  • Patent number: 12015666
    Abstract: Computer systems and methods for replicating a portion of a data set to a local repository associated with a subnetwork are disclosed. In one implementation, a method for a device associated with a subnetwork may include obtaining a portion of a data set from a central repository. The data set may be associated with one or more subnetworks, and the portion of the data set may be associated with the subnetwork. The method may further include obtaining a request for data originating from a node in the subnetwork. In addition, the method may include determining whether the central repository is unavailable to provide the requested data, and providing the requested data to the node after the central repository is determined as being unavailable.
    Type: Grant
    Filed: March 23, 2021
    Date of Patent: June 18, 2024
    Assignee: NEUSTAR, INC.
    Inventor: Brian R. Knopf
  • Patent number: 11997216
    Abstract: Methods and systems are described herein for facilitating blockchain operations in decentralized applications by offering enhanced efficient when conducting blockchain operations using cryptography-based, digital ledgers through the use of specialized indexing. For example, as opposed to relying on raw blockchain data to power decentralized applications, the methods and systems use a blockchain indexer. The blockchain indexer provides a queryable record of a subset of blockchain operations.
    Type: Grant
    Filed: February 23, 2022
    Date of Patent: May 28, 2024
    Assignee: Coinbase, Inc.
    Inventors: Ben Schreck, Ankit Chiplunkar, Matt Moore, Olivia Thet, Peter Jihoon Kim, Trevor Aron
  • Patent number: 11991160
    Abstract: Systems and methods for providing one or more secure services are disclosed. One method can comprise authenticating and/or authorizing a user device to receive a security token. A request for information can be processed using the security token to facilitate the secure provision of services to the user device.
    Type: Grant
    Filed: February 28, 2018
    Date of Patent: May 21, 2024
    Assignee: Comcast Cable Communications, LLC
    Inventors: David de Andrade, Patrick Ladd, John Brzozowski, John Leddy
  • Patent number: 11985124
    Abstract: Leveraging secure tokenization, such as a Non-Fungible Token (NFT), for purposes of multifactor and/or elevated user authentication. In this regard, an authentication NFT is generated based at least on a user's authentication credentials. Subsequently, the authentication NFT is verified/validated via a private distributed trust computing network and stored, in a deactivated state, on a distributed ledger. Once the user is confronted with an elevated and/or multifactored authentication process, the user may initiates use of the authentication NFT by checking-out the authentication NFT from the distributed ledger and moving the authentication NFT from the deactivated state to an activated state, in which the user credentials are accessible to the user for purposes of authentication.
    Type: Grant
    Filed: June 2, 2022
    Date of Patent: May 14, 2024
    Assignee: BANK OF AMERICA CORPORATION
    Inventors: Anna Kristen Pingel Berry, Shweta Ambulkar, Benjamin Daniel Hardman, Angela Ianni, Olga Kocharyan, Luqman Sharief, Michael Wm. Whitaker
  • Patent number: 11972641
    Abstract: Methods and apparatus, including computer program products, are provided for express voting. In some example embodiments, there is provided a method for express voting. The method may include authenticating a voter based on a token carried by a user equipment, the token mapped to at least one of an identity of the voter, a precinct of the voter, and a ballot for the voter; and providing, when the authenticating indicates the voter is authorized to vote, the ballot presented on the user equipment. Related systems, methods, and articles of manufacture are also disclosed.
    Type: Grant
    Filed: September 18, 2018
    Date of Patent: April 30, 2024
    Assignee: Everyone Counts, Inc.
    Inventors: Eric James Joyce, Craig Harold Reines, Anthony Kelly
  • Patent number: 11973745
    Abstract: The techniques herein are directed generally to a “zero-knowledge” data management network. Users are able to share verifiable proof of data and/or identity information, and businesses are able to request, consume, and act on the data—all without a data storage server or those businesses ever seeing or having access to the raw sensitive information (where server-stored data is viewable only by the intended recipients, which may even be selected after storage). In one embodiment, source data is encrypted with a source encryption key (e.g., source public key), with a rekeying key being an encrypting combination of a source decryption key (e.g., source private key) and a recipient's public key. Without being able to decrypt the data, the storage server can use the rekeying key to re-encrypt the source data with the recipient's public key, to then be decrypted only by the corresponding recipient using its private key, accordingly.
    Type: Grant
    Filed: December 4, 2019
    Date of Patent: April 30, 2024
    Assignee: Journey.ai
    Inventors: Brett Shockley, Alexander John Shockley, Michael Joseph Frendo, Shmuel Shaffer, Kenneth Keiter, James M. Behmke
  • Patent number: 11967184
    Abstract: A computer, including a processor and a memory, the memory including instructions to be executed by the processor to acquire a first image with a visible and NIR light camera and acquire a second image with an infrared camera. The instructions can include further instructions to determine whether the second image includes a live human face by comparing a first infrared profile included in the second image with second infrared profile included in a previously acquired third image acquired with the infrared camera; and when the second image includes the live human face, output the first image.
    Type: Grant
    Filed: May 21, 2021
    Date of Patent: April 23, 2024
    Assignee: Ford Global Technologies, LLC
    Inventors: Ali Hassani, Jonathan Diedrich, Hafiz Malik, David Hiskens, Ryan Edwin Hanson
  • Patent number: 11954514
    Abstract: A robotic process automation system includes a server processor that performs an automation task to process a work item, by initiating a java virtual machine on a second device. A first user session that employs credentials of a first user for managing execution of the automation task is also initiated on the second device. The server processor loads into the java virtual machine, with a platform class loader, one or more modules, such as logging and security, that perform functions common to the sets of task processing instructions. A first class loader a first set of task processing instructions is also loaded. Then each instruction in the first set of task processing instructions is loaded with a separate class loader. The server processor causes execution, under control of the first user session, on the second device, the task processing instructions that correspond to the work item.
    Type: Grant
    Filed: August 31, 2021
    Date of Patent: April 9, 2024
    Assignee: AUTOMATION ANYWHERE, INC.
    Inventors: Sudharshan Krishnamurthy, James Dennis, Virinchipuram J Anand, Abhijit Kakhandiki
  • Patent number: 11956258
    Abstract: Apparatuses and methods are disclosed for protection of data servers configured for data replication of a database. As an example, one apparatus includes at least one processing circuit configured to receive records indicating respective modifications performed on a first version of the database stored in a first data server of the plurality of data servers. The at least one processing circuit is configured to delay replication of the modification in one or more additional servers in the plurality of data servers for a respective length of time specified for the servers in security profile data. While delaying replication of the modification, the processing circuit determines a probability that the modification is malicious based on a first set of factors indicated in a security profile. If the probability is greater than a threshold specified in the security profile data, the processing circuit prevents the modification from being performed.
    Type: Grant
    Filed: October 15, 2021
    Date of Patent: April 9, 2024
    Assignee: 8x8, Inc.
    Inventors: Mehdi Salour, Raghu Rengarajan
  • Patent number: 11943361
    Abstract: A client device for use with a gateway device (or a Wi-Fi APD) with a key stored therein and an external server where an original singe sign on (SSO) password is stored. The client device transmits a one time password (OTP) request to the external server, obtains the OTP from the external server, transmits the OTP to the external server to authenticate the client device, transmits an encrypted SSO password request to the external server, onboards the gateway device using a temporary password, receives the encrypted SSO password from the external server, obtains the key from the gateway device, decrypts the encrypted SSO password using the key to obtain the SSO password, and changes the temporary password of the gateway device to the original SSO password.
    Type: Grant
    Filed: September 16, 2021
    Date of Patent: March 26, 2024
    Assignee: ARRIS ENTERPRISES LLC
    Inventor: Jalagandeswari Ganapathy
  • Patent number: 11935051
    Abstract: An electronic device includes a slave interface configured for coupling to a machine controller of a machine via a multi-drop bus (MDB), a host interface configured for coupling to a first peripheral device of the machine, and memory storing one or more programs to be executed by the one or more processors and comprising instructions for: registering the electronic device as a slave to the machine controller, registering the first peripheral device as a slave to the electronic device, receiving from a mobile device a request to access signals generated by the first peripheral device, validating the request, and sending a reset command to the first peripheral device via the host interface, the reset command including a directive to update a signal destination address of the first peripheral device from a controller address of the machine controller to a device address of the electronic device.
    Type: Grant
    Filed: July 27, 2021
    Date of Patent: March 19, 2024
    Assignee: PayRange, Inc.
    Inventor: Paresh K. Patel
  • Patent number: 11924247
    Abstract: A method and apparatus for testing and simulating an access control policy are disclosed. Evaluating an access control policy may be performed by utilizing a deny statement that causes the access request to be rejected despite actions indicated in the access request being authorized. Further, an independent simulation environment may be utilized for testing access control policy evaluation.
    Type: Grant
    Filed: June 13, 2022
    Date of Patent: March 5, 2024
    Assignee: Amazon Technologies, Inc.
    Inventors: Gregory Branchek Roth, Daniel Stephen Popick, Derek Avery Lyon, John Michael Morkel, Graeme David Baer, Ajith Harshana Ranabahu, Khaled Salah Sedky
  • Patent number: 11921897
    Abstract: An information processing apparatus which anonymizes data composed of records including one or more items through statistical processing, includes a memory and a processor to execute classifying respective records constituting the data into one or more sets based on masking target items indicating items to be masked among the items, a dictionary which expresses categories of item values in a tree structure for each of the masking target items, a selected hierarchy level indicating a hierarchy level selected in the tree structure for each of the masking target items, and the number of records included in the data, and calculating the number of records N of each set and a ratio of records belonging to a set including N records, and dividing the data into one or more pieces of data in a case where the ratio of the records belonging to the set including N records satisfies a predetermined condition.
    Type: Grant
    Filed: May 21, 2019
    Date of Patent: March 5, 2024
    Assignee: NIPPON TELEGRAPH AND TELEPHONE CORPORATION
    Inventor: Yoshiyuki Mihara
  • Patent number: 11915235
    Abstract: Systems and methods for interoperable network token processing are provided. A network token system provides a platform that can be leveraged by external entities (e.g., third party wallets, e-commerce merchants, payment enablers/payment service providers, etc.) or internal payment processing network systems that have the need to use the tokens to facilitate payment transactions. A token registry vault can provide interfaces for various token requestors (e.g., mobile device, issuers, merchants, mobile wallet providers, etc.), merchants, acquirers, issuers, and payment processing network systems to request generation, use and management of tokens. The network token system further provides services such as card registration, token generation, token issuance, token authentication and activation, token exchange, and token life-cycle management.
    Type: Grant
    Filed: September 14, 2020
    Date of Patent: February 27, 2024
    Assignee: Visa International Service Association
    Inventors: Matthew Dill, Prasanna L. Narayan, Glenn Powell, John Sheets, Andrew Carpenter
  • Patent number: 11895491
    Abstract: A method and system for provisioning access data in a second application on a mobile device using a first application on the mobile device. Authentication data may be input into the first application, and an authentication code may be requested from a remote server. After the authentication code is received by the first application in the mobile device, it can pass the authentication code to a second application that initiates an access data provisioning process.
    Type: Grant
    Filed: August 28, 2020
    Date of Patent: February 6, 2024
    Assignee: Visa International Service Association
    Inventors: Glenn Powell, John F. Sheets
  • Patent number: 11895247
    Abstract: A system and method for a distributed security model that may be used to achieve one or more of the following: authenticate system components; securely transport messages between system components; establish a secure communications channel over a constrained link; authenticate message content; authorize actions; and distribute authorizations and configuration data amongst users' system components in a device-as-a-key system.
    Type: Grant
    Filed: September 2, 2020
    Date of Patent: February 6, 2024
    Assignee: DENSO CORPORATION
    Inventors: Eric John Smith, Raymond Michael Stitt, David Stuckless Meyer, Brian Ensink
  • Patent number: 11895095
    Abstract: The disclosed exemplary embodiments include computer-implemented systems, apparatuses, and processes that, among other things, authenticate device identity and authorize exchanges of data in real-time based on dynamically generated cryptographic data. For example, an apparatus may receive a first signal that includes a first cryptogram associated with a client device, and may perform operations that authenticate an identity of the client device based on a comparison of the received first cryptogram and a second cryptogram generated by a computing system associated with an application program executed by the client device. In response to the authenticated identity, the apparatus may load profile data associated with the client device from a storage unit, and perform operations consistent with the profile data in accordance with the authenticated identity.
    Type: Grant
    Filed: July 21, 2021
    Date of Patent: February 6, 2024
    Assignee: The Toronto-Dominion Bank
    Inventors: Dino Paul D'Agostino, Perry Aaron Jones Haldenby, Dean C. N. Tseretopoulos, Jeffrey Aaron Ecker, Adam Douglas McPhee, Milos Dunjic, John Jong-Suk Lee, Arun Victor Jagga
  • Patent number: 11886571
    Abstract: An entity may generate digital account credentials when a new account is approved for generation by an authorizing entity that controls or issues new accounts. A user may contact an authorizing entity to open a new account with the authorizing entity. The authorizing entity may authenticate the user and may approve a new account to be generated for the user. The user may wish to conduct transactions immediately upon approval. However, the authorizing entity may not immediately generate a physical identification device along with an actual account identifier associated with the new account. An intermediary entity may generate digital account credentials for the new account immediately after the authorizing entity approves generation of the new account, provide the digital account credentials to the account holder, and process transactions using the digital account credentials.
    Type: Grant
    Filed: August 24, 2021
    Date of Patent: January 30, 2024
    Assignee: Visa International Service Association
    Inventors: Shoon Ping Wong, Justin Monk
  • Patent number: 11868278
    Abstract: Embodiments are provided for protecting boot block space in a memory device. Such a memory device may include a memory array having a protected portion and a serial interface controller. The memory device may have a register that enables or disables access to the portion when data indicating whether to enable or disable access to the portion is written into the register via a serial data in (SI) input.
    Type: Grant
    Filed: February 24, 2022
    Date of Patent: January 9, 2024
    Inventor: Theodore T. Pekny
  • Patent number: 11868274
    Abstract: Systems, apparatuses, and methods related to a computer system having a processor and a main memory storing scrambled data are described. The processor may have a secure zone configured to store keys and an unscrambled zone configured to operate on unscrambled data. The processor can convert the scrambled data into the unscrambled data in the unscrambled zone using the keys retrieved from the secure zone in response to execution of instructions configured to operate on the unscrambled data. Another processor may also be coupled with the memory, but can be prevented from accessing the unscrambled data in the unscrambled zone.
    Type: Grant
    Filed: June 8, 2021
    Date of Patent: January 9, 2024
    Assignee: Lodestar Licensing Group LLC
    Inventor: Steven Jeffrey Wallach
  • Patent number: 11863554
    Abstract: Systems and methods as provided herein may create a biometric model associated with a user. The created biometric model may be used to generate challenges that are presented to the user for authentication purposes. A user response to the challenge may be compared to an expected response, and if the user response matches within a predetermined error of the expected response, the user may be authenticated. The systems and methods may further generate challenges that are adaptively designed to address weaknesses or errors in the created model such that the model is more closely associated with a user and the user is more likely to be the only person capable of successfully responding to the generated challenges.
    Type: Grant
    Filed: April 12, 2022
    Date of Patent: January 2, 2024
    Assignee: PayPal, Inc.
    Inventor: Bjorn Markus Jakobsson
  • Patent number: 11853560
    Abstract: Example implementations can involve a system, which can involve a server configured to distribute role decision condition expressions created based on user input to one or more storage devices; and the one or more storage devices, which can involve a processor, configured to, for receipt of a request, determine user identification information, request source environment information and requested contents from the request; determine a role from the role decision condition expressions based on the user identification information and request source environment information; and determine whether or not the request can be executed based on the role.
    Type: Grant
    Filed: August 13, 2021
    Date of Patent: December 26, 2023
    Assignee: HITACHI, LTD.
    Inventor: Hiroyuki Osaki
  • Patent number: 11842296
    Abstract: A method includes receiving a communication identifying a remote database and a first value stored in the remote database that is being transferred to a first entity by a second entity. That first value is capable of being modified by the second entity. Modification of the first value stored in the remote database by the second entity is prevented by identifying an application programming interface allowing operations to be performed on the remote database, and using that API to transfer the first value so as to be associated with one or more other identifiers unknown to the second entity. After modification of the first value stored by the second entity is prevented, a transfer of a second value to a database record associated with the second entity is triggered. Related systems and applications of the method and those systems are also disclosed.
    Type: Grant
    Filed: July 14, 2022
    Date of Patent: December 12, 2023
    Assignee: The Toronto-Dominion Bank
    Inventor: Michael Pronski