Message Digest Travels With Message Patents (Class 713/181)
  • Patent number: 12143504
    Abstract: The present disclosure provides generally for systems and methods of authenticating one or more aspects of electronic communication. According to the present disclosure, authenticable communications may allow for authentication of at least a portion of the content of the electronic communication, which may limit potential damage caused by fraudulent communications. In some aspects, an authenticable communication may allow a recipient to confirm that the indicated source is the actual source of the authenticable communication. In some embodiments, the authentication may not require an exchange of encrypted communications or an exchange of communications solely within the same communication system. Authenticable communications may provide a separate layer of security that may allow a recipient to review the contents with confidence that the communication is not fraudulent. Further, authenticable communications may provide the additional security without requiring specialized software.
    Type: Grant
    Filed: September 21, 2023
    Date of Patent: November 12, 2024
    Inventors: Benjamin Finke, Christopher Freedman
  • Patent number: 12143282
    Abstract: A method and an electronic device for managing network resources among application traffic are provided. The method comprises identifying a real time application that is running on the electronic device and consuming network resources, determining whether the real time application belongs to a prioritized class, based on the real time application belonging to the prioritized class, determining a User Identifier (UID) of the real time application, and prioritizing the network resources for the real time application based on the UID.
    Type: Grant
    Filed: August 26, 2022
    Date of Patent: November 12, 2024
    Assignee: SAMSUNG ELECTRONICS CO., LTD.
    Inventors: Madhan Raj Kanagarathinam, Gunjan Kumar Choudhary, Sunghee Lee, Sujith Rengan Jayaseelan, Sri Vinod Palacharla, Mritunjay Gupta, Ratnakar Rao Venkata Rayavarapu, Prakash Rao, Ramanathan Palaniappan, Siva Sabareesh, Jayendra Reddy Kovvuri, Mohan Rao Goli
  • Patent number: 12143820
    Abstract: A method performed by a wireless device (12) for use in a wireless communication system (10). The method comprises: receiving (W2100) signaling (22) indicating how the wireless device (12) is to generate a message authentication code, MAC, (20) for integrity protecting a Radio Resource Control, RRC, message (18) that 5 requests resumption of an RRC connection; generating (W2110) the MAC according to the signaling; and transmitting (W2120) the RRC message and the generated MAC. Further methods, a wireless devices, network nodes, computer programs, carriers and a communication system are also disclosed.
    Type: Grant
    Filed: November 10, 2020
    Date of Patent: November 12, 2024
    Assignee: Telefonaktiebolaget LM Ericsson (publ)
    Inventors: Icaro Leonardo Da Silva, Prajwol Kumar Nakarmi, Gunnar Mildh, Magnus Stattin
  • Patent number: 12124557
    Abstract: A computer implemented method for validating software is provided. The method includes generating a first check value, by a remote computing device, based on a unique value and software of the remote computing device, outputting the first check value and the unique value from the remote computing device to a secure data repository, obtaining, by a secure computing device, an authentic copy of the software of the remote computing device, obtaining, by the secure computing device, the unique value and the first check value from the secure data repository, computing, by the secure computing device, a second check value based on the authentic copy of the software for the remote computing device and the unique value, and determining, by the secure computing device, whether the remote computing device has authentic software based on a comparison of the obtained first check value and the second check value.
    Type: Grant
    Filed: October 27, 2023
    Date of Patent: October 22, 2024
    Assignee: INTEGRITY SECURITY SERVICES LLC
    Inventors: William L. Lattin, Jimmy R. Upton
  • Patent number: 12086129
    Abstract: Data is handled in a distributed computing environment comprising at least one server and a plurality of clients comprising at least a first client and a second client. The first client sends a first request for data to the second client, receives a first response from the second client as a response to the first quest, determines a probability of validity of the data requested based on a validity indication included in the first response indicating a probability that the data requested from the second client is invalid. The first client determines that the data requested by the first request and available from the second client is likely invalid, sends a second request to the server to obtain the data from the server and receives the data from the server.
    Type: Grant
    Filed: October 3, 2023
    Date of Patent: September 10, 2024
    Assignee: Amadeus S.A.S.
    Inventor: Philippe François Georges Gentric
  • Patent number: 12089288
    Abstract: A method for a system includes receiving with a first transceiver of a first smart device, an advertisement signal from a stationary beacon, outputting with the first transceiver of the first smart device, a first ephemeral ID that is not permanently associated with the first smart device, to the stationary beacon, receiving with the first transceiver of the first smart device, a beacon identifier from a stationary beacon, outputting with a second transceiver of the first smart device, the first ephemeral ID, a first user identifier and the beacon identifier to an authentication service, storing in an association log in the authentication service, the first ephemeral ID, the first user identifier and the beacon identifier, and storing in a beacon log in the authentication service, a log of the stationary beacon including the first ephemeral ID.
    Type: Grant
    Filed: March 24, 2023
    Date of Patent: September 10, 2024
    Assignee: Ouraring, Inc.
    Inventors: Denis Mars, Simon Ratner
  • Patent number: 12061715
    Abstract: Methods, systems, and apparatus, including computer programs encoded on computer storage media, for processing confidential data and confidential programs while providing mutual security to the data and programs. A method includes receiving, from a first system, customer energy data, including data representing energy consumption by a customer; receiving, from a second system, program data representing one or more programs for processing the customer energy data; executing the programs with the customer energy data as input to produce output that includes estimated energy consumption data, while providing security for the program data from access by the first system and any third party and while providing security for the customer energy data and the estimated energy consumption data from access by the second system and any third party; and providing the estimated energy consumption data as output (i) to the first system or (ii) to the customer or (iii) both.
    Type: Grant
    Filed: January 27, 2022
    Date of Patent: August 13, 2024
    Assignee: X Development LLC
    Inventors: Joel Fraser Atwater, Peter Light
  • Patent number: 12056141
    Abstract: Various embodiments provide a tracing system or a tracing method that enables an installed software application to be launched with relevant data regarding a user's activity on the client device before installation of the software application. A tracing system of an embodiment may comprise one or more of a server including a database, a web page module configured to be integrated in a website, and an application module configured to be integrated in a software application.
    Type: Grant
    Filed: August 9, 2017
    Date of Patent: August 6, 2024
    Assignee: Snap Inc.
    Inventor: Nir Daube
  • Patent number: 12034870
    Abstract: Provided is a method for securely diversifying a generic application stored in a secure processor of a terminal, said method comprising: Generating at the request of a manager application hosted in an application processor of said terminal, at the level of a distant server, a server challenge; Sending said server challenge to said application; Generating a first message at said application, said first message being function of said server challenge, an application challenge and an unique identifier of said application; Sending said first message to a Root-Of-Trust service hosted in a secure processor of said terminal, said Root-of-Trust service generating an attestation of said first message, said attestation guaranteeing that said first message has not been modified and originates from said secure processor; and Transmitting said attestation of said first message to said distant server in an enablement request message.
    Type: Grant
    Filed: December 23, 2020
    Date of Patent: July 9, 2024
    Assignee: THALES DIS FRANCE SAS
    Inventors: Guillaume Phan, Emmanuel Lepavec, Nicolas Vienne, Olivier Poncelet, Evangelos Spyropoulos
  • Patent number: 12026772
    Abstract: The disclosed embodiments provide systems and methods for managing a loan application. In one embodiment, a method is disclosed that may include identifying one or more unfulfilled conditions associated with a loan application of a customer and sending, to a customer device, a request for a loan application document based on the identified one or more unfulfilled conditions. The method may also include receiving, from the customer device, a responsive loan application document. The method may also include identifying a document type for the responsive loan application document and confirming that the responsive loan application document is a valid document. Finally, the method may also include sending loan application status information to the customer device based on the confirmation.
    Type: Grant
    Filed: June 9, 2022
    Date of Patent: July 2, 2024
    Assignee: Capital One Services, LLC
    Inventors: Mitchell H. Ruebush, Stephen Payne
  • Patent number: 12026290
    Abstract: In general, embodiments of the present disclosure provide methods, apparatus, systems, computer program products, computing devices, and computing entities for modifying a design of a hardware IP. According to one embodiment, a method is provided, the method including generating a control and data flow graph (CDFG) representation for portions of the design. The method further includes partitioning the CDFG representation into a set of partitioned sub-graphs. The method further includes, for each partitioned sub-graph, generating a merged sub-graph to form a set of merged sub-graphs. Generating the merged sub-graph for each partitioned sub-graph involves generating a container sub-graph and merging the container sub-graph with the partitioned sub-graph to form the merged sub-graph. The container sub-graph may be a modification of the partitioned sub-graph with respect to an identified feature, in some examples.
    Type: Grant
    Filed: January 31, 2022
    Date of Patent: July 2, 2024
    Assignee: University of Florida Research Foundation, Incorporated
    Inventors: Swarup Bhunia, Abdulrahman Alaql
  • Patent number: 12028443
    Abstract: Various systems and methods for establishing security profiles for Internet of Things (IoT) devices and trusted platforms, including in OCF specification device deployments, are discussed herein. In an example, a technique for onboarding a subject device for use with a security profile, includes: receiving a request to perform an owner transfer method of a device associated with a device platform; verifying attestation evidence associated with the subject device, the attestation evidence being signed by a certificate produced using a manufacturer-embedded key, with the key provided from a trusted hardware component of the device platform; and performing device provisioning of the subject device, based on the attestation evidence, as the device provisioning causes the subject device to use a security profile tied to manufacturer-embedded keys.
    Type: Grant
    Filed: September 28, 2018
    Date of Patent: July 2, 2024
    Assignee: Intel Corporation
    Inventors: Eduardo Cabre, Nathan Heldt-Sheller, Ned M. Smith
  • Patent number: 11983301
    Abstract: Systems and methods to implement virtual contactless traffic stops. The systems and methods utilize mobile devices or other computer technology commonly carried by law enforcement officers and civilians for other purposes, and use the imaging and communication capabilities of these devices to authenticate digital copies a legal documents pertaining to the civilian, connect a civilian device and a law enforcement officer device during a traffic stop to facilitate digital document exchange, and to provide for remote interaction during the traffic stop, such as by use of video or text chat.
    Type: Grant
    Filed: June 17, 2021
    Date of Patent: May 14, 2024
    Assignee: Redlin Collective Holdings LLC
    Inventor: Nicole Faren Clines
  • Patent number: 11985104
    Abstract: An electronic messaging system and method with reduced traceability by separation of display of a media component of message content and header information. An electronic message having an identifier of a recipient and a message content including an image media component is received at a server from a sending user device at which a display for associating the media component with the electronic message is provided without displaying the identifier of a recipient with the media component such that a single screen capture of the identifier of a recipient and the media component is prevented. The electronic message including an identifier of a sending user is transmitted to a recipient user device at which a display presenting the media component is provided without displaying the identifier of a sending user such that a single screen capture of both the identifier of a sending user and the media component is prevented.
    Type: Grant
    Filed: May 1, 2023
    Date of Patent: May 14, 2024
    Assignee: Vaporstream, Inc.
    Inventors: Joseph Collins, Amit Jindas Shah
  • Patent number: 11978043
    Abstract: The invention comprises a solution for securing an output (UTXO) in a single blockchain (e.g. Bitcoin) transaction (TX) so that it can only be unlocked by an authorised party at an allowed time, and in accordance with external data supplied to the transaction's locking script. The invention may comprise two steps which are implemented within a redeem script provided within the UTXO's locking script: 1) Calculation of a time-related value (which we will call Tsupplied) using the external data provided; and 2) use of the calculated Tsupplied value in a time lock technique to ensure that unlocking occurs at a time pre-determined time. The invention allows external data to be introduced into the time lock control of a transaction on the blockchain. It also includes a technique for combining absolute and relative time locks (e.g. CLTV and CSV as known in the Bitcoin protocol).
    Type: Grant
    Filed: September 4, 2018
    Date of Patent: May 7, 2024
    Assignee: nChain Licensing AG
    Inventor: Craig Steven Wright
  • Patent number: 11936773
    Abstract: An encryption key management method includes: receiving a data registration request from a supplier terminal, determining a data identifier associated with the content data, encrypting a master key with a public key of the supplier terminal, and providing the supplier terminal with the master key encrypted with the public key of the supplier terminal, the data identifier, and a key update count value; receiving a subscription application related to the data identifier from a first subscriber terminal, encrypting the master key with a public key of the first subscriber terminal, and providing the first subscriber terminal with the master key encrypted with the public key of the first subscriber terminal and the key update count value; receiving encrypted content data encrypted with the symmetric key and a hash for the content data from the supplier terminal; and transmitting the encrypted content data and the hash to the first subscriber terminal.
    Type: Grant
    Filed: November 18, 2021
    Date of Patent: March 19, 2024
    Assignee: Penta Security Inc.
    Inventors: Jin Hyeok Oh, Sang Jun Lee, Myong Cheol Lim, Sang Gyoo Sim, Duk Soo Kim, Seok Woo Lee
  • Patent number: 11934533
    Abstract: The disclosure is directed towards the detection of supply chain-related security threats to software applications. One method includes identifying differences between updated source code and previous source. The updated source code corresponds to an updated version of an application. The previous source code corresponds to a previous version of the application. A risk score is determined for the updated version. The risk score is based on a machine learning (ML) risk model. The ML risk model analyzes the differences between the updated source code and the previous source code. A value of the risk score corresponds to potential security threats that are associated with the updated version. The potential security threats are not associated with the previous version of the application. The risk score is provided to interested parties.
    Type: Grant
    Filed: June 22, 2021
    Date of Patent: March 19, 2024
    Assignee: MICROSOFT TECHNOLOGY LICENSING, LLC
    Inventors: Oron Golan, Adir Atias, Aviad Pines, Aviram Fireberger
  • Patent number: 11909859
    Abstract: Access to blockchain data may be removed by deleting an encryption key held in a remote server. Incoming data is stored in the blockchain after being encrypted at the key server. An ordinary blockchain user gains access to the data, after forwarding the encrypted data to the remote key server for decryption. Upon receipt of an input (e.g., time stamp), the key server deletes the key. Thereafter, the encrypted data on the blockchain is rendered inaccessible to the ordinary blockchain data user. At no point, does the ordinary data user have access to the key stored in the remote server. Embodiments may find particular use in removing access to personal data stored in a blockchain following the elapse of a predetermined amount of time, as may be required by privacy laws. Granular control over data access can may be afforded through the use of composite keys and/or key hierarchies.
    Type: Grant
    Filed: June 2, 2020
    Date of Patent: February 20, 2024
    Assignee: SAP SE
    Inventor: Jan Schrage
  • Patent number: 11900378
    Abstract: Methods and systems for providing merchant in-context checkout are described. A user is authenticated based on credentials received from a first application running on a computing device. An authentication code is provided to the first application. A signed verifier and the authentication code is then received from a second application running on the computing device. The authentication code and the signed verifier received from the second application are then validated, and a device token is provided to the second application upon validation. The device token is exchangeable by the second application for an access token that is usable for making payment calls from the second application.
    Type: Grant
    Filed: September 27, 2021
    Date of Patent: February 13, 2024
    Assignee: PAYPAL, INC.
    Inventors: Darshan Desai, Kishore Jaladi
  • Patent number: 11882102
    Abstract: A base key that is stored at a device may be received. A network identification may further be received. A device identification key may be generated based on a combination of the network identification and the base key. Furthermore, the device identification key may be used to authenticate the device with a network that corresponds to the network identification.
    Type: Grant
    Filed: May 3, 2021
    Date of Patent: January 23, 2024
    Assignee: Cryptography Research, Inc.
    Inventors: Philippe Alain Martineau, Ambuj Kumar, William Craig Rawlings
  • Patent number: 11876917
    Abstract: An interface element connected to a device and a security die-chip are fabricated in a single package. The security die-chip may provide a security authentication function to the interface element that does not have the security authentication function. The security die-chip may include a physically unclonable function (PUF) to provide a private key, and a hardware security module to perform encryption and decryption using the private key.
    Type: Grant
    Filed: February 25, 2021
    Date of Patent: January 16, 2024
    Assignees: ICTK Holdings Co., Ltd., IUCF-HYU (Industry-University Cooperation Foundation Hanyang University)
    Inventors: Dong Kyue Kim, Byong Deok Choi, Kwang Hyun Jee
  • Patent number: 11861372
    Abstract: Examples disclosed herein relate to using an integrity manifest certificate to verify the state of a platform. A device identity of a device that has the device identity provisioned and stored in a security co-processor to retrieve an integrity proof from the security co-processor. The device includes at least one processing element, at least one memory device, and a bus including at least one bus device, and wherein the device identity is associated with a device identity certificate signed by a first authority. The integrity proof includes a representation of each of a plurality of hardware components including the at least one processing element, the at least one memory device, the at least one bus device, and a system board and a representation of plurality of firmware components included in the device. The integrity proof is provided to a certification station.
    Type: Grant
    Filed: May 16, 2022
    Date of Patent: January 2, 2024
    Assignee: Hewlett Packard Enterprise Development LP
    Inventors: Ludovic Emmanuel Paul Noel Jacquin, Nigel John Edwards, Thomas M. Laffey
  • Patent number: 11860999
    Abstract: A TPM with programmable fuses in an SOC includes an on-die RAM storing a blown-fuse count and a TPM state including a PIN-attempt-failure count and a fuse count, read from off-die NV memory. During initialization, if the blown-fuse count is greater than TPM state fuse count, TPM state PIN-attempt-failure count is incremented, thereby thwarting a replay attack. A PIN is received for access, and if the TPM state PIN-attempt-failure count satisfies a policy, a fuse is blown and the blown-fuse count incremented. If the fuse blow fails, TPM activity is halted. If the fuse blow succeeds and the PIN is correct, the TPM state PIN-attempt-failure count is cleared, but if the PIN is incorrect the TPM state PIN-attempt-failure count is incremented. TPM state fuse count is set equal to the blown-fuse count, and the TPM state is saved to off-die NV memory.
    Type: Grant
    Filed: March 31, 2021
    Date of Patent: January 2, 2024
    Assignee: Microsoft Technology Licensing, LLC
    Inventors: Ling Tony Chen, Felix Domke, Ankur Choudhary, Bradley Joseph Litterell
  • Patent number: 11847220
    Abstract: There is disclosed in one example a hardware computing platform, including: a processor; a memory; a network interface; and a security module, including instructions to cause the processor to: receive a request to download a file via the network interface; download a first portion of the file into a buffer of the memory; analyze the first portion for malware characteristics; assign a security classification to the file according to the analysis of the first portion; and act on the security classification.
    Type: Grant
    Filed: February 5, 2021
    Date of Patent: December 19, 2023
    Assignee: McAfee, LLC
    Inventors: Abhishek Tripathi, Mayur Arvind Bhole, Nithya Nadig Shikarpur, Tirumaleswar Reddy Konda, Mayank Bhatnagar
  • Patent number: 11838420
    Abstract: A method to participate in a blockchain-implemented token distribution process is disclosed. The token distribution process divides an initial quantity of tokens at an input address associated with an input node into a plurality of sub-quantities and uses a mixer node to distribute the sub-quantities to multiple output addresses associated with respective output nodes using a blockchain. The token distribution process utilizes a hierarchical token distribution scheme to recruit the mixer node. The hierarchical token distribution scheme involves a first commitment channel (Ui ? Uij) for a first transaction between the upstream node and a recruited mixer node (Uij), and for each of the plurality of downstream nodes, a second commitment channel (Uij ? Uijk) for a second transaction between the mixer node and a selected downstream node, wherein an unlocking script for the first transaction is derived from an unlocking script for any one of the second transactions.
    Type: Grant
    Filed: December 17, 2021
    Date of Patent: December 5, 2023
    Assignee: nChain Licensing AG
    Inventor: Daniel Joseph
  • Patent number: 11829345
    Abstract: Data is handled in a distributed computing environment comprising at least one server and a plurality of clients comprising at least a first client and a second client. The first client sends a first request for data to the second client, receives a first response from the second client as a response to the first quest, determines a probability of validity of the data requested based on a validity indication included in the first response indicating a probability that the data requested from the second client is invalid. The first client determines that the data requested by the first request and available from the second client is likely invalid, sends a second request to the server to obtain the data from the server and receives the data from the server.
    Type: Grant
    Filed: March 4, 2020
    Date of Patent: November 28, 2023
    Assignee: Amadeus S.A.S.
    Inventor: Philippe François Georges Gentric
  • Patent number: 11831781
    Abstract: A device includes a first memory circuit and a processing circuit. The first memory circuit is configured to store first hash data. The processing circuit is coupled to the first memory circuit. The processing circuit is configured to: at least based on a volume of the device, define a size of a distinguishable identification (ID) and a size of second hash data; based on a combination of at least one bit of each of the distinguishable ID and IDs of the device, generate the second hash data; and compare the first hash data with the second hash data, in order to identify whether the device is tampered. A method is also discloses herein.
    Type: Grant
    Filed: March 25, 2021
    Date of Patent: November 28, 2023
    Assignee: TAIWAN SEMICONDUCTOR MANUFACTURING CO., LTD.
    Inventors: Haohua Zhou, Sandeep Kumar Goel
  • Patent number: 11816130
    Abstract: In a computing system, data is ingested into a primary row of shards in a stamp data structure. The stamp data structure includes a primary row of data shards and a set of replica rows of data shards so the data shards are arranged in rows and columns in the stamp structure. The ingested data is replicated from the primary row into the replica rows of data shards. Each of the data shards, in each row, is evaluated to identify a particular data shard in each column of shards to generate a logical row of data shards. Queries against the data shards are serviced from the logical row of data shards. The system dynamically controls expansion and contraction of the number of data shards in a row and of the number of replica rows.
    Type: Grant
    Filed: October 4, 2021
    Date of Patent: November 14, 2023
    Assignee: Microsoft Technology Licensing, LLC
    Inventor: Ahmed Hassan Mohamed
  • Patent number: 11809543
    Abstract: A computer implemented method for validating software is provided. The method includes generating a first check value, by a remote computing device, based on a unique value and software of the remote computing device, outputting the first check value and the unique value from the remote computing device to a secure data repository, obtaining, by a secure computing device, an authentic copy of the software of the remote computing device, obtaining, by the secure computing device, the unique value and the first check value from the secure data repository, computing, by the secure computing device, a second check value based on the authentic copy of the software for the remote computing device and the unique value, and determining, by the secure computing device, whether the remote computing device has authentic software based on a comparison of the obtained first check value and the second check value.
    Type: Grant
    Filed: October 18, 2021
    Date of Patent: November 7, 2023
    Assignee: INTEGRITY SECURITY SERVICES LLC
    Inventors: William L. Lattin, Jimmy R. Upton
  • Patent number: 11811739
    Abstract: Systems and methods for providing access to online content while also securing user confidential information are presented. User confidential information (e.g., user phone number or e-mail address) may be used to authenticate and authorize a client device to access online resources, such as microservices exposed via application programming interfaces (APIs). With the techniques described herein, such user confidential information is protected both in transit over a network connection and while at rest in storage on the client device. This is achieved through the use of an encrypted access token (e.g., a JSON Web Encryption (JWE) token) including the user confidential information in an encrypted form. The client device receives such encrypted access token from an identity provider (IDP) and passes it to a resource server API to access the microservices associated with the API, without the client device decrypting the user confidential information contained therein.
    Type: Grant
    Filed: January 6, 2021
    Date of Patent: November 7, 2023
    Assignee: T-Mobile USA, Inc.
    Inventor: Julianne Fryer
  • Patent number: 11804960
    Abstract: Systems and methods for improved distributed symmetric cryptography are disclosed. A client computer may communicate with a number of cryptographic devices in order to encrypt or decrypt data. Each cryptographic device may possess a secret share and a verification share, which may be used in the process of encrypting or decrypting data. The client computer may generate a commitment and transmit the commitment to the cryptographic devices. Each cryptographic device may generate a partial computation based on the commitment and their respective secret share, and likewise generate a partial signature based on the commitment and their respective verification share. The partial computations and partial signatures may be transmitted to the client computer. The client computer may use the partial computations and partial signatures to generate a cryptographic key and verification signature respectively. The client computer may use the cryptographic key to encrypt or decrypt a message.
    Type: Grant
    Filed: July 25, 2022
    Date of Patent: October 31, 2023
    Assignee: Visa International Service Association
    Inventors: Pratyay Mukherjee, Shashank Agrawal, Peter Rindal, Atul Luykx, Wei Dai
  • Patent number: 11799662
    Abstract: In one embodiment, an apparatus includes a storage element, and a processing element configured to verify an asymmetric digital signature in order to authenticate a data item signed with the asymmetric digital signature, upon successful verification of the asymmetric digital signature, generate a symmetric MAC of the data item and store the symmetric digital in the storage element, and retrieve and verify the symmetric MAC in order to authenticate the data item.
    Type: Grant
    Filed: February 15, 2021
    Date of Patent: October 24, 2023
    Assignee: SONY SEMICONDUCTOR SOLUTIONS CORPORATION
    Inventors: Boaz Shahar, Yehuda Ben Simon, Avishay Sharaga
  • Patent number: 11790055
    Abstract: This application discloses a Docker container based application licensing method, apparatus, device and medium, wherein the method includes identifying a Docker container which is in a startup state, obtaining an image file of the Docker container and obtaining a license file of the Docker container from the image file, and determining whether the Docker container is authorized to be licensed according to the license file. Thus, a problem is solved that a controllable protection cannot be done for a software provider due to replication and abuse of authorization.
    Type: Grant
    Filed: October 29, 2021
    Date of Patent: October 17, 2023
    Assignee: BOE TECHNOLOGY GROUP CO., LTD.
    Inventor: Xinquan Yan
  • Patent number: 11775177
    Abstract: An apparatus (4) comprises memory access circuitry (12) to control access to data stored in a memory; and memory integrity checking circuitry (20) to verify integrity of data stored in the memory, using an integrity tree (26) in which the association between parent and child nodes is provided by a pointer. This helps to reduce the memory footprint of the tree.
    Type: Grant
    Filed: October 17, 2019
    Date of Patent: October 3, 2023
    Assignee: Arm Limited
    Inventors: Yuval Elad, Roberto Avanzi, Jason Parker
  • Patent number: 11736283
    Abstract: A module with an embedded universal integrated circuit card (eUICC) can include a received eUICC profile and a set of cryptographic algorithms. The received eUICC profile can include an initial shared secret key for authentication with a wireless network. The module can receive a key K network token and send a key K module token to the wireless network. The module can use the key K network token, a derived module private key, and a key derivation function to derive a secret shared network key K that supports communication with the wireless network. The wireless network can use the received key K module token, a network private key, and the key derivation function in order to derive the same secret shared network key K derived by the module. The module and the wireless network can subsequently use the mutually derived key K to communicate using traditional wireless network standards.
    Type: Grant
    Filed: June 28, 2021
    Date of Patent: August 22, 2023
    Assignee: Network-1 Technologies, Inc.
    Inventor: John A. Nix
  • Patent number: 11687550
    Abstract: A system converts the data of data objects stored in a DDOS from one data format to another while the system is live and available to process requests for access to the data objects being converted. This process does not require taking the DDOS offline and also does not require locking a data object for the entire conversion of the data object.
    Type: Grant
    Filed: June 16, 2022
    Date of Patent: June 27, 2023
    Assignee: DROPBOX INC.
    Inventors: Ashish Gandhi, Renjish Abraham, Kevin Farrell
  • Patent number: 11689561
    Abstract: Various embodiments discussed herein enable the detection of malicious content. Some embodiments do this by determining a similarity score between content, computer objects, or indications (e.g., vectors, file hashes, file signatures, code, etc.) known to be malicious and other content (e.g., unknown files) or indications based on feature weighting. Over various training stages, certain feature characteristics for each labeled malicious content or indication can be learned. For example, for a first malware family of computer objects, the most prominent feature may be a particular URL, whereas other features change considerably for different iterations of the first malware family of computer objects. Consequently, the particular URL can be weighted to determine a particular output classification corresponding to malicious behavior.
    Type: Grant
    Filed: March 17, 2020
    Date of Patent: June 27, 2023
    Assignee: MICROSOFT TECHNOLOGY LICENSING, LLC
    Inventors: Christian Seifert, Jack Wilson Stokes, III, Kristian Holsheimer
  • Patent number: 11681832
    Abstract: An apparatus may comprise an electronic circuit configured to perform one or more functions or operations, and a memory associated with the electronic circuit. The memory stores a customer-side circuit identification (ID) comprising watermark value combined with a pseudo-random number that is generated as a function of a seed value, wherein the seed value is based on a timestamp generated by computer. An external interface may be coupled to the memory, wherein the external interface provides read-access to the customer-side circuit ID.
    Type: Grant
    Filed: October 14, 2020
    Date of Patent: June 20, 2023
    Assignee: Infineon Technologies AG
    Inventors: Luigi Masala, Alberto Dall'Arche, Adolfo De Cicco
  • Patent number: 11665002
    Abstract: A device receives an access-key package. The access-key package comprises a signature. The device obtains a validation package. The validation package comprises a validation device ID and validation timestamp. The device validates the signature in the access-key package. The device also obtains an updated timestamp. The device then compares the validation timestamp to the updated timestamp.
    Type: Grant
    Filed: December 11, 2020
    Date of Patent: May 30, 2023
    Assignee: International Business Machines Corporation
    Inventors: Adrian C. Gerhard, Matthew Vaught
  • Patent number: 11658831
    Abstract: A computer-implemented method of permitting authentication of data added to an initial plurality of unique data items stored on a computer, all of the data items being converted via a one-way function to respective equal length unique digests (or hashes); and the hashes being stored as a linked dataset in which the value of each successive hash is dependent on the value of the previous hash combined with a new hash resulting from the hashing of the most recently added data. The most recent hash in the linked dataset (hash chain) is the cumulative result of all previous hashes in their original sequence, each hash in the dataset being unique to the most recently added data. Each cumulative hash is constructed by incorporating one or more pre-existing cumulative hashes into the source data, before the new hash is calculated.
    Type: Grant
    Filed: March 30, 2017
    Date of Patent: May 23, 2023
    Assignee: The Ascent Group Ltd
    Inventors: Michael Stuart Jacobs, James Zorab
  • Patent number: 11646985
    Abstract: The present disclosure relates to systems, non-transitory computer-readable media, and methods for dynamically controlling ephemeral messaging threads and ephemeral message duration settings across computing devices while improving security by maintaining end-to-end encryption. In particular, in one or more embodiments, the disclosed systems can transmit encrypted ephemeral messages, including ephemeral message duration settings and ephemeral setting timestamps. The disclosed systems can decrypt received messages on receiving client devices and dynamically apply ephemeral message duration settings to different message threads. For example, the disclosed systems can modify existing duration settings at a receiving client device to match a received ephemeral message duration setting based on determining that the received ephemeral setting timestamp predates an existing setting timestamp.
    Type: Grant
    Filed: September 7, 2021
    Date of Patent: May 9, 2023
    Assignee: WhatsApp LLC
    Inventors: Santiago Pina Ros, Jimmy Enrico Jacques Holzer, Shalini Sah, Elton Kyin-Fong Leong, Dafeng Ou, Christopher Luc, Nurzhan Bakibayev, Zafir Khan
  • Patent number: 11641336
    Abstract: Described herein are systems and methods for host multihoming with no state synchronization between top-of-rack (ToR) switches coupled to multiple hosts. ToR switches of a multi-homing system share a virtual MAC address and respond to Address Resolution Protocol (ARP) requests and/or Neighbor Discovery (ND) solicitations for a default gateway IP address from the host with the virtual MAC address. Ports on a ToR switch may be configured either with a static ARP and/or ND entry, or be configured to learn via a discovery protocol. The lightweight host multihoming system may have modified flooding behavior, ARP/ND handling, and data path forwarding. ARP/ND traffic from a host is processed by a ToR switch, while other multicast traffic may be discarded. Embodiments of the host multihoming system provide a lightweight solution for software implementation with minimal changes imposed on the host or network design.
    Type: Grant
    Filed: May 29, 2020
    Date of Patent: May 2, 2023
    Assignee: DELL PRODUCTS L.P.
    Inventors: Anoop Ghanwani, Anandaraj Maharajan, Phaniraj Vattem
  • Patent number: 11632250
    Abstract: In a distributed system, data is shared between three or more electronic devices. The first device generates and signs an object that includes the data. A second device receives the signed object and determines whether the signed object is valid. If valid, the second device will generate a validated signed object and send it to a third device. The third device will validate the object by determining whether the object includes valid signatures of both the first and second devices.
    Type: Grant
    Filed: February 25, 2021
    Date of Patent: April 18, 2023
    Assignee: Google LLC
    Inventors: Michael Burrows, Himabindu Pucha, Raja Daoud, Jatin Lodhia, Ankur Taly
  • Patent number: 11627487
    Abstract: A method by a wireless transmitting device for distinguishing between a quality of service (QoS) management frame and a non-QoS management frame is described. The method includes generating a frame that includes a frame header, wherein the frame header includes a frame control field, wherein the frame control field includes a partial traffic identifier or subtype (PTID/subtype) subfield, wherein the PTID/subtype subfield indicates whether the frame is a quality of service (QoS) management frame or a non-QoS management frame and transmitting the frame through a wireless medium.
    Type: Grant
    Filed: July 29, 2021
    Date of Patent: April 11, 2023
    Assignee: NEWRACOM, Inc.
    Inventors: Junyoun Won, Yujin Noh, Joonsoo Lee, Hyun Sik Jung, Hyungu Park
  • Patent number: 11625173
    Abstract: A solid state drive (SSD) device includes: non-volatile memory, and volatile memory associated with an SSD device controller. In response to determining that the SSD device is to transition to a power saving mode, information is transferred from the volatile memory to a host memory of a host computer via a communication interface, and the at least some of the volatile memory is transitioned to an OFF state. In response to determining that the SSD device is to transition from the power saving mode to a normal operating mode, the at least some of the volatile memory of the SSD device is transitioned to an ON state in which the at least some of the volatile memory is capable of retaining data, and the information from the host memory is transferred to the volatile memory of the SSD device via the communication interface.
    Type: Grant
    Filed: September 8, 2021
    Date of Patent: April 11, 2023
    Assignee: Marvell Asia Pte Ltd
    Inventor: Christophe Therene
  • Patent number: 11621063
    Abstract: A system for signaling coordinated workers in a common goal through intelligent icons transferred across networks to computer screens. The system can comprise one or more electronic data processors. The system can also include a module configured to execute on the more or more electronic data processors, where the module can be configured to display a plurality of intelligent icons, each containing authorizing information that is retained in a file associated with a authorizing entity on a computer screen. The intelligent icons can be potentially loaned to authorized individuals on a list and used to authenticate users of the system with biometric, image, machine readable codes stored surreptitiously within the intelligent icon. Also, the intelligent icon can be used for friend-foe identification in battlefield and homeland security/border control scenarios.
    Type: Grant
    Filed: November 27, 2020
    Date of Patent: April 4, 2023
    Assignees: The Quantum Group, Inc.
    Inventors: Noel J. Guillama, Chester A. Heath
  • Patent number: 11622257
    Abstract: A method for a system includes receiving with a first transceiver of a first smart device, an advertisement signal from a stationary beacon, outputting with the first transceiver of the first smart device, a first ephemeral ID that is not permanently associated with the first smart device, to the stationary beacon, receiving with the first transceiver of the first smart device, a beacon identifier from a stationary beacon, outputting with a second transceiver of the first smart device, the first ephemeral ID, a first user identifier and the beacon identifier to an authentication service, storing in an association log in the authentication service, the first ephemeral ID, the first user identifier and the beacon identifier, and storing in a beacon log in the authentication service, a log of the stationary beacon including the first ephemeral ID.
    Type: Grant
    Filed: May 20, 2021
    Date of Patent: April 4, 2023
    Assignee: Proxy, Inc.
    Inventors: Denis Mars, Simon Ratner
  • Patent number: 11622030
    Abstract: Data messages such as data packets in an IPv4 or IPv6 format are processed with a view to compression/decompression, using information obtained from sources other than the data packet itself, or the stream to which it belongs. This may involve additional dynamic processing defined in specifications identified by a shared marker, or obtained from an additional data source such as a static file, database application or the like. Embodiments described herein enhance this approach with a dynamic determination of data components.
    Type: Grant
    Filed: March 7, 2022
    Date of Patent: April 4, 2023
    Assignee: ACKLIO
    Inventors: Ana Minaburo, Alexander Pelov
  • Patent number: 11621942
    Abstract: Methods and systems for a device identification system may be provided. The device identification system may determine an identity of a user device associated with a transaction. The identity may be determined by network address information, hard link information, soft link information, and/or other such information. The network address information may include IPv4 information, IPv6 information, a device ID, and/or other such information. The identity of the user device may be determined and a transaction conducted from the user device may be assigned a fraudulent transaction risk score according to the information. Transactions that are determined to be at a high risk of fraud may be reviewed or otherwise flagged and/or canceled.
    Type: Grant
    Filed: December 10, 2020
    Date of Patent: April 4, 2023
    Assignee: PAYPAL, INC.
    Inventors: Zahid Nasiruddin Shaikh, Srivathsan Narasimhan
  • Patent number: 11611875
    Abstract: Authentication with security in wireless networks may be provided. A first confirm message comprising a first send-confirm element and a first confirm element may be received. Next, an Authenticator Number Used Once (ANonce) may be generated and a second confirm message may be sent comprising the ANonce, a second send-confirm element, and a second confirm element. Then an association request may be received comprising a Supplicant Number Used Once (SNonce) and a Message Integrity Code (MIC). An association response may be sent comprising an encrypted Group Temporal Key (GTK), an encrypted Integrity Group Temporal Key (IGTK), the ANonce, and the MIC. An acknowledgment may be received comprising the MIC in an Extensible Authentication Protocol (EAP) over LAN (EAPoL) key frame and a controller port may be unblocked in response to receiving the acknowledgment.
    Type: Grant
    Filed: March 17, 2021
    Date of Patent: March 21, 2023
    Assignee: Cisco Technology, Inc.
    Inventors: Abhishek Dhammawat, Mansi Jain