Message Digest Travels With Message Patents (Class 713/181)
-
Patent number: 12143504Abstract: The present disclosure provides generally for systems and methods of authenticating one or more aspects of electronic communication. According to the present disclosure, authenticable communications may allow for authentication of at least a portion of the content of the electronic communication, which may limit potential damage caused by fraudulent communications. In some aspects, an authenticable communication may allow a recipient to confirm that the indicated source is the actual source of the authenticable communication. In some embodiments, the authentication may not require an exchange of encrypted communications or an exchange of communications solely within the same communication system. Authenticable communications may provide a separate layer of security that may allow a recipient to review the contents with confidence that the communication is not fraudulent. Further, authenticable communications may provide the additional security without requiring specialized software.Type: GrantFiled: September 21, 2023Date of Patent: November 12, 2024Inventors: Benjamin Finke, Christopher Freedman
-
Patent number: 12143282Abstract: A method and an electronic device for managing network resources among application traffic are provided. The method comprises identifying a real time application that is running on the electronic device and consuming network resources, determining whether the real time application belongs to a prioritized class, based on the real time application belonging to the prioritized class, determining a User Identifier (UID) of the real time application, and prioritizing the network resources for the real time application based on the UID.Type: GrantFiled: August 26, 2022Date of Patent: November 12, 2024Assignee: SAMSUNG ELECTRONICS CO., LTD.Inventors: Madhan Raj Kanagarathinam, Gunjan Kumar Choudhary, Sunghee Lee, Sujith Rengan Jayaseelan, Sri Vinod Palacharla, Mritunjay Gupta, Ratnakar Rao Venkata Rayavarapu, Prakash Rao, Ramanathan Palaniappan, Siva Sabareesh, Jayendra Reddy Kovvuri, Mohan Rao Goli
-
Patent number: 12143820Abstract: A method performed by a wireless device (12) for use in a wireless communication system (10). The method comprises: receiving (W2100) signaling (22) indicating how the wireless device (12) is to generate a message authentication code, MAC, (20) for integrity protecting a Radio Resource Control, RRC, message (18) that 5 requests resumption of an RRC connection; generating (W2110) the MAC according to the signaling; and transmitting (W2120) the RRC message and the generated MAC. Further methods, a wireless devices, network nodes, computer programs, carriers and a communication system are also disclosed.Type: GrantFiled: November 10, 2020Date of Patent: November 12, 2024Assignee: Telefonaktiebolaget LM Ericsson (publ)Inventors: Icaro Leonardo Da Silva, Prajwol Kumar Nakarmi, Gunnar Mildh, Magnus Stattin
-
Patent number: 12124557Abstract: A computer implemented method for validating software is provided. The method includes generating a first check value, by a remote computing device, based on a unique value and software of the remote computing device, outputting the first check value and the unique value from the remote computing device to a secure data repository, obtaining, by a secure computing device, an authentic copy of the software of the remote computing device, obtaining, by the secure computing device, the unique value and the first check value from the secure data repository, computing, by the secure computing device, a second check value based on the authentic copy of the software for the remote computing device and the unique value, and determining, by the secure computing device, whether the remote computing device has authentic software based on a comparison of the obtained first check value and the second check value.Type: GrantFiled: October 27, 2023Date of Patent: October 22, 2024Assignee: INTEGRITY SECURITY SERVICES LLCInventors: William L. Lattin, Jimmy R. Upton
-
Patent number: 12086129Abstract: Data is handled in a distributed computing environment comprising at least one server and a plurality of clients comprising at least a first client and a second client. The first client sends a first request for data to the second client, receives a first response from the second client as a response to the first quest, determines a probability of validity of the data requested based on a validity indication included in the first response indicating a probability that the data requested from the second client is invalid. The first client determines that the data requested by the first request and available from the second client is likely invalid, sends a second request to the server to obtain the data from the server and receives the data from the server.Type: GrantFiled: October 3, 2023Date of Patent: September 10, 2024Assignee: Amadeus S.A.S.Inventor: Philippe François Georges Gentric
-
Patent number: 12089288Abstract: A method for a system includes receiving with a first transceiver of a first smart device, an advertisement signal from a stationary beacon, outputting with the first transceiver of the first smart device, a first ephemeral ID that is not permanently associated with the first smart device, to the stationary beacon, receiving with the first transceiver of the first smart device, a beacon identifier from a stationary beacon, outputting with a second transceiver of the first smart device, the first ephemeral ID, a first user identifier and the beacon identifier to an authentication service, storing in an association log in the authentication service, the first ephemeral ID, the first user identifier and the beacon identifier, and storing in a beacon log in the authentication service, a log of the stationary beacon including the first ephemeral ID.Type: GrantFiled: March 24, 2023Date of Patent: September 10, 2024Assignee: Ouraring, Inc.Inventors: Denis Mars, Simon Ratner
-
Patent number: 12061715Abstract: Methods, systems, and apparatus, including computer programs encoded on computer storage media, for processing confidential data and confidential programs while providing mutual security to the data and programs. A method includes receiving, from a first system, customer energy data, including data representing energy consumption by a customer; receiving, from a second system, program data representing one or more programs for processing the customer energy data; executing the programs with the customer energy data as input to produce output that includes estimated energy consumption data, while providing security for the program data from access by the first system and any third party and while providing security for the customer energy data and the estimated energy consumption data from access by the second system and any third party; and providing the estimated energy consumption data as output (i) to the first system or (ii) to the customer or (iii) both.Type: GrantFiled: January 27, 2022Date of Patent: August 13, 2024Assignee: X Development LLCInventors: Joel Fraser Atwater, Peter Light
-
Patent number: 12056141Abstract: Various embodiments provide a tracing system or a tracing method that enables an installed software application to be launched with relevant data regarding a user's activity on the client device before installation of the software application. A tracing system of an embodiment may comprise one or more of a server including a database, a web page module configured to be integrated in a website, and an application module configured to be integrated in a software application.Type: GrantFiled: August 9, 2017Date of Patent: August 6, 2024Assignee: Snap Inc.Inventor: Nir Daube
-
Patent number: 12034870Abstract: Provided is a method for securely diversifying a generic application stored in a secure processor of a terminal, said method comprising: Generating at the request of a manager application hosted in an application processor of said terminal, at the level of a distant server, a server challenge; Sending said server challenge to said application; Generating a first message at said application, said first message being function of said server challenge, an application challenge and an unique identifier of said application; Sending said first message to a Root-Of-Trust service hosted in a secure processor of said terminal, said Root-of-Trust service generating an attestation of said first message, said attestation guaranteeing that said first message has not been modified and originates from said secure processor; and Transmitting said attestation of said first message to said distant server in an enablement request message.Type: GrantFiled: December 23, 2020Date of Patent: July 9, 2024Assignee: THALES DIS FRANCE SASInventors: Guillaume Phan, Emmanuel Lepavec, Nicolas Vienne, Olivier Poncelet, Evangelos Spyropoulos
-
Patent number: 12026772Abstract: The disclosed embodiments provide systems and methods for managing a loan application. In one embodiment, a method is disclosed that may include identifying one or more unfulfilled conditions associated with a loan application of a customer and sending, to a customer device, a request for a loan application document based on the identified one or more unfulfilled conditions. The method may also include receiving, from the customer device, a responsive loan application document. The method may also include identifying a document type for the responsive loan application document and confirming that the responsive loan application document is a valid document. Finally, the method may also include sending loan application status information to the customer device based on the confirmation.Type: GrantFiled: June 9, 2022Date of Patent: July 2, 2024Assignee: Capital One Services, LLCInventors: Mitchell H. Ruebush, Stephen Payne
-
Patent number: 12026290Abstract: In general, embodiments of the present disclosure provide methods, apparatus, systems, computer program products, computing devices, and computing entities for modifying a design of a hardware IP. According to one embodiment, a method is provided, the method including generating a control and data flow graph (CDFG) representation for portions of the design. The method further includes partitioning the CDFG representation into a set of partitioned sub-graphs. The method further includes, for each partitioned sub-graph, generating a merged sub-graph to form a set of merged sub-graphs. Generating the merged sub-graph for each partitioned sub-graph involves generating a container sub-graph and merging the container sub-graph with the partitioned sub-graph to form the merged sub-graph. The container sub-graph may be a modification of the partitioned sub-graph with respect to an identified feature, in some examples.Type: GrantFiled: January 31, 2022Date of Patent: July 2, 2024Assignee: University of Florida Research Foundation, IncorporatedInventors: Swarup Bhunia, Abdulrahman Alaql
-
Patent number: 12028443Abstract: Various systems and methods for establishing security profiles for Internet of Things (IoT) devices and trusted platforms, including in OCF specification device deployments, are discussed herein. In an example, a technique for onboarding a subject device for use with a security profile, includes: receiving a request to perform an owner transfer method of a device associated with a device platform; verifying attestation evidence associated with the subject device, the attestation evidence being signed by a certificate produced using a manufacturer-embedded key, with the key provided from a trusted hardware component of the device platform; and performing device provisioning of the subject device, based on the attestation evidence, as the device provisioning causes the subject device to use a security profile tied to manufacturer-embedded keys.Type: GrantFiled: September 28, 2018Date of Patent: July 2, 2024Assignee: Intel CorporationInventors: Eduardo Cabre, Nathan Heldt-Sheller, Ned M. Smith
-
Patent number: 11983301Abstract: Systems and methods to implement virtual contactless traffic stops. The systems and methods utilize mobile devices or other computer technology commonly carried by law enforcement officers and civilians for other purposes, and use the imaging and communication capabilities of these devices to authenticate digital copies a legal documents pertaining to the civilian, connect a civilian device and a law enforcement officer device during a traffic stop to facilitate digital document exchange, and to provide for remote interaction during the traffic stop, such as by use of video or text chat.Type: GrantFiled: June 17, 2021Date of Patent: May 14, 2024Assignee: Redlin Collective Holdings LLCInventor: Nicole Faren Clines
-
Patent number: 11985104Abstract: An electronic messaging system and method with reduced traceability by separation of display of a media component of message content and header information. An electronic message having an identifier of a recipient and a message content including an image media component is received at a server from a sending user device at which a display for associating the media component with the electronic message is provided without displaying the identifier of a recipient with the media component such that a single screen capture of the identifier of a recipient and the media component is prevented. The electronic message including an identifier of a sending user is transmitted to a recipient user device at which a display presenting the media component is provided without displaying the identifier of a sending user such that a single screen capture of both the identifier of a sending user and the media component is prevented.Type: GrantFiled: May 1, 2023Date of Patent: May 14, 2024Assignee: Vaporstream, Inc.Inventors: Joseph Collins, Amit Jindas Shah
-
Patent number: 11978043Abstract: The invention comprises a solution for securing an output (UTXO) in a single blockchain (e.g. Bitcoin) transaction (TX) so that it can only be unlocked by an authorised party at an allowed time, and in accordance with external data supplied to the transaction's locking script. The invention may comprise two steps which are implemented within a redeem script provided within the UTXO's locking script: 1) Calculation of a time-related value (which we will call Tsupplied) using the external data provided; and 2) use of the calculated Tsupplied value in a time lock technique to ensure that unlocking occurs at a time pre-determined time. The invention allows external data to be introduced into the time lock control of a transaction on the blockchain. It also includes a technique for combining absolute and relative time locks (e.g. CLTV and CSV as known in the Bitcoin protocol).Type: GrantFiled: September 4, 2018Date of Patent: May 7, 2024Assignee: nChain Licensing AGInventor: Craig Steven Wright
-
Patent number: 11936773Abstract: An encryption key management method includes: receiving a data registration request from a supplier terminal, determining a data identifier associated with the content data, encrypting a master key with a public key of the supplier terminal, and providing the supplier terminal with the master key encrypted with the public key of the supplier terminal, the data identifier, and a key update count value; receiving a subscription application related to the data identifier from a first subscriber terminal, encrypting the master key with a public key of the first subscriber terminal, and providing the first subscriber terminal with the master key encrypted with the public key of the first subscriber terminal and the key update count value; receiving encrypted content data encrypted with the symmetric key and a hash for the content data from the supplier terminal; and transmitting the encrypted content data and the hash to the first subscriber terminal.Type: GrantFiled: November 18, 2021Date of Patent: March 19, 2024Assignee: Penta Security Inc.Inventors: Jin Hyeok Oh, Sang Jun Lee, Myong Cheol Lim, Sang Gyoo Sim, Duk Soo Kim, Seok Woo Lee
-
Patent number: 11934533Abstract: The disclosure is directed towards the detection of supply chain-related security threats to software applications. One method includes identifying differences between updated source code and previous source. The updated source code corresponds to an updated version of an application. The previous source code corresponds to a previous version of the application. A risk score is determined for the updated version. The risk score is based on a machine learning (ML) risk model. The ML risk model analyzes the differences between the updated source code and the previous source code. A value of the risk score corresponds to potential security threats that are associated with the updated version. The potential security threats are not associated with the previous version of the application. The risk score is provided to interested parties.Type: GrantFiled: June 22, 2021Date of Patent: March 19, 2024Assignee: MICROSOFT TECHNOLOGY LICENSING, LLCInventors: Oron Golan, Adir Atias, Aviad Pines, Aviram Fireberger
-
Patent number: 11909859Abstract: Access to blockchain data may be removed by deleting an encryption key held in a remote server. Incoming data is stored in the blockchain after being encrypted at the key server. An ordinary blockchain user gains access to the data, after forwarding the encrypted data to the remote key server for decryption. Upon receipt of an input (e.g., time stamp), the key server deletes the key. Thereafter, the encrypted data on the blockchain is rendered inaccessible to the ordinary blockchain data user. At no point, does the ordinary data user have access to the key stored in the remote server. Embodiments may find particular use in removing access to personal data stored in a blockchain following the elapse of a predetermined amount of time, as may be required by privacy laws. Granular control over data access can may be afforded through the use of composite keys and/or key hierarchies.Type: GrantFiled: June 2, 2020Date of Patent: February 20, 2024Assignee: SAP SEInventor: Jan Schrage
-
Patent number: 11900378Abstract: Methods and systems for providing merchant in-context checkout are described. A user is authenticated based on credentials received from a first application running on a computing device. An authentication code is provided to the first application. A signed verifier and the authentication code is then received from a second application running on the computing device. The authentication code and the signed verifier received from the second application are then validated, and a device token is provided to the second application upon validation. The device token is exchangeable by the second application for an access token that is usable for making payment calls from the second application.Type: GrantFiled: September 27, 2021Date of Patent: February 13, 2024Assignee: PAYPAL, INC.Inventors: Darshan Desai, Kishore Jaladi
-
Patent number: 11882102Abstract: A base key that is stored at a device may be received. A network identification may further be received. A device identification key may be generated based on a combination of the network identification and the base key. Furthermore, the device identification key may be used to authenticate the device with a network that corresponds to the network identification.Type: GrantFiled: May 3, 2021Date of Patent: January 23, 2024Assignee: Cryptography Research, Inc.Inventors: Philippe Alain Martineau, Ambuj Kumar, William Craig Rawlings
-
Patent number: 11876917Abstract: An interface element connected to a device and a security die-chip are fabricated in a single package. The security die-chip may provide a security authentication function to the interface element that does not have the security authentication function. The security die-chip may include a physically unclonable function (PUF) to provide a private key, and a hardware security module to perform encryption and decryption using the private key.Type: GrantFiled: February 25, 2021Date of Patent: January 16, 2024Assignees: ICTK Holdings Co., Ltd., IUCF-HYU (Industry-University Cooperation Foundation Hanyang University)Inventors: Dong Kyue Kim, Byong Deok Choi, Kwang Hyun Jee
-
Patent number: 11861372Abstract: Examples disclosed herein relate to using an integrity manifest certificate to verify the state of a platform. A device identity of a device that has the device identity provisioned and stored in a security co-processor to retrieve an integrity proof from the security co-processor. The device includes at least one processing element, at least one memory device, and a bus including at least one bus device, and wherein the device identity is associated with a device identity certificate signed by a first authority. The integrity proof includes a representation of each of a plurality of hardware components including the at least one processing element, the at least one memory device, the at least one bus device, and a system board and a representation of plurality of firmware components included in the device. The integrity proof is provided to a certification station.Type: GrantFiled: May 16, 2022Date of Patent: January 2, 2024Assignee: Hewlett Packard Enterprise Development LPInventors: Ludovic Emmanuel Paul Noel Jacquin, Nigel John Edwards, Thomas M. Laffey
-
Patent number: 11860999Abstract: A TPM with programmable fuses in an SOC includes an on-die RAM storing a blown-fuse count and a TPM state including a PIN-attempt-failure count and a fuse count, read from off-die NV memory. During initialization, if the blown-fuse count is greater than TPM state fuse count, TPM state PIN-attempt-failure count is incremented, thereby thwarting a replay attack. A PIN is received for access, and if the TPM state PIN-attempt-failure count satisfies a policy, a fuse is blown and the blown-fuse count incremented. If the fuse blow fails, TPM activity is halted. If the fuse blow succeeds and the PIN is correct, the TPM state PIN-attempt-failure count is cleared, but if the PIN is incorrect the TPM state PIN-attempt-failure count is incremented. TPM state fuse count is set equal to the blown-fuse count, and the TPM state is saved to off-die NV memory.Type: GrantFiled: March 31, 2021Date of Patent: January 2, 2024Assignee: Microsoft Technology Licensing, LLCInventors: Ling Tony Chen, Felix Domke, Ankur Choudhary, Bradley Joseph Litterell
-
Patent number: 11847220Abstract: There is disclosed in one example a hardware computing platform, including: a processor; a memory; a network interface; and a security module, including instructions to cause the processor to: receive a request to download a file via the network interface; download a first portion of the file into a buffer of the memory; analyze the first portion for malware characteristics; assign a security classification to the file according to the analysis of the first portion; and act on the security classification.Type: GrantFiled: February 5, 2021Date of Patent: December 19, 2023Assignee: McAfee, LLCInventors: Abhishek Tripathi, Mayur Arvind Bhole, Nithya Nadig Shikarpur, Tirumaleswar Reddy Konda, Mayank Bhatnagar
-
Patent number: 11838420Abstract: A method to participate in a blockchain-implemented token distribution process is disclosed. The token distribution process divides an initial quantity of tokens at an input address associated with an input node into a plurality of sub-quantities and uses a mixer node to distribute the sub-quantities to multiple output addresses associated with respective output nodes using a blockchain. The token distribution process utilizes a hierarchical token distribution scheme to recruit the mixer node. The hierarchical token distribution scheme involves a first commitment channel (Ui ? Uij) for a first transaction between the upstream node and a recruited mixer node (Uij), and for each of the plurality of downstream nodes, a second commitment channel (Uij ? Uijk) for a second transaction between the mixer node and a selected downstream node, wherein an unlocking script for the first transaction is derived from an unlocking script for any one of the second transactions.Type: GrantFiled: December 17, 2021Date of Patent: December 5, 2023Assignee: nChain Licensing AGInventor: Daniel Joseph
-
Patent number: 11829345Abstract: Data is handled in a distributed computing environment comprising at least one server and a plurality of clients comprising at least a first client and a second client. The first client sends a first request for data to the second client, receives a first response from the second client as a response to the first quest, determines a probability of validity of the data requested based on a validity indication included in the first response indicating a probability that the data requested from the second client is invalid. The first client determines that the data requested by the first request and available from the second client is likely invalid, sends a second request to the server to obtain the data from the server and receives the data from the server.Type: GrantFiled: March 4, 2020Date of Patent: November 28, 2023Assignee: Amadeus S.A.S.Inventor: Philippe François Georges Gentric
-
Patent number: 11831781Abstract: A device includes a first memory circuit and a processing circuit. The first memory circuit is configured to store first hash data. The processing circuit is coupled to the first memory circuit. The processing circuit is configured to: at least based on a volume of the device, define a size of a distinguishable identification (ID) and a size of second hash data; based on a combination of at least one bit of each of the distinguishable ID and IDs of the device, generate the second hash data; and compare the first hash data with the second hash data, in order to identify whether the device is tampered. A method is also discloses herein.Type: GrantFiled: March 25, 2021Date of Patent: November 28, 2023Assignee: TAIWAN SEMICONDUCTOR MANUFACTURING CO., LTD.Inventors: Haohua Zhou, Sandeep Kumar Goel
-
Patent number: 11816130Abstract: In a computing system, data is ingested into a primary row of shards in a stamp data structure. The stamp data structure includes a primary row of data shards and a set of replica rows of data shards so the data shards are arranged in rows and columns in the stamp structure. The ingested data is replicated from the primary row into the replica rows of data shards. Each of the data shards, in each row, is evaluated to identify a particular data shard in each column of shards to generate a logical row of data shards. Queries against the data shards are serviced from the logical row of data shards. The system dynamically controls expansion and contraction of the number of data shards in a row and of the number of replica rows.Type: GrantFiled: October 4, 2021Date of Patent: November 14, 2023Assignee: Microsoft Technology Licensing, LLCInventor: Ahmed Hassan Mohamed
-
Patent number: 11809543Abstract: A computer implemented method for validating software is provided. The method includes generating a first check value, by a remote computing device, based on a unique value and software of the remote computing device, outputting the first check value and the unique value from the remote computing device to a secure data repository, obtaining, by a secure computing device, an authentic copy of the software of the remote computing device, obtaining, by the secure computing device, the unique value and the first check value from the secure data repository, computing, by the secure computing device, a second check value based on the authentic copy of the software for the remote computing device and the unique value, and determining, by the secure computing device, whether the remote computing device has authentic software based on a comparison of the obtained first check value and the second check value.Type: GrantFiled: October 18, 2021Date of Patent: November 7, 2023Assignee: INTEGRITY SECURITY SERVICES LLCInventors: William L. Lattin, Jimmy R. Upton
-
Patent number: 11811739Abstract: Systems and methods for providing access to online content while also securing user confidential information are presented. User confidential information (e.g., user phone number or e-mail address) may be used to authenticate and authorize a client device to access online resources, such as microservices exposed via application programming interfaces (APIs). With the techniques described herein, such user confidential information is protected both in transit over a network connection and while at rest in storage on the client device. This is achieved through the use of an encrypted access token (e.g., a JSON Web Encryption (JWE) token) including the user confidential information in an encrypted form. The client device receives such encrypted access token from an identity provider (IDP) and passes it to a resource server API to access the microservices associated with the API, without the client device decrypting the user confidential information contained therein.Type: GrantFiled: January 6, 2021Date of Patent: November 7, 2023Assignee: T-Mobile USA, Inc.Inventor: Julianne Fryer
-
Patent number: 11804960Abstract: Systems and methods for improved distributed symmetric cryptography are disclosed. A client computer may communicate with a number of cryptographic devices in order to encrypt or decrypt data. Each cryptographic device may possess a secret share and a verification share, which may be used in the process of encrypting or decrypting data. The client computer may generate a commitment and transmit the commitment to the cryptographic devices. Each cryptographic device may generate a partial computation based on the commitment and their respective secret share, and likewise generate a partial signature based on the commitment and their respective verification share. The partial computations and partial signatures may be transmitted to the client computer. The client computer may use the partial computations and partial signatures to generate a cryptographic key and verification signature respectively. The client computer may use the cryptographic key to encrypt or decrypt a message.Type: GrantFiled: July 25, 2022Date of Patent: October 31, 2023Assignee: Visa International Service AssociationInventors: Pratyay Mukherjee, Shashank Agrawal, Peter Rindal, Atul Luykx, Wei Dai
-
Patent number: 11799662Abstract: In one embodiment, an apparatus includes a storage element, and a processing element configured to verify an asymmetric digital signature in order to authenticate a data item signed with the asymmetric digital signature, upon successful verification of the asymmetric digital signature, generate a symmetric MAC of the data item and store the symmetric digital in the storage element, and retrieve and verify the symmetric MAC in order to authenticate the data item.Type: GrantFiled: February 15, 2021Date of Patent: October 24, 2023Assignee: SONY SEMICONDUCTOR SOLUTIONS CORPORATIONInventors: Boaz Shahar, Yehuda Ben Simon, Avishay Sharaga
-
Patent number: 11790055Abstract: This application discloses a Docker container based application licensing method, apparatus, device and medium, wherein the method includes identifying a Docker container which is in a startup state, obtaining an image file of the Docker container and obtaining a license file of the Docker container from the image file, and determining whether the Docker container is authorized to be licensed according to the license file. Thus, a problem is solved that a controllable protection cannot be done for a software provider due to replication and abuse of authorization.Type: GrantFiled: October 29, 2021Date of Patent: October 17, 2023Assignee: BOE TECHNOLOGY GROUP CO., LTD.Inventor: Xinquan Yan
-
Patent number: 11775177Abstract: An apparatus (4) comprises memory access circuitry (12) to control access to data stored in a memory; and memory integrity checking circuitry (20) to verify integrity of data stored in the memory, using an integrity tree (26) in which the association between parent and child nodes is provided by a pointer. This helps to reduce the memory footprint of the tree.Type: GrantFiled: October 17, 2019Date of Patent: October 3, 2023Assignee: Arm LimitedInventors: Yuval Elad, Roberto Avanzi, Jason Parker
-
Patent number: 11736283Abstract: A module with an embedded universal integrated circuit card (eUICC) can include a received eUICC profile and a set of cryptographic algorithms. The received eUICC profile can include an initial shared secret key for authentication with a wireless network. The module can receive a key K network token and send a key K module token to the wireless network. The module can use the key K network token, a derived module private key, and a key derivation function to derive a secret shared network key K that supports communication with the wireless network. The wireless network can use the received key K module token, a network private key, and the key derivation function in order to derive the same secret shared network key K derived by the module. The module and the wireless network can subsequently use the mutually derived key K to communicate using traditional wireless network standards.Type: GrantFiled: June 28, 2021Date of Patent: August 22, 2023Assignee: Network-1 Technologies, Inc.Inventor: John A. Nix
-
Patent number: 11687550Abstract: A system converts the data of data objects stored in a DDOS from one data format to another while the system is live and available to process requests for access to the data objects being converted. This process does not require taking the DDOS offline and also does not require locking a data object for the entire conversion of the data object.Type: GrantFiled: June 16, 2022Date of Patent: June 27, 2023Assignee: DROPBOX INC.Inventors: Ashish Gandhi, Renjish Abraham, Kevin Farrell
-
Patent number: 11689561Abstract: Various embodiments discussed herein enable the detection of malicious content. Some embodiments do this by determining a similarity score between content, computer objects, or indications (e.g., vectors, file hashes, file signatures, code, etc.) known to be malicious and other content (e.g., unknown files) or indications based on feature weighting. Over various training stages, certain feature characteristics for each labeled malicious content or indication can be learned. For example, for a first malware family of computer objects, the most prominent feature may be a particular URL, whereas other features change considerably for different iterations of the first malware family of computer objects. Consequently, the particular URL can be weighted to determine a particular output classification corresponding to malicious behavior.Type: GrantFiled: March 17, 2020Date of Patent: June 27, 2023Assignee: MICROSOFT TECHNOLOGY LICENSING, LLCInventors: Christian Seifert, Jack Wilson Stokes, III, Kristian Holsheimer
-
Electronic circuit identification (ID) techniques using both a client-side ID and a supplier-side ID
Patent number: 11681832Abstract: An apparatus may comprise an electronic circuit configured to perform one or more functions or operations, and a memory associated with the electronic circuit. The memory stores a customer-side circuit identification (ID) comprising watermark value combined with a pseudo-random number that is generated as a function of a seed value, wherein the seed value is based on a timestamp generated by computer. An external interface may be coupled to the memory, wherein the external interface provides read-access to the customer-side circuit ID.Type: GrantFiled: October 14, 2020Date of Patent: June 20, 2023Assignee: Infineon Technologies AGInventors: Luigi Masala, Alberto Dall'Arche, Adolfo De Cicco -
Patent number: 11665002Abstract: A device receives an access-key package. The access-key package comprises a signature. The device obtains a validation package. The validation package comprises a validation device ID and validation timestamp. The device validates the signature in the access-key package. The device also obtains an updated timestamp. The device then compares the validation timestamp to the updated timestamp.Type: GrantFiled: December 11, 2020Date of Patent: May 30, 2023Assignee: International Business Machines CorporationInventors: Adrian C. Gerhard, Matthew Vaught
-
Patent number: 11658831Abstract: A computer-implemented method of permitting authentication of data added to an initial plurality of unique data items stored on a computer, all of the data items being converted via a one-way function to respective equal length unique digests (or hashes); and the hashes being stored as a linked dataset in which the value of each successive hash is dependent on the value of the previous hash combined with a new hash resulting from the hashing of the most recently added data. The most recent hash in the linked dataset (hash chain) is the cumulative result of all previous hashes in their original sequence, each hash in the dataset being unique to the most recently added data. Each cumulative hash is constructed by incorporating one or more pre-existing cumulative hashes into the source data, before the new hash is calculated.Type: GrantFiled: March 30, 2017Date of Patent: May 23, 2023Assignee: The Ascent Group LtdInventors: Michael Stuart Jacobs, James Zorab
-
Patent number: 11646985Abstract: The present disclosure relates to systems, non-transitory computer-readable media, and methods for dynamically controlling ephemeral messaging threads and ephemeral message duration settings across computing devices while improving security by maintaining end-to-end encryption. In particular, in one or more embodiments, the disclosed systems can transmit encrypted ephemeral messages, including ephemeral message duration settings and ephemeral setting timestamps. The disclosed systems can decrypt received messages on receiving client devices and dynamically apply ephemeral message duration settings to different message threads. For example, the disclosed systems can modify existing duration settings at a receiving client device to match a received ephemeral message duration setting based on determining that the received ephemeral setting timestamp predates an existing setting timestamp.Type: GrantFiled: September 7, 2021Date of Patent: May 9, 2023Assignee: WhatsApp LLCInventors: Santiago Pina Ros, Jimmy Enrico Jacques Holzer, Shalini Sah, Elton Kyin-Fong Leong, Dafeng Ou, Christopher Luc, Nurzhan Bakibayev, Zafir Khan
-
Patent number: 11641336Abstract: Described herein are systems and methods for host multihoming with no state synchronization between top-of-rack (ToR) switches coupled to multiple hosts. ToR switches of a multi-homing system share a virtual MAC address and respond to Address Resolution Protocol (ARP) requests and/or Neighbor Discovery (ND) solicitations for a default gateway IP address from the host with the virtual MAC address. Ports on a ToR switch may be configured either with a static ARP and/or ND entry, or be configured to learn via a discovery protocol. The lightweight host multihoming system may have modified flooding behavior, ARP/ND handling, and data path forwarding. ARP/ND traffic from a host is processed by a ToR switch, while other multicast traffic may be discarded. Embodiments of the host multihoming system provide a lightweight solution for software implementation with minimal changes imposed on the host or network design.Type: GrantFiled: May 29, 2020Date of Patent: May 2, 2023Assignee: DELL PRODUCTS L.P.Inventors: Anoop Ghanwani, Anandaraj Maharajan, Phaniraj Vattem
-
Patent number: 11632250Abstract: In a distributed system, data is shared between three or more electronic devices. The first device generates and signs an object that includes the data. A second device receives the signed object and determines whether the signed object is valid. If valid, the second device will generate a validated signed object and send it to a third device. The third device will validate the object by determining whether the object includes valid signatures of both the first and second devices.Type: GrantFiled: February 25, 2021Date of Patent: April 18, 2023Assignee: Google LLCInventors: Michael Burrows, Himabindu Pucha, Raja Daoud, Jatin Lodhia, Ankur Taly
-
Patent number: 11627487Abstract: A method by a wireless transmitting device for distinguishing between a quality of service (QoS) management frame and a non-QoS management frame is described. The method includes generating a frame that includes a frame header, wherein the frame header includes a frame control field, wherein the frame control field includes a partial traffic identifier or subtype (PTID/subtype) subfield, wherein the PTID/subtype subfield indicates whether the frame is a quality of service (QoS) management frame or a non-QoS management frame and transmitting the frame through a wireless medium.Type: GrantFiled: July 29, 2021Date of Patent: April 11, 2023Assignee: NEWRACOM, Inc.Inventors: Junyoun Won, Yujin Noh, Joonsoo Lee, Hyun Sik Jung, Hyungu Park
-
Patent number: 11625173Abstract: A solid state drive (SSD) device includes: non-volatile memory, and volatile memory associated with an SSD device controller. In response to determining that the SSD device is to transition to a power saving mode, information is transferred from the volatile memory to a host memory of a host computer via a communication interface, and the at least some of the volatile memory is transitioned to an OFF state. In response to determining that the SSD device is to transition from the power saving mode to a normal operating mode, the at least some of the volatile memory of the SSD device is transitioned to an ON state in which the at least some of the volatile memory is capable of retaining data, and the information from the host memory is transferred to the volatile memory of the SSD device via the communication interface.Type: GrantFiled: September 8, 2021Date of Patent: April 11, 2023Assignee: Marvell Asia Pte LtdInventor: Christophe Therene
-
Patent number: 11621063Abstract: A system for signaling coordinated workers in a common goal through intelligent icons transferred across networks to computer screens. The system can comprise one or more electronic data processors. The system can also include a module configured to execute on the more or more electronic data processors, where the module can be configured to display a plurality of intelligent icons, each containing authorizing information that is retained in a file associated with a authorizing entity on a computer screen. The intelligent icons can be potentially loaned to authorized individuals on a list and used to authenticate users of the system with biometric, image, machine readable codes stored surreptitiously within the intelligent icon. Also, the intelligent icon can be used for friend-foe identification in battlefield and homeland security/border control scenarios.Type: GrantFiled: November 27, 2020Date of Patent: April 4, 2023Assignees: The Quantum Group, Inc.Inventors: Noel J. Guillama, Chester A. Heath
-
Patent number: 11622257Abstract: A method for a system includes receiving with a first transceiver of a first smart device, an advertisement signal from a stationary beacon, outputting with the first transceiver of the first smart device, a first ephemeral ID that is not permanently associated with the first smart device, to the stationary beacon, receiving with the first transceiver of the first smart device, a beacon identifier from a stationary beacon, outputting with a second transceiver of the first smart device, the first ephemeral ID, a first user identifier and the beacon identifier to an authentication service, storing in an association log in the authentication service, the first ephemeral ID, the first user identifier and the beacon identifier, and storing in a beacon log in the authentication service, a log of the stationary beacon including the first ephemeral ID.Type: GrantFiled: May 20, 2021Date of Patent: April 4, 2023Assignee: Proxy, Inc.Inventors: Denis Mars, Simon Ratner
-
Patent number: 11622030Abstract: Data messages such as data packets in an IPv4 or IPv6 format are processed with a view to compression/decompression, using information obtained from sources other than the data packet itself, or the stream to which it belongs. This may involve additional dynamic processing defined in specifications identified by a shared marker, or obtained from an additional data source such as a static file, database application or the like. Embodiments described herein enhance this approach with a dynamic determination of data components.Type: GrantFiled: March 7, 2022Date of Patent: April 4, 2023Assignee: ACKLIOInventors: Ana Minaburo, Alexander Pelov
-
Patent number: 11621942Abstract: Methods and systems for a device identification system may be provided. The device identification system may determine an identity of a user device associated with a transaction. The identity may be determined by network address information, hard link information, soft link information, and/or other such information. The network address information may include IPv4 information, IPv6 information, a device ID, and/or other such information. The identity of the user device may be determined and a transaction conducted from the user device may be assigned a fraudulent transaction risk score according to the information. Transactions that are determined to be at a high risk of fraud may be reviewed or otherwise flagged and/or canceled.Type: GrantFiled: December 10, 2020Date of Patent: April 4, 2023Assignee: PAYPAL, INC.Inventors: Zahid Nasiruddin Shaikh, Srivathsan Narasimhan
-
Patent number: 11611875Abstract: Authentication with security in wireless networks may be provided. A first confirm message comprising a first send-confirm element and a first confirm element may be received. Next, an Authenticator Number Used Once (ANonce) may be generated and a second confirm message may be sent comprising the ANonce, a second send-confirm element, and a second confirm element. Then an association request may be received comprising a Supplicant Number Used Once (SNonce) and a Message Integrity Code (MIC). An association response may be sent comprising an encrypted Group Temporal Key (GTK), an encrypted Integrity Group Temporal Key (IGTK), the ANonce, and the MIC. An acknowledgment may be received comprising the MIC in an Extensible Authentication Protocol (EAP) over LAN (EAPoL) key frame and a controller port may be unblocked in response to receiving the acknowledgment.Type: GrantFiled: March 17, 2021Date of Patent: March 21, 2023Assignee: Cisco Technology, Inc.Inventors: Abhishek Dhammawat, Mansi Jain