System Access Control Based On User Identification By Cryptography Patents (Class 713/182)
  • Patent number: 11409858
    Abstract: In some examples, a scanner that is to verify a device includes a scanner input/output (I/O) interface to physically and communicatively connect to a device I/O interface of the device. The scanner includes a processor to send an input through the scanner I/O interface to the device, receive, at the scanner I/O interface, an output responsive to the input from the device, the output comprising a cryptographic value based on a cryptographic operation applied on data of the input, and determine whether the device is an authorized device based on the received output.
    Type: Grant
    Filed: May 13, 2019
    Date of Patent: August 9, 2022
    Assignee: Hewlett Packard Enterprise Development LP
    Inventors: Luis E. Luciani, Jr., Sze Hau Loh
  • Patent number: 11403396
    Abstract: The present disclosure provides a system and method for allocating computer resources for detection of malicious files. In one aspect, the system comprises: a hardware processor configured to: form at least one behavior pattern grouping selected commands with shared parameters, apply a hash function on the at least one of the formed behavior pattern to obtain computed parameters, calculate a degree of harmfulness based on the obtained computed parameters using the hash function and a model for detection of malicious files, wherein the degree of harmfulness is a number value characterizing a probability that a malicious activity will be manifested by a time of computing said degree of harmfulness and wherein the model is a machine learning model trained using computed parameters of previous behavior patterns on which the hash function was applied to output degrees of harmfulness, and allocate the computing resources based on the calculated degree of harmfulness.
    Type: Grant
    Filed: October 5, 2020
    Date of Patent: August 2, 2022
    Assignee: AO Kaspersky Lab
    Inventors: Alexander C. Chistyakov, Ekaterina M. Lobacheva, Alexey M. Romanenko
  • Patent number: 11403422
    Abstract: Embodiments of the present disclosure include systems and methods for securely entering, receiving, and storing sensitive data. A server system may determine if a request received from a user computing device communicatively coupled to the server triggers a requirement to receive sensitive data from the user computing device, generate a data structure for the sensitive data, designate a plurality of contact methods, determine a communication protocol for each of the designated plurality of contact methods, transmit a request for data unit information to the corresponding designated contact methods via the determined communication protocol for each data unit of the data structure, receive from each of the designated contact methods, the data unit information corresponding to the respective single data unit, and generate sensitive data by aggregating the received data unit information received from each of the designated contact methods.
    Type: Grant
    Filed: November 23, 2020
    Date of Patent: August 2, 2022
    Assignee: Capital One Services, LLC
    Inventors: Joshua Edwards, Salik Shah, Michael Mossoba
  • Patent number: 11405205
    Abstract: A method for providing a multi-service platform to entities includes the storage of profiles for a plurality of entities involved in services with other entities, including point to point and business to business transactions, including entities not registered, that can be claimed by each entity, where each entity can provide for roles and hierarchies of authorized users of the platform for that entity, and where the platform is configured to provide, among other services, registration of procurement status for purchase orders in a digital ledger that provides for auditability and immutability.
    Type: Grant
    Filed: April 8, 2020
    Date of Patent: August 2, 2022
    Assignee: MASTERCARD INTERNATIONAL INCORPORATED
    Inventors: Rebecca Ann Bergner, Anthony Paul Murphy, Richard David D'Erizans, Gopinatha Joshi, Carl D. Jansson, Maria Rice
  • Patent number: 11403384
    Abstract: An access control apparatus is provided. The apparatus can be used to unlock a device, wherein the device has a computation unit and at least one operator control unit that is electrically connectable to the computation unit, wherein the apparatus has a first reception unit for receiving electrical signals from the at least one operator control unit, a transmission unit for transmitting the electrical signals to the computation unit, a second reception unit for receiving at least one access message transmitted by means of an electromagnetic signal, an authorization unit for generating a switching signal if the result of the check on the access message is that unlocking of the device is permitted by means of the access message, and an unlocking unit for unlocking a transmission of electrical signals from the first reception unit to the transmission unit on the basis of the switching signal.
    Type: Grant
    Filed: February 28, 2017
    Date of Patent: August 2, 2022
    Assignee: SIEMENS AKTIENGESELLSCHAFT
    Inventors: Holger Dreger, Gerhard Münz
  • Patent number: 11403540
    Abstract: The present disclosure provides systems and methods for on-device machine learning. In particular, the present disclosure is directed to an on-device machine learning platform and associated techniques that enable on-device prediction, training, example collection, and/or other machine learning tasks or functionality. The on-device machine learning platform can include a context provider that securely injects context features into collected training examples and/or client-provided input data used to generate predictions/inferences. Thus, the on-device machine learning platform can enable centralized training example collection, model training, and usage of machine-learned models as a service to applications or other clients.
    Type: Grant
    Filed: August 11, 2017
    Date of Patent: August 2, 2022
    Assignee: GOOGLE LLC
    Inventors: Pannag Sanketi, Wolfgang Grieskamp, Daniel Ramage, Hrishikesh Aradhye
  • Patent number: 11392586
    Abstract: Disclosed are a data protection method and device and a storage medium. The method includes that a database execution engine receives data request information sent by a client; a preset policy corresponding to an identity of the client carried in the data request information is acquired and the database execution engine performs a data protection operation for requested data according to the preset policy to obtain target data; and the database execution engine sends the target data to the client.
    Type: Grant
    Filed: April 1, 2019
    Date of Patent: July 19, 2022
    Assignee: ZTE CORPORATION
    Inventors: Jiahao Niu, Qiang Zhang, Shanhong Shen, Dezheng Wang
  • Patent number: 11388057
    Abstract: Systems and methods are provided for efficient and automated control of software permissions and access to network resources across a complex enterprise environment. Systems may configure computer servers in response to an employment status change. Changes to employment status may include leave, termination or hiring. System may interface with a human resources data feed and detect changes to employment status. The system may enable, disable and/or delete a user's account on all appropriate computer servers. Systems may disconnect a software profile in response a detected employment change. Systems may create new software profiles in response to a detected employment change.
    Type: Grant
    Filed: February 16, 2021
    Date of Patent: July 12, 2022
    Assignee: Bank of America Corporation
    Inventors: Rahul Balar, Genaro Signo, Christopher Quinn, Hieu Xuan Hoang, Krupali Prafulchandra Desai, Ronald David Pfiester, Robert Justin Brown
  • Patent number: 11379582
    Abstract: In one aspect, a method of classifying a computer object as malware includes receiving at a base computer data about a computer object from each of plural remote computers on which the object or similar objects are stored. The data about the computer object received from the plural computers is compared in the base computer. The computer object is classified as malware on the basis of said comparison. In one embodiment, the data about the computer object includes one or more of: executable instructions contained within or constituted by the object; the size of the object; the name of the object; the logical storage location or path of the object on the respective remote computers; the vendor of the object; the software product and version associated with the object; and, events initiated by or involving the object when the object is created, configured or runs on the respective remote computers.
    Type: Grant
    Filed: September 3, 2020
    Date of Patent: July 5, 2022
    Assignee: Webroot Inc.
    Inventors: Melvyn Morris, Paul Stubbs, Markus Hartwig, Darren Harter
  • Patent number: 11373177
    Abstract: The present invention relates to a method for issuing a currency comprising the steps of: (a) confirming the validity of a currency issuing transaction and a currency issuer, when the currency issuing transaction for issuing the currency from the currency issuer is obtained, the currency issuing transaction including (i) currency receiver information, (ii) issued amount of the currency, (iii) a public key of the currency issuer, and (iv) a signature value of the currency issuer signing the (i), (ii), and (iii) with a private key of the currency issuer; and (b) registering the currency issuing transaction or a function value thereof on a public blockchain network, and obtaining a currency issuance public transaction ID indicating location information of the currency issuing transaction or the function value thereof on the public blockchain network, when the currency issuing transaction and the currency issuer are deemed valid.
    Type: Grant
    Filed: April 10, 2019
    Date of Patent: June 28, 2022
    Assignee: COINPLUG, INC.
    Inventors: Joo Han Song, Jay Wu Hong, Joon Sun Uhr
  • Patent number: 11372966
    Abstract: The present embodiments relate to an image processing apparatus and a user authentication method of the image processing apparatus. The image processing apparatus according to an embodiment of the disclosure includes: a first authentication unit configured to receive first authentication data from a user terminal, and to determine whether the first authentication data matches pre-stored first reference data to authenticate the user terminal; and a second authentication unit configured to generate, when additional authentication is set up, second reference data, requesting the user terminal to send second authentication data, to receive the second authentication data from the user terminal, and to determine whether the second authentication data matches the second reference data to authenticate the user terminal.
    Type: Grant
    Filed: July 5, 2017
    Date of Patent: June 28, 2022
    Assignee: HANWHA TECHWIN CO., LTD.
    Inventor: Myung Hwa Son
  • Patent number: 11368541
    Abstract: The present invention broadly comprises crowd-sourced computer-implemented methods and systems of collecting and transforming portable device data. One embodiment of the invention may be implemented as a system including an electronic device including a sensor configured to collect data, the device configured to begin collection of data based on a command from a user of the electronic device; and a server configured to issue a command to the electronic device to turn on the sensor and transmit data collected by the sensor to the server without any input by the user of the electronic device when a condition is met.
    Type: Grant
    Filed: May 10, 2019
    Date of Patent: June 21, 2022
    Assignee: KNOWMADICS, INC.
    Inventors: Paul Maguire, Lisa Cinnamon, Claire Ostrum, Brian O'Toole, Steven Edgett, Charles Corcoran
  • Patent number: 11363019
    Abstract: Example implementations relate to a domain join. An example controller can remotely configure and authenticate a computing device within a computing network to join a domain. In response to the configuration and authentication, the controller can record to the computing device that the domain join has been requested but not fulfilled. The computing device can be joined to the domain based on the domain join request record and in response to a restart of the computing device and receipt of domain credentials at the computing device.
    Type: Grant
    Filed: October 9, 2017
    Date of Patent: June 14, 2022
    Assignee: Hewlett-Packard Development Company, L.P.
    Inventors: Zachary Tahenakos, Daniel Bungert, Timothy J. Freese
  • Patent number: 11354401
    Abstract: A system, a method, and a program for providing a virtual code, a virtual code generating device, and a virtual code verifying device are provided. The method includes receiving, by a virtual code verifying means, a virtual code from a virtual code generating means, extracting, by the virtual code verifying means, a plurality of detailed codes included in the virtual code, and searching for, by the virtual code verifying means, a storage location of a real code based on the plurality of detailed codes.
    Type: Grant
    Filed: July 14, 2020
    Date of Patent: June 7, 2022
    Assignee: SSenStone Inc.
    Inventor: Chang Hun Yoo
  • Patent number: 11349952
    Abstract: Embodiments of the present disclosure may provide a streamlined process for performing operations, such as data sharing and data replication, using multiple accounts. A global identity (also referred to as an organization user) may be employed, where the global identity may have access to multiple accounts across the same or different deployments. The global identity may switch between accounts from its login session and perform various tasks in the context of different accounts without undergoing further authentication.
    Type: Grant
    Filed: June 11, 2021
    Date of Patent: May 31, 2022
    Assignee: Snowflake Inc.
    Inventors: Khalid Zaman Bijon, Damien Carru, Christopher Peter Child, Eric Karlson, Zheng Mi
  • Patent number: 11343102
    Abstract: An approach is provided that receives a password that corresponds to a user identifier. A number of hashing algorithms are retrieved with the specific hashing algorithms that are retrieved being based on the received user identifier. The password is hashed using each of retrieved hashing algorithms resulting in a number of hash results. The hash results are combined with the combining of the hash result eventually resulting in a combined hash result. An expected hash result that corresponds to the user identifier is retrieved and compared to the combined hash result. The password is verified based on the results of the comparison.
    Type: Grant
    Filed: March 17, 2020
    Date of Patent: May 24, 2022
    Assignee: Lenovo (Singapore) Pte. Ltd.
    Inventors: Igor Stolbikov, Veronika Stolbikova, Rod D. Waltermann, Joseph M. Pennisi
  • Patent number: 11333706
    Abstract: A network of storage units has a data path, which is at least a portion of the network. The network also has a dynamic time-varying or cycle-varying code generation unit and a code comparator unit that together make up an unlock signal generation unit; and a gateway storage unit. If the gateway storage unit does not store an unlock signal or the unlock signal generation unit does not generate and transmit an unlock signal, the gateway storage unit does not insert a data path segment in the data path. If the unlock signal generation unit is operated such that it generates an unlock signal, and it transmits that unlock signal to a gateway storage unit, and the gateway storage unit stores the unlock signal value, then the gateway storage unit inserts a data path segment into the data path.
    Type: Grant
    Filed: November 19, 2018
    Date of Patent: May 17, 2022
    Assignee: Silicon Aid Solutions, Inc.
    Inventors: James M. Johnson, Alfred L. Crouch
  • Patent number: 11321494
    Abstract: In an example, there is provided a method for attesting to a management state of a device platform configuration, based on a signed data structure that represents a device management status and a time-based value from a secure cryptoprocessor of the device. The signed data structure is sent to a management system for validation based on a comparison to the state of the cryptoprocessor at the time of signing the data structure.
    Type: Grant
    Filed: March 12, 2018
    Date of Patent: May 3, 2022
    Assignee: Hewlett-Packard Development Company, L.P.
    Inventors: Adrian Baldwin, James Robert Waldron, David Plaquin
  • Patent number: 11317278
    Abstract: Disclosed is a fifth generation (5G) or pre-5G communication system for supporting data transmission rate higher than that of a fourth generation (4G) communication system such as long term evolution (LTE). The objective of the present disclosure is to detect a mismatch of an encryption parameter in a wireless communication system, and an operating method of a reception end includes the steps of: receiving, from a transmission end, a packet including information related to a serial number of the packet and an encryption parameter determined on the basis of the serial number; determining whether the encryption parameter determined by the reception end is mismatched, on the basis of the information related to the serial number and the encryption parameter.
    Type: Grant
    Filed: June 5, 2018
    Date of Patent: April 26, 2022
    Assignee: Samsung Electronics Co., Ltd.
    Inventors: Janghee Lee, Sejin Park, Wonil Lee
  • Patent number: 11308529
    Abstract: A method and apparatus that provides for marketing and selling of goods by a computer application that interconnects with a media source that displays the goods.
    Type: Grant
    Filed: September 22, 2020
    Date of Patent: April 19, 2022
    Assignee: SNAG INNOVATIONS, INC.
    Inventor: Victor G Sanchez
  • Patent number: 11303630
    Abstract: A method for initiating a secure session using a smartphone as a physical token to provide strong authentication. The phone is used through a public and independent real-time notification service. The notifications are exchanged in an encrypted manner so that their content is only accessible to the mobile phone and the authentication server.
    Type: Grant
    Filed: December 12, 2019
    Date of Patent: April 12, 2022
    Assignee: BULL SAS
    Inventors: Gérard Dedieu, David Cossard, Boksic Rodrigo
  • Patent number: 11297507
    Abstract: An interaction security system for user verification utilizes co-location in order to more accurately identify a user location. The system identifies a user computer system location based a location determination component for the user computer systems. Moreover, the system identifies a resource accessory location of a resource accessory. The resource accessory location may be determined in a number of different ways, including, but not limited to, a location determination component of the resource accessory. The system may utilize a time requirement and/or a geo-location requirement in order to maintain verification of the user for a period of time and/or within a specific location. Moreover, the system may require the user to take an action with respect to the resource accessory before verifying the user location for an interaction.
    Type: Grant
    Filed: June 20, 2019
    Date of Patent: April 5, 2022
    Assignee: BANK OF AMERICA CORPORATION
    Inventors: Heather Roseann Dolan, Katherine Dintenfass
  • Patent number: 11295002
    Abstract: Methods and devices are disclosed. A method, performed in a user application, of creating a trusted bond between a hearing device and the user application is disclosed, wherein the method comprises obtaining first authentication material; transmitting a first authentication request comprising a first authentication type identifier and first authentication data to the hearing device; receiving an authentication response comprising an authentication key identifier; storing an authentication key and the authentication key identifier, wherein the authentication key is based on the first authentication material; and connecting the user application to the hearing device using the authentication key and the authentication key identifier.
    Type: Grant
    Filed: November 14, 2017
    Date of Patent: April 5, 2022
    Assignee: GN HEARING A/S
    Inventor: Allan Munk Vendelbo
  • Patent number: 11290260
    Abstract: A primary input value is received from a first user on a first peer device. A symmetric user encryption key UK1 is generated for the first user from the primary input value on the first peer device. One or more random numbers are requested and received from a random number generator server. A user asymmetric encryption key pair that includes a public key PuK1 and a private key PrK1 is generated for the first user from the one or more random numbers on the first peer device. The public key PuK1 is stored in a non-volatile memory on a public-key server. The private key PrK1 is encrypted using the symmetric user encryption key UK1 using a symmetric encryption algorithm on the first peer device, producing an encrypted private key ePrK1=ESUK1(PrK1). The private key ePrK1 is stored in non-volatile memory on a data persistence server.
    Type: Grant
    Filed: August 10, 2021
    Date of Patent: March 29, 2022
    Assignee: CyLogic, Inc.
    Inventors: Adam Firestone, Hilary L. MacMillan, Raghu Lingampally
  • Patent number: 11288599
    Abstract: A model training method includes: acquiring a plurality of user data pairs, wherein data fields of two sets of user data in each user data pair have an identical part; acquiring a user similarity corresponding to each user data pair, wherein the user similarity is a similarity between users corresponding to the two sets of user data in each user data pair; determining, according to the user similarity corresponding to each user data pair and the plurality of user data pairs, sample data for training a preset classification model; and training the classification model based on the sample data to obtain a similarity classification model.
    Type: Grant
    Filed: January 30, 2020
    Date of Patent: March 29, 2022
    Assignee: Advanced New Technologies Co., Ltd.
    Inventors: Nan Jiang, Hongwei Zhao
  • Patent number: 11283880
    Abstract: Embodiments provide a computer implemented method in a data processing comprising a processor and a memory including instructions, which are executed by the processor to cause the processor to implement the method of terminating a connection between a database server and a database client through an enforcement point, the method including: continuously monitoring, by the enforcement point, information related to a connection to a database, and parsing one or more queries; continuously comparing, by the enforcement point, the information with a predefined plurality of rules, and checking whether there is a rule violation; if there is a rule violation, assembling, by the enforcement point, a termination packet including an error message indicative of the rule violation; sending, by the enforcement point, the termination packet to the database client; and terminating, by the enforcement point, a connection between the enforcement point and the database client.
    Type: Grant
    Filed: April 15, 2019
    Date of Patent: March 22, 2022
    Assignee: International Business Machines Corporation
    Inventors: Galia Diamant, Richard O. Jerrell, Chun-Shuo Lin, Cheng-Ta Lee
  • Patent number: 11283786
    Abstract: A method to authenticate a first computer system over a network to a second computer system is disclosed. A login user interface (UI) is presented to a user of the first computer system while disconnected from the second computer system. The login UI presents at least one input field to receive login input from the user and a security indicator that has been previously selected by the user and that is local to the first computer system. Login input is selectively received from the user based on a determination that the user recognizes the security indicator as having been previously selected by the user. A connection is established between the first computer system and the second computer system over the network. The received user input is transmitted using the established connection to the second computer system for authentication of the first computer system.
    Type: Grant
    Filed: October 24, 2019
    Date of Patent: March 22, 2022
    Assignee: EBAY INC.
    Inventors: German Scipioni, Avery Kadison, Naseem Hakim
  • Patent number: 11281760
    Abstract: A method of authenticating a user includes obtaining a user authentication request for access to at least one application executed on an electronic device, identifying an actor and a task for authentication based on one or more context parameters associated with at least one of the electronic device or a user, providing a live challenge generated based on the identification, and identifying whether to access the at least one application based on whether the provided live challenge has been successfully performed.
    Type: Grant
    Filed: July 18, 2019
    Date of Patent: March 22, 2022
    Assignee: SAMSUNG ELECTRONICS CO., LTD.
    Inventors: Arihant Jain, Ajay Sharma, Rahul Yadav, Kaushalendra Mishra
  • Patent number: 11277497
    Abstract: A system is disclosed for storage, processing, and accessing of data. The system includes a front end system and a back end system communicatively connected to the front end system. A front end system is configured to provide one or more user interfaces configured to store, process, and access data in a first data server, in response to user input, by sending messages to the back end system. The back end system includes the first data server and one or more processing servers. The one or more processing servers are configured to process messages received from the front end system by accessing in the first data server to perform one or more operations specified by the messages. The back end system also includes a blockchain server configured to maintain a record of changes made to data in the first data server by the one or more processing servers.
    Type: Grant
    Filed: July 23, 2020
    Date of Patent: March 15, 2022
    Inventor: Tim Donald Johnson
  • Patent number: 11265350
    Abstract: Systems and methods for cyber risk analysis and remediation using network monitored sensors are provided herein. An example system includes one or more data collecting devices deployed within a network that collect entity information and monitor network traffic of the network that is related to security information. The network includes computing systems that are subject to a cyber risk policy having breach parameters defining one or more events that are indicative of a cyber security breach. A cyber security risk assessment and management system is used to automatically detect occurrence of one or more of the events that are indicative of a cyber security breach, automatically determine the breach parameters that apply for the one or more events that occurred, and generates a remediation of cyber security parameters for the network.
    Type: Grant
    Filed: July 16, 2019
    Date of Patent: March 1, 2022
    Assignee: Guidewire Software, Inc.
    Inventors: Arvind Parthasarathi, George Y. Ng, Matthew Honea
  • Patent number: 11265859
    Abstract: The disclosure relates to a method of transmitting and receiving control information in a wireless communication system, and an apparatus therefor. According to an embodiment of the disclosure, the method may include receiving interruption configuration information via upper signaling from a base station (BS), when a format of an interruption indicator transmitted from the BS to a user equipment is determined based on the received interruption configuration information, searching for the interruption indicator, and identifying, based on the format of the interruption indicator, information included in the interruption indicator detected as a result of the searching.
    Type: Grant
    Filed: July 30, 2018
    Date of Patent: March 1, 2022
    Inventors: Sung-jin Park, Tae-hyoung Kim, Jeong-ho Yeo, Jin-young Oh
  • Patent number: 11263061
    Abstract: Threads of a process require a shared resource to perform their work. The threads have a shared object, which might include a lock and an expiration time. When the resource has not been acquired and any one of the threads attempts to access the shared resource, that thread locks the lock, acquires the shared resource, sets the expiration time, releases the lock, and then uses the shared resource to perform its work. When any one of the threads requires the resource and the resource has been acquired but the expiration time is within a time threshold, only that thread refreshes the resource, resets the expiration time, and uses the resource to perform its work. When any of the threads require the resource and the resource is available and not expired, the thread uses the shared resource.
    Type: Grant
    Filed: February 24, 2020
    Date of Patent: March 1, 2022
    Assignee: Microsoft Technology Licensing, LLC
    Inventor: Jeffrey Marc Richter
  • Patent number: 11263351
    Abstract: There is provided mechanisms for verifying a log entry in a communications system. A method is performed by a host server. The method comprises obtaining a log entry of a service access tracker. The log entry indicates access to a service during a client session, the service being tracked by the service 5 access tracker. The method comprises providing the log entry to a trusted third party for digital signing thereof using a digital trusted timestamping scheme. The method comprises verifying that the log entry has been digitally signed by the trusted third party. The method comprises providing a new aggregate comprising the digitally signed log entry and a previous aggregate 10 of previously digitally signed and aggregated log entries to the trusted third party for digital signing thereof using the digital trusted timestamping scheme. The method comprises verifying that the new aggregate has been digitally signed by the trusted third party.
    Type: Grant
    Filed: November 13, 2015
    Date of Patent: March 1, 2022
    Assignee: Telefonaktiebolaget L M Ericsson (publ)
    Inventor: Christian Olrog
  • Patent number: 11257399
    Abstract: A decoding apparatus includes a plurality-of-bits decoding part configured to receive an input vector obtained by adding a message encrypted by a trapdoor function and an error vector including an element(s) conforming with a discrete Gaussian distribution, and decode a plurality of bits from a lower bit of the message based on the input vector in correctness with a predetermined probability; and a confirmation calculation part configured to determine in parallel whether the decoded plurality of bits are correct or not, wherein the message is encrypted by taking an inner product with a vector including a power of two as an element(s).
    Type: Grant
    Filed: December 12, 2016
    Date of Patent: February 22, 2022
    Assignee: NEC CORPORATION
    Inventors: Yuki Tanaka, Isamu Teranishi, Kazuhiko Minematsu
  • Patent number: 11251971
    Abstract: The present disclosure is directed to systems and methods associated with a communication infrastructure. The communication infrastructure includes a vehicle integration platform that includes a plurality of application programming interfaces configured to facilitate message communication among clients. The communication infrastructure includes a registration authority system configured to receive certificate signing requests from the clients and to generate client-specific credentials for establishing a predetermined time period of ability for client authentication within the vehicle integration platform. The communication infrastructure includes a certificate authority system configured to normalize requests received from the clients via the registration authority system such that the client-specific credentials are established according to an approved hierarchy of licensing certificates.
    Type: Grant
    Filed: June 27, 2019
    Date of Patent: February 15, 2022
    Assignee: Uber Technologies, Inc.
    Inventors: Matthew James Way, David G. Butler, Roman Kuzmenko, Matthew Charles Ellis Wood, Andrii Iasynetskyi, Mark Yen, Meenakshi Vohra
  • Patent number: 11252239
    Abstract: A method of establishing a communications path between devices comprising: receiving, at a first device, data, the data comprising: a first resource having a first identifier for a second device remote from the first device; a second resource having a second identifier for the second device; addressing the second device with the first identifier; generating, at the first device, first connection data based on the second identifier; transmitting, from the first device to the second device, the first connection data; receiving, at the first device, second connection data; validating, at the first device, the second connection data; establishing the communications path between the first device and second device responsive to valid second connection data.
    Type: Grant
    Filed: December 14, 2017
    Date of Patent: February 15, 2022
    Assignees: Arm IP Limited, Arm Limited
    Inventors: Yongbeom Pak, Hannes Tschofenig
  • Patent number: 11250116
    Abstract: A homomorphic encryption scheme, such as Paillier encryption in combination with a bit packing process allows biometric matching at a terminal without exposing a biometric template stored at a user's device. Because such encryption schemes are data intensive, the bit packing process allows reductions in data being sent and processed so that the biometric matching process can be accomplished in near real time. The high speed of this optimized process allows the technique to be applied to many real world processes such as access control and transaction processing.
    Type: Grant
    Filed: October 25, 2019
    Date of Patent: February 15, 2022
    Assignee: VISA INTERNATIONAL SERVICE ASSOCIATION
    Inventor: Peter Rindal
  • Patent number: 11244033
    Abstract: A method for remotely verifying a non-resident alien's identity, includes: receiving a request to establish a communication session from a user device; analyzing the request to determine whether the user device is compromised; in response to determining that the user device is not compromised, providing a page flow to the user device to solicit information from the non-resident alien, the information including identity information associated with a local foreign government identification document (ID), and other information not shown on the local foreign government ID; querying one or more foreign governmental data stores to identify foreign data associated with the non-resident alien based on a unique identifier associated with the local foreign government ID; comparing the information with the foreign data; and verifying an identity of the non-resident alien based on the comparing, wherein the verifying includes determining that at least one of the other information matches the foreign data.
    Type: Grant
    Filed: August 26, 2021
    Date of Patent: February 8, 2022
    Assignee: East West Bank
    Inventors: Catherine Zhou, Rakesh Nambiar, Angela Mao
  • Patent number: 11245693
    Abstract: Method and apparatus for authentication of a user to a server that involves the user performing a requested act and that further involves relative movement between the user and a camera wherein fiducial marks are captured.
    Type: Grant
    Filed: January 21, 2020
    Date of Patent: February 8, 2022
    Assignee: VNS Portfolio LLC
    Inventors: Beau Robertson Parry, Yasodekshna Boddeti
  • Patent number: 11245532
    Abstract: An authentication method for authenticating a client with a service over a network of peers, comprises: storing encrypted enrolled authentication data for the client in a storage that is accessible by means of an access privilege; storing a decryption clue for the encrypted enrolled authentication data in a client data block chain; receiving, by the network, authentication information from the client; generating, by a server connected to the client, a decryption key according to a contract involving the decryption clue stored in the client data block chain; receiving, by the network, the encrypted enrolled authentication data from the storage; decrypting, by the network, the encrypted enrolled authentication data using the decryption key to obtain decrypted enrolled authentication data; comparing, by the network, the decrypted enrolled authentication data with the authentication information received from the client for obtaining a match score based on a consensus of the peers of the network; and storing the m
    Type: Grant
    Filed: July 1, 2019
    Date of Patent: February 8, 2022
    Assignee: BLINK.ING DOO
    Inventors: Miroslav Minovic, Milos Milovanovic, Migitko Aleksei
  • Patent number: 11240240
    Abstract: Systems and methods for network security are provided. Various embodiments issue single use certificates for validating remote endpoints access to the private network. Some embodiments use a triage zone (or triage gateway) to which remote device can calls into using a static issued certificate. However, instead of granting complete access to the virtual private network, the use of this static certificate only grants access to the triage zone where further validation of the endpoint without any access to sensitive content on the private network. The endpoint can be connected to an ID manager within the triage zone. The endpoint can then send the username and password to the ID manager that can create a single use certificate (e.g., valid for a limited period of time). While valid, the single use certificate can be used by the remote device to gain access to the production zone using a VPN tunnel.
    Type: Grant
    Filed: August 9, 2018
    Date of Patent: February 1, 2022
    Assignee: SAILPOINT TECHNOLOGIES, INC.
    Inventors: Cameron Williams, Ryan Privette, Christopher Chad Wheeler, Andrew John Cer, Joseph Nathan Zendle
  • Patent number: 11238454
    Abstract: The present invention relates to a financial payment method using biometric information, in which biometric information of an individual collected in a mobile device of an affiliated member is transmitted to a mobile device of the individual to allow the biometric information to be authenticated in the mobile device of the individual, and after the authentication of the biometric information, a substitute key that corresponds to a card password preset by the individual is inputted, and a financial payment is requested based on the payment content.
    Type: Grant
    Filed: November 14, 2017
    Date of Patent: February 1, 2022
    Inventor: Seon Gwan Lee
  • Patent number: 11232211
    Abstract: A method, an apparatus and a device for sharing a password between a BIOS and an operating system are provided, which are applied to a Legacy boot mode. In the method, a user is prompted to input a password of the BIOS. The password inputted by the logon user is received and verified. The verified password is stored in a predetermined target memory and E820H information is created if the received password is verified as correct, where address data in the E820H information points to an address of the target memory. The address of the target memory is determined based on the created E820H information and memory contents are obtained if a password is set for the operating system. The logon user is permitted to log on the operating system if the acquired memory contents are verified as correct.
    Type: Grant
    Filed: December 26, 2018
    Date of Patent: January 25, 2022
    Assignee: ZHENGZHOU YUNHAI INFORMATION TECHNOLOGY CO., LTD.
    Inventor: Binghui Zhang
  • Patent number: 11226963
    Abstract: A system and method for executing queries on an indexed view are presented. The method includes processing an input query directed to data maintained by the indexed view to generate a plurality of statements responsive to the input query, wherein the indexed view includes index information and a plurality data chunks; verifying a global index to locate segments of the indexed view; verifying a plurality of local indexes to locate data chunks containing values related to the plurality of statements, wherein the index information includes at least one local index per data chunk and at least one global index per the entire indexed view; processing the plurality of statements by accessing the data chunks containing values related to the plurality of statements; and responding to the input query based on the accessed data chunks.
    Type: Grant
    Filed: October 10, 2019
    Date of Patent: January 18, 2022
    Assignee: Varada Ltd.
    Inventors: Tal Ben Moshe, Kobi Luz, David Krakov, Roman Vainbrand, Shlomi Alfasi
  • Patent number: 11218493
    Abstract: This disclosure relates to identity verification. In one aspect, a method includes obtaining verification information during a user application session of a user with an application component subsequent to a verification triggering request to perform identity verification on the user. A determination is made whether the verification information satisfies a first identity verification-free condition. When the verification information satisfies the first identity verification-free condition, an identity verification-free operation that does not include identity verification of the user is performed. When the verification information fails to satisfy the first identity verification-free condition, an identity verification process is performed to verify an identity of the user.
    Type: Grant
    Filed: March 6, 2020
    Date of Patent: January 4, 2022
    Assignee: Advanced New Technologies Co., Ltd.
    Inventors: Jue Mei, Xin Chen, Tong Zhu, Yiteng Tian
  • Patent number: 11218494
    Abstract: A method includes receiving, by a computing entity, a transaction for fraud evaluation. The method further includes generating, by the computing entity, evidence vectors regarding the transaction, wherein an evidence vector is a piece of information regarding a topic, or portion thereof, of a list of topics. The method further includes engaging, by the computing entity, tools to generate risk analysis responses based on the evidence vectors. The method further includes discarding, by the computing entity, indeterminate responses of the risk analysis responses to produce a group of risk analysis responses. The method further includes interpreting, by the computing entity, the group of risk analysis responses to produce a fraud evaluation answer of low risk of fraud, high risk of fraud, or further analysis is required.
    Type: Grant
    Filed: July 26, 2019
    Date of Patent: January 4, 2022
    Assignee: Raise Marketplace, LLC
    Inventors: William Alfred Wright, Christopher Jigme Wright, Lars Wright
  • Patent number: 11216224
    Abstract: A printing apparatus includes: a transporter; a print device; a communication interface performing a wireless communication with a plurality of external devices; a storage; and a controller performing: registering device information of specific external device in the storage; determining whether the device information of one external device newly connected to the printing apparatus is registered in the storage; when it is determined that the device information is not registered, making connection to the one external device a suspension state; prompting the external device registered in the storage to confirm whether to release the suspension state of the one external device; receiving a notification from the external device registered; and in a case the received notification indicates releasing permission of the suspension state, releasing the suspension state in the one external device.
    Type: Grant
    Filed: September 10, 2020
    Date of Patent: January 4, 2022
    Assignee: BROTHER KOGYO KABUSHIKI KAISHA
    Inventor: Hiromichi Nampo
  • Patent number: 11212270
    Abstract: An intermediation method used in an intermediation system that includes an intermediation device determining a permission for application services requiring user authentication on a network, where in response to a user request, a first account used for a first service and a second account used for a second service, and a registration request for using the linking service linking the first application service and the second application service are associated with each other, when the two accounts are valid, as accounts usable in a linking service, an association between the first and second services is stored in the intermediation device, and when the user makes a request to use the linked services, that use is controlled by a query to the intermediation device regarding whether the account is associated as able to use the linking service.
    Type: Grant
    Filed: May 22, 2020
    Date of Patent: December 28, 2021
    Assignee: PANASONIC INTELLECTUAL PROPERTY MANAGEMENT CO., LTD.
    Inventors: Takahiro Yamaguchi, Masaya Yamamoto, Natsume Matsuzaki, Masayuki Kozuka
  • Patent number: 11200310
    Abstract: There are provided systems and methods for a sentence based automated Turing test for detecting scripted computing attacks. A computing may request access to a service or data from a service provider, where the service provider may be required to determine that the device is used by a user and not a bot executing a scripted or automated process/attack against the service provider. To authenticate that the device is used by a user, the service provider may determine and output a challenge that queries the user to fill in one or more missing words from a sentence. Acceptable answers may be based on past messages and internal data that is specific to the service provider, as well as an external corpus of documents. The service provider may also further authenticate the user based on the user's response and a likely user response for that user.
    Type: Grant
    Filed: December 13, 2018
    Date of Patent: December 14, 2021
    Assignee: PAYPAL, INC.
    Inventors: Yuri Shafet, Bradley Wardman, Nahman Khayet
  • Patent number: 11188685
    Abstract: A system is described that secures application data being maintained in transient data buffers that are located in a memory that is freely accessible to other components of the system, regardless as to whether those components have permission to access the application data. The system includes an application processor, a memory having a portion configured as a transient data buffer, a hardware unit, and a secure processor. The hardware unit accesses the transient data buffer during execution of an application at the application processor. The secure processor is configured to manage encryption of the transient data buffer as part of giving the hardware unit access to the transient data buffer.
    Type: Grant
    Filed: February 22, 2019
    Date of Patent: November 30, 2021
    Assignee: Google LLC
    Inventors: Osman Koyuncu, William Alexander Drewry