System Access Control Based On User Identification By Cryptography Patents (Class 713/182)
  • Patent number: 10681037
    Abstract: Methods, systems, and computer program products for authenticating a terminal with a server based on multiple environmental factors. Each of the multiple environmental factors relates to a configurable hardware-independent characteristic of the terminal. Each of the multiple environmental factors is defined at least by an identifier and a value. The identifier identifies a respective environmental factor and the value indicates a state of the respective configurable hardware-independent characteristic. The multiple environmental factors constitute an environmental authentication information for authenticating the terminal with the server.
    Type: Grant
    Filed: June 29, 2017
    Date of Patent: June 9, 2020
    Assignee: AMADEUS S.A.S.
    Inventors: Mohamed-Amine Maaroufi, Alexandre Barras, Ayoub Choukouk
  • Patent number: 10678908
    Abstract: In one example embodiment, an electronic device is provided and configured to: acquire authentication data for an authorized user; store the authentication data in an enclave; acquire identification data for a potential user; and compare, in the enclave, the identification data to the authentication data for recognizing if the potential user is the authorized user. In another embodiment, a server is provided and includes at least one processor; at least one memory; at least one driver, where the server is configured to: receive assertion data from an electronic device, where the assertion includes an authentication signing key and results from a comparison of acquired data and reference data; and determine if the assertion data is valid by: comparing the results to a threshold; and comparing the authentication signing key to an authentication signing key assigned to the electronic device.
    Type: Grant
    Filed: December 21, 2013
    Date of Patent: June 9, 2020
    Assignee: McAfee, LLC
    Inventors: Steve Grobman, Carl Woodward, James D. Beaney, Jr., Jimmy Scott Raynor
  • Patent number: 10673622
    Abstract: A technique is introduced that can securely displaying decrypted images while preventing these decrypted images against an attempt to capture such. Some aspects of the technique include loading a cryptographic shader into a graphics processor unit (GPU) in the recipient's computer device separate from the CPU in the recipient's computer device. In some embodiments, the cryptographic shader that is loaded includes instructions that implement a white-box cryptographic algorithm to decrypt encrypted images. A cryptographic key is integrated within the white-box cryptographic algorithm so that the cryptographic key is protected from extraction. When the GPU receives the encrypted images, the cryptographic shader can perform decryption processes to generate decrypted images. The decrypted images are loaded by the GPU directly from the GPU into a frame buffer such that the decrypted images are to be displayed without any portion of the decrypted images passing through the CPU.
    Type: Grant
    Filed: November 14, 2014
    Date of Patent: June 2, 2020
    Assignee: SQUARE, INC.
    Inventor: Dino Dai Zovi
  • Patent number: 10666435
    Abstract: A tenant's clear text data in a multi-tenant storage system can be encrypted using the tenant's cryptographic key to produce encrypted yet compressible data (“cryptographic data”). The cryptographic data can be encrypted using a system cryptographic key that is managed by the multi-tenant storage system and then stored. Use of the system cryptographic key allows for subsequent maintenance activities such as deduplication and compression to be performed on data stored in the multi-tenant storage system without having to access any of the tenants' cryptographic keys.
    Type: Grant
    Filed: January 9, 2018
    Date of Patent: May 26, 2020
    Assignee: VMware, Inc.
    Inventors: Wenguang Wang, Jin Zhang, Haoran Zheng, Eric Knauft, Xin Li, Pascal Renauld, Bryan Fink
  • Patent number: 10664614
    Abstract: A method, system and computer-usable medium for adaptively assessing risk associated with an endpoint, comprising: determining a risk level corresponding to an entity associated with an endpoint; selecting a frequency and a duration of an endpoint monitoring interval; collecting user behavior to collect user behavior associated with the entity for the duration of the endpoint monitoring interval via the endpoint; processing the user behavior to generate a current risk score for the entity; comparing the current risk score of the user to historical risk scores to determine whether a risk score of a user has changed; and changing the risk score of the user to the current risk score when the risk score of the user has changed.
    Type: Grant
    Filed: March 7, 2019
    Date of Patent: May 26, 2020
    Assignee: Forcepoint LLC
    Inventors: Richard A. Ford, Ann Irvine, Adam Reeve, Russell Snyder, Benjamin Shih
  • Patent number: 10657742
    Abstract: A method includes receiving, by a monitoring system that is configured to monitor a property and from a visitor to the property, a personally identifying code and a biometric identifier, determining that the personally identifying code corresponds to a stored personally identifying code, receiving, by the monitoring system, location information that corresponds to locations of the visitor during a time period before visiting the property, comparing the biometric identifier to a stored biometric identifier, based on determining that the personally identifying code corresponds to a stored personally identifying code, comparing the biometric identifier to the stored biometric identifier, and the location information, determining a confidence score that reflects a likelihood that the visitor is authorized to access the property, based on the confidence score that reflects the likelihood that the visitor is authorized to access the property, selecting, from among multiple monitoring system actions, a monitoring sy
    Type: Grant
    Filed: June 24, 2019
    Date of Patent: May 19, 2020
    Assignee: Alarm.com Incorporated
    Inventor: Daniel Todd Kerzner
  • Patent number: 10652247
    Abstract: A virtual desktop system includes a directory service system and an access device. The directory service system include a group list, each group including a list of authorized users and an associated privilege level. The access device includes privilege logic to implement privilege levels, each privilege level being associated with one of the groups. The access device is only permitted to log on to the directory service to the exclusion of other functions of the access device until the access device receives an indication of a particular group from the directory service. The directory service receives a log on from a user of the access device, authenticates the user as being associated with the particular group, and sends the indication to the access device. The privilege logic enables the other functions of the access device in accordance with the privilege level associated with the particular group.
    Type: Grant
    Filed: June 9, 2017
    Date of Patent: May 12, 2020
    Assignee: Dell Products, L.P.
    Inventors: John Kelly, Daniel L. Hamlin
  • Patent number: 10652234
    Abstract: In general, aspects of the disclosure are directed towards techniques for initiating an authorization flow with a user to enable a user interface-limited client computing device to obtain access to protected resources hosted by a resource service. In some aspects, a computing device comprises at least one processor. The computing device also comprises a short-range wireless communication module operable by the at least one processor to receive, using short-range wireless communication, an authentication request from a client device. The computing device also comprises an authorization module operable by the at least one processor to receive authorization to provide at least one security credential to the client device, wherein the authorization module is further configured to, responsive to receiving the authorization, send an indication of the authorization to an authentication service.
    Type: Grant
    Filed: November 8, 2018
    Date of Patent: May 12, 2020
    Assignee: Google LLC
    Inventors: Alain Vongsouvanh, Claudio Cherubino
  • Patent number: 10652239
    Abstract: A distributed ledger, e.g., blockchain, enabled operating environment includes a user device that accesses services of a service device by leveraging the decentralized blockchain. For example, a user device can lock/unlock a door (e.g., service device) by interfacing with a smart contract stored on the decentralized blockchain. The user device provides parameters, such as payment, that satisfies the variables of the smart contract such that the user device can access the service device. The service device regularly retrieves information stored in the smart contract on the decentralized blockchain. For example, the retrieved information can specify that the user device is authorized to access the service device or that the service device is to provide a service. Therefore, given the retrieved information, the service device provides the service to the user device.
    Type: Grant
    Filed: December 28, 2017
    Date of Patent: May 12, 2020
    Assignee: SLOCK.IT GMBH
    Inventors: Christoph Jentzsch, Simon Jentzsch, Stéphane Tual
  • Patent number: 10642962
    Abstract: For securing content accessed from storage device, the storage device is associated with a licensee identifier. The licensee identifier is provided as input to an algorithm that generates, based on the identifier, a determinate set of instructions for a computer, for example, source code in a coding language, compiled binary code, or pseudo code that is capable of being translated into source code. The code, once compiled to machine-usable form, can be executed by a processor to perform a permutation operation that is unique to the licensee identifier. The output of the permutation operation can be used for protecting data provided by the storage device.
    Type: Grant
    Filed: July 28, 2015
    Date of Patent: May 5, 2020
    Assignee: Western Digital Technologies, Inc.
    Inventors: Carlos Frederico Amaral Cid, Matthew Warren Dodd, David L. Blankenbeckler, Joseph Edward Halpern, III, Ian E. Harvey, Christopher R. Odgers
  • Patent number: 10645079
    Abstract: Aspects of the disclosure relate to preventing unauthorized access to secured information systems. A computing platform may receive, from an end user desktop computing device, a request to login to a user account associated with a user account portal. In response to receiving the request, the computing platform may generate an authentication token in an authentication database and may send a notification to at least one registered device linked to the user account. After sending the notification, the computing platform may receive, from the at least one registered device, an authentication response message. If the authentication response message indicates that valid authentication input was received, the computing platform may update the authentication token to indicate that the request to login to the user account has been approved. After updating the authentication token, the computing platform may provide, to the end user desktop computing device, access to a portal interface.
    Type: Grant
    Filed: May 12, 2017
    Date of Patent: May 5, 2020
    Assignee: Bank of America Corporation
    Inventors: Ashish Arora, Muniraju Jayaramaiah, Xianhong Zhang
  • Patent number: 10630649
    Abstract: A home automation (HA) system may include addressable HA devices that are not publicly accessible via the Internet and a remote user device configured to generate a connection request to communicate with a given addressable HA device. The HA system may also include a cloud server configured to cooperate with the remote user device to generate a connection file based upon the connection request, and store the connection file so that the connection file is publicly accessible via the Internet. The connection file may include instructions for establishing an encrypted connection to the given addressable HA device. The given addressable HA device may be configured to retrieve the connection file and establish the encrypted connection with the remote user device via the cloud server.
    Type: Grant
    Filed: June 20, 2017
    Date of Patent: April 21, 2020
    Assignee: K4CONNECT INC.
    Inventors: Jonathan Andrew Gould, Mark Robert Adams
  • Patent number: 10630549
    Abstract: The present invention discloses methods and systems for configuring a second system. The system of the present invention determines at least one configuration and the identity information of the second system. The at least one configuration is then sent to the second system. The second system is configured with the at least one configuration. The at least one configuration can be sent through an SMS message, a USB modem plugged in the second system, or NFC. Additionally, the at least one configuration may comprise an APN. The at least one configuration may also be used to configure the second system to establish one or more VPN connections.
    Type: Grant
    Filed: April 22, 2019
    Date of Patent: April 21, 2020
    Assignee: PISMO LABS TECHNOLOGY LIMITED
    Inventors: Wan Chun Leung, Ho Ming Chan
  • Patent number: 10621585
    Abstract: Devices, systems, and methods of contextual mapping of web-page elements and other User Interface elements, for the purpose of differentiating between fraudulent transactions and legitimate transactions, or for the purpose of distinguishing between a fraudulent user and a legitimate user. User Interface elements of a website or webpage or application or other computerized service, are contextually analyzed. A first User Interface element is assigned a low fraud-relatedness score-value, since user engagement with the first User Interface element does not create a security risk or a monetary exposure. A second, different, User Interface element is assigned a high fraud-relatedness score-value, since user engagement with the second User Interface element creates a security risk or a monetary exposure.
    Type: Grant
    Filed: June 28, 2016
    Date of Patent: April 14, 2020
    Assignee: BIOCATCH LTD.
    Inventors: Avi Turgeman, Oren Kedem
  • Patent number: 10621835
    Abstract: The present invention discloses a checkout counter at least comprising a right/left-hand side registration system for registration of commodities in a checkout counter comprising a right/left-hand side registration device with an interface with a computer, and a cashier registration system for registration of commodities in a checkout counter comprising a cashier registration device with an interface with a computer, a right-hand side motion detector with an interface with the computer, and a left-hand side motion detector with an interface with a computer. The invention also discloses a method for operation of the checkout counter and its elements.
    Type: Grant
    Filed: August 8, 2018
    Date of Patent: April 14, 2020
    Assignee: PEOPLEPOS LTD.
    Inventor: Kay Seljeseth
  • Patent number: 10614199
    Abstract: Systems and methods for controlling access to an online account are described. An access control message including an action to be performed on an online account can be sent from a mobile device to a server. The server may identify the mobile device based on identifying information in the access control message. Upon identifying the mobile device, the server may determine whether the user has authority to initiate the action to be performed on the online account. Upon determining that a user of the mobile device does have authority to initiate the indicated action, the action indicated in the access control message may be taken with respect to the online account.
    Type: Grant
    Filed: March 8, 2019
    Date of Patent: April 7, 2020
    Assignee: Visa International Service Association
    Inventor: Mark Carlson
  • Patent number: 10614113
    Abstract: A method of classifying documents. The method comprises providing a document mapping classifying dataset comprising document feature datasets, each one of the document feature datasets documenting document features of one of a plurality of documents, each one of the documents is associated with a structurality level and classified as related to one of a plurality of database specific categories, extracting a current document feature dataset from a document, performing an analysis of each of at least some of the document feature datasets to identify a similarity to the current document feature dataset while adjusting a dynamic similarity threshold according to a respective the structurality level of an associated document from the documents, selecting one of the documents according to the similarity, and classifying the current document as a member of a respective the database specific category of the selected document.
    Type: Grant
    Filed: April 14, 2016
    Date of Patent: April 7, 2020
    Assignee: DocAuthority Ltd.
    Inventors: Ariel Peled, Itay Reved
  • Patent number: 10609044
    Abstract: One or more processors mark a set of data fields associated with a first trigger in a first trigger-action pair with a taint, where a trigger event triggers an action event in a trigger-action pair. One or more processors mark a first action associated with the first trigger-action pair with the taint, and detect a second trigger associated with a second trigger-action pair. One or more processors then propagate the taint from the first trigger-action pair to the second trigger, and prevent a second action associated with the second trigger-action pair in response to detecting the taint in the second trigger.
    Type: Grant
    Filed: June 12, 2017
    Date of Patent: March 31, 2020
    Assignee: International Business Machines Corporation
    Inventors: Benjamin E. Andow, Suresh N. Chari, Heqing Huang, Kapil K. Singh
  • Patent number: 10606993
    Abstract: Computer systems and methods are provided for transmitting authorization information to an image capturing device. A computing system receives, from an image capturing device, captured image data that includes a first facial image and an image of a document that includes a second facial image. The first facial image and the second facial image are included a single image frame. The captured image data is analyzed to determine a first portion of the captured image data that corresponds to the first facial image and a second portion of the captured image data that corresponds to the second facial image. The first portion of the captured image data is compared with the second portion of the captured image data. In accordance with a determination that the first facial image and the second facial image meet matching criteria, authorization information is transmitted to the image capturing device.
    Type: Grant
    Filed: August 9, 2017
    Date of Patent: March 31, 2020
    Assignee: Jumio Corporation
    Inventors: Reinhard Hochrieser, Lukas Danzer, Lukas Bayer
  • Patent number: 10602314
    Abstract: A system includes a database of image data associated with a vehicle; and control logic configured to cause a user device to capture one or more images and compare data associated with the one or more images with the image data to determine if a user is present in a vehicle and disable a text messaging function at least in part responsive to the determination using the image data.
    Type: Grant
    Filed: March 14, 2018
    Date of Patent: March 24, 2020
    Assignee: Sensoriant, Inc.
    Inventor: Shamim A. Naqvi
  • Patent number: 10599932
    Abstract: A hand holdable, portable apparatus for imaging a portion of an anatomy of a person, without physical contact with the anatomy. The apparatus has a housing, a touchscreen display mounted in the housing, and a plurality of illumination modules disposed on the housing and configured to provide illumination beams at different wavelengths and having different polarizations. A camera is supported on the housing and forms an imaging subsystem for capturing a plurality of acquired images produced by illumination from the illumination modules. A processing subsystem analyzes the acquired images and generates a new image which has enhanced contrast of features associated with at least one of a surface biometric trait of the portion of the anatomy, and/or a subsurface biometric trait of the portion of the anatomy. This image(s) can be used for verification of the person's identity by software incorporated in the portable apparatus or by transmitting information generated by the images to a remote data base.
    Type: Grant
    Filed: June 9, 2015
    Date of Patent: March 24, 2020
    Assignee: Lawrence Livermore National Security, LLC
    Inventor: Stavros Demos
  • Patent number: 10599497
    Abstract: A computer-implemented method includes: receiving, by a computing device, information for composing a first enhanced plug-in, wherein the first enhanced plug-in includes one or more logical components for invoking the first enhanced plug-in by an application running in a different framework as the first enhanced plug-in; receiving, by the computing device, information for creating a workflow that includes a series of a plurality of enhanced plug-ins including the first enhanced plug-in and one or more subsequent second enhanced plug-ins; and invoking, by the computing device, the workflow, wherein the invoking the workflow causes the first enhanced plug-in to receive data from an application running on the same or different framework as the first enhanced plug-in, process the data, and forward the processed data as input data to a particular one of the one or more subsequent second enhanced plug-ins or an endpoint application.
    Type: Grant
    Filed: April 26, 2017
    Date of Patent: March 24, 2020
    Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATION
    Inventors: Mark D. Batinich, Pietro Iannucci, Linwood E. Loving, Allison V. Pelt, Luigi Pichetti
  • Patent number: 10587531
    Abstract: The present embodiments relate to the field of communication technologies, and particularly, to a resource access method and apparatus. In an embodiment, even if a client cannot directly communicate with an authorization server, the client can still initiate authorization verification to the authorization server by using a resource server. Then, the resource server returns a resource access response to the client when receiving an authorization response returned by the authorization server.
    Type: Grant
    Filed: April 24, 2017
    Date of Patent: March 10, 2020
    Assignee: HUAWEI TECHNOLOGIES CO., LTD.
    Inventor: Kepeng Li
  • Patent number: 10587409
    Abstract: A method of interpreting an authorization token is described herein. The service can receive an authorization token from a client device, and validate a signature of the authorization token. The service can identify an allowed function value associated at least part of an entitlement representation contained in a body of the authorization token. The service can convert the allowed function value to an allowed function bitmask that includes bits at a plurality of bit positions that are set to values indicating whether the subscriber element has attributes associated with each of the plurality of bit positions on a predefined attribute list. The service can determine whether the allowed function bitmask indicates that the subscriber element has one or more qualifying attributes that entitle a user of the client device to access the service.
    Type: Grant
    Filed: November 30, 2017
    Date of Patent: March 10, 2020
    Assignee: T-Mobile USA, Inc.
    Inventors: Komethagan Subramaniam, Michael Engan, Ramkishan Sadasivam, Douglas McDorman
  • Patent number: 10587622
    Abstract: A system of controlling one or more building control devices. The system may incorporate receiving from a third party a request for access to a user account at a manufacturer of building control devices, where the user account may be associated with one or more of the user's building control devices from the manufacturer. The third party may be a demand response provider, an aggregator of building control devices, or a different entity. The building control devices may be connected to a network. The system may be implemented over one or more networks with a server, an application programming interface (API), and/or a service bus.
    Type: Grant
    Filed: February 17, 2016
    Date of Patent: March 10, 2020
    Assignee: Ademco Inc.
    Inventors: Sorabh Khurana, Ivo Kubita
  • Patent number: 10581835
    Abstract: In one embodiment, a user password is received in relation to a user identifier, wherein the user identifier and user password are associated with a user account. A request to opt-in to use of system-generated passwords instead of the user password is received. A substitute password for the user account is generated and provided.
    Type: Grant
    Filed: February 20, 2018
    Date of Patent: March 3, 2020
    Assignee: Oath Inc.
    Inventors: Lovlesh Chhabra, Dylan Casey, Atte Lahtiranta, Jonathan Edward Hryn, Alice Francine Gutman
  • Patent number: 10581887
    Abstract: Employing a relatively simple machine learning classifier to explain evidence that led to a security action decision by a relatively complex machine learning classifier. In one embodiment, a method may include identifying training data, training a relatively complex machine learning classifier (MLC) using the training data, making a first security action decision using the relatively complex MLC, performing a security action on a network device based on the first security action decision, training a relatively simple MLC using the training data or using a subset of the training data, making a second security action decision using the relatively simple MLC, extracting evidence that led to the second security action decision by the relatively simple MLC, and explaining the first security action decision by the relatively complex MLC using the evidence extracted from the relatively simple MLC.
    Type: Grant
    Filed: May 31, 2017
    Date of Patent: March 3, 2020
    Assignee: CA, Inc.
    Inventor: Jonathan J. Dinerstein
  • Patent number: 10571865
    Abstract: A wearable device includes: a touch screen; an acceleration sensor configured to generate an acceleration signal; an optical sensor using a light source and configured to generate a touch interrupt signal; and a control unit configured to detect a wearing state of the wearable device, the wearing state of the wearable device including a not-wearing state for the wearable device, a wrist wearing state, and a hand gripping state on the basis of the acceleration signal and the touch interrupt signal, and to execute a function corresponding to the wearing state of the wearable device.
    Type: Grant
    Filed: August 29, 2018
    Date of Patent: February 25, 2020
    Assignee: LG ELECTRONICS INC.
    Inventors: Hongjo Shim, Gukchan Lim, Youngho Sohn, Seonghyok Kim, Chohee Kwon, Hyunwoo Kim
  • Patent number: 10572639
    Abstract: A computing device is described that selectively displays or suppresses personalized information on a lock screen based on the results of a biometric user authentication process. In embodiments, a measure of confidence that a user of the computing device is an authorized user is determined based on biometric data collected by one or more biometric sensors. If it is determined that the measure of confidence satisfies a criterion, then personal information associated with the user is selectively rendered to the lock screen while the computing device is in the locked state. If it determined that the measure of confidence does not satisfy the criterion, then such personal information may be suppressed from the lock screen. The application of the foregoing technique to selectively provide or deny access to certain functionality of the computing device via the lock screen is also described.
    Type: Grant
    Filed: March 14, 2016
    Date of Patent: February 25, 2020
    Assignee: Microsoft Technology Licensing, LLC
    Inventors: Sangeeta Ranjit, Craig T. McIntyre, Kanna Ramasubramanian, Peter Dawoud Shenouda Dawoud
  • Patent number: 10565362
    Abstract: Method and apparatus for authentication of a user to a server that involves the user performing a requested act and that further involves relative movement between the user and a camera wherein fiducial marks are captured.
    Type: Grant
    Filed: June 25, 2018
    Date of Patent: February 18, 2020
    Assignee: VNS Portfolio LLC
    Inventors: Beau Robertson Parry, Yasodekshna Boddeti
  • Patent number: 10565389
    Abstract: A file management apparatus includes a receiving unit and a display controller. The receiving unit receives plural pieces of identification information of plural users who are allowed to access a file. The display controller controls display of a storage place that the users corresponding to the plural pieces of identification information received by the receiving unit are able to access, among storage places for which access right is set.
    Type: Grant
    Filed: April 13, 2017
    Date of Patent: February 18, 2020
    Assignee: FUJI XEROX CO., LTD.
    Inventor: Toru Otsuka
  • Patent number: 10558328
    Abstract: A method and apparatus are disclosed for automatically switching display screen of an electronic device from a locked-screen interface to an internal interface of an application upon unlocking of the display screen using an unlocking application. The switching to the internal interface of the application may be achieved via either explicit or implicit call via the configuration information of the application associated with the internal interface and the unlocking application.
    Type: Grant
    Filed: August 11, 2016
    Date of Patent: February 11, 2020
    Assignee: XIAOMI INC.
    Inventors: Yuanyuan Huang, Yang Hu
  • Patent number: 10552587
    Abstract: The disclosed subject matter relates to systems, methods, and media for media session concurrency management with recurring license renewals. More particularly, the disclosed subject matter relates to using recurring license renewals for concurrent playback detection and concurrency limit enforcement for video delivery services and managing server resources for handling such recurring license renewals.
    Type: Grant
    Filed: February 4, 2019
    Date of Patent: February 4, 2020
    Assignee: Google LLC
    Inventors: David Kimbal Dorwin, Thomas William Inskip, Mark David Scott
  • Patent number: 10547600
    Abstract: Techniques for multifactor authentication as a network service are disclosed. In some embodiments, a system, process, and/or computer program product for multifactor authentication as a network service includes monitoring a session at a firewall, applying an authentication profile based on the new session, and performing an action based on the authentication profile.
    Type: Grant
    Filed: September 30, 2016
    Date of Patent: January 28, 2020
    Assignee: Palo Alto Networks, Inc.
    Inventors: Ashwath Sreenivasa Murthy, Karthik Ganesan, Prabhakar M V B R Mangam, Shriram S. Jandhyala, Martin Walter
  • Patent number: 10540510
    Abstract: A system is configured to manage access to electronic documents on mobile wireless devices. An exit system detects when a particular user attempts to remove a particular mobile wireless device from a building. The exit system sends a request to a manager system, via a network, to determine whether the user is authorized to remove one or more electronic documents or information that are on the particular mobile wireless device from the building. In response to determining that the particular user is not authorized, the system renders the one or more electronic documents or information inaccessible on the particular mobile wireless device.
    Type: Grant
    Filed: April 28, 2016
    Date of Patent: January 21, 2020
    Assignee: RICOH COMPANY, LTD.
    Inventor: Tetsuro Motoyama
  • Patent number: 10541813
    Abstract: Embodiments of the disclosure provide a method of incorporating multiple authentication systems and protocols. The types of authentication systems and protocols can vary based on desired assurance levels. A Centralized Authentication System together with an authentication policy dictates acceptable authentication systems. Authorization data for each authorization system are captured and packaged into a single Object Data Structure. The authorization data can be compared to data stored in an identity store for authentication. The authorization data can also be used for user and device registration and for transferring an authentication or registration token from a previously authenticated and registered device to a new device.
    Type: Grant
    Filed: May 8, 2017
    Date of Patent: January 21, 2020
    Assignee: Aetna Inc.
    Inventors: Salil Kumar Jain, Abbie Barbir, Sylvan Tran, Jay Marehalli, Derek Swift
  • Patent number: 10538122
    Abstract: An identification device includes: an observation object shape frame display configured to display, on a display screen, an observation object shape image indicating a shape of an anti-counterfeit medium observed at an observation angle, and display image data that is an image of an imaging object of an image-capturing device, the anti-counterfeit medium being designed such that an observed pattern of light varies as the observation angle varies; a shape similarity calculator configured to calculate a shape similarity between the observation object shape image and an outer shape of the anti-counterfeit medium; and an imaging determinator configured to perform imaging determination as to whether the observation angle and an observation position of the image-capturing device are correct based on whether the shape similarity is equal to or greater than a shape similarity threshold.
    Type: Grant
    Filed: August 28, 2017
    Date of Patent: January 21, 2020
    Assignee: TOPPAN PRINTING CO., LTD.
    Inventors: Takashi Okada, Tomohito Masuda
  • Patent number: 10540492
    Abstract: A method and apparatus is disclosed for password pattern recognition based authentication on a computer virtual screen, which hides passwords in plain view, visually camouflaged and disguised in a manner that makes them easily and quickly recognizable only to authorized password owners. The user is challenged to recognize multi-character password fragment patterns, and select them in proper order, from one or more visually challenging, constantly changing dynamic menus. The menus display fewer but larger user interface elements, for easier use on small screens, including thumb operation. The invention leverages innate human pattern recognition abilities which are superior to robotic, machine computational methods. Selection can involve methods such as gestures, touching, tapping, drawing connecting lines, and navigation of spring loaded menus. Selection can be also be accomplished by biometric measurement of unconscious user recognition.
    Type: Grant
    Filed: May 1, 2017
    Date of Patent: January 21, 2020
    Inventor: Forbes Holten Norris, III
  • Patent number: 10542042
    Abstract: The APPARATUSES, METHODS AND SYSTEMS FOR A SECURE RESOURCE ACCESS AND PLACEMENT PLATFORM (“SRAP PLATFORM”) provides a secure supporting infrastructure within a corporate network framework and applications based thereon for use and placement of corporate resources. A non-trusted device may be authorized to access and use corporate resources, and the corporate network server may manage the placement of resources via the SRAP PLATFORM.
    Type: Grant
    Filed: December 18, 2018
    Date of Patent: January 21, 2020
    Assignee: Goldman Sachs & Co. LLC
    Inventors: Harpreet Singh Labana, Yair Israel Kronenberg, Brian J. Saluzzo
  • Patent number: 10540493
    Abstract: System and methods are disclosed for organizations to run a test against an active directory list to see if any user-provided passwords have been part of an existing data breach. Utilizing information from such a test identifies users that have weak passwords, reused passwords or shared passwords that have been associated with an earlier breach. With this information, the organization can seek to reduce risk by training staff for this specific issue in a timely and appropriate manner to significantly reduce the risk of a future breach by those identified users. Training can be customized and targeted at those users who attempt to use passwords that have been associated with a breach (either of their own account or of another account on the same or related domain.
    Type: Grant
    Filed: September 19, 2018
    Date of Patent: January 21, 2020
    Assignee: KnowBe4, Inc.
    Inventor: Greg Kras
  • Patent number: 10542569
    Abstract: A method for accessing communication networks includes receiving by a device an identification of a communication network; determining whether the identification corresponds to a registered communication network; if the identification corresponds to a registered communication network, generating a password for accessing the communication network by applying a cryptographic function parameterized with a secret value associated with the communication network to the identification; and automatically establishing a connection of the device to the communication network using the generated password. Furthermore, methods for managing access to communication networks and providing communication networks are disclosed. A corresponding client device, service infrastructure and service provider infrastructure are also detailed.
    Type: Grant
    Filed: August 6, 2015
    Date of Patent: January 21, 2020
    Assignee: TMRW FOUNDATION IP S. À R.L.
    Inventor: Cevat Yerli
  • Patent number: 10536456
    Abstract: A method for identifying user information includes obtaining a first user identifier of a user in a social network; obtaining identity authentication information corresponding to the first user identifier; determining whether the identity authentication information is associated with a second user identifier; and storing, when the identity authentication information is associated with the second user identifier, an association relationship between the first user identifier and the second user identifier.
    Type: Grant
    Filed: September 22, 2017
    Date of Patent: January 14, 2020
    Assignee: TENCENT TECHNOLOGY (SHENZHEN) COMPANY LIMITED
    Inventors: Haiyang Wang, Zixuan Zhao, Jiwei Guo
  • Patent number: 10534936
    Abstract: An information handling system includes a processor and a baseboard management controller (BMC). The BMC receives a secure copy protocol (SCP) file including configuration information for the processor, determines whether the BMC is in a lockdown mode in response to receiving the SCP file, and applies the configuration information to change a configuration of the processor in response to determining that the information handling system is not in the lockdown mode.
    Type: Grant
    Filed: August 30, 2017
    Date of Patent: January 14, 2020
    Assignee: Dell Products, LP
    Inventors: Jason M. Young, Marshal F. Savage
  • Patent number: 10528764
    Abstract: Systems and methods are provided for sharing maps in a collaborative environment using classification-based access control. The generation of and dissemination of maps and/or data within such maps can be governed by classification-based access control, where a user's classification level can determine whether or not maps and/or data within those maps can be seen. In scenarios whether a plurality of users wishes to collaborate on the same map, the systems and methods provided herein generate multiple versions or views of the same map in accordance with different classification levels. In this way, users with different classification levels can nevertheless see the same map and engage in collaborations regarding the same map, while maintaining control of sensitive data.
    Type: Grant
    Filed: November 7, 2018
    Date of Patent: January 7, 2020
    Assignee: Palantir Technologies Inc.
    Inventors: Peter Wilczynski, Andrew Elder, Andrew Moreland, John Carrino, Daniel Cervelli, John Garrod, Timothy Wilson
  • Patent number: 10528750
    Abstract: In accordance with embodiments, there are provided mechanisms and methods for displaying one or more data sets to a user. These mechanisms and methods for displaying one or more data sets to a user can enable enhanced data security, more relevant data display, reduced processing, etc.
    Type: Grant
    Filed: April 5, 2017
    Date of Patent: January 7, 2020
    Assignee: salesforce.com, inc.
    Inventors: Donovan A. Schneider, Guillaume Le Stum, Leo Tenenblat, Wei Li
  • Patent number: 10523708
    Abstract: A system and method are disclosed that leverage multi-factor authentication features of a service provider and intelligent call routing to increase security and efficiency at a customer call center. Pre-authentication of customer support requests reduces the potential for misappropriation of sensitive customer data during call handling. A contactless card uniquely associated with a client may provide a second factor of authentication via a backchannel to reduce the potential for malicious third-party impersonation of the client prior to transfer of the call to the customer call center. Pre-authorized customer support calls may be intelligently and efficiently routed directly to call center agents, without incurring further delay. During call handling, call center agents may initiate further client authentication processes, including contactless card authentication requests, over one or more different communication channels for authorizing access to sensitive information or to allay suspicion.
    Type: Grant
    Filed: March 18, 2019
    Date of Patent: December 31, 2019
    Assignee: Capital One Services, LLC
    Inventors: Rajko Ilincic, Kaitlin Newman, Jeffrey Rule
  • Patent number: 10523671
    Abstract: A system performs mobile biometric identification system enrollment using a known biometric. The system receives a digital representation of a first biometric for a person. Prior to using the digital representation of the first biometric to identify the person, the system compares a received digital representation of a second biometric for the person to known biometric data for the person. When the digital representation of the first biometric has been thus verified, the system is operative to identify the person using the digital representation of the first biometric.
    Type: Grant
    Filed: April 3, 2019
    Date of Patent: December 31, 2019
    Assignee: ALCLEAR, LLC
    Inventor: Stewart Whitman
  • Patent number: 10521817
    Abstract: Pre-paid transaction card systems and methods are described. A transaction system can include a transaction database to store transaction objects that represent characteristics of a pre-paid transaction card. A deal engine communicatively coupled with the transaction database can receive an image of a marker-less portion of the transaction card and derive a set of image descriptors from the marker-less portion. The deal engine can also identify transaction characteristics associated with the card from the transaction database using the image descriptors. In addition, the deal engine can construct a deal recommendation based on the transaction characteristics previously identified. The deal recommendation can be transmitted to a user, and in some cases, displayed to the user as an augmented reality image.
    Type: Grant
    Filed: April 2, 2014
    Date of Patent: December 31, 2019
    Assignee: Nant Holdings IP, LLC
    Inventor: Patrick Soon-Shiong
  • Patent number: 10523658
    Abstract: Methods and systems for securing a data connection for communicating between two end-points are described herein. One of the end-points may be a server and the other of the end-points may be a client that wants to communicate with the server. The data connection may be secured based on a previously-established secure connection and/or a self-signed or self-issued certificate. In some variations, by using the previously-established secure connection and/or a self-signed or self-issued certificate, the secure communication between the server and the client may be conducted without using a third-party authentication service and without requiring a third-party CA to issue a certificate for the server.
    Type: Grant
    Filed: September 5, 2017
    Date of Patent: December 31, 2019
    Assignee: Citrix Systems, Inc.
    Inventors: Julien Brouchier, Andrew David Cooper, Richard James Cooper, Jean-Luc Claude Robert Giraud, Ian Wright, Christopher Morgan Mayers
  • Patent number: 10517038
    Abstract: A method and device for generating access point attribute information about a wireless access point is provided. The method includes obtaining an attribute operation by a user on a wireless access point, and determining access point attribute information about the wireless access point according to the attribute operation.
    Type: Grant
    Filed: February 2, 2018
    Date of Patent: December 24, 2019
    Inventors: Fayou Zhang, Yingjun Zhao