Access Control Or Authentication Patents (Class 726/2)
  • Patent number: 10298618
    Abstract: A social networking system user creates an album including a shared collection of content (a “shared album”) and associates a privacy model with the shared album. The privacy model specifies additional users of the social networking system authorized to access content items in the shared album and specifies types of actions users authorized to access content items in the shared album are permitted to perform to content items in the shared album. Notifications describing actions associated with content items in a shared album may be presented to users authorized to access the shared album. The social networking system may prompt a user to create a shared album containing based on actions performed by the user or performed by connected to the user.
    Type: Grant
    Filed: December 5, 2016
    Date of Patent: May 21, 2019
    Assignee: Facebook, Inc.
    Inventors: Jeffrey Andrew Kanter, Robert Michael Baldwin, Paul Francois Carduner, Sai Wo Li, Paul Tarjan, Fred Yuehua Zhao
  • Patent number: 10289865
    Abstract: A computer-implemented method for providing kinship-based accessibility to securely stored data may include (1) identifying encrypted data that is encrypted with a first cryptographic key which was derived from heritable biometric information obtained from a first person, (2) receiving heritable biometric information obtained from a second person related to the first person within a predetermined degree, (3) generating a second cryptographic key based at least in part on the heritable biometric information obtained from the second person, and (4) decrypting the encrypted data that is encrypted with the first cryptographic key derived from the heritable biometric information obtained from the first person by using the second cryptographic key generated based at least in part on the heritable biometric information obtained from the second person. Various other methods, systems, and computer-readable media are also disclosed.
    Type: Grant
    Filed: March 8, 2016
    Date of Patent: May 14, 2019
    Assignee: Symantec Corporation
    Inventors: Ilya Sokolov, Kevin Jiang
  • Patent number: 10289859
    Abstract: A first request is received from a first user to access a first file system management objects (FSMOs) of a first tenant unit (TU), the first TU being one of a plurality of TUs. The first FSMO is one of a plurality of FSMOs, each FSMO containing namespace information of a particular tenant. In response to the first request, it is determined whether the first user is authorized to access the first FSMO, including identifying TUs that are associated with the first user, determining whether the first TU is included in the TUs, and if so, determining whether the first FSMO is included in FSMOs associated with the first TU. In response to determining that the first FSMO is included in a set of one or more FSMOs that are associated with the first TU, the first user to access the first FSMO is allowed.
    Type: Grant
    Filed: September 16, 2016
    Date of Patent: May 14, 2019
    Assignee: EMC IP Holding Company LLC
    Inventors: Subhasish Chakraborty, Ravi V. Chitloor, Terry G. Hahn, Hongyu Zhang
  • Patent number: 10284596
    Abstract: A cloaking authority system that securely and anonymously identifies a misbehaving device based on its digital certificate. The system may include a cloaking authority server or device that is communicatively connected to a misbehavior authority server, and may also include a pseudonym certificate authority device, and a registration authority device. The cloaking authority device receives, from the misbehavior authority server, a request for a cloak index, wherein the request for the cloak index includes the linkage value from a PC of a misbehaving computerized device. The cloaking authority device processes the linkage value to produce a cloak index, which identifies the misbehaving computerized device and which is unique and anonymous, and transmits it to the requesting misbehavior authority server. The misbehavior authority server uses the cloak index to identify the specific computerized device that has misbehaved, usually repeatedly.
    Type: Grant
    Filed: October 31, 2018
    Date of Patent: May 7, 2019
    Assignee: INTEGRITY SECURITY SERVICES LLC
    Inventor: Erik S. Schetina
  • Patent number: 10284561
    Abstract: A method of providing an image Completely Automatic Public Turing test to tell Computers and Humans Apart (CAPTCHA), and a server thereof. The method includes: outputting an image CAPTCHA including a plurality of images including a determination object image; receiving an image selection from the image CAPTCHA; determining whether a test of the image CAPTCHA is passed, based on the received image selection; and determining what the determination object image means. The images include a first group of images used to determine whether an accessing party passes the image CAPTCHA test and a second group of images unused to determine whether the accessing party passes the image CAPTCHA test. The second group includes the determination object image. The determining of the pass of the image CAPTCHA test is performed by selecting an image representing a correct or incorrect answer from the first group.
    Type: Grant
    Filed: July 13, 2016
    Date of Patent: May 7, 2019
    Assignee: Korea University Research and Business Foundation
    Inventors: Shinil Kwon, Sungdeok Cha
  • Patent number: 10277739
    Abstract: A system, method, and computer readable medium for confirmation and verification of address data associated with a data communication. The invention provides a method of obtaining at least one of the first address information and the second address information, converting by a processor one of the first address information and the second address information to a format compatible for comparison with the other of the first address information and the second address information, and quantifying a difference between the converted one of the first address information and the second address information and the other of the first address information and the second address information.
    Type: Grant
    Filed: January 4, 2016
    Date of Patent: April 30, 2019
    Assignee: OPEN INVENTION NETWORK LLC
    Inventors: Jill M. Vacek, Mark J. Pettay, Hendryanto Rilantono, Mahmood S. Akhwand
  • Patent number: 10268436
    Abstract: A communication apparatus displays an image on a display unit, transmits a display image displayed on the display unit to another communication apparatus by wireless communication, transmits a confirmation image for confirming a transmission destination of the display image to the another communication apparatus by wireless communication to display the confirmation image on the another communication apparatus, selects, by a user operation, whether to transmit the display image to the another communication apparatus, after transmission of the confirmation image and before transmission of the display image, and transmits the display image to the another communication apparatus if it is selected in the selecting to transmit the display image.
    Type: Grant
    Filed: October 5, 2015
    Date of Patent: April 23, 2019
    Assignee: Canon Kabushiki Kaisha
    Inventor: Kunio Isonishi
  • Patent number: 10264865
    Abstract: Luggage as well as systems, devices, methodologies, and software for use with such luggage are disclosed. The luggage may include one or more compartments and lids that can be locked. The luggage may also include an identification device for obtaining information identifying a user and a computing device, such as a microcontroller or processor. The computing device may be configured to compare identification information with reference identification information to determine whether a user is authorized to access an interior of the luggage. Based on results of the comparison, the computing device may control a locking mechanism to unlock one or more of lids of the luggage to allow a user access to the interior of the luggage. The luggage may also include a GPS transceiver for tracking the luggage, a sensor for weighing the luggage, or a coupling mechanism to couple the luggage to another piece of luggage.
    Type: Grant
    Filed: December 11, 2017
    Date of Patent: April 23, 2019
    Assignee: Matte-Veede FZE
    Inventor: Jonathan Jacob
  • Patent number: 10270799
    Abstract: A system uses a probabilistic technique to determine the vulnerability of similar assets based on the data provided on some assets. The probabilistic technique includes stages of preparing data followed by calculating probability; a preparing data stage, including gathering the latest vulnerability reports of all assets in a system with the help of known scanners; creating open vulnerabilities; enriching the obtained data of open vulnerabilities; creating all vulnerabilities; enriching the obtained data of all vulnerabilities. Following this stage, probability calculation may be done for three cases, when asset information is known, when asset information is partially unknown, and when asset information is completely unknown based on the data taken from open vulnerabilities and all vulnerabilities categorized into blocks of 6 months based on the time at which they have been reported to NIST/MITRE.
    Type: Grant
    Filed: May 4, 2017
    Date of Patent: April 23, 2019
    Assignee: PALADION NETWORKS PRIVATE LIMITED
    Inventors: Vinod Vasudevan, Rajat Mohanty, Harshvardhan Parmar
  • Patent number: 10270769
    Abstract: Systems and methods for analyzing applications on a mobile device for risk so as to maintain the privacy of the application user are provided. In the example method, the process receives a request from a mobile device. The request includes a cryptographic representation of application information for an application residing on a mobile device. The method includes comparing the cryptographic representation to an application information database that includes cryptographic representations of applications. The method also includes automatically remediating, e.g., quarantining and retiring, the application if the application matches an application that is a known risk in the database. Exemplary embodiments provide companies with controls to prevent specific applications—which have specific behaviors and are present on mobile devices being used by employees—from being used by employees, without the company having any visibility into what particular applications are being used by the employees on the mobile device.
    Type: Grant
    Filed: November 21, 2017
    Date of Patent: April 23, 2019
    Assignee: Proofpoint, Inc.
    Inventor: David Alexander Jevans
  • Patent number: 10270752
    Abstract: The present disclosure describes systems and methods for processing security sensor data that enhances the ability of a user to quickly and efficiently review portions of the sensor data streams.
    Type: Grant
    Filed: March 27, 2018
    Date of Patent: April 23, 2019
    Assignee: Datawatch Systems, Inc.
    Inventors: Para Weerasuriya, Kenny Reed
  • Patent number: 10263999
    Abstract: Disclosed are a system for securely accessing a network address, and a device and a method therein. The system for securely accessing a network address comprises a terminal device and a security control server. The security control server stores security attributes of known network addresses. The terminal device comprises: a scanner, used for scanning a two-dimensional code; a decoder, used for decoding the two-dimensional code scanned by the scanner to obtain a network address corresponding to the two-dimensional code; a transmission interface, used for transmitting the network address to a security control server for check, and receiving a security attribute of the network address from the security control server; and a monitor, used for forbidding or allowing the connection of the network address according to the security attribute of the network address.
    Type: Grant
    Filed: February 24, 2014
    Date of Patent: April 16, 2019
    Assignee: BEIJING QIHOO TECHNOLOGY COMPANY LIMITED
    Inventors: Tao Li, Xu Zhang, Yi Ding
  • Patent number: 10262166
    Abstract: A networked radio frequency identification system includes a plurality of radio frequency identification (RFID) tag readers, a computer in signal communication with the RFID tag readers over a network, and a software module for storage on and operable by the computer that localizes RFID tags based on information received from the RFID tag readers using a network model having endpoints and oriented links. In an additional example, at least one of the RFID tag readers includes an adjustable configuration setting selected from RF signal strength, antenna gain, antenna polarization, and antenna orientation. In a further aspect, the system localizes RFID tags based on hierarchical threshold limit calculations. In an additional aspect, the system controls a locking device associated with an access point based on localization of an authorized RFID tag at the access point and reception of additional authorizing information from an input device.
    Type: Grant
    Filed: June 19, 2013
    Date of Patent: April 16, 2019
    Assignee: Lucomm Technologies, Inc.
    Inventor: Lucian Cristache
  • Patent number: 10262148
    Abstract: The SECURE DYNAMIC PAGE CONTENT AND LAYOUTS APPARATUSES, METHODS AND SYSTEMS (“DPCL”) transform dynamic layout template requests, device, user, and surroundings security profiles, and layout usage monitor packages using DPCL components into customized secure dynamic layouts. In some implementations, the disclosure provides a processor-implemented method of transforming the content of an electronically generated user facing page for displaying on a user display.
    Type: Grant
    Filed: May 19, 2013
    Date of Patent: April 16, 2019
    Assignee: VISA INTERNATIONAL SERVICE ASSOCIATION
    Inventor: Stephen W. Cote
  • Patent number: 10256977
    Abstract: Sets of files may be represented using signatures. As described, an audit system can scan a file hierarchy that includes a root directory and a plurality of elements (e.g., directories, data files, and archive files) to identify elements satisfying an element selection criteria. The audit system creates element descriptors by identifying, for each respective identified element, one or more element component values and creating an element descriptor from the element component values. The audit system forms a string descriptor comprising an aggregation of the element descriptors and generates a signature for the string descriptor. The signature may be stored in association with metadata for the root directory. The audit system can identify multiple sets of files represented by equivalent signatures and record the representations of the set of files compactly.
    Type: Grant
    Filed: February 18, 2014
    Date of Patent: April 9, 2019
    Assignee: Synopsys, Inc.
    Inventors: Damon Alexander Weinstein, Randolph Byrd Kilmon, Jr.
  • Patent number: 10255332
    Abstract: A computer-implemented method for sharing access to a database of records relating to clinical trial investigators amongst a number of users is disclosed. Each record includes a number of data fields associated with a clinical trial investigator and has associated metadata indicating a record owner. The method comprises: a) receiving a database query from a first user; b) resolving the query using a first subset of the records in the database including only those records for which the associated metadata indicates that the record owner is the first user and those records for which the associated metadata indicates that the record owner is another user which has registered a sharing rule in respect of the first user, whereby the first user is granted permission to access its records; and c) generating a result set including only those records used to resolve the query that satisfy the query.
    Type: Grant
    Filed: May 7, 2013
    Date of Patent: April 9, 2019
    Assignee: DRUGDEV INC.
    Inventors: Dimitrie Hugo Stephenson, James Herschel Gryphon Shafer, Melissa Jane Easy
  • Patent number: 10235262
    Abstract: An application performance management system is disclosed. Operational elements are dynamically discovered and extended when changes occur. Programmatic knowledge is captured. Particular instances of operational elements are recognized after changes have been made using a fingerprint/signature process. Metrics and metadata associated with a monitored operational element are sent in a compressed form to a backend for analysis. Metrics and metadata from multiple similar systems may be used to adjust/create expert rules to be used in the analysis of the state of an operational element. A 3-D user interface with both physical and logical representations may be used to display the results of the performance management system.
    Type: Grant
    Filed: June 10, 2016
    Date of Patent: March 19, 2019
    Assignee: Instana, Inc.
    Inventors: Pavlo Baron, Fabian Lange, Mirko Novakovic, Peter Abrams
  • Patent number: 10218518
    Abstract: An authentication server according to embodiments performs statistical processing on a plurality of pieces of ID data acquired from an electronic device including a PUF circuit generating the pieces of ID data (S1052 to S1071), determines whether the plurality of pieces of ID data are physical random numbers based on a result of the statistical processing (S1072), and when the plurality of pieces of ID data are determined to be physical random numbers, recognizes the result of authentication of the electronic device as a success of authentication (S1073), and when the plurality of pieces of ID data are determined not to be physical random numbers, recognizes a result of authentication of the electronic device as a failure of authentication (S1074).
    Type: Grant
    Filed: February 27, 2017
    Date of Patent: February 26, 2019
    Assignee: Kabushiki Kaisha Toshiba
    Inventors: Tetsufumi Tanamoto, Shinichi Yasuda, Satoshi Takaya, Masafumi Mori, Takao Marukame
  • Patent number: 10218724
    Abstract: This document describes apparatuses and techniques for monitoring social media for breach of organizational privacy. In some aspects, these techniques receive social media content from a social media site or social media stream. The social media content is compared with organizational information that includes private information and public information to determine an amount of private data disclosed by the social media content. Based on a ratio of amounts of the private data and public data disclosed, a score is provided that indicates a degree to which the social media content breaches organizational privacy.
    Type: Grant
    Filed: February 4, 2016
    Date of Patent: February 26, 2019
    Assignee: Adobe Inc.
    Inventors: Balaji Vasan Srinivasan, Shriraj Harish Bhardwaj, Priyanja Singh, Ponnurangam Kumaraguru, Akash Verma
  • Patent number: 10205755
    Abstract: Instead of utilizing a centralized server or hardware (routers/gateways) to enforce connectivity policy restrictions, the policy connectivity restrictions for media session traffic are enforced by an endpoint that is involved in the media communication. Based on the policy requirements, the client enforces the policy restrictions by restricting the candidates that may be selected for the establishment of the media path. For example, the enforcement may result in the client selecting a path from available candidates that avoids congested Wide Area Network (WAN) links, avoiding a low bandwidth link, or possibly even failing the communication completely. The clients may also provide periodic updates to the policy server to allow tracking of the utilization of managed WAN links.
    Type: Grant
    Filed: October 26, 2015
    Date of Patent: February 12, 2019
    Assignee: Microsoft Technology Licensing, LLC
    Inventors: Rajesh Gunnalan, Humayun Mukhtar Khan, Abhinav Bose
  • Patent number: 10205852
    Abstract: An information processing system includes a first storage that stores user information about one or more users of the information processing system; a second storage; a first determining unit that determines, depending on whether a program sets the second storage to store predetermined user information from the user information stored in the first storage, the predetermined user information being used in the program, whether to store the predetermined user information in the second storage; and a user information process unit that obtains the predetermined user information from the user information and stores the predetermined user information in the second storage if the first determining unit determines that the predetermined user information is to be stored in the second storage.
    Type: Grant
    Filed: December 16, 2015
    Date of Patent: February 12, 2019
    Assignee: Ricoh Company, Ltd.
    Inventor: Tadashi Nagata
  • Patent number: 10200524
    Abstract: A hand-held tool system includes at least one mobile sensor device. The mobile sensor device has at least one base unit and at least one communication unit. The communication unit is configured to communicate with the hand-held power tool. The hand-held tool system further includes at least one function device configured to be detachably connected to the mobile sensor device such that a functionality of the mobile sensor device is expanded.
    Type: Grant
    Filed: December 19, 2016
    Date of Patent: February 5, 2019
    Assignee: Robert Bosch GmbH
    Inventors: Joern Stock, Florian Esenwein, Joachim Schadow
  • Patent number: 10192075
    Abstract: The solution provides a method of secret information entering into an electronic digital device by a user via the input/output device, when the electronic digital device assigns a multimedia information designed for interaction containing the elements (1) is such a way that their relation to control elements of the electronic digital device is variable between individual displays. Then, the user selects elements (1) of multimedia information designed for interaction assigned to elements (2) of secret information in an order corresponding with the order of elements (2) of secret information, so by selecting the elements (1) of multimedia information designed for interaction the user selects the elements (2) of secret information in given order.
    Type: Grant
    Filed: July 11, 2014
    Date of Patent: January 29, 2019
    Assignee: ADUCID S.R.O.
    Inventor: Libor Neumann
  • Patent number: 10187353
    Abstract: Methods, apparatuses and systems facilitating enhanced classification of network traffic based on observed flow-based and/or host-based behaviors.
    Type: Grant
    Filed: June 1, 2011
    Date of Patent: January 22, 2019
    Assignee: SYMANTEC CORPORATION
    Inventors: Suresh Babu Muppala, Guy Riddle, Scott Andrew Hankins
  • Patent number: 10187386
    Abstract: Disclosed are approaches for native enrollment of mobile devices. A first message is received from a client device, wherein the first message comprises an enrollment request for the client device. An application is sent to the client device, wherein the application is to be installed on the client device. A second message is received from the client device, wherein the second message comprises an authentication request from the client device. Authentication credentials are then provided to the installed application. A third message is received from the client device, wherein the third message comprises an enrollment confirmation for the client device. The enrollment status of the client device is then changed. Finally, a policy is sent to the installed application.
    Type: Grant
    Filed: October 27, 2015
    Date of Patent: January 22, 2019
    Assignee: AIRWATCH LLC
    Inventors: Varun Murthy, Kalyan Regula, Shravan Shantharam, Jason Roszak
  • Patent number: 10181020
    Abstract: A system receives a source and a metadata layer that describes the source. The source may comprise source records with fields containing source data, and the metadata layer may include metadata comprising at least one of a field data type, a field data length, a field description, or a record length. The processor may further validate the metadata layer against the source and write results to a log. The processor may further be configured for transforming the source records into transformed records for a load ready file. The processor may further balance a number of records in the source against a number of transformed records in the load ready file to generate a transformation failure rate.
    Type: Grant
    Filed: September 21, 2015
    Date of Patent: January 15, 2019
    Assignee: AMERICAN EXPRESS TRAVEL RELATED SERVICES COMPANY, INC.
    Inventors: Upendra Mardikar, Wael Ibrahim
  • Patent number: 10178092
    Abstract: Methods and apparatus in accordance with various embodiments provide for private service IDs for utilization in wireless devices in neighbor aware networks. One aspect of the subject matter described in the disclosure provides a method of transmitting service information in a wireless neighborhood aware network. The method includes generating a first message having a first service identifier. The first service identifier includes a first hash value based on a service name and timing information. The first hash value is generated by applying a first hash function. The method further includes transmitting the first message.
    Type: Grant
    Filed: November 14, 2014
    Date of Patent: January 8, 2019
    Assignee: QUALCOMM Incorporated
    Inventors: Santosh Paul Abraham, Alireza Raissinia, George Cherian
  • Patent number: 10176150
    Abstract: A computer-implemented method for remotely providing fonts for an electronic document comprises receiving a request to access an electronic document from a user terminal; locating an original version of the electronic document; selecting a code point encoding scheme from a plurality of code point encoding schemes based on a parameter in the request to access the electronic document; converting the original version of the electronic document to a second version of the electronic document based on the selected code point encoding scheme; and providing the second version of the electronic document to the user terminal.
    Type: Grant
    Filed: August 20, 2015
    Date of Patent: January 8, 2019
    Assignee: International Business Machines Corporation
    Inventors: Hsiao-Yung Chen, Chao Yuan Huang, Yin Qian, Yu-Hsing Wu, Wen Ke Xue
  • Patent number: 10168904
    Abstract: Methods for use in a dispersed storage network (DSN) to retrieve encoded data from memory device of an impaired storage unit. In various examples, a computing device of the DSN issues requests to a plurality of storage units, including the impaired storage unit, to recover at least a decode threshold number of encoded data slices of a set of encoded data slices. When the impaired storage unit determines that it is not able to quickly retrieve the requested data slice for provision to the computing device, the impaired storage unit promptly issues a quasi-error response instead. When the computing device receives less than the decode threshold number of encoded data slices and a quasi-error response, it may elect to issue another slice request(s) to another storage unit(s) and/or issue a continue request instructing the impaired storage unit to continue processing the request to recover the data slice stored therein.
    Type: Grant
    Filed: March 13, 2017
    Date of Patent: January 1, 2019
    Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATION
    Inventors: Niall J. McShane, Jason K. Resch
  • Patent number: 10166643
    Abstract: A method for making safe the use of at least one hand-held power tool includes providing at least one item of safety information using at least one evaluation unit of an electronic safety device. The at least one item of safety information is based on at least one application-specific characteristic quantity. The electronic safety device is configured to be fastened to an extremity of a user using a fastening unit.
    Type: Grant
    Filed: December 19, 2016
    Date of Patent: January 1, 2019
    Assignee: Robert Bosch GmbH
    Inventors: Joern Stock, Florian Esenwein, Joachim Schadow
  • Patent number: 10171134
    Abstract: If RF intensity is strong, an excessive voltage may be generated in an NFC IC to destroy the IC. Thus, an inexpensive arrangement for preventing the NFC IC from being destroyed is required. According to an embodiment of this invention, an electric device for performing short distance wireless communication with a mobile terminal by induced power from the mobile terminal has the following arrangement. That is, the arrangement includes an antenna configured to generate the induced power by an RF signal from the mobile terminal, an element configured to drop a peak voltage generated by the induced power, a circuit driven by the dropped voltage and configured to perform the short distance wireless communication, and a light emission element driven by the dropped voltage and configured to emit light.
    Type: Grant
    Filed: November 14, 2017
    Date of Patent: January 1, 2019
    Assignee: Canon Kabushiki Kaisha
    Inventor: Takaya Suto
  • Patent number: 10171506
    Abstract: Systems and methods for managing users' local security policies based on social media network information are provided. According to one embodiment, a network security appliance of a private network receives authentication request from a client machine and provides a social login interface of a social media network to the client machine. After a user of the client machine is authenticated by the social media network through a personal social media network account of the user, the network security appliance receives an authentication and a user profile of the user from the social media network. The network security appliance extracts social relationship information from the user profile and determines a local network security policy for the user based on the social relationship information.
    Type: Grant
    Filed: March 21, 2016
    Date of Patent: January 1, 2019
    Assignee: Fortinet, Inc.
    Inventor: Pankajkumar Chechani
  • Patent number: 10169937
    Abstract: Systems and methods for multifactor physical authentication are disclosed. In one embodiment, a method for accessing an entitlement at a facility using multifactor physical authentication may include (1) receiving, at a first electronic interface at a facility, an individual identifier from an individual; (2) at least one computer processor presenting a challenge to the individual; (3) the at least one computer processor receiving, at a second interface, a response to the challenge; (4) the at least one computer processor authenticating the individual based on the individual identifier and the response; (5) the at least one computer processor retrieving at least one authorized entitlement associated with the individual identifier; and (6) the at least one computer processor activating the entitlement at the facility associated with the authorized entitlement.
    Type: Grant
    Filed: October 20, 2016
    Date of Patent: January 1, 2019
    Assignee: JPMorgan Chase Bank, N.A.
    Inventors: Robert V. Zwink, Alex Lieberman, Chip Bell, Simon R. Hobson
  • Patent number: 10158626
    Abstract: Implementations of the present disclosure relate to methods, systems and products for access control. In one implementation, a computer-implemented method is proposed. According to the method, a token for accessing an object is received from a terminal device via a communication channel, where the communication channel is built based on a Light Fidelity connection which is deployed within a restrictive area. A validity of the received token is determined. An access to the object is controlled based on the validity of the received token.
    Type: Grant
    Filed: June 16, 2017
    Date of Patent: December 18, 2018
    Assignee: International Business Machines Corporation
    Inventors: Zi Lian Ji, Ping Li, Yong Chao Li, Xian Dong Meng, Zhao Li Wang
  • Patent number: 10154061
    Abstract: A cloaking authority system that securely and anonymously identifies a misbehaving device based on its digital certificate. The system may include a cloaking authority server that is communicatively connected to a misbehavior authority server, a pseudonym certificate authority device, and a registration authority device. In response to a request from the misbehavior authority server to identify a misbehaving device using the device's pseudonym certificate, the cloaking authority server interacts with the pseudonym certificate authority device and the registration authority device to securely obtain a representation of the linkage chain identifier that is associated with the misbehaving device, while maintaining the anonymity of the real-world identifying information for the misbehaving device. The cloaking authority server creates a cloak index that corresponds to the linkage chain identifier and that identifies the misbehaving device, and provides the cloak index to the misbehavior authority server.
    Type: Grant
    Filed: May 4, 2018
    Date of Patent: December 11, 2018
    Assignee: INTEGRITY SECURITY SERVICES, INC.
    Inventor: Erik S. Schetina
  • Patent number: 10152060
    Abstract: A method reduces a risk exposure to an item being transported by a self-driving vehicle (SDV). One or more processors determine a risk-level R for contents of a smart vault that is being transported by the SDV, where R describes a real-time risk of the contents being stolen from the smart vault while being transported by the SDV. In response to determining that R is greater than a predefined risk value, one or more processors electronically communicate an executable instruction to a SDV on-board computer to take a risk-lowering action that will reduce the level of R.
    Type: Grant
    Filed: March 8, 2017
    Date of Patent: December 11, 2018
    Assignee: International Business Machines Corporation
    Inventors: Michael S. Gordon, Ashish Kundu, Clifford A. Pickover
  • Patent number: 10152716
    Abstract: Secure transactions are achieved over a public network by using a private network to handle the sensitive information of the transaction. When a client requests a product from a vendor server over a public network, the vendor server notifies a facilitation server on the public network. This results in the client receiving a set of computer readable instructions from the facilitation server. The set of instructions provide access instructions to a transaction server system on the private network so that sensitive transaction information is sent to the transaction server system on the private network rather than over the public Internet. Where the sensitive information is credit card information, the transaction server system may obtain authorization for the transaction from a financial institution and then notify the vendor accordingly.
    Type: Grant
    Filed: April 18, 2011
    Date of Patent: December 11, 2018
    Assignee: RIAVERA CORP.
    Inventor: Mark Itwaru
  • Patent number: 10152729
    Abstract: A location-based information system and method therefor, which is responsive to the user's selection of geographic zone and parameters. A proprietary app (application) is installed in a mobile device of the user, which insures that a connection to the user from a caller is based on the user's defined zone and other parameters without the disclosing the exact location of the user. Various embodiments of the invention provide an option for user-to-user location-based connection without depending on a remote server.
    Type: Grant
    Filed: July 21, 2017
    Date of Patent: December 11, 2018
    Inventor: Boaz Hyman
  • Patent number: 10148646
    Abstract: A computing platform may receive, from a social messaging server, a request to authenticate a user to a user account associated with a client portal. In response to receiving the request, the computing platform may send, to the social messaging server, an authentication token request message. Thereafter, the computing platform may receive, from the social messaging server, an authentication token. The computing platform may validate the authentication token received from the social messaging server. Based on validating the authentication token received from the social messaging server, the computing platform may generate a validation message directing a client support server to provide the user with access to the user account. Subsequently, the computing platform may send the validation message to the client support server, which may cause the client support server to initiate a client support session with the user via the social messaging service provided by the social messaging server.
    Type: Grant
    Filed: July 20, 2016
    Date of Patent: December 4, 2018
    Assignee: Bank of America Corporation
    Inventors: Elizabeth S. Votaw, Andrew T. Keys, Ashish Arora
  • Patent number: 10148651
    Abstract: Embodiments provide methods, devices and computer program arranged to facilitate authenticated communication between a user device and a service associated with a network. One embodiment comprises an apparatus which, in response to authenticating a user device on the basis of a first authentication protocol, transmits a request for a credential of a first type to an authentication server associated with the network via a communications link therebetween, the credential of the first type being for use by the apparatus to obtain a credential of a second type on behalf of the user device from the authentication server. Subsequently, the apparatus transmits a request for a credential of a second type to the authentication server via the communications link therebetween, the credential of the second type being for use by the user device in establishing authenticated communication with the service. The credential of the second type is then transmitted to the user device.
    Type: Grant
    Filed: November 17, 2014
    Date of Patent: December 4, 2018
    Assignee: BlackBerry Limited
    Inventors: Sanjiv Maurya, Luis Chirinos, Bobby Abraham, Simon Brooks
  • Patent number: 10148632
    Abstract: Methods and apparatus are disclosed for facilitating online storage of files (e.g., audio tracks, video, etc.) for playback/access or sale/exchange by the owners of the files without violating copyrights that copyright holders have in the files. For example, by providing a playback service that does not store additional versions of an audio file when the file is transmitted to, and immediately played on, a user device without buffering, the present invention avoids violating copyright laws by not making copies of the file. Numerous other aspects are disclosed.
    Type: Grant
    Filed: October 2, 2015
    Date of Patent: December 4, 2018
    Assignee: CFPH, LLC
    Inventors: Howard W. Lutnick, Dean P. Alderucci
  • Patent number: 10148652
    Abstract: A controlling access to data exchanged between a management unit of a respective electrical installation and a relay platform, each management unit has a first identifier which is linked to a global network by a gateway having a second identifier between each management unit and the platform, for each frame, obtaining the first identifier, receiving the platform of a request to access the data exchanged, the request including an access parameter and a third identifier of an element originating the transmission of the request, determining the first identifier on which the access parameter depends, comparing the third identifier with the second identifier exchanged by the management unit having the first determined identifier, authorizing access, for the communication terminal, to the data exchanged by the management unit having the first determined identifier, if, in the comparison step, the second and third identifiers are identical.
    Type: Grant
    Filed: June 6, 2016
    Date of Patent: December 4, 2018
    Assignee: SCHNEIDER ELECTRIC INDUSTRIES SAS
    Inventors: Benoit Frelon, Michael Pyle
  • Patent number: 10140264
    Abstract: Multimedia content is featured on user pages of an online social network using embed codes that are generated using a configuration file associated with the source ID for the multimedia content and a content ID for the multimedia content. The configuration file, the source ID and the content ID are stored locally by the online social network so that any changes to the embed codes can be made by changing the configuration file associated with the source and regenerating the embed codes. By managing multimedia content in this manner, greater control can be exercised by the online social network over the multimedia content that are featured on its user pages.
    Type: Grant
    Filed: December 27, 2011
    Date of Patent: November 27, 2018
    Assignee: Facebook, Inc.
    Inventors: William K. Tiu, Jr., Jeffrey J. Roberto
  • Patent number: 10140583
    Abstract: Methods, systems, and apparatus are disclosed which include receiving an indication of a floor plan of a building project; receiving an indication of an inspection report, the inspection report associated with an inspection type; identifying a forecast date associated with each room in the floor plan, the forecast date indicating when an inspection type associated with the respective room is to be completed; for each room, determining how close each room's forecast date is to a present date, and if the room's forecast date is past the present date; generating a visual map of the floor plan; associating a color of each room in the floor plan based on the determining; and providing the visual map with the associated color of each room for display.
    Type: Grant
    Filed: August 25, 2016
    Date of Patent: November 27, 2018
    Assignee: Healthcare Technical Services, Inc.
    Inventor: William Clemenson
  • Patent number: 10127748
    Abstract: A system having a mobile key unit (2) for reading and writing data from at least one external device (3) of a facility (4), wherein the data at least comprise identification data for the device (3) to be checked, and wherein the mobile key unit (2) has a first transmission/reception unit (5) by means of which the data can be transmitted wirelessly between the device (3) and the key unit (2), wherein the key unit (2) has a first memory (6), the key unit (2) has at least one secure channel (7) having a first evaluation unit (8) and the first transmission/reception unit (5) and has at least one second channel (12) having a second evaluation unit (13) and a second transmission/reception unit (10) by means of which data can be wirelessly transferred between the device (3) and the key device (2), wherein the data can at least be transmitted using one of the transmission/reception units.
    Type: Grant
    Filed: March 1, 2017
    Date of Patent: November 13, 2018
    Assignee: SICK AG
    Inventor: Fabio Brunner
  • Patent number: 10127388
    Abstract: Techniques are disclosed for mitigating against registering a domain name that is confusingly similar to a pre-existing domain name, possibly for the purpose of fooling users. In embodiments, a domain name is presented for registration. The domain name is rendered as an image, and optical character recognition is performed on the image to extract the rendered text. This extracted text is compared against a list of domain names for which confusingly similar domain names cannot be registered, and when the extracted text matches a domain name in this list of domain names, registration of the domain name is denied.
    Type: Grant
    Filed: August 26, 2014
    Date of Patent: November 13, 2018
    Assignee: Amazon Technologies, Inc.
    Inventors: Stefan Popuveniuc, Peter Zachary Bowen, Alexander Edward Schoof, Andrew Jeffrey Doane, Todd Lawrence Cignetti, Robert Eric Fitzgerald
  • Patent number: 10114962
    Abstract: Protecting data files is disclosed, including: in response to an indication that a data file has been generated by a client device, determining a security classification associated with the data file; determining that the security classification associated with the data file comprises a classified file; storing the data file in a designated virtual storage area; and generating a stub file at an original storage location of the data file, wherein the stub file includes a viewing permission associated with the data file and a storage location of the data file in the designated virtual storage area.
    Type: Grant
    Filed: May 18, 2016
    Date of Patent: October 30, 2018
    Assignee: Alibaba Group Holding Limited
    Inventor: Changxiong Lin
  • Patent number: 10116654
    Abstract: The invention proposes a method for cloning a first secure element from a backup secure element of a user, said backup secure element comprising at least credentials of said user. The method comprises a preliminary phase of checking the authenticity of the first secure element using a second secure element, said second secure element being able to be paired with a third secure element.
    Type: Grant
    Filed: September 3, 2013
    Date of Patent: October 30, 2018
    Assignee: GEMALTO SA
    Inventor: Alain Rhelimi
  • Patent number: 10109142
    Abstract: A retail environment having retail terminals with data entry point devices selectively encrypts input received by the data entry point devices and passes the encrypted data to a security module. The selective encryption is based on whether or not sensitive or confidential information, such as a personal identification number (PIN) associated with a debit card, is being input. To prevent hacking of the software of the retail terminal, content destined for display on the retail terminal is authenticated prior to display. In this manner, the retail terminal may be assured that confidential information is input only when desired, and thus may be encrypted only as needed.
    Type: Grant
    Filed: May 27, 2011
    Date of Patent: October 23, 2018
    Assignee: Gilbarco Inc.
    Inventors: Philip A. Robertson, Rodger K. Williams, Timothy M. Weston
  • Patent number: RE47313
    Abstract: A system and method of encrypting digital content in a digital container and securely locking the encrypted content to a particular user and/or computer or other computing device is provided. The system uses a token-based authentication and authorization procedure and involves the use of an authentication/authorization server. This system provides a high level of encryption security equivalent to that provided by public key/asymmetric cryptography without the complexity and expense of the associated PKI infrastructure. The system enjoys the simplicity and ease of use of single key/symmetric cryptography without the risk inherent in passing unsecured hidden keys. The secured digital container when locked to a user or user's device may not open or permit access to the contents if the digital container is transferred to another user's device. The digital container provides a secure technique of distributing electronic content such as videos, text, data, photos, financial data, sales solicitations, or the like.
    Type: Grant
    Filed: November 16, 2017
    Date of Patent: March 19, 2019
    Assignee: DIGITAL REG OF TEXAS, LLC
    Inventors: Eugene B. Phillips, II, Seth Ornstein