Prevention Of Unauthorized Use Of Data Including Prevention Of Piracy, Privacy Violations, Or Unauthorized Data Modification Patents (Class 726/26)
  • Patent number: 10846694
    Abstract: Techniques for enhancing the security of a communication device when conducting a transaction using the communication device may include using a limited-use key (LUK) to generate a transaction cryptogram, and using a signature key to generate a signature. The transaction can be an offline data authentication transaction, and access can be granted based on authentication of the signature prior to verifying the transaction cryptogram.
    Type: Grant
    Filed: May 21, 2015
    Date of Patent: November 24, 2020
    Assignee: Visa International Service Association
    Inventors: Erick Wong, Christian Aabye, Christian Flurscheim, Christopher Jones
  • Patent number: 10834188
    Abstract: Provided are a method, a system, and a computer program product in which metadata associated with data is maintained, wherein the metadata indicates whether storage of the data is restricted geographically. A controller receives a request to store the data in cloud storage comprising a plurality of cloud servers located in a plurality of geographical locations. The controller determines where to store the data in the cloud storage, by interpreting the metadata.
    Type: Grant
    Filed: March 23, 2016
    Date of Patent: November 10, 2020
    Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATION
    Inventors: Matthew G. Borlick, Lokesh M. Gupta, Micah Robison
  • Patent number: 10834191
    Abstract: In various embodiments, methods and systems for enhanced access to storage data based on a collaboration data proxy system are provided. A plurality of metadata tables on one or more peer nodes are referenced for data corresponding to a data request of a requesting node. The metadata tables indicate availability of chunks of data in the one or more peer nodes. A determination is made that the data corresponding to the data request is downloadable from the one or more node; the determination is based on the metadata tables. A download operation configuration instance is generated for a data request of a requesting node. The download operation configuration instance comprises configuration settings for downloading data corresponding to the data request from the one or more peer nodes. The chunk of data is downloaded from the corresponding one or more peer nodes where the chunk is located, using the configuration settings.
    Type: Grant
    Filed: February 15, 2018
    Date of Patent: November 10, 2020
    Assignee: Microsoft Technology Licensing, LLC
    Inventors: Nicolaas Deodorus Peelen, Wang Hui, Jun Tang, Sridhar Srinivasan, Mingqiang Xu, Yan Huang
  • Patent number: 10831904
    Abstract: Automatically discovering attribute permissions is provided. A profile indicating a set of attributes that can be converted into permissions for a new target instance is provided. In response to detecting that the new target instance is being added, a convertible set of attributes for the new target instance is searched for based on the profile. Search results for the convertible set of attributes are displayed. Ones of the convertible set of attributes are selected as a set of attribute permissions for the new target instance for access control to the new target instance.
    Type: Grant
    Filed: April 9, 2018
    Date of Patent: November 10, 2020
    Assignee: International Business Machines Corporation
    Inventors: Mark Braksator, Daniel Biskar, Bassam Hassoun
  • Patent number: 10826965
    Abstract: Various embodiments of systems, computer program products, and methods to monitor a network to identify network issues are described herein. In an aspect, requests are routed to access a sample application at predetermined time intervals via different defined network paths between a monitoring application unit and the sample application in a network. Response codes associated with execution of the requests are received from the sample application via the corresponding defined network paths. Execution results of the requests to include the response codes and execution time of the requests corresponding to the different defined network paths are recorded. Further, the execution results for a time period are analyzed to identify network issues in the network. Identifying the network issues includes identifying problematic network paths based on the analysis of the execution results, and identifying problematic network components in the problematic network paths by analyzing the problematic network paths.
    Type: Grant
    Filed: November 29, 2016
    Date of Patent: November 3, 2020
    Assignee: SAP SE
    Inventor: Stoyan Boshev
  • Patent number: 10824560
    Abstract: A data processing system and method for protecting a memory from unauthorized accesses are provided. The data processing system includes a system bus, a memory coupled to the system bus through a memory controller, and a processing core including a cache system. The memory controller is coupled to the system bus for controlling accesses to the memory that are requested by the processing core. A memory protection circuit uses one or more memory safety violation (MSV) indicators stored in out-of-bounds areas of the memory for detecting when the processing core attempts to access an out-of-bounds area of the memory. The processing core generates an error signal, such as an interrupt, when an attempt to access the out-of-bounds area is detected. The out-of-bounds area may be an unallocated area of the memory. The MSV indicator may be written to the memory by executing a flush instruction of the cache system, and may include the same number of bits as a cache line of the cache system.
    Type: Grant
    Filed: February 18, 2019
    Date of Patent: November 3, 2020
    Assignee: NXP B.V.
    Inventors: Jan Hoogerbrugge, Marcel Medwed, Ventzislav Nikov, Asier Goikoetxea Yanci
  • Patent number: 10826998
    Abstract: A protocol to initiate a session with a partner site in a digital medium environment is described. Systems that initiate partner-site sessions according to this improved protocol reduce exposure of sensitive information in relation to conventional systems that leverage conventional protocols. According to the improved protocol, a system initiating a partner-site session—to obtain functionality from a respective service provider system—creates a hidden storage area (e.g., an iframe) in a local security context. The system then uses this hidden storage area to store session information—which may include sensitive, personally identifying information—rather than using storage of the respective service provider system. By avoiding communication of sensitive information for storage by the service provider system, the system does not expose the sensitive information. Due to this, the system reduces a number of opportunities for maliciously acquiring that information.
    Type: Grant
    Filed: July 19, 2018
    Date of Patent: November 3, 2020
    Assignee: Adobe Inc.
    Inventor: Allan Keith Mashinter
  • Patent number: 10824738
    Abstract: A privacy-preserving analysis system that provides functionality to analyze disparate data sets (and identify correlations) while making individual re-identification prohibitively difficult (even through repeated analysis). The system creates a large proxy data set by oversampling the underlying data and randomly masking a predictable number of fields in the proxy data sets to create sufficient uncertainty in the analysis results. The system may also use a distributed encryption process, secure communications, and secure multiparty computing to prevent personally-identifying information in remotely-stored underlying data from being determined. In the distributed encryption process, each of a plurality of distributed computing devices may be configured to encrypt personally-identifying information using an identical process (and identical encryption keys).
    Type: Grant
    Filed: March 22, 2018
    Date of Patent: November 3, 2020
    Assignee: HealthVerity, Inc.
    Inventors: Austin I. D. Eliazar, Andrew E. Kress, Bradley A. Malin
  • Patent number: 10817597
    Abstract: A system and method for controlling access to a resource by an application are provided. The system includes a server that includes a memory and a processor. The memory includes instructions executable by the processor to execute the application by a development system configured to use one of a tracking mode and an enforcement mode. If the development system is configured to use the tracking mode, the system updates an access log for the resource responsive to the application accessing the resource, and creates an application manifest using the access log. The application manifest is configured for use in controlling access to the resource by the application executing on a production system.
    Type: Grant
    Filed: April 20, 2017
    Date of Patent: October 27, 2020
    Assignee: ServiceNow, Inc.
    Inventors: Christopher Santford Tucker, Carl Solis, Derek Washington
  • Patent number: 10817621
    Abstract: An anonymization processing device is provided that anonymizes input data and outputs anonymized output data. The device receives the input data, anonymizes the input data, to generate anonymized data corresponding to the input data, and stores the anonymized data in a first memory. When a plurality of anonymized data items stored in the memory satisfy an anonymity index, the device generates and output a plurality of output data items corresponding to the anonymized data items, respectively, and deletes the anonymized data items from the first memory. The device further generates a plurality of the anonymization patterns based on the anonymized data items, stores the anonymization patterns in a second memory, and when the information items included in the anonymized data stored in the first memory is equivalent to each of the information items included in the anonymization pattern, respectively, the device outputs the output data from the anonymized data.
    Type: Grant
    Filed: January 12, 2016
    Date of Patent: October 27, 2020
    Assignee: NTT PC Communications Incorporated
    Inventors: Keisuke Takahashi, Kosuke Yabuki, Yusuke Kumihashi
  • Patent number: 10819514
    Abstract: An electronic component of an electronic device, a method of starting an electronic device, and an encryption method. The electronic device includes a key storage unit that stores a first key, a key protection circuit that controls access of the key storage unit, and a storage unit that stores a second key and encrypted booting instructions. The method of starting an electronic device includes steps of: reading the first key from the key storage unit; reading the second key from the storage unit; generating a third key according to the first key and the second key; using the third key to decrypt the encrypted booting instructions; and executing the booting instructions.
    Type: Grant
    Filed: September 21, 2017
    Date of Patent: October 27, 2020
    Assignee: REALTEK SEMICONDUCTOR CORPORATION
    Inventors: Chen-Feng Kuo, Ji-Pin Jou
  • Patent number: 10817829
    Abstract: A method for executing a smart recall of a plurality of manufactured units is provided. The method may include, inter alia, using a database architecture to administer a supply chain for the units, assigning each component of the units a distributed ledger (blockchain) identification (ID), and additional pieces of information such as a serial number of the component, a date of manufacture of the component, a location of manufacture of the component, an ID associated with the source of the component, and/or the ID(s) of one or more subcomponent unit(s) of the component. The assigned information is stored in the database architecture. The method may also include generating a private database supplier key and a manufacturer key. The method further includes: transmitting a notice to downstream manufacturers, transmitting a notice to a regulatory agency to implement safety procedures and/or unit and transmitting a recall notice.
    Type: Grant
    Filed: February 23, 2018
    Date of Patent: October 27, 2020
    Assignee: Bank of America Corporation
    Inventors: William P. Jacobson, John C. Checco
  • Patent number: 10819519
    Abstract: Data can be protected in a centralized tokenization environment. A security value is received by a central server from a client device. The central server accesses a token table corresponding to the client device and generates a reshuffled static token table from the accessed token table based on the received security value. When the client device subsequently provides data to be protected to the central server, the central server tokenizes the provided data using the reshuffled static token table and stores the tokenized data in a multi-tenant database. By reshuffling token tables using security values unique to client devices, the central server can protect and store data for each of multiple tenants such that if the data of one tenant is compromised, the data of each other tenant is not compromised.
    Type: Grant
    Filed: November 13, 2018
    Date of Patent: October 27, 2020
    Assignee: Protegrity Corporation
    Inventors: David Clyde Williamson, George Curran, Raul Ortega, Jan Boberg, Rajnish Jain, Yigal Rozenberg
  • Patent number: 10812517
    Abstract: A method includes detecting a storage device. The method also includes performing a check-in process so that the storage device is recognizable by one or more protected nodes within a protected system and not recognizable by nodes outside of the protected system while the storage device is checked-in. The method further includes storing data associated with one or more cyber-security threats on the storage device. The method may also include detecting the storage device a second time and retrieving audit data on the storage device, where the audit data identifies which of the one or more protected nodes accessed the data on the storage device. The method may further include performing a check-out process so that the storage device is recognizable by the nodes outside of the protected system and not recognizable by the one or more protected nodes within the protected system while the storage device is checked-out.
    Type: Grant
    Filed: March 27, 2017
    Date of Patent: October 20, 2020
    Assignee: Honeywell International Inc.
    Inventors: Eric D. Knapp, Eric T. Boice
  • Patent number: 10809874
    Abstract: Provided is a mobile terminal which allows pieces of furniture to be virtually arranged. A mobile terminal according to one embodiment of the present invention comprises: a wireless communication unit which is capable of communicating with an external server or an external device; a display unit for displaying an execution screen of a certain application; and a control unit, wherein the execution screen at least comprises: a first area for displaying a first image corresponding to a certain area; a second area for displaying information on each of a plurality of pieces of furniture which can virtually be arranged on the first image; and a third area which includes a chat room for exchanging opinions related to the virtual arrangement of the pieces of furniture on the first image, with a user of at least one predetermined external device on which the certain application is installed.
    Type: Grant
    Filed: November 13, 2019
    Date of Patent: October 20, 2020
    Assignee: LG ELECTRONICS INC.
    Inventors: Euikyeom Kim, Kyungtae Oh, Seungju Choi, Yoonjung Son
  • Patent number: 10812566
    Abstract: A method and system for forming hybrid cluster to process log files are described. In example embodiments, a method configures a node to execute as a first slave node. The first slave node executes in a first operating environment. The method also adds the first slave node to a Hadoop cluster. The Hadoop cluster includes a second slave node that operates in a second and different operating environment.
    Type: Grant
    Filed: August 8, 2017
    Date of Patent: October 20, 2020
    Assignee: PayPal, Inc.
    Inventors: Chi-Hsien Chiu, Patrick Crane, Alyssa Neckorcuk, Gyanit Singh, Neelakantan Sundaresan
  • Patent number: 10803199
    Abstract: Computer-readable mediums, according to various embodiments, store computer-executable instructions for: (1) scanning computer code to determine what types of personal information the computer code collects or analyzes; (2) prompting a first one or more individuals for information regarding this aspect of the computer code (e.g., why the computer code is collecting the personal information); (3) communicating this information to a second set of one or more individuals; (4) receiving, from the second set of individuals, a recommended revision to the computer code that would facilitate the compliance of the computer code with one or more privacy standards; (5) facilitating the implementation of the revision; and (6) generating a report listing the one or more revisions that have been completed.
    Type: Grant
    Filed: December 2, 2019
    Date of Patent: October 13, 2020
    Assignee: OneTrust, LLC
    Inventor: Kabir A. Barday
  • Patent number: 10803081
    Abstract: A method, a processing device and a computer program product are provided. Based on parameters pertaining to a data source, a first processing device may determine whether a data source is a known data source. If the data source is determined to be the known data source, then the first processing device sends respective configuration information to multiple processing devices. The respective configuration information being based on configuration information from a previous integration and configuring the multiple processing devices as an operational data pipeline to extract data from the known data source, transform the extracted data to a first data model employed by a data system, and load the transformed data into the data system.
    Type: Grant
    Filed: June 30, 2017
    Date of Patent: October 13, 2020
    Assignee: International Business Machines Corporation
    Inventors: Christopher L. Crabtree, Anyi Li, Scott J. McCallen, Kaveh Noorbakhsh, Patrick J. Sullivan, Matthew J. Wollerman, II
  • Patent number: 10803476
    Abstract: There are provided systems and methods for monitoring device application usage for completion of checkout data processing. A computing device may be utilized to perform one or more actions while utilizing an application executable by the device, including a browser application or merchant application that allows a user to view an online marketplace and purchase items in a transaction. Prior to checkout and transaction processing, the device may be used to browse items, and items may be added to a shopping cart. However, the device may not finish electronic transaction processing for the items, for example, where the device does not enter transaction processing details and/or navigates away from the items or cart. A service provider may utilize past actions to determine whether the action indicates that the device is abandoning use of the application, including electronic transaction processing. If so, an incentive may be provided to continue use.
    Type: Grant
    Filed: December 28, 2017
    Date of Patent: October 13, 2020
    Assignee: PAYPAL, INC.
    Inventor: Braden Christopher Ericson
  • Patent number: 10803215
    Abstract: A method includes detecting submission of a first quantum circuit for compilation, the first quantum circuit comprising a first set of quantum logic gates; generating a first gate index, the first gate index comprising an ordered table of a subset of the set of quantum logic gates, each quantum logic gate of the subset of quantum logic gates including a corresponding set of qubits acted on by the quantum logic gate; comparing the first gate index with a second gate index to determine a structural equality of the first quantum circuit and the second quantum circuit; and parameterizing, in response to determining a structural equality of the first quantum circuit and the second quantum circuit, a first set of parameters of a second set of quantum logic gates of the second quantum circuit with a second set of parameters of the first set of quantum logic gates.
    Type: Grant
    Filed: December 18, 2018
    Date of Patent: October 13, 2020
    Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATION
    Inventors: Don Greenberg, Marco Pistoia, Ali Javadiabhari, Richard Chen, Jay M. Gambetta
  • Patent number: 10796121
    Abstract: A system, method, and computer-readable medium for decoding an encoded geometry. Decoding the encoded geometry includes: scanning an encoded geometry, the scanning comprising scanning a plurality of multi-dimensional symbols of the encoded geometry; identifying each of the plurality of multi-dimensional symbols; decoding each identifier multi-dimensional symbol to provide encoded geometry information; accessing an encoded geometry repository; and, retrieving data associated with the encoded geometry information.
    Type: Grant
    Filed: May 31, 2019
    Date of Patent: October 6, 2020
    Assignee: Dell Products L.P.
    Inventors: Scott C. Lauffer, Matthew B. Gilbert, Richard W. Guzman
  • Patent number: 10795699
    Abstract: A central management interface is provided for a plurality of different storage clusters of different storage domains. An indication of one of the plurality of different storage clusters is received. A native user interface version of the indicated storage cluster is determined. The determined native user interface version is loaded to provide a native management interface of the indicated storage cluster within a user interface context of the central management interface.
    Type: Grant
    Filed: March 28, 2019
    Date of Patent: October 6, 2020
    Assignee: Cohesity, Inc.
    Inventors: Subramanian Sethumadhavan, Jeffrey Howard, Mahesh Kumar, David Coblentz
  • Patent number: 10789325
    Abstract: The present disclosure relates to prefetching dynamic URLs. For example, one disclosed method includes the steps of receiving breadcrumb information from a first client device, the breadcrumb information comprising a dynamic URL, a dynamically-generated value, and an indication of a method of generating the dynamically-generated value; determining a template for the dynamic URL based on the dynamically-generated value and the method of generating the dynamically-generated value; receiving a request for a hint for the URL; and in response to receiving the request for the hint from a second client device, transmitting the template for the dynamic URL to the second client device.
    Type: Grant
    Filed: August 26, 2016
    Date of Patent: September 29, 2020
    Assignee: VIASAT, Inc.
    Inventors: Peter J Lepeska, Devin R Toth
  • Patent number: 10789590
    Abstract: An Internet of Thing (IoT) device includes a transceiver coupled to a processor. Blockchain smart contracts can be used with the device to facilitate secure operation.
    Type: Grant
    Filed: December 7, 2018
    Date of Patent: September 29, 2020
    Inventors: Bao Tran, Ha Tran
  • Patent number: 10789366
    Abstract: In a security information management device (10), security information, which is information related to security, is collected. The security information management device (10) extracts, by referring to a security dictionary storing therein a keyword related to security for each attribute, a keyword from referrer security information that becomes a source to be compared with security information for relevance thereto, and calculates, by comparing the extracted keyword with a keyword included in the collected security information, relevance between the referrer security information and the security information. The security information management device (10) then output security information having higher calculated relevance more preferentially.
    Type: Grant
    Filed: June 18, 2014
    Date of Patent: September 29, 2020
    Assignee: NIPPON TELEGRAPH AND TELEPHONE CORPORATION
    Inventors: Tohru Sato, Yasushi Okano, Hiroshi Asakura, Shingo Orihara
  • Patent number: 10789073
    Abstract: An aspect includes receiving a request to boot a software image on a machine including a plurality of processing units having different characteristics. A processing unit subtype identifier is extracted from a license record for the machine. The processing unit subtype identifier includes a software image type and an allocation of the processing units of the processing unit subtype. A processing unit capability of the machine is queried. The software image is enabled with the allocation of the processing units based on verifying that a software image identifier of the software image matches the software image type from the processing unit subtype identifier, and the processing unit capability of the machine meets the allocation of the processing units from the processing unit subtype.
    Type: Grant
    Filed: December 18, 2018
    Date of Patent: September 29, 2020
    Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATION
    Inventors: Fabian Kulmann, Angel Nunez Mencias, Benno Schuepferling, Jakob Christopher Lang
  • Patent number: 10783275
    Abstract: A method may include receiving content included in a social media post of a user; analyzing the content included in the social media post to determine a likelihood that the social media post contains security information associated with the user; transmitting an alert to a computing device of the user, based on the analyzing, that the content includes the security information associated with the user; and presenting an option to change the security information.
    Type: Grant
    Filed: March 20, 2018
    Date of Patent: September 22, 2020
    Assignee: Wells Fargo Bank, N.A.
    Inventors: Tambra Nichols, Matthew P. Schlachtman, Michael A. Tilaro, Tleytmas N. Stephenson, Roohi Moolla
  • Patent number: 10783375
    Abstract: A system and method for grouping independent machine learnt artificial intelligence to generate collective “machine wisdom” to obtain higher accuracy in identification of tags, objects and actions in a video includes an input module, Media Asset Management (MAM) module, catalogue module and a machine learning module. The input module allows the user to upload one or more videos into a media Enterprise Resource Planning (ERP) solution, a media asset management solution, or an Over-the-Top (OTT) Video Content Management System (CMS). The system further predicts and improves the vision parameters by using collective artificial intelligence machines through mutual learnt models and thereby enables higher accurate video identification resolution and cataloguing of a problem or its prediction in lesser period of time.
    Type: Grant
    Filed: August 13, 2018
    Date of Patent: September 22, 2020
    Assignee: APPTARIX MOBILITY SOLUTIONS PVT LTD
    Inventors: Muralidhar Kolar Sridhar, Adrish Bera
  • Patent number: 10779164
    Abstract: An improved technique for identifying a user's mobile device is discussed. A persistent and unified identifier that bridges mobile app to mobile web and to other web browser-compatible mediums is utilized. Using a unique verification identifier, the unified identifier is consistently verified, revived and distributed across application and browser mediums.
    Type: Grant
    Filed: May 20, 2019
    Date of Patent: September 15, 2020
    Assignee: ACK Ventures Holdings, LLC
    Inventors: David Ulrich, Harry Kargman, Steve Anson, Jeremy Sadwith, Bernhard Valenti, Ryan McConville
  • Patent number: 10778444
    Abstract: A device receives, from an application, a request to access an attestation key stored in a secure element of the device. The device obtains an attestation policy, by which to verify an identity of the application. The device examines an application file associated with the application, to determine whether the application file satisfies the attestation policy. The device selectively generates a temporary key based on a result of examining the application file. The temporary key may be used to access the attestation key. The temporary key may be generated based on the application file satisfying the attestation policy, and may not be generated based on the application file not satisfying the attestation policy.
    Type: Grant
    Filed: July 11, 2018
    Date of Patent: September 15, 2020
    Assignee: Verizon Patent and Licensing Inc.
    Inventors: Manuel Enrique Caceres, Bruno Mendez, Mauricio Pati Caldeira De Andrada, Warren Hojilla Uy, Young R. Choi
  • Patent number: 10768777
    Abstract: Provided is a mobile terminal which allows pieces of furniture to be virtually arranged. A mobile terminal according to one embodiment of the present invention comprises: a wireless communication unit which is capable of communicating with an external server or an external device; a display unit for displaying an execution screen of a certain application; and a control unit, wherein the execution screen at least comprises: a first area for displaying a first image corresponding to a certain area; a second area for displaying information on each of a plurality of pieces of furniture which can virtually be arranged on the first image; and a third area which includes a chat room for exchanging opinions related to the virtual arrangement of the pieces of furniture on the first image, with a user of at least one predetermined external device on which the certain application is installed.
    Type: Grant
    Filed: November 13, 2019
    Date of Patent: September 8, 2020
    Assignee: LG ELECTRONICS INC.
    Inventors: Euikyeom Kim, Kyungtae Oh, Seungju Choi, Yoonjung Son
  • Patent number: 10769269
    Abstract: Various embodiments are generally directed to an apparatus, method and other techniques for gathering configuration information of a computer system during a system management mode of the computer system and exposing the gathered configuration information to securely attest to the configuration of the system.
    Type: Grant
    Filed: June 30, 2018
    Date of Patent: September 8, 2020
    Assignee: INTEL CORPORATION
    Inventor: Kirk D. Brannock
  • Patent number: 10769001
    Abstract: Process states of computing devices may be obtained and processed. Process event information of a computing device may be obtained. The process event information may characterize states of processes of the computing device. The process event information may be stored within a queue. Graph information may be determined based on the process event information within the queue. The graph information may characterize states of processes of the computing device using nodes and edges. The graph information may be stored within a graph database.
    Type: Grant
    Filed: March 21, 2018
    Date of Patent: September 8, 2020
    Assignee: DiDi Research America, LLC
    Inventors: Dong Li, Huaiyu Zhu, Jing Chen, Michael Lin, Shray Kapoor, Yichong Lin
  • Patent number: 10762237
    Abstract: The invention relates to a method for anonymization of event data collected within a system or network providing a service for subscribers/customers wherein each event data set is related to an individual subscriber/customer of the system/network and includes at least one attribute wherein the method counts the number of event data sets related to varying individual subscribers having identical or nearly identical values for at least one attribute. The invention further relates to a method for anonymization of static data related to individual subscribers of a mobile communication network wherein each static data set consist of different attributes and the method identifies specific profiles derivable form the static data and drops one or more respective attribute of the static data sets and/or classifies two or more static data sets to a certain group having at least one matching attribute.
    Type: Grant
    Filed: October 24, 2014
    Date of Patent: September 1, 2020
    Assignee: Telefónica Germany GmbH & Co. OHG
    Inventors: Jonathan Ukena-Bonfig, Philipp Schöpf
  • Patent number: 10764350
    Abstract: A first request on a second domain associated with the computing device is received, by the computing device, from a user device, in response to the user device processing a webpage associated with a first domain. Handler instructions are sent, by the computing device, to the user device. A second request including a target URL is received, by the computing device, from the user device. Setting instructions to set a first cookie on the second domain associated with the computing device and redirection instructions to redirect the user device to the target URL are sent, by the computing device, to the user device.
    Type: Grant
    Filed: August 1, 2017
    Date of Patent: September 1, 2020
    Assignee: Criteo SA
    Inventor: Omar Benguerah
  • Patent number: 10756968
    Abstract: A management process monitors a cloud, such as a hybrid cloud, for utilization policy compliance rather than burdening requesting users. A hybrid cloud system requests an action directly of a cloud interface process that processes the request using a management process or externally, such as directly through a cloud service. Users complying with utilization policies are able directly to implement actions or resource allocations without the burden of policy enforcement processes intervening at a time an action is requested.
    Type: Grant
    Filed: January 25, 2016
    Date of Patent: August 25, 2020
    Assignee: RAPID7, INC.
    Inventors: Brian Johnson, Andrew Mann, Chris Deramus
  • Patent number: 10754988
    Abstract: A secured storage system includes a non-volatile memory and a controller. The non-volatile memory is configured to store a first data item and a respective first version identifier assigned to the first data item. The controller is configured to receive a second data item accompanied by a second version identifier and a signature, for replacing the first data item in the non-volatile memory, to authenticate at least the second version identifier using the signature, to make a comparison between the stored first version identifier and the second version identifier, and to replace the first data item with the second data item only in response to verifying that (i) the second version identifier is authenticated successfully, and (ii) the second data item is more recent than the first data item, as indicated by the comparison between the stored first version identifier and the authenticated second version identifier.
    Type: Grant
    Filed: August 7, 2017
    Date of Patent: August 25, 2020
    Assignee: WINBOND ELECTRONICS CORPORATION
    Inventors: Nir Tasher, Itay Admon
  • Patent number: 10754931
    Abstract: According to one embodiment, a security manager of a first operating system executed by a processor of a data processing system receives a request received from an application to modify a security settings of the data processing system. In response to the request, the data processing system is restarted into a second operating system, where the second operating system includes functionalities that are fewer than the first operating system. The security settings of the data processing system is modified within the second operating system. After the security settings of the data processing system has been modified, the data processing is rebooted back to the first operating system. A security measure within the first operating system is enforced based on the modified security settings.
    Type: Grant
    Filed: January 19, 2016
    Date of Patent: August 25, 2020
    Assignee: Apple Inc.
    Inventors: Pierre-Olivier J. Martel, Austin G. Jennings
  • Patent number: 10754965
    Abstract: A system and method for protecting presented content text from unauthorized perception. A message comprising presentable data defining presentable content is received. A presence of a privacy indication token within the presentable data is determined. Based on determining the presence of the privacy indication token within the presentable data, a presentation privacy filter is applied to presentations of the presentable content.
    Type: Grant
    Filed: March 8, 2017
    Date of Patent: August 25, 2020
    Assignee: BlackBerry Limited
    Inventors: Neil Patrick Adams, Jeremy Lawson Kominar
  • Patent number: 10754982
    Abstract: A system and method for scrubbing data to be shared between organizations to test a joint solution, and for preventing the introduction of unscrubbed data. Each organization captures a subset of data, which may be customer data from a line of business. The first organization scrubs its data according to scrubbing rules, and then passes the scrubbed data to its test environment, while the second organization passes its unscrubbed data to its test environment. The scrubbed data is communicated to the second organization and is applied to the unscrubbed data in order to scrub it, and then communicate it to the first organization. Both organizations use the scrubbed data in their respective test environments to test the joint solution or joint testing. Scrubbing the data may involve scrubbing only specific data fields containing sensitive information.
    Type: Grant
    Filed: February 17, 2017
    Date of Patent: August 25, 2020
    Assignee: State Farm Mutual Automobile Insurance Company
    Inventors: Murali Chittiprolu, George Ross Lewis
  • Patent number: 10749868
    Abstract: Embodiments described herein are directed to the registration of the same domain with different cloud services networks. For example, systems and methods described herein enable registering a domain in a cloud services network wherein the same domain is also concurrently registered in another cloud services network. Systems and methods described herein further enable selecting one of a plurality of cloud-based identity providers to process a request to authenticate a user associated with a domain that is registered in more than one cloud services network and generating an authentication response in accordance with the selection. Systems and methods described herein also enable the federation of user authentication requests from different cloud services networks to the same enterprise identity provider.
    Type: Grant
    Filed: September 28, 2018
    Date of Patent: August 18, 2020
    Assignee: Microsoft Technology Licensing, LLC
    Inventors: Madan R. Appiah, Maciej J. Cupial
  • Patent number: 10747591
    Abstract: Process states of computing devices may be collected for processing. Process event information of a first computing device may be determined based on an observation of process creation events and process termination events, a garbage collection, and a process scan. The process event information may be provided to a second computing device.
    Type: Grant
    Filed: March 21, 2018
    Date of Patent: August 18, 2020
    Assignee: DiDi Research America, LLC
    Inventors: Dong Li, Huaiyu Zhu, Jing Chen, Michael Lin, Shray Kapoor, Yichong Lin
  • Patent number: 10747524
    Abstract: In one aspect, there is provided a method. The method may include loading, into a first address space of a primary server of a database, a metadata library of an application function library. The application function library may include an application function for performing operations on data held at the database. The metadata library may include a description of the application function. The primary server may determine, based on the metadata library, that executing a database query requires running the application function. The database query may be routed, based on the determination, to a secondary server of the database. The database query may be routed to trigger a loading the application function library into a second address space of the secondary server. Related methods and articles of manufacture are also provided.
    Type: Grant
    Filed: July 13, 2017
    Date of Patent: August 18, 2020
    Assignee: SAP SE
    Inventor: Peter Goertz
  • Patent number: 10746567
    Abstract: Methods, systems, and computer-readable storage media for privacy preserving metering is described herein. A resource threshold value associated with anonymizing meter data for resources metered at a first destination is received. Based on a noise scale value and the resource threshold value, an individual inference value of the first destination is computed. The individual inference value defines a probability of distinguishing the first destination as a contributor to a query result based on anonymized meter data of the first destination and other destinations according to the noise scale value. The noise scale value is defined for a processing application. Based on evaluating the individual inference value, it is determined to provide anonymized meter data for metered resources at the first destination. An activation of a communication channel for providing the anonymized meter data for metered resources is triggered.
    Type: Grant
    Filed: March 22, 2019
    Date of Patent: August 18, 2020
    Assignee: SAP SE
    Inventors: Daniel Bernau, Philip-William Grassal, Florian Kerschbaum
  • Patent number: 10749671
    Abstract: A secure computation system configured to perform multi-party computation on a value of a predetermined function whose argument includes secret data, comprises a plurality of server apparatuses; wherein the plurality of server apparatuses, comprise: storage units that store shares that are bases over (of) a finite field generated by performing secret sharing on the secret data; share expansion units that generate extended shares by expanding the shares; OR operation units that perform OR operations included in the predetermined functions using the extended shares; and NOT operation units that perform NOT operations included in the predetermined functions using the extended shares.
    Type: Grant
    Filed: April 1, 2016
    Date of Patent: August 18, 2020
    Assignee: NEC CORPORATION
    Inventor: Isamu Teranishi
  • Patent number: 10739979
    Abstract: A histogram slider application accesses, from a data storage of a machine, file activities performed on the machine as a function of time. The histogram slider application determines points in time at which a level of file activities exceeds an activity level threshold that is based on historical levels of file activities on the machine. The histogram slider application generates a graphical user interface comprising a histogram indicative of the file activities over time and the determined points in time, a slider configured to move along a timeline that is parallel to the histogram, and a list of file activities corresponding to a first position of the slider on the timeline, the first position indicating a first time on the histogram.
    Type: Grant
    Filed: July 16, 2018
    Date of Patent: August 11, 2020
    Assignee: Microsoft Technology Licensing, LLC
    Inventors: Benjamin N. Truelove, Zi Gu, Naresh Kannan
  • Patent number: 10742607
    Abstract: A Software-defined Networking (SDN) controller of data center with application-aware firewall policy enforcement is disclosed. In one example, the SDN controller receives a request to initialize an instance of an application. in response to receiving the request, the SDN controller transmits, to a firewall component positioned between an SDN gateway device of the data center and a network external to the data center, a message. In some examples, the messing includes an application signature corresponding to the instance of the application and an application firewall policy corresponding to the application signature. The message instructs the firewall component to install the application firewall policy for application to network traffic for the instance of the application.
    Type: Grant
    Filed: February 6, 2018
    Date of Patent: August 11, 2020
    Assignee: Juniper Networks, Inc.
    Inventor: Kumuthini Ratnasingham
  • Patent number: 10742626
    Abstract: A method for key rotation includes initiating key rotation for a user account of a multi-factor authentication platform enabling one-time password authentication using a first symmetric cryptographic key; generating, at an authenticating device, a second symmetric cryptographic key; transmitting, at the authenticating device, the second symmetric cryptographic key to the multi-factor authentication platform; configuring the multi-factor authentication platform and the authenticating device to disable authentication that uses the first symmetric cryptographic key; and configuring the multi-factor authentication platform and the authenticating device to enable authentication that uses the second symmetric cryptographic key.
    Type: Grant
    Filed: July 25, 2018
    Date of Patent: August 11, 2020
    Inventors: Jon Oberheide, Adam Goodman
  • Patent number: 10735308
    Abstract: At a networking device, a method includes obtaining, according to a predefined protocol, a first plurality of attestation vectors from a corresponding plurality of candidate next-hop nodes. Each of the plurality of candidate next-hop nodes is included within a respective route between a particular node and a destination node. The method further includes determining a plurality of confidence scores. Each of the plurality of confidence scores is based on a comparison between a corresponding one of the first plurality of attestation vectors and a trusted image vector. The method further includes selecting, from the plurality of confidence scores, a particular confidence score that satisfies one or more selection criteria. Each of the particular confidence score is associated with a particular candidate next-hop node of the plurality of candidate next-hop nodes. The method further includes directing, to the particular candidate next-hop node, a data packet destined for the destination node.
    Type: Grant
    Filed: December 21, 2018
    Date of Patent: August 4, 2020
    Assignee: Cisco Technology, Inc.
    Inventors: Eric Voit, Shwetha Subray Bhandari, William F. Sulzen, Sujal Sheth
  • Patent number: 10721129
    Abstract: An automated method for facilitating management of a data processing environment is disclosed. In various embodiments, the method may include facilitating creation of a first memorialization, in digital form, of first one or more changes made to a first data processing device of the data processing environment. In various embodiments, the method may further include facilitating creation of a second and a third memorialization, both in digital form, of second and third one or more changes made to a second and a third data processing device of the data processing environment, respectively. In various embodiments, the method may still further include facilitating automated approval of the second and third changes made to the second and third data processing devices, using the first, second and third memorializations. Other embodiments of the present invention may include, but are not limited to, apparatus adapted to facilitate practice of the above-described method.
    Type: Grant
    Filed: May 31, 2017
    Date of Patent: July 21, 2020
    Assignee: Tripwire, Inc.
    Inventors: Gregor Torrence, Troy D. Thompson