Authorization Patents (Class 726/4)
  • Patent number: 11991171
    Abstract: Disclosed is a communication method for a device, a first cloud platform and a second cloud platform. The communication method includes obtaining, by the first cloud platform, a first access token from the second cloud platform. The first access token is configured for the first cloud platform to access a second resource link of a second device on the second cloud platform, and the second device is connected to the second cloud platform. The method also includes obtaining, by the first cloud platform, the second resource link based on the first access token. The method further includes determining, by the first cloud platform, a first resource link of the second device on the first cloud platform based on the second resource link. The first resource link is configured for a first device connected to the first cloud platform to communicate with the second device.
    Type: Grant
    Filed: September 24, 2021
    Date of Patent: May 21, 2024
    Assignee: GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP., LTD.
    Inventor: Jun Zhang
  • Patent number: 11991204
    Abstract: A method for implementing a migration action for a vulnerability includes receiving an indication that a target resource includes a vulnerability where the target resource is being hosted in a cloud environment and associated with a user of the cloud environment. The method also includes receiving a plurality of rules configured to mitigate vulnerabilities for cloud environment resources. The method further includes determining whether the plurality of rules include one or more rules corresponding to the vulnerability of the target resource. When the plurality of rules comprises the one or more rules corresponding to the vulnerability of the target resource, the method includes applying a reversible mitigation action associated with a respective rule of the one or more rules corresponding to the vulnerability of the target resource.
    Type: Grant
    Filed: January 23, 2023
    Date of Patent: May 21, 2024
    Assignee: Google LLC
    Inventor: Claudio Criscione
  • Patent number: 11991255
    Abstract: An interworking service entity receives server registration requests including indications of service layer protocols used by each server, maintains a repository of server information, and uses the repository for interworking requests of devices to servers of different protocols based on a server type provided in discovery requests. Other matching information may include, for example, server security protocol, supported services, service territory, availability, capacity, or loading, as device information or preferences, such a supported service, supported interface type, or a supported device type.
    Type: Grant
    Filed: September 1, 2022
    Date of Patent: May 21, 2024
    Assignee: Convida Wireless, LLC
    Inventors: Quang Ly, Chonggang Wang, Xu Li, Mahmoud Watfa, Dale N. Seed, Rafael A. Cepeda, Owen Griffin
  • Patent number: 11989303
    Abstract: The present embodiments relate to a secure boot partition for a cloud computing device of a cloud computing system. The computing device of the cloud computing system can transmit a first request for a pre-boot execution environment executable from a smart network interface card (SmartNIC). The computing device can receive the pre-boot environment executable from the SmartNIC and verify the pre-boot execution environment executable. The computing device can execute the pre-boot execution environment executable. Executing the pre-boot execution environment executable can include transmitting a second request secure boot metadata from the SmartNIC and receiving the secure boot metadata. Executing the pre-boot execution environment executable can further include mounting a boot partition, loading a boot loader obtained from the boot partition, verifying the boot loader based at least in part on the secure boot metadata, and executing the boot loader in response to verifying the boot loader.
    Type: Grant
    Filed: March 2, 2022
    Date of Patent: May 21, 2024
    Assignee: Oracle International Corporation
    Inventor: Brian Spencer Payne
  • Patent number: 11989314
    Abstract: Methods and systems for a document-level attribute-based access control service are provided. The document-level attribute-based access control service may be positioned between a directory service and a search engine service. The directory service can manage information and permissions for users. The document-level attribute-based access control service can map security attributes to the user based on the information and permissions. Based on the mapping, it can be determined whether to permit the user making a query to the search engine service to access documents based on the query. Information and permissions attributes can be injected into queries dynamically via a template. Attributes may be combined with role query templates to create document-level attribute-based access control on top of role-based access control. The present technology can enable enforcement of security policies requiring all of a combination of attributes to be satisfied before permitting certain access.
    Type: Grant
    Filed: April 29, 2021
    Date of Patent: May 21, 2024
    Assignee: Elasticsearch B.V.
    Inventor: Adrien Grand
  • Patent number: 11985163
    Abstract: A security appliance may incorporate a touch screen or similar input/output interface, providing command and control over network functionality and configuration, without requiring log in via a network from another computing device. During denial of service attacks, commands from the local interface may be given priority access to processing resources and memory, allowing mitigating actions to be taken, such as shutting down ports, blacklisting packet sources, or modifying filter rules. This may allow the security device to address attacks without having to be manually rebooted or disconnected from the network.
    Type: Grant
    Filed: December 29, 2022
    Date of Patent: May 14, 2024
    Assignee: FORTRESS CYBER SECURITY, LLC
    Inventor: Dejan Nenov
  • Patent number: 11985141
    Abstract: A method for sending sensitive information includes: receiving, by a service provider, a request for sensitive information from a user; upon receipt of the request, sending, by a security provider, a security code to the user; receiving, by the service provider, a code from the user; verifying, by the service provider, the user when the received code matches the security code; sending, by the service provider, the sensitive information to the security provider after the user is verified; and providing, by the security provider, a sensitive data link to the user. The sensitive data link includes the sensitive information and may expire after the sensitive data link is viewed once.
    Type: Grant
    Filed: August 9, 2022
    Date of Patent: May 14, 2024
    Assignee: TRACELESS.IO
    Inventors: Gene Reich, Peter Segerstrom
  • Patent number: 11985118
    Abstract: A software system that has an embedded browser, an authenticator and a data channel module where the authenticator is adapted to authenticate a user, to authenticate a data channel and to bind the user authentication with the authenticated channel is disclosed. The authenticator is further adapted to communicate with the user via a graphical user interface of the embedded browser using graphical and control primitives of the authenticator and/or using a stand-alone graphical user interface of the authenticator, and the data channel module is adapted to communicate with service provider servers via a secure protocol, to communicate with the embedded browser and to communicate with the authenticator. A method of authentication using this system increases security and user comfort when accessing services and data requiring authentication is also disclosed.
    Type: Grant
    Filed: May 13, 2021
    Date of Patent: May 14, 2024
    Assignee: ADUCID S.R.O.
    Inventor: Libor Neumann
  • Patent number: 11985137
    Abstract: Aspects of the disclosure relate to real-time management of access controls. A computing platform may detect, via the communication interface, a trigger related to an activity of an enterprise user over a network. Then, the computing platform may retrieve, via the communication interface and from the network device, data associated with the activity. The computing platform may then compare, via the computing device, the retrieved data with a central tendency for activities with the network device. Subsequently, the computing platform may identify, based on the comparing, a deviation from the central tendency. Then, the computing platform may adjust, dynamically in real-time and in response to identifying the deviation, an access control or multiple access controls for the enterprise user to the network device.
    Type: Grant
    Filed: August 24, 2022
    Date of Patent: May 14, 2024
    Assignee: Bank of America Corporation
    Inventors: George Albero, Elijah Clark
  • Patent number: 11985241
    Abstract: The present embodiments relate to a sender sharing a credential associated with a user device to a recipient, allowing temporary access to the user device by the recipient. The sender can specify a user in which to share the credential and can set control parameters relating to the use of the user device by the recipient. The authorizing entity computer can transmit an credential identifier to the processing network computer and receive an encrypted credential from the processing network computer. The authorizing entity computer can transmit the encrypted credential to a storage application on the recipient computer. The recipient computer can then transmit a request to the processing network computer for a token and then obtain the token.
    Type: Grant
    Filed: September 30, 2021
    Date of Patent: May 14, 2024
    Assignee: Visa International Service Association
    Inventors: Sushma Rapolu, Anup Tripathi, Sashi Kumar Velur, Cristian Dumitru, Nicholas Boesel, Mitchell Wright, Abhishek Verma
  • Patent number: 11984221
    Abstract: A system for automatically detecting medical devices positioned within a room of a healthcare facility includes a patient support apparatus, a headwall unit, and a controller. The patient support apparatus includes at least first and second transceivers and the headwall unit includes at least third and fourth transceivers. At least one of the first and second transceiver and at least one of the third and fourth transceivers are controller to determine first and second estimates of distance between the respective transceiver and a medical device. The controller uses the first and second estimates of distance to determine if the medical device is positioned within a threshold distance of the patient support apparatus and/or within a predetermined volume of space within the room. The transceivers used to determine the first and second estimates of distance may be Bluetooth Low Energy transceivers and/or ultra-wideband transceivers.
    Type: Grant
    Filed: December 22, 2021
    Date of Patent: May 14, 2024
    Assignee: Stryker Corporation
    Inventors: Alexander Josef Bodurka, Krishna Sandeep Bhimavarapu
  • Patent number: 11977786
    Abstract: A plurality of computing devices are communicatively coupled to each other via a network, and each of the plurality of computing devices is operably coupled to one or more of a plurality of storage devices. The computing devices may use local caches in a coherent manner when accessing the plurality of storage devices.
    Type: Grant
    Filed: March 19, 2021
    Date of Patent: May 7, 2024
    Assignee: Weka.IO Ltd.
    Inventors: Maor Ben Dayan, Omri Palmon, Liran Zvibel, Kanael Arditti, Artemy Voikhansky, Alex Goltman
  • Patent number: 11979542
    Abstract: An image processing apparatus is communicable with a system including a censorship function, and includes one or more controllers having one or more processors and one or more memories, and the one or more controllers are configured to transmit an image acquired by reading a display medium to the system, receive a censorship result from the system, and control the image processing apparatus to perform a predetermined operation corresponding to the received censorship result, wherein the predetermined operation is a preset operation to be performed by the image processing apparatus based on the received censorship result.
    Type: Grant
    Filed: November 14, 2022
    Date of Patent: May 7, 2024
    Assignee: Canon Kabushiki Kaisha
    Inventor: Takeshi Uragaki
  • Patent number: 11979396
    Abstract: A system for implementing Machine-to-Machine (M2M) validation receives a request from a unrecognized computing device to establish a communication with a first trusted computing device. The first trusted computing device sends a query message to a second trusted computing device to determine whether the unrecognized computing device is in a list of trusted devices associated with the second trusted computing device. The first trusted computing device receives a response message from the second trusted computing device indicating that the unrecognized computing device is in the list of trusted devices. In response, to receiving the response message, the first trusted computing device approves the request of the unrecognized computing device.
    Type: Grant
    Filed: May 19, 2021
    Date of Patent: May 7, 2024
    Assignee: Bank of America Corporation
    Inventors: Maharaj Mukherjee, George Albero
  • Patent number: 11979393
    Abstract: An online authentication system allows a user to define their own logic for multistage authentication, which is provided to an online authentication center and stored as encrypted bytecode based on each user's password. Implementation logic can use third party information sources to provide additional authentication options.
    Type: Grant
    Filed: June 2, 2021
    Date of Patent: May 7, 2024
    Assignee: Green Market Square Limited
    Inventors: Vinod A. Valecha, Sanjay B. Panchal, Mohit N. Agrawal
  • Patent number: 11979415
    Abstract: A device receives information identifying a specific host threat to a network, where the information includes a list of network addresses associated with the specific host threat. The device identifies network elements, of the network, associated with the specific host threat to the network, and determines a network control system associated with the identified network elements. The device determines a policy enforcement group of network elements, of the identified network elements, that maps to the list of network addresses associated with the specific host threat, where the network control system is associated with the policy enforcement group of network elements. The device determines a threat policy action to enforce for the specific host threat, and causes, via the network control system, the threat policy action to be enforced by the policy enforcement group of network elements.
    Type: Grant
    Filed: December 11, 2020
    Date of Patent: May 7, 2024
    Assignee: Juniper Networks, Inc.
    Inventors: Srinivas Nimmagadda, Jeffrey S. Marshall, Sunil G. Rawoorkar, Srinivasan Veeraraghavan, Prakash T. Seshadri
  • Patent number: 11971944
    Abstract: Techniques for using suppression filters for presenting content of a network documents are described. In an example, a computer system receives, from a device associated with an account identifier, a request for an online network document. The computer system determines that a first category identifier of a first item category is associated with a suppression filter. The computer system determines that the account identifier is associated with an online item interaction having an interaction time associated with an item that belongs to the first item category. The computer system determines, based on a comparison of the interaction time and the suppression time, that a presentation of the first content in the online network document is prohibited. The computer system sends, to the device in response to the request, network document data that indicates second content about a third item that belongs to a second item category.
    Type: Grant
    Filed: September 27, 2021
    Date of Patent: April 30, 2024
    Assignee: Amazon Technologies, Inc.
    Inventors: Amritha Ram, Alexander Slutsker
  • Patent number: 11973915
    Abstract: Identification information corresponding to a network resource is extracted from input document data. It is determined whether access to the network resource is appropriate based on the identification information. Based on a result of determination, the output of the document data is restricted, or at least part of the identification information is changed, and the document data is output.
    Type: Grant
    Filed: March 13, 2023
    Date of Patent: April 30, 2024
    Assignee: SHARP KABUSHIKI KAISHA
    Inventor: Tatsuya Watabe
  • Patent number: 11973879
    Abstract: In some examples, an electronic device includes a component comprising information, a secure storage, and a controller to generate a digital signature based on the information of the component, and detect a modification of the component based on the digital signature. The controller can also detect a receipt of an invalid credential, and log, to the secure storage, an indication of the modification of the component and an indication of the receipt of the invalid credential.
    Type: Grant
    Filed: September 14, 2020
    Date of Patent: April 30, 2024
    Assignee: Hewlett Packard Enterprise Development LP
    Inventor: Darrell R. Haskell
  • Patent number: 11973850
    Abstract: A method for the rapid, automatic, and adaptative deployment of a cloud environment that is secure, that adapts to different hardware architectures, network architectures, cloud services, technologies, and user needs, and that requires minimal user input. Configuration data may be generated for a collection of software components, which may include user inputs and randomly generated data. This data may be stored in a configuration database that is updated as deployment proceeds. Available hardware such as servers, storage, and networks may be discovered automatically and added to the configuration database. An initial software component may be deployed to coordinate subsequent steps, and then additional software components may be deployed in a sequence that considers dependencies. Software components may be organized into deployment groups. Users may select subsets of the components to deploy. The deployed cloud environment may be tested and validated automatically.
    Type: Grant
    Filed: June 24, 2021
    Date of Patent: April 30, 2024
    Assignee: AGARIK SAS
    Inventors: Adil Tahiri, Babak Seddigh Tehran, Adam Dolman
  • Patent number: 11966346
    Abstract: A system and method for connecting a processing device to a functional device connected to or in a base unit of a communications network, the base unit having a transmitter and the processing device having a memory, a display and an operating system. A first peripheral device is adapted to be coupled to the processing device via a generic communications protocol, the first peripheral device having a receiver and at least one fixed or configurable endpoint of the functional device exposed on the first peripheral device. The base unit and the first peripheral device is adapted to transmit and receive data respectively over the communications network from the functional device to the processing device via the at least one fixed or configurable endpoint using the generic communications protocol for communication between the processing device and the first peripheral device.
    Type: Grant
    Filed: December 21, 2018
    Date of Patent: April 23, 2024
    Assignee: BARCO N.V.
    Inventors: Gauthier Renard, Johan Peter Frans Degraef
  • Patent number: 11968214
    Abstract: Particular aspects of this disclosure relate to computerized systems for generating and using improved data structures and functionality to efficiently render different multiple access-controlled resources (or properties of access-controlled resources) that are part of a concept. Often times, two or more resources of a concept or properties of a resource are subject to different access controls. This adds computing complexity as to whether or not a user is granted access to the entire concept or resource, a portion of the concept or resource, or none of the concept or resources and what exactly is surfaced back to the user when there are resources or properties the user does and does not have access to. Some embodiments accordingly render an efficient composite view of concepts or resources where some resources or properties are accessible by the requesting user, while other resources or properties are not accessible by the requesting user.
    Type: Grant
    Filed: May 30, 2020
    Date of Patent: April 23, 2024
    Assignee: Microsoft Technology Licensing, LLC
    Inventors: Jan-Ove Almli Karlberg, Åge Andre Kvalnes, Tor Kreutzer, Andrei-Alin Corodescu, Vidar Tveoy Knudsen, Helge Grenager Solheim
  • Patent number: 11966438
    Abstract: Embodiments described herein may involve queue versioning. An example implementation may involve a playback device initiating playback of a queue including one or more first audio streams. A queue identification token stored in data storage represents a current version of the queue. The playback device receives, from a computing system, data representing instructions to add one or more second audio streams to the queue, the instructions including an indication of the one or more second audio streams and a first token representing an expected queue version. The playback device determines whether the expected queue version represented by the first token matches the current version of the queue represented by the queue identification token. If not, the playback device foregoes adding the one or more second audio streams to the queue.
    Type: Grant
    Filed: January 20, 2023
    Date of Patent: April 23, 2024
    Assignee: Sonos, Inc.
    Inventor: Arthur L. Coburn, IV
  • Patent number: 11968195
    Abstract: The present invention is related to systems and methods that improve the security of computer networks. These systems and methods may be utilized in various applications such as electronic commerce, secure document access, and electronic authentication. The systems and methods include methods for accessing secure accounts without the use of passwords in order to eliminate the need for passwords. In addition, systems and methods further deter automated attacks online using email authentication.
    Type: Grant
    Filed: September 13, 2021
    Date of Patent: April 23, 2024
    Assignee: SWOOP IP HOLDINGS LLC
    Inventors: John P. Killoran, Jr., Brandon Trebitowski, Isaiah Baca, Patrick Killoran
  • Patent number: 11966919
    Abstract: Various example embodiments of the disclosure relate to an electronic device and a wireless communication connection control method thereof.
    Type: Grant
    Filed: March 14, 2022
    Date of Patent: April 23, 2024
    Assignee: SAMSUNG ELECTRONICS CO., LTD.
    Inventors: Min-Ho Kang, Jinhyun Park, Ye-Ji Yoon, Jun-Hak Lim, Wontae Chae, Jongmu Choi, Bokun Choi, Doo-Suk Kang, Sun-Kee Lee, Moonsoo Kim, Eun Jung Hyun
  • Patent number: 11968325
    Abstract: Technology for identifying that a communication is from a verified enterprise includes receiving, by a device associated with a user, a data packet from a phone network. The data packet can be included in a communication to the device, which can have an application configured to verify communications from at least one enterprise. A token within the data packet can be identified by the application, and the application can compare the token to at least one token identifier associated with the at least one enterprise. In response to the token corresponding to at least one token identifier, the application can verify that the communication is from the at least one enterprise. In response to the communication being verified, the application can display a validation image on the device.
    Type: Grant
    Filed: January 13, 2023
    Date of Patent: April 23, 2024
    Assignee: United Services Automobile Association (USAA)
    Inventor: Michael W. Howell
  • Patent number: 11966891
    Abstract: A system for managing a financial account in a low cash mode. The system may include a memory storing instructions, and a processor configured to execute the instructions to perform operations. The operations may include providing an interface; providing a notification to a user when a balance in the first account is deemed to be in low cash mode; presenting, when the first account balance is deemed to be in low cash mode, an option for a transfer request; receiving, a selection of the option for the transfer request to connect the first account with a second account; transferring funds from the second account to the first account; notifying the user that funds have been transferred from the second account to the first account; and further notifying the user that the balance in the first account is greater than the threshold value.
    Type: Grant
    Filed: January 4, 2021
    Date of Patent: April 23, 2024
    Assignee: The PNC Financial Services Group, Inc.
    Inventors: Urich T. Bowers, Mecal McDade, Todd Tkach, Fernando Alfaro, Jeremy Moore
  • Patent number: 11963009
    Abstract: Arrangements for dynamic enterprise center access control are provided. In some examples, a user device may be detected and current location and/or user data associated with the detected device may be requested. Upon receiving the location data, a current geographic location of the user device may be determined and an enterprise center at or near the geographic location may be identified. Received user data may be analyzed to identify a user and retrieve access preferences associated with the user. Based on the access preferences, a command to lock or unlock a door (e.g., permit or disable access) to an area within the enterprise center, the enterprise center in general, or the like, may be generated and transmitted to a computing device for execution. Accordingly, the system may activate desired locking configurations based on user preferences. Upon detecting that the user is no longer at the enterprise center, a command to return to default settings may be generated, transmitted and executed.
    Type: Grant
    Filed: May 11, 2023
    Date of Patent: April 16, 2024
    Assignee: Bank of America Corporation
    Inventors: David Alan Stern, Lauren Elizabeth Schuler, Christopher Broome
  • Patent number: 11962571
    Abstract: A method and system are provided to integrate IoTs and related components, users and applications into an ecosystem, and then on a per-component basis to provide real-time security solutions. Ecosystem security provides isolation, communications and security for technologies that fulfill a specific function or set of functions and their related and supporting platform elements.
    Type: Grant
    Filed: July 19, 2022
    Date of Patent: April 16, 2024
    Assignee: ACRETO CLOUD CORPORATION
    Inventor: Babak Pasdar
  • Patent number: 11960902
    Abstract: The present disclosure relates to a chip booting control method, a chip, a display panel, and an electronic apparatus. The method is applied to a control circuit of a chip, and the chip further includes a buffer. The method includes: reading first booting information from the buffer in response to a chip triggering non-power-down reset, the first booting information being used to boot the chip; determining whether the first booting information satisfies a first preset condition; and booting the chip according to the first booting information in response to the first booting information satisfying the first preset condition.
    Type: Grant
    Filed: August 18, 2022
    Date of Patent: April 16, 2024
    Assignee: Chipone Technology (Beijing) Co., LTD.
    Inventor: Lida Zhang
  • Patent number: 11960529
    Abstract: The disclosed technology addresses the need in the art for a service that can ingest a social network export and restore the integrity of threads within the social network export. The present technology can unite images in the social network export with the caption from the initial post, and with any comments within the thread. Likewise, images in the social network export can be enhanced to include metadata that reflects when the image was posted and any other contextual information that the social network provides in export file.
    Type: Grant
    Filed: June 16, 2023
    Date of Patent: April 16, 2024
    Assignee: Dropbox, Inc.
    Inventor: Kyle Shay
  • Patent number: 11962695
    Abstract: A method at a first domain for obtaining at least one insight from a second domain, the method including registering an application with an anchor in the first domain; providing, from the anchor to the application, a first message signed by the anchor; sending, from the first domain to a network domain, the signed message; receiving, from the network domain, at least one signed token, each of the at least one signed token being for a synthetic sensor on the second domain, where the synthetic sensor provides an insight; sending a request message to the second domain, the request message requesting the insight and including the at least one token; and receiving the insight from a synthetic sensor associated with the at least one token.
    Type: Grant
    Filed: July 23, 2021
    Date of Patent: April 16, 2024
    Assignee: BlackBerry Limited
    Inventors: Biswaroop Mukherjee, Geordon Thomas Ferguson
  • Patent number: 11960604
    Abstract: The present invention relates to a method and system for monitoring webpages for detecting malicious contents. According to a preferred embodiment the method comprises A) providing a plurality of URLs provided by a subscriber, employing a crawler to visit a URL webpage of said plurality of URLs; B) retrieving an object from said URL webpage by said crawler; C) analyzing said object retrieved by said crawler from said URL webpage, and determining whether said object retrieved is malicious or not; and D) alerting the subscriber, when said retrieved object is deemed malicious. According to one embodiment, the method further comprises E) employing a crawler to visit a URL webpage of a following URL of the plurality of URLs, when the determination of step C) is deemed not malicious; and F) returning to step B).
    Type: Grant
    Filed: July 9, 2017
    Date of Patent: April 16, 2024
    Assignee: BANK LEUMI LE-ISRAEL B.M.
    Inventor: Shay Priel
  • Patent number: 11962597
    Abstract: Systems and methods for artificial intelligence systems for identity management systems are disclosed. Embodiments may perform outlier detection and risk assessment based on identity management data, including one or more property graphs or peer groups determined from those property graphs, to determine identity management artifacts with ‘abnormal’ patterns when compared to other related identity management artifacts.
    Type: Grant
    Filed: May 26, 2022
    Date of Patent: April 16, 2024
    Assignee: SAILPOINT TECHNOLOGIES, INC.
    Inventors: Mohamed M. Badawy, Jostine Fei Ho
  • Patent number: 11954196
    Abstract: Method of mutual authentication of a controllable electronic device (DE) and of its user (USER) able to control it so that it procures him a service (DS), the device (DE) containing sensitive or confidential data (DA) and being arranged so as to—in an operational phase (OP) including a preliminary step of authentication of the user (UAP)—, execute an operation (SO) so as to procure the service (DS), including, furthermore, a prior phase of authentication of the device (SDAP), in which the authenticity of the device (DE) is verified, so that if on completion of the prior phase of authentication of the device (SDAP), the device (DE) is confirmed to be authentic, the user (USER) can execute the operational phase (OP), whilst if the device (DE) is not confirmed to be authentic, the user (USER) can prevent the execution of the operational phase (OP).
    Type: Grant
    Filed: April 30, 2019
    Date of Patent: April 9, 2024
    Assignee: LEDGER, SAS
    Inventors: Nicolas Bacca, Olivier Tomaz
  • Patent number: 11954187
    Abstract: Aspects described herein may relate to techniques for detecting login activity to a financial account during a knowledge-based authentication process. The login activity may be related to access to an online interface for the financial account. The detection of login activity during the authentication process my indicate that the integrity of the authentication process is compromised as login access may provide an individual with transaction data that may be used to answer transaction-based authentication questions. As a result of detecting login activity, an alternative authentication process may be initiated or an authentication request related to the financial account may be denied.
    Type: Grant
    Filed: June 23, 2021
    Date of Patent: April 9, 2024
    Assignee: Capital One Services, LLC
    Inventors: Joshua Edwards, Samuel Rapowitz, Jenny Melendez, David Septimus, Daniel Miller, Viraj Chaudhary, Tyler Maiman, Vyjayanthi Vadrevu
  • Patent number: 11956243
    Abstract: Apparatus, systems, and methods are disclosed that operate to receiving an authentication request at a server associated with an authenticating entity from a requesting party responsive to a request being provided to the requesting party by a client terminal associated with an unauthenticated individual purporting to be an individual account owner previously authenticated with the authenticating entity. A token, from the client terminal associated with the unauthenticated individual is received, and the token includes information associated with the unauthenticated individual and a user permission authorizing the authenticating entity to share a selected portion of the information with a plurality of selected requesting parties. The server associated with the authenticating entity authenticates the unauthenticated individual as the individual account owner based on, inter alia, matching the token to a pre-registered identity uniquely associated with the individual account owner.
    Type: Grant
    Filed: May 30, 2022
    Date of Patent: April 9, 2024
    Assignee: PayPal, Inc.
    Inventors: Rene M. Pelegero, Girish Balasubramanian, Rohan Mahadevan
  • Patent number: 11956214
    Abstract: Systems and methods for enforcing media access control (MAC) learning limits (MLLs) on multi-homed access ports comprise configuring MLL violation actions to be performed by a virtual extensible local area network (VxLAN) tunnel endpoint (VTEP). The VTEP is multi-homed to VTEPs and comprises an Ethernet segment (ES) access port. A BGP EVPN or similar protocol may be used to communicate MLL information across VTEPs participating in the multi-homed ES to keep MACs and MLL violation actions consistent. The violation actions may comprise initiating a shutdown message to shut down an ES. Once an MLL violation associated with a MAC that has been received at the VTEP is detected, the VTEP may enforce the MLL by performing one or more of the configured MLL violation actions and propagate the same to other VTEPs.
    Type: Grant
    Filed: July 6, 2020
    Date of Patent: April 9, 2024
    Assignee: DELL PRODUCTS L.P.
    Inventors: Saye Balasubramaniam Subramanian, Damodharan Sreenivasagaperumal, Kishore Yetikuri
  • Patent number: 11956164
    Abstract: An example network manager receives, from a conductor switch of a switch stack, an active configuration. The network manager determines, based on the active configuration, switch model types for a plurality of switches of the switch stack. The network manager determines, based on the switch model types and the active configuration, a number of ports of the plurality of switches of the switch stack and a current configuration of each port of each switch of the switch stack. The network manager updates a device configuration element of a network management user interface to display the current configuration of each port of each switch of the switch stack in a manner that indicates that the switch stack is a single logical switch.
    Type: Grant
    Filed: April 29, 2022
    Date of Patent: April 9, 2024
    Assignee: Hewlett Packard Enterprise Development LP
    Inventors: Aslam Khan, Khiruthigai Balasubramanian, Suhas Kumar Bharadwaj
  • Patent number: 11956633
    Abstract: Aspects of the disclosure relate to computing hardware and software for uniform security access. A computing platform may receive, from a 5G device, a request to access a collaborative experience service. The computing platform may identify whether the 5G device is authenticated. Based on identifying that the 5G device is authenticated, the computing platform may grant the 5G device access to an API that may be used to access the collaborative experience service. The computing platform may identify that attributes of the 5G device comply with a stored security policy, and grant access to the collaborative experience service in response. The computing platform may receive user interaction information from the 5G device, and may input the user interaction information into an anomaly detection model. Based on identifying that the interactions do not comprise an anomaly for the user, the computing platform may maintain the access to the collaborative experience service.
    Type: Grant
    Filed: November 29, 2021
    Date of Patent: April 9, 2024
    Assignee: Bank of America Corporation
    Inventors: George Albero, Maharaj Mukherjee, Deborah Mayers, Jinna Kim
  • Patent number: 11956246
    Abstract: Techniques are described herein for performing authentication, and also “eager” or “lazy” fetch of data, for restricted webpages based on the restricted webpages being associated with an authentication tier in an AASD registry. Inclusion of a restricted webpage in the AASD registry enables AASD-based authentication for the webpage. According to embodiments, information for a restricted webpage included in the AASD registry includes one or more of the following for the webpage: an identifier, an authentication level, allowed fields, eager fetch fields, one or more sources for one or more fields, etc. When information for a webpage is included in the AASD registry, that information is used to perform eager fetch for one or more fields of the webpage that are not associated with authentication requirements indicated in the AASD registry information, or whose authentication requirements are already fulfilled by the requesting client.
    Type: Grant
    Filed: November 16, 2022
    Date of Patent: April 9, 2024
    Assignee: LendingClub Bank, National Association
    Inventors: Hyunsuk Han, Mahesh Acharya
  • Patent number: 11949683
    Abstract: A method for granting guest access to a control device includes detecting, by a monitoring control unit, a new connection of a guest device to a network, transmitting, by the monitoring control unit and to an authorized device, a request to grant access to the guest device to control a monitoring system, in response to the request, receiving, by the monitoring control unit, approval to grant access to the guest device to control the monitoring system, and in response to the approval, transmitting, by the monitoring control unit and to the guest device, (i) data that allows the guest device to access a web service and (ii) a temporary authentication token.
    Type: Grant
    Filed: July 14, 2021
    Date of Patent: April 2, 2024
    Assignee: Alarm.com Incorporated
    Inventors: William Wireko Mensah, Margarita Elena Bottlick, Ashish Sethi
  • Patent number: 11949525
    Abstract: A server system receives a group operation request transmitted by a client. The group operation request is generated by the client in response to a trigger operation of a target group chat function, and includes a target identity and a target group chat function identifier. The server system determines a target group chat function use permission corresponding to the target identity. In accordance with a determination, based on the target group chat function use permission and the target group chat function identifier, that a user corresponding to the target identity has a permission to use the target group chat function, the server system transmits group operation result information to the client.
    Type: Grant
    Filed: May 17, 2022
    Date of Patent: April 2, 2024
    Assignee: TENCENT TECHNOLOGY (SHENZHEN) COMPANY LIMITED
    Inventors: Tieming Huang, Xiaoqiang Zhao, Hang Xiang, Bin Li, Linsheng Deng
  • Patent number: 11947637
    Abstract: Systems, apparatuses, and methods are described for preauthorizing a batch of access rights licenses, e.g., Digital Rights Management (DRM) licenses, and storing them at a location. The preauthorization may be based on predicting a batch of content items to be viewed. The location may be a content server or a user device. After receiving a request from the user device to play back a content item of the batch of predicted content items, the DRM license may be provided from the storage location instead of performing an authorization operation to obtain one from a DRM server. Providing the DRM license from the storage location may take less time than performing the authorization operation to obtain the DRM license from the DRM server.
    Type: Grant
    Filed: May 28, 2020
    Date of Patent: April 2, 2024
    Assignee: Comcast Cable Communications, LLC
    Inventor: Walter Sturm
  • Patent number: 11949792
    Abstract: A system for authorizing secured access using cryptographic hash value validations is provided. In particular, the system may receive requests from users and/or computing systems to obtain secured access a particular resource or to execute a certain process. In response, the system may require that the user and/or computing system complete additional required steps (e.g., a computation) before being granted access to the resources or processes. In this way, the system may prevent unauthorized or unintended access to the system's resources or processes.
    Type: Grant
    Filed: September 30, 2022
    Date of Patent: April 2, 2024
    Assignee: BANK OF AMERICA CORPORATION
    Inventors: Brandon Sloane, Brian Diederich
  • Patent number: 11947670
    Abstract: Examples of the present disclosure describe systems and methods for malicious software detection based on API trust. In an example, a set of software instructions executed by a computing device may call an API. A hook may be generated on the API, such that a threat processor may receive an indication when the API is called. Accordingly, the threat processor may generate a trust metric based on the execution of the set of software instructions, which may be used to determine whether the set of software instructions poses a potential threat. For example, one or more call stack frames may be evaluated to determine whether a return address is preceded by a call instruction, whether the return address is associated with a set of software instructions or memory associated with a set of software instructions, and/or whether the set of software instructions satisfies a variety of security criteria.
    Type: Grant
    Filed: January 2, 2023
    Date of Patent: April 2, 2024
    Assignee: Open Text Inc
    Inventors: Andrew L. Sandoval, David Alan Myers, John R. Shaw, II, Eric Klonowski
  • Patent number: 11949773
    Abstract: The present disclosure is directed to systems and methods for securely managing and administering an encryption/decryption key using distributed ledger technology (DLT). In some examples, a client may possess a data attribute (or a dataset of data attributes). The client may receive tokenization parameters to apply to the data attribute to encrypt the data attribute. After tokenizing the data attribute, the client may then request the creation of an encryption key to be applied to the token. A third-party key management system (KMS) may create an encryption key and a salt. The salt may be applied to the token, and the salted token may then be encrypted. Additionally, a decryption key may be created and stored securely at the third-party KMS. The client may transmit the encrypted token to a third-party consolidation platform, wherein the consolidation platform requests access to the decryption key to unveil the underlying token.
    Type: Grant
    Filed: March 29, 2021
    Date of Patent: April 2, 2024
    Assignee: Collibra Belgium BV
    Inventor: Satyender Goel
  • Patent number: 11941631
    Abstract: A first user device may receive, from a second user device, a request to communicatively couple to the first user device, and may establish a communication session with the second user device after receiving the request. The first user device may identify, after establishing the communication session, an inappropriate activity of the second user device relating to the communication session, and perform a set of actions based on identifying the inappropriate activity. The set of actions may include causing the communication session to be restricted, and providing, to a trust platform, a score for the second user device. The score may permit the trust platform to derive a composite score, indicative of a level of trustworthiness of the second user device, that enables other user devices, associated with the trust platform, to determine whether to grant access requests submitted by the second user device.
    Type: Grant
    Filed: March 5, 2019
    Date of Patent: March 26, 2024
    Assignee: Capital One Services, LLC
    Inventors: Lawrence Hutchison Douglas, Jr., Yolanda Liu, Clayton Johnson
  • Patent number: 11943345
    Abstract: A key management method and a related device are provided. The method includes: receiving key generation request information; generating attribute access policy information on the basis of the key generation request information, the attribute access policy information being an attribute set for encrypting a data key; encrypting the data key on the basis of the attribute set for encrypting the data key; receiving key acquisition request information; on the basis of the attribute set for encrypting the data key, verifying whether attribute information of the key acquisition request information is included in the attribute set for encrypting the data key; and in response to the attribute information of the key acquisition request information being included in the attribute set for encrypting the data key, acquiring a destination data key on the basis of the attribute information of the key acquisition request information.
    Type: Grant
    Filed: November 30, 2021
    Date of Patent: March 26, 2024
    Assignee: INSPUR SUZHOU INTELLIGENT TECHNOLOGY CO., LTD.
    Inventors: Fuqiang Ma, Jin Wang
  • Patent number: 11941129
    Abstract: Embodiments disclosed are directed to a computing system that performs steps to perform enhanced device fingerprinting using user contacts data. The computing system receives, from an application, a first plurality of device attributes identifying a client device on which the application is being used. The first plurality of device attributes includes first device identification data and first user contacts data. Subsequently, when a user is attempting to perform a transaction using the application on the client device, the computing system receives, from the application, a second plurality of device attributes identifying the client device on which the application is being used. The second plurality of device attributes includes second device identification data and second user contacts data. The computing system compares the second plurality of device attributes to the first plurality of device attributes to determine whether the user is authorized to perform the transaction.
    Type: Grant
    Filed: March 31, 2021
    Date of Patent: March 26, 2024
    Assignee: Capital One Services, LLC
    Inventors: William Broome, Nicholas Capurso, Timothy Tran, Vu Thuy Ngo