Authorization Patents (Class 726/4)
  • Patent number: 10996773
    Abstract: Methods and systems may provide for a gyratory sensing system (GSS) for extending the human machine interface (HMI) of an electronic device, particularly small form factor, wearable devices. The gyratory sensing system may include a gyratory sensor and a rotatable element to engage the gyratory sensor. The rotatable element may be sized and configured to be easily manipulated by hand to extend the HMI of the electronic device such that the functions of the HMI may be more accessible. The rotatable element may include one or more rotatable components, such as a body, edge or face of a smart watch, that each may be configured to perform a function upon rotation, such as resetting, selecting, and/or activating a menu item.
    Type: Grant
    Filed: August 20, 2019
    Date of Patent: May 4, 2021
    Assignee: Intel Corporation
    Inventors: Khang Choong Yong, Wil Choon Song, Howard L. Heck, Su Sin Florence Phun
  • Patent number: 10997811
    Abstract: An authentication system includes a portable terminal carried by a user, a controller that authenticates the portable terminal, and a human detection portion that is configured to detect a person existing within a predetermined detection range. The portable terminal includes a terminal-side communication portion that communicates with the controller and transmits an authentication request signal, which requests authentication of the portable terminal. The controller performs a normal-time notification process that notifies a message in which the portable terminal is authenticated, in response to that a predetermined operation is performed on an operation area after the portable terminal has been authenticated in a authentication process.
    Type: Grant
    Filed: December 12, 2019
    Date of Patent: May 4, 2021
    Assignee: DENSO WAVE INCORPORATED
    Inventor: Seiji Murakami
  • Patent number: 10999283
    Abstract: Implementations of the present specification provide a computer-implemented method, computer-implemented system, and non-transitory, computer-readable medium. The computer-implemented method includes sending a token acquisition request by a blockchain client to a blockchain node. A commit token fed back from the blockchain node is received by the blockchain client, where the commit token indicates that the blockchain client has permission to submit transaction data to a specific data block in a blockchain. Transaction data is sent by the blockchain client to the blockchain node.
    Type: Grant
    Filed: January 31, 2020
    Date of Patent: May 4, 2021
    Assignee: Advanced New Technologies Co., Ltd.
    Inventors: Zheng Liu, Lichun Li, Shan Yin
  • Patent number: 10999301
    Abstract: Methods, systems, and program products for analyzing cyber-attacks on computing systems of a business are disclosed. The methods may include detecting each of the plurality of cyber-attacks. The plurality of cyber-attacks may target information systems stored on at least one information technology (IT) component of an infrastructure of the computing system of the business. The methods may also include determining cyber-attack data relating to the plurality of cyber-attacks, identifying a business impact on the business for each of the plurality of cyber-attacks. The identified business impact on the business for the plurality of cyber-attacks may be based on predetermined business impact data and the determined cyber-attack data. Additionally, the method may include prioritizing the plurality of cyber-attacks attempted on the computing system based on the identified business impact on the business for each of the plurality of cyber-attacks.
    Type: Grant
    Filed: November 27, 2017
    Date of Patent: May 4, 2021
    Assignee: International Business Machines Corporation
    Inventors: Naaliel Vicente Mendes, Marco Aurelio Stelmar Netto, Marcos de Castro Sylos, Sergio Varga
  • Patent number: 10990689
    Abstract: Systems and methods for governing access to or use of assets in an analytics platform. Access to assets is controlled with policies that reference attributes. A context of an access request is defined by collecting attributes associated with an access request. The context is then evaluated in light of attributes referenced by the policy applicable to the asset or with a class of the asset. The access request is granted, denied, or partially granted based on whether the attributes defined by the context of the access request comport with the policy.
    Type: Grant
    Filed: March 31, 2016
    Date of Patent: April 27, 2021
    Assignee: EMC IP HOLDING COMPANY LLC
    Inventors: David Reiner, Nihar Nanda, Philip Edwards
  • Patent number: 10990696
    Abstract: Systems and methods are disclosed for managing personal data on a mobile communications device in which personal data stored at one or more locations on the mobile communications device is identified by a policy management module on the mobile communications device. A policy is then created based on the identified personal data. The policy management module on the mobile communications device monitors at least the personal data stored in the one or more locations on the mobile communications device and detects attempts to access the monitored data.
    Type: Grant
    Filed: September 9, 2019
    Date of Patent: April 27, 2021
    Assignee: LOOKOUT, INC.
    Inventors: Timothy Micheal Wyatt, Kevin Patrick Mahaffey, David Luke Richardson, Brian James Buck, Marc William Rogers
  • Patent number: 10992680
    Abstract: Techniques are described for management of authorization (e.g., OAuth) clients on a distributed computing environment (e.g., platform), through a deployment descriptor of the application(s) hosted in the environment. The deployment descriptor can be provided with the deployed application, and describes various permissions for access to services provided by the platform and scope(s) of such access. Credentials can be generated for each subscriber of the application, according to the scope(s) indicated in the descriptor, and an authorization client can be generated that describes the various subscriptions of the various access and access scope(s) associated with each subscription. The authorization client is available on the platform and accessed at application runtime to control the application's access to the various services available on the platform.
    Type: Grant
    Filed: June 29, 2018
    Date of Patent: April 27, 2021
    Assignee: SAP SE
    Inventors: Bhagyesh Hede, Milen Manov, Vasil Panushev
  • Patent number: 10990643
    Abstract: Techniques for automatically linking pages in a web site are provided. In one technique, training data for a machine-learned scoring model is generated that comprises a plurality of features related to content items. The training data comprises multiple entries, each corresponding to a different content item in a first set of content items. For each entry, a corresponding label is based on a ranking of the corresponding content item in one or more search engine results. The machine-learned scoring model is trained based on the training data. For each content item in a second set of content items, multiple attribute values associated with that content item are input into the machine-learned scoring model, which generates a result. Based on multiple results, determining, for a particular web page, a strict subset of the second set of content items to which the particular web page will include one or more links.
    Type: Grant
    Filed: March 30, 2018
    Date of Patent: April 27, 2021
    Assignee: Microsoft Technology Licensing, LLC
    Inventors: Qingbo Hu, Huan Hoang, Yongzheng Zhang, Chia Lung Kao
  • Patent number: 10987457
    Abstract: A dialysis system, comprising: a dialysis machine; a voice recognition component configured to identify a voice command in audio information received by a microphone of the dialysis system; an authentication component configured to determine a source of the voice command; and a processor configured to perform a function determined based on the voice command.
    Type: Grant
    Filed: September 6, 2019
    Date of Patent: April 27, 2021
    Assignee: Fresenius Medical Care Holdings, Inc.
    Inventors: Lee Daniel Tanenbaum, Fei Wang, Mario Gumina, Thomas Merics, Eric Hoffstetter, Matthew Doyle, Aleo Nobel Mok, Wayne Raiford
  • Patent number: 10990488
    Abstract: While the management module of an information handling system is set as a standby module, an enclosure controller provides first requests for attribute data of the information handling system, and receives and stores first response data for attribute data associated with a first subset of the first requests in a local memory of the enclosure controller. The enclosure controller receives request failure responses associated with a second subset of the first requests directed to a subset of the attributes data for the information handling system stored in a shared memory. While the management module is set as an active module, the management module is granted access to the shared memory. The enclosure controller provides retry requests for attributes associated with the request failure responses, and receives and stores second response data associated with the retry requests in the local memory.
    Type: Grant
    Filed: December 12, 2019
    Date of Patent: April 27, 2021
    Assignee: Dell Products L.P.
    Inventors: Michael E. Brown, Joshua M. Pennell, Henry Pang
  • Patent number: 10993105
    Abstract: Provided are terminal devices and a method for establishing association between terminal devices. A first terminal device transmits information of terminal capabilities to a network device, the information of terminal capabilities being used to indicate that the terminal device has capabilities of receiving and forwarding data. The first terminal device receives confirmation information for confirming that the terminal device has the capabilities of receiving and forwarding data, from the network device. The first terminal device establishes an association with a second terminal device according to the confirmation information.
    Type: Grant
    Filed: April 7, 2016
    Date of Patent: April 27, 2021
    Assignee: GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP., LTD.
    Inventor: Hai Tang
  • Patent number: 10992640
    Abstract: An information processing system includes: a user information management section that manages user information for use when plural servers provide services on a network; and a control section that, when receiving a request to change the user information, performs control to change a method of notifying change of the user information, including at least a notification destination and a notification time specified for each service, based on a type of a service using the user information related to the change request and contents of the change of the user information according to the change request.
    Type: Grant
    Filed: August 14, 2019
    Date of Patent: April 27, 2021
    Assignee: FUJI XEROX CO., LTD.
    Inventor: Makoto Mihara
  • Patent number: 10986119
    Abstract: An implementation comparison-based security system is disclosed. In various embodiments, respective network messages received from a plurality of implementations are received. The network messages are compared to determine whether any network message in the received set of network messages deviates from any one or more other network messages in the set. A responsive action is determined based at least in part on the results of said comparison.
    Type: Grant
    Filed: August 16, 2019
    Date of Patent: April 20, 2021
    Assignee: Curtail, Inc.
    Inventor: Robert F. Ross
  • Patent number: 10986210
    Abstract: Disclosed are various examples for providing network content filtering to client devices on a per-application basis. A network stack receives a request from an application to connect to a network service. The network stack then determines the identity of the application. Based at least in part on the identity of the application, the network stack initiates a network connection between the application and the network service using or without using a managed network tunnel.
    Type: Grant
    Filed: November 27, 2018
    Date of Patent: April 20, 2021
    Assignee: AIRWATCH LLC
    Inventor: Adam Rykowski
  • Patent number: 10986684
    Abstract: The present disclosure provides a network matching and pairing method, including: connecting to a device via bluetooth; transmitting an instruction of setting a high bluetooth connection parameter to the device via bluetooth, for the device to set a bluetooth connection parameter thereof as a high bluetooth connection parameter; transmitting WiFi information to the device via bluetooth, the WiFi information comprising information of a WiFi connection end; and transmitting an instruction of setting a low bluetooth connection parameter to the device via bluetooth, for the device to set the bluetooth connection parameter thereof as a low bluetooth connection parameter and to connect to the WiFi connection terminal via WiFi under the low bluetooth connection parameter.
    Type: Grant
    Filed: December 11, 2019
    Date of Patent: April 20, 2021
    Assignee: BAIDU ONLINE NETWORK TECHNOLOGY (BEIJING) CO., LTD.
    Inventors: Shuaizheng Liu, Song Yang, Mujin Wang, Xujie Zhu
  • Patent number: 10985927
    Abstract: Certain example embodiments relate to systems and techniques for a client device outside of a cloud infrastructure to securely access services in the cloud infrastructure by relying on one or more keys that are validated by the cloud infrastructure based on a heartbeat message received from the client device. The heartbeat message may be secured by a certificate generated for the client device.
    Type: Grant
    Filed: October 30, 2018
    Date of Patent: April 20, 2021
    Assignee: DUPLOCLOUD, INC.
    Inventors: Thiruvengadam Venketesan, Sukhjit Parihar
  • Patent number: 10979297
    Abstract: Disclosed are various embodiments for a network identification device and its integration with other applications. The network identification device can include a number of components, such as a first network interface, a second network interface, a processor, and a memory. A profile that represents a computing device communicatively coupled to the first network interface may be stored in the memory. Machine readable instructions may also be stored in the memory. When executed by the processor, the machine readable instructions may cause the network identification device to process a request for the profile received from a second computing device via the second network interface. The machine readable instructions may also cause the network identification device to send the profile to the second computing device via the second network interface.
    Type: Grant
    Filed: August 3, 2018
    Date of Patent: April 13, 2021
    Assignee: AMAZON TECHNOLOGIES, INC.
    Inventor: Don Franke
  • Patent number: 10979392
    Abstract: Aspects of the disclosure relate to preventing unauthorized access to secure enterprise information systems using a multi-filtering and randomizing control system. A computing platform may receive, from a source user computing device, a request to pull source data from an enterprise system of record and may generate a transport pattern. Subsequently, the computing platform may generate and send one or more first configuration commands for the enterprise system of record based on the transport pattern. Then, the computing platform may generate and send one or more second configuration commands for a virtualization platform associated with the enterprise system of record based on the transport pattern. Thereafter, the computing platform may generate and send an initiation instruction command for the source user computing device based on the transport pattern, which may direct the source user computing device to send at least one request to at least one data filtering system.
    Type: Grant
    Filed: October 19, 2017
    Date of Patent: April 13, 2021
    Assignee: Bank of America Corporation
    Inventor: Manu Kurian
  • Patent number: 10979412
    Abstract: The present disclosure describes apparatuses and techniques for secure device authentication. In some aspects, a public ephemeral key of a device is exposed. A message received from a remote device to authenticate includes a hash of the public ephemeral key of the device, a public ephemeral key and an encrypted public key of the remote device, and an encrypted hash value useful to prove ownership of the public key received from the remote device. An encryption key is generated based on the public ephemeral key of the remote device and a private ephemeral key of the device. The device then decrypts, with the encryption key, the encrypted public key of the remote device and the encrypted hash value. The remote device is then authenticated by verifying, based on the decrypted hash value, that the remote device owns the decrypted public key.
    Type: Grant
    Filed: February 22, 2017
    Date of Patent: April 13, 2021
    Assignee: NXP USA, Inc.
    Inventor: Paul A. Lambert
  • Patent number: 10979432
    Abstract: Hosted communication channels associated with a communication platform are described. In an example, a user can utilize communication services available via a communication platform. In some examples, a first organization can invite a second organization to join a communication channel. The two organizations can be different such that they are associated with different organization identifiers and are associated with different permissions. In some examples, content associated with each organization can be private, such that other organizations cannot access content that is owned or otherwise managed by each organization. However, content posted to shared communication channels can be accessed, viewed, interacted with, or the like by any member of the shared communication channels. To address privacy and/or security concerns, some organizations or users of the communication platform may desire to control how end users that join a shared communication channel interact with the shared communication channel.
    Type: Grant
    Filed: July 1, 2020
    Date of Patent: April 13, 2021
    Assignee: Slack Technologies, Inc.
    Inventors: Ilan Frank, Shanan Delp, Michael Demmer, Sri Vasamsetti, Neha Sharma
  • Patent number: 10972464
    Abstract: A network system that can easily augment security is provided. The network system includes an information device included in an internal network connected to an external network, the information device transmitting specific information including its own identification information and device information provided in advance, in conformity with a predefined protocol; and a management unit that monitors the internal network, and collects the specific information from the information device in conformity with the predefined protocol. The management unit collects specific information from an unknown information device, notifies a user of an authorization request for the unknown information device on the basis of the collected specific information, and determines whether or not to authorize access of the unknown information device to the internal network, in accordance with a response from the user to the authorization request.
    Type: Grant
    Filed: October 30, 2018
    Date of Patent: April 6, 2021
    Assignee: SMK Corporation
    Inventors: Junsoo Kim, Haruhiko Kondo
  • Patent number: 10972501
    Abstract: An egress man-in-the-middle (MITM) system comprising: a trusted computing asset disposed in a first local subnet and connected to a computer network; and an egress MITM effector disposed in the first local subnet and configured to passively monitor incoming network traffic to the trusted computing asset, and further configured to obfuscate true information regarding the trusted computing asset to other computing assets on the computer network by transmitting, as if from the trusted computing asset, a spoofed response in answer to selected incoming network traffic, wherein the spoofed response comprises false or misleading information regarding the trusted computing asset thereby protecting the trusted computing asset from attack.
    Type: Grant
    Filed: November 5, 2018
    Date of Patent: April 6, 2021
    Assignee: United States of America as represented by the Secretary of the Navy
    Inventors: Sunny James Fugate, Bradley Michael Flamm
  • Patent number: 10965672
    Abstract: Concepts and technologies of network service control for remote access to wireless radio networks are provided herein. In an embodiment, a client network can be provided by a network access point that can include a processor that is configured to detect a guest user equipment and determine whether the guest user equipment is a recognized device. In response to determining that the guest user equipment is not a recognized device, the processor can create an identity verification request message that seeks approval from a host device to allow the guest user equipment to access the client network. The processor can provide the identity verification request message to the host device and receive a trigger response message. The processor can create a network access package that provides the guest user equipment with access credentials to access the client network and provide the network access package to the guest user equipment.
    Type: Grant
    Filed: April 13, 2018
    Date of Patent: March 30, 2021
    Assignee: AT&T Intellectual Property I, L.P.
    Inventors: Earle H. West, III, Mark Fu
  • Patent number: 10965694
    Abstract: An intrusion detection system that includes a tree builder engine configured to receive HyperText Transfer Protocol (HTTP) data and to convert the HTTP data into a data tree object that links field values from the HTTP data. The system further includes a feature extractor engine configured to identify a field value from the data object tree and to determine a set of feature values for the field value corresponding with input features for the neural network model. The system further includes a neural network engine configured to apply the determined set of feature values to the neural network model to generate an attack vector array. The attack vector array includes flag bits that each correspond with an attack type. the system further includes an intrusion analyzer engine configured to trigger an event in response to determining that at least one flag bit is set.
    Type: Grant
    Filed: December 11, 2018
    Date of Patent: March 30, 2021
    Assignee: Bank of America Corporation
    Inventors: Ramesh Alagar, Prabakar Rangarajan
  • Patent number: 10965680
    Abstract: An authority management method and device in a distributed environment, and a server are provided. The method includes: obtaining usage information of a user when the user uses an object storage product, the usage information including the user's behavior, status and feature; determining a matching degree between the usage information of the user and usage information predicted by a portrait model of the user; and applying a preset early warning mechanism to the user's access authorities according to the matching degree.
    Type: Grant
    Filed: October 16, 2018
    Date of Patent: March 30, 2021
    Assignee: BEIJING BAIDU NETCOM SCIENCE AND TECHNOLOGY CO., LTD.
    Inventors: Shuangyang Song, Linjiang Lian, Meng Wang, Xianhui Niu, Li Li
  • Patent number: 10965683
    Abstract: Systems, methods, and apparatuses for authenticating requests to access one or more accounts over a network using authenticity evaluations of two or more automated decision engines are discussed. A login request for access to a user account may be submitted to multiple decision engines that each apply different rulesets for authenticating the login request, and output an evaluation of the authenticity of the login request. Based on evaluations from multiple automated decision engines, the login request may be allowed to proceed to validation of user identity and, if user identity is validated, access to the user account may be authorized. Based on the evaluations, the login attempt may also be rejected. One or more additional challenge question may be returned to the computing device used to request account access, and the login request allowed to proceed to validation of identity if the response to the challenge question is deemed acceptable.
    Type: Grant
    Filed: December 3, 2018
    Date of Patent: March 30, 2021
    Assignee: Wells Fargo Bank, N.A.
    Inventors: Mark David Castonguay, Upul D. Hanwella, Bryan Hall, Nicola A. Maiorana, David Lerner
  • Patent number: 10965664
    Abstract: Disclosed are various examples for providing a single sign-on experience for mobile applications that may or may not be managed. A first application executed in a client device sends an access request to a service provider. The first application receives a redirection response from the service provider that redirects the first application to an identity provider. The first application then receives a further redirection response from the identity provider that causes the first application to request an identity assertion from a second application executed in the client device. The first application receives the identity assertion from the second application. The first authentication then authenticates with the service provider using the identity assertion.
    Type: Grant
    Filed: December 31, 2018
    Date of Patent: March 30, 2021
    Assignee: AirWatch LLC
    Inventors: Adam Rykowski, Ashish Jain, Dale Roberts Olds, Emily Hong Xu, Kabir Barday, Kyle Austin, Sridhara Babu Kommireddy
  • Patent number: 10956608
    Abstract: An information processing apparatus includes a memory, and a processor coupled to the memory and configured to control, in an event of access to personal data of a user in a case where personal data is stored in a data region for each individual user, an access right to access the personal data of the user for an account that accesses the personal data of the user, based on a relation between the account and the user and a situation in which the account accesses the personal data of the user.
    Type: Grant
    Filed: November 14, 2018
    Date of Patent: March 23, 2021
    Assignee: FUJITSU LIMITED
    Inventors: Junya Kani, Naoki Nishiguchi, Miwa Okabayashi
  • Patent number: 10958737
    Abstract: A system for multimedia content delivery includes one or more processors; and a storage medium storing instructions. When executed, the instructions may configure the one or more processors to perform operations including: delivering to a set of client devices a manifest including fake segment URLs; receiving, from a client device, a segment request including a client ID and a requested URL. The method may also include selecting content for the at least one of the client devices based on the client ID when determining the requested URL is unavailable; redirecting the segment request to a content address associated with the selected content; and providing the selected content to the at least one of the client devices.
    Type: Grant
    Filed: April 29, 2019
    Date of Patent: March 23, 2021
    Assignee: SYNAMEDIA LIMITED
    Inventors: David Livshits, Vered Anikster
  • Patent number: 10959099
    Abstract: A description is therefore provided of technologies enhancing interoperability of devices located in a proximity from each other, with the goal of improving service performance and security. Interoperability between a wearable device on user's hand and a door or a mobile phone results in improved security as well as convenience of use. Interoperability between mobile devices and nearby devices belonging to different users, able to provide local computational power, results in lowering of bandwidth requirements for data transfer, by means of performing computations on the data being collected locally, as opposed to it being done on a remote server.
    Type: Grant
    Filed: January 24, 2019
    Date of Patent: March 23, 2021
    Inventor: Natalya Segal
  • Patent number: 10958560
    Abstract: A method of migrating traffic in a network includes receiving, via an API, a request to migrate traffic. The request identifies a target around which the traffic is to be migrated and a peer to which the traffic is to be migrated. The method also includes discovering at least one anchor point based on at least a topology of the network, the target, and the peer. The method includes, based on an identity of the at least one anchor point and the target, identifying a migration mechanism. The method also includes requesting, in accordance with the migration mechanism, that the at least one anchor point facilitate migration of the traffic. The method includes responding, through the API, to the request indicating whether the migration was successful.
    Type: Grant
    Filed: July 16, 2019
    Date of Patent: March 23, 2021
    Assignee: AT&T Intellectual Property I, L.P.
    Inventors: Ajay Mahimkar, Yikai Lin, Zihui Ge
  • Patent number: 10956972
    Abstract: Operations may include providing, by an account management system of a first entity, a user interface to a third-party electronic device. The user interface may present an account access agreement that authorizes a second entity to access a third-party account managed by the account management system and owned by a third entity. The operations may further include generating, by the account management system, based on an indication that the third entity accepts the account access agreement, an account access token that is assigned to the third-party account and the second entity and that indicates that the third entity has authorized the second entity to access the third-party account. In addition, the operations may include communicating the account access token to a platform management system of the second entity such that the account access token provides the platform management system a mechanism to access the third-party account.
    Type: Grant
    Filed: December 26, 2018
    Date of Patent: March 23, 2021
    Assignee: PayPal, Inc.
    Inventors: Alex Miyamoto, Todd Hashimoto
  • Patent number: 10951720
    Abstract: Embodiments of the invention are directed to systems, methods, and computer program products for providing a multi-channel cognitive resource platform configured for intelligent, proactive and responsive communication with a user, via a user device. The system is further configured to perform one or more user activities, in an integrated manner, within a single interface of the user device, without requiring the user to operate disparate applications. Furthermore, the system is configured to receive user input through multiple communication channels such as a textual communication channel and an audio communication channel. The system is further configured to switch between the various communication channels seamlessly, and in real-time.
    Type: Grant
    Filed: February 8, 2017
    Date of Patent: March 16, 2021
    Assignee: BANK OF AMERICA CORPORATION
    Inventors: Kevin T. Cole, Alicia C. Jones-McFadden, Sushil Golani, Caitlin Chrisman Bullock, Dariane K. Hunt, Ramakrishna R. Yannam, Christian S. Kitchell, Matthew Hsieh, Shahram Khosraviani, Priyank R. Shah, Maruthi Shanmugam
  • Patent number: 10952063
    Abstract: A method for dynamically learning and using foreign mobility management node information for telecommunications network security screening includes operating a telecommunications network routing node in a learn mode in which traffic from foreign mobility management nodes is received and identities of the foreign mobility management nodes are learned and used to populate a security database maintained by the telecommunications network routing node. The method further includes operating the telecommunications network routing node in a test mode to dynamically learn foreign mobility management node security status and maintaining the security status for the foreign mobility management nodes in the security database. The method further includes operating the telecommunications network routing node in an active mode to filter traffic from the foreign mobility management nodes using the dynamically learned node identities and security statuses.
    Type: Grant
    Filed: April 9, 2019
    Date of Patent: March 16, 2021
    Assignee: ORACLE INTERNATIONAL CORPORATION
    Inventor: Vikram Mehta
  • Patent number: 10949408
    Abstract: A pervasive search architecture that indexes personal content of a querying user and made accessible to the user by other users. A compute node of a personal content location facilitates index generation and serve of the index. The index is generated for personal content stored at the personal content location. For a given content location, the index may encapsulate content stored in a set of locations with access permissions. The indexing application runs periodically at the personal content location and incrementally indexes content that is added to the shared locations. The same application allows the user to configure locations with the desired access permissions for participation in the search.
    Type: Grant
    Filed: February 21, 2018
    Date of Patent: March 16, 2021
    Assignee: Microsoft Technology Licensing, LLC
    Inventors: Pragyana K. Mishra, Nagareddy S. Reddy, Mikhail Parakhin
  • Patent number: 10952177
    Abstract: Systems, methods, apparatuses, and computer program products for dynamic subscription handling are provided. One method includes receiving, by a control node in a network, a request in which a user equipment requests to register with the network or requests to obtain a specific service for a certain access point name. The method may then include determining whether the user equipment is authorized to obtain services from the network or authorized to use the access point name. When it is determined that the user equipment is not authorized to obtain services from the network or not authorized to use the access point name, the method includes re-directing the user equipment to a subscription server, sending a response to the user equipment indicating that the request is rejected with re-direction, and triggering establishment of a packet data connectivity session for the user equipment.
    Type: Grant
    Filed: October 10, 2016
    Date of Patent: March 16, 2021
    Assignee: NOKIA SOLUTIONS AND NETWORKS OY
    Inventors: Devaki Chandramouli, Rainer Liebhart
  • Patent number: 10943031
    Abstract: Methods and systems for adaptively sanitizing data for endpoints are described herein. A system may contain one or more endpoints that receive requests for data and provide responses to the requests. A sanitizer may adaptively sanitize each request and response according to a sanitation level provided by a log analyzer. The sanitation level may be based on a risk level of attack at the endpoint as determined by the log analyzer. The log analyzer may analyze logs containing all operations performed at the endpoint to determine a sanitation level. Thus, the amount of sanitation performed by the sanitizer can be tailored to the needs of any given endpoint.
    Type: Grant
    Filed: December 22, 2017
    Date of Patent: March 9, 2021
    Assignee: Citrix Systems, Inc.
    Inventor: Rodney Gallart Acosta
  • Patent number: 10944745
    Abstract: The present disclosure is directed to a novel system for using unique device and user identifiers to perform authentication of a user, device, and/or transaction. In particular, the system may use device biometric profiles and/or user identifiers to generate a unique identifiable signature for each user and/or device. The unique signature may then be used to authenticate devices as well as transactions submitted by said devices. In this way, the system increases the security of device authentication by helping to prevent the use of device hijacking methods that circumvent conventional authentication practices.
    Type: Grant
    Filed: December 6, 2018
    Date of Patent: March 9, 2021
    Assignee: BANK OF AMERICA CORPORATION
    Inventors: Eren Kursun, Neil David Zane
  • Patent number: 10944747
    Abstract: Devices, systems, and methods receive a token and a request to create a joint tenant, wherein at least one of the token and the request identifies a first user of a first tenant of a first service; receive one or more administrator credentials for a second service; send the one or more administrator credentials and a request to create a service account to the second service; and create a joint tenant that includes a tenant of the first service and a tenant of the second service, wherein the first user is included in the tenant of the first service, and wherein the service account is included in the tenant of the second service.
    Type: Grant
    Filed: May 24, 2017
    Date of Patent: March 9, 2021
    Assignees: Canon Information and Imaging Solutions, Inc., Canon U.S.A., Inc.
    Inventors: Craig Mazzagatte, Allison Bajo, Hari Rathod
  • Patent number: 10942732
    Abstract: According to some embodiments, systems and methods are provided, comprising a first platform including an Application Programming Interface (API) provider; at least one data source; an integration framework module operative to execute: an integration process to integrate a third-party application with the first platform, and a test process wherein one of a plurality of whitelisted APIs provided by the API provider is executed to analyze the integration; a user interface; a memory storing program instructions; and an integration framework processor, coupled to the memory, and in communication with the integration framework module and operative to execute program instructions to: receive input data associated with the at least one data source via the user interface; transform the input data to an XML format for the integration process; access an API of the plurality of APIs; one of enter XML, format data into the API and retrieve data from the API; transform the retrieved data into a non-technical format; and r
    Type: Grant
    Filed: October 10, 2019
    Date of Patent: March 9, 2021
    Assignee: SAP SE
    Inventors: Anupama Chandrasekhar, Akshay Kumar, Ranjani Guruprasad, Dirk Recktenwald
  • Patent number: 10944789
    Abstract: Phishing enhancement and phishing detection enhancement technologies. The technologies can include determinations of an effectiveness rate of one or more phishing threat actors. The technologies can also include selection of effective URLs from at least one effective phishing threat actor. The technologies can also include generation or adjustment of a phishing system using a machine learning process to identify patterns in the selected effective URLs that enable the selected effective URLs to avoid detection by the phishing detection system. The technologies can also include generation of synthetic phishing URLs using the phishing system and the identified patterns. The technologies can also include adjustments or training of the phishing system or the phishing detection system according to the synthetic phishing URLs to enhance the systems.
    Type: Grant
    Filed: July 25, 2018
    Date of Patent: March 9, 2021
    Assignee: Easy Solutions Enterprises Corp.
    Inventors: Alejandro Correa Bahnsen, Ivan Dario Torroledo Pena, Luis David Camacho Gonzalez, Sergio Villegas Piedrahita
  • Patent number: 10945095
    Abstract: Methods and systems for providing transportation service to a passenger are disclosed. An exemplary method for providing transportation service may include receiving a transportation request from a terminal device, the transportation request indicating a passenger position. The method may further include causing the terminal device to search for network condition information associated with the passenger position. The method may also include determining, by at least one processor, a pick-up location for the transportation request based on the network condition information, and providing the pick-up location to the terminal device.
    Type: Grant
    Filed: June 15, 2020
    Date of Patent: March 9, 2021
    Assignee: BEIJING DIDI INFINITY TECHNOLOGY AND DEVELOPMENT CO., LTD.
    Inventors: Hailiang Xu, Weihuan Shu, Ruidong Li
  • Patent number: 10944770
    Abstract: A server includes a service processor hosted by a baseboard management controller (BMC) and independent of a CPU of the server. The server hosts web files. The service processor performs a set of monitoring tasks including receiving packets forming access requests made to the web files. A learning block is updated with information about suspicious packets. A counter is updated indicating a number of times a packet with a signature of a suspicious packet was received. When the counter reaches a threshold, a suspicious packet is analyzed in conjunction with other previously received suspicious packets. The analysis includes rearranging an arrival order of the suspicious packets into a new arrival sequence. The new arrival sequence of suspicious packets is matched to attack patterns in an attack pattern database. When the new arrival sequence matches an attack pattern, source IP addresses associated with the suspicious packets are added to a blacklist.
    Type: Grant
    Filed: October 25, 2018
    Date of Patent: March 9, 2021
    Assignee: EMC IP Holding Company LLC
    Inventors: Mainak Roy, Chitrak Gupta
  • Patent number: 10942688
    Abstract: A policy-based printing system is implemented to allow access to a private domain to print using a public domain. The private domain includes private servers that store documents. The public domain includes servers and a printing device. A public policy server uses a domain list and a protocol connection with a private authentication server to validate a user and identify which private domain to access. The public policy server retrieves a policy from a private policy server that configures the parameters for printing using the public domain. The print job data is provided to a public file server until the public policy server confirms that the print job can be sent to the printing device.
    Type: Grant
    Filed: June 25, 2019
    Date of Patent: March 9, 2021
    Assignee: KYOCERA DOCUMENT SOLUTIONS INC.
    Inventors: Arthur Alacar, Mark Chen, Jin Liang, Michael Martin
  • Patent number: 10936061
    Abstract: Techniques related to eye tracking using reverse-biased light-emitting diode (LED) devices are disclosed. In some embodiments, a viewing apparatus comprises a reverse-biased LED device that is positioned within a field-of-view of an eye. The reverse-biased LED device receives light reflected from the eye and generates signal based on the received light. The generated signal is used to determine a position of the eye.
    Type: Grant
    Filed: September 17, 2019
    Date of Patent: March 2, 2021
    Assignee: Facebook Technologies, LLC
    Inventors: Vincent Brennan, Patrick Joseph Hughes, Pooya Saketi, Andrew John Ouderkirk, William Anthony Wall
  • Patent number: 10938851
    Abstract: A method and system for detecting and mitigation recursive domain name system (DNS) cyber-attacks are disclosed. The method includes receiving DNS queries directed to a DNS resolver, wherein the DNS resolver is communicatively connected between at least one client and at least one name server; parsing each received DNS query to extract a hostname identified therein; updating at least one array of Bloom filters using the extracted hostname; computing a ratio of an unrecognized hostnames per sample (UPS) based on the contents of the at least one array; and determining if the UPS ratio is abnormal, wherein an abnormal UPS ratio is an indication of an attack.
    Type: Grant
    Filed: March 29, 2018
    Date of Patent: March 2, 2021
    Assignee: Radware, Ltd.
    Inventors: Lev Medvedovsky, David Aviv
  • Patent number: 10936740
    Abstract: A computer implemented method of securing information stored in an entity relationship database system comprising at least one entity relationship database, the information stored in the entity relationship database system being stored according to an entity relationship model, the method comprising the steps of: specifying access rules limiting access to the entity relationship database system; storing the access rules in the entity relationship database system according to the entity relationship model; permitting an accessor to create an entity in the entity relationship database system if a “create-check” process dependent upon at least one of the one or more stored access rules grants permission; and permitting the accessor to read or modify or delete an entity stored in the entity relationship database system if a “non-create-check” process dependent upon at least one of the one or more stored access rules grants permission.
    Type: Grant
    Filed: February 1, 2017
    Date of Patent: March 2, 2021
    Assignee: GLOBAL SOFTWARE INNOVATION PTY LTD
    Inventors: Peter Kyra Aylett, Constantinos Christou, Anthony Christian Langsworth, David Gregory Quint, Scott Hopwood
  • Patent number: 10938805
    Abstract: A communal computing device such as an interactive digital whiteboard can provide progressively more access to functionality and data on the device based on a level of certainty in the identity of a user. If a user is identified based on one or more low-fidelity identification signals such as an image of the user or a device identifier, the communal computing device may provide a first level of functionality that is limited. If the user requests greater access, the communal computing device can request that a trusted cloud-based provider authenticate the user by way of a personal device, such as a smartphone. The authentication may be a password or high-fidelity biometric identification. The cloud-based provider communicates successful authentication to the communal computing device and it, in turn, provides the user access to higher, second level of functionality.
    Type: Grant
    Filed: October 10, 2018
    Date of Patent: March 2, 2021
    Assignee: Microsoft Technology Licensing, LLC
    Inventors: Raju Jain, Craig Thomas McIntyre, Kiran Kumar, Peter Gregory Davis, Jeff Johnson
  • Patent number: 10929548
    Abstract: A policy-based printing system is implemented to allow access to a private domain to print using a public domain. The private domain includes private servers that store documents. The public domain includes servers and a printing device. A public policy server uses a domain list and a protocol connection with a private authentication server to validate a user and identify which private domain to access. The public policy server retrieves a policy from a private policy server that configures the parameters for printing using the public domain. The print job data is provided to a public file server until the public policy server confirms that the print job can be sent to the printing device.
    Type: Grant
    Filed: June 25, 2019
    Date of Patent: February 23, 2021
    Assignee: KYOCERA DOCUMENT SOLUTIONS INC.
    Inventors: Arthur Alacar, Mark Chen, Jin Liang, Michael Martin
  • Patent number: 10931753
    Abstract: Techniques for redirecting a client device from a server to a mini-server are disclosed herein. Initially, the client device establishes a connection with the server. The server provides a landing page to the client device, where the landing page is programmed to include an element that, when selected, redirects the client device away from its connection with the server. In response to a selection of the element, the client device establishes a connection with the mini-server. The mini-server is part of a first local area network (LAN), and, as a result of switching networks, the client device is now a part of a second LAN. The two LANs are connected to one another via a network bridge. The mini-server is able to receive input from the client device and synchronize that input across other mini-servers in the first LAN in order to redundantly store the input.
    Type: Grant
    Filed: October 19, 2020
    Date of Patent: February 23, 2021
    Assignee: DittoLive Incorporated
    Inventors: Thomas Karpiniec, Adam Brandon John Fish