Credential Patents (Class 726/5)
  • Patent number: 10735526
    Abstract: A communication apparatus capable of data communication includes a controller that temporarily permits data communication of an application. Upon the application transitioning to the background, the controller maintains temporary permission for data communication of the application when the application transitioned to the background as a result of an interrupt not intended by a user, and prohibits data communication of the application when the application transitioned to the background as a result of an interrupt other than an interrupt not intended by the user.
    Type: Grant
    Filed: February 3, 2017
    Date of Patent: August 4, 2020
    Assignee: KYOCERA Corporation
    Inventors: Shuji Ishikawa, Yasuhiro Ito, Tomoya Kamijo, Hidetaka Hayashi, Kohei Michigami, Kazuo Onishi, Kazuya Chito
  • Patent number: 10735466
    Abstract: The invention provides mechanisms for enhancing the security and protection of a computer-based system or network. It relates, in part, to the use of a decoy (which may be termed “honeypot” or “honeynet”) for collecting attacker-related data, and/or diverting malicious behaviour away from legitimate resources. In one embodiment, the invention provides a method comprising the steps of receiving, processing and logging network traffic data of a plurality of users, where the network traffic is received from a plurality of participating users; determining an attacker profile from the network traffic data; determining a honeypot or honeynet configuration based on the attacker profile; and upon receipt of a valid information request from a user of the plurality of users, providing the determined attacker profile and configuration to the user.
    Type: Grant
    Filed: February 14, 2017
    Date of Patent: August 4, 2020
    Assignee: nChain Holdings Limited
    Inventor: Craig Steven Wright
  • Patent number: 10728762
    Abstract: Embodiments of the present invention provide methods, systems, and computer-readable storage medium for managing access to an application on a mobile computing device. In an embodiment, a method includes receiving a request from a user to return to the application and return to a previous screen of the application on the mobile computing device, and determining, using a processor, whether the previous screen of the application was in a secured area of the application. If it was in the secured area, then an authentication protocol is triggered prior to allowing the user to return to the previous screen in the secured area of the application on the mobile computing device. In another embodiment, geolocation dependent information is provided to a user via an application on a mobile computing device.
    Type: Grant
    Filed: February 13, 2019
    Date of Patent: July 28, 2020
    Assignee: United Services Automobile Association (USAA)
    Inventors: Jeremy Fisher, Joshua Goforth, James Christopher Watson, Richard Davey
  • Patent number: 10719454
    Abstract: A method includes determining, by a tracker controller of a hardware security module, that a first processor has submitted a first request to access a computing resource. The method also includes determining, by the tracker controller, whether the first request and a second request both request access to the same computing resource. The second request is submitted by a second processor. The method also includes preventing access to the computing resource based on a determination that the first request and the second request do not request access to the same computing resource. The method also includes permitting access to the computing resource based on a determination that the first request and the second request both request access to the same computing resource.
    Type: Grant
    Filed: November 6, 2017
    Date of Patent: July 21, 2020
    Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATION
    Inventors: Silvio Dragone, Nihad Hadzic, William Santiago Fernandez, Tamas Visegrady
  • Patent number: 10713008
    Abstract: Methods and systems for transferring a user session between at least two electronic devices are described. The user session is conducted as an audible session via an audible interface provided by a primarily audible first electronic device. Input data is received from the audible interface, wherein the input data causes the audible interface to progress through audible interface states. A current audible interface state is mapped to a visual interface state defined for a visual interface. The mapped visual interface state is pushed to a second electronic device having a visual output device for displaying the visual interface, to enable the user session to be continued as a visual session on the second electronic device.
    Type: Grant
    Filed: August 17, 2018
    Date of Patent: July 14, 2020
    Assignee: THE TORONTO-DOMINION BANK
    Inventors: Nasim Sarir, Steven Gervais, Peter Horvath, Ekas Kaur Rai, Peter John Alexander, Arun Victor Jagga
  • Patent number: 10708264
    Abstract: The present disclosure provides methods and systems for secure logon. One or more method includes: determining, via authentication information provided by a user of an electronic device, that the user is authorized to access an online account provided by the online account provider; providing the user with a selectable option to enable an expedited logon process by which the user can access the online account by solely providing a particular authentication item of the user; receiving a verification credential in response to a next logon attempt using the expedited logon process; and verifying that the received verification credential matches an assigned verification credential provided to the user for use in conjunction with the next logon attempt using the expedited logon process.
    Type: Grant
    Filed: April 29, 2019
    Date of Patent: July 7, 2020
    Assignee: United Services Automobile Association (USAA)
    Inventors: Thomas B. Buckingham, Richard A. Davey, Tammy Sanclemente, Ryan M. Johnson, Adam J. Leatham, Christopher Thomas Wilkinson
  • Patent number: 10708055
    Abstract: Multifactor authentication is a method to secure data and accounts and to prevent unauthorized access. A first factor can be information that the user knows, such as a username and password combination. A second factor can be something that the user possesses, such as a token generator or a trusted device. The present invention enables a user to present multiple authentication factors through a single biometric input using stored credentials and tokens generated by a secure element.
    Type: Grant
    Filed: October 23, 2017
    Date of Patent: July 7, 2020
    Assignee: International Business Machines Corporation
    Inventors: Gabriel M. Kozma, Carlos E. Seo
  • Patent number: 10708287
    Abstract: A client device accesses content and performs actions at a remote application server via a user-agent application. The application server directs the user-agent application to a security verification system to retrieve and perform security tests. The security verification system receives information from the user-agent application describing characteristics of the user-agent application, and the security verification system selects a set of security tests to be performed by a security module executing in the user-agent application to verify that the user-agent application is accessing the application server consistent with the described user-agent application. The security verification system compares a set of test results with other user-agent applications and provides a token to the user-agent application to access the application server. The security module may also monitor and actions on the user-agent application to permit the security verification system to revise or revoke the token.
    Type: Grant
    Filed: January 7, 2019
    Date of Patent: July 7, 2020
    Assignee: PERIMETERX, INC.
    Inventors: Ido Safruti, Omri Iluz
  • Patent number: 10708276
    Abstract: A system includes least one processor in communication with a memory storing instructions, the at least one processor to receive an authentication request comprising authentication information from a user requesting access to a computing device connected to a communications network, determine a type of authentication request sent by the user, transmit the authentication request to an appropriate authentication server responsive to the type of authentication request, receive an authentication response from the appropriate authentication server, determine a permission level for the user requesting access to the computing device and attach the permission level to the authentication response, and transmit the authentication response to the user requesting access to the computing device.
    Type: Grant
    Filed: November 21, 2015
    Date of Patent: July 7, 2020
    Assignee: Level 3 Communications, LLC
    Inventors: Brad Bernay Doctor, Nathaniel David Jamiel, Taylor David Fraley, John Grayson Fable
  • Patent number: 10708304
    Abstract: In general, in one aspect, a system for providing honeypot network services may monitor network activity, and detect network activity indicative of network service discovery by a first device, for example, port scanning. The system may present a temporarily available network service to the first device in response to detecting the activity indicative of port scanning, for example, by redirecting traffic at an unassigned network address to a honeypot network service. The system may monitor communication between the first device and the presented honeypot network service to determine whether the monitored communication is indicative of a threat, and determine that the first device is compromised based on the monitored communication between the first device and the presented honeypot network service. The system may initiate measures to protect the network from the compromised first device.
    Type: Grant
    Filed: April 11, 2019
    Date of Patent: July 7, 2020
    Assignee: Sophos Limited
    Inventor: Daniel Stutz
  • Patent number: 10708171
    Abstract: Embodiments can provide an apparatus, a method and/or a computer program for routing data packets in a radio access network. The apparatus 10 comprises means for receiving 12 a data packet 804 from a source network node, the data packet comprises a data packet header and a data packet payload. The apparatus 10 further comprises means for inspecting 14 the data packet. The means for inspecting 14 is operative to perform a first packet inspection on the data packet header to determine information on a source or a destination of the data packet from the data packet header, and the means for inspecting 14 is operative to perform a second packet inspection on the data packet payload based on the information on the source or the destination of the data packet to determine information on an identification of the destination of the data packet.
    Type: Grant
    Filed: October 9, 2012
    Date of Patent: July 7, 2020
    Assignee: Alcatel Lucent
    Inventors: Ralf Klotsche, Bernd Haberland
  • Patent number: 10701537
    Abstract: Provided are a method and device for providing service via wireless communication. A device which provides a service includes a wireless communication unit which receives, from an external device, information about at least one content that is being reproduced by the external device; and a controller which is configured to request an object for using a service related to the at least one content from a server, and to receive the object from the server, and to output the object via an output unit.
    Type: Grant
    Filed: March 12, 2019
    Date of Patent: June 30, 2020
    Assignee: SAMSUNG ELECTRONICS CO., LTD.
    Inventors: Sang-ok Cha, Jong-hyun Ryu, Hee-chul Jeon, Won-young Choi
  • Patent number: 10701054
    Abstract: Systems, methods, and apparatuses for implementing super community and community sidechains with consent management for distributed ledger technologies in a cloud based computing environment are described herein.
    Type: Grant
    Filed: January 31, 2018
    Date of Patent: June 30, 2020
    Assignee: salesforce.com, inc.
    Inventors: Prithvi Krishnan Padmanabhan, Sriram Gopalan, Venkata Sarath Maddali, Darpan Dhamija, Jyoti Raj
  • Patent number: 10694430
    Abstract: A synchronization method, a communication handover method, a radio network, and a RAN node are disclosed. The interface information synchronization method includes determining whether a condition for initiating interface information update is fulfilled. Information about the S1 interface between the RAN node and the core network node, is sent. In addition, or alternatively, information about the X2 interface between the RAN node and the neighboring RAN node is sent to the neighboring RAN node if the condition for initiating interface information update fulfilled.
    Type: Grant
    Filed: February 8, 2019
    Date of Patent: June 23, 2020
    Assignee: HUAWEI TECHNOLOGIES CO., LTD.
    Inventor: Yong Qiu
  • Patent number: 10693986
    Abstract: In some implementations, a computing device can use notification extensions for applications to preprocess a notification received by the computing device and present content associated with a notification. For example, applications installed on the computing device can provide a service extension for preprocessing the notification. When a notification associated with the application is received, the notification system on the computing device can invoke the service extension for the application to preprocess the notification (e.g., to download additional content, encrypt/decrypt notification data, etc.). Applications can provide content extensions to present notification content. For example, a content extension associated with the application can be invoked by the notification system to present media content (or other content) associated with a received notification in an application specific manner.
    Type: Grant
    Filed: May 17, 2019
    Date of Patent: June 23, 2020
    Assignee: Apple Inc.
    Inventors: Matthew E. Shepherd, Benjamin T. Sherratt, Michele Campeotto
  • Patent number: 10691833
    Abstract: Disclosed is a computer-implemented method for activating a predetermined function in a device. The device in question has at least a touch-screen coupled to a processor, and is operable in a data entry mode and a command mode, the data entry mode being one in which the processor is configured to receive inputs detected at the touch-screen and the command mode being one in which the processor is configured to activate a function.
    Type: Grant
    Filed: October 17, 2017
    Date of Patent: June 23, 2020
    Assignee: MASTERCARD INTERNATIONAL INCORPORATED
    Inventor: Ajit Karnik
  • Patent number: 10684787
    Abstract: Implementations of the present application provide a partition splitting method. Data files in a target source partition are divided into at least two data groups. A first data group from the at least two data groups is selected as a target splitting data group. A first splitting step is performed on the target splitting data group, including: splitting the target splitting data group into a plurality of data sub-groups based on a predetermined splitting rule, wherein each data sub-group of the plurality of data sub-groups corresponds to a new partition of at least two new partitions for the target source partition, and assigning each data sub-group to the new partition corresponding to the data sub-group. A second data group from the at least two data groups is selected as the target splitting data group, wherein the second data group is different from the first data group.
    Type: Grant
    Filed: November 27, 2019
    Date of Patent: June 16, 2020
    Assignee: Alibaba Group Holding Limited
    Inventors: Chenxi Li, Yuzhong Zhao, Hu Xu
  • Patent number: 10678906
    Abstract: A communication system and method for the utilization of authentication protocols to authenticate computing devices. An authentication service provider can authenticate a computing device after a first authentication by an authentication protocol. Computing devices can use the authentication to receive additional credential to access one or more service providers.
    Type: Grant
    Filed: December 22, 2016
    Date of Patent: June 9, 2020
    Assignee: Amazon Technologies, Inc.
    Inventors: Rameez Loladia, Mark Edward Rafn
  • Patent number: 10681085
    Abstract: Establishing Transport Layer Security/Secure Sockets Layer (TLS/SSL) sessions with destination servers for Internet of Things (IoT) devices is provided. A request is sent to establish a TLS/SSL session with a target destination server in a set of destination servers using destination server information related to a particular IoT device in a plurality of IoT devices. A TLS/SSL session is established with the target destination server corresponding to the particular IoT device. TLS/SSL session credential information is received for the particular IoT device from the target destination server. The TLS/SSL session credential information for the particular IoT device is saved in a session credential information table. The TLS/SSL session is suspended with the target destination server corresponding to the particular IoT device.
    Type: Grant
    Filed: October 16, 2017
    Date of Patent: June 9, 2020
    Assignee: International Business Machines Corporation
    Inventors: Kuo-Chun Chen, Wei-Hsiang Hsiung, Sheng-Tung Hsu, Jia-Sian Jhang
  • Patent number: 10678900
    Abstract: Apparatuses, methods, and program products are disclosed for controlling a biometric reader. One apparatus includes a processor and a memory that stores code executable by the processor. The code is executable by the processor to determine, by use of the processor, whether a movement of the apparatus crosses a threshold. The code is executable by the processor to, in response to the movement of the apparatus crossing the threshold, adjust a biometric authentication algorithm. The code is executable by the processor to control a biometric reader based on the adjusted biometric authentication algorithm.
    Type: Grant
    Filed: June 20, 2018
    Date of Patent: June 9, 2020
    Assignee: Lenovo (Singapore) PTE LTD
    Inventors: Robert James Kapinos, Russell Speight VanBlon, Scott Wentao Li, Robert James Norton, Jr.
  • Patent number: 10679446
    Abstract: A method of extending user access to a guest in a building space in a building system including at least one of a cloud computing environment and a control device associated with the building system to execute the method. The method includes receiving a request for access to a building space, the request associated with providing access to the building space for the guest, the request including a unique identifier associated with the building space, notifying a user associated with the building space of the request and requesting an authorization to provide the access to the building space, and receiving an authorization from the user associated with permitting the guest access to the building space associated with the unique identifier. The method also includes transmitting the authorization to the guest and permitting access to the building space associated with the unique identifier based on the authorization.
    Type: Grant
    Filed: November 15, 2017
    Date of Patent: June 9, 2020
    Assignee: CARRIER CORPORATION
    Inventors: Amuduri Santhosh, Adam Kuenzi
  • Patent number: 10680840
    Abstract: Systems and methods are described herein that provide for the integration of instant messaging applications and social networking websites. In some embodiments, a user can chat with individuals or groups of individuals that are logged in to a variety of different instant messaging applications or social networking websites, of which the user is a member. Thus, the user is able to use a single application to chat with any contact appearing on any of the user's contact lists across multiple different IM or social networks.
    Type: Grant
    Filed: August 28, 2009
    Date of Patent: June 9, 2020
    Inventors: Lawrence A. Jonas, Farshad Toobi
  • Patent number: 10681548
    Abstract: A device may receive an encrypted authorization request token from a mobile device. The encrypted authorization request token may be based on at least one parameter and may have been created by a third party device. The device may decrypt the encrypted authorization request token to obtain the at least one parameter. The device may determine, based on an address for the mobile device, a mobile device identifier for the mobile device. The device may create an identification token for the mobile device. The identification token may be based on the mobile device identifier and the at least one parameter. The device may send the identification token to at least one of the mobile device or the third party device to permit the third party device to authenticate the mobile device.
    Type: Grant
    Filed: May 31, 2019
    Date of Patent: June 9, 2020
    Assignee: Verizon Patent and Licensing Inc.
    Inventor: Raymond C. Counterman
  • Patent number: 10671981
    Abstract: Systems and methods for migration of financial account settings are disclosed. One system includes a migration server. The migration server includes a third-party interface directory, including notification data associated with notifying one or more third parties of an account migration. The migration server further includes a transaction analysis module configured to parse transaction histories associated with an existing financial account to identify a third party that has initiated at least one transaction with the existing financial account. The migration server also includes a notification module configured to generate a notification for the identified third party based on notification data associated with the identified third party stored in the third-party interface directory and information associated with a target financial account.
    Type: Grant
    Filed: September 15, 2017
    Date of Patent: June 2, 2020
    Assignee: ClickSWITCH, LLC
    Inventors: Cale T. Johnston, Hunter Wolfe, Michael J. Stromberg, Anthony Loosbrock
  • Patent number: 10673840
    Abstract: The disclosed invention is a new method and apparatus for the management of application/container process identity for authentication and enforcing group-based security policies. Identities and security policies are managed in the cloud. Strong cryptographic identities or digital certificates are provided to each application/container or group of applications/containers. Applications/containers use these digital certificates to mutually authenticate each other before providing access to their resources.
    Type: Grant
    Filed: May 10, 2018
    Date of Patent: June 2, 2020
    Inventors: Jayant Shukla, Chaitanya Pemmaraju, Vamsi Ambati
  • Patent number: 10667118
    Abstract: A method for wireless communication is provided. In some implementations, the method includes receiving, by a first device, a first packet from a second device in a network. The method further includes comparing, by the first device, a first received signal strength of the first packet to a second received signal strength of a second packet associated with a third device, the third device associated with the first device in the network. The method further includes transmitting, by the first device and based on to the comparing, a third packet to the second device, the third packet indicating a disassociation of the first device with the third device and an association of the first device with the second device.
    Type: Grant
    Filed: April 10, 2018
    Date of Patent: May 26, 2020
    Assignee: C LAN WIRELESS, INC.
    Inventor: Paul Kolen
  • Patent number: 10666643
    Abstract: Techniques are disclosed for enabling a user to validate the authenticity of a computing system (e.g., an access management system) such as one which controls access to one or more resources. A user can determine the authenticity of an access management system before the user provides credential information to the access management system. A user can be presented at a client system with an interface to request authentication of an access management system. The access management system may provide the user at the client system with temporary access information to submit back to the access management system. The access management system may provide recent personal information to the user at the client system to verify the access management system. Upon verification of the personal information, the access management system may prompt the user for credential information to establish a session.
    Type: Grant
    Filed: November 15, 2018
    Date of Patent: May 26, 2020
    Assignee: Oracle International Corporation
    Inventors: Stephen Mathew, Ramya Kukehalli Subramanya, Vipin Anaparakkal Koottayi
  • Patent number: 10659446
    Abstract: Techniques are disclosed relating to contextual authentication across different applications based on user communications. In some embodiments, a user is preauthenticated to certain actions on a second application based on the user's communication via a first application. The user's communication via a first application provides contextual information that may be used to preauthenticate a request to perform an action on the second application. Contextual information may include the user's communication itself and/or communications characteristics that are determined from the user's communications.
    Type: Grant
    Filed: June 13, 2017
    Date of Patent: May 19, 2020
    Assignee: salesforce.com, inc.
    Inventors: Josh Alexander, Seth Holloway, Evan Tyler Grim, Ian Glazer, William Charles Mortimore, Jr.
  • Patent number: 10635532
    Abstract: A method for controlling error check and correction (ECC) of a non-volatile memory device includes storing write data in a plurality of storing regions. The write data may be generated by performing ECC encoding. Individual ECC decoding may be performed based on each of a plurality of read data read out from the storing regions. Logic operation data may be provided by performing a logic operation of the read data when the individual ECC decoding fails with respect to all of the read data. Combined ECC decoding may be performed based on the logic operation data.
    Type: Grant
    Filed: February 21, 2018
    Date of Patent: April 28, 2020
    Assignee: SAMSUNG ELECTRONICS CO., LTD.
    Inventors: Ji-Suk Kim, Sang-In Park, Il-Han Park, Sang-Yong Yoon, Gyu-Seon Rhim, Sung-Woon Choi
  • Patent number: 10638415
    Abstract: The present disclosure relates to a communication technique of fusing a 5G communication system for supporting higher data transmission rate beyond a 4G system with an IoT technology and a system thereof, and provides an intelligent service (for example, smart home, smart building, smart city, smart car or connected car, health care, digital education, retail business, security and safety related service, or the like) based on the 5G communication technology and the IoT related technology. A method for appropriately finding a network node providing services that user equipment (UE) wants in a 5G mobile communication system when a user initially accesses a G network includes a method for managing network deployment information and a method for transmitting an initial access request message with a detailed proposal technology.
    Type: Grant
    Filed: January 9, 2018
    Date of Patent: April 28, 2020
    Assignee: Samsung Electronics Co., Ltd
    Inventors: Youngkyo Baek, Sunghoon Kim, Hoyeon Lee, Jungje Son
  • Patent number: 10630668
    Abstract: An identity provider receives a request to configure authentication for enabling single sign-on to a service provider. The identity provider identifies the authentication protocols supported by the service provider and determines whether it is compatible with these authentication protocols. As a result of the identity provider being compatible with at least some of the authentication protocols, the identity provider generates configuration information that is usable by the service provider to configure the authentication. The identity provider transmits, to a computer system, a response that causes the computer system to be redirected to the service provider in order to provide information usable by the service provider to obtain the configuration information.
    Type: Grant
    Filed: August 15, 2017
    Date of Patent: April 21, 2020
    Assignee: Amazon Technologies, Inc.
    Inventors: Dick Clarence Hardt, Darin Keith McAdams
  • Patent number: 10628569
    Abstract: A method for unlocking a screen by using a fingerprint includes: sending, by a fingerprint sensor, a first notification to a control chip and concurrently sending a second notification to a display driver chip of a screen when detecting that a finger presses or touches a fingerprint recognition area; completing, by the display driver chip according to the second notification, preparation work before the screen is turned on; verifying, by the control chip according to the first notification, fingerprint information collected by the fingerprint sensor and pre-stored fingerprint information; and if the verification succeeds, unlocking the screen and turning on the screen.
    Type: Grant
    Filed: June 30, 2015
    Date of Patent: April 21, 2020
    Assignee: HUAWEI TECHNOLOGIES CO., LTD
    Inventor: Danhong Li
  • Patent number: 10630831
    Abstract: A method and an apparatus for outputting warning information, applicable to a mobile terminal, where the mobile terminal is provided with a system lock and an application lock set by a lock screen application, and the method includes: monitoring, via the lock screen application, whether the system lock is successfully unlocked when the mobile terminal is in a locked screen state; launching a camera of the mobile terminal to take a picture when the number of consecutive failed attempts to unlock the system lock reaches a preset threshold; outputting warning information based on the picture. With the solution provided by the embodiments of the present application, when the system lock and the application lock set by the lock screen application are simultaneously set in the mobile terminal, the lock screen application can monitor whether the system lock is successfully unlocked.
    Type: Grant
    Filed: February 12, 2018
    Date of Patent: April 21, 2020
    Assignee: BEIJING KINGSOFT INTERNET SECURITY SOFTWARE CO., LTD.
    Inventor: Jie Fang
  • Patent number: 10624095
    Abstract: A method for managing the allocation, by a server of a wide area communication network, of a first list of carrier frequencies that can be used by an electronic device for sending messages, the method including determining a second list of carrier frequencies, receiving a first message from the electronic device via a first carrier frequency not included in the second list, determining the value of a quality parameter associated with the first message received, when this value exceeds the value of a first threshold; determining a first sub-list of the second list, including at least one second carrier frequency not included in the first list, determining a second sub-list of the first list, including at least a third frequency not included in the second list, and sending to the electronic device a second message to replace the carrier frequencies of the second sub-list with those of the first sub-list.
    Type: Grant
    Filed: March 28, 2017
    Date of Patent: April 14, 2020
    Assignee: SAGEMCOM ENERGY & TELECOM SAS
    Inventors: Yassir Sennoun, Franck Harnay
  • Patent number: 10623835
    Abstract: There is provided an information processing apparatus to allow a user to use a device network by a natural and simple operation by automatically selecting a device for providing a response to a request, the information processing apparatus including: a request acquiring part configured to acquire a request to a system; a response determining part configured to determine a response to the request; a device selecting part configured to select, on the basis of at least an attribute of the response, a device that provides the response among devices included in the system; and a device controller configured to perform control that causes the selected device to provide the response.
    Type: Grant
    Filed: February 19, 2019
    Date of Patent: April 14, 2020
    Assignee: SONY CORPORATION
    Inventors: Akihiro Watanabe, Motoki Tsunokawa
  • Patent number: 10621332
    Abstract: A computer system, an IoT device monitoring method, and a program in which a security is improved are provided. A computer system for monitoring a connected IoT device 100 monitors a login state of the IoT device 100, detects an unauthorized access based on a result of the monitoring, learns any one or both of an ID or a password of the detected unauthorized access, and determines whether any one or both of an ID and a password held in advance by the IoT device 100 are easy to be released.
    Type: Grant
    Filed: November 30, 2016
    Date of Patent: April 14, 2020
    Assignee: OPTIM CORPORATION
    Inventor: Shunji Sugaya
  • Patent number: 10623394
    Abstract: The present invention relates to a computer network that provides secure authentication. The computer network comprises a server operable to generate a token comprising identification information; a first device to be authenticated, the first device being operable to receive the token; a second device associated with a trusted identifier, the second device being operable to retrieve the token from the first device and associate the token with the trusted identifier to authenticate the first device at the server.
    Type: Grant
    Filed: June 16, 2016
    Date of Patent: April 14, 2020
    Assignee: ACCENTURE GLOBAL SERVICES LIMITED
    Inventors: Luca Blasi, Alessandro Orsano, Emanuele Trevisi
  • Patent number: 10623403
    Abstract: Disclosed herein are embodiments of systems, methods, and products comprises an authentication server for authentication leveraging multiple audio channels. The server receives an authentication request regarding a user upon the user interacting with a first electronic device. The server requests the first device to transmit a first audio file of an audio sample to the server. The audio sample may be the user's audio command or a machine-generated audio signal. The server requests a second electronic device to transmit a second audio file that is the recording of the same audio sample to the server. The second electronic device is a trusted device in proximity of the first device and executes an authentication function to enable the recording and transmitting of the audio sample. The server determines a similarity score between the first audio file and the second audio file and authenticates the user based on the similarity score.
    Type: Grant
    Filed: January 4, 2019
    Date of Patent: April 14, 2020
    Assignee: Pindrop Security, Inc.
    Inventors: Payas Gupta, Terry Nelms, II
  • Patent number: 10616133
    Abstract: The application provides a resource configuration method in a cloud environment and a network device, where the method includes: determining M security zones of a target application and a first mapping relationship between the M security zones and N modules of the target application; sending a first request message to an infrastructure as a service IaaS layer device, to request the IaaS layer device to create one IaaS tenant corresponding to each security zone of the M security zones; receiving a first response message sent by the IaaS layer device; determining a third mapping relationship between the N modules and the M IaaS tenants; and requesting the IaaS layer device to allocate a virtual machine resource to an ith module by using an IaaS tenant corresponding to the ith module of the N modules. The method can implement virtual resource isolation between different modules of an application.
    Type: Grant
    Filed: June 22, 2018
    Date of Patent: April 7, 2020
    Assignee: Huawei Technologies Co., Ltd.
    Inventor: Kai Zhao
  • Patent number: 10614423
    Abstract: Examples described herein include systems and methods for providing push notifications to a third-party application executing on a client device. An example can include encrypting user credentials, generating a callback Uniform Resource Locator (“URL”) with at least a portion of the encrypted credentials embedded into the URL, and requesting notifications from an email service to be provided at the callback URL. Upon receiving a notification at the callback URL, a system component can decrypt the credentials within the URL using a private key and log into the email account using those decrypted credentials. The system component can then generate a push notification based on any changes found in the email account and cause the notification to be delivered to the third-party application on the client device.
    Type: Grant
    Filed: January 10, 2018
    Date of Patent: April 7, 2020
    Assignee: VMware, Inc.
    Inventors: Ian Ragsdale, Neal Foster, Evan Hurst, Ruben Nieves
  • Patent number: 10606435
    Abstract: A user interface is provided for allowing a user to interact with a graphical display. Quantitative data is initially displayed in a graphical format representing absolute values. A comparative graph is also made available, either automatically or in response to user input; the comparative graph presents each data entry according to its relative value as compared with one specific baseline entry.
    Type: Grant
    Filed: September 29, 2017
    Date of Patent: March 31, 2020
    Assignee: Domo, Inc
    Inventors: Chris Willis, Matt McMurry, Mark Schultz, Derek Joos
  • Patent number: 10609077
    Abstract: A customer of a resource allocation service can register a function to be executed using virtual resources, where the function includes customer code to be executed. Customer events are defined as triggers for a registered function, and a resource instance is allocated to execute the registered function when triggering event is detected. An identity role associated with the triggering function is used to obtain access credentials for any data source which a triggering event might require for processing. An event-specific access credential is generated that provides a subset of these access privileges using a template policy for the registered function that is filled with values specific to the triggering event. The filled template policy and base credential are used to generate an event-specific credential valid only for access needed for the event. This event-specific credential can be passed with the event data for processing by an allocated instance.
    Type: Grant
    Filed: December 16, 2016
    Date of Patent: March 31, 2020
    Assignee: AMAZON TECHNOLOGIES, INC.
    Inventor: Nima Sharifi Mehr
  • Patent number: 10608820
    Abstract: The present invention relates to an authentication method which allows a user having a personal electronic device (PED) to authenticate, register or login to a recipient system. Upon interacting with the recipient system, the user is prompted for his unique token ID. The recipient system generates a one-time password (OTP) and sends it to the authentication server together with the token ID and may, in addition, request user's information. The authentication server sends an authentication request to the user's PED including the OTP, which prompts the user for a decision to proceed or not. The user, may decide to proceed with authentication, upon which the PED sends to the recipient system the OTP and a random password created by a previous handshake between recipient system and PED, (RP) stored in the PED, the recipient system authenticating the user thereby by comparing the OTP generated and received and the RP stored and received.
    Type: Grant
    Filed: March 2, 2016
    Date of Patent: March 31, 2020
    Inventors: Bjoern Pirrwitz, Daniele Vantaggiato
  • Patent number: 10600263
    Abstract: A building management system includes an entity database and an identity management service. The entity database stores a plurality of interconnected smart entities. The smart entities include object entities representing a plurality of people or physical devices and data entities representing data associated with the people or physical devices. The smart entities are interconnected by relational objects indicating relationships between the object entities and the data entities. Each of the object entities includes a plurality of stored identity attributes.
    Type: Grant
    Filed: September 26, 2018
    Date of Patent: March 24, 2020
    Assignee: Johnson Controls Technology Company
    Inventors: Youngchoon Park, Sudhi R. Sinha, Erik S. Paulson, Peter A. Ainsworth, Anne Gallagher
  • Patent number: 10600130
    Abstract: A user creates dynamic meta-communities that span membership of multiple existing third-party online communities, based on profile attributes. This allows the user to create targeted sub-communities for specific purposes without recreating or duplicating community information. The user can communicate with members of created meta-communities by leveraging the mechanisms provided by the third party online communities.
    Type: Grant
    Filed: August 22, 2008
    Date of Patent: March 24, 2020
    Assignee: Symantec Corporation
    Inventors: Keith Newstadt, Timothy G. Brown
  • Patent number: 10592646
    Abstract: There is proposed a user authentication method that uses a time-based password (TP) having a relatively long update cycle instead of a TOTP having a conventional short update cycle (e.g., 60 seconds). The present invention is a user authentication method executed by an authentication system that performs authentication of a user who performs access from an information communication terminal device in order to use a usage target system by using a reference terminal device that includes a security token capable of generating a TP. The authentication method includes setting an update cycle of the TP to a first update cycle of 30 days, 1 month, or a time period longer than 1 month, receiving a user authentication request that includes a time-based password generated by the security token according to the set first update cycle, and performing the authentication based on the TP contained in the received user authentication request.
    Type: Grant
    Filed: December 28, 2015
    Date of Patent: March 17, 2020
    Assignee: Passlogy Co., Ltd.
    Inventor: Hideharu Ogawa
  • Patent number: 10595206
    Abstract: Embodiments disclosed herein describe multi-challenge, multi-level authentication systems, methods and products. Each authentication challenge may be independent of other challenges and may be associated with a particular network resource or functionality. Counters may track the number of attempts for each authentication challenge and each type of network resource and functionality. Each authentication challenge, network resource, or network functionality may be independently locked and unlocked based on the attempts tracked by the counters. Furthermore, the authentication system may configure the authentication challenges hierarchically, and a higher level challenge may unlock a locked lower level challenge. Therefore, embodiments disclosed herein significantly improve upon the conventional all-in/all-out binary authentication systems and methods.
    Type: Grant
    Filed: August 19, 2019
    Date of Patent: March 17, 2020
    Assignee: United Services Automobile Association (USAA)
    Inventors: Noel Robert Latsha, William Rudolph Wolf, Benjamin Van Ruitenbeek, Marcus Pierce Jameson, Dereck Marsh Henson
  • Patent number: 10581810
    Abstract: A method including actions of pairing with a mobile device and receiving a user name, a password encrypted with a connector password key, and a public key of the mobile device. Additional actions include providing the password encrypted with the connector password key, receiving the password in a decrypted form, obtaining a pairing key, encrypting the pairing key using the public key, encrypting the password with a local password key, providing the pairing key encrypted using the public key and the password encrypted with the local password key, disconnecting from the mobile device, after disconnecting form the mobile device, reconnecting with mobile device, providing a workstation identification, receiving the user name and the password encrypted with the local password key, decrypting the password encrypted with the local password key, and logging in the user using the user name and the password decrypted with the local password key.
    Type: Grant
    Filed: January 17, 2019
    Date of Patent: March 3, 2020
    Inventors: John Gehret, Gary Gabriel, Yong Qiao, Ali Alavi, Xiaochen Du
  • Patent number: 10581954
    Abstract: Various embodiments disclosed herein relate to collection and aggregation of metrics for software services operating across a plurality of computing nodes.
    Type: Grant
    Filed: June 16, 2017
    Date of Patent: March 3, 2020
    Assignee: Palantir Technologies Inc.
    Inventors: Tushar Narayan, Andrew Colombi, Robert Fink, Alexander Ince-Cushman
  • Patent number: 10574840
    Abstract: A system and method for machine learning classification of sensitive data includes a multifunction peripheral having an intelligent controller with a processor and associated memory, and print and scan engines operable in connection with instructions received from the controller. The processor receives electronic document data comprised of a plurality of electronic documents. The processor applies machine learning to the electronic document data and extracts metadata comprised as data patterns which are stored in memory. The processor generates pattern classifications from extracted data patterns to generate telemetry data. Generated telemetry data is sent to an associated server via the network interface. The server provides analytics on received telemetry data to provide enhancements for improving the multifunction peripheral.
    Type: Grant
    Filed: October 29, 2018
    Date of Patent: February 25, 2020
    Assignee: Toshiba TEC Kabushiki Kaisha
    Inventor: Milong Sabandith