Management Patents (Class 726/6)
  • Patent number: 11222321
    Abstract: Systems and methods are provided for verifying a user, through an account associated with the user, in connection with a subscription of the user to a service from a service provider. One exemplary system includes a memory having an account for the user, and a platform computing device coupled to and/or including the memory. The computing device is configured to receive a request from the service provider, in connection with the user subscribing to the service, and authenticate the user. When the user is authenticated, the computing device is configured to generate a subscription message for the user comprising assurance data based on the user's account, a timestamp, and an identifier associated with the user, and transmit the subscription message to the service provider, to thereby permit the service provider to rely on the assurance data to verify the user.
    Type: Grant
    Filed: June 12, 2018
    Date of Patent: January 11, 2022
    Assignee: MASTERCARD INTERNATIONAL INCORPORATED
    Inventor: Manoneet Kohli
  • Patent number: 11222102
    Abstract: Biometric features are derived from security data associated with a subject. The security data is obtained from a security device. A biometric value is calculated from the biometric features. The biometric value is anonymized to an identifier associated with the subject. The identifier is integrated with event data associated with a security system. In an embodiment, the security device is a Personal Identification Number (PIN) pad integrated into a transaction terminal, the security data is fingerprint data, which is read from a finger of the subject placed on a fingerprint reader integrated into the PIN pad, and the biometric value is a PIN calculated from fingerprint data during a transaction at the transaction terminal. In an embodiment, the security device is a security camera, the security data is a secure video stream, and the biometric features are facial features of the subject in the secure video stream.
    Type: Grant
    Filed: November 27, 2019
    Date of Patent: January 11, 2022
    Assignee: NCR Corporation
    Inventors: Tomasz Kruczek, Tim Gerlach, Lucas Henrique Silva, Bruce McBain, Garrett Paul Schubiner
  • Patent number: 11223621
    Abstract: A telecommunications network server system provides a digital identifier to a user device. The digital identifier may include identification data corresponding to a user of the user device. In addition, the telecommunications network server system receives, from one or more third-party systems, requests to authenticate the user for an electronic transaction with the respective third-party system. The telecommunications network server system provides a unique electronic transaction code to each third-party system. Responsive to receiving from the user device one of the unique electronic transaction codes, the telecommunications network server system provides, to the respective third-party system, authentication of the user.
    Type: Grant
    Filed: January 5, 2018
    Date of Patent: January 11, 2022
    Assignees: Fidelity Information Services, Inc., Equifax, Inc.
    Inventors: Helcio Cano, Rich Huffman, Ravindra Bijlani, Richard Michaelson, Rob Harris, Vivian Van Zyl, Esther Pigg, Marty Romain
  • Patent number: 11212289
    Abstract: A method includes receiving, at an access point, an access request from a first device after an expiration of a first passcode. The access request is encrypted based on the first passcode. The method includes making a determination by the access point before an expiration of a usage time of a first passcode usage list that an identifier of the first device is included in the first passcode usage list. The method also includes, in response to making the determination, generating, at the access point, data representing a second passcode by encrypting the second passcode using the first passcode; and sending the data representing the second passcode from the access point to the first device.
    Type: Grant
    Filed: September 28, 2020
    Date of Patent: December 28, 2021
    Assignees: AT&T Intellectual Property I, L.P., AT&T MOBILITY II LLC
    Inventors: Sheldon Kent Meredith, William Cottrill, Brandon B. Hilliard
  • Patent number: 11210321
    Abstract: In one embodiment, a web content management system is coupled to remote resources via a framework that has one or more corresponding adapters which enable editing of content by invoking editors which are native to the respective remote resources. The system retrieves a content item from a remote resource and stores a copy of the content item in a local repository, while the original content item remains in the repository of the remote resource. A content item can be selected in in a local authoring tool, causing the system to examine the content item's metadata to identify the source repository and invoke the native editor of the corresponding remote resource, enabling editing of the content item using the native editor. The copy of the content item in the local repository can then be synchronized to the edited version of the content item in the remote resource.
    Type: Grant
    Filed: May 4, 2020
    Date of Patent: December 28, 2021
    Assignee: Open Text Holdings, Inc.
    Inventors: Rakesh Kumar Bipinchandra Shah, Paul Kieron Carl Narth, Bean Huat Chua, John W. Chang
  • Patent number: 11212093
    Abstract: A method of social key recovery for a first communication device supporting blockchain technology with asymmetric cryptographic algorithm is disclosed. The method comprises transmitting a device identity of the first communication to a second communication on the blockchain, performing a verification operation with the second communication device, receiving a message including a verification code of the first communication device and a public key of the second communication device, from the second communication device, wherein the first message is encrypted with a public key of the first communication device, decrypting the message with a private key of the first communication device, to obtain the public key of the second communication device, and transmitting seed phrases encrypted with the public key of the second communication device for restoring a crypto wallet on the blockchain, to the second communication device.
    Type: Grant
    Filed: September 11, 2019
    Date of Patent: December 28, 2021
    Assignee: HTC Corporation
    Inventors: Hsien-Chun Chiu, I-Hui Lu, Cheng-Chang Tsai, Ting-Hung Chu, Chun-Hao Lin, Han-Kuan Yu, Chang-Yi Lee
  • Patent number: 11210388
    Abstract: A user may conduct a plurality of access requests with a plurality of resource provider computers. A processor server computer may determine whether resource provider computers store access data associated with the user in various ways, including detecting patterns in sets of a plurality of access requests conducted between the user and each of the plurality of resource provider computers. Upon detecting that access data has changed, the processor server computer may automatically send the updated access data to each of the identified resource provider computer.
    Type: Grant
    Filed: August 9, 2017
    Date of Patent: December 28, 2021
    Assignee: Visa International Service Association
    Inventors: Meredith Altenhofen, Amy Alterman, Robert Yost
  • Patent number: 11210382
    Abstract: Methods and systems for verifying a user's identity on a computing device using two-factor authentication are described. More particularly, the system can use a personal identification number input by a user, together with one or more of a secure browsing feature, a device fingerprint, and a token generator to authenticate the user on the computer.
    Type: Grant
    Filed: May 29, 2020
    Date of Patent: December 28, 2021
    Assignee: UNITED SERVICES AUTOMOBILE ASSOCIATION (USAA)
    Inventors: Richard A. Davey, Wilbert Bennett, Jr.
  • Patent number: 11210702
    Abstract: Provided is a process of distributing offers to non-location-sensing devices based on a geolocation sensed by another device, the process comprising: obtaining a geolocation of a user from a mobile device of the user; associating the geolocation of the user with an identifier of the user in an offers engine; receiving a request for an offer from another computing device of the user, the request including or prompting obtaining data from the other computing device sufficient to identify the user; retrieving the geolocation of the user obtained from the mobile device by identifying the user with the data from the other computing device sufficient to identify the user account; selecting, with the offers engine, a responsive offer based on the geolocation of the user obtained from the mobile device; and sending the responsive offer to the other computing device of the user.
    Type: Grant
    Filed: April 24, 2019
    Date of Patent: December 28, 2021
    Assignee: RETAILMENOT, INC.
    Inventors: Brian Keith Showers, Eithan Zilkha
  • Patent number: 11206281
    Abstract: Carrying out a penetration testing campaign in a networked system by a penetration testing system, for determining a way for an attacker to compromise the networked system, comprises determining that the attacker can obtain user credentials of a first user, determining that when using the user credentials the first user has access rights to a first network node of the networked system, determining that a second network node of the networked system is compromisable by the attacker during the penetration testing campaign, determining that the first network node was accessed from the second network node, and based on the foregoing, determining that the first network node is compromisable by the attacker during the penetration testing campaign, and determining the way for the attacker to compromise the networked system which includes a step of compromising the first network node using the user credentials of the first user.
    Type: Grant
    Filed: April 2, 2020
    Date of Patent: December 21, 2021
    Assignee: XM Cyber Ltd.
    Inventors: Ronen Segal, Yaron Shani, Igal Gofman
  • Patent number: 11205174
    Abstract: This application discloses a method implemented at a server to facilitate secure offline transactions. The server receives, from a client device, an authorization request that includes a user identifier, first financial account information and a secure code. The server authenticates the authorization request, and sends a first transaction approval to the client device. Then, in accordance with the information received in the authorization request, the server facilitates a secure transaction between the client device and a point-of-sale (POS) machine while the client device is offline. Specifically, the server receives, from the POS machine, a transaction request that includes at least the user identifier and the security code. The server retrieves the first financial account information from a memory according to the user identifier and the security code, performs a transaction operation associated with the first financial account information, and sends a second transaction approval to the POS machine.
    Type: Grant
    Filed: May 28, 2019
    Date of Patent: December 21, 2021
    Assignee: TENCENT TECHNOLOGY (SHENZHEN) COMPANY LIMITED
    Inventors: Jiajie Xu, Runda Cai, Leteng Weng, Zhenyu Xu, Jinhai Liu, Dacheng Zhuo
  • Patent number: 11201897
    Abstract: Methods and systems for managing data transmissions. The methods disclosed herein may involve receiving requests for a first and a second service, and routing communications with the second service through the first service without requiring the firewall to be reconfigured to allow communications with the second service.
    Type: Grant
    Filed: September 3, 2019
    Date of Patent: December 14, 2021
    Assignee: Rapid7, Inc.
    Inventor: Paul Miseiko
  • Patent number: 11200307
    Abstract: According to an example aspect of the present invention, there is provided an apparatus comprising a memory configured to store an encryption key and a list of access tokens and at least one processing core configured to select a first access token from the list of access tokens based, at least partly, on at least one of a current time and a sequence number, decide, based at least partly on the first access token, whether to grant a user device access to the apparatus, and cause the apparatus to receive a second list of access tokens from at least one of the user device and a second user device.
    Type: Grant
    Filed: December 3, 2015
    Date of Patent: December 14, 2021
    Assignee: Nokia Technologies Oy
    Inventors: Olli Oskari Koskimies, Timo Tapani Mikola, Lioudmila Lucy Blants
  • Patent number: 11202203
    Abstract: A method for securing a direct communication connection between a first and a second user equipment, both configured to operate with base stations of a wireless network, in which the first user equipment maintains an authentication code received from a first security center accessible via the wireless network, said first security center being assigned to a first area, the method comprising the steps for the first user equipment of: maintaining a trust level of the authentication code, reducing the trust level relating to the time of last access to one of the base stations of the wireless network, submitting to the second user equipment the authentication code and the trust level, for setting up the direct communication connection, and in case of reception of a confirmation transmission from the second user equipment: setting up the direct communication connection with the second user equipment.
    Type: Grant
    Filed: October 2, 2018
    Date of Patent: December 14, 2021
    Assignee: THALES DIS AIS DEUTSCHLAND GMBH
    Inventors: Volker Breuer, Lars Wehmeier, Osaid Khaliq, Thomas Ulrich, Uwe Dummann
  • Patent number: 11196743
    Abstract: A telecommunications network server system provides a digital identifier to a user device. The digital identifier may include identification data corresponding to a user of the user device. In addition, the telecommunications network server system receives, from one or more third-party systems, requests to authenticate the user for an electronic transaction with the respective third-party system. The telecommunications network server system provides a unique electronic transaction code to each third-party system. Responsive to receiving from the user device one of the unique electronic transaction codes, the telecommunications network server system provides, to the respective third-party system, authentication of the user.
    Type: Grant
    Filed: January 5, 2018
    Date of Patent: December 7, 2021
    Assignees: Fidelity Information Services, Inc., Equifax, Inc.
    Inventors: Helcio Cano, Rich Huffman, Ravindra Bijlani, Richard Michaelson, Rob Harris, Vivian Van Zyl, Esther Pigg, Marty Romain
  • Patent number: 11197141
    Abstract: There is provided an information processing apparatus and a method of controlling the same. The information processing apparatus performs a device search, displays search results of the device search, and generates tag information to be written into a short range wireless communication tag, using identification information of a device selected by a user based on the displayed search results. Then, the information processing apparatus writes the generated tag information into the short range wireless communication tag with the short range wireless communication.
    Type: Grant
    Filed: August 1, 2019
    Date of Patent: December 7, 2021
    Assignee: Canon Kabushiki Kaisha
    Inventors: Yoshiro Mihira, Takashi Yasuno
  • Patent number: 11190512
    Abstract: An attestation component to make attestations about itself to a relying party. The attestation component offers identity attestations of a particular decentralized identity, and manages use of a private key of that decentralized identity. However, the attestation component also has its own private key that is different than the private key of the decentralized identity for which it offers attestations. As an example, the attestation component might, using its own private key, provide an integrity attestation from which an integrity with which the attestation component has managed the private key of the decentralized identity may be determined. Based on this integrity attestation, a relying party can determine whether to trust other attestations provided by the attestation component on behalf of the decentralized identity.
    Type: Grant
    Filed: April 17, 2019
    Date of Patent: November 30, 2021
    Assignee: Microsoft Technology Licensing, LLC
    Inventors: Brandon Murdoch, Ankur Patel, Daniel James Buchner
  • Patent number: 11188892
    Abstract: Systems, apparatuses and methods may provide for technology to receive first payment details of a first transaction, where the first transaction is an online purchase by a user from a first merchant. The technology identifies a multiple-transaction selection associated with the first transaction. The technology receives second payment details of a second transaction, where the second transaction is an online purchase by the user from a second merchant. The technology performs a single security validation to validate the first payment details and the second payment details.
    Type: Grant
    Filed: September 26, 2019
    Date of Patent: November 30, 2021
    Assignee: MASTERCARD INTERNATIONAL INCORPORATED
    Inventor: Abhay Mandloi
  • Patent number: 11190589
    Abstract: A data loss prevention mechanism for a cloud-based security analytics system is provided that utilizes a compact repository that improves the ratio of false positives over traditional methods, maintains a small data size, permits distribution of compact repository files to a large number of analyzing nodes, and provides metadata for matched events. A compressed bitmap of information found in a compact repository is used, thereby improving the utilization of storage space for a repository containing information associated with a significant number of data fingerprints. Compression further allows for a larger entry size in the compact repository, thereby providing a lower false positive rate. A mechanism for distributing updates to compact repositories residing on cloud servers is provided by updating a central server and propagating the updates to remote servers.
    Type: Grant
    Filed: October 27, 2020
    Date of Patent: November 30, 2021
    Assignee: Forcepoint, LLC
    Inventors: Ayval Ron, Fodi Medhat, Yan Lerman
  • Patent number: 11185229
    Abstract: A method for authenticating to a network comprising a plurality of Internet of Things (“IoT”) devices is provided. The method may include using a mobile telephone apparatus, a wrist-worn apparatus and a head-worn apparatus to monitor the level of at least one of a wearer's pulse, body temperature, voice, gait and/or other biorhythmic indicator. One of the aforementioned apparatus may operate as a hub apparatus. The method may further include using the hub apparatus to assign a federated biometric marker based at least in part on the first, second and third biometric markers. The method may also include using artificial intelligence to monitor for one or more outliers with respect to historical monitoring. Each of the one or more outliers may include a magnitude that exceeds a security threshold difference between the current magnitude and the historically monitored magnitude.
    Type: Grant
    Filed: February 27, 2020
    Date of Patent: November 30, 2021
    Assignee: Bank of America Corporation
    Inventors: Patrick Nicholas Lawrence, Jesse Strickland Newsom, III, Victoria Lynn Dravneek, John Christopher Checco, Hitesh J. Shah
  • Patent number: 11172003
    Abstract: A device may generate a registration mapping that associates a client identifier of a media client and a messaging identifier of a user device. The device may store the registration mapping in a registration data structure. The device may receive, via a messaging protocol, a message from the user device. The message may include the message identifier and an input for an application session of the media client. The device may determine, based on the registration data structure including the registration mapping and the message, that the user device is associated with the media client. The device may provide, via the messaging protocol, the message to the media client to permit the application session to operate according to the input.
    Type: Grant
    Filed: December 2, 2020
    Date of Patent: November 9, 2021
    Assignee: Accenture Global Solutions Limited
    Inventors: Chris Adam Maloney, John Carl Anderson, Connor Fox Bourke, Yu Chang Ou, Keerthi Samhita Vempatti Venkatanaga
  • Patent number: 11170194
    Abstract: A control circuit configured to control a display panel under normal display includes a display driver circuit, a touch sensing circuit and a fingerprint sensing circuit. The touch sensing circuit, coupled to the display driver circuit, is configured to detect a predetermined touch gesture on the display panel and determine a position of the display panel on which the predetermined touch gesture is detected. The fingerprint sensing circuit, coupled to the touch sensing circuit, is configured to perform fingerprint sensing on at least one zone corresponding to the position when the predetermined touch gesture is detected, in order to perform a specific function.
    Type: Grant
    Filed: May 3, 2020
    Date of Patent: November 9, 2021
    Assignee: NOVATEK Microelectronics Corp.
    Inventors: Huan-Teng Cheng, Wei-Lun Shih, Huang-Chin Tang
  • Patent number: 11169718
    Abstract: Embodiments of the present disclosure relate to a data access method and apparatus, an electronic device, and a computer-readable storage medium. The method may include, in response to receiving a first access request sent from a first access device in a set of access devices to a first storage device in a set of storage devices, sending an updated first access request to the first storage device, the first access request including identity information of the first access device. The method may further include, in response to receiving data from the set of storage devices, determining identity information included in the data. The method may further include, in response to the determined identity information being corresponding to the identity information of the first access device, sending the data to the first access device.
    Type: Grant
    Filed: April 20, 2020
    Date of Patent: November 9, 2021
    Assignee: BEIJING BAIDU NETCOM SCIENCE AND TECHNOLOGY CO., LTD.
    Inventors: Yingnan Xu, Xueliang Du
  • Patent number: 11171945
    Abstract: Disclosed herein are system, method, and device embodiments for time-based trust token (TBTT) depreciation. In an example embodiment, a service provider system (e.g., a service provider and API service) may receive a connection request including a demographic attribute associated with a first client account from a partner device, match the demographic attribute to client information associated with the first client account, send the partner device a connection request identifier and a URL including a depreciating token, and authenticate a second client account via a login page associated with the URL.
    Type: Grant
    Filed: October 16, 2019
    Date of Patent: November 9, 2021
    Assignee: Capital One Services, LLC
    Inventors: Justin Bachorik, Randall Randall, Brandee Shin, Rocky Gray
  • Patent number: 11171957
    Abstract: Methods, systems, and devices for enterprise-wide management of disparate devices, applications, and users are described. A cloud-based central server may maintain an integrated hosted directory, which may allow user authentication, authorization, and management of information technology (IT) resources across device types, operating systems, and software-as-a-service (SaaS) and on-premises applications. IT resources for multiple and separate customers may be managed from a single, central directory, and servers may be brought online to allow access to the directory according to system loading.
    Type: Grant
    Filed: March 23, 2020
    Date of Patent: November 9, 2021
    Assignee: JumpCloud, Inc.
    Inventors: Rajat Bhargava, James Brown, Christopher Marie
  • Patent number: 11163884
    Abstract: A system, method, and computer-readable medium are disclosed for generating an adaptive trust profile, comprising: monitoring an electronically-observable action of an entity, the electronically-observable action of the entity corresponding to an event enacted by the entity; converting the electronically-observable action of the entity to electronic information representing the action of the entity; and generating the adaptive trust profile based upon the action of the entity, the adaptive trust profile being privacy enhanced.
    Type: Grant
    Filed: May 21, 2019
    Date of Patent: November 2, 2021
    Assignee: Forcepoint LLC
    Inventors: Richard A. Ford, Chad Anson
  • Patent number: 11164205
    Abstract: Methods and apparatus are disclosed for the maintenance of a virtual credit card pool for airline passenger vouchers. An example system includes server(s) that are configured to determine a target distribution of virtual credit cards within the virtual card pool for a current date-and-time. The server(s) are configured to, in response to determining that the current date-and-time corresponds with a predefined restocking time, for each card value: identify a current number of virtual credit cards within the virtual card pool; identify a threshold number of virtual credit cards based on the target distribution; compare the current and threshold numbers; in response to determining that the current number is less than the threshold number, transmit a request for virtual credit cards having the card value to an external server; and add the requested virtual credit cards to the virtual card pool upon receipt.
    Type: Grant
    Filed: May 25, 2020
    Date of Patent: November 2, 2021
    Assignee: TA CONNECTIONS IL, LLC
    Inventors: Ted Scislowski, Brian Olson, David Velasquez
  • Patent number: 11165761
    Abstract: Embodiments of the present disclosure provide a method, a device and a computer program product for protecting service security. The method of protecting service security comprises receiving, from a client, a deployment request to deploy a service into a cloud environment, and in response to the deployment request, deploying a service instance corresponding to the service in the cloud environment. The method further comprises setting, based on information specific to the service instance, an initial credential for accessing the service instance, and providing information associated with the initial credential to the client so as to enable the client to derive the initial credential.
    Type: Grant
    Filed: April 30, 2019
    Date of Patent: November 2, 2021
    Assignee: EMC IP Holding Company LLC
    Inventors: Xiaoliang Zhu, Ming Zhang, Jing Yu, Jingjing Guo, Yongsheng Guo
  • Patent number: 11159527
    Abstract: Methods, systems, and devices for enterprise-wide management of disparate devices, applications, and users are described. A cloud-based central server may maintain an integrated hosted directory, which may allow user authentication, authorization, and management of information technology (IT) resources and/or user account information across device types, operating systems, and software-as-a-service (SaaS) and on-premises applications. User account information for multiple and separate customers may be managed from a single, central directory, and servers may be brought online to allow access to the directory according to system loading.
    Type: Grant
    Filed: May 20, 2019
    Date of Patent: October 26, 2021
    Assignee: JumpCloud, Inc.
    Inventors: Rajat Bhargava, James Brown, Christopher Marie
  • Patent number: 11152008
    Abstract: An electronic apparatus includes a memory configured to store a preset password, and a processor configured to provide information with respect to a password modification method and to perform an authentication process for an input password using the preset password and the password modification method.
    Type: Grant
    Filed: December 19, 2018
    Date of Patent: October 19, 2021
    Assignee: Samsung Electronics Co., Ltd.
    Inventors: Jaehyun Bae, Yongjun Park
  • Patent number: 11144510
    Abstract: A method for facilitating synchronization of a remote file system (RFS) and a local file system (LFS) includes maintaining a global revision identifier associated with the RFS, where the global revision identifier has a variable state, and responsive to the RFS being modified, updating metadata associated with one or more of the file system objects of the RFS based on a state of the global revision identifier. More particularly, the method includes updating the global revision identifier to a new state in response to the RFS modification and then updating the metadata of the folder(s) associated with the RFS modification. The RFS metadata is partitioned by folder and file to facilitate efficient searching based on a requested namespace view. Another method utilizes prior revision identifiers stored in the LFS to limit the RFS metadata returned to the local cloud during a rescan, by excluding the data set that has not changed, which improves the efficiency of the rescan synchronization.
    Type: Grant
    Filed: June 10, 2016
    Date of Patent: October 12, 2021
    Assignee: Egnyte, Inc.
    Inventors: Shishir Sharma, Manish Marathe, Amrit Jassal, Hakan Ancin, Dmitry Tisnek
  • Patent number: 11146394
    Abstract: A method of score generation from validated secured data includes storing, in a requestor-linked data store, at least an encrypted data record from a requestor, the requestor-linked data store including a local database and a multi-nodal secure datastore, receiving a data access request including a unique key associated with a requestor, locating, in the requestor-linked data store, at least an encrypted data record as a function of the data access request, determining that the requestor is authorized to access the at least an encrypted data record, as a function of the unique key, decrypting the at least an encrypted data record based on the determination that the requestor is authorized to access the data record, calculating a talent and risk calculation score.
    Type: Grant
    Filed: November 27, 2019
    Date of Patent: October 12, 2021
    Assignee: MY JOB MATCHER, INC.
    Inventors: Mohamed Pazhoor, Vinay Kumar, Shankar Ramalingam, William Inman, Daniel Austin
  • Patent number: 11144624
    Abstract: Techniques for managing secure login with authentication while viewing a unique code are described. In some examples, a requesting device displays a visual representation of data. An authenticating device detects the presence of the visual representation of data. The authenticating device prompts a user to provide authorization information at the authenticating device. The authenticating device receives a set of one or more inputs. The authenticating device transmits information authorizing access to content on the requesting device.
    Type: Grant
    Filed: January 7, 2019
    Date of Patent: October 12, 2021
    Assignee: Apple Inc.
    Inventors: Vincent P. Arroyo, Ramiro Calvo, Max M. Gunther, Hannah S. Story, Onar Vikingstad, Lin Yang
  • Patent number: 11138898
    Abstract: Disclosed are a device and method for providing a checking question designed to allow a user to perform the checking study of correct answers or incorrect answers by using the choices of one or more incorrectly answered questions. The device includes: an incorrectly answered question selection unit which selects one or more questions incorrectly answered by a user from among questions provided to the user; a choice extraction unit which extracts correct answers as choices for the respective selected incorrectly answered questions; a checking question generation unit which generates one or more checking questions designed to allow the user to study the incorrectly answered questions by allocating the extracted choices so that the extracted choices become the choices of the checking questions; and a checking study provision unit which provides the study of the incorrectly answered questions by transmitting the generated checking questions to a user terminal.
    Type: Grant
    Filed: October 13, 2017
    Date of Patent: October 5, 2021
    Inventor: Jong-Ho Lee
  • Patent number: 11140555
    Abstract: In one example, a firewall obtains a first network packet that indicates a first mobile country code of a mobile subscriber at a first time and a first mobile network code of the mobile subscriber at the first time. The firewall obtains a second network packet that indicates a second mobile country code of the mobile subscriber at a second time and a second mobile network code of the mobile subscriber at the second time. The firewall determines whether the first mobile country code is different from the second mobile country code or the first mobile network code is different from the second mobile network code. If so, the firewall determines whether a difference between the second time and the first time is less than a threshold difference. If so, the firewall associates the second network packet with a potential security threat.
    Type: Grant
    Filed: June 18, 2019
    Date of Patent: October 5, 2021
    Assignee: CISCO TECHNOLOGY, INC.
    Inventors: Hien Thi Thai, Andrew Fu-Chung Teng, Pramod Nair, Hidde Beumer
  • Patent number: 11139966
    Abstract: Techniques are provided for security code for integration with an application. A first request associated with a request by an application to an application server is received. The application includes security code that performs a set of one or more operations on one or more input parameters. The application is provided one or more parameter values, wherein the security code generates a secret cryptographic key based on the one or more parameter values. A security key is received that includes encrypted client data collected at the client device that is encrypted using the secret cryptographic key. The secret cryptographic key is generated based on the one or more parameter values and knowledge of the set of one or more operations. It is determined that the decrypted client data matches a pattern of data associated with malware. The application server is prevented from processing a second request.
    Type: Grant
    Filed: December 31, 2019
    Date of Patent: October 5, 2021
    Assignee: SHAPE SECURITY, INC.
    Inventors: Carl Schroeder, Ariya Hidayat, Chandrasekhar Rentachintala, Ricky Y. Chiu
  • Patent number: 11134081
    Abstract: Described are techniques for collaboration-based authentication including a method comprising storing a user profile comprising information related to a user account, a plurality of user devices, and a user calendar. The method further comprises detecting an authentication attempt associated with the user account and retrieving device information associated with a first device initiating the authentication attempt, a first location of the first device, a second location of a second device of the plurality of user devices, and a scheduled location based on the user calendar. The method further comprises determining that the authentication attempt comprises a security risk based on the device information associated with the first device, the first location of the first device, the second location of the second device, and the scheduled location. The method further comprises performing a mitigation action in response to determining that the authentication attempt comprises the security risk.
    Type: Grant
    Filed: October 31, 2019
    Date of Patent: September 28, 2021
    Assignee: International Business Machines Corporation
    Inventors: Paul Llamas Virgen, Carolina Garcia Delgado, Humberto Orozco Cervantes
  • Patent number: 11128631
    Abstract: Systems, devices methods and media are provided for selecting data received from or sent by a client device. In one example, a system is configured to initiate a user-configurable API data endpoint on the client device and issue a request for access to specified data residing on the client device. The specified data resides in a first user-designated storage area on the client device. In response to receiving an authorization by a user of the client device of the access request, the system communicates with the user-configurable API data endpoint on the client device to perform a data-pull of at least some of the requested specified data from a second user-designated data pull portion of data residing on the client device.
    Type: Grant
    Filed: April 16, 2019
    Date of Patent: September 21, 2021
    Assignee: eBay Inc.
    Inventor: Jared Blitzstein
  • Patent number: 11128673
    Abstract: A method at a mobile entity for enabling use of multiple Internet Protocol (IP) Multimedia Services (IMS), the method including reading data from a plurality of IMS Subscriber Identity Modules (ISIMs) associated with the mobile entity; storing the data at the mobile entity; and binding a function at the mobile entity to one of the plurality of ISIMs.
    Type: Grant
    Filed: August 4, 2017
    Date of Patent: September 21, 2021
    Assignee: BlackBerry Limited
    Inventors: Nicholas James Russell, Adrian Buckley
  • Patent number: 11120159
    Abstract: Composite biometric authentication is provided to multiple users that share a financial account. The users can enroll the account for composite biometric authentication. The enrollment can include recording multiple biometrics of each user and storing them as a composite to use in authenticating user requests to authorize transactions involving the shared financial account. A unique combination of biometrics can be generated including a biometric of the multiple biometrics of each of the users and stored such that the unique combination must be provided to authenticate a future user request. To proceed with a transaction, a user of the multiple users initiates the transaction and provides their part of the unique combination. The other users provide their part of the unique combination by providing the specific biometric of the multiple biometrics they have previously provided. The transaction proceeds when all shares of the unique combination are provided and authenticated.
    Type: Grant
    Filed: September 2, 2019
    Date of Patent: September 14, 2021
    Assignee: Wells Fargo Bank, N.A.
    Inventor: Rameshchandra Bhaskar Ketharaju
  • Patent number: 11115418
    Abstract: A registration and authorization method, device and system is used for solving the technical problem of relatively low safety of the existing authorization technology. The method is applied to an authorization server, the authorization server is a node in a blockchain network and stores a blockchain composed of a plurality of blocks, each block is used for storing authorization information, and the method comprises: receiving a registration request message sent by a user device, wherein the registration request message includes identification information, and the identification information is used for performing identity verification on a user; assigning authorization information to the user, wherein the authorization information is used for indicating a service that the user can access; and writing the identification information and the authorization information into the blocks of the blockchain through the authorization server.
    Type: Grant
    Filed: December 23, 2016
    Date of Patent: September 7, 2021
    Assignee: CLOUDMINDS (SHANGHAI) ROBOTICS CO., LTD.
    Inventors: Hui Xie, Jian Wang
  • Patent number: 11113371
    Abstract: Disclosed is a method for continuously authenticating a user based on motion input data. The method includes recording motion input data from a keyboard such as starting coordinates, ending coordinates, and timestamps of key-up actions to determine that a key has been pressed, recording a timestamp of motion input at the starting coordinate, mapping the timestamp of said motion input at the starting coordinate to a key-down action for the key press, determining which key of said virtual keyboard said key-down action refers to, and granting or denying access to a device if the timing of the key which was pressed and released in the key-down action and the corresponding key-up action matches the press and flight timing of a key which was pressed and released in a previously-recorded key-down action and a previously-recorded key-up action.
    Type: Grant
    Filed: October 11, 2019
    Date of Patent: September 7, 2021
    Assignee: BEHAVIOSEC INC
    Inventors: Ingo Deutschmann, Per Burstrom, Wolfgang Pott
  • Patent number: 11115401
    Abstract: A system manages security policy data used to provide access by a user to third-party applications without revealing sign-on credentials to the user. The system includes an access management server that hosts an administration portal for configuring the security policy data. The security policy data includes, for each user, a list of applications to which the user may request access and the corresponding sign-on credentials for accessing each of the applications. In response to inputs provided at the administration portal, the system associates applications with credentials and subsequently associates the credentials with a user. Before these associations are used to update the security policy data, a request for confirmation of user permission is sent to a permission server, which stores current permission data for users. If permission for the user is confirmed, security policy data is updated according to the associations provided via the administration portal.
    Type: Grant
    Filed: July 8, 2019
    Date of Patent: September 7, 2021
    Assignee: Bank of America Corporation
    Inventors: Stuart D. Ford, Sanjay Bhanu, Martin Sunder Singh Devasirvatham Samuel
  • Patent number: 11108560
    Abstract: Method of authenticating a client to a server, the client having beforehand registered on the server by storing therein a valid identifier (ID) and a hashed word (H0; Hn) generated by applying a hash function to a disposable random variable (RAND0; RANDn; Rn) possessed/known by both the client and the server and concatenated with a sequence (ISC0; ISCn) resulting from hashing the concatenation of a password (PWD) known from the client, said disposable random variable (RAND0; RANDn; Rn) and an initialization sequence (ISCinit) possessed by the client.
    Type: Grant
    Filed: September 29, 2017
    Date of Patent: August 31, 2021
    Assignee: UNIVERSITE DE PICARDIE JULES VERNE
    Inventors: Gilles Dequen, Florian Legendre, Gael Le Mahec
  • Patent number: 11102176
    Abstract: A service provider (SP) network device or system can operate to enable a WiFi protected access 2 (WPA2) pass-through with a user equipment (UE). The WPA2 pass-through can be an interface connection that passes through a computer premise equipment (CPE) or wireless residential gateway (GW) without the CPE or GW modifying or affecting the data traffic such as by authentication or security protocol. The SP network device can receive traffic data from a UE through or via the WPA 2 pass-through from a UE of a community Wi-Fi network at a home, residence, or entity network. Regardless of whether the UE is connected to any other home network at the CPE or is a subscriber to the SP network, the UE can communicate transparently by the WPA 2 pass-through with the SP network device to establish a secure initial access process with the SP network.
    Type: Grant
    Filed: December 21, 2016
    Date of Patent: August 24, 2021
    Assignee: MaxLinear, Inc.
    Inventor: Artur Zaks
  • Patent number: 11102128
    Abstract: A system and method for supporting load balancing in a multi-tenant cluster environment, in accordance with an embodiment. One or more tenants can be supported and each associated with a partition, which are each in turn associated with one or more end nodes. The method can provide a plurality of switches, the plurality of switches comprising a plurality of leaf switches and at least one switch at another level, wherein each of the plurality of switches comprise at least one port. The method can assign each node a weight parameter, and based upon this parameter, the method can route the plurality of end nodes within the multi-tenant cluster environment, wherein the routing attempts to preserve partition isolation.
    Type: Grant
    Filed: April 29, 2020
    Date of Patent: August 24, 2021
    Assignee: ORACLE INTERNATIONAL CORPORATION
    Inventors: Feroz Zahid, Ernst Gunnar Gran, Bartosz Bogdanski, Bjørn Dag Johnsen
  • Patent number: 11102173
    Abstract: Provided in some embodiments are systems and methods for determining a data flow path including a plurality of network devices for routing data from a first network device to a second network device; determining for the network devices one or more flow rules that specify an input for receiving data, an output for outputting data, and a role tag indicative of a role of a network device, where the role tag for one or more flow rules for a first network device of the network devices indicates a source role; distributing, to the network devices, the one or more flow rules; determining malicious activity on the data flow path; determining that the first network device is a source based at least in part on the role tag for the first network device; and sending, to the first network device, a blocking flow rule to inhibit routing of malicious data.
    Type: Grant
    Filed: May 18, 2016
    Date of Patent: August 24, 2021
    Assignee: McAfee, LLC
    Inventors: Shivakrishna Anandam Mulka, Shankar Subramanian, Jayakrishnan Karunakaran Nair, Gopal Agrawal, Shankar Ganesh Pillaiyar Nattamai Jeyaprakash
  • Patent number: 11093292
    Abstract: An approach is provided for controlling computer resource usage. A new event in an integration flow in an integration platform is detected. Sender and receiver information is identified and hashed. A portion of data being sent by the sender to the receiver is selected and hashed. It is determined that the hashed sender and receiver information matches a first entry and the hashed selected portion of the data matches a second entry in a pattern repository. A recurring event in the integration flow is identified, where the recurring event uses an amount of computer resources that exceeds a threshold amount. An action is performed which reduces the amount of computer resources used by the integration flow to a new amount that does not exceed the threshold amount.
    Type: Grant
    Filed: September 27, 2019
    Date of Patent: August 17, 2021
    Assignee: International Business Machines Corporation
    Inventors: Hemalatha Rajendran, Balaji Sankar Kumar, Kapish Malhotra, Mohit Sati
  • Patent number: 11094023
    Abstract: A computer-implemented method includes: receiving, by a computing device, a vault access request for vault credentials stored by a vault server; verifying, by the computing device, whether a source of the vault access request originated from a multitenant application server; preventing, by the computing device, access to the vault server and the vault credentials when the source of the vault access request has not been verified as originating from the multitenant application server; obtaining, by the computing device, vault credentials from a vault server based on verifying that the source of the vault access request originated from the multitenant application server; and executing, by the computing device, a multitenant application task using the vault credentials.
    Type: Grant
    Filed: January 8, 2020
    Date of Patent: August 17, 2021
    Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATION
    Inventors: Jose R. D. Coronel, Victor R. Herrero
  • Patent number: 11095636
    Abstract: The disclosed computer-implemented method for protecting passwords may include (i) intercepting network traffic indicating an attempted login procedure at a workload device to login to a protected resource, (ii) prompting a user, in response to intercepting the network traffic, and at an authentication device that has been registered to the user, to indicate whether to approve the attempted login procedure, (iii) collecting, at the authentication device, a credential for the attempted login procedure that was stored in a protected vault of the authentication device, (iv) providing, by the authentication device to the workload device, an authentication decision based on the collected credential, and (v) injecting, at the workload device, the authentication decision into a browser session to enable the user to complete the attempted login procedure to login to the protected resource. Various other methods, systems, and computer-readable media are also disclosed.
    Type: Grant
    Filed: September 24, 2018
    Date of Patent: August 17, 2021
    Assignee: NortonLifeLock Inc.
    Inventors: Ilya Sokolov, Keith Newstadt