Management Patents (Class 726/6)
  • Patent number: 10740458
    Abstract: This document discloses a heuristic data analytics method and system for analysing potential information security threats in information security events. In particular, the heuristic data analytics method and system analyses Binary Large Objects (BLOBs) of structured and unstructured information security events at high speed and in real-time to anticipate potential security breaches that will occur in the near future using algorithms and large scale computing systems.
    Type: Grant
    Filed: March 24, 2016
    Date of Patent: August 11, 2020
    Assignee: Certis Cisco Security Pte Ltd
    Inventor: Keng Leng Albert Lim
  • Patent number: 10735403
    Abstract: Static and dynamic embodiments are presented for generating chaff passwords for use in a password-hardening system. Chaff passwords are generated by modifying portions of base passwords based on a distribution with which particular strings of digits and symbols appear in user passwords. Location oblivious chaff passwords are generated from a chaff set of passwords obtained from a chaff generation method by applying a random permutation over the elements of the obtained chaff set of passwords.
    Type: Grant
    Filed: November 1, 2017
    Date of Patent: August 4, 2020
    Assignee: EMC IP Holding Company LLC
    Inventors: Nikolaos Triandopoulos, Kevin Bowers, Ari Juels, Ronald Rivest, Guoying Luo
  • Patent number: 10721502
    Abstract: The present invention proposes a method for transmitting a broadcasting signal. The method for transmitting a broadcasting signal according to the present invention proposes a system capable of supporting a next generation broadcasting service in an environment which supports next generation hybrid broadcasting using a terrestrial broadcasting network and an Internet network. In addition, the present invention proposes an efficient signaling method which can cover both the terrestrial broadcasting network and the Internet network in the environment which supports the next generation hybrid broadcasting.
    Type: Grant
    Filed: July 6, 2016
    Date of Patent: July 21, 2020
    Assignee: LG ELECTRONICS INC.
    Inventors: Seungryul Yang, Minsung Kwak, Kyoungsoo Moon, Woosuk Ko, Sungryong Hong
  • Patent number: 10713374
    Abstract: A method for execution by a storage unit of a dispersed storage network includes receiving an access request from a requestor. An access anomaly of the access request is detected, and the access request is queued for processing in response. An anomaly detection indicator is issued to a plurality of other storage units. A secondary authentication process is initiated with the requestor, and a secondary authentication response from the requestor. The access request is processed when the secondary authentication response is favorable.
    Type: Grant
    Filed: December 18, 2017
    Date of Patent: July 14, 2020
    Assignee: PURE STORAGE, INC.
    Inventors: Teague S. Algie, Jason K. Resch
  • Patent number: 10716003
    Abstract: Methods, systems, and apparatus, including computer programs encoded on a computer storage medium, for receiving, from a computer system, a request comprising a phone number, identifying a primary channel and one or more secondary channels based on, at least in part, respective performance data of the primary and secondary channels, sending a first message comprising a first text string via the primary channel to a destination device associated with the phone number, after sending the first message, determining that a conversion event for the message and the primary channel did not occur within a specified time period, and based on the determining, sending a second message comprising the first text string via a particular secondary channel to the destination device.
    Type: Grant
    Filed: June 10, 2019
    Date of Patent: July 14, 2020
    Assignee: NEXMO, Inc.
    Inventors: Thomas Gilles Michel Soulez, Boaz Zehavi, Guillermo Quintero, Aurelien Favre, Jean-Philippe Chernot
  • Patent number: 10705806
    Abstract: A system is configured to receive a notification that variable information, associated with a variable, is stored in a logical workspace; obtain, in response to the notification, the logical workspace; and generate meta information associated with the variable, where the meta information includes information associated with a temporal attribute of the variable, information associated with an application that generated the variable information, information associated with a contextual attribute of the variable, or information associated with a spatial attribute of the variable. The system is also configured to associate, the meta information with the variable information, where associating the meta information with the variable information permits an operation to be performed on the meta information or on the variable information based on the meta information.
    Type: Grant
    Filed: January 9, 2017
    Date of Patent: July 7, 2020
    Assignee: The MathWorks, Inc.
    Inventor: Pieter J. Mosterman
  • Patent number: 10701094
    Abstract: In various implementations, a security management and control system for monitoring and management of security for cloud services can include automated techniques for identifying the privileged users of a given cloud service. In various examples, the security management and control system can obtain activity logs from the cloud service, where the activity logs record actions performed by users of an organization in using the cloud service. In various examples, the security management and control system can identify actions in the activity logs that are privileged with respect to the cloud service. In these and other examples, the security management and control system can use the actions in the activity log to identify privileged users. Once the privileged users are identified, the security management and control system can monitor the privileged users with a higher degree of scrutiny.
    Type: Grant
    Filed: June 18, 2018
    Date of Patent: June 30, 2020
    Assignee: ORACLE INTERNATIONAL CORPORATION
    Inventors: Ganesh Kirti, Kamalendu Biswas, Merenne Sumedha Nalin Perera
  • Patent number: 10693875
    Abstract: This invention provides an authentication center system which enables a user to manage the specific account information of the user's accounts at different service parties centrally in one authentication center.
    Type: Grant
    Filed: August 7, 2018
    Date of Patent: June 23, 2020
    Inventor: Shaohua Ren
  • Patent number: 10693916
    Abstract: Certain embodiments provide means for managing automated access to computers, e.g., using SSH user keys and other kinds of trust relationships. Certain embodiments also provide for managing certificates, Kerberos credentials, and cryptographic keys. Certain embodiments provide for remediating legacy SSH key problems and for automating configuration of SSH keys, as well as for continuous monitoring.
    Type: Grant
    Filed: October 30, 2018
    Date of Patent: June 23, 2020
    Assignee: SSH Communications Security OYJ
    Inventor: Tatu J. Ylonen
  • Patent number: 10691816
    Abstract: Embodiments for applying host access control rules for application containers by one or more processors. A first set of user identifiers and permissions is extracted from a temporary container and a second set of user identifiers and permissions is extracted from a host on which a working container will reside. The first set and the second set of user identifiers and permissions are combined into an aggregate set of user identifiers and permissions and injected into the working container.
    Type: Grant
    Filed: February 24, 2017
    Date of Patent: June 23, 2020
    Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATION
    Inventors: Lior Aronovich, Shibin I. Ma
  • Patent number: 10681755
    Abstract: A method for operating a communication device is disclosed. One embodiment includes the steps of: generating an intermediary key corresponding to peer to peer (P2P) communication between a client and a counterpart client; transmitting the intermediary key to the counterpart client; obtaining an intermediary path corresponding to the intermediary key; receiving the data through the intermediary path from the client that did not receive an acknowledgement for data transmitted to the counterpart client because of a change of a network address of the counterpart client; and transmitting the data to the counterpart client if the counterpart client accesses the changed network address by using the intermediary key.
    Type: Grant
    Filed: June 30, 2016
    Date of Patent: June 9, 2020
    Assignee: 2IP CO., LTD.
    Inventors: Tae Jung Kim, Kwang Hyun Cho
  • Patent number: 10673843
    Abstract: Provided is an authentication service system and authentication service method. According to embodiments of the present disclosure, when a plurality of authentication processes are performed using different authentication factors, an access token is issued based on an authentication factor used in a previous authentication process; and a subsequent authentication process is performed according to validity of the access token issued in the previous authentication process.
    Type: Grant
    Filed: May 29, 2018
    Date of Patent: June 2, 2020
    Assignee: SAMSUNG SDS CO., LTD.
    Inventors: Jae-Hyuk Cho, Hee-Sung Yang, Hyun-Bea Shin, Hyun-chul Park
  • Patent number: 10674335
    Abstract: The present invention utilizes an application which is loaded onto the mobile devices of attendees who will be attending festivals, concerts, etc, where the large crowds attending the event will create wireless and mobile network congestion. The application will be preloaded with a plurality of presentations which the presenter will utilize during the event to enhance the experience for the attendee. Each presentation will have a triggering mechanism encoded in the app which will initiate the presentation to begin and will synchronize the presentation on the phone with event. In addition to displaying preloaded presentations to the attendees at crowded events, the application can also track the activities of the attendees at the event to see what portions of the events they attended and when, and display real time text messages on the screen of the phone.
    Type: Grant
    Filed: October 3, 2019
    Date of Patent: June 2, 2020
    Inventor: Glen Wheeler
  • Patent number: 10672010
    Abstract: A management system includes: an information terminal that reads an information code attached to a management target, the information code storing code identification information that specifies the management target; and a server communicable with the information terminal. The information terminal includes: a reading portion that optically reads display information including the information code; a position information acquisition portion that acquires position information of the information terminal; a terminal-side transmission portion that transmits the position information as reading position information to the server; and a notification portion that notifies predetermined information.
    Type: Grant
    Filed: August 4, 2017
    Date of Patent: June 2, 2020
    Assignee: DENSO WAVE INCORPORATED
    Inventors: Kunihiko Ito, Kenichi Yoshida
  • Patent number: 10664585
    Abstract: Techniques are disclosed relating to a computer system including a first mobile device that stores information that is inaccessible without a value stored on a second mobile device. In some embodiments, the first mobile device stores a plurality of one-time password generation routines executable to generate one-time passwords usable to authenticate user access to an electronic resource, and the second mobile device stores a plurality of supplemental authentication values that correspond to the one-time password generation routines. A particular one-time password generated by the first mobile device using a particular one-time password generation routine is inaccessible without the corresponding particular supplemental authentication value stored on the second mobile device.
    Type: Grant
    Filed: April 2, 2018
    Date of Patent: May 26, 2020
    Assignee: CA, Inc.
    Inventors: Piyush Jain, Deepak Verma
  • Patent number: 10659411
    Abstract: An online system determines a client device associated with a user that is to receive a new notification. The client device presents the notification and receives an input to forward the notification to a different client device and/or a different application. The client device sends a request to the online system to forward the notification. The online system determines a list of available client devices and/or available applications that are able to receive a forwarded version of the notification and provides the list to the client device for selection. Upon receiving a selection, the client device sends the selection to the online system which generates the forward notification that is appropriate for the selected client device and/or selected application. Thus, the online system avoids over-notifying a user, while also enabling the user to consume the content of the notification according to his/her preferences.
    Type: Grant
    Filed: April 24, 2019
    Date of Patent: May 19, 2020
    Assignee: GOOGLE LLC
    Inventors: Justin Lewis, Gavin James
  • Patent number: 10650153
    Abstract: A document management computer system can validate a user with validation codes sent through a plurality of communication modes. The validated user may be provided with access to a stored electronic document.
    Type: Grant
    Filed: January 31, 2017
    Date of Patent: May 12, 2020
    Assignee: ENT. SERVICES DEVELOPMENT CORPORATION LP
    Inventor: Mohammed Hussain
  • Patent number: 10652241
    Abstract: Disclosed embodiments relate to systems and methods for dynamically providing coupling between auxiliary computing devices and secure endpoint computing resources. Techniques include identifying a request for an identity to access an endpoint computing resource; obtaining a unique session identifier in response to the request; transmitting the unique session identifier via short-range communications from the endpoint computing resource to an auxiliary computing device associated with the identity; obtaining, in response to the auxiliary computing device transmitting the unique session identifier and the identification data, authentication data sufficient to comply with the authentication requirement of the endpoint computing resource; and dynamically coupling the identity to the endpoint computing resource based on the authentication data and consistent with the authentication requirement.
    Type: Grant
    Filed: May 29, 2019
    Date of Patent: May 12, 2020
    Assignee: CyberArk Software Ltd.
    Inventor: Arthur Bendersky
  • Patent number: 10645075
    Abstract: A system and method are disclosed in which a new or updated password is tested on other websites before being accepted as a password for a website of a bank. The tested websites may include those of competitor banks or other financial institutions, popular websites, and/or websites frequently used by the customer. If a login at one of the other websites using the new or updated password is successful, the password is not accepted at the bank and the user is asked to create a different password. The new or updated password is discarded after the test of other websites are made and is not saved by the bank.
    Type: Grant
    Filed: May 28, 2019
    Date of Patent: May 5, 2020
    Assignee: Capital One Services, LLC
    Inventors: Galen Rafferty, Austin Grant Walters, Anh Truong, Reza Farivar, Jeremy Edward Goodsitt, Vincent Pham
  • Patent number: 10645167
    Abstract: A system and method for improving the security and reliability of industrial control system (ICS) and supervisory control and data acquisition (SCADA) communication networks utilized within power systems is provided. For power system intelligent electronic devices (IEDs) that comprise these networks, a number of settings are created and stored inside the device settings files that define the IED's communication parameters. Inspection of a settings and configuration file (SCF) allows the identification and extraction of the device's configured and therefore permissible communication characteristics. Using this extracted information, rulesets are generated and subsequently pushed to one or more network security devices, e.g. firewalls, managed switches, and intrusion detection/prevention systems. In such a manner, the described innovation is able to derive a perspective of the allowable system communication and issue rulesets and settings to network security devices (NSDs).
    Type: Grant
    Filed: November 23, 2016
    Date of Patent: May 5, 2020
    Assignee: Cybirical, LLC
    Inventor: Nathan S. Wallace
  • Patent number: 10623497
    Abstract: The application is directed to a computer-implemented method and apparatus for provisioning an Internet of Things (IoT) device on an IoT network. The application is also directed to a method for managing access to functionality of an IoT device in a networked group.
    Type: Grant
    Filed: October 11, 2016
    Date of Patent: April 14, 2020
    Assignee: Microsoft Technology Licensing, LLC
    Inventors: David G. Thaler, Justin Allen Hutchings, Kevin M. Kane, Daniel Stelian Mihai, Arvind R. Padole, Pawel R. Winogrodzki, Greg M. Zaverucha
  • Patent number: 10623442
    Abstract: A network surveillance method to detect attackers, including planting one or more honeytokens in one or more resources in a network of computers in which users access the resources in the network based on credentials, wherein a honeytoken is an object in memory or storage of a first resource that may be used by an attacker to access a second resource using decoy credentials, including planting a first honeytoken in a first resource, R1, used to access a second resource, R2, using first decoy credentials, and planting a second honeytoken in R1, used to access a third resource, R3, using second decoy credentials, and alerting that an attacker is intruding the network only in response to both (i) an attempt to access R2 using the first decoy credentials, and (ii) a subsequent attempt to access R3 using the second decoy credentials.
    Type: Grant
    Filed: April 2, 2018
    Date of Patent: April 14, 2020
    Assignee: ILLUSIVE NETWORKS LTD.
    Inventors: Shlomo Touboul, Hanan Levin, Stephane Roubach, Assaf Mischari, Itai Ben David, Itay Avraham, Adi Ozer, Chen Kazaz, Ofer Israeli, Olga Vingurt, Liad Gareh, Israel Grimberg, Cobby Cohen, Sharon Sultan, Matan Kubovsky
  • Patent number: 10623501
    Abstract: Techniques are disclosed for providing users of an access management system the capability to manage the user's active sessions. The system may receive a first request by a user at a first device to modify one or more sessions established for the user. The system may access session information about the one or more sessions that are associated with the user, wherein a session of the one or more sessions provides the user with access to one or more resources. The system may send the session information to the first device, the session information causing the first device to display a graphical interface including the session information about the one or more sessions. The system may receive, from the first device, a second request indicating a modification to the session. The system may modify the session in accordance with the modification indicated in the second request.
    Type: Grant
    Filed: November 18, 2016
    Date of Patent: April 14, 2020
    Assignee: Oracle International Corporation
    Inventors: Stephen Mathew, Ramya Kukehalli Subramanya, Aarathi Balakrishnan
  • Patent number: 10614208
    Abstract: A device determines that a data breach of an application has been reported and determines that an individual has an account with the application based on identifying an association between an application identifier and a username the individual uses to access the application. The device receives, from a user device associated with the individual, password information used to access the application. The device uses the password information and usernames for a group of applications with which the individual has accounts to perform a login procedure for the group of applications to determine that login information for one or more of the applications includes the password information used to access the application affected by the data breach. The device provides, to the user device or another device, a recommendation to change the password information used to access the application and the one or more applications.
    Type: Grant
    Filed: February 21, 2019
    Date of Patent: April 7, 2020
    Assignee: Capital One Services, LLC
    Inventors: Joshua Edwards, Michael Mossoba, Ljubica Chatman, Jason Ji, Carlos Rodriguez
  • Patent number: 10616259
    Abstract: A security system can provide monitoring and vulnerability testing of networks within a vehicle and perform patching or take other remedial action when vulnerabilities are found. Monitoring can comprise maintaining and enforcing security policies on use of the networks of the vehicle, performing anti-virus and/or anti-malware monitoring and/or scanning on messages and use of the networks of the vehicle, monitoring in real-time for certain conditions or on certain aspects of operation of the networks, or performing one or more of a number of different types of automated vulnerability scans on the networks of the vehicle. Patching or take other remedial action can comprise, blocking access to one or more of the networks of the vehicle by an application, component, user, etc. when a threat is detected or a vulnerability is found, reporting a detected threat or vulnerability, obtaining and applying a patch or automatically taking other corrective action as needed.
    Type: Grant
    Filed: January 17, 2017
    Date of Patent: April 7, 2020
    Assignee: NIO USA, Inc.
    Inventor: Craig North
  • Patent number: 10616198
    Abstract: Embodiments of the invention generally relate to apparatus, systems and methods for authenticating an entity for computer and/or network security and for selectively granting access privileges and providing other services in response to such authentications.
    Type: Grant
    Filed: August 19, 2016
    Date of Patent: April 7, 2020
    Assignee: UNIVERSAL SECURE REGISTRY, LLC
    Inventor: Kenneth P. Weiss
  • Patent number: 10602930
    Abstract: A method for authenticating to a network comprising a plurality of Internet of Things (“IoT”) devices is provided. The method may include using a mobile telephone apparatus, a wrist-worn apparatus and a head-worn apparatus to monitor the level of at least one of a wearer's pulse, body temperature, voice, gait and/or other biorhythmic indicator. One of the aforementioned apparatus may operate as a hub apparatus. The method may further include using the hub apparatus to assign a federated biometric marker based at least in part on the first, second and third biometric markers. The method may also include using artificial intelligence to monitor for one or more outliers with respect to historical monitoring. Each of the one or more outliers may include a magnitude that exceeds a security threshold difference between the current magnitude and the historically monitored magnitude.
    Type: Grant
    Filed: March 29, 2018
    Date of Patent: March 31, 2020
    Assignee: Bank of America Corporation
    Inventors: Patrick Nicholas Lawrence, Jesse Strickland Newsom, III, Victoria Lynn Dravneek, John Christopher Checco, Hitesh J. Shah
  • Patent number: 10601828
    Abstract: Provided is a process that affords out-of-band authentication based on a secure channel to a trusted execution environment on a client device. The authentication process includes one or more authentication steps in addition to verifying any credentials provided by a client device. A notification may be transmitted by a server to a device other than the client device attempting to access the asset. That device may be a mobile device with a trusted execution environment storing user credential information, and the server may store representations of those credentials. The mobile device collects user input credentials and transmits representations for matching the previously stored representations and signed data for verification by the server that received data originated from the mobile device. The access attempt by the client is granted based in part on the result of authenticating the data received from the mobile device in a response to the notification.
    Type: Grant
    Filed: February 7, 2019
    Date of Patent: March 24, 2020
    Assignee: HYPR CORP.
    Inventors: George Avetisov, Bojan Simic, Roman Kadinsky
  • Patent number: 10592658
    Abstract: A password recovery technique for access to a system includes receiving a request from a first party to recover the first party's password to access the system, receiving a selection of a second party from the first party, sending a message to the second party requesting that the second party authorize the request to recover the first party's password, receiving authorization from the second party for the request to recover the first party's password, and resetting the first party's password responsive to receiving authorization from the second party.
    Type: Grant
    Filed: June 28, 2018
    Date of Patent: March 17, 2020
    Assignee: AT&T INTELLECTUAL PROPERTY I, L.P.
    Inventors: Nemmara K. Shankaranarayanan, William Roberts Cheswick
  • Patent number: 10592307
    Abstract: Exclusive threads for multiple queues is described. A computing system adds a first event associated with a first entity to a first queue in response to receiving the first event. The computing system adds a second event associated with a second entity to a second queue in response to receiving the second event. The computing system adds a third event associated with the second entity to the second queue in response to receiving the third event. A first thread in the computing system removes the first event from the first queue, wherein any event in the first queue is removed exclusively by the first thread. The first thread processes the first event.
    Type: Grant
    Filed: December 13, 2016
    Date of Patent: March 17, 2020
    Assignee: salesforce.com, inc.
    Inventor: Leela Maheshwara Rao
  • Patent number: 10587410
    Abstract: A system includes hardware processors and a token exchange module configured to create a uniquely identified first digital token including an owner ID field identifying the current possessor of the digital token, associate the first digital token with digital content presented to the first user in a mixed reality environment, present the digital within the MR environment, make the first digital token available for acquisition, receive a request to acquire the first digital token, assign possession of the first digital token, via the owner ID field, to the first unique user ID of the first user based on the request to acquire the first digital token, receive a request to transfer the first digital token from the first user to the second user, the second user having a second unique user ID, and changing the owner ID field to the second unique user ID based on the request to transfer.
    Type: Grant
    Filed: January 23, 2019
    Date of Patent: March 10, 2020
    Assignee: Unity IPR ApS
    Inventors: Sylvio Herve Drouin, Colin James Alleyne
  • Patent number: 10581922
    Abstract: Described herein are embodiments for managing policies of a mobile device. In embodiments, a mobile device receives policy containers from a plurality of disparate management agents. Each policy container has one or more policies. Each policy corresponds to a particular category that governs various aspects of the device. The policies described herein may be device wide policies corresponding to various features on the device. The policies may also be data specific policies which dictate how data is stored on and transferred to and from the device. Once the policies are received, a determination is made as to which policy in each category is the most secure policy. The most secure policy for each category is merged to create a global policy that is applied to the mobile device.
    Type: Grant
    Filed: December 18, 2018
    Date of Patent: March 3, 2020
    Assignee: Microsoft Technology Licensing, LLC
    Inventors: Juan V. Esteve Balducci, Michael K. Higashi, David Paul Limont, John Allen Atwood, Burhan Ateeq, Patrick Tousignant
  • Patent number: 10582383
    Abstract: Devices and methods for managing a mobile communications profile stored in a nonvolatile memory of a secure element and performed by the secure element are disclosed. The devices and methods may include operations such as reading the state of a flag stored in the nonvolatile memory of the secure element and indicating whether the profile may be deleted; determining the active or inactive state of the profile; and if the flag indicates that the profile may be deleted and if it is determined that the profile is inactive, then deleting the profile.
    Type: Grant
    Filed: July 27, 2016
    Date of Patent: March 3, 2020
    Assignee: IDEMIA FRANCE
    Inventors: Alexis Michel, Tomasz Wozniak
  • Patent number: 10567167
    Abstract: Systems and methods for securing or encrypting data or other information arising from a user's interaction with software and/or hardware, resulting in transformation of original data into ciphertext. Generally, the ciphertext is generated using context-based keys that depend on the environment in which the original data originated and/or was accessed. The ciphertext can be stored in a user's storage device or in an enterprise database (e.g., at-rest encryption) or shared with other users (e.g., cryptographic communication). The system generally allows for secure federation across organizations, including mechanisms to ensure that the system itself and any other actor with pervasive access to the network cannot compromise the confidentially of the protected data.
    Type: Grant
    Filed: July 9, 2018
    Date of Patent: February 18, 2020
    Assignee: IONIC SECURITY INC.
    Inventors: Adam Ghetti, Jeffrey Howard, James Jordan, Nicholas Smith, Jeremy Eckman, Ryan Speers, Sohaib Bhatti
  • Patent number: 10567361
    Abstract: A central server configured with an Attribute Authority (“AA”) acting as a Trusted Third Party mediating service provider and using X.509-compatible PKI and PMI, VPN technology, device-side thin client applications, security hardware (HSM, Network), cloud hosting, authentication, Active Directory and other solutions. This ecosystem results in real time management of credentials, identity profiles, communication lines, and keys. It is not centrally managed, rather distributes rights to users. Using its Inviter-Invitee protocol suite, Inviters vouch for the identity of Invitees who successfully complete the protocol establishing communication lines. Users establish and respond to authorization requests and other real-time verifications pertaining to accessing each communication line (not end point) and sharing encrypted digital files.
    Type: Grant
    Filed: July 25, 2018
    Date of Patent: February 18, 2020
    Assignee: T-CENTRAL, INC.
    Inventors: David W. Kravitz, Donald Houston Graham, III, Josselyn L. Boudett, Russell S. Dietz
  • Patent number: 10567171
    Abstract: Techniques are provided for client-side security key generation. An initial request is received from an application executing on a client device. The application includes a security component includes security code. In response to the initial request, a key component is generated. The key component includes one or more parameters from which a valid security key can be generated at the client device by executing the security code. The key component is provided to the client device. A security key associated with a request from the client device to an application server is received. The security key is checked for validity. In response to determining that the security key is valid, processing of the request by the application server is caused.
    Type: Grant
    Filed: June 30, 2017
    Date of Patent: February 18, 2020
    Assignee: Shape Security, Inc.
    Inventors: Carl Schroeder, Ariya Hidayat, Chandrasekhar Rentachintala, Ricky Y. Chiu
  • Patent number: 10560266
    Abstract: A system and method of managing multiple identities using a multiple identity management system includes receiving a user authentication signal from a user terminal, transmitting the user authentication signal to a first service server, the first service server matching the user authentication signal with a particular user ID associated with the first service server, receiving an authorization signal corresponding to the user authentication signal from the first service server, transmitting the authorization signal to the user terminal, receiving a request for validation of a user identification number corresponding to the authorization signal from a second service server, the second service server receiving the authorization signal transmitted via a user input from the user terminal, and transmitting the user identification number corresponding to the authorization signal to the second service server.
    Type: Grant
    Filed: December 5, 2017
    Date of Patent: February 11, 2020
    Assignee: NHN Entertainment Corporation
    Inventors: Yuik Yim, Cheolmin Ju
  • Patent number: 10558949
    Abstract: A method of rendering email includes receiving with a networked computing device at least one filter criterion; receiving with the networked computing device an email message; and, responsive to a determination by the networked computing device that the email message meets the at least one filter criterion, diverting the email message from delivery to an inbox and providing an immediate display of the email message in its entirety to a user.
    Type: Grant
    Filed: May 20, 2009
    Date of Patent: February 11, 2020
    Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATION
    Inventors: Frank L. Jania, Andrew L. Schirmer
  • Patent number: 10554668
    Abstract: An approach is provided for establishing a vendor portal configured to provide remote control and management of one or more devices of a customer by a plurality of vendors. The device can then be remotely controlled, accessed, or operated upon via the vendor portal.
    Type: Grant
    Filed: April 17, 2017
    Date of Patent: February 4, 2020
    Assignee: BOMGAR CORPORATION
    Inventors: Huey Jiun Ngo, Nathan Joel McNeill, David William Durham, Nathan Whiteford Cromer
  • Patent number: 10540205
    Abstract: A system, method, and computer-readable storage medium configured to facilitate user purpose in a computing architecture.
    Type: Grant
    Filed: December 12, 2017
    Date of Patent: January 21, 2020
    Assignee: Advanced Elemental Technologies
    Inventors: Victor Henry Shear, Peter Robert Williams, Jaisook Rho, Timothy St. John Redmond, James Jay Horning
  • Patent number: 10542077
    Abstract: In one example, a cloud exchange comprises an interconnection platform of a network data center to configure a plurality of interconnection assets of the network data center to interconnect customer networks of a plurality of customer networks co-located in the network data center, the interconnection platform comprising: a network event unit controller configured to receive an indication of a network event of an interconnection asset of the plurality of interconnection assets; generate, in response to the network device report message, one or more network event messages based on the network event, wherein each of the network event messages includes an indication of the network event; and send the one or more network event messages to one or more customer systems for respective customer networks of the plurality of customer networks, wherein the one or more customer systems are affected by the network event.
    Type: Grant
    Filed: September 19, 2016
    Date of Patent: January 21, 2020
    Assignee: EQUINIX, INC.
    Inventors: Senthil Kumar Balakrishnan, Parveen Kumar, Jaganathan Jeyapaul, Brian J. Lillie, Harshith Bhaskar Vakkaligara
  • Patent number: 10530814
    Abstract: Certain embodiments provide means for managing automated access to computers, e.g., using SSH user keys and other kinds of trust relationships. Certain embodiments also provide for managing certificates, Kerberos credentials, and cryptographic keys. Certain embodiments provide for remediating legacy SSH key problems and for automating configuration of SSH keys, as well as for continuous monitoring.
    Type: Grant
    Filed: March 15, 2017
    Date of Patent: January 7, 2020
    Assignee: SSH Communications Security OYJ
    Inventor: Tatu J. Ylonen
  • Patent number: 10530810
    Abstract: Techniques for dynamic selection and generation of detonation location of suspicious content with a honey network are disclosed. In some embodiments, a system for dynamic selection and generation of detonation location of suspicious content with a honey network includes a virtual machine (VM) instance manager that manages a plurality of virtual clones executed in an instrumented VM environment, in which the plurality of virtual clones executed in the instrumented VM environment correspond to the honey network that emulates a plurality of devices in an enterprise network; and an intelligent malware detonator that detonates a malware sample in at least one of the plurality of virtual clones executed in the instrumented VM environment.
    Type: Grant
    Filed: November 2, 2017
    Date of Patent: January 7, 2020
    Assignee: Palo Alto Networks, Inc.
    Inventors: Taylor Ettema, Huagang Xie
  • Patent number: 10520927
    Abstract: A system and method for monitoring operating conditions of an industrial installation system including a plurality industrial assets. A plurality of transponders or beacons is located in a facility or location, where each of the transponders defines a zone in which some of the industrial assets are located. One or more mobile devices is configured to identify assets located within one or more of the zones to provide information to a data acquisition and processing system, which monitors the operating conditions of each of the industrial assets. Each of the one or more mobile devices is authorized depending on a location within the facility, the identity of a user, or based on a time of day. Industrial assets that require support, such as maintenance or replacement, are identified. Authorized mobile devices are configured to transmit information to and to receive information from the data acquisition and processing system.
    Type: Grant
    Filed: July 31, 2017
    Date of Patent: December 31, 2019
    Assignee: ABB Schweiz AG
    Inventors: Mithun P. Acharya, Shakeel Mahate, Markus Aleksy, Jonas Bronmark
  • Patent number: 10523425
    Abstract: Systems and methods for changing database passwords are described. A first server computing system receives an indication to perform a password change process for an administrative account of an associated database. The server generates a vault configured to store a password change status and a password secret associated with the account. The server sets the password change status to a first value to indicate that the server is performing the password change process and then performs the password change process for the account. The server then sets the password change status to a second value to enable a second server computing system to perform a second password change process for a second administrative account of a database associated with the second server system. The database associated with the second server computing system is a standby database of the database associated with the first server system.
    Type: Grant
    Filed: June 22, 2017
    Date of Patent: December 31, 2019
    Assignee: salesforce.com, inc.
    Inventors: Raghavendran Hanumantharau, Yoram Tal, Amit Das, Edward F. Gulakowski, Jr.
  • Patent number: 10523660
    Abstract: In an embodiment, a system for asserting a mobile identity to users and devices in an enterprise authentication system includes a communication interface and a processor coupled to the interface. The processor is configured to receive, via the communication interface and from a first device, a request to authenticate a user to a service using a unique identity associated with a second device. The processor is configured to determine, based at least in part on the unique identity, an identity certificate associated with the request, generate an identity assertion based at least in part on the identity certificate, and provide the identity assertion via the communication interface to a requesting node with which the request to authenticate is associated.
    Type: Grant
    Filed: January 25, 2019
    Date of Patent: December 31, 2019
    Assignee: MOBILEIRON, INC.
    Inventors: Alexei Volkov, Kumara Das Karunakaran, Vijay Pawar
  • Patent number: 10516989
    Abstract: A system that incorporates teachings of the subject disclosure may include, for example, a method for detecting, by a first device including a least one processor and a first Universal Integrated Circuit Card (UICC), a second device having a second UICC, detecting, by the first device, that the second UICC is unprovisioned, selecting, by the first device, one of a plurality of selectable options, where the selection identifies a first Mobile Network Operator (MNO) selected from a plurality of MNOs, receiving, by the first device, first credential information of the first MNO, and transmitting, by the first device, to the second device the first credential information for enabling the second device to facilitate establishment of communication services with network equipment of the first MNO according to the first credential information. Other embodiments are disclosed.
    Type: Grant
    Filed: June 14, 2018
    Date of Patent: December 24, 2019
    Assignee: AT&T Mobility II LLC
    Inventors: David A. Christopher, Dana Tardelli
  • Patent number: 10496692
    Abstract: Technologies are disclosed herein for resource tagging, grouping and associated functionality. A resource tagging service allows resource tags to be created and associated with computing resources in a service provider network. The resource tags can be utilized to search, collect, filter, organize and otherwise manage computing resources in the service provider network having matching tags, and/or to perform other types of functionality. A resource groups service allows customers and/or other users of the service provider network to view and access collections of computing resources that share common resource tags and/or other attributes. Resource groups can also be evaluated in order to identify computing resources in a service provider network for which certain types of actions or other functionality is to be performed. Membership of resource groups can also be evaluated over time and inferences can be drawn from the membership and from operational information associated with the member computing resources.
    Type: Grant
    Filed: December 20, 2017
    Date of Patent: December 3, 2019
    Assignee: Amazon Technologies, Inc.
    Inventors: Brian Kahrs, Asa Denton, Donley Ray P'Simer, Raleigh Harrison Upshur, David Whitney, Shawn Galen Truesdell, Craig Andrew Noeldner
  • Patent number: 10475418
    Abstract: A directional display apparatus including a directional display device that is capable of directing a displayed image into a viewing window of variable width is provided with a privacy control function. A control system detects the presence of one or more secondary viewers in addition to a primary viewer, and decides whether the one or more secondary viewers is permitted to view the displayed image. The control system directs a displayed image into a viewing window which is adjusted, for example by decreasing the width, in dependence on that detection. In addition, the control system detects relative movement between the primary viewer and the display device, and the width of the viewing window is increased in response to detection of said relative movement.
    Type: Grant
    Filed: October 25, 2016
    Date of Patent: November 12, 2019
    Assignee: RealD Spark, LLC
    Inventors: Eric Sommerlade, Graham J. Woodgate, Helen Flynn
  • Patent number: 10467624
    Abstract: A mobile device is provided that allows a user to generate and present a unique code/token to a service provider for customer identity validation. The service provider may use the unique code/token to retrieve or verify identity information/documents from a central depository to validate the identity of the customer to meet a Know-Your-Customer (KYC), or other identification requirements. The central depository or a central database may facilitate customer identity validation from multiple participants. Information related to proofs of customer identity may be collected and aggregated from multiple verification points and may be used to provide customer identity validation. As such, customers do not have to provide the same proofs of identity again when registering with a new service provider.
    Type: Grant
    Filed: June 29, 2016
    Date of Patent: November 5, 2019
    Assignee: PAYPAL, INC.
    Inventors: Lisa Rene Schlesinger, Max Edward Metral, Sandy Lynn Godsey