Management Patents (Class 726/6)
  • Patent number: 11907359
    Abstract: Cloud storage systems and methods are described for providing event-based user state synchronization among the various cloud elements. A global user directory is maintained on a remote cloud storage system. The global user directory includes a plurality of global user definitions associated with a plurality of user accounts, where each of the user accounts has access to at least one of a remote file system hosted by the remote cloud storage system and a local file system hosted by a local cloud storage system. As global user definition are altered on the remote cloud storage system, user events are generated and communicated to the local cloud storage system, where they are applied to synchronize the local user definitions with the global user definitions. The invention facilitates centralized control of user definitions, near real-time event delivery to local cloud storage systems, and separation of authentication processes from customers' active directory services.
    Type: Grant
    Filed: August 18, 2022
    Date of Patent: February 20, 2024
    Assignee: Egnyte, Inc.
    Inventors: Shishir Sharma, Debjit Bhattacharjee, Amrit Jassal, Kalpesh Patel, Deepak Mehta, Przemek Grzedzielski, Sachin Shetty, Krzysztof Gardo, Daniil Iaitskov, Harikesavan Krishnan, Manish Marathe
  • Patent number: 11902319
    Abstract: A computer-implemented process, computer program product, and system for dynamic change of a password under a brute force attack. A computer processor determines a quantity of consecutive unsuccessful attempts to access the targeted item protected by a password. Responsive to the quantity of consecutive unsuccessful attempts to access the targeted item exceeding a predefined threshold, the computer processor acquires a new password for access to the targeted item, wherein the new password is based on a more complex set of password generation rules than a current password. The computer processor changing the current password of the targeted item to the new password, and in response to changing the current password of the targeted item to the new password, the computer processor sends an encrypted message regarding the new password to a user associated with the targeted item.
    Type: Grant
    Filed: March 9, 2021
    Date of Patent: February 13, 2024
    Assignee: International Business Machines Corporation
    Inventors: Susann M. Keohane, Gerald McBrearty, Jessica Murillo, Johnny Shieh
  • Patent number: 11899489
    Abstract: A method for determining a behavior of a smart card, which may be implemented by a server. The method includes operations for obtaining a first reference time data corresponding to a time for setting a smart card clock, and a second reference time data corresponding to a time for reading a first time data from the clock, determining a time drift associated with the smart card based on the first reference time data and on the second reference time data, and determining a behavior of the smart card from the time drift.
    Type: Grant
    Filed: December 18, 2019
    Date of Patent: February 13, 2024
    Assignee: IDEMIA FRANCE
    Inventors: Gilles Leseigneur, Jean-François Deprun
  • Patent number: 11895159
    Abstract: An approach for improving endpoint security. The approach requests security capabilities from endpoints of communications. The approach can analyze the differences between the security capabilities of the endpoints. The approach can negotiate a security capability supported by the endpoints of the communication. The approach can determine if the negotiation succeeded. If the negotiation failed, then the approach can create a report describing capabilities of the endpoints and suggesting changes to improve the endpoint security. The approach can send the report to the appropriate interested personnel.
    Type: Grant
    Filed: June 30, 2021
    Date of Patent: February 6, 2024
    Assignee: International Business Machines Corporation
    Inventors: Christopher J Colonna, Stephen Robert Guendert, Pasquale A. Catalano, Michael James Becht
  • Patent number: 11893842
    Abstract: First data indicating performance of authentication that is performed by a first apparatus that performs authentication based on an electronic key acquired from a mobile apparatus is acquired, and second data including an operation command for a second apparatus is generated based on the first data, and the second data is transmitted to the second apparatus.
    Type: Grant
    Filed: May 26, 2021
    Date of Patent: February 6, 2024
    Assignee: TOYOTA JIDOSHA KABUSHIKI KAISHA
    Inventors: Hirokazu Kano, Masatoshi Hayashi, Reita Kamei, Namika Hara
  • Patent number: 11895104
    Abstract: A service processing method, apparatus, and storage medium of a blockchain system are provided. The service processing method includes obtaining authentication information of a service participant; determining whether data in the authentication information of the service participant is updated; generating, based on the data in the authentication information of the service participant being updated, a notification message according to the updated data; and transmitting the notification message to a service processing node subnetwork, the notification message instructing one or more service processing nodes in the service processing node subnetwork to process a service request according to updated authentication information of the service participant.
    Type: Grant
    Filed: April 20, 2021
    Date of Patent: February 6, 2024
    Assignee: TENCENT TECHNOLOGY (SHENZHEN) COMPANY LIMITED
    Inventors: Jun Zang, Jian Jun Zhang, Luo Hai Zheng, Jun Jie Shi, Hu Jia Chen, Zi Chao Tang, Yi Ge Cai, Qing Qin, Chuan Bing Dai, Hu Lan, Jin Long Chen
  • Patent number: 11888836
    Abstract: A method for joining an association that includes receiving, by a first cluster, an association access credential and a unique address of an association manager, generating, based on the association access credential, an association access request, sending, to the unique address, the association access request, receiving, in response to the sending, association information, and initiating, based on the association information, a connection to a second cluster in the association.
    Type: Grant
    Filed: November 8, 2022
    Date of Patent: January 30, 2024
    Assignee: EMC IP Holding Company LLC
    Inventors: Qi Bao, Himabindu Tummala
  • Patent number: 11886570
    Abstract: Methods, systems, and apparatuses are described herein for improving the accuracy of synthetic authentication questions by analyzing third party account data. A request for access to a first account associated with a user may be received. The first account may be managed by a first organization. A transactions database might be queried for first account data. Second account data corresponding to a second account associated with the user might be received. That second account may be managed by a second organization different from the first organization. One or more second transactions, unique to the second account, may be identified. A synthetic transaction, configured to be different from transactions in the first account and the one or more second transactions, may be generated. An authentication question may be generated based on the synthetic transaction. Access to the first account might be provided based on a response to the authentication question.
    Type: Grant
    Filed: May 7, 2021
    Date of Patent: January 30, 2024
    Assignee: Capital One Services, LLC
    Inventors: Joshua Edwards, Vyjayanthi Vadrevu, Tyler Maiman, Viraj Chaudhary, Daniel Miller, David Septimus, Jenny Melendez, Samuel Rapowitz
  • Patent number: 11889308
    Abstract: Disclosed are embodiments for authentication and authorization in a 5G network between an edge enabler client (EEC) of a UE and an edge configuration server (ECS). The embodiment include performing primary authentication with the 5G network to obtain a KAUSF; generating a Kedge and a Kedge ID using the KAUSF and a subscription permanent identifier (SUPI); providing the Kedge and the Kedge ID to the EEC to cause it to compute a MACEEC using the Kedge and an EEC ID; and sending to the ECS an application registration request, the application registration request including the EEC ID, MACEEC, and Kedge ID.
    Type: Grant
    Filed: May 10, 2021
    Date of Patent: January 30, 2024
    Assignee: APPLE INC.
    Inventors: Shu Guo, Dawei Zhang, Fangli Xu, Haijing Hu, Huarui Liang, Mona Agnel, Ralf Rossbach, Sudeep Manithara Vamanan, Yuqin Chen
  • Patent number: 11882008
    Abstract: Systems and methods include establishment of a first database session with a first database user, determine first session variable values associated with the first database session, the first session variable values including a first tenant value, determine a first workload class based on the first tenant value and on zero or more of the other first session variable values, the first workload class including first parameter values specifying first resource consumption limits, and manage resource consumption of the first database session based on the first parameter values.
    Type: Grant
    Filed: December 8, 2022
    Date of Patent: January 23, 2024
    Assignee: SAP SE
    Inventors: Ruediger Karl, Norman May, Jaeyoung Choi, Hyogi Jung, Tobias Scheuer, Robin Joy, Patrick Voelker
  • Patent number: 11881051
    Abstract: A communications device (100) for classifying an instance (110) using Machine Learning (ML) is provided. The communications device is operative to acquire a feature vector representing the instance, classify the instance using a local first ML model, calculate a confidence level, and, if the calculated confidence level is less than a threshold confidence level, acquire information identifying one or more other communications devices, and transmit a classification request message comprising the feature vector to the one or more other communications devices.
    Type: Grant
    Filed: February 24, 2017
    Date of Patent: January 23, 2024
    Assignee: TELEFONAKTIEBOLAGET LM ERICSSON (PUBL)
    Inventors: Tommy Arngren, Markus Andersson, Rickard Cöster, Tomas Frankkila
  • Patent number: 11874739
    Abstract: A memory module includes one or more programmable ECC engines that may be programed by a host processing element with a particular ECC implementation. As used herein, the term “ECC implementation” refers to ECC functionality for performing error detection and subsequent processing, for example using the results of the error detection to perform error correction and to encode corrupted data that cannot be corrected, etc. The approach allows an SoC designer or company to program and reprogram ECC engines in memory modules in a secure manner without having to disclose the particular ECC implementations used by the ECC engines to memory vendors or third parties.
    Type: Grant
    Filed: September 25, 2020
    Date of Patent: January 16, 2024
    Assignee: Advanced Micro Devices, Inc.
    Inventors: Sudhanva Gurumurthi, Vilas Sridharan, Shaizeen Aga, Nuwan Jayasena, Michael Ignatowski, Shrikanth Ganapathy, John Kalamatianos
  • Patent number: 11870781
    Abstract: Systems and methods authenticate an end user of an enterprise with an external service provider. The enterprise comprises an identity provider and an entitlements data store that communicate via web services calls. The identity provider makes a determination of whether an end user is authorized to access the external service provider based on: (i) authentication of the end user by the identity provider; and (ii) data from the entitlements data store for the end user with respect to the external service provider. Upon a determination by the identity provider that the end user is authorized to access the external service provider, the identity provider send a SAML token to the end user. The SAML token comprises an XML representation of entitlement information for the end user for the external service provider.
    Type: Grant
    Filed: February 26, 2020
    Date of Patent: January 9, 2024
    Assignee: Morgan Stanley Services Group Inc.
    Inventors: Daniel Medina, Namitha Krishna, Boris Goberman
  • Patent number: 11870813
    Abstract: A system and a method are disclosed for providing recommendations for sets of security operations for improving security of documents created or executed within an online document system. A supplier entity may select sets of security operations to be performed for a request provided to a signing entity. The online document system computes an aggregate measure of security for the selected sets of security operations and compares it to a threshold measure of security. If the aggregate measure is less than the threshold measure, the online document system uses a machine-learned model to identify additional sets of security operations that when added, results in an updated aggregate measure of security greater than the threshold. The additional sets of security operations are presented to the supplier entity for inclusion within a security operation workflow in combination with the selected sets of security operations.
    Type: Grant
    Filed: April 30, 2021
    Date of Patent: January 9, 2024
    Assignee: DOCUSIGN, INC.
    Inventors: Darren Hon Kit Louie, Blake Thomas Walsh, Reid B. Maker, Mark Groves, Anunay Kumar, Michael Elliot Brickman, Joshua D. Wise
  • Patent number: 11863979
    Abstract: Device-side, translator functions may be authenticated by elements of a 5G core network before communications involving such functions are allowed to occur, or continue to occur.
    Type: Grant
    Filed: August 12, 2020
    Date of Patent: January 2, 2024
    Inventors: Devaki Chandramouli, Kari Niemela, Pilar Andrés Maldonado, Rakash Sivasiva Ganesan
  • Patent number: 11855973
    Abstract: Systems and methods are provided for use in responding to attribute queries related to identifying information for a user. One exemplary method includes receiving a request for an identity code for a user associated with identifying information, where the identifying information includes multiple attributes of the user, and generating the identity code and transmitting it to a computing device associated with the user. The method then includes receiving an identity request for the user from a requesting party including the identity code and at least one query related to at least one of the multiple attributes of the user, identifying the user based on the identity code, compiling a response to the at least one query based on the identifying information of the multiple attributes of the user, and transmitting the response to the requesting party.
    Type: Grant
    Filed: August 30, 2021
    Date of Patent: December 26, 2023
    Assignee: MASTERCARD INTERNATIONAL INCORPORATED
    Inventor: Brandon Craig Bryson
  • Patent number: 11856105
    Abstract: A method including transmitting, based on verifying first biometric information, a first decryption request including an encrypted first cryptographic key in association with a first identifier to indicate that the encrypted first cryptographic key is to be decrypted by utilizing a first master key; decrypting, based on receiving a decrypted first cryptographic key, first factor authentication information to enable determination of a first factor; transmitting the first factor for authentication; transmitting, based on successful authentication of the first factor and on verifying second biometric information, a second decryption request including an encrypted second cryptographic key in association with a second identifier to indicate that the encrypted second cryptographic key is to be decrypted by utilizing a second master key; decrypting, based on receiving a decrypted second cryptographic key, second factor authentication information to enable determination of a second factor; and transmitting the second
    Type: Grant
    Filed: May 22, 2022
    Date of Patent: December 26, 2023
    Assignee: UAB 360 IT
    Inventor: Mindaugas Valkaitis
  • Patent number: 11844144
    Abstract: There is provided mechanisms for handling a subscription profile for a subscriber entity. A method is performed by a subscription management entity. The method comprises obtaining a request from a mobile network operator entity to configure the subscription profile for the subscriber entity. The method comprises configuring the subscription profile with a customized PIN/PUK code for the subscriber entity. The method comprises providing an indication of the customized PIN/PUK code being configured in the subscription profile in a response to the mobile network operator entity.
    Type: Grant
    Filed: October 27, 2017
    Date of Patent: December 12, 2023
    Assignee: TELEFONAKTIEBOLAGET LM ERICSSON (PUBL)
    Inventors: Abu Shohel Ahmed, Patrik Salmela, Kazi Wali Ullah
  • Patent number: 11843592
    Abstract: Disclosed are various embodiments for resetting security credentials for an authentication management client on a client device. In one non-limiting example, the authentication management client is configured to receive encrypted account data associated with a user from an authentication management service and decrypt the encrypted account data using a master security credential. The decrypted account data is stored as client account data associated with the client device. The authentication management client is configured to receive a request to reset a plurality of security credentials in the client account data. At least one of the plurality of security credentials in the client account data are reset.
    Type: Grant
    Filed: June 7, 2022
    Date of Patent: December 12, 2023
    Assignee: Amazon Technologies, Inc.
    Inventors: Daniel W. Hitchcock, Brad Lee Campbell
  • Patent number: 11840246
    Abstract: A vehicle or a mobile device within or near the vehicle can have multiple sensors to sense biometric features of a user or driver, and electronic circuitry (such as a computing system) can classify the user or driver according to the sensed biometric features. Also, non-biometric factors of the user or driver or of the mobile device of the user or driver can be used to classify the user or driver, e.g., MAC address, RFID, username and password, PIN, etc. Also, factors from interaction with a user interface of the vehicle or the mobile device can be used to classify the user or driver. Such features and factors can be used alone or in combination for the classification, and the classification can use AI (such as an ANN). The vehicle or the mobile device can then selectively enable or disable features of the vehicle based on the classification.
    Type: Grant
    Filed: June 29, 2020
    Date of Patent: December 12, 2023
    Assignee: Micron Technology, Inc.
    Inventor: Robert Richard Noel Bielby
  • Patent number: 11842818
    Abstract: A method may include collecting from each of multiple endpoint devices a set of anonymized interactions of the corresponding endpoint device with other endpoint devices. Each anonymized interaction in the set of anonymized interactions may be based on an ephemeral unique identifier of another endpoint device involved in a corresponding anonymized interaction with the corresponding endpoint device. The method may include, for each endpoint device, resolving identities of the other endpoint devices with which the corresponding endpoint device has interacted from the corresponding set of anonymized interactions.
    Type: Grant
    Filed: April 29, 2021
    Date of Patent: December 12, 2023
    Assignee: Noodle Technology Inc.
    Inventors: Eliott Quentin Eric Teissonniere, Lucien Jean Baptiste Loiseau, Garrett Edward Kinsman, Micha Anthenor Benoliel
  • Patent number: 11843946
    Abstract: There is provided a method that comprises receiving one or more unique passwords for identifying respective one or more user devices of the wireless local area network; associating the one or more unique passwords with the respective one or more user devices and storing the one or more unique passwords to a database; in response to receiving, at an access point of the wireless local area network, a connection request from a user device, requesting, from the user device, a unique password of the user device; and identifying the user device based on the unique password.
    Type: Grant
    Filed: April 1, 2021
    Date of Patent: December 12, 2023
    Assignee: Cujo LLC
    Inventors: Matteo Cafasso, Leonardas Marozas
  • Patent number: 11838418
    Abstract: A processor core that includes a token generator circuit is to execute a first instruction in response to initialization of a software program that requests access to protected data output by a cryptographic operation. To execute the first instruction, the processor core is to: retrieve a key that is to be used by the cryptographic operation; trigger the token generator circuit to generate an authorization token; cryptographically encode the key and the authorization token within a key handle; store the key handle in memory; and embed the authorization token within a cryptographic instruction that is to perform the cryptographic operation. The cryptographic instruction may be associated with a first logical compartment of the software program that is authorized access to the protected data.
    Type: Grant
    Filed: August 20, 2020
    Date of Patent: December 5, 2023
    Assignee: Intel Corporation
    Inventors: Milind Girkar, Jason W. Brandt, Michael LeMay
  • Patent number: 11831638
    Abstract: Methods, systems, and computer-readable media for single-packet authorization using proof of work are disclosed. An access control service receives, from a client, a single-packet authorization (SPA) request. The (SPA) request comprises output of a proof-of-work task, wherein completion of the proof-of-work task requires computational resources or memory resources of the client. The access control service performs verification of the output of the proof-of-work task using fewer computational or memory resources of the access control service than were used by the client. In response to determining that verification of the output of the proof-of-work task succeeds, the access control service performs authentication of the SPA request. In response to determining that authentication of the SPA request succeeds, the access control service allows access by the client device to a service.
    Type: Grant
    Filed: April 19, 2021
    Date of Patent: November 28, 2023
    Assignee: Amazon Technologies, Inc.
    Inventors: Evgeniy Retyunskiy, Colm MacCárthaigh, Maciej Broda, Matthew Schwartz
  • Patent number: 11823262
    Abstract: A method for rendering results of an audit includes receiving data corresponding to the results of the audit. The data includes an image to be rendered on a display screen of an electronic computing device. The data includes one or more insights derived from the results of the audit. A user of the electronic computing device is identified. The image is rendered on the display screen. One or more insights derived from the results of the audit are rendered on top of the image on the display screen. A content of the one or more insights derived from the results of the audit that are rendered on top of the image on the display screen is dependent upon the identity of the user of the electronic computing device.
    Type: Grant
    Filed: September 30, 2022
    Date of Patent: November 21, 2023
    Assignee: Wells Fargo Bank, N.A.
    Inventors: Neil Yoshihisa Kakita, Robert Louis Sellers, Abhijit Rao
  • Patent number: 11816728
    Abstract: Disclosed herein is an identity network that can provide a universal, digital identity for users that can be used to authenticate the user by an identity provider for relying parties. The identity network receives a request from a relying party that includes deep linking to an identity provider selected by the user. The request specifies the user as well as any other information about the user the relying party is requesting. A service of the identity network launches the application for the identity provider on the user's device using a software development kit. The user can log into the identity provider's application, which validates the user and provides the user authentication/validation and information about the user to the identity network. The identity network can then provide the indication of the user's authentication and the user information to the relying party.
    Type: Grant
    Filed: July 1, 2022
    Date of Patent: November 14, 2023
    Assignee: Early Warning Services, LLC
    Inventors: Gregory Slowiak, Eric Woodward, Philip Lam, Jeff Shultz
  • Patent number: 11818105
    Abstract: Systems and methods for encoded communications are disclosed. In some embodiments, a server system may be configured to receive a communication from a user interface at an encoded communication module that includes an artificial intelligence based natural language processing module, determine whether the received communication is an encoded communication, decode the encoded communication to generate a financial query when it is determined that the received communication is an encoded communication, retrieve financial data associated with the user, determine an answer to the financial query based on the retrieved financial data, encode the determined answer to generate an encoded responsive communication, and transmit the generated encoded responsive communication to the user interface for providing to a user of the user interface.
    Type: Grant
    Filed: May 21, 2021
    Date of Patent: November 14, 2023
    Assignee: Capital One Services, LLC
    Inventors: Michael Mossoba, Joshua Edwards, Salik Shah
  • Patent number: 11818119
    Abstract: Disclosed embodiments relate to providing dynamic and least-privilege access to network resources. Techniques include receiving a request from a network identity to access a network resource, authenticating the network identity using a native client and communication protocol, authorizing the network identity based on one or more access policy, generating a least privilege ephemeral account having ephemeral credentials, accessing the network resource using the ephemeral credentials, and enabling the network identity to access the network resource using the least-privilege ephemeral account using the native client and communication protocol. The techniques may further include matching an existing account to the network identity based on the one or more access policy and enabling the network identity to access the network resource using the matched existing account using the native client and communication protocol.
    Type: Grant
    Filed: November 29, 2022
    Date of Patent: November 14, 2023
    Assignee: CYBERARK SOFTWARE LTD.
    Inventors: Tomer Dayan, Ofir Iluz, Yaron Nisimov
  • Patent number: 11811754
    Abstract: Aspects of the disclosure relate to a system and method for securely authenticating a device via token(s) and/or verification computing device(s). A verification computing device may generate a pseudorandom number or sequence. Based on the pseudorandom number or sequence, the verification computing device may select a first plurality of parameters associated with a user of a device to be authenticated. The verification computing device may transmit, to the device, the pseudorandom number or sequence, and the device may select a second plurality of parameters. The device may generate a token based on the second plurality of parameters. The device may send the token to another device, and the other device may send the token to the verification computing device. The verification computing device may authenticate the device based on the token.
    Type: Grant
    Filed: June 4, 2021
    Date of Patent: November 7, 2023
    Assignee: Allstate Insurance Company
    Inventors: John Parkinson, Jason Park, David Harris
  • Patent number: 11811742
    Abstract: Methods, systems, and media for recovering identity information in verifiable claims-based systems are provided.
    Type: Grant
    Filed: August 30, 2021
    Date of Patent: November 7, 2023
    Assignee: Google LLC
    Inventors: David Stein, John Wittrock
  • Patent number: 11805115
    Abstract: A method for providing secure single sign on includes receiving a first data object from an application hosting server, the first data object indicating at least a service provider name and identifying a configuration file corresponding to the service provider name, wherein the configuration file includes at least trusted identity information. The method also includes determining, using the configuration file corresponding to the service provider name, whether the first data object is valid and, in response to a determination that the first data object is valid, generating a response message.
    Type: Grant
    Filed: November 8, 2022
    Date of Patent: October 31, 2023
    Assignee: Express Scripts Strategic Development, Inc.
    Inventors: Steven Sefton, Neil J. Powell, Travis Williams
  • Patent number: 11805123
    Abstract: A computing device includes a memory and a processor to provide a web application to be accessed by a client device, receive from a camera images of a person at the client device, and analyze the images to determine that security of the web application is being compromised by the person based on the images. The processor provides at least one action to be taken by the client device in response to analysis of the images. The at least one action is to modify access of the client device to the web application.
    Type: Grant
    Filed: February 19, 2021
    Date of Patent: October 31, 2023
    Inventor: Hao Wu
  • Patent number: 11798022
    Abstract: Methods and apparatus are disclosed for the maintenance of a virtual credit card pool for airline passenger vouchers. An example system includes server(s) that are configured to determine a target distribution of virtual credit cards within the virtual card pool for a current date-and-time. The server(s) are configured to, in response to determining that the current date-and-time corresponds with a predefined restocking time, for each card value: identify a current number of virtual credit cards within the virtual card pool; identify a threshold number of virtual credit cards based on the target distribution; compare the current and threshold numbers; in response to determining that the current number is less than the threshold number, transmit a request for virtual credit cards having the card value to an external server; and add the requested virtual credit cards to the virtual card pool upon receipt.
    Type: Grant
    Filed: September 26, 2022
    Date of Patent: October 24, 2023
    Assignee: TA CONNECTIONS IL, LLC
    Inventors: Ted Scislowski, Brian Olson, David Velasquez
  • Patent number: 11800315
    Abstract: A method of monitoring access to a lounge is provided herein. The method includes identifying a user using a device and determining an assigned location associated with the user. The method also includes determining a current location associated with the user and comparing the assigned location and the current location. If the comparison is valid, the method further includes determining a geofence associated with the user and the device, and monitoring whether the device is within the geofence.
    Type: Grant
    Filed: June 20, 2019
    Date of Patent: October 24, 2023
    Assignee: LES CONSEILLERS EN INFORMATIQUE IEG INC./IEG DATA PROCESSING CONSULTANTS INC.
    Inventor: Michael Di Corpo
  • Patent number: 11800596
    Abstract: In some implementations, a first network device may receive an authorization request associated with a user device connecting to a network associated with first network device. The first network device may redirect the authorization request toward a second network device associated with a second service provider. The first network device may determine, based on a response to the authorization request, that the user device is subscribed to a service provided by the second service provider and that the user device is not authorized to connect to the network. The first network device may provide a temporary service to the user device to enable the user device to connect to the network for a limited period based on the user device being subscribed to the service provided by the second service provider and the user device not being authorized to connect to the network.
    Type: Grant
    Filed: July 26, 2021
    Date of Patent: October 24, 2023
    Assignee: Verizon Patent and Licensing Inc.
    Inventors: Taussif Khan, Balaji L. Raghavachari
  • Patent number: 11797686
    Abstract: In one aspect, an example methodology implementing the disclosed techniques includes, by a computing device, responsive to a user requesting authorization to access an application, segmenting a string of content into a plurality of substrings of different lengths, the string of content being an input to access the application. The method also includes, responsive to a determination that data in a first data structure represents a first substring of the plurality, identifying a length of another substring and at least one type of character present within that substring based on the data in the first data structure, determining a risk of unauthorized use of the string of content based on the identified length and the at least one type of character present within that substring, and allowing access to the application using the string of content based on the determined risk.
    Type: Grant
    Filed: March 19, 2021
    Date of Patent: October 24, 2023
    Inventor: Manbinder Pal Singh
  • Patent number: 11790099
    Abstract: Techniques for improving data security and access control at the distributed execution level of distributed computing systems are provided. The techniques can include receiving a data access request from a data processing application to access data, directing the data access request to a security data application, modifying the data access request, executing the modified data access request to obtain data that is responsive to the modified data access request, and providing the obtained data to the data processing application.
    Type: Grant
    Filed: February 9, 2018
    Date of Patent: October 17, 2023
    Assignee: MICROSOFT TECHNOLOGY LICENSING, LLC
    Inventors: Prasad Mujumdar, Pratik Verma, Shyam Desirazu
  • Patent number: 11792181
    Abstract: A system for credential authentication includes an interface and a processor. The interface is configured to receive a create indication to create a guest credential representing a guest badge associated with a visitor and receive a claim indication from an authentication device to claim the guest credential. The processor is configured to provide the guest credential to the authentication device in response to the claim indication, provide a proof request to the authentication device, receive a proof response from the authentication device, validate the proof response, determine a visitor tracking system associated with a request from the authentication device to authenticate entry, and provide a check-in indication to the visitor tracking system that the visitor has checked in.
    Type: Grant
    Filed: March 26, 2019
    Date of Patent: October 17, 2023
    Assignee: Workday, Inc.
    Inventors: Bjorn Hamel, Jonathan David Ruggiero, Scott Mangino
  • Patent number: 11784943
    Abstract: Some embodiments provide a method for an electronic device. The method stores user data associated with a web-based third party service based on user interaction with a web domain for the third party service through a web browser. The method receives a request from a service-specific application to utilize the user data stored for the third party service. The method provides the user data to the application only when the application is verified by the web domain for receiving user data associated with the third party service.
    Type: Grant
    Filed: May 30, 2022
    Date of Patent: October 10, 2023
    Assignee: Apple Inc.
    Inventors: Andrew R. Whalley, Bob Bradley, Kenneth C. McLeod
  • Patent number: 11785047
    Abstract: One or more medical devices are configured to connect to a predetermined temporary provisioning network of a healthcare organization, the temporary provisioning network being different than a healthcare network of the healthcare organization. After the devices are received by the healthcare organization, and powered up for the first time, device identifiers corresponding to the medical devices are received at a server remote from the healthcare organization, from the temporary provisioning network, together with an indication that the medical devices are requesting access to a management server within a healthcare network of the healthcare organization.
    Type: Grant
    Filed: January 9, 2023
    Date of Patent: October 10, 2023
    Assignee: CareFusion 303, Inc.
    Inventors: Aron Weiler, Jeff Gaetano, Brian Sullivan
  • Patent number: 11775851
    Abstract: A user verification method and apparatus using a generalized user model is disclosed, where the user verification method includes generating a feature vector corresponding to a user based on input data corresponding to the user, determining a first parameter indicating a similarity between the feature vector and an enrolled feature vector enrolled for user verification, determining a second parameter indicating a similarity between the feature vector and a user model corresponding to generalized users, and verifying the user based on the first parameter and the second parameter.
    Type: Grant
    Filed: August 20, 2019
    Date of Patent: October 3, 2023
    Assignee: Samsung Electronics Co., Ltd.
    Inventors: Dohwan Lee, Kyuhong Kim, Chang Kyu Choi
  • Patent number: 11769200
    Abstract: Systems and methods are provided for assessing an account takeover risk for one or more accounts of an individual. The account security procedures for each of a number of services with which the user has an account may be analyzed. Publicly accessible information regarding the user may also be collected and analyzed. The collected information and security procedures may be compared in order to determine one or more vulnerabilities to hostile account takeover of one or more of the analyzed accounts. An alert may be generated regarding a determined takeover risk, which may include suggested actions for remedying the risk.
    Type: Grant
    Filed: July 20, 2021
    Date of Patent: September 26, 2023
    Assignee: ConsumerInfo.com, Inc.
    Inventors: Mark Joseph Kapczynski, Michael John Dean, Herbert Harris Hunt, III
  • Patent number: 11770412
    Abstract: One example method includes logging into websites through devices including insecure devices. A logon device may store credentials. The logon device is configured to connect with an insecure device and then communicate with a website for authentication purposes without exposing a user's credentials to the insecure device. After the user is authenticated, the session is transferred to the insecure device.
    Type: Grant
    Filed: January 28, 2021
    Date of Patent: September 26, 2023
    Assignee: EMC IP HOLDING COMPANY LLC
    Inventors: Seth Jacob Rothschild, Benjamin Santaus, Orlando Xavier Nieves, Radia J. Perlman
  • Patent number: 11750386
    Abstract: Embodiments described herein disclose methods and systems for authorizing transactions received from client applications. The transaction request can include a first access token. After validating the first access token, the system can determine whether additional authentication is needed to authorize the transaction. If additional authentication is needed, the system can determine the authentication requirements. Once the additional authentication is received and verified, the system can generate a second access token and authorize the transaction by releasing the first access token.
    Type: Grant
    Filed: April 21, 2021
    Date of Patent: September 5, 2023
    Assignee: United Services Automobile Association (USAA)
    Inventors: Hoang Trung Vo, Hieu Nguyen
  • Patent number: 11722893
    Abstract: A same wireless access profile is installed on each of multiple mobile communication devices. The wireless access profile includes outer identity information and anonymous inner identity information for each service. The anonymous inner identity information includes a credential used by each of the multiple mobile communication devices to use the service. To use the service such as access a remote network, a respective mobile communication device communicates an anonymous username and password assigned to the service to a policy server during first level authentication. The policy server stores a network address of the authenticated mobile communication device. During second level authentication, the policy server receives an identity of the mobile communication device from a network gateway. The policy server provides access control information (assigned to the service) to the network gateway.
    Type: Grant
    Filed: April 27, 2021
    Date of Patent: August 8, 2023
    Assignee: Charter Communications Operating LLC
    Inventors: Shane B. Newberg, Christopher J. Teague, Peter A. Ericksen, Donald W. Sherker
  • Patent number: 11715099
    Abstract: A method for processing a trust-based transaction via a blockchain includes: receiving data associated with a proposed trust-based transaction including at least a transaction amount, payment data, and a broker identifier; processing payment for the transaction amount using the payment data; identifying a blockchain address associated with a broker corresponding to the broker identifier; generating a digital token, wherein the digital token is unique to the proposed trust-based transaction; electronically transmitting the generated digital token to a first computing device; and electronically transmitting at least the transaction amount, blockchain address, and at least one of: the generated digital token and data used to generate the generated digital token to a node associated with a blockchain network.
    Type: Grant
    Filed: December 20, 2017
    Date of Patent: August 1, 2023
    Assignee: MASTERCARD INTERNATIONAL INCORPORATED
    Inventors: Lauren Grendon, Mamadou Alpha Barry, Edgar Marques, Julie Eloge Eboutou, Valerie Gann
  • Patent number: 11709925
    Abstract: Embodiments herein describe using visual passwords to control access to secure information. When a user attempts to access the secure information, she can provide her username to an authentication agent which identifies the visual password corresponding to the received username and selects a first set of images that contains the visual password and a second set of images that does not. The first and second sets of images are then transmitted to a user device. The user device can display the first and second sets of images to the user who selects which images have the visual password. An indication of which images the user selected is then transmitted to the authentication engine which determines whether the user selected all the images in the first set and none of the images in the second set. If so, the user is granted access to the secure information.
    Type: Grant
    Filed: September 27, 2018
    Date of Patent: July 25, 2023
    Assignee: Amazon Technologies, Inc.
    Inventors: Tristan Bellman-Greenwood, Brian Connolly, Zachary Philip Wilson
  • Patent number: 11709921
    Abstract: Methods and systems for verifying a user's identity on a computing device using two-factor authentication are described. More particularly, the system can use a personal identification number input by a user, together with one or more of a secure browsing feature, a device fingerprint, and a token generator to authenticate the user on the computer.
    Type: Grant
    Filed: November 19, 2021
    Date of Patent: July 25, 2023
    Assignee: UNITED SERVICES AUTOMOBILE ASSOCIATION (USAA)
    Inventors: Richard A. Davey, Wilbert Bennett, Jr.
  • Patent number: 11706591
    Abstract: Systems and methods are provided for providing, by a user equipment, a short message service (SMS) message to initiate Wi-Fi onboarding to a mobile network, receiving, by the user equipment, a binary SMS message including a request for a certificate signing request by a server, generating, by the user equipment, the certificate signing request based on the request for the certificate signing request of the binary SMS message, providing, by the user equipment, the certificate signing request to the mobile network, and receiving, by the user equipment, a binary SMS message including Wi-Fi login data based on the certificate signing request provided to the mobile network.
    Type: Grant
    Filed: June 8, 2020
    Date of Patent: July 18, 2023
    Assignee: Cisco Technology, Inc.
    Inventors: Anand Oswal, Rajesh S. Pazhyannur, Arun G. Khanna
  • Patent number: 11699149
    Abstract: Methods and systems are disclosed for enabling the creation of substitute low-value token creation, comprising providing software content to a content delivery network wherein, when transmitted to a user browser, the software content is configured to enable the user browser to create a substitute low-value token if a token service is unavailable, wherein the content delivery network is configured to provide the software content to at least one user browser, and receiving the substitute low-value token from a merchant system, the substitute low-value token having been generated by the user browser in response to the user browser being unable to obtain a low-value token from the token service.
    Type: Grant
    Filed: December 17, 2021
    Date of Patent: July 11, 2023
    Assignee: Worldpay, LLC
    Inventor: Stefan K. Karaivanov