Tokens (e.g., Smartcards Or Dongles, Etc.) Patents (Class 726/9)
  • Patent number: 10333980
    Abstract: Established user habits in carrying multiple wirelessly detectable devices are used to provide or substantiate authentication. In some embodiments, simply detecting that expected devices are co-located within a limited spatial region is sufficient to establish that the devices are being carried by a single individual. In other embodiments, particularly where the potential for spoofing by multiple individuals is a concern, single-user possession of the devices may be confirmed by various corroborative techniques. This approach affords convenience to users, who may be working at a device that lacks the necessary modality (e.g., a fingerprint or vein reader) for strong authentication.
    Type: Grant
    Filed: November 19, 2015
    Date of Patent: June 25, 2019
    Assignee: IMPRIVATA, INC.
    Inventors: David M. T. Ting, Alain Slak, Kyle Vernest
  • Patent number: 10320781
    Abstract: Systems and methods are provided which allow computer programs or other entities to share user data and information so that users may be authenticated and their preferences shared among entities in networked environments and machines. Cryptographic credentials are generated for these purposes. While the credentials can be shared to provide entities with user authentication and preference data, a salient feature of the sharing technology is that the user is always in control of, and integral to, the sharing protocol. Moreover, the sharing preserves the privacy of the user's data.
    Type: Grant
    Filed: March 31, 2017
    Date of Patent: June 11, 2019
    Assignee: Sensoriant, Inc.
    Inventor: Shamim A. Naqvi
  • Patent number: 10321310
    Abstract: A system and method are disclosed for use of a passive sensor within a mobile device as a separate authentication mechanism to exchange a secure key with a desired network. A network access point presents an encoded bit stream via an audio signal over an audio channel or a video signal within a video presentation. Each signal type is configured for reception by a passive sensor on the mobile device. This received information would be used to generate the private key within the mobile device for encrypting the wireless communication channel. Only mobile devices within audio or visual range of the presentation may be authenticated and thus securely connected to the network.
    Type: Grant
    Filed: June 4, 2013
    Date of Patent: June 11, 2019
    Assignee: Rockwell Collins, Inc.
    Inventors: James L. Scheer, Raymond A. Kamin
  • Patent number: 10313877
    Abstract: A method for facilitating participation of an intermediary network device in a security gateway communication including: establishing a secure channel between the intermediary network device and a security gateway; transmitting a virtual machine instantiation command generated by software running in the security gateway to the intermediary network device; instantiating a virtual machine on the intermediary network device; when establishing a secure communication session between the at least one base station and the core network portion via the security gateway for the first time, establishing an Internet Key Exchange communication between the virtual machine and the security gateway and transmitting session keys from the security gateway to the virtual machine during the Internet Key Exchange communication; establishing an IPsec tunnel between the virtual machine and the security gateway.
    Type: Grant
    Filed: May 12, 2016
    Date of Patent: June 4, 2019
    Assignee: ADVA Optical Networking SE
    Inventors: Andrew Sergeev, Evgeny Zemlerub, Eyal Ben-Sa'adon
  • Patent number: 10305770
    Abstract: A uniform protocol can facilitate secure, authenticated communication between a controller device and an accessory device that is controlled by the controller. An accessory and a controller can establish a pairing, the existence of which can be verified at a later time and used to create a secure communication session. The accessory can provide an accessory definition record that defines the accessory as a collection of services, each service having one or more characteristics. Within a secure communication session, the controller can interrogate the characteristics to determine accessory state and/or modify the characteristics to instruct the accessory to change its state.
    Type: Grant
    Filed: February 15, 2018
    Date of Patent: May 28, 2019
    Assignee: Apple Inc.
    Inventors: Kevin P. McLaughlin, Andrew Burks, Srinivas Rama, Anush Nadathur, Joe Abuan, Bob Bradley, Craig Dooley, Gregg Golembeski, Jr., Arun Mathias
  • Patent number: 10285627
    Abstract: An action recognition system is illustrated. The action recognition system has an annular body, at least one light emitting unit, at least one light sensing unit and an action recognition module. The annular body is worn on a movable part of a user. One end of the light emitting unit is exposed on an inner side of the annular body, wherein the light emitting unit emits a first light beam illuminating at least a portion of the movable part. One end of the light sensing unit is exposed on the inner side of the annular body. The light sensing unit operatively senses a second light beam reflected by the at least portion of the movable part and generates a light sensing signal. The action recognition module is configured to operatively determine an action of the user according to the light sensing signal.
    Type: Grant
    Filed: April 15, 2015
    Date of Patent: May 14, 2019
    Assignee: PIXART IMAGING INC.
    Inventors: Ren-Hau Gu, Chung-Wen Lo
  • Patent number: 10291719
    Abstract: A system comprising a processor and a memory storing instructions that, when executed, cause the system to create a first identifier associated with a first user and including profile information of the first user; determine a second identifier associated with the first user and with an application, the second identifier including a subset of the profile information of the first user; receive an interaction request from a second user, the interaction request including a third identifier associated with the first user; associate the third identifier with the first identifier associated with the first user and the application; enable the interaction between the first user and the second user on the application; and provide for display to the second user information associated with the first user based on the second identifier.
    Type: Grant
    Filed: October 21, 2016
    Date of Patent: May 14, 2019
    Assignee: Google LLC
    Inventors: NeilFred Picciotto, Roderick Adonis Chavez, Sean Edward Purcell
  • Patent number: 10282525
    Abstract: An information processing system including at least one information processing apparatus includes an access control unit configured to receive a request from a service use apparatus to a service providing apparatus, to give, in a case where the request includes information of a completed authentication, based on setup information in which a type of giving information to be given to the request is set, the giving information of the type set in the setup information, and to send the request to the service providing apparatus; and an information providing unit configured to administer the giving information corresponding to the information of the completed authentication, and to provide the giving information corresponding to the information of the completed authentication received from the access control unit to the access control unit.
    Type: Grant
    Filed: October 27, 2015
    Date of Patent: May 7, 2019
    Assignee: Ricoh Company, Ltd.
    Inventors: Shigeki Kashiyama, Masato Nakajima, Hiroki Ohzaki, Yasuharu Fukuda
  • Patent number: 10269003
    Abstract: A system and method for performing a financial transaction may include processing a purchase transaction for products for purchase by a customer to determine a transaction amount. A communication with a mobile device of the customer may include communicating a store identifier, POS identifier, and the transaction amount. In response to receiving an approval number for the purchase transaction from a financial institution of the customer, completing the purchase transaction for the purchase of the products by the customer.
    Type: Grant
    Filed: July 21, 2017
    Date of Patent: April 23, 2019
    Assignee: Walmart Apollo, LLC
    Inventors: Tim Webb, Jason Todd
  • Patent number: 10271213
    Abstract: Methods and apparatus for managing access control clients (e.g., electronic Subscriber Identity Modules (eSIMs)). In one embodiment, secure elements (e.g., electronic Universal Integrated Circuit Cards (eUICCs)) and management entities of secure elements are associated with credentials. Post-deployment managerial operations can be executed, by transmitting the requested operation with the appropriate credentials. For example, a device can receive secure software updates to electronic Subscriber Identity Modules (eSIMs), with properly credentialed network entities.
    Type: Grant
    Filed: May 4, 2012
    Date of Patent: April 23, 2019
    Assignee: Apple Inc.
    Inventors: David T. Haggerty, Jerrold Von Hauck, Kevin McLaughlin, Audra Liu
  • Patent number: 10264026
    Abstract: The disclosed embodiments include systems and methods for dynamically managing privileged access for non-privileged accounts. Operations may include receiving a request from a computer device associated with a network account to access a privileged resource, wherein the network account lacks any privileged account membership enabling the network account to access the privileged resource. Operations may include authenticating the network account, and assigning, based on the authentication, privileged on-demand membership for the network account, wherein the privileged on-demand membership enables the network account to access the privileged resource. Operations may also include identifying that the network account should no longer have access to the privileged resource, and removing, based on the identification, the privileged on-demand membership for the network account.
    Type: Grant
    Filed: July 24, 2017
    Date of Patent: April 16, 2019
    Assignee: CyberArk Software Ltd.
    Inventors: Dima Barboi, Boris Spivak, Yair Sade
  • Patent number: 10257341
    Abstract: Methods and systems are provided for establishing an interaction session between a visual interface on any of a wide range of devices (e.g., POS, ATM, computer, television, or other visual display) and a smartphone having a camera by using the smartphone camera to scan or capture a special image (e.g., a QR code) presented on the visual interface. The special image serves as a token mark that can graphically encode information about the visual interface and the operator or owner of the device presenting the visual interface. Upon scanning the token mark, an application on the smartphone may establish a connection between the application and a server in communication with the visual interface. The application may then present some of actions provided by the visual interface on the smartphone display so that the user can select actions using the smartphone with the selected actions being performed on the visual interface.
    Type: Grant
    Filed: November 1, 2013
    Date of Patent: April 9, 2019
    Assignee: eBay Inc.
    Inventor: Ievgenii Ivashyn
  • Patent number: 10257167
    Abstract: Embodiments presented herein disclose a VPN service which includes a cluster of VPN appliances that requires only an eventually consistent database to share VPN session data among cluster nodes. Doing so provides a VPN service that can scale both horizontally (i.e., the VPN service can support large numbers of VPN appliances) as well as geographically (i.e., nodes of the cluster do not need to be physically proximate to one another in order to satisfy latency requirements). Thus, the VPN service can provide regional endpoints to VPN clients that do not share common points of failure or administrative burdens.
    Type: Grant
    Filed: June 21, 2016
    Date of Patent: April 9, 2019
    Assignee: Amazon Technologies, Inc.
    Inventors: Nicholas Channing Matthews, Bashuman Deb
  • Patent number: 10243747
    Abstract: A manufacturer of computing equipment may generate a signature for computing equipment by measuring various attributes of the computing equipment, such as the impedance across circuits included in the computing equipment. Verification equipment may be provided to a recipient of the computing equipment. The verification equipment may be configured to generate a signature of the computing equipment over a physical connection between the verification equipment and the computing equipment. A determination may be made whether the computing equipment has been tamper with based at least in part on the signature generated by the manufacturer and the signature generated by the recipient.
    Type: Grant
    Filed: January 18, 2018
    Date of Patent: March 26, 2019
    Assignee: AMAZON TECHNOLOGIES, INC.
    Inventors: Harsha Ramalingam, Jesper Mikael Johansson, Jon Arron McClintock
  • Patent number: 10235510
    Abstract: A wearable device includes: a sensor configured to capture a vein image of a user; and a processor configured to control the sensor to capture the vein image of the user wearing the wearable device when a function or an application is selected, identify the user by comparing the captured vein image with at least one registered vein image, and execute the function or the application when the user has execution authority.
    Type: Grant
    Filed: July 29, 2015
    Date of Patent: March 19, 2019
    Assignee: SAMSUNG ELECTRONICS CO., LTD.
    Inventors: In-kuk Yun, Je-in Yu, Dae-kwang Jung
  • Patent number: 10237267
    Abstract: The present invention relates to the field of mobile communications technologies, and in particular, to a right control method, a client, and a server, so as to resolve a technical problem in the prior art that there is no method that can better control a right of a user. In embodiments of the present invention, the server can send right information corresponding to a login account to the client, so that the client controls access right of the login account, which does not cause too much burden on the server; a manner is more direct in which the client controls the access right of the login account, thereby reducing control time and generating higher control efficiency.
    Type: Grant
    Filed: April 15, 2014
    Date of Patent: March 19, 2019
    Assignee: Huawei Technologies Co., Ltd.
    Inventor: Ting Li
  • Patent number: 10235854
    Abstract: A system and method for determining tailgating of users in a frictionless access control system are disclosed. The access control system includes a positioning unit that tracks locations of users carrying user devices relative to an access point of a premises, where the user devices transmit user information identifying the users via wireless signals. The access control system then determines whether the users are authorized to pass through the access point based on the wireless signals from the user devices and determines whether non-authorized users are tailgating through the access point with authorized users. In embodiments, the system can also determine tailgating of the users in response to analyzing video data of a scene including the users, where the video data is generated by a video camera positioned to capture the users when the users are within the threshold area.
    Type: Grant
    Filed: May 20, 2016
    Date of Patent: March 19, 2019
    Assignee: Sensormatic Electronics, LLC
    Inventor: James Trani
  • Patent number: 10225242
    Abstract: Techniques are disclosed relating to automating permission requests, e.g., in the context of multi-factor authentication. In some embodiments a mobile device receives permission requests that specify sets of one or more automation criteria. In some embodiments, the mobile device prompts a user for a response to permission requests when the criteria are not met and automatically responds to permission requests (e.g., without requiring user input) when the criteria are met. Disclosed techniques may increase authorization security while reducing user interaction for multi-factor authentication, in some embodiments.
    Type: Grant
    Filed: September 9, 2015
    Date of Patent: March 5, 2019
    Assignee: salesforce.com, inc.
    Inventors: Evan Tyler Grim, Josh Alexander
  • Patent number: 10223549
    Abstract: Techniques are disclose herein for facilitating secure user access to resources without user-provided credentials. More specifically, the techniques described herein eliminate the need for end users to remember and provide privileged resource authentication information (e.g., credentials) at the time of resource access. The system accepts and securely stores registration information for accessing privileged resources during a registration process. As discussed herein, the registration information can include identification and authentication information for each privileged resource. The authentication process can also include registration of one or more secondary authentication devices that are used to verify the identity of the end user in lieu of the end user providing credentials.
    Type: Grant
    Filed: December 16, 2015
    Date of Patent: March 5, 2019
    Assignee: Onion ID Inc.
    Inventor: Anirban Banerjee
  • Patent number: 10225264
    Abstract: Techniques are disclosed relating to automating permission requests, e.g., in the context of multi-factor authentication. A mobile device may display an option to allow a user to automate responses to future permission requests to perform an action. The mobile device may automatically respond to subsequent permission requests based on at least one automation criterion. The action may include login, transaction approval, physical access, vehicle ignition, account recovery, etc. The automation criteria may include location, acceleration, velocity, wireless connectivity, proximity to another device, temperature, lighting, noise, time, biometrics, altitude, pressure, image characteristics, etc. Disclosed techniques may increase authorization security while reducing user interaction for multi-factor authentication, in some embodiments.
    Type: Grant
    Filed: September 9, 2015
    Date of Patent: March 5, 2019
    Assignee: salesforce.com, inc.
    Inventors: Evan Tyler Grim, Josh Alexander
  • Patent number: 10219157
    Abstract: A first mobile device securely transmits selected verified attributes concerning the corresponding user to a second mobile device. The first device broadcasts verified, signed biometric information concerning its user, and the user's public key. The second device confirms the received broadcasted biometric information, based on sensor input. For example, sensors on the second device generate images of the first user, who is physically proximate, and information gleaned from the images is compared to broadcasted biometric information. In response to confirming the broadcasted biometric information, the second device transmits a request to establish a secure channel, and both devices generate a session key. The first device selects specific verified attributes to provide to the second device, based on context, policy and/or user directive. The first device then encrypts the attributes using the session key, and transmits them to the second device. The second device receives and decrypts the attributes.
    Type: Grant
    Filed: October 5, 2016
    Date of Patent: February 26, 2019
    Assignee: SYMANTEC CORPORATION
    Inventors: Kevin Jiang, Ilya Sokolov
  • Patent number: 10216935
    Abstract: A mobile device is made resistant to malware. Wireless mobile devices are paired with short-distance wireless technology to separate user gadgets like keyfobs. Two or more pieces of security passwords are escrowed separately amongst the physically distinct devices. Neither the mobile device nor its matching keyfob store or keep entire passwords.
    Type: Grant
    Filed: December 30, 2017
    Date of Patent: February 26, 2019
    Assignee: Intersections Inc.
    Inventors: Mark Abene, Mojtaba Cazi, Konstantin Bokarius, Henry Yei
  • Patent number: 10218678
    Abstract: A method, system, and apparatus for providing a client access to third-party resources by utilizing third-party access tokens via a network gateway. The method can prevent the third-party access tokens from being exposed directly to the client environment. The client receives a gateway security credential, which encapsulates the third-party access token in an encrypted form. The client provides the gateway access token to the network gateway where the third-party access token is decrypted and then used to access the third-party resource. Client requests to the network gateway are executed using a custom API. The gateway relays the client requests to the appropriate third-party resources using the third-party-specific API with the decrypted third-party access token. Gateway access tokens are short-lived and can be renewed according to the client-environment life cycle.
    Type: Grant
    Filed: March 15, 2018
    Date of Patent: February 26, 2019
    Assignee: CITRIX SYSTEMS, INC.
    Inventors: Robert Emer Broadbent, Tyrone F. Pike
  • Patent number: 10218659
    Abstract: A token for a webclient in communication with an HTTP server to access an email system is stored at a database by the HTTP server. If the HTTP server is unexpectedly unavailable, a backup HTTP server that next interacts with the webclient can locate the token for the webclient using identifying information for the webclient to locate a record in the database containing the token. The backup HTTP server can then provide seamless access to the email system for the webclient despite the loss of connectivity to the initial HTTP server.
    Type: Grant
    Filed: July 28, 2017
    Date of Patent: February 26, 2019
    Assignee: Amazon Technologies, Inc.
    Inventors: Ivo van Doorn, Daniel Christianto, Simon Arthur Koster
  • Patent number: 10212588
    Abstract: Techniques are disclosed relating to automating permission requests, e.g., in the context of multi-factor authentication. In some embodiments, based on a change in one or more automation criteria (e.g., based on a mobile device entering a particular geographic region) a mobile device is configured to preemptively indicate to an authorization system to automatically authorize a subsequent attempt to perform an action, without transmitting the permission request to the mobile device. The mobile device may later revoke the preemptive permission request, e.g., based on another change in automation criteria. Disclosed techniques may increase authorization security while reducing user interaction for multi-factor authentication, in some embodiments.
    Type: Grant
    Filed: September 9, 2015
    Date of Patent: February 19, 2019
    Assignee: salesforce.com, inc.
    Inventors: Evan Tyler Grim, Josh Alexander
  • Patent number: 10212644
    Abstract: Methods and devices of authentication via user behavior for use in a mobile device. The method may include initiating an authentication via user behavior for an application transaction process and suspending the application transaction process before the authentication is successful; acquiring the latest radio frame from a beacon and determining a distance parameter based on the radio frame after the authentication is initialized; determining whether a specified distance condition is satisfied for the beacon and the mobile device; and in response to a determination that the specified distance condition is satisfied for the beacon and the mobile device, determining that the authentication is successful and resuming the application transaction process that was suspended previously.
    Type: Grant
    Filed: February 28, 2017
    Date of Patent: February 19, 2019
    Assignee: Alibaba Group Holding Limited
    Inventors: Sen Wang, Yunjiao Yao
  • Patent number: 10205717
    Abstract: Systems and methods are described for providing federated access to end-users of virtual machines. The method includes receiving a request from a user to access a resource outside of the user's original security domain. The user's existing security credentials are forwarded to an authentication entity, which determines if the user's credentials are authentic. If it is determined that the user's credentials are authentic, the user's target identity provider generates a security token that provides the virtual machine user with access to the resource, the resource residing in an external security domain. The user may log on to the virtual machine with access to the desired resource, subject to the privileges identified in the security token.
    Type: Grant
    Filed: April 1, 2013
    Date of Patent: February 12, 2019
    Assignee: AMAZON TECHNOLOGIES, INC.
    Inventors: Shon Kiran Shah, Ajit Nagendra Padukone, Deepak Suryanarayanan, Erik Jonathon Tellvik, David Everard Brown
  • Patent number: 10200380
    Abstract: A system for providing layered security is disclosed. In particular, the system may include determining a state of a first device of a device ecosystem and a state of a second device of the device ecosystem. Based on the states of the first and second devices, the system may include calculating a confidence score for the device ecosystem. If the confidence score satisfies a threshold score for enabling access to a selected system, the system may include transmitting an access code to the device ecosystem. Based on the access code, the system may enable the device ecosystem to access the selected system. If, however, the confidence score does not satisfy the threshold score, the system may include requiring the device ecosystem to provide additional authentication information in order to access the selected system.
    Type: Grant
    Filed: December 16, 2015
    Date of Patent: February 5, 2019
    Assignee: AT&T Intellectual Property I, L.P.
    Inventors: Steven Belz, James H. Pratt, Marc A. Sullivan
  • Patent number: 10200863
    Abstract: Some implementations may provide a method to have a user authenticated at a point of service. The method includes: accessing, by a target system, a multi-dimensional symbol rendered on a display of a mobile computing device of the user, the multi-dimensional symbol encoding endpoints and actions for the target system to perform in order to request and authenticate an identity of a user; decoding data in the multi-dimensional symbol to retrieve an identity token plus information about the authentication actions and the user's identity system; requesting the corresponding authentication actions of the user's identity system to include specific authentication measures for the user to perform as well as data for the user to release; and performing the authentication actions as requested and encoded in the multi-dimensional symbol such that the physical identity of the user of the mobile computing device is verified and the user consents to release the requested identity information at the point of service.
    Type: Grant
    Filed: October 12, 2017
    Date of Patent: February 5, 2019
    Assignee: MorphoTrust USA, LLC
    Inventors: A. David Kelts, Timothy J. Brown
  • Patent number: 10193880
    Abstract: The disclosed computer-implemented method for registering user accounts with multi-factor authentication schemes used by online services may include (1) determining that a user is associated with an account with an online service that allows the user to register the account with an MFA scheme that requests the user to complete multiple authentication steps before being allowed to access the account, (2) identifying, based on an analysis of the online service, at least a portion of the information that is requested by the online service to register the account with the MFA scheme, and (3) providing the requested information to the online service such that the account is registered with the MFA scheme. Various other methods, systems, and computer-readable media are also disclosed.
    Type: Grant
    Filed: September 9, 2015
    Date of Patent: January 29, 2019
    Assignee: Symantec Corporation
    Inventors: Kevin Jiang, Ilya Sokolov
  • Patent number: 10187676
    Abstract: In response to a user reserving a vehicle via a first application on a user's mobile device, a first server authorizes a transportation service provider to access media items associated with the user's account for a media content provider. The authorizing includes receiving a first identifier generated by a second application on the mobile device, generating a second identifier if the first identifier is valid, and sending the second identifier to a second server associated with the transportation service provider. A request, initiated via the second application, is received to present a first media item at a media presentation system of the reserved vehicle. In response, a portion of the first media item is sent for presentation at the media presentation system if a device in communication with the media presentation system has received the second identifier.
    Type: Grant
    Filed: June 1, 2016
    Date of Patent: January 22, 2019
    Assignee: Spotify AB
    Inventors: Johnson Lieu, Erik Hartwig
  • Patent number: 10187381
    Abstract: A device and method for online activation of a mobile terminal token related to cloud authentication management is disclosed. The method generally includes: a first activation request sent by the cloud authentication management platform, the cloud authentication server generates a first activation response and sends same to the cloud authentication management platform; the cloud authentication management platform sends the first activation response to the terminal; when the mobile terminal token obtains the first activation response, the token accesses the cloud authentication server and establishes a network data link; the mobile terminal token and the cloud authentication server send data and carry out activation.
    Type: Grant
    Filed: November 23, 2015
    Date of Patent: January 22, 2019
    Assignee: Feitian Technologies Co., Ltd.
    Inventors: Zhou Lu, Huazhang Yu
  • Patent number: 10178549
    Abstract: Systems and methods for providing authentication key agreement (AKA) with perfect forward secrecy (PFS) are disclosed. In one embodiment, a network according to the disclosure may receive an attach request from a UE, provide an authentication request including a network support indicator to a network resource, receive an authentication token from the network resource, such that the authentication token includes an indication that a network supports PFS, provide the authentication token to the UE, receive an authentication response including a UE public key value, obtain a network public key value and a network private key value, determine a shared key value based on the network private key value and the UE public key value, bind the shared key value with a session key value to create a bound shared key value, and use the bound shared key value to protect subsequent network traffic.
    Type: Grant
    Filed: September 19, 2017
    Date of Patent: January 8, 2019
    Assignee: QUALCOMM Incorporated
    Inventor: Anand Palanigounder
  • Patent number: 10158489
    Abstract: An access management system is disclosed that can provide access to resources by password-less authentication. The access management system can provide multiple layers of security for authentication taking into account risk factors (e.g., device, location, etc.) to ensure authentication without compromising access. Contextual details of a user based on a mobile device can be used for authentication based on possession of a device. Password-less authentication of a user may be enabled by registration of devices and/or a location (e.g., a geographic location) as trusted. Security data embedded with encrypted data can be sent to a first device for password-less authentication of a user at the device. A second device registered with the user can obtain the security data from the first device. The second device can decrypts the data and send the decrypted data to the access management system for verification to enable password-less authentication at the first device.
    Type: Grant
    Filed: October 21, 2016
    Date of Patent: December 18, 2018
    Assignee: Oracle International Corporation
    Inventors: Venugopal Padmanabhan Shastri, Sreenivasa R. Chitturi, Vamsi Motukuru, Mandar Bhatkhande, Sunil Kumar Joshi
  • Patent number: 10158996
    Abstract: Apparatuses and methods in a communication system are provided. The solution includes communicating with a communication system as authentic and authorized user equipment; storing information on another user equipment and communicating with the communication system to authorize the access of another user equipment to the communication system.
    Type: Grant
    Filed: October 10, 2013
    Date of Patent: December 18, 2018
    Assignee: Nokia Solutions and Networks Oy
    Inventors: Vinh Van Phan, Ling Yu, Kari Veikko Horneman
  • Patent number: 10152553
    Abstract: A method for dynamically presenting webpage information and the related systems are disclosed. The method includes: receiving an instruction to invoke a dynamic webpage including first account information; sending an information acquisition instruction to each designated online social platform according to second account information, which corresponds to the first account information, of each designated online social platform; receiving data returned by each designated online social platform and performing format conversion on the data, so as to convert the data into data in a designated data format; and integrating the data in a converted format and of each designated online social platform into a complete data list and displaying the integrated data list. According to the solutions of the present disclosure, when webpage information of multiple online social platforms needs to be viewed, it is unnecessary to separately log in to multiple account numbers for viewing.
    Type: Grant
    Filed: June 22, 2015
    Date of Patent: December 11, 2018
    Assignee: TENCENT TECHNOLOGY (SHENZHEN) COMPANY LIMITED
    Inventors: Zihao Chen, Huantong Liu, Qiang Tu
  • Patent number: 10152837
    Abstract: A system and method for reading a credential for an access system is provided. The system may include a plurality of readers, link coupling assemblies and a read head housing a plurality of credential pickup coils of the link coupling assemblies. When a user places a credential, the plurality of readers, via link coupling, determines whether the credential utilizes the same modulation technology, and the reader which utilizes the same modulation technology reads the credential, thereafter determining whether or not to grant the user access.
    Type: Grant
    Filed: December 29, 2016
    Date of Patent: December 11, 2018
    Inventor: George Mallard
  • Patent number: 10148638
    Abstract: An authentication server system issues a first-type token for verification of whether a user operating a terminal is a valid user and a second-type token for verification of whether a service is usable with authority transferred to an authorized client cooperating with the service, verifies, based on a token received with a verification request and a scope regardless of a type of the issued token, and notifies a verification result.
    Type: Grant
    Filed: June 7, 2016
    Date of Patent: December 4, 2018
    Assignee: CANON KABUSHIKI KAISHA
    Inventor: Yu Tamura
  • Patent number: 10142309
    Abstract: Various embodiments of the present technology enable users to sign in to an account without a password. For example, when receiving a request to register a device with an account, a user can be prompted to enter their email address. In response, two tokens are generated. A first token is sent to a client application on the device and the second token is sent to the user's email. The user can then only login to their account with the device if the device has both tokens. Thus, if someone intercepts the email, they will be unable to login from another device since they don't have the first token. If the client token and email token cannot be automatically joined on the same device, a web page showing a code can be displayed on a first device, which can be entered on the second device to finish login process.
    Type: Grant
    Filed: December 19, 2014
    Date of Patent: November 27, 2018
    Assignee: DROPBOX, INC.
    Inventors: Josh Kaplan, Adam Cook, Stephen Poletto, Thomas Wright, Luke Faraone
  • Patent number: 10129236
    Abstract: A determination apparatus according to an embodiment includes a receiving unit, an acquisition unit, and a determination unit. The receiving unit receives a request for authentication of identity of a user who uses a terminal device. The acquisition unit acquires context information that is information indicating a context of the terminal device. The determination unit performs determination related to authentication requested by the terminal device, on the basis of the context information acquired by the acquisition unit. For example, the determination unit determines whether an authentication procedure for an authentication request received by the receiving unit is needed on the basis of a change between context information that is acquired upon reception of an authentication request by the receiving unit and context information that has been acquired upon reception of a past authentication request.
    Type: Grant
    Filed: July 21, 2016
    Date of Patent: November 13, 2018
    Assignee: YAHOO JAPAN CORPORATION
    Inventors: Hidehito Gomi, Teruhiko Teraoka
  • Patent number: 10127791
    Abstract: The processing and management of IoT events, in a manner that provides an intuitive and user-friendly design pattern, is described, and may include determining a set of IoT events, corresponding to a set of IoT devices, wherein an IoT event for a particular IoT device corresponds to a state or change of state of the received data for the particular IoT device. User-defined triggers may be evaluated, in which each of the triggers include a conditional expression that is evaluated using one or more of the IoT events. The triggers may generate alerts, which may be routed to a target which determines the actions that may be performed.
    Type: Grant
    Filed: March 7, 2017
    Date of Patent: November 13, 2018
    Assignee: Verizon Patent and Licensing Inc.
    Inventors: Ira Stevens, William D. Walker, William J. Hayes
  • Patent number: 10122648
    Abstract: Systems and methods for allocating and tracking resource distributions are disclosed herein. An example method includes: assigning, to at least two resource providers (e.g., an educational foundation and/or a civic organization, etc.) that are each associated with a resource recipient (e.g., a teacher or a user), access rights to receive information about resource allocation events associated with the resource recipient. The method also includes: detecting occurrence of a resource allocation event that is associated with the resource recipient and, in response to detecting the occurrence, storing information about the resource allocation event in a database. The method further includes: generating a plurality of reports based on the stored information in the database, the plurality of reports including at least two unique reports, one report for each of the at least two resource providers based on respective assigned access rights associated with each of the at least two resource providers.
    Type: Grant
    Filed: August 22, 2016
    Date of Patent: November 6, 2018
    Assignee: CLASSWALLET
    Inventors: Neil Steinhardt, James Rosenberg, Ronald Butler
  • Patent number: 10120734
    Abstract: In some examples, an application programming interface (API) and services engine is configured to determine, in response to receiving a service request from an application, an application identifier for the service request based at least on an authorization token included in the service request, wherein the application identifier identifies an application that issued the service request; select, based at least on the application identifier, an application data store uniquely associated with the application that issued the service request; and process the service request using data stored by the selected application data store.
    Type: Grant
    Filed: August 29, 2016
    Date of Patent: November 6, 2018
    Assignee: Equinix, Inc.
    Inventors: Vijaay Doraiswamy, Ramchandra Jayateerth Koty, Purvish Purohit, Mahendra Malviya, Mohit Mathur, Darel P. Lasrado, Manikandan Kaliyaperumal, Premkumar Soman
  • Patent number: 10114940
    Abstract: An information processing system includes a storage unit that stores, with respect to each application, application identification information identifying the application for executing a series of processes in cooperation with an external service and information relating to the series of processes; a receiving unit that receives from a device connected to the information processing system, a request including first authentication information acquired by the device from an authentication infrastructure, the application identification information, and information relating to electronic data designated by a user at the device; an acquisition unit that acquires second authentication information for using the external service based on the first authentication information included in the received request; and an execution unit that executes a process on the electronic data based on the information relating to the series of processes associated with the application identification information included in the received
    Type: Grant
    Filed: February 23, 2016
    Date of Patent: October 30, 2018
    Assignee: Ricoh Company, Ltd.
    Inventors: Kazunori Sugimura, Yuuichiroh Hayashi, Kohsuke Namihira, Dongzhe Zhang
  • Patent number: 10110608
    Abstract: Methods and computer systems are used to authorize a transaction. In one aspect, the method includes, at a computer system with one or more processors and memory, receiving a message requesting a transaction of a first media content for display on the public display; detecting one or more devices in proximity to the first device; selecting a second device from the detected one or more devices based on a match of a first user account between the second device and the first device; sending a request for authorizing the transaction to the selected second device; receiving a response to the request for authorizing the transaction from the selected second device; and completing the transaction on the first device using transaction information of the first user account and stored at the first device.
    Type: Grant
    Filed: January 7, 2016
    Date of Patent: October 23, 2018
    Assignee: GOOGLE LLC
    Inventor: Vincent Dureau
  • Patent number: 10102364
    Abstract: A method and system for verifying both identification and presence of a related user is provided. The system includes an identification tag containing data associated with a single user, a reader for reading said data from the identification tag, communicating data received from the identification tag to the server, and a server configured for receiving the data sent by the reader, accessing a user record that corresponds to the user, determining whether the data it received is verified against data in the user record, and if said data is verified, then generating a URL and transmitting said URL to the reader over the communications network, wherein said URL includes a verification message.
    Type: Grant
    Filed: October 6, 2017
    Date of Patent: October 16, 2018
    Inventor: Michael Arthur George
  • Patent number: 10091653
    Abstract: The present invention relates to a method for forming a trust relationship among an MNO, an SM, and an eUICC in a communication system in which the SM is defined as an entity for managing the eUICC, as well as to an embedded UICC therefor.
    Type: Grant
    Filed: July 22, 2016
    Date of Patent: October 2, 2018
    Assignee: KT CORPORATION
    Inventor: Jin Hyoung Lee
  • Patent number: 10084760
    Abstract: Example implementations relate to secure messages for IoT devices. For example, a system for secure messages for IoT devices may include an IoT device coupled to a network including a plurality of web services. The IoT device may store a service certificate for each of the plurality of web services, generate a secure message for a web service among the plurality of web services using the stored service certificate for the web service, and send the secure message to the web service without first establishing a connection between the IoT device and the web service.
    Type: Grant
    Filed: March 11, 2016
    Date of Patent: September 25, 2018
    Assignee: Hewlett-Packard Development Company, L. P.
    Inventors: Laurent Pizot, John Cunningham, Stephen D. Panshin, Jefferson P. Ward
  • Patent number: 10083304
    Abstract: Technologies for information security include a computing device with one or more sensors. The computing device may authenticate a user and, after successful authentication, analyze sensor data to determine whether it is likely that the user authenticated under duress. If so, the computing device performs a security operation such as generating an alert or presenting false but plausible data to the user. Additionally or alternatively, the computing device, within a trusted execution environment, may monitor sensor data and apply a machine-learning classifier to the sensor data to identify an elevated risk of malicious attack. For example, the classifier may identify potential user identification fraud. The computing device may trigger a security response if elevated risk of attack is detected. For example, the trusted execution environment may trigger increased authentication requirements or increased anti-theft monitoring for the computing device. Other embodiments are described and claimed.
    Type: Grant
    Filed: February 28, 2017
    Date of Patent: September 25, 2018
    Assignee: Intel Corporation
    Inventors: Jasmeet Chhabra, Ned M. Smith, Micah J. Sheller, Nathan Heldt-Sheller
  • Patent number: 10079678
    Abstract: Embodiments of methods, systems, and storage medium associated with providing access to encrypted data for authorized users are disclosed herein. In one instance, the method may include obtaining a derived value for an authenticated user based on user personalization data of the authenticated user, and generating a user-specific encryption key based on the derived value. The derived value may have entropy in excess of a predetermined level. The user-specific encryption key may enable the authenticated user to access the encrypted data stored at the storage device. Other embodiments may be described and/or claimed.
    Type: Grant
    Filed: July 24, 2012
    Date of Patent: September 18, 2018
    Assignee: Intel Corporation
    Inventors: Ned M. Smith, George W. Cox, David Johnston