Tokens (e.g., Smartcards Or Dongles, Etc.) Patents (Class 726/9)
  • Patent number: 11329822
    Abstract: Embodiments of the invention are directed to systems and methods for validating transactions using a cryptogram. One embodiment of the invention is directed to a method of processing a remote transaction initiated by a communication device provisioned with a token. The method comprises receiving, by a service provider computer, from an application on the communication device, a request for a token authentication cryptogram, wherein the token authentication cryptogram includes encrypted user exclusive data. The service provider computer may generate the token authentication cryptogram to include the user exclusive data. The service provider computer may send the token authentication cryptogram to the application, where the token authentication cryptogram can be used to validate the transaction, and the user exclusive data is extracted from the token authentication cryptogram during validation.
    Type: Grant
    Filed: June 4, 2019
    Date of Patent: May 10, 2022
    Assignee: Visa International Service Association
    Inventors: Michael Cassin, Christian Flurscheim, Christopher Jones
  • Patent number: 11328115
    Abstract: A business-to-consumer (B2C) cloud service hosts web applications of various businesses as an instance of a cloud service. The B2C cloud service provides an identity management engine that manages the sign-in of consumers of the businesses to a respective cloud service. The identity management engine dynamically creates a security token for the sign-in request that includes claims customized for the hosted cloud service. The claims are based on directives provided by the business and obtained from the consumer via a user interface dynamically created by the identity management engine at a sign-in request.
    Type: Grant
    Filed: July 19, 2018
    Date of Patent: May 10, 2022
    Assignee: MICROSOFT TECHNOLOGY LICENSING, LLC.
    Inventors: John Araya, Muhammad Omer Iqbal, Raja Chau Vikram Kakumani
  • Patent number: 11321706
    Abstract: The invention provides a method that allows an issuer system, e.g. of a bank, to have generated a plurality of anonymous accounts and cards for working up a stock and to only personalize them individually if required. In the personalization step at the card issuer, e.g. in the bank branch, a printing of the back side does not have to be performed, instead all the necessary printing of the back side is already effected at the card manufacturer during the manufacturing of the anonymous card. As a result, a simple, low-cost printer without a back-side printing option can be utilized for the personalization of the anonymous card.
    Type: Grant
    Filed: March 21, 2018
    Date of Patent: May 3, 2022
    Assignee: GIESECKE+DEVRIENT MOBILE SECURITY GMBH
    Inventor: Christian Boelle
  • Patent number: 11321794
    Abstract: A server device includes a processor configured to i) acquire vehicle information when a delivery request is made; ii) acquire predetermined authentication information for unlocking and locking a door of a vehicle, based on the acquired vehicle information; iii) transmit the acquired predetermined authentication information to a delivery terminal; and iv) to acquire predetermined proof information for proving that a user of the vehicle is a rightful recipient of a delivery article, by communicating with a user terminal. The processor is configured to transmit the acquired predetermined authentication information to the delivery terminal, on a condition that the predetermined proof information is acquired.
    Type: Grant
    Filed: April 12, 2021
    Date of Patent: May 3, 2022
    Assignee: TOYOTA JIDOSHA KABUSHIKI KAISHA
    Inventors: Yasumasa Kobayashi, Ryuichi Suzuki, Yuki Ito, Hiroyasu Shiokawa, Naoki Yamamuro, Makoto Akahane
  • Patent number: 11316851
    Abstract: Systems, methods, and articles of manufacture comprising processor-readable storage media are provided for implementing security mechanisms for network environments. For example, a method includes collecting power consumption data of a plurality of devices operating within a network and determining trust scores for the plurality of devices based, at least in part, on the collected power consumption data. The trust score for a device provides a measure of trustworthiness of the device exhibiting normal operating behavior within the network. Each device is assigned to one of a plurality of trust tiers based on the determined trust scores, wherein each trust tier specifies an authentication level for devices assigned to the trust tier. One or more authentication procedures are applied to authenticate a given device operating within the network based on the authentication level specified by the trust tier to which the given device is assigned.
    Type: Grant
    Filed: June 19, 2019
    Date of Patent: April 26, 2022
    Assignee: EMC IP Holding Company LLC
    Inventors: Mohamed Sohail, Said Tabet
  • Patent number: 11310215
    Abstract: A system including a server and a first publisher node device is provided. The first publisher node device transmits a request including an authentication credential associated with the first publisher node device to the server and receives a response including authentication of the first publisher node device as a ticket processing client for a first transportation service. The first publisher node device captures, as the ticket processing client, an event associated with the first transportation service based on the received response and transmits, based on the captured event, a transaction request to a broker node device. The transaction request includes a transaction message and an authorization request to route the transaction message to a first subscriber node device of the MaaS network. The server receives the authorization request from the broker node device and authorizes the broker node device to route the transaction message based on the received authorization request.
    Type: Grant
    Filed: June 29, 2020
    Date of Patent: April 19, 2022
    Assignee: SONY GROUP CORPORATION
    Inventors: Sadayoshi Murao, Madhvesh Sulibhavi, Srinivasa Pingili
  • Patent number: 11308191
    Abstract: Methods of short-distance network electronic authentication are described.
    Type: Grant
    Filed: August 17, 2020
    Date of Patent: April 19, 2022
    Inventors: Oleksandr Senyuk, Habtamu Feyessa, Vladyslav Kozlovskyy, Petro Ladkin
  • Patent number: 11301857
    Abstract: Embodiments described herein disclose methods and systems for authorizing a payment card transaction using dynamic codes. The system can receive a request for authorization of a transaction using the payment card. The request can identify a verification code associated with the payment card and an identifier of the payment card, and the payment card can have an associated dynamic code accessible to a user via a channel. The verification code can be compared with a value of the dynamic code at the time of the transaction. The system can determine whether the user of the payment card accessed the channel within a time period prior to receiving the request for authorization. In response to the verification code matching the dynamic code at the time of the transaction and determining that the user accessed the channel within the time period prior to receiving the request, the system can authorize the transaction.
    Type: Grant
    Filed: July 26, 2018
    Date of Patent: April 12, 2022
    Assignee: UNITED SERVICES AUTOMOBILE ASSOCIATION (USAA)
    Inventor: Patrick Adam
  • Patent number: 11301569
    Abstract: A method includes: after installation of software on a first mobile device, receiving new data from a second mobile device; analyzing, using a data repository, the new data to provide a security assessment; determining, based on the security assessment, a new security threat associated with the software; and in response to determining the new security threat, causing the first mobile device to implement a quarantine of the software.
    Type: Grant
    Filed: March 7, 2019
    Date of Patent: April 12, 2022
    Assignee: Lookout, Inc.
    Inventors: Timothy Micheal Wyatt, William Neil Robinson, Brian James Buck, Alex Richard Gladd
  • Patent number: 11295741
    Abstract: A system and method are disclosed capable of parsing a spoken utterance into a natural language request and a speech audio segment, where the natural language request directs the system to use the speech audio segment as a new wakeword. In response to this wakeword assignment directive, the system and method are further capable of immediately building a new wakeword spotter to activate the device upon matching the new wakeword in the input audio. Different approaches to promptly building a new wakeword spotter are described. Variations of wakeword assignment directives can make the new wakeword public or private. They can also add the new wakeword to earlier wakewords, or replace earlier wakewords.
    Type: Grant
    Filed: December 5, 2019
    Date of Patent: April 5, 2022
    Assignee: SoundHound, Inc.
    Inventor: Bernard Mont-Reynaud
  • Patent number: 11290451
    Abstract: An information processing apparatus includes: an instruction unit configured to instruct an image processing apparatus to request a management server to issue identification information; an identification information obtaining unit configured to obtain, from the image processing apparatus, the identification information issued to the image processing apparatus by the management server; an identification information transmission unit configured to transmit the obtained identification information to a service provision server; a request reception unit configured to receive a request to transmit user information necessary for using a predetermined service from the service provision server as a response to the transmission of the identification information; and a user information transmission unit configured to transmit the user information to the service provision server in response to the received transmission request.
    Type: Grant
    Filed: June 21, 2018
    Date of Patent: March 29, 2022
    Assignee: CANON KABUSHIKI KAISHA
    Inventor: Toshinori Igari
  • Patent number: 11281765
    Abstract: A method of managing tokens is provided. The method includes receiving, by a token management system from a user device, a request from a user to register a token with the token management system. The token is associated with the user and is stored by an entity computing system associated with a first entity of a plurality of entities. Each of the plurality of entities is associated with an entity computing system that stores at least one token of a plurality of tokens that are each registered with the token management system and each associated with the user. The method further includes modifying, by the token management system, the token stored by the entity computing system associated with the first entity based on a token command from the user. The modification includes associating the token with a different entity of the plurality of entities relative to the first entity.
    Type: Grant
    Filed: December 20, 2019
    Date of Patent: March 22, 2022
    Assignee: Wells Fargo Bank, N.A.
    Inventors: Azita Asefi, Jinee K. Ellis, Alan W. Hecht, Timothy R. Knowlton, Ashish B. Kurani, Steven E. Puffer, Young M. Yang
  • Patent number: 11283611
    Abstract: A token management apparatus includes a reception unit that receives, from a first user who has an access token for accessing a service providing server that provides a service, a permission condition for permitting a second user for a conditional use of an access token of the first user, the second user being differential from the first user and not having the access token; and an issuance unit that issues a conditional access token that permits the conditional use of the service within a range of the permission condition, to the second user in a case where the second user requests the conditional use of the access token of the first user, and the request for the conditional use satisfies the permission condition.
    Type: Grant
    Filed: July 18, 2019
    Date of Patent: March 22, 2022
    Assignee: FUJIFILM Business Innovation Corp.
    Inventor: Yoshihiro Fujimaki
  • Patent number: 11277398
    Abstract: A system includes a first computer system (FCS) configured to receive an authentication request of a user with respect to the first authentication system (FAS), and communicate an unsuccessful authentication attempt. In response, a bridge computer system (BCS), is configured to request a user ID and receive at least the user ID; identify an address of a second computer system (SCS) based on the user ID; and initiate the second authentication system (SAS) using the address. The SCS, if the user has been successfully authenticated with respect to the SAS, is configured to communicate successful authentication to the BCS; and in response, the BCS is configured to send the FAS a confirmation message, and the FCS is configured to treat the user as authenticated.
    Type: Grant
    Filed: October 31, 2019
    Date of Patent: March 15, 2022
    Assignee: BUNDESDRUCKEREI GMBH
    Inventors: Frank Byszio, Kim Nguyen
  • Patent number: 11272862
    Abstract: An action recognition system is illustrated. The action recognition system has an annular body, at least one light emitting unit, at least one light sensing unit and an action recognition module. The annular body is worn on a movable part of a user. One end of the light emitting unit is exposed on an inner side of the annular body, wherein the light emitting unit emits a first light beam illuminating at least a portion of the movable part. One end of the light sensing unit is exposed on the inner side of the annular body. The light sensing unit operatively senses a second light beam reflected by the at least portion of the movable part and generates a light sensing signal. The action recognition module is configured to operatively determine an action of the user according to the light sensing signal.
    Type: Grant
    Filed: September 9, 2020
    Date of Patent: March 15, 2022
    Assignee: PIXART IMAGING INC.
    Inventors: Ren-Hau Gu, Chung-Wen Lo
  • Patent number: 11271913
    Abstract: A terminal device may execute a communication of authentication information with a communication device, the authentication information being prepared by the terminal device or the communication device without being inputted in the terminal device or the communication device by a user; send the authentication information to a first sever; and send specific information to the first server. The communication device may execute the communication of the authentication information with the terminal device; and send the authentication information to the first server. The first server may register the service information in the memory of the first server in a case where the authentication information is received from both of the terminal device and the communication device, and the specific information is received from the terminal device.
    Type: Grant
    Filed: February 6, 2019
    Date of Patent: March 8, 2022
    Assignee: Brother Kogyo Kabushiki Kaisha
    Inventors: Hirotaka Asakura, Takeshi Nagasaki
  • Patent number: 11269999
    Abstract: In one example, a method performed by a processing system of a server includes sending an instruction to a controller installed on an integrated circuit chip of a remote computing device, wherein the instruction requests that the controller issue a challenge to the integrated circuit, receiving a first signature of the integrated circuit chip from the controller, wherein the first signature is derived by the controller from a response of the integrated circuit chip to the challenge, comparing the first signature to a second signature that is stored on the server, wherein the second signature was derived through testing of the integrated circuit chip prior to the integrated circuit chip being deployed in the remote computing device, and generating an alert when the first signature fails to match the second signature, wherein the alert indicates that the integrated circuit chip may have been tampered with.
    Type: Grant
    Filed: July 1, 2019
    Date of Patent: March 8, 2022
    Assignee: AT&T INTELLECTUAL PROPERTY I, L.P.
    Inventor: Joseph Soryal
  • Patent number: 11265302
    Abstract: A trusted server receives a request for an activation code, which includes an identifier associated with the trusted server and a one-time password, for a client device. The trusted server obtains the identifier from a public server, generates the one-time password, and combines the one-time password with the identifier to create the activation code. The trusted server provides the activation code to a provisioning client, which presents the activation code to the client device. The trusted server and client device secure a communication session using the one-time password as a shared secret. The trusted server downloads trusted cryptographic information to the client device over the secure communication session.
    Type: Grant
    Filed: June 25, 2019
    Date of Patent: March 1, 2022
    Assignee: CISCO TECHNOLOGY, INC.
    Inventors: Owen Brendan Friel, Jason Cresswell, Pandit Panburana
  • Patent number: 11265311
    Abstract: A method of authenticating a user of a multifunction device to a server, the method comprising associating a user-supplied image with user login credentials, using a server; receiving, at the server, an image uploaded from the multifunction device; and comparing the uploaded image to the user-supplied image, using the server, and, only if the uploaded image is identical to the user-supplied image, allowing the user of the multifunction device to authenticate to the server by providing additional login credentials to the server using the multifunction device.
    Type: Grant
    Filed: September 4, 2018
    Date of Patent: March 1, 2022
    Assignee: GROWPATH, LLC
    Inventor: Eric Jason Sanchez
  • Patent number: 11259186
    Abstract: A device determines information concerning the device and sends the information concerning the device to a first device. The device receives, from the first device, information concerning a user device, and receives, from a second device, a request concerning the user device accessing the device. The request includes information identifying the device and information identifying the user device. The device generates a request response by validating the user device for access to the device based on the request and sends, to the second device, the request response to facilitate a communication session to be established between the user device and the device. The device communicates with the user device via the communication session.
    Type: Grant
    Filed: January 10, 2019
    Date of Patent: February 22, 2022
    Assignee: Verizon Patent and Licensing Inc.
    Inventors: Byunghun Choi, Jyotsna Kachroo, Ray P. Hwang, Dayong He, Samirkumar Patel, Emilia C. Quijano, Young Rak Choi, Warren Hojilla Uy, Feng Luo, Manuel Enrique Caceres
  • Patent number: 11256230
    Abstract: A method for an automated configuration of an industrial controller unit comprises sending, from a server system, an instruction message and a verification token to a client device via a first communication network. The instruction message comprises information pertaining to a modification of an industrial controller unit, and the verification token pertains to a completed modification of the industrial controller unit. The method further comprises receiving, at the server system, a verification message pertaining to the verification token, and providing, from the server system, an industrial program and/or a parameter for an industrial program to the industrial controller unit via a second communication network, in response to receiving the verification message.
    Type: Grant
    Filed: May 1, 2019
    Date of Patent: February 22, 2022
    Assignee: CODESYS HOLDING GMBH
    Inventor: Kevin Ketterle
  • Patent number: 11252143
    Abstract: A certificate issued by an authentication server 200 in response to a request from a client terminal 100 is stored in an issued certificate storage unit 113, and the stored certificate is transmitted to the authentication server 200 together with device information to execute first authentication and then a user ID/password is transmitted to the authentication server 200 to execute second authentication, so that it is possible to perform the first authentication using a certificate and perform the second authentication using a user ID/password without setting up the service usage environment in which the certificate of the client terminal 100 and the user ID/password are stored in advance in the authentication server 200 so as to be associated with each other and the certificate is stored in advance in each client terminal 100.
    Type: Grant
    Filed: October 29, 2019
    Date of Patent: February 15, 2022
    Assignee: WingArc1st Inc.
    Inventor: Ko Shimazawa
  • Patent number: 11249770
    Abstract: Disclosed are various embodiments for provisioning client devices. A configuration file previously installed on the computing device can be read. The configuration file can contain a provisioning address. Then, a user account is automatically created using a predefined username and credential stored in the configuration file. Next, an enrollment request can be sent to the provisioning address to enroll the computing device with a provisioning service using the user account. In response, an enrollment response can be received from the provisioning service. The computing device can then be configured based upon the enrollment response.
    Type: Grant
    Filed: January 16, 2020
    Date of Patent: February 15, 2022
    Assignee: VMware, Inc.
    Inventors: Kishore Krishnakumar, Vijay Chari Narayan, Brooks Peppin, Paul Adam Ryman, Rob Schlotman
  • Patent number: 11251951
    Abstract: An authentication server may not support all types of user credentials. For example, an on-premise authentication server may support credentials based on user secrets (i.e. username and password) and certificate-based credentials, but not hardware-key based credentials. A client device may use an un-supported type of credential to access resources managed by the on-premise authentication server by authenticating with a web-based authentication server. The web-based authentication server may support any type of credential, and the supported types of credentials may change over time. The web-based authentication server returns an authenticated user token indicating the user has been authenticated, but without authorizing access to any resources. The client device uses the on-premise authentication server to exchange the authenticated user token for an authorized user token. The client device then uses the authorized user token to access resources on the on-premise network.
    Type: Grant
    Filed: January 28, 2020
    Date of Patent: February 15, 2022
    Assignee: Microsoft Technology Licensing, LLC
    Inventors: Joseph B. Isenhour, Sergeii Gubenko, Paul J. Miller, Andrew James Wiley, Mitchell O. Lindgren, Haitao Wang, Sagar Bholanath Saha, Steven James Syfuhs
  • Patent number: 11244039
    Abstract: A determination method executed by a computer that serves as an authentication apparatus for a program that operates on a device, the determination method includes counting a number of times of execution of a first process related to the device and determining, in a case where an authentication request for the program that includes a number of times of execution of a second process in the device is received, whether or not it is required to verify the device based on a result of comparison between the number of times of execution of the first process and the number of times of execution of the second process.
    Type: Grant
    Filed: January 15, 2019
    Date of Patent: February 8, 2022
    Assignee: FUJITSU LIMITED
    Inventor: Naotoshi Watanabe
  • Patent number: 11240031
    Abstract: The present disclosure provides a system and method for delegating authority to cloud IoT devices, with such delegated authority enabling the cloud IoT devices to access second cloud services outside of a core network. The IoT device uses its IoT identity to obtain a token for accessing the second service within a predefined time window. The token may be used to access the second service without further authentication by the second service. Accordingly, the IoT device can take particular actions, such as downloading files, etc., during the predefined time window. After the predefined time window, the IoT device may no longer access the second service without obtaining another token.
    Type: Grant
    Filed: July 22, 2019
    Date of Patent: February 1, 2022
    Assignee: Google LLC
    Inventors: Calum Barnes, Tom Olick, Tamás Mágedli, David Arturo Lira Cuevas, Preston Holmes
  • Patent number: 11238695
    Abstract: Systems, processes and articles of manufacture provide for a player identity verification system that allows a gaming establishment (e.g., a casino) to determine or verify a player's identity upon certain qualifying activities being determined (e.g., when a player is initiating a wagering session at a table game or placing a wager). In accordance with one embodiment, a live image of a player participating in a qualifying activity (e.g., placement of a wager) is compared to a stored image of a player that is associated with one or more casino chips being used as the wager; a verification of the identity of the player placing the wager is performed by matching the live image to the stored image.
    Type: Grant
    Filed: September 3, 2020
    Date of Patent: February 1, 2022
    Assignee: Walker Digital Table Systems, LLC
    Inventors: Stephen Moore, Magdalena Mik Fincham
  • Patent number: 11240008
    Abstract: A key management method includes: sending, by a security chip of a computer device, a request for obtaining a service key to a key management service; receiving, by the security chip, a service key ciphertext from the key management service, wherein the service key ciphertext is obtained by encrypting the service key by the key management service based on a migration key of the security chip; decrypting, by the security chip, the service key ciphertext based on the migration key to obtain the service key; storing, by the security chip, the service key in the security chip; and providing, by the security chip, the service key to an application program of the computer device when the application program needs to encrypt data based on the service key.
    Type: Grant
    Filed: April 30, 2021
    Date of Patent: February 1, 2022
    Assignee: ADVANCED NEW TECHNOLOGIES CO., LTD.
    Inventor: Wuqiong Pan
  • Patent number: 11233802
    Abstract: A client sends a request for access to a webpage and receives a cookie and code to obtain data about the client in response to the request. The cookie may be cryptographically secured and contain first data about the client. The client subsequently sends a second request with the cookie to access the same webpage. Any additional information about the client, received in the second request, is then compared with the first data about the client obtained from the cookie to determine whether anomalous activity exists in connection with the client. That is, data about the client is compared to previous client activity history to determine whether there were any anomalous activity and the result of the comparison indicates whether the client is trustworthy.
    Type: Grant
    Filed: June 11, 2020
    Date of Patent: January 25, 2022
    Assignee: Amazon Technologies, Inc.
    Inventors: Corneliu-Gabriel-Alexandru Rudeanu, Florin-Vasile Manolache, Alexandru Tronciu
  • Patent number: 11232435
    Abstract: Systems and methods are provided for managing tokens from different token providers and facilitating network transactions involving tokens from the different token providers. One exemplary method includes receiving a request to provision a token for a payment account to a party, where the payment account is associated with a payment network. The method also includes generating the requested token apart from the payment network, whereby the requested token is an external token, and transmitting the external token to the party. The method further includes transmitting, to the payment network, the external token and a PAN for the payment account associated with the external token, thereby permitting the payment network to map the token to the PAN and to provide PAN-dependent services for a transaction based on an authorization request message including the token but not the PAN.
    Type: Grant
    Filed: June 1, 2017
    Date of Patent: January 25, 2022
    Assignee: MASTERCARD INTERNATIONAL INCORPORATED
    Inventors: Aimee G. Musil, Carole Lynne Kelly-Frank, Scott J. Page, John Vignola
  • Patent number: 11233788
    Abstract: Disclosed are various embodiments for determining authentication assurance from a combination of historical and runtime-provided inputs. An authentication request associated with an account is received. A composite measure of authentication assurance is determined from a combination of a historical measure of authentication assurance and a runtime measure of authentication assurance. A response to the authentication request is generated based at least in part on the composite measure of authentication assurance.
    Type: Grant
    Filed: November 27, 2018
    Date of Patent: January 25, 2022
    Assignee: Amazon Technologies, Inc.
    Inventors: Daniel Hitchcock, Yogesh Golwalkar, Dharinee Gupta, Bharath Kumar
  • Patent number: 11227036
    Abstract: Disclosed are various embodiments for determining authentication assurance using algorithmic decay. In an embodiment, an authentication request associated with an account is received. At least one historical authentication event associated with the account is determined. A measure of authentication assurance is determined based at least in part on applying an exponential time decay to at least one authentication assurance value individually corresponding to the historical authentication event(s). A response to the authentication request is generated based at least in part on the measure of authentication assurance.
    Type: Grant
    Filed: November 27, 2018
    Date of Patent: January 18, 2022
    Assignee: Amazon Technologies, Inc.
    Inventors: Daniel Hitchcock, Yogesh Golwalkar, Dharinee Gupta, Bharath Kumar
  • Patent number: 11228579
    Abstract: Systems and methods for passing account authentication information via parameters. A server can provide, to a client device, an account parameter derived from an account credential used to authenticate a first application to insert into a link. The link can include an address referencing a second application. The account parameter can be passed from the first application to the second application responsive to an interaction on the link. The server can receive from the second application of the client device, subsequent to passing the account parameter from the first application to the second application, a request to authenticate the second application including the account parameter. The server can authenticate the client device for the second application using the account parameter. The server can transmit, responsive to authenticating the client device for the second application, an authentication indication to the second application of the client device.
    Type: Grant
    Filed: December 15, 2017
    Date of Patent: January 18, 2022
    Assignee: GOOGLE LLC
    Inventors: Justin Lewis, Abhiram Kasina
  • Patent number: 11228428
    Abstract: Method, system or Universal Integrated Circuit Card (UICC) for provisioning a UICC with a new key. The UICC contains an initial subscriber key shared between the UICC and an authentication center. A new key is exchanged between the UICC and the authentication center using a communication between the UICC and the authentication center authenticated using the initial subscriber key. The new key is used in place of the initial subscriber key for further communications with the UICC.
    Type: Grant
    Filed: December 11, 2019
    Date of Patent: January 18, 2022
    Assignee: VODAFONE IP LICENSING LIMITED
    Inventor: Stephen H. Babbage
  • Patent number: 11223957
    Abstract: A method of privatizing mobile communications using a dynamic International Mobile Subscriber Identity (IMSI) and Mobile Station International Subscriber Director Number (MSISDN). A first privacy token having an associated IMSI and MSISDN is provided to a User Equipment (UE). The first privacy token has a predefined validity period. The IMSI and MSISDN assigned to the privacy token are shared with a plurality of Mobile Network Operators (MNOs), while the International Mobile Equipment Identity (IMEI) of the UE remains concealed. A communications session for the UE can be established based on the first privacy token during the validity period thereof. Upon expiration of the validity period, the first privacy token and the associated IMSI and MSISDN are released to the token database, and their association with one another is deleted. The UE is then provided with a second privacy token having a different associated IMSI and MSISDN.
    Type: Grant
    Filed: June 23, 2021
    Date of Patent: January 11, 2022
    Assignee: Syniverse Technologies, LLC
    Inventors: Jacques F. Mouton, Monique Jeanne Morrow
  • Patent number: 11218551
    Abstract: A method and a system for user identification of a user based on a current user environment of a user device thereof are provided. The method comprises: causing the user device to receive an analytical module for installation thereof in a web application, the analytical module being configured to execute: causing installation of an iframe container in a given page of the web application launched on the user device; retrieving at least one cookie file including user data indicative of the current user environment of the user device; transmitting the at least one cookie file to an identification server for modification thereof to generate an in-use cookie file; and receiving the in-use cookie file; analyzing the in-use cookie file for identifying, based on the user data, the user device, and in response to identifying the user device as being compromised, transmitting a predetermined notification to the application content server.
    Type: Grant
    Filed: April 14, 2021
    Date of Patent: January 4, 2022
    Assignee: GROUP IB, LTD
    Inventors: Aleksandr Viktorovich Batenev, Pavel Vladimirovich Krylov
  • Patent number: 11216542
    Abstract: According to an example aspect of the present invention, there is provided an apparatus comprising a memory configured to store an identifier of the apparatus, at least one processing core configured to obtain, from sensor information, a service identifier and a session identifier, compile a message addressed to a service provider associated with the service identifier, the message comprising the identifier of the apparatus and the session identifier, and cause transmission of the message toward the service provider.
    Type: Grant
    Filed: June 8, 2016
    Date of Patent: January 4, 2022
    Assignee: Nokia Technologies Oy
    Inventors: Troels F. Roennow, Kim Blomqvist, Khan Baykaner
  • Patent number: 11211140
    Abstract: Disclosed herein are related to a system and a method of authenticating a device. In one aspect, a first challenge is identified from first challenges, where each of the first challenges has a consistent response with a stability above a first threshold across a variation of the device. In one aspect, a first response to the first challenge is received from the device. In one aspect, whether the first response matches the consistent response of the first challenge is determined. In one aspect, a second challenge from second challenges is identified, where each of the second challenges has an inconsistent response with a stability under a second threshold across the variation. In one aspect, a second response to the second challenge is received from the device. In one aspect, the device is authenticated responsive to determining that the first response matches the consistent response of the first challenge.
    Type: Grant
    Filed: September 24, 2019
    Date of Patent: December 28, 2021
    Assignee: FACEBOOK TECHNOLOGIES, LLC
    Inventor: Sudhir Satpathy
  • Patent number: 11212665
    Abstract: A node device configuring a peer-to-peer network includes: a network interface; and a blockchain management part configured to receive, through the network interface, an information registration request transaction that includes embedded Subscriber Identity Module, SIM, information including SIM identification information, an electronic signature put on the embedded SIM information by using a private key of an information registrant, and a public key paired with the private key, and accumulate the received information registration request transaction into a blockchain based on a consensus building algorithm executed in cooperation with another node device configuring the peer-to-peer network.
    Type: Grant
    Filed: September 20, 2017
    Date of Patent: December 28, 2021
    Assignee: NEC CORPORATION
    Inventor: Tetsuo Inoue
  • Patent number: 11200179
    Abstract: An example memory subsystem includes a memory component and a processing device, operatively coupled to the memory component. The processing device is configured to receive a plurality of logical-to-physical (L2P) records, wherein an L2P record of the plurality of L2P records maps a logical block address to a physical address of a memory block on the memory component; determine a sequential assist value specifying a number of logical block addresses that are mapped to consecutive physical addresses sequentially following the physical address specified by the L2P record; generate a security token encoding the sequential assist value; and associate the security token with the L2P record.
    Type: Grant
    Filed: February 26, 2020
    Date of Patent: December 14, 2021
    Assignee: Micron Technology, Inc.
    Inventors: Stephen Hanna, Nadav Grosz
  • Patent number: 11200767
    Abstract: A computer device for enhancing security of a secured area that comprises a video input device and a processor configured to receive a request to access the secured area at an access point associated with the secured area, obtain an image data of a secure boundary area associated with the access point, determine the number of users in the secure boundary area based on the image data, determine whether to grant an access in response to the request based on one or more rules, grant the access in response to the request in accordance with the rules when the number of users in the secure boundary area is less than or equal to a threshold, and deny the access in response to the request in accordance with the rules and when the number of users in the secure boundary area is greater than the threshold.
    Type: Grant
    Filed: December 2, 2019
    Date of Patent: December 14, 2021
    Assignee: SENSORMATIC ELECTRONICS, LLC
    Inventors: Derek Joseph Boyes, Terence Neill
  • Patent number: 11188664
    Abstract: Systems and methods for facilitating editing of a confidential document by a non-privileged person by stripping away content and meaning from the document without human intervention such that only structural and/or grammatical information of the document are conveyed to the non-privileged person are disclosed. Exemplary implementations may: receive an electronic document including text conveying one or more confidential concepts; provide a content-stripped version of the electronic document to a human editor; receive an edited content-stripped version of the electronic document; and provide an edited electronic document based on the edited content-stripped version such that human-editor-provided changes were effectuated without the human editor ever being exposed to the content and meaning contained in the electronic document.
    Type: Grant
    Filed: March 10, 2020
    Date of Patent: November 30, 2021
    Assignee: Specifio, Inc.
    Inventors: Ian C. Schick, Kevin Knight, Jay Priyadarshi, Xing Shi
  • Patent number: 11190531
    Abstract: A secure communication management (SCM) computer device for providing secure data connections in an aviation environment which, includes safety of flight information, is provided. The SCM computer device includes a processor in communication with a memory. The processor is programmed to receive, from a first user computer device, a first data message for a first aircraft. The first data message is in a standardized data format. The processor is also programmed to analyze the first data message for potential cybersecurity threats. If the determination is that the first data message does not contain a cybersecurity threat, the processor is further programmed to convert the first data message into a first data format associated with the first aircraft and transmit the converted first data message to the first aircraft using a first communication protocol associated with the first aircraft.
    Type: Grant
    Filed: August 28, 2019
    Date of Patent: November 30, 2021
    Assignee: THE BOEING COMPANY
    Inventors: Timothy Mitchell, Gordon Edward Letney, Kevin James Luschei, Timothy William Anstey, John Bush, Steve Magnuson
  • Patent number: 11190824
    Abstract: An authenticating system and process for authenticating user devices to a access a service where access to certain portions of the service may be limited according to a access point or other device used by a user device to facilitate interfacing a user with the service. The authentication may be achieved without directly assessing a trustworthiness of the user devices, and optionally, without requiring a user thereof to complete a sign-on operation.
    Type: Grant
    Filed: April 6, 2020
    Date of Patent: November 30, 2021
    Assignee: Cable Television Laboratories, Inc.
    Inventors: Seetharama R. Durbha, Oscar Marcia, Stuart Hoggan, Simon Krauss
  • Patent number: 11190937
    Abstract: There is provided an information processing device including a processing unit that authenticates a communication target device on a basis of predetermined information transmitted from the communication target device by broadcast in communication in a first communication scheme, the predetermined information being used in a process to be performed in communication in a second communication scheme that is different from the first communication scheme, and establishes the communication with the communication target device in the first communication scheme in a case in which authentication is completed.
    Type: Grant
    Filed: May 18, 2020
    Date of Patent: November 30, 2021
    Assignee: SONY CORPORATION
    Inventors: Masahiro Sueyoshi, Tomohiko Nagayama
  • Patent number: 11190509
    Abstract: Techniques are disclosed relating to user authentication. In some embodiments, a computing system maintains an exception handler of a software development platform. The exception handler is executable to process a particular type of exception that causes an authentication of users of applications running on the software development platform. The computing system may receive, at the exception handler, an indication of the particular type of exception thrown by a particular application. In response to receiving the indication of the particular type of exception, the exception handler issues to a web browser interacting with the application, a request that the web browser redirect to an authentication server configured to perform an authentication of a user of the particular application. The computing system receives, from the authentication server, a result of the performed authentication and returns the result to the particular application.
    Type: Grant
    Filed: April 23, 2018
    Date of Patent: November 30, 2021
    Assignee: salesforce.com, inc.
    Inventors: Matthew Wong, Alan Vangpat, Sean Tubbs, Sarah Lui, William C. Mortimore, Jr., Itzik Koren
  • Patent number: 11184386
    Abstract: A system and method for evaluating and improving the security of a local area network including an application residing on an external server configured to conduct a penetration test of the local area network by interrogating each of the devices on the local area network to identify vulnerabilities and risks associated with those devices, receiving a report listing all such identified vulnerabilities and risks, calculating an IoT readiness score for the local area network, and undertaking and/or recommending specific actions for improving the security of the local area network.
    Type: Grant
    Filed: September 4, 2019
    Date of Patent: November 23, 2021
    Assignee: United Services Automobile Association (USAA)
    Inventors: Eric David Schroeder, Daniel Christopher Bitsis, Jr., Manfred Amann, Donnette Moncrief Brown, Meredith Beveridge Lecocke, Michael J. Maciolek, Robert Wiseman Simpson, Michael P. Bueche, Jr.
  • Patent number: 11178115
    Abstract: Mechanisms for providing point to point encryption and tokenization enabling decryption, tokenization and storage of sensitive encrypted data on one system are discussed.
    Type: Grant
    Filed: September 20, 2017
    Date of Patent: November 16, 2021
    Assignee: Walmart Apollo, LLC
    Inventors: Aaron Marcus Johnson, Christopher John Gerber, Gerald Duane Corson, III, Charles Alan Watts
  • Patent number: 11178148
    Abstract: Provided is a process that affords out-of-band authentication for confirmation of physical access or when a device utilized for out-of-band authentication lacks connectivity to a network. An asymmetric cryptographic key-pair is established, a first device obtaining a key operable to decrypt data. A remote server obtaining a key operable to encrypt data and associating that key with an identifier of an identity or account associated with a user. An access attempt from the second device is received in association with the identifier of the identity associated with the user. A notification including data encrypted by the encryption key is generated by the remote server and transmitted to the second device. The first device obtains the notification data from the second device and decrypts the data to determine a notification response which is returned to the remote server for verification to permit or deny the access attempt of the second device.
    Type: Grant
    Filed: April 19, 2021
    Date of Patent: November 16, 2021
    Assignee: HYPR Corp.
    Inventors: George Avetisov, Bojan Simic, Roman Kadinsky
  • Patent number: 11176459
    Abstract: A network traffic hub extracts encryption metadata from messages establishing an encrypted connection between a smart appliance and a remote server and determines whether malicious behavior is present in the messages. For example, the network traffic hub can extract an encryption cipher suite, identified encryption algorithms, or a public certificate. The network traffic hub detects malicious behavior or security threats based on the encryption metadata. These security threats may include a man-in-the-middle attacker or a Padding Oracle On Downgraded Legacy Encryption attack. Upon detecting malicious behavior or security threats, the network traffic hub blocks the encrypted traffic or notifies a user.
    Type: Grant
    Filed: September 12, 2019
    Date of Patent: November 16, 2021
    Assignee: Cujo LLC
    Inventors: Yuri Frayman, Robert Beatty, Leonid Kuperman, Gabor Takacs