公开(公告)号：US20240355323A1

公开(公告)日：2024-10-24

申请号：US18388447

申请日：2023-11-09

Applicant: PINDROP SECURITY, INC.

Inventor： Umair Altaf ,  Sai Pradeep PERI ,  Lakshay PHATELA ,  Payas GUPTA ,  Yitao SUN ,  Svetlane AFANASEVA ,  Kailash PATIL ,  Elie KHOURY ,  Bradley MAGNETTA ,  Vijay BALASUBRAMANIYAN ,  Tianxiang CHEN

IPC: G10L15/16 ,  G10L15/02

CPC classification number: G10L15/16 ,  G10L15/02

Abstract: Disclosed are systems and methods including software processes executed by a server that detect audio-based synthetic speech (“deepfakes”) in a call conversation. The server applies an NLP engine to transcribe call audio and analyze the text for anomalous patterns to detect synthetic speech. Additionally or alternatively, the server executes a voice “liveness” detection system for detecting machine speech, such as synthetic speech or replayed speech. The system performs phrase repetition detection, background change detection, and passive voice liveness detection in call audio signals to detect liveness of a speech utterance. An automated model update module allows the liveness detection model to adapt to new types of presentation attacks, based on the human provided feedback.

公开(公告)号：US20200045170A1

公开(公告)日：2020-02-06

申请号：US16595168

申请日：2019-10-07

Applicant: PINDROP SECURITY, INC.

Inventor： Payas GUPTA ,  Terry NELMS, II

IPC: H04M3/436 ,  H04W12/06 ,  H04W4/16 ,  H04M3/42

Abstract: In an illustrative embodiment, a user device may block all the phone numbers used by an enterprise. When an enterprise wants to call the user, the enterprise may notify the user device through a separate secure channel that an enterprise phone number is in the process of making a phone call to the user device. The secure channel may include an authentication server that may request the user device to unblock the enterprise phone number. An incoming phone call from the enterprise phone number therefore can be trusted. After the phone call is terminated, the user device may again block the enterprise phone number. An attacker may not have access to the authentication server and a phone call from the attacker with a spoofed enterprise phone number (now blocked) may be dropped by the user device.

公开(公告)号：US20190387096A1

公开(公告)日：2019-12-19

申请号：US16551327

申请日：2019-08-26

Applicant: PINDROP SECURITY, INC.

Inventor： Payas GUPTA

IPC: H04M3/38 ,  H04M3/51 ,  H04L29/06

Abstract: A method of obtaining and automatically providing secure authentication information includes registering a client device over a data line, storing information and a changeable value for authentication in subsequent telephone-only transactions. In the subsequent transactions, a telephone call placed from the client device to an interactive voice response server is intercepted and modified to include dialing of a delay and at least a passcode, the passcode being based on the unique information and the changeable value, where the changeable value is updated for every call session. The interactive voice response server forwards the passcode and a client device identifier to an authentication function, which compares the received passcode to plural passcodes generated based on information and iterations of a value stored in correspondence with the client device identifier. Authentication is confirmed when a generated passcode matches the passcode from the client device.

公开(公告)号：US20180332172A1

公开(公告)日：2018-11-15

申请号：US16026498

申请日：2018-07-03

Applicant: PINDROP SECURITY, INC.

Inventor： Payas GUPTA ,  David DEWEY

IPC: H04M3/54 ,  H04W12/06 ,  H04M3/436 ,  H04L29/08 ,  H04W4/50 ,  H04L29/06 ,  H04M3/42

CPC classification number: H04M3/543 ,  H04L63/00 ,  H04L63/126 ,  H04L63/1466 ,  H04L67/02 ,  H04M3/42059 ,  H04M3/436 ,  H04M3/54 ,  H04M2203/6027 ,  H04M2203/6045 ,  H04W4/16 ,  H04W4/50 ,  H04W12/06

Abstract: The invention may verify calls to a telephone device by activating call forwarding to redirect calls for the telephone device to a prescribed destination; receiving a message from a server verifying the call; deactivating call forwarding to receive the call; and reactivating call forwarding when the call is concluded. In another embodiment, the invention may, in response to a telephone device initiating a call to a second telephone device installed with a particular application or software, transmit a message to a server causing it to instruct the second telephone device to deactivate call forwarding. In yet another embodiment, the invention may cause a server to receive a message from a prescribed location indicating that a call was received via call forwarding, and in response to the message, transmit an instruction to the intended recipient to deactivate the call forwarding if the call is verified as legitimate.

公开(公告)号：US20180205822A1

公开(公告)日：2018-07-19

申请号：US15872639

申请日：2018-01-16

Applicant: PINDROP SECURITY, INC.

Inventor： Payas GUPTA

IPC: H04M3/38 ,  H04M3/51 ,  H04M3/42

CPC classification number: H04M3/382 ,  H04L63/0838 ,  H04L63/18 ,  H04M3/42008 ,  H04M3/493 ,  H04M3/5166 ,  H04M2203/6072 ,  H04M2203/6081

Abstract: A method of obtaining and automatically providing secure authentication information includes registering a client device over a data line, storing information and a changeable value for authentication in subsequent telephone-only transactions. In the subsequent transactions, a telephone call placed from the client device to an interactive voice response server is intercepted and modified to include dialing of a delay and at least a passcode, the passcode being based on the unique information and the changeable value, where the changeable value is updated for every call session. The interactive voice response server forwards the passcode and a client device identifier to an authentication function, which compares the received passcode to plural passcodes generated based on information and iterations of a value stored in correspondence with the client device identifier. Authentication is confirmed when a generated passcode matches the passcode from the client device.

公开(公告)号：US20240355334A1

公开(公告)日：2024-10-24

申请号：US18388457

申请日：2023-11-09

Applicant: PINDROP SECURITY, INC.

Inventor： Umair Altaf ,  Sai Pradeep PERI ,  Lakshay PHATELA ,  Payas GUPTA ,  Yitao SUN ,  Svetlana AFANASEVA ,  Kailash PATIL ,  Elie KHOURY ,  Bradley MAGNETTA ,  Vijay BALASUBRAMANIYAN ,  Tianxiang CHEN

IPC: G10L17/06

CPC classification number: G10L17/06

Abstract: Disclosed are systems and methods including software processes executed by a server that detect audio-based synthetic speech (“deepfakes”) in a call conversation. The server applies an NLP engine to transcribe call audio and analyze the text for anomalous patterns to detect synthetic speech. Additionally or alternatively, the server executes a voice “liveness” detection system for detecting machine speech, such as synthetic speech or replayed speech. The system performs phrase repetition detection, background change detection, and passive voice liveness detection in call audio signals to detect liveness of a speech utterance. An automated model update module allows the liveness detection model to adapt to new types of presentation attacks, based on the human provided feedback.

公开(公告)号：US20230283711A1

公开(公告)日：2023-09-07

申请号：US18317799

申请日：2023-05-15

Applicant: PINDROP SECURITY, INC.

Inventor： Payas GUPTA

IPC: H04M3/38 ,  H04M3/51 ,  H04L9/40

CPC classification number: H04M3/382 ,  H04M3/5166 ,  H04L63/0838 ,  H04L63/18 ,  H04M2203/6072 ,  H04M3/42008

Abstract: A method of obtaining and automatically providing secure authentication information includes registering a client device over a data line, storing information and a changeable value for authentication in subsequent telephone-only transactions. In the subsequent transactions, a telephone call placed from the client device to an interactive voice response server is intercepted and modified to include dialing of a delay and at least a passcode, the passcode being based on the unique information and the changeable value, where the changeable value is updated for every call session. The interactive voice response server forwards the passcode and a client device identifier to an authentication function, which compares the received passcode to plural passcodes generated based on information and iterations of a value stored in correspondence with the client device identifier. Authentication is confirmed when a generated passcode matches the passcode from the client device.

公开(公告)号：US20190356782A1

公开(公告)日：2019-11-21

申请号：US16531501

申请日：2019-08-05

Applicant: PINDROP SECURITY, INC.

Inventor： Payas GUPTA ,  David DEWEY

IPC: H04M3/54 ,  H04L29/08 ,  H04M3/436 ,  H04W4/50 ,  H04W12/06 ,  H04W4/16

Abstract: The invention may verify calls to a telephone device by activating call forwarding to redirect calls for the telephone device to a prescribed destination; receiving a message from a server verifying the call; deactivating call forwarding to receive the call; and reactivating call forwarding when the call is concluded. In another embodiment, the invention may, in response to a telephone device initiating a call to a second telephone device installed with a particular application or software, transmit a message to a server causing it to instruct the second telephone device to deactivate call forwarding. In yet another embodiment, the invention may cause a server to receive a message from a prescribed location indicating that a call was received via call forwarding, and in response to the message, transmit an instruction to the intended recipient to deactivate the call forwarding if the call is verified as legitimate.

公开(公告)号：US20240355336A1

公开(公告)日：2024-10-24

申请号：US18439049

申请日：2024-02-12

Applicant: PINDROP SECURITY, INC.

Inventor： Umair ALTAF ,  Sai Pradeep PERI ,  Lakshay PHATELA ,  Payas GUPTA ,  Yitao SUN ,  Svetlana AFANASEVA ,  Kailash PATIL ,  Elie KHOURY ,  Bradley MAGNETTA ,  Vijay BALASUBRAMANIYAN ,  Tianxiang CHEN

IPC: G10L17/18 ,  G10L15/26

CPC classification number: G10L17/18 ,  G10L15/26

Abstract: Disclosed are systems and methods including software processes executed by a server that detect audio-based synthetic speech (“deepfakes”) in a call conversation. The server applies an NLP engine to transcribe call audio and analyze the text for anomalous patterns to detect synthetic speech. Additionally or alternatively, the server executes a voice “liveness” detection system for detecting machine speech, such as synthetic speech or replayed speech. The system performs phrase repetition detection, background change detection, and passive voice liveness detection in call audio signals to detect liveness of a speech utterance. An automated model update module allows the liveness detection model to adapt to new types of presentation attacks, based on the human provided feedback.

公开(公告)号：US20190281158A1

公开(公告)日：2019-09-12

申请号：US16289957

申请日：2019-03-01

Applicant: PINDROP SECURITY, INC.

Inventor： Payas GUPTA ,  Terry NELMS, II

IPC: H04M3/436 ,  H04M3/42 ,  H04W4/16 ,  H04W12/06

Abstract: In an illustrative embodiment, a user device may block all the phone numbers used by an enterprise. When an enterprise wants to call the user, the enterprise may notify the user device through a separate secure channel that an enterprise phone number is in the process of making a phone call to the user device. The secure channel may include an authentication server that may request the user device to unblock the enterprise phone number. An incoming phone call from the enterprise phone number therefore can be trusted. After the phone call is terminated, the user device may again block the enterprise phone number. An attacker may not have access to the authentication server and a phone call from the attacker with a spoofed enterprise phone number (now blocked) may be dropped by the user device.