公开(公告)号：US20210042277A1

公开(公告)日：2021-02-11

申请号：US16531612

申请日：2019-08-05

Applicant: Bank of America Corporation

Inventor： Brandon Sloane ,  John Howard Kling

IPC: G06F16/21 ,  G06F16/28 ,  G06F16/242

Abstract: A system provides for restructuring electronic data elements within a mutable hierarchical database. In particular, the system may dynamically perform perspective-based restructuring the database depending on the status and/or identity of the user or computing system that is accessing the database. In this regard, the system may use an artificial intelligence and/or machine learning application to progressively modify relationships and/or attributes of data elements within the database to create multiple configurations or arrangements of database structures along certain perspectives and/or dimensions. Once the multiple configurations are generated, the system may allow the data structures to be dynamically adjusted based on the perspective or purpose for which the database is accessed.

公开(公告)号：US20210012340A1

公开(公告)日：2021-01-14

申请号：US16505930

申请日：2019-07-09

Applicant: Bank of America Corporation

Inventor： Monika Kapur ,  Kevin A. Delson ,  Brandon Sloane ,  Siten Sanghvi ,  Albena N. Fairchild ,  John Ryan Bowling

IPC: G06Q20/40 ,  G06Q20/24 ,  G06Q20/20 ,  G06Q20/32

Abstract: Apparatus and methods are provided for executing a rules-based authentication of an electronic transaction. The method may include receiving first and second payment authorization parameters and second payment authorization parameters. The method may also include receiving from a Point of Sale device a request for payment information and a purchase amount. The method may also include, determining if first or second parameters are satisfied. The first parameters may include a first time range, a pairing of the electronic device to a first apparatus, a first geolocation of the electronic device, and a first maximum transaction value. The second parameters may include a second time range, a pairing of the electronic device to a second apparatus, a second geolocation of the electronic device, and a second maximum transaction value, wherein the second time range does not include the first time range.

公开(公告)号：US10810006B2

公开(公告)日：2020-10-20

申请号：US15688253

申请日：2017-08-28

Applicant: Bank of America Corporation

Inventor： Brandon Sloane ,  John Brian Costello ,  Brian Diederich

IPC: G06F8/71 ,  H04L12/24 ,  G06Q10/04

Abstract: Embodiments of the present invention provide a system for indicator regression and modeling for implementing system changes to improve control effectiveness. The system is typically configured for presenting, prompting for and receiving a selection from a list of controls from a user, via a control effectiveness application user interface on a user device. The system is also for receiving two or more consideration indicators from the user device, via the control effectiveness application user interface forming a consideration set; applying a regression algorithm on the consideration set of indicators; reducing a number of the subset of the consideration set of indicators based on a threshold correlation or a threshold number; finalizing the final equation with the number of the subset, each having a corresponding coefficient; and, in response to finalizing the final equation, automatically performing an action configured to improve effectiveness of the control based on the final equation.

公开(公告)号：US10607022B2

公开(公告)日：2020-03-31

申请号：US15895720

申请日：2018-02-13

Applicant: Bank of America Corporation

Inventor： John Howard Kling ,  Brandon Sloane ,  Regina Yee Cadavid ,  Rachel Yun Kim Bierner ,  Ronald James Kuhlmeier

IPC: G06F21/62 ,  G06F17/30 ,  H04L29/06 ,  G06F21/60 ,  G06F16/28 ,  G06F16/335

Abstract: A vertically integrated access control system may store in a database data records corresponding to the interfaces, access control rules, and computing resources of an information system, as well as data records for entity capabilities. Data records for related interfaces, access control rules, computing resources, and entity capabilities may be linked. Using the database, the system may determine the entity capabilities that can be performed based on an existing user entitlement. If the entity capabilities include a flagged combination of entity capabilities, the system may perform an information security action to remediate the flagged combination. The system may use the database to form vertically integrated access units. The vertically integrated access units may be used to form user entitlements. The system may continuously monitor whether any proposed configurations would create a flagged combination of entity capabilities, and if so take an action to prevent such flagged combination.

公开(公告)号：US10536857B1

公开(公告)日：2020-01-14

申请号：US16449571

申请日：2019-06-24

Applicant: Bank of America Corporation

Inventor： Brandon Sloane ,  Monika Kapur ,  Crystal M. Sundaramoorthy ,  Ryan Davis ,  Kevin A. Delson

IPC: H04W12/06 ,  G06F21/32 ,  H04W84/02 ,  H04W12/00 ,  G06F9/451 ,  G06F9/445

Abstract: A method for pre-authenticating a user on the user's mobile device is provided. The method may be implemented on the device. The method may include tracking commonly accessed applications over a pre-determined amount of time. The method may include tracking and storing on the mobile device, application data associated with each commonly accessed application. When a determined current time of day is a pre-determined amount of time prior to the tracked start time of access to a one or more commonly accessed applications, the method may include capturing, autonomously, via each of a plurality of sensors, an attribute associated with the user. The method may further include comparing a value of the attribute captured to a historically stored attribute value. The method may further include verifying and pre-authenticating the user based on the comparing. The method may also include pre-loading the user's mobile device with the commonly accessed application.

公开(公告)号：US20190334912A1

公开(公告)日：2019-10-31

申请号：US15966982

申请日：2018-04-30

Applicant: Bank of America Corporation

Inventor： Brandon Sloane ,  Brian Diederich ,  John Howard Kling

IPC: H04L29/06 ,  G06F21/60 ,  G06F21/62 ,  H04L9/32 ,  H04L9/06 ,  G06F17/30

Abstract: An access control system may include one or more computer processors; a memory, wherein the memory comprises an entitlement database of a resource access manager; a network communication device; and an access control module stored in the memory, executable by the one or more computer processors. The access control module may be configured to: perform the steps of: receiving a request to add one or more entitlement data records to a distributed electronic ledger; validating the one or more entitlement data records; appending the one or more entitlement data records to the distributed electronic ledger; and verifying a first entitlement data record stored in the entitlement database by comparing the first entitlement data record with a first corresponding entitlement data record stored in the distributed electronic ledger, wherein the first entitlement data record and first corresponding entitlement data record are both associated with a first user.

公开(公告)号：US20190325056A1

公开(公告)日：2019-10-24

申请号：US15958515

申请日：2018-04-20

Applicant: BANK OF AMERICA CORPORATION

Inventor： Brandon Sloane ,  Rachel Yun Kim Biemer ,  Mark Earl Brubaker ,  Regina Yee Cadavid ,  John Brian Costello ,  John Howard Kling ,  Cora Yan Quon ,  Tracie Buffington Wescott

IPC: G06F17/30

Abstract: The invention provides an interconnected graph database system, method and computer program product structured for identifying and remediating conflicts in resource deployment. In some embodiments, the present invention is configured to identify a source node of a plurality of first nodes of a first graph database system. The source node is typically associated with a first information technology operational activity. In addition, the present invention is configured for determining a lateral relationship between the source node of the first graph database system and a target node of a plurality of second nodes of a second graph database system. Moreover, the present invention is configured for determining that the lateral relationship between the source node and the target node comprises a conflict, and in response, blocking initiation of the first information technology operational activity.

公开(公告)号：US20190251276A1

公开(公告)日：2019-08-15

申请号：US15895720

申请日：2018-02-13

Applicant: Bank of America Corporation

Inventor： John Howard Kling ,  Brandon Sloane ,  Regina Yee Cadavid ,  Rachel Yun Kim Bierner ,  Ronald James Kuhlmeier

IPC: G06F21/62 ,  H04L29/06 ,  G06F21/60 ,  G06F17/30

CPC classification number: G06F21/6218 ,  G06F16/288 ,  G06F16/335 ,  G06F21/604 ,  G06F2221/2141 ,  H04L63/102

Abstract: A vertically integrated access control system may store in a database data records corresponding to the interfaces, access control rules, and computing resources of an information system, as well as data records for entity capabilities. Data records for related interfaces, access control rules, computing resources, and entity capabilities may be linked. Using the database, the system may determine the entity capabilities that can be performed based on an existing user entitlement. If the entity capabilities include a flagged combination of entity capabilities, the system may perform an information security action to remediate the flagged combination. The system may use the database to form vertically integrated access units. The vertically integrated access units may be used to form user entitlements. The system may continuously monitor whether any proposed configurations would create a flagged combination of entity capabilities, and if so take an action to prevent such flagged combination.

公开(公告)号：US20250117522A1

公开(公告)日：2025-04-10

申请号：US18987805

申请日：2024-12-19

Applicant: BANK OF AMERICA CORPORATION

Inventor： Brandon Sloane ,  Julio Cesar Nunez

IPC: G06F11/07

Abstract: A system is provided for electronic data artifact testing using a hybrid centralized-decentralized computing platform. In particular, the system may comprise an artifact testing platform that may be accessed by users and computing devices within a network. Users may upload a data artifact to the artifact testing platform to be validated by the system. The system may then use a number of different validators (e.g., artificial intelligence-based modules) that may read the data artifact and/or the associated metadata and generate a confidence level based on the characteristics of the data artifact. The confidence levels from each validator may be aggregated to generate a final trust score for the data artifact. If the final trust score is below a first threshold, blocking the user computing device from opening the electronic file and if the final trust score is below a second threshold, performing network segmentation of the user computing device.

公开(公告)号：US12147331B2

公开(公告)日：2024-11-19

申请号：US18374016

申请日：2023-09-28

Applicant: Bank of America Corporation

Inventor： Brandon Sloane

IPC: G06F11/36 ,  G06F11/32 ,  H04L9/00

Abstract: A homomorphic encryption-based testing computing system provides a risk-based, automated, one-directional push of production data through a homomorphic encryption tool and distributes the encrypted data to use in testing of applications. Data elements and test requirements are considered when automatically selecting a homomorphic encryption algorithm. A decisioning component selects an algorithm to use to homomorphically encrypt the data set and a push mechanism performs one or both of the homomorphic encryption and distribution of the encrypted data set to at least one intended host. Once delivered, the testing software and/or testing procedures proceed using the encrypted data set, where results of the testing may be stored in a data store. A validation mechanism may validate the test data against production data and communicates whether testing was successful.