公开(公告)号：US20220405407A1

公开(公告)日：2022-12-22

申请号：US17638943

申请日：2021-03-19

Applicant: Hai Yijian ,  Gang Wang ,  Google LLC

Inventor： Yijian Bai ,  Gang Wang

IPC: G06F21/60 ,  G06N20/00

Abstract: This document describes a secure machine learning platform. In some aspects, a method includes transmitting by the application to the machine learning platform, a set of data including a user profile, one or more characteristics of a digital component, contextual signals, model identifier, and data indicating a type of event. The application receives a request generated based on the computer-readable instructions to upload a user profile of a user of the client device to a machine learning platform. The computer-readable instructions initiate the request in response to detecting an occurrence of the event with the digital component. In response to the request, the application can obtain the user profile request data element that includes a model identifier for a machine learning model and one or more characteristics of at least one of the digital component or the first content page.

公开(公告)号：US20220391947A1

公开(公告)日：2022-12-08

申请号：US17892699

申请日：2022-08-22

Applicant: Google LLC

Inventor： Michael Kleber ,  Gang Wang ,  Daniel Ramage ,  Charles Harrison ,  Josh Karlin ,  Moti Yung

IPC: G06Q30/02 ,  G06F16/951 ,  H04L9/32 ,  H04L9/08

Abstract: The present disclosure provides systems and methods for content quasi-personalization or anonymized content retrieval via aggregated browsing history of a large plurality of devices, such as millions or billions of devices. A sparse matrix may be constructed from the aggregated browsing history, and dimensionally reduced, reducing entropy and providing anonymity for individual devices. Relevant content may be selected via quasi-personalized clusters representing similar browsing histories, without exposing individual device details to content providers.

公开(公告)号：US20220376926A1

公开(公告)日：2022-11-24

申请号：US17634103

申请日：2020-10-26

Applicant: Google LLC

Inventor： Gang Wang ,  Alex Daniel Jacobson

IPC: H04L9/32 ,  H04L9/40

Abstract: This disclosure relates to data security and cryptography. In one aspect, a method includes receiving, by a recipient device and from a client device, a communication including an attestation token and attachment elements. The attestation token includes a set of data and a digital signature of the set of data. Each attachment element includes recipient data for a respective recipient of the communication and a binding that cryptographically binds the attachment element to the attestation token. The recipient device verifies integrity of the communication using the attestation token and a given attachment element for the given recipient. The verification includes verifying integrity of the given attachment element, including determining, based on the binding of the given attachment element, that the attachment element is bound to the attestation token. Verifying the integrity of the attestation token includes determining, based on the set of data, that the digital signature is valid.

公开(公告)号：US20220345465A1

公开(公告)日：2022-10-27

申请号：US17742993

申请日：2022-05-12

Applicant: Google LLC

Inventor： Alex Daniel Jacobson ,  Gang Wang

IPC: H04L9/40 ,  H04L9/08 ,  H04L9/32

Abstract: This disclosure relates to generating location event measurements. In one aspect, a method includes presenting, by a client device, a digital component comprising geofence data that defines one or more physical locations corresponding to the digital component. In response to presenting the digital component, a trusted program of the client device stores, in a presentation event data structure, a presentation event data element specifying the geofence data. The trusted program detects, based on location information indicating a current location of the client device and the geofence data that the client device is within one of the one or more physical locations. In response to detecting that the client device is within one of the one or more physical locations, an event report is transmitted to a reporting system for the digital component. The event report indicates that a location event for the digital component has occurred.

公开(公告)号：US20220329430A1

公开(公告)日：2022-10-13

申请号：US17845637

申请日：2022-06-21

Applicant: Google LLC

Inventor： Gang Wang ,  Marcel M. Moti Yung

IPC: H04L9/32 ,  H04L9/08

Abstract: The present disclosure provides systems and methods for authenticated control of content delivery. The method includes receiving a request for an item of content from a computing device, the request comprising a security token associated with the computing device and an identifier of a group of domains, identifying the group of domains from the identifier, and retrieving a security key associated with the group of domains. The method further includes decrypting a signature of the security token, identifying an authentication string, determining that the authentication string matches a server authentication string, and identifying characteristics of the security token. The characteristics of the security token include a confidence score. The method further includes comparing the confidence score of the security token to a threshold, determining that the confidence score does not exceed the threshold, and preventing transmission of content to the computing device.

公开(公告)号：US20220321356A1

公开(公告)日：2022-10-06

申请号：US17634100

申请日：2020-05-01

Applicant: Google LLC

Inventor： Gang Wang ,  Borbála Katalin Benko

IPC: H04L9/32 ,  H04L9/30

Abstract: Methods, systems, and apparatus, including an apparatus for verifying the integrity of requests and the devices that sent the requests. In some aspects, a method includes receiving, from a client device, a request including an attestation token generated by the client device. The attestation token includes a set of data that includes at least a public key of the client device, a token creation, and a device integrity token that includes a verdict. The attestation token also includes a digital signature of the set of data generated using a private key corresponding to the public key. The integrity of the request is verified using the attestation token by determining that the token creation time being within a threshold duration of the time at which the request was received, the set of data was not modified since the attestation token was created, and the verdict indicates the client device is trustworthy.

公开(公告)号：US20220294643A1

公开(公告)日：2022-09-15

申请号：US17633417

申请日：2021-03-16

Applicant: Google LLC

Inventor： Gang Wang ,  Marcel M. Moti Yung

IPC: H04L9/32 ,  H04L9/08

Abstract: Methods, systems, and computer media provide attestation tokens that protect the integrity of communications transmitted from client devices, while at the same time avoiding the use of stable device identifiers that could be used to track client devices or their users. In one approach, client devices can receive anonymous certificates from a device integrity computing system signifying membership in a selected device trustworthiness group, and attestation tokens can be signed anonymously with the anonymous certificates using a group signature scheme. Client devices can include throttlers imposing limits on the quantity of attestation tokens created by the client device.

公开(公告)号：US20220278828A1

公开(公告)日：2022-09-01

申请号：US17637849

申请日：2021-08-13

Applicant: Google LLC

Inventor： Gang Wang ,  Ardian Poernomo

IPC: H04L9/08

Abstract: This document describes techniques that prevent the sharing or leakage of user information. In one aspect, a method includes receiving, by a first MPC server, a request for a selection criterion of at least one interest group to which a user of a client device belongs. The received request does not reveal an identifier of the client device to the first MPC server. In response to receiving the request, the first MPC server determines a set of ordered selection criterion of the at least one interest group retrieved from a cache of the first MPC server. The set of ordered selection criterion is transformed into a set of key/value pairs secured from being revealed by the second MPC server. The first MPC server transmits the set of key/value pairs to the second MPC server with data that enables the second MPC server to identify a key having a highest value.

公开(公告)号：US20220253557A1

公开(公告)日：2022-08-11

申请号：US17627033

申请日：2020-04-16

Applicant: Google LLC

Inventor： Michael Kleber ,  Zhenyu Liu ,  Josh Karlin ,  Deepak Ravichandran ,  Nitish John Korula ,  Yijian Bai ,  Jason Hsueh ,  Gang Wang

IPC: G06F21/62 ,  G06N20/00 ,  H04L67/53 ,  H04L67/50

Abstract: The present disclosure provides systems and methods for client-side anonymized content selections. The method includes collecting a plurality of identifications of content selection lists, each content selection list associated with the first device and at least one other device. The method includes selecting a first subset of the content selection lists, responsive to a total number of unique device associated with a plurality of content selection lists of the first subset exceeding a threshold. The method includes transmitting a request for an item of content, the request comprising identifications of the content selection lists of the selected first subset. The method includes receiving a first item of content selected by the content server based on the content selection lists of the selected first subset.

公开(公告)号：US20210385086A1

公开(公告)日：2021-12-09

申请号：US17408293

申请日：2021-08-20

Applicant: Google LLC

Inventor： Zhong Wang ,  Gang Wang

IPC: H04L9/32 ,  H04L9/08 ,  H04L29/08

Abstract: At least one aspect is directed to improving the performance of real-time verification of online identity. The issuer computing system can receive a request to generate a composite token, the composite token configured to authorize certain verifying parties to authenticate a first-party token comprising information about a client. The issuer can generate a composite token using cryptographic keys and distribute it to the client, who can distribute it to other content item networks. The verifying parties can receive the composite token from the content item networks, use a cryptographic key verify the authenticity of the token corresponding to the client device, and use the token to further process content item operations. The system can distribute the cryptographic keys prior to the generation and verification of the composite token, and as such allow the parties to verify the composite token in real-time without contacting outside verification parties.