公开(公告)号：US10462213B2

公开(公告)日：2019-10-29

申请号：US15599035

申请日：2017-05-18

Applicant: BANK OF AMERICA CORPORATION

Inventor： Yair Frankel ,  Abdul Rafman Azeez ,  Jisoo Lee ,  Joerg Schneider ,  Boulos M. Dib

IPC: H04L9/30 ,  H04L29/08 ,  H04L29/06 ,  H04L9/08 ,  H04L9/32

Abstract: A system that includes a first network node configured to store a first ledger, a second network node configured to store a second ledger, and a third network node. The third network node includes a transformation engine configured to generate a plurality of shares derived using a data entry, which includes setting a share quantity indicating the number of shares to generate and setting a threshold value indicating the number of shares from the share quantity needed to determine the data entry. The transformation engine generates a first share for the first ledger and a second share for the second ledger using a polynomial function. The transformation engine includes enriched data with information indicating when to publish the first share and the second share. The transformation engine transmits the first enriched share to the first network node and transmit the second enriched share to the second network node.

公开(公告)号：US10447697B2

公开(公告)日：2019-10-15

申请号：US15604946

申请日：2017-05-25

Applicant: BANK OF AMERICA CORPORATION

Inventor： Yair Frankel ,  Jisoo Lee ,  Abdul Rafman Azeez

IPC: H04L29/06

Abstract: A system that includes a first network device in a first network configured to send a file from a plurality of files to a compliance controller in the first network. The compliance controller is configured to determine whether the file satisfies a set of compliance rules and to send the file to the virtual machine in the first network in response to determining that the file satisfies the set of compliance rules. The virtual machine is configured to send the file to a second network device in a second network via a network interface. The network interface is configured to block the first network device from sending the file from the first memory to the second network device in the second network. The network interface is also configured to send the file from the virtual machine to the second network device in the second network.

公开(公告)号：US10147284B2

公开(公告)日：2018-12-04

申请号：US15630021

申请日：2017-06-22

Applicant: Bank of America Corporation

Inventor： Jisoo Lee ,  Richard E. Barron ,  Yair Frankel ,  Rafman Azeez ,  Saul Florez

IPC: G07F19/00 ,  G06Q20/10 ,  G06Q20/32 ,  G06Q20/40

Abstract: Aspects of the disclosure relate to deploying, configuring, and utilizing cash handling devices to provide dynamic and adaptable operating functions. A cash handling device having at least one processor, a memory, and a communication interface may store a device registration module, a containerized operating module, a non-engagement services module, and a secure communications module. The device registration module may include instructions that cause the cash handling device to register with a support server and a plurality of financial institution servers. The containerized operating module may include instructions that cause the cash handling device to selectively execute a first operating application or a second operating application. The non-engagement services module may include instructions that cause the cash handling device to generate and present one or more non-engagement user interfaces. The secure communications module may include instructions that cause the cash handling device to track and securely communicate transaction details information.

公开(公告)号：US09992606B2

公开(公告)日：2018-06-05

申请号：US14634462

申请日：2015-02-27

Applicant: Bank of America Corporation

Inventor： Jisoo Lee ,  Yair Frankel ,  Eins K. Joseph ,  Todd Michael Goodyear ,  Francis George Farro, II ,  James P. Scopis ,  Brian Joseph Smith

IPC: G06F15/16 ,  G06F17/30 ,  H04L29/06 ,  H04W4/00 ,  H04W12/06 ,  H04W4/02 ,  H04W84/12

CPC classification number: H04W4/50 ,  H04L63/0227 ,  H04L63/0823 ,  H04W4/021 ,  H04W12/06 ,  H04W84/12

Abstract: Disclosed is a personal device container system. The personal device container system typically includes a processor, a memory, and an access management module stored in the memory. The personal device container system is typically configured to establish network communication between a personal computing device and a provisioning system that validates the identity of the personal computing device and provides a certificate to the personal computing device. Thereafter, the personal computing device requests access to a secured network segment and provides the certificate to the personal device container system. The personal device container system then authenticates the personal computing device's certificate before allowing the personal computing device to communicate with the secured network segment. User credentials associated with a user are authenticated before user-specific content associated with the user is provided to the personal computing device. Accordingly, a user-specific experience may be provided to different users of the personal computing device.

公开(公告)号：US20160255077A1

公开(公告)日：2016-09-01

申请号：US14634472

申请日：2015-02-27

Applicant: BANK OF AMERICA CORPORATION

Inventor： Jisoo Lee ,  Brian Joseph Smith ,  Yair Frankel ,  James P. Scopis ,  Eins K. Joseph ,  Todd Michael Goodyear ,  Francis George Farro, II

IPC: H04L29/06

CPC classification number: H04L63/0823 ,  H04L63/0272 ,  H04L63/0815 ,  H04L63/0853 ,  H04W12/06

Abstract: Disclosed is a system for providing multi-user management for personal computing devices over an entity network. The system is typically configured to (i) receive a first request from the personal computing device to receive first user-specific information, (ii) authenticate the user identifier associated with the first user, (iii) associate the user identifier associated with the first user with the device identifier, (iv) communicate a first response to the personal computing device based on authenticating the user identifier, (v) receiving a second request from the personal computing device to receive second user-specific information associated with the first user for a second application, (vi) determining that the device identifier is associated with the user identifier associated with the first user, (vii) and communicating a second response to the personal computing device based on determining that the device identifier is associated with the user identifier associated with the first user.

Abstract translation: 公开了一种用于在实体网络上为个人计算设备提供多用户管理的系统。 该系统通常被配置为（i）从个人计算设备接收第一请求以接收第一用户特定信息，（ii）验证与第一用户相关联的用户标识符，（iii）将与第一用户相关联的用户标识符与第一 具有所述设备标识符的用户，（iv）基于认证所述用户标识符来传达对所述个人计算设备的第一响应，（v）从所述个人计算设备接收第二请求以接收与所述第一用户相关联的第二用户特定信息， 第二应用，（vi）确定所述设备标识符与与所述第一用户相关联的用户标识符相关联，（vii）并且基于确定所述设备标识符与所述用户标识符相关联来向所述个人计算设备传送第二响应 与第一用户相关联。

公开(公告)号：US20200067890A1

公开(公告)日：2020-02-27

申请号：US16666103

申请日：2019-10-28

Applicant: BANK OF AMERICA CORPORATION

Inventor： Yair Frankel ,  Abdul Rafman Azeez

IPC: H04L29/06 ,  H04L9/32 ,  H04L9/08

Abstract: An apparatus that includes a memory configured to store encryption keys and encrypted data entries. The apparatus further includes an encryption service engine configured to periodically re-encrypt the encrypted data element, which includes determining that an encryption wait time period has lapsed, obtaining a first encryption key using a first key index, and decrypting the encrypted data element using the first encryption key to recover the original data. The encryption service engine is further configured to obtain a second encryption key, encrypt the original data using the second encryption key, and modify the metadata linked with the encrypted data element with a second key index referencing the second encryption key. The encryption service engine is further configured to receive a data request for the encrypted data element, to send the encrypted data element, and to limit the bandwidth of a data channel used to send the encrypted data element.

公开(公告)号：US20180337695A1

公开(公告)日：2018-11-22

申请号：US15599176

申请日：2017-05-18

Applicant: BANK OF AMERICA CORPORATION

Inventor： Yair Frankel ,  Abdul Rafman Azeez ,  Jisoo Lee ,  Joerg Schneider ,  Boulos M. Dib

IPC: H03M13/43 ,  H04W88/06 ,  G06F17/30 ,  G06F17/17 ,  H04L9/08

CPC classification number: H04L9/0825 ,  H04L9/085 ,  H04L9/3239 ,  H04L45/22 ,  H04L63/0428 ,  H04L2209/38 ,  H04W88/06

Abstract: A system that includes a first network node configured to store a first ledger, a second network node configured to store a second ledger, and a third network node. The third network node includes a transformation engine configured to obtain a plurality of enriched shares from at least one ledger using an index identifying enriched shares linked with a data entry. The number of obtained enriched shares is at least a threshold value corresponding to the number of enriched shares needed to determine the data entry. The transformation engine configured to remove enriched data from the plurality of enriched shares to generate a plurality of shares and perform polynomial interpolation using the plurality of shares to determine the result of the polynomial interpolation at zero. The result of the polynomial interpolation at zero is equal to the data entry.

公开(公告)号：US20180233000A1

公开(公告)日：2018-08-16

申请号：US15630021

申请日：2017-06-22

Applicant: Bank of America Corporation

Inventor： Jisoo Lee ,  Richard E. Barron ,  Yair Frankel ,  Rafman Azeez ,  Saul Florez

IPC: G07F19/00 ,  G06Q20/10 ,  G06Q20/32

CPC classification number: G06K7/10415 ,  G06Q20/108 ,  G06Q20/1085 ,  G06Q20/3223 ,  G06Q20/40 ,  G06Q20/401 ,  G06Q40/02 ,  G06Q2220/10 ,  G07F19/201 ,  G07F19/202 ,  G07F19/203 ,  G07F19/206 ,  G07F19/211

Abstract: Aspects of the disclosure relate to deploying, configuring, and utilizing cash handling devices to provide dynamic and adaptable operating functions. A cash handling device having at least one processor, a memory, and a communication interface may store a device registration module, a containerized operating module, a non-engagement services module, and a secure communications module. The device registration module may include instructions that cause the cash handling device to register with a support server and a plurality of financial institution servers. The containerized operating module may include instructions that cause the cash handling device to selectively execute a first operating application or a second operating application. The non-engagement services module may include instructions that cause the cash handling device to generate and present one or more non-engagement user interfaces. The secure communications module may include instructions that cause the cash handling device to track and securely communicate transaction details information.

公开(公告)号：US20180232713A1

公开(公告)日：2018-08-16

申请号：US15630216

申请日：2017-06-22

Applicant: Bank of America Corporation

Inventor： Jisoo Lee ,  Yair Frankel ,  Saul Florez ,  Richard E. Barron ,  Rafman Azeez

IPC: G06Q20/10 ,  G06Q40/02 ,  G07F19/00

CPC classification number: G07F19/206 ,  G06K7/10415 ,  G06Q20/108 ,  G06Q20/1085 ,  G06Q20/3223 ,  G06Q20/3825 ,  G06Q20/40 ,  G06Q20/401 ,  G06Q20/4014 ,  G06Q40/02 ,  G06Q2220/10 ,  G07F19/201 ,  G07F19/202 ,  G07F19/203 ,  G07F19/211

Abstract: Aspects of the disclosure relate to deploying, configuring, and utilizing cash handling devices to provide dynamic and adaptable operating functions. A cash handling device having at least one processor, a memory, and a communication interface may store a device registration module, a containerized operating module, a non-engagement services module, and a secure communications module. The device registration module may include instructions that cause the cash handling device to register with a support server and a plurality of financial institution servers. The containerized operating module may include instructions that cause the cash handling device to selectively execute a first operating application or a second operating application. The non-engagement services module may include instructions that cause the cash handling device to generate and present one or more non-engagement user interfaces. The secure communications module may include instructions that cause the cash handling device to track and securely communicate transaction details information.

公开(公告)号：US20160255456A1

公开(公告)日：2016-09-01

申请号：US14634462

申请日：2015-02-27

Applicant: Bank of America Corporation

Inventor： Jisoo Lee ,  Yair Frankel ,  Eins K. Joseph ,  Todd Michael Goodyear ,  Francis George Farro, II ,  James P. Scopis ,  Brian Joseph Smith

IPC: H04W4/00 ,  H04W12/06

CPC classification number: H04W4/50 ,  H04L63/0227 ,  H04L63/0823 ,  H04W4/021 ,  H04W12/06 ,  H04W84/12

Abstract: Disclosed is a personal device container system. The personal device container system typically includes a processor, a memory, and an access management module stored in the memory. The personal device container system is typically configured to establish network communication between a personal computing device and a provisioning system that validates the identity of the personal computing device and provides a certificate to the personal computing device. Thereafter, the personal computing device requests access to a secured network segment and provides the certificate to the personal device container system. The personal device container system then authenticates the personal computing device's certificate before allowing the personal computing device to communicate with the secured network segment. User credentials associated with a user are authenticated before user-specific content associated with the user is provided to the personal computing device. Accordingly, a user-specific experience may be provided to different users of the personal computing device.

Abstract translation: 公开了一种个人装置容器系统。 个人设备容器系统通常包括处理器，存储器和存储在存储器中的访问管理模块。 个人设备容器系统通常被配置为在个人计算设备和供应系统之间建立网络通信，其验证个人计算设备的身份，并向个人计算设备提供证书。 此后，个人计算设备请求访问安全网段，并将证书提供给个人设备容器系统。 然后，个人设备容器系统在允许个人计算设备与安全网段进行通信之前验证个人计算设备的证书。 在与用户相关联的用户特定内容被提供给个人计算设备之前，与用户相关联的用户凭证被认证。 因此，可以向个人计算设备的不同用户提供用户特定的体验。