公开(公告)号：USRE49968E1

公开(公告)日：2024-05-14

申请号：US17752536

申请日：2022-05-24

申请人： Ping Identity Corporation

发明人： Armin Ebrahimi ,  Gaurav Khot ,  Vladimir Reshetnikov ,  Robert Gadbois

IPC分类号： G06K7/14 ,  G06F7/58 ,  G06Q20/06 ,  G06Q20/38 ,  H04L9/00 ,  H04L9/06 ,  H04L9/32

CPC分类号： G06K7/1417 ,  G06Q20/065 ,  G06Q20/38215 ,  G06Q20/3827 ,  H04L9/0643 ,  H04L9/3236 ,  H04L9/3247 ,  H04L9/3263 ,  H04L9/3297 ,  G06F7/588 ,  G06Q2220/00 ,  H04L9/50

摘要： Method of certification including receiving user data at a device of a certifying entity. The method includes generating a salt that is unique. The method includes hashing the data combined with the salt to create a generated hashed data. The method includes generating a certification record based on signing the generated hashed data using a private key of the certifying entity to create a signed certification of the data. The method includes hashing the certification record. The method includes transmitting the hashed certification record to a blockchain for storing. The method includes receiving a certification tx-ID of the hashed certification record. The method includes generating a certification data block including the certification record and the certification tx-ID. The method includes storing the certification data block to a side chain.

公开(公告)号：US11658961B2

公开(公告)日：2023-05-23

申请号：US17480673

申请日：2021-09-21

申请人： Ping Identity Corporation

发明人： Armin Ebrahimi ,  Gaurav Khot ,  Vladimir Reshetnikov ,  Robert Gadbois

IPC分类号： H04L9/40 ,  G06F21/31 ,  G06F21/64 ,  H04L9/32 ,  H04L9/00

CPC分类号： H04L63/083 ,  G06F21/31 ,  G06F21/645 ,  H04L9/3236 ,  H04L9/3247 ,  H04L9/3271 ,  H04L9/3297 ,  H04L9/40 ,  H04L63/0435 ,  H04L63/0442 ,  H04L63/061 ,  H04L63/08 ,  H04L63/0861 ,  H04L9/50 ,  H04L63/0876

摘要： Method of authentication including sending a login web page to a first device of a user including a scannable code having an envelope ID and a login challenge. The envelope ID generated by an identity manager is associated with a first envelope of data including a session ID. A confirmation login request is received from a second device associated with the user, and includes a second envelope of data comprising the session ID, a user ID, and a seal of the user ID registering the user ID with the identity manager. The confirmation login request to the login challenge is verified using the session ID, and the user is verified using the user ID and seal. User login is authorized upon successful verification of the login challenge and user, and a communication session having the session ID is established between the web server and the first device.

公开(公告)号：US11323272B2

公开(公告)日：2022-05-03

申请号：US16697131

申请日：2019-11-26

申请人： Ping Identity Corporation

发明人： Armin Ebrahimi ,  Gaurav Khot ,  Vladimir Reshetnikov ,  Robert Gadbois

IPC分类号： H04L9/32 ,  H04L9/06 ,  G06Q20/06 ,  G06K7/14 ,  G06Q20/38 ,  G06F7/58

摘要： Method of certification including receiving user data at a device of a certifying entity. The method includes generating a salt that is unique. The method includes hashing the data combined with the salt to create a generated hashed data. The method includes generating a certification record based on signing the generated hashed data using a private key of the certifying entity to create a signed certification of the data. The method includes hashing the certification record. The method includes transmitting the hashed certification record to a blockchain for storing. The method includes receiving a certification tx-ID of the hashed certification record. The method includes generating a certification data block including the certification record and the certification tx-ID. The method includes storing the certification data block to a side chain.

公开(公告)号：US11818265B2

公开(公告)日：2023-11-14

申请号：US17386787

申请日：2021-07-28

申请人： Ping Identity Corporation

发明人： Armin Ebrahimi ,  Gaurav Khot

IPC分类号： H04L9/40 ,  H04L9/08 ,  G06F16/22 ,  G06F21/46

CPC分类号： H04L9/0894 ,  G06F16/2255 ,  G06F21/46

摘要： A method for recovering data. Identity factors are collected at a device, wherein hashes of the identity factors are configured to be stored at a server. A dynamic password is generated at the device based on the identity factors and a Salt generated by the server and configured to be delivered to the device. A selfie is captured of a user. The device generates a symmetric key used to encrypt the selfie. The symmetric key is encrypted using the dynamic password. The encrypted symmetric key and the encrypted selfie are stored on the server. One or more data items are stored on the server. The dynamic password is recoverable by presenting the plurality of identity factors that are hashed to the server. The symmetric key is recoverable using the recovered dynamic password. The data items are recoverable by presenting the symmetric key and a second selfie of the user.

公开(公告)号：US11799668B2

公开(公告)日：2023-10-24

申请号：US17732746

申请日：2022-04-29

申请人： Ping Identity Corporation

发明人： Armin Ebrahimi ,  Gaurav Khot ,  Vladimir Reshetnikov ,  Robert Gadbois

IPC分类号： H04L9/32 ,  H04L9/06 ,  G06Q20/06 ,  G06K7/14 ,  G06Q20/38 ,  G06F7/58 ,  H04L9/00

CPC分类号： H04L9/3263 ,  G06K7/1417 ,  G06Q20/065 ,  G06Q20/3827 ,  G06Q20/38215 ,  H04L9/0643 ,  H04L9/3236 ,  H04L9/3247 ,  H04L9/3297 ,  G06F7/588 ,  G06Q2220/00 ,  H04L9/50

摘要： Method of certification including receiving user data at a device of a certifying entity. The method includes generating a salt that is unique. The method includes hashing the data combined with the salt to create a generated hashed data. The method includes generating a certification record based on signing the generated hashed data using a private key of the certifying entity to create a signed certification of the data. The method includes hashing the certification record. The method includes transmitting the hashed certification record to a blockchain for storing. The method includes receiving a certification tx-ID of the hashed certification record. The method includes generating a certification data block including the certification record and the certification tx-ID. The method includes storing the certification data block to a side chain.

公开(公告)号：US11770418B2

公开(公告)日：2023-09-26

申请号：US18162472

申请日：2023-01-31

申请人： Ping Identity Corporation

发明人： Darrell Geusz ,  Bjorn Aannestad ,  Gaurav Khot ,  Alden Shiverick

IPC分类号： H04L9/40

CPC分类号： H04L63/20 ,  H04L63/08 ,  H04L63/102

摘要： In an embodiment, a method includes receiving, by a processor and from a user device associated with a user, a request to access a service associated with a first protocol. The method further includes receiving, by the processor, a virtual credential of the user authorized by an authorizing entity. The virtual credential is compliant with a second protocol different than the first protocol. The method further includes verifying, by the processor, that the virtual credential is authorized by the authorizing entity. The method further includes transforming, by the processor, the virtual credential to generate a transformed virtual credential compliant with the first protocol. The method further includes sending, by the processor, a representation of the transformed virtual credential to the service. The method further includes verifying, by the processor and after the sending, that the transformed virtual credential is valid.

公开(公告)号：US11544487B2

公开(公告)日：2023-01-03

申请号：US17370731

申请日：2021-07-08

申请人： Ping Identity Corporation

发明人： Armin Ebrahimi ,  Gaurav Khot ,  Bhavya Chauhan

IPC分类号： G06K7/14 ,  G06K5/04 ,  G06K9/00 ,  H04L9/06 ,  H04L9/32 ,  G09C5/00 ,  H04L9/00

摘要： A method of confirming receipt, including iteratively capturing by a receiving device visual codes in a series of visual codes displayed on a sending device. A corresponding captured visual code being from a display block that resulted from a partition of an original data file into display blocks, and wherein each display block is converted to a corresponding string and header including an ordered identifying display block number and a total count of the display blocks. Each corresponding string is converted to a corresponding visual code. Each of the captured visual codes is converted into a corresponding string and a header is read for the corresponding string. Captured display blocks are determined. A confirmation message is generated including information indicating which display blocks have been received. The confirmation message is sent over a wireless communication link to the sending device to reduce the number of visual codes being displayed.

公开(公告)号：US11134075B2

公开(公告)日：2021-09-28

申请号：US16227632

申请日：2018-12-20

申请人： Ping Identity Corporation

发明人： Armin Ebrahimi ,  Gaurav Khot ,  Vladimir Reshetnikov ,  Robert Gadbois

IPC分类号： H04L29/06 ,  G06F21/31 ,  G06F21/64 ,  H04L9/32

摘要： Method of authentication including sending a login web page to a first device of a user including a scannable code having an envelope ID and a login challenge. The envelope ID generated by an identity manager is associated with a first envelope of data including a session ID. A confirmation login request is received from a second device associated with the user, and includes a second envelope of data comprising the session ID, a user ID, and a seal of the user ID registering the user ID with the identity manager. The confirmation login request to the login challenge is verified using the session ID, and the user is verified using the user ID and seal. User login is authorized upon successful verification of the login challenge and user, and a communication session having the session ID is established between the web server and the first device.

公开(公告)号：US11082221B2

公开(公告)日：2021-08-03

申请号：US16656459

申请日：2019-10-17

申请人： Ping Identity Corporation

发明人： Armin Ebrahimi ,  Gaurav Khot

IPC分类号： G06F21/00 ,  H04L9/08 ,  G06F16/22 ,  G06F21/46

摘要： A method for recovering data. Identity factors are collected at a device, wherein hashes of the identity factors are configured to be stored at a server. A dynamic password is generated at the device based on the identity factors and a Salt generated by the server and configured to be delivered to the device. A selfie is captured of a user. The device generates a symmetric key used to encrypt the selfie. The symmetric key is encrypted using the dynamic password. The encrypted symmetric key and the encrypted selfie are stored on the server. One or more data items are stored on the server. The dynamic password is recoverable by presenting the plurality of identity factors that are hashed to the server. The symmetric key is recoverable using the recovered dynamic password. The data items are recoverable by presenting the symmetric key and a second selfie of the user.

公开(公告)号：US11062106B2

公开(公告)日：2021-07-13

申请号：US16697110

申请日：2019-11-26

申请人： Ping Identity Corporation

发明人： Armin Ebrahimi ,  Gaurav Khot ,  Bhavya Chauhan

IPC分类号： G06K7/10 ,  G06K19/06 ,  G06K7/14 ,  H04L9/06 ,  H04L9/32 ,  G09C5/00

摘要： A method of confirming receipt, including iteratively capturing by a receiving device visual codes in a series of visual codes displayed on a sending device. A corresponding captured visual code being from a display block that resulted from a partition of an original data file into display blocks, and wherein each display block is converted to a corresponding string and header including an ordered identifying display block number and a total count of the display blocks. Each corresponding string is converted to a corresponding visual code. Each of the captured visual codes is converted into a corresponding string and a header is read for the corresponding string. Captured display blocks are determined. A confirmation message is generated including information indicating which display blocks have been received. The confirmation message is sent over a wireless communication link to the sending device to reduce the number of visual codes being displayed.