公开(公告)号：WO2019112684A1

公开(公告)日：2019-06-13

申请号：PCT/US2018/053595

申请日：2018-09-28

Applicant: SYMANTEC CORPORATION

Inventor： ANGARA, SriHarsha ,  LO, Michael W. ,  MEEHAN, John ,  CHILLAPPA, Srinivas ,  TIKU, Simon ,  MEHTA, Viral

IPC: H04L29/06 ,  G06F21/62

CPC classification number: G06F21/6254 ,  H04L9/321 ,  H04L63/0421

Abstract: The disclosed computer-implemented method for anonymizing user accounts may include (i) receiving an instruction to anonymize a user account to protect a user's personally identifiable information, (ii) accessing, by a security program, a settings portal for the user account in response to receiving the instruction to anonymize the user account, (iii) replacing, by the security program, original values within at least two fields within the settings portal for the user account with anonymized values to mask the user's personally identifiable information, and (iv) storing the anonymized values within a protected vault to enable the user to login to the user account. Various other methods, systems, and computer-readable media are also disclosed.

公开(公告)号：WO2019094119A1

公开(公告)日：2019-05-16

申请号：PCT/US2018/053420

申请日：2018-09-28

Applicant: INTEL CORPORATION

Inventor： SMITH, Ned M.

IPC: H04L29/06

CPC classification number: H04L63/0421 ,  H04L63/0272 ,  H04L63/0281 ,  H04W12/02

Abstract: Systems and techniques to enable message routing among multiple devices and device domains, via end-to-end tunneling techniques, are disclosed. In an example, techniques and device configurations involving the use of RESTful protocols that communicate OSCORE (Object Security for Constrained RESTful Environments) payloads over OSCORE tunnels, involve receiving an OSCORE message having an encrypted COSE (Concise Binary Object Representation (CBOR) Object Signing and Encryption) object payload and inserting the OSCORE message into an OSCORE tunnel message to implement a tunneled communication with a receiving device. Here, the tunnel message includes the OSCORE message within an envelope encrypted COSE object payload. The OSCORE tunnel message may then be transmitted to the receiving device. Further techniques and device configurations for the receipt, processing, conversion, and decryption of such tunneled messages are also disclosed.

公开(公告)号：WO2018222828A1

公开(公告)日：2018-12-06

申请号：PCT/US2018/035332

申请日：2018-05-31

Applicant: L'OREAL ,  NORWOOD, Kelsey ,  ZUCCARELLO, Kathryn ,  HAERI, Morteza ,  GOHIL, Nima ,  DOUMI, Mehdi

Inventor： NORWOOD, Kelsey ,  ZUCCARELLO, Kathryn ,  HAERI, Morteza ,  GOHIL, Nima ,  DOUMI, Mehdi

IPC: G16H30/40 ,  A45D44/00 ,  G06T17/00

CPC classification number: G06T19/20 ,  A45D44/005 ,  G06T13/40 ,  G06T15/08 ,  G06T2215/16 ,  G06T2219/2021 ,  G16H30/40 ,  H04L63/0421 ,  H04N13/189

Abstract: A system including processing circuitry configured to receive a captured image of a user; generate a three-dimensional (3D) image of the user based on the captured image of the ser; control display of an interface for receiving a selection or adjustment of a feature on the 3D image from the user; and perform adjustment of the feature on the 3D image based on the received selection or adjustment of the feature of the user to generate an updated 3D image.

公开(公告)号：WO2018208490A1

公开(公告)日：2018-11-15

申请号：PCT/US2018/028876

申请日：2018-04-23

Applicant: NEXMO INC.

Inventor： NORMAN, Mark ,  LESCELLIERE-DUMILLY, Fabien ,  NADALIN, Eric

IPC: G06F21/62

CPC classification number: H04L63/0421 ,  G06F21/602 ,  G06F21/6254 ,  H04L63/08 ,  H04L67/141 ,  H04L67/18

Abstract: Systems and methods for data localization and anonymization are provided herein. In some embodiments, systems and methods for data localization and anonymization may include receiving a communication request to send a message or establish a call between a first service provider and an end user device associated with an end user, determining that the communication request is associated with a requirement for securing personally identifiable information (PII) of the end user, and processing the communication request based on the requirement for securing the PII of the end user, wherein the requirement includes at least one of (A) localization of the communication request processing or (B) anonymization of any data records associated with the communication request that includes the PII of end user.

公开(公告)号：WO2017046713A2

公开(公告)日：2017-03-23

申请号：PCT/IB2016/055468

申请日：2016-09-14

Applicant: COLORADO CODE CRAFT PATENT HOLDCO LLC

Inventor： RUGE, Thomas

CPC classification number: H04L67/146 ,  G06F9/452 ,  H04L63/0421 ,  H04L63/083 ,  H04L67/02 ,  H04L67/32

Abstract: A client device may connect to a remote browsing server, which may browse to a Uniform Resource Identifier, render a web service or other content, and stream the content back to the client device. The client device may have a web browser through which the server may stream rendered images and which may capture various inputs, such as mouse operations, keyboard inputs, and other input. The remote browsing server may receive the inputs from the browser, then transmit the inputs to the web service through a server browser, which may render the images transmitted to the client device. The remote browsing server may be a virtual machine that may be created for a limited use, such that the virtual machine and browser may be wiped clean with each use.

Abstract translation: 客户端设备可以连接到远程浏览服务器，其可以浏览到统一资源标识符，呈现web服务或其他内容，并将内容流传送回客户端设备。 客户端设备可以具有网络浏览器，服务器可以通过该浏览器流式传输渲染图像，并且可以捕获诸如鼠​​标操作，键盘输入和其他输入的各种输入。 远程浏览服务器可以从浏览器接收输入，然后通过服务器浏览器将输入传送到Web服务，服务器浏览器可以将图像传送到客户端设备。 远程浏览服务器可以是可以为有限的使用创建的虚拟机，使得可以在每次使用时擦除虚拟机和浏览器。

公开(公告)号：WO2016200524A1

公开(公告)日：2016-12-15

申请号：PCT/US2016/031435

申请日：2016-05-09

Applicant: INTEL CORPORATION

Inventor： SMITH, Ned M. ,  POORNACHANDRAN, Rajesh

IPC: H04L9/08 ,  H04L29/08

CPC classification number: H04L63/20 ,  H04L9/008 ,  H04L9/088 ,  H04L9/30 ,  H04L63/0421 ,  H04L63/062 ,  H04L2209/42

Abstract: In one embodiment, a method includes receiving, in a system of an external verifier of a first network, a plurality of attestation reports and a plurality of attestation values from a plurality of reporting nodes of the first network, each of the plurality of attestation values randomly generated in the corresponding reporting node based on a common random seed value; determining whether at least a threshold number of the plurality of attestation values match; responsive to at least the threshold number of the plurality of attestation values matching, decrypting the plurality of attestation reports, processing the decrypted plurality of attestation reports to obtain aggregated telemetry data of the plurality of nodes, where identity of the plurality of nodes remains anonymous to the external verifier; and enforcing a security policy based at least in part on the aggregated telemetry data. Other embodiments are described and claimed.

Abstract translation: 在一个实施例中，一种方法包括在第一网络的外部验证器的系统中接收来自第一网络的多个报告节点的多个认证报告和多个认证值，所述多个认证值 基于公共随机种子值在相应报告节点中随机生成; 确定所述多个认证值中的至少阈值数量是否匹配; 响应于至少所述多个认证值的阈值数量匹配，解密所述多个认证报告，处理所述经解密的多个认证报告以获得所述多个节点的聚合遥测数据，其中所述多个节点的标识对于 外部验证者 并且至少部分地基于聚合遥测数据来执行安全策略。 描述和要求保护其他实施例。

公开(公告)号：WO2016057347A1

公开(公告)日：2016-04-14

申请号：PCT/US2015/053869

申请日：2015-10-02

Applicant: PCMS HOLDINGS, INC.

Inventor： OLLIKAINEN, Ville J. ,  KYLÄNPÄÄ, Markku ,  VAINIKAINEN, Sari Eliisa ,  BÄCK, Asta I

IPC: G06F21/62 ,  H04L29/06 ,  H04W12/02

CPC classification number: H04L63/0421 ,  G06F17/30864 ,  G06F21/6254 ,  G06F21/6263 ,  G06F2216/03 ,  G06Q30/0257 ,  G06Q30/0269 ,  H04L63/0407 ,  H04W12/02

Abstract: Disclosed herein are systems and methods for protecting user privacy in networked data collection. One embodiment takes the form of a method that includes obtaining a user-data request that is associated with a requesting party. The method also includes preparing a first candidate response to the user-data request, where the first candidate response is based at least in part on data that is associated with a first user. The method also includes receiving additional candidate responses that are respectively based on data that is respectively associated with a plurality of additional users. The method also includes determining a privacy level of the first candidate response based at least in part on the received plurality of additional candidate responses. The method also includes determining that the privacy level exceeds a privacy threshold, and responsively sending, to the requesting party, a user-data response associated with the user-data request.

Abstract translation: 这里公开的是用于在联网数据收集中保护用户隐私的系统和方法。 一个实施例采用包括获得与请求方相关联的用户数据请求的方法的形式。 该方法还包括准备对用户数据请求的第一候选响应，其中第一候选响应至少部分地基于与第一用户相关联的数据。 该方法还包括接收分别基于分别与多个附加用户相关联的数据的附加候选响应。 该方法还包括至少部分地基于所接收的多个附加候选响应来确定第一候选响应的隐私级别。 该方法还包括确定隐私级别超过隐私阈值，以及响应地向请求方发送与用户数据请求相关联的用户数据响应。

公开(公告)号：WO2016049410A1

公开(公告)日：2016-03-31

申请号：PCT/US2015/052135

申请日：2015-09-25

Applicant: MICROSOFT TECHNOLOGY LICENSING, LLC

Inventor： RIVA, Oriana ,  NATH, Suman ,  BURGER, Douglas Christopher ,  MOR, Nitesh

IPC: H04W12/02 ,  H04L29/08

CPC classification number: G06F21/6263 ,  H04L63/0421 ,  H04L67/02 ,  H04L67/22 ,  H04L67/306

Abstract: The privacy-preserving cookie generator implementations described herein create a privacy-preserving data structure (also called a privacy-preserving cookie herein) that is used to provide personalization for online services without user tracking. In some implementations the privacy-preserving cookie generator encodes a user profile (for example, based on a user's online activity) into a data structure that has naturally occurring noise and that efficiently supports noise addition. In one implementation a Bloom filter is used to create the encoded profile. Additional noise is injected into the encoded profile to create an obfuscated user profile in the form of a privacy-preserving data structure. The privacy-preserving data structure or cookie can be attached to an online service request and sent over a network to an online service provider which can use it fulfill the services request, providing a somewhat personalized result while the user's privacy is maintained.

Abstract translation: 本文所述的隐私保护cookie生成器实现创建隐私保护数据结构（也称为隐私保护cookie），其用于在没有用户跟踪的情况下为在线服务提供个性化。 在一些实现中，隐私保护cookie生成器将用户简档（例如，基于用户的在线活动）编码成具有天然存在的噪声并且有效地支持噪声添加的数据结构。 在一个实现中，布隆过滤器用于创建编码的简档。 额外的噪声被注入到编码的简档中，以隐私保护的数据结构的形式创建一个混淆的用户简档。 隐私保护数据结构或cookie可以附加到在线服务请求，并通过网络发送到在线服务提供商，其可以使用它来满足服务请求，在维护用户的隐私的同时提供稍微个性化的结果。

公开(公告)号：WO2016044741A1

公开(公告)日：2016-03-24

申请号：PCT/US2015/050968

申请日：2015-09-18

Applicant: INTERDIGITAL TECHNOLOGY CORPORATION

Inventor： LOEB, Shoshana ,  LEE, Kuo-Chu ,  YAO, Zijun

IPC: H04L29/06 ,  H04W12/02 ,  H04L29/08

CPC classification number: H04L9/3247 ,  G06F21/602 ,  G06F21/6245 ,  H04L9/0643 ,  H04L63/0407 ,  H04L63/0421 ,  H04L67/02 ,  H04L67/22 ,  H04L2209/80 ,  H04W12/02

Abstract: Methods and apparatuses are described herein to identify the anonymous events which may belong to the same customer by providing inter-event virtual linkage sequence to link anonymous behavior data from multiple independent sessions. The behavior data may be encrypted without tracking or storing all other types of data such as contact information. An anonymous user may be identified and categorized based on rhythms of predictive behavior pattern sequences by extracting signatures the rhythms to provide fast content based search to identify one or more similar behavior event patterns from a set of data. The signatures may include multiple time series vectors, which may be matched to unique patterns. Personalized services may be offered to anonymous offer pools and may be based on event patterns categories defined and detected by customized rules. The application or game may use the data collection inter-session virtual link to pull the service offer.

Abstract translation: 本文描述了通过提供事件间虚拟链接序列来链接来自多个独立会话的匿名行为数据来标识可能属于同一客户的匿名事件的方法和装置。 行为数据可以被加密而不追踪或存储所有其他类型的数据，例如联系人信息。 可以基于预测行为模式序列的节奏来识别和分类匿名用户，通过提取签名节奏来提供快速的基于内容的搜索，以从一组数据中识别一个或多个类似的行为事件模式。 签名可以包括可以与唯一模式匹配的多个时间序列向量。 个性化服务可以提供给匿名提供池，并且可以基于由定制规则定义和检测的事件模式类别。 应用程序或游戏可以使用数据收集会话间虚拟链接来拉取服务报价。

公开(公告)号：WO2016018472A3

公开(公告)日：2016-03-17

申请号：PCT/US2015023430

申请日：2015-03-30

Applicant: GRACENOTE INC

Inventor： JEFFREY MICHAEL ,  SCHERF STEVEN D ,  CREMER MARKUS K

IPC: G06F17/00 ,  G06F7/00

CPC classification number: H04L63/08 ,  G06F21/44 ,  G06F21/6218 ,  H04L63/0421 ,  H04L63/0876 ,  H04M1/72525 ,  H04N21/233 ,  H04N21/23418 ,  H04N21/2541 ,  H04N21/25875 ,  H04N21/4394 ,  H04N21/44008 ,  H04N21/4627 ,  H04N21/6582 ,  H04N21/84 ,  H04W12/02 ,  H04W12/06 ,  H04W12/08

Abstract: Example methods and systems for content-based association of a device to a user are presented. In an example method, data corresponding to each of a plurality of items of content stored within a user device are accessed. A device identifier for the user device is generated based on the data. The device identifier is transmitted from the user device to a service device to associate the user device with a user.

Abstract translation: 呈现了用于将设备与用户进行基于内容的关联的示例方法和系统。 在示例方法中，访问与存储在用户设备内的多个内容项中的每一个相对应的数据。 基于数据生成用户设备的设备标识符。 设备标识符从用户设备传输到服务设备以将用户设备与用户相关联。