Craig Stephen Etchegoyen

US Patent:

8239852, Aug 7, 2012

Filed:

Jun 18, 2010

Appl. No.:

12/818906

Inventors:

Craig Stephen Etchegoyen - Irvine CA, US

Assignee:

Uniloc Luxembourg S.A. - Luxembourg

International Classification:

G06F 9/44

US Classification:

717172, 717168, 717171

Abstract:

A system for remotely updating a program configuration includes an update server in communication with a client device configured to execute a remote update program. The client device includes a first processor coupled to memory storing the program which, executed, performs physical device recognition on the client device to determine its machine parameters, and generates unique device identifiers based thereon, and a first transceiver configured to send the identifiers to the update server. The update server is configured to collect the identifiers from the client device, and includes a second processor for analyzing the identifiers and determining an updated program configuration based on the collected identifiers matching known identifiers, and a second transceiver configured to deliver data representing the updated program configuration to the client device for storage therein.

US Patent:

8316421, Nov 20, 2012

Filed:

Oct 13, 2010

Appl. No.:

12/903948

Inventors:

Craig S. Etchegoyen - Irvine CA, US

Assignee:

Uniloc Luxembourg S.A. - Luxembourg

International Classification:

H04L 29/06

US Classification:

726 4, 726 1, 726 2, 726 3, 726 16, 726 17, 726 21, 726 26, 726 27, 726 30, 713168, 713176, 713177, 713180, 713187, 709217, 709219, 709224, 709225, 709229

Abstract:

A system for building tolerance into authentication of a computing device includes a means for executing, from a computer-readable medium, computer-implementable steps of: (a) receiving and storing a first digital fingerprint of the device during a first boot of an authenticating software on the device, the first digital fingerprint based on a first set of device components, (b) receiving a second digital fingerprint from the device at a subsequent time, (c) comparing the second digital fingerprint with a plurality of stored digital fingerprints of known devices, (d) in response to the comparison indicating a mismatch between the second digital fingerprint and the plurality of stored digital fingerprints, generating a request code comprising instructions for the device to generate a third digital fingerprint using the first set of device components, (e) sending the request code to the remote device, (f) receiving the third digital fingerprint from the remote device in response to the request code, and (g) authenticating the device based on a comparison of the first and third digital fingerprints.

US Patent:

8374968, Feb 12, 2013

Filed:

Feb 20, 2009

Appl. No.:

12/390273

Inventors:

Craig S. Etchegoyen - Irvine CA, US

Assignee:

Uniloc Luxembourg S.A. - Luxembourg

International Classification:

G06F 7/04
G06F 21/00

US Classification:

705 59, 705 50, 705 51, 726 26

Abstract:

The provided software application includes a module that determines a machine fingerprint of a client device at an appropriate time, such as during initial software load on the client. The fingerprint may comprise various machine-determinable measures of system configuration for the client. Each application copy may be associated with a serial number. A license host may collect serial number, fingerprint and/or IP address information from clients on which the application is installed. The host may generate a map of application installations, including geographic locations of installations and number of unique serial numbers per client in specified regions.

US Patent:

8423473, Apr 16, 2013

Filed:

May 20, 2010

Appl. No.:

12/784262

Inventors:

Craig S. Etchegoyen - Irvine CA, US

Assignee:

Uniloc Luxembourg S. A. - Luxembourg

International Classification:

G06F 21/00

US Classification:

705 59, 705 51, 705 52, 705 53, 705 54, 705 55, 705 56, 705 57, 705 58, 705902, 726 26, 726 31, 726 32, 726 33

Abstract:

Techniques are provided for controlling the activation of computer games. In one embodiment, the technique may involve receiving a combination of a game identifier for the game and a device identifier for the device. The technique may further involve accessing a database of known game identifiers, each known game identifier being associated with a device count corresponding to a total number of known devices on which a known game was previously played or activated, and obtaining a usage policy for the game.

US Patent:

8438394, May 7, 2013

Filed:

Jul 8, 2011

Appl. No.:

13/179387

Inventors:

Craig S. Etchegoyen - Newport Beach CA, US
Dono Harjanto - Irvine CA, US

Assignee:

NetAuthority, Inc. - San Francisco CA

International Classification:

H04L 29/06

US Classification:

713175, 726 2, 726 10

Abstract:

A device-bound certificate authority binds a certificate to one or more devices by including digital fingerprints of the devices in the certificate. A device only uses a device-bound certificate if the digital fingerprint of the device is included in the certificate and is verified. Thus, a certificate is only usable by one or more devices to which the certificate is explicitly bound. Such device-bound certificates can be used for various purposes served by certificates generally such as device driver authentication and authorization of access to secure content, for example.

US Patent:

8446834, May 21, 2013

Filed:

Oct 21, 2011

Appl. No.:

13/279164

Inventors:

Craig Stephen Etchegoyen - Newport Beach CA, US
Dono Harjanto - Irvine CA, US

Assignee:

NetAuthority, Inc. - San Francisco CA

International Classification:

H04L 12/26

US Classification:

370248, 370392, 726 22

Abstract:

Tokens identifying all of the physical routing devices, i. e. , network nodes, through which a packet travels are recorded in a limited amount of space reserved in the header of the packet for such tokens. When insufficient space remains in the header of the packet for all tokens required to identify all physical routing devices through which the packet travels, sequences of multiple tokens are replaced with an abbreviation token representing the sequence. The sequence of tokens represented by an abbreviation token can also be abbreviation tokens, supporting recursive abbreviation of the token sequence in the header of the packet as needed to record the entire route of the packet through the network regardless of the limited space in the header for tracking the route of the packet.

US Patent:

8452960, May 28, 2013

Filed:

Jun 10, 2010

Appl. No.:

12/813362

Inventors:

Craig Stephen Etchegoyen - Irvine CA, US

Assignee:

NetAuthority, Inc. - San Francisco CA

International Classification:

G06F 21/20

US Classification:

713168, 726 7

Abstract:

A system for content delivery operates as a static network device for delivering content to a mobile node. The system includes a transceiver adapted to receive a device identifier over a public network from the mobile node, the device identifier based on a combination of user-configurable and non-user-configurable parameters of the mobile node, a processor operatively coupled to the transceiver and to memory storing executable code. Executed, the code enables the processor to access a database of authorized device identifiers corresponding to known mobile nodes, establish, in response to the received device identifier matching one of the authorized device identifiers, a secure private network (SPN) with the mobile node, the established SPN tunneling across a segment of the public network, obtain the content for the mobile node, and send the content to the mobile node via the SPN.

US Patent:

8464059, Jun 11, 2013

Filed:

Dec 5, 2008

Appl. No.:

12/329419

Inventors:

Ric B. Richardson - Irvine CA, US
Craig S. Etchegoyen - Irvine CA, US
Dono Harjanto - Irvine CA, US
Bradley C. Davis - Irvine CA, US

Assignee:

NetAuthority, Inc. - San Francisco CA

International Classification:

H04L 9/00

US Classification:

713171, 713151, 713167, 713170, 726 26, 726 29

Abstract:

Techniques are provided secured communication of data, such as in the context of a public key infrastructure (PKI). In one embodiment, the technique may involve using a private key that is bound to the device requesting the secure data, thereby making it harder for someone to copy, steal or fake. The private key may be generated by adding a filler code to a unique device identifier. The identifier may be based on at least one user-configurable parameter and at least one non-user-configurable parameter of the device.