My Patents

Computer-implemented Security Methods and Systems

Abstract

One method involves a machine learning algorithm updating weighting coefficients associated with threat factors, threat factors having values defined for requests for peripheral devices to connect to networked devices coupled to a secure network; updating a security policy associated with the secure network in respect of a particular threat factor when that threat factor’s weighting coefficient changes by more than a predetermined amount in a predetermined period; and automatically approving or denying requests for peripheral devices to connect to the networked devices in dependence on that policy. Another method involves obtaining a peripheral connection request profile, obtaining a threat score associated with the request, where the threat score is determined from a weighted combination of threat factors dependent on contents of a field of the profile and having a weighting coefficient; denying the request when the threat score is above a threshold, otherwise, obtaining a policy decision based on profile and secure network policy comparison and providing request approval or denial according to the policy decision. Storing the profile in a database in association with an approval/denial indication of the request, updating weighting coefficients in dependence on the database contents, and updating the policy in response to changing weighting coefficients.

Assignee

British Telecommunications PLC (BT)

Inventors

Daniel Bastos, Behnam Azvine, Fadi El-Moussa

Patent Status

UK’s Intellectual Property Office (IPO)

  • Status: Granted
  • Publication Number: GB2597909
  • Filing Date: 17 July 2020
  • Publication Date: 16 February 2022
  • Grant Date: 09 August 2022

European Patent Office

  • Status: Granted
  • Publication Number: EP3941017
  • Filing Date: 10/06/2021
  • Publication Date: 19/01/2022
  • Grant Date: 12/10/2022

US Patent Office

  • Status: Pending
  • Publication Number: US20220021709A1
  • Filing Date: 14/06/2021
  • Publication Date: 20/01/2022
  • Grant Date: –

Secure Publish-Subscribe Communication Methods and Apparatus

Abstract

Improvements to publish-subscribe protocols are provided, including a method for communicating data in a network comprising publisher devices, a broker and subscriber devices, comprising one of the publisher devices: i-a. receiving a public key from the broker; i-b. determining, based on one or more attributes of data to be published to the broker, whether a sensitivity level of the data is low; and ii. following completion of both of steps i-a and i-b, publishing the data to the broker, wherein: when step i-b results in a determination that the sensitivity level of the data is low, step ii comprises transmitting the data to the broker unencrypted; and when step i-b results in a determination that the sensitivity level of the data is not low, step ii comprises encrypting the data then transmitting resulting encrypted data to the broker, wherein the step of encrypting the data uses the public key.

Assignee

British Telecommunications PLC (BT)

Inventors

Daniel Bastos, Fadi El-Moussa

Patent Status

UK’s Intellectual Property Office (IPO)

  • Status: Granted
  • Publication Number: GB2588107
  • Filing Date: 07 October 2019
  • Publication Date: 21 April 2021
  • Grant Date: 04 October 2022

European Patent Office

  • Status: Pending
  • Publication Number: EP4014425
  • Filing Date: 23/06/2020
  • Publication Date: 15/04/2021
  • Grant Date: –

Data Controls

Abstract

Disclosed is a method of a host computer system to control storage by the host of data received from a network connected user device. The method starts by the host device establishing a data storage policy with the user device, the policy defining criteria for determining if data relating to the user device may be stored by the host. In response to the host accessing data relating to the user device, determining if the data can be stored by the host based on the criteria of the policy, then storing the data based on result of the determination. The data relating to the user device may be details of commutations, movements and/or locations of the user device. The host device may apply the strictest policy of the policies on file if the identity of the coupled user device cannot be determined.

Assignee

British Telecommunications PLC (BT)

Inventors

Daniel Bastos, Fadi El-Moussa

Patent Status

UK’s Intellectual Property Office (IPO)

  • Status: Pending
  • Publication Number: GB2590918
  • Filing Date: 05 January 2020
  • Publication Date: 14 July 2021
  • Grant Date: –