Craig M Mazzagatte

7003667, Feb 21, 2006

Oct 4, 1999

09/411070

Royce E. Slick - Mission Viejo CA, US
Craig Mazzagatte - Aliso Viejo CA, US
Neil Y. Iwamoto - Mission Viejo CA, US

Canon Kabushiki Kaisha - Tokyo

H04L 9/00
H04K 1/00
H04N 1/44

713182, 388 45, 388243, 388282, 388284, 388285

Secure transmission of data to an intended image output device, wherein the data can be used to generate an image at the intended image output device in the presence of an intended recipient. The data is encrypted using a first key. The first key is then encrypted using a second key and a third key. The second key is a public key of a first private key/public key pair, a private key of the first private key/public key pair being primarily in the sole possession of the intended image output device. The third key is a public key of a second private key/public key pair, a private key of the second private key/public key pair being primarily in the sole possession of the intended recipient of the image. The encrypted data and the twice-encrypted first key are transmitted to the intended image output device. The twice-encrypted first key is then decrypted by using the private keys of the second and first key pairs, respectively, which are primarily in the sole possession of the intended recipient device and the intended image output device, respectively.

7284061, Oct 16, 2007

Nov 13, 2001

09/986795

Don Hideyasu Matsubayashi - Monterey CA, US
Craig Mazzagatte - Aliso Viejo CA, US
Royce E Slick - Mission Viejo CA, US

Canon Kabushiki Kaisha - Tokyo

G06F 15/16
G06F 15/173
G06F 9/46
G06F 3/00
G06F 13/28
G06F 12/00
H04L 9/00

709229, 709225, 718102, 718103, 718104, 713168, 710 20, 710 28, 710 36, 710 39, 710 40, 710 54, 710200

Remotely obtaining exclusive control of a device by remotely establishing communication with the device over a network, requesting to obtain remote exclusive control of the device's capabilities, and determining whether remote exclusive control of the device's capabilities can be obtained based on whether or not another user already has exclusive control of the device's capabilities. In a first case where it is determined that remote exclusive control can be obtained, authenticating a user requesting to obtain remote exclusive control of the device's capabilities, providing the user remote exclusive control of the device's capabilities after the user has been authenticated, and temporarily deferring requests by users other than the user who has obtained remote exclusive control to perform operations utilizing the device's capabilities during a period in which the user maintains remote exclusive control of the device's capabilities. In a second case where it is determined that remote exclusive control cannot be obtained, denying the user's request to obtain remote exclusive control, adding the user to a reservation queue of user's requesting to obtain exclusive control of the device, and when the user ascends in the reservation queue to be the next user to obtain exclusive control, the user is notified that he can now obtain remote exclusive control of the device.

7305556, Dec 4, 2007

Dec 5, 2001

10/010974

Royce E. Slick - Mission Viejo CA, US
William Zhang - Irvine CA, US
Don Francis Purpura - Yorba Linda CA, US
Neil Y. Iwamoto - Mission Viejo CA, US
Craig Mazzagatte - Aliso Viejo CA, US

Canon Kabushiki Kaisha - Tokyo

H04L 9/00

713169, 713168, 713171

Securely storing a public key for encryption of data in a computing device by using a user-specific key pair which is securely stored in the computing device, including receiving a target public key corresponding to a target device, obtaining a user-specific key pair from a secure registry, using a user-specific private key from the user-specific key pair to create a target key verifier based on the target public key, storing the target key verifier and the target public key in a storage area, retrieving the target key verifier and the target public key from the storage area, applying a user-specific public key from the user-specific key pair to the target key verifier for verifying the authenticity of the target public key, and encrypting data with the target public key, if authenticity of the target public key is verified, thereby creating encrypted data for transmission to the target device.

7454796, Nov 18, 2008

Dec 22, 2000

09/747097

Craig Mazzagatte - Aliso Viejo CA, US
Don Hideyasu Matsubayashi - Monterey CA, US
Royce E. Slick - Mission Viejo CA, US

Canon Kabushiki Kaisha - Tokyo

G06F 17/30

726 28, 726 17, 726 4

Obtaining exclusive control of a printing device by deferring printing of print data in a print queue. To obtain control, the recipient performs a process which may include authentication of the recipient. Control may be obtained either before the recipient is authenticated or after a successful authentication process. After the recipient has obtained control, print data in the print queue is temporarily deferred from being printed. The recipient may then select a print job to print, including selecting a print job from among the print jobs deferred in the print queue, or selecting a file to print over a network, including the Internet or an intranet. Further, printing device resources utilized in printing data during the period of exclusive control may be tracked and correlated to the recipient who has control.

7646874, Jan 12, 2010

Dec 22, 2005

11/314089

Neil Y. Iwamoto - Mission Viejo CA, US
Royce E. Slick - Mission Viejo CA, US
Craig Mazzagatte - Aliso Viejo CA, US
Martin Martinez - Ladera Ranch CA, US

Canon Kabushiki Kaisha - Tokyo

H04L 9/08
H04L 9/00
G06Q 20/00
H04L 29/06
H04L 9/32

380278, 380277, 705 64, 705 71, 713155, 713171

The invention provides for installing encryption keys on a device not having any previous security credentials. An installation authority generates a security token to be used by the device for secure communications, and an installation credential for the device, and stores them in association with one another. A user of the device is provided with the installation credential, whereby the user inputs the installation credential into the device. The device utilizes the installation credential as a temporary security key, establishes a secure communication channel with the installation authority and requests provision of the security token. The installation authority provides the security token associated with the installation credential to the device over the established secure communication channel, and the device installs the security token, after which the device erases the installation credential from the device. The installation authority may also certify the security token and provide a certified token and a root verification certificate to the device.

7801998, Sep 21, 2010

Oct 3, 2008

12/245679

Craig M. Mazzagatte - Aliso Viejo CA, US
Yeongtau Louis Tsao - Irvine CA, US
Dariusz T. Dusberger - Irvine CA, US

Canon Kabushiki Kaisha - Tokyo

G06F 15/16

709227, 709203, 726 3

A method for establishing and maintaining a connection by a client to a server within a network includes creating a socket for connecting to the server, based on authentication information associated with the client, and connecting to the server using the socket. In addition, the method includes saving the authentication information associated the client. The method further includes in a case where subsequent connection to the server is requested by the client, reconnecting to the server via the socket, based on the saved authentication information. An apparatus for establishing and maintaining a connection by a client to a server within a network is also provided.

7946481, May 24, 2011

Jul 14, 2006

11/457748

Don H. Matsubayashi - Tustin CA, US
Craig Mazzagatte - Aliso Viejo CA, US
Neil Y. Iwamoto - Mission Viejo CA, US
Royce E. Slick - Mission Viejo CA, US
Dariusz Dusberger - Irvine CA, US
Kevin F. Piazza - Santa Ana CA, US

Canon Kabushiki Kaisha - Tokyo

G06K 5/00

235380, 235492, 235487

A method and system for registering a card that is used to enable configurations of an application and/or a device. The method and system includes initializing into an administrative card setup mode, providing information for at least one card to be registered, storing the information for the at least one card to be registered, and exiting the administrative card setup mode.

8418017, Apr 9, 2013

Aug 31, 2010

12/873308

Yeongtau Louis Tsao - Irvine CA, US
Craig M. Mazzagatte - Aliso Viejo CA, US

Canon Kabushiki Kaisha - Tokyo

H04L 1/18

714749, 714748, 714776, 709228, 370252

The present disclosure is directed to network communication between a sender and a receiver. Network communication is established between the sender and the receiver using a first acknowledgment mechanism for signifying receipt of data by the receiver. The first acknowledgment mechanism is selected from one of a receiver positive acknowledgment mechanism (RPA) and a receiver negative acknowledgment mechanism (RNA). Communication information is monitored, wherein the communication information indicates at least a current state of performance for network communication. Based on the communication information, a message is exchanged between the sender and the receiver to negotiate a switchover to a second acknowledgment mechanism for signifying receipt of data by the receiver. The second acknowledgment mechanism is selected from the other of the receiver positive acknowledgment mechanism (RPA) and the receiver negative acknowledgment mechanism (RNA). Network communication is then established between the sender and the receiver using the second acknowledgment mechanism.