Abstract: A tracking device can use a permanent encryption key pair to encrypt one or more temporary encryption key pairs, which can then be provided to a central tracking system. When a community mobile device subsequently detects the tracking device, the central tracking system provides an encrypted temporary encryption key pair to the community mobile device. The community mobile device uses the encrypted temporary encryption key pair to encrypt location data representative of a location of the community mobile device, and provides the encrypted location data to the central tracking system. When a user subsequently requests a location of the tracking device from the central tracking system, the central tracking system provides the encrypted location data, and a device of the user can decrypt the encrypted temporary encryption key pair using the permanent encryption key pair, and can decrypt the location data using the decrypted temporary encryption key pair.

Abstract: Cryptographic method for verifying data method, implemented by at least one apparatus, for comparing a first dataset and a second dataset, in particular with a view to determining whether these two datasets are identical, this method not requiring the presence of these two datasets in the apparatus, and comprising the following steps: a) mixing a number, called the mixer number, with the first dataset, using a mixing function in order to obtain mixed data, b) hashing the mixed data using a hash function, and c) comparing the hash thus obtained in step b) with a third dataset assumed to be the hash of the second dataset mixed with the same mixer number as that used in step a) and with the same mixing function.

Abstract: In certain embodiments, the use of re-usable cold storage keys to sign messages may be facilitated. In some embodiments, an offline computer system (operating within an offline computing environment) may obtain, from a removable computer-readable storage medium, signing key shards corresponding to a signing private key and a blockchain transaction to be signed, where the signing key shards satisfy a key shard threshold that is (i) a number of key shards required for reconstructing the signing private key and (ii) less than a number of key shards derived from the signing private key using a ceremony key. The offline computer system may form a ciphertext of the signing private key using the signing key shards and reconstruct the signing private key by decrypting the ciphertext using the ceremony key. The offline computer system may sign the blockchain transaction using the signing private key.

Abstract: A method, implemented by at least one apparatus, for comparing a first dataset and a second dataset, in particular with a view for determining whether these two datasets are identical. The method not requiring the presence of these two datasets in the apparatus, and including the following steps of: a) mixing a number, called the mixer number, with the first dataset, using a mixing function, in order to obtain mixed data, b) hashing the mixed data using a hash function, and c) comparing the hash thus obtained in step b) with a third dataset assumed to be the hash of the second dataset mixed with the same mixer number as that used in step a) and with the same mixing function.

Abstract: A computer-implemented access method is provided. The method comprises the steps of: (i) providing a verification data item of a one-way function chain of data items; (ii) submitting, to a blockchain (such as the Bitcoin blockchain), an access blockchain transaction comprising a data item of the chain; (iii) applying the one-way function to the data item to provide an output; (iv) comparing the output of step (iii) to the verification item to provide an outcome; and (v) based on the outcome of step (iv): (a) allocating the output as a further verification data item for verifying a further data item of the chain; and (b) granting access to a resource associated with the data item.

Abstract: A node in a plurality of nodes can perform an identity set generation process. The node can then determine a leader node. The node may diffuse an identity set from each node of the plurality of nodes to the plurality of nodes. The node can then determine a majority set including identities occurring in at least one half of the identify sets, wherein the leader node diffuses the majority set of the leader node to the plurality of nodes. The node can verify the majority set of the leader node. The node may then update the identity set based on the majority set of the leader node.

Abstract: An operator system of a wireless communication network operator sends, to a regulator system of a regulator, a record that includes information about administration of a subscription identifier associated with the wireless communication network operator. Responsive to sending the record to the regulator system, the operator system receives a response that indicates whether the regulator system approves of or rejects the record being added to a permissioned distributed database that is distributed at least in part between the regulator system and the operator system. The operator system adds or does not add the record to the permissioned distributed database depending on the response.

Abstract: A battery-powered device (BPD) node compresses certificate chains to generate compressed certificate chains. The BPD node includes a compression dictionary that indexes various data entries that occur across many certificate chains and/or repeat within a particular certificate chain. The BPD node compresses a given certificate chain by replacing data entries within the given certificate chain with indices to corresponding data entries in the compression dictionary. The indices are smaller in size than the corresponding data entries. A neighboring BPD node also includes the compression dictionary and decompresses a compressed certificate chain by replacing indices included in the compressed certificate chain with the indexed data entries stored in the compression dictionary.

Abstract: An example operation may include one or more of receiving storage requests endorsed by blockchain peers of a blockchain, selecting a group of the endorsed storage requests to be stored together and ordering the group of endorsed storage requests with respect to each other based on timestamps, encoding the group of ordered and endorsed storage requests into an image, and storing the encoded image within a data section of a block of the blockchain.

Abstract: A method of determining a confidence level associated with a device using heuristics of trust includes receiving, by an evaluating device, at least a communication from a first remote device, determining, by the evaluating device, an identity of the first remote device as a function of the at least a communication, calculating, by the evaluating device, at least a heuristic of trust as a function of the at least a communication and the identity, assigning, by the evaluating device, a first confidence level to the first remote device as a function of the at least a heuristic of trust, and assigning, by the evaluating device, an access right as a function of the first confidence level.

Abstract: The method comprises a client device receiving a verification request comprising an interaction identifier. The client device can compare samplings of block headers received from two or more full nodes. The client device can then, based on the comparing, verify at least one block header of the samplings of block headers. The client device can determine that a blockchain maintained by at least one of the two or more full nodes is valid in response to verifying the at least one block header of the samplings of block headers.

Abstract: A method verifies the ingredients in an agricultural product or byproduct. Data packages related to compound purity are uploaded and assigned a hash within a blockchain directory. These compounds are combined according to a formula in order to create batches of a product. The formula is tracked through the system and the batches become tied to the data packages associated with the compounds found within the batch. The data packages associated with the compounds within the formula can be accessed by merchants or consumers who wish to verify the ingredients contained in the batch. This method collects data to assist with supply chain management while assuring the quality of products delivered to consumers.

Abstract: Provided is a system for blockchain-based multi-factor security authentication between a mobile terminal and an IoT device, the system including: the IoT device; a user terminal remotely controlling operation of the IoT device; and an authentication server approving control of the IoT device by the user terminal, wherein the authentication server has: a first function of recording information related to a registration hash value in a blockchain; a second function of receiving an authentication hash value generated by the user terminal when approval for control of the IoT device is requested, and determining validity of the authentication hash value by using the information related to the registration hash value recorded in the blockchain; and a third function of approving control of the IoT device by the user terminal when the authentication hash value has validity as a result of the determination.

Abstract: A method for side-channel attack mitigation in streaming encryption includes reading an input stream into a decryption process, extracting an encryption envelope having a wrapped key, a cipher text, and a first message authentication code (MAC) from the input stream, generating a second MAC using the wrapped key of the encryption envelope, and performing decryption of the cipher text in constant time by determining whether the encryption envelope is authentic by comparing the first MAC extracted from the encryption envelope and the second MAC generated using the wrapped key.

Abstract: A method of determining a confidence level associated with a device using heuristics of trust includes receiving, by an evaluating device, at least a communication from a first remote device, determining, by the evaluating device, an identity of the first remote device as a function of the at least a communication, calculating, by the evaluating device, at least a heuristic of trust as a function of the at least a communication and the identity, assigning, by the evaluating device, a first confidence level to the first remote device as a function of the at least a heuristic of trust, and assigning, by the evaluating device, an access right as a function of the first confidence level.

Abstract: A method comprises receiving a session identifier from a streaming system that identifies a user session with the streaming system. The method further includes receiving a first message from a streaming system that is based on a token that is generated based on a combination of the session identifier and a timestamp at which an insertable content item was presented to the user in a content stream by the streaming system. The first message is decrypted using a plurality of timestamps that are within a range of a current time. An identifier is determined for the insertable content item based on the decrypted message. A second message is transmitted to an enabling system, the message including instructions for execution by the enabling system to execute one or more operations with the identified insertable content item.

Abstract: An example operation may include one or more of releasing, by a subscription service node, at least one blockchain transaction to a plurality of subscribing blockchain nodes requiring direct entitlement access, executing, by the subscription service node, a smart contract to calculate secondary entitlements triggered by the at least one blockchain transaction, determining, by the subscription service node, portions of second entitlement data sets allowed to be accessed by a subset of the plurality of the subscribing blockchain nodes, and sending verification data to the plurality of the subscribing blockchain nodes for verification of the second entitlement data sets.

Abstract: A method includes: a) receiving node identifiers from nodes of a plurality of nodes in a computer network; b) determining a plurality of node committees in a sampler graph comprising a plurality of nodes, wherein the node is present in a node committee in the plurality of node committees; c) and i) generating a random string; ii) performing a proof of work process using the random string and a hash function; iii) if the proof of work process yields a solution that is acceptable, then broadcasting the solution to all other nodes in the plurality of nodes, wherein the other nodes verify the solution; and iv) if the other nodes verify the solution, the node is elected to a subcommittee for the node committee, wherein the subcommittee updates the sampler graph; and d) repeating steps b) and c) until a leader committee is determined.

Abstract: Systems and methods for data security using a blockchain ledger. The system receives request associated with a product from a user. The system further obtains data associated with the product upon receiving the request. Further, the system analyses the data to using predefined parameters identify valid data and invalid data. Upon identification, the system uploads the valid data in the blockchain ledger. Further, the valid data may be displayed to the user through a channel, associated with the user, in the blockchain ledger, thereby providing the data security.

Abstract: A methodology for requesting at least one signed security measurement from at least one module is provided. The methodology includes receiving the at least one signed security measurement from the at least one module; validating the at least one signed security measurement; generating a signed dossier including all validated signed security measurements in a secure enclave, the signed dossier being used by an external network device for remote attestation of the device.