Abstract: Disclosed are embodiments of systems and methods for retrieving combination lock codes in a secure environment. In some embodiments, each of a plurality of combination locks are linked with a serial code. A user may then enter user identity information into a retrieval system. After the system has validated the user identity information, the user may enter a serial code into the system, the serial code associated with a combination lock for which the user would like to retrieve a corresponding combination code. Upon receipt of the serial code from the user, the system may securely transmit a combination code associated with the desired combination lock to the user. In one embodiment, the secure transmission of the combination code is done by sending an electronic mail message to an electronic mail account of the user.

Abstract: A method, system, and computer-readable storage medium containing instructions for controlling access to data stored on a plurality of storage devices associated with a first platform. The method includes authenticating a user to access the first platform, wherein the first platform includes first and second storage devices, chipset encryption hardware, and a memory. Data stored on the storage devices are encrypted, with first data on the first storage device being encrypted by the chipset encryption hardware and second data stored on the second storage device being encrypted by another encryption mechanism. The data are decrypted and the user is allowed to access the first data and the second data.

Abstract: [PROBLEM] To provide an information recording/reproducing apparatus, an information recording/reproducing method, an information recording/reproducing program and a record medium, secure contents are reproduced with a mobile device so that a check-out can be made on memory card of a small capacity thereby to prevent an authorized copy of the secure contents. [SOLVING MEANS] The information recording/reproducing apparatus creates a title key, encrypts the contents in accordance with a title key; stores the encrypted contents, stores navigation information on the reproduction of the contents containing the title key, encrypts the title key in accordance with the medium ID of an external medium, outputs the encrypted title key and an externally connecting method to the external medium, and transmits the encrypted contents stored, to the outside in case a request for the contents is received from the outside.

Abstract: A system and method for securing a personal device that includes a device core and a peripheral device from unauthorized access or operation. The system and method use a switch, included fully or partially within an envelope of the device and which cannot be affected in its operation by either the device core or the peripheral device. The switch may be activated by an authorized user of the personal device either preemptively or in response to a detected threat.

Abstract: A means for avoiding hash collisions by means of message pre-processing function to increase randomness and reduce redundancy of an input message whereby hash collisions are avoided when it is applied before hashing any message and the message pre-processing function comprises 4 steps like shuffling of bits, compression T-function and LFSR which steps increase the entropy of the input message at the end of 4 rounds, the output becomes more random.

Abstract: A state store having state information therein is stored on a computing device. Information at least nearly unique to the computing device is obtained, and a number of locations at which at least a portion of the state store is to be stored at is determined. Pseudo-random file names and corresponding paths are generated based at least in part on the obtained information, whereby the generated file names and corresponding paths are likewise at least nearly unique to the computing device, and the generated file names and path are paired to form the locations. Thereafter, the state store is stored according to the generated locations.

Abstract: A method and system for performing document image correction using a document reader is disclosed. The method includes generating a document image representative of a document having a deformation; decoding an optical pattern embedded in the document from the document image to determine an optical signature for the document; receiving document classification data associated with the optical signature; and applying an image correction technique to the document image based on the document classification data to generate a corrected document image. A document capable of being read by a document reader is also disclosed. The document includes a substrate and an optical pattern embedded on the substrate. The optical pattern is part of a background pattern printed on the substrate. The optical pattern defines an optical signature unique to the particular class of document and is associated with document classification data for the document.

Abstract: The present invention allows creation of a backup key for backing up an encryption key inside a source trusted chip, encrypting the encryption key with the backup key, exporting the encrypted encryption key from the source trusted chip and storing it in a storage device, encrypting the backup key for transmission to a trusted third party. If the encrypted encryption key needs to be restored inside a destination trusted chip, the backup key and the encryption key encrypted with the backup key are imported to the destination trusted chip, where the encrypted encryption key is decrypted with the backup key inside the destination trusted chip to obtain the encryption key of the source trusted chip.

Abstract: A system structured from a management device, a content key distribution device and a plurality of terminals suppresses the data volume of a terminal revocation list (TRL). The management device generates and transmits a TRL formed from data that expresses terminal IDs of all terminals to be invalidated, by only a value and a position of a common bit string in the IDs, to the content key distribution device. Each terminal holds a terminal ID that includes a manufacturer ID and a serial number, and requests the distribution of a content key by sending the terminal ID to the content key distribution device. The content key distribution device refers to the TRL, judges whether the terminal ID transmitted from the terminal is that of an invalidated terminal, and if negative, encrypts and transmits the content key to the terminal.

Abstract: Embodiments of the invention relate to providing a cleansing article. The cleansing article generally includes one or more of a receptacle, a container, one or more segments, a material piece, and one or more of a solid cleanser and a liquid cleanser. The receptacle, the container, the one or more segments, and the material piece are each generally formed of an open cell material. In certain embodiments, the receptacle is used with the one or more segments to increase the activating area of the receptacle. As such, more soapy lather can be created via the one or more solid cleanser and liquid cleanser in comparison to solely using the receptacle. In certain embodiments, the one or more segments are held within the receptacle via the container or via the material piece. As such, the segments being held in such fashion collectively serve as a temporary reservoir for soapy lather created.

Abstract: Novel compositions of matter and the process of preparing these surfactants having the structure: R1[—(O—(R2O)m—(R3O)n—(R4)]y where: R1=alkyl, alkenyl, amine, alkylamine, dialkylamine, trialkylamine, aromatic, polyaromatic, cycloalkane, cycloalkene, R2=C2H4 or C3H6 or C4H8, R3=C2H4 or C3H6 or C4H8, R4=linear or branched C7H14SO3X to C30H60 SO3X when y=1, R4=linear or branched C7H14SO3X to C30H60 SO3X or H when y>1 but at least one R4 must be linear or branched C7H14SO3X to C30H60 SO3X, m?1, n?0, n+m=1 to 30+, y?1, X=alkali metal or alkaline earth metal or ammonium or amine. These novel ether sulfonate surfactants have excellent surfactant properties making them suitable for a variety of applications as surfactants including agriculture, adhesives, coatings, deinking, detergents, emulsion polymerization, laundry, lubricants, metal working, mining, oilfield, personal care, pharmaceuticals, and soil remediation.

Abstract: Disclosed is a processor having a normal execution mode and a secure execution mode to create a secure execution environment. A secure virtual machine monitor (SVMM) implements the secure execution environment in which a plurality of separate virtual machines are created that operate simultaneously and separately from one another including at least a first virtual machine to implement trusted guest software in a protected memory area and a second virtual machine to implement a non-trusted guest operating system (OS) simultaneously in a non-protected memory area. Responsive to a command to tear down the secure execution environment, the SVMM causes the processor to exit out of the secure execution mode, tears down the secure execution environment, and instructs the non-trusted guest OS to resume control in the normal execution mode.

Abstract: A method of sharing telematics data for a vehicle with service providers can include receiving the telematics data for the vehicle, where the telematics data dynamically changes over time, and comparing the telematics data with a privacy policy associated with the vehicle. The privacy policy can specify rules for selectively releasing items of the telematics data to one or more service providers. Data items of the telematics data can be selectively provided to the service providers according to the comparing step.

Abstract: An exchange of information between a communication entity e.g. a mobile telephone and the operator server upon which it is dependent, in order to carry out authentication operations by exchanging keys and using cryptography algorithms. According to the invention, an algorithm is used, comprising: algorithmic treatments using, as input data, all or part of a random number and operating keys derived from two keys, and a combined treatment using data derived from algorithmic treatments in order to provide results to enable the linkage.

Abstract: A system that allows secure processing in a case where a download-requesting terminal and a download-destination terminal are different devices is implemented. A content distribution server receives a ticket carrying a signature of a download destination from a terminal requesting downloading of content, and verifies the ticket to verify that a device serving as the download destination is a device authorized by the download-requesting terminal, thereby verifying the authenticity of the device serving as the download destination without directly authenticating the device serving as the download destination. Furthermore, a content-signing key [Ksig] or a hash value is exchanged as data that can be cryptographically processed only at the download-requesting device and the download-destination device, so that, for example, checking of the integrity of the content is allowed only at a legitimate download-destination device.

Abstract: A method for providing access control to a single sign-on computer network is disclosed. A user is assigned to multiple groups within a computer network. In response to an access request by the user, the computer network determines a group pass count based on a user profile of the user. The group pass count is a number of groups in which the access request meets all their access requirements. The computer network grants the access request if the group pass count is greater than a predetermined high group pass threshold value.

Abstract: Copying of visual images by electronic devices is discouraged by metamerically altering the relative weights of the color components forming the visual images in a manner that is not perceptible to the human eye but which is perceptible in the copy. In a preferred technique, the visual images are represented by more than three primary color components whose relative values are varied in this manner. A primary application is to discourage copying by video cameras of movies displayed on theater movie screens, by causing the copies to contain unacceptable spatial or temporal variations in colors perceived by the human eye.

Abstract: An exemplary implementation of a security gateway for online console-based gaming operates as a gateway between a public network (e.g., the Internet), and a private network (e.g., an internal data center network). The security gateway allows secure communication channels to be established with game consoles via the public network, and allows secure communication between game consoles on the public network and service devices on the private network.

Abstract: The present invention provides authentication of computer generated game or test results (“outcomes”), and a system by which persons who play games or take tests on a game or testing computer, respectively, may submit the outcomes of the games or tests to a central authority having at least one central computer, and have the central computer “certify” those outcomes as being accurately reported and fairly achieved. This certification of the computer generated result constitutes a “remote-auditing” of the activity taking place on the game computer. In one application, the system enables computer generated game tournaments in which players play the games on game computers and compete against each other by submitting the outcomes for those tournament games to the central computer, which certifies the outcomes and rates and ranks the players. In another application, the system provides for players of computer games to obtain a certified ranking and rating without participation in a tournament.

Abstract: For optimizing Internet access resources, a method and systems for sharing network access capacities across Internet service providers is disclosed. According to the method of the invention, a client service provider (CSP) may hire accesses to points of presence belonging to a master service provider (MSP) while maintaining a constant security level and providing connection accounting means. When a CSP's subscriber sends an access request to a MSP, the MSP analyzes the subscriber's realm and checks the capacities allocated to the subscriber's CSP. If connection is allowed, the MSP sends an authentication request to the CSP. If the subscriber is authenticated, the MSP launches an accounting process based on the subscriber's realm while the CSP may launch an accounting process associated with the subscriber identifier. Thus, the MSP does not need to maintain a database comprising information relative to the CSP's subscribers.