Abstract: A digital device including a display unit; a sensor unit; a display unit; a wireless communication unit to be paired with an external device; and a controller configured to receive a message, transmit information of the received message to the external device paired with the digital device, and display detailed information of the received message in response to detection of a predetermined motion using the sensor unit within a predetermined period of time while the digital device is paired with the external device.

Abstract: A computing system includes a network interface, a customer database, and a processing circuit. The processing circuit receives information indicative of a first purchase by a customer, establish an aspect of the first purchase as a network authentication credential for the customer, receive a first request to connect to the network from a customer device associated with the customer after completion of the first purchase, transmit a first query to the customer device prompting the customer to input information regarding the aspect of the first purchase, receive a customer-input response to the first query, authenticate the first request by determining that the customer-input response to the first query corresponds to the established aspect of the first purchase, and authorize connection of the customer device to the network based at least in part on the first request being authenticated.

Abstract: An automated system comprising a processor and a database are described. The processor executes communication software reading: at least one image corresponding to an identifier of a blood product from a donor; and at least one database storing at least one communication from a receiver of the blood product. The communication software executed by the processor determines an intermediary from the identifier and contacts the intermediary to obtain contact information of the donor.

Abstract: A method for verifying a property of plaintext using ciphertext is disclosed. In an embodiment, a computing device may receive the ciphertext at a trusted execution environment (TEE) of the computing device. The TEE may decrypt the ciphertext to generate the plaintext using a private encryption key of an encryption key pair. The encryption key pair comprises a public encryption key and the private encryption key. The TEE may generate a digitally signed validation result by encrypting the validation result using a private signing key of a signing key pair. The signing key pair comprises a public signing key and the private signing key. The private key is retrieved from secure memory of the computing device, and the secure memory may only be accessible by the TEE. The computing device may then transmit the digitally signed validation result.

Abstract: There is provided a computer implemented method of vaccination of a computing device against infection by malicious code, comprising: obtaining a vaccination profile including vaccination artifact system calls indicative of a malicious code attempting to identify another instance of the malicious code executing on the computing device prior to the malicious code infecting the computing device, monitoring the computing device for an indication of execution of at least one of the vaccination artifact system calls by the malicious code, and providing a false response to the at least one of the vaccination artifact system calls for emulating an existing infection of the computing device by another instance of the malicious code according to the indication of execution of at least one of the plurality of vaccination artifact system calls, wherein the emulation of the existing infection prevents infection of the computing device by the malicious code.

Abstract: Systems and methods are described for mitigation of time-delay based network attacks that seek to avoid detection by email security solutions employing sandboxing. According to one embodiment, a potentially malicious link associated with a communication is received from a computer system by a sandbox device. A link evasion technique, in which a first file to which the potentially malicious link points to at a first time is replaced with a second file on or before a second time, is subverted by the sandbox by evaluating the potentially malicious link at multiple times including generating a first hash value of the contents of the first file, generating a second hash value of the contents of the second file, assigning a threat level to the communication when the hash values differ, and informing the computer system of the threat level assigned to the communication.

Abstract: Method and apparatus for a system to communicate via perfect forward secrecy. A deterministic hierarchy is used to generate public and private keys, offline, on distinct devices, for use with asymmetrical cryptography over an unsecure medium. Because each private key is not transmitted over the unsecure medium, but must be used to de-encrypt the communications, it is very difficult for man-in-the-middle attacks to de-encrypt the communications. Because each private key is generated according to a deterministic hierarchy, a master entity can recreate the private keys and passively monitor the communications while maintaining perfect forward secrecy.

Abstract: The systems and methods of aggregate signing of digital signatures on multiple messages simultaneously, comprising: receiving two or more digital messages wherein each message is signed using two or more digitally split keys from a private key and the two or more digital signatures of the message using the split key are combined to get a compressed short signature; receiving the compressed short signature for each message; receiving a public key associated with the private key for each message; aggregate signing the messages to output an aggregate signature. The aggregate signature can be further verified against any or all of the messages.

Abstract: Provided is an information terminal connected to a communication terminal which is connectable to one or more other information terminals, wherein the information terminal comprises a communication unit which receives, from the communication terminal, a connection history with the other information terminals which were previously connected to the communication terminal, and a license transfer management unit which extracts an information terminal among the other information terminals that satisfies a license transfer condition based on the received connection history.

Abstract: Systems and methods of authorizing access to access-controlled environments are provided. In one example, a method includes receiving, passively by a computing device, user behavior authentication information indicative of a behavior of a user of the computing device, comparing, by the computing device, the user behavior authentication information to a stored user identifier associated with the user, calculating, by the computing device, a user identity probability based on the comparison of the user behavior authentication information to the stored user identifier, receiving, by the computing device, a request from the user to execute an access-controlled function, and granting, by the computing device, the request from the user responsive to determining that the user identity probability satisfies a first identity probability threshold associated with the access-controlled function.

Abstract: A method for distributing data to a computing device using device level authentication includes: storing, in a memory of a computing device, a single use key encrypted with a first encryption, a server public key, and device data; generating a key pair comprising a device private key and a corresponding device public key; wrapping the device public key using the server public key; transmitting at least the device data, wrapped device public key, and the single use key encrypted with the first encryption to a server; receiving the single use key encrypted with a second encryption from the server; and executing a query on the memory to insert the received single use key encrypted with the second encryption.

Abstract: In a secure communication system and method, a message is transmitted between a first user device and a second user device through a first routing device, a first connection server, the first routing device, a second routing device, a second connection server, and the second routing device. At the first user device, the message is encrypted at three levels. At the first routing device and the second routing device, the message is decrypted at the third and second levels, and encrypted at new second and third levels. At the first connection server and the second connection server, the message is decrypted at the third, second and first levels, and encrypted at new first, second and third levels. At the second user device, the message is decrypted at the third, second and first levels to retrieve the original message.

Abstract: Methods and systems for resetting a digital credential within a digital credential based authentication system. The method includes logging a first administrative user into the digital credential system, receiving, from the first administrative user, a first portion of authentication credentials for a first customer, validating, by the first administrative user using the digital credential system, the first portion, logging a second administrative user into the digital credential system, receiving, from the second administrative user, a second portion of authentication credentials for the first customer, receiving the second portion by the second administrative user, validating, by the second administrative user using the digital credential system, the second portion; and resetting the authentication credentials based on the validation of the first portion and second portion.

Abstract: A method and apparatus for processing biometric information in an electronic device including a processor that operates at a normal mode or at a secure mode, the method comprising, detecting a biometric input event from a biometric sensor module at normal mode, creating biometric data based on sensed data from the biometric sensor module at the secure mode, performing biometric registration or biometric authentication based on the created biometric data at the secure mode, and providing result information of biometric registration or biometric authentication at the normal mode.

Abstract: A server includes a controller performs determining whether a first local area network and a second local area network match; determining, in a case where the first login request is received and in a case where the first registration request is received, whether the first function execution device satisfies the first registration condition; and registering by: controlling, in a case where the first local area network and the second local area network match and the first function execution device satisfies the first registration condition, to register the first identification information; wherein, in a case where the first local area network and the second local area network do not match, the first identification information is not registered; and wherein, in a case where the first function execution device does not satisfy the first registration condition, the first identification information is not registered.

Abstract: One or more implementations of the present specification provide a login method. A set of dynamic information is displayed on a user-device, in which the set of dynamic information is displayed as a part of a login process. A first electroencephalogram (EEG) signal indicative of a user-response to the displayed dynamic information is received, in which the EEG signal is detected by a monitoring device. It is determined that the first EEG signal matches a second EEG signal that corresponds to the displayed dynamic information stored in a login authentication library. The login authentication library stores a plurality of template EEG signals obtained from users (during an enrollment process) as responses to corresponding sets of dynamic information. In response to determining that the first EEG signal matches the second EEG signal, a login request is transmitted to a server.

Abstract: Disclosed herein are methods, systems, and processes to detect valid clusters and eliminate spurious clusters in cybersecurity-based computing environments. A cluster detection and elimination model is trained by accessing a dataset with raw data that includes data points associated with computing devices in a network and applying two or more different clustering methodologies independently to the dataset. The resulting cluster detection and elimination model is used to compare two or more clusters to determine whether a cluster from one clustering methodology matches another cluster from another clustering methodology based on centroid locations and shared data points.

Abstract: A system, method, and device for cloud forensics and incident response is provided. In an embodiment, a computer-implemented method for performing cloud forensics and incident response includes intercepting, by a cloud incident response module (CIRM), communication between a virtual machine (VM) and a hypervisor. The method also includes extracting, by the CIRM, data from the communication between the VM and the hypervisor according to a forensic policy. Intercepting and extracting the data are transparent to the VM and to the hypervisor. Intercepting and extracting the data are independent of the VM and the hypervisor.

Abstract: A system and method is provided for providing distributed computing platform on untrusted hardware. An exemplary method includes launching a hypervisor on an untrusted computing node and receiving a request generated to provide a computing function using hardware of the untrusted computing node. Upon receiving the request, an enclave in memory of the untrusted computing node is created and a virtual machine is launched in the memory enclave. Moreover, a guest operating system of the virtual machine verifies the security of the untrusted computing node. Finally, the guest operating system performs the computing function using the hardware of the untrusted computing node upon the guest operating system verifying the security of the untrusted computing node and the hypervisor.

Abstract: A computer-implemented method, computer program product and computing system for: obtaining system-defined consolidated platform information for a computing platform from an independent information source; obtaining client-defined consolidated platform information for the computing platform from a client information source; and comparing the system-defined consolidated platform information to the client-defined consolidated platform information to define differential consolidated platform information for the computing platform.