Abstract: Devices, systems, and methods are provided for performing secured analytics using encrypted data. The method may include receiving first data and second data, the first data and the second data being homomorphically encrypted, the first data associated with a first type of data, and the second data associated with a second type of data. The method may include retrieving third data associated with the first type of data, and retrieving fourth data associated with the second type of data. The method may include determining a first proximity between the first data and the third data, and determining a second proximity between the second data and the fourth data. The method may include determining, based on the first proximity and the second proximity, a risk score, and determining, based on the risk score, a fraudulent action associated with the first data and the second data.

Abstract: Devices, systems, and methods are provided for performing secured analytics using encrypted data. The method may include receiving first data and second data, the first data and the second data being homomorphically encrypted, the first data associated with a first type of data, and the second data associated with a second type of data. The method may include retrieving third data associated with the first type of data, and retrieving fourth data associated with the second type of data. The method may include determining a first proximity between the first data and the third data, and determining a second proximity between the second data and the fourth data. The method may include determining, based on the first proximity and the second proximity, a risk score, and determining, based on the risk score, a fraudulent action associated with the first data and the second data.

Abstract: Systems, methods, and computer readable media for providing a streamlined, comprehensive data privacy opt in and opt out solution. Data privacy laws, also known as data protection laws or consumer privacy laws, prohibit the disclosure or misuse of information held on private individuals. A first device may receive a request from a second device, the request associated with a user. The first device may determine, and based on the user, a privacy regulation. The device may determine a setting associated with the privacy regulation. The device may send, to the second device, the setting.

Abstract: Devices, systems, and methods are provided for performing secured analytics using encrypted data. The method may include receiving first data and second data, the first data and the second data being homomorphically encrypted, the first data associated with a first type of data, and the second data associated with a second type of data. The method may include retrieving third data associated with the first type of data, and retrieving fourth data associated with the second type of data. The method may include determining a first proximity between the first data and the third data, and determining a second proximity between the second data and the fourth data. The method may include determining, based on the first proximity and the second proximity, a risk score, and determining, based on the risk score, a fraudulent action associated with the first data and the second data.

Abstract: Systems, methods, and computer readable media for providing a streamlined, comprehensive data privacy opt in and opt out solution. Data privacy laws, also known as data protection laws or consumer privacy laws, prohibit the disclosure or misuse of information held on private individuals. A first device may receive a request from a second device, the request associated with a user. The first device may determine, and based on the user, a privacy regulation. The device may determine a setting associated with the privacy regulation. The device may send, to the second device, the setting.

Abstract: Virtual honeypots methods and systems disclosed herein route all IP space of an ISP to a Darknet server as a default. When an IP address is used, it is assigned to a different server. So any IP address left on the Darknet server is an unassigned IP address. All traffic that accesses the Darknet server (the IP unassigned addresses assigned to the Darknet server as a default) is logged. Because those IP addresses are unused, it can be assumed that any traffic that hits them is the result of malicious activity. If malware is scanning the whole internet trying to spread itself, the malware will eventually access the Darknet server with the unassigned IPs.

Abstract: Example embodiments of the systems and methods of malicious domain identification disclosed herein considers a first group of users. The first group of users has traffic including some traffic with malicious domains. A second group of users is then selected with traffic that is known to be uninfected, and the common domains are determined. The second group of users, who are known to be uninfected users, are accessing some of the same domains as the first group, among others, but are not accessing the malicious domains. Traffic from the second group of users will have the same commonalities between each other as the malicious domain does with the second group. The common domains between the first and second groups are determined and eliminated. When the common domains are removed from the traffic of the first group of users, malicious domain list remains.

Abstract: A system for weighted communication of data packets via a data communication network. Data packets from sending devices are selectively transmitted in the upstream direction to recipient devices through the application of weights, or weight factors, which determine the number of data packets from each sending device transmitted upstream relative to the number of data packets from other sending devices during a round robin cycle of such devices. Data packets for delivery to receiving devices are selectively transmitted in the downstream direction to the receiving devices using the application of weights, or weight factors, which determine the number of data packets for each receiving device transmitted downstream relative to the number of data packets for other receiving devices during a round robin cycle of such devices. Weights may be associated with the service tier subscribed to with a communication service provider by an owner/user of a sending and receiving device.

Abstract: To circumvent being blacklisted by an ISP, some viruses use a domain name generator algorithm or a domain generator algorithm (DGA). In an example, the DGA may use the current date and time to generate a random domain name based on the date. So for a given date, the botnet registers a particular domain in order to control the Trojan horse virus. The domain name that the botnet uses typically changes every day, which helps circumvent blacklisting. To counteract that, the disclosed systems and methods of DNS greylisting place a domain name in a grey list for a time period, for example a day, that the domain is resolved by the ISP. The first time the ISP experiences a customer trying to contact a particular domain, the ISP prevents the domain from resolving. After the time period (for example, 24 hours) expires, the domain is allowed to resolve normally.

Abstract: A private customer IP address is mapped to a public NAT address using a repeatable, reversible algorithm. A given private IP address must always map to the same public IP address and a fixed range of source ports. In the mapped address translation (MAT) implementation, private IP addresses are mapped to public IP/port ranges by borrowing bits from the 16 bit port number.

Abstract: To circumvent being blacklisted by an ISP, some viruses use a domain name generator algorithm or a domain generator algorithm (DGA). In an example, the DGA may use the current date and time to generate a random domain name based on the date. So for a given date, the botnet registers a particular domain in order to control the Trojan horse virus. The domain name that the botnet uses typically changes every day, which helps circumvent blacklisting. To counteract that, the disclosed systems and methods of DNS greylisting place a domain name in a grey list for a time period, for example a day, that the domain is resolved by the ISP. The first time the ISP experiences a customer trying to contact a particular domain, the ISP prevents the domain from resolving. After the time period (for example, 24 hours) expires, the domain is allowed to resolve normally.

Abstract: A private customer IP address is mapped to a public NAT address using a repeatable, reversible algorithm. A given private IP address must always map to the same public IP address and a fixed range of source ports. In the mapped address translation (MAT) implementation, private IP addresses are mapped to public IP/port ranges by borrowing bits from the 16 bit port number.