Abstract: According to the present techniques there is provided a computer implemented method of bootstrapping a device by a bootstrap server, the method comprising: receiving, at the bootstrap server from the device as part of a bootstrap process, common credential data including a trust indicator to indicate that the common credential data is common for a group of devices; obtaining, at the bootstrap server, resource credential data based on or in response to the common credential data, the resource credential data to enable the device to authenticate with a resource; transmitting, from the bootstrap server to the device, the resource credential data.

Abstract: A method and apparatus for assessing vulnerability in a system of electronic devices, comprises determining a distinguishing characteristic of a version of a computer program as installed in a usable format to distinguish that version from at least one further version; identifying an indication of a defect giving rise to vulnerability to malicious activity in code or data used by the distinguished version; maintaining a mapping between the distinguished and the indication; scanning the system for presence of the distinguished version; determining that a vulnerable portion is used by the distinguished version; and in response indicating with a vulnerability indicator that the electronic device is vulnerable to the malicious activity according to the mapping; assigning a risk value associated with the installed instance; and emitting an alert signal identifying the vulnerability and indicating the risk value associated with the installed instance.

Abstract: Devices, system, and methods of secure entry and handling of passwords and Personal Identification Numbers (PINs), as well as for secure local storage, secure user authentication, and secure payment via mobile devices and via payment terminals. A computing device includes: a secure storage unit to securely store a confidential data item; a non-secure execution environment to execute program code, the program code to transport to a remote server a message; a secure execution environment (SEE) to securely execute code, the SEE including: a rewriter module to securely obtain the confidential data item from the secure storage, and to securely write the confidential data item into one or more fields in said message prior to its encrypted transport to the remote server.

Abstract: Devices, system, and methods of secure entry and handling of passwords and Personal Identification Numbers (PINs), as well as for secure local storage, secure user authentication, and secure payment via mobile devices and via payment terminals. A computing device includes: a secure storage unit to securely store a confidential data item; a non-secure execution environment to execute program code, the program code to transport to a remote server a message; a secure execution environment (SEE) to securely execute code, the SEE including: a rewriter module to securely obtain the confidential data item from the secure storage, and to securely write the confidential data item into one or more fields in said message prior to its encrypted transport to the remote server.

Abstract: Devices, system, and methods of secure entry and handling of passwords and Personal Identification Numbers (PINs), as well as for secure local storage, secure user authentication, and secure payment via mobile devices and via payment terminals. A computing device includes: a secure storage unit to securely store a confidential data item; a non-secure execution environment to execute program code, the program code to transport to a remote server a message; a secure execution environment (SEE) to securely execute code, the SEE including: a rewriter module to securely obtain the confidential data item from the secure storage, and to securely write the confidential data item into one or more fields in said message prior to its encrypted transport to the remote server.

Abstract: Devices, system, and methods of secure entry and handling of passwords and Personal Identification Numbers (PINs), as well as for secure local storage, secure user authentication, and secure payment via mobile devices and via payment terminals. A computing device includes: a secure storage unit to securely store a confidential data item; a non-secure execution environment to execute program code, the program code to transport to a remote server a message; a secure execution environment (SEE) to securely execute code, the SEE including: a rewriter module to securely obtain the confidential data item from the secure storage, and to securely write the confidential data item into one or more fields in said message prior to its encrypted transport to the remote server.

Abstract: Devices, system, and methods of secure entry and handling of passwords and Personal Identification Numbers (PINs), as well as for secure local storage, secure user authentication, and secure payment via mobile devices and via payment terminals. A computing device includes: a secure storage unit to securely store a confidential data item; a non-secure execution environment to execute program code, the program code to transport to a remote server a message; a secure execution environment (SEE) to securely execute code, the SEE including: a rewriter module to securely obtain the confidential data item from the secure storage, and to securely write the confidential data item into one or more fields in said message prior to its encrypted transport to the remote server.

Abstract: Devices, system, and methods of secure entry and handling of passwords and Personal Identification Numbers (PINs), as well as for secure local storage, secure user authentication, and secure payment via mobile devices and via payment terminals. A server includes: an authentication module to send, to a remote client device, a server authentication certificate; an accreditation certificate stored in a pre-defined location on the server, wherein the pre-defined location is accessible to the remote client device; wherein the accreditation certificate indicates a condition that the server authentication certificate needs to meet in order for the server authentication certificate to be accepted for authentication by the remote client device.

Abstract: Devices, system, and methods of secure entry and handling of passwords and Personal Identification Numbers (PINs), as well as for secure local storage, secure user authentication, and secure payment via mobile devices and via payment terminals. A computing device includes: a secure storage unit to securely store a confidential data item; a non-secure execution environment to execute program code, the program code to transport to a remote server a message; a secure execution environment (SEE) to securely execute code, the SEE including: a rewriter module to securely obtain the confidential data item from the secure storage, and to securely write the confidential data item into one or more fields in said message prior to its encrypted transport to the remote server.

Abstract: Devices, system, and methods of secure entry and handling of passwords and Personal Identification Numbers (PINs), as well as for secure local storage, secure user authentication, and secure payment via mobile devices and via payment terminals. A mobile electronic device includes: a secure execution environment (SEE) to securely execute code; and a secure video path (SVP) to securely exchange information between the SEE and a touch-screen of the mobile electronic device; wherein the SEE includes a secure password entry module to generate a scrambled on-screen interface, and to send the scrambled on-screen interface to the touch-screen through the SVP.

Abstract: Devices, system, and methods of secure entry and handling of passwords and Personal Identification Numbers (PINs), as well as for secure local storage, secure user authentication, and secure payment via mobile devices and via payment terminals. A server includes: an authentication module to send, to a remote client device, a server authentication certificate; an accreditation certificate stored in a pre-defined location on the server, wherein the pre-defined location is accessible to the remote client device; wherein the accreditation certificate indicates a condition that the server authentication certificate needs to meet in order for the server authentication certificate to be accepted for authentication by the remote client device.

Abstract: Various embodiments include wireless client device comprising an application subsystem including a processor and a storage device coupled to the processor, a communication subsystem coupled to the application subsystem, the communication subsystem including a media access control (MAC) device and a physical (PHY) device, wherein the physical device is operably coupled to the processor of the application subsystem, wherein the physical device is operable to receive a wireless signal, to analyze the wireless signal for at least one aspect of wireless performance, and to determine if the at least one aspect of wireless performance can be improved, wherein, if it is determined that the at least one aspect of wireless performance can be improved, the physical device is operable to pass the wireless signal to the processor of the application subsystem for processing of the wireless signal within the processor.

Abstract: Various embodiments include wireless client device comprising an application subsystem including a processor and a storage device coupled to the processor, a communication subsystem coupled to the application subsystem, the communication subsystem including a media access control (MAC) device and a physical (PHY) device, wherein the physical device is operably coupled to the processor of the application subsystem, wherein the physical device is operable to receive a wireless signal, to analyze the wireless signal for at least one aspect of wireless performance, and to determine if the at least one aspect of wireless performance can be improved, wherein, if it is determined that the at least one aspect of wireless performance can be improved, the physical device is operable to pass the wireless signal to the processor of the application subsystem for processing of the wireless signal within the processor.

Abstract: Systems and methods may operate to increase the throughput of a wireless connection by passing a wireless signal from a communications subsystem to an application subsystem for physical layer processing of the wireless signal. Other embodiments include systems and methods for selectively activating a processor of an application subsystem when an improvement in wireless throughput is possible.

Abstract: Systems and methods may operate to increase the throughput of a wireless connection by passing a wireless signal from a communications subsystem to an application subsystem for physical layer processing of the wireless signal. Other embodiments include systems and methods for selectively activating a processor of an application subsystem when an improvement in wireless throughput is possible.

Abstract: A unit for determining whether or not a received channel is a control channel is provided. The unit includes a superframe phase estimator and a state machine. The superframe phase estimator estimates the superframe phase based on elapsed time. The state machine determines the validity and the value of a decoded superframe phase field of a received time slot based on the quality of the decoding and in comparison to the estimated superframe phase. The state machine also initializes the superframe estimator.