Abstract: In one embodiment, data at rest is securely stored. A data safe performing data plane processing operations in response to requests of received read data requests, received write data requests, and received read information responses, with the data safe being immutable to processing-related modifications resulting from said performing data plane processing operations. In one embodiment, performing these data plane processing operations does not expose any pilot keys outside the data safe in clear form nor in encrypted form. The pilot keys are used to encrypt information that is subsequently stored in a storage system. One embodiment uses pilot keys to encrypt data that is subsequently stored in a storage system. One embodiment uses data cryptographic keys to encrypt data, uses the pilot keys to cryptographically-wrap (encrypt) the data cryptographic keys, and stores the cryptographically wrapped data keys and encrypted data in a storage system.

Abstract: Systems and methods disclosed herein include systems and methods for delivery of secondary content to a user device. The secondary content may comprise events synchronized to primary content. In a particular embodiment, the process may include: receiving a request from a user device to access secondary content associated with a primary content; determining whether the user device is entitled to receive the secondary content; and if the user device is entitled to receive the secondary content, providing the secondary content to the user device for the user device to play whenever the user watches the primary content. The secondary content comprises at least one of an audio track, and a subtitle file, and the audio track comprises at least one of an alternate language audio track not provided in the primary content, and an audio track with words omitted from the primary content.

Abstract: There is provided an optical distance measurement system including an image sensor and a processing unit. The processing unit is configured to generate an image to be calculated according to at least one image captured by the image sensor, wherein different image regions of the image to be calculated correspond to different exposure times thereby improving the accuracy of the distance calculation.

Abstract: Methods and systems are described for providing a retail product that allows a consumer to participate in a personalized interactive entertainment experience in one or more venues. The retail product is capable of wirelessly interfacing with interactive devices in the venues that are capable of producing sensory effects based on communication from and/or to the retail product. Furthermore, the retail product preferably has an independent or intrinsic value apart from the use of the product in the venues, and may include, for example, a toy, apparel, and/or jewelry. In certain examples, the methods include tracking the consumer's use of the retail product in the venue(s). Such tracking information may be used to customize the experience of the user during a subsequent visit to the same venue or another venue.

Abstract: Media content is delivered to a variety of mobile devices in a protected manner based on client-server architecture with a symmetric (private-key) encryption scheme. A media preparation server (MPS) encrypts media content and publishes and stores it on a content delivery server (CDS), such as a server in a content distribution network (CDN). Client devices can freely obtain the media content from the CDS and can also freely distribute the media content further. They cannot, however, play the content without first obtaining a decryption key and license. Access to decryption keys is via a centralized rights manager, providing a desired level of DRM control.

Abstract: A method for accessing content at a device, wherein the device is arranged to execute a digital rights management (DRM) client of a DRM system and wherein the device is arranged to receive a broadcast signal comprising a plurality of encrypted portions of content for an item of content, each encrypted portion being packaged in a format of a conditional access system and being decryptable using a corresponding decryption key, wherein the method comprises an application executing on the device performing the steps of: for each of one or more of the encrypted portions: converting said encrypted portion from being packaged in the format of the conditional access system to being packaged in a format of the DRM system; providing said encrypted portion is packaged in the format of the DRM system to the DRM client; and either (a) providing a rights object according to the DRM system to the DRM client or (b) triggering the DRM client to obtain a rights object according to the DRM system; wherein the rights object corr

Abstract: A system is provided for downloading, for distribution and for acoustic reproduction of a music album, which includes at least one or several digital music files and/or multimedia content in the form of one or several multimedia files assignable to the music file, wherein the music file and/or multimedia file are provideable as data sets for downloading, wherein the music file and/or multimedia file are as data sets pre-holdable grouped after downloading as a music album in a data memory of an end-user-device, wherein the music file and/or multimedia file is treatable by a treatment means, particularly in dependency to an authorization, and wherein the treated music file and/or multimedia file is transferable to an output device of the end-user-device, especially a speaker device with or without a display device, in such a way, that the music file and/or multimedia file is at least acoustically emittable to one user.

Abstract: In a method of controlling computer network access, a server computer receives via a computer network from an endpoint computer of the computer network a request for an access configuration file. In response, the server computer dispatches to the endpoint computer an access configuration file. Thereafter, the server computer dispatches to the endpoint computer an update to the dispatched access configuration file or another access configuration file. The server computer can store data received from the endpoint computer regarding a violation of at least one policy included in the access configuration file, the updated access configuration file, or the other access configuration file. The server computer can either dispatch a unique access configuration file to each endpoint computer for which a unique access configuration file was prepared or dispatch a generic access configuration file to each endpoint computer for which a unique access configuration file was not prepared.

Abstract: Modulating packetized audio signals in a voice activated data packet based computer network environment is provided. A system can receive audio signals detected by a microphone of a device. The system can parse the audio signal to identify trigger keyword and request, and generate a first action data structure. The system can identify a content item object based on the trigger keyword, and generate an output signal comprising a first portion corresponding to the first action data structure and a second portion corresponding to the content item object. The system can apply a modulation to the first or second portion of the output signal, and transmit the modulated output signal to the device.

Abstract: To control the processing of a multimedia object (OM) by a software application (AppL) implemented within a communication device (DC), a control application (AC) implemented in the communication device intercepts a call from the software application to an execution environment (EE) to carry out a basic operation on the multimedia object, the multimedia object being divided into segments each associated with control data (DonC) comprising at least some data from among semantic data (DonSm), sensitivity data (DonSb), and functionality data (DonF), associates transformation parameters (ParT) comprising at least one functionality parameter (ParF) and at least one semantic parameter (ParSm) and one sensitivity parameter (ParSb) with the call, depending upon the context in which the call is executed.

Abstract: The invention provides a method for detecting fraud (220) during biometric authentication of an individual comprising the acquisition (210), by an optical device, of a sequence of candidate images comprising at least two candidate images of an individual, with view to comparing said sequence with a reference image sequence comprising at least one reference image of an individual acquired during a preliminary enrollment step (100) by the same optical device, the method comprising the steps of: estimating (221), from the sequence of candidate images, the geometrical parameters of the optical device having acquired said sequence of candidate images on the individual, and comparing (222) said geometrical parameters with the geometrical parameters of the optical device having acquired the reference image sequence, and from the result of the comparison, determining (223, 224) whether the verification image sequence was acquired from at least one pre-recorded image of the individual.

Abstract: A physiological test credit method determines if test credits are available to the monitor and checks if a Wi-Fi connection is available. If test credits are less than a test credit threshold, the monitor connects to a test credit server, processes server commands so as to download test credits and disconnects from the server. In various embodiments, the monitor is challenged to break a server code, the server is challenged to break a monitor code. The server validates monitor serial codes, and saves monitor configuration parameters.

Abstract: Providing secure graphics outputs by performing at least the following: receive secure output data corresponding to a digital image, obtain one or more security keys, create a secure output marker for the secure output data, wherein the secure output marker comprises location information corresponding to a trusted output area of the digital image and data information that represents data content found within the trusted output area of the digital image, encrypt the secure output marker using the one or more security keys, embed the secure output marker within the graphics image to create a trusted graphics image; and render the trusted graphics image for exposure onto the display device.

Abstract: Methods, systems, and computer readable media for providing an anticipated data integrity check are disclosed. According to one method, the method includes generating a test message including an anticipated data integrity check value (ADICV), wherein the ADICV is computed using at least one value based on at least one expected modification to message data in the test message by at least one system under test (SUT), and sending the test message to the at least one SUT.

Abstract: A personalized content recommendation provisioning method and system are described, according to various implementations. In an implementation, a user profile is established for each of multiple users within an electronic data environment (e.g., the Internet). The user profile may include information collected via a registration of the user and information identifying content consumed by the user based at least in part on information collected by an associated tracking cookie. The user profile may be used to generate a personalized grade associated with each of multiple candidate content recommendations in a high-quality candidate content recommendation pool, determine a content recommendation scope associated with a user in view of a personalized grade associated with each of the plurality of candidate content recommendations, and display the content recommendation scope to the user.

Abstract: Systems and methods for privacy-preserving data loss detection include performing a sweep of online information for a candidate data leakage to generate an online data set; performing an analysis of the online data set to determine that the online information is a candidate data leakage; the host encrypting the data communication and providing the host-encrypted data communication to a software agent at the enterprise; in response to receiving the host-encrypted data communication, the software agent encrypting a database of enterprise information and re-encrypting the host-encrypted data communication, and providing the same to the host; the host decrypting a host-encrypted aspect of the re-encrypted data communication to generate a software agent-encrypted data communication; determining whether a match exists between the encrypted database of information and the software agent-encrypted data communication; and based on whether the match exists, the software agent taking a first action or the host taking a

Abstract: Content access may be provided and processed by assigning responsibility for obtaining entitlement data to the client's browser. Thus, in one example, the client may be configured to synchronize and coordinate data lookups associated with a content request, rather than relying on the server to do so. The network architecture may use a mediator design pattern, in which the client's browser acts as the mediator (i.e., middleman) between a content server and an entitlement data server. Accordingly, synchronous calls between server-side services might not be required. Instead, data necessary for the content server to process a client request for access to protected content may be received in the incoming request from the client's browser.

Abstract: A method for identifying a video streamed from a server to a client, includes receiving at a processor of an intermediary between the server and client, a video data packet; determining if the video data packet comprises a separated identification of the streamed video; when the video data packet comprises a separated identification, determining if the separated identification is readable to identify the streamed video; when the separated identification is readable to identify the streamed video, identifying the streamed video; and when the separated identification is not readable to identify the streamed video, performing content analysis of the video data packet, comprising: creating a fingerprint of data extracted from the video data packet, and comparing the fingerprint to reference fingerprints to determine a match.

Abstract: A technique for distinguishing between a human user and a software robot. The technique includes: receiving a first communication from a device different from the at least one computer; identifying, from the first communication, a request to access a web resource; generating a shuffled image that encodes a challenge text, the generating comprising: generating an initial image encoding the challenge text; dividing the initial image into image portions; and generating the shuffled image as a shuffled arrangement of the image portions; generating decoding information for revealing the challenge text encoded in the shuffled image; transmitting the shuffled image and the decoding information to the device; receiving a second communication from the device; identifying, from the second communication, a response text; and providing the device with access to the web resource based on a comparison between the challenge text and the response text.

Abstract: A distributed hash tree-based authentication system for digital input records has more than one upper-level core node, each of which receives at least one uppermost value from aggregators. Communicating with each other about which aggregator values they have received, the nodes try to reach agreement as to which of these values should be included in duplicated current intra-node hash tree evaluations so as to form a consistent top-level value used as the basis for digital signatures associated with the digital input records. The top-level value is then entered either directly, or after combination with other top-level values over a period, into a block of a blockchain.

Abstract: An integrity record is appended to data slices prior to being sent to multiple slice storage units. Each of the data slices includes a different encoded version of the same data segment. An integrity indicator of each data slice is computed, and the integrity record is generated based on each of the individual integrity indicators, and may be, for example, list or a hash of the combined integrity indicators. When retrieving data slices from storage, the integrity record can be stripped off, a new integrity indicator of the data slice calculated, and a new integrity record created. The new integrity record can be compared to the original integrity record, and used to verify the integrity of the data slices.

Abstract: A system. At least some embodiments are a system including a first processor and a non-volatile random access memory coupled to the first processor, the non-volatile random access memory storing program instructions for execution by the first processor in which the programming instructions are stored only in encrypted form. The system further includes an encryption engine coupled to the first processor and coupled to the non-volatile random access memory. A bridge logic device coupled is to the processor and configured to couple to an external peripheral network bus. The encryption engine is configured to decrypt software program instructions stored in the non-volatile random access memory for execution by the first processor.

Abstract: Data security access and management may require a server dedicated to monitoring document access requests and enforcing rules and policies to limit access to those who are not specifically identified as having access to the data. One example of operation may include selecting data to access via a user device, identifying a user profile associated with the user device, retrieving at least one user policy associated with the user profile, determining whether the user policy permits the user device to access the data, matching the user policy to a data policy associated with the data, receiving an encryption key at the user device, applying the encryption key to the data, and unwrapping the data from a wrapped data format to access the data.

Abstract: A method to protect a media content encrypted by a media content key, said method being carried out by a security module embedded into a reception device and connected to a consumption device, comprising: receiving an encrypted media content, encrypted by a media content key; receiving a message, being encrypted by a personal key of the security module, containing the media content key; decrypting the message by the personal key to retrieve the media content key; decrypting the encrypted media content by the media content key; generating a current local key; encrypting a portion of the media content by the current local key, said portion defining a chunk; transmitting the current local key to the consumption device; transmitting the encrypted chunk to the consumption device; repeating the previous four steps for different chunks of the media content and modifying the current local key for the different chunks.

Abstract: Data security access and management may require a server dedicated to monitoring document access requests and enforcing rules and policies to limit access to those who are not specifically identified as having access to the data. One example of operation may include selecting data to be protected via a user device, applying at least one policy to the data, storing the at least one policy in a data record identifying the data, modifying a data format of the data to create a modified data, and storing the modified data in memory.

Abstract: Examples disclosed herein relate to transmitting an authentication mark. For example, a processor creates an authentication mark for a two factor authentication system. The authentication mark is created according to data represented by a data bearing image. The processor transmits via a network the authentication mark to a computing device.

Abstract: A method may include automatically receiving content and metadata; automatically identifying a source metadata format of the metadata; automatically identifying a target metadata format; automatically selecting a data map to perform validation of the metadata and at least one of transforming or translating of the metadata based on the identifying of the source metadata format and the identifying of the target metadata format, wherein the transforming includes converting the metadata to the target metadata format and the translating includes converting a file type of the metadata to a target metadata file type; and automatically attempting to validate the metadata based on the data map; automatically performing the at least one of the transforming or the translating of a validated metadata when the metadata is validated based on the data map, wherein the transforming includes converting the validated metadata to the target metadata format including one or more extendible fields.

Abstract: Techniques and systems are provided for processing video data. For example, techniques and systems are provided for determining blob size thresholds. Blob sizes of blobs generated for a video frame can be determined. A lower boundary of a category of blob sizes can then be determined that corresponds to a minimum blob size of the video frame. The lower boundary is determined from a plurality of possible blob sizes including the blob sizes of the blobs and one or more other possible blob sizes. One of the possible blob sizes is determined as the lower boundary when one or more lower boundary conditions are met by characteristics of the possible blob size. A blob size threshold for the video frame is assigned as the minimum blob size corresponding to the lower boundary.

Abstract: Embodiments relate to sending vertical synchronization data for a plurality of data streams in a selected data stream to perform authentication operations for the plurality of data stream. A port processor receives data streams from a plurality of transmitting devices. After receiving the data streams, the port processor selects one of the data streams for transmission to a decrypting device. The port processor extracts vertical synchronization data from the unselected data streams and inserts the extracted vertical synchronization data into the selected data stream to form a modified data stream. The port processor sends the modified data stream to a decrypting device. The decrypting device has at least one processing engine. The port processor discards the unselected data streams without sending the unselected data streams to the decrypting device.

Abstract: One embodiment provides a system that facilitates efficient name encryption in a CCN. During operation, the system determines, by a client computing device, an index for a name of an interest, wherein the name is a hierarchically structured variable length identifier that includes contiguous name components ordered from a most general level to a most specific level, wherein the index indicates a minimum number of the contiguous name components beginning from the most general level that represent a minimum routable prefix needed to route the interest to a content producing device that can satisfy the interest. The system encrypts one or more name components of the interest name beginning with the name component immediately following the minimum routable prefix. The system transmits the interest based on the encrypted name, thereby facilitating efficient name encryption in a CCN.

Abstract: A method includes receiving a first request from a first user device to access a first resource that includes data for a second user account for which access to the data is restricted to authorized users, the first request including an authorization token and associated with a first user identifier that identifies a first user; determining that the first user identifier does not identify an authorized user and in response: determining that the first user identifier identifies an authorized user based on the authorization token, and provide the first resource to the first user device; receiving a second request for access to data to the second user account, the second request associated with the first user identifier; and based on the first user identifier being determined to identify authorized user, providing access to the data to the second user account in response to the second request.

Abstract: A semiconductor device includes a hash generator, a reference hash list, a frame mode determination unit, and an intra prediction unit. The hash generator generates a hash value of a target frame to be encoded. The reference hash list is to record the hash value generated by the hash generator. The frame mode determination unit compares the hash value generated by the hash generator and the hash value in the reference hash list. The intra prediction unit performs intra prediction for the target frame to be encoded. When the hash value of the target frame to be encoded coincides with any of the hash values in the reference hash list, the intra prediction unit skips an encoding process, and outputs encoded information corresponding to any of the hash values in the reference hash list.

Abstract: Methods and apparatus that enable a subscriber of an adaptive bitrate streaming service provider to begin viewing a live program already in progress, and further have the ability to pause, rewind or start the program over from the beginning of the program regardless of its actual length or the manifest window defined by an encoder. Selective retrieval of a live media stream is provided by storing, at a server, a plurality of media fragments beginning at an initial time along with a server manifest for the media stream. In response to a client request for a start time later than the initial time, the server generates a program-specific manifest based on the server manifest.

Abstract: An apparatus and methods for generating an identity document obtain unique machine data related to an identity document generation system. The apparatus and methods obtain personalization data related to an intended holder of the identity document. The apparatus and methods generate a unique machine and personalization data object that includes values of the unique machine data and the personalization data. The apparatus and methods digitally sign the unique machine and personalization data object. The apparatus and methods incorporate the signed unique machine and personalization data object into the identity document.

Abstract: A method and system for distributing multimedia content includes a unified storefront (USF) application providing access portals to a multimedia content distribution network, including an Internet-protocol television access portal, a web access portal and a mobile access portal. The USF application may further communicate with a media agent to access a portable media player (PMP), allowing multimedia content to be sent to the PMP from any of the access portals.

Abstract: A content management system is disclosed for documents and other content for a system operating in legal environment referred to herein as a case management system. The case management system allows attorneys in a legal environment to efficiently store and manage content for their client and case matters. Furthermore, the system encourages attorneys to collaborate with fellow co-workers, clients, and third parties (e.g. expert witnesses) in a secure and confidential environment. The case management system enables attorneys to maintain case files and associated documents more efficiently and thus allow law films to more productively function as a business that relies heavily upon comprehensive document files.

Abstract: A batch rights objects (ROs) acquisition method and system is provided to enable a mobile terminal to acquire multiple rights objects in a batch processing manner. A rights object acquisition method according to an embodiment of the present invention includes transmitting a rights object request message requesting one or more rights objects of content objects from a mobile terminal to a rights issuer; creating, at the rights issuer, a rights object response message containing at least one of rights objects indicated by the rights object request message and at least one signature in response to the rights object request message; and transmitting the rights object response message from the rights issuer to the mobile terminal.

Abstract: A system and method for assessing a condition of property for insurance purposes includes a sensor for acquiring a spectral image. In a preferred embodiment, the spectral image is post-processed to generate at least one spectral radiance plot, the plot used as input to a radiative transfer computer model. The output of the model establishes a spectral signature for the property. Over a period of time, spectral signatures can be compared to generate a spectral difference, the spectral difference can be used to determine whether a change in the condition of the property was potentially fraudulently caused.

Abstract: Data security access and management may require a server dedicated to monitoring document access requests and enforcing rules and policies to limit access to those who are not specifically identified as having access to the data. One example of operation may include selecting data to access via a user device, identifying a user profile associated with the user device, retrieving at least one user policy associated with the user profile, determining whether the user policy permits the user device to access the data, matching the user policy to a data policy associated with the data, receiving an encryption key at the user device, applying the encryption key to the data, and unwrapping the data from a wrapped data format to access the data.

Abstract: A distributed hash tree-based authentication system for digital input records has more than one upper-level core node, each of which receives at least one uppermost value from aggregators. Communicating with each other about which aggregator values they have received, the nodes try to reach agreement as to which of these values should be included in duplicated current intra-node hash tree evaluations so as to form a consistent top-level value used as the basis for digital signatures associated with the digital input records.

Abstract: A microprocessor is provided in which an encrypted program can replace the decryption keys that are used to decrypt sections of the encrypted program. The microprocessor may be decrypting and executing a first section of the encrypted program when it encounters, decrypts, and executes an encrypted store-key instruction to store a new set of decryption keys. After executing the store-key instruction, the microprocessor decrypts and executes a subsequent section of the encrypted program using the new set of decryption keys. On-the-fly key switching may occur numerous times with successive encrypted store-key instructions and successive sets of encrypted instructions.

Abstract: A video distribution network includes a distribution plant and a first bulk encryption device connected to the distribution plant, wherein the bulk encryption device outputs a first encrypted video service stream to the distribution plant via an internet protocol (IP) interface.

Abstract: In a communication control method for wireless communication between a first communication device and a second communication device through a wireless communication unit, identification information is notified from the second communication device to the first communication device by using a communication unit other than the wireless communication unit. Wireless communication between the first and second communication devices is performed by the wireless communication unit using the first communication parameter shared in advance, and authentication processing based on identification information is performed. When authentication is acquired by this authentication processing, the second communication parameter to be set with respect to a wireless communication unit is shared by the first and second communication devices through the above wireless communication.

Abstract: A client system is configured to obtain signatures for digital input records. An application program interface reformats each digital record, and this is used as an argument to a cryptographic hash function, from which a signature request is formed. The signature request is then submitted to a keyless, distributed hash tree infrastructure system, which returns a signature that includes recomputation values enabling recomputation from the result of the cryptographic hash function upward through the hash tree infrastructure to a root hash value at a calendar period corresponding to a time during which the signature request was originally submitted. An arbitrary subsequent test digital record is considered authenticated if, applying the cryptographic hash function to it, along with any other parameters included in the original computation, and recomputing an uppermost value using the recomputation values, the same composite calendar value is attained as when it was originally computed.

Abstract: There is disclosed a computing apparatus including a first context within which first processing activity may be performed and a second context within which second processing activity may be performed independent of the first processing activity, the apparatus further may include input and/or output channels with which the first and second contexts may communicate and a switch function operated by a selector; whereby operation of the selector by a user selectively allows communication between the first context and/or the second context (of the first part) and the input and/or output channels (of the second part). An indicator is provided to indicate which context is in communication with the input/output channels.

Abstract: Various arrangements are presented for reducing channel change times. A first tuner of a television receiver may tune to a decryption key transponder stream. The decryption key transponder stream may include a plurality of decryption keys for a plurality of television channels that are transmitted to the television receiver via a plurality of transponder streams. A second tuner of the television receiver may be tuned to a media transponder stream to receive a television channel. Data obtained from the decryption key transponder stream may be used for decoding the television channel.

Abstract: Near cache distribution in in-memory data grid environment that utilizes manifest of keys may be provided. An application instance may be initialized that utilizes an in-memory data grid caching infrastructure with a near cache in a virtual machine running on hardware processor. The near cache for the application instance may be activated. Logic of the near cache associated with the application instance may request a manifest of keys from one or more peer applications utilizing the in-memory data grid caching infrastructure, and receive the manifest of keys. The logic of the near cache associated with the application instance may send the manifest of keys to a grid cache of the in-memory data grid caching infrastructure. The logic of the near cache associated with the application instance may receive at least some of the data objects from the grid cache.

Abstract: An apparatus may include one or more radio-frequency (RF) transceivers arranged to receive multimedia content during a session over a first link from a wireless wide-area network (WWAN) and to forward information over a second link to a display device. The apparatus may further include a processor circuit communicatively coupled to the one or more RF transceivers and a video adaptation module operative on the processor circuit to gather device capability information from the display device, and to modify device capability exchange signaling to the WWAN based upon the gathered device capability information, the device capability exchange signaling to define exchange of multimedia content between the apparatus and the WWAN. Other embodiments are disclosed and claimed.

Abstract: Integrated circuits may be programmed using configuration data to implement desired custom logic functions. The configuration data may be generated using a logic design system in the form of a configuration bit stream. The logic design system may generate a hash value for the stream by performing multiple hashing operations on the stream in a direction from a trailing end to a leading end of the stream in a reverse direction with respect to the order of the stream. The system may append the generated hash value to the leading end of the stream, may encrypt the hash value, and may provide the stream to an integrated circuit. The integrated circuit may decrypt or otherwise authenticate the hash value, may generate multiple test hash values for the stream and may compare the test hash values to hash values in the stream to determine whether the stream is authentic.

Abstract: A portable data or information carrier in the form of a smart card with partially or fully virtualized components. To maximize the confidentiality of information stored in the carrier, and more specifically to limit the amount of information available to a potential defrauder, electronic components such as circuits, I/O, cryptographic, memory and dummy objects are built, modified or influenced on demand from physical characteristics of an eligible person or device. Digitized unique biometric or hardware identifiers are read upon start-up and runtime of the device and, in case of an eligible person or device, subsequently supply all values necessary for determination of the characteristics of the user specific virtual smart cards objects, their placement and connections. By multi-factor authentication, the end-user or device will retain sole control of its keys and use them for authentication, signature or encryption purposes as if he had a physical smart card in his hand.