Abstract: A method and an apparatus for setting a password protection question are disclosed. The method includes: receiving a password protection question set request for a password, the set request including a user identifier; extracting one or more pieces of setting information corresponding to the user identifier; individually acquiring one or more password protection questions that match the one or more pieces of setting information; and outputting the one or more password protection questions. The embodiments of the present disclosure can output password protection questions related to preference or interest of a user when the user sets a password protection question, which reinforces the impression of the user on the password protection question, thereby reducing situations that the user forgets the set password protection question and an answer thereof, and improving the practicability of the password protection question.

Abstract: Convergence of a 5th-Generation communication system supporting higher data rates beyond 4th-Generation system(s) with a technology for Internet of Things (IoT) may be applied to intelligent services. Operator specific services are permitted and provided by allowing an unauthorized terminal to search for and access the such services, and includes notifying a terminal of information corresponding to “operator specific services” by allowing a base station to broadcast predetermined information, displaying information acquired by a terminal, matching information acquired by the terminal with information broadcast from a base station to arrange services, requesting access and notifying a terminal performs an access for “operator specific services” upon accessing a network, providing a menu for determining whether neighboring base stations are capable of “operator specific services” to a user of a terminal, and allowing the terminal to determine whether there is the base station broadcasting the information.

Abstract: A method and apparatus of selecting profiles is provided that provides communication services of a terminal equipped with embedded Universal Integrated Circuit Card (eUICC) (or embedded Subscriber Identity Module (eSIM)) and Universal Integrated Circuit Card (UICC). The method of selecting a profile in a terminal including a plurality of subscriber identity modules (SIMs) that differ from each other in type, includes selecting, when sensing a profile changing event, one of the plurality of SIMs according to a preset rule, selecting one of a plurality of profiles stored in the plurality of SIMs, and applying the selected profile to the terminal.

Abstract: Embodiments discussed herein refer to systems, methods, and circuits for managing and establishing contactless communications lanes between two contactlessly coupled systems. A contactless communication lane can be formed for each coupled pair of contactless communication units existing in the two systems. A contactless communications interface can enable software-defined connectivity that manages use of the contactless communication data lanes to enable data communications according to a selected one of a plurality of communications interfaces. The contactless communications interface may serve as a protocol translator and virtualization layer for enabling higher level software such as an operating system of a first system to communicate with a second system without requiring interface protocol specific hardware and software. This advantageously simplifies hardware and software components needed to simultaneously service a multitude of interface protocols.

Abstract: An electronic device of the present disclosure includes: a communicator configured to communicate with an external device; and a controller configured to perform control for connecting with a user terminal of transmitting a first communication signal having a first signal strength when the first communication signal is received through the communicator, receiving information about connection with a communication relay from the connected user terminal, and connecting with the communication relay of transmitting a second communication signal having a second signal strength lower than the first signal strength through the communicator based on the received connection information. Thus, an IoT device can have safe access to a wireless AP through a user terminal.

Abstract: Embodiments detect unauthorized access to cloud-based resources. One technique analyzes cloud-based events to distinguish potentially malicious velocity incidents from benign velocity incidents. A velocity incident occurs when the same user causes events from two geographically remote locations in a short time. Benign velocity incidents are distinguished from malicious velocity incidents by comparing an event with past events that have the same features. Embodiments probabilistically determine if a velocity incident is malicious or benign based on a weighted multi-feature analysis. For each feature of an event, a probability is calculated based on past events that have the same feature. Then, each feature is associated with a weight based on a relative frequency of past events having that feature. A weighted average of probabilities is calculated, and the resulting probability is compared to a defined threshold to determine if the velocity incident is likely malicious or benign.

Abstract: The invention relates to a method and system for authenticating a user, wherein an application transmits a query comprising identification data to an authentication service, the authentication service determines the address of a mobile terminal linked to the user on the basis of the identification data and transmits a request comprising a transaction identifier to the mobile terminal, the mobile terminal performs an enquiry for input of a biometric security feature, grants access to a private key saved on the mobile terminal upon input of a valid security feature, signs the transaction identifier using the private key and transmits the signed transaction identifier back to the authentication service, and the authentication service verifies the signature of the signed transaction identifier and, in the case of the presence of an authentic signature, transmits a confirmation of the query back to the application.

Abstract: Embodiments of the present disclosure include an efficient method for identifying mobile devices operated by users with certain attributes and displaying their respective locations using location identification data, such as data packets broadcasted by beacons. The systems and methods described herein can first identify multiple mobile devices operated by different users located within a predetermined location and retrieve/analyze profile data of the identified users. The methods and systems described herein can then recommend like-minded users to each other. The systems and methods described herein can also provide navigational and directional support to users and help different users meet in person.

Abstract: Techniques are described herein to secure a packet data convergence protocol (PDCP) control protocol data unit (PDU). A base station may determine a security configuration for a PDCP control PDU based on various factors including the content of the PDCP control PDU. For example, the security configuration of the PDCP control PDU may be applied because the PDCP control PDU includes a retransmission request. A counter dedicated to PDCP control PDUs may be initialized. The security protocols may be based on the dedicated counter. Some types of security parameters may be shared in some contexts such as in handover procedures or dual connectivity procedures. For example, security configurations associated with a second communication link may be based on security configurations associated with a first communication link. PDCP control PDUs may be secured based on the security configurations, the security parameters, protection keys, or combinations thereof.

Abstract: Values may be tracked from wireless sensors of a vehicle indicative of distance between the mobile device and the sensors. When the values over time indicate approach and then departure of the device to a first side of the vehicle and consistent approach of the device to a second side of the vehicle, the device may be associated with a seating zone of an identified closest pair of the sensors. Wireless sensors may be proximate to entrances to a vehicle. The vehicle may track values from the sensors indicative of distance between a mobile device and the sensors; calculate pair values as sums of the values received from pairs of the sensors proximate vehicle entrances; and identify one of the entrances through which the mobile device passed according to the pair value with a minimum value closest to a distance between the pair of the sensors.

Abstract: A process triggering method is disclosed. The method may be implemented by a processor. The method may comprise receiving an input operation on an unlock interface of a terminal device, determining input operation information corresponding to the input operation, determining triggering operation information matching with the determined input operation information, determining a process corresponding to the input operation according to a predetermined corresponding relationship between the triggering operation information and the process, and triggering the process.

Abstract: In one example of the technology, a first third-party service is registered with the IoT support service. A first IoT device of a plurality of IoT devices is caused to be provisioned with the IoT support service. An authentication token is received for the first IoT device. The authentication token is based on an authentication of the first IoT device with the first third-party service. The authentication token is verified. The first IoT device is authenticated with the IoT support service based on the verification.

Abstract: A method for confirming identity of a user of a mobile electronic device, the method including: receiving touch data from a touch-screen of the mobile electronic device; receiving acceleration data from an accelerometer of the mobile electronic device; correlating between the touch data and the acceleration data; based on the correlating, generating a user-specific trait indicative of said user. The method further includes storing a reference value of the user-specific trait, indicative of said user; in a subsequent usage session of the mobile electronic device, generating a current value of the user-specific trait correlating between touch data and acceleration data; and based on a comparison between the current value of the user-specific trait and the reference value of the user-specific trait, determining whether or not a current user of the mobile electronic device is an authorized user of the mobile electronic device.

Abstract: A smart lock box system is described. One implementation of the lock box system includes a locking mechanism configured to securely hold a cover over a compartment. The lock box system includes a receiver capable of receiving signals from a user device. The lock box system also includes a processor configured to identify an access message in a received signal, a service to verify that the access message was provided by an authorized party, and cause the locking mechanism to be released in response to verifying that the access message was provided by the authorized party. The open/close events are recorded in a distributed ledger to document which user's device was used to access a given property at a given time. Furthermore, the smart lock box system utilizes a push notification service, based on user device's GPS, to inform owners when to depart/return to the property.

Abstract: The system and methods described herein can detect and register devices. One or more processors receive a device identifier of a first device. The device identifier of the first device is authorized responsive to performing a lookup in a first set of databases using the device identifier. The processors receive a record of an event corresponding to the device identifier, the record including the device identifier, a first value associated with the device identifier, and a first event identifier identifying the event. The processors store a first entry identifying the device identifier, the first value, the first event identifier, a specification of the first device, and a first status indicating the first device is authorized. The processors assign the device identifier of the first device to a first group of the plurality of groups. The processors provide data corresponding to the first device and the first status.

Abstract: A subscriber identity element authenticates a communication device to a communication network. The subscriber identity element is assigned a subscriber identity identifier. The communication network comprises a subnetwork having a discovery server. The subscriber identity element comprises: a memory in which an initialization profile of the subscriber identity element is stored, wherein the initialization profile indicates a subnetwork identifier the subnetwork; and a communication interface, configured to establish a communication link to the discovery server using the subnetwork identifier and to transmit the subscriber identity identifier to the discovery server via the communication link.

Abstract: There is provided a system and a method for installing a Remote Radio Unit. The system and method is for a network stranded remote radio installation.

Abstract: A network apparatus according to an embodiment comprises: a storage unit configured to store apparatus information in which information on a model identifier of a terminal apparatus and use authentication information indicating that the terminal apparatus is granted a use authentication by a predetermined network operator are associated; a receiver configured to receive, from another network apparatus, information on a model identifier of a user terminal accessing a network managed by the predetermined network operator; and a controller configured to notify, based on the information on the model identifier of the user terminal and the apparatus information, the other network apparatus of information for determining whether or not to provide a communication service to the user terminal.

Abstract: A method, a related apparatus, and a system for recovering a called service of a terminal are provided. The method includes: when a called request of a user terminal is received, querying an initial proxy-call session control function (P-CSCF) entity with which the user terminal currently registers; if it is detected that the initial P-CSCF is faulty, selecting an available P-CSCF and sending, to the available P-CSCF, a notification message that carries a redundancy identifier, where the redundancy identifier is used to instruct the available P-CSCF to trigger the user terminal to re-register with the P-CSCF; and when a registration complete message sent by the P-CSCF with which the user terminal re-registers is received, delivering the called request to the re-registered P-CSCF to bear a called service of the user terminal.

Abstract: Systems and methods for initiating enrollment of a local device in a cloud environment using a separate device are presented. In an example embodiment, a device identifier for the local device is received from the local device by a separate device that is trusted by a cloud computing system. The separate device causes the displaying of an indicator for the local device. In response to receiving an activation of the indicator for the local device, the separate device issues a request to the cloud computing system to receive credential information enabling the local device to enroll with the cloud computing system. The separate device receives the credential information from the cloud computing system and transmits the credential information to the local device.

Abstract: Approaches for using a device-based authentication certificate to obtain data access to a cloud-based destination application are provided. Using an edge manager device, a token and data access request is received from a machine. The edge manager device is configured to administer data access to one or more cloud-based applications.

Abstract: An incoming call controlling device (2) includes a connection determining unit (3) configured to determine, when an incoming call to a first phone number is received, whether a mobile phone terminal (6) is connected as an extension phone to the incoming call controlling device (2); an incoming call controlling unit (4) configured to transfer the incoming call to a second phone number when it has been determined that the mobile phone terminal (6) is not connected to the incoming call controlling device (2); and a caller information transmitting unit (5) configured to transmit, to a server (7), identification information and caller information of the incoming call when a transfer by the incoming call controlling unit (4) is performed. The server (7) is configured to notify a phone terminal of the caller information by using a network different from a circuit used for the transfer.

Abstract: A security system for point of sale (POS) terminals, including one or more POS processors for injecting decoy credit cards numbers into memories of corresponding one or more POS terminals, a secure database including entries of the decoy credit card numbers and, for each entry, a corresponding identifier of a specific POS terminal and a corresponding date & time, and a security manager receiving a notification of attempted use of a specific decoy credit card number, extracting the POS identifier and the date & time corresponding to the specific decoy credit card number from the database, identifying legitimate credit card numbers that were processed by the identified POS terminal during a time period including the date & time corresponding to the specific decoy credit card number, and alerting an authority that the legitimate credit card numbers may have been compromised.

Abstract: A system of isolation management comprises a computer for generating an isolation plan; a lockbox configured to receive the isolation plan from the computer; a mobile device associated with an individual, and one or more locks for isolation locking of an asset by each individual according to the isolation plan. The mobile device is allocated to the lockbox according to the isolation plan. The lockbox is configured to recognise the mobile device when proximal to the lockbox. The one or more isolation locks are removably housed in the lockbox. The one or more isolation locks are each able to be recognised by the mobile device and the mobile device is configured to record an association of one or more of the isolation locks to the mobile device according to the isolation plan. There is also an isolation point for isolating the asset with the one or more isolation locks according to the isolation plan. The isolation point is able to be recognised by the mobile device.

Abstract: A system provider shopping list display device, including a shopping list support engine to receive user location information from a plurality of beacon devices that indicates a location of a user at a merchant physical location and to retrieve shopping list information that includes a plurality of products that are available in a first order. The shopping list support engine is further configured to: receive a product removal input that indicates the user has removed a first product, remove the first product in the shopping list following the product removal input, and provide the plurality of the products remaining in the shopping list in a second order based at least in part on locations of the plurality of products remaining and a location of the user after the first product is removed, and cause at least one of the plurality of the products in the second order to be displayed.

Abstract: A system which comprises a series of native applications, suited to run on mobile devices, and a series of web-based applications for which functionality and processing are optimized. The native applications and the web-based applications are coordinated to optimize processes of acquiring, storing and disseminating data for speed, integrity and security.

Abstract: Methods, systems, and apparatus, including computer programs encoded on a computer storage medium, for a virtual intercom. In some implementations, a request from a visitor device to communicate with an occupant of a particular unit of the facility is received. A location of the visitor device is received. Based on the received location, it is determined that the visitor device is within a predetermined bounded area. An occupant profile is identified based on the received request. Information associated with the occupant profile is obtained. Based on the obtained information, it is determined the occupant has registered a profile. Based on the obtained information, a communication path to an occupant device is identified. The request from the visitor device is sent, using the communication path, to an occupant device belonging to the occupant. A response from the occupant device is received. Based on the response, an action is performed.

Abstract: Novel tools and techniques are provided for implementing self-organizing mobile networks (“SOMNETs”) of drones and platforms. In various embodiments, a computing system might receive first data from each of a plurality of vehicles; might receive second data from each of a plurality of platforms; might analyze the first data to determine a status of each vehicle; and might analyze the second data to determine a status of each platform. Based at least in part on the analyzed first and second data, the computing system might generate at least one of first control instructions to at least one first vehicle of the plurality of vehicles or second control instructions to at least one first platform of the plurality of platforms that respectively cause the at least one first vehicle to perform one or more first actions or cause the at least one first platform to perform one or more second actions.

Abstract: A system for providing an IP-based wireless telecommunications device with access to an IP-based wireless telecommunications service provided by a carrier network includes an access point that sets up a radio link with the IP-based wireless telecommunications device and couples the IP-based wireless telecommunications device to the network. The system also includes a network controller in communication with the carrier network and the access point. The network controller is configured to receive data packets corresponding to the IP-based wireless telecommunications device at the access point. The network controller is also configured to accept/reject the provision of the IP-based wireless telecommunications service to the IP-based wireless telecommunications device based on an IP address or other unique identifier associated with the access point.

Abstract: An information processing method and related products are provided. The method includes obtaining unlocking-related information corresponding to a current successful unlocking operation; hiding or deleting privacy information of at least one application when a relationship between the unlocking-related information and recorded unlocking habit information does not meet a preset condition.

Abstract: The invention is directed to systems and methods for detecting the loss, theft or unauthorized use of a device and/or altering the functionality of the device in response. In one embodiment, a device monitors its use, its local environment, and/or its operating context to determine that the device is no longer within the control of an authorized user. The device may receive communications or generate an internal signal altering its functionality, such as instructing the device to enter a restricted use mode, a surveillance mode, to provide instructions to return the device and/or to prevent unauthorized use or unauthorized access to data. Additional embodiments also address methods and systems for gathering forensic data regarding an unauthorized user to assist in locating the unauthorized user and/or the device.

Abstract: Disclosed are a method and a device for controlling a code lock. The method comprises: receiving an unlock request for a target code lock sent by a client; parsing the unlock request to determine whether the unlock request satisfies a preset unlock condition; in response to determining that the unlock request satisfies the preset unlock condition, acquiring the current state of the target code lock; if the current state of the target code lock is a locked state, acquiring the unlock code of the current code pair for the target code lock, changing the current state of the target code lock to an unlocked state, and sending the acquired unlock code to the client; and in response to receiving the lock feedback code of the current code pair for the target code lock sent by the client, changing the current state of the target code lock to a locked state.

Abstract: A system and method for automatically comparing obtained wireless device location information from a wireless network and comparing that location with another independent source geographic location is provided. Location information is derived from two or more sources in a multiplicity of ways and a comparison is made within a Location Comparison Engine. The Location Comparison Engine makes use of databases that assist in resolving obtained raw positioning information and converting that positioning information into one or more formats for adequate location comparison. Results of the location comparison are deduced to determine if the wireless device is in some proximity to some other activity source location.

Abstract: Embodiments include a system, method, and computer program product that authenticates a caller using calling party information. In an embodiment, an authentication device receives the call request and associated calling party information that includes a calling party number. The authentication device retrieves parameters associated with the calling party number, where a retrieved parameter is a number of accounts linked to the calling party number. The authentication device determines whether the number of accounts is between one and a threshold value, inclusive, and verifies that the call request originates from a location or a device associated with the calling party number. Based on the verifying and determining, the authentication device generates an authentication result that indicates whether the calling party number is authenticated.

Abstract: A computer-implemented method for determining potentially undesirable voices, according to some embodiments, includes: receiving a plurality of audio recordings, the plurality of audio recordings comprising voices associated with undesirable activity, and determining a plurality of audio components of each of the plurality of audio recordings. The method may further comprise generating a multi-dimensional vector of audio components, from the plurality of audio components, for each of the plurality of audio recordings to generate a plurality of multi-dimensional vectors of audio components, and comparing audio components between the plurality of multi-dimensional vectors of audio components to determine a plurality of clusters of multi-dimensional vectors, each cluster of the plurality of clusters comprising two or more of the plurality of multi-dimensional vectors of audio components, wherein each cluster of the plurality of clusters corresponds to a blacklisted voice.

Abstract: An electronic device for providing geolocation independent content rights management includes a non-transitory storage medium and a processing unit. The processing unit executes instructions stored in the non-transitory storage medium to receive a request for content from a content access device and, if the content access device is registered to an account associated with a geolocation, provides access to the content. In some implementations, the processing unit may determine if the content access device is registered using a token corresponding to the request. In various implementations, the processing unit may verify that one or more digital rights management and/or persistence policies allow the access, such as where access may be provided to one copy of the content at a time.

Abstract: A user authentication system for an electronic device for use with a plurality of wireless wearable medical sensors (WMSs) and a wireless base station that receives a biomedical data stream (biostream) from each WMS. The system includes a BioAura engine located on a server, the server has a wireless transmitter/receiver with receive buffers that store the plurality of biostreams, the BioAura engine has a look up stage and a classifier, the classifier generates an authentication output based on the plurality of biostreams, the authentication output authenticates the user's access to the electronic device. The wireless base station has a transmitter/receiver having receive buffers that store the biomedical data from each WMS, the wireless base station has a communication engine that retrieves the biostream from each WMS and transmits the plurality of biostreams to the server.

Abstract: Computer implemented methods are presented. The methods include, for instance: obtaining a user credential for login to a mobile device from a user. By use of a multi-layered authentication, based on the user credential, and a discreet user identity verification, the user determined to be unauthorized would operate the mobile device in a precaution mode, which discreetly creates secure records of activities of the user.

Abstract: A hearing instrument includes: a radio for reception of a broadcasted message; an authenticator configured for authentication of a transmitter of the broadcasted message; and a receiver configured for converting the broadcasted message into an acoustic signal for transmission towards an eardrum of a user of the hearing instrument upon successful authentication of the transmitter of the broadcasted message.

Abstract: A method of detecting a transmitting device within an obstruction rich environment is disclosed. The method may involve detecting the transmitting device with a wireless transmission detection facility; communicating signal information relating to the detected transmitting device from the wireless transmission detection facility to a central unit; determining the location of the transmitting device; displaying information of the detection and location of the transmitting device through a user interface; and providing an action facility for causing actions related to the detected transmitting device.

Abstract: Embodiments of this application provide a method, an apparatus, and a system for managing an international mobile subscriber identity (IMSI) status of a terminal device. An IMSI of a second terminal device is activated or deactivated through interaction between a first terminal device and a core network node, so that the second terminal device does not participate in activating or deactivating the IMSI of the second terminal device. Therefore, power consumption of the second terminal device can be reduced, and a requirement of an Internet of Things application scenario can be met.

Abstract: The disclosed computer-implemented method for preventing loss of possession factors may include (i) identifying an account of a user that is associated with a possession factor that is used by the user to perform a multi-factor authentication procedure that is required when accessing the account of the user, (ii) monitoring one or more attributes of at least one of the user and the possession factor, (iii) determining, based at least in part on the one or more attributes of at least one of the user and the possession factor, that the possession factor has likely been lost, and (iv) performing a security action in response to determining that the possession factor has likely been lost to prevent the user from being unable to perform the multi-factor authentication procedure. Various other methods, systems, and computer-readable media are also disclosed.

Abstract: A method of dynamically changing a read status of an electronic message. A computer accesses a communication management system that manages electronic messages among members of a participating team. The computer reviews at least one electronic message transmitted to a member of the participating team and analyzes a read status of the electronic message of the member to identify an unread electronic message. The computer also tracks a location of the member of the participating team and identifies a meeting between members of the participating team based on the location. The computer will update the read status if members of the participating team discuss content of the unread electronic message during the meeting.

Abstract: A card registry system is configured to automatically identify financial card information in one or more credit files associated with a consumer and populate a card registry account of the consumer with the identified financial card information. Once the financial card information has been obtained from the credit file(s), the card registry system may transmit cancellation and/or reissuance requests to the respective card issuers in the instance that one or more cards are compromised, so that the financial cards may be easily and efficiently cancelled and/or reissued at the request of the consumer.

Abstract: A data transmission method, a first device, and a second device, for use in implementing secure data transmission between a terminal device in a non-active state and a base station. The method comprises: a first device determines a transmission message comprising transmission data and a secure context identifier of a terminal device, the terminal device being in a non-active state; the first device sends the transmission message to a second device; the second device matches the secure context identifier of the terminal device with a secure context identifier of at least one local terminal device, and determines, on the basis of the matching result, whether to activate the security of the terminal device.

Abstract: In an embodiment, the present invention discloses a method for accessing a network by UE, a core network entity, a base station, and first UE. The method includes determining, by a base station, that first UE provides relay for the second UE; and sending, by the base station, a first message including a first identifier to the first UE. The first message is used to manage a data radio bearer DRB of the first UE so that the DRB of the first UE is used to transmit data of the second UE, and the first identifier is in a one-to-one correspondence with the second UE.

Abstract: This disclosure relates to techniques for efficient sparse network resource usage and connection release procedures. According to some embodiments, a wireless device may utilize techniques for efficiently releasing a radio resource control (RRC) connection, including techniques that avoid or reduce the occurrence of random access procedures when out-of-sync with the network when the RRC connection is being released. In some embodiments, a wireless device may utilize techniques for efficiently sparsely using network uplink resources, including techniques that avoid or reduce the occurrence of random access procedures to regain timing alignment to perform uplink communication when out-of-sync with the network.

Abstract: One example method of operation may include identifying call data associated with a received call, identifying call parameters from the call data, and the call parameters include one or more call routing parameters associated with call routing of the call and one or more call session parameters associated with a call session of the call, assigning weights to one or more of the call routing parameters and the call session parameters, determining a scam score for the call based on a sum of the weights applied to the call routing parameters and the call session parameters, and blocking the call when the scam score is greater than or equal to a predetermined threshold scam score.

Abstract: In some examples, a system extracts features from event data representing events in a computing environment, trains ensembles of machine-learning models for respective analytics modules of a plurality of different types of analytics modules, and detects, by the different types of analytics modules using the respective trained ensembles of machine-learning models, an anomalous entity in response to further event data.

Abstract: In an aspect, the present disclosure provides an electronic device for OTP authentication of a present location, comprising: a power source, a processor, and a memory in a housing; a strap comprising first and second ends, and a first wire extending from the first end to the second end of the strap and forming an external loop, wherein the first wire establishes a first electrical connection between the power source and the processor; and a second electrical connection operatively connected to the processor and the memory, the processor configured to generate an OTP, only when the processor is connected to the power source by the first electrical connection without interruption once the first electrical connection is established. The OTP authentication may be time-based one-time password (TOTP) authentication, and the generated OTP may be a time-based one-time password (TOTP).