Abstract: A system includes an ingestion component configured to receive a request from an entity for content related to a content item and a user identity. The request has a content identifier representative of the content item and a token. A request processing component of the system is configured to access a database associated with the system and identify the content item and the user identity using the content identifier and the token, wherein the database has information associating the token with the user identity and associating the content identifier with the content item. In response to identification of the content item and the user identity, the request processing component directs a recommendation engine associated with the system to identify the content related to the content item and the user identity. Information identifying the content related to the content item and the user identity is then transmitted back to the entity.

Abstract: One embodiment of the present disclosure provides a system and associated processes for sharing cardholder data (CHD) between a merchant that utilizes tokenization and a second merchant that may or may not utilize tokenization. In one embodiment, the merchant, or an employee of the merchant, can use the system and associated processes to reacquire CHD from a tokenization provider system. In one embodiment, the merchant identifies to the tokenization provider system a desire to share CHD, which is associated with a token, with a second merchant. The merchant and/or the tokenization provider system can then invite the second merchant to register with the tokenization provider system. Once registered with the tokenization provider system, the second merchant can access any CHD that the merchant associated with the second merchant.

Abstract: The present disclosure relates to a transmitting device and a transmitting method, and a receiving device and a receiving method which are capable of improving confidentiality and communication resistance in low power wide area (LPWA) communication. The transmitting device generates a key stream on the basis of GPS time information, encrypts transmitted data on the basis of the key stream to generate encrypted data, and transmits the encrypted data to the receiving device. The receiving device generates a key stream on the basis of GPS time information and decodes the encrypted data into the transmitted data on the basis of the key stream. The present disclosure can be applied to an LPWA communication system.

Abstract: Methods and systems for a transportation vehicle are provided. One method includes initializing a first browser at an electronic device to communicate with a remote virtual loader having access to data for an in-flight entertainment (IFE) system of an aircraft; authenticating the first browser by the remote virtual loader; providing IFE data for the IFE system to the first browser by the remote virtual loader with an instruction to grant access to the IFE data by a second browser of the electronic device, the second browser authenticated by the IFE system to send information to the IFE system; and transferring the IFE data from the electronic device to the IFE system by the second browser that obtains access to the IFE data from the first browser in response to the instruction from the remote virtual loader.

Abstract: Techniques are disclosed which include receiving, by a central entity computer, a request for digital currency. The request includes a serial number and a denomination of a physical currency. The central entity computer generates the digital currency for the denomination and linked to the serial number. The generating includes recording the digital currency on a blockchain. The central entity computer transmits a notification of the generation of the digital currency. The central entity computer causes removal of the physical currency from circulation in a fiat currency system.

Abstract: A peripheral controller implemented on a server facilitates a transaction initiated at a payment user interface (UI). The peripheral controller is configured to pair the payment UI with a peripheral device, which is configured to receive payment information from a user. The peripheral controller also is configured to communicate with a payment processing system to facilitate processing of a payment request.

Abstract: Disclosed herein are systems, methods, and non-transitory computer-readable media for enforcing application usage policies. As part of an application purchase transaction, the application distributor creates a unique proof of purchase receipt. This receipt can be bundled with the application and delivered to the purchaser. Each machine can maintain an authorization file that lists the users authorized to use applications on that machine. A system configured to practice the method verifies that a user is authorized to use an application on a machine based on an application proof of purchase receipt and the authorization file. If the application proof of purchase receipt and the authorization file are both valid, the system checks if the user account identifier in the receipt is contained in the authorization file. If so, the user can be considered authorized to use the application on the machine.

Abstract: Disclosed are Multipurpose Media Players that enable users to create transcriptions, closed captions, and/or logs of digitized recordings, that enable the presentation of transcripts, closed captions, logs, and digitized recordings in a correlated manner to users, that enable users to compose one or more scenes of a production, and that enable users to compose storyboards for a production. The multipurpose media players can be embodied within Internet browser environments; thereby providing high availability of the multipurpose players across software platforms, networks, and physical locations.

Abstract: A system for customizing media presentation based on user's sentiments is disclosed. The system presents a media item to the user on a platform comprising a website. The system captures a first set of microexpressions of the user reacting to the media item. The system extracts a set of baseline features from the first set of microexpressions. The system determines whether the media item elicits positive or sentiment from the user. If the system determines that the media item elicits positive sentiment from the user, the system classifies the media item into a first class of media items that elicit positive sentiment from the user. The system adjusts contents of the platform to include media items from the first class of media items.

Abstract: Methods and apparatus for identifying features that may have a high potential impact on key application metrics. These methods rely on observational data to estimate the importance of application features, and use causal inference tools such as Double Machine Learning (double ML) or Recurrent Neural Networks (RNN) to estimate the impacts of treatment features on key metrics. These methods may allow developers to estimate the effectiveness of features without running online experiments. These methods may, for example, be used to effectively plan and prioritize online experiments. Results of the online experiments may be used to optimize key metrics of mobile applications, web applications, websites, and other web-based programs.

Abstract: An innovative system for transmitting encrypted 1-bit audio over an Ethernet network comprises using an omni-directional micro-electrical-mechanical system acoustic sensor element (11) to provide an analog input signal (33) to a sigma-delta modulator (12) which then creates a pulse density modulated 1-bit data stream (32), at an audio oversampling rate, to a first input of a first exclusive-or (XOR) logic gate (58). The second input of the XOR logic gate is simultaneously presented with a first pseudo-random 1-bit data stream (78), at the same audio oversampling rate, thereby resulting in an encrypted pulse density modulated (PDM) 1-bit data stream (73) at the output of the XOR logic gate. The encrypted PDM 1-bit data stream is clocked into a first-in first-out (FIFO) memory at the audio oversampling rate and is clocked out of the first FIFO memory as Ethernet PDM frame data packages (74) at a predetermined Ethernet PHY transfer rate.

Abstract: A first executable program on a computer system is enabled to exchange communications with a second executable program on the computer system by determining that the first executable program requests to exchange information with the second executable program, using the second executable program to challenge the first executable program for a digital certificate, and using the second executable program to exchange information with the first executable program when the digital certificate is verified.

Abstract: A method for caching and deduplicating a plurality of received segments of data is disclosed. The method comprises identifying a value of a first data field in each segment acting as a unique source identifier; and identifying a value of a second data field in each segment, the second data field being densely populated by values in the plurality of segments. The value of the second data field is partitioned into a first partition comprising more significant bits and a second partition comprising less significant bits. A key is generated based on values of the first data field and the first partition. A database entry associates the first key with a bitmap, the bitmap having a length based on the number of possible values a bitmap of equal length to the second partition could validly take. Single bits of the bitmap are set corresponding to received segments, to enable deduplication.

Abstract: Methods, systems, and apparatus, including computer programs encoded on computer storage media, for a data processing method are provided. One of the methods includes: distributing, to one or more computing devices, data of one or more leaf nodes in a blockchain node, for the one or more computing devices to compute checksums of the data of the leaf nodes; and determining, according to the checksums of the data of the leaf nodes, a root checksum of data in the blockchain node. Compared to conventional methods, these methods compute a checksum of data faster and more efficiently, and thus ensure proper generations of blocks and operations of a blockchain.

Abstract: A method for personalizing reviews for a user on a social network, comprising the steps of: receiving from at least two or more users a rating and a recommendation for a reviewable item, wherein the rating is numerical value in a rating scale, and wherein a recommendation is a binary endorsement; receiving a request from a user to view the ratings and recommendations for one or more reviewable items; determining a combined rating and an combined recommendation for all users of the social network at one or more social degrees for the one or more reviewable items; and displaying, by a user interface, the combined rating and combined recommendation for all users of the social network at one or more social degrees for the one or more reviewable items.

Abstract: A system for identifying a user using microexpressions presents training media items to the user. The system captures a first set of microexpressions of the user in reaction to the training media items. The system, based on the first set of microexpressions, determines baseline features indicating reactions of the user to the training media items. The system presents test media items to a person. The system captures a second set of microexpressions of the person in reaction to the test media items. The system, based on the second set of microexpressions, determines test features indicating reactions of the person to the test media items. The system determines whether the person is the same as the user by comparing the baseline features to the test features. The system determines that the person is the same as the user if the test features correspond to the baseline features.

Abstract: Systems and methods that access an online networked resource using a locator are disclosed. A first item of content on the networked resource is identified. A trigger rule comprising keywords and a sentiment classifier is accessed. A neural network, including input, hidden, and output layers, is used to assign a sentiment classification to the first item of content. The trigger rule, the sentiment classification, and identified keywords, are used to determine whether response content is to be posted to the online networked resource. In response to determining, using the trigger rule, the assigned sentiment classification, and keywords identified in the first item of content, that response content is to be posted to the online networked resource, the sentiment classification and identified keywords are used to select and/or generate a second item of content, and the second item of content is enabled to be posted to the online networked resource.

Abstract: Certain embodiments of this disclosure describe techniques for detecting a spoofed network device and preventing the serving of content, such as advertisements, to the spoofed network device. In certain embodiments, a network security system is provided. The network security system can include hardware and/or software programmed to prevent the provision of content to a spoofed client device. The network security system can provide a mechanism for certifying to content providers, such as advertisers, whether or not a client is a legitimate mobile device or a spoofed device. Accordingly, content providers can prevent the delivery of content to fraudulent devices instead of relying on imprecise solutions that detect fraudulent activity after it has occurred.

Abstract: Systems and methods that access an online networked resource using a locator are disclosed. A first item of content on the networked resource is identified. A trigger rule comprising keywords and a sentiment classifier is accessed. A neural network, including input, hidden, and output layers, is used to assign a sentiment classification to the first item of content. The trigger rule, the sentiment classification, and identified keywords, are used to determine whether response content is to be posted to the online networked resource. In response to determining, using the trigger rule, the assigned sentiment classification, and keywords identified in the first item of content, that response content is to be posted to the online networked resource, the sentiment classification and identified keywords are used to select and/or generate a second item of content, and the second item of content is enabled to be posted to the online networked resource.

Abstract: A communication apparatus comprises a communication unit, a control unit which records transfer management information representing a state of a data item selected, from a plurality of data items stored in a storage, as a transfer target to be transferred to a destination apparatus, wherein the control unit updates the transfer management information in accordance with a process for transferring a data item, wherein the control unit, for a data item that has failed to be transferred by the communication unit, updates the transfer management information to a state indicating waiting for re-transfer, and when a destination apparatus is changed after the update, updates the transfer management information from the state indicating waiting for re-transfer to a state indicating not to transfer.

Abstract: Provided is an information processing apparatus and a control method thereof. The apparatus includes a user interface unit that accepts an operation made by a user and a wireless communication unit that communicates wirelessly with an information terminal. A user authentication is executed in response to a user authentication request from the information terminal via the wireless communication unit. In the event of the authentication succeeding, a screen displayed by the user interface unit is not switched in the case where there is a logged-in user who has been authenticated through the user interface unit in response to the user authentication request, whereas the screen displayed by the user interface unit is switched in the case where there is no such logged-in user.

Abstract: Representative embodiments of operating a secured device requiring user authentication include receiving a request from a user for operating the device without prior authentication; granting the user temporary access to the device in accordance with a security policy that specifies a predetermined time interval and/or a predetermined number of device operations within which authentication must occur to continue at least some operations of the device; computationally storing an audit trail identifying the temporary access and actions performed during the temporary access; and upon determining that authentication has not been provided within the predetermined time interval or number of device operations, preventing at least some operations of the device and updating the audit trail to specify expiration of the temporary access.

Abstract: An API management device includes: a reception unit configured to receive a selection of a charging condition when using an API; a receiver configured to receive a request for the API from the application; a transmitter configured to transmit a response according to the request to the application; and a history storage configured to store a history of the request for the API and the response for each of the applications that use the API. A charging management device includes: a charging condition storage configured to store the charging condition received by the reception unit for each of the applications that use the API when using the API; an acquisition unit configured to acquire information on the history from the history storage; and a determination unit configured to determine a charge value for the application that uses the API based on the charging condition and the information on the history.

Abstract: A server device can, in response to a mobile device request, facilitate presentation of a login page via a mobile device. The login page can prompt for access credentials to a user account associated with mobile communications services and associated with a user identity, wherein a displayed link by an in-vehicle user equipment enabled the mobile device to request the login page. Based on a receipt of the access credentials from the mobile device, the server device can facilitate displaying a prompt, via the mobile device, for entry of an activation code, wherein the activation code was displayed by the in-vehicle user equipment along with the displayed link. The server device can receive a submitted code from the mobile device, and in response to the submitted code being determined to match the activation code, pairing the in-vehicle user equipment with the user account.

Abstract: A global count value can be determined in a distributed computing system by maintaining at each node in a plurality of nodes in the distributed computing system a local current count value determined at each node, copies of remote current count values determined at other nodes in the plurality of nodes and communicated to each node and a ledger having a cryptographically protected history of determined local count values and communicated remote count values. The local current count value and the copies of the remote current count values are used to compute the global count value at one or more of the plurality of nodes. In addition, the ledger is used to verify integrity of the history of determined local count values and communicated remote count values.

Abstract: The present application discloses a data exchange system, method, and device.

Abstract: An authentication control device includes one or more memories, and one or more processors coupled to the one or more memories and the one or more processor configured to perform storing of a first authentication key received from a server device in the one or more memories, the first authentication key relating to a second authentication key stored in a terminal of a user, in communication between the authentication control device and the terminal in the state where the authentication control device is uncommunicable with the server device, in response to receiving, from the terminal, first information encoded in accordance with the second authentication key, perform decoding of the first information by the stored first authentication key, and execute an authentication process of the user in accordance with second information acquired by the decoding.

Abstract: Generally described, one or more aspects of the present application relate to an instance resource oversubscription service for scheduling a burst period for a running virtual machine instance based on a time window specified by a user of the virtual machine instance. For example, the instance resource oversubscription service can predict future resource usage and identify the appropriate timing and physical host machine for letting the user burst (e.g., temporarily use the virtual machine instance in a manner than consumes a higher amount of computing resources such as CPU cycles, memory, network bandwidth, etc.). In doing so, the instance resource oversubscription service may consider, for example, the historical and current resource utilization levels of the virtual machine instances running on a set of available physical host machines and the burst period scheduling requests from other users of the instance resource oversubscription service.

Abstract: Systems, methods, and computer media for monitoring software application usage are provided herein. Using a local, time-interval-based approach, valuable information can be obtained for application providers without collecting or exposing user's personal data. Application usage data for a user is recorded and stored locally, on a client device, in conjunction with time intervals of different duration. After new application usage is recorded, it can be determined, based on comparison with the stored application usage data, if an application usage update is needed. The update can be generated by and sent from the client device to a remote application management system, and the remote system can perform analytics and improve the application as a result.

Abstract: In one embodiment, a computing device includes: a media player operative to at least play a content item on the computing device, a blockchain-based wallet application operative to transfer a transaction amount to a publisher wallet ID via an associated blockchain-based transaction service, a secure digital rights management (DRM) client application operative to verify the transfer of the transaction amount to said publisher wallet ID according to a public transaction ledger associated with the associated blockchain-based transaction service and upon successful verification of the transfer of the transaction amount to the publisher wallet ID at least unlock a locked version of the content item, and a processor operative to execute the media player, the blockchain-based wallet application, and the DRM client application.

Abstract: A method of securing media-based transactions and contracts on a distributed ledger network comprising receiving a first media file, obtaining a fingerprint of the first media file, generating a non-cryptographic hash value for the fingerprint of the first media file, generating a block for the distributed ledger network comprising a block header comprising previous hash, a state root hash, a receipts root hash, and a transaction list root hash, defining block header hashes, recording the non-cryptographic fingerprint hash value for the fingerprint of the first media file to the block and recording the block to the distributed ledger network.

Abstract: Techniques are provided for giving access to restricted content on a first device from a second device through a wireless network. In one embodiment, the first device transmits an authorization request signal to the second device or to a server in the wireless network. The second device, having received the authorization request, prompts an authorized user to give authorization to the first device by inputting an authentication key such as a password or gesture on the second device. Upon verification of the authentication key, an authorization signal may be wirelessly transmitted to the first device, permitting access to the restricted content or functions on the first device. In some embodiments, the second device may be alerted to an authorization request and may select a request for authorization from a selectable queue of requests.

Abstract: In an example embodiment, a card reader in dispenser (CRIND) is provided including a processor and a memory including computer program code, the memory and the computer programming code configured to, with the processor, cause the CRIND to receive one or more transaction messages from a forecourt controller or a peripheral device associated with a fuel dispenser, compare the one or more transaction messages to one or more message sequences associated with transaction phases of a fuel dispenser, determine a transaction phase of the fuel dispenser based on the comparison of the one or more transaction messages with the one or more message sequences, and cause feature processing circuitry to provide selected alternative media content to a user interface of the fuel dispenser based on the determined transaction phase.

Abstract: A system for secure management of licensing and distributing virtual network functions (VNF) is provided. The system includes a VNF license manager, a VNF repository, and a VNF license database. The VNF license manager is in communication with the VNF repository and the VNF license database. The VNF license manager is programmed to receive a request for access to a first VNF from a virtual network. The virtual network is configured to execute the first VNF. The VNF license manager is also programmed to determine if the virtual network may access the first VNF based on one or more policies associated with the first VNF. If the virtual network may access the first VNF, the VNF license manager is programmed to retrieve the first VNF from the VNF repository and transmit the first VNF to the virtual network.

Abstract: Among other things, we describe techniques for receiving a list of artifacts that are stored in an archive and are responsive to a search query issued by an entity. A set of artifacts are identified that each have a permission attribute indicating that the respective artifact is accessible to the entity when the respective artifact is responsive, above a threshold responsiveness value, to the search query issued by the entity.

Abstract: Systems and computer program products implement methods for detecting a man-in-the-middle (MITM) during HTTPS communications. The methods include establishing a TCP connection for the retrieval of a web page from a domain name using an alternate IP address that is different from the IP address of the target domain where receipt of the target web page in response to a HTTP GET message indicates that a MITM is present, using a domain name as the SNI in a TLS connection and an alternate domain name in a HTTP GET message where receipt of a target web page of the alternate domain name indicates that a MITM is present, and generating an alternate domain name using a domain generation algorithm and using the generated alternate domain name as the SNI in the TLS message where receipt of a certificate for the generated alternate domain name indicates that a MITM is present.

Abstract: An intra-device notational data movement system has a chassis including processing system(s) that are configured to provide a first thread and a second thread. A data mover subsystem in the chassis is coupled to the processing system(s). In a communication transmitted by the first thread, the data mover subsystem identifies a request to transfer data to the second thread that is stored in a first portion of a memory system that is associated with the first thread in a memory fabric management database. The data mover subsystem then modifies notational reference information in the memory fabric management database to disassociate the first portion of the memory system and the first thread and associate the first portion of the memory system with the second thread, which allows the second thread to reference the data using request/respond operations.

Abstract: An exemplary authorization system is located remotely from a hearing device that is configured to facilitate hearing by a recipient. The authorization system comprises a memory storing instructions and a processor communicatively coupled to the memory. The processor is configured to execute the instructions to: receive, from a client in communication with the hearing device, a request for the hearing device to perform an operation; determine, based on device characteristic data that is representative of one or more characteristics specific to the hearing device, that the operation is valid for the hearing device; and transmit, in response to determining that the operation is valid for the hearing device, an authorization message to the hearing device, the authorization message authorizing the hearing device to perform the operation requested by the client.

Abstract: An embodiment of the present invention is directed to providing third party certificate management for native mobile apps or IoT apps. An embodiment of the present invention is directed to performing vendor certificate pinning for trusted communications in native mobile apps without having to control vendor certificate lifecycle management. With an embodiment of the present invention, downloaded certificates may be protected by encryption, anti-tampering protection, etc.

Abstract: Three-dimensional (3D) imaging systems and methods are disclosed for determining vehicle storage areas and vehicle door statuses. A 3D-depth camera captures 3D image data of one or more vehicle storage areas. A 3D data analytics application (app) analyzes a first 3D image dataset of the 3D image data to determine a first depth measurement corresponding to a first vehicle storage area. The 3D data analytics app further analyzes a second 3D image dataset of the 3D image data to determine a second depth measurement. The 3D data analytics app detects a depth-change event based on the second depth measurement differing from the first depth measurement by more than a predefined depth-change threshold value. The 3D analytics app assigns, based on the depth-change event, an open door status to a new second vehicle storage area and a closed door status to the previous first vehicle storage area.

Abstract: A remote agent for providing data protection services includes persistent storage and a backup manager. The persistent storage stores lifecycle policies. The backup manager updates an asset catalog using an asset map associated with a virtual machine; generates a lifecycle policy of the lifecycle policies using the asset catalog; and generates a backup for the virtual machine using the lifecycle policy. The lifecycle policy prioritizes generating the backup for the virtual machine over generating a second backup for a second virtual machine.

Abstract: A system and process for coordinating streaming content or messages is provided. A network-connected server maintains a database containing media content-related data, such as the text of a message, accompanying media, time of airing, payment and related comments. A user can view these feeds or streams of these consciousness messages by downloading a mobile application or browsing to a website. The application can also be used to create, schedule and pay for a media content message.

Abstract: Various techniques are disclosed herein for storing and managing master data in hierarchical data systems. Several related concepts, embodiments, and examples are disclosed, including techniques for incremental rationalization in a hierarchical data model, techniques for implementing governance pools in a hierarchical data model, techniques for application materialization in a hierarchical data model, techniques for data intersection mastering in a hierarchical data model, techniques for change request visualization in a hierarchical data model, and techniques for hierarchy preparation in a hierarchical data model.

Abstract: The present disclosure relates to techniques for controlling a client device. The techniques may include receiving, from a client device, a request for a web resource; generating control data associated with one or more functionalities of the client device; and transmitting a response to the client device including the web resource and the control data to control the one or more functionalities of the client device.

Abstract: Systems and methods are disclosed for automating and monitoring software development operations. The systems may facilitate a user to submit a request to receive information related to a software application development across a development operations (DevOps) pipeline, and to efficiently receive an accurate response to the request. A natural language processing application may use query parameters from the request to form a query. The query may be sent to an artificial intelligence markup language (AIML) interpreter to retrieve the requested information from a database. Alternatively or additionally, the query may be sent to an application associated with an integration of a plurality of DevOps tools in the DevOps pipeline. The application may develop a dynamic response to the request.

Abstract: An information processing apparatus that can operate an application on firmware comprising: at least one memory that stores a set of instructions; and at least one processor that executes the instructions, the instructions, when executed, causing the information processing apparatus to perform operations comprising: receiving an instruction from a user; performing job determination in which whether or not a job is being executed is determined upon receipt of an instruction to enable an application in the receiving; and activating the application, wherein, in the activating, if it is determined that the job is being executed, the application is activated after the job ends.

Abstract: A method for controlling application operations on data elements includes identifying an activity by an instance of an application running on a host to perform an operation associated with a data element. The method further includes obtaining an application label which includes information regarding the instance of the application, and obtaining a data element label which includes information regarding the data element. Then, based on a combined analysis of the data element label and the application label, an operational policy governing the operation of the instance of the application with respect to the data element is determined. A control action is applied to the operation, according to the operational policy, so as to control the operation by the instance of the application with respect to the data element.

Abstract: A system and process for coordinating streaming content or messages is provided. A network-connected server maintains a database containing media content-related data, such as the text of a message, accompanying media, time of airing, payment and related comments. A user can view these feeds or streams of these consciousness messages by downloading a mobile application or browsing to a website. The application can also be used to create, schedule and pay for a media content message.

Abstract: A method for authenticating a user identity for a data transaction is provided. The method is implemented using an identity authentication computing device in connection with a memory and a data transaction processor. The method includes receiving a request from a first user of a first client device for a data transaction with a second user, causing a second client device to prompt the second user for biometric identification information, receiving captured biometric identification information corresponding to the second user, retrieving sample biometric identification information associated with the second user, comparing the captured biometric information and the sample biometric information, determining that the captured and the sample biometric information match, completing a data transaction between the first user and the second user, and transmitting an instruction to one or more of the first client device and the second client device displaying a notification that the data transaction is completed.

Abstract: There is provided a method for computing an encrypted prediction in response to an encrypted query, comprising: obtaining an encrypted dataset comprising encrypted records for respective encrypted entities, each record storing encrypted parameter values of parameters and an associated indication of the respective entity, computing abnormality clusters according to the records of the encrypted dataset, wherein each of the abnormality clusters stores indications of entities of records of the encrypted dataset having mathematically significant common abnormal feature(s) that statistically differentiates records of the respective abnormality cluster from other records of the encrypted dataset, receiving a query comprising target indications of respective target entities associated with common feature(s), and analyzing the query according to the abnormality clusters to identify at least one encrypted result entity indication according to a likelihood of the encrypted result entity indication predicted to correlate