Abstract: A method of programming a device comprising acquiring configuration data, loading the configuration data onto a programmable device, processing at least a portion of the configuration data through a one way function to form processed configuration data, and configuring at least one configurable module of the programmable device using the processed configuration data from the processing step.

Abstract: A method for securing the processing of an initial digital asset according to at least one processing step delivering an output digital asset from an input digital asset function of the initial digital asset. According to such method, a producer electronic device executes creating an initial NFT assigned to a producer wallet, in a blockchain, the initial NFT being associated with the initial digital asset, the initial NFT including input access condition to the initial digital asset and, for the at least one processing step, the initial NFT includes post-processing access conditions to the input digital asset after the execution of the processing step and output access conditions to the output digital asset delivered by the processing step, and assigning the initial NFT to a wallet, in the blockchain, associated with a first processor electronic device implementing a first processing step.

Abstract: Malware detection logic executed by a secured device residing in a home network may receive a message from an unsecured device of a first unsecured network and intended for a destination device of the home network, the destination device comprising a security client. The malware detection logic may establish a secure communication channel between the malware detection logic of the secured device and the security client of the destination device. The malware detection logic may execute a validation test on the message to determine that the message includes malware. The malware detection logic may report an alarm to the security client of the destination device. The malware detection logic may transmit information related to the malware to a cloud computing server. The malware detection logic may prevent an application associated with the destination device from processing the message.

Abstract: A computer implemented method for sending context information between programs, the method including: displaying a graphical user interface including a plurality of selectable application icons; receiving a simultaneous selection of a first icon and a second icon from the plurality of selectable application icons; launching a first program associated with the first icon; launching a second program associated with the second icon; and sending context information between the first program and the second program.

Abstract: A method of controlling access to sensor data includes of: generating sensor data, and protecting the sensor data to generate protected sensor data; and transmitting the protected sensor data to a device for storage; receiving, by the sensor: access control data defining one or more operations which the device is permitted to execute on the protected sensor data; determining by the sensor, based on the access control data, an operation which the device is permitted to execute on the protected sensor data; enabling the device to execute the permitted operation on the protected sensor data.

Abstract: Devices, servers, systems and methods for content protection are provided. Disclosed embodiments improve temporal granularity of controlling access to the protected content and increase resilience against attacks attempting to prevent re-evaluation of conditions of access. Enforcement of re-evaluation may be based on the receipt and/or verification of tokens. In some embodiments, re-evaluation is enforced by periodically rendering content keys required for content decryption unuseable and/or clearing content keys already in use.

Abstract: A method of acquiring access rights to conditional access content. The method comprises receiving an access right on a first terminal through a first communication channel; storing said access right in said first terminal; sending a request for said conditional access content to a content provider, said request containing at least an identifier of an account to which said first terminal is associated, an identifier of the requested content and a piece of information concerning said access right; verifying, by said content provider, the authenticity of said access right using said piece of information concerning the access right; and when there has been a successful verification, marking said access right as used, and sending said conditional access content to at least one terminal linked to said account. The first terminal using near field communication technology (NFC) during at least one transfer of said access rights.

Abstract: The present disclosure relates to the exchange of information between a message sending device and a message receiving device with message authentication and proposes to reduce the time required for message authentication by pre-computing a message tag, such as a MAC, and subsequently replacing the computation of the MAC when the tag is to be validated (or indeed also on sending) by a table look-up. The approach requires a set of messages and works particularly well for small sets of messages, for example as small as two or three messages, or less than five or ten messages. The approach finds particular application in control networks where control decisions have to be taken quickly and securely, for example in the control of a vehicle, for example an autonomous vehicle, or the control of a smart electricity grid.

Abstract: The present disclosure generally relates to a blockchain monitoring system. For example, aspects of the present disclosure include systems and techniques for monitoring one or more transactions on a block chain using configured rules. Some aspects include a monitoring system having at least one memory and at least one processor coupled to the at least one memory and configured to: detect a block on a blockchain; retrieve, from a rules database, a rule associated with one or more transactions on the block; determine whether the rule applies to one or more transactions on the block; and perform one or more actions associated with the rule using an authentication code associated with a user, the authentication code being different than a private key of the user for accessing the blockchain.

Abstract: The present disclosure generally relates to sport augmentation systems. For example, aspects of the present disclosure include systems and techniques for assessing a path of a ball during a sporting session to be used to augment a sporting experience. On example method includes receiving one or more frames capturing image data associated with movement of a ball on a surface during a sporting session, determine a state associated with throwing the ball based on the one or more frames, perform an assessment of the surface on which the ball is thrown, predict a path of the ball as thrown on the surface based on the state associated with the ball and the assessment of the surface, and output an indication of the path to be displayed on a display element.

Abstract: A system includes two or more communication devices. Each device includes a dedicated SDR chip with a dedicated key generator to generate a secret key shared by the two SDR chips using a physical unclonable function PUF that takes as an input configuration data and produces an output. In the dedicated key generator of each SDR chip, the PUF takes as an input configuration data and produces an output identical for the two SDR chips, that is the shared secret key or a seed to derive it. The configuration data is unique to each SDR chip, dependent on physical random factors introduced during manufacture of the SDR chip, and is adapted for the respective key generator to generate the shared secret key.

Abstract: Haptic feedback device (11), comprising: an input unit (114) for receiving remote object data (30), at least one feedback surface (111) arranged to be touched or sensed by a user, at least one haptic actuator (112) arranged for providing a change on the feedback surface (111), a control unit (113): connected to the input unit (114) to receive the remote object data (30), and connected to the haptic actuator (112), and arranged to control the haptic actuator (112) according to the received remote object data (30) so as to provide haptic feedback to the user.

Abstract: A method for securely receiving a multimedia content by a client device operated by one or more operator(s) involving a dedicated provisioning server of a security provider managing symmetric secrets used by the client devices and operators license servers. The provisioning server provides to the client device one or more generations of operator specific unique device secrets, which are then exploited by the various operators' license servers to deliver licenses such that authorized client devices can consume protected multimedia contents.

Abstract: The present disclosure relates to a wireless token capable of representing a user network, the token being used to automatically provision an IoT enabled device to connect to the user network. Functions required to achieve this include: authenticate the token with the user network, and responsive to said authentication, obtain and store configuration information for enabling the token to communicatively couple one or more devices at or within a defined proximity to the token, with the user network; responsive to a wireless signal received from a given device among the one or more devices, establish a temporary secure communication channel between the given device and the token; and provide the configuration information from the token to the given device using the temporally secure communication channel, wherein the configuration information enables the given device to establish a connection with and operate in the user network based on the obtained configuration information.

Abstract: A method for providing an authorization to access an interactive good by means of an access right issued by a first bearer device to or for a second bearer device by using a wireless communication means, the method including: by the first device, wirelessly obtaining a first information including at least a second device identifier, generating the access right including at least the second device identifier and an identifier of the interactive good, providing, to the interactive good, a second information including at least the access right, by the second device, wirelessly presenting an access request to the interactive good, by the interactive good, performing an identity check in order to at least verify the second device identifier, and, in case of successful identity check, providing the requested access to the interactive good.

Abstract: A method for data security implemented as an application on a device includes generating a request for one or more secret shares needed to reconstruct a key. The device stores a first secret share in its memory. The method also includes signing the request with a certificate that identifies the request as valid without identifying the device, and sending the request, signed with the certificate, to at least one other device. The method further includes receiving, from the at least one other device, the one or more secret shares, determining whether the one or more secret shares received from the at least one other device is sufficient to reconstruct the key, and reconstructing the key using the first secret share and the one or more secret shares upon determining that the one or more secret shares are sufficient to reconstruct the key.

Abstract: A method for controlling access to a resource in an electronic device including a secure element with a permanent memory having an OTP area. The method includes the following steps performed first when the secure element or the electronic device boots: checking presence of at least one of a secret data and an initialization value in the permanent memory and, in a negative event, generating an initialization value and storing it into the OTP area, in a positive event, if the permanent memory includes secret data, decrypting, within the secure element, the secret data by using an algorithm using a cryptographic key and, if the permanent memory further includes an initialization value, the initialization value, and checking the integrity of the secret data by using a signature stored in the permanent memory and, on successful completion, providing access to the resource.

Abstract: Implementing a camouflage of current traces generated by a hardware component having one or more set of digital elements defining a plurality of operational datapaths comprises adjusting (761) one or more working condition(s) of the hardware component, measuring (762) a reaction of the hardware component to the working condition(s) by a logic test circuit through processing data operations along a reference datapath having a minimum duration corresponding to at least the longest of the operational datapaths, and in response to detecting an error (763) along the reference datapath, modifying (764) the working condition(s) so that the error generated by the logic test circuit is cancelled. Applications to countermeasures to side-channel attacks.

Abstract: The present disclosure relates to software tampering resistance. In one aspect, a method for generating protected code is provided, comprising identifying a primary function in code to be obscured, the primary function being a function used to verify the integrity of the code run-time. The method then comprises generating a finite state machine from the primary function, wherein a state of the finite state machine at a given instance defines an element of the primary function to be executed. The method then comprises distributing the finite state machine throughout the code to obscure one or more areas of the code.

Abstract: The disclosure related to methods and associated devices and/or systems for authorising at least one operation associated with a device, the device operating in a communication network, such as a user network, that comprises a plurality of devices communicatively coupled to a server computer, such as a control server. The disclosed method comprises generating a data model based on a plurality of patterns of actions for one or more devices among the plurality of devices. The data model is configured to detect and/or store at least one regular pattern of actions for each device among the one or more devices, each action corresponding to an operating state of the device. The disclosed method comprises receiving a request for an operation associated with a first device among the plurality of devices and determining if the received request satisfies a first criterion, the first criterion being based on or associated with the data model.