Abstract: A method including encrypting, by a processor associated with a user device, first factor authentication information associated with determining a first authentication factor; enabling, by the processor, encryption of second factor authentication associated with determining a second authentication factor; detecting, by the processor, an attempt by the user device to access a service to be provided by a service provider; determining, by the processor based at least in part on detecting the attempt, the first authentication factor based at least in part on decrypting the first factor authentication information; determining, by the processor, the second authentication factor based at least in part on enabling decryption of the second factor authentication information; and enabling, by the processor, authentication of the user device with the service provider based at least in part on utilizing the first authentication factor and the second authentication factor is disclosed.

Abstract: A method including receiving, by a first device from a second device in a mesh network, a first status message indicating that the second device is operating in the mesh network as an entry device with respect to the first device or that the first device is operating in the mesh network as an exit device with respect to the second device such that data communicated by the second device outside the mesh network is routed via the first device; and selecting, by the first device based at least in part on the first status message, a third device in the mesh network as an exit device with respect to the first device such that data communicated by the first device outside the mesh network is routed via the third device, the third device being different from the second device. Various other aspects are contemplated.

Abstract: A method including establishing, by a first device, a virtual private network (VPN) connection with a VPN server; establishing, by the first device during the established VPN connection, a meshnet connection with a second device in a mesh network; determining, by the first device, whether the second device is a destination associated with a transmission packet to be transmitted by the first device; and transmitting, by the processor, the transmission packet by utilizing the VPN connection or by utilizing the meshnet connection based at least in part on determining whether the second device is the destination associated with the transmission packet. Various other aspects are contemplated.

Abstract: An administrator creates an access policy for a network resource using an access server. The access policy may specify device characteristics that are needed to access the network resource. These characteristics may relate to the type of user device, the computing environment of the user device, installed applications and versions, installed certificates, and physical characteristics. The access policy for the network resource may be assigned to a user or to groups of users. Later, when the user attempts to access the network resource, an application installed on the user device provides a file containing the characteristics of the user device to the access server. The access server determines whether the characteristics of the file satisfies the access policy associated with the user and network resource, and if so permits access to the network resource. Else, access to the network resource is denied.

Abstract: A method including transmitting, based on verifying first biometric information, a first decryption request including an encrypted first cryptographic key in association with a first identifier to indicate that the encrypted first cryptographic key is to be decrypted by utilizing a first master key; decrypting, based on receiving a decrypted first cryptographic key, first factor authentication information to enable determination of a first factor; transmitting the first factor for authentication; transmitting, based on successful authentication of the first factor and on verifying second biometric information, a second decryption request including an encrypted second cryptographic key in association with a second identifier to indicate that the encrypted second cryptographic key is to be decrypted by utilizing a second master key; decrypting, based on receiving a decrypted second cryptographic key, second factor authentication information to enable determination of a second factor; and transmitting the second

Abstract: An administrator creates an access policy for a network resource using an access server. The access policy may specify device characteristics that are needed to access the network resource. These characteristics may relate to the type of user device, the computing environment of the user device, installed applications and versions, installed certificates, and physical characteristics. The access policy for the network resource may be assigned to a user or to groups of users. Later, when the user attempts to access the network resource, an application installed on the user device provides a file containing the characteristics of the user device to the access server. The access server determines whether the characteristics of the file satisfies the access policy associated with the user and network resource, and if so permits access to the network resource. Else, access to the network resource is denied.

Abstract: A method including transmitting, based on verifying first biometric information, a first decryption request including an encrypted first cryptographic key in association with a first identifier to indicate that the encrypted first cryptographic key is to be decrypted by utilizing a first master key; decrypting, based on receiving a decrypted first cryptographic key, first factor authentication information to enable determination of a first factor; transmitting the first factor for authentication; transmitting, based on successful authentication of the first factor and on verifying second biometric information, a second decryption request including an encrypted second cryptographic key in association with a second identifier to indicate that the encrypted second cryptographic key is to be decrypted by utilizing a second master key; decrypting, based on receiving a decrypted second cryptographic key, second factor authentication information to enable determination of a second factor; and transmitting the second

Abstract: A method including retrieving, by a device associated with a virtual private network (VPN) server from a read-only device, an initial operating system associated with the VPN server providing VPN services; transmitting, by the device based at least in part on executing the initial operating system, a first request to an infrastructure device for a VPN operating system to enable the VPN server to provide the VPN services; receiving, by the device from the infrastructure device based at least in part on transmitting the request, the VPN operating system; and executing, by the device, the VPN operating system to provide the VPN services is disclosed. Various other aspects are contemplated.

Abstract: A method including configuring, by an infrastructure device, a user device to encrypt authentication information associated with authenticating the user device with a service provider, the authentication information including first factor authentication information for determining a first factor and second factor authentication information for determining a second factor; configuring, by the infrastructure device, the user device to detect an attempt to access a service to be provided by the service provider; configuring, by the infrastructure device, the user device to determine, based on detecting the attempt, the first factor based on decrypting the first factor authentication information and the second factor based on decrypting the second factor authentication information; and configuring, by the infrastructure device, the user device to enable authentication of the user device with the service provider based on utilizing the first factor and the second factor. Various other aspects are contemplated.

Abstract: A method including transmitting, by a user device, a connection request to a VPN service provider for obtaining VPN services; receiving, by the user device, a response to the connection request, the response including a custom digest header containing identification information that identifies an existing association between the user device and the VPN service provider; determining, by the user device based at least in part on the identification information, that the response is received from the VPN service provider; authenticating, by the user device, the VPN service provider based at least in part on determining that the response is received from the VPN service provider; and transmitting, by the user device to a VPN server associated with the VPN service provider, a service request for obtaining the VPN services based at least in part on authenticating the VPN service provider is disclosed. Various other aspects are contemplated.

Abstract: A method including configuring, by an infrastructure device, a user device to receive harmful patterns indicating characteristics of harmful traits included in affected data known to include malicious content and clean patterns indicating characteristics of clean traits included in clean data known to be free of the malicious content; configuring the user device to receive a first portion of given data; configuring the user device to determine a pattern associated with traits included in the first portion of the given data; configuring the user device to determine whether the first portion of the given data includes the malicious content based on comparing the determined pattern with the harmful patterns and the clean patterns; and configuring the user device to selectively receive a second portion of the given data based determining whether the first portion of the given data includes the malicious content is disclosed. Various other aspects are contemplated.

Abstract: A method including calculating, by a user device, a hash of private data, the calculated hash to be utilized by an infrastructure device for comparison with a hash of breached data compromised due to a data breach; verifying, by the user device prior to transmitting the hash of the private data to the infrastructure device, that the user device is authorized to have access to a plaintext version of the private data; transmitting, by the user device based on verifying that the user device is authorized to have access to the plaintext version of the private data, the hash of the private data to the infrastructure device; and receiving, by the user device from the infrastructure device based on transmitting the hash of the private data, a notification indicating a result of a comparison of the hash of the private data with the hash of the breached data is disclosed.

Abstract: A method including determining, by a device, an assigned key pair including an assigned public key and an assigned private key; determining, by the device for a folder including encrypted content, a folder access key pair including a folder access public key and a folder access private key; encrypting, by the device, the folder access private key by utilizing the assigned public key; and accessing, by the device, the encrypted content based at least in part on decrypting the folder access private key. Various other aspects are contemplated.

Abstract: A method including receiving, by a user device, first validation data based at least in part on transmitting a first service request to receive a first network service; receiving, by the user device, the first network service by providing signed first validation data based at least in part on authenticating first biometric information; transmitting, by the user device while receiving the first service, a second service request to receive a second network service; receiving, by the user device, second validation data based at least in part on transmitting the second service request; and receiving, by the user device, the second network service by providing signed second validation data based at least in part on authenticating second biometric information is disclosed. Various other aspects are contemplated.

Abstract: A method including receiving, by a user device, validation data based at least in part on transmitting a first service request to receive a first network service; receiving, by the user device, the first network service based at least in part on signing the validation data using a signature key and on authenticating first biometric information; transmitting, by the user device while receiving the first service, a second service request to receive encrypted content; and decrypting, by the user device, the encrypted content based at least in part on utilizing a master key and on authenticating second biometric information is disclosed. Various other aspects are contemplated.

Abstract: A method including obtaining, by a virtual private network (VPN) server, an initial operating system from a memory associated with the VPN server; transmitting, by the VPN server while executing the initial operating system, a request to obtain a VPN operating system to enable the VPN server to provide VPN services; receiving, by the VPN server based at least in part on transmitting the request, the VPN operating system; and executing, by the VPN server, the VPN operating system to provide the VPN services based at least in part on storing the VPN operating system on a volatile memory associated with the VPN server is disclosed. Various other aspects are contemplated.

Abstract: A method including transmitting, by a device to a storage server, a request to receive encrypted content and one or more encrypted keys stored in association with the encrypted content; receiving, by the device from the storage server, the encrypted content and the one or more encrypted keys; receiving, by the device, a master string of alphanumeric characters; determining, by the device, a master key based at least in part on the master string; decrypting, by the device based at least in part on utilizing the master key, an encrypted assigned private key associated with the device to determine an assigned private key, the encrypted assigned private key being included in the one or more encrypted keys; and decrypting, by the device, the encrypted content based at least in part on utilizing the assigned private key is disclosed. Various other aspects are contemplated.

Abstract: An exemplary system and method are disclosed for detecting malware via an antimalware application employing adversarial machine learning such as generative adversarial machine learning and the training and/or configuring of such systems. The exemplary system and method are configured with two or more generative adversarial networks (GANs), including (i) a first generative adversarial network (GAN) that can be configured using a library of malware code or non-malware code and (ii) a second generative adversarial network (GAN) that operates in conjunction with the first generative adversarial network (GAN) in which the second generative adversarial network is configured using a library of non-malware code.

Abstract: A method including determining, by an infrastructure device, a breach database including breach information indicating breached data that is compromised due to a data breach; calculating, by the infrastructure device, a hash of the breached data that is compromised due to the data breach; receiving, by the infrastructure device from the user device, a hash of private data associated with the user device; comparing, by the infrastructure device, the hash of the private data with the hash of the breached data; and transmitting, by the infrastructure device when the hash of the private data matches the hash of the breached data, a notification to the user device indicating that the private data associated with the user device is compromised due to the data breach is disclosed. Various other aspects are contemplated.

Abstract: A method including determining, by the infrastructure device, a breach database including breach information indicating breached data that is compromised due to a data breach; calculating, by the infrastructure device, a hash of the breached data; calculating, by the user device, a hash of private data; transmitting, by the user device, the hash of the private data to the infrastructure device; comparing, by the infrastructure device, the hash of the private data with the hash of the breached data; and transmitting, by the infrastructure device to the user device based at least in part on a result of the comparison, a notification indicating whether the private data is breached due to the data breach is disclosed. Various other aspects are contemplated.