Abstract: An Internet Service Provider (ISP), in consideration of being remunerated in some manner by a site, determines whether packets destined to that site conform to a profile provided to the ISP by that site. The profile, indicates, for example, what protocols are allowed by the server, and, for each such protocol, what destination port numbers or message types are allowed, a maximum transmission rate, the maximum number of allowed connections a client may have, and whether to enforce congestion-avoidance. This server profile enforcement (SPE) automatically thwarts denial of service attacks from attackers that send packets to the subscribing server from that ISP using connections or having packet characteristics that do not conform to the acceptable characteristics specified in the profile. SPE is generally performed by an SPE unit, which can be incorporated in the access gateways of an ISP that supports the service.

Abstract: Disclosed is a device and method for obtaining and utilizing data. A handheld device which is capable of optically scanning or receiving RFID signals from an object, storing the data in an internal memory, and then re-transmitting the data is disclosed. The re-transmitted data may trigger access to an internet web site or other database which provides a user with detailed information relating to the scanned object. The device is also usable as a re-configurable electronic key or may be built into electronic devices to allow reconfiguration by scanning a symbol.

Abstract: In a system (e.g., debit card) where a PIN is entered as verification, the PIN and biometric information, which is free of being stolen or faked, are combined to realize secure user verification. The leakage and the theft of a PIN is reliably prevented, thereby realizing a high security ability. To-be-verified biometric feature data is transmitted from first transceiving interface (205) of data processing device (200) to portable electronic device (300). Biometric feature data verifying section (306) of portable electronic device (300) compares the to-be-verified biometric feature data, which has been received by second transceiving interface (301), with valid biometric feature data.

Abstract: A network-attachable computer system (40) that comprises a network interface for connection to a network (41), a server module address, a secure identifier (ID), and a key k. The computer system (40) generates identity information which comprises the secure identifier ID and which is protected using said key k. This identity information is automatically sent via the network interface to a server module (42) which is reachable via the network (41) by using said server module address where it is used to determine whether the respective computer system (40) is reported lost or stolen.

Abstract: A method and system for protecting electronic files from unauthorized access. The drive on which the file is stored is provided with a hardware identification code, which is unique to the drive. An Operating System (OS) extension allows a user to provide a security code required to access a requested drive. OS device driver, working in conjunction with the extension of the OS checks the requested drive to determine if an access code is required, and the drive responds with the security code or a default code. The default code indicates that the drive is globally accessible to users on the system. When a security code is returned, the OS compares the security code to the access code provided and provides the user with access to the drive only when the access code matches the security code.