Abstract: An electronic device, such as, a computer, may be adapted for self-monitoring for compliance to an operating policy. The operating policy may specify a pay-per-use or subscription business model and measurements associated with compliant usage. A secure execution environment may measure usage in accordance with the business model as well as monitor and enforce compliance to the operating policy. To increase the difficulty of attacking or otherwise disabling the secure execution environment, elements of the secure execution environment may be distributed. The distribution points may include other functional elements of the computer, such as interface circuits, or may even be remotely located over a network. An implementation method for disaggregating the secure execution environment is also disclosed.

Abstract: The disclosure is directed to systems, apparatus, and methods for online purchasing. In one example, a system includes a web server that presents purchase options and receives user input. The system may also include an application server that attempts to authenticate users to existing accounts using an account identifier, such as a user ID or email address. If a user does not provide an identifier corresponding to an existing account, the application server may create a new account. If the user provides an identifier corresponding to an existing account, but does not provide a valid password, the application server may create a provisional account. The application server may also associate purchases with the user's account and provide access to the purchased product. Purchases associated with a provisional account may be resolved with an existing or newly-created permanent account when additional user information is received, such when the product is registered.

Abstract: An electronic device, such as, a computer, may be adapted for self-monitoring for compliance to an operating policy. The operating policy may specify a pay-per-use or subscription business model and measurements associated with compliant usage. A secure execution environment may measure usage in accordance with the business model as well as monitor and enforce compliance to the operating policy. To increase the difficulty of attacking or otherwise disabling the secure execution environment, elements of the secure execution environment may be distributed. The distribution points may include other functional elements of the computer, such as interface circuits, or may even be remotely located over a network. An implementation method for disaggregating the secure execution environment is also disclosed.

Abstract: A method of calculating the quality of a data record having a plurality of data fields involves indentifying individual fields in the data record that are incorrect and scoring those fields accordingly. Further fields are identified where any one or more of those fields may be incorrect, but it is not immediately possible to determine which one or ones. These further fields are also scored accordingly. A score for the data records as a whole is then calculated based on the scores assigned to individual fields. Different fields may be weighted according to their importance to the data record as a whole.

Abstract: According to one aspect, the invention provides a system for validating an identity of a user to enable or prevent an occurrence of an event. In one embodiment, the system includes a first device including a wireless transmitter which is configured to transmit validation information, a second device including a wireless receiver, where the second device is configured to receive the validation information and further transmit the validation information; and a secure system in communication with the second device. According to one embodiment, the secure system includes a database. In a further embodiment, the secure system is configured to receive the validation information transmitted from the second device, and to transmit additional information to the second device following a receipt of the validation information to assist the second device in either enabling or preventing the occurrence of the event.

Abstract: An entrustee information transmitting method includes an entrustment managing storage storing entrustment relationship information indicating correspondence between entrusters who are voters performing entrustment and entrustees who are voters entrusted by the entrusters in an entrustment managing storage unit; an attendance managing storage storing attendance information of respective voters in an attendance managing storage unit in units of bills; an indirect-entrustment voter extracting operation of extracting one or more indirect-entrustment voter who indirectly entrust an attendee by using the entrustment relationship information and the attendance information; an entrustee determining operation of determining attendees who are indirectly entrusted by the indirect-entrustment voters to be recommended entrustees; and an entrustee information transmitting operation of transmitting information of the recommended entrustees.

Abstract: The present invention provides attorney terminals which operate using an outline for storing, associating and managing case evidence, case law and work product for a given lawsuit at issue. Accessed through attorney terminals, the outline is structured based on a hierarchical categorization of the lawsuit into the law and fact at issue. Associated with each categorization entry in the hierarchical outline are groupings of case law, case evidence, relevance and draft discovery information for rapid access by the attorney. Each categorization entry in the tailored outline provides instant access to case law via headnotes, treatise selections, seminal cases, and preset searches. The disclosed invention also automatically: 1) tracks the use of Exhibits in a proceeding; 2) generates draft portions of a pretrial order including jury instructions; and 3) generates time-lines for analysis and use during a proceeding. Draft interrogatories, document requests and deposition or trial questions are also provided.

Abstract: A method is disclosed that includes receiving a request for a transaction from a customer at a seller server system via an electronic-commerce website and identifying a customer account stored at the seller server system based on an identity of the customer. A plurality of financial instruments is associated with the customer account. The plurality of financial instruments has a customer-specific sequence including at least a first financial instrument pre-selected by the customer and a second financial instrument. The method includes automatically attempting to collect a particular payment associated with the transaction from a first financial service provider corresponding to the first financial instrument and automatically attempting to collect the particular payment from a second financial service provider corresponding to the second financial instrument in response to data received at the seller server system indicating a denial of the payment.

Abstract: Virtual account based digital cash protocols use a combination of blind digital signatures and pseudonym authentication with at least two pairs of public and private keys. A user is provided with one master pair of private and public keys and as many pseudonym pairs of private and public keys as desired. The resulting virtual account based hybrid protocols combine the advantages of blind digital signature and pseudonym authentication. Blind digital signatures based on the master pair of keys are used to withdraw digital cash from the user's bank account under the user's real identity. A pseudonym pair of keys is used for converting digital cash into virtual account based digital cash by a digital cash issuer. All pseudonyms can be used for spending the virtual account based digital cash.

Abstract: A system is provided with which a user of an information processing apparatus is requested to pay only the license charges of the necessary functions of the pre-installed software and an information processing apparatus vendor or the like is also not requested to pay unwanted license fees to the licensors. An information processing apparatus, which has pre-installed at least one software providing a plurality of functions to which each license fee is charged respectively and enables selection of use or no use of the relevant functions, comprises a software storage unit for storing the pre-installed software, a function selection processing unit for executing only the function selected from the stored software, and a network communication unit for transmitting, via the network, the selected function information including the information indicating correspondence between the software name and selected function.

Abstract: A subset of unique codes are generated from a set of codes. The subset of codes are stored in a database on a secure server and each of the codes is marked on a corresponding instantiation of the product. The marked instantiations are distributed. During their distribution, the marked instantiations are verified for authenticity and for routing. This verification is performed by reading or scanning the codes on the instantiations, and transmitting that information to the secure server for comparison against the codes and other information located in the database contained therein.

Abstract: A method for capturing data packets sent on a network for evaluating response time performance, the network including a financial institution and a partner bank. The method includes associating a captured data packet sent to the partner bank with a captured data packet received from the partner bank, by comparing at least one coded field of a data portion of the captured data packet sent to the partner bank with at least one coded field of a captured data portion of the data packet received from the partner bank. The method also includes measuring a response time of the associated data packet received from the partner bank, relative to a transmission time of the captured data packet sent to the partner bank. The method further includes transmitting an alert message upon determining that the response time is not within an adjustable predetermined threshold, wherein the alert message includes data from a data portion of the associated data packets.

Abstract: A verification method for encrypter operation and an electronic voting verification system using the same, which can verify the operation of the encrypter without having to execute corresponding decryption. In the verification method, the encrypter creates a plurality of ciphertexts corresponding to the plain text and presenting the ciphertexts to a user. The user selects one of the ciphertexts, the encrypter dispenses a certificate where information used by the encrypter during encryption is recorded, in response to the ciphertexts which are not selected by the user; and the user creates a ciphertext in person and verifies whether or not the user-created ciphertext is identical with the user-selected ciphertext. Then, the user can verify the encryption results inside and outside a polling booth.

Abstract: Digital cash token protocols use a combination of blind digital signatures and pseudonym authentication with at least two pairs of public and private keys. A user is provided with one master pair of private and public keys and as many pseudonym pairs of private and public keys as desired. The resulting digital cash token based hybrid protocols combine the advantages of blind digital signature and pseudonym authentication. Blind digital signatures based on the master pair of keys are used to withdraw digital cash from the user's bank account under the user's real identity. A pseudonym pair of keys is used for converting digital cash into digital cash tokens by a digital cash issuer. All pseudonyms can be used for spending the digital cash tokens. These protocols ensure anonymity when withdrawing digital cash from the user's account under the user's real identity in addition to providing pseudonym authentication when spending digital cash tokens under a pseudonym.

Abstract: Some embodiments of a method and an apparatus to provide interoperability between different digital content protection schemes have been presented. In one embodiment, a first copy of digital content encrypted using a first protection scheme is received from a user. In response to a request from the user, it is verified that the user is a rightful owner of the first copy without decrypting the first copy. A second copy of the digital content encrypted using a second protection scheme is sent to the user if the user is a rightful owner of the first copy.

Abstract: Interruption and degradation of service within a virtual universe leads to an unsatisfactory experience for users of the virtual universe. Dissatisfaction with service of a virtual universe may lead users to see alternate universes providing higher levels of service. Functionality can be implemented to identify alternate virtual universes that meet a user's service requirements and dynamically move the user's avatar from one virtual universe to another.

Abstract: A method is provided to authorize an online transaction between a purchaser and a merchant. The method includes providing, via an identity provider, verification of an identity of the purchaser. The method also includes providing, via a payment provider, verification of an ability of the purchaser to pay for the transaction, where the identity provider and the payment provider are different network entities. A computer system is also provided that can conduct an online transaction between a purchaser and a merchant providing one or more goods and/or services. The computer system includes a first node configured to provide verification of an identity of the purchaser, and a second node configured to provide verification of an ability of the purchaser to pay for the transaction, where the first node and the second node are associated with different network entities.

Abstract: A method and system to conduct financial transactions over a communication network is provided. Data associated with a mobile communication device user is received and stored, and a user mobile airtime account is allocated to the user. A purchase request is received from the user via a mobile communication device, the purchase request being for a purchase from a merchant for a purchase amount. The communication network provides the user access to the network to make the purchase request without debiting a financial account of the user or the user mobile airtime account for the access to the communication network. A payment service provider now automatically debits the financial account of the user with the purchase amount, automatically allocates a service fee which is associated with the purchase amount to the mobile service provider and credits an account of the mobile service provider with the service fee.

Abstract: According to the present invention, there is provided an electronic document processing system and method including an electronic document generation mechanism, an encrypted digital certificate generator, a tool for coordinating the processing of electronic documents, a packaging mechanism for finalizing and authenticating electronic documents, a tracking log for recording relevant electronic document information, and a transferring protocol for transferring the ownership of electronic documents. The present invention also provides an electronic authentication system including an electronic document authentication watermark seal or signature line for confirming a document's signing within the view.

Abstract: A system and method for validating an identity of a user to enable or prevent an occurrence of an event is disclosed. In one embodiment, the system includes a first device including a wireless transmitter which is configured to transmit validation information, a second device including a wireless receiver configured to receive the validation information and to further transmit the validation information, and a secure system in communication with the second device. The secure system includes a database configured to receive the validation information transmitted from the second device, and to transmit additional information to the second device following a receipt of the validation information to assist the second device in either enabling or preventing the occurrence of the event.