Abstract: A packet-filtering device may receive packet-filtering rules configured to cause the packet-filtering device to identify packets corresponding to network-threat indicators. The packet-filtering device may receive packets and, for each packet, may determine that the packet corresponds to criteria specified by a packet-filtering rule. The criteria may correspond to one or more of the network-threat indicators. The packet-filtering device may apply an operator specified by the packet-filtering rule. The operator may be configured to cause the packet-filtering device to either prevent the packet from continuing toward its destination or allow the packet to continue toward its destination.

Abstract: A system, method, and computer-readable medium are disclosed for performing a human factors risk operation. The human factors risk operation includes: monitoring an entity, the monitoring observing an electronically-observable data source; deriving an observable based upon the monitoring of the electronically-observable data source; identifying a security related activity, the security related activity being based upon the observable from the electronic data source; analyzing the security related activity, the analyzing the security related activity using a human factors framework; and, performing a human factors risk operation in response to the analyzing the security related activity.

Abstract: Systems, methods and non-transitory computer readable media for detecting identified information in privacy firewalls are provided. A repeating field in a data collection may be analyzed to determine whether the field is likely to include information that identifies particular individuals. An access request of a user may be received. A permission record associated with the user may be accessed. In response to the field being likely to include information that identifies particular individuals and a first value in the permission record, access to the field may be denied, in response to the field not being likely to include information that identifies particular individuals and the first value in the permission record, access to the field may be provided, and in response to a second value in the permission record, access to the field may be provided.

Abstract: A packet-filtering device may receive packet-filtering rules configured to cause the packet-filtering device to identify packets corresponding to network-threat indicators. The packet-filtering device may receive packets and, for each packet, may determine that the packet corresponds to criteria specified by a packet-filtering rule. The criteria may correspond to one or more of the network-threat indicators. The packet-filtering device may apply an operator specified by the packet-filtering rule. The operator may be configured to cause the packet-filtering device to either prevent the packet from continuing toward its destination or allow the packet to continue toward its destination.

Abstract: The present inventions, in one aspect, are directed to systems and circuitry for and/or methods of establishing communication having one or more pairing facilitator-intermediary devices (for example, a network connected server) to enable or facilitate pairing and/or registering at least two devices (e.g., (i) a portable biometric monitoring device and (ii) a smartphone, laptop and/or tablet) to, for example, recognize, interact and/or enable interoperability between such devices. The pairing facilitator-intermediary device may responsively communicates information to one or more of the devices (to be paired or registered) which, in response, enable or facilitate such devices to pair or register. The present inventions may be advantageous where one or both of the devices to be paired or registered is/are not configured (e.g., include a user interface or certain communication circuitry that is configured or includes functionality) to pair devices without use of a facilitator-intermediary device.

Abstract: Signature handling for a block for which consensus was formed in blockchain network which requires signatures from plurality of nodes to form consensus for block adoption. After completion of the setup, first node 110 sends a first message including a generated block to N nodes (S301). Each node evaluates the validity of the block on basis of the rule for consensus formation (S302). If the block is valid, the node sends a second message which includes signature si, by secret key share f(xi), with respect to a hash value h of the block for which consensus is to be formed (S303-1). After k signatures are collected at jth node, the node merges these signatures to generate a signature corresponding to a public key PK (S304). A block for which consensus is to be formed has signature SK·h appended thereto and is added to blockchain of each node (S306).

Abstract: A system, method, and computer-readable medium are disclosed for performing a security operation.

Abstract: Embodiments disclosed herein provide a method that includes receiving, at a client-side web browser, a minimal bootstrap payload from an application server; storing, by a client-side processor, the minimal bootstrap payload in a client-side local cache, where the locally cached minimal bootstrap payload is executed by the client-side processor before executing an application from the application server; the minimal bootstrap payload includes at least one public key and at least one Uniform Resource Location (URL) address of an application code payload.

Abstract: A system, method, and computer-readable medium are disclosed for performing a event risk severity score generation operation.

Abstract: Embodiments of the disclosure describe systems and methods for selecting a first group of users, which is selected to receive simulated phishing emails as part of a simulated phishing campaign, and adding users to a second group of users based upon those selected users interacting with a simulated phishing email that is part of a simulated phishing campaign; tracking the completion of remediation training related to phishing emails by users in the second group of users and receiving one or more indications that the users in the second group of users have completed remedial training; and automatically adding users, who are members of the second user group, to the first user group, to a third user group, or to a predetermined user group responsive to the one or more indications that the users in the second group of users have completed remedial training.

Abstract: A communication system is provided, the communication system including an authenticating unit that authenticates a plurality of communication terminals based on a single user ID, and keeps the plurality of communication terminals logged into an information providing service. A storing unit that stores therein provider registration information including a plurality of pieces of provider information that indicate providers of respective pieces of data being displayed on each communication terminal among the plurality of communication terminals. A receiving unit receives designation information that designates the provider registration information. A transmitting unit transmits each piece among the plurality of pieces of provider information to each communication terminal among the plurality of communication terminals so as to cause each communication terminal among the plurality of communication terminals to display data provided by a provider indicated by a plurality of pieces of provider information.

Abstract: A system, method, and computer-readable medium are disclosed for performing a security operation. The security operation includes: monitoring an entity, the monitoring observing at least one electronically-observable data source; deriving an observable based upon the monitoring of the electronically-observable data source; identifying a security related activity of the entity, the security related activity being based upon the observable derived from the electronic data source, the security related activity being of analytic utility; associating the security related activity with a phase of a cyber kill chain; and, performing a security operation on the security related activity via a security system, the security operation disrupting performance of the phase of the cyber kill chain.

Abstract: The present disclosure relates to systems, methods, and non-transitory computer-readable media that utilize pre-signed key rotation transaction requests for initiating transactions to rotate one or more cryptographic keys of a user account of a distributed digital ledger transaction network. For example, in one or more embodiments, the disclosed systems initiate a transaction to delegate a permission for rotating one or more cryptographic keys of a first user account to a second user account. Using the second user account, the disclosed systems generate and store a pre-signed key rotation transaction request. By retrieving the pre-signed key rotation transaction request from storage, the disclosed systems can initiate a key rotation transaction that exchanges the active cryptographic key of the first user account to a modified cryptographic key.

Abstract: Systems and methods for providing cryptographic services. A cryptography service obtains a request to provision a computing device to perform cryptographic operations. The cryptography service generates executable code for a protected execution environment. The computing device obtains and executes the executable code. The computing device fulfills requests for cryptographic operations in the protected execution environment.

Abstract: A method for processing account information in a block chain is provided. A computer device receives identity information and a transfer request, the transfer request requesting to transfer a resource in an account to a target account, the target account being generated by a certificate center. The computer device obtains owner information of the account from the certificate center according to the transfer request. The computer device compares the identity information and the owner information. The computer device transmits an authentication request to the block chain in response to determining that the identity information and the owner information are consistent, the authentication request requesting the block chain to transfer the resource in the account to the target account.

Abstract: Aspects described herein may relate to methods, systems, and apparatuses for allowing the access of user data across multiple devices. The access may be performed based on a portable hardware device that comprises an operating system and the user data. When the portable hardware device is inserted or otherwise connected to a computing device, the portable hardware device may, based on execution of the operating system, use or otherwise control one or more computing resources of the computing device. By this use and/or control of the one or more computing resources, the user data may be accessed. A computing platform may communicate with the portable hardware device and the computing device to manage the portable hardware device's access to the user data and monitor usage of computer resources by the portable hardware device.

Abstract: In some embodiments, an exemplary method may include receiving by a computing device of a user, first facial image data of the user for identity verification from an authorizing entity for authorizing user operations in computing systems managed by a plurality of entities. Second facial image data of the user is obtained using an imaging device of the computing device at a predefined location of a particular entity from the plurality of entities for authenticating the user. A unique authorization identifier is displayed of the computing device of the user. A location of the computing device and a timestamp when a computing terminal of the particular entity scans the unique authorization identifier on the computing device of the authenticated user and an authorization request is relayed to the authorizing entity. An approval is received based on verification of the unique authorization identifier generated for the particular entity, the location of the computing device, and the timestamp.

Abstract: A system, method, and computer-readable medium are disclosed for monitoring actions of an entity. In various embodiments the monitoring includes: monitoring a plurality of electronically-observable actions of the entity, the plurality of electronically-observable actions of the entity corresponding to a plurality of events enacted by the entity; associating the plurality of events enacted by the entity with a story; and, using the story to derive an inference regarding the entity.

Abstract: A screen control method and a terminal. The method is applied to a terminal that has a touchscreen and a screen fingerprint sensor. The method includes: when the touchscreen is in a lighted state, receiving, by the terminal, a first touch operation; obtaining, by the terminal, texture information and touch information of the first touch operation by using the touchscreen and the screen fingerprint sensor, where the texture information is skin texture information corresponding to the first touch operation, and the touch information includes at least one of a touch position and a touch area; and turning off, by the terminal, the touchscreen based on the texture information and the touch information.

Abstract: Various examples are disclosed for exchanging and acting on detected security events using permissioned blockchain. A unique identifier for a client device is obtained in response to a detected security event being identified. Security event data associated with the detected security event is sent to a plurality of nodes of a blockchain service, where the nodes are associated with a respective one of a plurality of computer security services and are configured to validate the security event data and endorse the security event data in response to predetermined criteria being satisfied. In response to the security event data being validated by the nodes, the security event data is published into the blockchain service as a block that is broadcasted to the nodes, where individual ones of the nodes are configured to store the security event data of the block in a local ledger.