Abstract: Embodiments of the present invention provide a fast, software-implemented data scrambling system for data communications. For pseudo-random codes that are periodic within a predetermined number of bits, a memory array may be populated with segments of the code, one entry in the array starting at a unique bit position within the code. During data scrambling, a seed code may be used to identify a first entry from the array that should be used for scrambling. Thereafter, subsequent segments may be retrieved by traversing the array in a regular fashion. By calculating the code before use and by populating the array prior to processing of any source data, the system is very fast.

Abstract: A method and apparatus for using a service provider network that supports point-to-point channels is disclosed. One or more encryption parameters are associated with a channel from among a set of one or more predefined point-to-point channels provided by the service provider to connect customer points for a customer different than the service provider. Payloads for a particular flow of one or more data packets directed through the channel are encrypted at a first customer point, using the set of encryption parameters associated with the particular channel, to generate a set of one or more encrypted payloads. The encrypted payloads are inserted in the particular flow sent through the channel of the service provider network. The encrypted payloads are decrypted at a second customer point connected to the first customer point by the channel.

Abstract: On embedding electronic watermark data in point group data obtained from a three-dimensional measurement, an x-y plane region defining the point group data is divided into a plurality of small regions so that a point group is produced with respect to each of small regions. The coordinate values of each point group are offset with making a barycenter of the point group be an origin point. A discrete Fourier transform is carried out in order to produce a Fourier coefficient sequence, which is modified into a watermarked Fourier coefficient sequence. The inverse discrete Fourier transform is carried out on the watermarked coefficient sequence in order to produce a watermarked complex number sequence. An optimum watermark embedding strength is calculated. On the basis of the embedding strength, the Fourier coefficient sequence is modified to produce a watermarked Fourier coefficient sequence which is is inversely offset into the watermarked point group data.

Abstract: A contents supply apparatus supplies sub-content that relates to main content. A DVD-ROM stores a bind key unique to the DVD-ROM and main content that is a digital work. A main player reads the bind key from the DVD-ROM, acquires sub-content that relates to the main content stored on the DVD-ROM, generates encrypted sub-content by encrypting the acquired sub-content based on the read bind key, and writes the generated encrypted content to an SD memory card. A sub-player reads the bind key from the DVD-ROM, reads the encrypted sub-content from the SD memory card, generates sub-content by decrypting the read encrypted sub-content based on the bind key, and plays back the generated sub-content.

Abstract: An authoring system authors content data for distribution through an information terminal by encryption for copyright protection. The system includes an authoring device and an authoring key generator. The generator generates a content identifier uniquely allocated to each of the content data, an authoring key enabling key uniquely allocated to the authoring device, and an authoring key obtained by encrypting a content key for encrypting the content data and a second content key using the CID and the CEK. The second content key is formed by encrypting the content key using a root key. The authoring device has a unit which decrypts the content key and the second content key using the CID and the CEK, and a unit which encrypts the content data using the decrypted content key to generate authored encrypted content data.

Abstract: A first application layer at a first message processor identifies a first portion of context information. A second message processor receives the first portion of context information. A second application layer at the second message processor identifiers a second portion of context information. The second message processor sends the second portion of context information along with a first digital signature created from both the first and second portions of context information. The first message processor receives the second portion of context information and first digital signature. The first message processor sends a second digital signature created from the first and second portions of context information to the second message processor. If both the first and second digital signatures are authenticated, a secure context can be established between the first and second application layers.

Abstract: A method supports secure input/output (I/O) communications between an I/O device and a data processing system via a keyboard, video, and mouse (KVM) switch. An example embodiment includes the operations of establishing a first secure communication channel between the KVM switch and the I/O device and establishing a second secure communication channel between the KVM switch and the data processing system. In addition, I/O data may be received at the KVM switch from the I/O device via the first secure communication channel. In response to receipt of the I/O data from the I/O device, the I/O data may be transmitted from the KVM switch to the data processing system via the second secure communication channel. Embodiments may also include support for non-secure channels between the KVM switch and non-secured I/O devices, non-secured data processing systems, or both.

Abstract: A recording apparatus is provided for an SD memory card that has a plurality of EPUBxxx.KEY files recorded thereon, each file having a plurality of Key&Rule Entry areas, and an SD_EPUB.MMG file being read from the recording medium prior to the writing of data. A bitmap in SD_EPUB.MMG shows for each EPUBxxx.KEY file whether the EPUBxxx.KEY file has at least one Key&Rule Entry area not in use, or whether all the Key&Rule Entry areas are in use. Based on the bitmap in the read SD_EPUB.MMG file, the recording apparatus opens EPUB#u.KEY having an unused Key&Rule Entry area and writes data into the unused Key&Rule Entry area in the file. If all the Key&Rule Entry areas in EPUB#u.KEY become in use as a result of the writing of the data, the recording apparatus updates the bitmap in SD_EPUB.MMG.

Abstract: Key banking methods and systems for quantum key distribution (QKD) are disclosed. A method of the invention includes establishing a primary key bank that stores perfectly secure keys associated with exchanging true quantum pulses between two QKD stations Bob and Alice. The method also Includes establishing a secondary key bank that stores less-than-perfectly secure keys associated with exchanging relatively strong quantum pulses between Bob and Alice. The primary keys are used for select applications such as authentication that are deemed to require the highest security, while the secondary keys are used for applications, such as encrypted bit sifting, that are deemed to require less-than-perfect security. A benefit of the two-key-bank architecture is that exchanging primary and secondary keys actually allows for an increase in the distance over which the primary keys can be securely distributed.