Abstract: A computer system for authorizing a user to process data received from one or more devices includes: an interface component for receiving the data; an application component for receiving requests from the user, the requests including one or more requests to perform data processing operations on at least a subset of the data; a data storage and data access component for storing and access the data; one or more evaluation components for processing the data; and an authorization component for granting or denying to the user access to process at least a subset of the data, a grant or denial being based on user specific data stored in a user directory for a registered user. The user specific data includes data on a geographical location associated with the user and data on a type of a device to which type the user is authorized to get access.

Abstract: Techniques for providing content management based on spatial and temporal information are disclosed herein. In an example, a service provides content management based on properties determined from a schedule of a user. The schedule of the user is processed to identify a geo-fenced area assigned for performing a task. Upon determining that the location of the client device as within the geo-fenced area, content identified by the task may be accessed through the client to perform the task.

Abstract: Techniques for providing a digital certificate management for blockchain technologies are described. One example method includes a transaction request including a digital certificate is received from a certificate authority at a node in a blockchain network, and the transaction request is a request to write the digital certificate into a blockchain associated with the blockchain network, and the digital certificate is issued to a node in the blockchain network. A consensus verification result is determined for the transaction request, and the consensus verification result is produced by nodes in the blockchain network. The consensus verification result is compared to a predetermined threshold value. In response to determining the consensus verification result is greater than or equal to the predetermined threshold value, the digital certificate is stored in the blockchain associated with the blockchain network.

Abstract: For a plurality of hosts, observe first time-varying characteristics including network throughput, central processing unit (CPU) usage, and/or memory usage; second time-varying characteristics including software configuration; and time-invariant characteristics including hardware configuration, at a plurality of timestamps. Construct a restricted HMM configured to predict actual host states, wherein the first time-varying characteristics include observed variables. The current observed variables depend on current values of the hidden variables and prior timestamp distribution of the observed variables. The former in turn depend on prior timestamp values of the hidden variables, the time-invariant characteristics of the hosts. and current timestamp values of the second time-varying characteristics.

Abstract: Disclosed is a computer program that is used for detecting a system abnormality and controlling a causative service in a computing device. In a computer program stored in a computer-readable storage medium, including encoded commands, which causes one or more processors to perform operations for detecting a system abnormality in the computing device when the computer program is executed by the one or more processors of a computer device, the operations may include: an operation of receiving monitoring information for each client from a plurality of clients of the computing device; an operation of comparing each monitoring information for each client with a system monitoring policy; an operation of determining whether the system abnormality occurs based on a comparison result with the system monitoring policy; and an operation of determining to control some clients among the plurality of clients based on the determination of whether the system abnormality occurs.

Abstract: A computing apparatus for providing a node within a distributed network function, including: a hardware platform; a network interface to communicatively couple to at least one other peer node of the distributed network function; a distributor function including logic to operate on the hardware platform, including a hashing module configured to receive an incoming network packet via the network interface and perform on the incoming network packet a first-level hash of a two-level hash, the first level hash being a lightweight hash with respect to a second-level hash, the first level hash to deterministically direct a packet to one of the nodes of the distributed network function as a directed packet; and a denial of service (DoS) mitigation engine to receive notification of a DoS attack, identify a DoS packet via the first-level hash, and prevent the DoS packet from reaching the second-level hash.

Abstract: System for authenticating a user's identity and facilitating execution of embedded software and access to specific hardware modules according to an authorization level, comprising: •a communication interface, enabling a user to interface the system; •an authentication module, configured to authenticate user's identity; •an authorization module, configured to determine authorization level and access privileges associated with user; •at least one Software Execution Environment (SEE); and •at least one hardware switch, controllable by said authorization module and configured to physically enable or disable data transfer over a data path between the user and SEE, whereupon successful authentication of the user will cause the authorization module to allocate hardware resources at the SEE for the user, and configure the hardware switch to enable data transfer between the user and the SEE, and enable the user to execute embedded code on the SEE according to the authorization level.

Abstract: A method and system are provided for updating an elliptic curve (EC) base point G, with the EC basepoint used in encryption and coding of video data. A candidate base point G is generated that includes additional data used for validation purposes and checked as a valid base point before transmission and use.

Abstract: An autonomous driving controller includes a plurality of parallel processors operating on common input data received from the plurality of autonomous driving sensors. Each of the plurality of parallel processors includes communication circuitry, a general processor, a security processor subsystem (SCS), and a safety subsystem (SMS). The communication circuitry supports communications between the plurality of parallel processors, including inter-processor communications between the general processors of the plurality of parallel processors, communications between the SCSs of the plurality of parallel processors using SCS cryptography, and communications between the SMSs of the plurality of parallel processors using SMS cryptography, the SMS cryptography differing from the SCS cryptography. The SCS and/or the SMS may each include dedicated hardware and/or memory to support the communications.

Abstract: A computing system can receive, over one or more networks, location data from the computing devices of user as the user operate throughout a region. For each user, the computing system can determine whether the user is operating a location-spoofing application on the computing device of the user based, at least in part, on the location data received from the computing device of the user.

Abstract: Systems and methods for anonymized behavior analysis are described. A requesting computer having access to personally identifiable information (PII) for a group of users may provide the PII to an intermediary computer having access to associated real identifiers. The intermediary computer may provide the associated real identifiers to a behavior analysis computer, which may calculate a behavior metric for each of the real identifiers, and calculate an aggregated behavior metric for the entire subset of real identifiers. The behavior analysis computer may send the aggregated behavior metric back to the requesting computer; thus, no individual behavior metrics are disclosed to the requesting computer. This process can be done without sharing the PII with the behavior analysis computer, or the real identifiers with the requesting computer, thereby protecting the privacy of the users.

Abstract: Techniques are disclosed relating to malware clustering based on function call graph similarity. In some embodiments, a computer system may access information corresponding to a plurality of malware samples and, based on the information, generate a function call graph for each of the malware samples. In some embodiments, generating the function call graph for a given malware sample includes identifying a plurality of function calls included in the information, assigning a label to each of the function calls, identifying relationships between the function calls, and generating the function call graph based on the relationships and the labels. Based on the function call graphs, the computer system may assign each of the plurality of malware samples into one of a plurality of clusters of related malware samples.

Abstract: Method and apparatus for detecting anomalous flights. Embodiments collect sensor data from a plurality of sensor devices onboard an aircraft during a flight. Feature definitions are determined, specifying a sensor device and an algorithm for deriving data values from sensor data collected from the device. Embodiments determine whether anomalous activity occurred during the flight using an anomaly detection model. An anomaly is detected including at least one of (i) a contextual anomaly where a data instance of a plurality of data instances is anomalous relative to a specific context, or (ii) a collective anomaly where two or more data instances are anomalous relative to a remainder of the plurality of data instances, even though each of the two or more data instances is not anomalous in and of itself. A report specifying a measure of the anomalous activity for the flight is generated.

Abstract: A system and method are described for connecting an IoT device to a wireless router and/or access point.

Abstract: A method for protecting content, comprising receiving, from a client device, a request for an encryption key for encrypting the content comprising a reference associated with the client device, identifying a set of supported security capabilities corresponding to the reference associated with the client device, identifying a set of required security capabilities corresponding to the content associated with the key request, determining if the set of supported security capabilities satisfy the set of required security capabilities, and in response to determining that the supported security capabilities satisfy the set of required security capabilities, transmitting the encryption key to the client device.

Abstract: An abnormality in a manufacturing system is detected without extensive modification to the existing manufacturing systems. The data analysis device includes: a receiver configured to receive a packet transmitted between a manufacture control device and a manufacturing device; an analyzer configured to obtain the type of data included in a payload of the received packet from an IP address and a port number included in a header of the packet; a selector configured to select, based on the type of the data obtained by the analyzer, a syntax or rule corresponding to the type of the data; and a determiner configured to determine that the manufacturing system has an abnormality if the data included in the payload does not follow the syntax or rule corresponding to the type of the data.

Abstract: Methods and systems for management of subscriber identities associated with user devices are described herein. The user device may enroll the user device to a server and lock a subscriber identity associated with the device by setting a password on the subscriber identity. If a credential entered by a user is verified, the subscriber identity associated with the device may be unlocked. Alternatively, the user device may retrieve one or more identities associated with the user, the user device and/or the subscriber identity. A server may register the one or more identities with a database. If the user device sends a request to connect to the network, the server may verify the one or more identities retrieved by the user device to determine whether to grant access from the user device to the network.

Abstract: Disclosed herein is a virtual assistant system having a biometric authentication device coupled to an electronic voice-based virtual assistant device. The biometric authentication device is configured to authenticate a user based on biometric data of the user to allow the user access to features of the electronic voice-based virtual assistant device.

Abstract: Methods, non-transitory computer readable media, access policy management apparatuses, and network traffic management systems that send a request received from a client to an application server along with an access token. A determination is made when a received response to the request comprises an unauthorized HyperText Transfer Protocol (HTTP) response status code. The access token is refreshed using a stored refresh token, when the determining indicates that the response is an unauthorized HTTP response status code. The request is resent to the application server along with the refreshed access token. With this technology, an intermediary access policy management apparatus can refresh access tokens automatically and without sending any unauthorized HTTP response status codes received from application servers to client devices, or requiring user re-authorization at the client devices thereby improving the user experience in single sign-on (SSO) federated identity environments.

Abstract: Systems and methods for token vault synchronization using a distributed ledger are disclosed. In one embodiment, in a distributed token ledger network comprising a plurality of nodes, each node associated with a token ledger and comprising at least one computer processor, a method for token vault synchronization using a distributed ledger may include: (1) a node receiving a lifecycle event for a payment token; (2) the node writing the lifecycle event to a token ledger for the node; (3) committing the lifecycle event to the distributed token ledger after the plurality of nodes in the distributed token ledger agree to committal; (4) a watcher at the node detecting the commitment of the lifecycle event to the distributed token ledger; and (5) the watcher communicating the lifecycle event to a non-node participant.