Abstract: A system is provided for secure verification of authentication data using quantum computing and a distributed server network. In particular, the system may store a reference set of authentication data associated with a user within a distributed server database in an encrypted form. Subsequently, when the system receives live set of authentication data associated with the user, the system may, using a quantum authenticator, compare the encrypted live set of authentication data with the encrypted reference set of authentication data for authorization purposes. The system may further comprise a quantum machine learning authorization engine which may track historical data and/or settings associated with the user to model and predict behavior patterns of the user. In this way, the system provides a secure and efficient way to perform authentication and/or authorization of the user.

Abstract: A server computer hosting an extended reality world receives a first transmission over a communication network from a computing device associated with a user, the first transmission including a request for the user to access the extended reality world. The server computer transmits a presentation of the extended reality world to the communication device over the communications network based at least in part on the request, and displays the presentation of the extended reality world on the computing device, where the presentation includes at least an avatar associated with the user. The server computer receives a command for the avatar to store a phrase selected by the user in a location associated with a virtual object within the extended reality world. The server computer displays, within the presentation of the extended reality world on the computing device, the avatar storing the phrase at the location in the extended reality world.

Abstract: An electronic device is disclosed that includes a camera, a display, and a processor.

Abstract: Systems and methods may generally be used to authenticate a user. An example method may include capturing an image of a portion of a face of a user, retrieving, based on identification information, a registered model of the face from a database, and comparing the portion of the face in the captured image to a facial feature of the registered model. In response to determining that the portion of the captured image matches the facial feature of the registered model, the method may include granting access to secure content.

Abstract: Systems, apparatuses, and methods to establish a mapping between message identifications for messages transmitted on a communication bus and electronic control units transmitting the messages is provided. In particular, retransmission of a low priority message onto the bus is forced such that the retransmitted low priority message overlaps with a higher priority message to determine whether the messages originated from the same ECU.

Abstract: A method for preparing usage data for a relay implemented in a computer network is disclosed. In one aspect, the network comprises at least one source device, one destination device, and at least one relay constituting a circuit to set up a communication between the source device and the destination device. The source device first of all retrieves the identifiers of the relays constituting the circuit and sends a proof of use (PoU) frame addressed to the destination device, each relay of the circuit adding to the PoU frame, at the time of passage, a signature made from a challenge and a key proper to the relay.

Abstract: A computerized method for implementing distributed application security mesh systems comprising: providing a service graph; and providing an underlying mesh graph with a pre-defined paths.

Abstract: At given user equipment in a communication system, a unified subscription identifier data structure is constructed. The unified subscription identifier data structure includes a plurality of fields that specify information for a selected one of two or more subscription identifier types and selectable parameters associated with the selected subscription identifier type, and wherein the information in the unified subscription identifier data structure is useable by the given user equipment to access one or more networks associated with the communication system based on an authentication scenario corresponding to the selected subscription identifier type. For example, during different authentication scenarios, the given user equipment utilizes the unified subscription identifier data structure to provide the appropriate subscription identifier (e.g., SUPI, SUCI or IMSI) and associated parameters for the given authentication scenario.

Abstract: The system obtains information to send to the first user device and converts the information into a sequence of images, where one or more images in the sequence of images include the information, and a remainder of images in the sequence include a visual unrelated to the information. The number of the one or more images and the number of the remainder of images indicate a display frequency. The number of the remainder of images is greater than the number of the one or more images. The display frequency causes an observer to form a perception of the one or more images. The system sends the sequence to the first user device and causes the first user device to present on the display screen the sequence at the display frequency, which causes a garbling of a recording of the display screen associated with the first user device.

Abstract: A portable terminal device sets a security level for each application in accordance with position, and stores the level in a memory. The security level determines whether each application is displayed or made executable on a display portion in locked state and unlocked state. A controller refers to the security level and determines the application displayed on the display portion in accordance with position information acquired by a position information acquisition unit (GPS reception unit), and makes executable the application selected by the user. Thus, the portable terminal device offers user-friendliness while ensuring security strength.

Abstract: A system and method for assessing the identity fraud risk of an entity's (a user's, computer process's, or device's) behavior within a computer network and then to take appropriate action. The system uses real-time machine learning for its assessment. It records the entity's log-in behavior (conditions at log-in) and behavior once logged in to create an entity profile that helps identify behavior patterns. The system compares new entity behavior with the entity profile to determine a risk score and a confidence level for the behavior. If the risk score and confidence level indicate a credible identity fraud risk at log-in, the system can require more factors of authentication before log-in succeeds. If the system detects risky behavior after log-in, it can take remedial action such as ending the entity's session, curtailing the entity's privileges, or notifying a human administrator.

Abstract: Embodiments are provided for tracking physical transfers of tokenized physical assets. A transferor request to transfer a digital token from a first address associated with the first computing device to a second address associated with a second computing device may be received by a first computing device, where the digital token corresponds to a unique identifier associated with a physical asset. The first computing device communicates the received transferor request including at least a first location parameter, determined by the first computing device based on signals received at a physical location thereof, to at least one node of a distributed ledger network. The first computing device receives a confirmation that the transfer of the digital token is approved based on a determination that a transferee request from the second computing device includes at least a second location parameter corresponding to the physical location of the first computing device.

Abstract: Disclosed are various examples for enrollment of gateways using a client device. In one example, a request is transmitted from a client device to a management service. The request comprises the gateway identifier. Gateway credentials are relayed through the client device from the management service to the gateway device. The gateway credentials are unexposed to users of the client device.

Abstract: A system, method, and computer-readable media for providing contextual data loss prevention (DLP) within a group-based communication system. At least a portion of a DLP policy may be suspended within a DLP engine based on a context for which a user input is to be displayed. Accordingly, the user input may be displayed without interference from the DLP engine.

Abstract: A computing device (200) for authenticating a user (110) is provided. The computing device is operative to display a first text (131) to the user, acquire a representation of the user subvocalizing a part of the first text, derive a user phrasing signature from the acquired representation, and authenticate the user in response to determining that the user phrasing signature and a reference phrasing signature fulfil a similarity condition. Optionally, the computing device may be further operative to determine if the user is authorized to read the first text. Further optionally, the computing device may be operative to reveal obfuscated parts of the first text in response to determining that the user is authorized to read the first text, or to discontinue displaying the first text, or to obfuscate at least part of the first text, in response to determining that the user is not authorized to read the first text.

Abstract: An illustrative user device of a user establishes a secured connection between the user device and a server of an organization. Via the secured connection, the user device receives schedule information of a virtual meeting associated with the user. The user device authenticates a proximity-based connection between the user device and a room conference system. In response to the authenticating of the proximity-based connection, the user device transmits the schedule information of the virtual meeting to the room conference system. The room conference system is configured to use the schedule information to connect to a conference server to launch the virtual meeting on the room conference system. Corresponding methods and systems are also disclosed.

Abstract: For validation of position, navigation, time (PNT) signals, a hash included in messages with PNT data is used to validate the source of the message without backhaul. Different tags from a hash chain are included in different messages. The receiver is pre-loaded with the root or later trusted hash tag of the chain as created. The hash of any received message may be hashed by the receiver. The result of the hashing will match the pre-loaded or trusted hash tag if the transmitter of the message is a valid source. The PNT data may be validated using a digital signature formed from the PNT data for one or more messages and the hash tag wherein a hash tag of the chain in a subsequently received message is used as the key. The digital signature may be formed from data across multiple messages.

Abstract: A security module (460) for a CAN node (402). The security module (460) comprises: a RXD input interface for receiving data from a CAN bus (404), and a TXD output interface for transmitting data to the CAN bus (404). The security module (460) is configured to: receive a CAN frame from the CAN bus via the RXD input interface; compare an identifier of the received CAN frame with at least one identifier associated with a local controller (410); and upon detection of a match between the identifier of the received CAN frame and the at least one identifier associated with the local controller (410), output an error signal to the CAN bus via the TXD output interface by setting a predetermined plurality of consecutive bits (682) in the CAN frame to a dominant value. The predetermined plurality of consecutive bits (682) identifies a security error to CAN nodes connected to the CAN bus (404) and is at least 10 consecutive bits.

Abstract: Disclosed is a description-entropy-based intelligent detection method for a big data mobile software similarity. The method comprises the following steps: acquiring a path of mobile software, and reading a file of the mobile software according to the path; performing preliminary reverse engineering decompilation on the file of the mobile software to obtain function characteristics of each piece of mobile software; counting distribution of description entropy of each piece of mobile software by means of description entropy in the function characteristics; further integrating description entropy of each piece of mobile software, after integration, comparing description entropy distribution conditions among the mobile software, and carrying out similarity score calculation to obtain similarity scores among the mobile software; and outputting the similarity scores of all mobile software to obtain a mobile software similarity result.

Abstract: Methods, systems, and apparatus, including computer programs encoded on computer storage media, for detecting suspicious accounts. One of the methods includes identifying one or more potential clusters of malicious accounts; for each cluster, processing a collection of content associated with each account of the cluster, the processing comprising applying a plurality of models in series to determine whether the collection of content indicates a common pattern; and based on the respective determinations, classifying the accounts of each cluster as ordinary or suspicious.