Abstract: A system and method for obtaining an authorization key to use a product utilizes a secured product identification code, which includes a serial number and at least one code that is generated based on a cryptographic algorithm.

Abstract: The present invention concerns a method of generation of a secret key, shared between a first terminal and a second terminal. The key is generated from the impulse response of the transmission channel separating the two terminals. A first message representative of the impulse response estimated by the first terminal is transmitted to the second terminal. This message is encoded using a channel encoding and punctured at a rate which prevents any decoding if additional information is missing. The second terminal combines this first message with at least a part of a second message representative of the impulse response estimated by the second terminal in order to attempt to decode the first message. If the decoding is successful the secret key is generated by the second terminal from the first message thus decoded.

Abstract: A graphical user interface can be provided for creating a digital certificate profile for a digital certificate. In one embodiment, a security metric is determined using a first subset certificate profile attributes selected by a user, and a usability metric is determined using a second subset of certificate profile attributes. Graphical representations of the security metric and a graphical representation of the usability metric can then be provided the graphical user interface. In one embodiment, the first subset of certificate profile attributes is the same as the second subset.

Abstract: In an environment such as a cloud computing environment where various guests can be provisioned on a host machine or other hardware device, it can be desirable to prevent those users from rebooting or otherwise restarting the machine or other resources using unauthorized information or images that can be obtained from across the network. A cloud manager can cause one or more network switches or other routing or communication processing components to deny communication access between user-accessible ports on a machine or device and the provisioning systems, or other specific network resources, such that the user cannot cause the host machine to pull information from those resources upon a restart or reboot of the machine. Further, various actions can be taken upon a reboot or attempted reboot, such as to isolate the host machine or even power off the specific machine.

Abstract: User interface generation in view of constraints of a certificate profile is described.

Abstract: A system and method whereby the identity of a person, entity, device or the like attempting to gain access to a secured resource may be securely authenticated includes a means for receiving from a service client a request for access to a secured resource; means for generating and communicating to the purported authorized user a challenge string adapted to provide a basis for authenticating the identity of the requester; a means for receiving from the service client a response string corresponding to the challenge string; and a means for evaluating the response string to authenticate the identity of the requester. The secured resource has a common identifier by which it may be generally identified outside of the authentication system, but the request for access lacks sufficient information content for the service client to be able to determine the common identifier.

Abstract: An information processing apparatus which presents a viewing schedule of a video content to a user is disclosed. The apparatus includes: a first acquiring means for acquiring a broadcast schedule of a broadcast content to be broadcast; a second acquiring means for acquiring information about a recorded content that has been recorded and an on-demand content that has been downloaded; a generating means for arranging the broadcast content, the recorded content, and the on-demand content on a same time axis as these contents are mixed, and generating the viewing schedule; and a display control means for displaying the generated viewing schedule.

Abstract: A mobile terminal device includes a recording setting unit configured to set a programmed recording based on an input of programmed-recording information that is used for performing programmed recording of a broadcast program, a reception-state checking unit configured to start a tuner at a predetermined time before a recording start time set by the recording setting unit and continuously checking a reception state of broadcast radio waves until the recording start time, a notifying unit configured to notify, if the reception-state checking unit determines that the reception state of the broadcast radio waves is not a desired reception state, a notification indicating so, and a recording starting unit configured to start recording processing of the broadcast program if the reception-state checking unit determines that the reception state of the broadcast radio waves is the desired reception state.

Abstract: A method and apparatus to simultaneously play back first media data and second media data according to a selected method while the first media data is being played back in a trick play mode, wherein the second media data is independent from the first media data.

Abstract: The invention provides a system and a method for securely providing a secret data from a sender to one or more receivers. The receiver uses a sequence of functions originating from a hierarchy of functions to migrate the secret data from an input transform space to an output transform space using a mathematical transformation under control of one or more seeds. The seeds are provided to the receiver by the sender. The sender conditionally allows the receiver to obtain the secret data by controlling the seeds.

Abstract: Systems and methods for weak authentication data reinforcement are described. In some embodiments, authentication data is received in a request to authenticate a user. In response to detecting weak authentication data, the systems and methods determine whether the user was previously authenticated as a human user. An example embodiment may include initiating an authentication process based on determining that the user was previously authenticated as a human user.

Abstract: A method and apparatus for classifying behavior of an application based on its data access pattern is described. In one embodiment, the method includes monitoring file access events associated with an application, and determining whether at least one of the file access events indicates the application's attempt to manipulate data of a file. If at least one file access event indicates the application's attempt to manipulate the data within the file, then at least one action is caused to be performed.

Abstract: A method and apparatus for managing passwords for accessing data in a storage is provided. The method comprises generating and storing a password, generating and providing to the storage a request to access data in response to receiving a first request to access data in the storage, retrieving and providing the password to the storage in response to the request for a password. The apparatus comprises an initialization module and a storage access module. The initialization module is configured to generate and store a password. The storage access module is configured to generate and provide a request to access data in response to receiving a first request to access data in the storage, receive a request for a password, retrieve the password in response to the request for a password, and provide the password to the storage to obtain access to the data in the storage.

Abstract: A content can be recorded for certain in a video recording system including a video recording apparatus and a video recording and transmitting apparatus. The video recording apparatus includes: a recording control unit that starts recording the content when a period of time indicated by scheduled recording information starts; and a message transmitting unit that transmits recording-state information to the video recording and transmitting apparatus at regular intervals. The video recording and transmitting apparatus includes: a recording-state monitoring unit that determines whether or not the continued reception of a signal has been suspended during the period of time; and a recording control unit that starts recording the content when the recording-state monitoring unit determines that the continued reception of the signal has been suspended.

Abstract: A method and system for preventing an unacceptable data packet directed at a computing device on a first network and sent from a client device. The method includes a step of providing a network security system remotely from the first network and the client device, the network security system having a public address and including a load balancer and at least one network security subsystem having a private address, the network security subsystem further including an intrusion detection module, the load balancer of the network security subsystem receiving the data packet destined for the computing device. The load balancer translates the destination address of the packet from the public address of the network security system to the private address of the network security subsystem and forwards the packet to the intrusion detection module of the network security subsystem. The intrusion detection module then determines whether the packet is an intrusion attempt.

Abstract: Video data files are provided to a user for playback. Once playback begins, the methods and apparatus of the present invention enable a user to interrupt the video playback function and quickly resume playback prior to reloading the selected video file. The techniques of the present invention can store video data in a cache memory and, upon interruption, capture a frame of video data at approximately the time of the interruption. The captured frame and cache data can be used to provide the user with a unique menu option for resumption of the video playback at the moment of interruption.

Abstract: Video data pieces are classified into groups according to prescribed rules. A cut number assigned to each of the groups is decided on the basis of the length or lengths of a video data piece or pieces in each of the groups and the number of the video data piece or pieces in each of the groups. A cut or cuts are extracted from the video data piece or pieces in each of the groups. Regarding each of the groups, the number of the extracted cut or cuts is equal to the decided cut number. Digest data is generated from the extracted cuts for all the groups.

Abstract: A data reading device includes a reading means for reading video data recorded in a video processing device which records and plays back video data and a control means for controlling the reading means so as to read video data from the video processing device by transmitting a reading request of index data to a video writing device which writes the video data to the video processing device when video data whose index data indicating an address of the video data is not recorded in the video processing device from the video processing device, and by designating the address indicated by the index data transmitted from the video writing device.

Abstract: Secure and stateless data transfer between a source agent at a first computer system and a destination agent at a second computer system is provided. A first list of labels of content structures is generated at the first computer system. During a first data transfer session, the first list, authentication information, at least one object included in the content structures, and file identifiers for one or more files included in the content structures are transferred from the first computer system to the second computer system. A second list is generated at the second computer system and received at the first computer system. The second list lists at least one requested file identified by the transmitted file identifier(s). During a second data transfer session, authentication information, the first list, the at least one object, and the requested file(s) are transferred from the first computer system to the second computer system.

Abstract: Secure networking processes, such as packet encapsulation and decapsulation, can be executed upstream of a user or guest operating system provisioned on a host machine, where the user has substantially full access to that machine. The processing can be performed on a device such as a network interface card (NIC), which can have a separate network port for communicating with mapping systems or other devices across a cloud or secure network. A virtual image of the NIC can be provided to the user such that the user can still utilize at least some of the NIC functionality. In some embodiments, the NIC can work with a standalone processor or control host in order to offload much of the processing to the control host. The NIC can further handle headers and payload separately where possible, in order to improve the efficiency of processing the various packets.