Abstract: A method to secure boot an electronic device is disclosed according to some embodiments. The method includes receiving a request to initiate a boot sequence using memory content stored in a non-volatile memory circuit. A secure boot circuit receives verification data from the non-volatile memory circuit indicating the memory content. The verification data includes an error correction code for the memory content without including all of the memory content. A cryptographic hashing operation is performed to the error correction code in the secure boot circuit to obtain a digest of the error correction code. The digest is compared with a pre-stored reference digest to generate a verification signal. The verification signal is provided to the electronic device indicating whether the boot sequence passes the verification.

Abstract: Embodiments of the present invention provide a system for secure communication of information that may be used to authorize communications or transfer of resources by use of an intelligent resource instrument with embedded tactile or audio feedback mechanism. The provided systems, methods, and computer program products are designed to select and generate stimulus information, simultaneously record EEG readings for a user, and use this information to verify user identity. Upon verification of user identity, the intelligent resource instrument may be activated for use in a resource transfer.

Abstract: A method for blockchain-based time stamping for digital signature is disclosed. The method includes two participants: a signer who signs a message, a verifier who verifies the message. In the method, the signer obtains hash values of a certain number of latest confirmed blocks in blockchain, binds these hash values and the message together to be a new message. The signer then generates a signature of the new message and inserts identification data of this signature and the new message into a transaction of blockchain. This method ensures that the generation time of the signature is prior to the generation time of the block which contains the signature and, at the same time, is after the generation time of the blocks whose hash values are included in the signature, which produces an accurate time interval for the digital signature.

Abstract: In one aspect, a computerized method for digitally tracking ownership of goods with a blockchain includes the steps of providing a blockchain. The blockchain includes a set of blockchain ownership records provided in a chronological mathematical proof format such that specified data exists in a specific chronological order. The method includes the step of saving a smart contract that references a real-world object in the blockchain. The smart contract includes a tool for tracking ownership of the real-world object. With a computer application, the method enables an owner of the real-world object to modify an owner data portion of the smart contract to a new owner entity to change the ownership of the real-world object in the blockchain. The method includes the step of updating the owner data portion of the smart contract in the blockchain to include the new owner entity.

Abstract: Embodiments determine an eligibility of a request for an operation event from a client using a distributed ledger that comprises a plurality of nodes. Embodiments send the request from the client to a primary node of the distributed ledger, the request comprising a first token. Embodiments validate the node at the primary node with a token provider, broadcast the request to all secondary nodes of the distributed ledger and perform a service by the primary node and the secondary nodes in response to the request. Embodiments send a reply to the client from each of the primary node and the secondary nodes when the service is performed successfully by the respective node, the reply comprising a second token. Embodiments then determine an eligibility of the client for the request based on a count of a number of second tokens received by the client.

Abstract: To efficiently determine cross tabulation while keeping confidentiality. A flag conversion unit (11) converts a format of a share of a flag that represents a boundary between groups. A boundary number setting unit (12) generates a share of a vector in which the next element number is set when the flag representing a group boundary is true and the number of records is set when the flag is false. A sorting unit (13) generates a share of a sorted vector which has been sorted by a permutation that moves vectors such that the last elements of each group are sequentially arranged from beginning A count calculation unit (14) sets a difference between the value of one element and the value of the preceding element in the sorted vector and generates a share of a vector representing the number of records in each group.

Abstract: Provided is a method for secure configuration of a device, having the following steps:—ascertaining a block chain data structure based on a cryptocurrency, wherein the block chain data structure has at least one block containing transaction data;—ascertaining at least one transaction belonging to the transaction data, the transaction having a piece of device configuration information;—examining the block chain data structure; and—configuring the device on the basis of the piece of device configuration information on successful examination. A complex independent examination by the device or an entity associated with the device is dispensed in an advantageous manner. The complex step of examination of the actual transaction is transferred to the block chain network and the client merely needs to validate a block chain data structure on the basis of a stability of the block chain.

Abstract: The invention relates to a method and system that aggregates client data and cyber indicators to authenticate a client. The system comprises: a computer server comprising at least one computer processor and coupled to the memory, programmed to: receive, via an electronic input, an authorization request from a requester for access to an account; identify a client identifier associated with the authorization request; using the client identifier, retrieve, from the memory, a client profile, wherein the client profile is based on an aggregation of client data, client device data, claims data and cyber data; generate a risk score based on the aggregated combination of the client data, client device data, claims data and cyber data to determine whether the requester is authenticated to access the account; and automatically apply an authentication determination to the authorization request.

Abstract: A system for providing an exchange in a trusted execution environment can include an exchange program that is configured to provide a digital exchange for digital assets and a computer system with a secure enclave that is configured to provide the trusted execution environment within which processing of programs is secure from observation and manipulation by other operations outside of the secure enclave. Execution of the exchange program in the secure enclave can include loading the exchange program into secure memory within the secure enclave, performing an attestation operation on the exchange program loaded into the secure memory within the secure enclave, the attestation operation configured to validate the exchange program, and outputting results of the attestation operation to identify whether the exchange program loaded in the secure enclave is valid.

Abstract: The invention relates to distributed ledger technologies such as consensus-based blockchains. Computer-implemented methods for locking and unlocking transaction inputs and outputs are described. The invention is implemented using a blockchain network, which may be, for example, a Bitcoin blockchain. A group of entities form a group in with membership may be proven using an accumulation tree. A variety of methods are described for generating the accumulation tree, including methods that use a central authority and methods that use a decentralized protocol in place of the central authority. In various implementations, parties are able to unlock transaction outputs that are based on group membership without revealing their identity generally.

Abstract: A system and method for automated verification of a cybersecurity event includes identifying a cybersecurity event of a subscriber; automatically constructing a response-enabled verification communication based on one or more features of the cybersecurity event satisfying verification-initiating criteria of an automated verification-initiation workflow, and transmitting the response-enabled verification communication to the subscriber associated with the cybersecurity event, wherein the response-enabled verification communication includes: one or more pieces of event-descriptive content; a first selectable interface object that, when selected by the subscriber, automatically increases a threat severity level of the cybersecurity event; and a second selectable interface object that, when selected by the subscriber, automatically de-escalates the threat severity level of the cybersecurity event causing a disposal of the cybersecurity event; and automatically routing the cybersecurity event to one of a cybersecu

Abstract: Systems and methods for improving reliability in blockchain networks using sharding are disclosed herein. An example method includes assigning a unique identifier to a user, applying a deterministic function, such as a consistent hashing algorithm, to the unique identifier to select a unique set of nodes that are assigned to a shard for the user, wherein the nodes are a subset of available nodes, receiving a request for blockchain data from the user, generating a response to the request using a consistent view of a blockchain obtained from the unique set of nodes, and transmitting the response to the request to the user.

Abstract: A device, method, and computer readable storage medium generate a biometric public key for an individual based on both the individual's biometric data and a secret, in a manner that verifiably characterizes both while tending to prevent recovery of either by anyone other than the individual. The biometric public key may be later used to authenticate a subject purporting to be the individual, using a computing facility that need not rely on a hardware root of trust. Such biometric public keys may be distributed without compromising the individual's biometric data, and may be used to provide authentication in addition to, or in lieu of, passwords or cryptographic tokens. Various use cases are disclosed, including: enrollment, authentication, establishing and using a secure communications channel, and cryptographically signing a message.

Abstract: A data platform that implements memoizable functions for database objects. The data platform detects a first execution of a memoizable function and generates a first key based on metadata of one or more database objects operated on by the memoizable function and generates a first result for the memoizable function based on the one or more database objects. The data platform detects a second execution of the memoizable function and generates a second key based on the metadata of the one or more database objects operated on by the memoizable function. When the first key and the second key are equal, the data platform reuses the first result of the memoizable function. When the first key and second key do not match, the data platform generates a second result for the second execution of the memoizable function.

Abstract: A circuit and corresponding method enable bitcoin mining in a blockchain network. The circuit comprises a nonce generator that generates a nonce value, on a cycle-by-cycle basis, and changes only one binary digit of the nonce value per cycle. The circuit further comprises a hash engine that inserts, on the cycle-by-cycle basis, the nonce value into a block header of a block candidate and generates a digest by applying a hash function to the block header. The block header includes a representation of a target value. The circuit further comprises a validator that compares, on the cycle-by-cycle basis, the digest to the target value. In an event the digest satisfies the target value, the validator submits the block candidate to the blockchain network, causing newly minted bitcoin to be mined from the blockchain network. Changing only one binary digit of the nonce value, per cycle, reduces power consumption of the circuit.

Abstract: Methods and systems for monitoring activity on a network. The system may first classify network activity data as being generated by a human actor or an automated process. Then, the system may assign a first behavioral profile to the entity based on the network activity data and detect anomalous activity associated with the entity.

Abstract: Various systems and methods use a Merklized Adaptive Radix Forest (MARF), which is an authenticated index data structure that can be used by peers, clients, miners, and/or other participants in a blockchain network for efficiently encoding a cryptographic commitment to a blockchain state. For example, the MARF data structure can be used to represent a blockchain state as key-value pairs within an authenticated directory. The MARF data structure may include various merklized adaptive radix tries (ARTs) associated with different blocks in the blockchain, some of which may be linked together via one or more back-pointers.

Abstract: A vehicle receives a first portion of content via ATSC broadcast, generates a random nonce, responsive to receiving the content, and sends the nonce and a request for content verification to a remote server. The vehicle receives a message from the remote server indicating whether the first portion of content is likely valid, the message including a second portion of content and a hash value when the content is likely valid. The vehicle then calculates a second hash value, using the random nonce and the first portion of content. The vehicle compares the second hash value to the first hash value, and responsive to the second hash value matching the first hash value, combines the second portion of content and the first portion of content to create combined content. The vehicle then uses a security strategy to convert the combined content into utilizable content, and utilizes the content.

Abstract: A method for registering a mining computing entity (MCE) with a trusted execution environment entity (TEEE) in a blockchain of a distributed blockchain consensus network (DBCN), based on a proof-of-stake protocol, includes providing public signing and corresponding secret signing information and trusted time information by the TEEE of the MCE, providing public and secret account information for a virtual wallet of the blockchain by the MCE, and generating integrity information by the TEEE. The method further includes generating attestation information by signing the integrity information, hashed public signing information and public account information, computing proving information, by an attestation providing entity (APE), by attesting the attestation information, and sending a transaction to the blockchain, signed with the secret account information, the transaction including the public signing information and the proving information.

Abstract: Embodiments of network devices for access control are described. In some embodiments, an access control processor of a first node receives a request from a requestor node on an unsecure network to join a group of nodes on a secure network, where the first node coordinates network activities of the group of nodes including a plurality of partitioned nodes of a network. In response to receiving the request, the access control processor assigns the requestor node to a first pool of the group of nodes that are configured to perform authorized modifications of data including a cryptographic hash to protect the data against unauthorized modifications. In some embodiments, the nodes can perform test scripts based on characteristics of the node, the corresponding edge device, and/or the user.