Abstract: Presented here is a system that manages secured file system, and an authority to the secured file system, by granting access only to a user who is authorized to access the file system. The user within the system is identified using a unique key unique to each user. The user's authority is recorded in a linear sequence distributed among multiple devices each of which independently verifies the validity of each block in the linear sequence. The validity of the linear sequence is guaranteed by preventing certain operations from being performed on the linear sequence, such as branching of the linear sequence, deletion, and modification of the blocks within the linear sequence. Prior to adding a new block to the linear sequence, the validity of the block is independently computed by each of the devices.

Abstract: Systems and methods for providing provenance and anti-counterfeiting of a part using blockchain technology are disclosed. One method may include: receiving, through a network, first information of a part associated with a first authentication means on the part from a first user device; verifying, through a blockchain network, the first information of the part via the first authentication means; generating, through the blockchain network, a first block of a blockchain entry for the part based on the verified first information of the part; sending, through the blockchain network, information of a second authentication means associated with the part to the first user device; and publishing, through the blockchain network, the verified first information of the part to the first user device when the first authentication means is activated.

Abstract: A computer-implemented method for detecting replay attack comprises: obtaining at least one candidate transaction for adding to a blockchain; verifying if an identification of the candidate transaction exists in an identification database, the identification database comprising a plurality of identifications within a validation range; and in response to determining that the identification does not exist in the identification database, determining that the candidate transaction is not associated with a replay attack.

Abstract: A system is provided for the storage of data, the system having: an encrypted host platform upon which regulatory controlled data is stored; a controller configured to allow a primary user to set permission settings and identify authorized end users and degrees of access granted to each the authorized end user, the authorized end user being pre-cleared for compliance with regulatory controls pertaining to the regulatory controlled data; the controller configured to permit access to the encrypted host platform only if the hosting platform is in compliance with predefined data security protocols the controller configured to allow the authorized end user access to the regulatory controlled data, and the controller configured to exclude access to both a provider of the system for storage and a system host platform provider; at least one individual computing device accessible by at least one the authorized end user, the individual computing device configured to provide authorized end user identification data to th

Abstract: The subject disclosure relates to systems, methods, and devices corresponding to smart label devices. Furthermore, disclosed are smart label systems that include individualized medicine modules communicatively coupled with smart label devices. Furthermore, a method is disclosed that comprises receiving, by the smart label control system, detection data from the smart label device, wherein the detection data represents a geo-locational boundary signal. The method further comprises disabling, by the smart label control system, a rendering of content on a display of the smart label device.

Abstract: A participant node of a distributed ledger network may identify a distributed federated learning (DFL) smart contract stored on a blockchain. The DFL smart contract may include an aggregation sequence. The aggregation sequence may include an ordered sequence of participant node identifiers. The participant node may generate a trained model by training a global model with training data. The participant node may detect, on the blockchain, a first transition token indicative of a first model previously aggregated by another participant node. The participant node may receive the first model. The participant node may aggregate the first model with the trained model to generate a second model. The participant node may store, on the blockchain, a second transition token indicative of the second model. A successor node identified in the aggregation sequence may further aggregate the second model with an additional model in response to detection of the second transition token.

Abstract: A monitoring unit verifies authentication information of a packet received and a rule verification unit verifies authentication information of a rule that matches the packet. The monitoring unit generates authentication information for a packet to be forwarded according to the rule having authentication information verified.

Abstract: A proxy server receives a synchronization request from an application program resident on a user device. The proxy server determines that the user device requires removal of application program data and synchronizes the application program resident on the user device with a null account that is associated with application program.

Abstract: Methods, apparatus, and processor-readable storage media for centralized transaction tracking using multi-blockchain technology are provided herein. An example computer-implemented method includes obtaining one or more messages communicated between two or more applications that are part of a message-based transaction architecture; and for each given one of said messages: identifying a key identifier value of said given message; determining a message type of said given message from among a set of message types; selecting, based on a predetermined mapping between the set of message types and a set of hash functions, the hash function that is mapped to the message type of said given message; and storing the given message in one of a plurality of blockchains based at least in part on the selected hash function and the determined key identifier value.

Abstract: A blockchain architecture allows blocks to store both public and private data. The public data may be accessible to any node in the blockchain network, while the private data may be accessible only to nodes specified in an access list, which may be provided when a record is added to the blockchain. When a new record is received, any private fields in the record may be identified and encrypted by a receiving node. The key may then be encrypted and sent with the protected record to other nodes in the access list. These nodes can access the encryption key, decrypt the private fields, and provide a consensus decision to a receiving node. After consensus, the protected record may be added to the blockchain, where the public fields may be freely accessed by any node, and the private fields remain accessible only to nodes in the access list.

Abstract: The present application generally relates to systems, devices, and methods to conduct the secure exchange of encrypted data using a three-element-core mechanism consisting of the key masters, the registries and the cloud lockboxes with application programming interfaces providing interaction with a wide variety of user-facing software applications. Together the mechanism provides full lifecycle encryption enabling cross-platform sharing of encrypted data within and between organizations, individuals, applications and devices. Further the mechanism generates chains of encrypted blocks to provide a distributed indelible ledger and support external validation. Triangulation among users, applications and the mechanism deliver both enterprise and business ecosystem cyber security features. Crowdsourcing of anomaly detection extends to users and to subjects of the data. Robust identity masking offers the benefits of anonymization while retaining accountability and enabling two-way communications.

Abstract: The present invention relates to methods for a blockchain search system, and particularly, the present invention relates to methods for assuring the data integrity on blockchain hybrid storage. Furthermore, the present invention provides a cost-efficient update scheme to maintain the on-chain index and authenticated data structure and is efficient and scalable under various operational parameters.

Abstract: Biometric health monitoring of a specific user or population is performed during biometric authentication for granting access to physical or digital assets. If biometric authentication, biometric verification and biometric health monitoring is acceptable, access to the physical or digital assets is allowed. Likewise, if a health anomaly is detected in a specific user or if an outbreak is detected in a specific community, an electronic notification can be sent to the individual, a health administrator, or to a government official, and access may be denied to the specific user.

Abstract: An example operation may include one or more of authenticating, by a first service node, to a first client node, receiving, by the first service node, a data access request from the first client node, comprising request parameters and a request token, generating, by the first service node, a receipt key corresponding to the data access request, and sharing data with a second client node based on the request token and the receipt key.

Abstract: The subject disclosure relates to systems, devices, and methods for executing operations related to procurement of individualized medicine therapies. Also disclosed are embodiments systems, methods, and devices for accessing a wide range of individualized medicine platform modules. Furthermore, disclosed herein are individualized medicine platform systems, methods and devices communicatively coupled to blockchain computing systems comprising several nodes. The disclosed systems, methods, and devices also generate chain of custody and chain of identity event data.

Abstract: Methods and systems are disclosed for managing cloud services using smart contracts to facilitate various functions, such as tenant login, tenant enrollment, service registration, tenant usage charging, tenant usage tracking, tenant quota management, and tenant rights revocation. The proposed techniques allow tenant and service accounts to be represented as smart contracts, and for services to delegate authorization for bundles of service attributes to tenants and other services, for which the tenants and services are then charged. The business logic is implemented on a permissioned, distributed ledger (e.g., a private blockchain) and therefore is easily customized for specific classes of tenants and services.

Abstract: According to an example aspect of the present invention, there is provided an apparatus comprising at least one processing core, at least one memory including computer program code, the at least one memory and the computer program code being configured to, with the at least one processing core, cause the apparatus at least to obtain a document, segmented into a first number of segments (510), obtain the first number of outputs of a cryptographic operation, such that for each output, a random value and a document segment are employed to generate an input to the cryptographic operation (520), build a Merkle tree based on the outputs of the cryptographic operation (530), and store a top hash of the Merkle tree in a block chain (540).

Abstract: An apparatus, a method, and a system are presented in which the apparatus includes an interface control circuit that may be configured to receive a message including a cryptographic keyword and a policy value. The policy value may include one or more data bits indicative of one or more policies that define allowable usage of the cryptographic keyword. The apparatus also includes a security circuit that may be configured to extract the cryptographic keyword and the policy value from the message, and to apply at least one policy of the one or more policies to usage of the cryptographic keyword in response to a determination that an authentication of the message succeeded.

Abstract: Techniques are provided that produce a risk profile consisting of a risk score and trends of risk scores across devices and sensors in a machine-to-machine (M2M) or Internet of things (IOT) environment. For example, a device is assigned a risk score which is based on baseline factors such as expected network packets between two devices, normal network packets, access to critical devices, authorized access requests from one device to another device, normal communications to a device and the critical ports of a device; access to and conflicts across physical, logical, and operational systems; historical and current usage of these systems, data from public sites, and anomalies from normal behavior patterns. Techniques encompass risk management by computing a risk score in a timely fashion in accordance with an architecture that enables achieving the required scaling necessitated by the huge number of devices in the machine-to-machine (M2M) or Internet of things (IOT) environment.

Abstract: An identity system is provided that may include an attestation service that is configured to communicate with a user computer device and a blockchain platform, and create a blockchain account for the attestation service on the blockchain platform, the account having an associated backend blockchain identity application. The attestation service may further be configured to determine that a user of the user computing device owns a user blockchain account by obtaining a signed message of the user. The signed message may include a user access token from the user of the user computer device and a blockchain address of the user to associate with the access token, the user access token having been generated by a trusted identity provider service. The attestation service may further be configured to identify one or more identity claims associated with the token, and store the identity claim for future presentation to a third party.