Abstract: Various examples pertaining to improvement for incorrect key set identifier (KSI) handling in mobile communications are described. An apparatus (e.g., user equipment) receives from a wireless network an authentication challenge after the processor having completed an authentication and key agreement (AKA) procedure with the wireless network. The apparatus detects an error in the authentication challenge and handles the error in the authentication challenge. For example, the apparatus can reject the authentication challenge responsive to detecting the error. Alternatively, the apparatus can accept the authentication challenge.

Abstract: Implementations of this specification provide a method and an apparatus for transaction processing in a service blockchain.

Abstract: Described are systems, methods, and media for providing secure and scalable decentralized computation for one or more decentralized applications. Features include a blockchain, and a plurality of nodes that are separated into at least a first specialized node type and a second specialized node type. Nodes of the first specialized node type can be assigned non-deterministic tasks to perform, and each of the nodes of the second specialized node type can be assigned deterministic tasks to perform. Thus, the disclosed systems and methods can achieve improvements in speed and cost that scale with hardware capacity without compromising decentralization.

Abstract: The system for detecting hardware trojans in integrated circuits by analyzing the substrate noise generated by the unique physical properties of such an integrated circuit disclosed herein may compare the substrate noise signatures of a subject IC against the noise signature from one or more known good ICs to detect such trojans, and may measure the electromagnetic, current, or voltage noise of an IC as a function of time synchronized with the test sequence. The system may allow for the testing of such substrate noise at multiple points around the IC, and may further comprise a Cypher Block Chain (CBC) technique to incorporate the noise measurements over time into a signature unique to the IC.

Abstract: There are disclosed devices, system and methods for detecting malicious code existing in an internet advertisement (ad) requested by a published webpage viewed by a user. First, receipt of malicious code of the ad is detected, where that code may be malicious code that causes a browser unwanted action without user action. If the internet ad is an SCR type document, the malicious code may be wrapped in a java script (JS) closure to detect an unwanted action requested by the malicious code. The malicious code is executed a browser sandbox that activates the unwanted action, that displays execution of the internet ad and that allows execution of the unwanted action. When a security error resulting from the unwanted action is detected, executing the malicious code in the browser sandbox is discontinued, displaying of the internet ad on the display is discontinued, and execution of the unwanted action is stopped.

Abstract: The invention relates a method involving calling of hardware components (i.e. memory, keyboard, microphone, user interface, etc.) being controlled by software units from trusted execution environment [102]; and encryption of the input from these elements within the trusted execution environment [102]; and transmission of the said encrypted data preferably normalized methods to the application in the rich environment [103]; transmission of the said encrypted data to the receiver via the application in the rich environment [103] via the methods of the application of the rich environment [103]; transmission of the said encrypted data using protocols/methods of the application running in the rich environment [103]; and at the receiving device being opened at the trusted execution environment [102] and being displayed to the user as such.

Abstract: An example operation may include one or more of dividing a data file into a plurality of data chunks, generating a randomness value for each data chunk based on one or more predefined randomness tests, and accumulating generated randomness values of the plurality of data chunks to generate an accumulated randomness value, detecting whether the data file is one or more of encrypted and compressed based on the accumulated randomness value and a predetermined threshold value, and storing information about the detection via a storage.

Abstract: Technology is described for a distributed ledger service within a service provider environment. The distributed ledger service may implement a distributed ledger formed from immutable append-only data structure and used for governance of computing resources. A policy governing a computing resource may be created and published to the distributed ledger on behalf of an account. The policy may be retrieved from the distributed ledger to govern access to the computing resource by the account.

Abstract: Described are systems, methods, and media for providing secure and scalable decentralized computation for one or more decentralized applications. Features include a blockchain; and a plurality of nodes comprising a plurality of each of three specialized node types, the specialized node types comprising access nodes, security nodes, and execution nodes.

Abstract: An embodiment of the present invention is directed to a multi-certificate pinning. The innovative system configures servers with at least two certificates from multiple different vendors/sources with differing expiration dates. This provides lead time to replace voided/expired certificates. If a first certificate expires, the system uses another valid certificate for that server until the certificated is addressed, thereby avoiding service down times. Accordingly, providers are not required to expedite mobile app store submission.

Abstract: A method, a non-transitory computer readable medium, and a mobile device are disclosed for accessing a resource hosted on a relying party server from a mobile device. The method includes: hosting a native application on the mobile device, the native mobile device having a user agent for pre-authenticated users; receiving a redirection request from an authentication server for an authentication token for a pre-authenticated user in response to a request for the resource hosted on the relying party server; sending the authentication token for the pre-authenticated user from the user agent of the mobile device to the authentication server in response to the redirection request form the authentication server; and authenticating the authentication token from the user agent on the authentication server and generating an authentication cookie for the authenticated user to access the resource on the relying party server.

Abstract: An apparatus and method control access to user information by generating a record of user information that includes the user information and appending the record of user information to a blockchain. A hash is assigned to the user information and the record of user information is encrypted prior to appending the record of user information to the blockchain. A record of authorization is received and appended to the blockchain. The record of authorization includes the user information, an identification of a third-party application authorized to read the record of authorization, and an access expiration parameter that places a restriction or limitation on access to the user information.

Abstract: A system and method for biobehavorial identification may include a user device, a secure system/client device, and a server. The elements of the system work together to monitor the biologic features (e.g., fingerprints, pupils, or the like) and behavior (e.g., wake time, exercise time, location) to verify the authenticity of a user requesting access to a database and/or secure facility.

Abstract: A blockchain of transactions may be referenced for various purposes and may be later accessed for ledger verification. One example operation may include one or more of identifying a plurality of rules defining a temporary private blockchain, creating a private blockchain block comprising the plurality of rules defining the temporary private blockchain, transmitting an update to a private blockchain block, and designating the temporary private blockchain closed responsive to receiving the update.

Abstract: An electronic certification system that can simplify a process for verification of reliability while improving reliability. The electronic certification system guarantees reliability of data using an audit trail registered in a blockchain, the data being provided to a second terminal such as a client by a first terminal such as a server, the first terminal includes audit trail registration for registering information and the data as the audit trail in the blockchain, the information relating at least one of the first terminal, an administrator of the first terminal, and a program configured to run on the first terminal and exchange the data with the second terminal, and an audit trail provider for transmitting the audit trail to the second terminal. The second terminal determines that the data is reliable if the audit trail provided by the audit trail provider has been registered in the blockchain.

Abstract: An Autonomous Exchange via Entrusted Ledger (AXEL) blockchain is discussed herein. The AXEL blockchain enables users to perform transactions in a private setting while enabling the transaction records thereof to be verified by other network users without publicly divulging the contents or details of the transaction records. The token identification system and method allows the tokens to carry an immutable identification to prevent negative blockchain occurrences such as double spending. A payment methodology allowing integration of external financial institutions with user owned and managed wallet. The AXEL blockchain can also interface with and utilize a distributed database to create an immutable record of each transaction while providing a complete backup of the transactions that occur within the system and on the AXEL blockchain.

Abstract: A method for securing transaction in a blockchain network and a related system with a blockchain network. The blockchain network has information handling devices operably connected with each other. The information handling devices collectively maintain a blockchain ledger containing one or more transaction blocks with transaction information. The method includes validating a new transaction request to be added to the blockchain ledger. The validation includes digitally signing, at two or more of the information handling devices in the blockchain network, respectively, an interim block associated with the new transaction request, using a HASH value of the interim block and respective private keys of the two or more of the information handling devices. The method also includes verifying the one or more signed interim blocks for determining whether to add to the blockchain ledger a new transaction block containing the validated new transaction request and the at least two digital signatures.

Abstract: Method of authenticating a client to a server, the client having beforehand registered on the server by storing therein a valid identifier (ID) and a hashed word (H0; Hn) generated by applying a hash function to a disposable random variable (RAND0; RANDn; Rn) possessed/known by both the client and the server and concatenated with a sequence (ISC0; ISCn) resulting from hashing the concatenation of a password (PWD) known from the client, said disposable random variable (RAND0; RANDn; Rn) and an initialization sequence (ISCinit) possessed by the client.

Abstract: Implementations of the present specification include receiving a request to perform a private transaction associated with at least one account; in response to receiving the request, performing, by a workflow node, the private transaction; in response to performing the private transaction, generating, by the workflow node, a representation of the private transaction configured to be accessible only to entities that are authorized to access the private transaction; storing, in a private blockchain, the representation of the private transaction; generating, by the workflow node, an account record for the at least one account associated with the private transaction based at least in part on the private transaction, wherein the account record is configured to be accessible to at least one entity that is not authorized to access the representation of the private transaction in the private blockchain; and storing, in a public blockchain, the account record.

Abstract: A system and method for biobehavorial identification may include a user device, a secure system/client device, and a server. The elements of the system work together to monitor the biologic features (e.g., fingerprints, pupils, or the like) and behavior (e.g., wake time, exercise time, location) to verify the authenticity of a user requesting access to a database and/or secure facility.