Abstract: Systems for generating enhanced biometric data and using enhanced biometric data to process events are provided. A system may receive a request for enhanced biometric data and may extract details associated with the request. Based on a user associated with the request and the extracted details, a user profile may be selected from a plurality of user profiles associated with the user. The user profile may include biometric data of the user, predetermined limits on types of events to be processed, amounts, and the like. The system may generate enhanced biometric data based on the user profile and may transmit the enhanced biometric data to a computing device of the requesting user. The user may then provide the enhanced biometric data when requesting to process an event.

Abstract: The disclosed computer-implemented method for enforcing data loss prevention policies on endpoint devices may include (i) detecting that an endpoint device has terminated a connection with a protected network that is protected by a network-level data loss prevention system and has connected to an external network that is not protected, (ii) switching, in response to detecting that the endpoint device has connected to the external network, from an in-network data loss prevention policy to an out-of-network data loss prevention policy, (iii) detecting an inbound data transfer to the endpoint device, (iv) determining that the inbound data transfer comprises a transfer from a protected source that is protected by the out-of-network data loss prevention policy, and (v) performing a security action in response to determining that the inbound data transfer to the endpoint device comprises the transfer from the protected source. Various other methods, systems, and computer-readable media are also disclosed.

Abstract: Pre-boot authentication at an information handling system is selectively bypassed based upon conditions detected at the information handling system that indicate a trusted environment. A security monitor integrated with the pre-boot authentication system detects predetermined conditions that authorize bypassing of the pre-boot authentication, such as location, behavior or password type indications of a trusted environment. In one embodiment, a password is input with touches to match a timing and position passcode, such as by mimicking a musical rhythm.

Abstract: Embodiments described herein provide a system for improving a classifier by computing a statistic for the utility of sharing data with a second party. The system may encrypt a set of class labels based on a public key/private key pair to obtain a set of encrypted class labels. The system may send a public key and the set of encrypted class labels to a second computing device. The system may receive an encrypted value computed by the second computing device based on the public key. The system may decrypt the encrypted value based on a private key to obtain a decrypted value. The system may then send a pair of encrypted values computed based on the decrypted value to the second computing device. The system may subsequently receive an encrypted utility statistic from the second computing device, and decrypt the encrypted utility statistic to obtain a decrypted utility statistic.

Abstract: Methods and systems for converting biometric data into two-dimensional images for use in authentication processes are described. Biometric data is received and then hashed into a string of characters. A 2-D image is created based on the hashed string of characters. The 2-D image is then provided for printing on a personal transaction card.

Abstract: A method and apparatus for tokenization of user-traceable data are described. User traceable data is data that is not directly personal data but can be traced back to the identity or an activity of the user. A first raw value is encrypted into a first token using a symmetric key encryption mechanism based on a combination of a second raw value including personal data of a user and a second token resulting from the tokenization of the second raw value where the first token is an anonymized representation of the first raw value.

Abstract: A method and system for improving location detection and presentation is provided. The method includes receiving a request for access to a secure Website and retrieving an automated challenge response test for determining that a user is a living being. A location of the user is detected and analyzed with respect to images of the automated challenge response test. Local entities associated with the images are determined and correct images and incorrect images are identified for executing the automated challenge response test. First actions for enabling the user to execute functions associated with the correct images with respect to the local entities are added to the correct images. Second actions for enabling the user to execute functions associated with the incorrect images with respect to the local entities are added to the correct images and a resulting modified automated challenge response test is presented to the user.

Abstract: An apparatus and method for collecting an audit trail in a virtual machine boot process, the audit-trail-collecting apparatus including an event detection unit for detecting a software interrupt event, a register state information extraction unit for extracting state information of a CPU register corresponding to a detection time of the software interrupt event, a monitoring unit for monitoring a change in a vector value corresponding to the software interrupt event in an interrupt vector table, a threat occurrence detection unit for detecting a threat occurrence in a virtual machine boot process based on at least one of the CPU register state information and a monitored result, and an audit trail collection unit for storing an audit trail corresponding to at least one of the CPU register state information and the monitored result when the threat occurrence is detected in the virtual machine boot process.

Abstract: Disclosed herein are methods, systems, and apparatus, including computer programs encoded on computer storage media, for recovering and verifying a public key. One of the methods includes accepting information encoding parameters of an elliptic curve, a published public key, a hash value of a message, a digital signature, and an identification parameter; generating a recovered public key based on the parameters of the elliptic curve, the hash value of the message, the digital signature, and the identification parameter; comparing the published public key and the recovered public key to verify the published public key.

Abstract: A system for analytics security includes an interface and a processor. The input interface is configured to receive a request for analytics data, where the request is associated with a requestor. The processor is configured to determine security associated with the analytics data, where security associated with the analytics data is based at least in part on commingled data used for determining the analytics data. The processor is also configured to determine permissions associated with the requestor, determine whether the requestor is credentialed based at least in part on the security associated with the analytics data and the permissions associated with the requestor, and in the event it is determined that the requestor is credentialed, provide the analytics data to the requestor.

Abstract: A digital broadcast receiver and method are provided. The digital broadcast receiver comprises an input, an anti-virus unit and a host interface. The input is configured to receive a digital broadcast. The anti-virus unit is configured to carry out an anti-virus check on the at least one data channel received as part of the digital broadcast. The host interface is configured to provide the at least one decoded data channel to a host.

Abstract: A method and system for operating an electronic apparatus includes: implementing, by a first processor, a main process of the electronic apparatus; receiving a user input for controlling an operation of at least one element (e.g., camera, memory, microphone, or the like) configured to perform at least one function; and in response to a received user input, controlling power of the at least one element by using at least a second processor separate from the first processor.

Abstract: A method for uniquely identifying a network client or application based on a transport layer security (TLS) handshake includes: storing, in a computing device, a list of cipher suites and a list of supported curves; intercepting, by the computing device, a data packet transmitted to as part of the TLS handshake; filtering, by the computing device, cipher suites included in the list of cipher suites from the data packet; filtering, by the computing device, supported curves included in the list of supported curves from the data packet; building, by the computing device, a data string using data in the data packet remaining after filtering; generating, by the computing device, a signature value by hashing the data string; and identifying, by the computing device, a network client or application using the generated signature value.

Abstract: According to some example embodiments of the present invention, in a system for managing interactive media, the system includes: a processor; and a memory coupled to the processor, wherein the memory stores instructions that, when executed by the processor, cause the processor to: monitor a broadcast of a live media content production; receive, from a plurality of user devices, preference data indicating preferences for modifying content of the live media content production; aggregate the preference data; and transmit the preference data to a media production device for modifying the live media content product in real time during the broadcast.

Abstract: In a method for protecting a networked military system from malicious users, transactions between the users of the networked military system are stored in a distributed database. Using a block chain method makes it possible to securely store important information in the network and to protect it from manipulation by intruders.

Abstract: Methods, systems, and media for providing personalized notifications to video viewers are provided. In some embodiments, the method comprises: receiving, using a hardware processor, one or more prompts to be presented in association with a video from a user account associated with the video; receiving, from the user account associated with the video, one or more notifications, wherein each of the one or more prompts is associated with one of the one or more notifications; causing the one or more prompts to be presented in association with presentation of the video to a user; receiving an indication that a first prompt of the one or more of the prompts was selected by the user; causing a notification associated with the first prompt to be presented to the user in response to receiving the indication.

Abstract: A communication control apparatus includes circuitry that includes a memory that stores a first list including a first condition that associates an address indicating a location on a network with information and a second list including a second condition that associates identification information identifying a communication protocol with information indicating whether or not allow communication using the communication protocol and circuitry that outputs display control information to display the first list and the second list, receives an input of a request to modify the displayed first list and the second list, generates communication control information in accordance with the modified first list and the second list in response to the input request, and transfers the generated communication control information via the network to a transfer apparatus, to cause the transfer apparatus to control communication to be performed via a first communication interface for connecting the network and a second communicati

Abstract: Techniques are shown for key management using a traceable key block-chain ledger involving creating a cryptographic key at a key source, generating a genesis block for a key block-chain ledger corresponding to the cryptographic key, and securely modifying the genesis block to include metadata describing the key source. The techniques also involve performing a first key transaction with the cryptographic key, generating a first transaction block corresponding to the first key transaction with the cryptographic key and adding the first transaction block to the key block-chain ledger, and securely modifying the first transaction block to include metadata describing the first key transaction with the cryptographic key.

Abstract: Aspects of the subject disclosure may include, for example, capturing first monitoring information associated with an audience that is viewing a presentation, determining an actual audience engagement level by performing pattern recognition on the first monitoring information, comparing the actual audience engagement level with an expected audience engagement level to generate an engagement score for the presentation, and transmitting, to a device, a haptic feedback according to the engagement score during the presenting of the presentation. Other embodiments are disclosed.

Abstract: The systems and methods that detect a malicious process using count vectors are provided. Count vectors store a number and types of system calls that a process executed in a configurable time interval. The count vectors are provided to a temporal convolution network and a spatial convolution network. The temporal convolution network generates a temporal output by passing the count vectors through temporal filters that identify temporal features of the process. The spatial convolution network generates a spatial output by passing the count vectors through spatial filters that identify spatial features of the process. The temporal output and the spatial output are merged into a summary representation of the process. The malware detection system uses the summary representation to determine that the process as a malicious process.