Abstract: A digital license plate has a secure communication system able to initialize the digital license plate, support external communications, and have various antitheft features. In some embodiments, a communication module can transmit both vehicle identification number and digital license plate identifier to a central server. The central server is able to act in the event of a security mismatch to modify operation of the digital license plate.

Abstract: Program products, methods, and systems for simulating and/or preventing the dissemination of sensitive information over the internet are disclosed. Preventing dissemination of user-specific sensitive information over the internet may include analyzing content included in media posts, calculating a danger score for the media post, and determining if the calculated danger score exceeds a danger score threshold. Where the calculated danger score does not exceed the threshold, the media post has no or a low risk of disseminating sensitive information over the internet. However, if the calculated danger score does exceed the threshold, the user is alerted that the media post may undesirably disseminate sensitive information. The danger score may represent a sensitive information exposure risk for the media post is based on a variety of factors and/or characteristics of the media post and/or the user creating and attempting to disseminate the media post.

Abstract: A server may receive a request from a creator of a message to share one or more rights of the creator of the message with a user referenced in the message. In response to the request, the server may send a notification to the user referenced in the message. The notification includes an option to accept the one or more rights. The server may receive, from a user device of the user, an acceptance of the one or more rights and perform an operation related to the message based on the rights accepted by the user.

Abstract: To prevent un-authorized accesses to data and resources available in workloads on an organization's or enterprise's computer network, various improvements to automated computer network security processes to enable them to enforce network security policies using native network security mechanisms to control communications to and/or from workload units of applications running on different nodes within hybrid computer network infrastructures having both traditional hardware resources and virtual resources provided by private and public cloud infrastructure services.

Abstract: A data transmission method includes a step in which a first device generates a first encrypted packet by encrypting a packet addressed to a second device with an associated first encryption key. A device to be a transmission destination of the first encrypted packet is determined. A second encrypted packet is generated by encrypting the first encrypted packet with an associated second encryption key, and the second encrypted packet is transmitted to the determined device. The method includes determining another device and executing the transmission step if the decrypted first encrypted packet is not addressed to the device itself in the determination regarding whether or not the decrypted first encrypted packet is addressed to the device itself and of further decrypting the first encrypted packet if the decrypted first encrypted packet is addressed to the device itself.

Abstract: A first node of a network includes a quantum receiver, a classical transceiver, and an initial-key generator that cooperate with a second node of the network to receive an initial key via the quantum receiver. The first node includes a key-series generator that (i) decrypts, with the initial key, a first encrypted key of a series of encrypted keys to generate a first unencrypted key of a respective series of unencrypted keys and (ii) decrypts each subsequent encrypted key of the series of encrypted keys with a preceding unencrypted key of the series of unencrypted keys to generate a subsequent unencrypted key of the series of unencrypted keys. The first node includes one or both of a decryptor and an encryptor. The decryptor decrypts encrypted data using a last unencrypted key of the series of unencrypted keys. The encryptor encrypts unencrypted data using the last unencrypted key.

Abstract: In general, one or more embodiments of the invention relates to systems and methods for detecting ransomware attacks earlier and closer to the time of attack. The ransomware attack can be detect by determining a change rate of data blocks between snapshots. The ransomware attack can also be detected by determining the pattern of changes in the blocks deviates from a normal pattern. By making these determinations, a quick identification of possible ransomware attacks can be made and other methods of mitigating the attack can be deployed when they are may still be useful to mitigate potential damage to a user's data.

Abstract: An authentication system facilitates a transfer of enrollment in authentication services between client devices. The authentication system enrolls a client device in authentication services to enable the client device to be used for authenticating requests to access one or more services. As part of enrolling the client device, the authentication system receives authentication enrollment information for the client device that is associated with one or more authentication credentials securely stored on the client device (e.g., a multi-factor authentication (MFA) certificate). The authentication system facilitates one or more processes for transferring the enrollment from an enrolled client device to a non-enrolled client device that limit the number and complexity of actions performed by the user.

Abstract: Provided is a method of an electronic device for performing ultra wide band (UWB) communication. The method includes receiving upper bit information including pre-set at least one parameter via a UWB command interface (UCI), obtaining slot count information and key information including a constant key value, and performing static scrambled timestamp sequence (STS) generation, based on the upper bit information, the slot count information, and the key information.

Abstract: Embodiments of the present disclosure use natural language processing, machine learning and relevant corpora to detect social engineering attacks with a high degree of accuracy. In various embodiments, lexical features, spelling features and topical features are automatically analyzed from a source text and a model is employed to assess the likelihood that the source message is a social engineering attack.

Abstract: This document describes a three-party cryptographic handshake protocol in a wireless network in which a sighter receives, from a beacon, a packet including an exponentiation of a random value and a proxy value and generates an end-to-end encrypted ephemeral identifier (E2EE-EID) from the exponentiation of the random value and the proxy value. The sighter generates a message for an owner, selects a private key, and computes an exchanged key using the private key and the E2EE-EID. The sighter extracts a common symmetric key from the exchanged key, encrypts the message using the common symmetric key, and transmits the encrypted message to the owner.

Abstract: A computer-implemented method of restricting access to a data owner's data comprising the steps of storing a record associated with a data owner; receiving a request to protect data from the data owner; protecting the data by way of encryption, tokenization or other data protection mechanism; returning the data in a protected format to the data owner; receiving a request from the data owner to change the accessibility of the data owner's data; and changing the accessibility of the data owner's data.

Abstract: A method and apparatus are disclosed for malware detection in service function chains. In one embodiment, a method includes receiving data associated with a service function chain, the service function chain comprising a plurality of virtual components organized into a plurality of hierarchical levels and the data indicating interactions between the virtual components when processing at least one packet through the service function chain; filtering the received data based at least in part on a time-between order relation of the interactions between the virtual components and the hierarchical level of the virtual component; and generating a harmony feature vector for the service function chain by applying a featurization function on the filtered data, the harmony feature vector including metrics, the metrics calculated according to the featurization function for each hierarchical level being based at least in part on metrics calculated for at least one lower hierarchical level.

Abstract: Methods of operating a user equipment (UE) in a mobile communication network are disclosed. An authentication process start message may be transmitted from the UE to the mobile communication network, wherein the authentication process start message includes an identifier for the UE. After transmitting the authentication process start message from the UE, a request commit message may be received from the mobile communication network. Responsive to receiving the request commit message, a response commit message may be transmitted to the mobile communication network. After transmitting the response commit message, an authentication challenge message may be received corresponding to the authentication process start message. Related methods of operating network nodes are also discussed.

Abstract: A method of continuous development of an internal threat scan engine based on an iterative quality assessment includes iteratively performing a dynamic assessment of a quality of a threat detection with a frequency defined for each of objects in an object collection, wherein a result of the dynamic assessment includes internal and external scan results of the objects and a consistency verdict of the internal and external scan results of the objects, changing a frequency of scanning iteration of the objects based on the consistency verdict of the external and internal scan results of the objects, classifying the objects based on the result of the dynamic assessment, and creating a development task including the internal and external scan results of the objects, meta-data of the objects, and automated test results to provide details for developing a software to fix inconsistency of the internal and external scan results.

Abstract: A technical problem faced when remotely controlling or debugging electronic devices is that remote control or debugging often requires a direct connection. However, debugging ports are inaccessible on many devices. Technical solutions described herein provide systems and methods for secure communication via existing communication infrastructure (e.g., public instant messenger (IM)), providing various debugging abilities including debugging and file sharing. Technical solutions described herein also provide systems and methods for debugging based on remote device memory state collection and sending for embedded or IoT devices. This solution avoids a hardware debugging connection by using a debugging methodology resident on the device to read and dump the relevant memory, registers, and other device state information in a secure and automated manner.

Abstract: A method in a user device that supports a plurality of message authentication code (MAC) lengths for integrity protection of wireless communications includes receiving, from a base station, a first message including an information element (1002), determining, based on the information element, that a first MAC length of the plurality of MAC lengths is to be used for integrity protection (1004) and, thereafter, generating a second message including a MAC having the first MAC length (1006). The method also includes transmitting the second message to the base station (1008).

Abstract: A system for storing and managing secure information is disclosed that includes a secure identity and profiling system, which serves as a middleman between a user and an entity requesting personally identifiable information (PII) from the user. The system collects the PII from the user and stores it securely, such as in an alternate blockchain in an encrypted form. The location of the that PII within the alternate blockchain may be indexed using smart contracts in a main blockchain that can only be read with an access token generated and supplied by the user's mobile device. When an entity requests PII from the user that has already been collected and securely stored, the user can provide permission to release that PII by providing the access token. The system will use the access token to locate where the PII is stored and release the PII to the requesting entity.

Abstract: The disclosure relates to methods for establishing a secure communication link between a mobile station and a secondary base station in a mobile communication system. The disclosure is also providing mobile communication system for performing these methods, and computer readable media the instructions of which cause the mobile communication system to perform the methods described herein. Specifically, the disclosure suggests that in response to the detected or signaled potential security breach, the master base station increments a freshness counter for re-initializing the communication between the mobile station and the secondary base station; and the mobile station and the secondary base station re-initialize the communication there between. The re-initialization is performed under the control of the master base station and further includes deriving a same security key based on said incremented freshness counter, and establishing the secure communication link utilizing the same, derived security key.

Abstract: The various embodiments described herein relate to systems, methods, and devices associated with distributed ledger systems (e.g., distributed ledger technology implemented on a decentralized network) that can be used to handle and manage the distribution and access of data in a manner that preserves the benefits of distributed ledger technology while enabling the private sharing of data. More specifically, the distributed ledger systems contemplated herein involve distributed ledger technology (DLT)-based data management platforms that can be implemented on nodes of a data management network.