Abstract: Techniques are disclosed to leverage third party “cookie stitchers” for cross-device user identification, which may be used by a network server to selectively provide content to a user. The techniques include a cookie stitcher associating a user with multiple computing devices, which in turn notifies the network server when the same user requests access to provided content on separate occasions from different computing devices. The cookie stitcher may also have access to a user record regarding the identified user, and may provide this record data to the network server to identify other characteristics about the user. Based upon the particular type of information that is identified, the network server may provide varying degrees of access to content and/or allow the user to interact with one or more applications supported by the network server in different ways.

Abstract: A packet-filtering system described herein may be configured to filter packets with encrypted hostnames in accordance with one or packet-filtering rules. The packet-filtering system may resolve a plaintext hostname from ciphertext comprising an encrypted Server Name Indication (eSNI) value. The packet-filtering system may resolve the plaintext hostname using a plurality of techniques. Once the plaintext hostname is resolved, the packet-filtering system may then use the plaintext hostname to determine whether the packets are associated with one or more threat indicators. If the packet-filtering system determines that the packets are associated with one or more threat indicators, the packet-filtering system may apply a packet filtering operation associated with the packet-filtering rules to the packets.

Abstract: Methods, systems, and apparatus, including computer programs encoded on computer storage media, for blockchain-based image processing are provided. One of the methods comprises: obtaining, by a computing device, copyright-related information corresponding to an original image; sending, by the computing device, the copyright-related information to one or more blockchain nodes configured to obtain ciphertext information by encrypting the copyright-related information and to store the ciphertext information in the blockchain; obtaining, by the computing device, the ciphertext information from the blockchain; and performing, by the computing device, obfuscation on a pixel matrix of the original image based on the ciphertext information to generate a target image carrying the copyright-related information.

Abstract: An example operation may include one or more of receiving a signed transaction from a blockchain member device, responsive to receiving the signed transaction, identifying a credential assigned to the blockchain member device, and the credential certifies a public key is assigned to the blockchain member device and was used to sign the signed transaction, determining whether to commit the signed transaction to a blockchain based on the credential, and responsive to determining to commit the signed transaction based on the credential, storing the signed transaction anonymously in the blockchain.

Abstract: Localized content from at least one local merchant is provided to a user through a publicly accessible computer device. A server interfaces to one or more publicly accessible computer devices that are associated with a vendor. The computer devices interface to content sources through a network. A user access is detected and the identity of the user and the computer device is determined. These identities are provided to a server. The server then provides content to the computer device that is selected based on the identity of the user and the computer device. At least a portion of the content is advertising from a local merchant. Revenue is obtained from the local merchants and a portion is provided to the vendor associated with the particular computer device.

Abstract: Methods, systems, and apparatus, including computer programs encoded on computer storage media, for blockchain-based image processing are provided. One of the methods comprises: obtaining, by a computing device, copyright-related information corresponding to an original image; sending, by the computing device, the copyright-related information to one or more blockchain nodes configured to obtain ciphertext information by encrypting the copyright-related information and to store the ciphertext information in the blockchain; obtaining, by the computing device, the ciphertext information from the blockchain; and performing, by the computing device, obfuscation on a pixel matrix of the original image based on the ciphertext information to generate a target image carrying the copyright-related information.

Abstract: Disclosed herein are embodiments of systems and methods that dynamically reconfigure a multi-tiered system of network devices and software applications in response to an ongoing and/or anticipated cyber-attack. The dynamic reconfiguration of the network devices may consist of a wide range of processes, which may include generating new network addresses for individual network devices; reconfiguring the network devices by creating firewalls, changing protocols between the network devices in a multi-tier reconfiguration solution, changing the cloud infrastructure provider of the network devices, even when the underlying network infrastructure ecosystem differs across cloud service providers (CSPs); and maintaining a secure and updated data model of a record of reconfigured network devices and their dependencies to allow legitimate users of the network devices to understand reconfiguration actions that are hidden from malicious users such as hackers and cyber-attackers.

Abstract: A privacy compliance measurement system, according to particular embodiments, is configured to determine compliance with one or more privacy compliance requirements by an organization or sub-group of the organization. In various embodiments, the system is configured to determine a privacy maturity rating for each of a plurality of sub-groups within an organization. In some embodiments, the privacy maturity rating is based at least in part on: (1) a frequency of risks or issues identified with Privacy Impact Assessments (PIAs) performed or completed by the one or sub-groups; (2) a relative training level of members of the sub-groups with regard to privacy related matters; (3) a breadth and amount of personal data collected by the sub-groups; and/or (4) etc. In various embodiments, the system is configured to automatically modify one or more privacy campaigns based on the determined privacy maturity ratings.

Abstract: Certain aspects of the disclosure are directed to customized communication monitoring and alerts using a high-level programming interface. According to a specific example, a data communications server is configured and arranged to provide a database with virtual office features available to remotely-situated client entities. The data communications server is configured to provide to the client entities, a set of instructions written in a first programming language that defines a message exchange protocol, the set of instructions including aspects of the message exchange protocol to be populated with client-specific directives. The data communications server is further configured to receive from each client entity, client-specific sets of control data written in a second programming language that is compatible with the first programming language, and including privacy protection processes implemented for data communications including the one disparate client entity.

Abstract: An operation method for an electronic device is disclosed. The operation method for an electronic device according to an embodiment may comprise the steps of: configuring a block layer for virtualizing a storage on a volatile memory as a block device; storing a file in the configured block layer in units of blocks; selectively encoding, in a unit of at least one block, the file which has been stored in units of blocks; and storing at least one of an encoded block and a non-encoded block in the storage.

Abstract: The disclosure relates to methods for establishing a secure communication link between a mobile station and a secondary base station in a mobile communication system. The disclosure is also providing mobile communication system for performing these methods, and computer readable media the instructions of which cause the mobile communication system to perform the methods described herein. Specifically, the disclosure suggests that in response to the detected or signaled potential security breach, the master base station increments a freshness counter for re-initializing the communication between the mobile station and the secondary base station; and the mobile station and the secondary base station re-initialize the communication there between. The re-initialization is performed under the control of the master base station and further includes deriving a same security key based on said incremented freshness counter, and establishing the secure communication link utilizing the same, derived security key.

Abstract: Embodiments of the disclosure provide a method for enhancing standard authentication systems to include risk-based decisions. Risk-based decisions can be selectively implemented within existing authentication systems to strategically modify and supplement security if an unacceptable risk is detected. Embodiments capture information pertaining to a user and user device. Information is stored to create a profile for the user and user device. A comparison between the stored information and live data can be performed within authentication systems to optimize security. If the results of the comparison demonstrate the presence of an acceptable risk, then the need for subsequent authentication can be reduced or eliminated, which improves a user experience.

Abstract: The various embodiments described herein relate to systems, methods, and devices associated with distributed ledger systems (e.g., distributed ledger technology implemented on a decentralized network) that can be used to handle and manage the distribution and access of data in a manner that preserves the benefits of distributed ledger technology while enabling the private sharing of data. More specifically, the distributed ledger systems contemplated herein involve distributed ledger technology (DLT)-based data management platforms that can be implemented on nodes of a data management network.

Abstract: A method, computer readable medium, and computer wherein a system provides an agent device a remote connection to a server resource, obtains remote environment data from the agent device and obtains communication data exchanged between the agent device and a client device. With that data, the system provides a multidimensional monitoring unit associated with the agent device, and the monitoring unit provides access to the remote environment data from the agent device and the communication data exchanged between the agent device and the client device. The system further detects changes in the remote environment data and communication data associated with the remote agent, and issues alarms in response to detecting changes.

Abstract: A method of verifying identity of a user of an object virtualized in a memory connected to a terminal of the user. The object includes an identification data item, relating to identity of the bearer thereof. The terminal communicates with a virtualization server. The virtualization server obtains the identification data item, transmits it to a validation server having control of the object, obtains a first data item about the user, generates a first verification data item as a function of the first data item, and transmits it to the validation server. The validation server obtains a second data item about the bearer, generates a second verification data item as a function of the second data item, the function being identical to that used to generate the first verification data item, compares the first and second verification data items, and validates the identity of the user based on the comparison.

Abstract: System and methods are disclosed that enable data sharing across networks, including peer-to-peer sharing of content over wireless networks using peer mobile devices. A database may store content associated with a first peer mobile device. A request from a requester peer mobile device for content associated with a user of the first peer mobile device may be received at a server. The encrypted request is transmitted by the server to the first peer mobile device which may decrypt the request. An authorization token may be transmitted by the first peer mobile device to the server which may then enable the requesting peer mobile device to access the requested content, which may be accessed from the first peer mobile device and/or a cloud storage system.

Abstract: Computer-readable mediums, according to various embodiments, store computer-executable instructions for: (1) scanning computer code to determine what types of personal information the computer code collects or analyzes; (2) prompting a first one or more individuals for information regarding this aspect of the computer code (e.g., why the computer code is collecting the personal information); (3) communicating this information to a second set of one or more individuals; (4) receiving, from the second set of individuals, a recommended revision to the computer code that would facilitate the compliance of the computer code with one or more privacy standards; (5) facilitating the implementation of the revision; and (6) generating a report listing the one or more revisions that have been completed.

Abstract: Systems and methods for validating device permissions of computing devices to execute code on a decentralized database are disclosed. Exemplary implementations may: store, on the decentralized database, a first set of code executable by the decentralized database, the first set of code being configured to instantiate objects; and store on the decentralized database, a second set of code executable by the decentralized database, the second set of code defining functions, the functions including receiving requests from computing devices, validating whether the requesting computing devices are permitted to make the requests, modifying the state of instantiated objects in accordance with the received requests, and/or other functions.

Abstract: A method by a security system implemented by one or more electronic for detecting attacks on one or more databases. The method includes analyzing database logs of one or more databases to determine transaction characteristics of each of the one or more databases, selecting, for each of a plurality of database accesses to the one or more databases, one or more security rules to apply to that database access, wherein different security rules are selected for different ones of the plurality of database accesses depending on the determined transaction characteristics of the database being accessed, and causing, for each of the plurality of database accesses, the one or more security rules selected for that database access to be applied to that database access.

Abstract: A system for broadcasting that includes a watermark payload.