Abstract: A device may join an existing mesh network by authenticating with only one of a plurality of member devices of the existing mesh network. Once the device has successfully authenticated with the only one member device, the device may receive a common group key. The device may send a route request message encrypted with the common key to one or more of the plurality of member devices of the existing mesh network. In response, the device may receive one or more route reply messages encrypted with the common key from one or more of the plurality of member devices of the existing mesh network. The device may determine an optimal route to one or more provider member devices of the existing mesh network based on the received route reply messages.

Abstract: A system, apparatus, method, and machine readable medium are described for performing authentication using environmental data. For example, one embodiment of a method comprises: collecting environmental sensor data from one or more sensors of a client device; using a geographical location reported by the device to collect supplemental data for the location; comparing the environmental sensor data with the supplemental data to arrive at a correlation score; and responsively selecting one or more authentication techniques for authenticating a user of the client device based on the correlation score.

Abstract: An apparatus includes a mesh block, a first number generator configured to generate a first number, a second number generator configured to generate a second number, and a comparator block configured to compare the first number with the second number and generate an output signal from the mesh block. The output signal indicates an occurrence of an unauthorized activity on the mesh block.

Abstract: A password hardening system is arranged between one or more clients and a domain controller or other authentication entity. The password hardening system comprises a plurality of servers configured to store in a distributed manner respective shares of at least one of a hardened surrogate password and a corresponding user password. The password hardening system is configured to intercept a first set of one or more communications based at least in part on the user password and directed to an authentication entity external to the password hardening system, and to provide to the authentication entity in place of at least a portion of the intercepted first set of one or more communications a second set of one or more communications based at least in part on the hardened surrogate password. The password hardening system may be configured to serve as a proxy between an authenticating client and the authentication entity.

Abstract: Methods, systems, and apparatus, including computer programs encoded on a computer storage medium, for storing and retrieving encrypted data. In one aspect, a method includes receiving, at a server computer separate from a user device, a first encrypted resource encrypted by use of a public encryption key, wherein the public encryption key is paired with a private encryption key according to an asymmetric encryption key scheme; retrieving, by the server computer, a second encrypted resource encrypted by use of the public key; augmenting, by the server computer, the first encrypted resource with the second encrypted resource to form an encrypted data tuple; encrypting, by the server computer, the encrypted data tuple; and storing, by the server computer, the encrypted data tuple as the second encrypted resource.

Abstract: A reading group that is associated with an ebook is defined, the reading group including a master device and one or more follower devices. A synchronization command is received from the master device to synchronize the reading location of the one or more follower devices to a read section, the read section specifying a portion of the ebook. The synchronization command is provided to the one or more follower devices, and in response to receiving the synchronization command the one or more follower devices are configured to present the ebook in accordance with the read section.

Abstract: A method and system for determining unauthorized account access is provided. The method includes receiving a username of a user and a passcode for access to a secure account or device belonging to a user. The passcode is determined to be incorrect. Unauthorized access attempts with respect to the secure account or the device are determined based on based on the incorrect passcode and in response, a quality factor associated with the incorrect passcode with respect to the secure account or device is determined. The quality factor is compared to a threshold value. Security functions associated with the secure account or device with respect to the incorrect passcode and the results of the comparison are performed based on the quality factor and the unauthorized access attempts.

Abstract: Systems and methods for remote authentication using Single Sign-On (SSO) credentials are disclosed. An implementation includes transmitting a request for an identification code from an application to a wireless service provider, the request provided through an encrypted transport protocol, receiving the identification code as a messaging service message from the wireless service provider, securely routing the received identification code to the requesting application, upon receipt of the identification code at the application, retrieving an authentication token for the application through the encrypted transport protocol and providing the authentication token to an application content server to allow content transfer between the application content server and the application.

Abstract: In an embodiment, a processor includes a binary translation engine to receive a code segment, to generate a binary translation of the code segment, and to store the binary translation in a translation cache, where the binary translation includes at least one policy check routine to be executed during execution of the binary translation on behalf of a security agent. Other embodiments are described and claimed.

Abstract: Systems and methods for rapidly provisioning functionality to one or more mobile communication devices are disclosed. The method may comprise receiving, by a telecommunications company (“Telco”) computer-based system and prior to a request for provisioning functionality, a globally unique identifier (“GUID”) encryption key, wherein the GUID comprises a unique identifier that is associated with a transaction account customer, and/or receiving, by the Telco computer-based system, a proto-script, wherein the proto-script comprises a perso-script prepended by a script to rotate a plurality of base encryption keys, wherein the base encryption keys are based on a value generated by an application service provider system.

Abstract: Systems and methods for rapidly provisioning functionality to one or more mobile communication devices are disclosed. The method may comprise transmitting, by a mobile communication device, a request to receive application functionality, receiving, by the mobile communication device, a preformed perso-script, wherein the perso-script comprises a file that includes customer information and is prepended by a key rotation portion, processing, by the mobile communication device, the key rotation portion to rotate to a new set of encryption keys, and/or transmitting, by the mobile communication device and to an application service provider, a result of the key rotation.

Abstract: A method and an apparatus for Wi-Fi connection based on Wi-Fi Protected Setup (WPS) in a portable terminal are provided. The method includes entering a group owner mode of Wi-Fi Direct when enabling of WPS is requested, after entering the group owner mode, entering a WPS session mode where the portable terminal is operable in a WPS registrar mode, determining whether an Access Point (AP) whose WPS session of the WPS registrar mode is enabled or a device whose group owner mode is enabled, exists nearby, and when an AP whose WPS registrar mode is enabled is discovered, disabling the WPS registrar mode and the group owner mode, enabling a WPS session where the portable terminal is to operate in a WPS enrollee mode, and accessing the discovered AP.

Abstract: A computer-implemented method for determining whether GPUs are executing potentially malicious processes may include (1) identifying at least one GPU associated with a computing device, (2) analyzing the behavior of the GPU associated with the computing device, (3) determining that the analyzed behavior of the GPU indicates that the GPU is executing at least one potentially malicious process, and then (4) performing at least one security action on the GPU in response to determining that the analyzed behavior indicates that the GPU is executing the potentially malicious process. Various other methods, systems, and computer-readable media are also disclosed.