Abstract: A method to secure boot an electronic device is disclosed according to some embodiments. The method includes receiving a request to initiate a boot sequence using memory content stored in a non-volatile memory circuit. A secure boot circuit receives verification data from the non-volatile memory circuit indicating the memory content. The verification data includes an error correction code for the memory content without including all of the memory content. A cryptographic hashing operation is performed to the error correction code in the secure boot circuit to obtain a digest of the error correction code. The digest is compared with a pre-stored reference digest to generate a verification signal. The verification signal is provided to the electronic device indicating whether the boot sequence passes the verification.

Abstract: A blockchain-based platform system for interworking with one machine-to-machine (oneM2M) and lightweight machine-to-machine (LWM2M) and a method of implementing a blockchain-based platform are provided. The blockchain-based platform system for interworking with oneM2M and LWM2M includes a hyperledger fabric network configured to validate chaincode called in association with a first client application and generate an event in association with the validated chaincode, and a fabric bridge gateway configured to perform interworking with an LWM2M protocol and a oneM2M platform by transmitting a request or a response corresponding to the event to a second client application.

Abstract: Embodiments of the present invention provide a system for secure communication of information that may be used to authorize communications or transfer of resources by use of an intelligent resource instrument with embedded tactile or audio feedback mechanism. The provided systems, methods, and computer program products are designed to select and generate stimulus information, simultaneously record EEG readings for a user, and use this information to verify user identity. Upon verification of user identity, the intelligent resource instrument may be activated for use in a resource transfer.

Abstract: Methods and compositions for decentralized systems for mitigating climate change are provided. In some embodiments, the compositions comprise: one or more first servers operable to store a plurality of first tokens, wherein each one of the plurality of first tokens is associated with fiscal value; one or more second servers operable to store a plurality of second tokens, wherein each one of the plurality of second tokens corresponds to a unit of voting power; one or more project developer nodes operable to transmit project data corresponding to renewable energy or carbon sequestration; one or more auditor nodes operable to verify an identity, validate credentials, perform a project assessment, generate a smart contract, receive signals, and transmit signals; and one or more steward nodes, wherein each one of the one or more steward nodes is operable to stake tokens for voting power and to distribute voting power.

Abstract: A method for blockchain-based time stamping for digital signature is disclosed. The method includes two participants: a signer who signs a message, a verifier who verifies the message. In the method, the signer obtains hash values of a certain number of latest confirmed blocks in blockchain, binds these hash values and the message together to be a new message. The signer then generates a signature of the new message and inserts identification data of this signature and the new message into a transaction of blockchain. This method ensures that the generation time of the signature is prior to the generation time of the block which contains the signature and, at the same time, is after the generation time of the blocks whose hash values are included in the signature, which produces an accurate time interval for the digital signature.

Abstract: In one aspect, a computerized method for digitally tracking ownership of goods with a blockchain includes the steps of providing a blockchain. The blockchain includes a set of blockchain ownership records provided in a chronological mathematical proof format such that specified data exists in a specific chronological order. The method includes the step of saving a smart contract that references a real-world object in the blockchain. The smart contract includes a tool for tracking ownership of the real-world object. With a computer application, the method enables an owner of the real-world object to modify an owner data portion of the smart contract to a new owner entity to change the ownership of the real-world object in the blockchain. The method includes the step of updating the owner data portion of the smart contract in the blockchain to include the new owner entity.

Abstract: A multi-factor identification system is provided in which enrolled user authentication information is updated in the course of an authorization request based upon at least one of a confidence level of a match between a request first factor identifier, produced based upon first unique user identifying information received with the authentication request, and a respective matching enrolled first factor identifier and a confidence level of a match between a request second factor identifier, produced based upon second unique user identifying information received with the authentication request, and a respective matching enrolled second factor identifier.

Abstract: Methods, apparatus, systems, and articles of manufacture are disclosed to detect attacks in V2X networks. An example apparatus includes a challenge handler to (a) transmit a first challenge packet to a first vehicle to request a transmission of a first response, (b) instruct a second challenge packet to be transmitted to a second vehicle to request a transmission of a second response, (c) increment a first counter when the first response is not obtained, (d) increment a second counter when the second response is not obtained, and (e) after repeating (a)-(d), determine that the first and second vehicles are phantom vehicles associated with an attacker with a half-duplex radio when at least one of the first or second counters satisfy a threshold, and a network interface to instruct a third vehicle associated with the V2X network to ignore future messages from the phantom vehicles based on the determination.

Abstract: A method includes broadcasting, by a node computer, a propose message comprising a new block for a blockchain to a plurality of node computers in a network shard. The node computer can receive at least one vote message from the plurality of node computers, the at least one vote message indicating verification of the new block. The node computer can, after a predetermined amount of time, receive a plurality of pre-commit messages comprising at least the new block and a block certificate created based on the at least one vote message. If the number of received pre-commit messages of the plurality of pre-commit messages is greater than a quorum value associated with the network shard, the node computer can commit the new block to the blockchain.

Abstract: An access control server may store a private cryptographic key. The private cryptographic key corresponds to a public cryptographic key. The public cryptographic key is stored on a blockchain as part of an autonomous program protocol. The access control server may receive access control setting related to the autonomous program protocol. The access control server may receive a request for accessing the autonomous program protocol stored on the blockchain. The access control server may review the request. The access control server may determine the request is in compliance with the policies specified in the setting. The access control server may create, using the private cryptographic key, a digital signature for the request and generate a response including the digital signature. A successful verification of the digital signature using the public cryptographic key stored in the autonomous program protocol is required by the autonomous program protocol to process the request.

Abstract: A method for mitigating network function (NF) update and deregister attacks includes, at an NF repository function (NRF) implemented by at least one processor, receiving, from an NF, an NFRegister request including a hash of a first authentication string, an NF instance identifier, and an NF profile. The method further includes storing the hash of the first authentication string. The method further includes registering the NF by storing the NF profile in an NF profile database. The method further includes receiving a first NFUpdate or NFDeregister request including the NF instance identifier. The method further includes using the stored hash of the first authentication string to validate or reject the first NFUpdate or NFDeregister request.

Abstract: Embodiments determine an eligibility of a request for an operation event from a client using a distributed ledger that comprises a plurality of nodes. Embodiments send the request from the client to a primary node of the distributed ledger, the request comprising a first token. Embodiments validate the node at the primary node with a token provider, broadcast the request to all secondary nodes of the distributed ledger and perform a service by the primary node and the secondary nodes in response to the request. Embodiments send a reply to the client from each of the primary node and the secondary nodes when the service is performed successfully by the respective node, the reply comprising a second token. Embodiments then determine an eligibility of the client for the request based on a count of a number of second tokens received by the client.

Abstract: To efficiently determine cross tabulation while keeping confidentiality. A flag conversion unit (11) converts a format of a share of a flag that represents a boundary between groups. A boundary number setting unit (12) generates a share of a vector in which the next element number is set when the flag representing a group boundary is true and the number of records is set when the flag is false. A sorting unit (13) generates a share of a sorted vector which has been sorted by a permutation that moves vectors such that the last elements of each group are sequentially arranged from beginning A count calculation unit (14) sets a difference between the value of one element and the value of the preceding element in the sorted vector and generates a share of a vector representing the number of records in each group.

Abstract: Secure emergency vehicular communication is described herein. An example apparatus can include a processing resource, a memory having instructions executable by the processing resource, and an emergency communication component coupled to the processing resource. The emergency communication component can be configured to generate an emergency private key and an emergency public key in response to being within a particular proximity from a vehicular communication component associated with a vehicular entity and in response to receiving a vehicular public key from the vehicular communication component. The emergency communication component can be configured to provide the emergency public key, an emergency signature, and notification data to the vehicular communication component.

Abstract: An example operation may include one or more of receiving data of an item from a data source, the data comprising one or more of historical data and quality data of the item, generating a cryptographic hash of the data, constructing a data block comprising the cryptographic hash of the data and a unique identifier of the item, and storing the constructed data block within a hash-linked chain of data blocks.

Abstract: The invention relates to a method and system that aggregates client data and cyber indicators to authenticate a client. The system comprises: a computer server comprising at least one computer processor and coupled to the memory, programmed to: receive, via an electronic input, an authorization request from a requester for access to an account; identify a client identifier associated with the authorization request; using the client identifier, retrieve, from the memory, a client profile, wherein the client profile is based on an aggregation of client data, client device data, claims data and cyber data; generate a risk score based on the aggregated combination of the client data, client device data, claims data and cyber data to determine whether the requester is authenticated to access the account; and automatically apply an authentication determination to the authorization request.

Abstract: Provided is a method for secure configuration of a device, having the following steps:—ascertaining a block chain data structure based on a cryptocurrency, wherein the block chain data structure has at least one block containing transaction data;—ascertaining at least one transaction belonging to the transaction data, the transaction having a piece of device configuration information;—examining the block chain data structure; and—configuring the device on the basis of the piece of device configuration information on successful examination. A complex independent examination by the device or an entity associated with the device is dispensed in an advantageous manner. The complex step of examination of the actual transaction is transferred to the block chain network and the client merely needs to validate a block chain data structure on the basis of a stability of the block chain.

Abstract: A method includes broadcasting, by a node computer, a propose message comprising a new block for a blockchain to a plurality of node computers in a network shard. The node computer can receive at least one vote message from the plurality of node computers, the at least one vote message indicating verification of the new block. The node computer can, after a predetermined amount of time, receive a plurality of pre-commit messages comprising at least the new block and a block certificate created based on the at least one vote message. If the number of received pre-commit messages of the plurality of pre-commit messages is greater than a quorum value associated with the network shard, the node computer can commit the new block to the blockchain.

Abstract: The disclosed technology teaches a method for delegating user access to one of a set of decentralized networked nodes that share a private permissioned blockchain data structure or a decentralized personal ledger. The method also includes a credentialing logic configured to receive from one of a set of decentralized networked nodes, authority to access a network node to invoke services that conduct operations using a private permissioned blockchain data structure or decentralized personal ledger to which access has been limited to users authorized by one of the set of decentralized networked nodes; and an access delegation logic configured to create a delegation of at least some of the authority to access the network node for a limited duration of time and to send the delegation to a recipient identified to receive delegated authority.

Abstract: A method for maintaining a consistent blockchain ledger for storing commitments across multiple separate blockchains includes: storing a blockchain comprised of a plurality of blocks, each block including at least a block header and one or more blockchain data values; receiving a base commitment from a first node, where the first node is included in a first blockchain network; generating a first new block including at least a first block header and the received base commitment; storing the first new block in the blockchain; receiving a state commitment from an additional node included in each of at least two additional blockchain networks; generating an additional new block including at least an additional block header and each received state commitment; and storing the additional new block in the blockchain.