Abstract: A system for decentralized privacy-preserving clinical data evaluation includes a plurality of sites of a decentralized private network, a memory device for storing program code, and at least one processor device operatively coupled to the memory device and configured to execute program code stored on the memory device to, for each of the local datasets, evaluate the local dataset using each of the local models to obtain one or more features related to a degree of outlierness, determine at least one outlier dataset based on the one or more features, and implement one or more actions based on the determination.

Abstract: An update management method is used in an onboard network system having a plurality of electronic control units (ECUs) that performs communication via a network and connects to an external tool. The method includes a master ECU storing a shared key and an expiration date of the shared key. When the master ECU receives an update message, verifying update authority information indicating authority of the external tool, and determining whether or not a transmission of the update message is within a range of an authority of the external tool. The method also includes acquiring external point-in-time information, determining whether or not the external point-in-time information is before the expiration date, and transmitting an alert message prompting an update of the shared key. The ECUs are prioritized according to a designated level of authority, including chassis-related functions, body-related functions, safety/comfort functions, and telematics/infotainment functions.

Abstract: Techniques are disclosed herein for managing and sharing sensitive information using blockchain technology. In certain embodiments, a transaction may be generated using information and a set of conditions, wherein satisfying the set of conditions by a requester of the information determines access to the information by the requester and the set of conditions include a count for a number of queries allowed for accessing the information. As requesters access the information, the count is decremented or adjusted and updated transactions are stored on the blockchain ledger until the count adjusts to a predetermined number, such zero. The information and the set of conditions may be defined by the user.

Abstract: The present disclosure relates to a method for user authentication. In particular, the present disclosure relates to a computer implemented method for session based one-time authentication of a client operating an electronic device, typically using one of a biometric data relating to the user and/or information provided at a remote electronic device. The disclosure device server also relates to a corresponding authentication system and to a computer program product.

Abstract: Disclosed herein are consensus methods, systems, and media. One of the methods includes: splitting, by a primary node in a consensus network, transactions into data fragments, wherein a number of data fragments equals that of the nodes; constructing a Merkle tree based on the data fragments; constructing first messages, wherein each first message comprises a data fragment, a Merkle tree path, and a root hash of the Merkle tree, and wherein each first message corresponds to a respective data fragment and a respective node; sending each first message to the respective node; saving one first message to the primary node; constructing, a second message based on the first message corresponding to the primary node; and broadcasting the second message to the consensus network; receiving other second messages broadcasted by other nodes; and determining, whether a consensus on the transactions is reached based on the other second messages.

Abstract: A system for detecting artifacts associated with a cyber-attack features a cybersecurity intelligence hub remotely located from and communicatively coupled to one or more network devices via a network. The hub includes a data store and retroactive reclassification logic. The data store includes stored meta-information associated with each prior evaluated artifact of a plurality of prior evaluated artifacts. Each meta-information associated with a prior evaluated artifact of the plurality of prior evaluated artifacts includes a verdict classifying the prior evaluated artifact as a malicious classification or a benign classification. The retroactive reclassification logic is configured to analyze the stored meta-information associated with the prior evaluated artifact and either (a) identify whether the verdict associated with the prior evaluated artifact is in conflict with trusted cybersecurity intelligence or (b) identify inconsistent verdicts for the same prior evaluated artifact.

Abstract: A simple authentication method using browser web storage according to an embodiment of the present disclosure includes the operations in which: on the basis of a received user key, a server generates an authentication token, a public key and a private key, stores the same in a session, and transmits the authentication token, the public key and a session key corresponding to the session to a terminal; by using the received public key, the terminal encrypts PIN number data entered by a user, and transmits the encrypted data along with the received session key to the server; and by using the private key corresponding to the received session key, the server decrypts the PIN number data to perform simple authentication, wherein the user key and the PIN number data may be stored in the terminal web storage and set differently for each device or browser.

Abstract: Methods and systems can prove to an independent verifier that multiple activities registered on decentralized BASE network belong to the same user, without revealing true identity of the user. A selective linkability algorithm provides for linking together activities done under various of user's pseudonyms, without revealing the true user's identity. A reward calculation mechanism calculates a reward based on activities linked using the linking proof. For example, if user can prove that she already successfully completed 10 prior transactions, she might be deemed more valuable to the business making a new offer and hence eligible for a higher reward.

Abstract: A system for supporting Enhanced Privacy Identification (EPID) is provided. The system may include a host processor operable to communicate with a remote requestor, where the host processor needs to perform signature revocation checking in accordance with EPID. To perform signature revocation checking, the host processor has to perform either a sign or verify operation. The host processor may offload the sign/verify operation onto one or more associated hardware acceleration coprocessors. A programmable coprocessor may be dynamically configured to perform the desired number of sign/verify functions in accordance with the requirements of the current workload.

Abstract: Systems and methods for automated testing of network security controls are provided. According to one embodiment, information regarding multiple desired security controls for a protected network are received by a network device. Network traffic configured to validate an extent of conformance by the protected network with the desired security controls is generated by the network device. The generated network traffic is transmitted by the network device onto the protected network. An assessment is performed by the network device regarding how network security policies configured within the protected network process the generated network traffic.

Abstract: Systems, methods and devices for validating and performing operations on homomorphically encrypted data are described herein. The methods include securely transmitting and extracting information from encrypted data without fully decrypting the data. A data request may include an encrypted portion including a set of confidential data. One or more sets of encrypted comparison data may be then retrieved from a database in response to the data request. The encrypted set of confidential data from the data request is then compared with each set of encrypted comparison data using one or more homomorphic operations to determine which set of encrypted comparison data matches the encrypted set of confidential data. If there is a match, this validates the set of confidential data. An encrypted indicator is then generated indicating success or failure in validating the set of confidential data, which may then be forwarded to a party associated with the data request.

Abstract: Methods, systems and apparatus, including computer programs encoded on computer storage media, for acquiring a blockchain smart contract-based transaction hash. In one example, the method includes: adding, to an instruction set of a blockchain virtual machine associated with a blockchain network, a transaction hash acquisition instruction; deploying, in the blockchain virtual machine, transaction hash acquisition logic corresponding to the transaction hash acquisition instruction; adding, to an instruction set of a smart contract compiler, the transaction hash acquisition instruction; generating, by using the smart contract compiler, a service smart contract that includes at least the transaction hash acquisition instruction; and deploying, in the blockchain network, the service smart contract that includes at least the transaction hash acquisition instruction.

Abstract: Systems, methods, and non-transitory computer-readable media can receive a message transmitted over a robotics framework implemented on a vehicle. A determination can be made that the message satisfies criteria for multi-threaded hashing. The message can be divided into two or more message segments. A hash can be independently computed for each message segment of the two or more message segments to generate two or more message segment hashes. A message hash can be determined for the message based on the two or more message segment hashes.

Abstract: Disclosed herein are methods, systems, and apparatus, including computer programs encoded on computer storage media, for implementing cross-chain data trusted management. One of the computer-implemented methods includes obtaining cross-chain data by a relay from a second blockchain based on a cross-chain request that is from a first blockchain, where a trusted execution environment (TEE) is loaded onto the relay. The relay obtains processed data by loading a preconfigured management rule set to process the cross-chain data based on a management rule comprised in the preconfigured management rule set. A response result is returned by the relay, where the response result includes an identity signature of the relay and the processed data.

Abstract: A method for creating and exchanging a copyright for each artificial intelligence (AI)-generated multimedia is described. An AI model and a reference input for a multimedia is received from a user. If the reference input complies with system policies, an AI-generated multimedia is generated from the reference input using the AI model. The AI-generated multimedia is compared against works of a same type in a blockchain and decentralized file storage and if the AI-generated multimedia fails to match the works, the AI-generated multimedia is categorized as having originality. A copyright for the AI-generated multimedia and the AI-generated multimedia is stored. An exchange is facilitated with a buyer using cryptocurrency and is written to a blockchain.

Abstract: An example operation may include one or more of connecting, by a participating node, to a blockchain configured to store user assets, receiving, by the participating node, login data from a user, receiving, by the participating node, an asset transfer request from the user identified by the login data, the asset transfer request including identification data of an asset recipient, confirming, by the participating node, that the user is an owner of the asset based on a previous asset transfer transaction associated with the user, verifying, by the participating node, integrity and validity of the asset based on blockchain records, determining, by the participating node, that the asset recipient is a registered user of the blockchain, in response to the determining, by the participating node, that the asset recipient is the registered user of the blockchain, encrypting, by the participating node, an asset transfer transaction by a public key associated with a private key of an auditor; and providing, by the par

Abstract: A framework system is present that provides an end-to-end solution for user on-boarding, storing, securing, configuring, authenticating of the target person (grantee user), and transmittal of digitized documents assets. The framework system is preferably a multi-tenant cloud based system, although other systems may be used. The system processes multiple inputs to cognitively determine implementation (cognitive decision making) of digitized assets to a grantee user or target user without human intervention.

Abstract: In a storage system including an FPGA having a logic which executes a prescribed processing and a plurality of devices coupled to the FPGA via a bus, the logic of the FPGA is configured to: attempt to access the plurality of devices and, based on a status of access to the devices, determine whether or not there is an abnormality in the access to the devices; and when it is determined that there is an abnormality in the access to a device, reset an IF unit for performing a communication processing via a bus of the device.

Abstract: A method that automatically generates blacklists for a sandbox application. The method first obtains a set of disassembled operating system (OS) dynamic-link libraries (DLLs) and then identifies application programming interfaces (API) functions that have respective kernel interruptions. The identified API functions that have kernel instructions are saved to an interrupt list. Based on the interrupt list, a processor generates a blacklist that includes for each of the DLLs, the identified API functions in the interrupt list, all API functions that directly or indirectly invoke one of the identified API functions in the interrupt list via one or more nested API functions. The method outputs the blacklist to the sandbox application that operates on a sample file to emulate API functions of the sample file that match the blacklist. All other APIs not identified as being blacklisted, are then considered whitelisted and are allowed to run natively.

Abstract: Embodiments are directed to a method of enabling cloud applications to act on behalf of a user, including: providing, by the processor, a plugin integrated with a web browser; configuring, by the processor, a plurality of cloud applications and one or more identity providers in the plugin; wherein the plurality of configured cloud applications are associated with the one or more identity providers; authenticating, by the processor, a user identity through one of the plurality of configured cloud applications; generating, by the one or more identity providers, an identity token responsive to authentication; providing, by the one or more identity providers, each of the plurality of configured cloud applications with the identity token; and acting, by any of the plurality of configured cloud applications, on behalf of the user with the identity token.