Abstract: A static information pipeline is configured to generate formatted static data recording information about malware generated during static analyses of malware. A dynamic information pipeline is configured to generate formatted dynamic data recording information about malware generated during dynamic analyses of malware performed within a network to be protected by the system. A datastore is configured to receive and store the formatted static data; receive and store the formatted dynamic data; generate indices that link stored formatted static data and stored formatted dynamic data that share similar properties; and respond to queries using the indices.

Abstract: By extending a Basic-CAN controller and/or a Full-CAN controller with a RX filter device, it is possible to compare the CAN identifiers intended for transmission for the CAN controller with those of the received CAN frames. In the case of a match, an interrupt is generated. When no hardware expansion is intended, the RX-FIFO or TX-FIFO of a Full-CAN controller is used for detecting an intrusion.

Abstract: Embodiments disclosed herein may relate to systems and methods for secure authentication that enable a user to set up an account or log in an existing account upon an existing user vouching for the user. Embodiments disclosed herein comprise a central server that verifies one or more attributes of the user by transmitting multiple decentralized verification notifications to multiple existing users. Upon receiving a verification quorum, the server may then authenticate the user and grant the user access to a network and/or a database.

Abstract: An information processing apparatus that manages card-related information relating to a card used by a user for authentication, includes a memory configured to store a plurality of instructions, which when executed by one or more processors, cause the one or more processors to acquire identification information of the card. The one or more processors are further caused to store, in a memory, the identification information of the card and a request date and time in association with each other in response to acquiring an authentication request using the card. The one or more processors are further caused to, when a predetermined time period or more has passed from the request date and time at a predetermined timing, delete the card-related information associated with the identification information of the card corresponding to the request date and time from which the predetermined time period or more has passed.

Abstract: An authority transfer system includes a transmitting unit configured to transmit an authorization code request from a client to an authorization server and a receiving unit configured to receive an authorization code response, and a responding unit configured to return, by the authorization server, the authorization code response based on the destination information included in the authorization code request.

Abstract: The present invention discloses a system and a method for analyzing and authenticating scenarios and actions that are taking place in a plant or a factory. Said analysis comprising the steps of: monitoring a plurality of data streams, originating from a plurality of independent sources within the plant. Said sources including at least part of production machines, machine sub-units, and independent indicators and sensors within the plant. •correlating between two or more monitored data streams, each relating to a specific action occurring within the plant, but originating from different data sources, or are of different data types; •analyzing said data stream correlations; and •obtaining specific characteristics that indicate the occurrence of specific actions within the plant.

Abstract: A new approach is proposed that contemplates systems and methods to support human activity tracking and authenticity verification of human-originated digital assets. First, activities performed by a producer while he/she is constructing a digital asset, e.g., an electronic message, are captured. Information/metadata of the captured activities are then packaged/encapsulated inside the constructed digital asset, wherein such metadata includes but is not limited to mouse and/or keyboard activities, software tools used, and other digital traces of the captured human activities. Once the digital asset is transmitted and received by a consumer, the metadata included in the digital asset is unpacked and analyzed to determine various levels of authenticity of the digital asset with respect to whether the digital asset is originated manually by a human being or automatically by a software program. The consumer may then take actions accordingly based on the level of authenticity of the received digital asset.

Abstract: Disclosed are various embodiments providing user authentication through registered device communications. An authentication token is generated for a user account. The authentication token is embedded within a digital content item. The digital content item is sent to a first client device that is registered to the user account. A user is authenticated for access to the user account based at least in part on the user providing the authentication token embedded within the digital content item.

Abstract: Technologies related to trusted user account login are disclosed. In one implementation, a temporary trusted login token request for accessing a service page from an originating application is received. A temporary trusted login token based on the temporary trusted login token request is generated. The temporary trusted login token is sent to the originating application. A service page access request is received for accessing the service page generated based on the temporary trusted login token. The temporary trusted login token including the service authorization from the service page access request is identified. Whether the service page is included in the one or more service pages that are identified by the service authorization is determined, and trusted login to the service page from the originating application is allowed if the service page is included in the one or more service pages.

Abstract: An information processing apparatus includes a synchronization unit performing a process of time-of-day synchronization with a time-of-day synchronization server, and an authentication unit performing authentication by a first authentication method. In a case where the authentication by the first authentication method fails and the process of time-of-day synchronization is not performed within a set period of time, the authentication unit performs the authentication by a second authentication method. Thus, it is possible to improve convenience of the information processing apparatus.

Abstract: Methods, computer program products, and systems are presented. The method computer program products, and systems can include, for instance: embedding a signature sound on audio content of a first conference in which a first client computer device is connected, wherein the audio content includes confidential content, the signature sound being a sound that is machine detectable and human inaudible; emitting through an audio output device of the first client computer device the audio content of the first conference having embedded thereon the signature sound; receiving by an audio input device of a second client computer device the audio content of the first conference having embedded thereon the signature sound; and in response to the receiving activating a process to mitigate loss of the confidential content.

Abstract: A device may determine whether a mobile device is associated with a first identifier that is associated with a first mobile network based on determining that a second identifier associated with the mobile device is associated with a second mobile network. The first identifier may provide authorization for the mobile device to a private network associated with the first mobile network. The device may transmit, based on determining that the mobile device is associated with the first identifier, a security challenge to the mobile device. The device may determine, based on receiving a response to the security challenge from the mobile device, whether the response to the security challenge satisfies the security challenge. The device may provide, based on determining that the response to the security challenge satisfies the security challenge, the mobile device with access to the private network.

Abstract: The disclosed computer-implemented method for malware classification may include receiving dynamic analysis traces that include event descriptions regarding malware programs, and labels regarding classes of malware programs; performing a first mapping of the event descriptions to a first set of vector representations, wherein order of the events is not taken into account by the first mapping; performing a second mapping of the event descriptions to a second set of vector representations, wherein order of the events is taken into account by the second mapping; combining the first set of vector representations and the second set of vector representations into a combined set of vector representations; inputting the combined set of vector representations, along with the labels, into an autoencoder; and training the autoencoder to generate a feature space representation that correlates identified features with classes of malware. Various other methods, systems, and computer-readable media are also disclosed.

Abstract: One or more malware data pipelines is configured to provide malware data that includes original data fields identifying information for detected malware instances and corresponding files that are associated with the detected malware instances. Malware enrichment circuitry is configured to identify additional information to include in enriched data fields for the detected malware instances, the additional information being identified from one or more of: the original data fields, the corresponding files, and one or more third party services. A datastore is configured to store the malware data with the original data fields and the enriched data fields, wherein the datastore includes indices for both the original data fields and the enriched data fields to permit for searching and analysis across the original data fields and the enriched data fields.

Abstract: An information acquisition device and method. The information acquisition device includes a first control circuitry. The first control circuitry is configured to acquire user information including a user's voiceprint, and a user name indicated by the user's voiceprint, based on an authentication audio data acquired in a state where functions related to an information acquisition are restricted, execute a user authentication to cancel the restrictions on the information acquisition when the user's voiceprint agrees with a registered user's voiceprint which is a voiceprint of a preliminarily registered user, and the user name agrees with a registered user name indicated by the registered user's voiceprint, perform the information acquisition after the user authentication is executed, and generate an authenticated data so that the information acquired by the information acquisition is associated with the user name.

Abstract: A personal data providing system includes a plurality of first information processing apparatuses. Each of the first information processing apparatuses executes a first process including transmitting an inquiry for an encrypting method of an individual identifier to a terminal of each of individuals, and encrypting each of the individual identifiers into a code based on a response to the inquiry received from the terminal of each of the individuals, and corresponding the code of each of the individuals to personal data of each of the individuals.

Abstract: Systems and methods for computing a private set intersection are disclosed. A method includes storing, at a sender device, a first set of values. The method includes receiving, from a receiver device, a homomorphic encryption of a receiver device value. The method includes computing a homomorphically encrypted number based on a difference between the homomorphic encryption of the receiver device value and each value in the first set of values, and based on a hash function of the encryption of the receiver device value. The method includes transmitting the homomorphically encrypted number to the receiver device for determination, at the receiver device, whether the receiver device value is in the first set of values.

Abstract: An unmanned autonomous device includes an isolation kernel having plurality of drivers respectively dedicated to a plurality of subsystems. The drivers are configured to facilitate communication between the subsystems. A gateway in the unmanned autonomous device is configured to control routing of data between the subsystems via the drivers respectively dedicated to the subsystems, such that data is only allowed to be passed between the subsystems along predefined routes.