Abstract: A method for generating, by a monitoring program, a list of relevant documents, related to a search query, comprising tracking activities of first user pursuant to retrieval of a first list of primary documents resulting from a first search query; assigning a user interest score to a secondary document whose identifier is referenced within the contents of a primary or another secondary document; adding said identifier and score to a list of relevant documents wherein said list is associated with said first query and said first user; persisting said list of relevant documents to store.

Abstract: Method for embedding a session secret, within an application instance, comprising the steps of generating an ephemeral session secret by a master application. Embedding, by master application, secret bytes, within application bytes of a slave application. Calculating said ephemeral session secret, by slave application, from said embedded secret bytes, when slave application is executed.

Abstract: A secure portable file storage device (SPFSD) comprising a controller having at least two control modes, a logical switch and a storage area wherein access level to said storage area is determined by the state of said logical switch and wherein A first control mode permits modifying the state of said logical switch and a second control mode does not permit such modifications; and Entering said first control mode requires first authenticating to said controller; and Said logical switch state is persistent; and Changing a state of a logical switch does not affect the contents of a related storage area.

Abstract: A method for generating, by a monitoring program, a list of relevant documents, related to a search query, comprising tracking activities of first user pursuant to retrieval of a first list of primary documents resulting from a first search query; assigning a user interest score to a secondary document whose identifier is referenced within the contents of a primary or another secondary document; adding said identifier and score to a list of relevant documents wherein said list is associated with said first query and said first user; persisting said list of relevant documents to store.

Abstract: Methods implemented by enhanced Password Manager for protecting against Pharming and Spyware comprising matching a saved record with certificate of website and withholding saved record's data if a match is not found. Further comprising, scrambling of retrieved data with a scrambling key wherein said key is synchronized with website.

Abstract: Methods for extending a security token based identity system to handle legacy, non security token identity data requests, by mapping non supported requests to supported ones.

Abstract: Method for embedding a session secret, within an application instance, comprising the steps of generating an ephemeral session secret by a master application. Embedding, by master application, secret bytes, within application bytes of a slave application. Calculating said ephemeral session secret, by slave application, from said embedded secret bytes, when slave application is executed.

Abstract: A SPFSD comprising content entities stored as sets of storage blocks accessible to block input/output operations, requested by a requestor external to said SPFSD, wherein a storage block is further associated with security attributes not accessible to non authenticated requests and wherein an operation on said block is subject to access permissions determined by said attributes.

Abstract: A Token based, multi-Server and multi-protocol authentication system comprising a plurality of Servers employing potentially a plurality of Proof protocols each requiring a Proof of Token presence before accepting login request from a possessor of said Token and a plurality of Token apparatus capable of communicating with said Servers and storing at least a first private key accessible only to Token, whereby said first key is associated with a Manufacturer Certificate; and whereby each Token is capable of executing a plurality of Proof of possession protocols such that for each Server of the plurality of Servers there is at least one protocol common to Token and Server.

Abstract: A system and method for controlling the use of addresses by using address computation techniques is described. A system comprising alias address creation software generates multiple alias addresses representing a single real address of a particular recipient. Each alias address is computed from data representing a prospective sender and a recipient. A sender is provided with an alias address by a recipient for communicating back to said recipient. Messages sent by a sender, employing alias addresses are analysed to a forwarding server which validates each alias address and checks it against a blocking list. Messages which pass these checks are directed to the recipient's real address registered with said forwarding server.

Abstract: Methods for creating and authenticating a message sent from a client over a communication link to a server comprising the steps of creating a message at client containing client identification data adding to said message a first anti-spoof data element computed as a function of a key derived from a shared secret and communication link attribute data, sending said message from client to server over communication link, verifying at server said anti-spoof data element by computing a verification function of anti-spoof element data, server link attribute data and server key computed from said shared secret related to client. These methods are also used for enrolling clients to an authentication system employing authenticated anonymous client certificates.

Abstract: A system and methods for blocking submission of online forms to suspicious web sites comprising detection of sensitive form fields before a form is submitted, analysis of URL and certificate target sites against security criteria to generate an alert codes and matching alert code with blocking criteria to generate a block submission message.

Abstract: A system and method for controlling the use of addresses by using address computation techniques is described. A system comprising alias address creation software generates multiple alias addresses representing a single real address of a particular recipient. Each alias address is computed from data representing a prospective sender and a recipient. A sender is provided with an alias address by a recipient for communicating back to said recipient. Messages sent by a sender, employing alias addresses are analysed to a forwarding server which validates each alias address and checks it against a blocking list. Messages which pass these checks are directed to the recipient's real address registered with said forwarding server.

Abstract: A method for prevention of unauthorized copying from information recording media, such as diskettes, comprising the steps of altering the information storage characteristics of the information recording media at selectable locations thereon, analyzing the information recording media after the alteration to provide a storable indication of the precise locations of the alteration, and recording onto the altered recording media information the copying of which is to be resisted, the information thus recorded including said storable indication of the precise locations of the alteration and instructions to user apparatus to verify the altered status of the recording media at said precise locations. A protected recording medium is also disclosed and claimed.