Abstract: A system can generate a non-sensitive identifier for sensitive data at a spoke in a hub-and-spoke configuration, wherein the spoke is configured to receive management commands by a hub device of the hub-and-spoke configuration. The system can store an association between the non-sensitive identifier and the sensitive data, resulting in a stored association. The system can send, to the hub device, a first indication of the non-sensitive identifier, and a second indication of a type of data of the sensitive data. The system can receive, from the hub device, a management command identifying the non-sensitive identifier. The system can identify the sensitive data based on the stored association. The system can perform the management command based on the sensitive data.

Abstract: Described herein are methods and a system for managing devices in remote data centers using a cloud service user interface (UI). The cloud service UI receives device management requests to device management application program interface (API). At the cloud service side, the device management requests to device management application program interface (API) are intercepted and converted to device cloud management REST interfaces. The device cloud management REST interfaces to a remote data center of devices, and converted to device native API used to manage a specific device.

Abstract: Trustable delivery of a product uses a package with a printed label having a unique product ID, an RFID marker applied to the product that contains the ID, and a smart chip inside the product that contains the ID and a digital key. The ID from the RFID marker is compared to the label for initial validation of the package. The smart chip is further interrogated to generate an encoded value of the ID, such as a hash value, using the digital key. The hash value is then used to authenticate the ID, thereby verifying that the product as delivered is the original, untampered product. The product ID and the hash value are recorded in a blockchain ledger associated with the product. In this manner, the packaged product can be validated by any party in the delivery chain, e.g., manufacturer, seller, distributor, delivery service, and final recipient.

Abstract: An example operation may include one or more of generating, by a first blockchain client, a transaction to a blockchain network to transfer a document, transferring over a private channel, by a second blockchain client, a first key to the first blockchain client, the private channel providing a point-to-point connection between the first and second blockchain clients, encrypting the document using a shared key, transferring, by the first blockchain client, the encrypted document over the private channel, generating, by the second blockchain client, a transaction to acknowledge receipt of the encrypted document, and transferring the shared key encrypted with the first key.

Abstract: An example operation includes one or more of selecting, by a trust maintainer node, at least two blockchain nodes to be assigned as non-human intelligent nodes controlled by separate consortiums, identifying, by the trust maintainer node, a plurality of blockchain nodes that are not assigned as non-human intelligent nodes, assigning, by the trust maintainer node, a trust value to each of the plurality of the blockchain nodes based on voting histories of each of the plurality of the blockchain nodes to determine an overall trust value of a blockchain, and responsive to the overall trust value of the blockchain being below a minimum threshold, selecting at least one node from the plurality of the nodes to be assigned as the non-human intelligent node to increase the overall trust value of the blockchain.

Abstract: Described are techniques for an access management protocol including a method comprising associating a granted permission set and a constrained permission set to a user profile in an access management system. Respective granted permissions in the granted permission set authorize the user profile to perform the respective granted permissions, and respective constrained permissions in the constrained permission set preclude the user profile from performing the respective constrained permissions. The method further comprises receiving a permission-based request at the access management system and from the user profile and determining that the permission-based request is associated with a permission that is included in both the granted permission set and the constrained permission set. The method further comprises rejecting the permission-based request.

Abstract: A method, system, and computer program product for detecting a network application security question is provided. The method includes receiving permission to access social media sources of a user. The social media sources and Internet based sources of the user are monitored in response to receiving the permission and associated data is generated and stored. A request for access to a secure account of the user is received and a list of security questions is presented to the user. The list of security questions is analyzed with respect to the data and each security question is ranked. An answer to a question of the list is received and analyzed and security attributes of the answer with respect to a potential malicious attempt to provide a predicted answer to for access to secure account are determined. A resulting security process with respect to enabling access to the secure account is executed.

Abstract: An example operation includes one or more of selecting, by a trust maintainer node, at least two blockchain nodes to be assigned as non-human intelligent nodes controlled by separate consortiums, identifying, by the trust maintainer node, a plurality of blockchain nodes that are not assigned as non-human intelligent nodes, assigning, by the trust maintainer node, a trust value to each of the plurality of the blockchain nodes based on voting histories of each of the plurality of the blockchain nodes to determine an overall trust value of a blockchain, and responsive to the overall trust value of the blockchain being below a minimum threshold, selecting at least one node from the plurality of the nodes to be assigned as the non-human intelligent node to increase the overall trust value of the blockchain.

Abstract: An example operation may include one or more of connecting, by a feedback controller node, to a blockchain network configured to process transaction proposals through a plurality of endorser nodes connected to an orderer node, receiving, by the feedback controller node, reports from the orderer node that reflect performance of the plurality of the endorser nodes, assigning, by the feedback controller node, rankings to the plurality of the endorser nodes based on the reports, and ordering the transaction proposals to be executed by the plurality of the endorser nodes based on the assigned rankings.

Abstract: A method, system, and computer program product for detecting a network application security question is provided. The method includes receiving permission to access social media sources of a user. The social media sources and Internet based sources of the user are monitored in response to receiving the permission and associated data is generated and stored. A request for access to a secure account of the user is received and a list of security questions is presented to the user. The list of security questions is analyzed with respect to the data and each security question is ranked. An answer to a question of the list is received and analyzed and security attributes of the answer with respect to a potential malicious attempt to provide a predicted answer to for access to secure account are determined. A resulting security process with respect to enabling access to the secure account is executed.

Abstract: Described are techniques for an access management protocol including a method comprising associating a granted permission set and a constrained permission set to a user profile in an access management system. Respective granted permissions in the granted permission set authorize the user profile to perform the respective granted permissions, and respective constrained permissions in the constrained permission set preclude the user profile from performing the respective constrained permissions. The method further comprises receiving a permission-based request at the access management system and from the user profile and determining that the permission-based request is associated with a permission that is included in both the granted permission set and the constrained permission set. The method further comprises rejecting the permission-based request.

Abstract: Trustable delivery of a product uses a package with a printed label having a unique product ID, an RFID marker applied to the product that contains the ID, and a smart chip inside the product that contains the ID and a digital key. The ID from the RFID marker is compared to the label for initial validation of the package. The smart chip is further interrogated to generate an encoded value of the ID, such as a hash value, using the digital key. The hash value is then used to authenticate the ID, thereby verifying that the product as delivered is the original, untampered product. The product ID and the hash value are recorded in a blockchain ledger associated with the product. In this manner, the packaged product can be validated by any party in the delivery chain, e.g., manufacturer, seller, distributor, delivery service, and final recipient.

Abstract: An example operation may include one or more of connecting, by a committer node, to a main blockchain comprised of a plurality of initiator nodes, receiving, by the committer node, a transaction from an initiator node of the plurality of the initiator nodes and placing blocks of the transaction on the main blockchain, executing, by the committer node, a request from the initiator node of the plurality of the initiator nodes to branch off a sub-blockchain from the main blockchain, processing, by the committer node, the transaction in the sub-blockchain, detecting, by the committer node, a completion or an ending of the transaction in the sub-blockchain, in response to the detection of the completion of the transaction, committing the transaction to the main blockchain, in response to the detection of the ending of the transaction, terminating the transaction in the sub-blockchain, and discarding, by the committer node, the sub-blockchain.

Abstract: An example operation may include one or more of connecting, by a participating blockchain (BC) node, to a blockchain network configured to store a plurality of packages, selecting and downloading, by the participating BC node, a package containing a random code variant identified by a unique identifier (ID), executing, by the participating BC node, the package to calculate an outcome associated with the variant ID, receiving, by the participating BC node, votes on outcomes associated with the variant ID and votes on outcomes associated with different variant IDs from other nodes of the blockchain network, and analyzing, by the participating BC node, the votes to determine if the votes on the outcomes associated with the variant ID are different from the votes on the outcomes associated with the different variant IDs.

Abstract: An example operation may include one or more of generating, by a first blockchain client, a transaction to a blockchain network to transfer a document, transferring over a private channel, by a second blockchain client, a first key to the first blockchain client, the private channel providing a point-to-point connection between the first and second blockchain clients, encrypting the document using a shared key, transferring, by the first blockchain client, the encrypted document over the private channel, generating, by the second blockchain client, a transaction to acknowledge receipt of the encrypted document, and transferring the shared key encrypted with the first key.

Abstract: Mechanisms are provided to implement a recurring payment collection system for extending current quick response (QR) code payment methods to collect recurring payments from a customer. The recurring payment collection system sends a notification to the customer that a recurring payment is due in response to a recurring payment event occurring. The recurring payment collection system obtains a QR code for the recurring payment in response to the customer acknowledging the notification. The recurring payment collection system utilizes the QR code to request the recurring payment from a payment system. The recurring payment collection system acknowledges that the recurring payment has been made in responsive to the recurring payment being processed by the payment system.

Abstract: Approaches presented herein enable performing an oral health diagnosis of a user using an oral monitoring device fixed in the oral cavity. Specifically, an oral monitoring device collects jaw movement data as a user goes about daily living. An oral healthcare analysis is performed comparing current measurement data against abnormality classifications to identify abnormal jaw movement. If an abnormality is identified, an oral healthcare professional can be notified.

Abstract: Exposure of sensitive information to users and other servers is controlled by using a first security token which contains a user identity and one or more user credentials associated with a first user; a second security token which contains an identity of a token issuer and an identity of a first owning process; and at least a first trusted server which accesses a downstream computing service on behalf of the first user by substituting or combining the first security token and the second security token, while preventing the second security token from being exposed to the first user. This establishes a first security sensitivity level for the first user and a second security sensitivity level for the first trusted server, wherein the first security sensitivity level is a lower access level than the second security sensitivity level for the downstream service.

Abstract: An example operation may include one or more of connecting, by a committer node, to a main blockchain comprised of a plurality of initiator nodes, receiving, by the committer node, a transaction from an initiator node of the plurality of the initiator nodes and placing blocks of the transaction on the main blockchain, executing, by the committer node, a request from the initiator node of the plurality of the initiator nodes to branch off a sub-blockchain from the main blockchain, processing, by the committer node, the transaction in the sub-blockchain, detecting, by the committer node, a completion or an ending of the transaction in the sub-blockchain, in response to the detection of the completion of the transaction, committing the transaction to the main blockchain, in response to the detection of the ending of the transaction, terminating the transaction in the sub-blockchain, and discarding, by the committer node, the sub-blockchain.

Abstract: An example operation may include one or more of connecting, by a feedback controller node, to a blockchain network configured to process transaction proposals through a plurality of endorser nodes connected to an orderer node, receiving, by the feedback controller node, reports from the orderer node that reflect performance of the plurality of the endorser nodes, assigning, by the feedback controller node, rankings to the plurality of the endorser nodes based on the reports, and ordering the transaction proposals to be executed by the plurality of the endorser nodes based on the assigned rankings.