Abstract: An example operation may include one or more of connecting, by a feedback controller node, to a blockchain network configured to process transaction proposals through a plurality of endorser nodes connected to an orderer node, receiving, by the feedback controller node, reports from the orderer node that reflect performance of the plurality of the endorser nodes, assigning, by the feedback controller node, rankings to the plurality of the endorser nodes based on the reports, and ordering the transaction proposals to be executed by the plurality of the endorser nodes based on the assigned rankings.

Abstract: A method, system, and computer program product for detecting a network application security question is provided. The method includes receiving permission to access social media sources of a user. The social media sources and Internet based sources of the user are monitored in response to receiving the permission and associated data is generated and stored. A request for access to a secure account of the user is received and a list of security questions is presented to the user. The list of security questions is analyzed with respect to the data and each security question is ranked. An answer to a question of the list is received and analyzed and security attributes of the answer with respect to a potential malicious attempt to provide a predicted answer to for access to secure account are determined. A resulting security process with respect to enabling access to the secure account is executed.

Abstract: Described are techniques for an access management protocol including a method comprising associating a granted permission set and a constrained permission set to a user profile in an access management system. Respective granted permissions in the granted permission set authorize the user profile to perform the respective granted permissions, and respective constrained permissions in the constrained permission set preclude the user profile from performing the respective constrained permissions. The method further comprises receiving a permission-based request at the access management system and from the user profile and determining that the permission-based request is associated with a permission that is included in both the granted permission set and the constrained permission set. The method further comprises rejecting the permission-based request.

Abstract: Trustable delivery of a product uses a package with a printed label having a unique product ID, an RFID marker applied to the product that contains the ID, and a smart chip inside the product that contains the ID and a digital key. The ID from the RFID marker is compared to the label for initial validation of the package. The smart chip is further interrogated to generate an encoded value of the ID, such as a hash value, using the digital key. The hash value is then used to authenticate the ID, thereby verifying that the product as delivered is the original, untampered product. The product ID and the hash value are recorded in a blockchain ledger associated with the product. In this manner, the packaged product can be validated by any party in the delivery chain, e.g., manufacturer, seller, distributor, delivery service, and final recipient.

Abstract: An example operation may include one or more of connecting, by a committer node, to a main blockchain comprised of a plurality of initiator nodes, receiving, by the committer node, a transaction from an initiator node of the plurality of the initiator nodes and placing blocks of the transaction on the main blockchain, executing, by the committer node, a request from the initiator node of the plurality of the initiator nodes to branch off a sub-blockchain from the main blockchain, processing, by the committer node, the transaction in the sub-blockchain, detecting, by the committer node, a completion or an ending of the transaction in the sub-blockchain, in response to the detection of the completion of the transaction, committing the transaction to the main blockchain, in response to the detection of the ending of the transaction, terminating the transaction in the sub-blockchain, and discarding, by the committer node, the sub-blockchain.

Abstract: An example operation may include one or more of connecting, by a participating blockchain (BC) node, to a blockchain network configured to store a plurality of packages, selecting and downloading, by the participating BC node, a package containing a random code variant identified by a unique identifier (ID), executing, by the participating BC node, the package to calculate an outcome associated with the variant ID, receiving, by the participating BC node, votes on outcomes associated with the variant ID and votes on outcomes associated with different variant IDs from other nodes of the blockchain network, and analyzing, by the participating BC node, the votes to determine if the votes on the outcomes associated with the variant ID are different from the votes on the outcomes associated with the different variant IDs.

Abstract: An example operation may include one or more of generating, by a first blockchain client, a transaction to a blockchain network to transfer a document, transferring over a private channel, by a second blockchain client, a first key to the first blockchain client, the private channel providing a point-to-point connection between the first and second blockchain clients, encrypting the document using a shared key, transferring, by the first blockchain client, the encrypted document over the private channel, generating, by the second blockchain client, a transaction to acknowledge receipt of the encrypted document, and transferring the shared key encrypted with the first key.

Abstract: Mechanisms are provided to implement a recurring payment collection system for extending current quick response (QR) code payment methods to collect recurring payments from a customer. The recurring payment collection system sends a notification to the customer that a recurring payment is due in response to a recurring payment event occurring. The recurring payment collection system obtains a QR code for the recurring payment in response to the customer acknowledging the notification. The recurring payment collection system utilizes the QR code to request the recurring payment from a payment system. The recurring payment collection system acknowledges that the recurring payment has been made in responsive to the recurring payment being processed by the payment system.

Abstract: Approaches presented herein enable performing an oral health diagnosis of a user using an oral monitoring device fixed in the oral cavity. Specifically, an oral monitoring device collects jaw movement data as a user goes about daily living. An oral healthcare analysis is performed comparing current measurement data against abnormality classifications to identify abnormal jaw movement. If an abnormality is identified, an oral healthcare professional can be notified.

Abstract: Exposure of sensitive information to users and other servers is controlled by using a first security token which contains a user identity and one or more user credentials associated with a first user; a second security token which contains an identity of a token issuer and an identity of a first owning process; and at least a first trusted server which accesses a downstream computing service on behalf of the first user by substituting or combining the first security token and the second security token, while preventing the second security token from being exposed to the first user. This establishes a first security sensitivity level for the first user and a second security sensitivity level for the first trusted server, wherein the first security sensitivity level is a lower access level than the second security sensitivity level for the downstream service.

Abstract: An example operation may include one or more of connecting, by a committer node, to a main blockchain comprised of a plurality of initiator nodes, receiving, by the committer node, a transaction from an initiator node of the plurality of the initiator nodes and placing blocks of the transaction on the main blockchain, executing, by the committer node, a request from the initiator node of the plurality of the initiator nodes to branch off a sub-blockchain from the main blockchain, processing, by the committer node, the transaction in the sub-blockchain, detecting, by the committer node, a completion or an ending of the transaction in the sub-blockchain, in response to the detection of the completion of the transaction, committing the transaction to the main blockchain, in response to the detection of the ending of the transaction, terminating the transaction in the sub-blockchain, and discarding, by the committer node, the sub-blockchain.

Abstract: An example operation may include one or more of connecting, by a feedback controller node, to a blockchain network configured to process transaction proposals through a plurality of endorser nodes connected to an orderer node, receiving, by the feedback controller node, reports from the orderer node that reflect performance of the plurality of the endorser nodes, assigning, by the feedback controller node, rankings to the plurality of the endorser nodes based on the reports, and ordering the transaction proposals to be executed by the plurality of the endorser nodes based on the assigned rankings.

Abstract: Approaches presented herein enable performing an oral health diagnosis of a user using an oral monitoring device fixed in the oral cavity. Specifically, an oral monitoring device collects jaw movement data as a user goes about daily living. An oral healthcare analysis is performed comparing current measurement data against abnormality classifications to identify abnormal jaw movement. If an abnormality is identified, an oral healthcare professional can be notified.

Abstract: An example operation may include one or more of connecting, by a participating blockchain (BC) node, to a blockchain network configured to store a plurality of packages, selecting and downloading, by the participating BC node, a package containing a random code variant identified by a unique identifier (ID), executing, by the participating BC node, the package to calculate an outcome associated with the variant ID, receiving, by the participating BC node, votes on outcomes associated with the variant ID and votes on outcomes associated with different variant IDs from other nodes of the blockchain network, and analyzing, by the participating BC node, the votes to determine if the votes on the outcomes associated with the variant ID are different from the votes on the outcomes associated with the different variant IDs.

Abstract: Cross-Site Request Forgery attacks are mitigated by a CSRF mechanism executing at a computing entity. The CSRF mechanism is operative to analyze information associated with an HTTP request for a resource. The HTTP request typically originates as an HTTP redirect from another computing entity, such as an enterprise Web portal. Depending on the nature of the information associated with the HTTP request, the HTTP request may be rejected because the CSRF mechanism determines that the request is or is likely associated with a CSRF attack. To facilitate this determination, the approach leverages a new type of “referer” attribute, a trustedReferer, which indicates that the request originates from a server that has previously established a trust relationship with the site at which the CSRF mechanism executes. The trustedReferer attribute typically is set by the redirecting entity, and in an HTTP request header field dedicated for that attribute.

Abstract: Exposure of sensitive information to users and other servers is controlled by using a first security token which contains a user identity and one or more user credentials associated with a first user; a second security token which contains an identity of a token issuer and an identity of a first owning process; and at least a first trusted server which accesses a downstream computing service on behalf of the first user by substituting or combining the first security token and the second security token, while preventing the second security token from being exposed to the first user. This establishes a first security sensitivity level for the first user and a second security sensitivity level for the first trusted server, wherein the first security sensitivity level is a lower access level than the second security sensitivity level for the downstream service.

Abstract: A new management node associated with a new rack sends at least a public key of the new management node to a first management node associated with a first rack and a plurality of autonomous management nodes. The first management node sends the new management node an access token trusted by at least a portion of the plurality of autonomous management nodes and a set of public keys corresponding to at least a portion of the plurality of autonomous management nodes. The new management node can send its public key and the access token to at least a portion of the plurality of autonomous management nodes. In response, the new management node can establish a mutual trust relationship with at least a portion of the plurality of autonomous management nodes.

Abstract: Exposure of sensitive information to users is controlled using a first security token containing user identity and user credentials to represent the user who requests services, and a second security token containing two other identities, one identifying the token issuer and the other identifying the owning process. When requesting services, the token-owning process sends a security token to indicate who is making the request, and uses its key to digitally sign the request. The token-owning process signs the request to indicate that it endorses the request.

Abstract: Disclosed aspects relate to wireless power distribution management in an open environment. A key-pair identifier is established in a master server. The key-pair identifier can indicate both a first wireless power target device and a first wireless power source distribution center. The master server detects an indication of a wireless power coupling between the first wireless power target device and a second wireless power source distribution center. A usage assessment is determined for the wireless power coupling by the master server using the key-pair identifier. The usage assessment can relate to the first wireless power source distribution center. The master server may provide or output the usage assessment for the wireless power coupling.

Abstract: Approaches presented herein enable performing an oral health diagnosis of a user using an oral monitoring device fixed in the oral cavity. Specifically, an oral monitoring device collects jaw movement data as a user goes about daily living. An oral healthcare analysis is performed comparing current measurement data against abnormality classifications to identify abnormal jaw movement. If an abnormality is identified, an oral healthcare professional can be notified.