Abstract: A communications system may include user equipment (UE) that transmits data to a recipient via a network. The UE may receive user input and may generate the data based on the input. When a terrestrial network is unavailable to the UE, the UE may transmit segments of the data over a satellite constellation as the UE continues to receive input and while connectivity to the constellation exceeds a threshold. If a portion of the input includes an edit to a previous segment, the UE may include an edit flag in the corresponding segment. Once input has finished, the UE may sign the segments and may transmit a signature over the constellation. The network may store the segments as received from the constellation, may replace edited segments with more recent segments containing edit flags, and may compile and transmit all of the segments to the recipient upon receipt of the signature.

Abstract: Encrypting and securely transmitting data between devices is disclosed. After a device obtains a request to purchase a prescription lens, including prescription data, to be inserted into a second electronic device, the prescription data is securely encrypted and transmitted to the lens manufacturer. The lens manufacturer may create a prescription lens and calibration data related to the lens. The calibration data can be encrypted and transmitted to a storage device for storage. The second electronic device can retrieve the encrypted calibration data from the storage device and utilize it to perform a full calibration of the device. The second electronic device can present images, in accordance with the calibration data, using a display through an optical path that include the prescription lens.

Abstract: Aspects of the subject technology include obtaining, by a first device associated with a first user account, one or more keys of one or more devices associated with a second user account and generating a data structure representing the one or more devices associated with the second user account based on the one or more keys. Aspects may also include providing an identifier of the data structure to a server for association with the item and generating an invitation for the second user account to access the item. Aspects may further include providing the invitation to a second device of the one or more devices associated with the second user account to provide the second device with access to the item via the server based on at least a portion of the data structure and a respective key of the second device.

Abstract: This Application sets forth techniques for establishing a custodial relationship between a user device and a custodian device for recovering access to a user account and/or to encrypted user data with assistance provided by the custodian device to effect access recovery. A server of a cloud network service provides an anonymous identifier to associate with the custodian device and an account recovery key to store at the custodian device. Identity of an account of the cloud network service associated with the custodian device can be hidden from the server. The user device generates a data recovery key and provides a first portion of the data recovery key to the custodian device and a second portion of the data recovery key to the server. Integrity of the stored account recovery key and portions of the data recovery key are checked regularly by the custodian device and the user device.

Abstract: On-grid and off-grid secure messaging is described. In one or more implementations, a first electronic device communicates a sender key over a first network to a second electronic device. The sender key enables encryption and decryption of messages communicated between the first electronic device and the second electronic device when the first network is inaccessible by the first electronic device. Responsive to input, at the first electronic device, to communicate a message to the second electronic device when the first network is inaccessible by the first electronic device, the first electronic device encrypts the message using a message key generated based on the sender key and communicates the message encrypted with the message key over a second network to the second electronic device.

Abstract: A communications system may include a satellite constellation and a terrestrial network. A first user equipment (UE) device may provision sender keys, handles, and/or status information with a core network while connected to the terrestrial network. The core network may accommodate server fan out to a set of other UE devices associated with a particular user identifier. When the first UE device disconnects from the terrestrial network, the first UE device and the set of other UE devices may convey end-to-end encrypted messages through the constellation and the core network. The first UE device may address the set of other UE devices using a short handle associated with the user identifier and/or using a handle index. The first UE device may transmit a control message via the constellation that instructs the core network to release provisioned status information to the set of other UE devices.

Abstract: A communications system may include a satellite constellation and a terrestrial network. A first user equipment (UE) device may provision sender keys, handles, and/or status information with a core network while connected to the terrestrial network. The core network may accommodate server fan out to a set of other UE devices associated with a particular user identifier. When the first UE device disconnects from the terrestrial network, the first UE device and the set of other UE devices may convey end-to-end encrypted messages through the constellation and the core network. The first UE device may address the set of other UE devices using a short handle associated with the user identifier and/or using a handle index. The first UE device may transmit a control message via the constellation that instructs the core network to release provisioned status information to the set of other UE devices.

Abstract: Aspects of the subject technology include obtaining, by a first device associated with a first user account, one or more item-specific public keys of one or more devices associated with a second user account and generating a data structure representing the one or more devices associated with the second user account based on the one or more item-specific public keys. Aspects may also include providing an identifier of the data structure to a server for association with the item and generating an invitation for the second user account to access the item. Aspects may further include providing the invitation to a second device of the one or more devices associated with the second user account to provide the second device with access to the item via the server based on at least a portion of the data structure and a respective item-specific public key of the second device.

Abstract: Techniques are disclosed relating to computing security and privacy. In some embodiments, a computing device provides, to a service computing system, a service request that identifies an action and includes an anonymous identifier for a user of the computing device. The computing device receives, from the service computing system, a score request for a trustworthiness score indicative of the user's trustworthiness. In response to receiving the score request from the service computing system, the computing device provides information indicative of the user's identity to a scoring computing system and receives the trustworthiness score and a corresponding score signature from the scoring computing system. In response to receiving the score and the score signature from the scoring computing system, the computing device provides the score to the service computing system.

Abstract: This Application sets forth techniques for establishing a custodial relationship between a user device and a custodian device for recovering access to a user account and/or to encrypted user data with assistance provided by the custodian device to effect access recovery. A server of a cloud network service provides an anonymous identifier to associate with the custodian device and an account recovery key to store at the custodian device. Identity of an account of the cloud network service associated with the custodian device can be hidden from the server. The user device generates a data recovery key and provides a first portion of the data recovery key to the custodian device and a second portion of the data recovery key to the server. Integrity of the stored account recovery key and portions of the data recovery key are checked regularly by the custodian device and the user device.

Abstract: Techniques are disclosed relating to computing security and privacy. In some embodiments, a computing device provides, to a service computing system, a service request that identifies an action and includes an anonymous identifier for a user of the computing device. The computing device receives, from the service computing system, a score request for a trustworthiness score indicative of the user's trustworthiness. In response to receiving the score request from the service computing system, the computing device provides information indicative of the user's identity to a scoring computing system and receives the trustworthiness score and a corresponding score signature from the scoring computing system. In response to receiving the score and the score signature from the scoring computing system, the computing device provides the score to the service computing system.

Abstract: A communications system may include user equipment (UE) that transmits data to a recipient via a network. The UE may receive user input and may generate the data based on the input. When a terrestrial network is unavailable to the UE, the UE may transmit segments of the data over a satellite constellation as the UE continues to receive input and while connectivity to the constellation exceeds a threshold. If a portion of the input includes an edit to a previous segment, the UE may include an edit flag in the corresponding segment. Once input has finished, the UE may sign the segments and may transmit a signature over the constellation. The network may store the segments as received from the constellation, may replace edited segments with more recent segments containing edit flags, and may compile and transmit all of the segments to the recipient upon receipt of the signature.

Abstract: A communications system may include user equipment (UE) that transmits data to a recipient via a network. The UE may receive user input and may generate the data based on the input. When a terrestrial network is unavailable to the UE, the UE may transmit segments of the data over a satellite constellation as the UE continues to receive input and while connectivity to the constellation exceeds a threshold. If a portion of the input includes an edit to a previous segment, the UE may include an edit flag in the corresponding segment. Once input has finished, the UE may sign the segments and may transmit a signature over the constellation. The network may store the segments as received from the constellation, may replace edited segments with more recent segments containing edit flags, and may compile and transmit all of the segments to the recipient upon receipt of the signature.

Abstract: Aspects of the subject technology provide for secure, privacy-preserving access to electronic conferencing. In one or more implementations, a device may obtain a link that corresponds to a call with a second device, encrypt a request to join the call using a key obtained using the link, and send the encrypted request to a server for delivery to the second device. The link may also include information used to identify an alias for an account associated with the second device. The device may send the encrypted request to the server with the alias. The device may receive an encrypted response to the request from the server, obtain an identifier of the call from the encrypted response, and then receive an invitation to join the call associated with the identifier.

Abstract: Embodiments described herein provide cryptographic techniques to enable a recipient of a signed message containing encrypted data to verify that the signer of the message and the encryptor of the encrypted data are the same party, or at the least, have joint possession of a common set of secret cryptographic material. These techniques can be used to harden an online payment system against interception and resigning of encrypted payment information.

Abstract: Encrypting and securely transmitting data between devices is disclosed. After a device obtains a request to purchase a prescription lens, including prescription data, to be inserted into a second electronic device, the prescription data is securely encrypted and transmitted to the lens manufacturer. The lens manufacturer may create a prescription lens and calibration data related to the lens. The calibration data can be encrypted and transmitted to a storage device for storage. The second electronic device can retrieve the encrypted calibration data from the storage device and utilize it to perform a full calibration of the device. The second electronic device can present images, in accordance with the calibration data, using a display through an optical path that include the prescription lens.

Abstract: Embodiments described herein provide a method on a mobile electronic device to facilitate the transmission of encrypted user data to a service provider, such as an emergency service provider. An encrypted data repository stores user data to be transmitted to the service provider. A key to decrypt the encrypted data repository is wrapped using a key associated with a publicly trusted certificate for the service provider. In response a request received at the mobile device to initiate an emergency services request, the mobile device can transmit the encrypted data repository and wrapped cryptographic material to a server that is accessible by the service provider.

Abstract: Embodiments described herein provide a compressed container format that enables the container to be decrypted and decompressed in a streaming manner. One embodiment provides a container format for encrypted archives in which data is compressed and encrypted in a segmented manner. A segment of the archive can be decompressed, decrypted, and checked for integrity before the entire archive is received. Metadata for the encrypted archive is also encrypted to secure details of data stored within the archive.

Abstract: Aspects of the subject technology provide for privacy-preserving electronic publication and subscription. A publisher device may establish a publication channel with a publication server and receive a channel identifier and a channel ownership token for the channel. The publisher device may provide the channel identifier and a key for the publication channel to a subscriber device. The publisher device may publish data encrypted using the key to the publication server, the subscriber device may obtain the encrypted published data from the server using the channel identifier, and may decrypt the published data using the key obtained from the publisher device. The published data may include status information for a user of the publisher device, in some examples.

Abstract: Aspects of the subject technology include receiving, by a first device, a voucher data item, from a second device that is participating in a group communication session with at least a third device and providing, by the first device, the voucher data item to at least the third device to verify that the first device is vouched for by the second device for participation in the group communication session. The voucher data item may include participant information associated with participation of the second device in the group communication session. The voucher data item may also be signed with a key associated with the second device.