Abstract: Systems, apparatuses, methods, and computer program products are disclosed for securing communications between devices. An example method includes obtaining a quantum random number (QRN) from a remote QRN source using a secure communication channel between the initiating device and the remote QRN source. The QRN may be a true random number. The example method may also include using the QRN to participate in computer implemented services with the participating device that received the QRN from the remote QRN source.

Abstract: Disclosed are example methods, systems, and devices that allow for secure generation of authentication datasets from network activity. The techniques include accessing secured data sources to generate a first dataset of secured data, and extracting information from one or more unsecured data sources to generate a second dataset comprising a second dataset. A third set of data elements can be generated from the first and second datasets, and may be utilized to authenticate credentials that can be utilized to access secured data via a network. The techniques can transmit indications that credentials are invalid if the credentials fail to satisfy aspects of the third dataset.

Abstract: Systems, apparatuses, and computer program products are disclosed for authenticating a user using a knowledge factor identification transaction with a challenge authentication token. An example method includes providing a logon request, wherein the logon request comprises a user identifier received from a user. The example method further includes receiving a challenge sequence and generating a password structure, wherein the password structure is based on a static password received from the user and the challenge sequence. The example method further includes generating a challenge authentication token comprising the user identifier, the password structure, and a client timestamp and providing the challenge authentication token. The example method further includes receiving an authorization decision message, wherein the authorization decision message is indicative of whether the challenge authentication token was verified.

Abstract: A method, apparatus, and computer program product for offline authentication are provided. An example method includes receiving, by a computing device, a request for authentication from a first user device associated with a first user. The request includes first authentication credentials generated based upon user attributes retrieved by the first user device from a digital identity construct database at a first time. The method includes determining an offline condition of the computing device at a first time. The method also includes obtaining, by the computing device, second authentication credentials associated with the first user that are based upon one or more user attributes retrieved by the computing device from the digital identity construct database at a second time later than the first time. The method incudes determining a discrepancy between the first and second authentication credentials and authenticating the first user based upon a forecast operation of the same.

Abstract: A computing entity generates a data instance comprising a plurality of data fields; and protects a data field value using a post quantum cryptography (PQC) cryptographic technique to generate protected text for the data field value. Protecting the data field value comprises at least one of (a) encrypting the data field value, (b) tokenizing the data field value, or (c) electronically signing the data field value. The computing entity updates the data instance to remove a plaintext version of the data field value from the data field of the plurality of data fields and to include the protected text in the data field; updates an annotation corresponding to the data instance to indicate (a) that the data field is protected and (b) the PQC cryptographic technique used to protect the data field; and provides the data instance to be stored by a data repository.

Abstract: Systems, apparatuses, methods, and computer program products are disclosed for authentication between multiple devices using N-way entangled particles. Any number (N) of entangled particles may be distributed to any number of devices within a distributed system to facilitate authentication between multiple devices.

Abstract: Systems, apparatuses, methods, and computer program products are disclosed for classical-quantum encryption and decryption. An example method for classical-quantum encryption includes receiving, by communications hardware, a symmetric key and a plaintext message, generating, by a function generator, an analytic function using the symmetric key and the plaintext message, computing, by a cryptography unit, a ciphertext based on a Taylor series expansion of the analytic function, and outputting the ciphertext. An example method for classical-quantum decryption, the method includes receiving, by communications hardware, a symmetric key and a ciphertext, deriving, by a cryptography unit and using a quantum computer, an analytic function using the ciphertext, generating, by a function generator, a plaintext message using the analytic function and the symmetric key, and outputting the plaintext message.

Abstract: Disclosed are example methods, systems, and devices that allow for secure digital authorization via generated datasets. The techniques include receiving a first dataset of a first user and a second dataset of a second user and generating a first set of identity elements and a second set of identity elements based on the first dataset and the second dataset, respectively. A linkage definition can be generated based on the first and second datasets, which can be associated with a set of activation elements. The techniques include determining that a set of inputs satisfy one or more of the set of activation elements and, in response, generating a set of security access tokens based on the linkage condition. The security access tokens can be transmitted to a computing device upon analyzing and verifying biometric data received from that computing device.

Abstract: Systems, apparatuses, methods, and computer program products are disclosed for authentication between multiple devices using N-way entangled particles. Any number (N) of entangled particles may be distributed to any number of devices within a distributed system to facilitate authentication between multiple devices.

Abstract: Systems, apparatuses, methods, and computer program products are disclosed for authentication of devices. An example method includes an authentication technique utilizing multiple authentication factors. The first authentication factor includes obtaining identical quantum entangled particles by a first device and a second device. The first and second device may read the quantum entangled particles to obtain identical bit sequences associated with the quantum entangled particles. The first and second device may utilize the bit sequences, along with a second factor, to authenticate a connection between the devices. The second factor may be, for example, a user password. The first device may send a request for authentication including one of the bit sequences and an encrypted version of the user's password. The second device may authenticate the first device using an identical copy of the bit sequence and previously obtained knowledge of the user's password.

Abstract: The present disclosure is directed to systems, methods, and non-transitory computer-readable media including sending, by a relying party computing system to a subscriber computing system, an Object Identifier (OID) of a relying party associated with the relying party computing system, receiving, by the relying party computing system from the subscriber computing system, a certificate of a subscriber associated with the subscriber computing system, the certificate includes a public key of the subscriber, determining, by the relying party computing system, whether the certificate includes the OID of the relying party, and in response to determining that the certificate includes the OID of the relying party, using by the relying party computing system the public key in the certificate of the subscriber.

Abstract: Systems, apparatuses, methods, and computer program products are disclosed for authentication of devices. An example method includes an authentication technique utilizing authentication tokens. Authentication tokens may be bit strings associated with time intervals and may be derived from quantum particles. Quantum particles may be obtained by two or more devices in a continuous stream via quantum key distribution. Devices throughout a distributed system may read the quantum particles at previously established time intervals, obtain bit strings, and use the bit strings as authentication tokens to perform one, multiple, and/or continuous authentication processes. Each device may have access to matching authentication tokens without exchanging any authentication tokens between devices and, therefore, the authentication tokens may be used as shared secrets to facilitate a more secure connection between devices.

Abstract: Systems, apparatuses, methods, and computer program products are disclosed for quantum entanglement authentication (QEA). An example method includes generating, at a second computing device, a second number based on a subset of a second set of entangled quantum particles associated with the second computing device. Each entangled quantum particle in the second set of entangled quantum particles may be entangled with a respective entangled quantum particle in a second set of entangled quantum particles associated with a second computing device. The example method further includes transmitting the second number to a first computing device. In some instances, the example method may further include authenticating a session between the first computing device and the second computing device in an instance in which the second number corresponds, or is identical, to a first number.

Abstract: A computer-implemented method, apparatus, and computer program product for digital identity based authentication are provided. An example method includes receiving a request for authentication associated with a first user and determining attributes associated with the first user that include at least one static attribute and at least one dynamic attribute. The method further includes generating an inquiry authentication credential based upon the static attribute and the dynamic attribute and includes querying a digital identity construct database storing one or more previously acquired attributes of the first user. The method includes obtaining a verified authentication credential based upon the previously acquired iterations of the static and dynamic attributes and includes authenticating the first user based upon a comparison between the inquiry authentication credential and the verified authentication credential.

Abstract: Systems, apparatuses, methods, and computer program products are disclosed for authenticating devices. An example method includes generating pairs of entangled photons by a first device. One photon of each entangled photon pair may be transmitted to a second device. The first device and the second device may attempt to measure respective photons of the entangled photon pair to obtain a bit of a bit sequence. The bits may be encoded in the polarizations of the entangled photon pairs and may correspond to a true random number due to the generation method used by the first device. The second device may provide authentication data based on the bit sequence to the first device. The first device may use its copy of the bit sequence and the authentication data to authenticate the second device.

Abstract: Disclosed are example methods, systems, and devices that allow for secure multi-verification of biometric data in a distributed computing environment. The techniques include receiving a request to grant authorization to a second user. The request can include biometric data of the first user and second user. An authorization token can be generated based on the request, which can be transmitted to a second computing device of the second user. A second request can be received from a third computing device that includes the authorization token and third biometric data. The second request can be verified based on the authorization token, the third biometric data, and provenance data, and an indication that the grant of authorization to the second user is verified can be transmitted to the first, second, or third computing devices.

Abstract: Systems, apparatuses, methods, and computer program products are disclosed for mobile quantum key distribution (MQKD). An example method includes establishing a first connection between a MQKD device and a first device. The example method further includes generating a pair of entangled particles and injecting quantum data that is based on a first particle of the pair of entangled particles into the first device. The example method further includes establishing a second connection between the MQKD device and a host device and injecting quantum data that is based on a second particle of the pair of entangled particles into the host device to facilitate secure communication between the host device and the first device based at least on the pair of entangled particles.

Abstract: A computing entity accesses one or more blocks of a blockchain, encrypts the content of the one or more blocks using a first cryptographic technique to generate one or more first encrypted block values, and writes a first side chain block comprising the one or more first encrypted block values and a first signature to a first side chain. The computing entity accesses at least one of (a) at least one block of a particular second set of one or more second sets of the plurality of blocks or (b) one or more first side chain blocks corresponding to blocks of the second set, encrypts the content of the accessed block(s) using a second cryptographic technique to generate at least one second encrypted block value, and writes a second side chain block comprising the at least one second encrypted block value and a second signature to a second side chain.

Abstract: Systems, apparatuses, and methods are disclosed for measuring one or more metrics of a cryptographic algorithm in a post-quantum cryptography (PQC) system. An example method includes obtaining a set of operating parameters comprising an algorithm of interest, wherein the algorithm of interest is a PQC algorithm, a legacy algorithm operating in a hybrid PQC system, or a variant thereof, and wherein the algorithm of interest is wrapped to present, via a wrapped algorithm of interest, a standardized interface to a sequence of benchmark operations. The example method further includes observing benchmark values of the one or more metrics, wherein the one or more metrics pertain to a designated benchmark operation from the sequence of benchmark operations. The example method further includes outputting a report comprising the benchmark values of the one or more metrics.

Abstract: Systems, apparatuses, methods, and computer program products are disclosed for facilitating extended range encrypted communication. An example method includes automatically navigating, via navigation circuitry of a first drone, to a first location of a first device. The example method also includes generating, by quantum random number generator circuitry of the first drone, a cryptographic key. The example method also includes establishing, by communications hardware of the first drone, a first connection between the first drone and the first device. The example method also includes causing transmission, by the communications hardware of the first drone, of the cryptographic key to the first device, such that the cryptographic key facilitates secure communication between the first drone and the first device.