Abstract: The arrangements disclosed herein relate to generating, by a first device, an authentication code for each of portions of a first message by running each of the portions of the first message through a cryptographic function with a cryptographic key. The first device generates a plurality of valid chunks, each including one of the plurality of portions of the first message and the corresponding authentication code. The first device generates using a Quantum Random Number Generator (QRNG) a random number for each portion of a second message. The first device generates invalid chunks, each invalid chunk includes one of the portions of the second message and the corresponding random number. The first device sends to the second device chaff including the invalid chunks interleaved with the valid chunks.

Abstract: The arrangements disclosed herein relate to systems, apparatus, methods, and non-transitory computer readable media for determining, based on at least one cryptographic attribute, that information on a site is a first cryptographic key, and sending an alert that at least one of the first cryptographic key or a second cryptographic key corresponding to the first cryptographic key is compromised.

Abstract: In an example, a method for assembly of a modular cable connector includes, at an end effector of a robotic insertion system, holding a cable insert module for insertion into a module slot of a module retainer. Two or more images are captured of the module retainer. Image processing is performed to identify a segmented image region corresponding to the module retainer and a virtual plane parallel to a face of the module retainer. The end effector is moved to an alignment pose determined based, at least in part, on the segmented image region and the virtual plane. The end effector is moved from the alignment pose toward an insertion pose. Upon insertion of the cable insert module into the module slot of the module retainer, the cable insert module is released from the end effector.

Abstract: The arrangements of the present disclosure relate to systems, methods, and non-transitory computer-readable media for receiving, from a first computing system, coefficient information comprising coefficients of a polynomial series determined based on an analytical function, wherein the analytical function represents a cryptographic material, determining the analytical function using the coefficient information, determining the cryptographic material using the analytical function, and performing a cryptographic operation using the cryptographic material.

Abstract: The arrangements disclosed herein relate to systems, apparatus, methods, and non-transitory computer readable media for receiving, by a server from a first device via a quantum channel, first verification information associated with a user of the first device. The server determines that the first verification information fails to verify against second verification information. In response to determining that the first verification information fails to verify against second verification information, the server stores the first verification information. In response to receiving, by the server from a second device, the first verification information and device information of the second device, the server flags the device information of the second device as a potential origin of fraud.

Abstract: The present disclosure is directed to systems, methods, and non-transitory computer-readable media for adding a first Public Itemization of Public Key Infrastructure Nodes (PIPKIN) object to a blockchain, the first PIPKIN object comprises first hierarchy information of at least one first certificate chain of a first Public Key Infrastructure (PKI), and adding a second PIPKIN object to the blockchain, the second PIPKIN object comprises second hierarchy information of at least one second certificate chain of a second PKI.

Abstract: The methods and system allow for the generation of a signcrypted biometric electronic signature token using a subsequent biometric sample after an enrollment of a biometric reference value in a biometric system. The signcrypted biometric electronic signature token involves simultaneous encryption and digital signature to protect the confidentiality. The system as described herein provides data integrity, origin authentication, and efficiency by performing encryption and digital signature simultaneously. The process allows a signcrypting party to enroll in a biometric service, sign a piece of data or content using a public key, that may be tied to a trusted anchor certificate authority, and submit a biometric sample. Subsequently, the relying party may validate the information on that piece of data or content to confirm the identity of the signcrypting party.

Abstract: The arrangements disclosed herein relate to systems, apparatus, methods, and non-transitory computer readable media for determining to erase a plurality of ciphertext blocks stored in a memory device, in response to determining to erase the plurality of ciphertext blocks, performing a cryptographic erasure of the plurality of ciphertext blocks. The cryptographic erasure includes encrypting each of the plurality of ciphertext blocks with a random key and destroying the random key in response to encrypting each of the plurality of ciphertext blocks.

Abstract: In a system, computer-readable media and methods for secure ledger assurance tokenization (SLAT), a block content of a first blockchain is audited, which includes accessing, by a request circuit of a SLAT computing system, a retrievably stored cross-reference content and generating an audit result. Generating an audit result includes evaluating, by a SLAT circuit of the SLAT computing system, the cross-reference content such that the audit result is informed at least by the cross-reference content. The audit result is included in a secure ledger assurance token generated by a SLAT generation circuit of the SLAT computing system and stored relationally to the block content of the first blockchain.

Abstract: A method includes receiving a first user request to access or modify a first application, the first user request including a first object identifier (OID), the first OID identifying a first role of the first user. The method further includes determining whether the first OID is equivalent to a first application-specific role, and in response to determining that the first OID is equivalent to the first application-specific role, authorizing the first user request.

Abstract: A method includes receiving an event, the event associated with a digital signature in a first time-based message comprising a first trusted time stamp token generated using a first hash of digitally signed content from a trusted timing authority; generating a first block on a distributed ledger; generating a second hash of the first trusted time stamp token; receiving a second trusted time stamp token from the trusted timing authority in response to transmitting the second hash to the trusted timing authority; and generating a second block on the distributed ledger; wherein verification of data integrity of the digitally signed content is provided via the first hash of the digitally signed content and second hash of the first trusted time stamp token and via the hash of the first block and a hash of the second block.

Abstract: The arrangements disclosed herein relate to systems, apparatus, methods, and non-transitory computer readable media for determining, by a browser, data cipher by encrypting data using a first encryption key, the first encryption key is generated using a first random number, a second random number, and a third random number. The browser sends to a server, the data cipher. The browser determines a key cipher by encrypting the third random number using a certificate of the server. The browser sends to the server the key cipher.

Abstract: In one arrangement, a method for a key management server to manage cryptographic key rotation comprises rotating, by the key management server, an initial symmetric key based on a first rotation schedule. Rotating the initial symmetric key comprises rotating bits of the initial symmetric key to create a rotated key, the rotated key being different from the initial symmetric key. The method further comprises enciphering, by the key management server using the rotated key, data sent to a first client server. In another arrangement, a method for a client server to manage cryptographic key rotation comprises rotating, by the client server, an initial symmetric key based on a schedule. The method further comprises deciphering, by the client server, data sent from a key management server using the rotated key and providing the deciphered data to a user.

Abstract: A system and method for establishing secure communications based on combined capabilities of classical and quantum computers. A system can perform encrypting, responsive to a request for client data associated with a client device, the client data using a cryptographic key to generate an encrypted data packet, transmitting the encrypted data packet to a second classical computer simulating a quantum computer operation, the encrypted data packet causing the second classical computer to begin a decryption process on the encrypted data packet to recover a decrypted data packet determining an absence of a response from the second classical computer occurring within a predefined window of time, the response comprising the decrypted data packet and transmitting, responsive to the absence of the response, the encrypted data packet to a quantum computer, the encrypted data packet causing the quantum computer to decrypt the encrypted data packet to recover a decrypted data packet.

Abstract: The present disclosure is directed to systems, methods, and non-transitory computer-readable media for generating, by a first node, an encrypted protected message. Generating the encrypted protected message includes generating an obfuscated message by intercalating a second message into the first message, generating a protected message by applying a plurality of data protection mechanisms to the obfuscated message, and generating the encrypted protected message by applying a plurality of confidentiality techniques to the protected message. The first node transmits to a second node the encrypted protected message using a plurality of communication channels.

Abstract: Various arrangements relate to a method performed by a processor of a computing system. An example method includes tokenizing a first value using a tokenization algorithm to generate a first token. The first value and first key are inputs of the tokenization algorithm. A message is generated. The message includes a first value identifier associated with the first value and a first key generation identifier associated with the generation of the first key. The message is associated with the first token. A second key is generated. A second value is tokenized using a tokenization algorithm to generate a second token. The second value and second key are inputs of the tokenization algorithm.

Abstract: A method includes receiving an agreement associated with a signing party by a computing system, receiving a biometric sample captured from the signing party by the computing system, generating a hash of the agreement by the computing system, and receiving a secret knowledge factor by the computing system. The method further includes generating an encryption key using the secret knowledge factor as an input to a password authenticated key exchange protocol by the computing system and generating a biometric-based electronic signature token by encrypting the biometric sample and the hash of the agreement with the encryption key by the computing system. The method further includes generating a smart contract based on the agreement by the computing system. The smart contract includes terms of the agreement and the biometric-based electronic signature token. The biometric-based electronic signature token providing biometric-based pre-authorization to be initiated by the smart contract.

Abstract: A method for gesture-based multi-factor authentication includes mapping a gesture password to a first substitution string, generating a cryptographic key using the first substitution string as an input to a password authenticated key exchange protocol, encrypting a challenge response with the cryptographic key to generate an encrypted challenge response, and transmitting, to a relying party computing system, a first authentication message comprising the encrypted challenge response and a user identifier identifying a user.

Abstract: A method includes receiving a first user request to access or modify a first application, the first user request including a first object identifier (OID), the first OID identifying a first role of the first user. The method further includes determining whether the first OID is equivalent to a first application-specific role, and in response to determining that the first OID is equivalent to the first application-specific role, authorizing the first user request.

Abstract: In one arrangement, a method for using symmetric keys between two entities comprising a device and a host include initiating, by the device, a transaction involving original data, wherein the original data needs to be verified by the host. The method further includes deriving, by the device, a first key based on a previously generated key and a first number, wherein the first key is unique to the transaction, and the first number is randomly generated. The method further includes sending, by the device, the first key to the host for verification.