Abstract: A first processing device, which may be, for example, a wireless authentication token or an RFID tag, transmits information in a wireless network in a manner that emulates standard communications of an access point of the wireless network, although the first processing device is not configured to operate as an actual access point of the wireless network. A second processing device, which may be, for example, a computer or other station of the wireless network, receives the transmitted information and is able to determine therefrom that the information originates from an emulated access point rather than an actual access point. The second processing device responds to this condition by utilizing the transmitted information in a manner distinct from its utilization of similar information received from the actual access point of the wireless network.

Abstract: A dispenser that represents the next generation of manually activated fluid dispensers found in homes at kitchen and bathroom counter tops that dispense soap, creams, and lotions. Shown in FIG. 1, the invention uses a diaphragm 105 positioned at the bottle bottom 109 of a bottle 101 filled with fluid (not shown) that is manually activated to push fluid through a tube 107, spout 111, and check nozzle 112 for the following advantages: much less expensive with fewer simpler parts, no drying of fluid in the spout 111, no dripping, and is capable of dispensing the last ounce of fluid left in the bottle. The diaphragm 105 has a unique feature that allows fluid to be pushed through the tube/spout/nozzle (107/111/112) and refill with fluid as the diaphragm is compressed and released respectively. This dispenser is activated by pushing down on a thumb saddle 113 attached to the spout 111 and tube 107.

Abstract: This invention relates to cryptographic communications methods and systems that protect a server from a connection depletion attack. Specifically, the invention presents a method for allocating a resource comprising the steps of receiving a resource allocation request from a client, imposing a computational task and a time limit for correct completion of the task upon the client, verifying that the task was performed correctly within the time limit, and allocating the resource if the task was correctly performed within the time limit.

Abstract: In a system comprising a transient storage device (TSD) or other type of peripheral configured for communication with a host device, a first one-time password or other type of code is generated in the peripheral and transmitted to the host device. The first code is presented by the host device to an authentication server for authentication. The host device receives a second one-time password or other type of code from the authentication server and transmits it to the peripheral for authentication.

Abstract: In one embodiment of a user authentication system and method according to the invention, a device shares a secret, referred to as a master seed, with a server. The device and the server both derive one or more secrets, referred to as verifier seeds, from the master seed, using a key derivation function. The server shares a verifier seed with one or more verifiers. The device, or an entity using the device, can authenticate with one of the verifiers using the appropriate verifier seed. In this way, the device and the verifier can share a secret, the verifier seed for that verifier, without that verifier knowing the master seed, or any other verifier seeds. Thus, the device need only store the one master seed, have access to the information necessary to correctly derive the appropriate seed, and have seed derivation capability. A verifier cannot compromise the master seed, because the verifier does not have access to the master seed.

Abstract: A header connector apparatus is configured to receive an electronic card. The apparatus includes a body having first and second spaced apart side arms formed integrally with the body and configured to receive the card there between. The first side arm has a longitudinally extending first dovetail member. The apparatus also includes an actuator button having a longitudinally extending second dovetail member configured to mate with the first dovetail member to allow the button to move longitudinally relative to the body, and an ejector mechanism coupled to the body and the button. The ejector mechanism is configured to eject the card from the body upon longitudinal movement of the button relative to the body.

Abstract: Methods and apparatus are disclosed for use in an RFID system comprising a plurality of RFID devices and at least one reader which communicates with one or more of the devices. In accordance with an aspect of the invention, identifiers transmitted by the RFID devices are received by the reader. The system determines a classification of at least one of the received identifiers, and implements a privacy policy for data associated with one or more of the received identifiers based at least in part on the determined classification. For example, the given RFID device may be configurable into at least a first state indicative of a first classification, such as a private classification, and a second state indicative of a second classification, such as a public classification. The reader may alter a type of query that it issues based at least in part on the determined classification.