Abstract: An information security system that includes a data control engine configured to receive a data file and to segment the data file into a set of data blocks that each contain a portion of data from the data file. The data control engine is further configured to associate the set of data blocks with a reference tag and to store an association between the set of data blocks and the reference tag. The data control engine is further configured to identify an access key for encrypting each data block, to encrypt each data block with a corresponding access key, and to store an association between each data block and each corresponding access key. The data control engine is further configured to store each data block in a memory and to store location information identifying the location of each data block in the memory.

Abstract: A system contains a network testing engine that sends test data along different paths of a network between a source and a destination, wherein each path contains a plurality of network nodes, and receives, in response to sending the test data, response data about the paths. The system further contains a network path characteristics engine that determines characteristics of each path based on the response data, and a delivery parameters engine that receives a request for delivery of a data load from the source to the destination and determines, based on the request, delivery parameters. Furthermore, the system contains the source and a path selection engine that determines a selected path of the different paths based on the characteristics of the paths and the delivery parameters, and sends the selected data path to the source, which sends the data load along the selected path to the destination.

Abstract: A file transfer system that includes a data source, a destination device, and a transfer server. The transfer server is configured to receive a file from the data source and determine a file size of the file. The transfer server is further configured to determine an available disk space for the destination device, to compare the available disk space to the file size of the file, and to determine that the available disk space is less than the file size of the file. In response to the determination, the transfer server is further configured to determine a file type for the file based on content within the file and to identify metadata linked with the determined file type. The transfer server is further configured to extract data from the file corresponding with the identified metadata and to send the data to the destination device.

Abstract: A system that includes a tagging engine and a routing engine. The tagging engine is configured to link a data element with an access control tag. The tagging engine is configured to apply context rules to the access control tag array based on the content of the data element to change the access control tag value for one or more of the access control tags. The tagging engine sends the data element with the access control tag array to a target network node within an end user group. The routing engine is configured to identify an access control tag value in the access control tag array corresponding with the end user group and to forward the data element to the target network node in response to determining that the access control value is greater than or equal to the access control level associated with the end user group.

Abstract: A system that includes a tagging engine and a routing engine. The tagging engine is configured to link a data element with an access control tag array that links access control tags with end user groups. The tagging engine is configured to encrypt a hash of the access control tag array using a first key and to apply a second key to the access control tag array to obfuscate the access control tag array. The tagging engine is configured to send the data element, the encrypted hash, and the obfuscated access control tag array to a target network node. The routing engine is configured to compute a hash of the access control tag array and to forward the data element to the target network node in response to determining that the received hash of the access control tag array to the computed access control tag array are the same.

Abstract: A system that includes a tagging engine and a routing engine. The tagging engine is configured to link a data element with an access control tag. The tagging engine is configured to apply context rules to the access control tag array based on the content of the data element to change the access control tag value for one or more of the access control tags. The tagging engine sends the data element with the access control tag array to a target network node within an end user group. The routing engine is configured to identify an access control tag value in the access control tag array corresponding with the end user group and to forward the data element to the target network node in response to determining that the access control value is greater than or equal to the access control level associated with the end user group.

Abstract: A natural language processing system that includes an artificial intelligence (AI) engine and a tag management engine. The AI engine is configured to receive a set of audio files and to identify concepts within the set of audio files. The AI engine is further configured to determine a usage frequency for each of the identified concepts and to generate an AI-defined tag for concepts with a usage frequency that is greater than a usage frequency threshold. The tag management engine is configured to receive an audio file, identify tags linked with the audio file, to determine an access frequency for the audio file within a predetermined time period, and to adjust the activity level of the tags based on the access frequency. The tag management engine is further configured to remove tags from the set of tags with an activity level that is less than a purge threshold.

Abstract: A system includes a request processing system which enables the system to fulfill data requests by grouping and combining requested data elements, while conserving computing resources and increasing security of the requested data elements associated during storage and transmission over a network. The system is configured to identify one or more groups of data elements associated with one or more identifiers, each data element in a group associated with a component of an identifier. The system combines each of the one or more groups of data elements based on a unique association between the components of each identifier. The system subsequently removes the sub-wrappers from the data elements in the one or more groups of data elements, and sends the combined one or more groups of data elements to relevant requestors.

Abstract: A network device that includes a memory operable to store a set of anonymization rules and a distributed ledger comprising information for a private blockchain and a semi-private blockchain associated with the user. The network device further includes an information security engine implemented by a processor. The information security engine is configured to receive data from one or more user devices and to store the data in the private blockchain. The information security engine is further configured to determine a data classification type for the data, to determine to anonymize the data based on the data classification type, to anonymize the data in accordance with the set of anonymization rules, and to store the anonymized data in the semi-private blockchain.

Abstract: An authentication device that includes a memory operable to store a behavior signature for a user and a distributed ledger comprising information for a private blockchain and a semi-private blockchain associated with the user. The network device further includes an authentication engine implemented by a processor. The authentication engine is configured to receive an authentication request for a network resource and to determine a resource classification type based on the network resource. The authentication engine is further configured to identify one of the private blockchain and the semi-private blockchain based on the resource classification type and to extract data from one or more blocks in the identified blockchain. The authentication engine is further configured to determine at least a portion of the extracted data matches the stored behavior signature for the user and to provide access to the network resource in response to the determination.

Abstract: A system for authorizing an electronic transaction in an augmented reality environment comprises an augmented reality user device and an authentication server. The augmented reality user device includes a display that overlays virtual objects onto a field of view of the user. The user device receives a request to verify information about a payment card used in an electronic transaction. The request includes a virtual authentication object, which is a virtual representation of an object capable of being manipulated by the user in a particular sequence to enter an authentication code. The user device displays the virtual authentication object to the user and detects gestures performed on the virtual authentication object. The user device sends the detected gestures to the authentication server. The authentication server determines the authentication code using the virtual authentication object and the detected gestures, and uses it to authorize the transaction.

Abstract: A system that includes a tagging engine and a routing engine. The tagging engine is configured to link a data element with an access control tag. The tagging engine is configured to apply context rules to the access control tag array based on the content of the data element to change the access control tag value for one or more of the access control tags. The tagging engine sends the data element with the access control tag array to a target network node within an end user group. The routing engine is configured to identify an access control tag value in the access control tag array corresponding with the end user group and to forward the data element to the target network node in response to determining that the access control value is greater than or equal to the access control level associated with the end user group.

Abstract: A system that includes a tagging engine and a routing engine. The tagging engine is configured to link a data element with an access control tag array that links access control tags with end user groups. The tagging engine is configured to encrypt a hash of the access control tag array using a first key and to apply a second key to the access control tag array to obfuscate the access control tag array. The tagging engine is configured to send the data element, the encrypted hash, and the obfuscated access control tag array to a target network node. The routing engine is configured to compute a hash of the access control tag array and to forward the data element to the target network node in response to determining that the received hash of the access control tag array to the computed access control tag array are the same.

Abstract: In certain embodiments, a system determines to assign a computing resource to one or more users that are affiliated with an institution. The system pre-injects a first tag into a first portion of the computing resource and then assigns the computing resource to the one or more users. The first tag is associated with the institution and requires a first token to access the first portion of the computing resource. The system mid-process or post injects a second tag into a second portion of the computing resource. The second tag is associated with one of the users and requires a second token to access the second portion of the computing resource. The system controls access to the first and second portions of the computing resource based on whether subsequent requests to access the computing resource comprise the first token, the second token, or both.

Abstract: A system for performing authorization of a user in an augmented reality environment comprises an augmented reality user device, an automatic teller machine, and an authentication server. The automatic teller machine has a keypad with unmarked buttons. The augmented reality user device includes a display configured to overlay virtual objects onto a field of view of a user. The augmented reality user device receives a virtual keypad overlay, which assigns values to the unmarked buttons of the keypad. Using the overlay, the augmented reality user device displays the assigned values on the buttons of the keypad. The automatic teller machine detects an input sequence entered on the keypad and sends the input sequence to the authentication server. The authentication server determines an authentication code by combining the input sequence with the virtual keypad overlay, and compares the determined authentication code with an authentication code stored in a database.

Abstract: A natural language processing system that includes an artificial intelligence (AI) engine, a tagging engine, and a resource allocation engine. The AI engine is configured to receive a set of audio files and to identify concepts within the set of audio files. The AI engine is further configured to determine a usage frequency for each of the identified concepts and to generate an AI-defined tag for concepts with a usage frequency that is greater than a usage frequency threshold. The tagging engine is configured to receive an audio file and to modify metadata for the audio file to include AI-defined tags. The resource allocation engine is configured to identify a storage location from among the plurality of storage devices based on tags associated with the audio file and send the audio file to the identified storage location.

Abstract: A system that includes a network device, an access controller, and a data vault. The network device is configured to receive a first tokenized sub-string, combine a second tokenized sub-string with the first tokenized sub-string to generate an initiation token, and send the initiation token to the access controller. The access controller is configured to validate the initiation token and to send connection information comprising a connection identifier to the network device and send a post-action verification token to a data vault in response to validating the initiation token. The network device is further configured to send a network connection request comprising the connection identifier to the data vault. The data vault is configured to receive the network connection request, determine that the post-action verification token linked the connection identifier has been received, establish a network connection with the network device, and exchange data with the network device.

Abstract: An example embodiment includes a first subsystem, a second subsystem, and a third subsystem in different locations, where the first subsystem is configured to receive a request to deliver a set of packets to the third subsystem, send the set of packets to the second subsystem, and send, through first nodes, a first data stream containing the a set of packets to the third subsystem. The second subsystem is configured to receive the a set of packets and send, through second nodes that differ from the first nodes, a second data stream containing a set of packets to the third subsystem. In addition, the third subsystem is configured to receive the first and second data streams, determine that each data stream comprises the a set of packets, and send the set of packets from one of the first and second data streams to a downstream component.

Abstract: A system for authorizing an electronic transaction in an augmented reality environment comprises an augmented reality user device and an authentication server. The augmented reality user device includes a display that overlays virtual objects onto a field of view of the user. The user device receives a request to verify information about a payment card used in an electronic transaction. The request includes a virtual authentication object, which is a virtual representation of an object capable of being manipulated by the user in a particular sequence to enter an authentication code. The user device displays the virtual authentication object to the user and detects gestures performed on the virtual authentication object. The user device sends the detected gestures to the authentication server. The authentication server determines the authentication code using the virtual authentication object and the detected gestures, and uses it to authorize the transaction.

Abstract: An access control system that includes Internet of Things sensors and a controller within a controlled area. The controller is configured to detect a guest device for a guest, to identify a sponsor associated with the guest, and to identify a sponsor block chain account for the sponsor. The controller is configured to publish an access control contract to the block chain that includes executable instructions for publishing a transaction in the block chain transferring credits from the sponsor block chain account to a vendor block chain account and conditions linked with the instructions. The controller is configured to receive an access request, to determine whether the conditions have been satisfied, and to send a trigger message that triggers the access control contract to execute the instructions in response to determining the conditions have been satisfied.