Abstract: Systems, methods, and devices for access control of crypto wallets. A crypto wallet may interoperate with multiple wallet controller devices. By implementing various key exchange mechanisms, instructions from the wallet controller devices may be securely provided to the crypto wallets, and the crypto wallets may verify the source of the instructions. By implementing these mechanisms, a risk of theft or unauthorized transfer of cryptocurrency associated with the hardware wallet is ameliorated.

Abstract: Methods, systems, devices, and apparatuses for securely providing an over-the-air firmware upgrade. The system includes an embedded device configured to receive the firmware upgrade. The system includes a server having a memory configured to store a first key encryption key, the firmware upgrade and a firmware key and having a processor coupled to the memory. The processor is configured to obtain the firmware upgrade, the firmware key and the first key encryption key. The processor is configured to encrypt the firmware upgrade using the firmware key. The processor is configured to encrypt the firmware key with the first key encryption key and transmit the encrypted firmware upgrade and the encrypted firmware key to the embedded device.

Abstract: Methods, systems, devices and apparatuses for preventing use of fraudulent and/or counterfeit embedded devices. The anti-cloning system includes a first device configured to be coupled to or receive a first embedded device. The first embedded device has a first unique identity value. The anti-cloning system includes a controller. The controller is coupled to the first device. The controller has a controller memory. The controller memory is configured to store a public verification key. The controller has a controller processor. The controller processor is coupled to the controller memory and configured to verify the first unique identity value using the public verification key. The controller processor is configured to allow or permit the first device to operate and use the first embedded device when the first unique identity value is verified.

Abstract: Systems, methods, and devices for remote control of IoT devices include a gateway device providing interconnection between a remote gateway device and an embedded device. The embedded device may be a device with short-range or peer-to-peer communication capabilities and the gateway device may provide interconnection of the embedded device to a communication network such as the internet. Commands may be provided remotely over the communication network to the gateway device for execution by the embedded device.

Abstract: Systems, methods, and devices for identifying and authenticating devices include a plurality of controllers and an embedded device. A first controller may grant or deny access of other controllers to the embedded device without a centralized intermediary such as a remote network resource. In this manner, different device control privileges may be set for different devices in the absence of a constant network connection among the devices or between the collection of devices and a network-connected resource such as an authentication server.

Abstract: Methods, systems, devices, and apparatuses for securely providing an over-the-air firmware upgrade. The system includes an embedded device configured to receive the firmware upgrade. The system includes a server having a memory configured to store a first key encryption key, the firmware upgrade and a firmware key and having a processor coupled to the memory. The processor is configured to obtain the firmware upgrade, the firmware key and the first key encryption key. The processor is configured to encrypt the firmware upgrade using the firmware key. The processor is configured to encrypt the firmware key with the first key encryption key and transmit the encrypted firmware upgrade and the encrypted firmware key to the embedded device.

Abstract: Methods, systems, devices and apparatuses for securely providing an over-the-air firmware upgrade. The system includes an embedded device configured to receive the firmware upgrade. The system includes a server having a memory configured to store a first key encryption key, the firmware upgrade and a firmware key and having a processor coupled to the memory. The processor is configured to obtain the firmware upgrade, the firmware key and the first key encryption key. The processor is configured to encrypt the firmware upgrade using the firmware key. The processor is configured to encrypt the firmware key with the first key encryption key and transmit the encrypted firmware upgrade and the encrypted firmware key to the embedded device.

Abstract: Methods, systems, and apparatus for providing secure communication. The device includes a secure element for generating application key pairs. The device includes a trusted environment that is physically or logically isolated from an untrusted environment. The trusted environment includes one or more processors configured to perform operations of an application. The operations include generating an application key pair. The application key pair includes a secure element private key and a secure element public key. The operations include sending an application authentication request including one or more device identifiers and the secure element public key to a server. The operations include obtaining a digital certificate that includes the secure element public key and the one or more device identifiers. The operations include providing the digital certificate to a second device and establishing a secure communication channel between the device and the second device using the digital certificate.

Abstract: Methods, systems, devices and apparatuses for secure low power communication. The secure lower power communication system includes a medical device and one or more mobile devices. The medical device includes a memory, a network access device and one or more processors. The network access device has multiple hardware device addresses. The multiple hardware devices addresses include a first address and a second address. The network access device is configured to wirelessly communicate with a mobile device. The medical device includes one or more processors coupled to the memory and the network access device. The one or more processors are configured to execute instructions stored in the memory and perform operations. The operations include establishing first secure communication channel between the medical device and an application using the first address. The operations include transmitting advertising packets to remain discoverable by the application using the second address.

Abstract: Methods, systems, devices and apparatuses for preventing use of fraudulent and/or counterfeit embedded devices. The anti-cloning system includes a first device configured to be coupled to or receive a first embedded device. The first embedded device has a first unique identity value. The anti-cloning system includes a controller. The controller is coupled to the first device. The controller has a controller memory. The controller memory is configured to store a public verification key. The controller has a controller processor. The controller processor is coupled to the controller memory and configured to verify the first unique identity value using the public verification key. The controller processor is configured to allow or permit the first device to operate and use the first embedded device when the first unique identity value is verified.

Abstract: Methods, systems, devices and apparatuses for securely providing an over-the-air firmware upgrade. The system includes an embedded device configured to receive the firmware upgrade. The system includes a server having a memory configured to store a first key encryption key, the firmware upgrade and a firmware key and having a processor coupled to the memory. The processor is configured to obtain the firmware upgrade, the firmware key and the first key encryption key. The processor is configured to encrypt the firmware upgrade using the firmware key. The processor is configured to encrypt the firmware key with the first key encryption key and transmit the encrypted firmware upgrade and the encrypted firmware key to the embedded device.

Abstract: Methods, systems, and apparatus for providing secure communication. The device includes a secure element for generating application key pairs. The device includes a trusted environment that is physically or logically isolated from an untrusted environment. The trusted environment includes one or more processors configured to perform operations of an application. The operations include generating an application key pair. The application key pair includes a secure element private key and a secure element public key. The operations include sending an application authentication request including one or more device identifiers and the secure element public key to a server. The operations include obtaining a digital certificate that includes the secure element public key and the one or more device identifiers. The operations include providing the digital certificate to a second device and establishing a secure communication channel between the device and the second device using the digital certificate.

Abstract: Memory management for WiFi Media Access Control (MAC) frames includes dividing a memory into equally-sized smaller chunks; writing a MAC frame that is larger in size than one-chunk size into several chunks; appending special information to each chunk to specify whether the chunk is a starting chunk or an intermediate chunk of the MAC frame or whether the chuck is currently unoccupied at all; linking the chunks carrying the MAC frame; and specifying a task waiting to be performed for the MAC frame. The several chunks may be noncontiguous or contiguous. The memory management technique may further comprise searching the memory for chunks comprising frames waiting for a certain task. The memory management technique may further comprise marking the chunks as empty after the certain task is completed.

Abstract: Memory management for WiFi Media Access Control (MAC) frames includes dividing a memory into equally-sized smaller chunks; writing a MAC frame that is larger in size than one-chunk size into several chunks; appending special information to each chunk to specify whether the chunk is a starting chunk or an intermediate chunk of the MAC frame or whether the chuck is currently unoccupied at all; linking the chunks carrying the MAC frame; and specifying a task waiting to be performed for the MAC frame. The several chunks may be noncontiguous or contiguous. The memory management technique may further comprise searching the memory for chunks comprising frames waiting for a certain task. The memory management technique may further comprise marking the chunks as empty after the certain task is completed.