Abstract: Core entities are each defined as a subset of base entities that satisfy one or more core entity connection relationships. Base stories are each defined as a subset of core entities that satisfy one or more story connection relationships. A risk score of each core entity is calculated based on previously calculated risk scores of the base entities. A risk score of each base story is calculated based on the calculated risk score of each core entity of the base story. Selected base stories are extended with external content to generate corresponding extended stories.

Abstract: Core entities are each defined as a subset of base entities that satisfy one or more core entity connection relationships. Base stories are each defined as a subset of core entities that satisfy one or more story connection relationships. A risk score of each core entity is calculated based on previously calculated risk scores of the base entities. A risk score of each base story is calculated based on the calculated risk score of each core entity of the base story. Selected base stories are extended with external content to generate corresponding extended stories.

Abstract: A method for processing a control channel at a user agent (UA) to identify power control commands within a wireless communication system, the method comprising the steps of, at a user agent, monitoring for power control messages on a single carrier, decoding a message received on the single carrier to generate decoded information and using the decoded information to identify a power control command for each of at least first and second carriers.

Abstract: In accordance with some embodiments, an apparatus for privacy protection includes a peripheral interface connectable to a second device. In some embodiments, the second device is operably connectable to a personal communication device and the peripheral interface provides characteristics of communication signals associated with the personal communication device to the second device. The apparatus also includes a radio frequency (RF) detection device operable to detect energy carrying a communication signal to or from the personal communication device.

Abstract: Embodiments of the present disclosure generally relate to systems and methods for measuring intraocular pressure (IOP) during ophthalmic surgery. In some embodiments, a method for measuring IOP is provided. The method includes measuring fluid pressure in a fluid flow path of a handpiece device using a pressure sensor disposed therein to obtain a fluid pressure measurement, determining a sensor temperature measurement of the pressure sensor, determining a predicted sensor zero offset based on the sensor temperature measurement using a determined zero offset correlation function, and adjusting the fluid pressure measurement with the predicted sensor zero offset to obtain an adjusted fluid pressure measurement.

Abstract: A system and method for identifying over sedation risk factors and generating appropriate alerts for healthcare professionals as a result of an algorithm triggered based whether a calculated over sedation risk score/level for the patient crosses a predefined threshold, and determine whether the patient score is at a low, moderate, or high risk for over sedation. If the patient is at a moderate or high risk, an alert may be triggered and displayed to the healthcare professional, along with data associated with the alert in a synchronized timeline displayed on a user interface.

Abstract: In accordance with some embodiments, a secure modular apparatus providing a first platform for secure platform integration includes communication device(s) and a key store for storing encryption keys. The apparatus additionally includes a crypto engine operable to use the encryption keys for cryptographic operations. The apparatus also includes a controller and a housing arranged to at least partially support the communication device(s), the key store, the crypto engine, and the controller. The controller, via the communication device(s), exchanges encrypted messages prepared or processed by the crypto engine with a second platform provided by a personal communication device, where the second platform is distinct from the first platform and has a plurality of layers including at least one layer between a hardware layer and high level layers, and the encrypted messages control one or more of a hardware unit in the hardware layer and a component in the high level layers.

Abstract: In accordance with some embodiments, an apparatus includes a crypto engine that provides device independent crypto services. The apparatus includes a housing arranged to hold a device. The apparatus also includes a non-transitory memory that further includes a key store for storing a first key. The apparatus further includes a communication device at least partially supported by the housing and connectable to the device to establish a communication channel with the device. The apparatus also includes a controller (e.g., a crypto engine) that receives, via the communication channel, a first portion of data from the device, performs a cryptographic operation on the first portion of the data using the first key to generate a modified first portion, sends, via the communication channel, the modified first portion to the device, and enables the device to derive a second portion of the data using the modified first portion.

Abstract: In accordance with some embodiments, a secure modular apparatus providing a first platform for secure platform integration includes communication device(s) and a key store for storing encryption keys. The apparatus additionally includes a crypto engine operable to use the encryption keys for cryptographic operations. The apparatus also includes a controller and a housing arranged to at least partially support the communication device(s), the key store, the crypto engine, and the controller. The controller, via the communication device(s), exchanges encrypted messages prepared or processed by the crypto engine with a second platform provided by a personal communication device, where the second platform is distinct from the first platform and has a plurality of layers including at least one layer between a hardware layer and high level layers, and the encrypted messages control one or more of a hardware unit in the hardware layer and a component in the high level layers.

Abstract: Specifications of digital certificate validation security policies for a server within an intranet environment are received. A first one of the policies is specified to be applied for an intranet network connection and a second for a network connection outside the intranet. Each of the first and second policies includes a plurality of different configurable individual settings to enable or disable corresponding individual components of a plurality of different component digital certificate validation checks. A digital certificate is received. At least one of the policies to apply is identified. One or more of the plurality of different component checks determined to be performed based on the identified digital certificate validation security policy are performed.

Abstract: Specifications of digital certificate validation security policies for a server within an intranet environment are received. A first one of the policies is specified to be applied for an intranet network connection and a second for a network connection outside the intranet. Each of the first and second policies includes a plurality of different configurable individual settings to enable or disable corresponding individual components of a plurality of different component digital certificate validation checks. A determination is made to establish a connection with a network destination and a digital certificate from the destination is received. One of the policies to apply for the connection is identified. For each of the plurality of the different component checks, a determination is made based on the identified policy whether to perform the component check for the received certificate. Any of the plurality of the different component checks determined to be performed are performed.

Abstract: In accordance with some embodiments, an apparatus that enables trusted location tracking includes a housing arranged to hold a user equipment, one or more devices, a local communication device, and a controller at least partially supported by the housing. The apparatus obtains, via the one or more devices, a first set of data characterizing a location of the user equipment. The apparatus further establishes, via the location communication device, a local communication channel with the user equipment. The apparatus also obtains through the local communication channel a second set of data characterizing the location of the user equipment. The apparatus also determines a trust score characterizing the second set of data based on the first set of data. The apparatus additionally triggers an alert in accordance with a determination that the trust score is below a threshold.

Abstract: An ultrasonic handpiece includes a piezoelectric element assembly. Control signals drive the piezoelectric element assembly simultaneously in a first mode of oscillation and a second mode of oscillation. Feedback of a resulting oscillation of the piezoelectric element assembly in the first mode and the second mode is generated. Based on the feedback, the frequency of each of the first mode and second mode is independently adjusted, as needed, so that the resulting oscillation of each of the first mode and the second mode is each approximately at its respective resonant frequency.

Abstract: In accordance with some embodiments, an apparatus includes a crypto engine that provides device independent crypto services. The apparatus includes a housing arranged to hold a device. The apparatus also includes a non-transitory memory that further includes a key store for storing a first key. The apparatus further includes a communication device at least partially supported by the housing and connectable to the device to establish a communication channel with the device. The apparatus also includes a controller (e.g., a crypto engine) that receives, via the communication channel, a first portion of data from the device, performs a cryptographic operation on the first portion of the data using the first key to generate a modified first portion, sends, via the communication channel, the modified first portion to the device, and enables the device to derive a second portion of the data using the modified first portion.

Abstract: In accordance with some embodiments, an apparatus that controls sensor paths for privacy protection is provided. The apparatus includes a housing arranged to hold a second device. The apparatus obtains first sensor data that includes a biometric marker associated with a user. The apparatus controls sensor paths by obtaining the first sensor data using sensors on the second device, on the apparatus, and/or on a supplemental functional device. The apparatus further generates second sensor data by masking the biometric marker associated with the user in the first sensor data. The apparatus additionally controls the sensor paths by providing the second sensor data from the first apparatus to the second device.

Abstract: In accordance with some embodiments, an apparatus for privacy protection is provided. The apparatus includes a housing arranged to hold a personal communication device and a peripheral interface supported by the housing, where the peripheral interface is connectable to a supplemental functional device. The apparatus further includes a local communication device coupled to the peripheral interface and supported by the housing, where the local communication device includes a personal communication device interface modem operable to provide a communication channel between the peripheral interface and the personal communication device. The apparatus further includes a controller coupled to the peripheral interface and the local communication device, where the controller is operable to manage the communication channel between the supplemental functional device and the personal communication device.

Abstract: In accordance with some embodiments, an apparatus that enables trusted location tracking includes a housing arranged to hold a user equipment, one or more devices, a local communication device, and a controller at least partially supported by the housing. The apparatus obtains, via the one or more devices, a first set of data characterizing a location of the user equipment. The apparatus further establishes, via the location communication device, a local communication channel with the user equipment. The apparatus also obtains through the local communication channel a second set of data characterizing the location of the user equipment. The apparatus also determines a trust score characterizing the second set of data based on the first set of data. The apparatus additionally triggers an alert in accordance with a determination that the trust score is below a threshold.

Abstract: In accordance with some embodiments, an apparatus for privacy protection includes a housing arranged to hold a second device, a local communication device at least partially supported by the housing, and a controller, where the apparatus is associated with a radio frequency (RF) power detector. The RF power detector monitors energy emitted from one or more antennas of the second device in response to determining that the second device indicates that the second device has transitioned from a first mode of operation to a second mode of operation. The apparatus further establishes a communication channel between the apparatus and the second device, and obtains, through the communication channel, a communication status of the second device. The apparatus can then report compromise of the second device upon determining that a discrepancy between the communication status and the energy emission.

Abstract: In accordance with some embodiments, an apparatus for privacy protection is provided. The apparatus includes a housing arranged to hold a second device; one or more sensors, at least partially supported by the housing, operable to continuously collect biometric data of a user; an authentication neural network, operable to extract from the biometric data a plurality feature vectors associated with a plurality of identifiable scores; and a decision unit, coupled to the authentication neural network, operable to generate an authentication score as a function of the plurality of identifiability scores and the plurality of feature vectors, determine whether or not the authentication score satisfies an authentication threshold, and gate electronic access to the second device base on whether or not the authentication score satisfies the authentication threshold.

Abstract: Specifications of digital certificate validation security policies for a server within an intranet environment are received. A first one of the policies is specified to be applied for an intranet network connection and a second for a network connection outside the intranet. Each of the first and second policies includes a plurality of different configurable individual settings to enable or disable corresponding individual components of a plurality of different component digital certificate validation checks. A determination is made to establish a connection with a network destination and a digital certificate from the destination is received. One of the policies to apply for the connection is identified. For each of the plurality of the different component checks, a determination is made based on the identified policy whether to perform the component check for the received certificate. Any of the plurality of the different component checks determined to be performed are performed.