Abstract: Aspects of the disclosure relate to deploying, configuring, and utilizing cash handling devices to provide dynamic and adaptable operating functions. A cash handling device having at least one processor, a memory, and a communication interface may store a device registration module, a containerized operating module, a non-engagement services module, and a secure communications module. The device registration module may include instructions that cause the cash handling device to register with a support server and a plurality of financial institution servers. The containerized operating module may include instructions that cause the cash handling device to selectively execute a first operating application or a second operating application. The non-engagement services module may include instructions that cause the cash handling device to generate and present one or more non-engagement user interfaces.

Abstract: A system that includes a first network node configured to store a first ledger, a second network node configured to store a second ledger, and a third network node. The third network node includes a transformation engine configured to generate a plurality of shares derived using a data entry, which includes setting a share quantity indicating the number of shares to generate and setting a threshold value indicating the number of shares from the share quantity needed to determine the data entry. The transformation engine generates a first share for the first ledger and a second share for the second ledger using a polynomial function. The transformation engine includes enriched data with information indicating when to publish the first share and the second share. The transformation engine transmits the first enriched share to the first network node and transmit the second enriched share to the second network node.

Abstract: An apparatus that includes a memory configured to store encryption keys and encrypted data entries. The apparatus further includes an encryption service engine configured to periodically re-encrypt the encrypted data element, which includes determining that an encryption wait time period has lapsed, obtaining a first encryption key using a first key index, and decrypting the encrypted data element using the first encryption key to recover the original data. The encryption service engine is further configured to obtain a second encryption key, encrypt the original data using the second encryption key, and modify the metadata linked with the encrypted data element with a second key index referencing the second encryption key. The encryption service engine is further configured to receive a data request for the encrypted data element, to send the encrypted data element, and to limit the bandwidth of a data channel used to send the encrypted data element.

Abstract: A system that includes a first network device in a first network configured to send a file from a plurality of files to a compliance controller in the first network. The compliance controller is configured to determine whether the file satisfies a set of compliance rules and to send the file to the virtual machine in the first network in response to determining that the file satisfies the set of compliance rules. The virtual machine is configured to send the file to a second network device in a second network via a network interface. The network interface is configured to block the first network device from sending the file from the first memory to the second network device in the second network. The network interface is also configured to send the file from the virtual machine to the second network device in the second network.

Abstract: A system that includes a routing device and a proxy server in a private network. The routing device configures itself to route data traffic for a network device within a private network using private links. The routing device forwards an access request requesting access to a destination address in a public network from the network device to the proxy server. The proxy server determines whether the access request satisfies a set of access rules and generates an access request response. The routing device forwards the access request response from the proxy server to the network device. The routing device configures itself to route data traffic between the network device and the destination address using public links in response to receiving an access approval message. The routing device communicates data traffic between the network device and the destination address using public links.

Abstract: A system that includes a first network node configured to store a first ledger, a second network node configured to store a second ledger, and a third network node. The third network node includes a transformation engine configured to obtain a plurality of enriched shares from at least one ledger using an index identifying enriched shares linked with a data entry. The number of obtained enriched shares is at least a threshold value corresponding to the number of enriched shares needed to determine the data entry. The transformation engine configured to remove enriched data from the plurality of enriched shares to generate a plurality of shares and perform polynomial interpolation using the plurality of shares to determine the result of the polynomial interpolation at zero. The result of the polynomial interpolation at zero is equal to the data entry.

Abstract: An apparatus that includes a memory configured to store encryption keys and encrypted data entries. The apparatus further includes an encryption service engine configured to periodically re-encrypt the encrypted data element, which includes determining that an encryption wait time period has lapsed, obtaining a first encryption key using a first key index, and decrypting the encrypted data element using the first encryption key to recover the original data. The encryption service engine is further configured to obtain a second encryption key, encrypt the original data using the second encryption key, and modify the metadata linked with the encrypted data element with a second key index referencing the second encryption key. The encryption service engine is further configured to receive a data request for the encrypted data element, to send the encrypted data element, and to limit the bandwidth of a data channel used to send the encrypted data element.

Abstract: A system that includes a first network node configured to store a first ledger, a second network node configured to store a second ledger, and a third network node. The third network node includes a transformation engine configured to generate a plurality of shares derived using a data entry, which includes setting a share quantity indicating the number of shares to generate and setting a threshold value indicating the number of shares from the share quantity needed to determine the data entry. The transformation engine generates a first share for the first ledger and a second share for the second ledger using a polynomial function. The transformation engine includes enriched data with information indicating when to publish the first share and the second share. The transformation engine transmits the first enriched share to the first network node and transmit the second enriched share to the second network node.

Abstract: A system that includes a first network device in a first network configured to send a file from a plurality of files to a compliance controller in the first network. The compliance controller is configured to determine whether the file satisfies a set of compliance rules and to send the file to the virtual machine in the first network in response to determining that the file satisfies the set of compliance rules. The virtual machine is configured to send the file to a second network device in a second network via a network interface. The network interface is configured to block the first network device from sending the file from the first memory to the second network device in the second network. The network interface is also configured to send the file from the virtual machine to the second network device in the second network.

Abstract: A system that includes a routing device and a proxy server in a private network. The routing device configures itself to route data traffic for a network device within a private network using private links. The routing device forwards an access request requesting access to a destination address in a public network from the network device to the proxy server. The proxy server determines whether the access request satisfies a set of access rules and generates an access request response. The routing device forwards the access request response from the proxy server to the network device. The routing device configures itself to route data traffic between the network device and the destination address using public links in response to receiving an access approval message. The routing device communicates data traffic between the network device and the destination address using public links.

Abstract: A system that includes a first network node configured to store a first ledger, a second network node configured to store a second ledger, and a third network node. The third network node includes a transformation engine configured to generate a plurality of shares derived using a data entry, which includes setting a share quantity indicating the number of shares to generate and setting a threshold value indicating the number of shares from the share quantity needed to determine the data entry. The transformation engine generates a first share for the first ledger and a second share for the second ledger using a polynomial function. The transformation engine includes enriched data with information indicating when to publish the first share and the second share. The transformation engine transmits the first enriched share to the first network node and transmit the second enriched share to the second network node.

Abstract: An apparatus that includes a memory configured to store encryption keys and encrypted data entries. The apparatus further includes an encryption service engine configured to periodically re-encrypt the encrypted data element, which includes determining that an encryption wait time period has lapsed, obtaining a first encryption key using a first key index, and decrypting the encrypted data element using the first encryption key to recover the original data. The encryption service engine is further configured to obtain a second encryption key, encrypt the original data using the second encryption key, and modify the metadata linked with the encrypted data element with a second key index referencing the second encryption key. The encryption service engine is further configured to receive a data request for the encrypted data element, to send the encrypted data element, and to limit the bandwidth of a data channel used to send the encrypted data element.

Abstract: A system that includes a routing device and a proxy server in a private network. The routing device is configures itself to route data traffic for a network device within a private network using private links. The routing device forwards an access request requesting access to a destination address in a public network from the network device to the proxy server. The proxy server determines whether the access request satisfies a set of access rules and generates an access request response. The routing device forwards the access request response from the proxy server to the network device. The routing device configures itself to route data traffic between the network device and the destination address using public links in response to receiving an access approval message. The routing device communicates data traffic between the network device and the destination address using public links.

Abstract: A system that includes a first network device in a first network configured to send a file from a plurality of files to a compliance controller in the first network. The compliance controller is configured to determine whether the file satisfies a set of compliance rules and to send the file to the virtual machine in the first network in response to determining that the file satisfies the set of compliance rules. The virtual machine is configured to send the file to a second network device in a second network via a network interface. The network interface is configured to block the first network device from sending the file from the first memory to the second network device in the second network. The network interface is also configured to send the file from the virtual machine to the second network device in the second network.

Abstract: Aspects of the disclosure relate to deploying, configuring, and utilizing cash handling devices to provide dynamic and adaptable operating functions. A cash handling device having at least one processor, a memory, and a communication interface may store a device registration module, a containerized operating module, a non-engagement services module, and a secure communications module. The device registration module may include instructions that cause the cash handling device to register with a support server and a plurality of financial institution servers. The containerized operating module may include instructions that cause the cash handling device to selectively execute a first operating application or a second operating application. The non-engagement services module may include instructions that cause the cash handling device to generate and present one or more non-engagement user interfaces.

Abstract: A system that includes a routing device and a proxy server in a private network. The routing device is configures itself to route data traffic for a network device within a private network using private links. The routing device forwards an access request requesting access to a destination address in a public network from the network device to the proxy server. The proxy server determines whether the access request satisfies a set of access rules and generates an access request response. The routing device forwards the access request response from the proxy server to the network device. The routing device configures itself to route data traffic between the network device and the destination address using public links in response to receiving an access approval message. The routing device communicates data traffic between the network device and the destination address using public links.

Abstract: Aspects of the disclosure relate to deploying, configuring, and utilizing cash handling devices to provide dynamic and adaptable operating functions. A cash handling device having at least one processor, a memory, and a communication interface may store a device registration module, a containerized operating module, a non-engagement services module, and a secure communications module. The device registration module may include instructions that cause the cash handling device to register with a support server and a plurality of financial institution servers. The containerized operating module may include instructions that cause the cash handling device to selectively execute a first operating application or a second operating application. The non-engagement services module may include instructions that cause the cash handling device to generate and present one or more non-engagement user interfaces.

Abstract: A system includes a monitoring tool associated with a cloud service provider. The cloud service provider hosts a cloud network. The cloud network provides cloud-based services to at least a first user and a second user. The monitoring tool monitors events associated with physical components of the cloud network. The monitoring tool also determines a first subset of the physical components. The first subset includes physical components that provide one or more virtualized resources to the first user. The monitoring tool also determines a first subset of the events to communicate to the first user. The first subset of events includes events that are associated with the first subset of physical components during set up, use, and tear down of the one or more virtualized resources provided to the first user. The monitoring tool also communicates the first subset of events to the first user.

Abstract: Aspects of the disclosure relate to deploying, configuring, and utilizing cash handling devices to provide dynamic and adaptable operating functions. A cash handling device having at least one processor, a memory, and a communication interface may store a device registration module, a containerized operating module, a non-engagement services module, and a secure communications module. The device registration module may include instructions that cause the cash handling device to register with a support server and a plurality of financial institution servers. The containerized operating module may include instructions that cause the cash handling device to selectively execute a first operating application or a second operating application. The non-engagement services module may include instructions that cause the cash handling device to generate and present one or more non-engagement user interfaces.

Abstract: A system that includes a first network device in a first network configured to send a file from a plurality of files to a compliance controller in the first network. The compliance controller is configured to determine whether the file satisfies a set of compliance rules and to send the file to the virtual machine in the first network in response to determining that the file satisfies the set of compliance rules. The virtual machine is configured to send the file to a second network device in a second network via a network interface. The network interface is configured to block the first network device from sending the file from the first memory to the second network device in the second network. The network interface is also configured to send the file from the virtual machine to the second network device in the second network.