Abstract: The invention relates to the technical field of cooking, in particular to a recipe program code generation method and a recipe compiling cloud platform system. The recipe program code generation method comprises the following steps: firstly, establishing equipment attribute and control description terms which are associated with corresponding attributes or cooking motions of equipment and also associated with a description keyword term bank; then, selecting corresponding cooking equipment and inputting a literal description recipe; finally, analyzing description keywords in the literal recipe by compiling software and associating the description keywords with the equipment attribute and control description terms of the cooking equipment of the corresponding type, so that recipe program codes are generated.

Abstract: Methods and systems for providing alternate content are disclosed. An example method can comprise determining a failure condition of a content stream. A channel identifier can be determined for the content stream, and alternate content streams associated with the channel identifier can be determined. The alternate content streams can be accessible via a different protocol, frequency, or network path than the content stream. For example, the alternate content streams can be accessible via a packet-switched network path instead a non-packet-switched network path used to access the content stream.

Abstract: Techniques are described for using sensor data derived from a monitoring system to drive personalized content. Sensor data captured by a monitoring system may be used to determine attributes of users of the monitoring system and/or attributes of a property monitored by the monitoring system. The determined attributes may be used to select content to present to users of the monitoring system. Content presentation may be made through the monitoring system and may be triggered based on events detected by the monitoring system.

Abstract: A mechanism for providing secure feature and key management in integrated circuits is described. An example integrated circuit includes a secure memory to store a secret key, and a security manager core, coupled to the secure memory, to receive a digitally signed command, verify a signature associated with the command using the secret key, and configure operation of the integrated circuit using the command.

Abstract: A portable media system for a host computer system, and method of operation thereof, that includes: a controller in the portable media system for communicating clear information between the portable media system and the host computer system; and an encryption system in the portable media system for providing an encryption algorithm for the controller to decrypt cipher information for the host computer system.

Abstract: One or more servers may receive an instruction to change a modulation format, associated with one or more optical channels, from a first modulation format to a second modulation format; provide the instruction to change the modulation format to a network device, associated with the one or more optical channels, to cause the network device to change the modulation format, associated with the one or more optical channels, from the first modulation format to the second modulation format; and determine that a license repository is to be updated based on receiving the instruction to change the modulation format. The license repository may store one or more licenses. The one or more servers may generate a license update instruction to update the license repository based on determining that the license repository is to be updated and output the license update instruction to cause the license repository to be updated.

Abstract: A system and method to perform data management operations in a data management system assigns the data management request to one or more available data management resources. If the data management request fails, at least one data management resource at least partially responsible for the failure is determined, as is a category associated with the one data management resource at least partially responsible for the failure. Other data management requests are identified in a list of data management requests that request data management resources having the same category and the list of data management requests is updated to indicate that the data management system should not perform the other identified data management requests.

Abstract: Access to a provider's restricted resources for users who are not directly associated with the provider but who are permitted to access the restricted resources based on the users' affiliation with a third-party subscriber is provided. An example affiliation is a university student's (user's) affiliation with a university (third-party subscriber). A user's identity can be authenticated by the third party, and the user's access entitlements can be authorized by the third party based on the third party's authorization policies and by an authorized distributor of the restricted resources of which the third party is a subscriber based on the distributor's authorization policies. An access decision is made by a policy enforcement service based on the authorization access decisions made by the third party and by the authorized distributor. The provider allows the user access to its otherwise restricted resources based on a permit decision made by the policy enforcement service.

Abstract: An information bearing device comprising a data bearing pattern, the data bearing pattern comprising M×N pattern defining elements which are arranged to define a set of characteristic spatial distribution properties (Îu,vM,N(x,y)), wherein the set of data comprises a plurality of discrete data and each said discrete data (ui,vi) has an associated data bearing pattern which is characteristic of said discrete data, and the set of characteristic spatial distribution properties is due to the associated data bearing patterns of said plurality of discrete data, wherein said discrete data and the associated data bearing pattern of said discrete data is related by a characteristic relation function (?k1,k2ui,vi(x,y), the characteristic relation function defining spatial distribution properties of said associated data bearing pattern according to said discrete data (ui,vi) and a characteristic parameter (k) that is independent of said discrete data.

Abstract: Cryptographic keys are durably stored for an amount of time. A cryptographic key is encrypted so as to be decryptable using another cryptographic key that has a limited lifetime. The other cryptographic key can be used to decrypt the encrypted cryptographic key to restore the cryptographic key during the lifetime of the other cryptographic key. After the lifetime of the other cryptographic key, if a copy of the cryptographic key is lost (e.g., inadvertently and unrecoverably deleted from memory), the cryptographic key becomes irrecoverable.

Abstract: A method in a pattern encryption protection scheme may efficiently decrypt data blocks in a timely manner. In the method, a processor may receive a frame of data blocks. The frame may include a plurality of pattern-encrypted subsamples, and each pattern-encrypted subsample may include one or more encrypted data blocks and one or more unencrypted data blocks in accordance with a predetermined pattern. The processor may determine a first buffer portion and a second buffer portion based on a number of the data blocks in the frame and the predetermined pattern. The processor may sort the data blocks by copying the encrypted data blocks into the first buffer portion and by copying the unencrypted data blocks into the second data buffer portion. The processor may perform a decryption call to a crypto engine to generate corresponding decrypted data blocks using the sorted encrypted data blocks in the first buffer portion.

Abstract: A heating, ventilation, and air conditioning (HVAC) system for a building includes a plurality of actuation devices, a plurality of sensors, and a controller. The actuation devices receive actuation signals and operate in accordance with the actuation signals to affect one or more variables in the building. The sensors measure the variables affected by the actuation devices and provide sensor response signals including values of the measured variables. The controller generates actuation signal timeseries including samples of the actuation signals and sensor response timeseries including samples of the sensor response signals. The controller applies a discrete cosine transformation (DCT) to each actuation signal timeseries and each sensor response timeseries. Each DCT generates a set of DCT coefficients. The controller identifies a similarity between two or more of the actuation signal timeseries and the sensor response timeseries by comparing the DCT coefficients resulting from the DCTs.

Abstract: Secure Programming of Secret data A method is provided. The method comprises providing a device comprising a secure element coupled to a non-volatile memory, the non-volatile memory comprising a first cryptographic key stored therein; the secure element decrypting and authenticating first secret data using the first cryptographic key to form second secret data; and then rendering the true value of the first cryptographic key unreadable.

Abstract: A system and method is arranged to provide compression and decompression of digital content in a secure manner. The system is configured to authenticate a source of the digital content, and to further determine a consumer's entitlements and rights for access to the digital content. Based upon the determined entitlements and rights for access, the system is directed to decrypt, and decompress the digital content. In one embodiment, a component of the system is enabled to establish a trust relationship with at least one other component of the system, to minimize an opportunity for piracy of the digital content. In another embodiment, a secure clock is directed to provide protection against hackers that may employ an in-circuit emulator, or the like.

Abstract: A communication device of an embodiment includes a communication control unit capable of transmitting a signal based on a plurality of different communication protocols and changing a communication protocol used for communication from a first communication protocol to a second communication protocol, in which the communication control unit does not transmit a signal based on a third communication protocol until a signal based on the second communication protocol is transmitted, but transmits a signal based on the second communication protocol in which at least two of a plurality of communication elements defined by the first communication protocol are changed.

Abstract: The application relates to a method for aggregation of a performance indicator of a device including: concatenating a respective first data item to a plurality of second data items in the device; encrypting the plurality of concatenated second data items relevant for computing the performance indicator using a first encryption key in the device, wherein the first encryption key is based on an additive homomorphic encryption scheme; sending the encrypted concatenated second data items to a computation cluster; computing the performance indicator on the computation cluster using the encrypted concatenated second data items and computing an aggregate value regarding the performance indicator by summing up the encrypted concatenated second data items; sending the aggregate value to a server of a service provider of the device; decrypting the aggregate value using a second encryption key on the server of the service provider; and verifying the decrypted result by checking whether the decrypted sum computed by summ

Abstract: Systems and methods for embedding data in a dynamic image of a remote session display. The method includes, by a processor: receiving a display frame associated with the dynamic image, receiving data to be embedded in the display frame, identifying one or more stable regions in the display frame, upon identification of the one or more stable regions, updating a cache, identifying a largest stable region corresponding to the display frame in the cache, and embedding the data to be embedded in the largest stable region to create a region including embedded data. The cache includes a plurality of stable regions corresponding to one or more display frames associated with the dynamic image.

Abstract: A method for managing multimedia data by a contents server comprises the steps of: generating one or more chunks from an input image; generating chunk information of the input image including a list of the generated chunks; performing an identity check among chunks on the basis of the chunk information of the input image and chunk information stored in the contents server; and updating the stored chunk information according to a result of the identity check, wherein the chunks are a meaningful scene unit in an image.

Abstract: The embodiments provide for binding files to an external drive, a secured external drive, or portable data locker. The files are bound in order to help restrict or to prevent access and modification by certain computers or users. Computers or users that are authorized or within the authorized domain are permitted full access. The files stored on the external drive may be bound in various ways. The files may be encapsulated in a wrapper that restricts the use and access to these files. The bound files may require execution of a specific application, plug-in, or extension. A computer may thus be required to execute program code that limits the use of the secured files. In one embodiment, the external drive provides the required program code to the computer. In other embodiments, the required program code may be downloaded from a network or provided by an external authority.

Abstract: A method of protecting data is disclosed herein. The method comprises: encrypting a data in a protected data item using a first encryption key; and encrypting the first encryption key in the protected data item using a second encryption key that is unique to the protected data item, wherein the unique second encryption key is derived from a third encryption key in the protected data item and to a plurality of protected data items comprising a common characteristic shared with the protected data item.

Abstract: The present invention includes securing data using vaultless tokenization and encryption. The present invention uses static random token tables in conjunction with encryption methods in order to tokenize sensitive data for the purposes of secure transfer and storage. The present invention is configured to identify data for secure storage, split the data into two or more data segments, access one or more static random token tables containing random tokens, retrieve two or more random tokens from the one or more static random tables for each of the two or more data segments, combine the two or more random tokens into a tokenized sequence, and return the tokenized sequence. Moreover, additional encryption may occur before or after the data is split and/or before or after combining the random tokens into a tokenized sequence.

Abstract: A method for determining merchant availability is provided. The method includes storing in an electronic storage device a database of merchant transactions; accessing information in the database concerning the transactions, including time of the transactions and locations for merchants participating in the transactions, and assembling the information to provide locations where a merchant is currently available for conducting business. A computer readable non-transitory storage medium storing instructions of a computer program, which when executed by a computer system, results in performance of steps of the method.

Abstract: Disclosed is a method enabling increasing the security of storing and archiving digital data and adjusting the security level, which level can be selected on the basis of the type and use of the digital data. The method includes restructuring an original file in the form of a plurality of separate, identifiable blocks. Each block includes a field for the binary elements of the data, and a plurality of fields reserved for items of information that each indicate a useful characteristic related to the block, such as the unique identification code. The blocks are transferred to a plurality of dedicated storage sites. Each block corresponds to at least one storage site. A Cartographic Table is set up, containing the Identification Codes of the blocks and associating therewith the number and address(es) of the dedicated storage site(s), and is transferred into the memory of the system and made secure.

Abstract: An information processing system includes a client apparatus and a service providing system. The client apparatus includes first circuitry to transmit, to the service providing system, a package acquisition request for obtaining a package including at least one application program. The service providing system includes second circuitry. The second circuitry receives the package acquisition request, and obtains the package. The second circuitry receives, from the client apparatus, an email address and a tenant setup request, and generates a usage registration screen. The second circuitry transmits an email addressed to the email address, the email including a network, and receives an access to the usage registration screen from an information processing apparatus. The second circuitry sets up a tenant in response to acquisition of package identification information, and registers the at least one application program included in the package identified by the package identification information with the tenant.

Abstract: This disclosure relates to, among other things, systems and methods for managing the secure management and distribution of electronic content over broadcast and/or broadband communication channels. Certain embodiments disclosed herein may allow for implementation of a digital rights management service in connection with bidirectional communication channels and/or unidirectional communication channels, such as a broadcast signal. Various embodiments may allow for the generation and/or transmission of a digital rights management license in a field included in a broadcast signal. The license may be used by a client device to securely manage a received broadcast signal in accordance with associated rules and/or rights.

Abstract: A computer system allows two devices operated by two users from a plurality of trusted users to establish a direct peer to peer wireless connection based on a social network connection. An online system uses social network connection information to determine trusted users for each of the client devices, and monitors the geographic locations of the client devices. Responsive to determining that the client devices are within a predetermined distance from each other and are trusted users for each other, the online system transmits connection information to the client devices, prompting the client devices to establish a direct peer to peer wireless connection through which content can be transmitted.

Abstract: A method receives, by a processing device of a streaming server, a first request to view the media item from the client device via a connection between the client device and the streaming server. Prior to a verification that the client device is authorized to play the media item, the method provides an encrypted portion of the media item to the client device via the connection between the client device and the streaming server. Responsive to the verification that the client device is authorized to play the media item, the method sends, by the processing device via the connection between the client device and the streaming server, a cryptography key for decrypting the encrypted portion of the media item by the client device to facilitate the playback of the decrypted portion of the media item.

Abstract: Embodiments include an apparatus for securing customer data and include a processor, and one or more stored sequences of instructions which, when executed, cause the processor to store an encrypted first key fragment in a first storage area, store an encrypted second key fragment in a separate second storage area, wherein access to the first storage area and to the second storage area is mutually exclusive. The instructions further cause the processor to decrypt the encrypted first key fragment and the encrypted second key fragment using a key set and keys associated with a hardware security module based on receiving a request to derive a master key. The master key is derived using the decrypted first key fragment and the decrypted second key fragment and stored in an in-memory cache. The master key is used to encrypt or to decrypt encrypted customer data.

Abstract: Disclosed are methods, systems and one or more computer readable mediums for storing data securely in a database. In one aspect, transaction data received from a user completing a form is encrypted using a transaction key provided by a record key management server which is administered by a customer of a form hosting entity. An encrypted transaction key is also generated by the record key management server, wherein a record indicative of the encrypted transaction data and the encrypted transaction key is stored in a database administered by the form hosting entity. Data at rest stored in the database, including the record, is encrypted by a database key management server using a database key.

Abstract: A method includes receiving digital content data including audio data and/or video data, generating haptic data using at least some of the received digital content data, encoding the haptic data for efficient transmission over a communication network, multiplexing the encoded haptic data with the received digital content data, embedding information for decoding the encoded haptic data in metadata of the multiplexed data stream, and sending the multiplexed data stream over the communication network. The method may include analyzing the haptic data to determine at least one characteristic of the haptic data, and the encoding the haptic data may include encoding, based on the determined characteristic, the haptic data to meet a pre-defined criteria.

Abstract: Technology for decrypting and using a security module in a processor cache in a secure mode such that dynamic address translation prevents access to portions of the volatile memory outside of a secret store in a volatile memory.

Abstract: Techniques and systems are provided for processing video data and processing one or more media format files. For example, video data can be obtained and processed to generate a media format file that includes the video data and a restricted scheme information box associated with the video data. The restricted scheme information box includes a plurality of scheme type boxes that identify a plurality of restricted scheme types required for processing the video data. In another example, the media format file including the video data and the restricted scheme information box associated with the video data is obtained. The media format file can be parsed, and the video data can be processed according to the plurality of restricted scheme types identified by the plurality of scheme type boxes.

Abstract: Systems and method for watermarking portions of code for the purposes of identification are described. A computer-implemented method of watermarking a portion of code with identification data includes: determining, by a computing device, a number of existing whitespace characters in the portion of code; encoding, by the computing device, the identification data using a set of reference whitespace characters; and embedding, by the computing device, the encoded identification data into the portion of code, wherein the embedding the encoded identification data includes, based on the determined number of existing whitespace characters, either replacing existing whitespace characters in the portion of code with the encoded identification data or inserting the encoded identification data characters into the portion of code.

Abstract: An application for execution on a mobile device can include access to an appliance registration database that includes a list of registered appliances and access to a recipe database wherein at least one recipe contains a list of appliances needed to prepare the at least one recipe. A comparison module can be configured to compare the list of appliances needed to a list of appliances registered.

Abstract: A digital information recording apparatus includes a recording circuit for recording information of a retention period included in the digital information and indicating a period for permitting the digital information to be held in the recording medium, starting with a time at which the digital information is recorded on the recording medium; and information of a playback permission period included in the digital information and indicating a period for permitting the digital information to be played back starting with a time at which the information is reproduced initially following recording of the digital information on the recording medium, permitting temporary recording or copying for the information permitted for “copy never” or “copy one generation.

Abstract: Techniques are described for providing functionality to allow a viewer of a television show to watch a “previously on” segment of an episode of the television show and be able to watch the scenes from prior episodes referenced in the “previously on” segment.

Abstract: Systems and methods for secure user profiles are disclosed. One example method includes the steps of receiving a user profile, the user profile comprising a plurality of domains, at least one of the domains having an associated encryption key and at least one associated data record, wherein the encryption key is encrypted according to a first encryption technique and wherein the at least one data record is encrypted according to a second encryption technique using the encryption key; transmitting a request for a decryption key to a first device, the decryption key usable by the first encryption technique to decrypt the encryption key; receiving the decryption key from the first device; decrypting the encryption key using the first encryption technique and the decryption key; decrypting the at least one data record using the second encryption technique and the encryption key.

Abstract: Methods, apparatus, and data structures embodied in computer-readable media are provided for facilitating access to a service in a network. Title materials are received which include one or more of a first title object, a component of the first title object, or a reference to the first title object. The first title object is a first digital bearer instrument representing at least one right relating to the service, the first title object including a reference to the service. A second title object is identified with reference to a service registry and the reference to the service included in the first title object. The second title object is a second digital bearer instrument with which redemption of the at least one right relating to the service and represented by the first title object may be effected.

Abstract: A method and system for portably binding license rights to content stored on an optical media is disclosed. Media player controllers include a secret that is used in conjunction with indelible media identifiers and digital certificates provided via a key issuance center to permit decryption of content initially distributed and freely copyable in encrypted form.

Abstract: Techniques are disclosed for exchanging information between devices. Each device is configured to execute a web browser application. One of the devices is referred to as a streamer device, and the other a receiver device. The receiver device includes a camera for receiving images displayed by the streamer device. A user of the streamer device can orient the display of the streamer towards the camera of the receiver device. The receiver device uses the camera to observe images displayed by any streamer devices that are present within the field of view of the camera. The receiver device, via the camera, analyzes each video frame displayed by the streamer device for a pattern. If the pattern is detected and matches a predefined pattern, the receiver device can retrieve information associated with the pattern, and display that information in the web browser.

Abstract: A method, apparatus, and manufacture for content protection for protecting some objects is provided. A content protection operation or license operation is performed for at least one media object of a web application. Some or all of the objects are then marked as protected. When an operation is performed that accesses a protected object, a user agent determines whether to deny the operation, to allow the operation and mark data exported by the operation and objects storing the exported data as protected objects, or to allow the operation and not mark data exported by the operation and objects storing the exported data as protected objects.

Abstract: A system for providing cross-services application service, device, and network content delivery management is disclosed. In particular, the system may allow devices and application services supported by multiple network services to leverage the strengths of such network services to ensure that content delivery is efficiently accomplished. The system may enable a device or application service to be associated with a management domain. Then, the management domain may subscribe the device or application service with one or more underlying supporting networks of the management domain. The associating and subscribing may be performed for the management domain by an orchestrator or by a management domain authority. The management domain authority may include a predictive, machine-learning element that drives access to content on behalf of the management domain authority through its devices and services to which they are subscribed.

Abstract: A core network node identifies a non-USIM based authentication procedure to be utilized by a wireless communication device, WCD, being served by the core network node. The node obtains a session key associated with the identified non-USIM based authentication procedure. The node converts the session key associated with the identified non-USIM based authentication procedure to i) a first key, K1, for use by the WCD and a base station serving the WCD to derive an encryption or integrity protection key, Kenc/int, for enabling encryption or integrity protection of a communication between the WCD and the base station or ii) a second key, K2, for use by the WCD and the core network node to derive the first key K1. The node then send i) K1 to the base station or ii) K2 to another core network node that is configured to derive K1 from K2.

Abstract: In a watermark embedding method and apparatus, a layered three-dimensional model is aligned in a printing direction based on a layering direction of the layered three-dimensional model. Then, a watermark having a predetermined pattern is embedded into the aligned three-dimensional model in a direction orthogonal to the printing direction so that the embedded watermark is not associated with the printing direction.

Abstract: Disclosed is an authorization control method of convenient food and a digital menu. A database stores digital menu information, convenient food specification information, digital menu instantiation information and convenient food product information. The convenient food product information and digital menu instantiation information in the database are processed so as to generate convenient food product information unit and digital menu instantiation information unit. By creating the convenient food product information and the digital menu instantiation information, the invention can manage the usage authorization of the convenient food specification information and the digital menu information, while simultaneously associating the convenient food product information and the digital menu instantiation information, thus increasing the convenience in using convenient food.

Abstract: Embodiments of the systems and methods disclosed herein provide a private broadcast platform architecture including a web server communication module, an access module, and an external communications module. The web server communication module receives an encrypted request data packet and sends a resource request message to the access module. The access module receives the resource request message and generate a resource transcoding request message. The external communications module receives the resource transcoding request message and in response, displays a broadcast platform resource data packet stream in a web page for display to a first user.

Abstract: A centralized framework for managing the data encryption of resources is disclosed. A data encryption service is disclosed that provides various services related to the management of the data encryption of resources. The services may include managing application policies, cryptographic policies, and encryption objects related to applications. The encryption objects may include encryption keys and certificates used to secure the resources. In an embodiment, the data encryption service may be included or implemented in a cloud computing environment and may provide a centralized framework for effectively managing the data encryption requirements of various applications hosted or provided by different customer systems. The disclosed data encryption service may provide monitoring and alert services related to encryption objects managed by the data encryption service and transmit the alerts related to the encryption objects via various communication channels.

Abstract: Exemplary embodiments are directed to systems and methods of transforming electronic content. Exemplary embodiments can electronically capture or receive a first electronic content and a second electronic content with a first electronic device. Exemplary embodiments can execute an assignment function to designate the first electronic content as a hidden electronic content and to designate the second electronic content as a cover electronic content. Exemplary embodiments can execute an encryption function that receives as input the hidden electronic content and the cover electronic content, and that outputs an encrypted electronic content and a decryption key. The encrypted electronic content can overlay the cover electronic content over the hidden electronic content such that, prior to decryption, only the cover electronic content is viewable at a location of a graphical user interface.

Abstract: There is provided a method and system for allocating an entitlement to digital media content. In one implementation, the system includes a media server accessible over a communications network and configured to utilize a processor to issue the entitlement including a transferable authorization to access the digital media content to a first user, and to store an entitlement record identified with the first user and authorizing access to the digital media content by the first user in a memory of the media server. The media server is further configured to receive a communication including a data corresponding to the transferable authorization to access the digital media content from a second user and to update the entitlement record to authorize access to the digital media content by the second user.

Abstract: Methods and systems for recording streaming audio and video by directing an incoming audio visual stream to a discrete memory region serving as a virtual display. The virtual display is configured with a section visible to the viewer and a section invisible to the viewer, wherein a streaming video is hidden from the user's display under all conditions. The user's browser is pre-loaded with hooks to redirect the video portion of the stream to the invisible section of the virtual memory wherein a video capture tool specifically designed to interact with the hooks can now recognize each function call, and intercept each frame as it is rendered in the GPU. Concurrently, the audio portion of the stream is remapped using an audio indexing application. The GPU framebuffers and audio sinks are multiplexed together and saved to disk. The file is immediately accessible for playback or copying.