Abstract: The disclosed method and system may be used for creating advanced protection means for secure items (e.g. bank notes, identity documents, certificates, checks, diploma, travel documents, tickets) and valuable products (e.g CD-ROMs, DVD's, prescription drugs, products with affixed labels, watches). Secure items are authenticated by shape level lines. The shape level lines become apparent when superposing a base layer comprising sets of lines and a revealing layer comprising a line grating. One of the two layers is a modified layer which embeds a shape elevation profile generated from an initial, preferably bilevel, motif shape image. By modifying the relative superposition phase of the revealing layer on top of the base layer or vice-versa (e.g. by translation or rotation), shape level lines grow and shrink dynamically. In the case that these shape level lines are present, the secure item is accepted as authentic. Otherwise the item is rejected as suspect.

Abstract: A method for secure transmission of information from a digital pen to a receiving device is provided. The method includes obtaining, in the digital pen, a message in the form of a plurality of position indications recorded from a position code on a substrate; sending at least one of the position indications to a database device; receiving from the database device an address of a receiving device which is associated with the at least one position indication and an encryption key relating to the receiving device, the encryption key being associated with the at least one position indication; encrypting the message using the encryption key received from the database device; and transmitting the encrypted message to the address of the receiving device.

Abstract: Techniques are described for using unique features of a storage medium for authentication of data as originating from the storage medium, and also for installing software and data to a storage medium in a way which inhibits unauthorized copying of the software and data to another storage medium. Cryptoprocessing keys are created using unique features of the storage medium such as location information related to storage of selected elements of a software installation on the storage medium, or alternatively defective block information relating to the storage medium. The cryptoprocessing keys are used to encrypt data for transmission to a remote server. The remote server uses the cryptoprocessing keys to decrypt the data and authenticates the data as having been encrypted with the correct keys. In order to control operation of software on a storage medium, location information unique to the storage medium is employed to create links between software modules comprising the software.

Abstract: When a broadcasting station transmits an application including an authentication key enabling use of a program recommendation engine or the like together with a program, a broadcast receiver identifies the application including the authentication key from other applications. When the application including the authentication key is received, the authentication key is extracted. When a CableCARD is inserted, an individual number included in the CableCARD is extracted. Authentication is performed using the authentication key and individual number, and the program recommendation engine is executed when it can be authenticated that execution of the program recommendation engine or the like is enabled.

Abstract: Methods of providing an estimate of the location of a first device are discloses comprising the steps of determining the location of a separately housed, second device located near to the first device; providing the location of the second device to the first device; and using the location of the second device as an estimate of the location of the first device. Either the second device is arranged to perform a function based on its location other than providing its location as an estimate of the location of the first device, or the location of the second device is provided to the first device using a wireless communications link.

Abstract: To secure the confidentiality of data stored in data storage devices, a position determination system is mechanically coupled to the data storage devices and continuously determines a position thereof. A processor, provided with an authorized location for the data storage devices, facilitates transfer of data to and from the data storage devices. Specifically, when the position of the data storage devices matches the authorized location, the processor facilitates transfer of data from the data storage devices without any modification of the data. However, when the position of the data storage means does not match the authorized location, the processor inflates the data by dispersing it in a very large set of irrelevant data.

Abstract: Maps and signs are embedded with plural-bit data in the form of digital watermarks. In one embodiment, the plural-bit data includes location information with respect to a map. A handheld reading device extracts the location information from the map. The reading device then compares the location information with a physical location of the device. Feedback is provided to help a device user to correlate the map location with the physical location. In another embodiment, signs are watermarked to provide navigational and informational aids. The watermarks may include unique identifiers, which allow database lookup of related information.

Abstract: A system, method and computer program product are provided for summarizing firewall activity. Initially, a plurality of types of events associated with a firewall of a local computer is organized. Further, a number of occurrences of each type of event is tracked utilizing the firewall. Further, a graphical representation is displayed indicating a severity of the number of the events utilizing the firewall.

Abstract: A system for preventing recorded data from being illicitly read out and analyzed. An Internet connection interface 11 transmits a program executed by an adapter 7 to an authentication station, whilst receiving the program in an encrypted form from the authentication station. A hard disc 15 records the encrypted program, received from the authentication station. An interface 17 transmits the program recorded on the horizontal direction 15 on the adapter 7.

Abstract: The Evidentiary Imaging System (EIS) provides secure storage or transmission of a digital image into which is encoded the date, time, and location at which the image was taken, along with the camera ID and frame number. The encoding is dispersed throughout the image so that the image cannot be modified without distorting the encoding. The image may be encrypted for additional security. Annotation can be superimposed on the encoded or encoded and encrypted image to classify or identify the image to human or automated scanning systems. The annotation can also be used to key the decoding and decryption tasks. The EIS produces imagery which may be authenticated as to originality, time and location of imaging. The imagery may be stored, duplicated, and transmitted while retaining its authenticity. However, any modifications to the image, including any local changes, are readily detected because the encoding will not decode correctly.

Abstract: An observation unit of an authentication apparatus and an observation unit of an authentication target apparatus observe a radio wave from a common radio star at a common observation time. A sending unit sends information message including information on the observed radio wave, and an information reception unit receives it. An estimation unit estimates a position of the authentication target apparatus based on “the information on the radio wave observed by the observation unit” and “information on the radio wave observed by the observation unit”. A retaining unit pre-retains positions of one or more authentication target apparatus(s). A determination unit checks whether a position of the authentication target apparatus pre-retained in the retaining unit and the estimated position correspond within a predetermined error range, and settles authentication for the information message as a success in a case where the positions correspond.

Abstract: One or more embodiments of the invention provide a method, apparatus, system, and article of manufacture for monitoring components of a digital cinema system. A digital cinema system utilizes an exhibitor system (that has one or more components) to display media content. A configuration of the exhibitor system is stored in the exhibitor system. The integrity of the configuration is then determined by querying each of the components. Software agents on each of the components respond to the query. Based on the configuration and the responses received, the integrity of the exhibitor system is determined.

Abstract: An invention for digital authentication is provided. A first timing signal is received from a remote source using a receiver. Next, a delay number is stored. The delay number is based on a first delay time period between when the first timing signal was transmitted and when the first timing signal was received. A digital transaction is then authenticated using the delay number. In one aspect, a digital certificate is created using the delay number. The remote source can be any source capable of generating timing signals, such as a global positioning satellite (GPS) system or a cell tower system. The delay in the timing signal can be caused by free electrons in a line of sight between the remote source and the receiver, such as by variations in atmospheric conditions or by an object within the line of sight such as bird or tree branch. Optionally, the delay number can be stored on a User Card and a System Card.

Abstract: A method is disclosed of transferring data to a first communications device having a first transceiver for communication at a first data rate over a long range, and a second transceiver for communication at a second, higher data rate over a short range. The method includes forming a co-ordinated short-range wireless network using the first communications device and at least one second communications device of a similar type. Communication is then initiated between the first communications device and said at least one second communications device to establish whether that second communications device has data required by the first communications device. The first communications device then communicates, upon the first communications device receiving confirmation that a second communications device has the required data, with a service provider using its first transceiver to request permission for the transfer of the required data from said communications device to the first communications device.

Abstract: A system and method for downloading fragmented mobile-station ring tones and multimedia presentations for promotional and entertainment purposes. One or more presentations are defined and stored in an electronic storage medium in communication with a fragmentation processor. Ideally, the fragmentation process involves in the first instance segmentation of the presentation according to a predetermined rule set. Whether segmented or not, upon receipt of a fragment delivery request the fragmentation processor reviews the delivery history with respect to the target mobile station or recipient and selects a previously undelivered fragment. The fragment is formatted according to the requirements of the target and transmitted. Preferably a confirmation of receipt is made following transmission. When a completion notification is received, the fragmentation processor initiates a verification algorithm to confirm the completion and, if valid, alerts the system operator.

Abstract: A plurality of services are defined for one service memory field (overlap service), and a plurality of access methods, such as “only read” and “read/write”, are set in the service memory field. When an overlap service is defined, a PIN code may be set to each service. For example, when two services “read” and “read/write” can be started corresponding to a service memory field, two PIN codes are set.

Abstract: In an IP-based mobile communications system, the Mobile Node changes its point of attachment to the network while maintaining network connectivity. Security concerns arise in the mobile system because authorized users are subject to the following forms of attack: (1) session stealing where a hostile node hijacks session from mobile node by redirecting packets, (2) spoofing where the identity of an authorized user is utilized in an unauthorized manner to obtain access to the network, and (3) eavesdropping and stealing of data during session with authorized user. No separate secure network exists in the IP-based mobility communications system, and therefore, it is necessary to protect information transmitted in the mobile system from the above-identified security attacks.

Abstract: A method and apparatus for securely communicating data employs a third-party to facilitate decryption by the recipient. It is necessary for the recipient to interact with the third-party to decrypt received encrypted data. The third-party is unable to decrypt or read the encrypted data and records whether the recipient requested a decryption key generated by the third-party. The third party logs the request from the second party for the decryption key. The originator may then obtain the delivery status of the data from the third party to facilitate proof of submission, proof of delivery, or any other suitable information.

Abstract: Access to digital data is controlled by encrypting the data in such a manner that, in a single digital data acquisition step, it can be decrypted only at a specified location, within a specific time frame, and with a secret key. Data encrypted in such a manner is said to be geo-encrypted. This geo-encryption process comprises a method in which plaintext data is first encrypted using a data encrypting key that is generated at the time of encryption. The data encrypting key is then encrypted (or locked) using a key encrypting key and information derived from the location of the intended receiver. The encrypted data encrypting key is then transmitted to the receiver along with the ciphertext data. The receiver both must be at the correct location and must have a copy of the corresponding key decrypting key in order to derive the location information and decrypt the data encrypting key. After the data encrypting key is decrypted (or unlocked), it is used to decrypt the ciphertext.

Abstract: The method for authorizing access to computer applications is implemented using a computer installation which includes a computer station (1) connected to an inter-computer communication network (9), a read unit (10) connected by an electric cable (2) to the station (1), and at least one personalized portable object (7) in communication with the read unit (10) for the transfer of data. The portable object (7), in particular a wristwatch, includes a memory, several positions of which for access words are kept secret by a read and/or write barrier and at least one position of which for a word is readable. The read unit (10) detects the object (7) close by, reads the readable word and commands the station (1) to connect itself onto a determined server (8) to look in a checking file to see whether the readable word forms part of a list of authorised words. In the affirmative, a password is transmitted to the station (1) so that the read unit (10) sends it to the object (7) to open the read barrier.

Abstract: A method of revealing the device identity of a recipient Bluetooth device. When the recipient device is turned on, it displays the device identity. A user enters the device identity of the recipient device into a sending Bluetooth device in order to establish the initial communication link between the sending and recipient devices. Once the initial communication link is established, the devices are paired. It is no longer necessary to enter the device identity of the recipient device into the sending device in order to establish further communication link. Furthermore, if the recipient device has already been turned on when the user wants to establish the initial communication link, the device identity is displayed when the user sends a message or signal from the sending device to the recipient device.

Abstract: One or more embodiments of the invention provide a method, apparatus, system, and article of manufacture for monitoring components of a digital cinema system. A configuration of an exhibitor system (that has one or more components) of a digital cinema system is stored. Each of the one or more components is then polled (e.g., using radio frequency) based on the configuration. A determination is then made regarding the integrity of the exhibitor system based on the configuration and results of the polling. Further, a global positioning system (GPS) location and an identification (of a component) is received from an exhibitor system component. Based on the identification and the polling, a determination may be made regarding whether the identification is for an unauthorized component and consequently the location of the component for initiating enforcement action.

Abstract: Systems and methods to create venue tokens that provide generalized geographic information while preserving location specific data. In one embodiment, a Universal Location Descriptor (ULD) translator converts location data into a geocode that in one embodiment is a binary code. Location information can include a street address, zip code, directional information, destination, velocity information, latitude and/or longitude, etc. The geocode can then be encrypted to generate a token. Relative geographic similarities can be identified by comparing geographic information from the tokens, thereby allowing similarly situated individuals and/or organizations, service providers, etc., to be identified without disclosing specific location identities of those parties seeking such privacy.

Abstract: A method includes receiving an authentication request from a mobile station (401) and determining whether to forward the request to an authentication agent. When it is determined to forward the request, the request is forwarded to the authentication agent (107). A random number and a random seed are received from the authentication agent (107). The random number and the random seed are forwarded to the mobile station (401). A response to the random number and the random seed from the mobile station (401) is received and forwarded to the authentication agent (107). The authentication agent (107) compares the response with an expected response. When the authentication agent (107) authenticates the mobile station (401), a derived cipher key is received from the authentication agent (107).

Abstract: A method and apparatus for controlling access to digital information utilizes a location identity attribute that defines a specific geographic location. The location identity attribute is associated with the digital information such that the digital information can be accessed only at the specific geographic location. The location identity attribute further includes a location value and a proximity value. The location value corresponds to a location of an intended recipient appliance of the digital information, and may be further defined in terms of latitude, longitude and altitude dimensions. The digital information is encrypted using a geolocking key based at least in part on the location identity attribute. The geolocking key is based on a shape parameter that is determined from the location identity attribute and is included with the encrypted digital information. The shape parameter describes a shape of a geographic area, but does not identify where the geographic area is located.

Abstract: The invention relates to a security-protected system for positioning by satellites, comprising a constellation of satellites (11) sending out positioning signals under the control of a set of ground stations (14). A user receiver of the said positioning signals comprises means for sending, to a ground station, a request calling for a key which is necessary for interpreting them, advantageously accompanied by a recopy of the positioning signals received. User servicing ground stations comprise means for receiving this request, calculating the position of the user and verifying whether the user possesses a privileged status, and means for addressing the said key to the user receiver, in the event that the verification is positive, this key further comprising means for interpreting the positioning signals with the aid of the key so as to deduce his own position therefrom.

Abstract: The present invention provides an information authenticating apparatus and an authenticating station adapted to improve the probative value of data as evidence by ensuring a high objectivity of the data. The information authenticating apparatus comprises a digital camera and an authenticating information adding section which adds authenticating information to digital data entered by the digital camera. The authenticating station comprises, on the other hand, a communication unit which receives the digital data from the information authenticating apparatus, and a digital signature affixing section. The digital signature affixing section affixes the digital signature to the digital data received by the communication unit when authenticating that the digital data have been entered by the digital camera.

Abstract: Applications/functions within an electronic processing device having a GPS card and antenna, such as a laptop or personal digital assistant, can be enabled only when in a specified geographic location. For each critical application/function, its accessibility is programmed to be enabled/disabled only in specified geographic regions. No additional passwords are required: access or abortion of an running program are automatic. The geographic regions can be input into the electronic processing device using GPS processing or using a graphical user interface on a map. Other methods of determining the boundaries of the appropriate geographic regions for each applications/functions are disclosed. An application/function will not be opened if the electronic device is not within the geographic region associated with the application/function.

Abstract: A cryptographic key split combiner includes a number of key split generators for generating cryptographic key splits from seed data, and a key split randomizer for randomizing the key splits to produce a cryptographic key. The key split generators can include a random split generator for generating random key splits, a token split generator for generating token key splits based on label data, a console split generator for generating console key splits based on maintenance data, a biometric split generator for generating biometric key splits based on biometric data, and a location split generator for generating location key splits based on location data. Label data can be read from storage, and can include user authorization data. A process for forming cryptographic keys includes randomizing or otherwise binding the splits to form the key.

Abstract: A system of allowing user login to a computer. The user is allowed to login by entering some kind of personal identification information e.g. biometric, password or hand. Once login, the computer detects its surroundings. The surrounding detecting can be by GPS, e.g. to detect location, or can use a camera to detect of view of a user. When the user does not properly login, account of the incorrect login is maintained. Each increment of the incorrect login's causes the security to increase.

Abstract: An electronic system embodies a security system which provides varying levels of security based on the location of the system. As such, the system includes a location module, such as a geosynchronous positioning system (“GPS”) receiver that permits the system to determine its location relative to a plurality of preset location areas. Such location areas might be programmed to include the user's office, home, predetermined location for a business trip and the like. Based on the location area in which the system is located, the system invokes a security mode associated with that particular location area. Different location areas may have different security modes.

Abstract: The broadband telephony interface is provisioned by receiving information authenticating a provisioning server, establishing a communication channel between the user and the provisioning server over which is transmitted authorization information from the user to the provisioning server, and encrypting and transmitting a cryptographic key associated with the user to the provisioning server. The cryptographic key can be a symmetric key or a public key corresponding to a private key stored in the broadband telephony interface. The cryptographic key can be utilized to generate other keys which are utilized to secure communication channels for the telephony service. The broadband telephony interface advantageously can be implemented as untrusted hardware or software that is installed by a customer.

Abstract: A system and method for providing a location-based service from a third party service provider includes encrypting a client's identification information using a public key exchanged with a network location server, wherein the network location server stores a record indicating a location associated with the identification information. The encrypted identification information is transmitted from the client to the third party service provider. The third party service provider transmits a location request to the network location server, the location request including the encrypted identification information received from the client. The third party service provider provides the location-based service according to a response to the location request from the network location server.

Abstract: A system for authenticating the location of a client system accessing a web server system associated with a physical entity includes a location beacon adjacent to the physical entity. The location beacon transmits a first beacon signal containing a web address of the web server system and a token that expires within a predetermined time period. A beacon receiver in the client system receives the first beacon signal, and sends a first request having the token and a key generated by a random number generator in the client system to the web server system. A location authentication module in the web server system retrieves the key from the first request if the token has not expired. A location authentication beacon adjacent to the physical entity transmits a second beacon signal containing the web address and a customized token encrypted using the key. The beacon receiver receives the second beacon signal and uses the key to decrypt the customized token.

Abstract: An extensible Global Positioning System (GPS) receiver system is described. The receiver system isolates user application processing from time critical GPS acquisition and tracking processing in order to insure that GPS acquisition and tracking processing is timely performed. Thus user application processing can be developed without concern of conflict with GPS acquisition and tracking processing.

Abstract: In a position authentication system and electronic equipment used for the same, image data photographed by a digital camera 1 are written into storage device 3, and at the same time GPS electric wave 5 is received by GPS receiver 2 to generate latitude/longitude information. The GPS receiver 2 encrypts the latitude/longitude information, and transmits this information as position information to center system 4. The storage device 3 stores copy-guarded place-specifying data transmitted from the center system 4. The center system 4 decodes the position information 6 input from the digital camera 1, and specifies the place on the basis of the latitude/longitude information thus obtained to generate place-specifying data. The place-specifying data thus generated are subjected to copy guard-processing and then transmitted to the digital camera 1.

Abstract: A method and apparatus for controlling access to digital information utilizes a location identity attribute that defines a specific geographic location. The location identity attribute is associated with the digital information such that the digital information can be accessed only at the specific geographic location. The location identity attribute further includes a location value and a proximity value. The location value corresponds to a location of an intended recipient appliance of the digital information, and may be further defined in terms of latitude, longitude and altitude dimensions. The location identity attribute is enforced by allowing access to the digital information only at the specific geographic location. As a first part of this enforcement process, the location of an appliance through which access to the digital information is sought is identified.

Abstract: An apparatus and method for location based wireless client authentication is described. The method includes the receipt of an authentication/access request from a wireless client desiring access to a wireless network. Once the request is received, a spatial location of the client is identified. Once the physical location of the client is identified, compliance with the authentication/access request is performed according to the identified spatial location of the device. For example, in one embodiment, when the spatial location of the client falls within predefined wireless network boundaries, the client is generally granted network access. The granted access may include a possible key exchange for unidentified clients, or challenge and response authentication for identified clients. In other words, wireless clients that have gained access to a certain physical location are assumed to have passed through some other form of physical authentication and, hence, are deemed trustable.

Abstract: A method is disclosed for a device to interdependently validate a digital content package having a piece of digital content in an encrypted form, and a corresponding digital license for rendering the digital content. A first key is derived from a source available to the device, and a first digital signature is obtained from the digital content package. The first key is applied to the first digital signature to validate the first digital signature and the digital content package. A second key is derived based on the first digital signature, and a second digital signature is obtained from the license. The second key is applied to the second digital signature to validate the second digital signature and the license.

Abstract: In order to shorten the time required for encryption and decryption of communication data, the contents of input data are analyzed by a discrimination method such as pattern matching, and in accordance with this analysis result, it is checked whether the received data is particular data. A portion of data judged as the particular data is encrypted and sent to an output buffer, whereas a portion other than the particular portion is not encrypted but is directly sent to the output buffer. Thereafter, the contents in the output buffer are transmitted. The particular data includes a control code of print data, upper bits of image data, predetermined discrete bits of voice data, a conversion tale for compression data, and the like.

Abstract: A method, system, and computer program product for dynamically adjusting the encryption level based on the geographic location of a software program are disclosed. The method includes an initial step of determining a geographic location associated with the software program. An encryption level is selected based upon the determined geographic location. The software program is then executed utilizing the selected encryption level. In one embodiment, determining the geographic location is achieved by determining the geographic location of a computer system on which the software program will be executed, preferably through the use of a Global Positioning System. The Global Positioning System may comprise an I/O device of the computer system on which the software executes. In one embodiment, the selected encryption level may be overridden by a Smart Card or other secure device connected to the computer system. In one embodiment, the available encryption levels include, at a minimum, a U.S.

Abstract: A method and system for determining geographic location and mental state of a user. A GPS circuit is to generate signals representing a geographic location. The system uses a host computer and a local computer connected to each other over a network. A keypad is used to enter provided sequence information which is sent to the host computer if entered within a set period of time along with geographic location information provided by a GPS system and serial number information. The host computer verifies that the sequence information, serial number and geographic location information are as expected and if so, allows a user access to certain information provided by the host system.

Abstract: The method of confirming an identity of a person who requests a financial transaction utilizes a plurality of confirmatory processes. Some of these processes include a voice responsive interactive session, an interactive electronic data session, acquiring and comparing a third set of acquired data with data from the person, and acquiring and comparing nth sets of acquiring data with data from the person. Each confirmatory process has time and cost factors associated therewith. The processes are prioritized and correlated to external factors such as the frequency of inquiry, communications channel data, the communications device, random selection criteria and sampling rate criteria. The financial transaction request is processed and cleared or rejected. Some acquired data is stored data and has a nominal cost and a substantially instantaneous. Other types of data are acquired from commercial data sources.

Abstract: A method of securing communications in an RFID system including a reader and an RF tag having a memory configured to store information comprises sending, from the reader, a message to the tag; the tag, in response to the message, generating a challenge value and sending the challenge value to the reader; in any order: the reader performing a mathematical operation on the challenge value based upon a key value to generate a challenge reply and sending the challenge reply to the tag and the tag independently computing a challenge response based on the key value and mathematical operation; the tag comparing the challenge response computed by the tag with the challenge reply sent by the reader; and the tag authenticating the reader if the challenge response matches the challenge reply. An RFID system including an RFID tag and a reader are configured to perform the above steps.

Abstract: A system, method and computer program product are provided for tracing a traffic event utilizing a firewall. Initially, a firewall is executed on a local computer. Next, traffic events between the local computer and a remote computer over a network are monitored utilizing the firewall. Further, the traffic events are displayed utilizing the firewall. In use, at least one of the traffic events is traced utilizing the firewall. Moreover, a map of the trace is displayed for effectively conveying information about the traffic event.

Abstract: When an electronic document is made available for review by other entities, it is often convenient to store the document in a repository or database managed by a third party. A system is provided in which the originator of the document is able to ensure the integrity and security of its document filed with a third party repository without having to trust the administrator of the repository. Both the document originator and the repository administrator have vault environments which are secure extensions of their respective work spaces. The vault of the document originator encrypts a document that it receives from the originator, prior to forwarding it on to the vault of the repository. On receipt of the encrypted document, the repository's vault signs the encrypted document itself before storing the document in the electronic repository and returns to the originator's vault proof of deposit of the encrypted document in the form of a copy of the signed encrypted document.

Abstract: To perform end-to-end authentication between a customer premises network termination (CPNT1) of a user and a network access server (NAS1) of a service provider at set-up of a label switched connection in a label switched data packet system, end-to-end authentication information is transported over label distribution signaling channels.

Abstract: A method makes it possible to use content, such as various types of data and programs, without causing failure in collecting royalties by enabling a unique ID to be set in an apparatus in which no ID is set during production. The method includes recording, in an apparatus, content which is made usable by recording a release key in the apparatus; recording, in the apparatus, ID setting instructions; executing the ID setting instructions; and creating an ID distinctive to the apparatus, the ID usable to acquire the release key.

Abstract: Methods and apparatus for providing location certificates to certify the position or location of an object are disclosed. The position of the object is computed using radio signals and the secure transmission of the computed position is achieved using public key encryption techniques.

Abstract: Method and apparatus for providing authenticated, secure, on-line communication between remote locations including a user terminal adapted to enable a player in one location to remotely communicate via a communications medium such as the Internet with a gaming host in another location. Location of the remote user terminal, the host server and universal time are determined using means for accessing signals generated by geostationary navigational transmitters, such as in the global positioning satellite (GPS) system. Player authentication (identity verification) is determined by use of a personal identification number (PIN) and an electronic signature verification service. Security of communication is accomplished through use of a public-key/private-key encryption system.