Abstract: The present disclosure discloses a method and network device for providing VLAN mismatch detection in networks. Specifically, a network device monitors a plurality of packets received by a first device from a second device to identify a first set of VLAN identifiers indicated by at least one of the plurality of packets. The network device receives from a third device at least one packet tagged with a particular VLAN identifier, whereas the at least one packet to be forwarded by the first device to the second device. The network device then determines whether the particular VLAN identifier is included in the first set of VLAN identifiers indicated by at least one of the plurality of packets received by the first device from the second device. If the particular VLAN identifier is not included in the first set of VLAN identifiers, the network device presents a notification.

Abstract: A system and method are described for connecting an IoT device to a wireless router and/or access point.

Abstract: The embodiments of the present invention provide a secure establishment method, system and device of a wireless local area network. The method includes: acquiring, by a UE, a first key; the first key is a shared key of the UE and a network element equipment in a mobile communication network to which the UE is accessed when implementing air interface security, or is derived according to the shared key; deriving, by the UE, according to the first key and a derivation parameter to acquire a derivation key; establishing, by the UE, according to the derivation key, secure connection with a WLAN node acquiring a derivation key, wherein the derivation key acquired by the WLAN node is the same as the derivation key acquired by the UE.

Abstract: A method is provided for managing communications from a computing device of a vehicle. The method includes receiving configuration parameters generated by a user; determining a communication priority scheme based on the configuration parameters; communicating a first subset of data according to a first communication medium based on the communication priority scheme; and communicating a second subset of data according to a second communication medium based on the communication priority scheme.

Abstract: Systems, methods, and devices for forming networks of interconnected devices are provided. Individual devices of the network are configured to utilize multiple wireless communication standards which may include wireless LAN communication standards, short-range wireless communication standards, and low-power wireless communication standards. User utilize access devices to monitor and control the devices of the network. Communications transmitted to devices of the network may be routed through a server located remotely relative to the network as well as through other devices of the network. The devices of the network are configured with multiple security modes having different security features resulting in different response times. The security mode a device utilizes when communicating with an access device or another device of the network is selectable by the user.

Abstract: A technique for providing service data is provided. According to an example embodiment, the technique comprises operating, in a user apparatus, a first wireless communication portion for short-range wireless communication and a second wireless communication portion for wireless communication, providing, in response to receiving a list of allowable device identifiers from a remote server apparatus via the second wireless communication portion, said list of allowable device identifiers to the first wireless communication portion, and issuing, in response to the first wireless control portion receiving an advertising message comprising a device identifier included in said list of allowable device identifiers, an advertising report including at least one of the received device identifier and a service identifier associated with the received device identifier.

Abstract: Methods and systems for secure cloud storage are provided. According to one embodiment, a gateway maintains multiple cryptographic keys. A file that is to be stored across multiple third-party cloud storage services is received by the gateway from a user of an enterprise network. The file is partitioned into chunks. A directory is created within a cloud storage service having a name attribute based on an encrypted version of a name of the file. For each chunk: (i) existence of data is identified within the chunk associated with one or more predefined search indices; (ii) searchable encrypted metadata is generated based on the identified data and a selected cryptographic key; (iii) an encrypted version of the chunk is generated; and (iv) a file is created within the directory in which a name attribute includes the searchable encrypted metadata and the file content includes the encrypted chunk.

Abstract: A working method of a smart key device, in which it includes: power on the smart key device; the smart key device reads Bluetooth module parameters, and determines whether the Bluetooth module parameters are read successfully, if the parameters are read successfully, switch the Bluetooth module to connection state, and execute a next step; if the parameters are not read successfully, execute the next step directly; the smart key device determines whether working voltage is lower than a preset value, if yes, prompt low voltage state, and the device is turned off after a first preset time; if no, the device tests working voltage and waits for an interrupt trigger signal; when the device receives the interrupt trigger signal, enter corresponding interruption according to the interrupt trigger signal, after execute corresponding interrupt processing, exit corresponding interruption and continue to test the working voltage.

Abstract: An aircraft monitoring system includes multiple wireless aircraft sensors and multiple meta sensors mounted on-board an aircraft. Each wireless aircraft sensor is configured to sense an aircraft parameter. Each meta sensor is associated with an aircraft sensor and is configured to determine a location or orientation on the aircraft of the aircraft sensor. A data acquisition system mounted on-board the aircraft and connected to the multiple aircraft sensors and the multiple meta sensors can perform aircraft monitoring operations based on the sensed aircraft parameters and on a location or orientation of the aircraft sensors.

Abstract: A plurality of information processing apparatuses are each assigned an apparatus identification code and a group identification code. In a database of a server apparatus, when or before each of the information processing apparatuses is sold to a customer, a correspondence relationship between the apparatus identification code and the group identification code assigned to the information processing apparatus is stored. When having communicated with any one of the information processing apparatuses sold to a customer, the server apparatus acquires from the database a group identification code corresponding to the apparatus identification code received from the information processing apparatus, and provides a service based on the acquired group identification code.

Abstract: A wireless connection method between a plurality of electronic devices using an out of band channel is provided. The wireless connection method includes receiving a first hash value through the out of band channel, receiving device identification information of electronic devices in proximity to an electronic device through a main wireless channel, calculating hash values of the device identification information, and performing a wireless connection of the electronic device with a surrounding electronic device that has the hash value identical to the first hash value among the calculated hash values.

Abstract: Distance-based authentication is provided for mitigating undesirable interaction and/or attacks upon ranging systems, such as those involving vehicle entry or secure payment. As may be implemented in accordance with one or more embodiments, a leading edge of one or more pulses in a waveform of a signal is obscured as part of distance-based authentication. For instance, noise may be generated via a noise modulation circuit and combined with some or all of a leading edge of a pulse. Distance-based authentication is provided by transmitting a signal with a waveform having the obscured portion of the leading edge, which operates to mitigate detection of the polarity of the leading edge or otherwise of the leading edge itself.

Abstract: An access point and a sensor node are disclosed for use within a wireless sensor network. The wireless sensor network includes at least one access point adapted to securely communicate with at least one of the sensor nodes using an encryption mechanism that uses a nonce and an encryption key to encrypt the plaintext at the sensor node to create the cipher text included in the data payload of a message sent to the access point. The sensor node does not send the nonce. The access point uses the same nonce to decipher to the received message's data payload, but generates the nonce internally without receiving it from the sensor node.

Abstract: A decentralized component is provided as an overly for a centralized system architecture as represented, for example, by a regional monitoring system. The decentralized component provides additional authentication of communications with a displaced monitoring service. Where agents of the decentralized component detect the presence of an unauthenticated monitoring service, messages can be generated or other actions can be taken to respond to that monitoring service.

Abstract: An electronic device may be configurable to operate in a scrambling mode and a non-scrambling mode while processing chat audio and microphone audio for a first player participating in an online multiplayer game via a game console. While operating in the non-scrambling mode, the electronic device may be configured to transmit the microphone audio to the game console without scrambling the microphone audio. While operating in the scrambling mode, the electronic device may be configured to scramble the microphone audio and transmit the scrambled microphone audio to the game console. The electronic device may be operable to select a scrambling key used to scramble the microphone audio based on a signal received by the electronic device that indicates a role of the player in the online multiplayer game. The role of the player may correspond to which of two or more opposing teams the first player is a member of in the online multiplayer game.

Abstract: Methods for D2D connection re-establishment and related user equipments and radio access node are disclosed, wherein the D2D connection is established between a first user equipment and a second user equipment under the control of a radio access node. In one embodiment, the method comprises: receiving, by the first user equipments, a first message from the second user equipments, the first message comprising a first credential which is calculated by the second user equipment; verifying the first credential by the first user equipment; and sending a second message indicating acknowledgement of the D2D connection re-establishment from the first user equipment to the second user equipment upon successful verification of the first credential.

Abstract: A display unit displays a configuration of a system in a display device. An implementation scheme configuration support unit provides a candidate of a security implementation scheme configurable for a component of the system and configures a security implementation scheme selected by a user to a component selected by a user. An associated function element configuration support unit provides a candidate of an associated function element configurable for a component of the system and configures an associated function element selected by a user to a component selected by a user. An evaluation unit determines whether or not the associated function element configured for the component of the system is appropriate based on a condition to determine appropriateness of the configuration of the certain associated function element. An output unit outputs a result of the determination by the associated function element evaluation unit.

Abstract: Examples disclosed herein relate to wireless communication of a user identifier and encrypted time-sensitive data. Examples further include wireless communication of an authentication token including a user identifier and encrypted time-sensitive data. Examples further include interaction with a remote authentication service. Examples further include utilization of near field communication (NFC).

Abstract: A request for sharing information of a first user to a second user is received. Responsive to the request, information of the first user is obtained. The information is encrypted using a first server key to generate first encrypted information, the first server key being unavailable to the second user. The first encrypted information is encrypted using a second user key specific to the second user to generate second encrypted information for sharing with the second user.

Abstract: An extensible framework for offloading data traffic sent to a mobile computing device over a cellular network to a wireless network comprises software plugins, a plugin host that is typically part of the mobile device operating system, and plugin interfaces through which the plugin host communicates with the plugins. A plugin is associated with one or more mobile operators. The framework can comprise one or more plugins, but typically, only one plugin is active at a time. The framework can automatically detect and connect to wireless networks associated with a mobile operator associated with an active plugin. The plugin can automatically authenticate the mobile device or a mobile device user with the mobile operator over the connected wireless network. The plugins are not allowed access to operating system functions responsible for detecting and connecting and disconnecting to a wireless network, which can improve mobile operating system stability and battery life.

Abstract: A system and method are described for integrating an authentication service within an existing network infrastructure.

Abstract: In one embodiment, a server 120 may push linked resources 320 to a client device 110 using the server stack 124. The server stack 124 may detect a linked resource 320 associated with an active initial navigation request 402. The server stack 124 may generate a synthetic linked resource request 506. The server stack 124 may propagate the synthetic linked resource request 506 through the server stack 124.

Abstract: Embodiments herein relate to accessing secure information over a network. The secure information is read and/or modified based on a request received over the network, regardless of an operating state of an operating system (OS) of the device and/or a power state of the device.

Abstract: The present invention is directed to an apparatus, a secure electronic charger case for mobile communication devices (e.g. mobile communication devices, iPads, Phablets and the like), providing additional battery life in a rigid and sturdy, yet light-weight case, as well as providing a secured apparatus, system and method of extracting electronic data from a network enabled device, converting the electronic data into encrypted, concealed data that is stored in a secured, encrypted format on removable memory modules on the electronic charger case, and for which access is limited to user authentication via an authentication module. Upon user authentication, the concealed data may be accessed using an application software program, retrieved and converted into decrypted, viewable electronic data.

Abstract: Systems, methods, and computer-readable media are provided. Some embodiments include initiating a scan operation to generate an electronic document representing a scanned physical document, encrypting the electronic document, storing the encrypted electronic document, and outputting a message. The message may include location information for locating the encrypted electronic document, a key for decrypting the encrypted electronic document, and restriction information indicating a restriction associated with the encrypted electronic document. Some embodiments include receiving the message, using the location information to obtain the encrypted electronic document, decrypting the encrypted electronic document using the key to generate an unencrypted electronic document, presenting an image of the unencrypted electronic document on a display of a computing system, and restricting availability of at least one function or feature of the computing system in accordance with the restriction information.

Abstract: Systems and methods of managing pairing information associated with peer-to-peer device pairings are disclosed herein. The pairing information can include link keys or other configuration data associated with the peer-to-peer device pairing. The system can detect that a first electronic device has paired with a second electronic device via a peer-to-peer device pairing connection. The first electronic device can store pairing information associated with the peer-to-peer device pairing. The system can determine when the peer-to-peer device pairing terminates. For example, the system can determine that a peer-to-peer activity has terminated, that a timeout period has elapsed, or any other event indicative of a termination of a peer-to-peer device pairing. In response to the determination that the peer-to-peer device pairing terminates, the system can delete the pairing information, thereby efficiently utilizing the storage medium of the first computing device.

Abstract: There is provided a method for determining identifying information of a wireless network. The method comprises receiving user or device information from a device determined to be both connectable to the network and within a predetermined range of the network. The method further comprises determining identifying information of the wireless network based on the received user or device information. A computer program product and system corresponding to the method are also disclosed.

Abstract: For improving, when performing road-vehicle communication or vehicle-vehicle communication between a roadside device and in-vehicle devices or therebetween, efficiency of distribution information verification including digital signature verification and freshness verification, there are included a memory unit that stores, as an authentication information history, a history of second authentication information of communication data which was received in the past from another communication device and which includes first authentication information, distribution information, and the second authentication information and an authentication processing unit that verifies, on the basis of the first authentication information of new communication data being newly received communication data, authenticity of the second authentication information of the new communication data and that compares the second authentication information of the new communication data with the authentication information history stored in the me

Abstract: The present disclosure relates to a method performed by a network node (110) for managing device-related data to be distributed to a communication device (101, 102, 103, 104) in a communication network. The method comprises receiving (304) location information of the communication device from a presence protocol server (120), wherein the location information is received over a presence protocol, and receiving (306) a device identification for identifying the communication device, wherein the device identification is received over the presence protocol. The method further comprises selecting (308) device-related data for the communication device based on the received device location information, and transmitting (310) the selected device-related data to the communication device according to the received device identification. The present disclosure also relates to a corresponding network node.

Abstract: Disclosed is a process for mutual authentication of a user and service provider. The process receives, at a key generation module (KGM), a notification of an event generated at a computing device. The process transmits the notification of the event to an authentication server. A third party server receives a shared secret provided by a registered user for the event. The shared secret transmitted to the KGM by the authentication server. The KGM generates a one-time key for the event. The process appends the shared secret to the one time key to generate an appended key, which is transmitted to a registered user mobile device. The process authenticates the event in response to receiving a notification from the computing device within a predetermined time period indicating the one-time key was entered at the computing device.

Abstract: Embodiments are described for identifying and accessing an electronic subscriber identity module (eSIM) and associated content of the eSIM in a multiple eSIM configuration. An embedded Universal Integrated Circuit Card (eUICC) can include multiple eSIMs, where each eSIM can include its own file structures and applications. Some embodiments include a processor of a mobile device transmitting a special command to the eUICC, including an identification that uniquely identifies an eSIM in the eUICC. After selecting the eSIM, the processor can access file structures and applications of the selected eSIM. The processor can then use existing commands to access content in the selected eSIM. The special command can direct the eUICC to activate or deactivate content associated with the selected eSIM. Other embodiments include an eUICC platform operating system interacting with eSIMs associated with logical channels to facilitate identification and access to file structures and applications of the eSIMs.

Abstract: A method, device and terminal for binding an NFC application and an operator are disclosed in the embodiments of the present document. The method comprises: after receiving an operation command sent by an upper application program of a terminal, an NFC middleware judging whether the operation command is within an NFC service permission opened by the terminal at an operator; when determining that the operation command is within the NFC service permission opened by the terminal at the operator, sending the operation command to an NFC device; the NFC device reading original NFC data according to the information in the operation command; and after performing data processing on the original NFC data, sending the data to the upper application program.

Abstract: An authentication system that uses a multi-use long string authentication key to authenticate client device access to protected resources, is presented. The authentication system is based on a shared knowledge of long string authentication key. The authentication key is used as a platform to derive digital signatures for access to protected resources. One or more authentication parameters can be used in combination with the authentication key to derive or validate digital signatures. The one or more authentication parameters can include a key index parameter, a key offset parameter, and a key length parameter. The digital signatures derived from authentication keys can be used to control access to various types of protected resources such as, digital house, a vehicle fob key, a remote garage door opener, a hotel room card key, credit or debit cards magnetic strip or chip, online financial accounts, computer or control systems, or website authentication.

Abstract: A technique provides a secret to authenticate a user. The technique involves storing, by processing circuitry, an initial secret in local memory. The technique further involves receiving, by the processing circuitry, a release command after the initial secret is stored in the local memory. The technique further involves, in response to the release command and based on the initial secret, outputting a released secret through an audio jack which is coupled to the processing circuitry. With such a technique, the secret is only exposed in response to user actuation thus providing improved security against an attacker vis-à-vis a conventional authentication token which constantly generates and outputs a series of one-time use passcodes (OTPs) on a display based on a seed stored in memory.

Abstract: There is provided an information processing apparatus and a method of controlling the same. The information processing apparatus performs a device search, displays search results of the device search, and generates tag information to be written into a short range wireless communication tag, using identification information of a device selected by a user based on the displayed search results. Then, the information processing apparatus writes the generated tag information into the short range wireless communication tag with the short range wireless communication.

Abstract: Some embodiments provide a program that provides data protection for a device when synchronizing a set of keychains stored on the device with a set of other devices. The program receives keychain data for synchronizing the set of keychains stored on the device with the set of other devices. The keychain data is specified as belonging to a protection domain. The program determines whether a set of conditions defined for the protection domain is satisfied. When the set of conditions is determined as satisfied, the program allows access to the keychain data in order to process the keychain data and synchronize the set of keychains stored on the device with the set of other devices.

Abstract: A mobile communications terminal communicates data using a mobile communications network that includes base stations and mobility managers that can send and receive signalling packets for controlling user data communications between communications terminals and a destination. The communications terminal can communicate packets with the base stations via a wireless access interface provided by the base stations and send a signalling packet to the mobility managers, the signalling packet including user data intended for a destination, prior to establishing a signalling connection with the mobility managers. The mobility managers can, upon receiving a signalling packet from a communications terminal, detect the packet is not associated with any established signalling connection between the mobility managers and the communication device. The mobility managers can, responsive to the detection, transmit the user data in the signalling packet to the destination.

Abstract: A system for controlling a remote device includes a first trainable transceiver, a second trainable transceiver, and a cloud computing system configured to be in communication with the first trainable transceiver and the second trainable transceiver. The cloud computing system stores a code roll, and the cloud computing system transmits a current value of the code roll to the first trainable transceiver or the second trainable transceiver upon receiving a request transmission from the first trainable transceiver or the second trainable transceiver respectively.

Abstract: A method of allocating resources in a wireless sensor network, the network having functions including medical monitoring of a patient using multiple network devices having sensors, the method including steps of: sensing, by a network device in the network, a life parameter of the patient; recognizing the existence of an emergency condition with respect to the parameter; the network device sending a request for streaming towards a coordinator of the network; the coordinator receiving (S12) the request along with any other requests from other devices in the network; and the coordinator granting (S14, S16) each the request by scheduling one of: a streaming allocation with highest priority for a network device which is in an emergency condition; a streaming allocation of medium priority for a network device sensing a life parameter which is not in an emergency condition; and a streaming allocation of lowest priority for a network device which is not sensing any life parameter of the patient and which is not in an

Abstract: A transmitter is configured to change its unique radio signature enough to defeat radio fingerprinting identification without destroying the content of the transmissions. The transmitter may be configured for defeating both transient-signal fingerprinting and steady-state fingerprinting. The transmitter may be configured to obfuscate transient detection. The transmitter may continuously vary spectral, amplitude, and/or phase characteristics of its transmissions to defeat radio fingerprinting. The transmitter may pair radio fingerprints with subscriber terminal identification codes (e.g., MAC addresses or SMSIs) for generating different radio identities. The transmitter may measure another transmitter's radio fingerprint, and, compensating for its own radio fingerprint, spoof the measured radio fingerprint.

Abstract: The disclosure is related to monitoring data traffic of user equipment through a monitoring node. A monitoring node may receive a data packet from user equipment registered for a monitoring service through a secure channel. The monitoring node may perform a monitoring operation on the received data packet and determine whether the received data packet is a malicious packet or a non-malicious packet. When the received data packet is a non-malicious packet, the monitoring node may transmit the data packet to a destination through a communication network.

Abstract: Methods of pairing a controllers for game play is presented. In one example, a method of pairing controllers to a base computing device for playing a game executed on the base computing device is provided. The method includes receiving a pairing request from one of a first or a second controller. The pair request is generated in response physical contact between the first and second controllers. The method assigns the first and second controllers as a first pairing for a first player and assigns the first pairing to a first color. The method includes transmitting the first color to the first or second controllers, such that at least one of the first and second controllers for the first pairing is configured to illuminate in the first color. Additional pairs of controllers will be assigned a different color, so that each player has a color differentiated color on their respective controller.

Abstract: Headphones capable of receiving audio signals, playing the audio signals, and transmitting the audio signals to other headphones are disclosed. The headphones comprise a capacitive touch user interface panel and an LED lighting system that optionally can pulse with music played on the headphones. The headphones are coupled to a computing device, such as a smartphone, and can interface with a software application running on the computing device. The computing device in turn can be coupled to a server over a network.

Abstract: A system, method and device for reliable configuration for network access. The method includes connecting an AP to a computer, connecting one or more clients over wired connection to the PC, collecting wireless addresses from all clients and sending the wireless addresses to the AP to populate an access control list, and collecting network name from AP and sending the network name to clients over wired connection.

Abstract: This method for managing messages exchanged between a ground station and an aircraft is implemented by an electronic device. Each message includes an identifier, a dialogue number and data. This method comprises acquiring a message, determining the identifier of the acquired message, and comparing the determined identifier with identifiers contained in a table of current sequences. When the identifier corresponds to a sequence of said table, the method comprises associating the acquired message with said sequence, and otherwise, it comprises generating a new sequence using a list of sequences, associating the acquired message with the new generated sequence, and updating the table of current sequences with the new generated sequence. Each sequence includes one or several dialogues, each dialogue including at least two messages.

Abstract: A helical physical unclonable function is disclosed. The helical physical unclonable function may be used to authenticate a supply item for an imaging device. Measurements of the magnetic field adjacent a helical flight are stored in a non-volatile memory to be used by an imaging device to authenticate the supply item. Other systems and methods are disclosed.

Abstract: Systems, methods, and computer readable media for sharing awareness information are provided. A non-aware electronic device can require awareness information including, for example, information about its environment or information about its status within its environment, in order to perform a particular device operation. When the non-aware device lacks an awareness component for detecting the required type of awareness information, the non-aware device can establish a communications path with an aware device that includes such an appropriate awareness component. The aware device can share the required type of awareness information as captured by its awareness component with the non-aware device. The distance between the non-aware device and the aware device can be less than a threshold distance to ensure that the shared awareness information is relevant to the non-aware device.

Abstract: A method and corresponding system for communicating over a network using a first device and a peripheral device, wherein the first device comprises a user interface and a network interface for connecting to the network, and the peripheral device has a local connection to the first device, the local connection being independent of the network. The method comprises receiving data packets from the network at the network interface of the first device and forwarding the received data packets from the first device to the peripheral device via the local connection. A client engine of a communication client, executed on a processor of the peripheral device, processes the received data packets. The peripheral device sends processed data packets to the first device via the local connection such that data contained in the received data packets is displayed on the first device using the user interface of the first device.

Abstract: A group key is computed based on unique identifications of each member device of a group of machine type communication devices, wherein communication with a network application function is performed by using a session identification of the group, and/or by using a session identification of a member device of the group, generated based on the session identification of the group and the unique identification of the member device.

Abstract: A computer-implemented method for evaluating networks may include (1) identifying an initial set of recorded packet performance data that describes an instance of an attempt to establish a network connection path between an original node and a subsequent node in a network, (2) detecting, by a software security system, a network anomaly based on comparison data resulting from a comparison between the initial set of recorded packet performance data and an additional set of recorded packet performance data that describes another instance of an attempt to establish a network connection path between the original node and the subsequent node, and (3) performing, by the software security system, and in response to detecting the network anomaly based on the comparison between the sets of packet performance data, a security action to protect the computing device. Various other methods, systems, and computer-readable media are also disclosed.