Abstract: One particular implementation of the present invention may involve a control unit of an ionic foot bath or other health product. The control unit may be connected to a network or the Internet such that the control unit may be monitored or controlled by a third party, such that the third party may provide programming updates, adjust the programming of the control unit to conform to the user's preferences and provide flexibility to a practitioner with several foot bath systems. The control unit may also provide the functionality of a pay-per-use method for use of the ionic foot bath. The method may allow a user or an operator of the product to purchase operational time that is desired to use the product. Once the operating time is purchased, the product may be operated for the purchased amount of time, at which point, more usage time may be purchased.

Abstract: An automated system and method for piracy control based on user generated updates is described. The system and method described renders human intervention for piracy control superfluous and, therefore, is cost-effective, and consumes less time. The automated system and method for piracy control based upon update requests significantly reduces the number of update requests by pirated copies of the software, reduces the burden on the update server and smoothens the overall user experience for the legitimate users of the software.

Abstract: A method and system for tracking potentially fraudulent activities associated with one or more web sites is disclosed. The system includes a fraud tracking server connected to a fraud tracking database. The fraud tracking server includes a communications module to facilitate the exchange of data between the server and multiple client devices. The fraud tracking server receives data from one or more client devices that identifies a potential spoof site. The fraud tracking server also includes control logic to generate a spoof site tracking record in the fraud tracking database. The spoof site tracking record includes the data identifying the potential spoof site. After the spoof site tracking record has been created, the fraud tracking server notifies an administrator of the potential spoof site by communicating the data received and stored in the fraud tracking database to an administrator.

Abstract: Systems and methods for the automated recording of time entries by a mobile device of interactions between a professional and other parties occurring on that device on behalf of a client of the professional are described. File information is automatically retrieved from a first server based on identifying information associated with an interaction, and the recording of the file number, as selected from candidates presented to the professional, along with the duration of the interaction, a description of the interaction and identifiers for the professional and the other party in a time entry that may then be buffered on the first server prior to transmission to a billing server. Encrypted sensitive information may be stored on the first server, which may thereby be operated by a third party and shared with other professionals.

Abstract: A method validates whether a component/device installed within an information handling system (IHS) is an OEM (original equipment manufacturer) programmed device, by: reading identification (ID) data and an identifier code from the target device; generating a unique encrypted sequence using the ID data; providing a unique validation check code based on the ID data; generating a component validation code corresponding to the target device via a decryption process involving the unique encrypted sequence; and comparing the component validation code to the validation check code. The method further includes: in response to the component validation code matching the validation check code, identifying the target device as an OEM programmed device with a valid identifier code stored as the identifier code; and enabling certain processes reserved for only verified OEM programmed devices. The decryption process reverses an encryption process utilized when generating the unique OEM identifier code of the target device.

Abstract: There is disclosed a method. The method includes identifying, using a mobile device, an encrypted electronic token associated with at least one physical package designated for delivery to a destination. The electronic token having been encrypted by a first key associated with a particular party. The method also includes electronically signing, using the mobile device, for the at least one physical package. This includes initiating a decryption of the encrypted electronic token with a second key associated with the particular party.

Abstract: At least one aspect disclosed herein relates to a wager-based gaming device which includes a security monitoring and reporting system. In at least one embodiment, the security monitoring/reporting system may be configured or designed to automatically monitor various conditions, events, and/or activities at the gaming device for various types of security-related issues, and to automatically and/or dynamically report the detection of security-related issues to one or more devices, systems and/or other entities.

Abstract: A method for allocating a first range of identifiers to a customer-system from a register. The method comprising the steps of: receiving a request for identifiers from a new customer-system; identifying a largest range of unallocated identifiers to define an available range within the entire range of identifiers belonging to the register; identifying a midpoint in the largest available range; and allocate the identified midpoint as a start location for the customer-system range. Identifiers can be issued as identifier pairs, one being an encrypted identifier and the other being a corresponding unencrypted identifier.

Abstract: A system for enabling collaboration between two or more customer contact campaigns running within a call center environment includes at least one outbound contact server (OCS) resident on a digital medium, the OCS including an automated dialer application resident on a digital medium thereon or accessible thereto for dialing contact numbers from contact records assembled for the running campaigns, a call monitoring and recording system executing from software on a digital medium, for monitoring call dialing progress and business results of completed calls, a central data repository for storing dialing progress and business results data collected by the running outbound campaigns, and a data sharing mechanism executing from software resident on a digital medium, accessible to each campaign running on the OCS for sharing collected data among the running campaigns.

Abstract: A vehicle computing system includes a processor programmed and configured to establish communication with a wireless device brought into proximity of a vehicle. The processor may use the wireless device to receive an identifier from a vehicle rental administrative system. The identifier is configured with the processor to activate a vehicle during a prescribed rental period. The processor may receive user input to activate the vehicle for a rental period. The processor may compare the user input to the received identifier and enable a keyless drive-away of the vehicle if the user input corresponds to the identifier.

Abstract: A method of managing digital rights is disclosed that includes recording media content at one or more servers supporting a multimedia content distribution service. The one or more servers are configured to transmit multimedia data to multiple customer premises equipment (CPE) devices. The method further includes determining recorded media content at the one or more servers that is associated with a content source and providing a graphical user interface (GUI) accessible to a content manager at the content source to manage digital rights. The GUI includes a list of the recorded media content and at least one selectable element associated with each item of the list accessible to select media content and to configure digital rights associated with the selected media content.

Abstract: A system and method are provided for managing data being displayed on at least one monitor screen based on monitoring user's attention in relation to the monitor screen. In one embodiment, upon detecting that the user's attention is leaving at least a portion of a screen, the system may alert the user of such an event. Alternatively, the system could alert the user upon detecting a triggering condition while the user's attention is away from the at least a portion of the screen. The step of alerting the user may include modifying at least a portion of a display on a monitor not being viewed by the user. Additionally, the system may initiate preparation of a report including any data not being viewed by a user during the time period when the user is not viewing a portion of the monitor.

Abstract: Described are various implementations of location-targeted online services. When a user accesses the Internet from a supported location, he'll be able to use premium or exclusive online services (premium content, member-only discounts etc.) for free and without going through an elaborate subscription process. The location owner may promote these services before the user enters the location. Example: in addition to mentioning “free Internet”, the hotel owner can attract new customers by mentioning “free Netflix movies” or “free access to premium content, from Zagat reviews to stock reports”. It allows the location owner to utilize a network (WIFI) service provider as a means of increasing its core business and not just as a source of incremental advertisement income.

Abstract: A method and system are disclosed for preventing rendering of content at overlapping time periods on more rendering devices than permitted by a license associated with the content.

Abstract: Methods and systems of segmented access of remotely stored biographical data to a client device are disclosed. In one embodiment, a biographical information is obtained from a vocational collateral such as a business card. In this embodiment, a method and system includes extracting a biographical data from a digital identifier of the vocational collateral. The method and system includes assigning at least one of an access privilege and a security privilege to the biographical data extracted from the digital identifier. The method and system further includes storing the biographical data comprising at least one of the access privilege and the security privilege in a repository of a cloud computing environment accessible to a number of client devices through a network connection. Finally, the method and system includes permitting the number of client devices access to the biographical data based on the access privilege and/or the security privilege.

Abstract: The subject matter disclosed herein relates to a process for receiving, evaluating and selecting of content modules such as content summary boxes and landing pages for display on network-accessible search engine results page. In one particular example, potential content providers may be provided with incentives and guidelines for the preparation of content summary boxes and landing pages over an electronic communications network, and the resulting submissions can be ranked and published in conjunction with the display of a search engine results page over the network.

Abstract: A system for securing patient medical information for communication over a potentially vulnerable system includes separating patient's medical file into a demographics layer and a data layer, separately encrypting the demographic layer and data layer using different encryption keys, and providing servers in a communication and processing system with a decryption key for the layer processed by such server. Medical file data may be separated into more than two layers. Users accessing the system are authenticated using standard techniques. By separately encrypting different parts of a patient medical record, processing and communication of patient medical files by intermediary servers is enabled without risking disclosure of sensitive patient information if such servers are compromised.

Abstract: The examples of the present invention provide a method and device for verifying a dynamic password. In the method and device, some algorithm parameters can be exchanged in public by using a DH algorithm, and thus a same key is shared safely between two entities, so as to implement the verification of the dynamic password and further improve the security of identity verification. Moreover, the method and device can be easy to use. Further, by the above technical solution, no message exchange is needed between a mobile device and a verification server, and a user does not need to pay for additional flux, so as to decrease the burden of the user and verification costs.

Abstract: Techniques are described for checking whether system properties meet the requirements of a software application. These checks are performed by executing validation checks associated with the application, which often include validation checks associated with other applications with which the application integrates. A validation engine takes several inputs that drive the validation checking that is performed in conjunction with an operation associated with the application. In one aspect, a modular approach to integrating an application's validation checks with other applications' validation checks is provided via a properties file that contains metadata for all the files in an application's validation module. In another aspect, conditional logic is introduced into a knowledge source so that similar logic does not need to be in the validation test code. In another aspect, the validation test identifiers input is extended to support multiple modes of operations.

Abstract: Consumers are encouraged to register products that they purchase so that manufacturers can send updates about the purchased products, marketing offers, or other materials. However, processes in place to register products can be cumbersome and time-consuming so many consumers do not register the products that they use. Some consumers may rely on a purchase history maintained by select retailers but these purchase histories do not track purchases made by or for other consumers or purchases made by the consumer at other retailers. A third party server allows consumers to register products from multiple manufacturers via a consumer device. The registration is separate from the consumer's purchase history maintained by the retailers. Using the third party server, manufacturers can distribute product information and, subsequently, updated product information to the consumers based on the product registrations.

Abstract: A method of managing access rights to corporate records is described. Employee data with respect to a first organizational hierarchy is maintained in a database, and file records data with respect to a second organizational hierarchy is maintained in another database. A request from an employee is received for a file record. A determination is made as to whether the requesting employee matches an entry in the first organizational hierarchy. Another determination is made as to whether the requested file record matches a file record of file records that the requesting employee is authorized to access, and access to the requested file record is permitted or denied to the requesting employee based upon the determinations.

Abstract: Systems and techniques for mediating user communications. A user persona manager maintains one or more user profiles and manages user interactions with other parties and with service providers based on user preferences associated with the user profile or profiles selected for a particular interaction. The persona manager receives a single set of user authentication information to establish the user identity, and provides previously stored information to other parties and service providers as appropriate, and otherwise conducts user interactions involving communications initiated by or on behalf of the user. The persona manager also examines interactions initiated by others, selects user profiles appropriate to the interactions, and routes and responds to the interactions based on information stored in the user profiles.

Abstract: A system and method are provided for establishing a secure communication session de novo. A first device and a second device are enabled with two separate and unconnected communications channels. The first channel extends to a service provider server (“server”) and preferably the Internet. The second channel may be formed by the first device and the second device transferring information by light, sound or vibration. The first device and the server communicate a session identifier via the first channel. The first device communicates the session identifier and optionally an encryption key and other information to the first device via the second channel. The second device transmits a message with an encrypted payload to the server referencing the session identifier via the first channel. The message is delivered to the first device by reference to the session identifier, either automatically or by a request message delivered to the server.

Abstract: A cryptographic key management system includes executable instructions to control access to keys based on permissions for users and groups. Executable instructions support cryptographic operations on the keys through a network application program interface. The cryptographic operations are controlled by the permissions. The cryptographic operations are distributed between the servers and the clients in accordance with criteria specifying optimal execution of cryptographic operations between the servers and the clients.

Abstract: This invention is a method and system for tokenless biometric authorization of an electronic communication, using a biometric sample, a master electronic identicator, and a public communications network, wherein the method includes: an electronic communication formation step, wherein at least one communication comprising electronic data is formed; a user registration step, wherein a user electronically submits a registration biometric sample taken directly from the person of the user; a public network data transmittal step, wherein the registration biometric sample is electronically transmitted to a master electronic identicator via a public communications network, said master electronic identicator comprising a computer database which electronically stores all of the registration biometric samples from all of the registered users; a user registration biometric storage step, wherein the registration biometric sample is electronically stored within the master electronic identicator; a bid biometric transmittal

Abstract: Techniques for sharing virtual machine (VM) resources are provided. A relative location for a resource within a VM is created; the relative location dynamically resolves to a particular physical location when a principal requests access to the resource at runtime. The principal is located outside an environment associated with the VM. Authentication and access restrictions are dynamically enforced against the requests made by the principal before a connection is permitted between the principal and the resource (the resource located within the environment of the VM).

Abstract: In one aspect, a method includes but is not limited to detecting that a limited-use electronic mail account user has accessed a limited-use electronic mail account; accepting an input commanding the disposition of the item of electronic mail received by the limited-use electronic mail account; and disabling further use of the limited-use electronic mail account. In addition to the foregoing, other method and system aspects are described in the claims, drawings, and text forming a part of the present application.

Abstract: The systems disclosed here provide a complete standards-based end-to-end scalable system for storage, delivery and in-home distribution of digital content over IP networks using standard protocols such as Real-time Transport Protocol (“RTP”) or IP-encapsulated MPEG-2 Transport Stream, or traditional MPEG-2 networks. Mechanisms are provided for receiving content from one security domain, re-encrypting that content uniquely for a receiving device, persistently storing that content, and playing back that content at a later time to and within another security domain. The systems also provide the ability to stream the persistently-stored content from the initial receiving device to another device that has been authenticated as part of a, e.g., home network. This allows a media server, e.g., a dual-tuner set-top box (“STB”) with hard drive, to deliver recorded content to any TV in the house by streaming to media clients such as STBs.

Abstract: Processes are described for provision of privacy-sensitive sample analysis results to a sample provider. The sample provider generates a cryptographic commitment encoding a secret value, r, and a sample identifier, s, associated with a sample container. The sample provider provides the commitment to an analysis provider in association with the sample container containing a sample for analysis. The analysis provider analyzes the sample to obtain a set of analysis results corresponding to the sample identifier, s, and generates a cryptographic pre-credential, ??, corresponding to the sample identifier, s. The pre-credential, ??, encodes the set of analysis results and the commitment. Completion of the pre-credential, ??, requires knowledge of the secret value, r, in the commitment.

Abstract: A request for an acknowledgement using a private key may be generated and transmitting to a customer device. The acknowledgement may be received from the customer device and verified using a public key associated with a customer operating the customer device. A request for a current location of the customer device may be transmitted and the current location may be received. A determination that the current location is proximate to a meter may be made, and, in response to determining that the current location is proximate to the meter, the meter may be manipulated.

Abstract: A vehicle device for a road toll system including: a satellite navigation receiver for continuously generating location data for a processing and transmitting/receiving unit of the vehicle device; and a trusted-element processor configured to log a time segment of the generated location data and to cryptographically signing said time segment. The trusted-element processor is further configured to start said logging upon detection of a predefined time or a predefined location of the vehicle device and to carry out said logging for a predefined time segment.

Abstract: A business method for mobile commerce includes a first buyer purchasing an item from a Internet-based vendor using a first mobile computing device. A shopping history is developed. A second buyer, using a second mobile computing device, interrogates the shopping history of the first buyer to discover certain parameters regarding an article of interest to the second buyer owned by the first buyer. The item is then purchased by the second buyer using shopping history information provided by the first mobile computing device. The method also includes electronically transferring funds to the vendor with at least some of the funds being electronically transferred to the first mobile consumer as a referral fee.

Abstract: A system is configured to provide access between a plurality of terminals and a plurality of different conditional access systems (CASs) associated with the terminals. The system includes a CAS switcher configured to receive requests from the plurality of terminals and, for each of the requests, identifies and sends the requests to a corresponding CAS. The CAS switcher also receives messages from the CASs responsive to the requests and, for each of the messages, identifies and sends the message to a corresponding terminal.

Abstract: A user sets up an account including radio identification, billing information, etc. via a web-based account creation device, or over the telephone with an account representative. An activation key is provided to the user that identifies the radio device and the users account. An activation screen is displayed to a user at the start of wireless activities. The activation screen requires the activation key before continuing with wireless services. Since the key identifies both the radio and user's account (which was approved prior to provision of the activation key), rejection traffic is eliminated and non-active account traffic is significantly reduced.

Abstract: In a method for managing a memory segment through use of a memory virtual appliance, data is encapsulated with the memory virtual appliance, in which the memory virtual appliance comprises a virtual machine configured to manage a memory segment in a physical memory. In addition, the memory virtual appliance is implemented using a virtualization wrapper comprising computer readable code enabling the encapsulated data to be shared among a plurality of clients. Moreover, the encapsulated data is stored in the memory segment controlled by the memory virtual appliance.

Abstract: Securing the manufacturing supply chain with digital certificates. A token is coupled to a manufacturing station and enabled via a personal identification number. The token includes a counter limiting the maximum number of certificates to be signed, and compares a serial number of a digital certificate to a tracked serial number. In some embodiments, the token is linked to a particular manufacturing station once the token is enabled.

Abstract: A network device can manage the storing of content. In one aspect, the content may be managed to prevent the storing of multiple versions of the same content. A deduplication process may be performed by comparing digests generated at user devices. Based on the comparison of the digests, the network device can efficiently and effectively manage the retrieving and storing of content.

Abstract: The present disclosure provides a system and method for providing a user with supplemental content based on the user's preferences and location. The disclosure provides a computer program that allows users to discover and organize content from a platform that is accessible from a mobile device or computer. Additionally, the disclosure provides a system for determining a user's location while indoors. The system can associate the user's location with specific content or items in a store and provide the user with supplemental content related to those items.

Abstract: A data security apparatus and method for controlling access to records provided within automated electronic databases, each record having an associated set of access rules, comprising: receiving, by a security processor, a request for access to records associated with at least one of an entity, attribute, and datum from a requestor; determining a set of records associated with the requested entity, attribute, or datum, contained in the automated electronic databases; authorizing access to the records within the determined set of records based on compliance with the associated set of access rules; defining an economic compensation rule, satisfaction of which is required for qualification for access to the set of records; selectively permitting access to records in dependence on satisfaction of the compensation rule; communicating the access permissions to the host automated electronic databases; and logging the request for retrieval and a respective access of each record.

Abstract: Technologies are generally described for security algorithm methods in authorizing and linking devices associated with a customer. A first device can be linked to a customer account. Additional devices can be linked to the customer account. Those devices can be authenticated to perform banking operations using dual factor authentication wherein a customer's login information is a first factor and the customer using a previously authenticated device is a second factor. By using additional methods of authentication, transactions can be done more reliably and securely.

Abstract: In an example embodiment, a digital content distributor may transmit an unsigned license associated with a protected digital object to a digital rights management provider. The digital rights management provider may digitally sign the license and may transmit the signed license to the digital content distributor.

Abstract: A system and method for verifying ownership of an electronic receipt in a communication system providing a public key infrastructure, the verification arising out of a series of messages being sent and received between a first party and a verifying party, the method comprising the steps of receiving a proof message from the first party, the proof message being derived from at least a first public key based on a secret owned by the first party and wherein the secret is associated with at least the secret of a further public key of the first party and an electronic receipt that has been issued by electronically signing a request message with a second public key, determining whether or not the proof message was derived from the second public key.

Abstract: There are methods and apparatus, including computer program products, for service improvement techniques for a transportation service provider using mobile devices. In one aspect there is received user-entered data for at least one field present in a provided electronic form. The form includes a link that, when activated, establishes a voice channel between the passenger and a customer representative and provides a unique identifier associated with the user-entered data that enables a customer representative to retrieve the user-entered data. In another aspect, there is a graphical representation that is transmitted to a customer or a driver to facilitate execution of a reservation of a transportation service to be provided to the customer by the driver. In another aspect, there is a location range received from a wireless handheld device associated with a driver and data received from the driver indicative of a more accurate location within the location range.

Abstract: A system is provided for dynamic display based on estimated viewers. The system includes a sensor, a server, and a dynamic display. The sensor senses traffic in an environment. The server estimates a number of potential viewers based on sensing the traffic, selects content based on the number, and communicates the content. The dynamic display receives the content and displays the content for the potential viewers.

Abstract: A data processing system for distributing and authenticating documents from a plurality of parties to a recipient data processing apparatus is disclosed. The system comprises a plurality of document distribution devices each configured to generate an original hash value from the content of a file containing a document to be distributed. A recipient data processing apparatus is configured to generate an original super hash value from the plurality of the original hash values, and to distribute the original super hash value to each of the document distribution devices. The system provides assurance that distributed documents have not been tampered with during communication, by an unscrupulous distributing party, or by an unscrupulous recipient by only submitting a hash value of the document to be distributed. The hash value provides for assurance at the eventual recipient of the document that no changes to the document have been made.

Abstract: Methods, apparatus and systems for embedding auxiliary information in encrypted host signals are provided. The present invention enables secure application of digital watermarks at any point in the transmission and/or distribution of digital content by enabling the insertion of a plurality of digital watermarks, without the knowledge of the encryption/decryption keys, into a digital host content that has been encrypted with an encryption key. The embedded watermarks persist throughout the content subsequent to the decryption of the content. The disclosed techniques are applicable to content that has been encrypted using a variety of different encryption techniques and algorithms, including stream ciphers, block ciphers, symmetric and asymmetric encryption algorithms. These methods are further adapted to enable the insertion of watermarks into a content that is compressed prior to encryption.

Abstract: Certain embodiments provide a user notification such as a cue in a media content player. The notification or cue indicates that there is additional content available for a piece of media being played or about to be played. The notification or cue may be superimposed on content or provided separate from the media content being provided. In certain embodiments, the notification may provide a link for accessing the additional content the notification identifies. For example, the user may click on a notification to link to a dynamically-generated webpage comprising information retrieved about the media content being presented.

Abstract: Methods and apparatus for providing media content offered by media content subscription service to portable media player devices associated with subscribers of the service are described herein. In various embodiments, particular fulfillment module, request module and media player are provided to fulfillment server(s) of the subscription service, request client devices, and portable media player devices, respectively.

Abstract: Embodiments of the present invention provide a method for voice approval, where the method includes: receiving voice approval request information sent by an enterprise application server; establishing a voice communication connection with the terminal according to the contact information of the approver terminal; sending approval content audio information corresponding to the voice approval request information to the approver terminal; receiving feedback information, and obtaining approval result information according to the feedback information; and sending the approval result information to the enterprise application server. Embodiments of the present invention also provide a device and system for voice approval. In the embodiments of the present invention, the enterprise application server and the enterprise gateway are combined and improved to enable an approver to approve, in voice mode, an approval request raised by an applicant, thereby increasing the approval efficiency.

Abstract: The present disclosure extends to methods, systems, and computer program products for providing a customer access to a merchant's secure network. In operation, the customer may be presented with recognizable tokens and non-recognizable decoy tokens for selection instead of entering a password.