Abstract: An apparatus includes an input interface, a processor, and a transmitter. The input interface is configured to receive user input associated with a design and to receive a user request indicating a selection of a website type of a plurality of website types. The processor is configured to update the design based on the user input. The updated design includes one or more design pages. The processor is configured to select, based on the website type, a specific set of website generation tasks. The processor is configured to perform the specific set of website generation tasks to generate one or more webpages of a website of the website type. The webpages correspond to the design pages. The transmitter is configured to send a web output to at least one of a data storage device, a publishing endpoint, or a client device. The web output corresponds to the webpages.

Abstract: There may be provided a computer-implemented method. It may be implemented using a blockchain such as, for example, the Bitcoin blockchain. The computer-implemented method includes: i) joining a congress by transferring, by a node operating in a proof-of-work blockchain network, one or more digital assets to a congress pool having one or more other digital assets associated with other members of a congress; ii) detecting, by the node, a special transaction of digital assets on the proof-of-work blockchain network to an address associated with the congress pool, the special transaction satisfying determined criteria; and iii) minting, by the node, one or more digital assets on a proof-of-stake blockchain network in response to detecting the special transaction.

Abstract: An access control device according to an embodiment includes a lock mechanism, a digital core PCBA including at least one first processor and at least one first memory and is configured to facilitate wireless communications, wherein the at least one first memory is provisioned with a master initialization salt key, and an access core PCBA electrically coupled to the digital core PCBA, that includes at least one second processor and at least one second memory, and is configured to facilitate access control, and wherein the at least one second memory is provisioned with an access core initialization key derived from the master initialization salt key, wherein the digital core PCBA establishes a secure communication channel with the access core PCBA via an electrical connection between the digital core PCBA and the access core PCBA based on the master initialization salt key and the access core initialization key.

Abstract: Systems and procedures are provided for validating an IHS (Information Handling System) as operating using only factory-provisioned I/O ports. During factory provisioning of the IHS, a signed inventory certificate that includes an inventory of factory-provisioned I/O ports of the IHS is uploaded to the IHS. Upon delivery and initialization of the IHS, the inventory certificate is retrieved by a pre-boot validation process. An inventory of detected I/O ports of the IHS is then collected. The validation process compares the collected inventory of detected I/O ports against the inventory of factory-provisioned I/O ports from the inventory certificate in order to validate the IHS is operating using only factory-provisioned I/O ports. Through embodiments, any I/O ports of the IHS other than the I/O ports validated as factory-provisioned are not usable by any software or hardware of the IHS.

Abstract: Methods, systems, and computer readable media for synchronization of policy data between network functions in telecommunications networks. A method includes receiving, at a first network function in a telecommunications network, a subscription request from a second network function. The subscription request specifies a subscription for updates to policy data objects maintained by the first network function. The method includes sending a notification response to the second network function. The notification response includes, for each policy data object, a custom header including a respective entity tag for the policy data object. The method includes receiving a resource request from the second network function. The resource request specifies a first policy data object and includes a first entity tag for the first policy data object. The method includes sending a synchronization result to the second network function specifying whether or not the entity tag match.

Abstract: An information communication method and an information communication system are capable of securely using user information. An information communication method includes a step of uniquely setting a first network address authenticated by a certificate authority in a terminal device in advance. The method also includes uniquely setting a second network address authenticated by the certificate authority in a server in advance and associating the first network address with user information. The method further includes making a communication connection between the terminal device and the server, in which the server refers to the user information.

Abstract: A request to authenticate is received. For example, the request to authenticate may be to authenticate to a software application or a device. The request to authenticate is for a first authentication level for a user. The first authentication level is one of a plurality of authentication levels for the user. The request to authenticate is authorized based on a provided one or more authentication factors (e.g., a valid username/password). A plurality of authentication tokens are retrieved. The plurality of authentication tokens are associated with the first authentication level. In addition, each authentication token of the plurality of authentication tokens is associated with an individual application of a plurality of applications. Access to information in the plurality of applications is granted based on the plurality of authentication tokens.

Abstract: This disclosure relates to systems and methods for verifying the presentation of content to a target audience using generated metrics indicative of a likelihood that the content was presented to actual human individuals within the target audience. In some instances, such a metric may be associated with a probability model estimating that a user (e.g., a user of a device) is human and not a bot and/or other automated service. Metrics consistent with aspects of the disclosed embodiments may be generated based, at least in part, on user information received from a user and/or associated devices and/or associated services. Consistent with various disclosed embodiments, metrics indicative of whether a user is human, content distribution decisions and user agency decisions may use such metrics.

Abstract: A computer-implemented method comprising receiving a transaction request from a merchant server. In response to receiving the transaction request, the method includes requesting authentication from a computing device associated with a user payment account and a requesting that a merchant re-submit the transaction request. The method includes receiving an authentication parameter from the computing device, and determining that the authentication parameter matches an authentication parameter of the user payment account. The method includes receiving a re-submission of the transaction request from the merchant server and, based on the determination that the authentication parameter received from the computing device matches the authentication parameter associated with the user payment account, approving the transaction request.

Abstract: Methods and systems are provided for anonymously tracking and/or analyzing flow or movement of individual subjects and/or objects using biometric data. A computer-implemented method enabling anonymous estimation of the amount and/or flow of individual subjects and/or objects, referred to as individuals, in a population moving and/or coinciding between two or more subject states using biometric data includes receiving identifying data, wherein the identifying data includes and/or is based on biometric data, from two or more individuals; generating, online and by one or more processors, an anonymized identifier for each individual; and storing: the anonymized identifier of each individual together with data representing a subject state; and/or a skew measure of such an anonymized identifier.

Abstract: Systems and methods are described that enable trusted communications between two entities. In one implementation, a controller of a vehicle may include one or more processors configured to receive data and a controller signature from a second controller of the vehicle. The controller signature may be generated based on at least a first portion of the data. The one or more processors may be further configured to transmit the data and the controller signature to a gateway of the vehicle and receive a gateway signature from the gateway. The gateway signature may be generated based on at least a second portion of the data and transmitted to the controller after the gateway verified the controller signature. In addition, the one or more processors may be configured to verify the gateway signature and process the data.

Abstract: Systems and methods are described that enable trusted communications between two entities. In one implementation, a controller of a vehicle may include one or more processors configured to receive data and a controller signature from a second controller of the vehicle. The controller signature may be generated based on at least a first portion of the data. The one or more processors may be further configured to transmit the data and the controller signature to a gateway of the vehicle and receive a gateway signature from the gateway. The gateway signature may be generated based on at least a second portion of the data and transmitted to the controller after the gateway verified the controller signature. In addition, the one or more processors may be configured to verify the gateway signature and process the data.

Abstract: Generating and associating decentralized identifiers (DIDs) for a group of related devices. First, a device group DID is generated by generating a private key of the device group DID based on a seed and a first hardware identifier of at least one of the devices in the group. The device group DID is associated with the group of related devices. For each of the group of the related devices, a device DID is derived by generating a private key of the device DID based on a seed, a second hardware identifier of the corresponding device, and the device group DID. The device DID is then associated with the corresponding device. Further, a scope of permission is granted to the device group DID, and each device DID in the group is granted a subset of the scope of permission.

Abstract: Disclosed are an extension cryptographic operation processing system and method. An extension cryptographic operation processing method of a processing device including a trusted execution environment can be performed by at least one processor constituting the trusted execution environment of the processing device.

Abstract: Systems and methods support generation and validation of log records. For instance, a software object may generate log records and save those log records to a first repository. Either the same or a different software object may then generate a hash for each log record and then encrypt each hash and store each hash in another repository. A software object that consumes the log records may then validate a given log record by accessing its corresponding encrypted hash, decrypting the hash, and comparing the decrypted hash to a re-generated hash of the particular log record.

Abstract: Bitcoins and the underlying blockchain technology are one of the main innovations in building decentralized applications. The effects of quantum computing on this technology are analyzed in general. Provided herein are effective solutions to address security vulnerabilities in a blockchain-based system that can be exploited by a quantum attacker.

Abstract: Systems, methods, apparatus, and articles of manufacture to facilitate playback of multimedia content are disclosed. An example apparatus includes a network interface configured to receive audio content over a playback network. A processor comprising instructions which when executed, cause the processor to detect that a portable playback device has joined the playback network. The processor is to update a state variable to indicate that the portable playback device has joined the playback network. The processor is to play audio content received over the playback network based on the state variable. The processor is to detect that the portable playback device is not joined to the playback network. The processor is to, after detecting that the portable playback device is not joined to the playback network, update the state variable to indicate that the portable playback device is not joined to the playback network.

Abstract: A blockchain consensus method may comprise: acquiring transaction data; and distributing, according to a preset distribution rule, the transaction data to at least one consensus unit in a consensus unit set, causing the at least one consensus unit to perform consensus processing on the distributed transaction data.

Abstract: Systems, devices, computer-implemented methods, and tangible non-transitory computer-readable media that facilitate intelligent and dynamic updates to membership of group object(s) based on a change to an attribute value with respect to an entity associated with the group object(s). In an embodiment, a computing system can: create a first group object using an attribute value that can at least partly define membership of group member(s) of the first group object; generate a dependency mapping file that maps the attribute value to second group object(s) created using the attribute value; employ the dependency mapping file to identify the second group object(s) upon detection of a change to the attribute value with respect to an entity associated with the first group object and the second group object(s); and/or update membership of the first group object and the second group object(s) to reflect the change to the attribute value with respect to the entity.

Abstract: A method and an apparatus for custom development of a payment application, a computer equipment and a storage medium. The method includes: acquiring a resource file uploaded by a user terminal to an application market server through an application market client; writing the resource file into a device operation service; acquiring the resource file from the device operation service through a device operation interface, and saving the same in a storage space of an application; and loading the resource file saved in the storage space of the application through the application, and executing a function of the resource file.

Abstract: The present invention aims to improve data protection against illegal access by a strong differentiation of the security level specific on a type of data so that when the protection on a part of the data is violated, the remaining data are still inaccessible. A method for controlling access, via an open communication network, to user private data, comprising steps of: dividing the user private data into a plurality of categories, each category defining a privacy level of the data, encrypting the user private data of each category with a category key pertaining to the category of the data, attributing to a stakeholder an entity configured for accessing to at least one category of user private data, and authorizing the access to the at least one category of user private data for the entity of the stakeholder, by providing the stakeholder with the category keys required for decrypting the user private data of the corresponding category.

Abstract: Real time audio stream validation is provided. An audio stream of a voice communication corresponding to a call is segmented into a plurality of blocks in response to receiving the audio stream from a user. The plurality of blocks is modified to generate a first modified audio stream corresponding to the call that includes hashed values of the plurality of blocks. The first modified audio stream along with the hashed values of the plurality of blocks is sent via a network.

Abstract: A system for performing authentication of content based on intrinsic attributes includes a computing platform having a hardware processor and a memory storing a content authentication software code. The hardware processor executes the content authentication software code to receive a content file including digital content and authentication data created based on a baseline version of the digital content, to generate validation data based on the digital content, to compare the validation data to the authentication data, and to identify the digital content as baseline digital content in response to determining that the validation data matches the authentication data based on the comparison. The hardware processor is also configured to execute the content authentication software code to identify the digital content as manipulated digital content in response to determining that the validation data does not match the authentication data based on the comparison.

Abstract: Methods, systems, and devices for wireless communications are described. A wireless device may receive reference signals from another wireless device over a channel between the devices. The wireless device may perform channel estimation based on the reference signals to determine multiple taps. The wireless device may receive a message from the other wireless device indicating one or more taps to be selected to obtain a secret key for encrypting a message. The wireless device may select the taps based on the indication and communicate one or more encrypted messages with the other wireless device. For example, the wireless device may receive encrypted messages, transmit encrypted messages, or both.

Abstract: A system can receive, in association with a user account, an operating system image that is encrypted with a private key, a manifest generated from a first instance of a manifest generator tool that is configured to identify system provisioning artifacts that is encrypted with the private key, and a public key. The system can install the operating system image on a computing device. The system can generate, with a second instance of the manifest generator tool, a first identification of system provisioning artifacts from the installing of the operating system image.

Abstract: A program signing method is provided to include: determining whether the signing program is tampered with; if not, obtaining a releasing hash that is related to a to-be-released program, and transmitting the releasing hash to a signature server unit, so as to make the signature server unit acquire a releasing digital signature based on the releasing hash and transmit the releasing digital signature to the processing module; and, upon receipt of the releasing digital signature, executing the signing program to generate a signed to-be-released program.

Abstract: A storage radio unit (SRU) for a device can include a radio, embedded universal integrated circuit card (eUICC), a processor, an antenna, and nonvolatile memory. The SRU can support standards for removable storage form factors and record a file system for a device. The device can be associated with a service provider and the SRU can be associated with a network provider. The radio can support Narrowband Internet of Things (NB-IoT) standards. The SRU can operate a file system interface (FSI) for the radio, where the device records application data in a file of the FSI. The SRU can attach to a wireless NB-IoT network using credentials recorded in the eUICC. The SRU can read the file of the FSI, and compress, encrypt, and transmit the application data to a network provider via the radio. The network provider can transmit the application data via TLS to the service provider.

Abstract: An electronic control unit for a vehicle includes processing circuitry configured to determine first cryptographic information based on a private key of the electronic control unit and based on a public key of a second entity. The processing circuitry is further configured to obtain second cryptographic information via an interface, and to compare the first cryptographic information and the second cryptographic information. The processing circuitry is also configured to unlock a control access to the electronic control unit if the second cryptographic in formation is based on a private key of the second entity and based on a public key of the electronic control unit.

Abstract: In one embodiment, a data sharing platform uses data associated with a data owner to share data via a plurality of sharing services, each sharing service in the plurality of sharing services providing a different type of data. The data sharing platform tracks access to each of the plurality of sharing services. The data sharing platform computes, based in part on the access to each of the plurality of sharing services, an importance metric for the data associated with the data owner. The data sharing platform provides an indication of the importance metric for display to the data owner.

Abstract: A device includes a bottom housing that includes a printed circuit board, a processor formed on the printed circuit board, a probe tip coupled to the processor, and a first wall. The first wall includes a front side surface, a backside surface, and an opening extending from the front side surface to the backside surface. The printed circuit board is coupled to the front side surface of the first wall. The printed circuit board includes a plurality of electrical contacts located on the back surface and coupled to the processor. The electrical contacts on the backside surface of the printed circuit board are visible through the opening formed in the first wall of the bottom housing. The electrical contacts are sealed from fluid penetration and can connect to the electrical contacts of a battery connected to the device.

Abstract: Aspects of the disclosure relate to mechanisms and algorithms for a vehicle to join a vehicle group. The vehicle may transmit a query message that includes an identifier, and includes vehicle course information. In response, the vehicle may receive an invitation message that includes a group identifier, group course information, and wireless resource information for joining a vehicle group. The vehicle may then transmit a joining request message, including the first group identifier.

Abstract: A system and method of a system provides for tracking and controlling print cartridge ownership transfers using non-fungible tokens (NFTs). A print cartridge manufacture creates a unique NFT for each manufactured print cartridge that is stored on a public blockchain. Each NFT is encoded with a serial number of its associated cartridge, along with manufacturer information stored in the manufacturer's digital certificate. Each NFT may include manufacturer information, transactional information and a smart contract. Sale or resale of a cartridge is accomplished by a sale of its associated NFT on a digital marketplace. Sales are governed by smart contract terms. A buyer scans a cartridge QR code to decode its serial number which is then used to lookup manufacturer information, cartridge information and transactional information. If a purchase permitted and is accepted, the buyer information and sale information are updated to the blockchain with the associated NFT which is placed in the possession of the buyer.

Abstract: The disclosed embodiments are related to securely updating a semiconductor device and in particular to a key management system. In one embodiment, a method is disclosed comprising storing a plurality of activation codes, each of the activation codes associated with a respective unique identifier (UID) of semiconductor device; receiving, over a network, a request to generate a new storage root key (SRK), the request including a response code and a requested UID; identifying a selected activation code from the plurality of activation codes based on the requested UID; generating the SHRSRK value using the response code and the selected activation code; associating the SHRSRK value with the requested UID and storing the SHRSRK value; and returning an acknowledgement in response to the request.

Abstract: Provided is dynamic and flexible authentication based on an interaction over a communications link between a user device and a financial entity. A set of interactions enabled at the user device are categorized into different levels, each level comprises a different authentication policy. At about the same time as an interaction is initiated at the device, an authentication policy assigned to the interaction is accessed and a security challenge is activated at the device. Based upon a successful response to the security challenge, an enablement of the communications link is continued. Based upon an unsuccessful response to the security challenge, the communications link is disabled.

Abstract: A network system including a plurality of devices can acquire authenticated location information of a device and provides various services using the authenticated location information. Each of the plurality of devices includes: a communication unit for performing data communication with another device; a storage unit that stores a digital certificate including a public key for determining an IP address of the device; and a determination unit that determines an IP address of another device based on a public key included in a digital certificate received from the another device. The digital certificate includes location information associated with a corresponding device.

Abstract: A data transaction processing system including multiple transaction processors also includes an active transaction receiver that sequences all incoming messages from various sources to facilitate transactional determinism, as well as a results arbiter to efficiently decide which transaction processor result to choose as the correct output. The data transaction processing system minimizes overall latency by optimizing which transaction processors and results arbiters are responsive to specific client computer input requests or messages.

Abstract: There may be provided a computer-implemented method. It may be implemented using a blockchain such as, for example, the Bitcoin blockchain. The computer-implemented method includes: i) joining a congress by transferring, by a node operating in a proof-of-work blockchain network, one or more digital assets to a congress pool having one or more other digital assets associated with other members of a congress; ii) detecting, by the node, a special transaction of digital assets on the proof-of-work blockchain network to an address associated with the congress pool, the special transaction satisfying determined criteria; and iii) minting, by the node, one or more digital assets on a proof-of-stake blockchain network in response to detecting the special transaction.

Abstract: Examples for validating the identify of an application in an inter-app communication protocol are described. An attestation payload is obtained from a third party attestation service that is executed remotely from a device on which the application is running. The attestation payload can be validated by another application on the device in order to validate the identity of the application providing the attestation payload.

Abstract: The invention relates to a method for a secure transmission of electronic data packets in a network comprising network components.

Abstract: A Data Leakage Prevention (DLP) device and a method for processing a packet are disclosed. The DLP device receives an IP packet sent by a user device, wherein the IP packet includes TCP port information; and detects whether a first TCP connection is established between the DLP device and the user device. If the first TCP connection is not established, when the IP packet is a data packet, an application layer protocol for transmitting the IP packet is determined by comparing a packet feature of the IP packet with packet features corresponding to respective application layer protocols. When the application layer protocol for transmitting the IP packet is listened to, a pair of TCP connections is established according to the TCP port information, wherein the pair of TCP connections includes the first TCP connection and a second TCP connection between the DLP device and a server.

Abstract: Embodiments of the present disclosure provide systems and methods for managing access rights for a copy of an original digital document. The method performed by a server system includes receiving a request for generating a copy of an original document. The method includes performing an authorization of the request for generating the copy of the original document based on the access rights associated with the original document. Further, the method includes generating a copy document of the original document upon successful authorization. The method includes determining the access rights defined for the copy document in the original document. The method further includes transmitting the access rights to the copy document. The method includes sending the copy document with the access rights. The access rights set on the copy document facilitate the user to perform document-related operations on the copy document.

Abstract: A security platform architecture is described herein. The security platform architecture includes multiple layers and utilizes a combination of encryption and other security features to generate a secure environment.

Abstract: A method of performing a contactless transaction between a payment device and a terminal is described. The method comprises establishing a data connection between the payment device and the terminal and then establishing if the payment device and the terminal both support an enhanced security architecture. If they do not, they will then perform the contactless transaction according to a basic transaction flow using a first cryptographic system. If they do, they will perform the contactless transaction according to an enhanced transaction flow using a second cryptographic system. The first cryptographic system and the second cryptographic system comprise different asymmetric cryptographic systems. Suitable payment devices and terminals, and methods at the payment devices and terminals, are described.

Abstract: A method of performing user authentication includes by a service electronic device associated with a service, receiving, from a public electronic device, a request for a user to initiate a session of the service, generating a first security token, a first write token, a first read token, and/or a first delete token, sending the first security token, the first write token, the first read token, and/or the first delete token to a server electronic device, receiving, from the server electronic device, a key location identifier that uniquely identifies a memory location of a data store associated with the server electronic device where the first security token, the first write token, the first read token, and/or the first delete token are stored, saving the key location identifier in a data store associated with the service electronic device, generating a signed key location identifier, generating a machine-readable image that includes the key location identifier, the signed key location identifier and the first

Abstract: Systems and methods for verifying an identity of a user. A method includes generating a tokenized biometric sample by tokenizing a biometric sample associated with the user by a computing system. The method further includes generating a digitally-signed tokenized biometric sample by digitally signing the tokenized biometric sample with a private key associated with the user by the computing system. The method further includes, responsive to a biometric reference template matching a signing party biometric sample associated with a signing party and a record, determining that the user matches the signing party by the computing system. The biometric reference template is based on biometric data extracted from the biometric sample. Authenticity and data integrity of the record is determined based on each of the record, the tokenized biometric sample, and a public key of a public/private key pair comprising the private key.

Abstract: According to aspect of the present disclosure there are provided methods and apparatus for printing to a group of printers in a network, including a method comprising provisioning each printing device of the plurality of printing devices with a respective private cryptographic key, defining a first group of printing devices comprising a first subset of the plurality of printing devices, generating a first group public key for the defined first group of printing devices, the first group public key generated based on public cryptographic keys corresponding to the respective private cryptographic keys provisioned to the first subset of the plurality of printing devices, and providing the first group public key to a user.

Abstract: There may be provided a computer-implemented method. It may be implemented using a blockchain such as, for example, the Bitcoin blockchain. The computer-implemented method includes: i) joining a congress by transferring, by a node operating in a proof-of-work blockchain network, one or more digital assets to a congress pool having one or more other digital assets associated with other members of a congress; ii) detecting, by the node, a special transaction of digital assets on the proof-of-work blockchain network to an address associated with the congress pool, the special transaction satisfying determined criteria; and iii) minting, by the node, one or more digital assets on a proof-of-stake blockchain network in response to detecting the special transaction.

Abstract: Methods and systems for introducing self-contained intent functionality into decentralized computer networks is described. Specifically, the methods and systems for encoding user intent (e.g., what functions a value may be used for) into data structures for computer programs and/or transaction protocols intended to automatically execute, control, or record events and actions according to predetermined terms or criteria are described herein. For example, the methods and systems may include using a permission structure native to one or more cryptocurrencies to provide additional functionality that allows for an intent to be introduced into the computer program and/or transaction protocol. This intent may be introduced using a routing data structure indicating exchange eligibility of resource sources.

Abstract: Embodiments of the present invention provide methods, systems, apparatuses, and computer program products for integrating user-specific context indicators into a searchable enterprise platform. In one embodiment, an apparatus is configured to apply a learned user profile, to a set of search results to obtain a user-specific, ranked arrangement of search results. The learned user profile may be developed through the application of a machine learning and/or trained model to a set of user behaviors that have been determined or otherwise detected within an enterprise platform, such that the user-specific context in which a user's search arises can be modeled and applied to retrieved digital content items associated with a search query within the enterprise platform.

Abstract: The invention relates to securing of an article against forgery and falsifying of its associated data, and particularly of data relating to its belonging to a specific batch of articles, while allowing offline or online checking of the authenticity of a secured article and conformity of its associated data with respect to that of a genuine article.