Abstract: Systems and methods for detecting cracks in a surface by analyzing a video, including an full-HD video, of the surface. The video contains successive frames, wherein individual frames of overlapping consecutive pairs of the successive frames have overlapping areas and a crack that appears in a first individual frame of a consecutive pair of the successive frames also appears in at least a second individual frame of the consecutive pair. A fully convolutional network (FCN) architecture implemented on a processing device is then used to analyze at least some of the individual frames of the video to generate crack score maps for the individual frames, and a parametric data fusion scheme implemented on a processing device is used to fuse crack scores of the crack score maps of the individual frames to identify cracks in the individual frames.

Abstract: Systems and methods of video password based user authentication via machine learning techniques are disclosed. In one embodiment, an exemplary computer-implemented method may comprise: receiving a request to register a video password from a first user; establishing at least one user-specific authentication criterion for the first user based on first video password data; receiving a login attempt from a second computing device associated with a second user who submits to be the first user, the login attempt comprising second video password data; utilizing a trained video password authentication machine learning model to determine a first comparison result and a second comparison result based on the first and second video password data, and accepting or rejecting the login attempt based on at least one of the first comparison result and the second comparison result.

Abstract: Described herein are frameworks, devices and methods configured for enabling display for facility information and content, in some cases via touch/gesture controlled interfaces. Embodiments of the invention have been particularly developed for allowing an operator to conveniently access a wide range of information relating to a facility via, for example, one or more wall mounted displays. While some embodiments will be described herein with particular reference to that application, it will be appreciated that the invention is not limited to such a field of use, and is applicable in broader contexts.

Abstract: Provided is a processing system including a moving body identification information acquisition unit that acquires moving body identification information for identifying a moving body, an authentication unit that executes an inspector authentication process, based on biological information of an inspector, an inspection item identification information acquisition unit that acquires inspection item identification information for identifying an inspection item, and an output unit that stores the moving body identification information, the inspection item identification information, and inspector identification information of the inspector which is authenticated in the inspector authentication process in a storage unit in association with each other.

Abstract: Methods and related systems for operating a climate control system for an indoor space are disclosed. In an embodiment, the method includes establishing a connection between a device and a hub of the climate control system along a first signal pathway, wherein at least a portion of the first signal pathway comprises a short-range radio connection between the device and a first component of the system. In addition, the method includes monitoring one or more parameters of the first signal pathway and one or more parameters of a second signal pathway extending between the device and the hub, wherein at least a portion of the second signal pathway comprises a short-range radio connection between the device and a second component of the system. Further, the method includes re-routing the connection between the portable device and the system hub from the first signal pathway to the second signal pathway.

Abstract: Disclosed examples include an interface; programmable circuitry; and instructions to cause the programmable circuitry to: detect a person in physical proximity of a client device; and initiate activation of one or more privacy filters at the client device to blur information via a videoconferencing application.

Abstract: A method for facilitating user authentication via a graphical user interface is provided. The method includes receiving, via the graphical user interface, a request, the request including an access request; generating a graphical element based on a predetermined guideline; displaying, via the graphical user interface, the generated graphical element in response to the request; receiving, via the displayed graphical element, an input, the input including an alphabetic character, a numeric character, and a symbolic character; determining a dimensionality factor for the input; and authenticating the request by using the input and the corresponding dimensionality factor.

Abstract: A privacy computing-enabled migration method for large-scale persistent data across platforms is provided. By virtue of a sealing key management service SKMS, based on trusted sealing and trusted connection which are the basic functions of privacy computing, large-scale migration of privacy data with low deployment cost, high security and high efficiency can be realized by providing download links to platforms that meet requirements, thus greatly improving the flexibility of data deployment and use and the landing of trusted sealing technology.

Abstract: Example implementations include a method, apparatus, and computer-readable medium comprising receiving, by a processor of at least one sensor device, a signal from a sensor element of the at least one sensor device, wherein the sensor element is configured to sense a physical phenomenon, wherein the signal is indicative of the physical phenomenon as sensed by the sensor element; determining, by the processor of the at least one sensor device, whether a level of the signal is indicative of an alarm condition; and using a cellular radio of the at least one sensor device to send a notification directly to a cloud system in response to the level of the signal being indicative of the alarm condition.

Abstract: The present disclosure provides a control device, a control method and a virtual image display system. The control device controls a display. The control device includes an optical sensing component, a touch sensing component and a controller. The optical sensing component is configured to acquire optical sensing data of the control device when the control device moves in an environmental space. The touch sensing component is configured to acquire touch data of the control device when the control device moves on a plane. The controller is configured to generate a handwriting image according to the optical sensing data and the touch data, such that the display displays the handwriting image.

Abstract: Boot integrity of a storage platform is verified by comparing observed boot data values with expected boot data values stored in a secure remote cloud. The boot data values include hashes of software that runs at each stage of a boot sequence, e.g., BIOS, bootloader, kernel, and runlevel programs. The observed boot data values may be provided by a TPM using an AIK and nonce. If the observed boot data values fail to match the expected boot data values then a boot integrity service running on the storage platform limits functionality such as by disabling IO services, disabling remote data replication, enabling a diagnostic service, enabling a data collection service, disabling access by non-service accounts, and protecting a management database.

Abstract: A technique for managing, in a centralized manner, user accounts in a control system which includes two or more units is provided. A control system (2) is provided with first and second units (200, 300). The first unit (200), upon reception of an access request to the first unit (200) from an external device (500), requests the external device (500) to input a user account, and transmits the user account received from the external device (500) to the second unit (300). The second unit (300, U3) refers to registration information (330) defining account information of registered users, and, when the user account is determined to be registered, transmits to the first unit (200) a token indicating permission of access. The first unit (200) transmits the token received from the second unit (300) to the external device (500).

Abstract: A method of selectively securing a computing device at a docking station may include creating a security key between a security application programming interface (API) and an application executed on the computing device; upon logging into and execution of a basic input/output system (BIOS) of the computing device by a user, registering the application with the security API using the security key; and, upon receipt of a request to remove the computing device from the docking station, validating the user is authorized to remove the computing device from the docking station based on settings associated with the application.

Abstract: An authentication candidate extraction apparatus comprises a biometric information input part that receives biometric information of a to-be-authenticated subject, moving from a first spot to a second spot, acquired at the first spot; a feature information storage part that stores feature information used for authentication of the to-be-authenticated subject; a candidate selection part that selects a feature information candidate to be used for the authentication processing by means of a predetermined secure computation scheme using features extracted from the biometric information acquired at the first spot; and a feature information transmission part that transmits the extracted feature information candidate to an authentication apparatus that performs authentication processing using biometric information of the to-be-authenticated subject acquired at the second spot.

Abstract: Methods, systems, and devices for payload validation for a memory system are described. A payload receiver may be a device that includes an array of memory cells configured to store data, and a payload transmitter may be a host of a payload receiver (e.g., a host device) or another device that is in communication with the payload receiver. A payload receiver may be configured to receive an information payload and a signature associated with the information payload. The received signature may be based on the information payload and an identifier of the payload receiver previously provided to the payload transmitter. The payload receiver may generate a signature based on the information payload and the identifier of the payload receiver (e.g., as stored or cached at the payload receiver), and authenticate the information payload based on the received signature and the generated signature.

Abstract: A system on chip includes a non-volatile memory and a processor configured to execute an operating system which receives data according to a first communication protocol and program installation software that communicates with the non-volatile memory according to a second communication protocol. The operating system functions to: determine whether data received according to the first communication protocol is program data, make the program data available to the installation software, and inform the installation software that program data has been received. The installation software then stores the program data in the non-volatile memory.

Abstract: An audio device, such as a headphone, can create, maintain and use secure data. The secure data can include an amount of time that the user has used the audio device and/or an amount of time allocated to the user. When the amount of time the user has used the audio device exceeds the amount of time allocated to the user, the audio device can stop emitting the audio. The secure data can also include a hearing profile of the user, which can uniquely identify the user. The secure data associated with the headphone can be encrypted to prevent tampering.

Abstract: An information processing apparatus and an information processing method, and a robot apparatus that process information to be used for user identification and the like are provided. An information processing apparatus for performing processing related to a first device configured to autonomously behave to a user identified by an identification device, includes an acquisition unit configured to acquire a state of the identification device, and a decision unit configured to decide a behavior of the first device on the basis of the state. The decision unit decides a behavior of the first device for collecting voice data from a user whose voice data is insufficient, and decides a behavior of the first device for collecting face image data from a user whose face image data is insufficient, from the user.

Abstract: One embodiment provides a method, including: identifying, on an information handling device, a security level associated with an application window displayed on a display screen of the information handling device; capturing, using a sensor associated with the information handling device, an image of an area in front of the display screen; identifying, based upon analysis of the image, that an individual is present in the image; determining, using a processor, whether the individual is authorized to view the application window based upon the security level; and activating, responsive to determining that the individual is not authorized to view the application window, a privacy filter that obscures content in the application window from the individual. Other aspects are described and claimed.

Abstract: A content delivery system (100) comprises a trusted holder of profile data (200) arranged to store information concerning a conscious entity, a content delivery requirement entity (210), a content intermediary entity (226); and a source of content (232). The trusted holder of profile data (200) is arranged to issue (230) profile reference data to the content delivery requirement entity in response to a request (222) therefrom, and to communicate (224) the profile reference data and at least part of the stored information concerning the conscious entity to the content intermediary entity (226), the request for content provision (222) being capable of identifying the conscious entity to the trusted holder of profile data. The content intermediary entity (226) is arranged to source, when in use, relevant content from the source of content (232) using the at least part of the stored information concerning the conscious entity.

Abstract: A technique for rendering web content includes downloading a framework page from a framework server, the framework page including framework code which, when executed by a browser of a client machine, dynamically downloads a set of plugins from respective service providers. Each plugin includes its own plugin code configured to communicate with the respective service provider and with the framework code, to dynamically render web content specific to the service provider in the framework page running in the browser.

Abstract: Systems and methods of the present disclosure establish a connection with a distributed data network configured to maintain token-holding data structures storing digital tokens for users utilizing client devices. One or more first digital tokens may be accessed, where the first digital tokens are maintained by a first token-holding data structure associated with a first user. The first user may utilize a first client device to access the distributed data network. The first digital tokens may be parsed to identify attributes of the first digital tokens and access to one or more computing resources is assigned to the first client device based on the one or more attributes.

Abstract: In some implementations, an authentication system may receive, from a client device, a credential associated with a user account and a request to access a resource. The authentication system may transmit, to the client device, a request for an image of a customized physical security token associated with the user account. The authentication system may receive, from the client device, a first image. The authentication system may compare the first image with a representation of a second image of the customized physical security token associated with the user account. The authentication system may grant or denying access to the resource based on comparing the first image with the representation of the second image.

Abstract: Aspects of the disclosure relate to using machine-learning models to authenticate users and protect enterprise-managed information and resources. In some embodiments, a computing platform may receive user interaction data from enterprise computing infrastructure and may train one or more authentication models based on this data. Subsequently, the computing platform may receive, from a first application server, a request to authenticate a first user to a first user account in a first usage session hosted by the first application server. In response to receiving this request, the computing platform may identify whether session-specific interaction data for the first usage session is valid based on the one or more authentication models. If the interaction data is identified as being valid, the computing platform may generate and send one or more commands directing the first application server to allow the first user to access the first user account in the first usage session.

Abstract: Computer system for performing biometric matching in a way that balances accuracy level required in the biometric matching against computing resources (for example, processor cycles) that will be needed to match authentication requesters with profiles of authorized users. In some embodiments, this is achieved by controlling the number of clusters and/or the number of clusters to be searched pursuant to an authentication request.

Abstract: An Identity and Access Management Service implements persistent source values PSVs) for assumed identities. A source value (e.g., an original identifier of an entity) is persisted across assumed identities, facilitating identification of entities (users or applications) responsible for actions taken by the assumed (e.g., alternative) identities. The Manager receives a request to assume an identity. The request includes the entities current credentials and a PSV. The current credentials are authenticated and a persistent source value policy may be relied on to determine whether and/or how to grant the assumed identity. The PSV may be copied from credentials in the request in order to be included in the credentials for the requested identity that the Manager provides in response to the request. Use of the requested credentials, including the PSV, to access services or resources may be logged, the logs including the PSV from the request to assume the identity.

Abstract: A method for verifying identities of parties to a transaction includes receiving a login attempt from a mobile communication device, the login attempt including a security credential. The method determines that the security credential of the login attempt from the mobile communication device is authentic. The method communicates a one-time access code to the mobile communication device. The method receives a one-time entry code and mobile communication device information from the mobile communication device. The method determines that the one-time entry code and the mobile communication device information from the mobile communication device satisfies the communicated one-time access code and predetermined user mobile communication device information. The method provides by the mobile communication device access to a secure transaction environment.

Abstract: An artificial intelligence-based system and method for automatically generating and adjusting tags associated with one or more UI/UX related components or features is provided. Analysis may be performed on the data collected by the one or more tags so that design change recommendations can be dynamically recommended and/or implemented. When design changes are implemented, the system may automatically reconfigure or adjust all relevant tags. The AI-based system may be a standalone platform or may be incorporated into existing UI/UX programs.

Abstract: To reduce a data amount required for tactile presentation while enabling driving of different types of tactile presentation devices corresponding to different physical amounts. An encoding device according to the present technology is provided with an encoding unit that generates coded data by performing encoding to compress an information amount by utilizing an interconversion property between physical amounts on a plurality of tactile signals representing different physical amounts. This makes it possible to obtain the tactile signals representing desired physical amounts within a range in which interconversion may be performed while compressing the information amount by utilizing the interconversion property between the physical amounts.

Abstract: Example computing devices that are enabled to enter secure operating modes are provided. An example computing device includes a main processor to run an operating system enabled to establish communication from an external device to the main processor via a hardware interrupt handler when the external device is connected to the computing device. The computing device further includes a keyboard controller to detect a lock keystroke sequence at a keyboard, and, in response to detecting the lock keystroke sequence, cause the main processor to halt the operating system and to enter a secure operating mode in which communication from the external device to the main processor via the hardware interrupt handler is blocked.

Abstract: A method and apparatus for generating a dynamic security certificate. The method creates an entropic element from user input, receives metadata from user input and generates a dynamic security certificate using the entropic element and the metadata. The dynamic security certificate is then trusted through user input.

Abstract: An information processing apparatus includes a processor configured to change control of sound collection in accordance with a state of an upper body region of a user who is photographed, during a communication of transmitting a sound.

Abstract: Method and system are provided for user authentication using original and modified images. The method includes receiving an original image for a user, where the original image is a private image that meets certain configured criteria. The method uses a pre-trained Convolutional Neural Network (CNN) model to extract one or more image features of the original image and feeds the extracted image feature into a Generative Adversarial Network (GAN) image generator to realistically modify the extracted image feature to generate a modified image. The method authenticates a user based on recognition of a presented original image or a presented modified image.

Abstract: Methods, apparatus, systems, and articles of manufacture are disclosed to detect attacks in V2X networks. An example apparatus includes a challenge handler to (a) transmit a first challenge packet to a first vehicle to request a transmission of a first response, (b) instruct a second challenge packet to be transmitted to a second vehicle to request a transmission of a second response, (c) increment a first counter when the first response is not obtained, (d) increment a second counter when the second response is not obtained, and (e) after repeating (a)-(d), determine that the first and second vehicles are phantom vehicles associated with an attacker with a half-duplex radio when at least one of the first or second counters satisfy a threshold, and a network interface to instruct a third vehicle associated with the V2X network to ignore future messages from the phantom vehicles based on the determination.

Abstract: A communication management system provides a cognition test electronically to control access to an account. A test implementer includes a graphical user interface. One or more processors are configured to administer the cognition test by: displaying a plurality of image components on the graphical user interface such that each image component of the plurality of image components moves along a respective movement path within the graphical user interface; receiving an input via the graphical user interface; comparing the input to a solution value for the cognition test, wherein the solution value is based on the plurality of image components; blocking access to a protected account based on the input not correlating to the solution value; and allowing access to the protected account based on the input correlating to the solution value.

Abstract: An apparatus for estimating bio-information according to an embodiment of the present disclosure includes a first sensor configured to obtain a fingerprint image of a finger of the user; a second sensor configured to measure a force or a pressure applied by the finger; and a processor configured to obtain, based on the fingerprint image, a first feature value related to pulse waves and a second feature value related to skin elasticity; obtain a third feature value based on the force or the pressure; and estimate the bio-information of the user based on the first feature value, the second feature value, and the third feature value.

Abstract: A vehicle-mounted key-generation method is for a vehicle including electronic control units (ECUs) that communicate with each other via a vehicle-mounted network. At least one ECU includes a key generation module and a key transmission module, and each of the other ECUs includes a key receiving module and a key invoking module. The method includes receiving, through at least one ECU, a secure access request sent from an authorized user through a secure access device, and, after confirming to accept the secure access request from the secure access device, waiting for the secure access device to send a key generation request. The method further includes, after receiving the key generation request, generating a key through the key generation module, using the key transmission module to send the key to other ECUs via the vehicle-mounted network, and receiving the key through the key receiving module in other ECUs.

Abstract: Systems and methods are provided to identify security vulnerabilities related to containerization platforms. Container images may be received from a repository, and scanned for security vulnerabilities. Containers may be automatically generated and updated with security updates when the images are extracted and identified. Updated versions of images may be generated based on the updated containers. Stored security vulnerability may be automatically updated with CVE information received from external databases at regular intervals, or upon receiving a scan request. Scan results may be generated, stored and compared. Vulnerability comparisons may be generated for an initial version of an image and an updated version of the image that includes the implemented security updates that rectify the identifiable security vulnerabilities.

Abstract: The present disclosure inter alia presents a method of generating a temporary authentication value, for use in a secure transmission to a service provider system having one or several computer servers. The method starts with receiving a first identification data and receiving a security data associated with the first identification data. Thereafter, a hash function is applied to the first identification data and the security data to generate a temporary authentication value. The generated temporary authentication value is divided into a first and a second part. The method thereafter comprises transmitting only the second part of the divided temporary authentication value to the service provider system for verification.

Abstract: A method, system, and non-transitory computer readable medium are described for providing a sender a plurality of ephemeral keys such that a sender and receiver can exchange encrypted communications. Accordingly, a sender may retrieve information, such as a public key and a key identifier, for the first receiver from a local storage. The retrieved information may be used to generate a key-encrypting key that is used to generate a random communication encryption key. The random communication encryption key is used to encrypt a communication, while the key-encrypting key encrypts the random communication key. The encrypted communication and the encrypted random communication key are transmitted to the first receiver.

Abstract: An electronic device, method, and computer program product provide automated static or dynamic format selection of screen shot capture responsive to display size. An application, executed by a processor of the electronic device, presents, via a display, at least a portion of an electronic page. In response to receiving an input, via at least one input device of the electronic device, to capture a screen shot of the display, a controller of the electronic device determines a number of screens required to present an entirety of the electronic page. In response to the number of screens being equal to or less than a first threshold number of screens, the controller generates a static screen shot image of the electronic page. In response to the number of screens being greater, the controller generates a dynamic screen shot image that automatically scrolls or page flips through the entirety of the electronic page.

Abstract: A system for database restoration across service regions. The system includes data storage and backup data storage in the first region. The system includes a frontend for the database service configured to receive, from a client, a request to restore a database to the first region from backups stored in another backup data storage in a second region and to receive an authentication token for the request from the client. The system also includes a backup restore manager service for the first region configured to send, to another backup restore manager service implemented in the second region, a credential request for a second region credential authorizing retrieval of the one or more other backups from the second region. The backup restore manager service sends a backup restore request to retrieve the backups from the other backup data storage and loads the backups to restore the database in the first region.

Abstract: A video generation method, a video playing method, a video generation device, a video playing device, an electronic apparatus and a computer-readable storage medium are provided. The video generation method includes: acquiring a first video; executing Gaussian blur special effect processing on the first video to obtain a second video; superimposing an additional dynamic effect on the second video to generate a third video, wherein the additional dynamic effect is a dynamic image that presents a related information corresponding to the first video in a dynamic effect; and splicing the first video with the third video to generate a fourth video, wherein an image area of the fourth video comprises a first image area configured to display an image of the first video and a second image area configured to display an image of the third video.

Abstract: Systems and methods of managing a certificate associated with a component located at a remote location from a certificate authority system are provided. A certificate request is received, wherein the certificate request comprises a key associated with the component. A certificate is generated corresponding to the key received in the certificate request, and a validity status of the certificate is caused to be set to invalid. The certificate is provided to the component and it is determined whether the component matches the certificate. Upon determining that the component matches the certificate, the validity status is caused to be set to valid.

Abstract: A method, system and product including obtaining a media stream depicting a real-time communication of a participant in a communication context; identifying the communication context; obtaining a personalized model of the participant when communicating in the communication context, wherein the personalized model is configured to identify a behavioral pattern of the participant; executing the personalized model on at least a portion of the media stream to determine whether a behavioral pattern of the participant in the media stream matches the behavioral pattern of the participant according to the personalized model; and upon identifying a mismatch between the behavioral pattern of the participant in the media stream and the behavioral pattern of the participant according to the personalized model, performing a responsive action.

Abstract: According to some embodiments, a user vector generator may access information about a user (e.g., a software deployment developer or operator) in a user data store that contains electronic records each associated with different user. Each record may include, for example, a user identifier and user characteristics. Based on the user characteristics, the system may automatically generate a user vector indicating a computing environment skillset level for that user (e.g., beginner, intermediate, or expert). A machine learning privilege assignment platform may receive an indication of the user vector for the user and, based on the user vector and a machine learning algorithm, generate a privilege decision for that user (e.g., when the user attempts to update the system). An indication of the privilege decision may be output, according to some embodiments, to an SMT solver to review the privilege decision before granting the user access to the computing environment.

Abstract: An apparatus for face image candidate determination for authentication, including a storage and at least one processor wherein the storage stores a reference face image in association with an attribute of the image for each registered person and a score threshold value for each combination of attributes of face images to be collated. The processor configured to: acquire a face image of a person to be determined as a face image for determination, determine an attribute of the face image, collate the reference face image with the face image and calculates a score indicating a degree of matching, and select a reference face image satisfying the score threshold value as a face image candidate for authentication and selects the face image candidate and the score thereof as authentication information of the face image for determination.

Abstract: A processing system includes an acquisition portion that acquires information based on a captured image of a user, and a processor that performs a login process and a logout process on an electronic device. When it is determined that a gesture of a user for instructing to log out from the electronic device is performed based on the captured image of the user, the processor performs the logout process.

Abstract: A method and apparatus provides for securely unlocking a locked program domain by a third party wishing to gain extraordinary access to the program domain by a third party. The third party and the program domain are mutually authenticated using exclusive self-escrow of credentials that are generated, revealed, or stored within the program domain. Multiple third parties that are required for unlocking the program domain may also be authenticated prior to unlocking the program domain. The method and apparatus provides extraordinary access without the use of backdoors or having the program domain provide credentials to third parties.

Abstract: A method for authenticating a user for performing a transaction comprises receiving unique knowledge of the user such as photoauthentication, and receiving a hardware profile associated with the user. The unique knowledge and the hardware profile are compared against previously stored data representing unique knowledge of the user and a hardware profile associated with the user. If both the received data representing the unique knowledge of the user and the received hardware profile are authenticated, the transaction is allowed to go forward.