Abstract: A method of communicating via a vehicle communication network includes providing an electronic control unit (ECU), the ECU including a main processing unit and a security processing unit, the security processing unit including a symmetric security key, attempting a secure boot of the main processing unit, providing use of the symmetric security key to the main processing unit if the secure boot of the main processing unit is successful, preventing use of the symmetric security key by the main processing unit if the secure boot of the main processing unit is not successful, conducting, via an attestation processing unit, a remote attestation of the main processing unit, and determining, via the attestation processing unit, whether the secure boot of the main processing unit was successful according to the remote attestation.

Abstract: A system, device and method for enforcing privacy during a communication session with a voice assistant are disclosed. In response to a determination that an environment of a first voice assistant device is not private, a first secure communication session between the first voice assistant device and an application server is suspended. In response a determination that one or more other voice assistant devices have been authorized for communication with the application server is made and input to transfer the first secure communication session, a second secure communication session between a second voice assistant device and the application server is initiated. The first secure communication session between the first voice assistant device and the application server is terminated in response to successful initiation of the second secure communication session.

Abstract: An application miming in the foreground of the mobile device is run in the background when the mobile device enters a screen locked state. A display may be activated while the mobile device remains in the screen locked state, and an image is rendered over a lock screen of the mobile device, where the image providing a glimpse into the application running in the background while the mobile device remains in the screen locked state. The image displayed over the lock screen is iteratively updated to provide a continuous glimpse into the application running in the background of the mobile device that is in the screen locked state, without having to unlock the mobile device.

Abstract: A computer-implemented method for cognitive rendering of inputs received by a virtual reality (VR) system includes: receiving sensor data from at least one sensor of the VR system, the sensor data corresponding to one or more behaviors exhibited by a user of the VR system; comparing the sensor data to a predetermined list of expected behaviors; and determining the sensor data identifies an unexpected behavior in response to determining, based on the comparison, the behavior is not one of the expected behaviors. Various embodiments of the general inventive concept described above are presented in the form of methods, systems, and computer program products, all generally relating to real-time detection/anticipation of unexpected behaviors exhibited by a user but not relevant to a VR experience, and avoiding the rendering of movements, speech, etc. that are part of the unexpected behavior in order to improve the immersive nature of the VR experience.

Abstract: Embodiments for implementing intelligent user identification by a processor. A temporary abstraction model may be created. One or more user specific verification queries may be generated according to the temporary abstraction model. A user identify may be asserted for accessing an application upon validating one or more user responses in relation to the one or more user specific verification queries.

Abstract: A system, device and method for enforcing privacy during a communication session with a voice assistant are disclosed. A user is authenticated via one or more first criteria in response to a request to initiate a communication session with a voice assistant. Periodically during the communication session with the voice assistant, sensor data is acquired. The sensor data is processed to determine a number of persons present in an environment of the voice assistant via one or more second criteria. The communication of private data by the voice assistant is enabled when one person is in the environment and that person is the authenticated user. The communication of private data by the voice assistant is disabled when one person is in the environment and that person is not the authenticated user.

Abstract: An embedded subscriber identity module (2) includes: a first memory zone (Z1) for storing an operating system (OS1); a second memory zone (Z2) for storing user data (DT) in memory that is accessible by the operating system (OS1); and a third memory zone (Z3) for storing a data model (MD) defining at least one criterion (CT) that is to be complied with by the user data (DT) contained in the second memory zone (Z2). The embedded subscriber identity module (2) further includes a determination module (8) configured to determine whether the user data (DT) complies with the at least one criterion; and a processor module (10) configured to cause at least one first predetermined action as defined in the data model (MD) to be executed if the user data (DT) is not in compliance with the at least one criterion.

Abstract: An electronic device equipped with an anti-theft function may include a touch-sensitive panel and a processing circuit. The touch-sensitive panel may perform sensing of a first electrode of an input device and multiple fingers of a user, to detect a first detection point corresponding to the first electrode and multiple other detection points respectively corresponding to the multiple fingers, wherein when the input device is put on the touch-sensitive panel, the first detection point corresponds to a first location of the first electrode on the touch-sensitive panel, and when the multiple fingers touch the touch-sensitive panel, the multiple other detection points correspond to multiple other locations of the multiple fingers on the touch-sensitive panel, respectively. When at least one predetermined condition is satisfied, the processing circuit enables the anti-theft function. When at least one release condition is satisfied, the processing circuit disables the anti-theft function.

Abstract: Multiple image verification challenges can be used to identify the location of an object within an initial image. For instance, a first set of tiles is generated using the initial image. This first set is provided to a client computing device for display in a first verification challenge requesting that the user select tiles including the object. In response, a user selection of tiles of the first set is received. These selected tiles are then used to generate a second set of tiles corresponding to a sub-portion of the initial image. The second set of tiles is provided to a client computing device for display in a second verification challenge. In response to the second verification challenge, a user selection of tiles of the second set is received. This user selection of tiles of the second set is then used to determine a location of the object in the image.

Abstract: A method and system for improving location detection and presentation is provided. The method includes receiving a request for access to a secure Website and retrieving an automated challenge response test for determining that a user is a living being. A location of the user is detected and analyzed with respect to images of the automated challenge response test. Local entities associated with the images are determined and correct images and incorrect images are identified for executing the automated challenge response test. First actions for enabling the user to execute functions associated with the correct images with respect to the local entities are added to the correct images. Second actions for enabling the user to execute functions associated with the incorrect images with respect to the local entities are added to the correct images and a resulting modified automated challenge response test is presented to the user.

Abstract: An appliance is capable of storing and processing data related to details surrounding its ownership, behavior, and history within itself in a secure and unalterable way. The appliance may experience multiple transfers in ownership during its lifetime. Certain data stored in the appliance may be encrypted such that only qualifying parties (e.g., owners) may be able to access the data. Some data may remain private to an individual owner while other data may be made available to subsequent owners by passing a shared secret that can be utilized to decrypt the other data. Data may be stored in the appliance in chronological order and may be signed by appropriate parties such that it is not possible to alter the data without detection.

Abstract: Systems, methods, and computer-readable storage media for authenticating a user account with a synchronized content management system are disclosed. A synchronized online content management system may receive a request from a client device to access content in the content management system via a web browser that is running on the client device. The system may identify that a client-side application for the content management system has been installed on the client device and that the client-side application is already logged into a user account with the content management system. The system can cause the web browser to open a local host connection to the client-side application such that the web browser may be able to obtain from the client application some user account identifying information for the user account. The system can then cause the web browser to log into the user account by using the user account identifying information.

Abstract: Different security changes are applied based on the user status, such as emotional state, level of attention and biometrics. A security change can be applied that will automatically logoff the user from the system or from applications of the device, depending of the user's detected status, applying different security profiles at a software level, without disabling hardware.

Abstract: A person is automatically identified by a detection device of an observation apparatus. The identified person is shown a personalized symbol. A control action by the person causes data to be retrieved from a personal data source associated with the person and presented on a display panel. The presentation is stopped at the latest when the person leaves a sensing range of the detection device. This allows a particularly convenient and simple data use.

Abstract: Embodiments of the present disclosure relate to copy protection. A request to copy a file from a requestor with one or more privileges sufficient to access the file may be received. The file may be determined to be subject to copy protection. In response to determining that the file is subject to copy protection, a notification of the copy attempt may be transmitted. Copy protection may then be applied to the file.

Abstract: According to at least one example embodiment of the present invention, provided is a face authentication system including: a criterion setting unit that sets a criterion of face authentication performed on a user so as to be different in accordance with a state of an access target system accessed by the user; and a face authentication unit that performs face authentication of the user based on the criterion.

Abstract: A method for providing a brain computer interface that includes detecting a neural signal of a user in response to a calibration session having a time-locked component and a spontaneous component; generating a user-specific calibration model based on the neural signal; prompting the user to undergo a verification session, the verification session having a time-locked component and a spontaneous component; detecting a neural signal contemporaneously with delivery of the verification session; generating an output of the user-specific calibration model from the neural signal; based upon a comparison operation between processed outputs, determining an authentication status of the user; and performing an authenticated action.

Abstract: A secure hardware-based module or Security Electronic Control Unit (SECU) for a Controller Area Network (CAN) prevents an attacker from sending malicious messages through the CAN bus to take over control of a vehicle. The SECU shares a unique key and counter with each ECU on the CAN bus. When a legitimate ECU sends a message, it first compresses the message and then generates a MAC of the counter and a secret key. The counter is increased by one for each transmitted message. The ECU then fits the compressed message and the MAC into one CAN frame and sends it onto the CAN bus. The SECU performs the message verification on behalf of the intended receiver(s) of the message. If the verification passes, the receiver(s) simply decompress the message and use it as a normal CAN message. If the verification fails, the SECU will corrupt the CAN frame before it is fully received by the intended receiver(s). The corrupted CAN frame will be ignored by the intended receiver(s) as if it was never received.

Abstract: An electronic device shifts between a locked state in which use of a function is restricted and an unlocked state in which the function is usable. The electronic device includes a touch panel and a controller. The touch panel displays a pattern entry screen including first grid points and a second grid point having the same shape and color as the first grid points. The controller acquires a movement path of a detection target on the pattern entry screen and sequentially specifies first grid points passed by the movement path among the first grid points. The controller acquires entry pattern information based on the specified first grid points. The controller determines whether or not the entry pattern information matches registered pattern information. When the controller determines that the entry pattern information matches the registered pattern information, the electronic device shifts from the locked state to the unlocked state.

Abstract: Methods, devices, and systems for fire control panel configuration are described herein. In some examples, one or more embodiments include a memory, and a processor to execute executable instructions stored in the memory to receive configuration information for a fire control system of a facility, create a spatial asset model of the fire control system using the configuration information for the fire control system, and transmit, in response to detecting a replacement of a fire control panel in the fire control system with a new fire control panel, the spatial asset model to the new fire control panel.

Abstract: An access control system is described in which a primary credential device has a master key and a secondary credential device has a key derived from the master key. Both the master key and the derivative key are required to gain access to the resource protected by the access control system. If the secondary credential device is lost, misplaced, or stolen, it cannot be used to gain illicit access to the protected resource, and it can be easily replaced by providing a different secondary credential device with another key derived from the master key.

Abstract: The present image processing apparatus stores setting information for whether to force setting of authentication information for each user. Furthermore, upon accepting a login request from a user, in a case where the stored setting information indicates forcing setting of authentication information, the image processing apparatus displays on a display unit a setting screen for setting authentication information to allow the user to set authentication information. In addition, the image processing apparatus executes login processing in accordance with a setting status of authentication information for the user.

Abstract: A software widget running on a user device may be designed to operate in a locked or an unlocked mode. In unlocked mode, the user has full interactivity with the widget. In locked mode, however, at least some of the interactivity with the widget is restricted, despite the fact that the widget still operates normally otherwise while in the locked mode. While in locked mode, user input may be compared against a predefined unlocking sequence to determine if the widget should be unlocked.

Abstract: Embodiments of the present disclosure disclose an identity authentication method performed at a computing device, the method including: obtaining a sequence of finger gestures on a touchpad of the computing device from a user, wherein each finger gesture has an associated pressure type on the touchpad; generating a corresponding character string according to the sequence of finger gestures; comparing the character string with a verification code of a user account associated with an application program; in accordance with a determination that the character string matches the verification code, granting the user access to the user account associated with the application program; and in accordance with a determination that the character string does not match the verification code, denying the user access to the user account associated with the application program.

Abstract: Various examples of the present invention relate to an apparatus and a method for displaying data in an electronic device. A method for performing operations in an electronic device, comprises the steps of: displaying a circular user interface on a screen, wherein the circular user interface includes a circular arrangement of numbers, characters, special characters and/or icons in selected orders; detecting the first rotation of a wheel by using a sensor; determining whether the wheel is stopped during the pre-selected time period after the first rotation; selecting one from the numbers, the characters, the special characters, and/or the icons; and rotating or rearranging the circular arrangement on the screen in response to the determination that the wheel is stopped during the selected time period such that the pre-designated or proposed one among the numbers, the characters, the special characters and/or the icons is located at the selected location.

Abstract: Implementations of the present disclosure relate to systems and methods for service authorization. A server terminal device may receive user authentication information that is stored on the auxiliary device for user authentication associated with an authentication device. Based on the user authentication information, the server terminal device may then determine whether the authentication device meets the authentication condition. The implementations further relate to methods and systems for requesting service authorization.

Abstract: It is determined whether a short message locked. The short message is in a locked short message storage area if it is determined that the short message locked. A locked short message session containing the short message is displayed in a short message display interface. The short message display interface displays the locked short message session and an unlocked short message session containing another short message stored in an unlocked short message storage area. The locked short message storage area is different from the unlocked short message storage area.

Abstract: An apparatus and method of a secure drive is provided. The system includes a gate array, a non-volatile memory drive, and a power source. The non-volatile memory drive has secure, operational, and persistent memory spaces. The secure memory space is programmed with an encryption key and an encrypted disk image. In response to a power cycle, the gate array reads the encrypted disk image from the secure memory, authenticates the disk image using the encryption key, decrypts the encrypted disk image, and writes the decrypted disk image to the operational memory. The decrypted disk image is used to boot a computer. The computer is booted to a known good state each time the power is cycled.

Abstract: In accordance with the embodiments described herein, there is provided an enclosure system including an enclosure formed of an insulating material, and at least one heatsink arrangement formed of a thermally-conductive material. The heatsink arrangement includes at heat conductive surface configured as one of a pyramid, an inverted pyramid, a plateau, a spherical segment, and an inverted spherical segment. The heatsink arrangement in the enclosure system can be integrally formed from the enclosure such that a demarcation between the heatsink arrangement and the enclosure is water-tight. The enclosure and the heatsink arrangement can also be simultaneously integrally formed and enmeshed using additive manufacturing processes.

Abstract: An application programming interface is provided that allows applications to request and receive distance measurements from multiple proximity sensors arranged on a computing device such as a smart phone or tablet. Users can input ranges of values to the applications by moving objects such as hands and fingers towards and away one or more of the multiple proximity sensors. Applications can use the ranges of values provided by the proximity sensors to allow for more nuanced and precise user interfaces than what is typically available using the binary output associated with a capacitive display. The values provided by the proximity sensors can be combined with values from one or more other sensors such as accelerometers to provide additional user interface options.

Abstract: Provided is a surveillance method. The surveillance method includes detecting an event occurring region from an image obtained by using a first image sensor; and, when the event occurring region satisfies a preset condition, moving an identification unit on which a second image sensor is mounted in a direction corresponding to the event occurring region.

Abstract: Disclosed in the application are a method and device for identity authentication. The method comprises: when the terminal is in the specified stress state, action attribute information of the terminal is collected; the action attribute information is processed by matching with preset sample information; if the action attribute information is matched with the sample information, the authentication is successful, and if the action attribute information is not matched with the sample information, the authentication is failed. By the above method, the terminal can automatically collect the corresponding action attribute information in the process that users perform certain specified operation, and then match and compare with the preset standard information to authenticate the identity of the current user using the terminal.

Abstract: According to certain embodiments, an authentication system comprises memory operable to store instructions and processing circuitry operable to execute the instructions, whereby the authentication system is operable to receive first user data depicting a facial expression of a first user, authenticate the first user based on the first user data, and restrict the first user from performing an operation in response to determining that the operation requires authenticating at least one other user in addition to authenticating the first user.

Abstract: The present disclosure provides a method for protecting personal information based on a mobile terminal including establishing and storing a new content provider module for storing application data and a new position manager module for storing geographical position data in the mobile terminal in advance, and writing default new application data and default new geographical position data into the new content provider module and the new position manager module, respectively; monitoring, in real time, whether an original content provider and an original position manager module in the mobile terminal include a request for reading data from transmitted by an application; if yes, disabling the original content provider and the original position manager module, and displaying the default new application data and the default new geographical position data. The present disclosure protects the personal information of a user.

Abstract: An artificial intelligence-based system and method for automatically generating and adjusting tags associated with one or more UI/UX related components or features is provided. Analysis may be performed on the data collected by the one or more tags so that design change recommendations can be dynamically recommended and/or implemented. When design changes are implemented, the system may automatically reconfigure or adjust all relevant tags. The AI-based system may be a standalone platform or may be incorporated into existing UI/UX programs.

Abstract: In particular embodiments, an Orphaned Data Action System is configured to analyze one or more data systems (e.g., data assets), identify one or more pieces of personal data that are one or more pieces of personal data that are not associated with one or more privacy campaigns of the particular organization, and notify one or more individuals of the particular organization of the one or more pieces of personal data that are one or more pieces of personal data that are not associated with one or more privacy campaigns of the particular organization.

Abstract: During a touch operation for setting authentication information, authentication information is generated based on data input in accordance with a touch position of a touch operation performed on a touch panel and touch pressure applied to the touch panel by the touch operation. At the time of accepting a touch operation for unlocking an information processing apparatus, a combination of data input in accordance with a touch position of a touch operation performed on a touch panel and touch pressure applied to the touch panel by the touch operation are compared with authentication information. When a result of the comparison is a match, the information processing apparatus is unlocked and execution of various functions is allowed.

Abstract: According to one embodiment, an authentication system includes an authentication device. The authentication device includes a biometric scanner, a processor, and an interface. The biometric scanner receives biometric data for a user. The processor authenticates the user by comparing the received biometric data for the user to predetermined biometric information for the user. The processor generates an authentication token in response to the authentication. The processor continuously authenticates the user. The interface communicates the authentication token to a content providing device, the authentication token indicating the authentication of the user. The interface receives content from the content providing device in response to the authentication token.

Abstract: In one embodiment, a method includes receiving, from a device via a wireless signal, a request to access a WLAN of a router, the request including a device identifier. The provisioning agent may be within wireless ranges of the device and of the router. The provisioning agent may request, from an authentication server, a password for the device. The password may be uniquely generated by the authentication server for the device. The provisioning agent may receive the password from the authentication server. The provisioning agent may send, to the router, the password and the device identifier. The provisioning agent may receive, from the router, an indication that the router has verified the password with the authentication server. The router may store the device identifier in association with the password. The provisioning agent may send, to the device, the password. The password may authenticate the device to the router.

Abstract: A method for adding a user of an electric lock includes receiving a temporary code; establishing a connection between a portable device of the user and the electric lock; inputting and transmitting the temporary code to the electric lock via the portable device; the electric lock determining if the temporary code matches a default password; inputting a user information of the portable device via the portable device when the temporary code matches the default password; and storing the user information in the electric lock, so that the portable device is allowed to drive the electric lock to perform an action.

Abstract: A profile identifies at least one application (e.g., navigation application) for which a glimpse is to be provided when a mobile device is a screen locked state. A display may be activated while the mobile device remains in the screen locked state, and an image is rendered over a lock screen of the mobile device, where the image providing a glimpse into the application identified in the profile, where the image displayed over the lock screen is iteratively updated to provide a continuous glimpse into the application identified by the profile, without having to unlock the mobile device.

Abstract: Aspects of the subject disclosure may include, for example, a server, comprising a processing system including a processor and a memory that stores executable instructions that, when executed by the processing system, facilitate performance of operations including receiving a request from a mobile device of a user having an account to access a first mobile application of a plurality of mobile applications, wherein each of the plurality of mobile applications is embedded into a single bundled application, and wherein the single bundled application is downloaded onto the mobile device, determining whether the mobile device has permissions for access to the first mobile application and whether the mobile device is executing the single bundled application, and sending permissions data to the mobile device that enables the mobile device via the account to access the first mobile application. Other embodiments are disclosed.

Abstract: A method implemented on a visual computing device to authenticate one or more users includes receiving a first three-dimensional pattern from a user. The first three-dimensional pattern is sent to a server computer. At a time of user authentication, a second three-dimensional pattern is received from the user. The second three-dimensional pattern is sent to the server computer. An indication is received from the server computer as to whether the first three-dimensional pattern matches the second three-dimensional pattern within a margin of error. When the first three-dimensional pattern matches the second three-dimensional pattern within the margin of error, the user is authenticated at the server computer. When the first three-dimensional pattern does not match the second three-dimensional pattern within the margin of error, user is prevented from being authenticated at the server computer.

Abstract: A method and mobile device for identifying a current user of the mobile device as a trusted user is provided. The mobile device determines that a current user of the mobile device is not the owner of the mobile device. The mobile device obtains a biometric sample of the current user and transmits an identification request message to a distributed identification system. The distributed identification system includes a group of mobile devices, each one that includes biometric data the owner of the device. The identification request message includes the biometric sample of the current user. If the biometric sample matches the sample of one of the mobile devices in the distributed identification system, that device sends an identity response to the originating mobile device. Upon receiving the identity response, the original mobile unit determines if the identity in the identity response matches a known identity of the mobile device, such as a member in the contact list.

Abstract: Systems and methods are provided for authenticating a user of a computing device. The system comprises one or more memory devices storing instructions, and one or more processors configured to execute the instructions to provide, to a computing device associated with a user, an indication of a prescribed authentication parameter. The system also receives image data including an image of the user of the computing device captured using an image sensor of the computing device. The system determines an identity of the user based on an analysis of the received image data, determines whether the received image data includes a feature corresponding to the prescribed authentication parameter, and authenticates the user based at least in part on whether the received image data includes the feature corresponding to the prescribed authentication parameter.

Abstract: Systems and methods for detecting a user interaction by identifying a touch gesture on a touch interface on a virtual reality headset. The touch gestures are received on a front surface that is on the opposite side of the headset's inner display screen so that correspondence between the touch location and displayed content is intuitive to the user. The techniques of the invention display a cursor and enable the user to move the cursor by one type of input and make selections with the cursor using a second type of input. In this way, the user is able to intuitively control a displayed cursor by moving a finger around (e.g., dragging) on the opposite side of the display in the cursor's approximate location. The user then uses another type of touch input to make a selection at the cursor's current location.

Abstract: A control method for operating an electric lock by using a portable device includes the portable device obtaining an encrypted message according to an encryption function; the portable device transmitting the encrypted message to the electric lock; the electric lock decrypting the encrypted message according to a decryption function; and the electric lock determining whether to perform an action according to a decryption result of the encrypted message.

Abstract: A virtual reality system including a virtual reality user device with a display that presents a virtual reality environment to a user, an electronic transfer engine, and a virtual overlay engine. The virtual reality user devices receives network component data and security data for a network components. The virtual reality user devices generates overlays the security data onto the network component data to generate a virtual overlay.

Abstract: An analytics tool includes a network interface and an analytics engine. The network interface receives a request for job analytics of a job. The job comprises uploading a plurality of batches, each of the plurality batches comprising a subset of information of a data table. A network node of a plurality of network nodes uploads a batch of the plurality of batches. The analytics engine configured to determines the plurality of network nodes used to complete the job. The analytics engine retrieves network node data for each of the plurality of network nodes. The analytics engine generates the job analytics by aggregating the network node data for each of the plurality of network nodes.

Abstract: Illustrative methods, processes, and software remotely prove the identity of individuals fully compliant with identity proofing policies. The embodiments receive a request to verify an identity from an applicant device. The request includes an identification for an application to which access is desired.