36 results about "Internet privacy" patented technology

Access to a privileged account is managed by first requiring authentication of a user logging into the account and then performing a policy evaluation to determine whether the identified user is allowed to log in using the privileged identity. Preferably, the authentication is a two factor authentication. The policy evaluation preferably enforces a policy, such as a role-based access control, and a context-based access control, a combination of such access controls, or the like. Thus, according to this approach, the entity is provided access to the privileged account if the user's identity is verified and a policy is met. In the alternative, the entity is denied access to the privileged account if either the authentication fails, or (assuming authentication does not fail) policy criteria for the user is not met.

In one embodiment, a first information packet is received at a payment network from a merchant, which includes a financial transaction cost and a private label card account identifier presented by the customer as a payment for the financial transaction. The private label card is a form of payment accepted only by the merchant or a merchant consortium that includes the merchant. The payment network uses the private label card account identifier to determine a financial account maintained by the customer at a financial institution and authorization information that allows debit access to the identified financial account. The payment network generates a second information packet comprising the transaction information, the account information, and the authorization information. The second information is transmitted from the payment network to the financial institution with a request to perform a debit transaction from the identified financial account for the cost of the financial transaction.

A system and method is disclosed in which a distributor system acts as an intermediary between a portal application on a user's computer and the Internet. In one aspect of the present invention, the distributor system acts as a shield between the Internet and the user, thus protecting the privacy and identifying data of the user. In another aspect, the distributor system provides copyrighted digital material to the user while also paying appropriate royalties to the copyright owner. In yet another aspect, the distributor system provides a computing community for the user by establishing the user as a member of an affinity group.

A method and system for monitoring users on one or more computer networks, disassociating personally identifiable information from the collected data, and storing it in a database so that the privacy of the users is protected. The system receives a user identifier and uses it to creates an anonymized identifier, defined as a user identifier stripped of all personally identifiable information. The anonymized identifier is then associated with one or more users' computer network transactions. The data is stored by a collection engine and then aggregated to a central database server across a computer network.

Techniques are provided for securely accelerating external domains locally. Secure client requests directed to an external domain are forwarded to a local domain accelerator. The local domain accelerator communicates securely with the client as if it were the external domain. The local domain accelerator communicates securely with the external domain and acquires data to service the client requests within a local cache. The data is vended from the local cache via secure communications made to the client.

A system and method for authenticating user requests issued from embedded applets running on web-accessible user devices. The server system generates authentication tokens associated with user credentials, in response to user requests for HTML pages that include the embedded applets. The server system stores the authentication tokens on the server system, and includes the authentication tokens in URLs within applet tags in the HTML pages returned to the user devices. When the applets download and request content from the server system, the applets supply the previously included authentication tokens in the URLs that identify the requested content. Upon finding a match between the applet-supplied authentication tokens and the stored authentication tokens, the server identifies the user as a trusted user, and responds with the requested content. This can be used to eliminate HTTP- based authentication challenges for subsequent user access.

When requesting registration, user transfers service id such as Email address and user id for fee collecting such as number of handset to cryptographic center. The said center sends token 1 and token 2 to Email address and handset respectively. User returns tokens to acknowledge registration application. Receiving the feedback returned from the user, the cryptographic center validates the effective application. The invention binds two authentication modes, eliminates other invalid applications, and features simple method and easy of implementation.

A method is proposed for a payer, to make a payment to a payee, such as a merchant. The payer's communication device automatically acquires payment facilitation data comprising payee account identification data identifying a payment account associated with the payee and maintained by an acquirer. The payment facilitation data preferably also includes transaction data describing the payment, such as the amount of the payment. From the payment facilitation data, the communication device generates a payment request which is transmitted to an issuer at which the payer maintains a payment account. The issuer communicates with the acquirer, typically via a payment network, to arrange for a payment to be made, and the payment is credited to the payment account associated with the payee, and debited from the payment account associated with the payer. Thus, a payment is effected without the payee ever receiving confidential information about the payer's payment account.

A register and login system for biological characteristic distributed identity authentication comprises a server side connected with the Internet, a plurality of user terminals, an access control sub-system mounted on the server side, and register and login subsystems mounted on the user terminals and linked with server side data via the Internet; according to the register and login subsystems, collected user biological characteristics are saved in the user terminals in a scattered manner, and a user fulfils identity authentication on each user terminal. The register and login subsystems and the access control sub-system create a unique user identification correspondingly bound with a user biological characteristic; the user biological characteristic is stored in a user terminal and the server side respectively; user identification and requests are automatically uploaded to the server side; and various tasks are controlled to be executed or terminated according to results of identity authentication; the access control sub-system configures a user account according to a bound user identification, saves the user account in the server side, and controls accessing of a user terminal to the server side according to the result of user identification authentication. The register and login system is convenient and fast to operate, and high in privacy security and economic efficiency.

Systems and methods are provided for associating structured tags with files in a computer system. In one method, the method includes requesting a user, by the computer system, to provide the structured tag for the file, where the structured tag includes a tag type, a value type, and a tag value. The method can further include receiving the structured tag from the user, associating the structured tag and the file, and storing the association of the structured tag and the file in a non-transitory storage medium.

A masklike device that provides privacy to a user during a telephone conversation conducted while the user is in a public location, and that prevents the user from making utterances or noises that would disturb others in close proximity (e.g., a distance that would normally be considered within earshot) of the user.

An information processing apparatus stores, as user information of a user capable of logging into the information processing apparatus, first user information of a user having particular authority and second user information of a user having no particular authority. The information processing apparatus displays a list of, from the stored user information, user information that includes the second user information and no first user information. Then, the information processing apparatus performs a login process enabling a user corresponding to user information selected from the list to log into the information processing apparatus.

This present invention relates to a system, method, and apparatus for an authorized approver (AA) to receive and transmit information to contacts of an end user or others. The authorized approvers may receive, for example, voice, data or video or a combination thereof from the end user. Said authorized approver may view the received information on a back-end server or on a telecommunications device including but not limited to a mobile device or mobile internet device. The authorized approvers may retransmit the end user data to one or more contacts of the end user. Before such retransmission, the authorized approver, may amend, summarize, modify, tag, or otherwise edit the end user information before sending it on to the end user contacts.

A payment card processing system and method includes a computing device in communication with a multi-party payment processing system and network for processing payment card transactions. The computing device accepts a foreign currency deposit into a virtual foreign currency account linked to a cardholder account designated for payment in a home currency, receives payment card transaction data, identifies a foreign exchange transaction between the cardholder and a merchant designated for payment in a foreign currency, and applies at least a portion of the foreign currency deposit in the virtual foreign currency account to satisfy the payment for the transaction.

The invention provides a personal hotspot naming method, a mobile terminal and a personal hotspot naming system. The personal hotspot naming method comprises the following steps: acquiring real-time position information of a mobile terminal; analyzing and judging the real-time position attribute of the mobile terminal according to the real-time position information of the mobile terminal, whereinthe real-time position attribute of the mobile terminal comprises a trusted position and a non-trusted position, or the real-time position attribute of the mobile terminal comprises a normally-going position and a non-normally-going position; determining a naming mode of the personal hotspot according to the real-time position attribute of the mobile terminal; and naming the personal hotspot according to the naming mode of the personal hotspot. According to the personal hotspot naming method, other users can conveniently find and access personal hotspots; and meanwhile, the intelligent and personalized level of the 'personal' hotspot function of the mobile terminal is improved, and the attraction and the user stickiness of the mobile terminal to the user are enhanced.

A mobile passport, mobile passport generation system for generating same, and mobile passport certification method enable increased convenience for certifying passports. The passport is generated by digitalizing passport information written in an actual passport, thereby eliminating the risk of losing the passport, and with which the certification of a passport for a foreign tourist is carried out by scanning or inputting the digitalized passport information. A mobile passport, which includes a QR code including passport information, a photo writing unit, a country writing unit, and a manual certification number, is generated by using a mobile passport generation system which includes a mobile passport generation unit, a password generation unit, a mobile passport management server, and a terminal. The identity of a passport holder can be checked by checking the QR code, the manual certification number, a coupon number, and a tax return transaction number associated with the generated mobile passport.

The invention discloses an information encryption, decryption and control method and device and electronic equipment. The method comprises the steps of: enabling an initiator to obtain a secret key IDwhich is sent by a server and used for identifying a communication service and a secret key corresponding to the secret key ID at a terminal; decrypting a session key for encrypting and decrypting the communication service according to the key; and encrypting the communication service according to the session key so as to realize an encryption function on the communication service; enabling the participant to obtain a secret key ID sent by the initiator at the terminal; obtaining a secret key corresponding to the secret key ID from a server according to the secret key ID; decrypting a group session key used for decrypting the communication service according to the key so as to realize a function of decrypting the communication service; and enabling the server to generate the same secret key at different secret key management service sites, so that the same secret key can be obtained when a plurality of nodes communicate at the same time, and each terminal can perform encryption communication service conveniently.

The invention discloses smart home control methods and a smart home control system. In one of the methods, an abnormality notification is sent to a server when a smart home controller detects an abnormality of a home environment, and the abnormality notification includes identification information and abnormality information of the smart home controller; the server obtains a mobile terminal number, which is associated with the smart home controller, according to the identification information of the smart home controller, and obtains abnormality scene information according to the abnormality information; the server calls a mobile terminal, which corresponds to the mobile terminal number, according to the mobile terminal number, the server sends an alarming speech, which includes the abnormality scene information, to the mobile terminal after picking-up and listening of the mobile terminal; and the mobile terminal plays the alarming speech. An alarming manner based on calling and broadcasting of the specific abnormality scene information in the invention can enable a user to clearly understand a specific dangerous situation in a home in time, alarming efficiency is improved, and user experience is improved.

The invention discloses a permitted block chain anonymous transaction endorsement system and method, and mainly solves the endorsement strategy and identity privacy problems of an existing alliance permission block chain in transaction endorsement. The technical scheme provided by the invention comprises an endorsement node identity hiding scheme realized by using group signature, a permission block chain transaction scheme using anonymous endorsement, and a traceability and endorsement supervision scheme under an anonymous endorsement condition. According to the method, the identity privacy of the blockchain nodes participating in endorsement can be protected, the endorsement strategy of the transaction is protected, and the fault tolerance of permitted blockchain transaction endorsement is improved.

A method and apparatus is provided for managing private data, such as a phone book, in a multi-function product (MFP) used by multiple users. The method involves receiving user information and performing user authentication, and reading data stored in a user area allocated to the authenticated user in a storage unit divided into a number of user areas. Accordingly, when private data is managed in an MFP used by multiple users, by dividing a storage unit in which data is stored into a number of user areas, allocating the divided user areas to users, and allowing a user to access only a user area allocated to the user through an authentication process, the private data can be fully prevented from being accessed by other users, and it will be unlikely for a user to be confused because of other user data.

The invention discloses an authoritative DNS (Domain Name System) server information updating method and system. The method comprises the following steps: receiving a first information updating recordwhich comprises first content and first authorization information for carrying out the information updating of a first object; verifying the first authorization information, and determining the firstinformation update record as a to-be-packaged record when verification succeeds; and negotiating an accounting right with other authoritative DNS servers in the co-governance group according to a consensus rule, putting the record to be packaged into a new block when the accounting right is obtained, and synchronizing the record to be packaged to other authoritative DNS servers in the co-governance group. According to the invention, the dependence of DNS service on centralized management can be reduced, and the safety of the whole DNS system is improved.

The invention discloses a method, system and device for enhancing security of storage media and a medium, and relates to the field of data security; the method includes determining the number A of participating users, and wherein each participating user generates a corresponding key; deploying a multi-signature smart contract, obtaining a secure private key string corresponding to the private key of each participating user under the multi-signature smart contract, and signing each secure private key string to obtain a key set; sending the key set to a storage medium, and encrypting according to a multi-threshold encryption method to obtain encrypted data; according to the multi-signature smart contract, obtaining a decryption private key string corresponding to a private key of a decryption user, and signing each decryption private key string according to the multi-signature smart contract to obtain solution densification; sending the solution density to a storage medium to obtain decrypted data; and comparing the decrypted data with the encrypted data to judge whether decryption succeeds or not. According to the invention, the problem that the keys are difficult to manage due to too many keys in a large-scale network environment can be effectively solved.

The invention relates to the technical field of DPOS consensus node rights and interests security, and provides a method and system for solving potential safety hazards of rights and interests of DPOSconsensus nodes, the method comprises the following steps: receiving a request for modifying a node address sent by an account address, the request comprising a newly deployed update node address; verifying the signature of the account address, searching out a node address mapped with the account address in a node mapping table according to the account address after the signature verification ispassed, and replacing the node address with the updated node address, wherein the node mapping table is a corresponding relation between the node address and the account address preset in DPOS consensus; and by the DPOS consensus, selecting an out-block node, and when the account address is selected by the DPOS consensus, outputting blocks through the replaced node address. The problems that the private key of the node participating in the consensus is easily stolen, and the security of the node participating in the consensus, the obtained pledge rights and interests and the security of the block rewards are all in an internal state or in a state of not fortifying related participants are solved.

Systems and related methods arranged to improve public safety agency access to phone-based information and communications with citizens. A first system enables a user to gather, store, access and share phone information associated with public safety agency activities including by retaining phone information and “in the hand” user information. A second system enables a public safety agency to exchange of information with one or more citizens, and a related system controls text-based exchanges with citizens to limit their access to agency representatives.