4197 results about "System safety" patented technology

Disclosed is a method and apparatus of securely providing data to a user's system. The data is encrypted so as to only be decryptable by a data decrypting key, the data decrypting key being encrypted using a first public key, and the encrypted data being accessible to the user's system, the method comprising the steps of: transferring the encrypted data decrypting key to a clearing house that possesses a first private key, which corresponds to the first public key; decrypting the data decrypting key using the first private key; re-encrypting the data decrypting key using a second public key; transferring the re-encrypted data decrypting key to the user's system, the user's system possessing a second private key, which corresponds to the second public key; and decrypting the re-encrypted data decrypting key using the second private key.

Devices, delivery systems and delivery techniques for an occlusion device for the closure of physical anomalies, such as an atrial septal defect, a patent foramen ovale (PFO), and other septal and vascular defects are described. The devices, delivery systems and delivery techniques relate particularly to, but are not limited to, a patent foramen ovale (PFO) occluder made from a polymer tube. Specifically, a petal-shaped occluder with a catch system is provided within a delivery sheath. In certain embodiments, the delivery system includes a first securement system for securing a first end of the occluder and a second securement system for securing a second end of the occluder to a delivery catheter and a delivery wire contained in the delivery system. The securement enable the deployment (and retrieval) of the device. The securement systems enable pushing and pulling of respective ends of the occluder to expand and contract the device by varying its axial length. In one aspect, the first securement system employs a threaded connection and the second securement system employs a suture connection. In another aspect, the first securement system employs a threaded connection and the second securement system employs a collet finger connection. The securement systems are detached when the device has been properly positioned. The securement systems can be manipulated by control systems provided in the control portion of the delivery system.

A system for use with a trusted service manager (TSM) and a mobile device having a subscriber unique identifying data, according to one embodiment, includes: a server in which the server validates an application against the unique and identifying data of the mobile device and provides the validated application for the mobile device; and a secure element (SE) acting as a client in which the SE is present in the mobile device as client; the validated application from the server is installed in the SE; and the SE is adapted to execute the validated application to perform a service process. The service process includes enablement of payment functions on the mobile device, in which enablement of payment functions includes: providing secure communication between the mobile device and the server; secure provisioning of a payment instrument on the mobile device, wherein authentication and verification for the payment instrument on the mobile device is provided by the server; and binding the payment instruments and the validated application to the mobile device to provide a strong ID management for enhanced user protection and system security and integrity.

An architecture and method for a gaming-specific platform are disclosed that features secure storage and verification of game code and other data, provides the ability to securely exchange data with a computerized wagering gaming system, and does so in a manner that is straightforward and easy to manage. Some embodiments provide the ability to identify game program code as certified or approved, such as by the Nevada Gaming Regulations Commission or other regulatory agency. These and other functions make use of encryption, including digital signatures and hash functions as well as other encryption methods.

The system of the present invention includes a large-zone RFID reader, a plurality of small-zone RFID readers, and a plurality of RFID tags. The large-zone RFID reader covers areas which are not covered by the small-zone RFID readers. The output power of the small-zone RFID readers is controlled by the large-zone RFID reader based on RFID tag operation patterns of the small-zone RFID readers. The system reliability is improved by a method that uses reliable RFID tags, RFID reader beacon signals, and RFID tag's repetitive transmitting signals to detect tag failures. The system security is provided by a method that uses integrated crypto engines in both the RFID tags and RFID readers.

A system, method, and computer program product for a lease-based timeout scheme that addresses fencing's shortcomings. Unlike fencing, this scheme (or protocol) enables an isolated computer to realize it is disconnected from the distributed system and write its dirty data out to storage before its locks are stolen. In accordance with the invention, data consistency during a partition in a distributed system is ensured by establishing a lease based protocol between in the distributed system wherein a client can hold a lease with a server. The lease represents a contract between a client and a server in which the server promises to respect the client for a period of time. The server respects the contract even when it detects a partition between the client and itself.

A supervisory safety-control system is implemented by dividing a mine's territory into zones of free operation ("permission zones") wherein a vehicle is allowed to move according to predetermined permission parameters but unhindered by other system constraints. Traffic of autonomous vehicles in each permission zone is controlled by the supervisory system in conjunction with and in addition to conventional safety constraints associated with the guidance system that effects the vehicle's tracking of predetermined trajectories. Permission zones are assigned and activated using criteria that ensure the vehicle will remain entirely within active zones so long as the vehicle acts within such predetermined permission parameters. Each permission zone is also associated with a maximum velocity profile that overrides guidance-system safety controls, if necessary, and ensures stoppage of the vehicle at the end of the permission zone.

A software engine runs in a compatible mode with off-the-shelf word processors, e-mail programs and presentation development software and other document development software. The software engine is used for the security classification of sensitive or national security classified information in electronic and resultant hard copy document formats. The software engine ensures that the individual considers all informational portions of a document, that appropriate document marks are employed, that document marks in their electronic format are persistent and that all necessary information, such as classification guides, standards and security regulations, provided by the organization to classify information is at hand and immediately available. In addition to the document sensitivity or classification determination and marking support, the software engine tracks and controls documents and the electronic media storing documents. It also provides warnings and alarms, ad hoc document security analysis and reporting capability to system security administrators with respect to document or network events or captured information that may be indicative of risk to the information requiring protection. The software also provides the ability for an organization to centrally establish and control a security classification or sensitivity marking hierarchy for automated security classification support.

A solid-state storage subsystem, such as a non-volatile memory card or drive, includes a main memory area that is accessible via standard memory access commands (such as ATA commands), and a restricted memory area that is accessible only via one or more non-standard commands. The restricted memory area stores information used to control access to, and/or use of, information stored in the main memory area. As one example, the restricted area may store one or more identifiers, such as a unique subsystem identifier, needed to decrypt an executable or data file stored in the main memory area. A host software component is configured to retrieve the information from the subsystem's restricted memory area, and to use the information to control access to and/or use of the information in the main memory area.

Safety features are applied to an integrated insulin delivery system to enhance safety while accounting for glucose sensor bias and calibration errors. One safety feature includes comparisons of calibrations of the sensor to nominal sensitivity and taking action, such as limiting insulin delivery or taking a further calibration of the sensor. In another feature, an automatic resumption of a basal delivery rate is programmed into the delivery device to avoid the possibility of complete loss of delivery of insulin in the event that communication with the delivery device is disrupted. Other features include steps taken to avoid hypoglycemia in the event that the sensor is negatively biased.

A method and system for cyber security management of Supervisory Control And Data Acquisition (SCADA) systems is provided to enhance situational awareness and cyber security management for industrial control systems. A centralized System Security Manager (SSM) is integrated into a SCADA to collect security related data for the industrial control system and an integrated command and control user interface displays security related data, a system security level, and interfaces with a user to allows for changing of system security settings for the industrial control system based on the security related data collected and manages changes in operational state of the SCADA based on the security level to restrict use of system interfaces and system accesses.

A device and a method are provided for increasing processing speed and for ensuring system security when an application or a driver is added. The device includes a first CPU group 10A that executes software 20A composed of basic processing 22 and an OS 21A; a second CPU group 10B that executes software 20B composed of additional processing 23 and OS 21B corresponding to the additional processing, inter-processor communication means 40, and 402 used for communication between the first CPU 10A and the second CPU 10B, and access control means 30 that controls access made by the second CPU 10B to a memory 50 and/or an input/output device 60.

A computer-based system securely transmitting and authenticating a transaction input by a user while retaining the anonymity of the user with respect to content of the transaction, including a device encoding the content of the transaction input by the user with a key known only to another device, encoding other portions of the transaction with another key known only to a secure transaction server, and sending the encoded content of the transaction and the encoded other portions of the transaction to the secure transaction server to authenticate an identity of the user of the device, wherein the secure transaction server decodes the other portions of the transaction and sends the encoded content of the transaction to the another device to be finally decoded.

The invention discloses a power grid security situation predicting method based on an improved deep learning model and belongs to the technical field of power system safety. The power grid security situation predicting method includes: performing power grid security situation evaluation through power grid data collection and preprocessing; aiming at the characteristic that indicator data of power grid security situation evaluation are high in relevance and dimension, providing an improved self-coding network method to lower dimension of the indicator data, and utilizing a data sample after dimension reduction and a power grid security situation value corresponding to a next time monitoring point; adopting an improved deep belief network to build a deep learning situation predicting model with multi-input and multi-output for power grid security situation prediction. By the power grid security situation predicting method, speed and accuracy of power grid security situation prediction can be improved effectively.

A novel system, method and computer program product for accessing digital media files stored in a media storage device via a server device in communication with the media storage device. The method includes providing, via the server, a file virtualization scheme that permits that enables a server to permit multiple non-linear editing workstations and other devices to see and access the same media files (video, audio, graphics, etc.) stored in the media storage device while keeping each workstation and other devices isolated from the others (i.e., unaware that the others exist). In this manner, workstation crash and project file corruption is avoided when multiple users access each other's projects. There is additionally provided a tool for managing the digital media storage system particularly enabling media and corresponding virtual files to be automatically manipulated, e.g., deleted, removed, transferred and synchronized, in response to user requests, all the while automatically retaining the file virtualization features as described. There is additionally provided a tool for allowing multiple non-linear editing systems to safely open up and work from and collaborate on the same “Project”. The tool manages ownership and permissions over different editors' contributions to shared Projects and implements “symbolic links” to create a virtual file and folder structure that creates an “optimized view” of the Project for each editor, that keeps work organized so that it is clear which editor is editing what and that allows each editor to maintain his/her own settings for the Project.

The invention discloses a user online authentication method and system based on living body detection and face recognition. The method includes the user online registration step and the user online authentication step. The user online authentication step comprises the living body detection step, the image processing step, the feature value extraction step, the face comparison step and the result processing step. In the living body detection step, whether an authenticated user is a living body or not is determined and a face picture is acquired. In the image processing step, the collected face picture is processed. In the feature value extraction step, face part features of the processed face picture are extracted. In the face comparison step, extracted feature data of the collected face image are compared with corresponding face data in a user face feature value database, a threshold value is set, and when similarity exceeds the threshold value, the acquired result through matching is output. The user online authentication method and system can avoid authentication cheating through videos including faces, safety of the system is improved, recognition time can be shortened, and recognition accuracy is improved.