In some embodiments, a system is a reverse-proxying HTTP cache server that handles user session management and dynamically forwards requests to origin/backend servers based on the content being requested. It caches data from origin servers in order to reduce the stress placed on each origin server. It uses encrypted authorization tokens to handle session management and is able to modify origin data on-the-fly in order to inject per-client authorization information into the data stream. It can enforce maximum concurrent session limits, user bans, limit exemptions and time-limited live content previews.

Disclosed is a device including a processor, a computer-readable storage device and a software module stored on the computer-readable storage device, the software module configured with a software module application programming interface programmed that defines a protocol for communicating data between an application on the device and the software module. The module receives, from the application operating on the device, a request associated with a purchase from the application, wherein the request comprises information about the purchase, receives the authorized payment data and transmits, via the software module application programming interface and to the application, the authorized payment data.

The disclosed technology for a hardware system to access a secure backend system uses non-volatile memory to hold encrypted secrets, volatile memory to hold decrypted secrets ready for use, a keys-for-all (K4A) server, and app servers running K4A clients. To access the backend system in production, each app server uses a decrypted secret and a certificate that identifies the app server and certifies its role and physical and logical location. At initialization of the app server, a K4A client is instantiated that launches and tracks processes, running on the app server, that are authorized to request decryption services. The K4A client responds to a decryption request from an authorized process, determined based on tracking of processes launched, by requesting decryption by a K4A server, using the certificate, and returns to the process, in volatile memory, a decrypted secret or a reference to the decrypted secret, decrypted by the K4A server.

Data communication apparatus and method for verification and service provision. A system for controlling data communication at a facility 22 includes: (i) a server 31 for communication with devices at the facility 22; (ii) a data store 40; and (iii) a wide area communication interface 28 for communication between the server 31 and the facility 22. The server 31 is configured to receive identifier data, location data and facility data from a user of a first device 24 at the facility 22, and to select, based on the facility data, an association from the data store 40 and send it to the first device 24. The server 31 is configured to receive a selection message from the first device 24 and send to a second device 26 associated with the facility 22 a verification message.

A method according to an example of the present disclosure includes, obtaining an encrypted version of a shared reference file that is shared by a group of one or more confidants, receiving a request from a particular confidant in the group to encrypt a data segment for the group, and selecting a portion of the encrypted version of the shared reference file as an encryption key for the request. The selecting is performed based on a date and time of the request. The encryption key is used to encrypt the data segment. A computing device and computer program product are also disclosed.

A system, method, and computer program product are provided for providing seamless data access from different internet service providers. In operation, a master modem receives a ping from a device for requesting an encrypted key associated with an internet session corresponding to one of a plurality of Internet Service Providers (ISPs). The master modem authenticates the device and responds with the encrypted key. The master modem notifies an Internet Service Provider (ISP) system associated with the internet session with the encrypted key before beginning the internet session with the device. The ISP system verifies parameters to determine whether to allow the session to begin, in response to the notifying. The master modem receives authorization to begin the internet session from the ISP system. The master modem sets a port and speed associated with the master modem to aid in maintaining Quality of Service (QoS) for the internet session. The master modem triggers the device for beginning the internet session. The device utilizes data during the internet session, which is associated with the encrypted key. The master modem deducts the data used during the internet session from a shared data pool associated with the plurality of Internet Service Providers. The encrypted key is utilized to correlate the data used during the internet session with the deduction from the shared data pool.

A mobile device can establish a communication with a separate device via a single function action such as bringing the devices near to each other. A method can include setting the mobile device to be in a state that enables a user to complete a purchase via the single function action with the mobile device, establishing, based on the user performing the single function action associated with the mobile device, a wireless link between the mobile device and the separate device, the wireless link providing communications associated with the purchase, receiving purchase data from the separate device via the wireless link, the purchase data being associated with the purchase, retrieving payment data from a memory of the mobile device and transmitting, from the mobile device to the separate device and via the wireless link, the payment data to make the purchase.

A system and method for validating an entity and sending secret shared public key for securely communicating data that may include providing first and second entities with an identical sequence of bits; encrypting data, by the first entity, using bits in a first portion of the identical sequence as an encryption key, to produce encrypted data; XORing the encrypted data based on bits in a second portion of the sequence to produce encrypted and XORed data; sending the encrypted and XORed data to the second entity; and using the sequence of bits, by the second entity, to un-XOR and decrypt the encrypted and XORed data.

Systems and methods for message encryption include transmitting, to a first device through a first communication channel, a modification rule message including a modification rule. A first message is encrypted using a first key to generate an encrypted message. The encrypted message is modified based on the modification rule to generate a modified encrypted message. The modified encrypted message is transmitted to the first device through a second communication channel.

A network communication method comprises connecting, by a server and client, through networks and sharing a symmetric key, generating, by the server, a credential by which the client can be identified, through random number generation, and sharing the credential with the client, generating, by the client, transmission data containing a serial number indicating the sequence of the transmission data, and transmitting a message to the server, and generating, by the server, transmission data containing a serial number indicating the sequence of the transmission data, and transmitting a message to the client.