Methods and apparatus for control of data and content protection mechanisms across a network using a download delivery paradigm. In one embodiment, conditional access (CA), digital rights management (DRM), and trusted domain (TD) security policies are delivered, configured and enforced with respect to consumer premises equipment (CPE) within a cable television network. A trusted domain is established within the user's premises within which content access, distribution, and reproduction can be controlled remotely by the network operator. The content may be distributed to secure or non-secure output domains consistent with the security policies enforced by secure CA, DRM, and TD clients running within the trusted domain. Legacy and retail CPE models are also supported. A network security architecture comprising an authentication proxy (AP), provisioning system (MPS), and conditional access system (CAS) is also disclosed, which can interface with a trusted authority (TA) for cryptographic element management and CPE/user device authentication.

A cloud authentication system is disclosed. A request for an authentication setup for a first user of a first service provider is received. Additional information, such as authentication criteria, can further be received, such as from the first service provider. A set of stimuli to associate with a first user profile of the first user of the first service provider is stored.

The present invention relates to a method of hashing a perceptual vector model based on a multi-scale curvature. According to a first aspect, there is provided a method of hashing a perceptual vector model based on a multi-scale curvature including: generating a multi-dimensional feature coefficient matrix, and obtaining a multi-dimensional intermediate hash coefficient matrix; and obtaining a final binary hash matrix, and enabling the multi-dimensional binary hash matrix to be hierarchically authenticated. In addition, according to a second aspect, there is provided a method of hashing a perceptual vector model based on a multi-scale curvature including: generating a hash by using a hash function; and authenticating a vector model. In addition, an error detection probability for an object attack can be lower by about 210.sup.52.810.sup.2, and a uniqueness probability is raised by about 0.014. In addition, an entropy can be raised by about 0.8752.149.

A machine may be configured to perform detecting and treating unauthorized duplicate digital content. For example, the machine accesses a digital content item published on a server of a social networking service (SNS) by a member of the SNS. The machine determines that the digital content item does not include a reference indicator that indicates that the digital content item is copied original content. The machine determines that the digital content item is at least one of a near-duplicate or an exact duplicate of an original digital content item based on a comparison between data pertaining to the digital content item and data pertaining to the original digital content item. The machine enhances the server based on executing a treatment of the digital content item. The executing of the treatment includes causing an automatic alteration of a state associated with the digital content item in the record of the database.

In one embodiment, a method for protecting video content is implemented on at least one computing device and includes: receiving the video content as encrypted video data on the at least one computing device, determining a viewport within the encrypted video data, where the viewport represents a subset of a larger amount of video that is presentable at a specific point in time in the video content, decrypting at least a portion of the encrypted video data corresponding to the viewport, where at least a remaining portion of the video that is time synchronized with the viewport remains encrypted, rendering viewport video from the viewport, and playing the viewport video.

Robust security of copyright-protected content is provided when such content is digitally stored in a storage device of a client device in encrypted form. The copyright-protected content is encrypted by a server device using a private key and a corresponding public key is used for decryption by the client device. Because access to the private key cannot be determined from the corresponding public key, and because the private key and public key are based at least in part on a unique ID number embedded in the data storage device, decryption can only be performed by the data storage device in the client device. In some embodiments, robust security of private data stored in a server device is provided using a similar public-key/private-key pair and encryption scheme.

This disclosure provides techniques for recovering a root key from measurement of a circuit function. In some embodiments, a checkpointing feature is used to periodically mark measurements of this function and thereby track drift in the value of the root key over the life of a digital device; the checkpointing feature permits rollback of any measurement of the function in a manner that negates incremental drift and permits recovery of the root key for the life of a device (e.g., an IC circuit or product in which the IC is embedded). This disclosure also provides novel PUF designs and applications.

Method and system for executing a one-time program comprising at least one instruction operating on at least one input value (a, b) and returning at least one output value (O), wherein each instruction of the one-time program is encoded onto a state of an elementary quantum system, comprising: encoding the at least one input value (a, b) onto a quantum gate according to a pre-defined input-encoding scheme; applying the quantum gate to the at least one elementary quantum system; making a measurement of a resulting state of the at least one elementary quantum system after the quantum gate; and determining the at least one output value from a result of the measurement.

Preference data is received. The received preference data is compared to stored preference data associated with a user with which the received preference data is associated. A determination is made whether to authorize an action based at least on the comparison. The preference data is received as a selection.

In one embodiment, a method for protecting video content is implemented on at least one computing device and includes: receiving the video content as encrypted video data on the at least one computing device, determining a viewport within the encrypted video data, where the viewport represents a subset of a larger amount of video that is presentable at a specific point in time in the video content, decrypting at least a portion of the encrypted video data corresponding to the viewport, where at least a remaining portion of the video that is time synchronized with the viewport remains encrypted, rendering viewport video from the viewport, and playing the viewport video.