A trust module suitable for providing and managing network administration across multiple networks with different security levels. The trust module comprises an administration module to provide secure communication rules between and among the networks that define the manner in which the networks exchange secure communication over a data channel. The administration module includes a user interface to enable an administrator to define the secure communication rules and an encryption module to encrypt the secure communication rules. Advantageously, the trust module of the present invention allows for secure communication and attestation across an unsecure network and a secure network.

An authentication method for a communication network includes a registration step, an inquiry step, an answering step and a verification step. The authentication method further includes an emergency authentication mode if a response code is not received by a requesting end within a predetermined period of time or if a first confirmation code is verified to be incorrect by a requesting end. In another embodiment, an authentication method for a communication network includes a registration step, a first inquiry step, a second inquiry step, a first answering step, a second answering step and a verification step. The authentication method in the other embodiment also includes an emergency authentication mode if a second response code is not received by the requesting end within a predetermined period of time or if a third tested code is verified to be incorrect.

A method and electronic device implementing the same are disclosed herein. The electronic device includes a first communication module, a second communication module, a memory, and at least one processor operatively coupled to the memory. The at least one processor implements the method, including: receiving, via a first communication module, an initial setting request message from an external electronic device through a first communication channel, receiving, via a second communication module security key information from the external electronic device through a second communication channel; and transmitting subscription information for communicating with a network provider to the external electronic device, wherein the first communication channel and the second communication channel have different communication characteristics.

Provided is a gate apparatus including a sensor that detects a pedestrian; multiple human body communication electrodes for performing human body communication; and a control unit that determines a position of the pedestrian according to information on the pedestrian detected by the sensor, performs outputting of a connection confirmation request packet through a human body communication electrode corresponding to the determined position, receives a connection confirmation response packet transmitted from a human body communication terminal and performs analysis processing on the received connection confirmation response packet, and performs opening and closing control of a gate opening and closing unit, in which the control unit stores in the connection confirmation request packet an output electrode identifier of a communication electrode that performs packet outputting, and determines whether or not the output electrode identifier and an electrode identifier of the electrode that receives the connection confirmation response packet agree with each other.

A system protects personally identifiable information (PII) by implementing an unconventional key management scheme. In this scheme, the system uses a set of keys rather than an individual key for encrypting PII. Different portions of the PII are encrypted using different keys from the set of keys. In this manner, even if a malicious user were to access a key, that key would not give the malicious user the ability to decrypt all of the PII. Additionally, the system generates a new set of keys periodically (e.g., once a month). The system also deletes sets of keys that are too old (e.g., six months old). As a result, even if a malicious user were to access a key, the usefulness of that key would be time limited.

Provided are a quantum key distribution method, device, and system. The quantum key distribution system may include a transmitter configured to split an optical signal into a first optical signal passing through a first path (P1) and a second optical signal passing through a second path (P2), which is longer than the first path (P1), and to sequentially transmit the first optical signal and the second optical signal; and a receiver configured to receive the first optical signal and the second optical signal incident through a quantum channel and transmit the first optical signal and the second optical signal back to the transmitter through the quantum channel after passing through a polarization-dependent element, being reflected by a Faraday mirror, and passing through the polarization-dependent element again.

The present invention, which is used for continuous variable quantum key distribution (CVQKD) with asynchronous local oscillators, relates to a system for performing a phase compensation of a scheme of using LO phase estimation and feedback at a receiver (Bob) using a pilot signal from a transmitter (Alice) and a scheme of measuring quantum state data using an LO having a predetermined phase at the receiver (Bob) and estimating and feeding back an LO phase through multi-dimensional reconciliation (MDR).

A system for signing transactions. The system includes a first module with a communication interface to a public network; and a controller to handle a transaction with a Blockchain network or a transaction server accessible at the public network. The system also includes a second module with a random number generator; and a secure controller to generate seed words and private keys. The system further includes a bridge module with a controller; and a switch to selectively connect the data interface of the bridge module to either the data interface of the first module or the data interface of the second module such that the data interface of the first module is never connected with the data interface of the second module.

Provided are methods and systems for establishing secure sessions. A method for establishing secure sessions may commence with receiving a request to establish a secure session between a client and a server. Client security parameters may be provided in client extension fields of the request. The method may include forwarding the request to the server and receiving a secure session response from the server. Server security parameters may be provided in server extension fields of the secure session response. The method may include receiving a server key secret, forwarding the secure session response and the server key secret to the client, receiving a client key secret, and forwarding the client key secret to the server. The method may continue with calculating a session key and establishing a first secure session between the security gateway and the server and a second secure session between the security gateway and the client.

A method, computer system, and a computer program product for securing message transmission is provided. The present invention may include linking, by a first terminal device, a communication interface to a first communication channel for a target application. The present invention may include, in response to a first message being inputted in the communication interface, encrypting, by the first terminal device, the first message with a key for the first communication channel. The present invention may include, transmitting, by the first terminal device, the encrypted first message via the first communication channel.