A method of manufacturing devices that generate digital signatures such that each device may be reliably and uniquely identified includes creating a public-private key pair within each device during manufacture; exporting only the public key from the device; retaining the private key within the device against the possibility of divulgement thereof by the device; and securely linking said exported public key with other information within the environment of the manufacture of the device, whereby e...

An object of the invention is to make it possible to move data that is coded and managed for copyright protection after evaluating an encryption key and permitting its movement based on a result of the evaluation, as well as to make it possible to copy data that is recorded in a server to a terminal apparatus and cause the terminal apparatus itself to reproduce the data and, where a terminal apparatus is connected to the server, render data on the server reproducible.

The invention relates to a method, electronic device and computer program for providing digital rights management. The electronic device comprises a first clock and an optional second clock. The electronic device may store at least one protected media object and rights associated with the media object. A time attack event is detected in the electronic device. A barring time is increased when a time attack event occurs. The barring time is decreased regularly. It is checked whether the barring ti...

Methods and devices allowing distribution of content that resides in a source device on a local area network (LAN) are described. A gateway between the LAN and a wide area network (WAN) receives from a sink device a request for an instance of content. The request is sent over the WAN. Distribution of the item of content within the LAN uses a first digital rights management (DRM) protocol that prevents the item of content from being distributed outside the LAN. For the item of content, the gatewa...

A method of using a mobile device to authenticate a print medium before completing printing onto the print medium, the mobile device including processing means, a printhead and a sensor, the print medium comprising a substrate, the method comprising the steps of: using the sensor to sense coded data provided on a surface of the substrate; using the processing means to interpret the coded data to authenticate the print medium; and in the event the authentication step is successful, using the prin...

A list of computing components to be disabled can be distributed through a computer readable medium to computing devices. A process on these computing devices can read the list and disable listed components. The components can be permanently disabled, or disabled for a limited purpose. A list or list update may be provided with a digital media object that specifies a more or less stringent revocation policy for that object. A media object may also specify a maximum age for the list. This allows ...

A device (120) processes traffic in a network. The device (120) obtains information corresponding to an activity between a group of source devices and one or more services of destination devices, measures, for each of the group of source devices, a behavior of the source activity in terms of independence and uniformity of access to the one or more services, and determines, for each of the group of source devices, whether the source activity includes probing based on the measured behavior. The de...

A method and apparatus to identity SPAM emails is disclosed. The method sets a misspelling rejection ratio. Upon receipt of an email comprising (X) words, the method determines the number (Y) of misspelled words comprising that email. The method then calculates a misspelling ratio by dividing (Y) by (X), and then determines if the misspelling ratio is greater than or equal to the misspelling rejection ratio. If the method determines that the misspelling ratio is greater than or equal to the miss...

Embodiments of the invention are directed to systems that detect maliciously formed TCP/IP retransmit packets attempting to pass through an intrusion detection system (IDS) and prevent them from reaching their destination by forcing early flow termination. The IDS may be configured to track a hash of certain fields in each packet. This set of hashes is maintained for all of the packets in the currently open TCP window for each flow. If the hash of a retransmit packet does not match the cached ha...

Systems and methods for providing network access, e.g. Internet access, are described. An architecture includes a host organization network through which network access is provided. The host organization network can be advantageously deployed in public areas such as airports and shopping malls. An authentication/negotiation component is provided for authenticating various users and negotiating for services with service providers on behalf of the system users. The authentication/negotiation compo...