Cybersecurity

Systems and methods for distributed trust model and framework

USPTO granted Patent US12598071B2 to Cable Television Laboratories, Inc. covering a distributed trust management system for network communication ecosystems. The patent includes 20 claims directed to trust specification, analysis, evaluation, and monitoring engines for managing trust relationships between participating entities in a network.

End-to-end transport layer security

The USPTO granted Wells Fargo Bank, N.A. Patent US12598059B1 for end-to-end transport layer security. The invention covers methods for establishing session keys between start, end, and intermediate nodes for data encryption and MAC generation, with encrypted data relayed without intermediate node re-encryption. This is a standard patent grant conferring exclusive rights to the assignee.

Methods and systems for a 2-qubit multi-user quantum key distribution protocol

USPTO granted Patent US12598062B2 to Huawei Technologies Canada Co., Ltd. covering a method of quantum key distribution using 2-qubit entanglement among three parties (operator O, Alice, and Bob) for multi-user QKD. The patent includes 12 claims related to qubit measurement, encoding, CHSH inequality verification, and quantum key reconciliation.

Clock security for statistical object generation

The USPTO granted Invisinet Technologies LLC Patent US12598063B2 for clock security methods in cryptographic keying information generation. The patent covers operating an activation agent to access clock values and generate keying information including clock offsets and async reset values through an object activation service.

Monitoring in distributed computing system

USPTO granted Mastercard International Inc. Patent US12598069B2 covering methods and systems for monitoring services in distributed computing environments. The patent, with 20 claims, describes coordinated monitoring processes where computing nodes track service performance and share monitoring information across the distributed system. The patent was filed on July 2, 2024, establishing intellectual property rights in distributed monitoring technology.

Managing Data Encryption During System Upgrades - Red Hat Patent

The USPTO granted Patent US12598065B2 to Red Hat, Inc. covering a system for managing data encryption during system upgrades. The patent contains 20 claims related to detecting component upgrades on computing devices with encrypted data, deactivating links between PCR values and decryption keys prior to boot, provisioning alternative network server links for key authorization, and updating PCR values post-boot.

History access for end-to-end (E2E) secure content

USPTO granted Patent No. US12598061B2 to Cisco Technology Inc. for a method enabling secure access to historical cryptographic keys by new joiners to encrypted conversations. The invention uses an encrypted skip list that can be stored on untrusted servers, providing logarithmic complexity random access and log-scale overhead for linear access to conversation content.

Keycloak Information Disclosure Vulnerability (CVSS 3.7)

CERT-Bund issued a security advisory (WID-SEC-2026-0970) reporting an information disclosure vulnerability in Keycloak, an open-source identity and access management platform. The vulnerability carries a CVSS Base Score of 3.7 (low severity) and allows remote anonymous attackers to potentially expose sensitive information. Affected systems include Keycloak deployments running on Linux and UNIX operating systems.

IBM Maximo Asset Management DoS Vulnerability - CVSS 5.3

CERT-Bund published security advisory WID-SEC-2026-0965 disclosing a Denial of Service vulnerability in IBM Maximo Asset Management versions prior to 7.6.1.3 IF037. The vulnerability carries a CVSS Base Score of 5.3 (medium) and a Temporal Score of 4.6. Remote anonymous attackers can exploit this flaw to conduct DoS attacks against affected installations running on Linux, UNIX, or Windows systems.

Avahi DoS Vulnerability Advisory - CVSS 5.5 Medium Severity

CERT-Bund issued advisory WID-SEC-2026-0975 regarding a denial of service vulnerability in Avahi, an open-source network service discovery implementation for Linux/UNIX systems. The vulnerability (CVSS Base Score 5.5, Temporal Score 5.0) allows a local attacker to crash the Avahi service, impacting system availability. Affected products include Open Source avahi versions prior to 0.9-rc4. Organizations running vulnerable Avahi installations should apply patches immediately.