Abstract: An example method comprises determining, by a computing system, that a message-sending computing device has received an indication of user input indicating an intent to send a message to a user of a message-recipient computing device; prior to the message being delivered to the message-recipient computing device, calculating, by the computing system, a screen sharing risk score (SSRS) that indicates a risk that the message-recipient computing device is currently sharing screen content of a screen of the message-recipient computing device with a screen-recipient computing device associated with an untrusted screen-recipient user; and based on the SSRS indicating that the risk is above a risk threshold, causing the message-sending computing device to output an alert indicating that the message-recipient computing device is possibly sharing the screen content of the message-recipient computing device with the screen-recipient computing device associated with the untrusted screen-recipient user.

Abstract: Method, apparatus and computer program product for querying a group-based communication platform are described herein. For example, the apparatus comprises at least one processor and at least one non-transitory memory including program code. The at least one non-transitory memory and the program code are configured to, with the at least one processor, cause the apparatus to at least store a plurality of electronic messages to a message corpus; receive a search query associated with the message corpus, wherein the search query comprises reaction metadata criteria; and apply the search query to the message corpus to generate a reaction search results set.

Abstract: Embodiments of a device and method are disclosed. In an embodiment, an Ethernet communications device includes a physical layer (PHY) unit or a media access control (MAC) unit configured to perform media access control for the Ethernet communications device. The Ethernet communications device includes a security unit configured to manipulate a data stream in a data path within the Ethernet communications device when the data stream violates or conforms to a pre-defined policy.

Abstract: Systems, methods, and apparatus are provided for determining overlay of a pattern on a substrate with a mask pattern defined in a resist layer on top of the pattern on the substrate. A first grating is provided under a second grating, each having substantially identical pitch to the other, together forming a composite grating. A first illumination beam is provided under an angle of incidence along a first horizontal direction. The intensity of a diffracted beam from the composite grating is measured. A second illumination beam is provided under the angle of incidence along a second horizontal direction. The second horizontal direction is opposite to the first horizontal direction. The intensity of the diffracted beam from the composite grating is measured. The difference between the diffracted beam from the first illumination beam and the diffracted beam from the second illumination beam, linearly scaled, results in the overlay error.

Abstract: A security server provides dynamic permissions for an enterprise data source. The security server establishes permissions rules for a data source of the enterprise. For example, the permissions rules describe permissions policies applicable to users of the enterprise in given contexts. The security server evaluates the permissions rules in view of a context to produce a dynamic permissions policy for the data source. The context describes the environment of the data source at a point in time (e.g., a current time). The dynamic permissions policy describes permissions of users of the enterprise with respect to the data source and the context. The security server transmits the dynamic permissions policy to the enterprise such that the enterprise is able to implement the dynamic permissions policy at the data source.

Abstract: Systems, methods, and apparatus are provided for determining overlay of a pattern on a substrate with a mask pattern defined in a resist layer on top of the pattern on the substrate. A first grating is provided under a second grating, each having substantially identical pitch to the other, together forming a composite grating. A first illumination beam is provided under an angle of incidence along a first horizontal direction. The intensity of a diffracted beam from the composite grating is measured. A second illumination beam is provided under the angle of incidence along a second horizontal direction. The second horizontal direction is opposite to the first horizontal direction. The intensity of the diffracted beam from the composite grating is measured. The difference between the diffracted beam from the first illumination beam and the diffracted beam from the second illumination beam, linearly scaled, results in the overlay error.

Abstract: Systems and methods to generate a device composite fingerprint associated with a computing device are described. In one embodiment, communication data associated with the computing device is accessed. The communication data includes device identification data, device group data, and device operational data. A device identity fingerprint associated with the computing device is generated using the device identification data. A device group fingerprint associated with the computing device is generated using the device group data. A device operational fingerprint associated with the computing device is generated using the device operational data. The device identity fingerprint, the device group fingerprint, and the device operational fingerprint are combined to generate a device composite fingerprint.

Abstract: A device is authenticated for communication over a network based on a sensor data signature and a traffic pattern signature. The sensor data signature and the traffic pattern signature identify the device. A determination is made whether the sensor data signature corresponds to one of a plurality of recognized sensor data signatures. A determination is also made whether the traffic pattern signature of the device corresponds to one of a plurality of recognized traffic pattern signatures. The device is authenticated for communication over the network responsive to determining that the sensor data signature corresponds to one of the plurality of recognized sensor data signatures and the traffic pattern signature corresponds to one of the plurality of recognized traffic pattern signatures.

Abstract: A method of determining whether to provide user access to a computer resource may comprise receiving a request for the computer resource from a user device; obtaining, from the user device, an encrypted persistent cookie responsive to determining that the encrypted persistent cookie is present on the user device, wherein the encrypted persistent cookie comprises a fingerprint signature field comprising a previous device fingerprint encoded into the fingerprint signature field as part of a previous session; obtaining, from the user device, an obtained device fingerprint of the user device; comparing the obtained device fingerprint with the previous device fingerprint of the fingerprint signature field to derive a fingerprint variance representing a difference between the obtained device fingerprint and the previous device fingerprint of the fingerprint signature field; and processing the request for the computer resource based on the fingerprint variance.

Abstract: A network appliance receives a communication from a client device that includes a request to establish a network connection to a server. The network appliance establishes, in response to the communication, a single connection between the network appliance and the server based on application of a policy that causes the network appliance to determine not to decrypt data transmitted between the client device and the server. The network appliance transmits encrypted data between the client device and the server over the single connection.

Abstract: The method and system are provided for monitoring a protected network for strain. The method includes receiving a learned model having clusters of learning requests of learning network traffic observed during non-strain operation of the protected network, observing network traffic, classifying each of the traffic requests with one of the clusters based on fields of the traffic request and fields used for clustering the learning requests, determining an analysis response time for respective traffic requests associated with the classified traffic requests, determining an analysis response time characteristic per cluster based on an analysis response time associated with the respective classified traffic requests classified with the cluster, determining a difference per cluster between the analysis response time and the learning response times associated with the cluster, and notifying a mitigation device when the difference determined for enough of the clusters exceeds a predetermined threshold.

Abstract: A type identification is firstly performed on a to-be-processed access request, and when the to-be-processed access request is identified as a first-type access request, anomaly identification is then performed on the to-be-processed access request by using a machine learning model. The techniques of the present disclosure not only accurately identify an abnormal access request, but also effectively reduce the number of access requests that need to be identified by the machine learning model, thus saving computing resources of the device and improving the operating performance of the device.

Abstract: Embodiments relate to a permission management method and system. The method includes: receiving a first request sent by a controlled device. The first request includes a device identifier of the controlled device and indication information of a target operation; detecting a network status of a controlling device associated with the controlled device, where when the controlling device is in different network statuses, one or more controlled devices have different permission for performing respective operations; determining, based on the network status of the controlling device, the device identifier of the controlled device, and the indication information of the target operation, permission for performing the target operation by the controlled device; and processing the first request based on the determined permission for performing the target operation by the controlled device.

Abstract: Systems and methods are described for communication of a third-party application server with a third-party email client plug-in. The systems and the methods enable the third-party application server to provide a plug-in header contained in a message. The plug-in header may include an X-header. The X-header may be injected into the message. The plug-in installed within an email client receives the message. The plug-in is configured to process the plug-in header to identify one or more instructions to perform an action of one or more actions. The one or more instructions may relate to a property of a user and/or a property of the email client of the user. Responsive to the one or more instructions, the plug-in performs the action.

Abstract: Systems and method for verifying an identity of a user during interaction with a resource provider are disclosed. Embodiments enable using an authorization request message to inquire about an identity attribute (e.g. age) of a user during an interaction between the user and a resource provider. An authorizing entity (e.g. issuer) or a processing entity provides an answer to the inquiry within an authorization response message. The answer to the inquiry may establish whether the consumer meets a threshold (e.g. minimum age requirement).

Abstract: A multicast frame directed to a plurality of devices coupled to a network can be received, where the plurality of devices comprising at least one intended recipient device and at least one unintended recipient device. A destination unicast address corresponding to an intended recipient device can be identified. The multicast frame can be converted into a unicast frame directed to the intended recipient device, the unicast frame configured with the destination unicast address. The unicast frame can be blocked from accessing the unintended recipient device. The unicast frame can be provided to the intended recipient device.

Abstract: Data processing methods, devices, access control systems, and storage media are provided in the present disclosure. In a data processing method, isolated sessions corresponding to a same source IP address in a preset time period are identified. When the number of isolated sessions meets a preset condition, the source IP address is determined to be a target IP. In implementations, based on activities of isolated sessions, a method of reverse identification of whether a source IP address of the isolated sessions is a target IP is not easily bypassed by the target IP, and is advantageous for accurately identifying the target IP that satisfies a condition.

Abstract: The disclosed technology teaches a method for evaluating user compliance with an organization's security policies, formulating a user confidence or risk score, comprising scoring for each user a sum of alert weights, categorized by severity, and generated over time. Each contribution to an alert weight is generated due to an activity by the user that the organization's security policies treat as risky. Alert weights, over time, are subject to a decay factor that attenuates the alert weights as time passes. Also disclosed is reporting the user confidence score, comprising causing display of a time series of the user confidence or risk scores over a predetermined time and/or a current user confidence or risk score and/or at least some details of the activity by the user that contributed to the alert weights over time.

Abstract: A HEMS controller receives, from each of a plurality of devices requesting registration in a HEMS, an electronic certificate of the device in a continuous registration mode in which a plurality of devices can be continuously registered in the HEMS. The HEMS controller 14 determines whether or not to permit registration in the HEMS for each device based on an attribute indicated by the electronic certificate of each of the plurality of devices.

Abstract: An approach is described for a method, system, and product, the approaching includes a multi-cloud orchestrator that manages interfacing with multiple cloud service providers on behalf of a user. In some embodiments, the multi-cloud orchestrator includes a client interface layer for each cloud provider supported where each supported cloud provider is associated with a set of management data for tracking transfers and a set of mapping data for scheduling sequences of commands to satisfy user requests. In some embodiments, the process is tightly coupled with an electronic design system and that client side and circuit verification and processing tools in cloud provider provided computing environments.