Abstract: A system for accessing memory is disclosed. The system comprises a first communication interface configured to receive from an external processor a request for data. The system further comprises a second communication interface configured to communicate with an external memory module to provide the external processor indirect access to the data stored on the external memory module. The system further comprises a memory-side cache configured to cache the data obtained from the external memory module. The cache comprises a plurality of cache entries. The data obtained from the external memory is cached in one of the cache entries, and wherein the one of the cache entries comprises a plurality of cache data sectors with corresponding individual cache data sector valid status indicators and corresponding individual cache data sector modified status indicators and a common tag field for the plurality of cache data sectors.

Abstract: In some aspects, a method for mediation of a screenshot capture by a client application based on policy includes identifying, by a client application on a client device, a policy for mediating one or more screenshots of content displayed via the client application. An embedded browser within the client application accesses a network application of one or more servers. The method further includes intercepting, by the client application, a request to capture a screenshot of at least a portion of the network application being displayed, determining, by the client application, one or more mediation actions to perform on the screenshot responsive to the policy, performing, by the client application, the one or more mediation actions on the screenshot, and providing, by the client responsive to the request, the screenshot resulting from the one or more mediation actions.

Abstract: Described embodiments provide systems and methods for displaying a service graph in association with a time of a detected anomaly. A device may store a plurality of snapshots of a service graph of a plurality of microservices. Each of the snapshots of the service graphs include metrics at a respective time increment from execution of each of the plurality of microservices. The device may detect an anomaly with operation of one or more microservices of the plurality of services. The device may identify a set of snapshots of the service graph within a predetermined time period of a time of the anomaly. The device may display each of the snapshots in the set of snapshots of in sequence corresponding to time increments within the predetermined time period of the time of the anomaly.

Abstract: Embodiments described include systems and methods for encoding and decoding data for a network application. A client application may include an embedded browser. The embedded browser may establish a session with a network application. The client application may identify a policy specifying a type of data to encode upon input. The embedded browser may detect the type of data of an input field of the network application being displayed in the embedded browser. The embedded browser may, responsive to the detection and the policy, encode the data inputted into the input field or decode encoded data displayed in the input field.

Abstract: Embodiments described include systems and methods for presenting additional content for a network application accessed via an embedded browser of a client application are provided. Additional content related to network applications may be presented on client devices. Specifically, activity such as embedded browser activity may be monitored. Responsive to detecting an event based on the monitored activity, additional content related to the network application may be provided. In various embodiments, the additional content is provided to a client application on the client device for presentation on the client device.

Abstract: A method includes tracing from an observation point in a circuit to an input of the circuit to produce a cone of influence that includes a plurality of components of the circuit. The plurality of components is connected at a plurality of nodes in the cone of influence and the plurality of components includes a plurality of logic elements. The method also includes, for each node of the plurality of nodes, determining an observability probability that a logical high or low value at a corresponding node propagates to the observation point. The method further includes determining a weighted soft error probability for each logic element of the plurality of logic elements and determining a weighed soft error failure mode distribution for the cone of influence.

Abstract: Embodiments described include systems and methods for management and pre-establishment of network application and secure communication sessions. Session logs may be analyzed to identify an application or secure communication sessions likely to be accessed, and prior to receiving a request to establish the session, an intermediary (e.g. another device such as an intermediary appliance or other device, or an intermediary agent on a client such as a client application) may pre-establish the session, performing any necessary handshaking or credential or key exchange processes. When the session is subsequently requested (e.g. in response to a user request), the system may immediately begin using the pre-established session. This pre-establishment may be coordinated within the enterprise providing load balancing and scheduling of session establishment to prevent large processing loads at any one point in time.

Abstract: In some aspects, a method for revoking access to a network application on a client device. The method includes establishing, by a client application on a client device responsive to authenticating a user, access to one or more network applications of one or more first servers of a first entity via an embedded browser of the client application, receiving, by the client application, a notification from a second server of a second entity that access for the user to a network application of the one or more network applications is to be revoked, and performing, by the client application responsive to the notification, one or more revoking actions based at least on a policy.

Abstract: A client application installed on a client device may monitor communications flows between embedded browsers of the client application and one or more servers, including enterprise servers and non-enterprise servers, at upper layers of a network stack of the client device including the application layer, session layer, and presentation layer. Communications to different endpoints may be classified as enterprise or non-enterprise, measured, and aggregated to provide disambiguation of enterprise and non-enterprise communications of the device transiting a single communications link (e.g. cellular data connection). Server and network policies may be applied in accordance with the measurements with higher accuracy than policies based on total bandwidth utilized by the device without regard to its classification.

Abstract: Aspects of the present disclosure relate to real-time invoice error prevention. Embodiments include receiving a value related to an item or service during creation of an invoice by a user via a user interface, and determining a user-level mean and a user-level standard deviation related to the value based on historical invoices of the user. Embodiments include determining a global mean and a global standard deviation related to the value based on historical invoices of a plurality of users. Embodiments include selecting weights for the user-level mean, the user-level standard deviation, the global mean, and the global standard deviation based on a total number of the historical invoices of the user. Embodiments include determining an expected range for the value based on the user-level mean, the user-level standard deviation, the global mean, the global standard deviation, and the weights. Embodiments include determining that the value is outside the expected range.

Abstract: Embodiments described include systems and methods for executing in an embedded browser an application script for network applications of different origins. A client application can establish a first session with a first network application of a first entity at a first origin via an embedded browser within the client application and a second session with a second network application of a second entity at a second origin via the embedded browser within the client application. A scripting engine within the client application of a client device of a user at a third origin can identify an application script having instructions to interact with the first network application and the second network application, and can execute the instructions to perform a task across the first network application of the first entity at the first origin and the second network application of the second entity at the second origin.

Abstract: Embodiments described include systems and methods for providing peer-to-peer caching among client applications. A cache coordinator is configured to receive a first request to register an object stored in a cache by a first client application including a first embedded browser. The first embedded browser obtains the object via a session established by the first embedded browser with a first network application on a server of a second entity. The cache coordinator is configured to store a location of the first client application and a hash of the object. The cache coordinator is configured to receive a second request from a second client application. The second request requests the location of the object among peer client applications. The cache coordinator is configured to communicate identification of the location of the first client application to the second client application for retrieving the object from the cache of the first client application.

Abstract: The present disclosure is directed generally to systems and methods for providing load balancing as a service. A load balancer executing on a device intermediary to a server and a plurality of clients can receive a request from an agent executing on the server. The request can be to initiate establishment of a transport layer connection. The load balancer can accept the request to establish the transport layer connection with the server. The load balancer can receive a request to access the server from a client of the plurality of clients. The load balancer can forward the request to the server via the transport layer connection established between the load balancer and the server responsive to the request of the server.

Abstract: Embodiments described include a method for providing context-aware input across network applications. The method can include establishing a plurality of sessions for a user with a plurality of network applications via an embedded browser within a client application. The method can include storing input activities of the user across the plurality of network applications to a data storage. The method can include detecting input focus on an input element of a network application of the plurality of network applications, the input element having a type of data to be inputted. The method can include identifying one or more inputs of the type of data used in another network application of the plurality of network applications stored in the data storage. The method can include providing the one or more inputs from another network application as selectable input for the input element of the network application.

Abstract: Embodiments described include systems and methods for generating training content for completion of tasks. The method includes receiving, from each of a plurality of client applications, interactions recorded by the client application via an embedded browser of the client application. The method includes classifying the interactions received from each client application into one or more tasks. The method includes selecting, for a first task of the one or more tasks, from the interactions classified into the first task, a subset of interactions to be included in a training content including a recorded example of performing the first task across the one or more network application. The method includes generating the training content configured to be transmitted to client applications responsive to receiving a request related to the first task.

Abstract: A method of verifying safety in a circuit design, includes, in part, receiving data representative of the circuit design, identifying a first safety mechanism within the circuit design where the safety mechanism is represented by a first module and has an output port defining a first diagnostic point, identifying a multitude of ports of a second module within the circuit design, determining whether at least one port of the second module is associated with a safety concern, performing a backward path tracing from the first diagnostic point to determine if the port falls within a cone of influence of the first safety mechanism, and establishing that a potential fault appearing at the port is detectable at the first diagnostic point if the port is determined to fall within the cone of influence of the first safety mechanism.

Abstract: Described embodiments provide systems and methods for displaying a service graph in association with a time of a detected anomaly. A device may store a plurality of snapshots of a service graph of a plurality of microservices. Each of the snapshots of the service graphs include metrics at a respective time increment from execution of each of the plurality of microservices. The device may detect an anomaly with operation of one or more microservices of the plurality of services. The device may identify a set of snapshots of the service graph within a predetermined time period of a time of the anomaly. The device may display each of the snapshots in the set of snapshots of in sequence corresponding to time increments within the predetermined time period of the time of the anomaly.

Abstract: Systems and methods for enhancing user engagement with network applications include client application executed by a client device, the client application comprising an embedded browser, in communication with one or more application servers providing a plurality of network applications. The embedded browser is configured to access a first network application and a second network application. The client application is configured to: track interactions of a user via the embedded browser with the first network application and the second network application, each interaction having a corresponding score; generate an aggregate score for the user from the scores of each tracked interaction; transmit, to a first application server, the aggregate score for the user; and receive, from the first application server, a score table comprising a plurality of scores of users including the aggregate score for the user. The embedded browser is further configured to display the score table to the user.

Abstract: Systems and methods for providing a privacy screen to a network application accessed via an embedded browser of a client application are described. The method includes establishing, by a client application on a client device, a session to a network application hosted on a third party server. The client application includes an embedded browser for accessing the network application. The method further includes identifying, by the client application, a policy for providing a privacy screen to one or more portions of the network application, detecting, by the embedded browser, that the one or more portions of the network application are to be rendered on a display of the client device, and displaying a privacy screen including one or more masks displayed over at least the one or more portions of the network application rendered on the display of the client device via the embedded browser.

Abstract: A client application installed on a client device may monitor communications flows between embedded browsers of the client application and one or more servers, including enterprise servers and non-enterprise servers, at upper layers of a network stack of the client device including the application layer, session layer, and presentation layer. Communications to different endpoints may be classified as enterprise or non-enterprise, measured, and aggregated to provide disambiguation of enterprise and non-enterprise communications of the device transiting a single communications link (e.g. cellular data connection). Server and network policies may be applied in accordance with the measurements with higher accuracy than policies based on total bandwidth utilized by the device without regard to its classification.