Abstract: A method for machine learning based database management is provided. The method may include training a machine learning model to detect an anomaly that is present and/or developing in a database system. The anomaly in the database system may be detected by at least processing, with a trained machine learning model, one or more performance metrics for the database system. In response to detecting the presence of the anomaly at the database system, one or more remedial actions may be determined for correcting and/or preventing the anomaly at the database system. The one or more remedial actions may further be sent to a database management system associated with the database system. Related systems and articles of manufacture are also provided.

Abstract: A method for machine learning based database management is provided. The method may include training a machine learning model to detect an anomaly that is present and/or developing in a database system. The anomaly in the database system may be detected by at least processing, with a trained machine learning model, one or more performance metrics for the database system. In response to detecting the presence of the anomaly at the database system, one or more remedial actions may be determined for correcting and/or preventing the anomaly at the database system. The one or more remedial actions may further be sent to a database management system associated with the database system. Related systems and articles of manufacture are also provided.

Abstract: In an embodiment, a method is presented for providing managerial access to a managed system. In this method, a definition of a procedure to be performed on the managed system is received into a managing system. A request to perform the procedure is received into the managing system from a user of the managing system. The procedure is performed in response to the request. The performing of the procedure includes initiating a plurality of functions resident in the managed system. Results indicative of the performing of the procedure are presented to the user of the managing system.

Abstract: A software system maintains a plurality of procedures in an infrastructure. The procedures include step by step instructions relating to assisting a user of the infrastructure. The system also provides a software tool via a user interface relating to the plurality of procedures. The software tool is configured to permit a user to create a procedure, to activate the procedure, and to publish the availability of the procedure.

Abstract: In an embodiment, a method is presented for providing managerial access to a managed system. In this method, a definition of a procedure to be performed on the managed system is received into a managing system. A request to perform the procedure is received into the managing system from a user of the managing system. The procedure is performed in response to the request. The performing of the procedure includes initiating a plurality of functions resident in the managed system. Results indicative of the performing of the procedure are presented to the user of the managing system.

Abstract: An international cryptography framework (ICF) is provided that allows manufacturers to comply with varying national laws governing the distribution of cryptographic capabilities. In particular, such a framework makes it possible to ship worldwide cryptographic capabilities in all types of information processing devices (e.g. printers, palm-tops). The ICF comprises a set of service elements which allow applications to exercise cryptographic functions under the control of a policy. The four core elements of the ICF architecture, i.e. the host system, cryptographic unit, policy activation token, and network security server, comprise an infrastructure that provides cryptographic services to applications. Applications that request cryptographic services from various service elements within the ICF are identified through a certificate to protect against misuse of a granted level of cryptography.

Abstract: An application which requests cryptographic services from various service elements within an international cryptography framework is identified through a certificate to protect against the misuse of a granted level of cryptography. A cryptographic unit, one of the framework core elements, builds several certification schemes for application objects. One or more methods are provided that establish a degree of binding between an application code image and issued certificates using the framework elements. Within the framework, the application is assured of the integrity of the cryptographic unit from which it is receiving services. One or more mechanisms are provided which allow the application to validate that the cryptographic unit has not been replaced or tampered with.

Abstract: A cryptographic framework consists of four basic service elements that include a national flag card, a cryptographic unit, a host system, and a network security server. Three of the four service elements have a fundamentally hierarchical relationship. The National Flag Card (NFC) is installed into the Cryptographic Unit (CU) which, in turn, is installed into a Host System (HS). Cryptographic functions on the Host System cannot be executed without a Cryptographic Unit, which itself requires the presence of a valid National Flag Card before it's services are available. The fourth service element, a Network Security Server (NSS), can provide a range of different security services including verification of the other three service elements. Several different configurations that support policy within a cryptographic system allow the framework to be adapted to various connection schemes involving, at least, the cryptographic unit and the policy, including dedicated applications, e.g.

Abstract: An international cryptography framework (ICF) allows manufacturers to comply with varying national laws governing the distribution of cryptographic capabilities. The invention is concerned primarily with the application certification aspects of the framework where an application that requests cryptographic services from the ICF service elements is identified through some form of certificate to protect against the misuse of a granted level of cryptography. The levels of cryptography granted are described via security policies and expressed as classes of service. A cryptographic unit, one of the ICF core elements, can be used to build several certification schemes for application objects. The invention provides various methods that determine the strength of binding between an application code image and the issued certificates within the context of the ICF elements.

Abstract: Trusted processing capability, for example for a cryptographic unit element in an International Cryptography Framework, secures one or more tasks or processes associated with application code. Trusted processing is assured by a trusted element, where use of the trusted element is based upon the principles of separation and locality, i.e. where the trusted element is associated with a trusted computing base that is separated from the operating system and/or data by a trust boundary, and where protected mechanisms are used to access the trusted element, such that trusted execution occurs only locally in a trusted execution area. The trust processing capability also encompasses a policy controlled main CPU.

Abstract: An international cryptography framework (ICF) allows manufacturers to comply with varying national laws governing the distribution of cryptographic capabilities. The invention is concerned primarily with the application certification aspects of the framework where an application that requests cryptographic services from the ICF service elements is identified through some form of certificate to protect against the misuse of a granted level of cryptography. The levels of cryptography granted are described via security policies and expressed as classes of service. A cryptographic unit, one of the ICF core elements, can be used to build several certification schemes for application objects. The invention provides various methods that determine the strength of binding between an application code image and the issued certificates within the context of the ICF elements.