Abstract: The application discloses a load evaluation system for virtual machines in a cloud environment, comprising: a monitored data collecting module which is configured to collect monitored data from one or more virtual machines in a cloud data center; a monitored data processing module which is coupled with the monitored data collecting module and is configured to: perform aggregated grouping on the monitored data by using a first KMeans algorithm for each of the one or more virtual machines, each group having a center point coordinate, and calculate a performance characteristic of each virtual machine of the one or more virtual machines according to the grouping and the center point coordinates of individual groups, i.e.

Abstract: The present invention proposes a method for data mining, the method comprising: making statistics of the feature vectors of each target object according to the records in a target data set so as to constitute a rough data set, each of the feature vectors including the value of at least one attribute data of the target objects corresponding thereto; screening the feature vectors which correspond to all known the first type of target objects from the rough data set, and performing a filter operation onto the screened feature vectors to obtain samples; and building a regression model based on the samples, and then using the built regression model to determine whether each of all known the second type of target objects potentially belongs to the first type of target objects. The method for data mining disclosed in the present invention is capable of mining and classifying the target objects according to the comprehensive features of the target objects.

Abstract: The present disclosure relates to a SDN-based method for mirroring packets, wherein a SDN controller is coupled to an upper layer application and at least one data switching exchange respectively, and the method including: a) the upper layer application sends a mirroring instruction to the SDN controller through a first northbound interface of the SDN controller; b) the SDN controller generates a second flow table based on the mirroring instruction and a first flow table sent by a first data switching exchange; wherein the first data switching exchange initiates transmission of the packets, the first flow table encapsulates the packets, and the second flow table includes at least an action command corresponding to the mirroring instruction; and c) a second data switching exchange extracts the packets from the second flow table, and mirrors the packets to the designated node based on the action command.

Abstract: The invention provides a master MMC/SD apparatus for simultaneously supporting bulk storage and Ethernet communication, a slave MMC/SD apparatus for simultaneously supporting bulk storage and Ethernet communication, a system composed of these two apparatuses as well as a method of operating the system. The apparatuses, system and method which simultaneously support bulk storage and Ethernet communication and which are based on MMC/SD interface enable a master apparatus with MMC/SD interface to support network function while maintaining bulk storage function as well, thus greatly expanding applicable areas of such embedded terminal apparatus with the MMC/SD interface that has bulk storage function.

Abstract: The present invention relates to a data processing system for providing business continuity protection, comprising: a business center comprising a first data processing unit, a first pre-communication unit, and at least a first post-communication unit; a disaster recovery center comprising a second data processing unit, a second pre-communication unit, and at least a second post-communication unit; wherein the first pre-communication unit and the second pre-communication unit are communicatively coupled to the first post-communication unit respectively when the business center operates normally; the first pre-communication unit and the second pre-communication unit are communicatively coupled to the second post-communication unit respectively when the disaster recovery center operates in place of the business center. The data processing system can reliably switch between the business center and the disaster recovery center, thereby providing a complete protection for the business continuity.

Abstract: The present invention relates to a method for access control of a multimedia system to a secure operating system and a mobile terminal for implementing the method. The method includes the steps of: initiating an application access request for selecting a trusted application from a client application of a multimedia system to a secure operating system; making a decision as to whether the client application is a malicious application, and if not, proceeding to a next step, if yes, returning Selection Failure to the client application and performing an interrupt handling; sending the application access request from the multimedia system to the secure system; and acquiring, at the secure operating system, the trusted application based on the application access request and returning the trusted application to the multimedia system.

Abstract: The invention provides a compliance detecting method of payment applications in a virtualized environment, and pertains to the field of security technology of payment applications. The detecting method is used for compliance detection for PCI DSS isolation demands. The detecting method can determine whether it is a compliance state by analyzing the current virtual machine domain and its connection from data stream, and can also determine whether it is a compliance state by analyzing the purity of network flow of virtual machines. The detecting method is suitable for a virtualized environment and makes the detection of compliance accurate in the virtualized environment, thus being advantageous for guaranteeing the security of payment applications.

Abstract: A security electronic file processing method based on a block chain structure is proposed by the present disclosure, including: constructing a security electronic file generation request based on an occurrence of a trigger event by a member node in a block chain formed by a master node and at least one member node, and transmitting the security electronic file generation request to the master node, wherein the master node and each of the at least one member node, each as independent block respectively, are connected to each other; generating a security electronic file by the master node based on the received security electronic file generation request, and transmitting the generated security electronic file to the member node specified by the security electronic file generation request; and performing operations on the security electronic file by any of the at least one member node after receiving the security electronic file by performing data communication with another member node.

Abstract: A method of processing card number data and device including: determining, according to an expiration time corresponding to a card number, a table set corresponding to the card number, and including card number information corresponding to the card number into at least one card number storage table of the table set, wherein the table set comprises a plurality of card number storage tables, each table set corresponds to an expiration time, the expiration time corresponding to all card numbers in the table set is the same as the expiration time corresponding to the table set, and the card number information includes the card number and card number associated data; and after reaching an expiration time corresponding to a table set, performing a cleaning operation on all card number information in the table set. The provided method and device can increase cleaning and maintenance efficiency and reduce maintenance costs.

Abstract: The invention relates to management of programs on a mobile device, and in particular, to a method for activating application programs on a mobile device, and a mobile device based on this method. The method for activating application programs on a mobile device according to an embodiment of the invention comprises the following steps: receiving an application request from a device which is located outside the mobile device; identifying a transmission protocol associated with the application request; and if there are a plurality of safety entities in the mobile device which support the transmission protocol and store application programs associated with the application request, activating an application program associated with the application request in a default safety entity.

Abstract: The invention discloses a security information interaction system, apparatus and method, the method comprising the following steps: establishing a first communication channel and a second communication channel between a security information interaction terminal and a security carrier; the security carrier actively sending a command to the security information interaction terminal via the first communication channel and the second communication channel so as to complete a corresponding security information interaction procedure. With the security information interaction system, apparatus and method disclosed by the invention, the security carrier can send a command to the security information interaction terminal flexibly and actively on its own, and thus greatly improving the efficiency of the security information interaction system.

Abstract: A method and device for identifying a pupil in an image is provided. The method comprises four steps including: A. image preprocessing, B. edge detecting, C. building connected graphs, and D. screening connected graph pairs.

Abstract: The present invention proposes a method for offline upgrading virtual machine mirror images. The method comprises: an mirror image security server collecting virtual machine mirror images, and extracting and storing the information of the collected virtual machine mirror images; and the mirror image security server executing an upgrade operation of virtual machine mirror images in an offline way based on the information of the collected virtual machine mirror images. The method for offline upgrading virtual machine mirror images disclosed in the present invention has higher upgrade efficiency and is capable of upgrading the virtual machine mirror images in an offline way.

Abstract: The invention relates to computer technology, and in particular, to a method for achieving remote updating of application programs in a distributed application environment as well as a terminal management system for realizing the method.

Abstract: The invention proposes a virtual machine abnormity recovering method in distributed environment, comprising: running an independent computing assembly on each physical machine on which a virtual machine resides, wherein the computing assembly periodically reports the current running state of the corresponding physical machine to a state database; periodically polling the state database by a highly available controller so as to check the running state of all the physical machines in a physical machine group under the control of the highly available controller; and executing subsequent abnormity processing operation if the running state of only one physical machine in the physical machine group is abnormal so as to ensure that virtual machines on the physical machine whose running state is abnormal continues running normally.

Abstract: The invention proposes a security information interaction system, apparatus and method based on security carrier's active command. The method comprises: an information interaction terminal, based on a user's command, establishes a security dialog channel between the information interaction terminal and a security carrier so as to perform a security information interaction process, wherein the user's command indicates a target application associated with the security information interaction process; and the security carrier activates the target application during the establishment of the security dialog channel and then executes the security information interaction process based on the security dialog channel. In the security information interaction system, apparatus and method based on security carrier active command disclosed in the invention, the security carrier can initiate an active command to the information interaction terminal.

Abstract: A method for adatptively implementing an eNote is provided. The method comprises: entering the information related to fields on the eNote to be generated; determining the template size of the eNote based on the entered information related to fields by the preconfigured computation function, and generating the template of the eNote, wherein the input of the preconfigured computation function is the entered information related to fields, and the output is the template size of the eNote to be generated; and filling in the information corresponding to each of fields on the generated eNote template, thereby producing the final eNote.

Abstract: The invention provides communication method and apparatus based on NFC, and in particular, to communication method and apparatus based on NFC in a security element (SE), a communication method based on NFC in a smart terminal, a security element and a smart terminal. The invention proposes a new way of connection with the NFC device so that the TEE applications can have NFC ability.

Abstract: The invention provides a stateless virtual machine in a cloud computing environment as well as an application thereof, and pertains to the technical field of cloud computing. The stateless virtual machine is mapped into a storage device of a computer in the form of file and specifically comprises: an application data image file for storing an application; an operating system (OS) image file for storing an operating system; and an application middleware corresponding to the application; wherein a middleware core of the application middleware is placed in the OS image file, a middleware configuration of the application middleware is placed in the application data image file, and the middleware core and the middleware configuration are associated so as to realize that the middleware core specifies a corresponding middleware configuration.

Abstract: The invention relates to a mobile terminal having an offline trade notification function and a notification method that is implemented using the mobile terminal. The mobile terminal having an offline trade notification function comprises: a storage module for storing an offline trade application described below; a wireless communication module having a field inductor that is used for detecting surrounding radio frequency signals and for generating a control signal; a processing module which generates an interruption event when it receives the control signal; an application module which can read trade data of the offline trade application according to the notification from the processing module, calculate trade data variation of the offline trade application, and inform an input/output module described below of the trade data variation; and the input/output module for informing the user of the event of data variation.