Abstract: In some embodiments, a method may involve a computing system sending, to a client device, first data indicating that the client device is authorized to send an application programming interface (API) call to the computing system during at least a first time slot. The computing system may receive, from the client device, a first API call during the first time slot, and may process the first API call. In some embodiments, a method may involve a computing system sending, to a client device, first data indicating that the client device is prohibited from sending an API call to the computing system during at least a first time slot. The computing system may receive, from the client device, a first API call during a second time slot that is different than the first time slot, and may process the first API call.

Abstract: Systems and methods for scraping detection include a device which receives a plurality of requests from a client to extract data from a resource. The device may classify activity of the client as activity of an autonomous program based at least on a number of the plurality of requests, and one of i) one or more content types of the requests, or ii) a frequency in which the requests are received. The device may block, responsive to classification of the activity, a subsequent request from the client to extract data from the resource.

Abstract: A method for controlling a virtual meeting includes receiving a meeting template including at least one rule. The rule or rules associated with the meeting template define a first time period relating a first virtual meeting session of a first endpoint computing device and a second time period relating to a second virtual meeting session of a second endpoint computing device. The method further includes causing, responsive to the rule(s), a first audio mute/unmute action to occur in the first virtual meeting session at or prior to an expiration of the first time period. The method further includes causing a second audio mute/unmute action to occur in the second virtual meeting session at or prior to a start of the second time period, where the second time period is different from with the first time period.

Abstract: Described embodiments provide systems and methods for preventing unauthorized access of information from a resource. A device intermediary between a client and a server in a session can receive a first request from the client that includes a first uniform resource locator (URL) of the server. The device may receive a response from the server that includes a second URL. The device may update the response by including a client identifier for the session in a set-cookie field, obfuscating the second URL into a string, and replacing the second URL in the response with the string. The device may receive a second request that includes a candidate client identifier, and a third URL. The device may determine whether the second request is valid, by at least one of: matching the candidate client identifier with the client identifier, and determining whether the second URL is recoverable using the third URL.

Abstract: A computer system is provided. The computer system includes a memory and at least one processor coupled to the memory and configured to detect a request for a sign-up form from a client device to a remote server. The at least one processor is further configured to generate a code module based on the detection. The code module is configured to request a credential vulnerability check from an application management server. The at least one processor is further configured to provide the code module to the client device for execution on the client device in response to an attempted submission of the sign-up form. The at least one processor is further configured to receive a result of the credential vulnerability check from the client device and perform a security action in response to the credential vulnerability check indicating vulnerable credentials.

Abstract: A system, method and program product that provides user specific text suggestions across a set of hosted applications. A disclosed method includes: initiating a session with an application hosting platform for a user using a client device, wherein the platform includes a plurality of applications; accessing a dictionary associated with the user, wherein the dictionary provides text suggestions in response to inputted keyboard data and the dictionary is applicable for the user across each of the plurality of applications; deploying a selected application from the to the user at the client device; intercepting keyboard data entered by the user within the selected application; analyzing intercepted keyboard data and generating text suggestions specific to the user using the dictionary associated with the user; and outputting text suggestions within the selected application. The text suggestions are generated independently of capabilities of deployed application and operating systems running on the client device.

Abstract: A system and method for capturing missed content during a virtual meeting disconnect. A method is disclosed that includes: outputting a live stream of the virtual meeting to each of a set of client devices; detecting a disconnect between the virtual meeting and a first client; initiating a recording of the virtual meeting in response to the disconnect; and outputting a catch-up viewing option to a user of the first client in response to a reconnect with the first client, wherein the catch-up viewing option streams the recording to the first client at an accelerated speed in place of the live stream until the recording catches up to the live stream.

Abstract: Described embodiments provide systems and methods for context aware frictionless authentication. A server may determine authentication method information, contextual scores and contextual weights of a device, in connection with a user request to access a resource via the device. The authentication method information may include a weight and a completion duration for each of a plurality of authentication methods available via the device. The server may determine an authentication score for each of the plurality of authentication methods using the authentication method information, the contextual scores and the contextual weights of the device. The server may identify a first authentication method from the plurality of authentication methods, according to the determined authentication score. The server may authenticate the user request via the first authentication method using a first device that supports the first authentication method.

Abstract: In one disclosed method, a computing system receives, from a first remote device, a first request for a file and determines that at least a second remote device is within a proximity of the first remote device. The computing system further divides the file into at least a first portion and a second portion. The computing system further sends, to the first remote device, the first portion of the file and sends, to the second remote device, the second portion of the file. The computing system further sends, to the second remote device, first data to enable the second remote device to establish a connection with the first remote device, for transfer of at least the second portion of the file to the first remote device via the connection with the second remote device.

Abstract: In one aspect, the present disclosure relates to a method including: receiving, by a client device, a request to access content stored on a remote server; determining, by the client device, that the requested content includes sensitive information based on a user profile associated with the client device; modifying, by the client device, the requested content in response to the determination that the content includes sensitive information; and providing, by client device, access to the modified content in place of the requested content that includes the sensitive information.

Abstract: Systems and methods for controlling access to a mobile device. A method for unlocking a mobile device includes detecting a user input comprising two or more user actions performed at one or more physical input buttons of the mobile device when the mobile device is in a lock state. The lock state prevents use of at least one functionality of the mobile device. Each user action corresponds to a code. The method also includes determining whether the detected user input is valid, and changing a state of the mobile device from the lock state to an unlock state to enable the use of the at least one functionality of the mobile device if the detected user input is valid.

Abstract: Techniques prepare a document for electronic signing. Such techniques involve identifying a set of signature fields common within the document, the set being for use with different pages of the document. Such techniques further involve, in response to identifying the set of signature fields, modifying content of the different pages to include the set of signature fields. Such techniques further involve outputting a prepared version of the document that includes the modified content of the different pages of the document.

Abstract: A computing system may include a server, and a client computing device in communication with the server and operating a local mobile OS. One of the client computing device and the server may be configured to compare a notification message with a database of flagged terms to determine whether the notification message includes a flagged term. If the notification message includes the flagged term and the local mobile OS is in a locked state, the notification message is revised by replacing the flagged term with a placeholder term, and the revised notification message is displayed on a display.

Abstract: Described are systems and methods of detecting processes causing degradation of machine performance using heuristics. A device may identify a plurality of time intervals having a use of a resource on a machine above a threshold. The device may identify a percentage of the use of the resource by each of a plurality processes on the machine using the resource during each time interval of the plurality of time intervals. The device may determine a score for each process of the plurality processes based at least on a function of the percentage of the use of the resource over one or more of the plurality of time intervals in which each process used the resource. The device may provide, for display, a selection of one or more processes from the plurality of processes ranked by the score.

Abstract: Disclosed is a method involving identifying a first activity a user is to complete using a computing resource; causing a client device operated by the user to output a first notification concerning the first activity, the first notification including at least one first user interface element with which the user can interact to begin the first activity; determining an estimated time for the user to complete the first activity; and causing the client device to output an indication of the estimated time in association with the first notification.

Abstract: Described embodiments provide systems and methods for rewriting an URL in a message transmitted via a clientless SSL VPN session. An intermediary device may identify, in a HTTP response transmitted via the session, an absolute URL that includes a hostname of the server. The device may determine that the absolute URL includes an intranet domain name. The device may generate, responsive to the determination, a URL segment by combining a unique string corresponding to the hostname of the server, with a hostname of the device. The device may rewrite, responsive to the determination, the absolute URL by replacing the server hostname in the absolute URL with the generated URL segment. A DNS server for the client may be configured with a DNS entry comprising a wildcard combined with the device hostname, to cause the DNS server to resolve the rewritten absolute URL to an IP address of the device.

Abstract: Described embodiments provide systems, methods, computer readable media for determining risk metrics. A device may provide a risk model for a network environment. The risk model may include an input level and an output level. The input level may process first datasets each corresponding to a feature and a time window. The first datasets may include factors on access requests. The output level may generate a first aggregate risk metric of a first access request according to the datasets processed by the input level. The device may identify a second dataset corresponding to a second access request over the features and time windows. The device may determine a second aggregate risk metric by applying the second dataset to the risk model. The device may generate a response to the second access request according to an access control policy and the second aggregate risk metric.

Abstract: Disclosed is a computing system capable of performing a method that involves receiving, from a first device, a first indication that a peripheral device associated with the first device is available for sharing; sending, to a second device, a second indication that the peripheral device is available for sharing; receiving, from the second device, a request to access the peripheral device; and based at least in part on receipt of the request, causing a peer-to-peer connection to be established between the second device and the first device, the peer-to-peer connection enabling communication between the second device and the peripheral device. The peer-to-peer connection may, for example, enable direction of the peripheral device to the second device so that the peripheral device is a virtual device of the second device.

Abstract: Systems and methods for supporting unauthenticated POST requests include a device arranged intermediary to a client and a server which receives an unauthenticated HTTP POST request from the client for the server. The unauthenticated HTTP POST request may include a body. The device may generate one more data objects for the body of the unauthenticated HTTP POST request. The device may transmit a request to cause an authentication of a user to the client. The request may include the data object(s) to be stored on the client. The device may receive an HTTP GET request including the data object(s) from the client responsive to authenticating the user. The device may generate an authenticated HTTP POST request corresponding to the unauthenticated HTTP POST request using the one or more data objects included in the HTTP GET request. The device may transmit the authenticated HTTP POST request to the server.

Abstract: Systems and apparatuses for identifying root causes of events within an computing environment described herein. A causality network may be generated based on detected events in the computing environment. The causality network may be nodes for the events and directed edges showing the casual relations between the nodes. Conditional probability tables (CPTs) for the nodes may show the strength of the causal relations. When an event occurs, computing device may identify the node for the event in the causal network and traverse the causal network until a root cause node is identified. The computing device may output the root cause node and the path of traversal.