Abstract: Determining a bit rate at which to deliver a packet stream over a network link. An origin device transmits over the network link unsolicited data packets to a destination device while contemporaneously transmitting over the network link a first packet stream encoded at an initial bit rate to the destination device. The origin device may be, but need not be, a content delivery network (CDN) edge node and the destination device may be, but need not be, a cable modem (CM). The origin device determines whether the network link supports delivering a second packet stream in lieu of the first packet stream encoded at a higher bit rate based, at least in part, on an amount of retransmission requests the origin device receives for packets in the first packet stream from the destination device.

Abstract: In one or more examples, an advanced form of network endpoint sensor is deployed to an endpoint device to provide local monitoring and reporting of network traffic flowing to and/or from the endpoint device. For example, such network endpoint sensors may reduce reliance on other types of monitoring component (such as mirrors/TAPs) and/or complement functionality of other type(s) of monitoring component (e.g. in a deployment with “roaming” endpoints). In one or more examples, network data may be linked or otherwise associated with endpoint data locally at an endpoint device. In one or more examples, such linking may be performed locally prior to reporting, response and/or remediation.

Abstract: A method for controlling an electronic device includes: responsive to that a starting operation over a controlled electronic device is detected, a target electronic device at a distance that is within a preset distance away from the controlled electronic device is determined; a working mode of the target electronic device is determined; and responsive to that the working mode of the target electronic device is matched with a first preset working mode, a working mode of the controlled electronic device is adjusted to a second preset working mode to avoid interference from the controlled electronic device to use of the target electronic device.

Abstract: A computer-implemented method and system of recording an indeterministic transaction on a distributed ledger network is described.

Abstract: The disclosure is directed to methods and systems for provisioning mobile electric vehicles with various operational settings data transmitted over the air. A vehicle or its components may operate according to operational settings corresponding to operational settings data included in the vehicle components. A server that is remote to the vehicle may comprise operational settings data and may transmit operational settings data to the vehicle. The server may transmit operational settings data automatically, such as on a periodic basis, in response to a request, such as from a user or from a vehicle component or anytime new or updated operational settings data are available for the vehicle or its components.

Abstract: The invention relates to a device and a method for analyzing performances of a web application capable of performing a process of on-the-fly anonymization (400) of production data, said production data being generated following a benchmark request message (MR1, MR2?) transmitted to said web application, said anonymization process (400) being carried out by a first electronic communication device (10) capable of Identifying, from a sensitive data identification repository (14), data to be anonymized in the response message (MRR1, MRR2); Generating, from an anonymization repository (15), anonymized data from previously identified data to be anonymized; and Generating, from the anonymized data and from the response message (MRR2), an anonymized response message (MRR2?).

Abstract: A system for processing a data package, comprising an input module for receiving a data package over a data network. The data package comprising a header and payload data and storage for storing at least one criterion. The system comprises a buffer for temporarily storing at least a part of the data package; and a decision-making module for determining a risk score based on the at least one criterion and the at least a part of the data package and being indicative of a handling action to apply to the data package. The system comprises an updating module for recalculating the at least one criterion in the storage; and a processing module for determining a handling action for the data package, wherein the handling action is based on the risk score. The recalculation is performed asynchronously with regard to the determination of the risk score.

Abstract: A method for processing a data package to be sent to an addressed recipient. The method comprises obtaining payload data to be sent over a data network as a data package. The data package comprises the payload data and a header. The method also comprises analysing the header of the data package based on a plurality of characteristics, the header comprising at least an addressed recipient, and the characteristics comprising at least a recipient identifier and a transmission time. A risk indicator is generated, which indicates a risk associated with the analysis of the addressed recipient of the data package. The data package is processed to determine a handling action for the data package. The handling action is based on the risk indicator and is applied the handling action to the data package to generate a processed data package. The processed data package is then transmitted to the addressed recipient.

Abstract: Methods, systems, and apparatuses, including computer programs encoded on computer-readable media, for receiving a first communication request, from a web browser of a first user. A request for information is sent, using a first active communication protocol, to the web browser. A first communication as part of the first conversation is received from the first user. A responder sends a communication to the first user. A first conversation identifier is identified and used to store the conversation of the first user. The responder sends a communication to a second user. A second active communication protocol is determined and used to send the communication. A second conversation identifier is identified and used to store the conversation of the second user.

Abstract: A data communication network comprises Provider Edge (PE) circuitry and Customer Edge (CE) circuitry. The PE circuitry boots a trusted PE processor that transfers a hardware-trust hash and receives a hardware-trust certificate. The CE circuitry boots a trusted CE processor that transfers a hardware-trust hash and receives a hardware-trust certificate. The trusted PE circuitry and the trusted CE circuitry exchange and validate the hardware-trust certificates to establish a Trusted Execution Environment (TEE) across the network edge. The trusted PE circuitry and the trusted CE circuitry encrypt and exchange trusted user data in the TEE across the network edge.

Abstract: A computer system includes processor hardware configured to execute instructions from memory hardware. The instructions include training first and second machine learning models with the measured historical performance metrics to generate a component health status output and a component health score output, respectively, and generating a plurality of elements for display in a multi-level application monitoring interface. The measured historical performance metrics include at least one of a component response time, a component volume, a component memory utilization, and a component processor utilization.

Abstract: A method for providing and managing non-direct URL fetching service for retrieving a content from a web server to a client device is disclosed, such as for overcoming geo-blocking or a Man-In-The-Middle (MITM) attack. The non-direct fetching method may use intermediate devices, such as proxy server, Data-Center proxy server, tunnel devices, or any combination thereof. A URL request may be sent in parallel using both direct and non-direct fetching schemes, in order to verify the need for using the non-direct fetching service. Direct or non-direct fetching scheme may be selected by using a file that associates a fetching scheme to the requested URL. The selection of the fetching mechanism may use dynamically in real-time updating of a Proxy Auto-Configuration (PAC) file. As part of an accounting scheme, quotas may be applied to a cumulative received data or a time duration of using a non-direct fetching service.

Abstract: There are provided systems and methods for a user-controlled session manager to provide remote disabling of session tokens. An online service provider, such as a user-controlled session manager, may provide service to manage sessions between user's devices and other online service provider platforms, such as login and use sessions that exchange messages and data. The session manager may receive hashed values of session IDs from the service providers hosting the sessions, which may be used to securely identify the sessions without compromising the session IDs to malicious parties. The session manager may provide a functionality to allow the user to view session statuses, as well as change their statuses to indicate that the sessions can be terminated. The session manager may update the status so that when the service provider pings the session manager for the status, the session's status is updated to be inactive.

Abstract: To provide a trusted, secure, and immutable record of transactions within a process plant, techniques are described for utilizing a distributed ledger in process control systems. The distributed ledger may be maintained by nodes which receive transactions broadcasted from field devices, controllers, operator workstations, or other devices operating within the process plant. The transactions may include process plant data, such as process parameter data, product parameter data, configuration data, user interaction data, maintenance data, commissioning data, plant network data, and product tracking data. The distributed ledgers may also be utilized to execute smart contracts to allow machines such as field devices to transact by themselves without human intervention. In this manner, recorded process parameter values and product parameter values may be retrieved to verify the quality of products.

Abstract: A network device may receive, from a transmitting network device, a packet, wherein the packet includes a first outer internet protocol (IP) header, a Generic Routing Encapsulation (GRE) header, a second outer IP header, an Encapsulating Security Payload (ESP) header, and an inner packet, wherein the inner packet is encapsulated by the ESP header, the ESP header is encapsulated by the second outer IP header, the second outer IP header is encapsulated by the GRE header, and the GRE header is encapsulated by the first outer IP header. The network device may decapsulate the packet to remove the first outer IP header and the GRE header from the packet. The network device may decrypt, after decapsulating the packet, the packet to identify the inner packet. The network device may cause one or more actions associated with the inner packet to be performed.

Abstract: A GxP (good practice) platform is implemented to enable artificial intelligence (AI) algorithms to be tracked from creation through training and into production. Deployed algorithms are assigned a GxP chain ID that enables identification of production details associated with respective algorithms. Trained algorithms, each of which are respectively associated with a GxP chain ID, are containerized and can be utilized through an application programing interface (API) to provide a service. The GxP chain ID is linked to production details stored within a database, in which the production details can include information such as data used to train the algorithm, a history version, a date/time stamp when the algorithm was validated, software and hardware on which the algorithm was developed and trained, among other details. Changes to the algorithm can be tracked using an immutable ledger facilitated by the implementation of blockchain.

Abstract: In some embodiments, a method instantiates a proxy that stores first state information for first workloads running on a first computing device. The first computing device receives a migrated workload from a second computing device and second state information for a session associated with the migrated workload. The second state information is generated by a proxy on the second computing device that processed one or more packets for the migrated workload on the second computing device. The method stories the second state information for the proxy on the first computing device and resumes the session associated with the migrated workload using the proxy on the first computing device.

Abstract: A system, apparatus, method, and non-transitory computer readable medium for providing smart cache control for mission-critical and high-priority traffic flows may include a network device which is caused to, extract attributes from a network packet, determine whether to request a new flow rule from a network controller for the network packet based on the extracted attributes, transmit a new flow rule request to the network controller based on results of the determining, the new flow rule request including the extracted attributes, receive the new flow rule from the network controller in response to the new flow rule request, and store the new flow rule in at least one cache memory based on priority information of the new flow rule.

Abstract: Network requests are made to download a data object for a display page with different time delays. Page load outcomes of the display page are determined. A criticality of downloading the data object with respect to the display page is determined using page load outcomes. Criticalities of data objects of the display page are used to generate a specific data object download order that prioritizes critical and/or blocking objects of the display page.

Abstract: A computing system receives a data piece from an electronic device. The data piece includes one or more items of anonymous personal identification information. The computing system identifies an electronic address associated with the data piece. The computing system accesses the one or more servers to identify one or more client systems permitted to transmit data to the electronic device based on the electronic address. The computing system transmits the data piece to the one or more client systems permitted to transmit data to the electronic device.