Abstract: Methods, systems, and apparatuses, including computer programs encoded on computer-readable media, for receiving a first communication as part of a conversation, from an unauthenticated user of a web browser. A conversation identifier is determined based on the first communication. A first responder, a communication protocol, and a communication address of the first responder is determined. The first communication is sent to the first responder and a first reply is received. The conversation identifier is determined based on the first reply and the first reply is mapped to the web browser. The first reply is sent to the web browser.

Abstract: Embodiments of the disclosure provide a communication system and method to leverage distributed ledger technology as the basis upon which a trustless method can be deployed to validate file provenance and authenticity, while also supporting a strong form of non-repudiation. In one example, the method includes transferring electronic content from a sending communication device to the receiving communication device via Rich Communication Services. The method includes generating, at the sending communication device, file transfer parameters, identity signature and timestamp that are associated with the transfer of electronic content from the sending communication device. The method then includes causing the identity signature and timestamp to be written as part of a content transfer ledger.

Abstract: A communication device includes: a storage unit configured to store identification information of a network on which an application operates, as first identification information; a connection unit configured to connect to the network; an acquisition unit configured to acquire identification information of a connecting target network via the connection unit, as second identification information; and a connection controller configured not to permit a connection of the application to the network corresponding to the second identification information in a case where the first identification information is different from the second identification information.

Abstract: An endpoint agent configured, when executed on an endpoint device, to: access outgoing and/or incoming packets via a local traffic access function of the endpoint device, the outgoing packets sent from a network interface of the endpoint device to a packet-switched network and carrying outbound payload data generated by one or more processes executed on the endpoint device, the incoming packets received at the network interface from the packet-switched network and carrying inbound payload data for processing by the one or more processes; extract network traffic telemetry from the outgoing and/or incoming packets, the extracted network traffic telemetry summarizing the outgoing and/or incoming packets; and transmit, to a cybersecurity service, a series of network telemetry records containing the extracted network traffic telemetry for use in performing a cybersecurity threat analysis. Further aspects pertain to the “deduplication” of telemetry records when network traffic is monitored by multiple sources.

Abstract: A system and method is disclosed for identifying demographics of an audience (e.g., customers, shoppers and the like) using machine learning and delivering relative content to the audience. In one embodiment, a processing unit receives images and/or audio of an audience and uses a machine learning logic to identify audience demographical characteristics. Demographical characteristics are used to select and deliver audio entertainment, and/or audio information, and/or visual entertainment and/or visual information to the audience that is relevant to the audience. In other embodiments, demographic information is used to analyze audience or customer demographics based on time periods (hour, day, week, etc.), location(s), and/or point of sale data.

Abstract: Facilitating separation of intended and non-intended browsing traffic in browsing history advanced networks (e.g., 4G, 5G, and beyond) is provided herein. Operations of a system can comprise determining respective contradiction values for second-level domains of a group of second-level domains in observed browsing history traffic. The operations can also comprise separating intended network traffic from non-intended network traffic based on the respective contradiction values. The respective contradiction values can indicate levels of inconsistency between the observed browsing history traffic and a determined popularity ranking.

Abstract: A method, apparatus, and computer program product are provided for facilitating synchronization of setting configurations. An apparatus may include a processor and a memory storing instructions that when executed by the processor cause the apparatus to configure a setting on the apparatus. The instructions when executed by the processor may further cause the apparatus to generate a settings data package comprising the setting configuration. The instructions when executed by the processor may additionally cause the apparatus to send the settings data package to a settings management service for synchronization of the setting configuration to at least one of a service or a user device. The settings management service may be configured to synchronize the setting configuration by distributing the settings data package to the at least one of the service or the user device. Corresponding methods and computer program products are also provided.

Abstract: A system in one embodiment comprises a first endpoint device that is configured to communicate with a second endpoint device using a given communication protocol. The first endpoint device is configured to monitor a communication session under the given communication protocol and to generate monitoring data associated with the communication session. The first endpoint device is configured to determine that a designated network condition has occurred based at least in part on the monitoring data. The first endpoint device is configured to activate a performance monitoring component based at least in part on the determination that the designated network condition has occurred and to generate performance data utilizing the activated performance monitoring component. The first endpoint device is configured to anonymize and store the performance data.

Abstract: Techniques are described for delivering subscriber information of a subscriber of a wireless carrier network to an authorized partner. The techniques include receiving, from a requesting entity device, a request for subscriber information of a subscriber, the request comprising a public Internet Protocol (IP) address of a user device associated with the subscriber, determining whether the requesting entity device is associated with an authorized partner based at least on one or more credentials associated with the requesting entity device, in response to determining that the requesting entity device is associated with the authorized partner, routing the request to at least one subscriber database of a plurality of subscriber databases to obtain the subscriber information using the public IP address of the user device, and transmitting the subscriber information of the subscriber to the requesting entity device.

Abstract: A system includes a memory and at least one processor to continually analyze at least one of metrics, events, and conditions for indications of an attack in a computer network, determine a change in the at least one of metrics, events, and conditions in the computer network, detect the attack in the computer network based on the change in the at least one of metrics, events, and conditions in the computer network, analyze the at least one of metrics, events, and conditions in the computer network and determine that at least one hardware device has been infected, restrict access to the at least one hardware device that has been infected, and generate a copy of data that was created before the attack and associated with the at least one hardware device that has been infected.

Abstract: Systems and methods provide for automatically generating a data model that includes a first data feed conforming to industry standards where only alerts for alert triggering violations are provided. The data model further comprises a second data feed that includes both the alerts from the first data feed and a plurality of synthetic alerts for any violations that occur in a data center but do not qualify as alert triggering violations. This second data feed provides a complete picture of the performance of a data center's devices and allows for accurate analytics.

Abstract: Systems and methods for blurring connection information in virtual private networks are provided herein. In some embodiments, a method of blurring VPN connection metadata may comprise: receiving, by a VPN service provider infrastructure, a request from a user device to establish a VPN connection with one or more VPN servers, wherein the VPN service provider infrastructure includes a logic engine configured to perform statistical blurring of VPN connection metadata; establishing a connection between the user device and one or more target sites during a VPN session; receiving, from the one or more VPN servers, VPN connection metadata associated with the user's VPN connections and a user identifier associated with the user; performing statistical blurring of VPN connection metadata by modifying the VPN connection metadata using an unknown random value to create blurred connection metadata; and storing the blurred connection metadata in association with the user identifier received.

Abstract: The present disclosure relates to systems for “cookieless” tracking across a wide range of websites and mobile applications. The systems do not involve the use of tracking pixels or code on individual webs pages and associated web or other servers and may be achieved through use of a single URL for tracking a user across multiple websites while a browser session is initiated. Methods of enhanced tracking of user activity without requiring cookies or tracking pixels are also described herein.

Abstract: Methods, systems, and media for testing insider threat detection systems are provided.

Abstract: Various examples are disclosed for hybrid alert and action solution in internet-of-things (IoT) networks. A computing environment can generate an alert and an action to perform when criteria associated with the alert is satisfied based at least in part on data collected from at least one of a plurality of sensor devices. The computing environment can determine whether the alert and the action is capable of being evaluated and performed on an edge computing device in communication with the at least one of the plurality of sensor devices based at least in part on a computing capability of the edge computing device or the at least one server computing device. The computing environment can assign the alert criteria and the action to the edge computing device or the at least one server computing device.

Abstract: A computing device includes a communications interface that communicatively couples the computing device with a plurality of other computing devices that collectively maintain a blockchain. A storage machine holds a plurality of blocks comprising the blockchain, where a particular block of the plurality defines a smart contract. The smart contract includes: (i) a first access criterion granted to an entity for a digital asset, and (ii) one or more functions that, when an associated condition is satisfied, change the first access criterion to a second access criterion, the condition being satisfied when one or more variables have specific values. A logic machine is configured to receive a current value of a variable and determine that the current value satisfies the associated condition. A request is transmitted to the plurality of computing devices to update the first access criterion to the second access criterion.

Abstract: A proactive operations (ProOps) platform is contemplated to facilitate processing data for purposes of turning included information into action, such as to enable operators to proactively manage network operations using information derived from mathematical analysis of raw data collected from network devices.

Abstract: A method and a computer network of interconnected computer nodes, one assigned a role of a deployer node, the deployer node creating and executing a rule-based block, and assigning others of the computer nodes a role of sensor node or a role of display node. The deployer node maintains addresses of the sensor nodes and the display nodes, the sensor nodes add sensor track data to create linked blocks, and the display nodes read the sensor track data in the linked blocks. The rule-based block includes a sensor add rule which checks that only computer nodes assigned the role of the deployer node can assign a computer node the role of sensor node. The rule-based block includes a sensor track data add rule which checks that only the computer nodes assigned the role of sensor node can request to add new sensor track data to create the linked blocks.

Abstract: Embodiments include apparatuses, methods, and systems for managing security of a communication network. A message, formatted based on a stateless communication protocol for a communication network, may be received from a first computing device and by a second computing device. The second computing device generates and further stores, based on a hash function stored in a storage device associated with the second computing device, a fingerprint of the message. The fingerprint is generated using the hash function based on at least a portion of a header of the message or a portion of a body of the message. In addition, the second computing device detects whether the generated fingerprint of the message has a duplicated fingerprint already stored in the storage device, where the message is a retried message or replayed message of a message having the duplicated fingerprint. Other embodiments may also be described and claimed.

Abstract: A security server assigns users sessions to a provider that provides virtual private networks. The security server trains a machine-learned model to identify a provider from a set of providers. The security server obtains connection parameters associated with a requested VPN connection. Connection parameters comprise a location of a computing device that requested the VPN connection, a time of the requested VPN connection, a current and/or historical state of VPN performance data, and user preferences. The security server applies the machine-learned model to the connection parameters to identify a provider. The security server provisions a user session based on the provider and establishes a connection through the provider.