Abstract: A method that includes obtaining threat model data associating at least one actor with an application. The at least one actor being capable of taking advantage of at least one potential vulnerability associated with the application. The method includes associating at least one technology with the at least one potential vulnerability based at least in part on the at least one actor, formulating a test based at least in part on the at least one technology, instructing a processor to perform the test on the application, and receiving results from the processor after performance of the test.

Abstract: In an example embodiment, a specialized architecture is utilized in conjunction with a message broker to enable asynchronous communications. The specialized architecture provides central components within each data center to enable the communication, and also is able to segregate functionality across different microservice landscapes. A message broker alone may not be sharable across data centers for various technical reasons, such as security concerns, latency, or other technical constraints. Topic names may be utilized by the message broker to ensure delivery of the message to the correct microservice in the other data center.

Abstract: Systems and methods for Dynamic Adaptive Streaming over HTTP (DASH) is provided. A method includes: obtaining an event message track including a plurality of event message boxes, the event message track configured to be processed by a Dynamic Adaptive Streaming over HTTP (DASH) client for displaying media content; obtaining an indicator that indicates each type of the plurality of event message boxes in the event message track; and providing the event message track to the DASH client or displaying media content based on the event message track.

Abstract: A push notification delivery system includes a server system including a processor, a network interface, and memory storing program instructions having code segments for receiving a received push notification, code segments for determining at least one of a favorable push time and a favorable message format based upon a database of received push information developed from a plurality of prior sent push notifications, and code segments for pushing the message to the destination in accordance with the at least one of a favorable push time and a favorable message format. A method for delivering push notifications includes receiving a received push notification including a message and a destination, sending a sent push notification derived from the received push notification to the destination in accordance with at least one favorable condition, receiving received push information related to the sent push notification, and storing the received push information in a database.

Abstract: In a method for securing access to a service, a device is set in a restricted operation mode that allows addressing only a first server and that is associated with a first identifier relating to a first connectivity gateway. The device accesses the first identifier and a subscription profile that is active during the restricted operation mode. The first server receives from the device a request for enrolling a device user and at least one feature relating to a user identity. The first server verifies whether the user identity feature is valid. If the user identity feature is valid, the first server sends to the device a command for deactivating the restricted operation mode. The device deactivates the restricted operation mode while storing, instead of the first identifier, a second identifier relating to a second connectivity gateway. The second identifier allows accessing a second server that manages the service.

Abstract: In one embodiment, a device identifies a set of probes configured between a first endpoint and a second endpoint serving an online application. Each probe has one or more characteristics and is associated with a different segment between the endpoints. The device selects a subset of the set whose associated segments are along a plurality of paths between the endpoints, based on a match between the online application and the one or more characteristics of probes in the set of probes. The device approximates a performance metric for each of the plurality of paths by aggregating performance metrics measured by probes in the subset of probes that are associated with segments of that path. The device causes traffic to be routed between the endpoints via a particular path in the plurality of paths, based on the performance metric of the particular path.

Abstract: Systems and methods are provided for storing data based on device location. The systems and methods include operations for: determining, by a messaging application server, a geographical location associated with a client device; identifying, by the messaging application server, a plurality of storage devices located in different geographical regions; computing, by the messaging application server, a plurality of distances between the geographical location associated the client device and the geographical regions of the plurality of storage devices; selecting, by the messaging application server based on the computed plurality of distances, a first storage device of the plurality of storage device that is in a geographical region that is closest to the geographical location associated with the client device; and storing, by the messaging application server on the first storage device, data associated with a messaging application implemented on the client device.

Abstract: Techniques for application aware device monitoring correlation and visualization are disclosed. In some embodiments, a system, a process, and/or a computer program product for providing application aware device monitoring includes collecting network layer information from one or more agents utilizing a plurality of tests; collecting device layer information from the one or more agents deployed to monitor a plurality of devices in a network computing environment; correlating the network layer information and the device layer information; and generating a graphical visualization based on the correlated network layer and device layer information (e.g., an alert, report, and/or a graphical visualization can be provided based on the correlated network layer and device layer information to facilitate root cause detection for application performance issues).

Abstract: A method includes after a second terminal logs in to a cloud server using a first group account, acquiring schedule information stored in the cloud server, where the schedule information is information that is created by a first user who registers a first personal account, and is transmitted to the cloud server by a first terminal that logs in, using the first personal account, to the cloud server, when reminder time of the schedule information arrives, acquiring second biometric characteristic information of a second user who is using the second terminal, and when it is determined that the second biometric characteristic information is the same as first biometric characteristic information of the first user, presenting reminder information of the schedule information.

Abstract: A system and method is disclosed for the automated identification of causal relationships between a selected set of trigger events and observed abnormal conditions in a monitored computer system. On the detection of a trigger event, a focused, recursive search for recorded abnormalities in reported measurement data, topological changes or transaction load is started to identify operating conditions that explain the trigger event. The system also receives topology data from deployed agents which is used to create and maintain a topological model of the monitored system. The topological model is used to restrict the search for causal explanations of the trigger event to elements of that have a connection or interact with the element on which the trigger event occurred. This assures that only monitoring data of elements is considered that are potentially involved in the causal chain of events that led to the trigger event.

Abstract: When instantiating a requesting process that publishes a request for a response from a responding process, a method of implementing an event-based distributed messaging service includes identifying a response topic of a distributed messaging service and generating subscriptions for the response topic where each subscription includes a subscription identifier. During runtime for the requesting process, the method publishes a request message to a request topic subscribed to by the responding process where the request message includes a unique message identifier and generates a subscriber using a respective subscription identifier of a respective subscription selected from the subscriptions where the subscriber includes the unique message identifier.

Abstract: The present disclosure provides systems, methods, and computer-readable media for determining an objective measure of breach exposure of Application Programming Interface (API) infrastructure for microservices. In one aspect, a method includes analyzing header information of Application Programming Interface (API) call stacks between microservices; determining, for each API call stack, corresponding security key information based on the header information; determining location information of each of the microservices; and determining a vulnerability score for each of the microservices based on the corresponding security key information and corresponding location information of each of the microservices.

Abstract: The disclosure provides a method for recommending a group, a related electronic device, and a computer readable storage medium. At least two groups to be joined are obtained. For the groups to be joined, group quality indexes are determined depending on attribute information of the groups. One or more group is recommended depending on the group quality indexes.

Abstract: Systems and methods herein provide for a proxy infrastructure. In the proxy infrastructure, a network element (e.g., a supernode) is connected with a plurality of exit nodes. At one of a plurality of messenger units of the proxy infrastructure, a proxy protocol request is received directly from a client computing device. The proxy protocol request specifies a request and a target. In response the proxy protocol request, a selection is made between one between one of the plurality of exit nodes. A message with the request is sent from the messenger to the supernode connected with the selected exit node. Finally, the message is sent from the supernode to the selected exit node to forward the request to the target.

Abstract: An example method includes receiving user profile configuration information identifying a user and determining a recipient list for push-based information updates. The recipient list comprises a plurality of other computing devices and the recipient list is associated with the user profile configuration information. The method further includes determining an information set or application for the push-based information updates. The method further includes receiving an input comprising a change to the information set or the application. The method further includes running a daemon process as a background process of an operating system of the computing device. The daemon process is configured to monitor the information set or the application for the change and automatically transmit the change directly to the plurality of other computing devices without being received by any intermediate devices so as to push the change upon the receiving of the change to the information set or the application.

Abstract: There is provided mechanisms for initiating deployment of an instance of an actor. A method is performed by a peer runtime environment. The method comprises obtaining an indication of changed dynamic capabilities of a first runtime environment. The method comprises evaluating, based on the changed dynamic capabilities, constraints for actor initiation at the first runtime environment. The method comprises initiating deployment of the instance of the actor at the first runtime environment when the constraints are met.

Abstract: An embodiment may involve a plurality of configuration items and an unmatched configuration item, wherein the unmatched configuration item is associated with a first set of attribute values and a first vulnerability, wherein the first vulnerability is associated with a first set of field values.

Abstract: A registrar entity, such as a service layer gateway, obtains the service capabilities requirements or preferences of a new registree entity, such as an application, and only accepts a registration of the registree if the registrar has sufficient remaining service capacities to meet the service capabilities requirements or preferences of the registree entity while ensuring that the provision of support to existing registree entities is not impacted. If the registrar lacks the capabilities to satisfy the requirements or preferences, it may contact a server to identify another registrar which has the capabilities. Updates to requirements or preference may originate at any node, e.g., at a user equipment device or a service.

Abstract: In various embodiments, a service worker processes network requests by proxying the network requests via a content distribution network. The service worker intercepts a network request from a client application, generates a duplicate network request, and changes certain elements of the duplicate network request. The intercepted request can be an initial document request used to load a webpage or a subsequent request that includes an application programming interface (API) call. The service worker transmits the duplicate network request to a content distribution network that proxies the duplicate request to a cloud computing system, thereby accelerating that request.

Abstract: A method for server picking in a virtual private network (VPN), the method comprising determining a parameter associated with a requesting user device requesting a connection to the VPN, comparing the determined parameter to a current parameter associated with a current user device connected to a VPN server associated with the VPN, and transmitting, to the requesting user device, information associated with the VPN server to enable the requesting user device to connect to the VPN server based at least in part on a result of comparing the determined parameter to the current parameter. Various other aspects are contemplated.