Abstract: The present disclosure relates to utilizing a content service system to improve selecting data sources that are used to retrieve digital content items in response to content requests. For example, in response to receiving a content request, the content service system determines to retrieve content items by either calling a lower-quality data source with lower computing costs based on the request having lower service quality metrics or by calling a higher-quality data source with higher computing-costs based on the request having superior service quality metrics. In many instances, the service quality metric is based on the user characteristics of a user identifier associated with the requesting device. By dynamically determining to utilize different data sources having different computing costs based on service quality metrics, the content service system significantly reduces the total amount of computing costs for retrieving and providing digital content, without hurting the user experience.

Abstract: An apparatus and method for cyber risk quantification calculated from the likelihood of a cyber-attack on the target enterprise and/or cyber ecosystem based on its security posture. The cyber-attack likelihood can be derived as a probability-based time-to-event (TTE) measure using survivor function analysis. The likelihood probability measure can also be passed to cyber risk frameworks to determine financial impacts of the cyber-attacks. Embodiments of the present invention also relate to an apparatus and method (1) to identify and validate application attack surfaces and protect web applications against business logic-based attacks, sensitive data leakage and privilege escalation attacks; and/or (2) that protects web applications against business logic-based attacks, sensitive data leakage and privilege escalation attacks. This can include implementing an intelligent learning loop using artificial intelligence that creates an ontology-based knowledge base from application request and response sequences.

Abstract: A method for intermediary client reconnection to a preferred server in a high availability server cluster. The method includes monitoring a persistent connection of a logical connection to a preferred server to identify an unavailability of the preferred server, establishing a temporary persistent connection for the logical connection to an available server to replace an unavailable preferred server, prompting attempts to reconnect to the preferred server at intervals, and providing a connection switching pool and simultaneously re-establishing a persistent connection with the preferred server for the logical connection using the connection switching pool while terminating the temporary persistent connection to the available server. The connection switching pool and a main connection pool used by the persistent connection allow for simultaneously maintaining two connections to different servers in a same server cluster for the logical connection.

Abstract: Stateless address translation at an Autonomous System (AS) boundary for host privacy may be provided. An address associated with a host device in the AS may be received. The address may comprise a network prefix and an interface identifier (ID). Then a cypher value may be assigned to a cypher bit range in the network prefix. The cypher value may be associated with a first cypher algorithm of a plurality of cypher algorithms. Next, the address may be encoded wherein encoding the address comprises applying the first cypher algorithm to encode a coding bit range in the address that is less significant than the cypher bit range. The encoded address may then be used for flows from the host that egress the AS.

Abstract: Techniques for management of traffic in a network. The techniques provide application awareness in a Network Address Translation (NAT) system. In some examples, a first traffic is received at a first switch in a network from a first application hosted behind the first switch. The first switch identifies a first resource tag associated with the application from the first traffic. Further, the first switch identifies a first rule from the first resource tag indicating that the first traffic is to be routed through an intermediate device that performs network address translation. Moreover, the first switch transmits the traffic to an intermediate device, which perform NAT to translate the source IP address of the first traffic to a second IP address. Finally, the intermediate device sends the traffic to a destination device indicated by the first traffic.

Abstract: An onboard cloud detection system comprising: a camera (1000) configured to acquire images of the Earth at predetermined acquisition intervals; and a data processing unit (2000) comprising: a cloud detection unit (2210) configured to use artificial intelligence, AI, algorithms to detect clouds; a packet utilization standard, PUS, application layer (2230) configured to issue telemetry and/or telecommands corresponding to a predetermined parameter of the output of the cloud detection unit (2210); and an interface configured to distribute the telemetry and/or telecommands to an external hardware and/or an external software terminal (3000, 4000).

Abstract: Methods, non-transitory computer readable media, network traffic manager apparatuses, and systems includes receiving a plurality of network packets. Metadata comprising state information for the received plurality of network packets is generated. The generated metadata is inserted into the received plurality of network packets or a cloned version of the plurality of network packets. A network diagnostic operation is performed on the received plurality of network packets based on the inserted metadata into the received plurality of network packets or the cloned version of the plurality of network packets.

Abstract: A flexible witness service system architecture is provided that comprises one or more cluster sites each having at least two storage/compute nodes; at least one local external device associated with at least one of the one or more cluster sites, the at least one local external device configured to run a local witness service. A central cloud management platform is in communication with the one or more cluster sites, the central cloud management platform being configured to run a cloud witness service. The local witness service and the cloud witness service perform identical arbitration services if a storage/compute node in one of the one or more cluster sites fails or communication between storage/compute nodes in a cluster fails.

Abstract: Implementations for providing load testing services that access logs as a basis for generating simulated traffic patterns are described. The access logs may be used to generate a pattern of events. The pattern of events may indicate a number of occurrences of an event at various times in a time period. The events may be distributed to geographically dispersed computing nodes to cause simulation of requests from different geographic locations using the pattern of events.

Abstract: Methods, devices, and systems for migration or sharing of existing M2M service layer sessions are disclosed. In one embodiment, a Session Migration and Sharing Function (SMSF) performs the migration or sharing of a M2M service layer session. Various forms of service layer session context may be used to enable the migration and sharing of M2M service layer sessions.

Abstract: Systems and techniques for sharing media may utilize or implement a server receiving a media share request from a first device associated with a first user, the media share request including metadata pertaining to a media, retrieving a set of candidate media and fine tuning the set of candidate media to determine a selected candidate media, and transmitting metadata associated with the selected candidate media to a second device associated with a second user or transmitting a set of application program interface (API) calls to the second device.

Abstract: A bio-signal data processing apparatus includes a communicator configured to receive electrocardiogram data from a bio-signal measuring apparatus, a recording unit configured to record the electrocardiogram data, a transmission delay determiner, and an output information generator. The transmission delay determiner is configured to generate transmission delay information by comparing a recording time of the electrocardiogram data with a reception time of the electrocardiogram data, detect whether or not a delay according to data transmission occurs, by considering the transmission delay information, and, when the delay is detected to occur, calculating delay time information that is calculated on the basis of the transmission delay information. The output information generator is configured to correct the electrocardiogram data by using the delay time information and generate output data of the electrocardiogram data corresponding to a user input.

Abstract: A system and method for generating a set of destination IP address to be added into a firewall whitelist. The system receives a network packet transmitted through a firewall and determines whether the destination address of the network packet corresponds to at least one of computing resource of a plurality of computing resources. If so, the system transforms the destination address of the packet to another destination address of the corresponding computing resource. The system forwards the network packet to the destination address of the corresponding computing resource.

Abstract: A method of buffering application data operable at a delivery control server is provided. Related systems and computer program products are also provided.

Abstract: A control device configuration system may receive, store, process, and/or display control device configuration information. The control device configuration system may filter the control device configuration information based on user selections of configuration options for configuration parameters. The control device configuration system may identify compatible and incompatible configuration options for various configuration parameters. The control device configuration system may allow selections of the incompatible configuration options. The control device configuration system may adjust how it filters the control device configuration information based on the selections of the incompatible configuration options. The control device configuration system may implement a configuration model that includes configuration parameter groups for efficient evaluation of user selections.

Abstract: Systems and methods for enabling various devices to remotely interact with cloud-based client applications are provided. A method comprises receiving a first request from a first client device of a user to initiate an interactive session with a cloud-based client application, reserving an application engine for executing the cloud-based client application remotely from the first client device, receiving interaction data from the first client device as the user engages with a first media data associated with the cloud-based client application, modifying the cloud-based client application executing within the application engine that is reserved based on the interaction data received from the first client device, receiving a second request from the first client device to end the interactive session with the cloud-based client application that is modified, and deallocating the application engine that is reserved, wherein the application engine that is reserved is delinked from the first client device.

Abstract: A secure executable container executed by a network device establishes a two-way trusted relationship in a secure peer-to-peer data network with a network entity, generates a secure key for the network device in the secure peer-to-peer data network, and associates the endpoint device with a federation identifier identifying the user entity in the secure peer-to-peer data network. The secure executable container also: establishes a two-way trusted relationship between the network device and a target network device; obtains, based on the two-way trusted relationship, cohort interface element definition describing commands executable by the target network device; and generates a data object identifying a selected command from the commands and identifying an identifier for the target network device as a subscriber to the data object, causing the target network device to securely retrieve and execute the selected command.

Abstract: An application programming interface (API) gateway device receives an API request from a client device, the API gateway to provide access to a plurality of services provided by a plurality of compute nodes. A cluster manifest is created based on metadata associated with the API request and characteristics of the plurality of services, the cluster manifest identifying a logical view of a subset of the plurality of services provided by a subset of the plurality of compute nodes. The API request is routed to one of the subset of the plurality of services based on the cluster manifest.

Abstract: A method of managing user experience with a virtual reality (VR) headset includes: with a server, receiving data from a number of sensors that are detecting parameters associated with a user during use of the VR headset; with the server, analyzing the data from the sensors to predict a negative effect on the user from the use of the VR headset; and with the server, taking action to minimize the negative effect on the user that is predicted.

Abstract: An event-based social media search platform for pet and animal related searches includes a database for storing event data associated with user-created events relating to pets or animals for a plurality of users. The platform analyzes event data from different user-created events to determine when user-created events have event data in common. The platform alerts users of related events and facilitates communications between users to confirm that the user-created events relate to the same pets or animals. The platform can associate event data and users of related events in the database. Events can be published via social media platforms to assist users in searching for new pets and animals, finding missing pets and animals, or locating pets and animals after natural disasters.