Abstract: Various embodiments include systems and methods to implement a security platform providing cyberattack detection using multiple stages of classifiers. The security platform may use a first stage of classifiers to analyze multiple requests from a client device to a service. The first stage of classifiers may determine an initial indication of whether a request is indicative of a cyberattack and provide the initial indication to a second stage of classifiers. The second stage of classifiers may, based on initial indication of a cyberattack over a period of time, determine whether a cyberattack is underway.

Abstract: A data processing system that comprises an encoder, and a communication system is disclosed. Compressed data produced by the encoder is decompressed to produce first decompressed data, and a first signature representative of the first decompressed data is generated. Compressed data that has been transferred by the communication system is decompressed to produce second decompressed data, and a second signature representative of the second decompressed data is generated. The first signature and the second signature are compared, and the comparison is used to determine whether an error has occurred.

Abstract: A system includes a compute engine that implements artificial intelligence-based dynamic, predictive, statistical classification meta-algorithms for better information security threat identification. The closed loop output of this algorithm uses a dynamic weights model along with AI/ML/DL to identify diverse information security threats more comprehensively and more efficiently. This system evolves with time and self-corrects to adapt to the ever changing needs of cyber security.

Abstract: Techniques for improved peer-to-peer communication are provided. A roaming peer-to-peer device may identify a new access point (AP) and initiate a transition to the new AP. Initiating transition can involve sending, to the new AP, the current peer-to-peer communication schedule for approval and/or negotiating a modified peer-to-peer communication schedule with the new AP. When the roaming peer-to-peer device and the new AP agree on the peer-to-peer communication schedule, the peer-to-peer device may notify its counterpart that it has roamed to the new AP and also notify the counterpart of any updates to the peer-to-peer communication schedule.

Abstract: Apparatuses, systems, and methods related to a data center using a memory pool between selected memory resources are described. A data center using a memory pool between selected memory resources may enable performance of functions, including automated functions critical for prevention of damage to product, personal safety, and/or reliable operation, based on increased access to data that may improve performance of a mission profile.

Abstract: Techniques for distributing transaction processing based on processor capacity and configuration are described herein. For example, a computer system can determine a trigger event indicating that transactions are no longer to be processed by a first processor. The computer system can select a second processor to which the transactions are to be sent. The second processor can be selected based on a transaction processing capacity of the second processor and a configuration of the second processor that indicates that the second processor is configured to process the transactions. The computer system can receive transaction data indicating that a transaction is to be processed. The transaction can be associated with transaction attributes. The computing system can send the transaction data to the second processor in real-time relative to the transaction data being received based at least in part on the second processor being selected and the transaction attributes.

Abstract: A method may include transmitting a request for metadata associated with a compute instance and receiving, by a computing system, metadata associated with the compute instance signed with a private key. The private key may be associated with a public key. The method may include receiving a request to access a cloud resource and transmitting the request for the metadata. The method may also include receiving the metadata. The metadata may indicate that the compute instance is hosted on the computing system. The method may also include transmitting, to an instance principal service, a request for an instance principal certificate. The request may include the metadata signed with the private key and be cryptographically verified by the instance principal service using the public key. The method may also include receiving the instance principal certificate and providing access to the could resource based on the instance principal certificate.

Abstract: Devices, methods, and program products are provided enabling Adaptive Bitrate (ABR) optimization upon initialization of a streaming video session. In embodiments, the method includes launching a streaming media interface application in response to user input. Substantially concurrently with application launch, the client media receiver further transmits a request over a communications network to a streaming media server for a sample video stream. As the video stream is received, the client media receiver plays the sample video stream as, for example, a background process. When subsequently receiving user input selecting streaming content for end user viewing, the client media receiver determines an optimized ABR setting based upon a recent ABR value of the sample video stream. The client media receiver transmits a request to the streaming media server for user-selected content stream at the optimized ABR setting and then presents the content stream for end user viewing.

Abstract: This present processor-implemented method provides a solution that protects software program audit/log messages during: development of software programs, generation of software program executables, and runtime execution of software program executables. The method separates audit/log messages from software programs, and represents audit/log messages as id=value pairs, where the id is an identifier and the value is an audit/log message string text. To protect and prevent extraction of string text, the method uses the id elements in the development of software programs and generation of software program executables. The method protects and stores string text in a fixed size storage during runtime execution. During runtime execution the method uses the string text to identify and extract audit/log message arguments, protects, and stores them in fixed size circular queues storage.

Abstract: Methods and systems for managing the operation of a deployment are provided. The deployment may be managed in accordance with a subscription model. The subscription model may use subscriptions to define the extent and limits on use of services provided by the deployment. The subscription services and limits may be enforced by management controllers of network devices of the deployment. The management controllers may operate independently from control planes and data planes of the network devices. If a plane is suspected of being compromised, the management controllers may take action to confirm the suspicions. If confirmed, then remedial activity may be initiated to address the compromised control plane. The remedial activity may include invocation of security functions of other network devices.

Abstract: Automatically selecting an encrypted network connection (such as a VPN tunnel) to use when communicating through another encrypted connection node with which there are multiple encrypted network connections with the computing system. The selection is based predicted latency of that encrypted network connection. The prediction is based on round-trip times of communications over the respective encrypted network connection. This is quite difficult since the encrypted network connection itself is not the entire path of the outgoing message and corresponding incoming message.

Abstract: Implementations include a computer-implemented method for reducing cyber-security risk, comprising: selecting one or more modules for inclusion in a knowledge mesh, wherein each module is associated with a respective aspect and maintains a knowledge graph specific to the respective aspect, wherein each knowledge graph is generated using data from one or more cyber-security repositories and includes nodes and connections between the nodes; receiving a query corresponding to a first node of a first knowledge graph included in the knowledge mesh; generating a response to the query by identifying connections between the first node of the first knowledge graph and at least one node of at least one other knowledge graph included in the knowledge mesh; and identifying, based on the response to the query, one or more actions to reduce cyber-security risk.

Abstract: The network local connectivity demand prediction method (100), comprises: a step (105) of long-term local connectivity demand prediction, by a machine learning model operated by a local agent, in a duration equivalent to the duration of the long-term prediction, more than one short-term iteration of: a step (110) of aggregating values representative of, at least: a connectivity demand of the network comprising at least a physical network device, a purpose of use of the network comprising at least a physical network device, a local long-term connectivity demand prediction for the physical network device, a step (115) of training a machine learning device to produce a machine learning model to provide a long-term local connectivity demand prediction, and a step (120) of deploying the machine learning model, and a step (125) of updating the long-term local connectivity demand prediction.

Abstract: Systems and methods for enriching event assets for video conferences via aggregating content in a lifecycle of a video conference are provided. In an example, a computing device associated with a participant of a video conference obtains event information for the video conference inviting multiple participants including the participant. The computing device generates an event card based on the event information and presents the event card in a user interface on the computing device. In response to receiving a command to join the video conference, the computing device joins the video conference. The computing device obtains content exchanged among two or more participants during the video conference and updates the event card presented in the user interface to include the obtained content.

Abstract: A method for transmitting data between a sender and at least one receiver in an arranged communications group is described, the method comprising the steps of: arranging the communication group; the sender sending a connection request to the at least one receiver, the connection request including information on the data to be transferred; the sender receiving confirmation of the connection request and a plurality of channels to send the data to; generating a plurality of data packets based on the data to be transmitted and the plurality of channels; sending in parallel the data to the plurality of channels; and receiving confirmation on whether or not the data was received. An apparatus for transmitting data between a sender and at least one receiver is also described.

Abstract: The disclosure provides a system, a method and a computer program product for generating an automated incident. The system is configured to retrieve an alert of a plurality of alerts received from a plurality of heterogeneous sources. The alert is associated with a security breach. The system further generates a normalized alert based on normalization of the retrieved alert. The normalization is associated with a semantic similarity parameter. Further, the system generates an enriched alert based on enrichment of the generated normalized alert. The enrichment is based on security related data of the security breach associated with the generated normalized alert. The system further identifies a set of correlation features associated with the generated enriched alert. Furthermore, the system generates the automated incident associated with the alert based on at least the generated enriched alert and the identified set of correlation features associated with the enriched alert.

Abstract: In some embodiments, the present disclosure provides an exemplary method that may include steps of receiving a request for a plurality of data items from a computing device; determining at least one pattern for at least one metric associated with the computing device; generating at least one digital code based on the at least one pattern meeting a predetermined metric threshold, the at least one digital code comprising access to a plurality of resources; assigning the at least one digital code to the computing device to form at least one assigned digital code; and allowing access to the plurality of resources to facilitate performing a domain name availability determination for the plurality of data items.

Abstract: A method for providing a dormant state for content management servers is provided. Client devices are allowed to conduct transactions with servers when the servers are active. However, in a dormant state, the servers are not allowed to accept new transactions. Thus, by utilizing the dormant state, software upgrades can be made to one server at a time. Alternatively, all servers can be taken down for major upgrades, with the servers still operated in a read-only mode based on a file image from a point in time just prior to the shutdown. When the upgrade is completed, the servers can be returned to the active state.

Abstract: A method for strengthening communication network resilience at a source agent of the communication network, comprising accessing an access list comprising communication relay agents available to the source agent. The method further comprising accessing a Q-table that corresponds to the communication relay agents available to the source agent. The method further comprising the source agent transitioning from communicating via a current communication relay agent to communicating via a new communication relay agent at a time slot, wherein the new communication relay agent is determined based on a set of entries in the Q-table. The method further comprising receiving data indicative of an actual reward for transitioning to the new communication relay agent, and updating the entry in the Q-table corresponding to the transition from the current communication relay agent to the new communication relay agent.

Abstract: Described embodiments provide systems and methods for performing secure transactions. A first service executing on at least one server may receive a request from a second service for the first service to perform a transaction. The request may include an identifier of a record. An agent of the first service may determine, according to the identifier, whether the record is present in a storage. The storage may be accessible using credentials of the agent of the first service and an agent of the second service. The first service may send a response to the request if the record is present in the storage.