Abstract: In some aspects, the techniques described herein relate to a method for detecting malicious emails, the method including: receiving an email, wherein the email is associated with a markup payload; determining, based on the markup payload, text data associated with the email; determining, using the text data and a first machine learning model, a first representation of the email representing text associated with the email; rendering the email to generate image data that represents a rendering of the email; determining, using the image data and a second machine learning model, a second representation of the email that represents at least the rendering of the email; and determining a prediction for the email based on the first representation and the second representation, wherein the prediction represents whether the email is predicted to be malicious based on the first representation and the second representation.

Abstract: A server can be configured for facilitating notifications about interaction opportunities for users using database relationships of separate types of data from different systems. The server can determine a location of a mobile computing device using geolocation data associated with an application executable on the mobile computing device. The server can determine interaction opportunities (i) for which a user of the mobile computing device qualifies based on financial account interaction data associated with user and criteria associated with the interaction opportunities and (ii) that are associated with locations within a pre-selected distance of the location. Determining the interaction opportunities can include mapping information from an interaction history of a user of the mobile computing device to available interaction opportunities. The server can transmit the interaction opportunities to the mobile computing device for output by the application.

Abstract: Techniques are described for creating isolated pools of external, failover, and/or floating IP addresses. In one example, this disclosure describes a method including creating a plurality of virtual networks, creating a plurality of pools of external IP addresses, detecting a request to instantiate an object that identifies a specific pool from the plurality of pools of external IP addresses; and instantiating the object and configuring the object with an external IP address drawn from the specific pool. The pools of external IP addresses may be created and isolated on a per-namespace, per-service, or per-ingress basis.

Abstract: A transaction ordering system and method for sequencing transactions processed by a decentralized network in which nodes communicate with a peer-to-peer protocol to process transactions for the exchange of value in the form of main chain assets. Transaction sequencing is accomplished by an auxiliary decentralized network including multiple oracle nodes communication through a peer-to-peer protocol, wherein the auxiliary decentralized network does not store value in the form of mainchain assets and wherein the auxiliary decentralized network is configured to; receive a set of transactions to be executed by the decentralized network; create, based on a predetermined policy, ordering information indicating a sequence in which transactions in the set of transactions are to be processed; and transmit the ordering information to a mempool of decentralized network for execution of the transactions, by the decentralized network, in the sequence.

Abstract: A method enabling digital automation of virtual events comprises providing a virtual environment enabling interactions between users represented by user graphical representations created from media feeds received from corresponding user cameras; responsive to a session request received from at least one client device, setting up a virtual event session between at least two users; obtaining an event flow rule set comprising a plurality of rules, the rule set determining an event flow sequence comprising presentation of media streams of the users in the virtual event session; applying the event flow rule set to the media streams of the users in the virtual event session; and, responsive to the application of the event flow rule set to the media streams, triggering an event flow action in real time in the virtual event session, wherein the triggered event flow action comprises modifying presentation of a media stream in the virtual event session.

Abstract: Systems and methods for protecting against an estimated level of online tracking are disclosed. In one embodiment, a method may include collecting data relating to a plurality of known users. This first data may include browser histories and a level of online tracking for each known user. The known users may be organized into clusters and second data relating to an unknown user may be received. The second data may include an identification of one or more categories of websites that the unknown user visits, and one or more websites within each of the one or more categories of websites that the unknown user visits. A matching cluster for the unknown user may be identified and levels of online tracking for similar known users within the matching cluster may be used to estimate a level of online tracking for the unknown user.

Abstract: A network device may be configured to receive a file stream associated with an file. The network device may be configured to identify, based on receiving the file stream, an initial portion of the file. The network device may be configured to process the initial portion of the file to determine one or more features of the file. The network device may be configured to generate, based on the one or more features of the file, a determination as to whether the file is malicious. The network device may be configured to block or allow, based on the determination, the file stream.

Abstract: Method, apparatus, and system may control chronological sequencing of data items received from a plurality of client computing devices, according to times of completion of transmission respectively from the client computing devices and distributing the data items according to the chronological sequencing to one or more destination computing devices with minimal latency. In an exemplary implementation, trade orders from participant computing devices may be distributed by an electronic trading platform with minimal latency to exchange gateways, based on time of transmission of the trade orders to the platform instead of time of receipt of the trade orders by the platform, thereby avoiding unfairness to those participants whose computing devices are located at greater distances from the platform than other computing devices respectively of other participants.

Abstract: An intended network usage is received. An association between the intended network usage and a virtual private network (VPN) server is retrieved. Responsive to determining not to use the VPN server, a new VPN server is obtained from a central server. An encrypted tunnel is established with the new VPN server. An association is stored between the new VPN server and the intended network usage. A communication directed to a network server is encrypted to obtain an encrypted communication. The encrypted communication is transmitted via the encrypted tunnel.

Abstract: Systems and techniques are provided herein to enable an authoritative DNS zone to selectively utilize a forwarding service to resolve domain names that cannot be resolved by the authoritative DNS zone. A forwarder indication may be provided in an authoritative DNS zone configuration file specific to the authoritative DNS zone to indicate whether the forwarding service is active.

Abstract: A non-fungible management system may generate non-fungible tokens based on credential data of a user. In one example, a non-fungible token can be generated responsive to receiving credential data for the user, whereby the credential data is received from a verified credentialing organization. Non-fungible tokens based on credential data can be held in a digital wallet of the user, used as a resume or record of achievement, and/or traded in a marketplace.

Abstract: Provided herein are various techniques and equipment for establishing secure non-classical communications between distant nodes. In one example, a method includes introducing, by at least one photon source, source photons into corresponding waveguides configured to convert the source photons into randomly timed pairs of resultant non-classical photons having corresponding polarization states. The method also includes providing first photons of each of the pairs for measurement of the corresponding polarization states and timing, and providing second photons of each of the pairs for combination into a beam for transfer to a distant node and establishment of a cryptographic key, where the second photons from one of the waveguides is presented in an orthogonal polarization before combination.

Abstract: The system has a unique identifier (2) stored in client's hardware (1). Via a transfer environment (3) using a higher layer protocol (4), the unique identifier (2) is coupled to a server (5), where, in an evaluation module (6), it is connected to a substitution and calculation module (7). A w polynomial system (8) stored in the persistent memory (9) of the server (5) is also connected to the substitution and calculation module (7), the output of which is a calculated key (10). At the same time, the client's hardware (1) stores a local key (11) which is via the transfer environment (3) using the higher layer protocol (4) connected to a key comparison module (12) to which the calculated key (10) is also connected. The key comparison module (12) is through its positive output (13) and negative output (14) connected via the transfer environment (3) using the higher layer protocol (4) to a response processing module (15) which is stored in the client's hardware (1).

Abstract: A method of supporting VM migration between a first WTRU and a second WTRU via a 5GLAN is disclosed. The first WTRU is a host of a VM and the second WTRU connects to the 5GLAN. The method comprises that the second WTRU receives the VM migrated from the first WTRU, wherein a tenant system interface (TSI) ID is associated with the VM; sends a PDU session request message to a session management function (SMF) of the 5GLAN, the PDU session request message comprising the TSI ID; and sends a PDU session response message from the SMF so as to establish a PDU session between the second WTRU and the 5GLAN.

Abstract: A method for processing a packet on an SR network is provided, including: receiving a packet, where a packet header of the packet includes a destination address field, a first pointer, a second pointer, and a list used to process the packet, the list includes a plurality of sequentially arranged identifiers, and a value of the first pointer and a value of the second pointer jointly indicate a location of a first identifier in the plurality of identifiers in the list; determining the first identifier based on the value of the first pointer and the value of the second pointer; and copying the first identifier to the destination address field. In this method, a CL pointer is set in the packet header to jointly form a two-dimensional pointer with an SL pointer, to indicate a location of a C-SID in a SID list.

Abstract: Disclosed is an approach for analyzing a computer network to identify attack paths using a software representation that embodies network configuration and policy data for security management. The software representation comprises a state machine where different states can be reached using respective transitions or properties which are possible as determined based on the network configuration and network policy data. The states correspond to respective entities on the network which may comprise resources that are identifiable for protection in the software representation using crash statements. The software representation can then be stimulated using software analysis tools such as fuzzers to identify sequences of state-to-state transitions that could be used to compromise a protected resource on the computer network.

Abstract: Systems and methods for requesting, accessing and delivering data in a way that does not require users, or others acting on behalf of users, to log in to a dedicated computer application and does not rely on humans to manually retrieve the data. A Requester (“REQ”) sends an email or cellular text message to a server to request data. The server identifies the REQ based on the REQ's email address or mobile phone number and then deciphers what data to compile after interpreting the REQ's message. The server then returns a link to the REQ's email address or mobile phone number. The REQ can select the link to view the data. The email or text message is sent by the REQ, the link is returned by the server to the REQ's email address or mobile phone number, and the data is displayed, all without revealing any personally identifiable information (“PII”).

Abstract: An electronic device and method are disclosed. The electronic device includes a processor and communication circuitry.

Abstract: A home appliance includes a first communication circuitry configured to communicate with a mobile terminal placed within a first communication range supporting a first communication method, a second communication circuitry configured to communicate with an external wireless access point apparatus placed within a second communication range supporting a second communication method, and at least one processor configured to control the first communication circuitry to detect the mobile terminal, the mobile terminal being executing an application for communicating with the home appliance, based on detecting the mobile terminal, obtain, via the first communication circuitry, network set-up information from the mobile terminal for connecting to the external wireless access point apparatus, control the second communication circuitry to establish a communication with the external wireless access point apparatus using the obtained network set-up information, and control the second communication circuitry to access an i

Abstract: A technology is disclosed for the browser side capturing of user interaction session data and replay of the session data for a high-fidelity reconstruction of the experience the user perceived. In addition to capturing central structuring and markup documents and browser side updates thereof, additional resource documents that are loaded and used by the browser to render the central documents are captured and added to the session recording data. Identification information is created for resource documents, based on the content of those documents, which allows the capturing system to distinguish different versions of those content documents that share the same name but have different content. The captured session data contains data to identify the correct versions of resource documents during replay. Various measures to reduce the amount of transferred resource content data are applied, that consider already captured resource document versions or the usage frequency of a monitored application.