Abstract: Methods and systems for preventing unauthorized resource access. In some aspects, the system obtains, in real time, a first data stream between a user requesting access to resources in a user account and an agent. The system processes, using a first machine learning model, the first data stream to generate a confidence score. If the confidence score exceeds a threshold, the system generates a sandbox context configured to simulate output indicative of successful resource access. The system obtains a second data stream for the sandbox context and processes it using a second machine learning model to determine whether the communication between the agent and the user was malicious. If the communication was not malicious, the system removes the user account from the sandbox context and effects grant of resource access. Otherwise, the system reports the agent and the user account for further processing for attempts to obtain unauthorized user access.

Abstract: A determination device includes processing circuitry configured to extract a series of communication logs of a same session from a communication log in which an attack is to be detected, detect a communication log of a blind attack using a URL of a request destination of the communication log and specify an attack target location of the blind attack and content of the attack from the communication log in which the blind attack has been detected, and extract communication logs in which attack target locations of the blind attack match among the extracted series of communication logs of the same session and determine that the blind attack has succeeded by communication indicated by the series of communication logs in a case where it is determined that there are a plurality of types of the content of the attack and a plurality of response status codes and response sizes.

Abstract: The present technology relates to an authentication device, an authentication method, a program, and an information processing device capable of performing user authentication using biometric information without storing the biometric information. The authentication device performs user authentication by comparing answer information that is generated by converting authentication information generated by converting basic information using biometric information for generation using biometric information for authentication with correct answer information. The present technology is applied to, for example, an authentication device that performs biometric authentication.

Abstract: A system and method for bi-directional quality testing of web real-time communications (WebRTC) sessions. In an embodiment, the system and method comprise an operator network, cloud contact center, cloud contact center agent application, and a synthetic software agent comprised of agent automation software, injected API shim code, virtual audio devices, audio processing applications, and media servers, capable of performing automated and to end communication testing. In order to provide end to end testing, especially with respect to voice quality, the synthetic agent software may control and monitor the audio channels (both send and receive) of the browser communication session.

Abstract: An orchestrator that manages security appliances for an organization determines a sink configured for traffic mirroring and correspondingly configures components for secure conveyance of mirrored traffic to a sink. The orchestrator configures a VM associated with the mirroring sink to use correlated packets and tunnel keys to securely convey the packets to an organization. The virtual machine decrypts each set of packets with the correlated tunnel key in memory and then re-encrypts the packets with a cryptographic key (hereinafter “random key”) generated on-the-fly for use on the current set of decrypted packets in memory. The virtual machine then encrypts the random key with a public key of the organization that will monitor and/or analyze the traffic data and writes the encrypted packets and/or packet contents and encrypted random key to a specified repository of the organization.

Abstract: In some implementations, caching techniques may be employed by a web server that receives various requests from remotely-located client devices, retrieves requested results from an on-site database server, and transmits the results back to the client devices. These caching techniques generally relate to caching retrieved results at the web server such that the web server may be able to directly provide client devices with results without having to retrieve them from the database server every time a request is received. Application of these techniques may improve response times and provide back-end bandwidth savings.

Abstract: The disclosed embodiments generally relate to techniques for tailoring messages for network communication. More specifically, the disclosed embodiments relate to systems and methods to provide customized information updates based on recipient preferences. For example, a recipient may prefer receiving updates less frequently than the system creates updates and/or may prefer to receive different levels of data in the updates. In some embodiments, a deltasnap technique is provided which allows for more efficient tailoring of the rate that update messages are provided. In some embodiments, a partitioning technique is provided which allows for more efficient tailoring of the content of update messages. In some embodiments, the deltasnap technique is provided in combination with the partitioning technique which allows for more efficient tailoring of the rate and content of the update messages.

Abstract: An information handling system includes processing modules and an I/O module. The processing modules each have one of a high or low priority level. The I/O module is coupled to a network device and includes network ports coupled to the processing modules. A port bandwidth control engine (PBCE) determines that the network device is providing a maximum bandwidth to the I/O module, and in response, allocates the maximum bandwidth equally to the processing modules. The PBCE further determines that the network device is providing a reduced bandwidth to the I/O module, and, in response, allocates to each high priority level processing module a first bandwidth on the associated network port and allocates to each low priority level processing module a second bandwidth on the associated network port.

Abstract: In some embodiments, a method for generating customized products in collaboration with live designers is disclosed.

Abstract: Various aspects of the present disclosure relate to a user equipment (UE) that receives first control signaling indicating position information associated with a non-terrestrial station (NTS), the position information including an altitude of the NTS, a distance between the NTS and the apparatus, and/or an indication of a timing delay between the NTS and the apparatus. The UE also receives second control signaling indicating a first configuration identifying a first reference signal occasion. The UE determines a temporal range of an expected reference signal time difference duration based in part on the position information and the first configuration, and receives a reference signal during the temporal range of the expected reference signal time difference duration.

Abstract: A computer-implemented method for maintaining a function of a local entity upon connection disruption to a backend in a communication system including a backend and a plurality of local entities. The backend provides backend information for the function. The method includes reception of local behavior models from a plurality of local entities by the backend, wherein the local behavior models provide the function in the local entities if particular backend information is not available; creation of a behavior model based on the received local behavior models; and transmission of the behavior model to a local entity of the plurality of the local entities by the backend.

Abstract: Failover functionality is by identifying at least two network paths for a media communications session between a virtual machine at a computing environment and a client application. Unique Internet Protocol (IP) addresses are assigned for the at least two network paths. Based on application and network metrics at the computing environment, a network condition at the computing environment is determined that is indicative of a performance degradation of the media communications session. A signal is communicated to the client service indicating a switch to a second path of the at least two network paths and a second of the unique IP addresses.

Abstract: A method, apparatus and computer program product for reporting an exchange of messages between nodes in a network is provided by the present disclosure, the method comprising: receiving from a first device, using circuitry, a request for data for a target node, the data indicative of an exchange of messages between nodes in a network linked to the target node determining, by the circuitry, whether a request for data for the target node has previously been received; and, when a request for data for the target node has previously been received, the method comprises: building, by the circuitry, data indicative of the exchange of messages between nodes in the network linked to the target node; identifying, by the circuitry, a new portion of the data based on a comparison of the data with previous data which has been built for the target node; and reporting to the first device, by the circuitry, the new portion of the data.

Abstract: A method, a network device, and a non-transitory computer-readable storage medium are described in relation to an EASDF secure service. The EASDF secure service may include a network-side service that may validate access and authorization to use a domain name system (DNS) resolver device, such as an edge application server discovery function. The network-side service may validate access and authorization of an end device based on tokens. The EASDF secure service may include an end device-side service that includes a token with a DNS query to the DNS resolver device. The end device-side service may further provide authorization regarding access and use of applications, networks, and application devices that host applications and/or assets by the end device at the end device. The end device-side service may determine access and/or authorization based on tokens and a validation procedure performed at the end device.

Abstract: An Information Handling System (IHS), such as an IHS supporting workspaces employing subject workspace data, and/or an IHS of a workspace orchestration service may identify each modification to the subject data, identify each trusted entity performing each trusted operation on the data, and identify each unauthorized or undocumented modification to the data, each based, at least in part, on each gap in identification of each trusted entity performing each trusted operation on the data. Whereupon, a security score of the data may be decremented for each identified unauthorized or undocumented modification to the data. A data passport may be implemented, in which each modification to the data is identified. This data passport may be a ledger, such as a blockchain, a log file, such as an Extract, Transform, Load (ETL) server log file, rendered content from layered applications, such as a certificate chain (e.g., a final leaf certificate node).

Abstract: A communication apparatus includes a generation unit configured to generate a new pair of a public key and a secret key paired with the public key in a case where a predetermined condition is satisfied, a provision unit configured to externally provide information including at least the public key generated by the generation unit, a first reception unit configured to receive, from an external apparatus after the information is provided by the provision unit, an authentication request including information generated using at least the public key, a transmission unit configured to transmit, to the external apparatus, an authentication response as a response to the authentication request in a case where the authentication request is received, and a second reception unit configured to receive, from the external apparatus after the authentication response is transmitted to the external apparatus, configuration information including a communication parameter.

Abstract: Novel tools and techniques are provided for implementing dynamic border gateway protocol (“BGP”) host route generation based on domain name system (“DNS”) resolution. In various embodiments, a computing system may receive, from a user device via a first network, a request to establish a communications link with an external device via a second network that is separate from the first network, based on a first uniform resource identifier (“URI”) indicative of a network location of the external device. The computing system may query a DNS resolver for an Internet Protocol (“IP”) address corresponding to a valid current IP address, based on the first URI, and may advertise the IP address and/or a route based on the IP address. A communications link may be established between the user device and the external device based on the IP address and/or the route.

Abstract: The disclosure provides a method of associating thread identifiers (IDs) to input/output (I/O) requests in a remote computing environment. The method generally includes receiving, by a mini-filter on a remote device that is remote from a client device, a request from an application on the remote device to access resources at the client device, determining, by the mini-filter, a thread identifier (ID) associated with the request, the thread ID corresponding to an application thread of the application that generated the request, determining, by the mini-filter, one or more parameters of the request, and transmitting, by the mini-filter, to a redirection server process on the remote device, a message comprising the thread ID and the one or more parameters of the request, wherein the thread ID and the one or more parameters of the request are added to a cache maintained by the redirection server process.

Abstract: A ransomware protection smart network interface controller (SmartNIC) is configured to implement data protection in a domain of the SmartNIC by taking a secure snapshot, a point in time image of a storage object, and retaining the point in time image of the storage object until a retention timer has expired, and implementing vault semantics and operational controls. The ransomware protection SmartNIC is also configured to implement ransomware detection in the domain of the SmartNIC by implementing inline ransomware attack detection and/or near-line ransomware attack detection, using periodic snapshots, by evaluating probability of a ransomware attack based, at least in part, on a delta change set in consecutive snapshots. The ransomware protection SmartNIC is further configured to implement ransomware protection policies in the domain of the SmartNIC by implementing policies of when the secure snapshots are taken.

Abstract: In accordance with some embodiments of the disclosed subject matter, mechanisms for distributed network monitoring are provided.