Abstract: The disclosure relates to a countermeasure method in an electronic component, wherein binary data are transmitted between binary data storage units, binary data being transmitted in several transmission cycles comprising a first cycle comprising: randomly selecting bits of the data, transmitting the selected bits and transmitting bits, each having a randomly chosen value, instead of transmitting non-selected bits of the data. A last transmission cycle comprises transmitting bits of the data that have not been transmitted during a previous cycle.

Abstract: Disclosed is a network system and a control method thereof, the network system including a gateway connected to a plurality of home appliances through a home area network, an outdoor apparatus connected to the gateway through a network, and a dynamic domain name system (DDNS) server to manage dynamic internet protocol (IP) address information about an apparatus using a dynamic IP address. A communication connection is achieved through a dynamic IP between a gateway inside the home and an apparatus outside the home in a smart grid network environment, so a user can easily access in-home services based on a dynamic IP. In addition, unauthorized traffic, which may be introduced into the home, is automatically blocked, so that the quality of the home network service is improved.

Abstract: An API call filtering system filters responses to API call requests received, via a network, from user devices. The API call filtering system is configured to require personalized API call requests wherein each API call (except for some minor exceptions) includes a unique endpoint identifier (“UEID”) of the user device making the request. Using the UEID, the web service or other service protected by the API call filtering system can be secured against excessive request iterations from a set of rogue user devices while allowing for ordinary volumes of requests of requests the user devices, wherein one or more boundaries between what is deemed to be an ordinary volume of requests and what is deemed to be excessive request iterations are determined by predetermined criteria.

Abstract: A web content generation platform is provided that is operable to initiate and guide the creation of interactive web content, including video debate content, and publish the content dynamically to one or more pages. The platform also includes an analytics engine that is operable to establish information regarding user preferences and interests based on their creation of interactive content or related content, consumption of interactive content or related content, and/or engagement with one another based on such interactive content or related content. A novel workflow for guiding the creation of video debate content is also provided, which is embodied in the content engine of the web content generation platform.

Abstract: A network interconnect node of an internal network may communicate with an external network interconnect node of an external network, other internal network interconnect node(s) and internal network node(s). The network interconnect node may receive frames from the external network interconnect node and forward them according to a Virtual Local Area Network (VLAN) tagging forwarding process to other internal network interconnect node(s) or internal network node(s) based on whether the network interconnect node is active for the service associated with the frames. The network interconnect node may receive frames from other internal network interconnect node(s) or from internal network nodes and forward them according to the VLAN tagging forwarding process to other internal network interconnect nodes, internal network nodes or the external network interconnect node based on whether the frames are encapsulated frames and/or whether the network interconnect node is active for the service.

Abstract: A method of operation of a computing system includes: calculating an initial data connection traversing a center state node of a switching network having an ingress stage, a center stage, and an egress stage; calculating a repacking route across the switching network traversing the center switching node; broadcasting an ingress portion of the repacking route simultaneously to ingress nodes of the ingress stage; broadcasting a center portion of the repacking route simultaneously to center nodes of the center stage with the ingress portion completely deployed; broadcasting an egress portion of the repacking route simultaneously to egress nodes of the egress stage with the center portion completely deployed; and deploying a repacked data connection with the repacking route traversing the center switching node across the switching network synchronously with the initial data connection.

Abstract: Systems and methods for correlating and distributing intrusion alert information among collaborating computer systems are provided. These systems and methods provide an alert correlator and an alert distributor that enable early signs of an attack to be detected and rapidly disseminated to collaborating systems. The alert correlator utilizes data structures to correlate alert detections and provide a mechanism through which threat information can be revealed to other collaborating systems. The alert distributor uses an efficient technique to group collaborating systems and then pass data between certain members of those groups according to a schedule. In this way data can be routinely distributed without generating excess traffic loads.

Abstract: A client hosted virtualization system (CHVS) has a non-volatile memory that includes BIOS code and virtualization manager code that operates to initialize the CHVS and to launch a virtual machine. The CHVS establishes a secure communication channel with a client update system via a network interface, receives an update to the virtualization manager code, authenticates the update and overwrites the non-volatile memory with the update. The CHVS is configurable to execute the BIOS and not virtualization manager, or to execute the virtualization manager and not the BIOS.

Abstract: A method, computer readable medium, and device for handling requests between different resource record types includes receiving at a traffic management device a first resource record type from one or more server devices in response to a request from a client device. The traffic management device validates the first resource record type, and creates a second resource record type corresponding to the first resource record type after the validating. Signing the second resource record type at the traffic management device is carried out for servicing the request from the client device.

Abstract: A cache server for providing content includes a processor configured to receive a first datagram from a client system sent to an anycast address, send a response datagram to the client system in response to the first datagram, receive a request datagram from the client system sent to the anycast address, and send a batch of content datagrams to the client system. The first datagram includes a universal resource locator corresponding to the content. The response datagram includes a content identifier for the content. The request datagram includes the content identifier, an offset, and a bandwidth indicator. The batch of content datagrams includes a portion of the content starting at the offset.

Abstract: A domain name system (DNS) server is disclosed. The DNS server includes: a receiver to receive a DNS query comprising a domain name from a client device, wherein the domain name corresponds to a host server; a modifier to append a domain to an end of the domain name to create a modified domain name; and a mapping engine to compare the modified domain name to a local cache, wherein the local cache comprises a list of domain names, at least some of which are to be routed to an Internet Protocol (IP) address corresponding to an intermediate server.

Abstract: In a communication control apparatus, a first receiving unit receives a registration request packet which is generated so as to enable the communication control apparatus to recognize an access requested apparatus, and if determining that the access requested apparatus recognized from the registration request packet exists in a network, registers first identification information identifying an access requesting apparatus which is included in the registration request packet, in a storage unit. A second receiving unit receives an explorer packet, and if determining that first identification information included in the explorer packet has been registered in the storage unit, sends second identification information identifying the own apparatus to the access requesting apparatus.

Abstract: Disclosed are systems, methods and computer program products for detecting computer malware using security rating rules. In one example, the system identifies at least one problematic security rating rule that was activated during antivirus analysis of both safe and malicious programs. The system then selects a group of programs for which said problematic rule was activated. The system then identifies in the selected group of programs a plurality of only malicious programs or the plurality of only safe programs based on the problematic security rating rule and at least one different security rating rule. The system then generates a behavior model script based on the problematic security rating rule and the at least one different security rating rule and executes said behavior model script during antivirus analysis of said analyzed program to detect a computer malware in said analyzed program.

Abstract: Embodiments of the present invention provide an approach for policy-driven (e.g., price-sensitive) scaling of computing resources in a networked computing environment (e.g., a cloud computing environment). In a typical embodiment, a workload request for a customer will be received and a set of computing resources available to process the workload request will be identified. It will then be determined whether the set of computing resources are sufficient to process the workload request. If the set of computing resources are under-allocated (or are over-allocated), a resource scaling policy may be accessed. The set of computing resources may then be scaled based on the resource scaling policy, so that the workload request can be efficiently processed while maintaining compliance with the resource scaling policy.

Abstract: A method for incrementally fingerprinting a computing device includes steps for executing device-identification code programmed to retrieve a complete set of device configuration metrics from a web browser of the computing device, interrupting execution of the device-identification code after retrieval of a first subset of the device configuration metrics, generating a partial device fingerprint from the first subset, generating a temporary device identifier from the partial device fingerprint, and generating a subset indicator identifying the device configuration metrics that compose the first subset.

Abstract: A first device and a second device communicate with each other using a first communications protocol over a first communications media. The first device detects a need to modify a communications bandwidth with the second device based on an operating condition of the first device at a point in time. The first device negotiates with the second device to identify a second communications protocol that is suitable for the operating condition based on a set of one or more rules associated with the first device. Both the first and second devices switch, without user intervention, from the first communications protocol to the second communications protocol to communicate with the second device using the second communications protocol over a second communications media.

Abstract: Disclosed are various embodiments for assessing risk associated with different software applications which are installed on user computing devices in an enterprise networked environment. Ratings are generated for the different software applications based at least in part on respective characteristics of the different software applications. Risk profiles are generated for the installations of the different software applications on the user computing devices in the networked environment. The risk profiles are generated based at least in part on the respective ratings, the respective user computing devices, and the respective end users associated with the respective user computing devices.

Abstract: A media editing system includes one or more machines that are configured to support cloud-based collaborative editing of media by one or more client devices. A machine within the media editing system may be configured to receive a render request for generation of a media frame, determine whether a client device is to generate the media frame, and initiate generation of the media frame. Moreover, a machine within the media editing system may facilitate resolution of conflicts between edits to a particular piece of media. Furthermore, a machine within the media editing system may facilitate provision of convenient access to media from a particular client device to one or more additional client devices.

Abstract: A method of enhancing security of at least one of a host computing device and a peripheral device coupled to the host computing device through a communication interface. Data is transparently received from the peripheral device or the host computing device, and the received data is stored. The stored data is analyzed to detect a circumstance associated with a security risk. If such a circumstance is not detected, then the data is transparently forwarded to the other of the peripheral device or the host. However, if a circumstance associated with a security risk is detected, then a security process, defined by a rule, is performed. Related apparatus are provided, as well as other methods and apparatus.

Abstract: A method for recovering sessions includes storing, by a client, session information after a session is established between the server and the client. When the session needs to be recovered upon interruption, the client sends all state information before interruption of the session and the session information to the server, and the server recovers the session upon the received session information and all state information before interruption of the session. After a session is interrupted, the server does not need to store any session-related information, thus saving the resources of the server, and all information about the previous session can be recovered completely.