Abstract: An apparatus includes a network interface and a processing unit. The network interface transmits a security payload. The processing unit determines a first partition of a queuing service for the security payload at a first time, at least in part based on a determination that an initial attempt to transmit the security payload failed. The processing unit also instructs a retrieval of the security payload from the first partition to perform a first retry attempt to transmit the security payload, at least in part based on a determination that a first retry interval since the first time has elapsed.

Abstract: Methods, apparatus, systems, and articles of manufacture are disclosed to securely audit communications. An example apparatus includes a participant list generator to, responsive to a command to provision a secured group of devices in a network to prevent malicious activity, generate a participant device list including one or more endpoint devices and a control plane server; a privilege controller to, based on a policy indicated in the command, set read and write privileges for the one or more endpoint devices and the control plane server; a command controller to, based on the command, determine whether to generate a shared communication key using a shared system key; and a communication processor to encrypt communications between the one or more endpoint devices and the control plane server using the shared communication key.

Abstract: A method, a computer-readable medium, and a device for dynamically identifying criticality of services and data sources. The computer-readable medium comprising instructions which, when executed, cause a programmable device to: determine, based on a plurality of service-related metrics from a network node, upstream network nodes and downstream network nodes in a network; query the upstream network nodes and the downstream network nodes with a multicast request for an additional plurality of service-related metrics; extrapolate a current network topology based on the plurality of service-related metrics and the additional plurality of service-related metrics; determine whether or not an upstream backup server is present for the network node; determine a set of critical service delivery points in the network based on the determination of the upstream backup server; and generate a network service alert responsive to a service interruption from the set of critical service delivery points.

Abstract: An apparatus, related devices and methods, having memory; and a processor operable to execute instructions stored in the memory configured to cache a first data object and a second data object received from a source in a cache group based on metadata received from the source, where the metadata identifies the first and second data objects as related and the first data object as a trigger object; receive a request from a client for the first data object; identify, based on a determination that the first data object is invalid and is the trigger object, the first data object and the second data object as invalid; request a valid first data object and a valid second data object from the source; and cache the valid first and second data objects, received from the source, in the cache group.

Abstract: An apparatus includes a network interface and a processing unit. The network interface transmits a security payload. The processing unit determines a first partition of a queuing service for the security payload at a first time, at least in part based on a determination that an initial attempt to transmit the security payload failed. The processing unit also instructs a retrieval of the security payload from the first partition to perform a first retry attempt to transmit the security payload, at least in part based on a determination that a first retry interval since the first time has elapsed.

Abstract: An apparatus, related devices and methods, having memory; and a processor operable to execute instructions stored in the memory configured to cache a first data object and a second data object received from a source in a cache group based on metadata received from the source, where the metadata identifies the first and second data objects as related and the first data object as a trigger object; receive a request from a client for the first data object; identify, based on a determination that the first data object is invalid and is the trigger object, the first data object and the second data object as invalid; request a valid first data object and a valid second data object from the source; and cache the valid first and second data objects, received from the source, in the cache group.

Abstract: Methods, apparatus, systems, and articles of manufacture are disclosed to securely audit communications. An example apparatus includes a participant list generator to, responsive to a command to provision a secured group of devices in a network to prevent malicious activity, generate a participant device list including one or more endpoint devices and a control plane server; a privilege controller to, based on a policy indicated in the command, set read and write privileges for the one or more endpoint devices and the control plane server; a command controller to, based on the command, determine whether to generate a shared communication key using a shared system key; and a communication processor to encrypt communications between the one or more endpoint devices and the control plane server using the shared communication key.

Abstract: Methods, apparatus, systems, and articles of manufacture are disclosed for dynamic network classification using authenticated neighbor detection. An example includes a network comparator to determine whether a network to be connected by a computing device is a managed network based on network configuration information associated with the network, in response to determining the network is not a managed network, a neighbor comparator to determine a number of different computing devices on the network that are managed computing devices, and in response to determining that the number of the managed computing devices satisfies a threshold, a sensor controller to invoke a sensor of the computing device to obtain data from computing devices associated with the network, the computing devices including the managed computing devices.

Abstract: Methods, apparatus, systems, and articles of manufacture are disclosed for dynamic network classification using authenticated neighbor detection. An example includes a network comparator to determine whether a network to be connected by a computing device is a managed network based on network configuration information associated with the network, in response to determining the network is not a managed network, a neighbor comparator to determine a number of different computing devices on the network that are managed computing devices, and in response to determining that the number of the managed computing devices satisfies a threshold, a sensor controller to invoke a sensor of the computing device to obtain data from computing devices associated with the network, the computing devices including the managed computing devices.

Abstract: A method, a computer-readable medium, and a device for dynamically identifying criticality of services and data sources. Service-related metrics are received from all IoT network elements in a network. The service-related metrics are parsed to extrapolate a network topology. From the topology, a set of critical service delivery points are determined based on data extracted from the service-related metrics. The critical service delivery points may be monitored for service interruptions and alerts may be generated in response to interruptions. Additionally the extrapolated network topology may be compared to a previously recorded topology of the network, and based on the delta, alerts may be generated when the delta meets a threshold.

Abstract: A method, a computer-readable medium, and a device for dynamically identifying criticality of services and data sources. The computer-readable medium comprising instructions which, when executed, cause a programmable device to: determine, based on a plurality of service-related metrics from a network node, upstream network nodes and downstream network nodes in a network; query the upstream network nodes and the downstream network nodes with a multicast request for an additional plurality of service-related metrics; extrapolate a current network topology based on the plurality of service-related metrics and the additional plurality of service-related metrics; determine whether or not an upstream backup server is present for the network node; determine a set of critical service delivery points in the network based on the determination of the upstream backup server; and generate a network service alert responsive to a service interruption from the set of critical service delivery points.

Abstract: A method, a computer-readable medium, and a device for dynamically identifying criticality of services and data sources. Service-related metrics are received from all IoT network elements in a network. The service-related metrics are parsed to extrapolate a network topology. From the topology, a set of critical service delivery points are determined based on data extracted from the service-related metrics. The critical service delivery points may be monitored for service interruptions and alerts may be generated in response to interruptions. Additionally the extrapolated network topology may be compared to a previously recorded topology of the network, and based on the delta, alerts may be generated when the delta meets a threshold.

Abstract: A policy management system, method and computer program product are provided. In use, information is received over a network relating to at least one subset of computers that are at least potentially out of compliance with a policy. Further, such information is sent to a plurality of the computers, utilizing the network. To this end, network communication involving the at least one subset of computers is capable of being controlled utilizing the information.

Abstract: A policy management system, method and computer program product are provided. In use, information is received over a network relating to at least one subset of computers that are at least potentially out of compliance with a policy. Further, such information is sent to a plurality of the computers, utilizing the network. To this end, network communication involving the at least one subset of computers is capable of being controlled utilizing the information.