Abstract: Systems and techniques are provided for establishing a connection. For instance, a process may include receiving, at a first chiplet root of trust (C-ROT) of a first chiplet of a plurality of chiplets, a request for a cryptographic key; generating, by the first C-ROT, the cryptographic key; wrapping, by the first C-ROT, the cryptographic key using a wrapping key to generate a wrapped cryptographic key; outputting, by the first C-ROT, the wrapped cryptographic key; receiving the wrapped cryptographic key at a second C-ROT of a second chiplet of the plurality of chiplets; unwrapping, by the second C-ROT, the wrapped cryptographic key using the wrapping key; and performing, by the second C-ROT, an operation based on the cryptographic key.

Abstract: Systems and techniques are provided for secure processing. For instance, a process can include generating a model signing key, wherein the device is associated with a device model, and wherein the model signing key is shared by apparatuses of the device model; obtaining a certificate for a device-unique public key of the apparatus; signing the device-unique public key based on the model signing key; and transmitting the signed device-unique public key for authentication.

Abstract: A method includes causing files that are part of an application to be packaged to form an application package. During a packaging process, a hash calculator is caused to calculate a hash for the application package and a signing module is caused to generate an application manifest including the hash for the application package. The method also includes causing the application manifest to be added to the application package, causing firmware executed by a processor to verify a bootloader, and causing the bootloader to be executed to verify a kernel. The method also includes, causing the kernel to be executed to verify a trust agent, and causing the trust agent to process an application list to identify the one or more files that are part of the application included in the application package and generate a hash for the one or more files included in the application package.

Abstract: An apparatus executes firmware to verify a bootloader. The verified bootloader is caused to be executed to verify a kernel. In response to verifying the kernel, the kernel is caused to be executed to verify a trust agent. In response to verifying the trust agent, the trust agent is caused to process an application list to identify one or more files that are part of an application and to generate a hash for all of the one or more files combined or for each of the one or more files individually. The apparatus also compares the hash for all of the one or more files combined or for each of the one or more files individually with a hash included in an application manifest file and, in response to confirming a hash match, causes the one or more files that are part of the application to be executed.

Abstract: A method of operating a cloud-native function (CNF) includes receiving a configuration instruction at a certificate management microservice of the CNF. In response to the configuration instruction, certificate management microservice is initialized, including writing a certificate including a certificate key to a secure storage element. The certificate management microservice receives a service request from an other microservice of the CNF, and in response to the service request, sends certificate information to the other microservice, the certificate information being usable by the other microservice to read the certificate key from the secure storage element.

Abstract: In general, the current subject matter relates to automated upgrade and fallback across multiple operating system (“OS”) instances. In some implementations, automated upgrade and fallback across multiple OS instances can include attempting to boot an OS from a first Basic Input/Output System (BIOS) pre-stored in a first partition of a memory of a communication device in a wireless communication system. The OS can run on the communication device in response to the OS booting successfully from the first BIOS, and the method can further include, in response to the OS not booting successfully from the first BIOS, automatically attempting to boot the OS from a second BIOS pre-stored in a second partition of the memory of the communication device.

Abstract: In general, the current subject matter relates to automated basic input/output system (BIOS) recovery. In some implementations, automated BIOS recovery can include attempting to boot an operating system (OS) from a BIOS while running an Intelligent Platform Management Interface (IPMI) watchdog timer. The BIOS can be stored in a first partition of a memory of a communication device in a wireless communication system. After a timeout of the watchdog timer, performance of a BIOS recovery procedure can be automatically triggered. After the performance of the BIOS recovery procedure, the OS can be automatically re-attempted to boot from the BIOS.

Abstract: A lithium cell for a lithium metal battery includes an electrolyte material, a cathode structure arranged on one side of the electrolyte material, the cathode structure including a cathode electrode and a cathode current collector, and an anode structure arranged on an opposite side of the electrolyte material from the cathode structure. The anode structure includes an anode current collector, a lithium metal anode arranged on a side of the anode current collector arranged facing the electrolyte material, a nanoceramic protective coating deposited on a surface of the lithium metal anode arranged facing the electrolyte material. The nanoceramic protective coating includes a nanoceramic material, a base polymer material, a binder material including a UV curable polymer, and one or more lithium salts.

Abstract: A cage assembly includes an annular cage disposable within the bearing outer ring and having a centerline, an inner radial end defining a bore, an outer radial end and a plurality of pockets extending between the inner and outer radial ends and spaced circumferentially about the centerline. Each pocket contains a separate one of the rolling elements. A flexible annular retainer is disposed against the inner radial end of the cage and has a plurality of through holes. Each one of the plurality of retainer holes is radially aligned with a separate one of the plurality of cage pockets and has a dimension with a value less than a diameter of each rolling element. As such, a radially inner portion of the rolling element contained within the aligned cage pocket extends through the retainer hole while a remainder of the rolling element is retained within the cage pocket.

Abstract: A cage assembly includes an annular cage disposeable within the bearing outer ring and having a centerline, an inner radial end defining a bore, an outer radial end and a plurality of pockets extending between the inner and outer radial ends and spaced circumferentially about the centerline. Each pocket contains a separate one of the rolling elements. A flexible annular retainer is disposed against the inner radial end of the cage and has a plurality of through holes. Each one of the plurality of retainer holes is radially aligned with a separate one of the plurality of cage pockets and has a dimension with a value less than a diameter of each rolling element. As such, a radially inner portion of the rolling element contained within the aligned cage pocket extends through the retainer hole while a remainder of the rolling element is retained within the cage pocket.

Abstract: A health and condition monitoring system of an elastomeric component comprising an actuator, a sensor, and a processing unit. The sensor and the actuator need to be attached directly or indirectly to the elastomeric component. The actuator induces an impulse, or possibly a chirp, into the elastomeric component. The sensor senses the response, the impulse response function. The processing unit analyzes the impulse response function and determines a health and condition indicator. This is repeated and when enough indicators have been determined, then a health and condition marker can be determined, covering if the elastomeric component is in a start period of usage, in a main usage period or in a final period of usage.

Abstract: A health and condition monitoring system of an elastomeric component comprising an actuator, a sensor, and a processing unit. The sensor and the actuator need to be attached directly or indirectly to the elastomeric component. The actuator induces an impulse, or possibly a chirp, into the elastomeric component. The sensor senses the response, the impulse response function. The processing unit analyzes the impulse response function and determines a health and condition indicator. This is repeated and when enough indicators have been determined, then a health and condition marker can be determined, covering if the elastomeric component is in a start period of usage, in a main usage period or in a final period of usage.

Abstract: Described herein are representative tools and techniques for making bank-hosted payments. In one exemplary technique described herein, at least one payee account, at least one payer account, and at least one suspense account are maintained at a bank. Additionally, at least one client identifier is assigned to a software client. Further, at least one payment token is generated and the at least one payment token is issued to the software client. Also, funds are transferred from the at least one payer account to the at least one suspense account. Additionally, transaction information for an offline transaction is received. The transaction information includes the at least one payment token, a payment amount, and an issuer identifier. Using a portion of the transaction information, transaction authentication is performed, and based in part on the transaction authentication, funds are transferred from the at least one suspense account.

Abstract: Digital documents can be annotated using a variety of techniques. Document image pages can be created from digital documents. Annotations can be created using the document image pages. Annotation content (such as individual annotation elements, including text, audio, video, picture, and/or drawing annotation elements) can be generated from the annotations. Annotation content can be supported in a temporal annotation mode and in a positional annotation mode. Annotation content and document image pages can be stored separately. Annotation content and document image pages can be used (e.g., downloaded, viewed, played, edited, etc.) by one or more client devices.