Abstract: A system, method, and computer-readable medium for performing a data center management and monitoring operation. The data center management and monitoring operation includes: identifying a plurality of transaction components within a data center; monitoring the plurality of transaction components; identifying a long duration transaction based upon the monitoring; and, generating an insight regarding the long duration transaction.

Abstract: A system can receive, from a device, a first request according to a representational state transfer protocol, wherein the first request identifies a uniform resource locator to a resource. The system can determine a group of identifiers that are related to the resource, wherein the determining is performed based on a group of nested join operations on a group of database tables, wherein the determining is performed based on the first request and without reference to another request, wherein respective identifiers of the group of identifiers comprise respective uniform resource locators to the respective identifiers, and wherein the respective uniform resource locators are consistent across resource types and query requests. The system can generate a query response that comprises the group of identifiers. The system can send a message to the device according to the representational state transfer protocol, wherein the message comprises the query response.

Abstract: A system can receive a first command that declares a first relationship between a first pair of computer resources of a group of computer resources, wherein the first relationship is any first one from a group of relationships, wherein a number of relationships in the group of relationships has a defined size. The system can receive a second command that declares a second relationship between a second pair of computer resources of the group of computer resources, wherein the second relationship is any second one from the group of relationships. The system can create a resource model for the group of computer resources based on the first command and the second command. The system can store the resource model in a memory.

Abstract: In one or more embodiments, one or more systems, one or more methods, and/or one or more processes may: attain, via a network, a subscription with an intermediary of another datacenter; provide, via the network, a request for a software product to the other datacenter; open a network communication connection with the intermediary; receive a message associated with the software product from the intermediary; close the network communication connection; receive an image associated with the software product from the other datacenter; instantiate the image as an instantiated image; determine if a first repository of the first datacenter stores a package associated with the software product; if so, retrieve the package from the first repository; if not, receive the package from a second repository of the other datacenter via the network; and install, by the instantiated image, the software product from the package on a target information handling system.

Abstract: A system can access an application programming interface of a device to set an owner authorization cryptographic key on the device. The system can receive, at a device discovery service, a first request from the device for an identifier of the device onboarding service, wherein the first request comprises an indication of possessing the owner authorization cryptographic key. The system can, in response to validating the indication of the owner authorization cryptographic key, send, by the device discovery service, the identifier of the device onboarding service to the device. The system can, in response to receiving, at the device onboarding service, a second request from the device that is based on the identifier of the device onboarding service and demonstrates possession of the owner authorization cryptographic key, provision the device by the device onboarding service. The system can, permit, via the firewall, the device to access a device management service.

Abstract: A system can receive a first ownership voucher for a device that identifies a first entity as being the owner. The system can receive a second ownership voucher indicative of the first entity changing the owner to a second entity. The system can determine that the first entity is the owner based on the first ownership voucher. The system can update the owner to be the second entity via storing the second ownership voucher. The system can, based on receiving second user input associated with the second entity, verify the second entity as the owner using the second ownership voucher. The system can, based on verifying the second entity as the owner, store an identifier of a device onboarding service used to perform the verifying. The system can direct the device to access the device onboarding service to provision the device using the identifier of the device onboarding service.

Abstract: A system can maintain a first data store that stores first associations between subjects and first attributes, and a second data store that stores second associations between second attributes and permissions. The system can receive a query that identifies a user account and a resource. The system can determine, from the first data store and a context of the user account in initiating the query, first permissions for the user account with respect to the resource and given the context. The system can determine, from the second data store and the context, second permissions that are a precondition to access the resource given the context. The system can determine, based on whether there is an overlap between the first permissions and the second permissions, whether to approve the query. The system can respond to the query based on a result of the determining whether to approve the query.

Abstract: Mechanisms are provided to implement a recurring payment collection system for extending current quick response (QR) code payment methods to collect recurring payments from a customer. The recurring payment collection system sends a notification to the customer that a recurring payment is due in response to a recurring payment event occurring. The recurring payment collection system obtains a QR code for the recurring payment in response to the customer acknowledging the notification. The recurring payment collection system utilizes the QR code to request the recurring payment from a payment system. The recurring payment collection system acknowledges that the recurring payment has been made in responsive to the recurring payment being processed by the payment system.

Abstract: A system, method, and computer-readable medium are disclosed for performing a data schema mapping operation. The data schema mapping operation includes receiving product information from a product supplier, the product information comprising a first document corresponding to a first data schema, the first data schema comprising an unspecified JavaScript Object Notation (JSON) schema; identifying a plurality of components within the first document corresponding to the first data schema, the plurality of components comprising a plurality of JSON data elements; compacting the plurality of JSON data elements via a data schema compacting operation to provide a set of compacted JSON data elements; identifying a second plurality of components corresponding to a second data schema, the second data schema comprising a defined data schema; and, mapping a component of the document corresponding to the first data schema to a component corresponding to the second data schema.

Abstract: A system, method, and computer-readable medium are disclosed for performing a data schema mapping operation. The data schema mapping operation includes receiving product information from a product supplier, the product information comprising a first document corresponding to a first data schema, the first data schema comprising an unspecified JavaScript Object Notation (JSON) schema; identifying a plurality of components within the first document corresponding to the first data schema, the plurality of components comprising a plurality of JSON data elements; compacting the plurality of JSON data elements via a data schema compacting operation to provide a set of compacted JSON data elements; identifying a second plurality of components corresponding to a second data schema, the second data schema comprising a defined data schema; and, mapping a component of the document corresponding to the first data schema to a component corresponding to the second data schema.

Abstract: A system, method, and computer-readable medium are disclosed for performing a data schema mapping operation. The data schema mapping operation includes receiving product information comprising a first document corresponding to a first data schema, the first data schema comprising an unspecified JavaScript Object Notation (JSON) schema; identifying a plurality of components within the first document corresponding to the first data schema, the plurality of components comprising JSON data elements; identifying a second plurality of components corresponding to a second data schema, the second data schema being associated with a data center services provider, at least some of the second plurality of components being associated with a relational database; mapping a component of the document corresponding to the first data schema to a component corresponding to the second data schema, the mapping providing a second document; and, accessing the second document via a data access application program interface.

Abstract: A system, method, and computer-readable medium are disclosed for performing a data schema mapping operation. The data schema mapping operation includes receiving product information from a product supplier, the product information comprising a first document corresponding to a first data schema, the first data schema comprising an unspecified JavaScript Object Notation (JSON) schema; identifying a plurality of components within the first document corresponding to the first data schema, the plurality of components comprising JSON data elements; identifying a second plurality of components corresponding to a second data schema, the second data schema comprising a defined data schema, the second data schema being associated with a data center services provider, at least some of the second plurality of components being associated with a relational database; and, mapping a component of the document corresponding to the first data schema to a component corresponding to the second data schema.

Abstract: A system can receive, by a cloud management platform, a request from a user account for a trust certificate. The system can provide, to the user account via a first pathway, the trust certificate, comprising a first portion of a secret. The system can provide, to the user account via a second pathway, a second portion of the secret. The system can receive, at an on-premises cloud controller (OPCC), data indicative of the first and second portions. The system can, in response to the OPCC validating the first secret, receive, by the cloud management platform and from the OPCC, a second request to instantiate a trust relationship, wherein the second request comprises a first message body that is signed and encrypted with the first secret. The system can send, by the cloud management platform and to the OPCC, a message that comprises a second trust certificate and a second secret.

Abstract: A system can generate a non-sensitive identifier for sensitive data at a spoke in a hub-and-spoke configuration, wherein the spoke is configured to receive management commands by a hub device of the hub-and-spoke configuration. The system can store an association between the non-sensitive identifier and the sensitive data, resulting in a stored association. The system can send, to the hub device, a first indication of the non-sensitive identifier, and a second indication of a type of data of the sensitive data. The system can receive, from the hub device, a management command identifying the non-sensitive identifier. The system can identify the sensitive data based on the stored association. The system can perform the management command based on the sensitive data.

Abstract: Described herein are methods and a system for managing devices in remote data centers using a cloud service user interface (UI). The cloud service UI receives device management requests to device management application program interface (API). At the cloud service side, the device management requests to device management application program interface (API) are intercepted and converted to device cloud management REST interfaces. The device cloud management REST interfaces to a remote data center of devices, and converted to device native API used to manage a specific device.

Abstract: Trustable delivery of a product uses a package with a printed label having a unique product ID, an RFID marker applied to the product that contains the ID, and a smart chip inside the product that contains the ID and a digital key. The ID from the RFID marker is compared to the label for initial validation of the package. The smart chip is further interrogated to generate an encoded value of the ID, such as a hash value, using the digital key. The hash value is then used to authenticate the ID, thereby verifying that the product as delivered is the original, untampered product. The product ID and the hash value are recorded in a blockchain ledger associated with the product. In this manner, the packaged product can be validated by any party in the delivery chain, e.g., manufacturer, seller, distributor, delivery service, and final recipient.

Abstract: An example operation may include one or more of generating, by a first blockchain client, a transaction to a blockchain network to transfer a document, transferring over a private channel, by a second blockchain client, a first key to the first blockchain client, the private channel providing a point-to-point connection between the first and second blockchain clients, encrypting the document using a shared key, transferring, by the first blockchain client, the encrypted document over the private channel, generating, by the second blockchain client, a transaction to acknowledge receipt of the encrypted document, and transferring the shared key encrypted with the first key.

Abstract: An example operation includes one or more of selecting, by a trust maintainer node, at least two blockchain nodes to be assigned as non-human intelligent nodes controlled by separate consortiums, identifying, by the trust maintainer node, a plurality of blockchain nodes that are not assigned as non-human intelligent nodes, assigning, by the trust maintainer node, a trust value to each of the plurality of the blockchain nodes based on voting histories of each of the plurality of the blockchain nodes to determine an overall trust value of a blockchain, and responsive to the overall trust value of the blockchain being below a minimum threshold, selecting at least one node from the plurality of the nodes to be assigned as the non-human intelligent node to increase the overall trust value of the blockchain.

Abstract: Described are techniques for an access management protocol including a method comprising associating a granted permission set and a constrained permission set to a user profile in an access management system. Respective granted permissions in the granted permission set authorize the user profile to perform the respective granted permissions, and respective constrained permissions in the constrained permission set preclude the user profile from performing the respective constrained permissions. The method further comprises receiving a permission-based request at the access management system and from the user profile and determining that the permission-based request is associated with a permission that is included in both the granted permission set and the constrained permission set. The method further comprises rejecting the permission-based request.

Abstract: A method, system, and computer program product for detecting a network application security question is provided. The method includes receiving permission to access social media sources of a user. The social media sources and Internet based sources of the user are monitored in response to receiving the permission and associated data is generated and stored. A request for access to a secure account of the user is received and a list of security questions is presented to the user. The list of security questions is analyzed with respect to the data and each security question is ranked. An answer to a question of the list is received and analyzed and security attributes of the answer with respect to a potential malicious attempt to provide a predicted answer to for access to secure account are determined. A resulting security process with respect to enabling access to the secure account is executed.