Abstract: A computer-implemented method includes receiving a request for one of a network session and a virtual network function, wherein the request includes a single packet authorization request. The method further includes classifying the single packet authorization request at a first service classifier. The method further includes routing the request, via a service function forwarder, to a single packet authorization service function for validation. The method further includes instantiating a security virtual function in response to the request, wherein instantiating the security virtual function occurs after validation of the single packet authorization request. The method further includes configuring the security virtual function to apply at least one connection policy to allow or deny traffic in a data session. The method further includes, in response to allowing the data session, terminating the security virtual function after the data session has concluded.

Abstract: A computer-implemented method includes receiving a request for one of a network session and a virtual network function, wherein the request includes a single packet authorization request. The method further includes classifying the single packet authorization request at a first service classifier. The method further includes routing the request, via a service function forwarder, to a single packet authorization service function for validation. The method further includes instantiating a security virtual function in response to the request, wherein instantiating the security virtual function occurs after validation of the single packet authorization request. The method further includes configuring the security virtual function to apply at least one connection policy to allow or deny traffic in a data session. The method further includes, in response to allowing the data session, terminating the security virtual function after the data session has concluded.

Abstract: A computer-implemented method includes receiving a request for one of a network session and a virtual network function, wherein the request includes a single packet authorization request. The method further includes classifying the single packet authorization request at a first service classifier. The method further includes routing the request, via a service function forwarder, to a single packet authorization service function for validation. The method further includes instantiating a security virtual function in response to the request, wherein instantiating the security virtual function occurs after validation of the single packet authorization request. The method further includes configuring the security virtual function to apply at least one connection policy to allow or deny traffic in a data session. The method further includes, in response to allowing the data session, terminating the security virtual function after the data session has concluded.

Abstract: An on-demand virtual security system between a client and a server in communication with a network, the system including an orchestrator, wherein upon receiving a service request from at least one of the client and the server, the orchestrator instantiates a security virtual function within the network and supplies the security virtual function with at least one connectivity policy, and wherein the security virtual function applies the at least one connectivity policy to approve or disapprove a connection between the client and the server and wherein upon the security virtual function approving the connection between the client and the server, a orchestrator establishes a data session; and wherein after the data session has concluded, the orchestrator terminates the security virtual function.

Abstract: Concepts and technologies disclosed herein are directed to a cloud workload proxy as link-local service. According to one aspect disclosed herein, a datacenter environment system can include an infrastructure network, a service proxy gateway attached to the infrastructure network, and a software-defined networking (“SDN”) controller. The service proxy gateway can include an infrastructure network address. The SDN controller can be configured with a link-local Internet protocol (“IP”) address to the infrastructure network address. The SDN controller can store the link-local IP address mapped to the infrastructure network address for routing packets from a workload executing in a cloud computing environment to a target service operating external to the datacenter environment system.

Abstract: A universal security agent deployed on a computing endpoint includes one or both of a base agent and a security agent plugin module. The base agent loads the security agent plugin module and, in response, receives plugin tasks from the security agent plugin module for registration. The base agent schedules the received plugin tasks based on a policy and/or a system access information associated with the security agent plugin module. Further, the base agent executes the plugin tasks based on the scheduling. The base agent controls system access requests generated during the execution of the plugin tasks based on the policy associated with the security agent plugin module. Additionally, the base agent monitors and logs system access information associated with the security agent plugin module.

Abstract: An on-demand virtual security system between a client and a server in communication with a network, the system including an orchestrator, wherein upon receiving a service request from at least one of the client and the server, the orchestrator instantiates a security virtual function within the network and supplies the security virtual function with at least one connectivity policy, and wherein the security virtual function applies the at least one connectivity policy to approve or disapprove a connection between the client and the server and wherein upon the security virtual function approving the connection between the client and the server, a orchestrator establishes a data session; and wherein after the data session has concluded, the orchestrator terminates the security virtual function.

Abstract: Concepts and technologies disclosed herein are directed to a cloud workload proxy as link-local service. According to one aspect disclosed herein, a datacenter environment system can include an infrastructure network, a service proxy gateway attached to the infrastructure network, and a software-defined networking (“SDN”) controller. The service proxy gateway can include an infrastructure network address. The SDN controller can be configured with a link-local Internet protocol (“IP”) address to the infrastructure network address. The SDN controller can store the link-local IP address mapped to the infrastructure network address for routing packets from a workload executing in a cloud computing environment to a target service operating external to the datacenter environment system.

Abstract: A universal security agent deployed on a computing endpoint includes one or both of a base agent and a security agent plugin module. The base agent loads the security agent plugin module and, in response, receives plugin tasks from the security agent plugin module for registration. The base agent schedules the received plugin tasks based on a policy and/or a system access information associated with the security agent plugin module. Further, the base agent executes the plugin tasks based on the scheduling. The base agent controls system access requests generated during the execution of the plugin tasks based on the policy associated with the security agent plugin module. Additionally, the base agent monitors and logs system access information associated with the security agent plugin module.

Abstract: A fish detection accessory to be installed on the end of a fishing pole or which alternately can be incorporated into a fishing pole during manufacture of the pole. The unit employs a miniature dual axis accelerometer integrated circuit that can detect angular rotation of the unit relative to the earth's surface, allowing the unit to detect a fish bite based on vibration method, i.e. rotation of the pole per unit time, or on a rotation method, i.e. rotation of the pole independent of time. Bite detection sensitivity levels and alarm methods can be selected by the user using the power switch and two setting switches. The unit can also be used as a mini flashlight.

Abstract: A fish detection accessory to be installed on the end of a fishing pole or which alternately can be incorporated into a fishing pole during manufacture of the pole. The unit employs a miniature dual axis accelerometer integrated circuit that can detect angular rotation of the unit relative to the earth's surface, allowing the unit to detect a fish bite based on vibration method, i.e. rotation of the pole per unit time, or on a rotation method, i.e. rotation of the pole independent of time. Bite detection sensitivity levels and alarm methods can be selected by the user using the power switch and two setting switches. The unit can also be used as a mini flashlight.

Abstract: Pollution control apparatus and a method for removing particulate matter from a gas at temperatures of up to about 3000.degree. F. are disclosed comprising a gas centrifuge having effluent and influent openings and a spray nozzle positioned to inject a stream of a refrigerated fluid at the effluent gas passing through the centrifuge. The spray nozzle is arranged to force particulate matter against the walls of the gas centrifuge in order to facilitate removal of particles in the gas stream and also to cool the gas to a low temperature after which it may be either discharged into the atmosphere or processed through a moving filter at low temperatures to further remove any finer particles in the gas passing through the apparatus. The lower temperatures of the gas emanating from the gas centrifuge allow the use of a cloth or synthetic fiber filter such as a Dacron (trademark) filter.