Abstract: Generally disclosed herein is an approach for identifying multi-asset applications for migrating from a first platform to a second platform. The approach includes creating a graph representing assets executing in the first platform. Nodes of the graph can represent assets and edges of the graph can represent logical relationships between the assets. Logical relationships can be determined based on network connection information of data relevant to identifying the multi-asset applications. A grouping of at least two nodes connected by an edge can represent a multi-asset application. The approach can further include creating network and security policies for the identified multi-asset applications and deploying the policies to the second platform for migrating the multi-asset applications from the first platform to the second platform.

Abstract: Securely exchanging keys to establish secure connections to low powered connected devices (LPCDs), such as smart devices and IoT (Internet Of Things) devices, and mutual authentication between these devices and third party controllers is accomplished via a higher performance machine configured with a dedicated remote service (DRS). A known symmetric pre-shared key (PSK) is used to establish a secure first connection between the LPCD and the DRS using another symmetric key. The DRS can then use asymmetric key exchange to securely send a new symmetric key to the 3P, and send the same new symmetric key to the LPCD using the secure first connection. This facilitates LPCDs to securely establish secure communications with other devices, in particular for control by third party (3P) devices. This also allows authentication of the LPCD with cloud services, and enables a DRS to vouch for associated devices to other DRSs.

Abstract: Securely exchanging keys to establish secure connections to low powered connected devices (LPCDs), such as smart devices and IoT (Internet Of Things) devices, and mutual authentication between these devices and third party controllers is accomplished via a higher performance machine configured with a dedicated remote service (DRS). A known symmetric pre-shared key (PSK) is used to establish a secure first connection between the LPCD and the DRS using another symmetric key. The DRS can then use asymmetric key exchange to securely send a new symmetric key to the 3P, and send the same new symmetric key to the LPCD using the secure first connection. This facilitates LPCDs to securely establish secure communications with other devices, in particular for control by third party (3P) devices. This also allows authentication of the LPCD with cloud services, and enables a DRS to vouch for associated devices to other DRSs.

Abstract: A method for protecting data communications using a multiple processor device in which multiple processors are operatively connected by a transport mechanism for sharing data. One or more of the processors is programmed as a dispatcher and other processors are programmed with processes. Each of the processes enforce an identical security policy and/or perform an identical or specialized security function. Data streams are transferred respectively from the dispatcher to the processes through the transport mechanism. Control information is transmitted through the transport mechanism from one or more processes to the dispatcher. The control information specifies balancing load of the data streams between the processes. The dispatcher balances load based on the control information.

Abstract: In a network, some data are transmitted between stations during time slots in contention free periods. Selecting the time slots includes collecting timing information at some stations in the network. The timing information indicates the times of existing time slots used by stations whose transmissions can be reliably received by the station collecting the timing information. The timing information is distributed to other stations in the network. A new time slot for transmission between a first and a second station is selected based at least on timing information indicating the times of existing time slots used by stations whose transmissions can be reliably received by at least one of the first and second station.

Abstract: A method and a communication modem for broadband communication over power transmission lines. The modem includes a coarse level synchronization mapping unit which maintains a regularly updated coarse level clock synchronization map of neighboring communication units with which it is likely to exchange communications; and a second level synchronization unit which utilizes session handshakes and session data capacity to increase the synchronization level with a neighboring communication unit to allow a communication session to be held at a higher modulation level than the coarse level synchronization is able to support.

Abstract: A system, apparatus and method for communication signaling between sending terminals and receiving terminals over power lines, comprises a power level test message configuration unit associated with a respective sending terminal for configuring test signals to send to one or more of said receiving units to determine optimal transmission characteristics for communication between the terminals, the respective test signals being configured per transmission power level. A test message sending unit sends the configured test signals to the various neighboring terminals over the power lines, therefrom to determine optimal transmission power levels for transmission to the various neighboring units.

Abstract: A carrier sense multiple access network comprises communication nodes which communicate with other nodes over the network using carrier sense multiple access (CSMA). The nodes further comprise channel support capability to set up multiplex channel connections between specific nodes over the CSMA based network. The network thus may reduce conflict issues raised by CSMA and at the same time improve bandwidth utilization.

Abstract: A method and a communication modem for broadband communication over power transmission lines. The modem includes a coarse level synchronization mapping unit which maintains a regularly updated coarse level clock synchronization map of neighboring communication units with which it is likely to exchange communications; and a second level synchronization unit which utilizes session handshakes and session data capacity to increase the synchronization level with a neighboring communication unit to allow a communication session to be held at a higher modulation level than the coarse level synchronization is able to support.

Abstract: In a network, some data are transmitted between stations during time slots in contention free periods. Selecting the time slots includes collecting timing information at some stations in the network. The timing information indicates the times of existing time slots used by stations whose transmissions can be reliably received by the station collecting the timing information. The timing information is distributed to other stations in the network. A new time slot for transmission between a first and a second station is selected based at least on timing information indicating the times of existing time slots used by stations whose transmissions can be reliably received by at least one of the first and second station.

Abstract: A transmitting unit for use in sending data in packets in timeslots within time frames, each packet being sent in a timeslot, the unit comprising means to reserve for uplink transmission in the next uplink time frame a number of timeslots (X), the number of timeslots (X) being determined dependent upon a value which is the number of timeslots (Y) used for uplink transmission in the previous uplink time frame plus the number of packets (Z) remaining for uplink transmission during the last time frame minus the number of time slots (Q) to be used in the present uplink time frame.

Abstract: A method for protecting data communications using a multiple processor device in which multiple processors are operatively connected by a transport mechanism for sharing data. One or more of the processors is programmed as a dispatcher and other processors are programmed with processes. Each of the processes enforce an identical security policy and/or perform an identical or specialized security function. Data streams are transferred respectively from the dispatcher to the processes through the transport mechanism. Control information is transmitted through the transport mechanism from one or more processes to the dispatcher. The control information specifies balancing load of the data streams between the processes. The dispatcher balances load based on the control information.

Abstract: A transmitting unit for use in sending data in packets in timeslots within time frames, each packet being sent in a timeslot, the unit comprising means to reserve for uplink transmission in the next uplink time frame a number of timeslots (X), the number of timeslots (X) being determined dependent upon a value which is the number of timeslots (Y) used for uplink transmission in the previous uplink time frame plus the number of packets (Z) remaining for uplink transmission during the last time frame minus the number of time slots (Q) to be used in the present uplink time frame.