Abstract: MST calibration is required to ensure that all examinees are assessed on a common scale. State of the art approaches have the disadvantages that they become computationally unstable and demanding or may have standard errors of estimated item parameters. Method and system in the embodiments disclosed herein provide a module-wise calibration approach in which a shift parameter value is estimated as difference in the average difficulty level between each two modules from among the plurality of modules. Further, based on the estimated value of the shift parameter, the estimated average difficulty level of each of the plurality of modules is aligned to a common scale. By aligning each of the plurality of modules to the common scale users who took different combinations of the plurality of modules are assessed on the common scale.

Abstract: Item creation in specifically, existing assessment system for institution has lot of malpractices including leakage of question paper, cheating which are of major concern due to manual intervention at multiple levels in lifecycle. This disclosure relates a method to dynamically generate an item by generator function for assessment in candidate console is provided. The method includes one or more templates created for one or more items based on a generator function and one or more placeholder variables. One or more placeholder values are dynamically generated based on one or more replacement values corresponding to each placeholder variable. One or more generated items associated with one or more required options are obtained based on the one or more placeholder values. One or more validated items are obtained by mapping the one or more generated item associated with the one or more required options to the one or more item templates.

Abstract: In some examples, active directory management and remediation may include obtaining data associated with active directories, and generating, based on the obtained data, a data model that includes a plurality of active directory concepts. A graph may be generated and include the active directory concepts as nodes and relationships between the nodes. The graph may be analyzed to identify user to group memberships. A membership score and a reasoning for the membership score may be determined for each identified user to group membership of the user to group memberships. The membership score and the reasoning for the membership score may be analyzed for each identified user to group membership. Further, based on the analysis of the membership score and the reasoning for the membership score, the at least one of the user to group memberships may be remediated.

Abstract: In some examples, closed loop monitoring based privileged access control may include identifying a ticket that includes a specification of an incident that is to be remedied and determining an intent of the ticket. A privileged access command library may be analyzed to determine a plurality of privileged access steps that can be performed to remedy the incident. A source file associated with procedures that were performed to remedy the incident may be analyzed. A plurality of events may be identified using the source file and filtered based on the plurality of privileged access steps that can be performed to remedy the incident. At least one event that includes at least one other privileged access step that is not one of the plurality of privileged access steps that can be performed to remedy the incident may be identified, and instructions may be generated to remedy the identified event.

Abstract: In some examples, closed loop monitoring based privileged access control may include identifying a ticket that includes a specification of an incident that is to be remedied and determining an intent of the ticket. A privileged access command library may be analyzed to determine a plurality of privileged access steps that can be performed to remedy the incident. A source file associated with procedures that were performed to remedy the incident may be analyzed. A plurality of events may be identified using the source file and filtered based on the plurality of privileged access steps that can be performed to remedy the incident. At least one event that includes at least one other privileged access step that is not one of the plurality of privileged access steps that can be performed to remedy the incident may be identified, and instructions may be generated to remedy the identified event.

Abstract: A method for controlling access to one or more of a plurality of target systems includes receiving profile data that defines one or more features associated with a plurality of individuals with one or more entitlements of those individuals. Each entitlement is indicative of target system access. The method further includes generating a model that relates the one or more features and the one or more entitlements of the plurality of individuals. Profile data that defines one or more features associated with a target individual is received from a first user management system. A listing that includes one or more entitlements associated with the target individual, and confidence values associated with the one or more entitlements is generated based on the profile data and the model. Each confidence value is indicative of whether the target individual should be granted a corresponding entitlement.

Abstract: A system and protocol for integrating a plurality of service providers across a plurality of domains with an application using a hosted platform have been described. The system involves registration of metadata corresponding to the service providers, their services, their types and their set of parameters. When a new integrating application is provided, then it also includes a wrapper protocol. The wrapper protocol includes six predefined methods. The hosted platform in turn can execute the request of the “integrating application” by internally connecting with the plurality of service providers across a plurality of domains and provide the output in a standard format. Since the wrapper protocol standardizes the format of communication (input & output), hence it reduces effort substantially at the end of the integrating application. The ability of the platform to increase the list of service providers is augmented as it relies on metadata for request generation and invocation.

Abstract: A method for controlling access to one or more of a plurality of target systems includes receiving profile data that defines one or more features associated with a plurality of individuals with one or more entitlements of those individuals. Each entitlement is indicative of target system access. The method further includes generating a model that relates the one or more features and the one or more entitlements of the plurality of individuals. Profile data that defines one or more features associated with a target individual is received from a first user management system. A listing that includes one or more entitlements associated with the target individual, and confidence values associated with the one or more entitlements is generated based on the profile data and the model. Each confidence value is indicative of whether the target individual should be granted a corresponding entitlement.

Abstract: A method for controlling access to one or more of a plurality of target systems includes receiving profile data that defines one or more features associated with a plurality of individuals with one or more entitlements of those individuals. Each entitlement is indicative of target system access. The method further includes generating a model that relates the one or more features and the one or more entitlements of the plurality of individuals. Profile data that defines one or more features associated with a target individual is received from a first user management system. A listing that includes one or more entitlements associated with the target individual, and confidence values associated with the one or more entitlements is generated based on the profile data and the model. Each confidence value is indicative of whether the target individual should be granted a corresponding entitlement.

Abstract: A method for controlling access to one or more of a plurality of target systems includes receiving profile data that defines one or more features associated with a plurality of individuals with one or more entitlements of those individuals. Each entitlement is indicative of target system access. The method further includes generating a model that includes one or more sets of rules where each set of rules is associated with an entitlement of the profile data. Each entitlement is indicative of target system/application access. Each rule within a set relates a combination of one or more features of the profile data with a confidence value. Profile data that defines one or more features associated with a target individual is received from a first user management system. A listing that includes one or more entitlements associated with the target individual, and confidence values associated with the one or more entitlements is generated based on the profile data and the rules.

Abstract: A method for controlling access to one or more of a plurality of target systems includes receiving profile data that defines one or more features associated with a plurality of individuals with one or more entitlements of those individuals. Each entitlement is indicative of target system access. The method further includes generating a model that relates the one or more features and the one or more entitlements of the plurality of individuals. Profile data that defines one or more features associated with a target individual is received from a first user management system. A listing that includes one or more entitlements associated with the target individual, and confidence values associated with the one or more entitlements is generated based on the profile data and the model. Each confidence value is indicative of whether the target individual should be granted a corresponding entitlement.

Abstract: A method for controlling access to one or more of a plurality of target systems includes receiving profile data that defines one or more features associated with a plurality of individuals with one or more entitlements of those individuals. Each entitlement is indicative of target system access. The method further includes generating a model that relates the one or more features and the one or more entitlements of the plurality of individuals. Profile data that defines one or more features associated with a target individual is received from a first user management system. A listing that includes one or more entitlements associated with the target individual, and confidence values associated with the one or more entitlements is generated based on the profile data and the model. Each confidence value is indicative of whether the target individual should be granted a corresponding entitlement.

Abstract: An access management robot facilitation system facilitates a robot to execute access management tasks on a target system.

Abstract: A method for controlling access to one or more of a plurality of target systems includes receiving profile data that defines one or more features associated with a plurality of individuals with one or more entitlements of those individuals. Each entitlement is indicative of target system access. The method further includes generating a model that includes one or more sets of rules where each set of rules is associated with an entitlement of the profile data. Each entitlement is indicative of target system/application access. Each rule within a set relates a combination of one or more features of the profile data with a confidence value. Profile data that defines one or more features associated with a target individual is received from a first user management system. A listing that includes one or more entitlements associated with the target individual, and confidence values associated with the one or more entitlements is generated based on the profile data and the rules.

Abstract: A method for controlling access to one or more of a plurality of target systems includes receiving profile data that defines one or more features associated with a plurality of individuals with one or more entitlements of those individuals. Each entitlement is indicative of target system access. The method further includes generating a model that relates the one or more features and the one or more entitlements of the plurality of individuals. Profile data that defines one or more features associated with a target individual is received from a first user management system. A listing that includes one or more entitlements associated with the target individual, and confidence values associated with the one or more entitlements is generated based on the profile data and the model. Each confidence value is indicative of whether the target individual should be granted a corresponding entitlement.

Abstract: A system and protocol for integrating a plurality of service providers across a plurality of domains with an application using a hosted platform have been described. The system involves registration of metadata corresponding to the service providers, their services, their types and their set of parameters. When a new integrating application is provided, then it also includes a wrapper protocol. The wrapper protocol includes six predefined methods. The hosted platform in turn can execute the request of the “integrating application” by internally connecting with the plurality of service providers across a plurality of domains and provide the output in a standard format. Since the wrapper protocol standardizes the format of communication (input & output), hence it reduces effort substantially at the end of the integrating application. The ability of the platform to increase the list of service providers is augmented as it relies on metadata for request generation and invocation.

Abstract: An access management robot facilitation system facilitates a robot to execute access management tasks on a target system.

Abstract: An access management robot facilitation system facilitates a robot to execute access management tasks on a target system.

Abstract: An operating sequence for a handheld computing device manages the device to automatically detect cues describing the device's environmental and user actions performed with the device, learn which cues and cue combinations are relevant to predict user actions, and then in response to occurrence of the relevant cues, predictively implementing the appropriate user action or configuring the device in anticipation of user action.

Abstract: An adaptation of standard edit distance spell-check algorithms leverages probability-based regional auto-correction algorithms and data structures for ambiguous keypads and other predictive text input systems to provide enhanced typing correction and spell-check features. Strategies for optimization and for ordering results of different types are also provided.