Abstract: A computing device may authenticate a user of the computing device as an authorized user. The computing device may, in response to authenticating the user of the computing device as the authorized user, transition from a locked state to an unlocked state. The computing device may, in response to authenticating the user of the computing device as the authorized user, determine one or more computing devices that are proximate to the computing device. The computing device may, in response to determining the one or more computing devices that are proximate to the computing device, send to each of the one or more computing devices an indication of successful user authentication by the computing device to enable each of the one or more computing devices to transition from the locked state to the unlocked state without performing user authentication.

Abstract: Disclosed herein are embodiments of an optical character recognition pre-processing software system, which is integrated into a language translation system to provide automated cleaning and correction of noisy and degraded document images to enable seamless and efficient optical character recognition processing and machine translation of information within the document images.

Abstract: Disclosed herein are embodiments of systems, methods, and products comprise a computing device, which allows a device to be used in different classification levels by powering the device down and booting to a different classified level without the need to switch hard drives. The disclosed software shield and persona switcher (Shielder) module provides independent application environments (personas) for separate security domains while allowing fast transition between personas. Shielder module supports multiple security classification via a minimal system storage partitioning. Shielder module allows efficient collection and reallocation of memory and persistent storage according to need and priority. Shielder module provides secure management of communication media by directing the system communication according to the security profile of the active persona.

Abstract: In general, the techniques of this disclosure describe a system for secure serverless authentication. An authenticator node of the system may receive indications of values of authentication factors associated with an entity. The authenticator node may hash the values of the authentication factors to generate double hashed values of the authentication factors. The authenticator node may compare the double hashed values of the authentication factors with trusted authentication information that is encoded in entity credentials associated with the entity. The authenticator node may determine, based at least in part on comparing the double hashed values of the authentication factors with the trusted authentication information, whether the entity is a trusted entity.

Abstract: An example method includes receiving an indication of a selection of a first application environment that includes a first virtual environment associated with a first security domain and is configured to isolate execution of software applications within the first application environment, suspending execution of a second application environment that includes a second virtual environment associated with a second security domain different from the first security domain, initiating execution of the first application environment, identifying information associated with the first security domain and provided by the first application environment that is to be sent to an external computing device associated with the first security domain, selecting communication network(s) from one or more communication networks that are each available to the mobile computing device for data communication, encrypting, based on the first security domain and network(s), the information, and sending, to the external computing device via

Abstract: Described herein are methods and systems to send/receive medical data from one or more electronic devices to a secondary medical unit in delayed, intermittently-connected, low-bandwidth (DIL) environments. An application executing on the electronic devices may, in response to detecting a disruption within a communication network, execute an offline communication protocol to transmit medical data among a predetermined number of other electronic devices, wherein the offline communication protocol does not use the communication network. The application may then receive a request from a server of the secondary medical unit to transmit at least a part of the medical data. In response to authenticating the request, the application then transmits the medical data using an online communication protocol that uses the communication network or using an offline communication protocol.

Abstract: Disclosed herein are embodiments of an optical character recognition pre-processing software system, which is integrated into a language translation system to provide automated cleaning and correction of noisy and degraded document images to enable seamless and efficient optical character recognition processing and machine translation of information within the document images.

Abstract: Disclosed herein are embodiments of an optical character recognition pre-processing software system, which is integrated into a language translation system to provide automated cleaning and correction of noisy and degraded document images to enable seamless and efficient optical character recognition processing and machine translation of information within the document images.

Abstract: Disclosed herein are embodiments of systems, methods, and products comprise a computing device, which allows a device to be used in different classification levels by powering the device down and booting to a different classified level without the need to switch hard drives. The disclosed software shield and persona switcher (Shielder) module provides independent application environments (personas) for separate security domains while allowing fast transition between personas. Shielder module supports multiple security classification via a minimal system storage partitioning. Shielder module allows efficient collection and reallocation of memory and persistent storage according to need and priority. Shielder module provides secure management of communication media by directing the system communication according to the security profile of the active persona.

Abstract: A method of routing an Internet Protocol (IP) packet from a routing device is provided. The method includes receiving a first IP packet having a first IP header and a first IP data field, the first IP packet having a final destination corresponding to a destination device communicatively coupled to the routing device via a network route including at least two hops between the routing device and the final destination. A second IP packet having a second IP header and a second IP data field is generated. The second IP data field is a copy of the first IP data field, and a destination IP address field in the second IP header includes an IP address of a next hop on the network route. The second IP packet does not include an IP address of the final destination in the second IP header.

Abstract: A method of routing a packet from a routing device includes receiving a first packet having a first header and a first data field. The first header has a final destination corresponding to a destination device communicatively coupled to the routing device via at least two parallel network links. A second packet having a second header and a second data field is sent over the first network link. The second data field is identical to the first data field. A destination address in the second header corresponds to a device on a first of the parallel network links. A third packet having a third header and a third data field is sent over the second network link. The third data field is identical to the first data field. a destination address in the third header corresponds to a device on a second of the parallel network links.

Abstract: An example method includes receiving an indication of a selection of a first application environment that includes a first virtual environment associated with a first security domain and is configured to isolate execution of software applications within the first application environment, suspending execution of a second application environment that includes a second virtual environment associated with a second security domain different from the first security domain, initiating execution of the first application environment, identifying information associated with the first security domain and provided by the first application environment that is to be sent to an external computing device associated with the first security domain, selecting communication network(s) from one or more communication networks that are each available to the mobile computing device for data communication, encrypting, based on the first security domain and network(s), the information, and sending, to the external computing device via

Abstract: A method of routing an Internet Protocol (IP) packet from a routing device is provided. The method includes receiving a first IP packet having a first IP header and a first IP data field, the first IP packet having a final destination corresponding to a destination device communicatively coupled to the routing device via a network route including at least two hops between the routing device and the final destination. A second IP packet having a second IP header and a second IP data field is generated. The second IP data field is a copy of the first IP data field, and a destination IP address field in the second IP header includes an IP address of a next hop on the network route. The second IP packet does not include an IP address of the final destination in the second IP header.

Abstract: A communication hub that manages communication signals and sensor signals is provided. Communication signal gateways receive and transmit the communication signals with a plurality of different communication signal formats. Sensor signal gateways in turn receive the sensor signals with a plurality of different sensor signal formats. The controller dynamically interfaces the different communication signal formats of the received communication signals with a communication hub signal format to establish communication links with the communication systems associated with the received communication signals. The controller further dynamically interfaces the different sensor signal formats of the received sensor signals into the communication hub signal format used by the communication hub to gather sensor information. The controller further establishes at least one routing path to a destination hub using at least one of the established communication links.

Abstract: An example method includes receiving an indication of a selection of a first application environment that includes a first virtual environment associated with a first security domain and is configured to isolate execution of software applications within the first application environment, suspending execution of a second application environment that includes a second virtual environment associated with a second security domain different from the first security domain, initiating execution of the first application environment, identifying information associated with the first security domain and provided by the first application environment that is to be sent to an external computing device associated with the first security domain, selecting communication network(s) from one or more communication networks that are each available to the mobile computing device for data communication, encrypting, based on the first security domain and network(s), the information, and sending, to the external computing device via

Abstract: A communication hub that manages communication signals and sensor signals is provided. Communication signal gateways receive and transmit the communication signals with a plurality of different communication signal formats. Sensor signal gateways in turn receive the sensor signals with a plurality of different sensor signal formats. The controller dynamically interfaces the different communication signal formats of the received communication signals with a communication hub signal format to establish communication links with the communication systems associated with the received communication signals. The controller further dynamically interfaces the different sensor signal formats of the received sensor signals into the communication hub signal format used by the communication hub to gather sensor information. The controller further establishes at least one routing path to a destination hub using at least one of the established communication links.

Abstract: An example method includes receiving an indication of a selection of a first application environment that includes a first virtual environment associated with a first security domain and is configured to isolate execution of software applications within the first application environment, suspending execution of a second application environment that includes a second virtual environment associated with a second security domain different from the first security domain, initiating execution of the first application environment, identifying information associated with the first security domain and provided by the first application environment that is to be sent to an external computing device associated with the first security domain, selecting communication network(s) from one or more communication networks that are each available to the mobile computing device for data communication, encrypting, based on the first security domain and network(s), the information, and sending, to the external computing device via

Abstract: A method of routing an Internet Protocol (IP) packet from a routing device is provided. The method includes receiving a first IP packet having a first IP header and a first IP data field, the first IP packet having a final destination corresponding to a destination device communicatively coupled to the routing device via a network route including at least two hops between the routing device and the final destination. A second IP packet having a second IP header and a second IP data field is generated. The second IP data field is a copy of the first IP data field, and a destination IP address field in the second IP header includes an IP address of a next hop on the network route. The second IP packet does not include an IP address of the final destination in the second IP header.

Abstract: A single routable network and an integrated router having a plurality of network interfaces for such network having a plurality of heterogeneous subnetworks having different network parameters, each of the plurality of network interfaces configured to be connected to a different one of the plurality of heterogeneous subnetworks. The integration router is configured to automatically connect with each of the plurality of heterogeneous subnetworks.