Abstract: A method for threat detection and enforcement in an internal network is disclosed. The method includes: receiving a network packet of a plurality of network packets for a traffic flow; inspecting the network packet to obtain packet information; generating, using the packet information, a flow identifier (ID) for the traffic flow; assigning, based on the flow ID, a trust score and a risk score for the network packet; and performing an enforcing action, applicable to the traffic flow, based on the trust score and risk score.

Abstract: A method operable in a security device cluster having a plurality of security devices each configured to receive respective data flows. The method includes receiving a first segment of a flow at a first security device of the plurality of security devices, sending the first segment of the flow toward a destination node without the first security device of the plurality of security devices asserting ownership over the flow, receiving, from the destination node, a second segment of the flow at a second security device of the plurality of security devices, the second segment of the flow being responsive to the first segment, asserting, by the second security device of the plurality of security devices, ownership over the flow, and forwarding, from the first security device, packets of the flow subsequently received by the first security device to the second security device.

Abstract: A method operable in a security device cluster having a plurality of security devices each configured to receive respective data flows. The method includes receiving a first segment of a flow at a first security device of the plurality of security devices, sending the first segment of the flow toward a destination node without the first security device of the plurality of security devices asserting ownership over the flow, receiving, from the destination node, a second segment of the flow at a second security device of the plurality of security devices, the second segment of the flow being responsive to the first segment, asserting, by the second security device of the plurality of security devices, ownership over the flow, and forwarding, from the first security device, packets of the flow subsequently received by the first security device to the second security device.

Abstract: Presented herein are techniques for determining an initiator of network traffic, collecting at each of multiple instants of time, usage data for network traffic associated with the initiator, and storing historical usage data based on updates from usage data for the network traffic over time. Current usage data are compared to historical usage data of the initiator to determine whether current usage data are within an expected distribution with respect to the historical usage data. Based upon the comparison between the current usage data and the historical usage data, an inspection threshold is selected for traffic flows from the initiator, and a proportion of traffic flows associated with the initiator is determined to be inspected based on the inspection threshold.

Abstract: A tidal gate system for a regulating the flow of tidal waters between a first side and a second side of a main opening. The tidal gate system comprises a primary door member defining a regulated opening, a secondary door member sized and dimensioned to cover the regulated opening, a door float, and a regulation float Gravity biases the primary and secondary door members into their closed positions. The door float causes the secondary door assembly to move out of its closed position when a primary water level on the first side of the main opening exceeds a predetermined regulated opening level. The regulation float is operatively connected to the secondary door assembly such that the regulation float forces the secondary door assembly into its closed position when the primary water level exceeds a predetermined regulation float level.

Abstract: The present invention is a high performance communications cable exhibiting reduced crosstalk between transmission media that includes a core support-separator having a multi-anvil shaped profile which defines a clearance to maintain a spacing between transmission media or transmission media pairs. The core may be formed of a conductive or insulative material to further reduce crosstalk. A method of producing a cable introduces a core as described above into the cable assembly. The multi-anvil shaped core support-separator can be either interior to the cable jacket or be employed singularly without the benefit of a jacket and extends along the longitudinal length of the communications cable. Alternatively, with no jacket for cable “male-up”, a portion of the jacket wherein a thin layer of material can act as a type of skin for future mechanical protection is provided. The multi-anvil shaped core support-separator has a central region that is either solid or partially solid.