Abstract: Methods, systems, and apparatus, including computer programs encoded on computer storage media, for dynamically reducing an aperture size to reduce overhead. For example, a server can receive a first transmission from a first terminal through a communication network. The server can determine a timing offset associated with the first terminal based on the first transmission. The server can determine an aperture window size for an aperture window for the first terminal based on the determined timing offset associated with the first terminal. The server can generate allocation data that assigns communication resources to one or more terminals that includes the first terminal, the allocation data being based on the determined aperture window size for the first terminal. The server can communicate with the one or more terminals to indicate the communication resources respectively allocated to the one or more terminals.

Abstract: Examples relate to configuring dynamic user roles that can be managed and distributed by a cloud-based user role service. In this way, dynamic user roles may be distributed in a more scalable manner than has been previously possible. Upon associating or connecting to an access point (AP), for example, a user device can be authenticated and assigned a user role. The AP can request the user role configuration from the cloud-based user role service. The cloud-based user role service can additionally distribute the same user role configuration/details to all neighboring APs. In this way, a user device can move, roam, or otherwise associate to another AP that post-distribution, already has the (dynamic) user role configuration, which can simply be applied to the user device.

Abstract: Methods for extracting from microalgae biomass valuable biomaterials, including polysaccharides, which can be used as coatings (biofilms) and other applications are described. The methods provide for partial separation of biomaterials into fractions enriched in different materials, which increases the utility and value of the original biomass, including a protein-enriched fraction, a polysaccharide-enriched fraction, and a lignin-rich fraction. By using the methods of the invention, a biomass source which is currently underutilized can be refined and processed into higher value products, leaving very little or no left-over residue material. The methods can advantageously be used for utilization and valuation of left-over biomass after astaxanthin extraction from microalgae.

Abstract: Certain aspects of the present disclosure provide techniques and apparatus for distributing a workload across computing devices within a distributed computing system. An example method generally includes receiving, from at least one respective computing device of a plurality of computing devices in a distributed computing environment, information defining a respective power neural network. The respective power neural network generally is trained to predict power utilization for the respective computing device for a task to be executed on the respective computing device. For one or more computing devices, power utilization is predicted for a workload to be executed within the distributed computing environment based on respective power neural networks associated with the one or more computing devices. Instructions to execute at least a portion of the workload based on the predicted power utilizations for the one or more computing devices are transmitted to the plurality of computing devices.

Abstract: Systems and methods are provided for seamless roaming in a network. First, a client device is authenticated at a first access point of the network. Next, a processor selectively determines, among remaining access points in the network, second access points at which respective precursor keys, such as Pairwise Master Keys R1 (PMK-R1s) are to be computed. The second access points are determined based on any of respective path losses from the first access point to the second access points and respective historical frequencies at which the client device associates at the respective remaining access points. For the second access points, the respective PMK-R1s are computed and transmitted to the second access points to be cached. Next, following a request from the client device to reassociate to a second access point of the second access points, the client device is authenticated at the second access point based on a corresponding PMK-R1.

Abstract: Systems and methods are provided for prevent network outages and improve communication effectiveness by implementing an automatic discovery method that enables the AP to act dynamically to determine its persona as a WAN AP or LAN AP. Based on the determination, the AP can receive the appropriate configuration settings in a configuration file from the central controller (e.g., Aruba central config service) for its dynamic persona. In some examples, the administrator user may define an AP identifier (e.g., MAC addresses) of the network devices in the corresponding microbranch for authentication and authorization.

Abstract: Systems and methods are provided for authenticating client devices in microbranch deployment. In response to a client device connecting to a LAN AP, a first client-entry associated with the client device can be created to indicate that the client device is local to the LAN AP. An authentication request can be transmitted to a WAN AP to be forwarded to an authentication server. A second client-entry associated with the client device at the WAN AP can be created based on the authentication request. Upon successful authentication, the second client-entry can be designated as being foreign to the WAN AP based on the first client-entry being local to the LAN AP. Accordingly, data packets from the client device can be analyzed via a first firewall of the LAN AP, while bypassing a second firewall of the WAN AP based on the foreign designation of the second client-entry at the WAN AP.

Abstract: Systems and methods are provided for prevent network outages and improve communication effectiveness by implementing an automatic discovery method that enables the AP to act dynamically to determine its persona as a WAN AP or LAN AP. Based on the determination, the AP can receive the appropriate configuration settings in a configuration file from the central controller (e.g., Aruba central config service) for its dynamic persona. In some examples, the administrator user may define an AP identifier (e.g., MAC addresses) of the network devices in the corresponding microbranch for authentication and authorization.

Abstract: A burst mode time division multiple access (TDMA) data processing system can determine burst time plans (BTPs). The burst mode TDMA data processing system can receive burst mode time division multiple access (TDMA) data. The burst mode TDMA data can be distributed among processors based on the BTPs. The distributed burst mode TDMA data can be demodulated and decoded the using the processors and the demodulated and decoded burst mode TDMA data can be output.

Abstract: A lock assembly is disclosed to lock a moveable structure to a fixed structure. The lock assembly includes an electric actuator operable to move a locking lug between first and second axial positions to correspond with a locked and unlocked configuration of the lock assembly. A resilient member can couple the locking lug to the electric actuator and drive the locking lug between the first and second positions.

Abstract: A burst mode time division multiple access (TDMA) data processing system can determine burst time plans (BTPs). The burst mode TDMA data processing system can receive burst mode time division multiple access (TDMA) data. The burst mode TDMA data can be distributed among processors based on the BTPs. The distributed burst mode TDMA data can be demodulated and decoded the using the processors and the demodulated and decoded burst mode TDMA data can be output.

Abstract: Provided herein is a system and method for providing a vehicle navigation in response to broken or uncalibrated vehicle sensors. The system comprises a sensor to capture data, one or more processors, and a memory storing instructions that cause the system to determine whether the sensor is broken or uncalibrated based on the data, and to limit a range of motion of the vehicle when the sensor is determined to be broken or uncalibrated. The limiting a range of motion of the vehicle includes limiting a number of driving options for the vehicle when the sensor is broken.

Abstract: Systems and methods are provided for seamless roaming in a network. First, a client device is authenticated at a first access point of the network. Next, a processor selectively determines, among remaining access points in the network, second access points at which respective precursor keys, such as Pairwise Master Keys R1 (PMK-R1s) are to be computed. The second access points are determined based on any of respective path losses from the first access point to the second access points and respective historical frequencies at which the client device associates at the respective remaining access points. For the second access points, the respective PMK-R1s are computed and transmitted to the second access points to be cached. Next, following a request from the client device to reassociate to a second access point of the second access points, the client device is authenticated at the second access point based on a corresponding PMK-R1.

Abstract: Systems and methods are provided for seamless roaming in a network. First, a client device is authenticated at a first access point of the network. Next, a processor selectively determines, among remaining access points in the network, second access points at which respective precursor keys, such as Pairwise Master Keys R1 (PMK-R1s) are to be computed. The second access points are determined based on any of respective path losses from the first access point to the second access points and respective historical frequencies at which the client device associates at the respective remaining access points. For the second access points, the respective PMK-R1s are computed and transmitted to the second access points to be cached. Next, following a request from the client device to reassociate to a second access point of the second access points, the client device is authenticated at the second access point based on a corresponding PMK-R1.

Abstract: Examples relate to configuring dynamic user roles that can be managed and distributed by a cloud-based user role service. In this way, dynamic user roles may be distributed in a more scalable manner than has been previously possible. Upon associating or connecting to an access point (AP), for example, a user device can be authenticated and assigned a user role. The AP can request the user role configuration from the cloud-based user role service. The cloud-based user role service can additionally distribute the same user role configuration/details to all neighboring APs. In this way, a user device can move, roam, or otherwise associate to another AP that post-distribution, already has the (dynamic) user role configuration, which can simply be applied to the user device.

Abstract: Some examples relate to distributing application classification entries to network devices. An example includes receiving, by a processing resource in a cloud computing system, an application classification entry for an application from respective network devices on a network. The application classification entry may comprise a given application identifier for identifying the application and control information for routing a network packet originating from the application. For the given application identifier, the processing resource may generate a consolidated set of application classification entries, based on the application classification entry received from respective network devices. The processing resource may then determine appropriate network devices to distribute the consolidated set of application classification entries.

Abstract: Network address translation (NAT) flow migration between wireless access points (APs) in a manner that ensures that client devices can seamlessly roam between APs is described. An AP on which a NAT flow is first created is designated as an anchor NAT flow AP for that NAT flow during the lifetime of the NAT flow. When a non-anchor AP to which a client has roamed receives a packet that matches an active NAT flow, the non-anchor AP forwards the packet to the anchor AP for that NAT flow. The roamed AP may consult NAT flow uplink session information to identify the anchor AP as a next hop for the matching packet. Upon receipt, the anchor AP source NATs the packet with its own IP address and routes the packet towards the Internet. Downlink packets that match the NAT flow are routed in a similar manner through the anchor AP.

Abstract: Some examples relate to controlling network traffic pertaining to a domain name based on a Domain Name System-Internet Protocol address (DNS-IP) mapping, An example includes receiving, in a cloud computing system, a local DNS-IP mapping for a domain name from respective Access Points (APs) in a virtual local area network (VLAN) along with geographical information of respective APs; generating a global DNS-IP mapping database comprising the local DNS-IP mapping for the domain name received from respective APs in the VLAN along with geographical information of respective APs, in the cloud computing system; and determining appropriate APs to distribute the global DNS-IP mapping, based on location information of respective APs.

Abstract: Some examples relate to distributing application classification entries to network devices. An example includes receiving, by a processing resource in a cloud computing system, an application classification entry for an application from respective network devices on a network. The application classification entry may comprise a given application identifier for identifying the application and control information for routing a network packet originating from the application. For the given application identifier, the processing resource may generate a consolidated set of application classification entries, based on the application classification entry received from respective network devices. The processing resource may then determine appropriate network devices to distribute the consolidated set of application classification entries.

Abstract: Methods, systems, and apparatus, including computer programs encoded on computer storage media, for dynamically reducing an aperture size to reduce overhead. In some implementations, a server can receive a first transmission from a first terminal through a communication network. The server can determine a timing offset associated with the first terminal based on the first transmission. The server can determine an aperture window size for an aperture window for the first terminal based on the determined timing offset associated with the first terminal. The server can generate allocation data that assigns communication resources to one or more terminals that includes the first terminal, the allocation data being based on the determined aperture window size for the first terminal. The server can communicate with the one or more terminals to indicate the communication resources respectively allocated to the one or more terminals.