Abstract: A system for managing energy usage of equipment in a building network includes one or more processing circuits configured to select a plurality of points, equipment, spaces, or objects of the building network; perform a bulk modification of the plurality of the points, equipment, spaces, or objects of the building network by providing a bulk modification command via the building network; analyze time series data associated with the points, equipment, spaces, or objects of the building network using values provided via the bulk modification; and manage energy usage of the equipment based on a result of analyzing the time series data associated with the points, equipment, spaces, or objects of the building network.

Abstract: Embodiments relate to sideband instruction address translation. According to an aspect, a computer-implemented method includes managing, within a processor, an instruction effective-to-real-address table (I-ERAT) separate from a main ERAT, where the I-ERAT has a smaller storage capacity than the main ERAT. The method also includes indicating an I-ERAT hit based on determining that an instruction address for an instruction cache is stored in the I-ERAT, bypassing an arbitrator within the processor and sending a translated address from the I-ERAT to the instruction cache based on detecting the I-ERAT hit, and sending an address translation request through the arbitrator to the main ERAT based on an I-ERAT miss and writing a translation result of the main ERAT to the I-ERAT.

Abstract: The present disclosure relates to methods, systems, and computer readable media for analyzing log files for a wide variety of services (e.g., cloud computing services or microservices) to determine whether the services are operating as designed over some period of time associated with the log file(s). The present disclosure includes features and functionality for training or otherwise generating a model being configured to predict whether portions of an input log file include data reflective of normal operations of a corresponding service used to generate the input log file. The present disclosure provides a domain-agnostic approach to training an outlier detection model to analyze log files for a wide variety of services.

Abstract: Aspects of the present disclosure leverage the association of the multiple user equipments (UEs) in order to minimize the need for separate random access channel (RACH) procedures and beam management procedure for each UE within the group, and in turn minimize network congestion and probability of traffic collisions.

Abstract: Placement of macros of a circuit design includes mapping the macros to types of sub-circuits of an integrated circuit (IC). The IC includes anchors and instances of each type of the types of sub-circuits. The macros are grouped based on couplings of the macros to the anchors specified in the circuit design. Each group includes one or more macros, and the one or more macros in each group are all coupled to the same set of one or more anchors. A location is selected from alternative locations for each group of macros based on a distance of the location from the same set of anchors. Each location includes one or more instances of one or more types of the types of sub-circuits. The circuit design is placed and routed after selecting the location for each group, and implementation data is generated for making an IC that implements the circuit design.

Abstract: Disclosed herein is a server management apparatus, comprising: a server information acquisition unit configured to acquire configuration information and identifier information of a plurality of servers that constitute a network; a script generation unit configured to generate a script for booting each server for each of the plurality of servers based on the configuration information and the identifier information of the plurality of servers acquired; a remote disk setting unit configured to write the script generated by the script generation unit to a remote disk to be mounted on each of the plurality of servers to set the remote disk; and a command issuance unit configured to issue, to each of the plurality of servers via the network, a command to mount the remote disk set by the remote disk setting unit on a corresponding server.

Abstract: Methods and means for providing a UE access to an external network are disclosed. In the methods it is determined that a that a secondary authentication procedure is required in order for the UE to access the external network, and then providing, to an entity of the external network, information relating to the UE. The UE related information is included in a message in relation to the secondary authentication procedure between the UE and the entity of the external network.

Abstract: A system includes processing circuitry; and a memory connected to the processing circuitry, wherein the memory is configured to store executable instructions that, when executed by the processing circuitry, facilitate performance of operations, including receive a policy template identifier; receive network element selections; receive network element filter parameters; receive network event parameters; receive conjunctive operation parameters; receive action configuration parameters; and create a network policy template to monitor event messages and perform an action based on the action configuration parameters.

Abstract: A controller can securely publish an application of a tenant by securely extending a network fabric into the networks of the tenant with virtual private networks and NAT. After a tenant deploys an application into one or more networks of the tenant, the tenant can indicate select applications to publish. The network controller assigns a network address from the routable address space of the network fabric to the application and a network address aggregate to each application connector that will front an instance of the application, which securely extends the network fabric into the tenant network. The network controller configures NAT rules in the network fabric and on the application connector to create a route for traffic of the application through the network fabric to the application instance using a fully qualified domain name assigned to the application without exposing a private network address of the application instance and preserving security of other resource on the tenant network.

Abstract: Techniques are provided for providing a storage abstraction layer for a composite aggregate architecture. A storage abstraction layer is utilized as an indirection layer between a file system and a storage environment. The storage abstraction layer obtains characteristic of a plurality of storage providers that provide access to heterogeneous types of storage of the storage environment (e.g., solid state storage, high availability storage, object storage, hard disk drive storage, etc.). The storage abstraction layer generates storage bins to manage storage of each storage provider. The storage abstraction layer generates a storage aggregate from the heterogeneous types of storage as a single storage container. The storage aggregate is exposed to the file system as the single storage container that abstracts away from the file system the management and physical storage details of data of the storage aggregate.

Abstract: Presented are user-friendly battery powered touchless identity card emulator systems and methods that allow existing ID management installations, such as physical card reader systems, to securely operate without requiring a physical key and irrespective of type, model, shape, and size of reader and card format. Various embodiments integrate wireless functionality to existing systems to enable mobile access to provide advanced user/identity management capabilities for access control systems.

Abstract: Discussed herein is gate spacing in integrated circuit (IC) structures, as well as related methods and components. For example, in some embodiments, an IC structure may include: a first gate metal having a longitudinal axis; a second gate metal, wherein the longitudinal axis of the first gate metal is aligned with a longitudinal axis of the second gate metal; a first gate contact above the first gate metal; a second gate contact above the second gate metal; and an unordered region having an unordered lamellar pattern, wherein the unordered region is coplanar with the first gate contact and the second gate contact.

Abstract: A system for facilitating secure communications accesses a secure element in response to determining that an authorized user operates the system. The system causes a light emitter to emit an output light signal for detection by a second system. The output light signal is emitted according to a predefined field of view, which operates as a constraint to prevent devices outside of the field of view from detecting the output light signal. The system also configures the light detector to detect a second output light signal emitted by a second light emitter of the second system. In response to (i) detection of the output light signal by a second light detector of the second system and (ii) detection of the second output light signal by the light detector, the system enables secure communication between the system and the second system.

Abstract: Presented are user-friendly battery-powered touchless identity card emulator systems and methods that allow existing ID management installations, such as physical card reader systems, to securely operate without requiring a physical key and irrespective of type, model, shape, and size of reader and card format. Various embodiments that emulate physical identity cards integrate wireless functionality to existing systems to enable mobile access to provide advanced user/identity management capabilities for touchless access control systems.

Abstract: Gate-all-around integrated circuit structures having pre-spacer-deposition cut gates are described. For example, an integrated circuit structure includes a first vertical arrangement of horizontal nanowires and a second vertical arrangement of horizontal nanowires. A first gate stack is over the first vertical arrangement of horizontal nanowires, and a second gate stack is over the second vertical arrangement of horizontal nanowires. An end of the second gate stack is spaced apart from an end of the first gate stack by a gap. The integrated circuit structure also includes a dielectric structure having a first portion forming a gate spacer along sidewalls of the first gate stack, a second portion forming a gate spacer along sidewalls of the second gate stack, and a third portion completely filling the gap, the third portion continuous with the first and second portions.

Abstract: Systems, apparatus, articles of manufacture, and methods are disclosed to manage network slices. An example apparatus includes interface circuitry to acquire network information, machine-readable instructions, and at least one processor circuit to be programmed by the machine-readable instructions to reserve first network slices to satisfy service level objectives (SLOs) corresponding to first nodes, reserve second network slices to satisfy SLOs corresponding to second nodes, and reconfigure the first network slices to accept network communications from the second nodes when the network communications from the second nodes exceed a performance metric threshold.

Abstract: Secure, authenticated communication is enabled between an initiator (12) (e.g., a user equipment) and a responder (14) (e.g., an authentication server function, AUSF, or a subscription de-concealing function, SIDF). The initiator (12) transmits a message (20) to the responder (14) over a secure communication channel (16). The message (20) may include information indicating a third party (18) whose signing of data (e.g., bound to the secure communication channel (16)) will authenticate the responder (14) to the initiator (12). The responder (14) correspondingly retrieves from the third party (18) data that is signed by the third party (18) and transmits a response (24) to the initiator (12) that includes the retrieved data. The initiator (12) receives this response (24) and determines whether or not the responder (14) is authenticated by determining whether or not the response (24) includes data that is signed by the third party (18).

Abstract: Methods and apparatuses for providing a permissions-aware search and knowledge management system that incorporates user suggested results, document verification, and intelligent user activity tracking across group hierarchies to improve the quality and relevance of search results are described. The permissions-aware search and knowledge management system may enable content stored across a variety of local and cloud-based data stores to be indexed, searched, and displayed to authorized users. The identification and ranking of relevant documents corresponding with a user's search query may take into account user suggested results from the user and others assigned to the same group as the user, whether the underlying content of a search result was verified by a content owner as being up-to-date, the amount of time that has passed since the underlying content was verified by the content owner, and the recent activity of the user and related group members.

Abstract: A method and apparatus for planning a wireless communication network operating in a spectrum-controlled radio band and determining spectrum availability at an enterprise location. A plurality of network models are generated using machine learning techniques, the network models are provided to a network planner unit, input is received regarding intended deployment, and spectrum availability is determined responsive to the enterprise location. The number of BS/APs needed is estimated, and an enterprise network may be planned and deployed. The enterprise network is monitored, and if network operation is not meeting expected performance, the models may be retrained and the network planner updated. Spectrum availability is determined by registering a discovery group with an SAS at a location to provide spectrum availability, and repeating for each location. The method may be periodically performed to generate a time series of data which may be analyzed to provide spectrum availability.

Abstract: A system comprising a real time clock, RTC, and a processor configured to execute a secure application to provide a secure clock and configured to operate in a first low-power-mode and a first normal-mode, and a non-secure application configured to perform a clock modification procedure and configured to operate in a second low-power-mode and a second normal-mode, the system configured to perform a secure clock initialisation procedure comprising obtaining a record of a current time from the RTC based on a transition from the first low-power-mode to the first normal-mode, wherein the secure application is configured to perform a clock update procedure including updating the RTC with a secure record of the current time and wherein the system is further configured to prevent performing the clock modification procedure after the clock update procedure has been performed.