Abstract: One embodiment provides a method, including: producing, for each of a plurality of containers, a resource profile for each thread in each of the plurality of containers; identifying, for each of the plurality of containers and from, at least in part, the resource profiles, container dependencies between threads on a single of the plurality of containers; determining service dependencies between threads across different of the plurality of containers; scheduling, based upon the container dependencies and the service dependencies, threads to cores, wherein the scheduling is based upon minimizing thread processing times; and publishing the container dependencies and the service dependencies on a registry of the node clusters.

Abstract: A processor may collect process information associated with a peer node of a self-auditing blockchain. The processor may generate an imprint from the process information. The processor may compare the imprint from the peer node to an imprint consensus to detect an error. The error may indicate that the peer node has been compromised.

Abstract: Methods, systems, and computer program products for an automated resource request mechanism for heterogeneous infrastructure using profiling information are provided herein.

Abstract: A method, system, and computer program product to protect accelerators from malicious network functions. One embodiment of the method may comprise categorizing an application runtime into a plurality of operational phases, and enforcing one of a plurality of phase-specific security restrictions at each of the plurality of operational phases. The method may further comprise analyzing the application runtime to automatically generate the plurality of phase-specific security restrictions.

Abstract: An example operation may include one or more of receiving, via a blockchain peer of a blockchain network, a request to execute chaincode of a blockchain of the blockchain network from a client application, offloading one or more of chaincode operations of the request to hardware on a network switch via a network path between the blockchain peer and the network switch, receiving execution results of the offloaded one or more chaincode operations from the network switch via the network path, and forwarding the execution results received from the network switch to the client application.

Abstract: A processor may collect process information associated with a peer node of a self-auditing blockchain. The processor may generate an imprint from the process information. The processor may compare the imprint from the peer node to an imprint consensus to detect an error. The error may indicate that the peer node has been compromised.

Abstract: An example operation may include one or more of creating, via chaincode, a link between a non-participant system and a data field stored on a private blockchain, where the data field comprises participant data of the private blockchain, detecting a change in a value of the participant data based on a read operation from the data field stored on the private blockchain, generating a notification of the changed value of the participant data, and transmitting the notification to the non-participant system based on the link between the non-participant system and the data field.

Abstract: An example operation may include one or more of receiving a data block from a blockchain node, determining a current transaction state of each of a plurality of endorser nodes based on transaction history stored within read and write sets of the data block, determining a current load of each of the plurality of endorser nodes based on performance data stored within the data block, and outputting information about the current transaction state and the current load of each of the plurality of endorser nodes via a user interface.

Abstract: An example operation may include one or more of receiving system calls captured from a plurality of peer nodes of a blockchain that occurred within a predetermined period of time, determining a subset of system calls among the received system calls that correspond to a blockchain process performed during the predetermined period of time, detecting a free-riding peer node from among the plurality of peer nodes based on the identified subset of system calls with respect to system calls of the free-riding peer node within the predetermined period of time, and storing an indicator of the free-riding peer node.

Abstract: An example operation may include one or more of receiving system calls captured from a plurality of peer nodes of a blockchain that occurred within a predetermined period of time, determining a subset of system calls among the received system calls that correspond to a blockchain process performed during the predetermined period of time, detecting a free-riding peer node from among the plurality of peer nodes based on the identified subset of system calls with respect to system calls of the free-riding peer node within the predetermined period of time, and storing an indicator of the free-riding peer node.

Abstract: An example operation may include one or more of creating, via chaincode, a link between a non-participant system and a data field stored on a private blockchain, where the data field comprises participant data of the private blockchain, detecting a change in a value of the participant data based on a read operation from the data field stored on the private blockchain, generating a notification of the changed value of the participant data, and transmitting the notification to the non-participant system based on the link between the non-participant system and the data field.

Abstract: A method for securing data on a mobile device that supports both enterprise and personal applications. According to the method, information flows and data accesses are tracked on the device at run-time to enable access control decisions to be performed based on a policy, such as an enterprise privacy policy that has been distributed to the device from an enterprise server. The policy may be updated by events at the device as well as at the enterprise server.

Abstract: A system is provided for securing data on a mobile device that supports both enterprise and personal applications. According to the technique, information flows and data accesses are tracked on the device at run-time to enable access control decisions to be performed based on a policy, such as an enterprise privacy policy that has been distributed to the device from an enterprise server. The policy may be updated by events at the device as well as at the enterprise server.

Abstract: A method and system are provided for securing data on a mobile device that supports both enterprise and personal applications. According to the method, information flows and data accesses are tracked on the device at run-time to enable access control decisions to be performed based on a policy, such as an enterprise privacy policy that has been distributed to the device from an enterprise server. The policy may be updated by events at the device as well as at the enterprise server.

Abstract: A method for securing data on a mobile device that supports both enterprise and personal applications. According to the method, information flows and data accesses are tracked on the device at run-time to enable access control decisions to be performed based on a policy, such as an enterprise privacy policy that has been distributed to the device from an enterprise server. The policy may be updated by events at the device as well as at the enterprise server.