Abstract: An electronic device fetches first information from memory devices concerning errors associated with radiation effects in the memory devices and fetches second information about system performance associated with the electronic device. The electronic device monitors current parameters of the memory devices and calculates parameter values for configuration of the memory devices based on the fetched first information, the fetched second information, and the monitored current parameters, the calculating performed to adjust the parameter values to improve a metric of the system performance against the errors associated with the radiation. The electronic device implements the calculated parameter values for the configuration of the memory devices.

Abstract: Systems and methods for instituting redistribution of wireless clients to improve service, comprising via access point (AP), multiple APs acting in concert, and/or a central entity, in connection with a network, allowing a client to associate; deciding that an associated client should be redistributed based on a connection metric, wherein the decision is based on at least one of, a probability calculation, network metric and a threshold comparison; and via the AP, sending the associated client a trigger, wherein the trigger is at least one of, a redistribution request and a disconnect message.

Abstract: Systems and methods for instituting redistribution of wireless clients to improve service, comprising via access point (AP), multiple APs acting in concert, and/or a central entity, in connection with a network, allowing a client to associate; deciding that an associated client should be redistributed based on a connection metric, wherein the decision is based on at least one of, a probability calculation, network metric and a threshold comparison; and via the AP, sending the associated client a trigger, wherein the trigger is at least one of, a redistribution request and a disconnect message.

Abstract: Method, apparatus, and computer program product example embodiments provide control services for controlling devices with body-action input devices. An example method includes subscribing, by a control service, to one or more sensor signals from a selected body-action input device, the sensor signals including raw sensor data corresponding to one or more body-actions with the selected input device. The control service analyzes, using a selected component control service, the raw sensor data, to identify a body-action input corresponding to the body-actions with the selected input device. The control service converts, using the selected component control service, the identified body-action input, into one or more control signals, to control the selected controlled device corresponding to body-actions with the selected input device. The control service then provides the control signals to control the selected controlled device in response to the body-actions with the selected input device.

Abstract: Systems and methods for instituting redistribution of wireless clients to improve service, comprising via access point (AP), multiple APs acting in concert, and/or a central entity, in connection with a network, allowing a client to associate; deciding that an associated client should be redistributed based on a connection metric, wherein the decision is based on at least one of, a probability calculation, network metric and a threshold comparison; and via the AP, sending the associated client a trigger, wherein the trigger is at least one of, a redistribution request and a disconnect message.

Abstract: Systems and methods for instituting redistribution of wireless clients to improve service, comprising via access point (AP), multiple APs acting in concert, and/or a central entity, in connection with a network, allowing a client to associate; deciding that an associated client should be redistributed based on a connection metric, wherein the decision is based on at least one of, a probability calculation, network metric and a threshold comparison; and via the AP, sending the associated client a trigger, wherein the trigger is at least one of, a redistribution request and a disconnect message.

Abstract: Method, apparatus, and computer program product example embodiments provide control services for controlling devices with body-action input devices. An example method includes subscribing, by a control service, to one or more sensor signals from a selected body-action input device, the sensor signals including raw sensor data corresponding to one or more body-actions with the selected input device. The control service analyzes, using a selected component control service, the raw sensor data, to identify a body-action input corresponding to the body-actions with the selected input device. The control service converts, using the selected component control service, the identified body-action input, into one or more control signals, to control the selected controlled device corresponding to body-actions with the selected input device. The control service then provides the control signals to control the selected controlled device in response to the body-actions with the selected input device.

Abstract: Techniques are disclosed for dynamically switching user identity when generating a web service request by receiving, at a client application, an invocation of a web service, the invocation associated with a first authenticated user identity of a first user, identifying a second user identity, verifying that a switch from the first user identity to the second user identity is permitted by switching rules, including the second user identity in a service request when the switch is permitted, and communicating the service request to the web service. The switching rules can include associations between initial user identities and permitted user identities. Verifying that a switch is permitted can include searching the associations for an entry having an initial user identity that matches the first authenticated user identity and a new user identity that matches the second user identity, wherein the switch is permitted when the entry is found.

Abstract: Techniques are disclosed for dynamically switching user identity when generating a web service request by receiving, at a client application, an invocation of a web service, the invocation associated with a first authenticated user identity of a first user, identifying a second user identity, verifying that a switch from the first user identity to the second user identity is permitted by switching rules, including the second user identity in a service request when the switch is permitted, and communicating the service request to the web service. The switching rules can include associations between initial user identities and permitted user identities. Verifying that a switch is permitted can include searching the associations for an entry having an initial user identity that matches the first authenticated user identity and a new user identity that matches the second user identity, wherein the switch is permitted when the entry is found.

Abstract: Techniques are disclosed for dynamically switching user identity when generating a web service request by receiving, at a client application, an invocation of a web service, the invocation associated with a first authenticated user identity of a first user, identifying a second user identity, verifying that a switch from the first user identity to the second user identity is permitted by switching rules, including the second user identity in a service request when the switch is permitted, and communicating the service request to the web service. The switching rules can include associations between initial user identities and permitted user identities. Verifying that a switch is permitted can include searching the associations for an entry having an initial user identity that matches the first authenticated user identity and a new user identity that matches the second user identity, wherein the switch is permitted when the entry is found.

Abstract: Systems and methods for instituting redistribution of wireless clients to improve service, comprising via access point (AP), multiple APs acting in concert, and/or a central entity, in connection with a network, allowing a client to associate; deciding that an associated client should be redistributed based on a connection metric, wherein the decision is based on at least one of, a probability calculation, network metric and a threshold comparison; and via the AP, sending the associated client a trigger, wherein the trigger is at least one of, a redistribution request and a disconnect message.

Abstract: Techniques are provided for dynamically propagating identity context for a user in a Service-Oriented Architecture. Methods and apparatus are provided that include receiving a request to invoke a web service, retrieving first security claims from application identity context information pertaining to a user, generating second security claims at runtime, packaging the first and second security claims into an authentication token, and transmitting the authentication token to a second computer system in a service request. The second computer system can be configured to extract the first and second security claims from the authentication token, validate the extracted first and second security claims, generate identity context information based upon the extracted first and second security claims, and publish and propagate the identity content information in an identity context object.

Abstract: Techniques are disclosed for sharing communication session information sharing in web service applications. The techniques include management of concurrent sessions by dynamically determining the session association of web service requests at runtime. These sessions can be shared by a group of web services on the server side, and across multiple web services clients with many users, independently of where these applications reside. Session identifiers are determined for these concurrent web service invocations based on an algorithm that uses information from configuration and runtime data. Different information is used in the session identifier depending on configuration parameters to provide different types of sharing that correspond to different use cases. This mechanism can be used with SOAP-based web services, REST-based web services, and the like.

Abstract: Techniques are disclosed for sharing communication session information, such as encryption keys for data protection, among multiple communication operations and/or multiple users. Multiple users can share the same communication session concurrently, with each message being individually authenticated. The provided techniques include receiving, at a client application, a first request to send a first web service message to a web service application or group of web services, retrieving existing communication session information having the same sharing characteristics as the first request, where the sharing characteristics include web service environment information and/or request information, including the user credentials associated with the user in the message and in each subsequent message communicated using the existing communication session information, and communicating the web service message to the web service application or group of web services using the existing communication session information.

Abstract: In one set of embodiments, methods, systems, and apparatus are provided to enable secure local invocation of a web service in response to receiving a request from a first composite application to invoke a web service operation of a second composite application, where the first application is associated with a reference policy, and the second application is associated with a service policy, then determining, based upon the service policy and the reference policy, whether local invocation is secure, and invoking the operation using the local invocation in response to determining that the local invocation is secure. Attributes associated with the reference and service policies can indicate whether those policies can be used in a local invocation, or if user authentication is needed before performing the invocation with those policies. The local invocation may comprise a procedure call in an application server from the first application to the second application.

Abstract: Techniques are disclosed for dynamically switching user identity when generating a web service request by receiving, at a client application, an invocation of a web service, the invocation associated with a first authenticated user identity of a first user, identifying a second user identity, verifying that a switch from the first user identity to the second user identity is permitted by switching rules, including the second user identity in a service request when the switch is permitted, and communicating the service request to the web service. The switching rules can include associations between initial user identities and permitted user identities. Verifying that a switch is permitted can include searching the associations for an entry having an initial user identity that matches the first authenticated user identity and a new user identity that matches the second user identity, wherein the switch is permitted when the entry is found.

Abstract: Techniques are provided for dynamically propagating identity context for a user in a Service-Oriented Architecture. Methods and apparatus are provided that include receiving a request to invoke a web service, retrieving first security claims from application identity context information pertaining to a user, generating second security claims at runtime, packaging the first and second security claims into an authentication token, and transmitting the authentication token to a second computer system in a service request. The second computer system can be configured to extract the first and second security claims from the authentication token, validate the extracted first and second security claims, generate identity context information based upon the extracted first and second security claims, and publish and propagate the identity content information in an identity context object.

Abstract: Techniques are disclosed for sharing communication session information sharing in web service applications. The techniques include management of concurrent sessions by dynamically determining the session association of web service requests at runtime. These sessions can be shared by a group of web services on the server side, and across multiple web services clients with many users, independently of where these applications reside. Session identifiers are determined for these concurrent web service invocations based on an algorithm that uses information from configuration and runtime data. Different information is used in the session identifier depending on configuration parameters to provide different types of sharing that correspond to different use cases. This mechanism can be used with SOAP-based web services, REST-based web services, and the like.

Abstract: Techniques are disclosed for sharing communication session information, such as encryption keys for data protection, among multiple communication operations and/or multiple users. Multiple users can share the same communication session concurrently, with each message being individually authenticated. The provided techniques include receiving, at a client application, a first request to send a first web service message to a web service application or group of web services, retrieving existing communication session information having the same sharing characteristics as the first request, where the sharing characteristics include web service environment information and/or request information, including the user credentials associated with the user in the message and in each subsequent message communicated using the existing communication session information, and communicating the web service message to the web service application or group of web services using the existing communication session information.

Abstract: In one set of embodiments, methods, systems, and apparatus are provided to enable secure local invocation of a web service in response to receiving a request from a first composite application to invoke a web service operation of a second composite application, where the first application is associated with a reference policy, and the second application is associated with a service policy, then determining, based upon the service policy and the reference policy, whether local invocation is secure, and invoking the operation using the local invocation in response to determining that the local invocation is secure. Attributes associated with the reference and service policies can indicate whether those policies can be used in a local invocation, or if user authentication is needed before performing the invocation with those policies. The local invocation may comprise a procedure call in an application server from the first application to the second application.