Abstract: A communal computing device, such as an interactive digital whiteboard, can become unlocked if a user is near the device. The communal computing device may use a sensor such as a camera to capture images of a person and obtain an identifier from a personal device such as a smartphone. A cloud-based provider that is trusted by both the communal computing device and the personal device may associate both the image and the identifier of the personal device with the same user identity. Obtaining the user identity from multiple, different sources provides a secure technique for the communal computing device to recognize a user without the user directly interacting with the communal computing device. If the sensor no longer detects the user or the personal device is no longer detected, then the communal computing device may log off the user. The personal device may be used to confirm log off.

Abstract: Files can be located using a durable and universal file identifier. A content URI includes a file protocol URI specifying a path to a file. The file protocol URI includes a query string specifying properties of the file that can be utilized to locate the file, such as an object ID property specifying a GUID for the file and a volume ID property specifying a GUID for a storage volume storing the file. The content URI can be utilized to locate the file using the file protocol URI and its associated query string even if the file has been moved, renamed, or is accessed on a different computing device. Operations can then be performed using the file, such as resuming a previously performed activity that used the file.

Abstract: Files can be located using a durable and universal file identifier. A content URI includes a file protocol URI specifying a path to a file. The file protocol URI includes a query string specifying properties of the file that can be utilized to locate the file, such as an object ID property specifying a GUID for the file and a volume ID property specifying a GUID for a storage volume storing the file. The content URI can be utilized to locate the file using the file protocol URI and its associated query string even if the file has been moved, renamed, or is accessed on a different computing device. Operations can then be performed using the file, such as resuming a previously performed activity that used the file.

Abstract: Systems and methods are provided for detecting an object region in an image and encrypting/decrypting a detected object region. The system comprises three main components: a database server, a data analytics system and a standard dashboard. The database server may further comprise a distributed database server and a key store database server. The data analytics system is executed by a computer processor configured to apply a multi-head self-supervised learning-based classifier to detect object information captured by the image. The data analytics system further comprise a privacy processing component that is configured to selectively encrypt the detected object using an encryption key following the advanced encryption standard with cipher block chaining mode (AES-CBC).

Abstract: A communal computing device, such as an interactive digital whiteboard, can become unlocked if a user is near the device. The communal computing device may use a sensor such as a camera to capture images of a person and obtain an identifier from a personal device such as a smartphone. A cloud-based provider that is trusted by both the communal computing device and the personal device may associate both the image and the identifier of the personal device with the same user identity. Obtaining the user identity from multiple, different sources provides a secure technique for the communal computing device to recognize a user without the user directly interacting with the communal computing device. If the sensor no longer detects the user or the personal device is no longer detected, then the communal computing device may log off the user. The personal device may be used to confirm log off.

Abstract: A communal computing device, such as an interactive digital whiteboard, can become unlocked if a user is near the device. The communal computing device may use a sensor such as a camera to capture images of a person and obtain an identifier from a personal device such as a smartphone. A cloud-based provider that is trusted by both the communal computing device and the personal device may associate both the image and the identifier of the personal device with the same user identity. Obtaining the user identity from multiple, different sources provides a secure technique for the communal computing device to recognize a user without the user directly interacting with the communal computing device. If the sensor no longer detects the user or the personal device is no longer detected, then the communal computing device may log off the user. The personal device may be used to confirm log off.

Abstract: A user provides an identification (ID) signal (e.g. a biometric ID signal like a self-snapshot) to a trusted cloud-based provider. When the user attempts to authenticate with the cloud-based provider, a similar ID signal (e.g. another self-snapshot) for the user is captured and provided to the cloud-based provider. The cloud-based provider then obtains a secondary ID signal, or a combination of secondary ID signals, and utilizes the secondary ID signal, or signals, to identify a subset of user records to be searched for the ID signal. The subset of the records, rather than all of the user records, can then be searched for the ID signal. The cloud-based provider can then authenticate the user based on the results of the search of the subset of the user records.

Abstract: A user provides an identification (ID) signal (e.g. a biometric ID signal like a self-snapshot) to a trusted cloud-based provider. When the user attempts to authenticate with the cloud-based provider, a similar ID signal (e.g. another self-snapshot) for the user is captured and provided to the cloud-based provider. The cloud-based provider then obtains a secondary ID signal, or a combination of secondary ID signals, and utilizes the secondary ID signal, or signals, to identify a subset of user records to be searched for the ID signal. The subset of the records, rather than all of the user records, can then be searched for the ID signal. The cloud-based provider can then authenticate the user based on the results of the search of the subset of the user records.

Abstract: Files can be located using a durable and universal file identifier. A content URI includes a file protocol URI specifying a path to a file. The file protocol URI includes a query string specifying properties of the file that can be utilized to locate the file, such as an object ID property specifying a GUID for the file and a volume ID property specifying a GUID for a storage volume storing the file. The content URI can be utilized to locate the file using the file protocol URI and its associated query string even if the file has been moved, renamed, or is accessed on a different computing device. Operations can then be performed using the file, such as resuming a previously performed activity that used the file.

Abstract: A multi-user computing device, such a communal computing device like an interactive digital whiteboard, can execute single user aware (“SUA”) applications and multi-user aware (“MUA”) applications. Instances of SUA applications execute in the context of a single user. MUA applications can execute in the contexts of multiple authenticated users simultaneously. A multi-user aware OS platform authenticates and de-authenticates users of the multi-user computing device. The multi-user aware OS platform provides notifications to MUA applications when users are authenticated and de-authenticated. When a new user is authenticated, MUA applications begin executing in the context of the newly authenticated user and any other previously authenticated users. When users are de-authenticated, MUA applications stop executing in the context of the de-authenticated user but continue executing in the context of the remaining authenticated users of the multi-user computing device.

Abstract: In non-limiting examples of the present disclosure, systems, methods and devices for integrating web services in shell constructs are provided. Web browsing data, application activity data, and/or device data for a user may be received. A machine learning model may be applied to the data. One or more recommendations may be surfaced based on application of the machine learning model to the data. The recommendations may comprise one or more of: recommendations to install applications; recommendations to add service extensions; recommendations to pin and/or add a shortcut to a website; and/or recommendations to add platform integration services amongst multiple devices.

Abstract: A communal computing device, like an interactive digital whiteboard, can detect the start and end of user sessions with the device. When a communal computing device detects the end of a user session, the it can determine if a personal device that was connected at the start of the user session or during the user session was also connected at the end of the user session. If so, the device can initiate actions based on the session start or end signals such as, but not limited to, transmitting a message to an organizer of a meeting scheduled during the time of the user session, transmitting a message to a participant of a meeting scheduled during the time of the user session, transmitting a message to an administrator, or generating a notification, such as a user interface reminding a user to take their personal device.

Abstract: Files can be located using a durable and universal file identifier. A content URI includes a file protocol URI specifying a path to a file. The file protocol URI includes a query string specifying properties of the file that can be utilized to locate the file, such as an object ID property specifying a GUID for the file and a volume ID property specifying a GUID for a storage volume storing the file. The content URI can be utilized to locate the file using the file protocol URI and its associated query string even if the file has been moved, renamed, or is accessed on a different computing device. Operations can then be performed using the file, such as resuming a previously performed activity that used the file.

Abstract: In non-limiting examples of the present disclosure, systems, methods and devices for integrating web services in shell constructs are provided. Web browsing data, application activity data, and/or device data for a user may be received. A machine learning model may be applied to the data. One or more recommendations may be surfaced based on application of the machine learning model to the data. The recommendations may comprise one or more of: recommendations to install applications; recommendations to add service extensions; recommendations to pin and/or add a shortcut to a website; and/or recommendations to add platform integration services amongst multiple devices.

Abstract: A communal computing device such as an interactive digital whiteboard can provide progressively more access to functionality and data on the device based on a level of certainty in the identity of a user. If a user is identified based on one or more low-fidelity identification signals such as an image of the user or a device identifier, the communal computing device may provide a first level of functionality that is limited. If the user requests greater access, the communal computing device can request that a trusted cloud-based provider authenticate the user by way of a personal device, such as a smartphone. The authentication may be a password or high-fidelity biometric identification. The cloud-based provider communicates successful authentication to the communal computing device and it, in turn, provides the user access to higher, second level of functionality.

Abstract: A multi-user aware (“MUA”) computing device, such a communal computing device like an interactive digital whiteboard, can enforce role-based constraints on the modification of components, such as configuration settings. The MUA computing device can be configured with universal settings, global settings, and temporal settings. Universal settings cannot be changed by users of the MUA computing device. Device owners can change global settings that apply to all users of a MUA computing device. All users of the MUA computing device can change temporal settings. Changes to temporal settings are stored in profiles associated with authenticated users but are not persisted for guest users. When all users have stopped using the MUA computing device, the device can be configured with default values for the temporal settings in order to return the device to a known state.

Abstract: In non-limiting examples of the present disclosure, systems, methods and devices for surfacing collaborative recommendations in relation to topically classified resources are presented. Resources may be topically classified based on application of natural language processing and machine learning models. Relationships amongst users that own, authored and/or edited the resources may be identified. Recommendations may be surfaced based on topical and/or user characteristic overlap associated with the resources. The recommendations may relate to group collaboration on resource creation, sharing of related resources, incorporating related resources in existing resources, and/or recommending group creation and/or collaboration associated with resource topics.

Abstract: In non-limiting examples of the present disclosure, systems, methods and devices for assisting with event execution are provided. Data from a productivity application associated with a user may be analyzed. A significant life event associated with the user may be identified based on the analysis. A plurality of sources that each have at least one recommendation for executing a type of event corresponding to the significant event may be identified. An itinerary template for the significant life event may be generated from a plurality of the recommendations. The itinerary template may be surfaced. Additional examples of the present disclosure relate to identifying relevant applications for download to a user's device managed by an administrator device.

Abstract: Determination logic for a cloud content states framework is described herein. In implementations, a framework is configured to perform operations for management of cloud content files at the computing device on behalf of cloud storage providers. Determination logic for the framework is utilized to make state determinations in dependence upon a defined set of file sync properties. The framework operates to make assessments of the file sync properties and set states for files in accordance with the assessments. In implementations, file sync properties are related to corresponding states through a mapping data structure that maps file sync property values to different states and enables look-ups of states based on property values. The framework utilizes and references the mapping data structure to match file sync properties identified for cloud content files to corresponding states and then set states for the cloud content files accordingly.

Abstract: In non-limiting examples of the present disclosure, systems, methods and devices for assisting with event execution are provided. Data from a productivity application associated with a user may be analyzed. A significant life event associated with the user may be identified based on the analysis. A plurality of sources that each have at least one recommendation for executing a type of event corresponding to the significant event may be identified. An itinerary template for the significant life event may be generated from a plurality of the recommendations. The itinerary template may be surfaced. Additional examples of the present disclosure relate to identifying relevant applications for download to a user's device managed by an administrator device.