Abstract: Technology for operating a computer system to manage network communications with plural devices, comprising retrieving from a registry one or more device capability profiles for the identified devices, the registry linking a device capability profile with each of the identified plural devices and the device capability profile identifying one or more capabilities of a device; operating in the computer system a message translation manager to adapt a message according to a linked device capability profile of each of the plural devices; and sending the message in adapted form to each identified one of the plural devices.

Abstract: A trusted device, such as a wristwatch, is provided with authentication circuitry, used to perform an authentication operation to switch the trusted device into an authenticated state. Retention monitoring circuitry monitors the physical possession of the trusted device by the user following the authentication operation and switches the trusted device out of an authenticated state if the trusted device does not remain in the physical possession of the user. While the trusted device remains in the physical possession of the user, communication triggering circuitry is used to detect a request to establish communication with a target device that is one of a plurality of different target devices and communication circuitry is used to communicate with that target device using an authenticated identity of the user.

Abstract: A trusted device, such as a wristwatch, is provided with authentication circuitry, used to perform an authentication operation to switch the trusted device into an authenticated state. Retention monitoring circuitry monitors the physical possession of the trusted device by the user following the authentication operation and switches the trusted device out of an authenticated state if the trusted device does not remain in the physical possession of the user. While the trusted device remains in the physical possession of the user, communication triggering circuitry is used to detect a request to establish communication with a target device that is one of a plurality of different target devices and communication circuitry is used to communicate with that target device using an authenticated identity of the user.

Abstract: Methods for delivering an authenticatable management activity to a group of remote devices in a networked computing environment is described herein. An authenticatable management activity may be any activity which requires internal state changes to be made at a remote device, such as software or firmware updates, system configuration operations, access control list update operations, file transfer operations, changes to user data etc., and which requires an operators approval of the activity before being performed. In addition to an operators approval of the activity, the management activity is required to be signed by an operator, such that the operator authorising the management activity is authenticated.

Abstract: A computer-implemented method of operation of a translation manager intermediating message distribution in a plurality of networked devices, comprising receiving at the translation manager a request from a networked device for registration; parsing the message by the translation manager to derive an identifier of the networked device; determining by the translation manager at least one capability of the networked device; creating a pairing of the identifier of the networked device and a profile comprising the at least one capability of the networked device; storing the pairing in a data store for use by the translation manager on request to translate a message. The storing the pairing may comprise populating a lookup table and/or operating a database.

Abstract: A technology is provided for providing quantified reliance data for at least one of an electronic computing device node and a connection in network, the technology comprising instrumenting at least one of the device and the connection to generate at least two datasets comprising at least one of a device feature vector and a connection feature vector, each feature vector being encoded in a form suitable for transmission over a connection in the network; performing computational inferencing over the at least two datasets to generate quantified reliance data comprising at least one of a trust indicator, a diagnostic indicator and a performance indicator associated with at least one of the device and the connection; and supplying the quantified reliance data in a form usable for selecting an action to be performed, the action being at least one of performed by and performed to at least one of the at least one electronic computing device node and the at least one connection.

Abstract: A method for managing an asset update service for one or more service requesters on a plurality of remote devices, the method comprising: receiving, at a management server, update data indicating an asset to be updated at one or more remote devices; receiving, at the management server, campaign data associated with the update data and indicating a subset of the remote devices to which an update is to be applied; and receiving, at the management server, a request to initiate the firmware update by transmitting to the subset of the remote devices an update communication indicating that the asset is to be retrieved for updating the asset of the remote device.

Abstract: Access to a resource controlled by a resource server (6, 8) is provided using a validity token issued by a validation server (4). When a resource request from a user (12) is received at the resource server (6, 8), then the resource server (6, 8) determines if the resource request satisfies a policy. If the resource request satisfies the policy, then access to the resource may be permitted without confirming the validity of the validation token with the validation server (4). Conversely, if the resource request does not satisfy the policy, then validation of the validation token with the validation server (4) is performed before the access requested is permitted.

Abstract: A computer-implemented method of operation of a translation manager intermediating message distribution in a plurality of networked devices, comprising receiving at the translation manager a request from a networked device for registration; parsing the message by the translation manager to derive an identifier of the networked device; determining by the translation manager at least one capability of the networked device; creating a pairing of the identifier of the networked device and a profile comprising the at least one capability of the networked device; storing the pairing in a data store for use by the translation manager on request to translate a message. The storing the pairing may comprise populating a lookup table and/or operating a database.

Abstract: Technology for operating a computer system to manage network communications with plural devices, comprising retrieving from a registry one or more device capability profiles for the identified devices, the registry linking a device capability profile with each of the identified plural devices and the device capability profile identifying one or more capabilities of a device; operating in the computer system a message translation manager to adapt a message according to a linked device capability profile of each of the plural devices; and sending the message in adapted form to each identified one of the plural devices.

Abstract: A technology for operating a computer system to structure a message according to at least one capability of a device, comprising receiving at least one message; deriving a device identifier from the message; determining a device capability profile linked with the device capability profile; and invoking a message translation manager to interpret the at least one message according to the linked device capability profile. Interpreting the at least one message may comprise adapting the at least one message or constructing the at least one message according to a format determined by the linked the device capability profile. The constructing may comprise, responsive to a trigger event, assembling the at least one message from message elements according to the format determined by the linked device capability profile. The message may be, for example, a return message.

Abstract: An apparatus comprising a document store to store an index of remote device data, the remote device data being aggregated in a structured state document, conforming to a document schema, from a plurality of data sources for each of a plurality of remote devices. The apparatus comprises an outbound delta processor to transmit a desired state to a remote device when the desired state does not match a last reported state of the remote device defined in the structured state document for that remote device. Also the apparatus comprises and an inbound notification processor to receive a current state of the remote device to update the last reported state of the remote device in the structured state document.

Abstract: A trusted device, such as a wristwatch, is provided with authentication circuitry, used to perform an authentication operation to switch the trusted device into an authenticated state. Retention monitoring circuitry monitors the physical possession of the trusted device by the user following the authentication operation and switches the trusted device out of an authenticated state if the trusted device does not remain in the physical possession of the user. While the trusted device remains in the physical possession of the user, communication triggering circuitry is used to detect a request to establish communication with a target device that is one of a plurality of different target devices and communication circuitry is used to communicate with that target device using an authenticated identity of the user.

Abstract: A trusted device, such as a wristwatch, is provided with authentication circuitry, used to perform an authentication operation to switch the trusted device into an authenticated state. Retention monitoring circuitry monitors the physical possession of the trusted device by the user following the authentication operation and switches the trusted device out of an authenticated state if the trusted device does not remain in the physical possession of the user. While the trusted device remains in the physical possession of the user, communication triggering circuitry is used to detect a request to establish communication with a target device that is one of a plurality of different target devices and communication circuitry is used to communicate with that target device using an authenticated identity of the user.

Abstract: A trusted device, such as a wristwatch, is provided with authentication circuitry, used to perform an authentication operation to switch the trusted device into an authenticated state. Retention monitoring circuitry monitors the physical possession of the trusted device by the user following the authentication operation and switches the trusted device out of an authenticated state if the trusted device does not remain in the physical possession of the user. While the trusted device remains in the physical possession of the user, communication triggering circuitry is used to detect a request to establish communication with a target device that is one of a plurality of different target devices and communication circuitry is used to communicate with that target device using an authenticated identity of the user.

Abstract: A trusted device, such as a wristwatch, is provided with authentication circuitry, used to perform an authentication operation to switch the trusted device into an authenticated state. Retention monitoring circuitry monitors the physical possession of the trusted device by the user following the authentication operation and switches the trusted device out of an authenticated state if the trusted device does not remain in the physical possession of the user. While the trusted device remains in the physical possession of the user, communication triggering circuitry is used to detect a request to establish communication with a target device that is one of a plurality of different target devices and communication circuitry is used to communicate with that target device using an authenticated identity of the user.

Abstract: Access to a resource controlled by a resource server (6, 8) is provided using a validity token issued by a validation server (4). When a resource request from a user (12) is received at the resource server (6, 8), then the resource server (6, 8) determines if the resource request satisfies a policy. If the resource request satisfies the policy, then access to the resource may be permitted without confirming the validity of the validation token with the validation server (4). Conversely, if the resource request does not satisfy the policy, then validation of the validation token with the validation server (4) is performed before the access requested is permitted.

Abstract: A trusted device, such as a wristwatch, is provided with authentication circuitry, used to perform an authentication operation to switch the trusted device into an authenticated state. Retention monitoring circuitry monitors the physical possession of the trusted device by the user following the authentication operation and switches the trusted device out of an authenticated state if the trusted device does not remain in the physical possession of the user. While the trusted device remains in the physical possession of the user, communication triggering circuitry is used to detect a request to establish communication with a target device that is one of a plurality of different target devices and communication circuitry is used to communicate with that target device using an authenticated identity of the user.

Abstract: A trusted device, such as a wristwatch 2, is provided with authentication circuitry 26, used to perform an authentication operation to switch the trusted device into an authenticated state. Retention monitoring circuitry 32 monitors the physical possession of the trusted device by the user following the authentication operation and switches the trusted device out of an authenticated state if the trusted device does not remain in the physical possession of the user. While the trusted device remains in the physical possession of the user, communication triggering circuitry 38 is used to detect a request to establish communication with a target device that is one of a plurality of different target devices and communication circuitry 40 is used to communicate with that target device using an authenticated identity of the user.

Abstract: A trusted device, such as a wristwatch 2, is provided with authentication circuitry 26, used to perform an authentication operation to switch the trusted device into an authenticated state. Retention monitoring circuitry 32 monitors the physical possession of the trusted device by the user following the authentication operation and switches the trusted device out of an authenticated state if the trusted device does not remain in the physical possession of the user. While the trusted device remains in the physical possession of the user, communication triggering circuitry 38 is used to detect a request to establish communication with a target device that is one of a plurality of different target devices and communication circuitry 40 is used to communicate with that target device using an authenticated identity of the user.