Abstract: Disclosed are various embodiments for intelligent text recognition based upon a selected pattern detection mode. First, text can be identified in an image. A pattern detection mode can be selected by a user or autonomously. In some instances, the pattern detection mode can be selected based at least in part on a user account. Next, the text can be parsed for occurrences of a pattern associated with the selected pattern detection mode. A list of occurrences of the pattern can be generated from the text and presented to a user. In some instances, a user can train a model to learn a new pattern.

Abstract: Disclosed are various embodiments for delegating administrator tasks from a primary administrator to a secondary administrator. A secondary administrator can create a temporary user account and cause a temporary client device to be enrolled with a management service. The temporary user and/or temporary client device can be provided with access to certain enterprise resources to which the secondary administrator is empowered to grant access.

Abstract: Disclosed are various embodiments for redacting or modifying content in documents that are provided to users. A user's clearance level can be determined by analyzing the role of the user within the enterprise. A redaction level can be determined from the clearance level. A document or other content can be modified or redacted based upon the redaction level.

Abstract: Disclosed are various embodiments for generating a list of predicted contacts that can be provided to a client device. The predicted contacts can be generated based upon an analysis of user interaction data. The predicted contacts can be made available to a phone application or messaging application on a client device so that contact information can be displayed in response to an incoming call or a message.

Abstract: Disclosed are various embodiments for preventing unauthorized access to materials presented in a meeting room. In one example, a system comprises a computing device that is configured to identify a list of invited users for a meeting occurring in a meeting room and to detect a client device of an uninvited user that has entered the meeting room. An uninvited user notification is transmitted to a remote computing device. A suspension command is received for the meeting room from the remote computing device based on the uninvited user notification. The computing device is configured to enforce a suspension action on a meeting room device located in the meeting room based on the suspension command.

Abstract: Disclosed herein are examples of systems and methods for formatting electronic messages using machine learning. An electronic message can be obtained, and a processed message can be generated based at least in part on the electronic message. At least one attribute for the processed message can be determined. A formatting specification can be generated based at least in part on the at least one attribute. A reformatted message can be generated based at least in part on the formatting specification.

Abstract: Systems and methods for 3D printer management can allow or reject printing of an object based on a model that is trained with machine learning. In one example, the model classifies the object according to object type. The object type can be compared against a list to determine whether to block the object from printing. The object can also be compared to previously printed objects. The object can be blocked from printing if a combination of the object and a previously printed object amounts to a threshold amount of a blacklisted item. The lists can be specific to users, such as an organizational group to which the user belongs. A print server can apply the model prior to forwarding the object to a 3D printer for printing. Both the models and the lists can evolve based on machine learning, such as based on which print decisions receive override from administrators.

Abstract: Disclosed herein are examples of systems and methods for synchronizing notification actions across multiple enrolled devices. A management service can receive from a first client device metadata associated with a notification posted on the first client device. The management service can receive from the first client device an indication of an action performed with respect to the notification. The management service can determine whether to propagate a new notification state to a second client device based at least in part on a type of the action and a current notification state associated with the second client device. In response to determining to propagate the new notification state to the second client device, the management service can provide to the second client device a command to change the current notification state to the new notification state.

Abstract: Disclosed are various aspects of voice skill session lifetime management. In some examples, a session extension request is received. The session extension request extends a voice skill session of a voice-activated device. A personal client device is identified based on the session extension request. A command to emit an ultrasonic pulse is transmitted to the personal client device.

Abstract: Systems and methods are described for creating a customized response to user feedback. In an example, a feedback system can receive user feedback about a product. The feedback system can parse the user feedback to extract keywords and assign categories to the keywords. The feedback system can also receive update information related to the product. The feedback system can parse the product update information in a similar manner to extract keywords and assign them to categories. The feedback system can compare the parsed user feedback and the parsed product update information and identify any matches that indicate that the product update addresses something mentioned in the user feedback. The feedback system can create a custom notification that highlights the portion of the product update information that matched to the user feedback.

Abstract: Disclosed are various embodiments of identifying a reusable email template for use in an email client based on a file attachment, an email recipient, and/or other factors, such as date and time. Various embodiments can identify an unsent email, the unsent email comprising at least a body and an attachment file, analyze the attachment file to determine one or more attachment categories, select an email template from a plurality of email templates based at least on the one or more attachment categories, and populate the body of the unsent email with the selected email template.

Abstract: Disclosed are various approaches for authenticating a user through a voice assistant device and creating an association between the device and a user account. The request is associated with a network or federated service. The user can use a client device, such as a smartphone, to initiate an authentication flow. A passphrase is provided to the client device can captured by the client device and a voice assistant device. Audio captured by the client device and voice assistant device can be sent to an assistant connection service. The passphrase and an audio signature calculated from the audio can be validated. An association between the user account and the voice assistant device can then be created.

Abstract: Disclosed are various examples for to generating personalized user experiences in the form of short-form videos that summarize informational topics that are selected to present to a user according at least one of a user context or a user interest. As the informational topics are identified for a given user, the informational topics can be applied as inputs to a recommendation model that is trained to recommend one or more of the topics to summarize and present to a user in visual form based on at least one of the user context or the user interest. Once a topic is recommended by the recommendation model, a video or other type of visual content can be automatically generated and presented to a user to allow the user to consume the information in the summarized form.

Abstract: Disclosed are various embodiments for preventing unauthorized access to materials presented in a meeting room. In one example, a system comprises a computing device that is configured to identify a list of invited users for a meeting occurring in a meeting room and to detect a client device of an uninvited user that has entered the meeting room. An uninvited user notification is transmitted to a remote computing device. A suspension command is received for the meeting room from the remote computing device based on the uninvited user notification. The computing device is configured to enforce a suspension action on a meeting room device located in the meeting room based on the suspension command.

Abstract: The present disclosure relates to dynamic meeting space configuration based on content. A client device can detect an entry of a user into a meeting space and notify a management service of the entry of the user into the meeting space. The client device can receive an access token from the management service and provide an access request for an enterprise resource to an enterprise resource service, where the access request comprises the access token. The client device can receive the enterprise resource from the enterprise resource service. The client device can provide data regarding the security classification of the enterprise resource to an edge device located within the meeting space. The client device can receive, from the edge device, a confirmation that a plurality of internet of things (IoT) devices located within the meeting space have been configured according to the security classification of the enterprise resource.

Abstract: The present disclosure relates to proximity-based content visibility control. A secondary client device can request access to an enterprise resource and receive metadata associated with the enterprise resource. The secondary client device can provide, to a primary client device via a peer-to-peer communication channel, data associated with a proximity of the secondary client device to the primary client device. When the proximity falls below a predefined proximity threshold, the secondary client device can receive an access token from the primary client device via the peer-to-peer communication channel. The secondary client device can render the enterprise resource in a display. The secondary client device can receive a notification from the primary client device that the proximity meets or exceeds the predefined proximity threshold. The secondary client device can obscure at least one sensitive portion of the enterprise resource in the display based at least in part on the metadata.

Abstract: Disclosed are various approaches for peer-to-peer device security detection. In some examples, a first client device transmits verification data to a second client device. The verification data includes a public key verification certificate of the client device, and a time-based session token generated by the first client device. The first client device receives a preliminary cross-comparison package from the second client device. The preliminary package includes a spoof-check token, and peer device context data of the second client device. The first client device generates a cross-comparison package using the preliminary cross-comparison package and local device context data of the first client device, and transmits the cross-comparison package to a management service for cross-comparison.

Abstract: Disclosed are various embodiments of systems and methods of Granular location-based data security. Various embodiments can be configured to at least identify a map having a plurality of regions, each region of the plurality of regions corresponds to a real-world location and one of a plurality of security indicators. Next, various embodiments can receive a signal that indicates that a user has entered a first real-world location and then, based on the signal, determine a region of the plurality of regions. Next, various embodiments can receive a document access request to access a document. The various embodiments can then determine that the client device is not permitted to access the document while located in the region. Then various embodiments can send, to the client device, a response that directs the client device to perform an action that inhibits the client device from accessing the document.

Abstract: The present disclosure relates to peer-to-peer (P2P) secure mode authentication. A secondary client device can request access to an enterprise resource. The secondary client device can establish a P2P communication channel with a primary client device during a P2P secure mode. The secondary client device can determine a proximity of the computing device to the client device and generate proximity data based at least in part on the proximity of the computing device to the client device. The secondary client device can receive an authorization to access the enterprise resource based at least in part on the proximity data and access the enterprise resource by loading the enterprise resource within a sandboxed environment.

Abstract: Disclosed are various embodiments for enabling an enrolled client device of a user to access an enterprise resource via a second enrolled client device of the user. One such method comprises launching, by the first client device, a peer-to-peer communication channel between the first client device and a second client device of the user that is online with the management server; transmitting, by the first client device, a peer-to-peer offline access mode request over the peer-to-peer communication channel for the first client device to be given access to an enterprise resource that is being managed by the management server, wherein the request includes instructions for the second client device to forward the request to the management server, wherein the request further includes enterprise resource identification and verification data showing that the first client device is in compliance with a compliancy policy of the management service.