Abstract: A centralized policy management may allow for one set of credentials to various applications and services offered by a computing resource service provider or other third-party servers. An entity responsible for the administration of a directory made available through a managed directory service may specify one or more policies for users and/or groups of users that utilize the directory. For example, the managed directory service may include a policy management subsystem that manages a set of policies for users and/or groups of users that controls a level of access to applications and services. Administrators can assign one or more policies to a user or a group of users and users can select one or more policies provided to the user by the administrator when attempting to access an application or service.

Abstract: A covert information viewing system converts visible light to infrared wavelengths that can be transmitted for detection by an infrared-sensitive detector, such as night vision goggles, without detection by the human eye. The system includes a visible light information source emitting radiation as visible light, and a covert covering including an energy converting layer for absorbing the visible light emitted from the visible light information source and converting the visible light to infrared wavelengths, and a light blocking layer capable of absorbing unconverted visible light and transmitting infrared wavelengths. The covert covering is attached to the visible light information source and oriented to cover visible light emitted from the visible light information source, but it is also easily removed from the visible light information source.

Abstract: Configurable core domains of a speech processing system are described. A core domain output data format for a given command is originally configured with default content portions. When a user indicates additional content should be output for the command, the speech processing system creates a new output data format for the core domain. The new output data format is user specific and includes both default content portions as well as user preferred content portions.

Abstract: Systems and methods which enable an authentication procedure to be used within the standard network security architecture to authenticate third party applications that are forbidden access to a particular secret key are disclosed. Third party smartphone applications that are unable to use SIM-based authentication due to being forbidden access to a SIM-based key are provided an alternate secret key for use in an EAP-AKA or EAP-SIM type procedure according to embodiments. An authentication server or other backend authentication infrastructure of embodiments requests authentication vectors from a backend system sharing the alternative secret key. Accordingly, the backend authentication platform of embodiments is adapted to know or detect that an application is using an alternative secret key (e.g., a secret key other than the SIM-based secret key) and to perform the appropriate procedure for the key type.

Abstract: A user, group, and device management and authentication system allows administrators to manage one or more directories with devices that are not associated with a domain of the one or more directories via a set of APIs. The system also allows applications and services that do not have direct access to a list of directory users to access the one or more directories. The user, group, and device management and authentication system may be an add-on system that works in conjunction with a centrally-managed directory service to provide such functionality. For example, the system may generate an access token associated with a particular directory that can be used by a service accessed by an administrator to call an API provided by the system. The API call may be translated into a directory-specific API call that can be used to perform an action in the particular directory.

Abstract: Systems and methods which enable an authentication procedure to be used within the standard network security architecture to authenticate third party applications that are forbidden access to a particular secret key are disclosed. Third party smartphone applications that are unable to use SIM-based authentication due to being forbidden access to a SIM-based key are provided an alternate secret key for use in an EAP-AKA or EAP-SIM type procedure according to embodiments. An authentication server or other backend authentication infrastructure of embodiments requests authentication vectors from a backend system sharing the alternative secret key. Accordingly, the backend authentication platform of embodiments is adapted to know or detect that an application is using an alternative secret key (e.g., a secret key other than the SIM-based secret key) and to perform the appropriate procedure for the key type.

Abstract: Configurable core domains of a speech processing system are described. A core domain output data format for a given command is originally configured with default content portions. When a user indicates additional content should be output for the command, the speech processing system creates a new output data format for the core domain. The new output data format is user specific and includes both default content portions as well as user preferred content portions.

Abstract: Persistent infrared (IR) phosphors are disclosed. In an embodiment a phosphor has the general formula: M1(m?k)Ga(2n?x?y?z)M2pO(rm+3n+2p):xSb3+,yM3,zD,kM4, wherein M1 is chosen from magnesium, calcium, barium, strontium, zinc, scandium, yttrium, lanthanum, gadolinium, lutetium, or bismuth, or combinations thereof; M2 is chosen from silicon, germanium, tin, titanium, zirconium, or combinations thereof; M3 is chosen from magnesium, aluminum, indium, scandium, or combinations thereof; M4 is chosen from praseodymium, neodymium, samarium, europium, terbium, dysprosium, holmium, erbium, thulium, ytterbium, or combinations thereof; D is chosen from chromium, iron, nickel, manganese, or cobalt, or combinations thereof; and wherein 1?m?4; 1?n?3; 0?p?5; 0.0002?x?2n; 0?y?2n; 0.0001?z?0.1; 0?k?0.1; and r is selected from 1, 1.5, 2, 2.5, and 3.

Abstract: A centralized policy management may allow for one set of credentials to various applications and services offered by a computing resource service provider or other third-party servers. An entity responsible for the administration of a directory made available through a managed directory service may specify one or more policies for users and/or groups of users that utilize the directory. For example, the managed directory service may include a policy management subsystem that manages a set of policies for users and/or groups of users that controls a level of access to applications and services. Administrators can assign one or more policies to a user or a group of users and users can select one or more policies provided to the user by the administrator when attempting to access an application or service.

Abstract: A luminous system comprising one or more illumination sources, a multilayer structure, and one or more diffuse reflection layers being optically decoupled from the multilayer structure, wherein the emission and the reflection of the luminous system produce a first observed visible color when the one or more illumination sources are powered and a second observed visible color when the one or more illumination sources are non-powered is disclosed. Also disclosed are methods of creating the inventive luminous system.

Abstract: A luminous system comprising one or more illumination sources, a multilayer structure, and one or more diffuse reflection layers being optically decoupled from the multilayer structure, wherein the emission and the reflection of the luminous system produce a first observed visible color when the one or more illumination sources are powered and a second observed visible color when the one or more illumination sources are non-powered is disclosed. Also disclosed are methods of creating the inventive luminous system.

Abstract: A user, group, and device management and authentication system allows administrators to manage one or more directories with devices that are not associated with a domain of the one or more directories via a set of APIs. The system also allows applications and services that do not have direct access to a list of directory users to access the one or more directories. The user, group, and device management and authentication system may be an add-on system that works in conjunction with a centrally-managed directory service to provide such functionality. For example, the system may generate an access token associated with a particular directory that can be used by a service accessed by an administrator to call an API provided by the system. The API call may be translated into a directory-specific API call that can be used to perform an action in the particular directory.

Abstract: A user, group, and device management and authentication system allows administrators to manage one or more directories with devices that are not associated with a domain of the one or more directories via a set of APIs. The system also allows applications and services that do not have direct access to a list of directory users to access the one or more directories. The user, group, and device management and authentication system may be an add-on system that works in conjunction with a centrally-managed directory service to provide such functionality. For example, the system may generate an access token associated with a particular directory that can be used by a service accessed by an administrator to call an API provided by the system. The API call may be translated into a directory-specific API call that can be used to perform an action in the particular directory.

Abstract: A luminous system comprising one or more illumination sources, a multilayer structure, and one or more diffuse reflection layers being optically decoupled from the multilayer structure, wherein the emission and the reflection of the luminous system produce a first observed visible color when the one or more illumination sources are powered and a second observed visible color when the one or more illumination sources are non-powered is disclosed. Also disclosed are methods of creating the inventive luminous system.

Abstract: Systems and methods which enable an authentication procedure to be used within the standard network security architecture to authenticate third party applications that are forbidden access to a particular secret key are disclosed. Third party smartphone applications that are unable to use SIM-based authentication due to being forbidden access to a SIM-based key are provided an alternate secret key for use in an EAP-AKA or EAP-SIM type procedure according to embodiments. An authentication server or other backend authentication infrastructure of embodiments requests authentication vectors from a backend system sharing the alternative secret key. Accordingly, the backend authentication platform of embodiments is adapted to know or detect that an application is using an alternative secret key (e.g., a secret key other than the SIM-based secret key) and to perform the appropriate procedure for the key type.

Abstract: A luminous system comprising one or more illumination sources, a multilayer structure, and one or more diffuse reflection layers being optically decoupled from the multilayer structure, wherein the emission and the reflection of the luminous system produce a first observed visible color when the one or more illumination sources are powered and a second observed visible color when the one or more illumination sources are non-powered is disclosed. Also disclosed are methods of creating the inventive luminous system.

Abstract: A global endpoint may be associated with an organization name and a plurality of directories located in different geographic regions. The global endpoint may be a computing system that hosts a page used by users to access an application or service. A user may be able to access the application or service using already existing credentials. For example, the user may access the application or service using credentials stored and maintained by an entity with which the user is affiliated. Users having credentials stored in different geographic regions may be able to access the application or service via the same global endpoint.

Abstract: A user, group, and device management and authentication system allows administrators to manage one or more directories with devices that are not associated with a domain of the one or more directories via a set of APIs. The system also allows applications and services that do not have direct access to a list of directory users to access the one or more directories. The user, group, and device management and authentication system may be an add-on system that works in conjunction with a centrally-managed directory service to provide such functionality. For example, the system may generate an access token associated with a particular directory that can be used by a service accessed by an administrator to call an API provided by the system. The API call may be translated into a directory-specific API call that can be used to perform an action in the particular directory.

Abstract: A time validation indicator is disclosed comprising at least a receiving layer and an activating layer. The receiving layer comprises at least one or more masking colorants and one or more deactivators that cause and maintain the one or more masking colorants in an initial colored state. The activating layer comprises at least one or more migratory activators that migrate into the receiving layer upon at least a portion of the receiving layer being placed in contact with at least a portion of the activating layer to initiate a predetermined time period. The migration of the one or more migratory activators into the receiving layer causes at least a portion of the one or more masking colorants to advance to a final colorless state resulting in a visual color change of the receiving layer that indicates the predetermined time period has elapsed. Also disclosed are methods for creating and using the inventive time validation indicator.

Abstract: A time validation indicator is disclosed comprising at least a receiving layer and an activating layer. The receiving layer comprises at least one or more masking colorants and one or more deactivators that cause and maintain the one or more masking colorants in an initial colored state. The activating layer comprises at least one or more migratory activators that migrate into the receiving layer upon at least a portion of the receiving layer being placed in contact with at least a portion of the activating layer to initiate a predetermined time period. The migration of the one or more migratory activators into the receiving layer causes at least a portion of the one or more masking colorants to advance to a final colorless state resulting in a visual color change of the receiving layer that indicates the predetermined time period has elapsed. Also disclosed are methods for creating and using the inventive time validation indicator.