Abstract: When a transformation job of flow logs generated for a cloud environment is triggered, a security service determines a parameterized template for batch data processing operations offered by the cloud service provider (CSP) to use based on the type of transformation job. The security service communicates an indication of the template and the corresponding parameter values to a data processing service/pipeline offered by the CSP. The provisioned processing resources retrieve the flow logs from a designated location in cloud storage, complete the transformation, and store the transformed flow logs in a new storage location. If the CSP does not provide a data processing service/pipeline which can perform bulk data transformation, the security service uses a generic parameterized template specifying a transformation job to be run on a cluster. Upon completion, the security service retrieves and analyzes the transformed flow logs as part of threat detection performed for securing the cloud environment.

Abstract: A cloud resource management system detects resource misconfiguration for resources in a cloud including cloud policy misconfigurations and resource vulnerabilities. An attack chain analyzer identifies attack chains from misconfigured resources ordered according to stages in an attack framework that models sequential behavior for malicious attacks. The attack chains are detected according to a depth-first search traversal of adjacent resources that have pairwise exposure according to characteristics indicated in the cloud policy misconfigurations and resource vulnerabilities. The attack chain analyzer generates further diagnostics that inform remediation of resource misconfigurations for malicious attack prevention.

Abstract: An API response field classification service obtains API documentation published by a vendor and defined security policies and matches the response fields represented in the security policies to their descriptions in the API documentation. The service generates labelled training data that comprise the identified response field descriptions with labels indicating that their corresponding response field is security related. Additional labelled training data for security unrelated response fields comprises descriptions of response fields that are known not to be represented with any security policies. The service trains a text classifier on the labelled training data. The trained text classifier accepts inputs comprising descriptions of unknown response fields and outputs predicted classes indicating whether the corresponding response fields are predicted to be security related. Subsequent creation of security policies can be focused on these response fields predicted to be security related.

Abstract: A browser extension produces a single view comprising content of web pages of a target vendor requested by a customer and corresponding security information for the target vendor maintained for the customer. Fingerprints of the target vendor's web page URLs and web page elements corresponding to resources, respectively, are determined. As the web browser retrieves web pages and the customer selects web page elements that identify resources, the browser extension matches URLs and/or HTML/XML syntactic patterns of the retrieved web pages to the fingerprints to determine the security information to obtain from backend storage. The type/granularity of information that is retrieved can vary depending on the identified fingerprint match. The browser extension retrieves security information corresponding to fingerprints for which matches are identified, generates security overviews therefrom, and integrates the security overviews into the requested web pages to generate a consolidated, multi-perspective view.

Abstract: The embodiments described herein relate generally to securely establishing an account and authentication metrics associated with a communication platform. An account associated with a communication platform may allow a user associated with the account to send and receive communications via the communication platform.

Abstract: An electronic device includes at least one memory and at least one processor coupled to the at least one memory. The at least one memory is configured to store a database. The at least one processor is configured to receive content metadata from a content provider based on a query from a first device. The at least one processor is also configured to identify a scenario and a keyword associated with the content metadata. The at least one processor is further configured to generate a recommendation based at least in part on content inferences associated with the first device stored in the database through relating the scenario to previously-identified scenarios and relating the keyword to previously-identified keywords. In addition, the at least one processor is configured to provide the recommendation.

Abstract: A method for calibrating a map of an autonomous robot, a trajectory of the autonomous robot, or a combination thereof includes obtaining localization data from a localization sensor of the autonomous robot and determining whether a calibration condition of the autonomous robot is satisfied based on the localization data. The method includes, in response to the calibration condition being satisfied: determining a master position coordinate of the autonomous robot based on a plurality of radio frequency (RF) signals broadcasted by a plurality of RF tags, converting the master position coordinate to a local position coordinate of the autonomous robot, and selectively updating the map, the trajectory, or a combination thereof based on the local position coordinate of the autonomous robot.

Abstract: Embodiments of the present disclosure include systems and methods for storing tensors in memory based on depth. In some embodiments, for each of a plurality of sets of elements in a three-dimensional (3D) matrix, a position is determined along a height axis and width axis of the 3D matrix. At the determined position, a set of elements are identified along a depth axis of the 3D matrix. The set of elements are stored in a contiguous block of memory.

Abstract: Comprehensive matching allows for automated conversion from runtime policy rules to build time rules that can be applied to an IaC configuration file(s). API specifications of a CSP and resource models defined in an IaC configuration file(s) are parsed and tokenized. The tokenized API specifications are evaluated to identify, for each resource model, a most appropriate API specification for mapping fields. Based on the evaluation and token matching, tokens of the API specifications are mapped to the tokens of the IaC resource models to form a mapping model. In an implementation phase, a runtime policy rule converter replaces tokens of a runtime security policy rule query with IaC tokens based on the mapping index to convert the runtime security policy rule query into a buildtime security policy rule query that can be applied against the IaC configuration files.

Abstract: A system for reconfiguring a factory having equipment at different workstations throughout the factory and a plurality of sensors disposed throughout the factory includes a factory configuration module configured to store a plurality of predetermined factory configurations and a plurality of mobile transporters configured to engage and transport the equipment to the different workstations throughout the factory based on the predetermined factory configurations and dynamic inputs, where the dynamic inputs include a status of the equipment, a status of the plurality of mobile transporters, sensor data output by the plurality of sensors, or a combination thereof.

Abstract: There is disclosed an electrical device and a method in which a battery is warmed up when operating from a sub-zero temperature. The electrical device may include a battery; an electrical storage element; and a battery management system including a controller in electrical communication with the battery and the electrical storage element. The controller can be configured to execute a program stored in the controller to shuttle energy between the battery and the electrical storage element until a power capability threshold of the battery has been reached, Shuttling the energy raises a temperature of the battery to meet power demand.

Abstract: In a system which predicts useful actions for a user, a graph is used to permit better suggested actions. The graph includes base contexts which are related to time, place and occasion and augmented contexts which are related to device state and user actions. A base context together with one or more augmented contexts may provide a suggested action. Several alternative groupings of base contexts and augmented contexts is a scenario. A high-scoring suggested action from one of the scenarios is provided as the suggested action.

Abstract: A method for surveying an environment includes segmenting a plurality of nodes into a plurality of communities. The method includes identifying a plurality of community centroids based on the plurality of communities, where each community centroid from among the plurality of community centroids is associated with one community from among the plurality of communities. The method includes determining, for each community centroid from among the plurality of community centroids, a community type of the community centroid, where the community type is one of a primary type and an auxiliary type, and where the community type is based on a distance between the community centroid and one or more charging stations. The method includes generating a plurality of intercommunity routes based on the plurality of community centroids, the one or more charging stations, the community type, and one or more performance constraints.

Abstract: An electronic device for providing cross-domain recommendations includes a memory and at least one processor coupled to the memory. The at least one processor is configured to receive one or more notifications of at least one user activity in a content provider application, build at least one query based on the one or more notifications, and provide the at least one query to a database, receive at least one cross-domain action from the database. The at least one processor is also configured to generate at least one cross-domain recommendation based on the cross-domain action and instruct an application to display the at least one cross-domain recommendation.

Abstract: A graph representation of cloud resources and their relationships is generated and maintained to provide insights into impact of incidents affecting cloud resources on others in the cloud environment. Cloud resource data for the cloud resources are obtained and relationships among the cloud resources are determined. Relationships among the cloud resources are determined based on analysis of configuration data associated with the cloud resources from which relationships among cloud resources of different types can be inferred, and external sources may also be utilized to facilitate identification of relationships. A graph representation of the cloud resources and their determined relationships is built where the cloud resource data are stored in vertices with directed edges between the vertices representing the identified relationships.

Abstract: A system processes an API specification provided by a vendor to determine and classify the functions defined therein by CRUD operation type based on analysis of the function names. Classification of the function includes associating a bitmask corresponding to the class with the function name. The system then subscribes to an event stream including logged API function call events during a time window overlapping with a “blind spot” period of attack detection. The system analyzes incoming events to identify an associated resource and an API function call. The system classifies the function based on the determined function classes and performs a bitwise operation between bit values maintained for the identified resource that are indicative of resource state and the bitmask of the function class. If the resulting bit values indicate that the resource was both created and deleted during the time window, the system flags the resource as potentially involved in an attack.

Abstract: A method includes determining user content to be provided in a number of formats to a number of network-connected devices associated with a user. The number of network-connected devices are of a plurality of device types. The method further includes determining a fulfillment goal based at least in part on the user content, and generating a multi-fragment application package based at least in part on the respective device types of the number of network-connected devices. The multi-fragment data package includes an adaptable presentation layer that includes instructions for presenting respective fragments of the multi-fragment application package on the number of network-connected devices in accordance with the fulfillment goal. The method further includes providing the respective fragments of the multi-fragment application package to the number of network-connected devices.

Abstract: When a transformation job of flow logs generated for a cloud environment is triggered, a security service determines a parameterized template for batch data processing operations offered by the cloud service provider (CSP) to use based on the type of transformation job. The security service communicates an indication of the template and the corresponding parameter values to a data processing service/pipeline offered by the CSP. The provisioned processing resources retrieve the flow logs from a designated location in cloud storage, complete the transformation, and store the transformed flow logs in a new storage location. If the CSP does not provide a data processing service/pipeline which can perform bulk data transformation, the security service uses a generic parameterized template specifying a transformation job to be run on a cluster. Upon completion, the security service retrieves and analyzes the transformed flow logs as part of threat detection performed for securing the cloud environment.

Abstract: A system and method for reconfiguring a factory having equipment at different workstations throughout the factory includes a plurality of mobile transporters configured to engage and transport the equipment to the different workstations throughout the factory. Each mobile transporter includes a transmitter, a receiver, at least one proximity sensor, and an engagement mechanism for engaging the equipment. A factory configuration module includes a 3D model of the factory and a plurality of predetermined factory configurations. A supervisory control module is in communication with the plurality of mobile transporters, the equipment, and the factory configuration module. The plurality of mobile transporters are configured to receive instructions from the supervisory control module to engage and reposition the equipment throughout the factory based on the predetermined factory configurations and dynamic inputs.

Abstract: When a transformation job of flow logs generated for a cloud environment is triggered, a security service determines a parameterized template for batch data processing operations offered by the cloud service provider (CSP) to use based on the type of transformation job. The security service communicates an indication of the template and the corresponding parameter values to a data processing service/pipeline offered by the CSP. The provisioned processing resources retrieve the flow logs from a designated location in cloud storage, complete the transformation, and store the transformed flow logs in a new storage location. If the CSP does not provide a data processing service/pipeline which can perform bulk data transformation, the security service uses a generic parameterized template specifying a transformation job to be run on a cluster. Upon completion, the security service retrieves and analyzes the transformed flow logs as part of threat detection performed for securing the cloud environment.