Abstract: Methods, systems, apparatuses, and computer-readable storage mediums described herein are configured to detect anomalous post-authentication behavior/state change(s) with respect to a workload identity. For example, audit logs that specify actions performed with respect to the workload identity of a platform-based identity service, a causing state change(s), while another identity is authenticated with the platform-based identity service, are analyzed. The audit log(s) are analyzed via a model for anomaly prediction based on actions. The model generates an anomaly score indicating a probability whether a particular sequence of the actions is indicative of anomalous behavior/state change(s). A determination is made that an anomalous behavior has occurred based on the anomaly score, and when anomalous behavior has occurred, a mitigation action may be performed that mitigates the anomalous behavior.

Abstract: System settings for an information handling system are updated based on the operating system version of an information handling system that is installed or updated on the information handling system. An operating system template to the version of the operating system is retrieved and staged to a shared memory access/partition accessible by a basic input/output system (BIOS) of information handling system. A system policy enforcer of the BIOS accesses configuration settings from the staged corresponding operating system template and applies the accessed accessing configuration settings to the information handling system.

Abstract: A device for managing an electronic control unit of a motor vehicle that includes an update module that updates the configuration of the electronic control unit. The update module has a first programmable update interface that updates the parameter value associated with at least one configuration parameter and updates the filter value associated with the at least one configuration parameter in response to the update. The update module has a second programmable update interface to update the parameter values associated with at least part of a set of configuration parameters on the basis of the filter values associated with the configuration parameters.

Abstract: A center, configured to communicate with an OTA master that controls software updating of a plurality of electronic control units, includes a processor. The processor is configured to receive, from the OTA master, first identification information that identifies the electronic control units, and to store compatibility information that defines a version of software that is compatible with the electronic control units. The processor is configured to identify a version of software that is compatible with a target electronic control unit based on the compatibility information. The target electronic control unit is an electronic control unit that is an object of software updating among the electronic control units identified by the first identification information. The processor is configured to control, by communicating with the OTA master, such that software of the target electronic control unit is updated to the compatible version of the software that is identified.

Abstract: An information handling system includes a memory and a processor. The memory stores an automation test set for the information handling system, and the automation test set includes multiple test cases. The processor determines that each test case of a subset of the test cases includes a same common and time-intensive test step (CTITS). The processor creates a CTITS module based on the same CTITS in the subset test cases. The processor also creates multiple normal test cases based on the test cases of the automation test set. The processor creates a virtual test case to implement the CTITS, executes first test step code within a first normal test case, and executes second test step code within a second normal test case. In response to execution of both the first and second test step code being completed, the processor executes the CTITS via the CTITS module.

Abstract: A computer-implemented method for testing a product, in particular software, hardware, or a system comprising hardware and software, in which, depending on input parameters, a simulation of the product is carried out, with the aid of which a particular property of the product is tested. Depending on a comparison between a result of the simulation and a requirement made of the particular property, a first classification is output for the result of the simulation. Depending on a comparison between reference data from an alternative test of the particular property of the product and the requirement made of the particular property, a second classification is determined. Depending on the first classification and the second classification, an accuracy or robustness of the simulation is determined.

Abstract: An update management system includes one or more processors that obtain collective data compiled from a group of computer devices that run an updated version of a software program. The collective data includes at least one of usage data of the computer devices in the group or user feedback directed to operation of the updated version of the software program. The one or more processors determine, based at least on an analysis of the collective data, that the updated version of the software program should be installed on a first computer device controlled by a first user, and generate a control signal to at least one of notify the first user that the updated version is recommended, schedule installation of the updated version, or automatically install the updated version on the first computer device.

Abstract: The network management system (NMS) assesses behavior data such as Ethernet error, speed flapping, cold restart, and/or cloud disconnect collected from a respective one of access points (APs) or other wired client-side devices at an edge of a wired network, and determines whether features of the behavior data are indicative of a bad cable issue at a particular port of a particular network device of the wired network to which the respective AP is connected via a cable. The particular network device may be a third-party network device from which the NMS does not receive behavior data. In the case of a bad cable issue being detected, the NMS outputs a bad cable notification including identification information of the particular port and the particular network device. The NMS enables client-side only, behavior-based bad cable detection at network devices that avoids network traffic disruptions caused by conventional cable tests.

Abstract: A message queue routing system may be implemented into a message queue gateway to route data to Software component designed and deployed into MQ Gateway to route the data to the MQ cluster. A central processing unit (CPU) node analyzer reads real time health statistics of each of a plurality of MQ cluster processing nodes. Based the computation, the CPU node analyzer routes the message to a specified node of the cluster having a minimum of CPU load at that time. The CPU node analyzer analyzes information comprising at least CPU performance information and system idleness information. Each processing node enables dynamic message routing computations utilizing an artificial intelligence/machine learning framework and a plurality of trained predictive models. The predictive model is trained using a trained data set using text classification.

Abstract: In accordance with input received via a programmatic interface, a level of isolation at which a software container is to be executed is determined. Based on the level of isolation, a category of virtual machines of a virtualized computing service is selected for executing the software containers. The selected category differs from other categories in at least the number of devices emulated for virtual machines of the categories. The software container is run within a virtual machine of the selected category.

Abstract: In a first participant in a network—such as an ad hoc wireless network—a facility performs peer regulation of the network. The facility monitors behavior of a second participant in the network that has appointed itself a routing participant for the network. Among the monitored behavior, the facility identifies behavior of the second participant that is inconsistent with its routing participant status. In response to this identifying, the facility sends a message to participants of the network including a third participant indicating that the second participant is no longer a routing participant.

Abstract: A firmware updating system and method are provided. The firmware updating method includes configuring a host to digitally sign a firmware to be updated, and configuring an electronic device to perform an authorization verification on an update tool, and only the update tool that passes the verification has an update permission. The update tool uses an encryption algorithm to encrypt the firmware to be updated that includes a digital signature. After the encryption is completed, the host sends the update tool to the electronic device through the update tool. The electronic device then uses a decryption algorithm to decrypt the received firmware to obtain the firmware to be updated including the digital signature, and write the firmware to be updated into a firmware storage area to be updated. The electronic device then verifies the digital signature in the firmware to be updated.

Abstract: Methods, computer program products, and systems are presented. The methods include, for instance: obtaining prediction data that are indicative of media use behaviors of a user over a period of time. Prediction on a pattern of media use behaviors of the user including media content, hours spent on the media content, and the period of time is made. Base on the predicted media use pattern corresponding to a current stage in the period of time, a media use control rule for the user on a controlled device is generated.

Abstract: A system and method for automated application programming interface (API) importation that includes receiving a selection of at least one API provider service of a set of API provider services with API integration support for a platform, retrieving a listing of APIs provided by the selected at least one API provider service, receiving a selection of at least one API from the listing of APIs, and enabling the selected at least one API for a user of the platform, in response to the selection of the at least one API.

Abstract: Technologies are described for ranking test cases related to changes in a software code base using at least a portion of a call graph that is generated from the software code base. The at least a portion of the call graph comprises method nodes corresponding to methods in the software code base. The method nodes represent control flow relationships between the methods in the software code base. The at least a portion of the call graph also comprises test case nodes. Each test case node is connected to one or more method nodes corresponding to coverage of the one or more method nodes by the test case node. Using the at least a portion of the call graph, the test case nodes are automatically ranked. Ranking of the test case nodes is performed by evaluating various criteria associated with the at least a portion of the call graph.

Abstract: A method includes receiving a high-level function in a high-level code of an application; identifying resources in a hardware to execute a set of low-level instructions that is generated from the high-level function in the high-level code; compiling the high-level function in the high-level code of the application into the set of low-level instructions to be executed on the hardware; and generating a plurality of structured metadata associated with allocation of resources in the hardware to execute the set of low-level instructions.

Abstract: In one embodiment, a method includes generating, by a pod deployment tool, a security context profile, associating, by the pod deployment tool, the security context profile with a deployment rule, and associating, by the pod deployment tool, a vulnerability level with the deployment rule. The method also includes identifying, by the pod deployment tool, pod policies associated with a pod located within a cluster of a network and analyzing, by the pod deployment tool, conditions of the deployment rule using the pod policies. The conditions may be associated with the security context profile and the vulnerability level. The method further includes determining, by the pod deployment tool, whether to allow deployment of the pod within the network in response to analyzing the conditions of the deployment rule.

Abstract: An apparatus converts incoming Power over Ethernet signals into power and data communications under the USB type C protocol standards for use with USB type C connections. Embodiments include a control circuit with programmed processes that facilitate negotiation when a USB-C device connector is attempting to communicate with for example, an Ethernet power source. The control circuit identifies the power delivery and communication profiles associated with a USB type C connected device and controls the Power over Ethernet source signal for compatibility with the device's charging profile and compliance under different IEEE standards.

Abstract: Automated computer-implemented processes and systems are directed to troubleshooting a network used by an application in a data center. The processes and system execute a framework for automated network troubleshooting of an application. The framework performs automated fault localization by traversing a dependency graph that models the network from the observed performance problem, guided by the causality relationships, and for each edge of the graph, performs a test to determine problem causality, terminates at a set of well-defined criteria, and outputs at least one potential root cause for the application performance problem.

Abstract: Example implementations relate to predicted usage based on monitored usage. For example, a system comprising a monitor engine can monitor usage of a plurality of applications used by a user during a first time period, during a heartbeat event, and predict usage of the plurality of applications, using a predictor engine, by the user during a second time period based on the analyzed monitored usage of the plurality of applications during the first time period. Additionally, the predictor engine can generate content during the second time period based on the predicated usage of the plurality of applications during the first time period.

Abstract: Methods and systems for a networked storage system are provided. One method includes: utilizing, by a first node, a storage location cache to determine if an entry associated with a first read request for data stored using a logical object owned by a second node configured as a failover partner node of the first node exists; transmitting, by the first node, the first read request to the second node; receiving, by the first node, a response to the first read request from the second node with requested data; inserting, by the first node, an entry in the storage location cache indicating the storage location information for the data; and utilizing, by the first node, the inserted entry in the storage location cache to determine storage location of data requested by a second read request received by the first node.

Abstract: A method, apparatus and system for transmitting data. The system includes: the load balance gate wall translating a virtual MAC address of the virtual server in a destination address of a data packet from a client to a real MAC address of the real server according to a pre-configured address mapping relationship between a real server and a virtual server; the load balance gate wall sending a modified data packet to the virtual switch; the virtual switch determining a data packet flowing into the real server after receiving the data packet from the load balance gate wall, then translating a virtual IP and a virtual port of the virtual server in the destination address in the determined data packet to a real IP and a real port of the real server; and the virtual switch sending the modified data packet to the real server.

Abstract: A method includes receiving a high-level function in a high-level code of an application is received. The method also include identifying resources in a hardware to execute a set of low-level instructions that is generated from the high-level function in the high-level code. One or more processing operations are determined to be performed that is associated with the high-level function in the high-level code. The determining of the one or more processing operations occurs based on architecture of the hardware. The high-level function in the high-level code of the application is compiled into the set of low-level instructions to be executed on the hardware. A plurality of structured metadata is generated and includes information associated with the determining resources in the hardware and further includes information associated with the determining one or more processing operations.

Abstract: Disclosed is a game test automation device capable of automating a game test. The game test automation device can comprise: a database for storing test procedure information, which is a combination of game scripts to be tested in a game service; and a testing unit for testing game build of the game service on the basis of the test procedure information, and creating game state information derived in the testing process and a test report on the test.

Abstract: Example implementations relate to method and management system for collecting contextual log files to an issue in a computing system. The method includes analyzing alert data to identify a current symptom associated with the issue in the computing system, and determining whether the current symptom exists in a first lookup table including a plurality of first symptoms and a plurality of first log categories. Each first symptom is mapped to one or more first log categories in the first lookup table. In response to determining that the current symptom exists in the first lookup table, the method includes collecting one or more log files from a plurality of log files corresponding to the one or more first log categories mapped to the current symptom, from the computing system. Further, the method includes transferring the one or more log files to an external computing system for performing diagnostics on the issue.

Abstract: Systems and methods are disclosed that minimize ongoing risk to an organization from user behaviors which magnify the severity of a spoofed domain. Systems and method are provided which enable an entity and users of an entity to identify potential harmful domains, combining search, discovery, reporting, the generation of risk indicators, end-user risk assessments, and training into a security awareness system.

Abstract: A fault injection method and apparatus, an electronic device and a storage medium are provided, which are related to the technical fields of computers and cloud computing, in particular to the field of testing. The fault injection method includes: acquiring a fault injection task, which includes at least one target service identification and a fault scenario corresponding to the target service identification; determining a target service according to each target service identification, and acquiring a state of the target service; and injecting the fault scenario corresponding to the target service identification into the target service in a case that the state of the target service is a normal state. The application is beneficial to reduction of labor cost.

Abstract: An apparatus, a computer program product and a method for dimensionality reduction comprising: obtaining a set of Application Programming Interface (API) functions of a system invocable by a program, and a set of artifacts. Each artifact is associated with at least one API function and indicative of a functionality thereof. The method further comprising: clustering the API functions based on an analysis of the artifacts to create a set of clusters smaller than the set of API functions, such that each cluster comprises API functions having a similar functionality; and performing a dimensionality reduction to a feature vector using the set of clusters.

Abstract: A program is executed using a call stack and shadow stack. The call stack includes frames having respective return addresses. The frames may also store variables and/or parameters. The shadow stack stores duplicates of the return addresses in the call stack. The call stack and the shadow stack are maintained by, (i) each time a function is called, adding a corresponding stack frame to the call stack and adding a corresponding return address to the shadow stack, and (ii) each time a function is exited, removing a corresponding frame from the call stack and removing a corresponding return address from the shadow stack. A backtrace of the program's current call chain is generated by accessing the return addresses in the shadow stack. The outputted backtrace includes the return addresses from the shadow stack and/or information about the traced functions that is derived from the shadow stack's return addresses.

Abstract: A system may include an application server and one or more tenants served by the application server. The application server may host a virtual machine with multiple isolated sub-environments. Each tenant of the application server may request to run a program in a tenant-specific sub-environment of the virtual machine. The sub-environments may be configured so the execution of one tenant's code does not affect execution of another tenant's code or the hosting virtual machine, for example, by considering the resources used to execute the code. The application server may implement techniques to securely execute “untrusted” code, programmed using one or more different programming languages, in the sub-environments by enforcing resource restrictions and restricting the sub-environments from accessing the host's local file system. In this way, one tenant's code does not negatively impact execution of another tenant's code by using too many resources of the virtual machine.

Abstract: Generating targeted analysis results in a support system is disclosed. Computing device information about a supported computing device in which a problem was encountered is received. Identification of a designated subset of tags of a plurality of tags is received. A plurality of analyzers is initiated to analyze the computing device information. The plurality of analyzers is configured to generate a plurality of results based on the computing device information. Tags of the plurality of tags are associated with the plurality of results. A subset of results are generated by discarding each result from the plurality of results that have no associated tags that match a tag in the designated subset of tags. The subset of results is output.

Abstract: An infrastructure management system automatically determines a configuration of infrastructure services for the execution of applications that best satisfies predefined target criteria based on receiving annotated application programming interface (API) schemas associated with the applications. The system extracts information from customized annotations in a received API schema, sets up an API gateway with an existing configuration of infrastructure services, and logs requests received at this existing configuration via the gateway. The system generates a set of alternate configurations based on the extracted information, simulates execution of a set of logged requests to determine a set of valid configurations, and subsequently selects a new configuration that satisfies threshold predefined target criteria. The system may update the existing configuration to the new configuration without interrupting application services.

Abstract: A method in a computer system having an operating system providing isolation between software processes executable in the operating system such that a first process executing in the operating system is prevented from accessing resources of a second process executing in the operating system, the method including receiving a software component for execution as an isolated process in the operating system; receiving a baseline profile for the software component defining one or more characteristics of the software component at a runtime for identifying performance of the software component; generating a runtime profile of the software component in execution in the operating system defining characteristics of the component in execution; and flagging the software component in execution based on a comparison of the baseline profile and the runtime profile so as to identify an undesirable performance of the software component.

Abstract: An access control method for a restricted resource in a computer system having an operating system providing isolation between software processes executable in the operating system such that a first process executing in the operating system is prevented from accessing resources of a second process executing in the operating system, the method including receiving a software component for execution as an isolated process in the operating system; receiving a baseline profile for the software component defining characteristics of the software component at a runtime for identifying performance of the software component; generating a runtime profile of the software component in execution in the operating system defining characteristics of the component in execution; and permitting access by the software component to the restricted resource based on a comparison of the baseline profile and the runtime profile such that the software component exhibiting undesirable performance is precluded from accessing the restrict

Abstract: The invention provides for an improved and diversified system, apparatus and method for authenticating and/or authorizing an identity of an action requester within a secure environment. The invention provides for human and non-human agents as authentication factors that can be communicated with in real time via a communications network, such as via the Internet. The invention also provides for facilitating authorization of action requests that are received from non-human action requesters.

Abstract: Systems, methods, and non-transitory computer-readable media can initiate a robotics framework configured to enable inter-process communications between a plurality of services implemented on the robotics framework, the plurality of services configured to operate at least some features of a vehicle. A function call is received from a first service of the plurality of services. The function call instructs the robotics framework to generate a network socket. A virtual network socket configured to receive data from a data log is generated based on the function call. The virtual network socket simulates data transmission with a hardware device over a real network socket.

Abstract: In one embodiment, a method for continuous integration automated testing in a distributed computing environment may include receiving data for a computer application into an automated testing schema; at least one computer processor executing a baseline test run and storing baseline test run results; receiving new code for the computer application at a test environment; the at least one computer processor executing a test run and storing test run results; the at least one computer processor comparing the test run results to the baseline test run results; and the at least one computer processor generating at least one report based on the comparing.

Abstract: A debugging and diagnostics system allow for dynamic code generation that inserts code into a production application to identify snappoints that cause snapshots to be taken if predefined conditionals are satisfied. The snappoints are associated with locations in source code for the production application and include conditional statements that must be met to create a snapshot of the production application. The snappoints are used to generate a collection plan that is provided to the server running the production application. The server rewrites the code of the production application based upon the collection plan to insert instructions that create snapshots when the conditional statements are met.

Abstract: A software as a service platform employing novel means and methods to do demographic and behavioral data collection on and analysis of human UI/UX interactions. By utilizing adaptive testing, adaptive tester selection, and persistent tester pools with verified demographic data and ongoing behavioral data collection via a wide range of manual and algorithmic methods, decomposing, recomposing, and delivering optimized UI or UX data sources, collecting, integrating, delivering, and analyzing demographic and behavioral data regarding human interaction with interactive user interfaces and experiences using manual, hybrid, or algorithmic methods such as machine learning algorithms or path-finding algorithms, the present invention provides a novel framework for the extraction of comprehensive, consistent, and dynamic insights into the demographic and behavioral interactions of humans with interactive digital media sources.

Abstract: A test case management system includes an input and output (I/O) interface for receiving a first test case, a database (DB) for storing a second test case, and a controller for comparing the first test case with the second test case based on a similarity score between a string of the first test case and a string of the second test case.

Abstract: Various example embodiments for supporting data retrieval flexibility are presented. Various example embodiments for supporting data retrieval flexibility may include supporting data retrieval flexibility for retrieval of data from a device that does not maintain that data using a relational database data format by supporting operation of the device as a device that supports retrieval of that data in a relational database data format using a structured query language. Various example embodiments for supporting data retrieval flexibility may include supporting data retrieval flexibility for retrieval of data from a device by supporting retrieval of data maintained at the device based on a first data format based on generation of a database storing that data in a second data format different than the first data format and using a structured query language configured to support retrieval of the data in the second data format from the database.

Abstract: Examples disclosed herein relate to selecting a security mitigation action based on device usage. In one implementation, a processor selects a security mitigation action for a device based on information related to usage of the device and associated usage limitations associated with the selected security mitigation action. The processor may output information related to the selected security mitigation action.

Abstract: Automatic navigation of a user from a log statement that is selected by the user from a log to a code expression that was executed to generate the selected log statement. The computing system automatically identifies one or more code expressions as candidates for having generated the log statement, and then maps the log statement to these identified candidate code expressions in the code. In response to input from the user selecting the log expression, the computing system uses the mapping to visually provide a correlation between the log statement and the particular code expression, where the one or more mapped code expressions includes the particular code expression that actually generated the log statement.

Abstract: Systems and techniques are described for generating test cases. In one example, a manual test of code is performed. The manual test uses proxy code to detect at least one input to the code and a data transfer between the code and other code. The data transfer includes an input to the other code and an output from the other code. A file is generated that includes the at least one input to the code, the input to the other code, the output from the other code, and data that specifies that the manual test of the code resulted in an expected output. A mock test automates the manual test of the code based at least in part on the file.

Abstract: A method for pre-authenticating a user on the user's mobile device is provided. The method may be implemented on the device. The method may include tracking commonly accessed applications over a pre-determined amount of time. The method may include tracking and storing on the mobile device, application data associated with each commonly accessed application. When a determined current time of day is a pre-determined amount of time prior to the tracked start time of access to a one or more commonly accessed applications, the method may include capturing, autonomously, via each of a plurality of sensors, an attribute associated with the user. The method may further include comparing a value of the attribute captured to a historically stored attribute value. The method may further include verifying and pre-authenticating the user based on the comparing. The method may also include pre-loading the user's mobile device with the commonly accessed application.

Abstract: A device to be utilized for testing a program is connected to a device host operating in a service provider network via a peripheral bus. A network connection is established between a testing host, which might be a virtual machine, and the device host using a peripheral-bus-over-network-protocol. A secure network connection is established between the developer computing device and the testing host. A network port utilized by a debugging client application executing on the developer computing device is forwarded to the testing host over the secure network connection. Data packets generated by the debugging client application executing on the developer computing device are forwarded to a debugging server application execution on the testing host. Peripheral devices (e.g. the requested device) accessible to the testing host can then be utilized by the developer computing device for testing execution of the program as if the device were locally connected thereto.

Abstract: Intelligent authentication is disclosed. According to one embodiment, a system includes a transaction logic configured to receive transaction metadata associated with an attempted transaction. The transaction logic is also configured to identify a user attempting the attempted transaction. The system further includes an activity logic configured to access an activity log associated with the user. The activity log includes values corresponding to previous transactions made by the user and any additional information provided by 3rd party feeds. The activity logic is also configured to compare transaction metadata to the values. The system also includes an authentication logic configured to select an authentication level for the transaction based, at least in part, on the comparison.

Abstract: A method of evaluating and selecting an application programming interface (API). The method includes accessing source-code in computer programming languages from an API repository. The method includes training a machine learning classifier using generalized, extracted API-calls to learn variations of API-call programming language syntaxes through usage of the API-call programming language syntaxes in the source-code. The method includes building API-call models suitable for the computer programming languages and building a parameter relations graph based on backtracking data-flow from API-calls that are extracted from public project repositories based on the API-call model. The method includes retrieving sample parameter values from the parameter relations graph. The method includes implementing the sample parameter values in an evaluation interface to evaluate functionality of an API in a software application.

Abstract: A system and method is provided for implementing platform security on a consumer electronic device having an open development platform. The device is of the type which includes an abstraction layer operable between device hardware and application software. A secured software agent is provided for embedding within the abstraction layer forming the operating system. The secured software agent is configured to limit access to the abstraction layer by either blocking loadable kernel modules from loading, blocking writing to the system call table or blocking requests to attach debug utilities to certified applications or kernel components.

Abstract: A system, method and computer-readable storage devices for enhancing the presentation of structured log files. A system configured according to this disclosure can track events of a computing entity. The computing entity can be a state machine, a virtual machine, a thread, a process, a software component, or a hardware component. The computing entity can be any device that generates or contributes to an event log. The events can be tracked from at least one of a structured log file and a stream of event data, for example. The system can identify event types for the events. The system can identify relationships between the events, and generate a sequence diagram of the events. The sequence diagram can include visual indications of the relationships based on the event types. The system can further select an icon for each event from an event-specific icon directory based on event type.