A security policy deployment method and apparatus are provided, and the method includes: when a lifecycle state of a virtualized network function VNF changes, generating, by a management network element, a security policy of the VNF, where the security policy of the VNF is used to perform access control on the VNF; and sending, by the management network element, the security policy of the VNF to a control device. The management network element is a network element configured to perform lifecycle management on the VNF. By using the method or apparatus provided in embodiments of this application, the security policy of the VNF can be adjusted in time when the lifecycle state of the VNF changes, thereby greatly reducing a possibility that a bug occurs in the security policy of the VNF because the VNF changes.

A network operator can partition network elements, including elements of an IP Multimedia Subsystem (IMS) or Policy and Charging Rules Functions (PCRFs) into groups reserved for specific types of subscribers. When a user equipment (UE) registers with an IMS, elements of the IMS can contact a Home Subscriber Server (HSS) to determine a subscriber type associated with the UE. Based on the UE's subscriber type, an IMS element can determine an application server or other IMS element to contact about the UE based on identifying application servers or IMS elements that are also associated with the same subscriber type as the UE. Similarly, an IMS element can determine a PCRF to contact about the UE based on identifying a PCRF that is associated with the same subscriber type as the UE.

A network operator can partition network elements, including elements of an IP Multimedia Subsystem (IMS) or Policy and Charging Rules Functions (PCRFs) into groups reserved for specific types of subscribers. When a user equipment (UE) registers with an IMS, elements of the IMS can contact a Home Subscriber Server (HSS) to determine a subscriber type associated with the UE. Based on the UE's subscriber type, an IMS element can determine an application server or other IMS element to contact about the UE based on identifying application servers or IMS elements that are also associated with the same subscriber type as the UE. Similarly, an IMS element can determine a PCRF to contact about the UE based on identifying a PCRF that is associated with the same subscriber type as the UE.

A low-latency, high-bandwidth, and highly scalable method delivers data from a source device to multiple communication devices on a communication network. Under this method, the communication devices (also called player nodes) provide download and upload bandwidths for each other. In this manner, the bandwidth requirement on the data source is significantly reduced. Such a data delivery network is scalable without limits with the number of player nodes. In one embodiment, a computer network includes (a) a source server that provides a data stream for delivery in the computer network, (b) player nodes that exchange data with each other to obtain a complete copy of the data stream, the network nodes being capable of dynamically joining or exiting the computer network, and (c) a control server which maintains a topology graph representing connections between the source server and the player nodes, and the connections among the player nodes themselves. In one embodiment, the control server is associated with a network address (e.g., an IP address) known to both the source server and the player nodes. The data stream may include, for example, a real-time broadcast of a sports event.

A low-latency, high-bandwidth, and highly scalable method delivers data from a source device to multiple communication devices on a communication network. Under this method, the communication devices (also called player nodes) provide download and upload bandwidths for each other. In this manner, the bandwidth requirement on the data source is significantly reduced. Such a data delivery network is scalable without limits with the number of player nodes. In one embodiment, a computer network includes (a) a source server that provides a data stream for delivery in the computer network, (b) player nodes that exchange data with each other to obtain a complete copy of the data stream, the network nodes being capable of dynamically joining or exiting the computer network, and (c) a control server which maintains a topology graph representing connections between the source server and the player nodes, and the connections among the player nodes themselves. In one embodiment, the control server is associated with a network address (e.g., an IP address) known to both the source server and the player nodes. The data stream may include, for example, a real-time broadcast of a sports event.

An information processing system includes a first controller that controls access to resources on a network based on authority to use the resources, a first manager that registers and manages users who access the resources via the first controller, a second controller that controls, independently of the first controller, access to the resources on the network based on authority to use the resources, a second manager that registers and manages users who access the resources via the second controller, and an identifier that identifies, in response to second authority to use a resource in the second manager being set for a user, first authority of the user to use the resource in the first manager.

A biometrics hub may establish a first schedule for processing first biometric data of a user, establishing a second schedule for processing second biometric data of the user, storing the first biometric data that is received from a first biometric device via a first persistent session, and store the second biometric data that is received from a second biometric device via a second persistent session. The biometrics hub may further transmit at least one of the first biometric data or the second biometric data to an authorized remote device in accordance with the first schedule or the second schedule. In one example, the transmitting includes establishing a session with the authorized remote device, sending the at least one of the first biometric data or the second biometric data to the authorized remote device via the session with the authorized remote device, and closing the session with the authorized remote device.

A biometrics hub may establish a first schedule for processing first biometric data of a user, establishing a second schedule for processing second biometric data of the user, storing the first biometric data that is received from a first biometric device via a first persistent session, and store the second biometric data that is received from a second biometric device via a second persistent session. The biometrics hub may further transmit at least one of the first biometric data or the second biometric data to an authorized remote device in accordance with the first schedule or the second schedule. In one example, the transmitting includes establishing a session with the authorized remote device, sending the at least one of the first biometric data or the second biometric data to the authorized remote device via the session with the authorized remote device, and closing the session with the authorized remote device.

A method is provided for interacting with audience members in an event, each of the potential attendees having available thereto a unique identifier. The method comprises creating, for an attendee, a unique ID (UID) on a mobile wireless device (MWD) by the steps of inputting to the MWD one of the unique identifiers, combining the obtained unique identifier with a UID time stamp at the time of creation of the UID; receiving with a server on a first wireless channel communications from the MWD; registering the UID at the physical location of the event; generating a visual query; displaying on the MWD response indicators; receiving at the server from the registered attendee a response, to the query over the first wireless channel; and storing in a database on the server the received response in association with the displayed query.

Methods, systems, and computer readable media for controlling delivery of content are provided. In some embodiments, a system for controlling delivery of content is provided. The system includes processing circuitry configured to: transmit, to a server, a plurality of requests for blocks of the content; while at least some of the plurality of requests are still outstanding: detect a change of a service characteristic of a connection between the system and the server; determine a preferred number of outstanding requests; and cancel at least some of the requests from the plurality that are still outstanding based on the preferred number and a count of the requests from the plurality that are still outstanding.