A system is provided to support a serverless environment and quickly generate containers to handle requests. The system includes a first network node, a container orchestration system, and a serving node. The first network node receives an initial packet of a request from a host and sends a notification to a container orchestration system. The notification includes header information from the initial packet and signals the reception of the initial packet of the request. The container orchestration system creates one or more new containers in response to the notification based on the header information of the initial packet. The serving node instantiates the new containers, receives the request from the host, and processes the request from the host with the new containers.

In one embodiment, a system includes a computing device providing a computing environment including a number of user accounts, where each of the user accounts is assigned specified privileges to execute particular commands or programs, receiving a request to temporarily escalate privileges for one of the user accounts during a specified duration, where the request includes an identifier of the user account, requested privileges, and the specified duration, granting the requested privileges for the specified duration in conjunction with specific restrictions on one or more prohibited activities that are normally permitted for user accounts with the requested privileges, monitoring, 1 0 during the specified duration, for any indication that the user account has attempted a prohibited activity, detecting an indication that the user account attempted one of the prohibited activities, and initiating an automated remediation corresponding to the indication.

A new scalable approach to conflict-free deployment of changes across networks. The conflict rules or constraints may be modeled using policies and algorithms to determine an optimized schedule for change deployment.

A controller device manages a plurality of network devices arranged at a plurality of sites. The controller device includes one or more processing units configured to determine a stateful intent for managing a software application at the plurality of network devices and represented by a graph model and translate the stateful intent into low-level configuration data. The one or more processing units are further configured to determine, for each site, a priority index based on a site-level usage of the software application, determine, an ordered list of the plurality of sites based on the priority index for each respective site, and configure, for each respective site, and in an order specified by the ordered list of the plurality of sites, one or more network devices of the plurality of network devices that are arranged at the respective site according to the low-level configuration data.

For parallel deployment of a plurality of virtual systems in a broadband network, an electronic data structure is obtained, which specifies a set of requirements for each of the plurality of virtual systems to be deployed in parallel. The sets of requirements in the electronic data structure are parsed to obtain a plurality of virtual system creation instruction files, one for each of the virtual systems to be deployed in parallel. A plurality of threads are executed in parallel, one for each of the virtual systems to be deployed in parallel, in accordance with the plurality of virtual system creation instruction files, to build the plurality of virtual systems.

Methods, apparatus, systems and articles of manufacture are disclosed that implement cloud functionality in a cloud agnostic system. An example apparatus to implement cloud specific functionality in a cloud agnostic system includes a request interpreter to determine whether a first request includes an indication that a cloud resource is to be partially provisioned, a provision determiner to select the cloud resource based on the indication, and a cloud interface to transmit a first resource request to partially provision the cloud resource, and in response to a second request including constraints specific to the cloud resource, transmit a second resource request to fully provision the cloud resource.

In one aspect, a device includes at least one processor, a touch-enabled display accessible to the at least one processor, and storage accessible to the at least one processor. The storage includes instructions executable by the at least one processor to detect a hover of a body part of a user or other physical object above the touch-enabled display, where the hover does not include the physical object physically touching the touch-enabled display. The instructions are also executable to identify a graphical object underneath the hover and to cache data associated with the graphical object prior to the graphical object being selected based on the physical object physically touching the touch-enabled display.

Some embodiments provide a method for configuring a logical middlebox in a hosting system that includes a set of nodes. The logical middlebox is part of a logical network that includes a set of logical forwarding elements that connect a set of end machines. The method receives a set of configuration data for the logical middlebox. The method uses a stored set of tables describing physical locations of the end machines to identify a set of nodes at which to implement the logical middlebox. The method provides the logical middlebox configuration for distribution to the identified nodes.

A controller of a network control system for configuring several middlebox instances is described. The middlebox instances implement a middlebox in a distributed manner in several hosts. The controller configures a first middlebox instance to obtain status of a set of servers and disseminate the obtained status to a second middlebox instance. The controller configures the second middlebox instance to use the status to select a server from the set of servers.

The present invention provides a system and method for remote configuration and management of internet of thing devices, whereby applications do not need to explicitly participate in a particular configuration scheme and the application configuration and management can be performed securely and remotely while the Secure Remote Management engine is architecturally decoupled from the bearing protocols used by the remote enterprise to configure and manage the device or devices.