An arrangement to direct a packet sent out from an arbitrary apparatus connected to a network to a predetermined authentication server without changing the configuration of a computer network. A packet transmitted from apparatus, such as a personal computer, newly connected to the network, is guided to an authentication server via communication control apparatus. The communication control apparatus replaces a MAC address of the destination addresses of another server, which is included in the ARP cache of the personal computer, with the MAC address of the communication control apparatus to guide the packet from the personal computer to the communication control apparatus. The communication control apparatus further transmits the received packet to a predetermined authentication server.

In general, in one aspect, the disclosure describes a Universal Plug and Play (UPnP) Remote Access Server (RAS) to provide a communication channel between UPnP Remote Access Clients (RACs) connected thereto. The UPnP RAS maintains local discovery information for UPnP devices connected to a local network and remote discovery information for remote UPnP devices communicating therewith. The UPnP RAS provides the remote UPnP devices communicating therewith with the local discovery information and the remote discovery information. The remote discovery information is utilized by a first remote UPnP device to discover a second UPnP device and vice versa. After discovery, a first remote UPnP device can communicate with a second UPnP device and vice versa.

Determining an entity's cybersecurity risk and benchmarking that risk includes non-intrusively collecting one or more types of data associated with an entity. Embodiments further include calculating a security score for at least one of the one or more types of data based, at least in part, on processing of security information extracted from the at least one type of data, wherein the security information is indicative of a level of cybersecurity. Some embodiments also comprise assigning a weight to the calculated security score based on a correlation between the extracted security information and an overall cybersecurity risk determined from analysis of one or more previously-breached entities in the same industry as the entity. Additional embodiments include calculating an overall cybersecurity risk score for the entity based, at least in part, on the calculated security score and the weight assigned to the calculated security score.

In one example, a system is described which includes an underlay network including a mapping server and a mapping database, an overlay network including VTEPs, at least one peripheral device, and at least one client device connected to the at least one peripheral device via the VTEPs. Further, each VTEP includes a traffic optimization module. A first VTEP receives a first service advertisement from a first peripheral device offering the first service and registers service advertisement information with the mapping database, a second VTEP connected to a first client device queries the mapping database to discover the first peripheral device via a unicast message, retrieves the service advertisement information from the mapping database upon a successful query, and sends the retrieved service advertisement information to the first client device, and the first client device selects the first peripheral device offering the first service using the service advertisement information.

Determining an entity's cybersecurity risk and benchmarking that risk includes non-intrusively collecting one or more types of data associated with an entity. Embodiments further include calculating a security score for at least one of the one or more types of data based, at least in part, on processing of security information extracted from the at least one type of data, wherein the security information is indicative of a level of cybersecurity. Some embodiments also comprise assigning a weight to the calculated security score based on a correlation between the extracted security information and an overall security risk determined from analysis of one or more previously-breached entities in the same industry as the entity. Additional embodiments include calculating an overall cybersecurity risk score for the entity based, at least in part, on the calculated security score and the weight assigned to the calculated security score.

Systems and methods for mapping IP addresses to an entity include receiving at least one domain name associated with the entity. Embodiments may further include determining one or more variations of the at least one domain name based on analysis of domain name data collected from a plurality of domain name data sources that mention a variation of the at least one domain name. Some embodiments may also include identifying one or more IP addresses pointed to by the one or more variations of the entity's domain name based on analysis of IP address data collected from a plurality of IP address data sources. Additional embodiments include assigning weights to each of the identified one or more IP addresses and creating a mapping of IP addresses to associate with the entity based on analysis of the weighted one or more IP addresses.

An arrangement to direct a packet sent out from an arbitrary apparatus connected to a network to a predetermined authentication server without changing the configuration of a computer network. A packet transmitted from apparatus, such as a personal computer, newly connected to the network, is guided to an authentication server via communication control apparatus. The communication control apparatus replaces a MAC address of the destination addresses of another server, which is included in the ARP cache of the personal computer, with the MAC address of the communication control apparatus to guide the packet from the personal computer to the communication control apparatus. The communication control apparatus further transmits the received packet to a predetermined authentication server.

The subject matter of the present disclosure can be implemented in, among other things a computer-readable storage medium encoded with instructions for causing a programmable processor to receive, by a server, a first message from a remote control that is distinct from and external to the server, wherein the first message includes a remote control identifier and control information for controlling one or more functions of at least one device other than the remote control. The instructions also cause the programmable processor to retrieve, by the server, a controlled device identifier that uniquely identifies a controlled device that is distinct from and external to the server. The instructions also cause the programmable processor to send a second message from the server to the controlled device identified by the controlled device identifier to control an operation of the controlled device.

The present disclosure provides a method for communication between a network device and a terminal device, where the network device stores a correspondence between a link-layer address and an IP address that are of the terminal device, and the method includes: obtaining, by the network device, a first link-layer address; determining whether a quantity of IP addresses corresponding to the first link-layer address reaches a threshold; if the quantity reaches the threshold, selecting an IP address from the IP addresses, where a quantity of selected IP addresses is not greater than the maximum quantity; saving a correspondence between the first link-layer address and the selected IP address; and sending, according to the selected IP address, a message to a terminal device having the first link-layer address, where the message is used to notify the terminal device whether an IP address is selected by the network device.

The disclosure belongs to wireless communication technology, and the provided method, device and system of Forward Addressing and Backward Readdressing InterConnect (FABRIC) including, the method of forward addressing and backward readdressing interconnect enables any two devices in the system to establish interconnection channels when data exchange is required, and screens out suitable relay devices among the numerous intermediate devices between the two devices, the transmission of data is controlled within a limited range, and the interconnection channel is not unique, each time of data transmission is likely to pass through different intermediate devices with randomness and redundancy, it can cope with a certain degree of device movements. A plurality of devices can carry out communication between two at the same time without conflict.