An intelligent automated assistant system engages with the user in an integrated, conversational manner using natural language dialog, and invokes external services when appropriate to obtain information or perform various actions. The system can be implemented using any of a number of different platforms, such as the web, email, smartphone, and the like, or any combination thereof. In one embodiment, the system is based on sets of interrelated domains and tasks, and employs additional functionally powered by external services with which the system can interact.

Intelligent Automated Assistant

A virtual assistant uses context information to supplement natural language or gestural input from a user. Context helps to clarify the user's intent and to reduce the number of candidate interpretations of the user's input, and reduces the need for the user to provide excessive clarification input. Context can include any available information that is usable by the assistant to supplement explicit user input to constrain an information-processing problem and/or to personalize results. Context can be used to constrain solutions during various phases of processing, including, for example, speech recognition, natural language processing, task flow processing, and dialog generation.

Using context information to facilitate processing of commands in a virtual assistant

A method and apparatus are provided for building an intelligent automated assistant. Embodiments of the present invention rely on the concept of “active ontologies” (e.g., execution environments constructed in an ontology-like manner) to build and run applications for use by intelligent automated assistants. In one specific embodiment, a method for building an automated assistant includes interfacing a service-oriented architecture that includes a plurality of remote services to an active ontology, where the active ontology includes at least one active processing element that models a domain. At least one of the remote services is then registered for use in the domain.

Method and apparatus for building an intelligent automated assistant

Among other things, techniques and systems are disclosed for implementing contextual voice commands. On a device, a data item in a first context is displayed. On the device, a physical input selecting the displayed data item in the first context is received. On the device, a voice input that relates the selected data item to an operation in a second context is received. The operation is performed on the selected data item in the second context.

Contextual voice commands

An electronic device may capture a voice command from a user. The electronic device may store contextual information about the state of the electronic device when the voice command is received. The electronic device may transmit the voice command and the contextual information to computing equipment such as a desktop computer or a remote server. The computing equipment may perform a speech recognition operation on the voice command and may process the contextual information. The computing equipment may respond to the voice command. The computing equipment may also transmit information to the electronic device that allows the electronic device to respond to the voice command.

Electronic Devices with Voice Command and Contextual Data Processing Capabilities

Authorization with security attributes and privilege delegation

To reduce the size of backup data, increase the backup speed, and solve a problem that the amount of unnecessary writing could undesirably increase in a restoration process, which would otherwise require physical disks with a capacity greater than the size of a virtual volume. On a backup server having mounted thereon a virtual volume that is the target to be backed up and restored, read/write access to only the blocks of data areas is performed by a device driver that filters I/O access to a device from a file system on the basis of the data mapping information of the virtual volume, whereby read/write access to unnecessary portions is avoided. Thus, it is possible to reduce the size of backup data, increase the backup speed, and prevent an increase in the amount of unnecessary writing to the virtual volume in a restoration process.

Information backup/restoration processing apparatus and information backup/restoration processing system

SELinux Security Policy Configuration System with Higher Level Language (特集 人と組織の社会貢献を支えるコンピュータセキュリティ技術)

Security policy for SELinux is usually created by customizing a sample policy called refpolicy. However, describing and verifying security policy configurations is difficult because in refpolicy, there are more than 100,000 lines of configurations, thousands of elements such as permissions, macros and labels. The memory footprint of refpolicy which is around 5MB, is also a problem for resource constrained devices.

We propose a security policy configuration system SEEdit which facilitates creating security policy by a higher level language called SPDL and SPDL tools. SPDL reduces the number of permissions by integrated permissions and removes label configurations. SPDL tools generate security policy configurations from access logs and tool user's knowledge about applications. Experimental results on an embedded system and a PC system show that practical security policies are created by SEEdit, i.e., describing configurations is semiautomated, created security policies are composed of less than 500 lines of configurations, 100 configuration elements, and the memory footprint in the embedded system is less than 500KB.

/pdf/seedit-selinux-security-policy-configuration-system-with-40poqaqdck.pdf

SEEdit: SELinux security policy configuration system with higher level language

This paper focuses a key escrow system of the RSA cryptosystem that protects user privacy with the following properties; (1) neither investigation agency nor key escrow agent accesses private key of user directly, (2) investigation agency can decrypt user data of restricted time period and communication entities, and (3) split private keys of user are deposited correctly in multiple key escrow agents without any information leakage of the private key with help of a zero-knowledge interactive protocol. The security of the whole system is discussed as well as the performance of the zero-knowledge interactive protocol.

Yoshiki Sameshima

Papers

Authorization with security attributes and privilege delegation

Information backup/restoration processing apparatus and information backup/restoration processing system

SELinux Security Policy Configuration System with Higher Level Language (特集人と組織の社会貢献を支えるコンピュータセキュリティ技術)

SEEdit: SELinux security policy configuration system with higher level language

A Key Escrow System of the RSA Cryptosystem

Yoshiki Sameshima

Papers

Authorization with security attributes and privilege delegation

Information backup/restoration processing apparatus and information backup/restoration processing system

SELinux Security Policy Configuration System with Higher Level Language (特集 人と組織の社会貢献を支えるコンピュータセキュリティ技術)

SEEdit: SELinux security policy configuration system with higher level language

A Key Escrow System of the RSA Cryptosystem

SELinux Security Policy Configuration System with Higher Level Language (特集人と組織の社会貢献を支えるコンピュータセキュリティ技術)