公开(公告)号：US20240004995A1

公开(公告)日：2024-01-04

申请号：US18049909

申请日：2022-10-26

Applicant: CITRIX SYSTEMS, INC.

Inventor： Andreas Varnavas ,  Asterios Stergioudis ,  Nikolaos Georgakopoulos

IPC: G06F21/55 ,  G06N7/00

CPC classification number: G06F21/554 ,  G06N7/005 ,  G06F2201/81

Abstract: A computer system is provided. The computer system includes a memory and at least one processor coupled to the memory and configured to detect triggering of one or more threat detectors and activate a subset of nodes associated with the triggered threat detectors from a plurality of nodes in a Bayesian network in response to the detection. The at least one processor is further configured to determine that feedback associated with the triggered threat detectors is available and, if so, accumulate the feedback to a feedback node of the network, the feedback node associated with the triggered threat detectors. The at least one processor is further configured to calculate a probability of malicious action using the network to combine probabilities associated with the activated subset of nodes and the feedback node, determine that the probability exceeds a threshold value, and perform a security action in response to the determination.

公开(公告)号：US20230025718A1

公开(公告)日：2023-01-26

申请号：US17936724

申请日：2022-09-29

Applicant: Citrix Systems, Inc.

Inventor： Andreas Varnavas ,  Neha Joshi ,  Vikramjeet Singh ,  Prabhjeet Singh Chawla

IPC: G06F11/14 ,  G06F9/455 ,  G06F11/30 ,  G06F11/34

Abstract: Described embodiments provide systems and methods for detection of the degradation of a virtual desktop environment. A computing device may receive data from a plurality of client devices. The computing device may identify a subset of client devices from the plurality of client devices with at least one characteristic in common based on the received data. The computing device may determine a ratio of the identified subset of client devices, the ratio being a comparison of client devices of the subset with a value above a first threshold to a total number of client devices of the subset, and the value being indicative of a characteristic of performance for that client device. The computing device may identify a cause of an anomaly in the performance of the application based on the ratio exceeding a second threshold.

公开(公告)号：US11533243B2

公开(公告)日：2022-12-20

申请号：US17004945

申请日：2020-08-27

Applicant: Citrix Systems, Inc.

Inventor： Andreas Varnavas ,  Kiran Kumar ,  Venkatesh Vellingiri

IPC: H04L43/08 ,  G06K9/62 ,  G06N20/00 ,  H04L43/16

Abstract: Described embodiments provide systems, methods, and computer readable media for generating environment descriptors. A device having at least one process may identify a plurality of feature vectors. Each vector may describe a corresponding access to an application hosted on a server in one of a plurality of network environments and having a corresponding performance metric. The device may provide a performance model using the plurality of feature vectors and the corresponding performance metrics. The performance model may be used to determine expected performance metrics for at least a first network environment. A first environment descriptor of the expected performance metrics may be generated for at least the first network environment. The first environment descriptor of the expected performance metrics may be used to assess a measured performance metric or a second environment descriptor of a second network environment.

公开(公告)号：US20220021593A1

公开(公告)日：2022-01-20

申请号：US17004945

申请日：2020-08-27

Applicant: Citrix Systems, Inc.

Inventor： Andreas Varnavas ,  Kiran Kumar ,  Venkatesh Vellingiri

IPC: H04L12/26 ,  G06K9/62 ,  G06N20/00

Abstract: Described embodiments provide systems, methods, and computer readable media for generating environment descriptors. A device having at least one process may identify a plurality of feature vectors. Each vector may describe a corresponding access to an application hosted on a server in one of a plurality of network environments and having a corresponding performance metric. The device may provide a performance model using the plurality of feature vectors and the corresponding performance metrics. The performance model may be used to determine expected performance metrics for at least a first network environment. A first environment descriptor of the expected performance metrics may be generated for at least the first network environment. The first environment descriptor of the expected performance metrics may be used to assess a measured performance metric or a second environment descriptor of a second network environment.