公开(公告)号：US20210021579A1

公开(公告)日：2021-01-21

申请号：US16517146

申请日：2019-07-19

Applicant: Citrix Systems, Inc.

Inventor： Derek Thorslund ,  Vladimir Vysotsky

IPC: H04L29/06

Abstract: Described embodiments provide systems and methods for selectively encrypting and decrypting portions of a network flow by intermediary devices. A first device may identify a protocol used by a network flow traversing the first device via one or more packets of the protocol. The first device may determine that a level of encryption for the network flow meets a predetermined threshold. The first device may receive networks packets to be communicated between a sender and a receiver. The packets may include a first portion that is encrypted and a second portion that has clear text information. The first device may encrypt the second portion of the one or more packets. The first device may forward the network packets with the first portion and the encrypted second portion via a tunnel to a second device for decryption of the encrypted second portion for forwarding to the receiver.

公开(公告)号：US10855755B2

公开(公告)日：2020-12-01

申请号：US16229251

申请日：2018-12-21

Applicant: CITRIX SYSTEMS, INC.

Inventor： Vladimir Vysotsky ,  Todd Giebler ,  Georgy Momchilov ,  James Page

IPC: H04L29/08 ,  G06F9/451 ,  G06F9/455 ,  H04L29/06 ,  G06F9/54 ,  H04L29/12 ,  G06T7/90 ,  G06F3/0481 ,  G06F3/14 ,  G06K19/06 ,  H04N5/272 ,  H04N7/14 ,  H04L12/26

Abstract: A computing system includes a virtual desktop server and a client computing device. The virtual desktop server includes a real-time media application to provide real-time communications (RTC), a native RTC engine, and an API code redirection module. The API code redirection module redirects original APIs of the real-time media application so that a portion of the real-time media application is to be redirected. The client computing device includes a client RTC API engine reporting to the API code redirection module on capabilities of the client computing device to execute the redirected portion of the real-time media application. The API code redirection module switches to a fallback mode if the client computing device has limited capabilities. In the fallback mode, original APIs are used so that the native RTC engine executes at least part of the portion of the real-time media application.

公开(公告)号：US10742726B2

公开(公告)日：2020-08-11

申请号：US16402926

申请日：2019-05-03

Applicant: CITRIX SYSTEMS, INC.

Inventor： Vladimir Vysotsky ,  Todd Giebler ,  Georgy Momchilov ,  James Page

IPC: H04L29/06 ,  H04L29/08 ,  G06F9/451 ,  G06F9/455 ,  G06F9/54 ,  H04L29/12 ,  G06T7/90 ,  G06F3/0481 ,  G06F3/14 ,  G06K19/06 ,  H04N5/272 ,  H04N7/14 ,  H04L12/26

Abstract: A computing system includes a virtual desktop server and a client computing device. The virtual desktop server is within an enterprise and includes a real-time media application to provide real-time communications (RTC) for peer-to-peer networking, and a native RTC engine to execute a portion of the real-time media application when received by the native RTC engine. An API code redirection module redirects intercepted APIs of the real-time media application intended for the native RTC engine so that the portion of the real-time media application is redirected away from the native RTC engine to a client RTC engine in the client computing device. The portion of the real-time media application being redirected includes provisioning information directed to a media server. A network edge appliance associated with a branch within the enterprise provides alternative network connectivity options for the peer-to-peer networking.

公开(公告)号：US10742725B2

公开(公告)日：2020-08-11

申请号：US16228945

申请日：2018-12-21

Applicant: CITRIX SYSTEMS, INC.

Inventor： Vladimir Vysotsky ,  Todd Giebler ,  Georgy Momchilov ,  James Page

IPC: G06F3/00 ,  H04L29/08 ,  G06F9/451 ,  G06F9/455 ,  H04L29/06 ,  G06F9/54 ,  H04L29/12 ,  G06T7/90 ,  G06F3/0481 ,  G06F3/14 ,  G06K19/06 ,  H04N5/272 ,  H04N7/14 ,  H04L12/26

Abstract: A computing system includes a video source to provide a video stream and a virtual desktop server. The virtual desktop server includes a media application to provide media streaming that includes the video stream and an overlay on the video stream. An accelerated content redirection module redirects a portion of the media streaming by providing a placeholder to indicate positioning geometry of the video stream within a media window, with the placeholder to include the overlay. Providing the placeholder includes providing a first color for an underlay of the placeholder at a first time, and providing a second color for the underlay of the placeholder at a second time. A geometry tracking module detects the placeholder and determines positioning geometry associated therewith, and determines a color and an alpha blending factor of the overlay based on calculations involving the first and second colors for the underlays of the placeholder.

公开(公告)号：US12101247B2

公开(公告)日：2024-09-24

申请号：US17580322

申请日：2022-01-20

Applicant: Citrix Systems, Inc.

Inventor： Vladimir Vysotsky ,  Snigdhendu S Mukhopadhyay

IPC: H04L45/302 ,  H04L12/46 ,  H04L67/025 ,  H04L67/141

CPC classification number: H04L45/306 ,  H04L12/4633 ,  H04L67/025 ,  H04L67/141

Abstract: Systems and methods for selecting tunnels for transmitting application traffic by an SD-WAN application include a software-defined wide area network (SD-WAN) application executing on a client device establishing a connection between the SD-WAN application and one or more applications. The SD-WAN application maintains a plurality of tunnels between the SD-WAN application and respective tunnel destinations. The SD-WAN application receives application traffic from an application of the one or more applications. The SD-WAN application selects, based on the application traffic, a respective tunnel of the plurality of tunnels via which to transmit the application traffic of the application. The SD-WAN application transmits the application traffic via the selected tunnel.

公开(公告)号：US20230231768A1

公开(公告)日：2023-07-20

申请号：US17580304

申请日：2022-01-20

Applicant: Citrix Systems, Inc.

Inventor： Vladimir Vysotsky ,  Snigdhendu S. Mukhopadhyay

IPC: H04L41/082 ,  H04L41/147

CPC classification number: H04L41/082 ,  H04L41/147

Abstract: Systems and methods for updating a configuration of an SD-WAN application using connectivity or usage data include a software-defined wide area network (SD-WAN) application executing on a client device receiving one or more of historic or predictive data relating to connectivity or usage of the client device. The SD-WAN application detects an update condition for the SD-WAN application using the one or more historic or predictive data relating to the connectivity or usage of the client device. The SD-WAN application updates a configuration of the SD-WAN application responsive to detecting the update condition. The SD-WAN application transmits application traffic using the updated configuration.

公开(公告)号：US11349820B2

公开(公告)日：2022-05-31

申请号：US16517146

申请日：2019-07-19

Applicant: Citrix Systems, Inc.

Inventor： Derek Thorslund ,  Vladimir Vysotsky

IPC: H04L29/06 ,  H04L9/40

Abstract: Described embodiments provide systems and methods for selectively encrypting and decrypting portions of a network flow by intermediary devices. A first device may identify a protocol used by a network flow traversing the first device via one or more packets of the protocol. The first device may determine that a level of encryption for the network flow meets a predetermined threshold. The first device may receive networks packets to be communicated between a sender and a receiver. The packets may include a first portion that is encrypted and a second portion that has clear text information. The first device may encrypt the second portion of the one or more packets. The first device may forward the network packets with the first portion and the encrypted second portion via a tunnel to a second device for decryption of the encrypted second portion for forwarding to the receiver.

公开(公告)号：US11005930B2

公开(公告)日：2021-05-11

申请号：US16402902

申请日：2019-05-03

Applicant: CITRIX SYSTEMS, INC.

Inventor： Vladimir Vysotsky ,  Todd Giebler ,  Georgy Momchilov ,  James Page

IPC: H04L29/08 ,  H04L29/06 ,  G06F9/451 ,  G06F9/455 ,  G06F9/54 ,  H04L29/12 ,  G06T7/90 ,  G06F3/0481 ,  G06F3/14 ,  G06K19/06 ,  H04N5/272 ,  H04N7/14 ,  H04L12/26

Abstract: A computing system includes a virtual desktop server and a client computing device. The virtual desktop server includes a real-time media application to provide real-time communications (RTC) for peer-to-peer networking, and a native RTC engine to execute a portion of the real-time media application when received by the native RTC engine. An API code redirection module redirects intercepted APIs of the real-time media application so that the portion of the real-time media application is redirected away from the native RTC engine to a client RTC engine in the client computing device. The client RTC engine executes the redirected portion of the real-time media application, and performs network connectivity probing to determine reachability to a peer computing device. A media stream is established with the peer computing device based on the network connectivity probing.

公开(公告)号：US10958722B2

公开(公告)日：2021-03-23

申请号：US16402882

申请日：2019-05-03

Applicant: CITRIX SYSTEMS, INC.

Inventor： Vladimir Vysotsky ,  Todd Giebler ,  Georgy Momchilov ,  James Page

IPC: G06F15/16 ,  H04L29/08 ,  G06F9/451 ,  G06F9/455 ,  H04L29/06 ,  G06F9/54 ,  H04L29/12 ,  G06T7/90 ,  G06F3/0481 ,  G06F3/14 ,  G06K19/06 ,  H04N5/272 ,  H04N7/14 ,  H04L12/26

Abstract: A computing system includes a virtual desktop server and a client computing device. The virtual desktop server includes a real-time media application to provide real-time communications (RTC) for peer-to-peer networking, and a native RTC engine to execute a portion of the real-time media application when received by the native RTC engine. An API code redirection module redirects intercepted APIs of the real-time media application so that the portion of the real-time media application is redirected away from the native RTC engine to a client RTC engine in the client computing device. The client RTC engine executes the redirected portion of the real-time media application, performs network connectivity probing to determine reachability to a peer computing device, and performs fallback network connectivity probing via the virtual desktop server to determine reachability to the peer computing device.

公开(公告)号：US20200374238A1

公开(公告)日：2020-11-26

申请号：US16588638

申请日：2019-09-30

Applicant: Citrix Systems, Inc.

Inventor： Georgy Momchilov ,  Derek Thorslund ,  Daljit Singh ,  Vladimir Vysotsky

IPC: H04L12/911 ,  H04L12/917

Abstract: Virtual application and desktop delivery may be optimized by supplying application metadata and user intent to the device between a client and a server hosting resources for the delivery. The data packets used to deliver the virtual application or desktop may be also tagged with references to the application. By supplying the metadata and tagging packets with the metadata, an intermediary network device may provide streams of data packets at the target QoS. In addition, the device may apply network resource allocation rules (e.g., firewalls and QoS configuration) for redirected content retrieved by the client out of band relative to a virtual channel such as the Internet. The network resource allocation rules may differ for different types of resources accessed. The device may also control a delivery agent on the server to modify communication sessions established through the virtual channels based on network conditions.