公开(公告)号：US20150117626A1

公开(公告)日：2015-04-30

申请号：US14068614

申请日：2013-10-31

Applicant: Citrix Systems, Inc.

Inventor： Joseph Nord

IPC: H04M3/56 ,  H04L29/06

CPC classification number: H04M3/568 ,  H04L65/403 ,  H04M2203/2094 ,  H04M2203/303

Abstract: A technique manages an online meeting. The technique includes providing an audio output signal to a first client device currently participating in the online meeting. The audio output signal directs the first client device to play a particular sound (e.g., a unique tone or a unique series of tones). The technique further involves receiving an audio input signal from a second client device. The audio input signal includes the particular sound. The technique further involves identifying the second client device as being co-located with the first client device in response to the audio input signal which includes the particular sound. Such operation enables the electronic circuitry (e.g., a processing circuit of an online meeting server) to learn whether any client devices are co-located and accordingly associate multiple devices to a single user connected to the online meeting.

Abstract translation: 一种技术管理在线会议。 该技术包括向当前参与在线会议的第一客户端设备提供音频输出信号。 音频输出信号引导第一客户端设备播放特定的声音（例如，独特的音调或独特的音调系列）。 该技术还涉及从第二客户端设备接收音频输入信号。 音频输入信号包括特定的声音。 该技术还包括响应于包括特定声音的音频输入信号，将第二客户端设备识别为与第一客户端设备共处。 这样的操作使得电子电路（例如，在线会议服务器的处理电路）能够了解任何客户端设备是否位于同一位置，并且因此将多个设备与连接到在线会议的单个用户相关联。

公开(公告)号：US20140164774A1

公开(公告)日：2014-06-12

申请号：US13712333

申请日：2012-12-12

Applicant: CITRIX SYSTEMS, INC.

Inventor： Joseph Nord ,  Benjamin Elliot Tucker ,  Timothy Gaylor

IPC: H04L9/08

CPC classification number: G06F21/6218 ,  G06F9/00 ,  G06F17/30 ,  G06F21/602 ,  H04L9/0861 ,  H04L9/0869 ,  H04L9/12 ,  H04L63/064 ,  H04L63/0807 ,  H04L63/083 ,  H04L63/105

Abstract: Encryption-based data access management may include a variety of processes. In one example, a device may transmit a user authentication request for decrypting encrypted data to a data storage server storing the encrypted data. The computing device may then receive a validation token associated with the user's authentication request, the validation token indicating that the user is authenticated to a domain. Subsequently, the computing device may transmit the validation token to a first key server different from the data storage server. Then, in response to transmitting the validation token the computing device may receive, from the first key server, a key required for decrypting the encrypted data. The device may then decrypt at least a portion of the encrypted data using the key.

Abstract translation: 基于加密的数据访问管理可以包括各种过程。 在一个示例中，设备可以向存储加密数据的数据存储服务器发送用于将加密数据解密的用户认证请求。 然后，计算设备可以接收与用户的认证请求相关联的验证令牌，指示用户被认证到域的验证令牌。 随后，计算设备可以将验证令牌发送到与数据存储服务器不同的第一密钥服务器。 然后，响应于发送验证令牌，计算设备可以从第一密钥服务器接收解密加密数据所需的密钥。 然后，设备可以使用密钥对加密数据的至少一部分进行解密。

公开(公告)号：US11683370B2

公开(公告)日：2023-06-20

申请号：US17213578

申请日：2021-03-26

Applicant: Citrix Systems, Inc.

Inventor： Joseph Nord ,  Chris Mayers

IPC: H04L67/1095 ,  H04L9/40 ,  H04L67/306 ,  H04L67/00

CPC classification number: H04L67/1095 ,  H04L63/0435 ,  H04L63/20 ,  H04L67/306 ,  H04L67/34

Abstract: A backend computing system may receive first data from a first computing system, where the first data may be an encrypted version of second data that has been generated at the first computing system based on a command at the first computing system. The backend computing system may identify a second computing system different than the first computing system based on a status of the second computing system, and may send the first data to the second computing system to enable the second computing system to decrypt the first data and perform a function with respect to the second data. In some embodiments, the first computing system may generate padded data by adding data to the second data, and send the padded data to the backend computing system. In some embodiments, the first computing system may send random data to the backend computing system.

公开(公告)号：US20220311822A1

公开(公告)日：2022-09-29

申请号：US17213578

申请日：2021-03-26

Applicant: Citrix Systems, Inc.

Inventor： Joseph Nord ,  Chris Mayers

IPC: H04L29/08 ,  H04L29/06

Abstract: A backend computing system may receive first data from a first computing system, where the first data may be an encrypted version of second data that has been generated at the first computing system based on a command at the first computing system. The backend computing system may identify a second computing system different than the first computing system based on a status of the second computing system, and may send the first data to the second computing system to enable the second computing system to decrypt the first data and perform a function with respect to the second data. In some embodiments, the first computing system may generate padded data by adding data to the second data, and send the padded data to the backend computing system. In some embodiments, the first computing system may send random data to the backend computing system.

公开(公告)号：US09451044B2

公开(公告)日：2016-09-20

申请号：US14259586

申请日：2014-04-23

Applicant: Citrix Systems, Inc.

Inventor： Joseph Nord ,  Richard Hayton

IPC: H04L29/08

CPC classification number: H04L67/306 ,  H04L41/046 ,  H04L67/06 ,  H04L67/143

Abstract: Just in time delivery of a consistent user profile to overlapping user sessions, where a first user session issues a request for a first file of a user profile to a server agent. Upon receiving the request, the server agent retrieves the first file from a base user profile, and just in time delivers the retrieved first file to the first user session. The user, via a second user session executing simultaneously with the first user session, issues a request to the server agent for the first file and a second file of the user profile. Upon receiving the request, the server agent identifies a modified version of the first file in a provisional user profile, retrieves the modified first file from the provisional user profile and the second file from the base user profile, and just in time delivers both files to the second user session.

Abstract translation: 将一致的用户配置文件及时传递给重叠的用户会话，其中第一用户会话向服务器代理发出用户简档的第一文件的请求。 在接收到请求之后，服务器代理从基本用户简档中检索第一个文件，并且及时将检索到的第一个文件传递给第一个用户会话。 经由与第一用户会话同时执行的第二用户会话的用户向服务器代理发出用于第一文件的请求和用户简档的第二文件。 在接收到请求之后，服务器代理识别临时用户简档中的第一个文件的修改版本，从临时用户配置文件中检索修改后的第一个文件，从基本用户配置文件中检索第二个文件，并且及时将两个文件传递给 第二个用户会话。

公开(公告)号：US20150254455A1

公开(公告)日：2015-09-10

申请号：US14721328

申请日：2015-05-26

Applicant: Citrix Systems, Inc.

Inventor： Vikramjeet Sandhu ,  Joseph Nord

IPC: G06F21/53 ,  G06F9/54

CPC classification number: G06F21/53 ,  G06F8/61 ,  G06F9/455 ,  G06F9/542 ,  G06F21/105 ,  G06F2009/45587 ,  G06F2221/033 ,  G06F2221/2145 ,  H04L63/08 ,  H04L63/102

Abstract: The present invention is directed towards systems and methods of streaming an application from a remote location to a local machine system, and using local machine system resources in executing that application. In various embodiments, services needed by a streamed application may be started with high local system privileges in their own isolation environment. These service may be started, stopped, and otherwise managed by a Service Control Manager. In order for an application to both access services that operate at high local system privileges and the network so that it can access remotely stored, streaming, information; a streaming application may rely on privileges of the user when accessing network information rather than the higher privileges of the services running in isolation.

Abstract translation: 本发明涉及将应用程序从远程位置流传输到本地机器系统的系统和方法，以及在执行该应用程序时使用本地机器系统资源。 在各种实施例中，流式应用所需的服务可以在其本身的隔离环境中以高本地系统特权开始。 这些服务可能由服务控制管理器启动，停止和以其他方式管理。 为了使应用程序能够访问以高本地系统特权和网络运行的服务，以便它可以访问远程存储的流媒体信息; 流式应用程序可以在访问网络信息时依靠用户的权限，而不是独立运行的服务的更高权限。

公开(公告)号：US20140237049A1

公开(公告)日：2014-08-21

申请号：US14259586

申请日：2014-04-23

Applicant: Citrix Systems, Inc.

Inventor： Joseph Nord ,  Richard Hayton

IPC: H04L29/08

CPC classification number: H04L67/306 ,  H04L41/046 ,  H04L67/06 ,  H04L67/143

Abstract: Just in time delivery of a consistent user profile to overlapping user sessions, where a first user session issues a request for a first file of a user profile to a server agent. Upon receiving the request, the server agent retrieves the first file from a base user profile, and just in time delivers the retrieved first file to the first user session. The user, via a second user session executing simultaneously with the first user session, issues a request to the server agent for the first file and a second file of the user profile. Upon receiving the request, the server agent identifies a modified version of the first file in a provisional user profile, retrieves the modified first file from the provisional user profile and the second file from the base user profile, and just in time delivers both files to the second user session.

Abstract translation: 将一致的用户配置文件及时传递给重叠的用户会话，其中第一用户会话向服务器代理发出用户简档的第一文件的请求。 在接收到请求之后，服务器代理从基本用户简档中检索第一个文件，并且及时将检索到的第一个文件传递给第一个用户会话。 经由与第一用户会话同时执行的第二用户会话的用户向服务器代理发出用于第一文件的请求和用户简档的第二文件。 在接收到请求之后，服务器代理识别临时用户简档中的第一个文件的修改版本，从临时用户配置文件中检索修改后的第一个文件，从基本用户配置文件中检索第二个文件，并且及时将两个文件传递给 第二个用户会话。