公开(公告)号：US12219022B2

公开(公告)日：2025-02-04

申请号：US17366220

申请日：2021-07-02

Applicant: Citrix Systems, Inc.

Inventor： Juan Rivera

IPC: H04L67/148 ,  H04L67/02 ,  H04L67/142 ,  H04L67/146

Abstract: Methods, systems, and computer-readable media for transferring hosted web browser sessions between browser servers are described herein. In various embodiments, a broker service may create a browser server pool from a plurality of browser servers. The broker service may connect a client agent with a first web browser session in a first browser server in the browser server pool. The broker service, responsive to a determination that the first web browser session needs to be transferred to a second browser server in the browser server pool, may request and receive a session context from the first web browser session, launch a second web browser session in the second browser server, initialize the second web browser session with the session context from the first web browser session, transfer the client agent from the first web browser session to the second web browser session, and terminate the first web browser session.

公开(公告)号：US11082499B2

公开(公告)日：2021-08-03

申请号：US14886243

申请日：2015-10-19

Applicant: Citrix Systems, Inc.

Inventor： Juan Rivera

IPC: H04L29/08

Abstract: Methods, systems, and computer-readable media for transferring hosted web browser sessions between browser servers are described herein. In various embodiments, a broker service may create a browser server pool from a plurality of browser servers. The broker service may connect a client agent with a first web browser session in a first browser server in the browser server pool. The broker service, responsive to a determination that the first web browser session needs to be transferred to a second browser server in the browser server pool, may request and receive a session context from the first web browser session, launch a second web browser session in the second browser server, initialize the second web browser session with the session context from the first web browser session, transfer the client agent from the first web browser session to the second web browser session, and terminate the first web browser session.

公开(公告)号：US20170034127A1

公开(公告)日：2017-02-02

申请号：US14815066

申请日：2015-07-31

Applicant: Citrix Systems, Inc.

Inventor： Leo C. Singleton, IV ,  Juan Rivera ,  Jitendra Deshpande ,  Sridhar Mullapudi

IPC: H04L29/06 ,  H04L29/12

CPC classification number: H04L63/0236 ,  G06F17/30861 ,  G06F21/53 ,  H04L61/1511 ,  H04L61/2503 ,  H04L63/102 ,  H04L63/126 ,  H04L67/2814 ,  H04L67/34

Abstract: Methods, systems, and computer-readable media for redirecting a web browser application for secure web browsing are described herein. In various embodiments, a user web browser application executing within a secure network may request the content of a website outside of the secure network. In response to the request, an address translation service may redirect the user web browser application to a redirector service to respond to the request. In response to the request, the redirector service may request a hosted web browser application that may be able to navigate to the requested website. In further response to the request, the redirector service may send, to the user web browser application, a client agent which may display the output generated by a hosted web browser application within the user web browser application

Abstract translation: 本文描述了用于重定向用于安全网页浏览的web浏览器应用的方法，系统和计算机可读介质。 在各种实施例中，在安全网络内执行的用户web浏览器应用可以请求安全网络之外的网站的内容。 响应于该请求，地址转换服务可以将用户web浏览器应用重定向到重定向器服务以响应该请求。 响应于该请求，转发器服务可以请求可能导航到所请求的网站的托管的web浏览器应用。 在进一步响应该请求时，重定向器服务可以向用户web浏览器应用发送可以在用户web浏览器应用程序内显示由托管Web浏览器应用产生的输出的客户端代理

公开(公告)号：US11429421B2

公开(公告)日：2022-08-30

申请号：US16660341

申请日：2019-10-22

Applicant: Citrix Systems, Inc.

Inventor： Juan Rivera

IPC: G06F9/455 ,  G06F9/451 ,  H04L9/40

Abstract: A computer system is provided. The computer system includes a memory, a network interface, and at least one processor coupled to the memory and the network interface. The processor is configured to receive, via the network interface, a request for a computing session; determine a security score for the computing session; identify a virtual resource designated to support computing sessions having the security score; and establish the computing session with the virtual resource.

公开(公告)号：US11252228B2

公开(公告)日：2022-02-15

申请号：US16660103

申请日：2019-10-22

Applicant: Citrix Systems, Inc.

Inventor： Juan Rivera ,  Leo C. Singleton, IV

IPC: H04L29/08 ,  G06F9/50

Abstract: Methods, systems, and computer-readable media for creating and managing cloud servers and services using a multi-tenant multi-session catalog with machine-level isolation are described herein. In one or more embodiments, a cloud service provider may receive requests from one or more tenants for predefined numbers of servers. The cloud service provider may initialize a plurality of servers, wherein the plurality of servers is less than a sum of the totality of server requests, and create a catalog of unassigned servers of the plurality of servers. Responsive to a logon request from a user of a tenant, the cloud service provider may assign a server from the catalog of unassigned servers to the tenant, remove the server from the catalog of unassigned servers, broker the user of the tenant to connect to the server, and limit access to the server to only users of the tenant.

公开(公告)号：US20200249981A1

公开(公告)日：2020-08-06

申请号：US16268127

申请日：2019-02-05

Applicant: Citrix Systems, Inc.

Inventor： Modesto Tabares ,  Juan Rivera

IPC: G06F9/46 ,  H04L29/06 ,  H04L29/08

Abstract: A computing system includes an enterprise server providing an application, a mobile computing device having sensor capabilities registered with the enterprise server, and a client computing device operated by a user to access the application. The user is to request a capability of the application. The enterprise server is configured to compare the requested capability of the application to the registered sensor capabilities of the mobile computing device. If the requested capability of the application can be performed by the mobile computing device, then the enterprise server is configured to provide a notification to the mobile computing device requesting permission for the mobile computing device to provide access to the sensor capability corresponding to the requested capability of the application. The mobile computing device performs the requested capability of the application after permission is granted.

公开(公告)号：US20200159841A1

公开(公告)日：2020-05-21

申请号：US16193388

申请日：2018-11-16

Applicant: Citrix Systems, Inc.

Inventor： Modesto Tabares ,  Juan Rivera

IPC: G06F17/30 ,  G06N99/00

Abstract: Systems and methods for classification of log data at the source into sets of critical and non-critical data. Critical data may be indexed and processed normally, while non-critical data may be provided to and stored by the cloud-based log aggregation system without indexing, at significantly lower cost in terms of processing and storage. In the event that non-critical data is required for troubleshooting or analysis, the non-critical data may be indexed dynamically on request. Because the non-critical data is stored at the cloud-based log aggregation system, it may be quickly indexed and added to the critical data, without additional consumption of bandwidth or delays due to transmission. Dynamic selection and classification of critical and non-critical data may thus allow an enterprise to balance costs and availability of indexed data.

公开(公告)号：US08718400B2

公开(公告)日：2014-05-06

申请号：US14043597

申请日：2013-10-01

Applicant: Citrix Systems, Inc.

Inventor： Juan Rivera

IPC: G06K9/36

CPC classification number: G09G5/006 ,  G06F3/1415 ,  G06F3/1462 ,  G09G3/003 ,  G09G2320/103 ,  G09G2360/04

Abstract: A method for identifying modified sections of a drawing region and selecting at least one modified drawing region section to transmit to a remote computer. A local computer can execute a prioritization module that can identify a first modified drawing region section and a second modified drawing region section. Each of the first and second modified drawing region section can have a corresponding priority. The prioritization module can determine whether the first priority of the first section is greater than the second priority of the second section and can select the greater priority. The local computer can then transmit the selected modified drawing region section that has the greatest priority to a remote computer that communicates with the local computer over a virtual channel.

Abstract translation: 一种用于识别绘图区域的修改部分并选择至少一个修改的绘图区域部分以发送到远程计算机的方法。 本地计算机可以执行可以识别第一修改的绘图区域部分和第二修改的绘制区域部分的优先级模块。 第一和第二修改图形区域部分中的每一个可以具有相应的优先级。 优先化模块可以确定第一部分的第一优先级是否大于第二部分的第二优先级，并且可以选择更大的优先级。 然后，本地计算机可以将具有最高优先级的所选择的修改的绘图区域区段通过虚拟通道传送到与本地计算机进行通信的远程计算机。

公开(公告)号：US11704427B2

公开(公告)日：2023-07-18

申请号：US17728404

申请日：2022-04-25

Applicant: Citrix Systems, Inc.

Inventor： Christopher Fleck ,  Juan Rivera

IPC: G06F21/62 ,  G06F16/27 ,  G06F9/54 ,  G06F13/20 ,  G06F21/60 ,  H04L67/5683 ,  H04L67/01

CPC classification number: G06F21/6218 ,  G06F9/547 ,  G06F13/20 ,  G06F16/27 ,  G06F21/602 ,  H04L67/5683 ,  H04L67/01

Abstract: Described embodiments provide systems and methods for providing data loss prevention via an embedded browser. An interprocess communication (IPC) manager may interface with an embedded browser to control the transfer of data from a first application to a second application in accordance with a policy. The IPC manager may detect a command to store data accessed on the first application via the embedded browser and store the data onto a secure container. The secure container may be dedicated to the embedded browser. The IPC manager may subsequently detect a command to retrieve data from the secure container and to replicate the data onto the second application. The IPC manager may determine a policy to apply to the data. The policy may specify whether the data from the first application is permitted to be replicated onto the second application. The IPC manager may subsequently replicate the data on the second application.

公开(公告)号：US20220245272A1

公开(公告)日：2022-08-04

申请号：US17728404

申请日：2022-04-25

Applicant: Citrix Systems, Inc.

Inventor： Christopher Fleck ,  Juan Rivera

IPC: G06F21/62 ,  G06F16/27 ,  G06F9/54 ,  G06F13/20 ,  G06F21/60

Abstract: Described embodiments provide systems and methods for providing data loss prevention via an embedded browser. An interprocess communication (IPC) manager may interface with an embedded browser to control the transfer of data from a first application to a second application in accordance with a policy. The IPC manager may detect a command to store data accessed on the first application via the embedded browser and store the data onto a secure container. The secure container may be dedicated to the embedded browser. The IPC manager may subsequently detect a command to retrieve data from the secure container and to replicate the data onto the second application. The IPC manager may determine a policy to apply to the data. The policy may specify whether the data from the first application is permitted to be replicated onto the second application. The IPC manager may subsequently replicate the data on the second application.