公开(公告)号：US20240028723A1

公开(公告)日：2024-01-25

申请号：US17870523

申请日：2022-07-21

Applicant: Dell Products L.P.

Inventor： Girish S. Dhoble ,  David Konetski ,  Nicholas D. Grobelny

IPC: G06F21/56

CPC classification number: G06F21/566 ,  G06F21/568

Abstract: Workspace instantiations are monitored for potentially suspicious behavior. When a workspace is instantiated, a client endpoint computer creates a log of historical workspace instantiations. Each time the client endpoint computer requests, receives, or executes a workspace, the client endpoint computer adds and timestamps a new entry in the log of historical workspace instantiations. The log of historical workspace instantiations thus represents a rich database description of each workspace, its corresponding workspace definition file, and its corresponding timestamp. A workspace orchestration service may monitor how frequently the log of historical workspace instantiations is generated and flag or alert of unusual or anomalous counts. Any current workspace instantiation may thus be terminated as a security precaution.

公开(公告)号：US20240020427A1

公开(公告)日：2024-01-18

申请号：US17812373

申请日：2022-07-13

Applicant: Dell Products, L.P.

Inventor： Nicholas D. Grobelny ,  Daniel L. Hamlin

IPC: G06F21/84 ,  G06V10/20 ,  G06F21/62

CPC classification number: G06F21/84 ,  G06V10/255 ,  G06F21/6245

Abstract: Systems and methods for preventing content rendered by an Information Handling System (IHS) display from being captured or recorded (e.g., photographed, filmed, recorded, etc.) are described. In an embodiment, an IHS may include a processor and a memory coupled to the processor, the memory having program instructions stored thereon that, upon execution, cause the IHS to: receive an image from a camera; detect a device in the image; and in response to the detection, prevent content rendered by a display from being captured or recorded by the device.

公开(公告)号：US11843509B2

公开(公告)日：2023-12-12

申请号：US17643291

申请日：2021-12-08

Applicant: Dell Products, L.P.

Inventor： Carlton A. Andrews ,  Girish S. Dhoble ,  Nicholas D. Grobelny ,  David Konetski ,  Joseph Kozlowski ,  Ricardo L Martinez ,  Charles D. Robison

IPC: H04L41/0893 ,  H04L9/40 ,  H04L67/12 ,  H04L67/01 ,  H04L67/131

CPC classification number: H04L41/0893 ,  H04L63/102 ,  H04L63/20 ,  H04L67/01 ,  H04L67/12 ,  H04L67/131

Abstract: Systems and methods for modernizing workspace and hardware lifecycle management in an enterprise productivity ecosystem are described. In some embodiments, a client Information Handling System (IHS) may include a processor and a memory, the memory having program instructions that, upon execution by the processor, cause the client IHS to: receive, from a workspace orchestration service, one or more files or policies configured to enable the client IHS to instantiate a first workspace based upon a first workspace definition; allow a user to execute a non-vetted application in the first workspace; determine that the first workspace is compromised; and receive, in response to the determination, from the workspace orchestration service, one or more other files or policies configured to enable the client IHS to instantiate a second workspace based upon a second workspace definition, where the second workspace definition allows execution of a vetted application corresponding to the non-vetted application.

公开(公告)号：US20230325522A1

公开(公告)日：2023-10-12

申请号：US18334134

申请日：2023-06-13

Applicant: Dell Products, L.P.

Inventor： Joseph Kozlowski ,  Ricardo L. Martinez ,  David Konetski ,  Carlton A. Andrews ,  Nicholas D. Grobelny ,  Charles D. Robison ,  Girish S. Dhoble

IPC: G06F21/62 ,  G06F9/50 ,  G06F21/57 ,  G06F21/44

CPC classification number: G06F21/6218 ,  G06F9/5072 ,  G06F21/577 ,  G06F21/44 ,  G06F2221/2141

Abstract: Systems and methods for securely deploying a collective workspace across multiple local management agents are described. In some embodiments, an Information Handling System (IHS) may include a processor and a memory coupled to the processor, the memory having program instructions stored thereon that, upon execution, cause the IHS to: receive, at a workspace orchestration service from a first local management agent, first context information and a first split key; receive, at the workspace orchestration service from a second local management agent, second context information and a second split key; determining, by the workspace orchestration service, that the first and second context information match a collaborative workspace policy; in response to the determination, authenticate the first and second split keys; and in response to the authentication, transmit a collaborative workspace definition to the first and second local management agents.

公开(公告)号：US11757881B2

公开(公告)日：2023-09-12

申请号：US17126144

申请日：2020-12-18

Applicant: Dell Products, L.P.

Inventor： Carlton A. Andrews ,  Charles D. Robison ,  Nicholas D. Grobelny ,  Joseph Kozlowski ,  David Konetski

IPC: G06F21/31 ,  H04L29/06 ,  H04L9/40 ,  H04L29/08

CPC classification number: H04L63/0884 ,  H04L63/0442 ,  H04L63/0876 ,  H04L63/166

Abstract: Systems and methods for workspace deployment using a secondary trusted device are described. In some embodiments, a first Information Handling System (IHS) may include a processor and a memory coupled to the processor, the memory having program instructions stored thereon that, upon execution, cause the first IHS to: establish a first connection with a second IHS, where the second IHS is configured to establish a second connection with a workspace orchestration service, and where the workspace orchestration service is configured to: receive device identification information of the first IHS from the second IHS; and authenticate the device identification information against a database provided by a manufacturer of the first IHS; and in response to a successful authentication, establish a third connection with the workspace orchestration service.

公开(公告)号：US11720700B2

公开(公告)日：2023-08-08

申请号：US17126073

申请日：2020-12-18

Applicant: Dell Products, L.P.

Inventor： Joseph Kozlowski ,  Ricardo L. Martinez ,  David Konetski ,  Carlton A. Andrews ,  Nicholas D. Grobelny ,  Charles D. Robison ,  Girish S. Dhoble

IPC: H04L29/06 ,  G06F21/62 ,  G06F9/50 ,  G06F21/57 ,  G06F21/44

CPC classification number: G06F21/6218 ,  G06F9/5072 ,  G06F21/44 ,  G06F21/577 ,  G06F2221/2141

Abstract: Systems and methods for securely deploying a collective workspace across multiple local management agents are described. In some embodiments, an Information Handling System (IHS) may include a processor and a memory coupled to the processor, the memory having program instructions stored thereon that, upon execution, cause the IHS to: receive, at a workspace orchestration service from a first local management agent, first context information and a first split key; receive, at the workspace orchestration service from a second local management agent, second context information and a second split key; determining, by the workspace orchestration service, that the first and second context information match a collaborative workspace policy; in response to the determination, authenticate the first and second split keys; and in response to the authentication, transmit a collaborative workspace definition to the first and second local management agents.

公开(公告)号：US11657126B2

公开(公告)日：2023-05-23

申请号：US16670658

申请日：2019-10-31

Applicant: Dell Products, L.P.

Inventor： Carlton A. Andrews ,  Girish S. Dhoble ,  Nicholas D. Grobelny ,  David Konetski ,  Joseph Kozlowski ,  Ricardo L. Martinez ,  Charles D. Robison

IPC: G06F21/12 ,  H04L29/06 ,  H04L9/40

CPC classification number: G06F21/123 ,  H04L63/101 ,  H04L63/1425 ,  G06F2221/0797

Abstract: Systems and methods for dynamic workspace targeting with crowdsourced user context are described. In some embodiments, an Information Handling System (IHS) of a workspace orchestration service may include a processor; and a memory coupled to the processor, the memory having program instructions stored thereon that, upon execution by the processor, cause the IHS to: detect execution of an application in a workspace instantiated by a client IHS; validate the application based upon productivity context information and security context information received from the client IHS; and in response to the validation, distribute the validated application to another workspace instantiated by another client IHS.

公开(公告)号：US20230153426A1

公开(公告)日：2023-05-18

申请号：US17455370

申请日：2021-11-17

Applicant: Dell Products, L.P.

Inventor： Nicholas D. Grobelny ,  Charles D. Robison ,  Ricardo L. Martinez

IPC: G06F21/55 ,  G06F21/57 ,  G06F21/54 ,  G06F21/60

CPC classification number: G06F21/554 ,  G06F21/572 ,  G06F21/54 ,  G06F21/602 ,  G06F2221/0751

Abstract: Systems and methods for hardware-based protection of Application Programming Interface (API) keys are described. In some embodiments, an endpoint Information Handling System (IHS) may include a processor and a memory coupled to the processor, the memory having program instructions stored thereon that, upon execution by the processor, cause the IHS to: send an encrypted API key to a trusted controller; and receive a decrypted API key from the trusted controller.

公开(公告)号：US11522883B2

公开(公告)日：2022-12-06

申请号：US17126122

申请日：2020-12-18

Applicant: Dell Products, L.P.

Inventor： Girish S. Dhoble ,  Nicholas D. Grobelny ,  Ricardo L. Martinez ,  Joseph Kozlowski

IPC: H04L9/40 ,  H04L41/0813

Abstract: Systems and methods for creating and handling workspace indicators of compromise (IOC) based upon configuration drift are described. In some embodiments, a memory storage device may have program instructions stored thereon that, upon execution by one or more processors of an Information Handling System (IHS) of a workspace orchestration service, cause the IHS to: receive configuration information from a client IHS at a workspace orchestration service, where the configuration information represents a change in a configuration of a workspace executed by the client IHS, and where the workspace is instantiated based upon a workspace definition provided by the workspace orchestration service; determine, by the workspace orchestration service, that the configuration information matches an IOC; and transmit, from the workspace orchestration service to the client IHS, an instruction to perform an action responsive to the IOC.

公开(公告)号：US11522708B2

公开(公告)日：2022-12-06

申请号：US17126077

申请日：2020-12-18

Applicant: Dell Products, L.P.

Inventor： Nicholas D. Grobelny ,  Ricardo L. Martinez ,  Carlton A. Andrews ,  Charles D. Robison

IPC: H04L9/32 ,  H04L9/08 ,  H04L9/40

Abstract: Systems and methods for providing trusted local orchestration of workspaces are described. In some embodiments, an Information Handling System (IHS) may include a processor and a system memory coupled to the processor, the system memory having program instructions stored thereon that, upon execution, cause the IHS to: receive an orchestration code from a workspace orchestration service; record, using a trusted controller coupled to the processor, a log comprising: the orchestration code, and an indication of a sequence of operations performed during an instantiation of a workspace by the local management agent; provide a copy of the log to the workspace orchestration service; and establish a connection between the workspace and the workspace orchestration service in response to the workspace orchestration service's successful: (i) authentication of the orchestration code, and (ii) verification of the sequence of operations.