公开(公告)号：US12225018B2

公开(公告)日：2025-02-11

申请号：US18157160

申请日：2023-01-20

Applicant: Dell Products, L.P.

Inventor： Charles D. Robison ,  Girish S. Dhoble ,  Nicholas D. Grobelny ,  Jason Kolodziej

IPC: G06F21/57 ,  G06F21/60 ,  H04L9/40

Abstract: Systems and methods are provided for managing capabilities of workspaces operating on an Information Handling System (IHS). A request is received from a user of the IHS for access to a protected resource. A security context and a productivity context are determined for operation of a primary workspace on the IHS. Two or more applications are identified for operation within the primary workspace, where the applications provide access to the protected resource, and where the applications include overlapping capabilities. Based on the security context and the productivity context for the primary workspace deployment, two or more of the applications with overlapping capabilities are selected for operation within the primary workspace.

公开(公告)号：US20240249211A1

公开(公告)日：2024-07-25

申请号：US18157092

申请日：2023-01-20

Applicant: Dell Products, L.P.

Inventor： Charles D. Robison ,  Girish S. Dhoble ,  Nicholas D. Grobelny ,  Jason Kolodziej

IPC: G06Q10/0631 ,  G06Q10/0635

CPC classification number: G06Q10/06311 ,  G06Q10/0635

Abstract: Systems and methods for distributed orchestration using delegate workspaces are described. In an illustrative, non-limiting embodiment, a remote orchestrator with respect to a workspace executed by a client Information Handling System (IHS) may include a processor and a memory coupled to the processor, the memory having program instructions stored thereon that, upon execution by the processor, cause the remote orchestrator to: communicate with a database of delegate workspaces, each delegate workspace instantiated by a respective one of a plurality of edge IHSs; and assign a management task with respect to a client IHS's workspace to a delegate workspace executed by a selected edge IHS, where the delegate workspace is selected, at least in part, based upon information stored in the database.

公开(公告)号：US20240241965A1

公开(公告)日：2024-07-18

申请号：US18155866

申请日：2023-01-18

Applicant: Dell Products, L.P.

Inventor： Carlton A. Andrews ,  David Konetski ,  Nicholas D. Grobelny

IPC: G06F21/57

CPC classification number: G06F21/577 ,  G06F2221/034

Abstract: Systems and methods for telemetry collection auto-tuning for workspaces are described. In an illustrative, non-limiting embodiment, a client Information Handling System (IHS) may include a processor and a memory coupled to the processor, the memory having program instructions stored thereon that, upon execution by the processor, cause the client IHS to: collect telemetry during execution of a workspace using a telemetry collection setting specified in a file or policy received from a workspace orchestration service, where the file or policy implements a workspace definition usable by a local management agent to instantiate the workspace; in response to a comparison between a security risk score and a threshold risk level, modify the telemetry collection setting; and collect telemetry using the modified telemetry collection setting.

公开(公告)号：US11909882B2

公开(公告)日：2024-02-20

申请号：US16777415

申请日：2020-01-30

Applicant: DELL PRODUCTS L.P.

Inventor： Charles D. Robison ,  Nicholas D. Grobelny ,  Amy C. Nelson

IPC: H04L9/32 ,  H04L9/08 ,  H04L9/40

CPC classification number: H04L9/3234 ,  H04L9/0897 ,  H04L9/3263 ,  H04L63/0442

Abstract: Various embodiments of systems and methods are provided to bind a system identifier that uniquely identifies an information handling system (IHS) to the system platform, so that the identity of the IHS can be cryptographically verified. More specifically, the present disclosure provides methods to bind a unique system identifier to an IHS platform, and methods to cryptographically verify the identity of the IHS using the unique system identifier and a plurality of keys generated and stored with a Trusted Platform Module (TPM) of the IHS. Systems are provided herein to perform such methods. As such, the systems and methods disclosed herein enable system identity to be irrefutably verified, thereby preventing theft and misuse of system identity.

公开(公告)号：US20240028723A1

公开(公告)日：2024-01-25

申请号：US17870523

申请日：2022-07-21

Applicant: Dell Products L.P.

Inventor： Girish S. Dhoble ,  David Konetski ,  Nicholas D. Grobelny

IPC: G06F21/56

CPC classification number: G06F21/566 ,  G06F21/568

Abstract: Workspace instantiations are monitored for potentially suspicious behavior. When a workspace is instantiated, a client endpoint computer creates a log of historical workspace instantiations. Each time the client endpoint computer requests, receives, or executes a workspace, the client endpoint computer adds and timestamps a new entry in the log of historical workspace instantiations. The log of historical workspace instantiations thus represents a rich database description of each workspace, its corresponding workspace definition file, and its corresponding timestamp. A workspace orchestration service may monitor how frequently the log of historical workspace instantiations is generated and flag or alert of unusual or anomalous counts. Any current workspace instantiation may thus be terminated as a security precaution.

公开(公告)号：US20240020427A1

公开(公告)日：2024-01-18

申请号：US17812373

申请日：2022-07-13

Applicant: Dell Products, L.P.

Inventor： Nicholas D. Grobelny ,  Daniel L. Hamlin

IPC: G06F21/84 ,  G06V10/20 ,  G06F21/62

CPC classification number: G06F21/84 ,  G06V10/255 ,  G06F21/6245

Abstract: Systems and methods for preventing content rendered by an Information Handling System (IHS) display from being captured or recorded (e.g., photographed, filmed, recorded, etc.) are described. In an embodiment, an IHS may include a processor and a memory coupled to the processor, the memory having program instructions stored thereon that, upon execution, cause the IHS to: receive an image from a camera; detect a device in the image; and in response to the detection, prevent content rendered by a display from being captured or recorded by the device.

公开(公告)号：US11843509B2

公开(公告)日：2023-12-12

申请号：US17643291

申请日：2021-12-08

Applicant: Dell Products, L.P.

Inventor： Carlton A. Andrews ,  Girish S. Dhoble ,  Nicholas D. Grobelny ,  David Konetski ,  Joseph Kozlowski ,  Ricardo L Martinez ,  Charles D. Robison

IPC: H04L41/0893 ,  H04L9/40 ,  H04L67/12 ,  H04L67/01 ,  H04L67/131

CPC classification number: H04L41/0893 ,  H04L63/102 ,  H04L63/20 ,  H04L67/01 ,  H04L67/12 ,  H04L67/131

Abstract: Systems and methods for modernizing workspace and hardware lifecycle management in an enterprise productivity ecosystem are described. In some embodiments, a client Information Handling System (IHS) may include a processor and a memory, the memory having program instructions that, upon execution by the processor, cause the client IHS to: receive, from a workspace orchestration service, one or more files or policies configured to enable the client IHS to instantiate a first workspace based upon a first workspace definition; allow a user to execute a non-vetted application in the first workspace; determine that the first workspace is compromised; and receive, in response to the determination, from the workspace orchestration service, one or more other files or policies configured to enable the client IHS to instantiate a second workspace based upon a second workspace definition, where the second workspace definition allows execution of a vetted application corresponding to the non-vetted application.

公开(公告)号：US20230325522A1

公开(公告)日：2023-10-12

申请号：US18334134

申请日：2023-06-13

Applicant: Dell Products, L.P.

Inventor： Joseph Kozlowski ,  Ricardo L. Martinez ,  David Konetski ,  Carlton A. Andrews ,  Nicholas D. Grobelny ,  Charles D. Robison ,  Girish S. Dhoble

IPC: G06F21/62 ,  G06F9/50 ,  G06F21/57 ,  G06F21/44

CPC classification number: G06F21/6218 ,  G06F9/5072 ,  G06F21/577 ,  G06F21/44 ,  G06F2221/2141

Abstract: Systems and methods for securely deploying a collective workspace across multiple local management agents are described. In some embodiments, an Information Handling System (IHS) may include a processor and a memory coupled to the processor, the memory having program instructions stored thereon that, upon execution, cause the IHS to: receive, at a workspace orchestration service from a first local management agent, first context information and a first split key; receive, at the workspace orchestration service from a second local management agent, second context information and a second split key; determining, by the workspace orchestration service, that the first and second context information match a collaborative workspace policy; in response to the determination, authenticate the first and second split keys; and in response to the authentication, transmit a collaborative workspace definition to the first and second local management agents.

公开(公告)号：US11757881B2

公开(公告)日：2023-09-12

申请号：US17126144

申请日：2020-12-18

Applicant: Dell Products, L.P.

Inventor： Carlton A. Andrews ,  Charles D. Robison ,  Nicholas D. Grobelny ,  Joseph Kozlowski ,  David Konetski

IPC: G06F21/31 ,  H04L29/06 ,  H04L9/40 ,  H04L29/08

CPC classification number: H04L63/0884 ,  H04L63/0442 ,  H04L63/0876 ,  H04L63/166

Abstract: Systems and methods for workspace deployment using a secondary trusted device are described. In some embodiments, a first Information Handling System (IHS) may include a processor and a memory coupled to the processor, the memory having program instructions stored thereon that, upon execution, cause the first IHS to: establish a first connection with a second IHS, where the second IHS is configured to establish a second connection with a workspace orchestration service, and where the workspace orchestration service is configured to: receive device identification information of the first IHS from the second IHS; and authenticate the device identification information against a database provided by a manufacturer of the first IHS; and in response to a successful authentication, establish a third connection with the workspace orchestration service.

公开(公告)号：US11720700B2

公开(公告)日：2023-08-08

申请号：US17126073

申请日：2020-12-18

Applicant: Dell Products, L.P.

Inventor： Joseph Kozlowski ,  Ricardo L. Martinez ,  David Konetski ,  Carlton A. Andrews ,  Nicholas D. Grobelny ,  Charles D. Robison ,  Girish S. Dhoble

IPC: H04L29/06 ,  G06F21/62 ,  G06F9/50 ,  G06F21/57 ,  G06F21/44

CPC classification number: G06F21/6218 ,  G06F9/5072 ,  G06F21/44 ,  G06F21/577 ,  G06F2221/2141

Abstract: Systems and methods for securely deploying a collective workspace across multiple local management agents are described. In some embodiments, an Information Handling System (IHS) may include a processor and a memory coupled to the processor, the memory having program instructions stored thereon that, upon execution, cause the IHS to: receive, at a workspace orchestration service from a first local management agent, first context information and a first split key; receive, at the workspace orchestration service from a second local management agent, second context information and a second split key; determining, by the workspace orchestration service, that the first and second context information match a collaborative workspace policy; in response to the determination, authenticate the first and second split keys; and in response to the authentication, transmit a collaborative workspace definition to the first and second local management agents.