公开(公告)号：US20210144213A1

公开(公告)日：2021-05-13

申请号：US17155678

申请日：2021-01-22

Applicant: Citrix Systems, Inc.

Inventor： Georgy Momchilov ,  Gary Barton

IPC: H04L29/08 ,  H04L29/06

Abstract: Methods and systems for customizing applications in enterprise mobility management systems are described herein. A client agent software application on a mobile device may be customized to embed or make available enterprise server URLs, a session cookie for authentication, and various other data during the device enrollment process. The customization of the client agent may be based on the device, user, and/or enrollment session. After the device is enrolled in the enterprise system, the embedded data may be accessed by the client agent application to support seamless single-sign-on during first-time use. Additional customized applications based on device, user, and/or enrollment session, may be generated and provided to mobile devices during or after device enrollment. Customized applications may be based on application templates, such as packaged web applications or specific implementations of hosted applications.

公开(公告)号：US10965734B2

公开(公告)日：2021-03-30

申请号：US16295273

申请日：2019-03-07

Applicant: Citrix Systems, Inc.

Inventor： Zhongmin Lang ,  Gary Barton ,  Nitin Desai ,  James R. Walker

IPC: H04L29/08 ,  G06F9/46 ,  G06F21/51 ,  H04L29/06 ,  H04W12/08 ,  H04W12/00 ,  H04W12/02

Abstract: A method and system for managing an application with multiple modes are described. A device manager that manages a mobile device may monitor the mobile device. The device manager may detect that a first type of application that runs in a managed mode (or in multiple managed modes) and an unmanaged mode is installed on the mobile device. When the application is executed on the device, the application executes in accordance with the selected application mode, e.g., based on location, user, role, industry presence, or other predefined context.

公开(公告)号：US10545748B2

公开(公告)日：2020-01-28

申请号：US15957642

申请日：2018-04-19

Applicant: Citrix Systems, Inc.

Inventor： James Walker ,  Zhongmin Lang ,  Gary Barton ,  Vipin Aravindakshan

IPC: G06F9/445 ,  G06F8/61 ,  G06F8/52 ,  G06F8/72 ,  G06F8/76 ,  G06F21/33 ,  G06F21/53 ,  G06F21/57 ,  G06F8/30 ,  G06F8/34 ,  G06F3/0484 ,  G06F8/41 ,  G06F8/71 ,  H04W24/02

Abstract: Methods and systems are disclosed for providing approaches to generating managed applications from unmanaged applications on a mobile device. The methods and systems may include storing, by a mobile device in a memory of the mobile device, one or more unmanaged applications each comprising a corresponding application bundle and decoding, by the mobile device, the retrieved application bundle corresponding to the first unmanaged application. The methods and systems may also include modifying, by the mobile device, the decoded application bundle corresponding to the first unmanaged application by adding a set of one or more policy-based control instructions, compiling, by the mobile device, the modified application bundle to generate a first managed application, the first managed application being configured to operate in accordance with the set of one or more policy-based control instructions, and providing, by the mobile device, the first managed application.

公开(公告)号：US10476885B2

公开(公告)日：2019-11-12

申请号：US15057314

申请日：2016-03-01

Applicant: Citrix Systems, Inc.

Inventor： Zhongmin Lang ,  Gary Barton

IPC: H04L29/06 ,  G06F11/30 ,  G06F9/455 ,  H04W12/08 ,  H04W12/00

Abstract: A method and system for operating an application with multiple modes are described. A plurality of applications may be presented to a user on a mobile device and one of the displayed applications may be selected. The selected application may have one or more contexts that are determined based on one or more operational parameters. For example, a context for the selected application may be that the application is configured to access an enterprise account. Based on the context, the selected application may be run on the mobile device in one of a plurality of operations modes. The operation modes may comprise managed, unmanaged, and partially managed modes, among others.

公开(公告)号：US20190208003A1

公开(公告)日：2019-07-04

申请号：US16295273

申请日：2019-03-07

Applicant: Citrix Systems, Inc.

Inventor： Zhongmin Lang ,  Gary Barton ,  Nitin Desai ,  James R. Walker

IPC: H04L29/08 ,  H04W12/08 ,  H04L29/06 ,  G06F9/46 ,  G06F21/51

CPC classification number: H04L67/10 ,  G06F9/468 ,  G06F21/51 ,  H04L63/105 ,  H04L63/20 ,  H04W12/0027 ,  H04W12/02 ,  H04W12/08

Abstract: A method and system for managing an application with multiple modes are described. A device manager that manages a mobile device may monitor the mobile device. The device manager may detect that a first type of application that runs in a managed mode (or in multiple managed modes) and an unmanaged mode is installed on the mobile device. When the application is executed on the device, the application executes in accordance with the selected application mode, e.g., based on location, user, role, industry presence, or other predefined context.

公开(公告)号：US10277606B2

公开(公告)日：2019-04-30

申请号：US15910127

申请日：2018-03-02

Applicant: Citrix Systems, Inc.

Inventor： Richard Hayton ,  Georgy Momchilov ,  Gary Barton ,  Andrew Innes

IPC: G06F21/00 ,  H04L29/06 ,  H04W12/06 ,  H04W12/08 ,  G06F21/10 ,  G06F21/62

Abstract: Methods and systems are disclosed for providing approaches to anonymous application wrapping on a mobile device. The methods and systems may include receiving, by a controller service, a request to associate a first application executing on a client device with the controller service, and obtaining, by the controller service, a first application identifier associated with the first application. The methods and systems may also include receiving, by the controller service from an application service, a request for a first service and a conditional application identifier, and configuring, by the controller service and based on the request for the first service, the first application with a second set of one or more policy instructions used to control the first application.

公开(公告)号：US10114945B2

公开(公告)日：2018-10-30

申请号：US14701561

申请日：2015-05-01

Applicant: Citrix Systems, Inc.

Inventor： Gary Barton ,  Brandon Olekas

IPC: G06F21/55 ,  G06F21/62 ,  G06F21/72 ,  H04L29/08

Abstract: Methods and systems for preventing clock rollback attacks are described herein. A rollback attack may occur when a user manually sets a system clock to a date/time earlier than the actual present day date and time, thereby tricking any software relying on the system clock to believe it is in fact the earlier date and time rather than the current date and time. According to aspects described herein, a particular application may check and store a record of the system time when an application goes inactive (or at intervals) and again when the application subsequently is activated again. When the application determines that the time has gone backward, the application (or system) may take some remedial measure(s) to prevent further use of the application (or system) until the user reestablishes trust (e.g., by reauthenticating or reestablishing a connection with a trusted time server).

公开(公告)号：US09971585B2

公开(公告)日：2018-05-15

申请号：US14752132

申请日：2015-06-26

Applicant: Citrix Systems, Inc.

Inventor： James Walker ,  Zhongmin Lang ,  Gary Barton ,  Vipin Aravindakshan

IPC: G06F9/44 ,  G06F9/445 ,  G06F9/45 ,  G06F21/33 ,  G06F21/53 ,  G06F21/57 ,  G06F3/0484 ,  H04W24/02

CPC classification number: G06F8/61 ,  G06F3/04842 ,  G06F8/30 ,  G06F8/316 ,  G06F8/34 ,  G06F8/41 ,  G06F8/52 ,  G06F8/62 ,  G06F8/71 ,  G06F8/72 ,  G06F8/76 ,  G06F21/33 ,  G06F21/53 ,  G06F21/57 ,  H04W24/02

Abstract: Methods and systems are disclosed for providing approaches to generating managed applications from unmanaged applications on a mobile device. The methods and systems may include storing, by a mobile device in a memory of the mobile device, one or more unmanaged applications each comprising a corresponding application bundle and decoding, by the mobile device, the retrieved application bundle corresponding to the first unmanaged application. The methods and systems may also include modifying, by the mobile device, the decoded application bundle corresponding to the first unmanaged application by adding a set of one or more policy-based control instructions, compiling, by the mobile device, the modified application bundle to generate a first managed application, the first managed application being configured to operate in accordance with the set of one or more policy-based control instructions, and providing, by the mobile device, the first managed application.

公开(公告)号：US20160301666A9

公开(公告)日：2016-10-13

申请号：US14535597

申请日：2014-11-07

Applicant: Citrix Systems, Inc.

Inventor： Gary Barton ,  Zhongmin Lang ,  Nitin Desai ,  James Robert Walker

IPC: H04L29/06

CPC classification number: H04L63/0807 ,  G06F21/31 ,  G06F2221/2105 ,  H04L63/0272 ,  H04L63/029 ,  H04L63/0815 ,  H04L63/20 ,  H04W12/06 ,  H04W12/08

Abstract: Various aspects of the disclosure relate to providing a per-application policy-controlled virtual private network (VPN) tunnel. In some embodiments, tickets may be used to provide access to an enterprise resource without separate authentication of the application and, in some instances, can be used in such a manner as to provide a seamless experience to the user when reestablishing a per-application policy controlled VPN tunnel during the lifetime of the ticket. Additional aspects relate to an access gateway providing updated policy information and tickets to a mobile device. Other aspects relate to selectively wiping the tickets from a secure container of the mobile device. Yet further aspects relate to operating applications in multiple modes, such as a managed mode and an unmanaged mode, and providing authentication-related services based on one or more of the above aspects.

公开(公告)号：US20160026462A1

公开(公告)日：2016-01-28

申请号：US14876832

申请日：2015-10-07

Applicant: Citrix Systems, Inc.

Inventor： Zhongmin Lang ,  Gary Barton ,  James Robert Walker ,  Vipin Aravindakshan

IPC: G06F9/44 ,  G06F9/445

CPC classification number: G06F8/76 ,  G06F8/52 ,  G06F8/65 ,  G06F8/72 ,  G06F9/45504 ,  G06F9/45516 ,  G06F21/33 ,  G06F21/53 ,  G06F21/57

Abstract: Methods and systems for developing, modifying, and distributing software applications for enterprise systems are described herein. A software component, such as a native mobile application or a template application, may be modified into a managed mobile application, and metadata associated with the managed mobile application may be generated. The managed application and associated metadata may be provided to one or more application stores, such as public application stores and/or enterprise application stores. Managed applications and/or associated metadata may be retrieved by computing devices from public application stores and/or enterprise application stores, and may be executed as managed applications in an enterprise system.

Abstract translation: 本文描述了用于开发，修改和分发企业系统的软件应用程序的方法和系统。 诸如本地移动应用或模板应用的软件组件可以被修改为被管理的移动应用，并且可以生成与被管理的移动应用相关联的元数据。 被管理的应用程序和关联的元数据可以被提供给一个或多个应用商店，诸如公共应用商店和/或企业应用商店。 管理的应用程序和/或相关联的元数据可以通过从公共应用程序存储器和/或企业应用程序存储器中的计算设备来检索，并且可以作为企业系统中的被管理应用来执行。