公开(公告)号：US20210266271A1

公开(公告)日：2021-08-26

申请号：US17316821

申请日：2021-05-11

Applicant: CITRIX SYSTEMS, INC

Inventor： GEORGY MOMCHILOV ,  HUBERT DIVOUX ,  ROBERTO VALDES

IPC: H04L12/911 ,  G06F9/451 ,  G06F9/455 ,  H04L29/08 ,  H04L29/06

Abstract: A computing device may include a memory and a processor cooperating with the memory and configured to receive connection leases providing instructions for connecting to computing sessions, and request connections to the computing sessions including the connection leases. Each connection lease may comprise a first component unique to a published resource, and a second component referenced by the first component and shared in common with a plurality of different published resources in other connection leases, with the second component being updateable independent of the first component.

公开(公告)号：US20230336474A1

公开(公告)日：2023-10-19

申请号：US18319535

申请日：2023-05-18

Applicant: CITRIX SYSTEMS, INC.

Inventor： GEORGY MOMCHILOV ,  HUBERT DIVOUX ,  ROBERTO VALDES ,  LEO SINGLETON ,  PAUL BROWNE ,  KEVIN WOODMANSEE

IPC: H04L45/586 ,  H04L45/42 ,  H04L67/141 ,  H04L9/40 ,  H04L67/01

CPC classification number: H04L45/586 ,  H04L45/42 ,  H04L67/141 ,  H04L63/0876 ,  H04L63/108 ,  H04L63/0442 ,  H04L67/01

Abstract: A method may include storing and updating published resource entitlements for a plurality of client devices at a computing device. The method may also include using a plurality of virtual delivery appliances to receive connection requests from the client devices, with the connection requests including connection leases having associated resource entitlements the client devices are respectively permitted to access, and request validation of the connection leases from the computing device. At the computing device, responsive to validation requests from the virtual delivery appliances, the connection leases may be compared to the updated published resource entitlements and validated based thereon. At the virtual delivery appliances, the client devices may be provided with access to virtual sessions corresponding to the published resource entitlements responsive to the virtual session request validations from the computing device.

公开(公告)号：US20220173890A1

公开(公告)日：2022-06-02

申请号：US17447713

申请日：2021-09-15

Applicant: CITRIX SYSTEMS, INC.

Inventor： GEORGY MOMCHILOV ,  HUBERT DIVOUX ,  ROBERTO VALDES

IPC: H04L9/08 ,  G06K19/07 ,  H04L29/06 ,  H04L29/08

Abstract: A smart card may include a memory configured to store a user connection lease and user interface (UI) cache for a user and a private/public key pair of the smart card, with the user connection lease being bound to the private/public key pair of the smart card. The smart card may further include a processor coupled to the memory and configured to establish a communications link with a kiosk device to be shared by a plurality of different users, initiate a virtual session for the user at the kiosk device based upon the user connection lease and the private key responsive to establishing the communications link (with the smart card defining an endpoint for the virtual session authorization), and cause the kiosk device to launch the virtual session based upon the user UI cache.

公开(公告)号：US20200374225A1

公开(公告)日：2020-11-26

申请号：US16847780

申请日：2020-04-14

Applicant: CITRIX SYSTEMS, INC.

Inventor： GEORGY MOMCHILOV ,  HUBERT DIVOUX ,  ROBERTO VALDES ,  LEO C. SINGLETON, IV ,  PAUL BROWNE ,  KEVIN WOODMANSEE

IPC: H04L12/713 ,  H04L12/717 ,  H04L29/08 ,  H04L29/06

Abstract: A computing system may include a computing device configured to store and update published resource entitlements for a plurality of client devices. The system may further include a plurality of virtual delivery appliances configured to receive connection requests from the client devices, with the connection requests including a connection lease issued based upon the published resource entitlements for the client devices, request validation of the connection leases from the computing device, and provide the client devices with access to virtual sessions corresponding to the published resource entitlements responsive to validation of connection leases from the computing device. The computing device, responsive to validation requests from the virtual delivery appliances, may also compare the connection leases to the updated published resource entitlements and validate virtual session requests based thereon.

公开(公告)号：US20220174117A1

公开(公告)日：2022-06-02

申请号：US17448219

申请日：2021-09-21

Applicant: CITRIX SYSTEMS, INC.

Inventor： GEORGY MOMCHILOV ,  HUBERT DIVOUX ,  ROBERTO VALDES

IPC: H04L29/08 ,  G06F12/0802

Abstract: A computing device may include a memory configured to store a group connection lease and a group user interface (UI) cache shared by different users within a user delivery group. The computing device may also include a processor coupled to the memory and configured to establish communications links with a plurality of smart card devices associated with different users within the user delivery group, initiate virtual sessions for the different users based upon the group connection lease responsive to establishing the communications links with the smart card devices, and launch the virtual sessions for the different users based upon the group UI cache.

公开(公告)号：US20220086012A1

公开(公告)日：2022-03-17

申请号：US17456961

申请日：2021-11-30

Applicant: CITRIX SYSTEMS, INC.

Inventor： GEORGY MOMCHILOV ,  HUBERT DIVOUX ,  ROBERTO VALDES

IPC: H04L9/32 ,  H04L9/08 ,  H04L9/30

Abstract: A computing device may include a memory and a processor cooperating with the memory and configured to receive requests from a client device to connect with the computing device. The client device may be shared by multiple authenticated users and have a public/private encryption key pair associated therewith, and the requests may be based upon connection leases and the public key for the client device. The connection leases may also be generated for respective authenticated users and include an authenticated version of the public key for the client device so that the connection leases are specific to the client device and respective users. The processor may also provide the client device with access to computing sessions for respective authenticated users based upon the connection leases and verification of the public key, and prevent the use of the connection leases for authorizing connections for other authenticated users.

公开(公告)号：US20220345311A1

公开(公告)日：2022-10-27

申请号：US17448218

申请日：2021-09-21

Applicant: CITRIX SYSTEMS, INC.

Inventor： GEORGY MOMCHILOV ,  HUBERT DIVOUX ,  ROBERTO VALDES

IPC: H04L9/32 ,  H04L9/30 ,  H04L29/06 ,  G06F8/65 ,  G06F9/451

Abstract: A computing appliance may include a memory and a processor configured to cooperate with the memory to establish a first virtual session for an endpoint device over a first network connection. The endpoint device may have an endpoint public/private key pair associated therewith and configured to store a plurality of connection leases generated based upon the endpoint public key, and the first virtual session may be established responsive to a first one of the connection leases and authentication based upon the endpoint private key. The processor may further establish a second virtual session for the endpoint device to access through the first virtual session with another computing appliance over a second network connection responsive to a second one of the connection leases and authentication based upon the endpoint private key.

公开(公告)号：US20220303213A1

公开(公告)日：2022-09-22

申请号：US17806113

申请日：2022-06-09

Applicant: CITRIX SYSTEMS, INC.

Inventor： GEORGY MOMCHILOV ,  HUBERT DIVOUX ,  ROBERTO VALDES ,  LEO C. SINGLETON, IV ,  PAUL BROWNE ,  KEVIN WOODMANSEE

IPC: H04L45/586 ,  H04L45/42 ,  H04L67/141 ,  H04L9/40 ,  H04L67/01

Abstract: A method may include storing and updating published resource entitlements for a plurality of client devices at a computing device. The method may also include using a plurality of virtual delivery appliances to receive connection requests from the client devices, with the connection requests including connection leases having associated resource entitlements the client devices are respectively permitted to access, and request validation of the connection leases from the computing device. At the computing device, responsive to validation requests from the virtual delivery appliances, the connection leases may be compared to the updated published resource entitlements and validated based thereon. At the virtual delivery appliances, the client devices may be provided with access to virtual sessions corresponding to the published resource entitlements responsive to the virtual session request validations from the computing device.