公开(公告)号：US20220353065A1

公开(公告)日：2022-11-03

申请号：US17868909

申请日：2022-07-20

Applicant: Citrix Systems, Inc.

Inventor： Ioannis Beredimas ,  Snigdhendu Mukhopadhyay ,  Adam Phillip Schultz

IPC: H04L9/08 ,  H04L41/0806

Abstract: A system and method for securely encrypting and booting a headless appliance. A method includes providing the headless appliance with content stored in a memory, wherein the content is encrypted with a key, and wherein the key is separately stored on a remote computing device; booting the headless appliance and loading a fallback configuration; in response to a user device connecting to the headless appliance, directing the user device to a captive portal and capturing credentials of a user; forwarding the credentials to the remote computing device for verification by an identity provider; in response to the credentials being verified as a non-administrator, granting access to a public network for the user; and in response to the credentials being verified as an administrator, obtaining the key from the remote computing device to decrypt the content to provide access to a private network for the user.

公开(公告)号：US11831758B2

公开(公告)日：2023-11-28

申请号：US17868909

申请日：2022-07-20

Applicant: Citrix Systems, Inc.

Inventor： Ioannis Beredimas ,  Snigdhendu Mukhopadhyay ,  Adam Phillip Schultz

IPC: H04L9/40 ,  H04L9/08 ,  H04L41/0806

CPC classification number: H04L9/0825 ,  H04L9/085 ,  H04L9/0877 ,  H04L41/0806

Abstract: A system and method for securely encrypting and booting a headless appliance. A method includes providing the headless appliance with content stored in a memory, wherein the content is encrypted with a key, and wherein the key is separately stored on a remote computing device; booting the headless appliance and loading a fallback configuration; in response to a user device connecting to the headless appliance, directing the user device to a captive portal and capturing credentials of a user; forwarding the credentials to the remote computing device for verification by an identity provider; in response to the credentials being verified as a non-administrator, granting access to a public network for the user; and in response to the credentials being verified as an administrator, obtaining the key from the remote computing device to decrypt the content to provide access to a private network for the user.

公开(公告)号：US11431482B2

公开(公告)日：2022-08-30

申请号：US17170175

申请日：2021-02-08

Applicant: Citrix Systems, Inc.

Inventor： Ioannis Beredimas ,  Snigdhendu Mukhopadhyay ,  Adam Phillip Schultz

IPC: G06F21/57 ,  H04L9/08 ,  H04L41/0806

Abstract: A system and method for securely encrypting and booting a headless appliance. A computerized method is disclosed that includes: providing the network appliance with content encrypted with a secret key; launching the network appliance in a fallback configuration that provides limited operational capabilities; forwarding a request for the secret key to an online service that independently utilizes an identity provider to establish trust with an appliance administrator; receiving the secret key from the online service upon establishment of trust with the appliance administrator; decrypting the content with the secret key received from the online service; and utilizing the content to launch the network appliance in a full configuration.

公开(公告)号：US20220239473A1

公开(公告)日：2022-07-28

申请号：US17170175

申请日：2021-02-08

Applicant: Citrix Systems, Inc.

Inventor： Ioannis Beredimas ,  Snigdhendu Mukhopadhyay ,  Adam Phillip Schultz

IPC: H04L9/08 ,  H04L12/24

Abstract: A system and method for securely encrypting and booting a headless appliance. A computerized method is disclosed that includes: providing the network appliance with content encrypted with a secret key; launching the network appliance in a fallback configuration that provides limited operational capabilities; forwarding a request for the secret key to an online service that independently utilizes an identity provider to establish trust with an appliance administrator; receiving the secret key from the online service upon establishment of trust with the appliance administrator; decrypting the content with the secret key received from the online service; and utilizing the content to launch the network appliance in a full configuration.