公开(公告)号：US20140344345A1

公开(公告)日：2014-11-20

申请号：US14448265

申请日：2014-07-31

Applicant: Citrix Systems, Inc.

Inventor： Charu Venkatraman ,  Junxiao He ,  Ajay Soni ,  Nicholas Stavrakos ,  Jeff Monks ,  Fred Koopmans ,  Chris Koopmans ,  Kapil Dakhane

IPC: H04L29/06 ,  H04L29/12

CPC classification number: H04L61/6009 ,  G06F17/30899 ,  H03M7/30 ,  H04L67/02 ,  H04L67/2804 ,  H04L67/2823 ,  H04L67/2852 ,  H04L67/289 ,  H04L69/321 ,  H04W8/245

Abstract: Systems and methods are described for using a client agent operating in a virtual private network environment to intercept HTTP communications. Methods include: intercepting at the network layer, by a client agent executing on a client, an HTTP request from an application executing on the client; modifying the HTTP request; and transmitting, via a transport layer connection, the modified HTTP request to a server. Additional methods may comprise adding, removing, or modifying at least one cookie in the HTTP request. Still other methods may comprise modifying at least one name-value pair contained in the HTTP request. Corresponding systems are also described.

Abstract translation: 描述了使用在虚拟专用网络环境中操作的客户端代理拦截HTTP通信的系统和方法。 方法包括：在客户端上执行的客户端代理在网络层拦截来自在客户机上执行的应用的HTTP请求; 修改HTTP请求; 以及经由传输层连接将经修改的HTTP请求发送到服务器。 附加方法可以包括在HTTP请求中添加，删除或修改至少一个cookie。 还有其他方法可以包括修改包含在HTTP请求中的至少一个名称 - 值对。 还描述了相应的系统。

公开(公告)号：US20140067927A1

公开(公告)日：2014-03-06

申请号：US14077119

申请日：2013-11-11

Applicant: Citrix Systems, Inc.

Inventor： Nicholas Stavrakos ,  Chris Koopmans

IPC: H04W8/22

CPC classification number: H04W8/22 ,  G06F16/9574 ,  H03M7/30 ,  H04L29/06 ,  H04L67/02 ,  H04L67/2828 ,  H04L67/2852 ,  H04W8/245

Abstract: A system including a client device communicatively coupled to a first wireless network, wherein the client device has the ability to request a web page from a content server, and an optimization server is configured to receive network data associated with the characteristics of the first wireless network, to provide tuning settings based on the network data, to receive response data from the content server, and to transmit optimized response data to the client device, wherein the response data corresponds to a request for a web page from a client device and the optimized response data corresponds to the response data being altered based on the provided tuning settings.

Abstract translation: 一种系统，包括通信地耦合到第一无线网络的客户端设备，其中所述客户端设备具有从内容服务器请求网页的能力，并且优化服务器被配置为接收与所述第一无线网络的特性相关联的网络数据 提供基于所述网络数据的调整设置，从所述内容服务器接收响应数据，以及将优化的响应数据发送到所述客户端设备，其中所述响应数据对应于来自客户端设备的网页的请求，并且所述优化的 响应数据对应于基于所提供的调谐设置正在改变的响应数据。

公开(公告)号：US09621666B2

公开(公告)日：2017-04-11

申请号：US14448642

申请日：2014-07-31

Applicant: Citrix Systems, Inc.

Inventor： Henk Bots ,  Srikanth Devarajan ,  Saravana Annamalaisami ,  Nicholas Stavrakos ,  Jeff Monks ,  Fred Koopmans ,  Chris Koopmans ,  Kapil Dakhane

IPC: G06F15/16 ,  H04L29/08 ,  G06F17/30 ,  H03M7/30 ,  H04W80/06 ,  H04W8/24

CPC classification number: H04L67/2828 ,  G06F17/30076 ,  G06F17/30902 ,  H03M7/30 ,  H04L67/02 ,  H04L67/06 ,  H04L67/2852 ,  H04L69/04 ,  H04W8/245 ,  H04W80/06

Abstract: Systems and methods for reducing file sizes for files delivered over a network are disclosed. A method comprises receiving a first file comprising sequences of data; creating a hash table having entries corresponding to overlapping sequences of data; receiving a second file comprising sequences of data; comparing each of the sequences of data in the second file to the sequences of data in the hash table to determine sequences of data present in both the first and second files; and creating a third file comprising sequences of data from the second file and representations of locations and lengths of said sequences of data present in both the first and second files.

公开(公告)号：US20140344891A1

公开(公告)日：2014-11-20

申请号：US14448298

申请日：2014-07-31

Applicant: Citrix Systems, Inc.

Inventor： Amarnath Mullick ,  Charu Venkatraman ,  Shashi Nanjundaswamy ,  Junxiao He ,  Ajay Soni ,  Nicholas Stavrakos ,  Chris Koopmans

IPC: H04L29/06

CPC classification number: H04L63/0272 ,  G06F17/00 ,  H04L63/102 ,  H04L63/105 ,  H04L63/20

Abstract: An appliance and method for authorizing a level of access of a client to a virtual private network connection, based on a client-side attribute includes the step of establishing, by an appliance, a control connection with a client upon receiving a client request to establish a virtual private network connection with a network. The appliance transmits, via the control connection, a request to the client to evaluate at least one clause of a security string, the at least one clause including an expression associated with a client-side attribute. The client transmits, via the control connection, a response to the appliance comprising a result of evaluating the at least one clause by the client. The appliance assigns the client to an authorization group based on the result of evaluation of the at least one clause.

Abstract translation: 基于客户端属性来授权客户端访问虚拟专用网络连接的级别的设备和方法包括以下步骤：当设备在接收到建立客户端请求时建立与客户端的控制连接 与网络的虚拟专用网络连接。 该设备经由控制连接向客户端发送请求以评估安全字符串的至少一个子句，所述至少一个子句包括与客户端属性相关联的表达式。 客户端经由控制连接发送对设备的响应，包括由客户端评估至少一个子句的结果。 该设备基于至少一个子句的评估结果将客户端分配给授权组。

公开(公告)号：US09692725B2

公开(公告)日：2017-06-27

申请号：US14448265

申请日：2014-07-31

Applicant: Citrix Systems, Inc.

Inventor： Charu Venkatraman ,  Junxiao He ,  Ajay Soni ,  Nicholas Stavrakos ,  Jeff Monks ,  Fred Koopmans ,  Chris Koopmans ,  Kapil Dakhane

IPC: H04L29/12 ,  H03M7/30 ,  H04L29/08 ,  H04W8/24

CPC classification number: H04L61/6009 ,  G06F17/30899 ,  H03M7/30 ,  H04L67/02 ,  H04L67/2804 ,  H04L67/2823 ,  H04L67/2852 ,  H04L67/289 ,  H04L69/321 ,  H04W8/245

Abstract: Systems and methods are described for using a client agent operating in a virtual private network environment to intercept HTTP communications. Methods include: intercepting at the network layer, by a client agent executing on a client, an HTTP request from an application executing on the client; modifying the HTTP request; and transmitting, via a transport layer connection, the modified HTTP request to a server. Additional methods may comprise adding, removing, or modifying at least one cookie in the HTTP request. Still other methods may comprise modifying at least one name-value pair contained in the HTTP request. Corresponding systems are also described.

公开(公告)号：US09407608B2

公开(公告)日：2016-08-02

申请号：US14448298

申请日：2014-07-31

Applicant: Citrix Systems, Inc.

Inventor： Amarnath Mullick ,  Charu Venkatraman ,  Shashi Nanjundaswamy ,  Junxiao He ,  Ajay Soni ,  Nicholas Stavrakos ,  Chris Koopmans

IPC: G06F17/00 ,  H04L29/06

CPC classification number: H04L63/0272 ,  G06F17/00 ,  H04L63/102 ,  H04L63/105 ,  H04L63/20

Abstract: An appliance and method for authorizing a level of access of a client to a virtual private network connection, based on a client-side attribute includes the step of establishing, by an appliance, a control connection with a client upon receiving a client request to establish a virtual private network connection with a network. The appliance transmits, via the control connection, a request to the client to evaluate at least one clause of a security string, the at least one clause including an expression associated with a client-side attribute. The client transmits, via the control connection, a response to the appliance comprising a result of evaluating the at least one clause by the client. The appliance assigns the client to an authorization group based on the result of evaluation of the at least one clause.

Abstract translation: 基于客户端属性来授权客户端访问虚拟专用网络连接的级别的设备和方法包括以下步骤：当设备在接收到建立客户端请求时建立与客户端的控制连接 与网络的虚拟专用网络连接。 该设备经由控制连接向客户端发送请求以评估安全字符串的至少一个子句，所述至少一个子句包括与客户端属性相关联的表达式。 客户端经由控制连接发送对设备的响应，包括由客户端评估至少一个子句的结果。 该设备基于至少一个子句的评估结果将客户端分配给授权组。

公开(公告)号：US20150026567A1

公开(公告)日：2015-01-22

申请号：US14448642

申请日：2014-07-31

Applicant: Citrix Systems, Inc.

Inventor： Henk Bots ,  Srikanth Devarajan ,  Saravana Annamalaisami ,  Nicholas Stavrakos ,  Jeff Monks ,  Fred Koopmans ,  Chris Koopmans ,  Kapil Dakhane

IPC: G06F17/30 ,  H04L29/08

CPC classification number: H04L67/2828 ,  G06F17/30076 ,  G06F17/30902 ,  H03M7/30 ,  H04L67/02 ,  H04L67/06 ,  H04L67/2852 ,  H04L69/04 ,  H04W8/245 ,  H04W80/06

Abstract: Systems and methods for reducing file sizes for files delivered over a network are disclosed. A method comprises receiving a first file comprising sequences of data; creating a hash table having entries corresponding to overlapping sequences of data; receiving a second file comprising sequences of data; comparing each of the sequences of data in the second file to the sequences of data in the hash table to determine sequences of data present in both the first and second files; and creating a third file comprising sequences of data from the second file and representations of locations and lengths of said sequences of data present in both the first and second files.

Abstract translation: 公开了用于减少通过网络传送的文件的文件大小的系统和方法。 一种方法包括：接收包括数据序列的第一文件; 创建具有对应于重叠数据序列的条目的哈希表; 接收包括数据序列的第二文件; 将第二文件中的数据序列中的每一个与散列表中的数据序列进行比较，以确定存在于第一和第二文件中的数据序列; 以及创建包括来自所述第二文件的数据序列的第三文件以及存在于所述第一和第二文件中的所述数据序列的位置和长度的表示。