-
公开(公告)号:US10348701B2
公开(公告)日:2019-07-09
申请号:US15447954
申请日:2017-03-02
Applicant: Citrix Systems, Inc.
Inventor: Javier Alejandro Figueroa , Kenneth Scott Bowden
Abstract: Described embodiments protect clients from open redirect security vulnerabilities in Web applications. A primary application receives a request for an operation to be performed on behalf of a secondary application. The request includes a return location parameter containing i) a return location, and ii) an encrypted portion. After completing the requested operation, the primary application retrieves the return location parameter and a cryptographic key uniquely associated with the secondary application. The primary application decrypts the encrypted portion of the return location parameter to generate a decrypted value, and uses the decrypted value to validate the return location contained in the return location parameter. The primary application transmits a redirect message to the client that causes the client to be redirected to the return location contained in the return location parameter only in response to the return location being successfully validated based on the decrypted value.
-
Patent Agency Ranking
公开(公告)号:US20190028550A1
公开(公告)日:2019-01-24
申请号:US15654522
申请日:2017-07-19
Applicant: Citrix Systems, Inc.
Inventor: Kenneth Scott Bowden
IPC: H04L29/08
Abstract: This disclosure is directed to embodiments of systems and methods for tracking sessions of a user. A session manager executing on a server may establish a plurality of sessions with a web application for a user via a web socket of the session manager. The plurality of sessions may share a first session identifier. The session manager may track, by via a web socket container established for the first session identifier, the plurality of sessions. The session manager may detect a log off by the user from one of the plurality of sessions. The session manager may send a log off event to others of the plurality of sessions tracked via the web socket container, responsive to the detection.
-
公开(公告)号:US20200314188A1
公开(公告)日:2020-10-01
申请号:US16901347
申请日:2020-06-15
Applicant: Citrix Systems, Inc.
Inventor: Kenneth Scott Bowden
IPC: H04L29/08
Abstract: This disclosure is directed to embodiments of systems and methods for tracking sessions of a user. A session manager executing on a server may establish a plurality of sessions with a web application for a user via a web socket of the session manager. The plurality of sessions may share a first session identifier. The session manager may track, by via a web socket container established for the first session identifier, the plurality of sessions. The session manager may detect a log off by the user from one of the plurality of sessions. The session manager may send a log off event to others of the plurality of sessions tracked via the web socket container, responsive to the detection.
-
公开(公告)号:US20180255068A1
公开(公告)日:2018-09-06
申请号:US15447954
申请日:2017-03-02
Applicant: Citrix Systems, Inc.
Inventor: Javier Alejandro Figueroa , Kenneth Scott Bowden
IPC: H04L29/06
CPC classification number: H04L63/0442 , H04L63/126 , H04L67/02 , H04L67/2814
Abstract: Described embodiments protect clients from open redirect security vulnerabilities in Web applications. A primary application receives a request for an operation to be performed on behalf of a secondary application. The request includes a return location parameter containing i) a return location, and ii) an encrypted portion. After completing the requested operation, the primary application retrieves the return location parameter and a cryptographic key uniquely associated with the secondary application. The primary application decrypts the encrypted portion of the return location parameter to generate a decrypted value, and uses the decrypted value to validate the return location contained in the return location parameter. The primary application transmits a redirect message to the client that causes the client to be redirected to the return location contained in the return location parameter only in response to the return location being successfully validated based on the decrypted value.
-
公开(公告)号:US11044322B2
公开(公告)日:2021-06-22
申请号:US16901347
申请日:2020-06-15
Applicant: Citrix Systems, Inc.
Inventor: Kenneth Scott Bowden
Abstract: This disclosure is directed to embodiments of systems and methods for tracking sessions of a user. A session manager executing on a server may establish a plurality of sessions with a web application for a user via a web socket of the session manager. The plurality of sessions may share a first session identifier. The session manager may track, by via a web socket container established for the first session identifier, the plurality of sessions. The session manager may detect a log off by the user from one of the plurality of sessions. The session manager may send a log off event to others of the plurality of sessions tracked via the web socket container, responsive to the detection.
-
公开(公告)号:US10686884B2
公开(公告)日:2020-06-16
申请号:US15654522
申请日:2017-07-19
Applicant: Citrix Systems, Inc.
Inventor: Kenneth Scott Bowden
Abstract: This disclosure is directed to embodiments of systems and methods for tracking sessions of a user. A session manager executing on a server may establish a plurality of sessions with a web application for a user via a web socket of the session manager. The plurality of sessions may share a first session identifier. The session manager may track, by via a web socket container established for the first session identifier, the plurality of sessions. The session manager may detect a log off by the user from one of the plurality of sessions. The session manager may send a log off event to others of the plurality of sessions tracked via the web socket container, responsive to the detection.
-
-
-
-
-
Search Results
6
records
(took 0.012 seconds)
