公开(公告)号：US09667411B2

公开(公告)日：2017-05-30

申请号：US14742811

申请日：2015-06-18

Applicant: Citrix Systems, Inc.

Inventor： Krishna Kumar

IPC: H04L9/32 ,  H04L9/08 ,  H04L29/08 ,  H04L29/06

CPC classification number: H04L65/4084 ,  H04L9/08 ,  H04L9/088 ,  H04L9/14 ,  H04L9/3263 ,  H04L63/0428 ,  H04L63/083 ,  H04L63/10 ,  H04L67/02 ,  H04L67/06 ,  H04L67/10 ,  H04W4/18 ,  H04W12/02 ,  H04W12/06

Abstract: Methods, systems, computer-readable media, and apparatuses for providing secure resources to a native operating system resource are described herein. Using one or more aspects described herein, a mobile device may determine that a native operating system service requests to access content located within a wrapped application. The mobile device may transmit, to the native operating system service, a server path to a loopback web server within the wrapped application to elicit a request from the native operating system service to the loopback web server for the content. In response to receiving a request comprising the server path to the loopback web server to retrieve the content from the loopback web server, the mobile device may instruct the loopback web server to transmit an unencrypted version of the content to the native operating system service.

公开(公告)号：US20230014970A1

公开(公告)日：2023-01-19

申请号：US17376512

申请日：2021-07-15

Applicant: Citrix Systems, Inc.

Inventor： Ashish Gujarathi ,  Santosh Sampath Gummunur Chiranjeevi ,  Krishna Kumar ,  Deepak Sharma

IPC: G06F21/41

Abstract: Described embodiments provide systems, methods, non-transitory computer-readable medium for using a single sign-on (SSO) to access an application. A client application on a client device in communication with an identity provider and an application on a remote computing device. The client application can authenticate a user via an identity provider to establish an authentication session. The client application can identify a request to access a uniform resource locator (URL) of the application hosted on the remote computing device. The client application can determine that a configuration of the client application identifies a remapped URL for the URL is available. The client application can access the remapped URL instead of the URL to cause the user to use the authentication session of the identity provider and be redirected from the identity provider to a link of the application on the remote computing device.

公开(公告)号：US20230012224A1

公开(公告)日：2023-01-12

申请号：US17370225

申请日：2021-07-08

Applicant: Citrix Systems, Inc.

Inventor： Krishna Kumar ,  Anil Kumar Gavini ,  Arkesh Kumar ,  Kiran Kumar Srinivasa ,  Srinivasa Maddipati

IPC: H04L29/06 ,  H04L29/12

Abstract: Described embodiments provide systems and methods for accessing a web application hosted in an intranet from outside said intranet. A server hosting a domain name service configured for the intranet can receive a request from a client that is outside the intranet to access the web application. The request may include a fully qualified domain name (FQDN) of the web application in the intranet. Responsive to the FQDN of the web application in the intranet, the server may send a notification to an access service, to cause the access service to pre-establish a connection to the intranet. Responsive to the FQDN of the web application in the intranet, the server may direct the client to send a handshake message to the access service to request access to the web application.

公开(公告)号：US20200286199A1

公开(公告)日：2020-09-10

申请号：US16295899

申请日：2019-03-07

Applicant: Citrix Systems, Inc.

Inventor： Srinivasa Maddipati ,  Pranav Kumar Konduru ,  FNU Rishabh Sinha ,  Krishna Kumar

IPC: G06Q50/30 ,  G06F16/29 ,  G06Q10/10 ,  G06N20/00 ,  G01C21/34

Abstract: Systems and methods described herein provide automatic generation of routes and scheduling of rides for ride sharing between users of a same entity based at least on attributes of the users. The server identifies commuting preferences of users of the same entity and whether each of the users prefer to drive or ride. The server receives information identifying a home location and a location of the same entity. The server generates a route for a group of users for commuting by the group of users to the location of the same entity. For the group of users, the server determines a user that is a driver and one or more users that are riders. The server communicates the route information to the group of users.

公开(公告)号：US09979764B2

公开(公告)日：2018-05-22

申请号：US15496102

申请日：2017-04-25

Applicant: Citrix Systems, Inc.

Inventor： Krishna Kumar

IPC: H04L29/06 ,  H04W12/06 ,  H04L29/08

CPC classification number: H04L65/4084 ,  H04L9/08 ,  H04L9/088 ,  H04L9/14 ,  H04L9/3263 ,  H04L63/0428 ,  H04L63/083 ,  H04L63/10 ,  H04L67/02 ,  H04L67/06 ,  H04L67/10 ,  H04W4/18 ,  H04W12/02 ,  H04W12/06

Abstract: Methods, systems, computer-readable media, and apparatuses for providing secure resources to a native operating system resource are described herein. Using one or more aspects described herein, a mobile device may determine that a native operating system service requests to access content located within a wrapped application. The mobile device may transmit, to the native operating system service, a server path to a loopback web server within the wrapped application to elicit a request from the native operating system service to the loopback web server for the content. In response to receiving a request comprising the server path to the loopback web server to retrieve the content from the loopback web server, the mobile device may instruct the loopback web server to transmit an unencrypted version of the content to the native operating system service.

公开(公告)号：US09467454B2

公开(公告)日：2016-10-11

申请号：US14634000

申请日：2015-02-27

Applicant: Citrix Systems, Inc.

Inventor： Vipin Aravindakshan ,  Krishna Kumar ,  Anand Kummur

IPC: H04L29/06 ,  G06F9/455 ,  H04L12/26 ,  H04L29/08 ,  H04L29/12

CPC classification number: H04L63/101 ,  G06F9/45533 ,  H04L43/50 ,  H04L61/00 ,  H04L61/1511 ,  H04L63/0272 ,  H04L67/06 ,  H04L69/164 ,  H04L69/24

Abstract: Described are systems and methods for managing network packet traffic between a client device and an enterprise server. A list of enterprise-authorized applications is maintained. Data packets, such as TCP and UDP data packets, communicated from applications running on the device are analyzed to determine an originating application corresponding to each packet. The originating application is compared to the list of authorized applications, and a VPN tunnel is created for the packet to access the enterprise server if the corresponding originating application is an authorized application.

公开(公告)号：US11734408B2

公开(公告)日：2023-08-22

申请号：US17376512

申请日：2021-07-15

Applicant: Citrix Systems, Inc.

Inventor： Ashish Gujarathi ,  Santosh Sampath Gummunur Chiranjeevi ,  Krishna Kumar ,  Deepak Sharma

IPC: G06F21/41

CPC classification number: G06F21/41

Abstract: Described embodiments provide systems, methods, non-transitory computer-readable medium for using a single sign-on (SSO) to access an application. A client application on a client device in communication with an identity provider and an application on a remote computing device. The client application can authenticate a user via an identity provider to establish an authentication session. The client application can identify a request to access a uniform resource locator (URL) of the application hosted on the remote computing device. The client application can determine that a configuration of the client application identifies a remapped URL for the URL is available. The client application can access the remapped URL instead of the URL to cause the user to use the authentication session of the identity provider and be redirected from the identity provider to a link of the application on the remote computing device.

公开(公告)号：US20170230437A1

公开(公告)日：2017-08-10

申请号：US15496102

申请日：2017-04-25

Applicant: Citrix Systems, Inc.

Inventor： Krishna Kumar

IPC: H04L29/06 ,  H04L29/08 ,  H04W12/06

CPC classification number: H04L65/4084 ,  H04L9/08 ,  H04L9/088 ,  H04L9/14 ,  H04L9/3263 ,  H04L63/0428 ,  H04L63/083 ,  H04L63/10 ,  H04L67/02 ,  H04L67/06 ,  H04L67/10 ,  H04W4/18 ,  H04W12/02 ,  H04W12/06

Abstract: Methods, systems, computer-readable media, and apparatuses for providing secure resources to a native operating system resource are described herein. Using one or more aspects described herein, a mobile device may determine that a native operating system service requests to access content located within a wrapped application. The mobile device may transmit, to the native operating system service, a server path to a loopback web server within the wrapped application to elicit a request from the native operating system service to the loopback web server for the content. In response to receiving a request comprising the server path to the loopback web server to retrieve the content from the loopback web server, the mobile device may instruct the loopback web server to transmit an unencrypted version of the content to the native operating system service.

公开(公告)号：US20160373251A1

公开(公告)日：2016-12-22

申请号：US14742811

申请日：2015-06-18

Applicant: Citrix Systems, Inc.

Inventor： Krishna Kumar

IPC: H04L9/08 ,  H04L29/06 ,  H04L29/08

CPC classification number: H04L65/4084 ,  H04L9/08 ,  H04L9/088 ,  H04L9/14 ,  H04L9/3263 ,  H04L63/0428 ,  H04L63/083 ,  H04L63/10 ,  H04L67/02 ,  H04L67/06 ,  H04L67/10 ,  H04W4/18 ,  H04W12/02 ,  H04W12/06

Abstract: Methods, systems, computer-readable media, and apparatuses for providing secure resources to a native operating system resource are described herein. Using one or more aspects described herein, a mobile device may determine that a native operating system service requests to access content located within a wrapped application. The mobile device may transmit, to the native operating system service, a server path to a loopback web server within the wrapped application to elicit a request from the native operating system service to the loopback web server for the content. In response to receiving a request comprising the server path to the loopback web server to retrieve the content from the loopback web server, the mobile device may instruct the loopback web server to transmit an unencrypted version of the content to the native operating system service.

Abstract translation: 本文描述了用于向本机操作系统资源提供安全资源的方法，系统，计算机可读介质和装置。 使用本文描述的一个或多个方面，移动设备可以确定本地操作系统服务请求访问位于被包装的应用内的内容。 移动设备可以向本地操作系统服务发送到被包装的应用内的环回web服务器的服务器路径，以从本地操作系统服务向内容的回送web服务器引出请求。 响应于接收到包括到环回web服务器的服务器路径以从回送web服务器检索内容的请求，移动设备可以指示环回web服务器将未加密的内容版本发送到本地操作系统服务。

公开(公告)号：US20130298201A1

公开(公告)日：2013-11-07

申请号：US13886526

申请日：2013-05-03

Applicant: CITRIX SYSTEMS, INC.

Inventor： Vipin Aravindakshan ,  Krishna Kumar ,  Anand Kummur

IPC: H04L29/06

CPC classification number: H04L63/101 ,  G06F9/45533 ,  H04L43/50 ,  H04L61/00 ,  H04L61/1511 ,  H04L63/0272 ,  H04L67/06 ,  H04L69/164 ,  H04L69/24

Abstract: Described are systems and methods for managing network packet traffic between a client device and an enterprise server. A list of enterprise-authorized applications is maintained. Data packets, such as TCP and UDP data packets, communicated from applications running on the device are analyzed to determine an originating application corresponding to each packet. The originating application is compared to the list of authorized applications, and a VPN tunnel is created for the packet to access the enterprise server if the corresponding originating application is an authorized application.

Abstract translation: 描述了用于在客户端设备和企业服务器之间管理网络分组流量的系统和方法。 维护企业授权应用程序列表。 分析从在设备上运行的应用传送的数据分组，例如TCP和UDP数据分组，以确定与每个分组对应的始发应用。 原始应用程序与授权应用程序列表进行比较，如果对应的发起应用程序是授权应用程序，则创建一个VPN隧道，以便该数据包访问企业服务器。