公开(公告)号：US10523665B2

公开(公告)日：2019-12-31

申请号：US15423715

申请日：2017-02-03

Applicant: Wyse Technology L.L.C.

Inventor： Salil Joshi ,  Puneet Kaushik ,  Sumit Popli ,  Suruchi Dubey ,  Oleg Rombakh ,  Varun Raghavan

IPC: H04L29/06 ,  H04W12/06

Abstract: Authentication can be performed on thin clients using independent mobile devices. Because many users have smart phones or other similar mobile devices that include biometric scanners, such mobile devices can be leveraged to perform authentication of users as part of logging in to a thin client desktop. A mapping can be created on a central server between a user's mobile device and the user's domain identity. A mapping can also be created between the user's domain identity and the user's thin client desktop. Then, when a user desires to log in to his thin client desktop, the user can employ the appropriate biometric scanner on his mobile device to perform authentication. The central server can then rely on this authentication to identify and log the user into his thin client desktop.

公开(公告)号：US10558450B2

公开(公告)日：2020-02-11

申请号：US15426578

申请日：2017-02-07

Applicant: Wyse Technology L.L.C.

Inventor： Puneet Kaushik ,  Salil Joshi

IPC: G06F9/44 ,  G06F8/65 ,  G06F9/445 ,  G06F16/23

Abstract: When it is desired to update a group of thin clients that have a common configuration, the update can be deployed to a reference device on which a replicate tool executes. The replicate tool can examine the file system and registry of the reference device and create a manifest that describes the current state. The manifest can then be published for access by an agent that executes on the thin clients in the group. When the agent receives the manifest, it can compare the received manifest to an existing manifest on the thin client that defines the thin client's current state to identify any artifacts that differ. The agent can then retrieve and install any artifacts the thin client needs to match the current state of the reference device.

公开(公告)号：US20180270249A1

公开(公告)日：2018-09-20

申请号：US15458251

申请日：2017-03-14

Applicant: Wyse Technology L.L.C.

Inventor： Salil Joshi

IPC: H04L29/06

CPC classification number: H04L63/105 ,  G06F21/604

Abstract: Users can be enabled to perform operations that require elevated privileges in a controlled manner. An agent can be executed on a user's computing device with admin privileges. When the user desires to perform an operation that user's privileges do not allow, the user can submit a request to an administrator. If the administrator approves the request, the agent can be notified that an operation needs to be performed. The agent can then obtain the necessary information for performing the operation and either perform the requested operation directly or perform one or more other operations to enable the user to perform the requested operation. In cases where the agent's actions grant elevated privileges to the user, the agent can be further configured to revoke the elevated privileges at a subsequent time to thereby prevent the user from retaining elevated privileges indefinitely.

公开(公告)号：US20180268126A1

公开(公告)日：2018-09-20

申请号：US15458249

申请日：2017-03-14

Applicant: Wyse Technology L.L.C.

Inventor： Puneet Kaushik ,  Salil Joshi

IPC: G06F21/44 ,  G06F9/445 ,  G06F13/366 ,  G06F13/40

CPC classification number: G06F21/44 ,  G06F9/4411 ,  G06F13/366 ,  G06F13/4072 ,  G06F21/606 ,  G06F21/85

Abstract: Access to devices can be controlled dynamically. A device control driver can function as an upper filter driver so that it can intercept I/O requests that target a particular device. The device control driver can be configured to communicate with a device control server to dynamically determine whether the current user is allowed to access the particular device. The device control server can employ policy or administrator input to determine whether access should be allowed and can then notify the device control driver accordingly. When access is granted, the device control driver can pass I/O requests down the device driver stack. Otherwise, the device control driver can block the I/O requests. Also, when access is granted, the device control server can specify a permission expiration time after which the device control driver should again resume blocking I/O requests.

公开(公告)号：US20180225105A1

公开(公告)日：2018-08-09

申请号：US15426578

申请日：2017-02-07

Applicant: Wyse Technology L.L.C.

Inventor： Puneet Kaushik ,  Salil Joshi

IPC: G06F9/445 ,  G06F17/30

Abstract: When it is desired to update a group of thin clients that have a common configuration, the update can be deployed to a reference device on which a replicate tool executes. The replicate tool can examine the file system and registry of the reference device and create a manifest that describes the current state. The manifest can then be published for access by an agent that executes on the thin clients in the group. When the agent receives the manifest, it can compare the received manifest to an existing manifest on the thin client that defines the thin client's current state to identify any artifacts that differ. The agent can then retrieve and install any artifacts the thin client needs to match the current state of the reference device.

公开(公告)号：US10657245B2

公开(公告)日：2020-05-19

申请号：US15458249

申请日：2017-03-14

Applicant: Wyse Technology L.L.C.

Inventor： Puneet Kaushik ,  Salil Joshi

IPC: G06F21/44 ,  G06F13/366 ,  G06F13/40 ,  G06F9/4401 ,  G06F21/85 ,  G06F21/60 ,  H04L29/06 ,  G06F21/70 ,  G06F21/57

Abstract: Access to devices can be controlled dynamically. A device control driver can function as an upper filter driver so that it can intercept I/O requests that target a particular device. The device control driver can be configured to communicate with a device control server to dynamically determine whether the current user is allowed to access the particular device. The device control server can employ policy or administrator input to determine whether access should be allowed and can then notify the device control driver accordingly. When access is granted, the device control driver can pass I/O requests down the device driver stack. Otherwise, the device control driver can block the I/O requests. Also, when access is granted, the device control server can specify a permission expiration time after which the device control driver should again resume blocking I/O requests.

公开(公告)号：US20180227296A1

公开(公告)日：2018-08-09

申请号：US15423715

申请日：2017-02-03

Applicant: Wyse Technology L.L.C.

Inventor： Salil Joshi ,  Puneet Kaushik ,  Sumit Popli ,  Suruchi Dubey ,  Oleg Rombakh ,  Varun Raghavan

IPC: H04L29/06 ,  H04W12/06

CPC classification number: H04L63/0853 ,  H04L63/0861 ,  H04W12/06

Abstract: Authentication can be performed on thin clients using independent mobile devices. Because many users have smart phones or other similar mobile devices that include biometric scanners, such mobile devices can be leveraged to perform authentication of users as part of logging in to a thin client desktop. A mapping can be created on a central server between a user's mobile device and the user's domain identity. A mapping can also be created between the user's domain identity and the user's thin client desktop. Then, when a user desires to log in to his thin client desktop, the user can employ the appropriate biometric scanner on his mobile device to perform authentication. The central server can then rely on this authentication to identify and log the user into his thin client desktop.