Patents Assigned to Citrix Systems, Inc.
  • Patent number: 10325470
    Abstract: A system for monitoring a health status of a person within an enclosed area may include a plurality of sensors distributed about the enclosed area. The sensors may be configured to detect respective different types of inputs based upon activity by the person within the enclosed area. The system may also include a computing device cooperating with the sensors to determine when the health status falls below a threshold status level based upon a timing and sequence in which the sensors are activated from the activity of the person within the enclosed area, and generate an alert based upon the health status falling below the threshold status level.
    Type: Grant
    Filed: September 26, 2017
    Date of Patent: June 18, 2019
    Assignee: CITRIX SYSTEMS, INC.
    Inventors: Brian Jeffrey Ehlert, Jiayin Tian, Christopher Coy Fife
  • Patent number: 10318232
    Abstract: Computer-implemented systems, methods, and computer-readable media are provided for providing virtual monitors. In accordance with some embodiments, a number of virtual monitors in which to provide a virtual desktop and a characteristic of one of the virtual monitors can be identified. A virtual monitor can then be generated based on the characteristic, and a portion of the virtual desktop can be assigned to the virtual monitor based at least in part on the identified number. An image of the portion of the virtual desktop can then be captured from the virtual monitor, and provided for presentation on a monitor of a client device.
    Type: Grant
    Filed: May 17, 2018
    Date of Patent: June 11, 2019
    Assignee: CITRIX SYSTEMS, INC.
    Inventors: Rakesh Kumar, Chandrasekhara Reddy
  • Patent number: 10320740
    Abstract: The present disclosure is directed towards systems and methods for performing dual domain name system (DNS) lookups to detect whether a request is for a public site versus an intranet site on a private network. A hosted application on a client device on a first network can receive web page content from a second network via a tunnel connection. The hosted application may intercept a request on the client device to access an intranet site on the second network identified by the web page content. An IP address resolution can be performed of a first DNS lookup of sites on the first network and a second DNS lookup can be performed. The hosted application can communicate the request via the tunnel connection to a second device on the second network responsive to determining that the first IP address resolution is different from the second IP address resolution.
    Type: Grant
    Filed: May 15, 2015
    Date of Patent: June 11, 2019
    Assignee: Citrix Systems, Inc.
    Inventors: Arif Ali Saiyed, Deepak Ramaswamy, Jinu Joy
  • Patent number: 10318886
    Abstract: The present disclosure is directed towards systems and methods for improving anomaly detection using injected outliers. A normalcy calculator of a device may include a set of outliers into a training dataset of data points. The normalcy calculator, using a K-means clustering algorithm applied on the training dataset, identify at least a first cluster of data points. The normalcy calculator of the device may determine a region with a center and an outer radius that covers at least a spatial extent of the first cluster of data points. The normalcy calculator may determine a first normalcy radius for the first cluster by reducing the region around the center until a point at which all artificial outliers are excluded from a region defined by the first normalcy radius. An outlier detector of the device may use the region defined by the first normalcy radius to determine whether a new data point is normal or abnormal.
    Type: Grant
    Filed: October 30, 2015
    Date of Patent: June 11, 2019
    Assignee: CITRIX SYSTEMS, INC.
    Inventors: Nastaran Baradaran, Anoop Reddy, Ratnesh Singh Thakur
  • Patent number: 10320628
    Abstract: The technology disclosed relates to detection of anonymous proxies and bots making requests to a cloud based resource on the Internet, such as a web server or an App server. The technology can leverage one or more of: instrumentation of web pages that samples response times and other characteristics of communications by a requestor device over multiple network segments; lack of prior appearance of the requestor device across multiple, independently operated commercial web sites; and resolver usage by the requestor. These signals can be analyzed to score a requesting device's reputation. A location reported by a user device can be compared to a network characteristic determined location.
    Type: Grant
    Filed: August 12, 2013
    Date of Patent: June 11, 2019
    Assignee: Citrix Systems, Inc.
    Inventors: Jacob Wan, Greg Unrein, Martin Kagan
  • Patent number: 10320696
    Abstract: Systems and methods of providing fine grained control over MSS values of transport layer connections. A device intermediary to a plurality of clients and a plurality of servers can identify a first MSS value based on a MTU value of a VLAN interface responsive to a request to establish a transport layer connection. Device determines that a MSS value of the VLAN is less than the first MSS value. Device updates, responsive to the determination, the first MSS value to a second MSS value corresponding to the MSS value of the VLAN. Device determines that an MSS value specified by a profile configured for a virtual server of the device is less than the second MSS value. Device updates the second MSS value to the MSS value of the profile responsive to determining that the MSS value specified by the profile is less than the second MSS value.
    Type: Grant
    Filed: February 27, 2017
    Date of Patent: June 11, 2019
    Assignee: Citrix Systems, Inc.
    Inventors: Ashwin Jagadish, Saravana Annamalaisami, Muthukumar Shunmugiah, Mohit Prakash Saxena
  • Patent number: 10313252
    Abstract: A network environment includes a client station coupled to a proxy server via a first network and one or more content servers coupled to the proxy server via a second network. A plurality of connections are established between the client station and the proxy server over the first network. Requests are dynamically interleaved over any of the connections to the proxy server by the client station. Content is retrieved for the requests from any of the content servers over the second network by the proxy server. Responses including retrieved content for respective requests are dynamically interleaved over any of the connections by the proxy server to the client station.
    Type: Grant
    Filed: May 20, 2016
    Date of Patent: June 4, 2019
    Assignee: Citrix Systems, Inc.
    Inventors: Christopher Raymond Koopmans, Frederick Alan Koopmans, Nicholas James Stavrakos, Amalraj Antonysamy
  • Patent number: 10305807
    Abstract: The present invention is directed towards systems and methods for selecting a path or link from a plurality of links between intermediary devices, based on characteristics of links between the intermediary devices and end nodes of the communication flow. The link choice may be determined from latency, packet drop rates, jitter, congestion, or other characteristics of the links to the end nodes. Link selection may further be based on traffic priority or transport layer quality of service (QoS) requirements of the connection, load balancing requirements, or other such features.
    Type: Grant
    Filed: May 3, 2016
    Date of Patent: May 28, 2019
    Assignee: CITRIX SYSTEMS, INC.
    Inventor: Praveen Raja Dhanabalan
  • Patent number: 10291465
    Abstract: Methods and systems for configuring computing devices using mobile workspace contexts based on proximity to locations are described herein. A mobile computing device determines that the device is proximate to a location, another device, or an individual associated with an enterprise system. The mobile computing device may then receive a mobile workspace context associated with the location, device, or individual, such as one or more specific wireless networks, enterprise applications, and/or documents, and may configure the device based on the received mobile workspace context. Additional methods and systems are described herein for transmitting and receiving sets of device capabilities between multiple devices, establishing communication sessions, and sharing various capabilities between devices. Still additional methods and systems are described for determining and accessing the capabilities of enterprise system resources using mobile computing devices in an enterprise system.
    Type: Grant
    Filed: April 11, 2014
    Date of Patent: May 14, 2019
    Assignee: Citrix Systems, Inc.
    Inventors: Joe Abou Rjeili, Joseph L. Freedman, Georgy Momchilov
  • Patent number: 10284627
    Abstract: A method and system for managing an application with multiple modes are described. A device manager that manages a mobile device may monitor the mobile device. The device manager may detect that a first type of application that runs in a managed mode (or in multiple managed modes) and an unmanaged mode is installed on the mobile device. When the application is executed on the device, the application executes in accordance with the selected application mode, e.g., based on location, user, role, industry presence, or other predefined context.
    Type: Grant
    Filed: September 9, 2013
    Date of Patent: May 7, 2019
    Assignee: Citrix Systems, Inc.
    Inventors: Zhongmin Lang, Gary Barton, Nitin Desai, James R. Walker
  • Patent number: 10285056
    Abstract: Methods, systems, and computer-readable media for using derived credentials to enroll a mobile computing device with an enterprise mobile device management system are described herein. In various embodiments, a mobile computing device, responsive to a command to enroll with an enterprise mobile device management server, may launch an enrollment application; send an enrollment request message to the enterprise mobile device management server; switch to a certificate management system application on the mobile computing device; request one or more derived credentials from a certificate management system server; store the one or more derived credentials in a shared vault on the mobile computing device; switch to the enrollment application; retrieve a derived credential of the one or more derived credentials stored in the shared vault; and, provide the derived credential to the enterprise mobile device management server to enroll the mobile computing device with at least one mobile device management service.
    Type: Grant
    Filed: April 10, 2017
    Date of Patent: May 7, 2019
    Assignee: Citrix Systems, Inc.
    Inventors: Shaunak Mistry, Younus Aftab
  • Patent number: 10284595
    Abstract: The present disclosure is directed towards systems and methods for evaluating or mitigating a network attack. A device determines one or more client internet protocol addresses associated with the attack on the service. The device assigns a severity score to the attack based on a type of the attack. The device identifies a probability of a user account accessing the service during an attack window based on the type of attack. The device generates an impact score for the user account based on the severity score and the probability of the user account accessing the service during the attack window. The device selects a mitigation policy for the user account based on the impact score.
    Type: Grant
    Filed: May 6, 2016
    Date of Patent: May 7, 2019
    Assignee: CITRIX SYSTEMS, INC.
    Inventors: Anoop Reddy, Kenneth Bell, Georgios Oikonomou, Kurt Roemer
  • Patent number: 10277606
    Abstract: Methods and systems are disclosed for providing approaches to anonymous application wrapping on a mobile device. The methods and systems may include receiving, by a controller service, a request to associate a first application executing on a client device with the controller service, and obtaining, by the controller service, a first application identifier associated with the first application. The methods and systems may also include receiving, by the controller service from an application service, a request for a first service and a conditional application identifier, and configuring, by the controller service and based on the request for the first service, the first application with a second set of one or more policy instructions used to control the first application.
    Type: Grant
    Filed: March 2, 2018
    Date of Patent: April 30, 2019
    Assignee: Citrix Systems, Inc.
    Inventors: Richard Hayton, Georgy Momchilov, Gary Barton, Andrew Innes
  • Patent number: 10277578
    Abstract: Methods and systems are disclosed for providing approaches to receiving, by an enterprise framework device from an application executing on a computing device, a first request associated with accessing an enterprise resource and generating, by the data proxy device, a ticketed URL that is associated with resource device communications related to the first request. The methods and systems may include receiving, by the data proxy device from the operating system, a second request addressed to the ticketed URL, transmitting, by the data proxy device to the operating system, based on the second request addressed to the ticketed URL, a resource device response, and transmitting, by the enterprise framework device to the application, the resource device response.
    Type: Grant
    Filed: January 4, 2016
    Date of Patent: April 30, 2019
    Assignee: Citrix Systems, Inc.
    Inventor: Andrew Carnegie Innes
  • Patent number: 10275336
    Abstract: Computer-implemented systems and methods are provided for determining application matching status. In one implementation, a method is implemented with one or more processors and includes accessing, at a server, a first dependency tree representing a first application and a second dependency tree, and acquiring one or more values for the first dependency tree and one or more values for the second dependency tree. The method also includes comparing the one or more values of the first dependency tree with the one or more values of the second dependency tree. The method further includes determining a matching status between the first application and an application represented by the second dependency tree based on the comparison, and providing, for display, an indication of the matching status.
    Type: Grant
    Filed: March 20, 2017
    Date of Patent: April 30, 2019
    Assignee: CITRIX SYSTEMS, INC.
    Inventors: Sheldon Ferdinand Lachambre, David Greggory Thornley
  • Patent number: 10270687
    Abstract: The present disclosure is directed towards systems and methods for dynamic routing on an IP address shared by a cluster of nodes. In an implementation, a first node of a cluster of nodes can receive a unicast routing protocol packet from a peer router. The unicast routing protocol packet can be addressed to a shared IP address established across the cluster of nodes. The cluster of nodes can be intermediary to a plurality of clients and a plurality of servers. The first node can identify a second node identified as a routing leader. The first node can steer the packet to the second node in response to determining that the routing protocol packet is a unicast routing protocol packet. The second node can be configured to advertise virtual IP address routes to the network over the routing adjacency and maintain routing adjacencies.
    Type: Grant
    Filed: September 7, 2015
    Date of Patent: April 23, 2019
    Assignee: CITRIX SYSTEMS, INC.
    Inventor: Sharvari Mithyantha
  • Patent number: 10270740
    Abstract: The present disclosure provides solutions for an enterprise providing services to a variety of clients to enable the client to use the resources provided by the enterprise by modifying URLs received and the URLs from the responses from the servers to the client's requests before forwarding the requests and the responses to the intended destinations. An intermediary may identify an access profile for a clients' request to access a server via a clientless SSL VPN session. The intermediary may detect one or more URLs in content served by the server in response to the request using one or more regular expressions of the access profile. The intermediary may rewrite or modify, responsive to detecting, the one or more detected URLs in accordance with a URL transformation specified by one or more rewrite policies of the access profile. The response with modified URLs may be forwarded to the client.
    Type: Grant
    Filed: February 7, 2014
    Date of Patent: April 23, 2019
    Assignee: Citrix Systems, Inc.
    Inventors: Puneet Agarwal, Srinivasan Thirunarayanan, Vamsi Korrapatti, Prakash Khemani, Rajiv Mirani, Anoop Reddy
  • Patent number: 10264093
    Abstract: A cache server includes a memory, and a processor to acquire segments of media data associated with a first request, with the first request being generated by a client device. The segments associated with the first request are stored in the memory. Keys for the segments associated with the first request are generated, with each segment having a respective key associated therewith that is a unique identifier for that segment.
    Type: Grant
    Filed: March 5, 2018
    Date of Patent: April 16, 2019
    Assignee: CITRIX SYSTEMS, INC.
    Inventors: Kapil Dakhane, Ioannis Beredimas, Robert Kidd, Andrew Michael Penner, Nicholas James Stavrakos
  • Patent number: 10263842
    Abstract: Virtual machines, virtualization servers, and other physical resources in a cloud computing environment may be dynamically configured based on the resource usage data for the virtual machines and resource capacity data for the physical resources in the cloud system. Based on an analysis of the virtual machine resource usage data and the resource capacity data of the virtualization servers and other physical resources in the cloud computing environment, each virtual machine may be matched to one of a plurality of virtualization servers, and the resources of the virtualization servers and other physical resources in the cloud may be reallocated and reconfigured to provide additional usage capacity to the virtual machines.
    Type: Grant
    Filed: January 12, 2016
    Date of Patent: April 16, 2019
    Assignee: Citrix Systems, Inc.
    Inventor: Michael Bursell
  • Patent number: D851112
    Type: Grant
    Filed: December 11, 2017
    Date of Patent: June 11, 2019
    Assignee: Citrix Systems, Inc.
    Inventors: Smitha Papolu, Mariana Ortiz-Reyes