Patents Assigned to Citrix Systems, Inc.
  • Patent number: 11956219
    Abstract: Described embodiments provide systems and methods for preventing unauthorized access of information from a resource. A device intermediary between a client and a server in a session can receive a first request from the client that includes a first uniform resource locator (URL) of the server. The device may receive a response from the server that includes a second URL. The device may update the response by including a client identifier for the session in a set-cookie field, obfuscating the second URL into a string, and replacing the second URL in the response with the string. The device may receive a second request that includes a candidate client identifier, and a third URL. The device may determine whether the second request is valid, by at least one of: matching the candidate client identifier with the client identifier, and determining whether the second URL is recoverable using the third URL.
    Type: Grant
    Filed: June 24, 2021
    Date of Patent: April 9, 2024
    Assignee: Citrix Systems, Inc.
    Inventor: Rama Rao Katta
  • Publication number: 20240114073
    Abstract: The present solution provides systems and methods for providing remote access and packet retransmission via third party networks. A device can receive a client request to establish a session with a virtual server. The client and the virtual server can communicate using a presentation services protocol over a lower-level protocol. The device can select a node on a network to use for the session between the client and the virtual server. The device can cause an installation of one or more network stacks on the node, the one or more network stacks configured to communicate with the client and the virtual server using the presentation services protocol over the lower-level protocol and to handle retransmissions of packets between the client, the node, and virtual servers. The device can cause each of the client and the virtual server to establish the session via the node.
    Type: Application
    Filed: September 29, 2022
    Publication date: April 4, 2024
    Applicant: Citrix Systems, Inc.
    Inventors: Daniel Wing, Sridharan Rajagopalan, Rakesh Jha
  • Publication number: 20240104002
    Abstract: A method of troubleshooting an application includes receiving, from an analytics engine, data representing a performance metric of the application and a tenant identifier associated with the application; sending, to the analytics service, a request to receive at least one user identifier associated with the tenant identifier; receiving, from the analytics service, at least one user identifier; selecting, from a database, a message based at least in part on the performance metric of the application; and sending the message to the application associated with the at least one user identifier.
    Type: Application
    Filed: September 22, 2022
    Publication date: March 28, 2024
    Applicant: Citrix Systems, Inc.
    Inventors: Kiran Kumar, Vikramjeet Sandhu, Vivek Koni Raghuveer, Vinay George Roy
  • Publication number: 20240106761
    Abstract: Described embodiments provide systems and methods for determining a scale for buffers of a session. A device may identify a round trip time (RTT) of a session with a client for which one or more of a plurality of buffers are provided. The device may detect an indication in advance of an activity on the client to access through the session. The device may determine, responsive to detecting the indication, a scale based at least on a type of the activity. The device may set a number for the plurality of buffers to provide for the session in accordance with the scale and the RTT.
    Type: Application
    Filed: September 28, 2022
    Publication date: March 28, 2024
    Applicant: Citrix Systems, Inc.
    Inventors: Rakesh Jha, Sridharan Rajagopalan, Georgy Momchilov
  • Patent number: 11936723
    Abstract: Systems and methods for geographically distributed node replication include a first node which receives a message from a client based on a proximity of the first node to the client, the message transmitted to the first node via anycast routing from the client. The first node may replicate the message to a first subset of the geographically distributed system of nodes based on a geographic proximity of nodes within the first subset. The first node may publish the message to a data feed of a message bus for the system of nodes, to cause at least one node of the system of nodes to receive the message from the first node, the at least one node outside the first subset and subscribing to the data feed of the first node.
    Type: Grant
    Filed: May 16, 2022
    Date of Patent: March 19, 2024
    Assignee: Citrix Systems, Inc.
    Inventors: Panagiotis Gourgaris, Ioannis Beredimas
  • Patent number: 11928379
    Abstract: Methods and systems for causing display of notes in an extended reality (XR) environment are described herein. A computing device may provide, to a user and via an XR device, an XR environment. The computing device may receive an indication that the user is presenting content. The computing device may capture one or more images of a physical environment around the XR device, then process the images to identify a location of a camera. The computing device may retrieve text corresponding to the content being presented and cause display, in the XR environment and based on the location, of the text. In this manner, the computing device may orient the eyes of the user towards a camera during presentation of content.
    Type: Grant
    Filed: February 8, 2022
    Date of Patent: March 12, 2024
    Assignee: Citrix Systems, Inc.
    Inventor: Manbinder Pal Singh
  • Patent number: 11924272
    Abstract: The present disclosure is directed towards systems and methods of detecting a cause of anomalous load balancing among a plurality of servers. A device intermediary to a plurality of clients and a plurality of servers collects values of a plurality of counters. The device identifies a server of the plurality of servers that is an outlier. The device can identify a counter of the plurality of counters that is an outlier based on at least a comparison of values of each of the plurality of counters for each of the plurality of servers. The device can provide, responsive to the determination, an indication that a value of the counter is a factor causing the server to have uneven load balancing during the time interval.
    Type: Grant
    Filed: October 28, 2021
    Date of Patent: March 5, 2024
    Assignee: Citrix Systems, Inc.
    Inventors: Nastaran Baradaran, Muraliraja Muniraju
  • Patent number: 11916975
    Abstract: In some embodiments, a method can include: receiving, by a computing device, a plurality of messages, where at least a first one of the plurality of messages is associated with a first application and at least a second one of the plurality of messages is associated with a second application different from the first; receiving, by the computing device, information about one or more scheduled meetings; determining, by the computing device, one or more of the plurality of messages that are associated with a first meeting of the one or more scheduled meetings; and sending, by the computing device, information about the associations of the one or more of the plurality of messages and the first meeting to another computing device to enable the another computing device to display a list of the one or more of the plurality of messages in conjunction with the first meeting.
    Type: Grant
    Filed: May 20, 2022
    Date of Patent: February 27, 2024
    Assignee: Citrix Systems, Inc.
    Inventors: Xuan Liu, Chunhui Wu, Wenshuang Zhang
  • Patent number: 11900680
    Abstract: Described embodiments provide systems and methods for defining a clip within a recording. A device may generate a recording of a session of a user via which a plurality of applications is accessible. The device may detect a transition of an application of the plurality of applications in a foreground of the session. The device may identify, from the recording, a frame corresponding to the transition in the foreground. The device may store an identification of the frame corresponding to the transition to define a clip of the user within the recording using the application in the session.
    Type: Grant
    Filed: May 11, 2022
    Date of Patent: February 13, 2024
    Assignee: Citrix Systems, Inc.
    Inventors: Daowen Wei, Hengbo Wang, Jian Ding, Feng Tao
  • Patent number: 11900180
    Abstract: One disclosed method involves accessing, by a computing system and using access credentials associated with a user, data associated with systems of record, generating, by the computing system, a plurality of notifications of events indicated by the data, determining, by the computing system, that the user selected at least one keyword, determining, by the computing system, that a first notification of the plurality of notifications relates to the at least one keyword, and causing, by the computing system and based at least in part on the first notification relating to the at least one keyword, a client device operated by the user to present the first notification.
    Type: Grant
    Filed: July 28, 2021
    Date of Patent: February 13, 2024
    Assignee: Citrix Systems, Inc.
    Inventors: Ke Xu, Zhaozhao Xiong, Zongpeng Qiao, Lu Sun
  • Patent number: 11902178
    Abstract: Effectively allocating computing resources to end-users is provided. A system can identify mapping groups comprising a first mapping group that maps first users to corresponding first machines having a first hardware configuration, and a second mapping group that maps second users to corresponding second machines having a second hardware configuration. The system can determine a first metric indicating computing resource utilization of a first machine of the first machines when executing one or more sessions of a first user in the first mapping group, and a second metric indicating computing capacity of the second machines. The system can re-map the first user from the first mapping group to the second mapping group to cause sessions of the first user to execute on a second machine of the second machines.
    Type: Grant
    Filed: December 8, 2021
    Date of Patent: February 13, 2024
    Assignee: Citrix Systems, Inc.
    Inventor: Prabhjeet Singh Chawla
  • Patent number: 11886525
    Abstract: Embodiments described include systems and methods for presenting additional content for a network application accessed via an embedded browser of a client application are provided. Additional content related to network applications may be presented on client devices. Specifically, activity such as embedded browser activity may be monitored. Responsive to detecting an event based on the monitored activity, additional content related to the network application may be provided. In various embodiments, the additional content is provided to a client application on the client device for presentation on the client device.
    Type: Grant
    Filed: August 16, 2021
    Date of Patent: January 30, 2024
    Assignee: Citrix Systems, Inc.
    Inventor: Abhishek Chauhan
  • Patent number: 11876798
    Abstract: A virtual delivery appliance may communicate with a client device over a network to provide the client device with a virtualized session for a user. A processor may be configured to communicate with the client device over the network to perform a registration operation with a relying party. An application within the virtualized session may perform an authentication operation with the relying party to access a resource. The processor may be configured to forward an authentication challenge message to the client device in response to the application receiving the authentication challenge message from the relying party for the user to access the resource, and receive an authentication answer message in response to the authentication challenge message from the client device.
    Type: Grant
    Filed: May 18, 2020
    Date of Patent: January 16, 2024
    Assignee: Citrix Systems, Inc.
    Inventors: Ashwin Suresh, Jason Vega Paez, Georgy Momchilov, Jayadev Marulappa Niranjanmurthy, Mark D. Howell
  • Patent number: 11876852
    Abstract: Described embodiments provide for dynamically optimizing the number of application layer streams that may be multiplexed into a single transport layer connection, providing the advantages of application layer multiplexing without incurring unnecessary congestion-based network delays. A device may monitor net bandwidth and packet loss rates for a connection, and may dynamically increase and decrease a number of concurrent application layer streams to balance throughput and congestion avoidance. As congestion increases, the device may reduce concurrent stream limits in order to spawn additional transport layer connections, allowing faster congestion recovery and reduced performance impairment.
    Type: Grant
    Filed: August 11, 2022
    Date of Patent: January 16, 2024
    Assignee: Citrix Systems, Inc.
    Inventor: Praveen Raja Dhanabalan
  • Publication number: 20240012665
    Abstract: A system and method for initializing a virtual machine (VM) image is provided. The method includes steps of retrieving identity data from a metadata service implemented by a cloud environment; obtaining, from the cloud environment, a virtual identity disk assigned to a VM; and writing the identity data to the virtual identity disk assigned to the VM. The method may further comprise encrypting the identity data with a data encryption key (DEK) or a public key of a virtual trusted platform module (vTPM) responsive to the vTPM being available.
    Type: Application
    Filed: July 5, 2022
    Publication date: January 11, 2024
    Applicant: Citrix Systems, Inc.
    Inventor: Simon Piers Graham
  • Publication number: 20240004947
    Abstract: A computer system is provided. The computer system includes a memory; a user interface; and a processor coupled with the memory and the user interface. The processor is configured to detect, within a response addressed to a browser, one or more identifiers of one or more web resources; determine relevance information associated with the one or more web resources; embed the relevance information into the response to generate an augmented response; and communicate the augmented response to the browser.
    Type: Application
    Filed: July 26, 2022
    Publication date: January 4, 2024
    Applicant: Citrix Systems, Inc.
    Inventors: XIHUAN YANG, MIN LI, FEI SU
  • Publication number: 20240005001
    Abstract: A computer system is provided. The computer system includes a memory and at least one processor coupled to the memory and configured to detect triggering of one or more threat detectors. The at least one processor is further configured to activate a subset of nodes from a plurality of nodes in a Bayesian network in response to the detection, the activated subset of nodes associated with the triggered threat detectors. The at least one processor is further configured to calculate a probability of malicious action using the Bayesian network to combine probabilities associated with the activated subset of nodes. The at least one processor is further configured to determine that the probability exceeds a threshold value. The at least one processor is further configured to perform a security action in response to the determination.
    Type: Application
    Filed: July 19, 2022
    Publication date: January 4, 2024
    Applicant: Citrix Systems, Inc.
    Inventors: Andreas Varnavas, Georgios Papaloukopoulos, Asterios Stergioudis, Dimitrios Markonis, Nikolaos Tsapakis, Georgios Tsolis
  • Publication number: 20240007375
    Abstract: Methods and apparatus for improving performance in a virtual meeting session in a distributed workspace system. One example of such a method includes acts of launching the virtual meeting session on a computing device of a first meeting participant, establishing a first connection between the computing device and a virtual meeting server, monitoring network latency conditions in the first network connection, upon determining that the network latency conditions exceed a predetermined threshold, selecting a proxy agent and establishing a second network connection between the computing device and the proxy agent, and establishing a third network connection between the virtual meeting server and the proxy agent to connect the computing device to the virtual meeting server through the proxy agent.
    Type: Application
    Filed: July 26, 2022
    Publication date: January 4, 2024
    Applicant: Citrix Systems, Inc.
    Inventors: JUNJIE JIN, HAIYANG XU, JIGAO HUANG
  • Publication number: 20240004995
    Abstract: A computer system is provided. The computer system includes a memory and at least one processor coupled to the memory and configured to detect triggering of one or more threat detectors and activate a subset of nodes associated with the triggered threat detectors from a plurality of nodes in a Bayesian network in response to the detection. The at least one processor is further configured to determine that feedback associated with the triggered threat detectors is available and, if so, accumulate the feedback to a feedback node of the network, the feedback node associated with the triggered threat detectors. The at least one processor is further configured to calculate a probability of malicious action using the network to combine probabilities associated with the activated subset of nodes and the feedback node, determine that the probability exceeds a threshold value, and perform a security action in response to the determination.
    Type: Application
    Filed: October 26, 2022
    Publication date: January 4, 2024
    Applicant: Citrix Systems, Inc.
    Inventors: Andreas Varnavas, Asterios Stergioudis, Nikolaos Georgakopoulos
  • Publication number: 20230421471
    Abstract: The present solution provides systems and methods for a GSLB service to access a first plurality of measurements of network latency between a plurality of access-points and the first client device and a second plurality of measurements of network latency between the plurality of access-points and one or more of data centers. The GSLB service can receive, from the one or more data centers, health of an application deployed across the one or more data centers. The GSLB service can determine, according to the first plurality of measurements, the second plurality of measurements and the health of the application, a first data center of the one or more data centers and a first access-point of the plurality of access-points. The GSLB service can send, to the first client device, a domain name system (DNS) response identifying the first access-point and the first data center.
    Type: Application
    Filed: July 25, 2022
    Publication date: December 28, 2023
    Applicant: Citrix Systems, Inc.
    Inventors: Ioannis Beredimas, Panagiotis Gourgaris, Panteleimon Evangelos Aivaliotis, Aristotelis Mertis