Patents by Inventor Chris Mayer

Chris Mayer has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).

  • Patent number: 9154488
    Abstract: A method of authentication and accessing resources is provided. A client device may send a request to a proxy device to access a resource, such as an enterprise resource. The proxy device may authenticate with one or more servers associated with the resource. During authentication, the proxy device may receive a request for a signature controlled by the client device. In response, the proxy device may send a request to the client device for the signature. The request may also include context information that identify a data structure of authentication information exchanged (or to be exchanged) during the authentication session. If the client device verifies the context information, the client device may send the requested signature.
    Type: Grant
    Filed: May 3, 2013
    Date of Patent: October 6, 2015
    Assignee: Citrix Systems, Inc.
    Inventors: Andrew Innes, Chris Mayers
  • Publication number: 20140331297
    Abstract: A method of authentication and accessing resources is provided. A client device may send a request to a proxy device to access a resource, such as an enterprise resource. The proxy device may authenticate with one or more servers associated with the resource. During authentication, the proxy device may receive a request for a signature controlled by the client device. In response, the proxy device may send a request to the client device for the signature. The request may also include context information that identify a data structure of authentication information exchanged (or to be exchanged) during the authentication session. If the client device verifies the context information, the client device may send the requested signature.
    Type: Application
    Filed: May 3, 2013
    Publication date: November 6, 2014
    Inventors: Andrew Innes, Chris Mayers
  • Patent number: 8621587
    Abstract: A method for facilitating distributed authentication includes the step of requesting, by a user of a client machine residing in a first domain, access to a resource residing in a second domain. The client machine authenticates the user to an intermediate machine. The intermediate machine impersonates the client machine. The intermediate machine impersonating the client machine requests access to the second domain from a domain controller residing in the second domain. The domain controller authorizes the requested access, responsive to a determination that the impersonated client machine is trusted for delegation. The domain controller transmits to an application server residing in the second domain, authentication data associated with the impersonated client machine. The application server transmits, to the intermediate machine, a launch ticket uniquely identifying a logon token. The client machine provides, to the application server, the launch ticket to access the resource residing in the second domain.
    Type: Grant
    Filed: January 12, 2012
    Date of Patent: December 31, 2013
    Assignee: Citrix Systems, Inc.
    Inventors: David Halls, Chris Mayers
  • Publication number: 20120117634
    Abstract: A method for facilitating distributed authentication includes the step of requesting, by a user of a client machine residing in a first domain, access to a resource residing in a second domain. The client machine authenticates the user to an intermediate machine. The intermediate machine impersonates the client machine. The intermediate machine impersonating the client machine requests access to the second domain from a domain controller residing in the second domain. The domain controller authorizes the requested access, responsive to a determination that the impersonated client machine is trusted for delegation. The domain controller transmits to an application server residing in the second domain, authentication data associated with the impersonated client machine. The application server transmits, to the intermediate machine, a launch ticket uniquely identifying a logon token. The client machine provides, to the application server, the launch ticket to access the resource residing in the second domain.
    Type: Application
    Filed: January 12, 2012
    Publication date: May 10, 2012
    Inventors: DAVID HALLS, Chris Mayers
  • Patent number: 8112789
    Abstract: A method for facilitating distributed authentication includes the step of requesting, by a user of a client machine residing in a first domain, access to a resource residing in a second domain. The client machine authenticates the user to an intermediate machine. The intermediate machine impersonates the client machine. The intermediate machine impersonating the client machine requests access to the second domain from a domain controller residing in the second domain. The domain controller authorizes the requested access, responsive to a determination that the impersonated client machine is trusted for delegation. The domain controller transmits to an application server residing in the second domain, authentication data associated with the impersonated client machine. The application server transmits, to the intermediate machine, a launch ticket uniquely identifying a logon token. The client machine provides, to the application server, the launch ticket to access the resource residing in the second domain.
    Type: Grant
    Filed: October 6, 2006
    Date of Patent: February 7, 2012
    Assignee: Citrix Systems, Inc.
    Inventors: David Halls, Chris Mayers
  • Patent number: 8042165
    Abstract: A server transmits to a server in a server farm a request for membership in the server farm and a first nonce. The server derives a Kerberos service ticket and a Kerberos authenticator, responsive to generating a hash of the server farm name, a passphrase, the name of the server, the name of the server in the server farm, the first nonce, and a second nonce. The server transmits the Kerberos service ticket and the Kerberos authenticator to the server in the server farm. The server in the server farm authenticates the requesting server responsive to the received Kerberos service ticket and the Kerberos authenticator and a generated hash. The server in the server farm transmits, responsive to the authentication, a secret to the requesting server.
    Type: Grant
    Filed: January 14, 2005
    Date of Patent: October 18, 2011
    Assignee: Citrix Systems, Inc.
    Inventors: Andrew Innes, Chris Mayers, Mark James Syms, David John Otway
  • Publication number: 20070107048
    Abstract: A method for facilitating distributed authentication includes the step of requesting, by a user of a client machine residing in a first domain, access to a resource residing in a second domain. The client machine authenticates the user to an intermediate machine. The intermediate machine impersonates the client machine. The intermediate machine impersonating the client machine requests access to the second domain from a domain controller residing in the second domain. The domain controller authorizes the requested access, responsive to a determination that the impersonated client machine is trusted for delegation. The domain controller transmits to an application server residing in the second domain, authentication data associated with the impersonated client machine. The application server transmits, to the intermediate machine, a launch ticket uniquely identifying a logon token. The client machine provides, to the application server, the launch ticket to access the resource residing in the second domain.
    Type: Application
    Filed: October 6, 2006
    Publication date: May 10, 2007
    Inventors: David Halls, Chris Mayers
  • Patent number: 7152116
    Abstract: A system and method for automatically generating URLs which reference one or more data sources or data targets connected to a computer. The data sources/targets may be of any type including files, http servers, ftp servers, hardware devices, etc. The generated URLs may be used together with a system such as the Data Socket system to seamlessly read data from disparate data source types or write data to disparate data target types without having to manually perform configuration, connection operations, data format conversion, etc. The URLs are generated automatically and contain all the information necessary for accessing the data source/target. This greatly abstracts a user or application from the I/O process.
    Type: Grant
    Filed: August 13, 1999
    Date of Patent: December 19, 2006
    Assignee: National Instruments Corporation
    Inventors: Paul Austin, David Fuller, Kurt M. Carlson, Chris Mayer, Stephen Rogers, Joe Savage, Brian Sierer
  • Publication number: 20060236385
    Abstract: A method and system for authenticating a server in a server farm. A first server in the server farm derives a Kerberos service ticket and a Kerberos authenticator responsive to information associated with the server farm. The server transmits the Kerberos service ticket and the Kerberos authenticator to a second server in the server farm. The second server authenticates the first server, responsive to the received Kerberos service ticket and the Kerberos authenticator.
    Type: Application
    Filed: January 14, 2005
    Publication date: October 19, 2006
    Applicant: CITRIX SYSTEMS, INC.
    Inventors: Andrew Innes, Chris Mayers, Mark Syms, David Otway
  • Publication number: 20060161974
    Abstract: A server transmits to a server in a server farm a request for membership in the server farm and a first nonce. The server derives a Kerberos service ticket and a Kerberos authenticator, responsive to generating a hash of the server farm name, a passphrase, the name of the server, the name of the server in the server farm, the first nonce, and a second nonce. The server transmits the Kerberos service ticket and the Kerberos authenticator to the server in the server farm. The server in the server farm authenticates the requesting server responsive to the received Kerberos service ticket and the Kerberos authenticator and a generated hash. The server in the server farm transmits, responsive to the authentication, a secret to the requesting server.
    Type: Application
    Filed: January 14, 2005
    Publication date: July 20, 2006
    Applicant: CITRIX SYSTEMS, INC.
    Inventors: Andrew Innes, Chris Mayers, Mark Syms, David Otway
  • Publication number: 20060122924
    Abstract: A retirement savings calculator for computing a deferral percentage needed to replace income at retirement age. One embodiment includes a sleeve having an open end and a plurality of windows. An insert is slidably inserted into the open end of the sleeve. The retirement savings calculator calculates a savings ratio based on savings and income. A deferral percentage is calculated based on the savings ratio, current age, and replacement income percentage. In another embodiment, the deferral percentage is calculated in software. The retirement savings calculator can be used to promote savings in a retirement plan.
    Type: Application
    Filed: December 5, 2005
    Publication date: June 8, 2006
    Applicant: Principal Financial Services, Inc.
    Inventors: Scott Brustkern, Drew Denning, Chris Mayer