Patents by Inventor Dileep Reddem
Dileep Reddem has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Patent number: 11652613Abstract: Methods, apparatuses, systems, and computer-readable mediums for sharing user credentials in federated authentication are described herein. An identity provider may receive a user credential from a user device. The identity provider may receive, from a relying party, a request for an access token. The identity provider may encrypt the user credential based on a nonce that is uniquely generated for the relying party. The identity provider may send a response to the relying party. The response may include the access token, the encrypted user credential, and the nonce.Type: GrantFiled: September 4, 2020Date of Patent: May 16, 2023Assignee: Citrix Systems, Inc.Inventors: Dileep Reddem, Ricardo Fernando Feijoo
-
Patent number: 11616772Abstract: Described embodiments provide systems and methods for launching a connection to a resource link from a client device. A device can authenticate the client device for access to a plurality of resource links accessible via one or more servers. The device can provide a list of the plurality of resource links responsive to the authentication, and receive a request from the client device, identifying a first resource link to access. The device can cause first authenticated credentials for the first resource link to be stored on the client device responsive to the request. The first authenticated credentials can correspond to the client device and provide access the first resource link. The client device can be configured to launch a connection to the first resource link from the client device using the first authenticated credentials stored on the client device.Type: GrantFiled: December 18, 2020Date of Patent: March 28, 2023Assignee: Citrix Systems, Inc.Inventors: Viswanath Yarangatta Suresh, Arkesh Kumar, Dileep Reddem, Anil Kumar Gavini
-
Patent number: 11533308Abstract: Systems and methods for supporting unauthenticated POST requests include a device arranged intermediary to a client and a server which receives an unauthenticated HTTP POST request from the client for the server. The unauthenticated HTTP POST request may include a body. The device may generate one more data objects for the body of the unauthenticated HTTP POST request. The device may transmit a request to cause an authentication of a user to the client. The request may include the data object(s) to be stored on the client. The device may receive an HTTP GET request including the data object(s) from the client responsive to authenticating the user. The device may generate an authenticated HTTP POST request corresponding to the unauthenticated HTTP POST request using the one or more data objects included in the HTTP GET request. The device may transmit the authenticated HTTP POST request to the server.Type: GrantFiled: July 7, 2020Date of Patent: December 20, 2022Assignee: Citrix Systems, Inc.Inventor: Dileep Reddem
-
Publication number: 20220078007Abstract: Methods, apparatuses, systems, and computer-readable mediums for sharing user credentials in federated authentication are described herein. An identity provider may receive a user credential from a user device. The identity provider may receive, from a relying party, a request for an access token. The identity provider may encrypt the user credential based on a nonce that is uniquely generated for the relying party. The identity provider may send a response to the relying party. The response may include the access token, the encrypted user credential, and the nonce.Type: ApplicationFiled: September 4, 2020Publication date: March 10, 2022Inventors: Dileep Reddem, Ricardo Fernando Feijoo
-
Publication number: 20220014521Abstract: Systems and methods for supporting unauthenticated POST requests include a device arranged intermediary to a client and a server which receives an unauthenticated HTTP POST request from the client for the server. The unauthenticated HTTP POST request may include a body. The device may generate one more data objects for the body of the unauthenticated HTTP POST request. The device may transmit a request to cause an authentication of a user to the client. The request may include the data object(s) to be stored on the client. The device may receive an HTTP GET request including the data object(s) from the client responsive to authenticating the user. The device may generate an authenticated HTTP POST request corresponding to the unauthenticated HTTP POST request using the one or more data objects included in the HTTP GET request. The device may transmit the authenticated HTTP POST request to the server.Type: ApplicationFiled: July 7, 2020Publication date: January 13, 2022Inventor: Dileep Reddem
-
Patent number: 11201947Abstract: Described embodiments provide systems and methods for reducing latency in accessing application resources. The first device may be intermediary between a client and a server, and may receive a request of a user session for an application resource from the server. The first device may determine, responsive to the request that a user context of the user session is with a second device at a second location. The second location can be farther from the server than a first location of the first device. The first device may send, responsive to the determination, a request to the second device to obtain the user context of the user session. The first device may provide the client with access to the application resource via the user session. The first device may provide the client with access to the application resource according to the obtained user context.Type: GrantFiled: April 21, 2020Date of Patent: December 14, 2021Assignee: Citrix Systems, Inc.Inventor: Dileep Reddem
-
Publication number: 20210329096Abstract: Described embodiments provide systems and methods for reducing latency in accessing application resources. The first device may be intermediary between a client and a server, and may receive a request of a user session for an application resource from the server. The first device may determine, responsive to the request that a user context of the user session is with a second device at a second location. The second location can be farther from the server than a first location of the first device. The first device may send, responsive to the determination, a request to the second device to obtain the user context of the user session. The first device may provide the client with access to the application resource via the user session. The first device may provide the client with access to the application resource according to the obtained user context.Type: ApplicationFiled: April 21, 2020Publication date: October 21, 2021Inventor: Dileep Reddem
-
Patent number: 11082453Abstract: The present disclosure is directed towards systems and methods of authenticating a client. A device intermediary to clients servers that provide one or more resources can receive a request from a client to access a resource of the one or more resources. The device can select a login schema associated with the request that includes a definition of a login form. The login schema may correspond to an authentication protocol. The device can generate the login form responsive to the request. The login form can be constructed according to the definition provided by the selected login schema. The device can provide the login form for display via the client. The device can receive information inputted into the login form via the client. The device can establish access to the resource responsive to authentication of the client based on the information and the authentication protocol.Type: GrantFiled: October 3, 2019Date of Patent: August 3, 2021Assignee: Citrix Systems, Inc.Inventors: Dileep Reddem, Pratap Ranjan Tiwary, Arkesh Kumar, Naresh Babu Jampani
-
Publication number: 20210136055Abstract: Described embodiments provide systems and methods for launching a connection to a resource link from a client device. A device can authenticate the client device for access to a plurality of resource links accessible via one or more servers. The device can provide a list of the plurality of resource links responsive to the authentication, and receive a request from the client device, identifying a first resource link to access. The device can cause first authenticated credentials for the first resource link to be stored on the client device responsive to the request. The first authenticated credentials can correspond to the client device and provide access the first resource link. The client device can be configured to launch a connection to the first resource link from the client device using the first authenticated credentials stored on the client device.Type: ApplicationFiled: December 18, 2020Publication date: May 6, 2021Applicant: Citrix Systems, Inc.Inventors: Viswanath Yarangatta Suresh, Arkesh Kumar, Dileep Reddem, Anil Kumar Gavini
-
Patent number: 10924468Abstract: Described embodiments provide systems and methods for launching a connection to a resource link from a client device. A device can authenticate the client device for access to a plurality of resource links accessible via one or more servers. The device can provide a list of the plurality of resource links responsive to the authentication, and receive a request from the client device, identifying a first resource link to access. The device can cause first authenticated credentials for the first resource link to be stored on the client device responsive to the request. The first authenticated credentials can correspond to the client device and provide access the first resource link. The client device can be configured to launch a connection to the first resource link from the client device using the first authenticated credentials stored on the client device.Type: GrantFiled: July 27, 2018Date of Patent: February 16, 2021Assignee: Citrix Systems, Inc.Inventors: Viswanath Yarangatta Suresh, Arkesh Kumar, Dileep Reddem, Anil Kumar Gavini
-
Publication number: 20200036759Abstract: The present disclosure is directed towards systems and methods of authenticating a client. A device intermediary to clients servers that provide one or more resources can receive a request from a client to access a resource of the one or more resources. The device can select a login schema associated with the request that includes a definition of a login form. The login schema may correspond to an authentication protocol. The device can generate the login form responsive to the request. The login form can be constructed according to the definition provided by the selected login schema. The device can provide the login form for display via the client. The device can receive information inputted into the login form via the client. The device can establish access to the resource responsive to authentication of the client based on the information and the authentication protocol.Type: ApplicationFiled: October 3, 2019Publication date: January 30, 2020Inventors: Dileep Reddem, Pratap Ranjan Tiwary, Arkesh Kumar, Naresh Babu Jampani
-
Publication number: 20200036699Abstract: Described embodiments provide systems and methods for launching a connection to a resource link from a client device. A device can authenticate the client device for access to a plurality of resource links accessible via one or more servers. The device can provide a list of the plurality of resource links responsive to the authentication, and receive a request from the client device, identifying a first resource link to access. The device can cause first authenticated credentials for the first resource link to be stored on the client device responsive to the request. The first authenticated credentials can correspond to the client device and provide access the first resource link. The client device can be configured to launch a connection to the first resource link from the client device using the first authenticated credentials stored on the client device.Type: ApplicationFiled: July 27, 2018Publication date: January 30, 2020Inventors: Viswanath Yarangatta Suresh, Arkesh Kumar, Dileep Reddem, Anil Kumar Gavini
-
Patent number: 10454974Abstract: The present disclosure is directed towards systems and methods of authenticating a client. A device intermediary to clients servers that provide one or more resources can receive a request from a client to access a resource of the one or more resources. The device can select a login schema associated with the request that includes a definition of a login form. The login schema may correspond to an authentication protocol. The device can generate the login form responsive to the request. The login form can be constructed according to the definition provided by the selected login schema. The device can provide the login form for display via the client. The device can receive information inputted into the login form via the client. The device can establish access to the resource responsive to authentication of the client based on the information and the authentication protocol.Type: GrantFiled: June 29, 2015Date of Patent: October 22, 2019Assignee: CITRIX SYSTEMS, INC.Inventors: Dileep Reddem, Pratap Ranjan Tiwary, Arkesh Kumar, Naresh Babu Jampani
-
Publication number: 20160381080Abstract: The present disclosure is directed towards systems and methods of authenticating a client. A device intermediary to clients servers that provide one or more resources can receive a request from a client to access a resource of the one or more resources. The device can select a login schema associated with the request that includes a definition of a login form. The login schema may correspond to an authentication protocol. The device can generate the login form responsive to the request. The login form can be constructed according to the definition provided by the selected login schema. The device can provide the login form for display via the client. The device can receive information inputted into the login form via the client. The device can establish access to the resource responsive to authentication of the client based on the information and the authentication protocol.Type: ApplicationFiled: June 29, 2015Publication date: December 29, 2016Inventors: Dileep Reddem, Pratap Ranjan Tiwary, Arkesh Kumar, Naresh Babu Jampani
-
Patent number: 9491161Abstract: The present disclosure is directed to systems and methods for performing single sign on by an intermediary device for a remote desktop session of a client. A first device intermediary to a plurality of clients and a plurality of servers authenticates a user and establishes a connection to the user's client device. The device provides a homepage including links to one or more remote desktop hosts associated with the user. The device receives a request to launch an RDP session with a remote desktop host via the homepage and generates RDP content, including a security token, for the user. The device receives a second request that includes the security token to launch the RDP session. The device validates the user using the security token and establishes a connection to the remote desktop host. The device signs into the desktop host using session credentials.Type: GrantFiled: September 30, 2014Date of Patent: November 8, 2016Assignee: CITRIX SYSTEMS, INC.Inventors: Viswanath Yarangatta Suresh, Dileep Reddem, Anil Kumar Gavini, Arkesh Kumar
-
Publication number: 20160094539Abstract: The present disclosure is directed to systems and methods for performing single sign on by an intermediary device for a remote desktop session of a client. A first device intermediary to a plurality of clients and a plurality of servers authenticates a user and establishes a connection to the user's client device. The device provides a homepage including links to one or more remote desktop hosts associated with the user. The device receives a request to launch an RDP session with a remote desktop host via the homepage and generates RDP content, including a security token, for the user. The device receives a second request that includes the security token to launch the RDP session. The device validates the user using the security token and establishes a connection to the remote desktop host. The device signs into the desktop host using session credentials.Type: ApplicationFiled: September 30, 2014Publication date: March 31, 2016Inventors: Viswanath Yarangatta Suresh, Dileep Reddem, Anil Kumar Gavini, Arkesh Kumar
-
Patent number: 8966603Abstract: The present invention is directed towards systems and methods for form-based single sign-on by a user desiring access to one or more protected resources, e.g., protected web pages, protected web-served applications, etc. In various embodiments, a single sign-on (SSO) module is in operation on an intermediary device, which is disposed in a network to manage internet traffic between a plurality of clients and a plurality of servers. The intermediary device can identify an authentication response from a server and forward the authentication response to the SSO module. The SSO module can complete a login form in the authentication response with a client's authentication data, return the completed login form to the server and forward cookies associated with the authentication response to the client. In various embodiments, multiple login forms can be completed, transparently to the client, by the SSO module on a client's behalf and reduce time expended by a client in obtaining access to protected resources.Type: GrantFiled: May 24, 2013Date of Patent: February 24, 2015Assignee: Citrix Systems, Inc.Inventors: Puneet Agarwal, Dileep Reddem, Anil Kumar Gavini
-
Publication number: 20130263241Abstract: The present invention is directed towards systems and methods for form-based single sign-on by a user desiring access to one or more protected resources, e.g., protected web pages, protected web-served applications, etc. In various embodiments, a single sign-on (SSO) module is in operation on an intermediary device, which is disposed in a network to manage internet traffic between a plurality of clients and a plurality of servers. The intermediary device can identify an authentication response from a server and forward the authentication response to the SSO module. The SSO module can complete a login form in the authentication response with a client's authentication data, return the completed login form to the server and forward cookies associated with the authentication response to the client. In various embodiments, multiple login forms can be completed, transparently to the client, by the SSO module on a client's behalf and reduce time expended by a client in obtaining access to protected resources.Type: ApplicationFiled: May 24, 2013Publication date: October 3, 2013Applicant: Citrix Systems, Inc.Inventors: Puneet Agarwal, Dileep Reddem, Anil Kumar Gavini
-
Patent number: 8453225Abstract: The present invention is directed towards systems and methods for form-based single sign-on by a user desiring access to one or more protected resources, e.g., protected web pages, protected web-served applications, etc. In various embodiments, a single sign-on (SSO) module is in operation on an intermediary device, which is disposed in a network to manage internet traffic between a plurality of clients and a plurality of servers. The intermediary device can identify an authentication response from a server and forward the authentication response to the SSO module. The SSO module can complete a login form in the authentication response with a client's authentication data, return the completed login form to the server and forward cookies associated with the authentication response to the client. In various embodiments, multiple login forms can be completed, transparently to the client, by the SSO module on a client's behalf and reduce time expended by a client in obtaining access to protected resources.Type: GrantFiled: December 22, 2010Date of Patent: May 28, 2013Assignee: Citrix Systems, Inc.Inventors: Puneet Agarwal, Dileep Reddem, Anil Kumar Gavini
-
Publication number: 20110154464Abstract: The present invention is directed towards systems and methods for form-based single sign-on by a user desiring access to one or more protected resources, e.g., protected web pages, protected web-served applications, etc. In various embodiments, a single sign-on (SSO) module is in operation on an intermediary device, which is disposed in a network to manage internet traffic between a plurality of clients and a plurality of servers. The intermediary device can identify an authentication response from a server and forward the authentication response to the SSO module. The SSO module can complete a login form in the authentication response with a client's authentication data, return the completed login form to the server and forward cookies associated with the authentication response to the client. In various embodiments, multiple login forms can be completed, transparently to the client, by the SSO module on a client's behalf and reduce time expended by a client in obtaining access to protected resources.Type: ApplicationFiled: December 22, 2010Publication date: June 23, 2011Inventors: PUNEET AGARWAL, Dileep Reddem, Anil Kumar Gavini