Patents by Inventor Ricardo Feijoo
Ricardo Feijoo has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Patent number: 11750527Abstract: A method includes receiving a request from a client device to establish a first computing session for a first resource hosted on a virtual machine (VM). The method includes generating a session transfer key for accessing a second resource provided by a second resource provider. The method includes issuing instructions, to the VM that hosts the first resource, for establishing a second computing session to host the second resource, wherein the instructions include a mapping of the session transfer key to a session identifier. The method includes providing the instructions to the client device to establish the second computing session for the second resource without input for the second resource from the user of the client device. The establishment of the second computing session being between the VM and the second resource provider and based on the mapping of the session transfer key to the session identifier.Type: GrantFiled: April 15, 2021Date of Patent: September 5, 2023Inventors: Leo C. Singleton, IV, Ricardo Feijoo, Avijit Gahtori
-
Patent number: 11522701Abstract: Methods, systems, computer-readable media, and apparatuses may provide creation and management of composite tokens for use with services in a virtual environment without the user having to re-authenticate each time the user accesses a different service. A composite identity server may receive a request to upgrade a first authentication token for a user. The composite identity server may redirect a user agent to an identity provider for authentication and, in response, may receive a second authentication token for the user. The composite identity server may send the second authentication token to a federated microservice and, in response, may receive one or more claims of the second authentication token designated for inclusion in a composite token. The composite identity server may generate a composite token including the one or more claims of the first authentication token and one or more claims of the second authentication token.Type: GrantFiled: November 15, 2019Date of Patent: December 6, 2022Assignee: Citrix Systems, Inc.Inventors: Bradley Markus Rowe, Ricardo Feijoo, Tom Michael Kludy, Ayush Jain, Gerald Haagsma
-
Publication number: 20220014517Abstract: Aspects described herein may utilize self-federation in a plugin-based authentication system to support combinations of authentication processes. The authentication system may include a plugin that executes an authentication process that is a combination of two or more other authentication processes. This plugin may handle the combined authentication process by self-federating back to the authentication interface, generating its own authentication requests under each of the subsidiary authentication processes. Thus, the self-federating plugin corresponding to the combined authentication process may allow the authentication system to support authentication requests that indicate the combined authentication process. This “chained” authentication process, accomplished through self-federation, may allow the authentication system to reuse existing code paths and avoid downsides associated with duplication of code.Type: ApplicationFiled: September 27, 2021Publication date: January 13, 2022Inventors: Ayush Jain, Ricardo Feijoo
-
Patent number: 11159517Abstract: Aspects described herein may utilize self-federation in a plugin-based authentication system to support combinations of authentication processes. The authentication system may include a plugin that executes an authentication process that is a combination of two or more other authentication processes. This plugin may handle the combined authentication process by self-federating back to the authentication interface, generating its own authentication requests under each of the subsidiary authentication processes. Thus, the self-federating plugin corresponding to the combined authentication process may allow the authentication system to support authentication requests that indicate the combined authentication process. This “chained” authentication process, accomplished through self-federation, may allow the authentication system to reuse existing code paths and avoid downsides associated with duplication of code.Type: GrantFiled: November 21, 2018Date of Patent: October 26, 2021Assignee: Citrix Systems, Inc.Inventors: Ayush Jain, Ricardo Feijoo
-
Patent number: 11108673Abstract: Methods, computer-readable media, and apparatuses for checking the health of a cloud-based component. The method includes receiving, by a health event hub as output by a first device, a request for performing a health check on a second device; outputting, by the health event hub, the request to each health checker on the network; receiving, by the health event hub, a health data response output by at least one checker that is capable of performing the health check; collecting, by the health event hub, each health data response associated with the request output by the first device that is output by the at least one health checker that is capable of performing the health check on the second device; and outputting, by the health event hub to each health data collector on the network, each health data response associated with the request output by the first device.Type: GrantFiled: September 18, 2017Date of Patent: August 31, 2021Assignee: Citrix Systems, Inc.Inventors: Thomas Kludy, Ricardo Feijoo, Ayush Jain
-
Publication number: 20210234810Abstract: A method includes receiving a request from a client device to establish a first computing session for a first resource hosted on a virtual machine (VM). The method includes generating a session transfer key for accessing a second resource provided by a second resource provider. The method includes issuing instructions, to the VM that hosts the first resource, for establishing a second computing session to host the second resource, wherein the instructions include a mapping of the session transfer key to a session identifier. The method includes providing the instructions to the client device to establish the second computing session for the second resource without input for the second resource from the user of the client device. The establishment of the second computing session being between the VM and the second resource provider and based on the mapping of the session transfer key to the session identifier.Type: ApplicationFiled: April 15, 2021Publication date: July 29, 2021Inventors: Leo C. Singleton, IV, Ricardo Feijoo, Avijit Gahtori
-
Patent number: 11025560Abstract: A method includes receiving a request from a client device to establish a first computing session for a first resource hosted on a virtual machine (VM). The method includes generating a session transfer key for accessing a second resource provided by a second resource provider. The method includes issuing instructions, to the VM that hosts the first resource, for establishing a second computing session to host the second resource, wherein the instructions include a mapping of the session transfer key to a session identifier. The method includes providing the instructions to the client device to establish the second computing session for the second resource without input for the second resource from the user of the client device. The establishment of the second computing session being between the VM and the second resource provider and based on the mapping of the session transfer key to the session identifier.Type: GrantFiled: May 6, 2019Date of Patent: June 1, 2021Assignee: Citrix Systems, Inc.Inventors: Leo C. Singleton, IV, Ricardo Feijoo, Avijit Gahtori
-
Publication number: 20200358714Abstract: A method includes receiving a request from a client device to establish a first computing session for a first resource hosted on a virtual machine (VM). The method includes generating a session transfer key for accessing a second resource provided by a second resource provider. The method includes issuing instructions, to the VM that hosts the first resource, for establishing a second computing session to host the second resource, wherein the instructions include a mapping of the session transfer key to a session identifier. The method includes providing the instructions to the client device to establish the second computing session for the second resource without input for the second resource from the user of the client device. The establishment of the second computing session being between the VM and the second resource provider and based on the mapping of the session transfer key to the session identifier.Type: ApplicationFiled: May 6, 2019Publication date: November 12, 2020Inventors: Leo C. Singleton, IV, Ricardo Feijoo, Avijit Gahtori
-
Publication number: 20200162454Abstract: Aspects described herein may utilize self-federation in a plugin-based authentication system to support combinations of authentication processes. The authentication system may include a plugin that executes an authentication process that is a combination of two or more other authentication processes. This plugin may handle the combined authentication process by self-federating back to the authentication interface, generating its own authentication requests under each of the subsidiary authentication processes. Thus, the self-federating plugin corresponding to the combined authentication process may allow the authentication system to support authentication requests that indicate the combined authentication process. This “chained” authentication process, accomplished through self-federation, may allow the authentication system to reuse existing code paths and avoid downsides associated with duplication of code.Type: ApplicationFiled: November 21, 2018Publication date: May 21, 2020Inventors: Ayush Jain, Ricardo Feijoo
-
Publication number: 20200084036Abstract: Methods, systems, computer-readable media, and apparatuses may provide creation and management of composite tokens for use with services in a virtual environment without the user having to re-authenticate each time the user accesses a different service. A composite identity server may receive a request to upgrade a first authentication token for a user. The composite identity server may redirect a user agent to an identity provider for authentication and, in response, may receive a second authentication token for the user. The composite identity server may send the second authentication token to a federated microservice and, in response, may receive one or more claims of the second authentication token designated for inclusion in a composite token. The composite identity server may generate a composite token including the one or more claims of the first authentication token and one or more claims of the second authentication token.Type: ApplicationFiled: November 15, 2019Publication date: March 12, 2020Inventors: Bradley Markus Rowe, Ricardo Feijoo, Tom Michael Kludy, Ayush Jain, Gerald Haagsma
-
Patent number: 10505733Abstract: Methods, systems, computer-readable media, and apparatuses may provide creation and management of composite tokens for use with services in a virtual environment without the user having to re-authenticate each time the user accesses a different service. A composite identity server may receive a request to upgrade a first authentication token for a user. The composite identity server may redirect a user agent to an identity provider for authentication and, in response, may receive a second authentication token for the user. The composite identity server may send the second authentication token to a federated microservice and, in response, may receive one or more claims of the second authentication token designated for inclusion in a composite token. The composite identity server may generate a composite token including the one or more claims of the first authentication token and one or more claims of the second authentication token.Type: GrantFiled: September 25, 2017Date of Patent: December 10, 2019Assignee: Citrix Systems, Inc.Inventors: Bradley Markus Rowe, Ricardo Feijoo, Tom Michael Kludy, Ayush Jain, Gerald Haagsma
-
Publication number: 20190097802Abstract: Methods, systems, computer-readable media, and apparatuses may provide creation and management of composite tokens for use with services in a virtual environment without the user having to re-authenticate each time the user accesses a different service. A composite identity server may receive a request to upgrade a first authentication token for a user. The composite identity server may redirect a user agent to an identity provider for authentication and, in response, may receive a second authentication token for the user. The composite identity server may send the second authentication token to a federated microservice and, in response, may receive one or more claims of the second authentication token designated for inclusion in a composite token. The composite identity server may generate a composite token including the one or more claims of the first authentication token and one or more claims of the second authentication token.Type: ApplicationFiled: September 25, 2017Publication date: March 28, 2019Inventors: Bradley Markus Rowe, Ricardo Feijoo, Tom Michael Kludy, Ayush Jain, Gerald Haagsma
-
Publication number: 20190089618Abstract: Methods, computer-readable media, and apparatuses for checking the health of a cloud-based component. The method includes receiving, by a health event hub as output by a first device, a request for performing a health check on a second device; outputting, by the health event hub, the request to each health checker on the network; receiving, by the health event hub, a health data response output by at least one checker that is capable of performing the health check; collecting, by the health event hub, each health data response associated with the request output by the first device that is output by the at least one health checker that is capable of performing the health check on the second device; and outputting, by the health event hub to each health data collector on the network, each health data response associated with the request output by the first device.Type: ApplicationFiled: September 18, 2017Publication date: March 21, 2019Inventors: Thomas Kludy, Ricardo Feijoo, Ayush Jain