Methods to restrict network file access in guest virtual machines using in-guest agents
US-2019364047-A1 · Nov 28, 2019 · US
Systems and methods for managing downloads from an embedded browser
US11388258B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-11388258-B2 |
| Application number | US-202017113720-A |
| Country | US |
| Kind code | B2 |
| Filing date | Dec 7, 2020 |
| Priority date | Nov 6, 2018 |
| Publication date | Jul 12, 2022 |
| Grant date | Jul 12, 2022 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
Embodiments described include systems and methods for managing downloads from an embedded browser. The client application can control the locations to which downloads are directed. A system administrator can configure a policy to restrict downloads to approved locations. The client application can prevent a user from navigating to and downloading a file to a location that has not been approved according to the policy.
First claim
Opening claim text (preview).
I claim: 1. A method, comprising: identifying, by a client device, one or more locations of a computing environment in which to download files from a network application based at least on identification of the network application; detecting, by the client device, a request to download a file from the network application; and causing, by the client device, the file to be downloaded only to the one or more locations of the computing environment identified for the network application in response to detection of the request. 2. The method of claim 1 , further comprising accessing, by the client device, the network application via an embedded browser. 3. The method of claim 1 , further comprising receiving, by the client device, identification of the one or more locations for the network application from a server. 4. The method of claim 1 , wherein the client device is operated by a first entity different than a second entity operating the network application. 5. The method of claim 1 , further comprising providing, by the client device, a user interface to select download locations, the download locations being the one or more locations for the network application. 6. A client device, comprising: one or more processors, coupled to memory and configured to: identify one or more locations of a computing environment in which to download files from a network application based at least on identification of the network application; detect a request to download a file from the network application; and cause the file to be downloaded only to the one or more locations of the computing environment identified for the network application in response to detection of the request. 7. The client device of claim 6 , wherein the one or more processors are further configured to access the network application via an embedded browser. 8. The client device of claim 6 , wherein the one or more processors are further configured to receive identification of the one or more locations for the network application from a server. 9. The client device of claim 6 , wherein the client device is operated by a first entity different than a second entity operating the network application. 10. The client device of claim 6 , wherein the one or more processors are further configured to provide a user interface to select download locations, the download locations being the one or more locations for the network application. 11. A system comprising: a client device of a first entity configured to: identify for a network application of a second entity accessed via the client device of the first entity at least one location, based at least on identification of the network application, to which to enforce downloading of a file from the network application of the second entity; determine that the network application is initiating a download of a file via the client device; and enforce the file to be downloaded to at least one location identified for that network application. 12. The system of claim 11 , wherein the client device is further configured to access the network application via an embedded browser. 13. The system of claim 11 , wherein the client device is further configured to obtain identification of the at least one location for the network application from a server of the first entity. 14. The system of claim 11 , wherein the client device is configured to obtain identification of the at least one location for the network application based at least on a user of the client device. 15. The system of claim 11 , wherein the client device is further configured to detect a selection via a user interface of the network application to request a download of the file. 16. The system of claim 11 , wherein the at least one location comprises a location in a local drive, a network hosted folder or a cloud based folder. 17. The system of claim 11 , wherein the client device is further configured to cause a drive access service to display only the at least one location as a destination to download the file.
Assignees
Inventors
Classifications
specially adapted for file transfer, e.g. file transfer protocol [FTP] · CPC title
- H04L67/34Primary
involving the movement of software or configuration parameters (network booting or remote initial program loading [RIPL] G06F9/4416) · CPC title
- H04L67/02Primary
based on web technology, e.g. hypertext transfer protocol [HTTP] · CPC title
Protection against unauthorised use of memory {or access to memory} · CPC title
Protocols · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US11388258B2 cover?
- Embodiments described include systems and methods for managing downloads from an embedded browser. The client application can control the locations to which downloads are directed. A system administrator can configure a policy to restrict downloads to approved locations. The client application can prevent a user from navigating to and downloading a file to a location that has not been approved …
- Who is the assignee on this patent?
- Citrix Systems Inc
- What technology area does this patent fall under?
- Primary CPC classification H04L67/34. Mapped technology areas include Electricity.
- When was this patent published?
- Publication date Tue Jul 12 2022 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 8 related publications on this page (citations in our corpus or others sharing the same primary CPC).