Method and apparatus for signing and verifying application installation package, and storage medium
US-2018367315-A1 · Dec 20, 2018 · US
Package distribution and installation in response to user logon
US12340197B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-12340197-B2 |
| Application number | US-202217940597-A |
| Country | US |
| Kind code | B2 |
| Filing date | Sep 8, 2022 |
| Priority date | Jan 17, 2019 |
| Publication date | Jun 24, 2025 |
| Grant date | Jun 24, 2025 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
Disclosed are various implementations for distributing and installing packages in response to user logon events. A logon event associated with a user account is detected for a client device. A query containing a respective user account identifier is sent to a provisioning service to retrieve a set of packages to install on the client device. The set of packages are received from the provisioning service and installed on the client device.
First claim
Opening claim text (preview).
The invention claimed is: 1. A system for automatically provisioning applications, comprising: at least one computing device comprising a processor and a memory; and machine-readable instructions stored in the memory that, when executed by the processor, cause the at least one computing device to: detect a logon event for the at least one computing device, the logon event being associated with a user account; determine device information of the at least one computing device and a user account identifier associated with the user account logging on the at least one computing device; send a discovery request to a discovery service for an identity of a provisioning service, the discovery request including the device information, wherein the discovery service identifies the provisioning service based on the device information; receive, from the discovery service, a locator of the provisioning service and one or more cryptographic certificates of the provisioning service; provide a query comprising the user account identifier associated with the user account to the provisioning service based on the locator to retrieve a set of packages corresponding to the user account identifier to install on the at least one computing device; receive the set of packages for the user account from the provisioning service; verify that the set of packages is received from an authorized source based on the one or more cryptographic certificates received from the discovery service; and upon verifying the set of packages, install, on the at least one computing device, individual packages from the set of packages. 2. The system of claim 1 , wherein the set of packages is based at least in part on a list of packages currently installed on the at least one computing device. 3. The system of claim 1 , wherein the query comprises the user account identifier for the user account and the device information of the at least one computing device. 4. The system of claim 1 , wherein the machine-readable instructions, when executed by the processor, further cause the at least one computing device to at least determine that the logon event is a first login event associated with the user account. 5. The system of claim 1 , wherein the machine-readable instructions that cause the at least one computing device to verify that the set of packages is received from the authorized source further cause the at least one computing device to at least validate at least one cryptographic signature associated with the set of packages based at least in part on a public key specified in the one or more cryptographic certificates. 6. The system of claim 1 , wherein the machine-readable instructions that cause the at least one computing device to install on the at least one computing device the individual packages from the set of packages further cause the at least one computing device to at least: cause an installation of an application included in an individual package from the set of packages; and configure the application based at least in part on at least one configuration setting included in a file from the individual package. 7. The system of claim 1 , wherein the machine-readable instructions, when executed by the processor, further cause the at least one computing device to at least confirm that a first hash from the provisioning service matches a second hash generated by a provisioning agent executing on the at least one computing device. 8. A method for automatically provisioning applications, comprising: detecting a logon event for a client device, the logon event being associated with a user account; determining device information of the client device and a user account identifier associated with the user account logging on the client device; sending a discovery request to a discovery service for an identity of a provisioning service, the discovery request including the device information, wherein the discovery service identifies the provisioning service based on the device information; receiving, from the discovery service, a locator of the provisioning service and one or more cryptographic certificates of the provisioning service; sending a query comprising the user account identifier associated with the user account to the provisioning service based on the locator to retrieve a set of packages corresponding to the user account identifier to install on the client device; receiving the set of packages for the user account from the provisioning service; verifying that the set of packages are received from an authorized source based on the one or more cryptographic certificates received from the discovery service; and upon verifying the set of packages, installing, on the client device, individual packages in the set of packages. 9. The method of claim 8 , wherein the set of packages is based at least in part on a list of packages currently installed on the client device. 10. The method of claim 8 , wherein the query comprises the user account identifier for the user account and the device information of the client device. 11. The method of claim 8 , further comprising determining that the logon event is a first login event associated with the user account. 12. The method of claim 8 , wherein verifying that the set of packages is received from the authorized source further comprises validating at least one cryptographic signature associated with the set of packages based at least in part on a public key specified in the one or more cryptographic certificates. 13. The method of claim 8 , wherein installing on the client device the individual packages from the set of packages further comprises: causing an installation of an application included in an individual package from the set of packages; and configuring the application based at least in part on at least one configuration setting included in a file from the individual package. 14. The method of claim 8 , further comprising confirming that a first hash from the provisioning service matches a second hash generated by a provisioning agent executing on the client device. 15. A non-transitory computer-readable medium for automatically provisioning applications, the non-transitory computer-readable medium comprising machine-readable instructions that, when executed by a processor, cause at least one computing device to: detect a logon event for the at least one computing device, the logon event being associated with a user account; determine device information of the at least one computing device and a user account identifier associated with the user account logging on the at least one computing device; send a discovery request to a discovery service for an identity of a provisioning service, the discovery request including the device information, wherein the discovery service identifies the provisioning service based on the device information; receive, from the discovery service, a locator of the provisioning service and one or more cryptographic certificates of the provisioning service; send a query comprising the user account identifier associated with the user account to the provisioning service based on the locator to retrieve a set of packages corresponding to the user account identifier to install on the at least one computing device; receive the set of packages for the user account from the provisioning service; verify that the set of packages are received from an authorized source based on the one or more cryptographic certificates received from the discovery service; and upon verifying the set of packages, install, on the at least one computing device, individual packages in
Assignees
Inventors
Classifications
by manipulating the program code, e.g. source code, compiled code, interpreted code, machine code · CPC title
Hash functions, e.g. MD5, SHA, HMAC or f9 MAC · CPC title
involving digital signatures · CPC title
Updates (security arrangements therefor G06F21/57) · CPC title
Protecting data integrity, e.g. using checksums, certificates or signatures · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US12340197B2 cover?
- Disclosed are various implementations for distributing and installing packages in response to user logon events. A logon event associated with a user account is detected for a client device. A query containing a respective user account identifier is sent to a provisioning service to retrieve a set of packages to install on the client device. The set of packages are received from the provisionin…
- Who is the assignee on this patent?
- Omnissa Llc
- What technology area does this patent fall under?
- Primary CPC classification G06F8/61. Mapped technology areas include Physics.
- When was this patent published?
- Publication date Tue Jun 24 2025 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 3 related publications on this page (citations in our corpus or others sharing the same primary CPC).