US9154556B1 - Managing access to a limited number of computerized sessions - Google Patents

Managing access to a limited number of computerized sessions Download PDF

Info

Publication number
US9154556B1
US9154556B1 US13/337,442 US201113337442A US9154556B1 US 9154556 B1 US9154556 B1 US 9154556B1 US 201113337442 A US201113337442 A US 201113337442A US 9154556 B1 US9154556 B1 US 9154556B1
Authority
US
United States
Prior art keywords
computerized
user
session
idle
waiting
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active, expires
Application number
US13/337,442
Inventor
Yedidya Dotan
Lawrence N. Friedman
Ayelet Biger
Asaf Shoval
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
EMC Corp
Original Assignee
EMC Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority to US13/337,442 priority Critical patent/US9154556B1/en
Application filed by EMC Corp filed Critical EMC Corp
Assigned to EMC CORPORATION reassignment EMC CORPORATION ASSIGNMENT OF ASSIGNORS INTEREST (SEE DOCUMENT FOR DETAILS). Assignors: BIGER, AYELET, SHOVAL, ASAF, DOTAN, YEDIDYA, FRIEDMAN, LAWRENCE N.
Application granted granted Critical
Publication of US9154556B1 publication Critical patent/US9154556B1/en
Assigned to CREDIT SUISSE AG, CAYMAN ISLANDS BRANCH, AS COLLATERAL AGENT reassignment CREDIT SUISSE AG, CAYMAN ISLANDS BRANCH, AS COLLATERAL AGENT SECURITY AGREEMENT Assignors: ASAP SOFTWARE EXPRESS, INC., AVENTAIL LLC, CREDANT TECHNOLOGIES, INC., DELL INTERNATIONAL L.L.C., DELL MARKETING L.P., DELL PRODUCTS L.P., DELL SOFTWARE INC., DELL SYSTEMS CORPORATION, DELL USA L.P., EMC CORPORATION, EMC IP Holding Company LLC, FORCE10 NETWORKS, INC., MAGINATICS LLC, MOZY, INC., SCALEIO LLC, SPANNING CLOUD APPS LLC, WYSE TECHNOLOGY L.L.C.
Assigned to THE BANK OF NEW YORK MELLON TRUST COMPANY, N.A., AS NOTES COLLATERAL AGENT reassignment THE BANK OF NEW YORK MELLON TRUST COMPANY, N.A., AS NOTES COLLATERAL AGENT SECURITY AGREEMENT Assignors: ASAP SOFTWARE EXPRESS, INC., AVENTAIL LLC, CREDANT TECHNOLOGIES, INC., DELL INTERNATIONAL L.L.C., DELL MARKETING L.P., DELL PRODUCTS L.P., DELL SOFTWARE INC., DELL SYSTEMS CORPORATION, DELL USA L.P., EMC CORPORATION, EMC IP Holding Company LLC, FORCE10 NETWORKS, INC., MAGINATICS LLC, MOZY, INC., SCALEIO LLC, SPANNING CLOUD APPS LLC, WYSE TECHNOLOGY L.L.C.
Assigned to EMC IP Holding Company LLC reassignment EMC IP Holding Company LLC ASSIGNMENT OF ASSIGNORS INTEREST (SEE DOCUMENT FOR DETAILS). Assignors: EMC CORPORATION
Assigned to THE BANK OF NEW YORK MELLON TRUST COMPANY, N.A. reassignment THE BANK OF NEW YORK MELLON TRUST COMPANY, N.A. SECURITY AGREEMENT Assignors: CREDANT TECHNOLOGIES, INC., DELL INTERNATIONAL L.L.C., DELL MARKETING L.P., DELL PRODUCTS L.P., DELL USA L.P., EMC CORPORATION, EMC IP Holding Company LLC, FORCE10 NETWORKS, INC., WYSE TECHNOLOGY L.L.C.
Assigned to THE BANK OF NEW YORK MELLON TRUST COMPANY, N.A. reassignment THE BANK OF NEW YORK MELLON TRUST COMPANY, N.A. SECURITY AGREEMENT Assignors: CREDANT TECHNOLOGIES INC., DELL INTERNATIONAL L.L.C., DELL MARKETING L.P., DELL PRODUCTS L.P., DELL USA L.P., EMC CORPORATION, EMC IP Holding Company LLC, FORCE10 NETWORKS, INC., WYSE TECHNOLOGY L.L.C.
Assigned to ASAP SOFTWARE EXPRESS, INC., DELL INTERNATIONAL, L.L.C., DELL USA L.P., CREDANT TECHNOLOGIES, INC., MAGINATICS LLC, SCALEIO LLC, EMC IP Holding Company LLC, FORCE10 NETWORKS, INC., DELL SOFTWARE INC., AVENTAIL LLC, MOZY, INC., DELL PRODUCTS L.P., EMC CORPORATION, DELL MARKETING L.P., DELL SYSTEMS CORPORATION, WYSE TECHNOLOGY L.L.C. reassignment ASAP SOFTWARE EXPRESS, INC. RELEASE BY SECURED PARTY (SEE DOCUMENT FOR DETAILS). Assignors: CREDIT SUISSE AG, CAYMAN ISLANDS BRANCH
Assigned to SCALEIO LLC, DELL INTERNATIONAL L.L.C., DELL MARKETING CORPORATION (SUCCESSOR-IN-INTEREST TO ASAP SOFTWARE EXPRESS, INC.), DELL MARKETING CORPORATION (SUCCESSOR-IN-INTEREST TO FORCE10 NETWORKS, INC. AND WYSE TECHNOLOGY L.L.C.), DELL MARKETING L.P. (ON BEHALF OF ITSELF AND AS SUCCESSOR-IN-INTEREST TO CREDANT TECHNOLOGIES, INC.), EMC IP HOLDING COMPANY LLC (ON BEHALF OF ITSELF AND AS SUCCESSOR-IN-INTEREST TO MOZY, INC.), EMC CORPORATION (ON BEHALF OF ITSELF AND AS SUCCESSOR-IN-INTEREST TO MAGINATICS LLC), DELL PRODUCTS L.P., DELL USA L.P. reassignment SCALEIO LLC RELEASE OF SECURITY INTEREST IN PATENTS PREVIOUSLY RECORDED AT REEL/FRAME (040136/0001) Assignors: THE BANK OF NEW YORK MELLON TRUST COMPANY, N.A., AS NOTES COLLATERAL AGENT
Assigned to EMC IP HOLDING COMPANY LLC (ON BEHALF OF ITSELF AND AS SUCCESSOR-IN-INTEREST TO MOZY, INC.), SCALEIO LLC, DELL USA L.P., DELL PRODUCTS L.P., DELL MARKETING CORPORATION (SUCCESSOR-IN-INTEREST TO FORCE10 NETWORKS, INC. AND WYSE TECHNOLOGY L.L.C.), DELL MARKETING L.P. (ON BEHALF OF ITSELF AND AS SUCCESSOR-IN-INTEREST TO CREDANT TECHNOLOGIES, INC.), DELL INTERNATIONAL L.L.C., EMC CORPORATION (ON BEHALF OF ITSELF AND AS SUCCESSOR-IN-INTEREST TO MAGINATICS LLC), DELL MARKETING CORPORATION (SUCCESSOR-IN-INTEREST TO ASAP SOFTWARE EXPRESS, INC.) reassignment EMC IP HOLDING COMPANY LLC (ON BEHALF OF ITSELF AND AS SUCCESSOR-IN-INTEREST TO MOZY, INC.) RELEASE OF SECURITY INTEREST IN PATENTS PREVIOUSLY RECORDED AT REEL/FRAME (045455/0001) Assignors: THE BANK OF NEW YORK MELLON TRUST COMPANY, N.A., AS NOTES COLLATERAL AGENT
Assigned to EMC IP Holding Company LLC, DELL PRODUCTS L.P., DELL INTERNATIONAL L.L.C., DELL USA L.P., DELL MARKETING L.P. (ON BEHALF OF ITSELF AND AS SUCCESSOR-IN-INTEREST TO CREDANT TECHNOLOGIES, INC.), DELL MARKETING CORPORATION (SUCCESSOR-IN-INTEREST TO FORCE10 NETWORKS, INC. AND WYSE TECHNOLOGY L.L.C.), EMC CORPORATION reassignment EMC IP Holding Company LLC RELEASE OF SECURITY INTEREST IN PATENTS PREVIOUSLY RECORDED AT REEL/FRAME (053546/0001) Assignors: THE BANK OF NEW YORK MELLON TRUST COMPANY, N.A., AS NOTES COLLATERAL AGENT
Active legal-status Critical Current
Adjusted expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/14Session management
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L43/00Arrangements for monitoring or testing data switching networks
    • H04L43/04Processing captured monitoring data, e.g. for logfile generation
    • H04L43/045Processing captured monitoring data, e.g. for logfile generation for graphical visualisation of monitoring data
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/50Network services
    • H04L67/60Scheduling or organising the servicing of application requests, e.g. requests for application data transmissions using the analysis and optimisation of the required network resources
    • H04L67/61Scheduling or organising the servicing of application requests, e.g. requests for application data transmissions using the analysis and optimisation of the required network resources taking into account QoS or priority requirements
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/50Network service management, e.g. ensuring proper service fulfilment according to agreements
    • H04L41/508Network service management, e.g. ensuring proper service fulfilment according to agreements based on type of value added network service under agreement
    • H04L41/5083Network service management, e.g. ensuring proper service fulfilment according to agreements based on type of value added network service under agreement wherein the managed service relates to web hosting
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/02Protocols based on web technology, e.g. hypertext transfer protocol [HTTP]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/14Session management
    • H04L67/143Termination or inactivation of sessions, e.g. event-controlled end of session

Definitions

  • One example is a conventional telephone call handling system for a customer service department.
  • improved techniques involve providing a user with permission to terminate use of a computerized resource assigned to another user.
  • all of a limited number of computerized sessions may have been assigned to other users.
  • a new user attempting to access a computerized session may be able to terminate assignment of a computerized session to another user under certain circumstances (e.g., when the computerized session has been idle for a period of time).
  • Such operation may provide a more satisfactory experience to waiting users (e.g., users in a hurry are able to obtain quicker access).
  • such operation makes more efficient use of resources (e.g., the resources for the idle computerized session may be reassigned to another user more quickly).
  • One embodiment is directed to a method of managing access to a limited number of computerized sessions (e.g., virtual browser sessions).
  • the method includes receiving, from a waiting user, a session request for a computerized session, and queuing the session request in a wait queue in response to all of the limited number of computerized sessions being currently assigned to other users.
  • the method further includes, while the session request is queued in the wait queue, providing permission to the waiting user to un-assign a computerized session which is currently assigned to another user.
  • the user has the option of simply waiting until a computerized session has been relinquished (i.e., if the user is willing to be patient) or un-assigning a computerized session currently assigned to another user in order to speed up access to a computerized session.
  • inventions are directed to systems, apparatus, processing circuits, computer program products, and so on. Some embodiments are directed to various methods, electronic components and circuitry which are involved in managing access to a limited number of computerized sessions.
  • FIG. 1 is a block diagram of an electronic environment within which a user is provided with permission to terminate use of a computerized resource assigned to another user.
  • FIG. 2 is a block diagram illustrating particular details of a user device and a server assembly of the electronic environment of FIG. 1 .
  • FIG. 3 is a diagram of an example graphical user interface (GUI) screen shot which is capable of being displayed by the user device of FIG. 2 .
  • GUI graphical user interface
  • FIG. 4 is a diagram which illustrates example details of a wait queue which is managed by the server assembly of FIG. 2 .
  • FIG. 5 is a flowchart of a procedure which is performed by the electronic environment of FIG. 1 .
  • An improved technique involves providing a user with permission to terminate use of a computerized resource assigned to another user.
  • a new user attempting to access a computerized session may be able to terminate assignment of a computerized session to another user under certain circumstances such as when the computerized session has been idle for a period of time.
  • Such operation may provide a more satisfactory experience to waiting users (e.g., users in a hurry are able to obtain quicker access). Additionally, such operation makes more efficient use of resources (e.g., resources for idle computerized sessions may be put back to work more quickly).
  • FIG. 1 shows an electronic environment 20 within which users 22 are provided with permission to terminate use of computerized resources assigned to other users 22 under certain conditions.
  • the electronic environment 20 includes a trusted network 24 and an un-trusted network 26 .
  • the trusted network 24 includes user devices 28 and a server assembly 30 .
  • the un-trusted network 24 includes un-trusted nodes 32 .
  • a dashed line 34 represents the communications medium which enables the user devices 28 to exchange electronic signals with the server assembly 30 , and perhaps with each other.
  • a dashed line 36 represents the communications medium which enables the server assembly 30 to exchange electronic signals with the un-trusted nodes 32 of the un-trusted network 26 .
  • Each of the communications media 34 , 36 is capable of having a variety of different topologies including backbone, hub-and-spoke, loop, irregular, combinations thereof, and so on.
  • the communications media 34 , 36 may include copper-based data communications devices and cabling, fiber optic devices and cabling, wireless devices, combinations thereof, etc. In some arrangements, parts of the communications media 34 , 36 overlap with each other.
  • Each user device 28 is constructed and arranged to perform useful work on behalf of a user 22 (e.g., respective users 22 can run user level applications on the user devices 28 to create and edit documents, to exchange email, to run specialized applications, etc.).
  • suitable user devices 28 include appropriately provisioned desktop computers or workstations, laptop or notebook computers, tablets, etc.
  • the server assembly 30 is constructed and arranged to enable the users 22 of the user devices 28 to safely access the un-trusted nodes 32 of the un-trusted network 26 .
  • the server assembly 30 includes a main control server 40 and one or more computerized session servers 42 .
  • the main control server 40 is constructed and arranged to control the overall operation of the server assembly 30 (e.g., perform authentication, management/administrative operations, etc.).
  • Each computerized session server 42 provides a limited number of computerized sessions 44 through which the user devices 28 are able to access the un-trusted network 26 .
  • the main control server 40 monitors use of the computerized sessions 44 to determine whether any of the computerized sessions 44 have become idle, i.e., whether any of the computerized sessions 44 have been inactive for a predefined period of time (e.g., 5 minutes, 10 minutes, 15 minutes, etc.). In some arrangements, the main control server 40 considers a computerized session 44 to be idle if that computerized session 44 that has not received any user input (e.g., mouse input, keyboard input, etc.) within the predefined period of time.
  • a predefined period of time e.g., 5 minutes, 10 minutes, 15 minutes, etc.
  • the un-trusted nodes 32 may reside on publicly accessible networks (e.g., the Internet) and may perform a variety of different operations.
  • the un-trusted node 32 ( 1 ) may be an online bank
  • the un-trusted node 32 ( 2 ) may be an online store
  • the un-trusted node 32 ( 3 ) may be an online news website
  • the un-trusted node 32 ( 4 ) may be a malicious site that deploys malware, and so on.
  • the computerized session server 42 is provisioned to operate as a virtualization platform which is able to conveniently create and destroy, as the computerized sessions 44 , virtual machine sessions having virtual browsers or similar virtual web interfaces.
  • any malware from the un-trusted network 26 e.g., see the un-trusted node 32 ( 4 )
  • the server assembly 30 can be easily contained within and removed from the server assembly 30 . That is, the malware infects the virtual machines rather than the user devices 28 , and any infected virtual machines are simply deleted from the virtual machine platform.
  • the malware is isolated and prevented from undesirably reaching the user devices 28 and from further contaminating the trusted network 24 .
  • a user 22 of a user device 28 may wish to access the un-trusted network 26 .
  • the user 22 directs the user device 28 to send a session request 50 to the main control server 40 of the server assembly 30 requesting that the main control server 40 assign a computerized session 44 (i.e., hereinafter more conveniently referred to as a browser session 54 ) to the user 22 .
  • a computerized session 44 i.e., hereinafter more conveniently referred to as a browser session 54
  • the main control server 40 simply assigns an unused browser session 54 to the requesting user 22 , and the user 22 then accesses the un-trusted network 26 through the newly assigned browser session 54 .
  • the main control server 40 still processes session requests 50 from the users 22 .
  • the main control server 40 maintains a wait queue 52 of session requests 50 , and assigns new browser sessions 54 in response to the queued session requests 50 as capacity for the new browser sessions 54 is restored to the computerized session server 42 .
  • one user 22 may finish using an assigned browser session 54 to access the un-trusted network 26 and close that browser session 54 .
  • the main control server 40 reclaims the virtual machine platform resources that were consumed by the browser session 54 and reuses these virtual machine platform resources to create a new browser session 54 for use by the user 22 who submitted the next session request 50 in the wait queue 52 .
  • Shredding of the old browser session 54 prevents any malware delivered to the old browser session 54 from contaminating other portions of the trusted network 24 .
  • the corporate electronic environment i.e., the trusted network 24
  • the trusted network may support many browser sessions 54 for customers in the un-trusted network 26 wishing to access the trusted network 24 .
  • the trusted network may be an online bank which provides virtual “browse in” browser sessions 54 to allow bank customers in the un-trusted network 26 to access a banking server in the trusted network 24 .
  • the corporate electronic environment may support only a limited number of browser sessions 54 to prevent browser session degradation.
  • employees of the online bank may wish to access a limited number of virtual “browse out” browser sessions 54 to access un-trusted nodes 32 on the un-trusted network 26 such as online stores and news sites.
  • waiting users 22 may be given permission to terminate use of idle browser sessions 54 assigned to other users 22 .
  • the users 22 ( 1 ), 22 ( 3 ), 22 ( 4 ) of user devices 28 ( 1 ), 28 ( 3 ), 28 ( 4 ) have requested browser sessions 54 from the main control server 40 and have been assigned browser sessions 54 by the main control server 40 .
  • the users 22 ( 2 ), 22 ( 5 ) of user devices 28 ( 2 ), 28 ( 5 ) have also requested browser sessions 54 from the main control server 40 but, due to resource limitations, the main control server 40 has placed their session requests 50 in the wait queue 52 , i.e., the user 22 ( 2 ), 22 ( 5 ) are currently waiting for browser sessions 54 to be assigned.
  • the main control server 40 may provide permission to the waiting users 22 to terminate an idle browser session 54 .
  • one of the users 22 currently assigned a browser session 54 may have stopped utilizing an assigned browser session 54 for a predefined amount of time.
  • a waiting user 22 receives permission to terminate an idle browser session 54 from the main control server 40 , the waiting user 22 now has the options of (i) simply waiting for the main control server 40 to assign a browser session 54 to the waiting user 22 in due course, (ii) canceling the session request 50 and leaving in hope of returning when there is an available browser session 54 , or (iii) terminating an idle computerized session 44 in order to more quickly receive assignment of a browser session 54 .
  • waiting users 22 may be given the ability to terminate idle browser sessions 54 , all users 22 enjoy a better overall experience.
  • impatient users 22 who are unwilling to simply wait are able to terminate an idle browser session 54 and thus receive the benefit of a shorter wait queue 52 .
  • the server assembly 30 operates more efficiently since the resources consumed by idle browser sessions 54 are put back to use more quickly and the wait queue 52 is not as long.
  • patient users 22 who are willing to wait without terminating any idle browser sessions 54 receive the benefit of a shorter wait queue 52 due to other users who do terminate idle browser sessions 54 .
  • termination involves idle browser sessions 54 only. That is, assignments of active browser sessions 54 are not terminated. Accordingly, such termination operation is non-interfering since there is no affect on active users 22 .
  • some arrangements involve presenting waiting users 22 with permissions to terminate idle browser sessions 54 in the form of a credit point system (e.g., a game or shopping experience). In these arrangements, waiting users 22 accumulate credit points by waiting, and spend credit points by terminating idle browser sessions 54 . Further details will now be provided with reference to FIG. 2 .
  • a credit point system e.g., a game or shopping experience
  • FIG. 2 shows particular details of a user device 28 and the server assembly 30 of the electronic environment 20 .
  • the server assembly 30 is shown as including only one computerized resource server 42 by way of example only. In other arrangements, the server assembly 30 includes multiple computerized resource servers 42 to increase capacity for computerized sessions 44 .
  • the user device 28 includes a network interface 60 , a user interface 62 and a controller 64 .
  • the network interface 60 is constructed and arranged to connect the user device 28 to the communications medium 34 and thus enables the user device 28 to communicate with the server assembly 30 as well as other devices in the trusted network 24 such as the user devices 28 (also see FIG. 1 ).
  • the network interface 80 is implemented in the form of a network card or a network adapter module.
  • the network interface 80 includes a wireless transceiver for wireless communications.
  • the user interface 62 of the user device 28 is constructed and arranged to receive input from a user 22 and provide output to the user 22 .
  • the user interface 62 includes a keyboard, a mouse, and a display (e.g., for a workstation or desktop setting).
  • the user interface 62 includes an integrated touch screen which is responsible for handling both user input and output (e.g., for a portable or hand held setting).
  • Other arrangements are suitable for use as well (e.g., specialized input/output devices, Bluetooth peripheral devices, etc.).
  • the controller 64 of the user device 28 enables the user device 28 to perform useful work, e.g., run user level applications, request and utilize computerized sessions 44 to access the un-trusted network 26 , and so on. It should be understood that the controller 64 can be implemented in a variety of ways including via one or more processors running specialized software, application specific ICs (ASICs), field programmable gate arrays (FPGAs) and associated programs, discrete components, analog circuits, other hardware circuitry, combinations thereof, and so on. In the context of one or more processors running specialized software, a computer program product 68 is capable of delivering all or portions of the software to the user device 28 .
  • ASICs application specific ICs
  • FPGAs field programmable gate arrays
  • a computer program product 68 is capable of delivering all or portions of the software to the user device 28 .
  • the computer program product 68 has a non-transitory (or non-volatile) computer readable medium which stores a set of instructions which controls one or more operations of the user device 28 .
  • suitable computer readable storage media include tangible articles of manufacture and apparatus which store instructions in a non-volatile manner such as CD-ROM, flash memory, disk memory, tape memory, and the like.
  • the main control server 40 of the server assembly 30 includes a network interface 70 , memory 72 and a control circuit 74 .
  • the network interface 70 is constructed and arranged to connect the main control server 40 to the communications medium 34 ( FIG. 1 ) and thus enables the main control server 40 to communicate with the user devices 28 as well as other devices in the trusted network 24 .
  • the memory 72 includes a user database 76 , a session database 78 and the wait queue 52 , perhaps among other storage constructs.
  • the user database 76 stores, for each user 22 , a user identifier which identifies that user 22 , an amount of credit points currently accumulated for that user 22 , historical information (e.g., which other users 22 have had browser session assignments terminated by that user 22 , which other users 22 have terminated browser session assignments of that user 22 , etc.), and so on. Such information may be used by the main control server 40 for authentication, for administrative purposes, and to determine whether that user 22 currently has permission to terminate browser session assignments of other users 22 .
  • the session database 76 stores computerized session data regarding existing computerized sessions 44 currently assigned to the users 22 .
  • data includes, for each existing browser session 54 , a browser identifier identifying a particular virtual browser (or virtual machine which is the source of that browser session 54 ), a user identifier of the user device 28 to which that browser session 54 is assigned, time data (e.g., a start time for the browser session 54 , an amount of time that the browser session 54 has been inactive if appropriate, etc.), and so on.
  • the wait queue 52 stores session requests 50 that are currently awaiting assignment of browser sessions 54 by the main control server 40 . When there are more browser sessions 54 available than users 22 in need of browser sessions 54 , the wait queue 52 is empty.
  • the control circuit 74 of the main control server 40 is constructed and arranged to manage assignments of browser sessions 54 provided by the computerized resource server 42 to the users 22 of the user devices 28 . It should be understood that the control circuit 74 can be implemented in a variety of ways including via one or more processors running specialized software, application specific ICs (ASICs), field programmable gate arrays (FPGAs) and associated programs, discrete components, analog circuits, other hardware circuitry, combinations thereof, and so on. In the context of one or more processors running specialized software, a computer program product 80 is capable of delivering all or portions of the software to the main control server 40 .
  • ASICs application specific ICs
  • FPGAs field programmable gate arrays
  • a computer program product 80 is capable of delivering all or portions of the software to the main control server 40 .
  • the computer program product 80 has a non-transitory (or non-volatile) computer readable medium which stores a set of instructions which controls one or more operations of the main control server 40 .
  • suitable computer readable storage media include tangible articles of manufacture and apparatus which store instructions in a non-volatile manner such as CD-ROM, flash memory, disk memory, tape memory, and the like.
  • each computerized resource server 42 is provisioned to provide a virtualization environment for virtual web browsers.
  • each computerized resource server 42 includes a virtual machine platform 90 which provides a limited number of virtual browser sessions 54 .
  • each computerized resource server 42 is equipped with network connectivity to connect to both the user devices 28 of the trusted network 34 and the un-trusted nodes 32 of the un-trusted network 26 (also see FIG. 1 ). Further details of how the various components operate will now be provided.
  • control circuit 74 receives a session request 50 from a user 22 of the user device 28 (see arrow 100 representing communications from the user device 28 to the main control server 40 in FIG. 2 ). If all of the limited number of browser sessions 54 are currently assigned to other users 22 , the control circuit 74 queues the session request 50 in the wait queue 52 .
  • the control circuit 74 determines whether to provide permission to the waiting user 22 to un-assign an idle browser session 54 which is currently assigned to another user 22 .
  • the control circuit 74 generates a list of idle browser sessions 54 from the session database 78 , and prompts the waiting user 22 to terminate an idle browser session 22 on the list of idle browser sessions 54 if certain criteria are satisfied (see arrow 102 representing communications from the main control server 40 to the user device 28 in FIG. 2 ).
  • the main control server 40 imparts control over each computerized resource server 42 such as directing that computerized resource server 42 to create and destroy virtual machines, etc. (see arrow 104 representing communications from the main control server 40 to the computerized resource server 42 in FIG. 2 ). Additionally, the main control server 40 receives status from the computerized resource server 42 such as feedback on whether a new virtual machine is available, etc. (see arrow 106 representing communications from the computerized resource server 42 to the main control server 40 in FIG. 2 ).
  • the waiting user 22 may (i) simply wait for the main control server 40 to assign a browser session 54 to the waiting user 22 when resources become available (e.g., when another user closes an existing browser session 54 ), (ii) cancel the session request 50 and leave in hope of returning when there is an available browser session 54 , or (iii) use the provided permission to terminate an idle browser session 54 in order to more quickly receive assignment of a browser session 54 .
  • the main control server 40 will eventually process the session request 50 of the waiting user 22 from a head of the wait queue 52 and assign a new browser session 54 to the waiting user 22 (see arrow 102 ).
  • the user 22 of the user device 28 is then able to access an un-trusted node 32 by providing input to the browser session 54 and receiving output from the browser session 54 (see arrows 108 , 110 representing communications between the user device 22 and the computerized resource server 42 in FIG. 2 ).
  • the browser session 54 communicates directly with the un-trusted node 32 to shield the user device 28 from exposure to malware (see arrows 112 , 114 representing communications between the computerized resource server 42 and the un-trusted node 32 in FIG. 2 ).
  • the waiting user 22 cancels the session request 50
  • the waiting user 22 sends a cancel command to the main control server 40 (represented by arrow 100 ).
  • the main control server 40 deletes the session request 50 from the wait queue 52 and sends acknowledgement back to the waiting user 22 (represented by arrow 102 ).
  • the waiting user 22 uses the permission to terminate assignment of an idle browser session 54 to another user 22 , the waiting user 22 sends a terminate command to the main control server 40 (arrow 100 ).
  • the main control server 40 directs the computerized resource server 42 to close the idle browser session 54 assigned to the other user 22 and provide a new browser session 54 for assignment to a new user 22 (arrows 104 , 106 ).
  • the main control server 40 then updates: (i) the user database 76 to reflect use of the permission, (ii) the session database 76 to reflect termination of the earlier assignment and creation of a new assignment of the new browser session 54 to a new user 22 , and (iii) the wait queue 52 to reflect the new assignment of the new browser session 54 to the new user 22 . Accordingly, the wait queue 52 is now shorter and the resources of the terminated idle browser session 54 are put back to use more quickly. As a result, there is higher user satisfaction provided to the users 22 of the user devices 22 vis-à-vis a conventional system in which there is no termination alternative. Further details will now be provided with reference to FIG. 3 .
  • FIG. 3 is an example screen shot 200 of a graphical user interface (GUI) 202 rendered by the user device 28 to a particular user 22 when a session request 50 sent to the main control server 40 from the user device 28 is placed in the wait queue 52 .
  • GUI graphical user interface
  • the graphical output is rendered on an electronic display portion of the user interface 62 , and input is received through an input portion of the user interface 62 such as a mouse, a keyboard and/or a touch screen (also see FIG. 2 ).
  • the example screen shot 200 includes a pane 210 which outputs a current position of the particular user's session request 50 in the wait queue 52 , and a pane 212 which outputs a total number of credit points which are available for use by the particular user 22 .
  • the example screen shot 200 further includes a table 214 of users 22 who are currently assigned to browser sessions 54 which have been idle for a predefined amount of time (e.g., at least 10 minutes), and a set of cells (or buttons) 216 some of which the particular user may be able to activate in order to un-assign an idle browser session 54 . Each cell 216 provides an indication as to whether the waiting user 22 has permission to terminate assignment of a browser session 54 .
  • the table 214 of users 22 currently assigned to idle browser sessions 54 includes a row 220 for each user 22 , e.g., “John Doe”, “Jane Smith”, “Q. Public”, etc.
  • Each row 220 includes termination history such as (i) a cell 230 containing the name of the respective user 22 (ii) a cell 232 containing the number of times the respective user 22 has terminated an idle browser session 54 assigned to the particular user 22 , (iii) a cell 234 containing the number of times the respective user 22 can terminate an idle browser session 54 assigned to the particular user 22 in the future, (iv) a cell 236 containing the total number of times the respective user 22 has terminated idle browser sessions 54 of other users 22 , (v) a cell 238 containing the total number of times the particular user 22 has terminated that respective user 22 , (vi) a cell 240 containing the total number of times the particular user 22 can terminate that respective user 22 in the future, (vii) a cell 242 containing amount of time that
  • the particular user 22 does not have permission to terminate the idle browser session 54 of that respective user 22 .
  • the particular user 22 does not have permission to terminate the idle browser session 54 of “John Doe”.
  • the particular user 22 has permission to terminate the idle browser session 54 of that respective user 22 .
  • the particular user 22 has permission to terminate the idle browser sessions 54 of “Jane Smith” and “Q. Public”.
  • the main control server 40 sends signals to the user device 22 updating the information in the panes 210 , 212 and the table 214 in real time.
  • the main control server 40 removes a session request 50 from the head of the wait queue 52 and fulfills that session request 50
  • the main control server 40 updates the pane 212 to reflect the new current position of the particular user's session request 50 in the wait queue 52 .
  • the particular user 22 accumulates more credit points and the main control server 40 updates the pane 214 to reflect an increase in accumulated credit points.
  • the main control server 40 updates the rows of the table 214 of users 22 who are currently assigned to idle browser sessions 54 since those users 22 may finish using the idle browser sessions 54 or be terminated by other users 22 .
  • the main control server 40 subtracts 5000 credit points from the particular user 22 and reflects that in the cell 212 (i.e., 5000 credit points is the cost of exercising that termination permission). Additionally, the main control server 40 terminates the idle browser session 54 of “Jane Smith” thus moving the particular user 22 forward in the wait queue 52 , and updates its databases and the remaining portions of the GUI 202 . In some arrangements, the main control server 40 provides a report notice to “Jane Smith” indicating that the particular user 22 terminated assignment of the idle browser session 54 . In some arrangements, the main control server 40 is constructed and arranged to move the particular user 22 forward by multiple positions (e.g., two places) in the wait queue 52 as a further incentive to the particular user 22 to terminate idle browser sessions 54 .
  • the above-described termination system may be configured in a variety of ways to make the user experience more enjoyable.
  • the particular user 22 is allowed to terminate only a predefined maximum number of idle browser sessions 54 (e.g., one, two, three, etc.) for a single session request 50 .
  • a predefined maximum number of idle browser sessions 54 e.g., one, two, three, etc.
  • the number of times the particular user 22 can terminate the idle browser session 54 of another user 22 increases incrementally each time the other user 22 terminates the idle browser session 54 of the particular user 22 . Accordingly, even if the particular user 22 has enough credit points, the particular user 22 may be prohibited from terminating the idle browser session 54 of a certain other user 22 if that other user 22 has not terminated the idle browser session 54 of the particular user 22 . However, once the other user 22 terminates a idle browser session 54 of the particular user 22 , the particular user 22 is now able to terminate the idle browser session 54 of the other user 22 in the future.
  • the users 22 of the trusted network 24 belong to a company and are grouped into individual organizations within the company.
  • Such organizational/hierarchical information i.e., org chart data
  • a user 22 may be prevented from receiving permission to terminate idle browser sessions 54 of users 22 that are outside that user's organization.
  • executives of the company who are users 22 ) may be excluded so that no users 22 receive permission to terminate the idle browser sessions 54 of the executive users 22 .
  • the cost to terminate the idle browser sessions 54 of each user 22 may vary (e.g., 2500 credit points, 5000 credit points, etc.) based on certain factors. Such factors affecting the cost of terminating an idle browser session 54 of a user 22 can include that user's status within the company, how frequently that user 22 terminates idle browser sessions 54 of other users 22 , how frequently the idle browser sessions 54 of that user 22 have been terminated, and so on.
  • credit points start accumulating as soon as the user 22 queues a session request 50 in the wait queue 52 . In other arrangements, credit points start accumulating only after residing a predetermined amount of time in the wait queue 52 (e.g., one minute, two minutes, etc.). Further details will now be provided with reference to FIG. 4 .
  • FIG. 4 shows example details of the wait queue 52 which is managed by the control circuit 74 of the main control server 40 .
  • the wait queue 52 includes multiple entries 300 containing session requests 50 .
  • the session request 50 at the head 302 of the wait queue 52 contains the session request 50 which is to be process next by the main control server 40 when the next browser session 54 becomes available.
  • “Robert” is initially at the head 302 of the wait queue 52 and is thus the next user 22 scheduled to be assigned the next available browser session 54 , followed by “Linda”, “Janet”, “Peter”, “Katie”, and so on.
  • names are used in the example, but it should be understood that the entries 300 of the wait queue 52 can contain user identifiers, user device identifiers, timestamps, combinations thereof, etc.
  • the main control server 40 assigns the new browser session 54 to “Robert” and deletes the “Robert” session request 50 from the head 302 of the wait queue 52 . Accordingly, the entry 300 containing “Linda” becomes the new head 302 of the wait queue 52 (see the single dashed arrows in FIG. 4 ).
  • the user 22 that spent credit points to terminate an idle browser session 54 is rewarded by moving up the session request 50 of that user 22 one or more additional positions.
  • “Linda” moves ahead simply by one position (i.e., the “Linda” session request 50 is now in the head entry 300 ).
  • “Janet” moves ahead simply by one position (i.e., the “Janet” session request 50 used to be third in the wait queue 52 but is now second in the wait queue 52 ).
  • the wait queue 52 in general will be shorter than a comparable wait queue that does not offer termination. Further details will now be provided with reference to FIG. 5 .
  • FIG. 5 is a flowchart of a procedure 400 which is performed by circuitry of the electronic environment 20 to manage access to a limited number of computerized sessions 44 .
  • a procedure 400 was performed primarily by the control circuit 74 of the main control server 40 .
  • parts or even all of the procedure 400 can be performed by other circuits (e.g., by the computerized resource server 42 , by the user devices 28 , in a distributed manner, etc.).
  • step 402 the circuitry receives, from a waiting user, a session request 50 for a computerized session 44 .
  • the user 22 of a user device 28 requests access to a computerized session 44 .
  • step 404 the circuitry queues the session request 50 in a wait queue 52 in response to all of the limited number of computerized sessions 44 being currently assigned to other users 22 .
  • the circuitry queues the session request 50 in a wait queue 52 in response to all of the limited number of computerized sessions 44 being currently assigned to other users 22 .
  • step 406 while the session request 50 is queued in the wait queue 52 , the circuitry provides permission to the waiting user 22 to un-assign a computerized session 44 which is currently assigned to another user 22 .
  • Such permission may be provided to the waiting user 22 under certain conditions such as when there are idle computerized sessions 44 , when the waiting user 22 has accumulated enough credit points, etc.
  • a list of idle computerized sessions 44 may be generated and the waiting user 22 may be prompted to terminate an idle computerized session 44 on the list.
  • the waiting user 22 may (i) patiently wait for a computerized session 44 to be assigned once resources become available (e.g., when another user 22 closes an existing computerized session 44 ), (ii) cancel the session request 50 and leave in hope of returning when there is an available computerized session 44 , or (iii) use the provided permission to terminate an idle computerized session 44 in order to shorten the wait queue 52 and more quickly receive assignment of a computerized session 44 .
  • improved techniques involve providing a user 22 with permission to terminate use of a computerized resource assigned to another user 22 .
  • all of a limited number of computerized sessions 44 may have been assigned to other users 22 .
  • a new user 22 attempting to access a computerized session 44 may be able to terminate assignment of a computerized session 44 to another user 22 under certain circumstances (e.g., when the computerized session 44 has been idle for a period of time).
  • Such operation may provide a more satisfactory experience to waiting users 22 (e.g., users in a hurry are able to obtain quicker access).
  • such operation makes more efficient use of resources (e.g., the resources for the idle computerized session 44 may be reassigned to another user 22 more quickly).
  • the computerized sessions 44 were described above as being virtual browser sessions 54 which allow users 22 to access un-trusted nodes 32 from a trusted network 24 . It should be understood that the above-described techniques are suitable for managing access to other types of computerized sessions 44 as well. Examples include managing access to a limited number of online game sessions, remotely accessing cameras, managing positions in a reservation queue such as an electronic wait list of an airline, accessing a computerized processing engine and/or other limited resources and reservation services through a general web interface, and so on.
  • main control server 40 and the computerized resource server 42 of the server assembly 30 were shown as being separate machines. In other arrangements, the main control server 40 and the computerized resource server 42 are co-located in a single machine, or cloud distributed within the trusted network 24 .
  • server assembly 30 may be provided as a hosted service.
  • a corporation may hire a third-party to supply, operate and/or maintain all or portions of the server assembly 30 .
  • modifications and enhancements are intended to belong to various embodiments of the invention.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Data Mining & Analysis (AREA)
  • Computer And Data Communications (AREA)

Abstract

A technique manages access to a limited number of computerized sessions. The technique involves receiving, from a waiting user, a session request for a computerized session, and queuing the session request in a wait queue in response to all of the limited number of computerized sessions being currently assigned to other users. The technique further involves, while the session request is queued in the wait queue, providing permission to the waiting user to un-assign a computerized session which is currently assigned to another user. With such a technique, the user has the option of simply waiting until a computerized session has been relinquished (i.e., if the user is willing to be patient) or un-assigning a computerized session currently assigned to another user (e.g., in order to speed up access to a computerized session).

Description

BACKGROUND
Situations exist in which people must wait to obtain access to a limited resource. One example is a conventional telephone call handling system for a customer service department. In this example, there may be a limited number of customer service representatives available to take telephone calls from customers.
If there are fewer calling customers than customer service representatives, all of the calling customers may receive immediate attention. However, if there are more calling customers than customer service representatives, some of the customer calls may be put on hold by the telephone call handling system.
While a customer waits on hold to speak to a customer service representative, the telephone call handling system may play music. Additionally, some telephone call handling systems may play a human voice recording which explains that telephone calls will be handled in the order received. Furthermore, some telephone call handling systems may provide an estimate to each caller regarding the amount of time it may take for the caller to speak to an actual customer service representative.
SUMMARY
Unfortunately, there are deficiencies to conventional systems in which people must simply wait to obtain access to a limited resource. For example, in the above-described conventional telephone call handling system, there is only one option available to customers when there are more calling customers than customer service representatives. That is, a customer who is put on hold can either wait patiently until the call is finally answered by an actual customer service representative or, as an alternative, hang up and call back at, hopefully, a less busy time.
In contrast to conventional systems in which people must simply wait to obtain access to a limited resource or return at a less busy time, improved techniques involve providing a user with permission to terminate use of a computerized resource assigned to another user. Along these lines, all of a limited number of computerized sessions may have been assigned to other users. In such a situation, a new user attempting to access a computerized session may be able to terminate assignment of a computerized session to another user under certain circumstances (e.g., when the computerized session has been idle for a period of time). Such operation may provide a more satisfactory experience to waiting users (e.g., users in a hurry are able to obtain quicker access). Additionally, such operation makes more efficient use of resources (e.g., the resources for the idle computerized session may be reassigned to another user more quickly).
One embodiment is directed to a method of managing access to a limited number of computerized sessions (e.g., virtual browser sessions). The method includes receiving, from a waiting user, a session request for a computerized session, and queuing the session request in a wait queue in response to all of the limited number of computerized sessions being currently assigned to other users. The method further includes, while the session request is queued in the wait queue, providing permission to the waiting user to un-assign a computerized session which is currently assigned to another user. In such an embodiment, the user has the option of simply waiting until a computerized session has been relinquished (i.e., if the user is willing to be patient) or un-assigning a computerized session currently assigned to another user in order to speed up access to a computerized session.
Other embodiments are directed to systems, apparatus, processing circuits, computer program products, and so on. Some embodiments are directed to various methods, electronic components and circuitry which are involved in managing access to a limited number of computerized sessions.
BRIEF DESCRIPTION OF THE DRAWINGS
The foregoing and other objects, features and advantages will be apparent from the following description of particular embodiments of the invention, as illustrated in the accompanying drawings in which like reference characters refer to the same parts throughout the different views. The drawings are not necessarily to scale, emphasis instead being placed upon illustrating the principles of various embodiments of the invention.
FIG. 1 is a block diagram of an electronic environment within which a user is provided with permission to terminate use of a computerized resource assigned to another user.
FIG. 2 is a block diagram illustrating particular details of a user device and a server assembly of the electronic environment of FIG. 1.
FIG. 3 is a diagram of an example graphical user interface (GUI) screen shot which is capable of being displayed by the user device of FIG. 2.
FIG. 4 is a diagram which illustrates example details of a wait queue which is managed by the server assembly of FIG. 2.
FIG. 5 is a flowchart of a procedure which is performed by the electronic environment of FIG. 1.
 DETAILED DESCRIPTION
An improved technique involves providing a user with permission to terminate use of a computerized resource assigned to another user. Along these lines, suppose that all of a limited number of computerized sessions have been assigned to other users. In such a situation, a new user attempting to access a computerized session may be able to terminate assignment of a computerized session to another user under certain circumstances such as when the computerized session has been idle for a period of time. Such operation may provide a more satisfactory experience to waiting users (e.g., users in a hurry are able to obtain quicker access). Additionally, such operation makes more efficient use of resources (e.g., resources for idle computerized sessions may be put back to work more quickly).
FIG. 1 shows an electronic environment 20 within which users 22 are provided with permission to terminate use of computerized resources assigned to other users 22 under certain conditions. The electronic environment 20 includes a trusted network 24 and an un-trusted network 26. The trusted network 24 includes user devices 28 and a server assembly 30. The un-trusted network 24 includes un-trusted nodes 32.
It should be understood that the various components of the electronic environment 20 communicate through electronic communications media. In particular, a dashed line 34 represents the communications medium which enables the user devices 28 to exchange electronic signals with the server assembly 30, and perhaps with each other. Similarly, a dashed line 36 represents the communications medium which enables the server assembly 30 to exchange electronic signals with the un-trusted nodes 32 of the un-trusted network 26. Each of the communications media 34, 36 is capable of having a variety of different topologies including backbone, hub-and-spoke, loop, irregular, combinations thereof, and so on. Along these lines, the communications media 34, 36 may include copper-based data communications devices and cabling, fiber optic devices and cabling, wireless devices, combinations thereof, etc. In some arrangements, parts of the communications media 34, 36 overlap with each other.
Each user device 28 is constructed and arranged to perform useful work on behalf of a user 22 (e.g., respective users 22 can run user level applications on the user devices 28 to create and edit documents, to exchange email, to run specialized applications, etc.). Examples of suitable user devices 28 include appropriately provisioned desktop computers or workstations, laptop or notebook computers, tablets, etc.
The server assembly 30 is constructed and arranged to enable the users 22 of the user devices 28 to safely access the un-trusted nodes 32 of the un-trusted network 26. In particular, the server assembly 30 includes a main control server 40 and one or more computerized session servers 42. The main control server 40 is constructed and arranged to control the overall operation of the server assembly 30 (e.g., perform authentication, management/administrative operations, etc.). Each computerized session server 42 provides a limited number of computerized sessions 44 through which the user devices 28 are able to access the un-trusted network 26. It should be understood that the main control server 40 monitors use of the computerized sessions 44 to determine whether any of the computerized sessions 44 have become idle, i.e., whether any of the computerized sessions 44 have been inactive for a predefined period of time (e.g., 5 minutes, 10 minutes, 15 minutes, etc.). In some arrangements, the main control server 40 considers a computerized session 44 to be idle if that computerized session 44 that has not received any user input (e.g., mouse input, keyboard input, etc.) within the predefined period of time.
The un-trusted nodes 32 may reside on publicly accessible networks (e.g., the Internet) and may perform a variety of different operations. For example, the un-trusted node 32(1) may be an online bank, the un-trusted node 32(2) may be an online store, the un-trusted node 32(3) may be an online news website, the un-trusted node 32(4) may be a malicious site that deploys malware, and so on.
In a particular embodiment which will now be explained in more detail, the computerized session server 42 is provisioned to operate as a virtualization platform which is able to conveniently create and destroy, as the computerized sessions 44, virtual machine sessions having virtual browsers or similar virtual web interfaces. As such, any malware from the un-trusted network 26 (e.g., see the un-trusted node 32(4)) can be easily contained within and removed from the server assembly 30. That is, the malware infects the virtual machines rather than the user devices 28, and any infected virtual machines are simply deleted from the virtual machine platform. As a result, the malware is isolated and prevented from undesirably reaching the user devices 28 and from further contaminating the trusted network 24.
Along these lines, when the electronic environment 20 is in operation, a user 22 of a user device 28 may wish to access the un-trusted network 26. To this end, the user 22 directs the user device 28 to send a session request 50 to the main control server 40 of the server assembly 30 requesting that the main control server 40 assign a computerized session 44 (i.e., hereinafter more conveniently referred to as a browser session 54) to the user 22. If there are enough browser sessions 54 available from the computerized session server 42, the main control server 40 simply assigns an unused browser session 54 to the requesting user 22, and the user 22 then accesses the un-trusted network 26 through the newly assigned browser session 54.
However, it should be understood that there may be more user devices 28 than browser sessions 54. Accordingly, it is possible for the computerized session server 42 to have reached its full capacity, i.e., there are not enough resources for another browser session 54. In this situation, the main control server 40 still processes session requests 50 from the users 22. In particular, the main control server 40 maintains a wait queue 52 of session requests 50, and assigns new browser sessions 54 in response to the queued session requests 50 as capacity for the new browser sessions 54 is restored to the computerized session server 42. For example, one user 22 may finish using an assigned browser session 54 to access the un-trusted network 26 and close that browser session 54. When the user 22 closes the browser session 54, the main control server 40 reclaims the virtual machine platform resources that were consumed by the browser session 54 and reuses these virtual machine platform resources to create a new browser session 54 for use by the user 22 who submitted the next session request 50 in the wait queue 52. Shredding of the old browser session 54 prevents any malware delivered to the old browser session 54 from contaminating other portions of the trusted network 24.
Since virtual machines consume considerable computerized resources, such an embodiment may be well-suited for a corporate setting. In such a setting, the corporate electronic environment (i.e., the trusted network 24) may support many browser sessions 54 for customers in the un-trusted network 26 wishing to access the trusted network 24. For example, the trusted network may be an online bank which provides virtual “browse in” browser sessions 54 to allow bank customers in the un-trusted network 26 to access a banking server in the trusted network 24. However, in terms of employees in the trusted network 24 wishing to access the un-trusted network 26, the corporate electronic environment may support only a limited number of browser sessions 54 to prevent browser session degradation. For example, employees of the online bank may wish to access a limited number of virtual “browse out” browser sessions 54 to access un-trusted nodes 32 on the un-trusted network 26 such as online stores and news sites.
Further details will now be provided as to how waiting users 22 may be given permission to terminate use of idle browser sessions 54 assigned to other users 22. Suppose that the users 22(1), 22(3), 22(4) of user devices 28(1), 28(3), 28(4) have requested browser sessions 54 from the main control server 40 and have been assigned browser sessions 54 by the main control server 40. Further suppose that the users 22(2), 22(5) of user devices 28(2), 28(5) have also requested browser sessions 54 from the main control server 40 but, due to resource limitations, the main control server 40 has placed their session requests 50 in the wait queue 52, i.e., the user 22(2), 22(5) are currently waiting for browser sessions 54 to be assigned.
In this situation, the main control server 40 may provide permission to the waiting users 22 to terminate an idle browser session 54. In particular, one of the users 22 currently assigned a browser session 54 (see users 22(1), 22(3) and 22(4)) may have stopped utilizing an assigned browser session 54 for a predefined amount of time. If a waiting user 22 receives permission to terminate an idle browser session 54 from the main control server 40, the waiting user 22 now has the options of (i) simply waiting for the main control server 40 to assign a browser session 54 to the waiting user 22 in due course, (ii) canceling the session request 50 and leaving in hope of returning when there is an available browser session 54, or (iii) terminating an idle computerized session 44 in order to more quickly receive assignment of a browser session 54.
Since waiting users 22 may be given the ability to terminate idle browser sessions 54, all users 22 enjoy a better overall experience. In particular, impatient users 22 who are unwilling to simply wait are able to terminate an idle browser session 54 and thus receive the benefit of a shorter wait queue 52. Additionally, the server assembly 30 operates more efficiently since the resources consumed by idle browser sessions 54 are put back to use more quickly and the wait queue 52 is not as long. Furthermore, even patient users 22 who are willing to wait without terminating any idle browser sessions 54 receive the benefit of a shorter wait queue 52 due to other users who do terminate idle browser sessions 54.
Moreover, one should appreciate that termination involves idle browser sessions 54 only. That is, assignments of active browser sessions 54 are not terminated. Accordingly, such termination operation is non-interfering since there is no affect on active users 22.
In some arrangements and as will be explained in further detail below, some arrangements involve presenting waiting users 22 with permissions to terminate idle browser sessions 54 in the form of a credit point system (e.g., a game or shopping experience). In these arrangements, waiting users 22 accumulate credit points by waiting, and spend credit points by terminating idle browser sessions 54. Further details will now be provided with reference to FIG. 2.
FIG. 2 shows particular details of a user device 28 and the server assembly 30 of the electronic environment 20. The server assembly 30 is shown as including only one computerized resource server 42 by way of example only. In other arrangements, the server assembly 30 includes multiple computerized resource servers 42 to increase capacity for computerized sessions 44.
The user device 28 includes a network interface 60, a user interface 62 and a controller 64. The network interface 60 is constructed and arranged to connect the user device 28 to the communications medium 34 and thus enables the user device 28 to communicate with the server assembly 30 as well as other devices in the trusted network 24 such as the user devices 28 (also see FIG. 1). In some arrangements, the network interface 80 is implemented in the form of a network card or a network adapter module. In some arrangements, the network interface 80 includes a wireless transceiver for wireless communications.
The user interface 62 of the user device 28 is constructed and arranged to receive input from a user 22 and provide output to the user 22. In some arrangements, the user interface 62 includes a keyboard, a mouse, and a display (e.g., for a workstation or desktop setting). In other arrangements, the user interface 62 includes an integrated touch screen which is responsible for handling both user input and output (e.g., for a portable or hand held setting). Other arrangements are suitable for use as well (e.g., specialized input/output devices, Bluetooth peripheral devices, etc.).
The controller 64 of the user device 28 enables the user device 28 to perform useful work, e.g., run user level applications, request and utilize computerized sessions 44 to access the un-trusted network 26, and so on. It should be understood that the controller 64 can be implemented in a variety of ways including via one or more processors running specialized software, application specific ICs (ASICs), field programmable gate arrays (FPGAs) and associated programs, discrete components, analog circuits, other hardware circuitry, combinations thereof, and so on. In the context of one or more processors running specialized software, a computer program product 68 is capable of delivering all or portions of the software to the user device 28. The computer program product 68 has a non-transitory (or non-volatile) computer readable medium which stores a set of instructions which controls one or more operations of the user device 28. Examples of suitable computer readable storage media include tangible articles of manufacture and apparatus which store instructions in a non-volatile manner such as CD-ROM, flash memory, disk memory, tape memory, and the like.
The main control server 40 of the server assembly 30 includes a network interface 70, memory 72 and a control circuit 74. The network interface 70 is constructed and arranged to connect the main control server 40 to the communications medium 34 (FIG. 1) and thus enables the main control server 40 to communicate with the user devices 28 as well as other devices in the trusted network 24.
The memory 72 includes a user database 76, a session database 78 and the wait queue 52, perhaps among other storage constructs. The user database 76 stores, for each user 22, a user identifier which identifies that user 22, an amount of credit points currently accumulated for that user 22, historical information (e.g., which other users 22 have had browser session assignments terminated by that user 22, which other users 22 have terminated browser session assignments of that user 22, etc.), and so on. Such information may be used by the main control server 40 for authentication, for administrative purposes, and to determine whether that user 22 currently has permission to terminate browser session assignments of other users 22.
The session database 76 stores computerized session data regarding existing computerized sessions 44 currently assigned to the users 22. In the context of browser sessions 54, such data includes, for each existing browser session 54, a browser identifier identifying a particular virtual browser (or virtual machine which is the source of that browser session 54), a user identifier of the user device 28 to which that browser session 54 is assigned, time data (e.g., a start time for the browser session 54, an amount of time that the browser session 54 has been inactive if appropriate, etc.), and so on.
The wait queue 52 stores session requests 50 that are currently awaiting assignment of browser sessions 54 by the main control server 40. When there are more browser sessions 54 available than users 22 in need of browser sessions 54, the wait queue 52 is empty.
The control circuit 74 of the main control server 40 is constructed and arranged to manage assignments of browser sessions 54 provided by the computerized resource server 42 to the users 22 of the user devices 28. It should be understood that the control circuit 74 can be implemented in a variety of ways including via one or more processors running specialized software, application specific ICs (ASICs), field programmable gate arrays (FPGAs) and associated programs, discrete components, analog circuits, other hardware circuitry, combinations thereof, and so on. In the context of one or more processors running specialized software, a computer program product 80 is capable of delivering all or portions of the software to the main control server 40. The computer program product 80 has a non-transitory (or non-volatile) computer readable medium which stores a set of instructions which controls one or more operations of the main control server 40. Examples of suitable computer readable storage media include tangible articles of manufacture and apparatus which store instructions in a non-volatile manner such as CD-ROM, flash memory, disk memory, tape memory, and the like.
As mentioned earlier, in one embodiment, each computerized resource server 42 is provisioned to provide a virtualization environment for virtual web browsers. To this end, each computerized resource server 42 includes a virtual machine platform 90 which provides a limited number of virtual browser sessions 54. It should be understood that each computerized resource server 42 is equipped with network connectivity to connect to both the user devices 28 of the trusted network 34 and the un-trusted nodes 32 of the un-trusted network 26 (also see FIG. 1). Further details of how the various components operate will now be provided.
Suppose that the control circuit 74 receives a session request 50 from a user 22 of the user device 28 (see arrow 100 representing communications from the user device 28 to the main control server 40 in FIG. 2). If all of the limited number of browser sessions 54 are currently assigned to other users 22, the control circuit 74 queues the session request 50 in the wait queue 52.
Additionally, while the session request 50 is queued in the wait queue 52, the control circuit 74 determines whether to provide permission to the waiting user 22 to un-assign an idle browser session 54 which is currently assigned to another user 22. Along these lines, the control circuit 74 generates a list of idle browser sessions 54 from the session database 78, and prompts the waiting user 22 to terminate an idle browser session 22 on the list of idle browser sessions 54 if certain criteria are satisfied (see arrow 102 representing communications from the main control server 40 to the user device 28 in FIG. 2).
It should be understood that during this time, the main control server 40 imparts control over each computerized resource server 42 such as directing that computerized resource server 42 to create and destroy virtual machines, etc. (see arrow 104 representing communications from the main control server 40 to the computerized resource server 42 in FIG. 2). Additionally, the main control server 40 receives status from the computerized resource server 42 such as feedback on whether a new virtual machine is available, etc. (see arrow 106 representing communications from the computerized resource server 42 to the main control server 40 in FIG. 2).
Upon receipt of terminate permission from the main control server 40, the waiting user 22 may (i) simply wait for the main control server 40 to assign a browser session 54 to the waiting user 22 when resources become available (e.g., when another user closes an existing browser session 54), (ii) cancel the session request 50 and leave in hope of returning when there is an available browser session 54, or (iii) use the provided permission to terminate an idle browser session 54 in order to more quickly receive assignment of a browser session 54.
If the waiting user 22 simply waits, the main control server 40 will eventually process the session request 50 of the waiting user 22 from a head of the wait queue 52 and assign a new browser session 54 to the waiting user 22 (see arrow 102). In response, the user 22 of the user device 28 is then able to access an un-trusted node 32 by providing input to the browser session 54 and receiving output from the browser session 54 (see arrows 108, 110 representing communications between the user device 22 and the computerized resource server 42 in FIG. 2). The browser session 54 communicates directly with the un-trusted node 32 to shield the user device 28 from exposure to malware (see arrows 112, 114 representing communications between the computerized resource server 42 and the un-trusted node 32 in FIG. 2).
However, if the waiting user 22 cancels the session request 50, the waiting user 22 sends a cancel command to the main control server 40 (represented by arrow 100). In turn, the main control server 40 deletes the session request 50 from the wait queue 52 and sends acknowledgement back to the waiting user 22 (represented by arrow 102).
Furthermore, if the waiting user 22 uses the permission to terminate assignment of an idle browser session 54 to another user 22, the waiting user 22 sends a terminate command to the main control server 40 (arrow 100). In response to the terminate command, the main control server 40 directs the computerized resource server 42 to close the idle browser session 54 assigned to the other user 22 and provide a new browser session 54 for assignment to a new user 22 (arrows 104, 106). The main control server 40 then updates: (i) the user database 76 to reflect use of the permission, (ii) the session database 76 to reflect termination of the earlier assignment and creation of a new assignment of the new browser session 54 to a new user 22, and (iii) the wait queue 52 to reflect the new assignment of the new browser session 54 to the new user 22. Accordingly, the wait queue 52 is now shorter and the resources of the terminated idle browser session 54 are put back to use more quickly. As a result, there is higher user satisfaction provided to the users 22 of the user devices 22 vis-à-vis a conventional system in which there is no termination alternative. Further details will now be provided with reference to FIG. 3.
FIG. 3 is an example screen shot 200 of a graphical user interface (GUI) 202 rendered by the user device 28 to a particular user 22 when a session request 50 sent to the main control server 40 from the user device 28 is placed in the wait queue 52. The graphical output is rendered on an electronic display portion of the user interface 62, and input is received through an input portion of the user interface 62 such as a mouse, a keyboard and/or a touch screen (also see FIG. 2).
The example screen shot 200 includes a pane 210 which outputs a current position of the particular user's session request 50 in the wait queue 52, and a pane 212 which outputs a total number of credit points which are available for use by the particular user 22. The example screen shot 200 further includes a table 214 of users 22 who are currently assigned to browser sessions 54 which have been idle for a predefined amount of time (e.g., at least 10 minutes), and a set of cells (or buttons) 216 some of which the particular user may be able to activate in order to un-assign an idle browser session 54. Each cell 216 provides an indication as to whether the waiting user 22 has permission to terminate assignment of a browser session 54.
The table 214 of users 22 currently assigned to idle browser sessions 54 includes a row 220 for each user 22, e.g., “John Doe”, “Jane Smith”, “Q. Public”, etc. Each row 220 includes termination history such as (i) a cell 230 containing the name of the respective user 22 (ii) a cell 232 containing the number of times the respective user 22 has terminated an idle browser session 54 assigned to the particular user 22, (iii) a cell 234 containing the number of times the respective user 22 can terminate an idle browser session 54 assigned to the particular user 22 in the future, (iv) a cell 236 containing the total number of times the respective user 22 has terminated idle browser sessions 54 of other users 22, (v) a cell 238 containing the total number of times the particular user 22 has terminated that respective user 22, (vi) a cell 240 containing the total number of times the particular user 22 can terminate that respective user 22 in the future, (vii) a cell 242 containing amount of time that the browser session 54 assigned to that respective user 22 has been idle, and (viii) a cell 144 containing a cost, in credit points, to terminate the idle browser session 54 of the respective user 22. In some arrangements, each row 220 includes additional cells containing additional data (e.g., status in an organization, etc.). In other arrangements, each row 220 includes fewer cells than those shown in FIG. 3.
If the cell 216 immediately adjacent a row 220 indicates that the particular user 22 cannot terminate the idle browser session 54 of that respective user 22, the particular user 22 does not have permission to terminate the idle browser session 54 of that respective user 22. In the example, the particular user 22 does not have permission to terminate the idle browser session 54 of “John Doe”.
However, if the cell 216 immediately adjacent a row 220 indicates that the particular user 22 can terminate the idle browser session 54 of that respective user, the particular user 22 has permission to terminate the idle browser session 54 of that respective user 22. In the example, the particular user 22 has permission to terminate the idle browser sessions 54 of “Jane Smith” and “Q. Public”.
During operation, the main control server 40 sends signals to the user device 22 updating the information in the panes 210, 212 and the table 214 in real time. In particular, when the main control server 40 removes a session request 50 from the head of the wait queue 52 and fulfills that session request 50, the main control server 40 updates the pane 212 to reflect the new current position of the particular user's session request 50 in the wait queue 52. Additionally, as time passes, the particular user 22 accumulates more credit points and the main control server 40 updates the pane 214 to reflect an increase in accumulated credit points. Furthermore, the main control server 40 updates the rows of the table 214 of users 22 who are currently assigned to idle browser sessions 54 since those users 22 may finish using the idle browser sessions 54 or be terminated by other users 22.
With the session access information for the particular user 22 displayed in the screen shot 200, suppose that the particular user 22 activates the cell 216 for “Jane Smith” to terminate the idle browser session 54 of “Jane Smith”. In response, the main control server 40 subtracts 5000 credit points from the particular user 22 and reflects that in the cell 212 (i.e., 5000 credit points is the cost of exercising that termination permission). Additionally, the main control server 40 terminates the idle browser session 54 of “Jane Smith” thus moving the particular user 22 forward in the wait queue 52, and updates its databases and the remaining portions of the GUI 202. In some arrangements, the main control server 40 provides a report notice to “Jane Smith” indicating that the particular user 22 terminated assignment of the idle browser session 54. In some arrangements, the main control server 40 is constructed and arranged to move the particular user 22 forward by multiple positions (e.g., two places) in the wait queue 52 as a further incentive to the particular user 22 to terminate idle browser sessions 54.
It should be understood that the above-described termination system may be configured in a variety of ways to make the user experience more enjoyable. For example, in some arrangements, the particular user 22 is allowed to terminate only a predefined maximum number of idle browser sessions 54 (e.g., one, two, three, etc.) for a single session request 50. In other arrangements, there is no maximum and the particular user 22 is allowed to terminate any number of idle browser sessions 54 as long as the particular user 22 has enough credit points (see the cell 212).
In some arrangements, the number of times the particular user 22 can terminate the idle browser session 54 of another user 22 increases incrementally each time the other user 22 terminates the idle browser session 54 of the particular user 22. Accordingly, even if the particular user 22 has enough credit points, the particular user 22 may be prohibited from terminating the idle browser session 54 of a certain other user 22 if that other user 22 has not terminated the idle browser session 54 of the particular user 22. However, once the other user 22 terminates a idle browser session 54 of the particular user 22, the particular user 22 is now able to terminate the idle browser session 54 of the other user 22 in the future.
In some arrangements, the users 22 of the trusted network 24 belong to a company and are grouped into individual organizations within the company. Such organizational/hierarchical information (i.e., org chart data) can be stored in and provided by the user database 76 (FIG. 2). In these arrangements, a user 22 may be prevented from receiving permission to terminate idle browser sessions 54 of users 22 that are outside that user's organization. Additionally, in some arrangements, executives of the company (who are users 22) may be excluded so that no users 22 receive permission to terminate the idle browser sessions 54 of the executive users 22.
In some arrangements, the cost to terminate the idle browser sessions 54 of each user 22 may vary (e.g., 2500 credit points, 5000 credit points, etc.) based on certain factors. Such factors affecting the cost of terminating an idle browser session 54 of a user 22 can include that user's status within the company, how frequently that user 22 terminates idle browser sessions 54 of other users 22, how frequently the idle browser sessions 54 of that user 22 have been terminated, and so on.
In some arrangements, credit points start accumulating as soon as the user 22 queues a session request 50 in the wait queue 52. In other arrangements, credit points start accumulating only after residing a predetermined amount of time in the wait queue 52 (e.g., one minute, two minutes, etc.). Further details will now be provided with reference to FIG. 4.
FIG. 4 shows example details of the wait queue 52 which is managed by the control circuit 74 of the main control server 40. As shown, the wait queue 52 includes multiple entries 300 containing session requests 50. The session request 50 at the head 302 of the wait queue 52 contains the session request 50 which is to be process next by the main control server 40 when the next browser session 54 becomes available.
In the example of FIG. 4, “Robert” is initially at the head 302 of the wait queue 52 and is thus the next user 22 scheduled to be assigned the next available browser session 54, followed by “Linda”, “Janet”, “Peter”, “Katie”, and so on. For simplicity, names are used in the example, but it should be understood that the entries 300 of the wait queue 52 can contain user identifiers, user device identifiers, timestamps, combinations thereof, etc.
While the users 22 wait, their credit points accumulate. Some users 22 may be perfectly content waiting and thus save their credit points for use in the future, i.e., “for a rainy day”. However, suppose that “Katie” decides to terminate an idle browser session 54 of the server assembly 30 (also see FIGS. 1 and 2). Accordingly, “Katie” activates a termination cell 216 on the GUI 202 of her user device 28 to terminate an idle browser session 54 (also see FIG. 3). In response, her user device 28 sends the main control server 40 a terminate command and the main control server 40 processes the terminate command by directing the computerized session server 42 (FIGS. 1 and 2) to terminate the selected idle browser session 54, reclaim the resources consumed by that idle browser session 54, and create a new browser session 54.
When the new browser session 54 is ready for assignment, the main control server 40 assigns the new browser session 54 to “Robert” and deletes the “Robert” session request 50 from the head 302 of the wait queue 52. Accordingly, the entry 300 containing “Linda” becomes the new head 302 of the wait queue 52 (see the single dashed arrows in FIG. 4).
In some arrangements, the user 22 that spent credit points to terminate an idle browser session 54 (i.e., “Katie”) is rewarded by moving up the session request 50 of that user 22 one or more additional positions. In the example of FIG. 4, “Linda” moves ahead simply by one position (i.e., the “Linda” session request 50 is now in the head entry 300). Additionally, “Janet” moves ahead simply by one position (i.e., the “Janet” session request 50 used to be third in the wait queue 52 but is now second in the wait queue 52). Furthermore, “Katie” moves ahead by two positions since “Katie” invoked her termination permission by swapping positions with “Peter” (i.e., the “Katie” session request 50 moves from the fifth position to the third position, and the “Peter” session request 50 remains in fourth in the wait queue 52).
It should be understood that since some waiting users 22 will tend invoke their permission to terminate idle browser sessions 54, the wait queue 52 in general will be shorter than a comparable wait queue that does not offer termination. Further details will now be provided with reference to FIG. 5.
FIG. 5 is a flowchart of a procedure 400 which is performed by circuitry of the electronic environment 20 to manage access to a limited number of computerized sessions 44. In the context of the above-described browser sessions 54 of a virtual machine environment, such a procedure 400 was performed primarily by the control circuit 74 of the main control server 40. However, it should be understood that parts or even all of the procedure 400 can be performed by other circuits (e.g., by the computerized resource server 42, by the user devices 28, in a distributed manner, etc.).
In step 402, the circuitry receives, from a waiting user, a session request 50 for a computerized session 44. In particular, the user 22 of a user device 28 requests access to a computerized session 44.
In step 404, the circuitry queues the session request 50 in a wait queue 52 in response to all of the limited number of computerized sessions 44 being currently assigned to other users 22. Here, there are more users 22 wanting access than there are available computerized sessions 44.
In step 406, while the session request 50 is queued in the wait queue 52, the circuitry provides permission to the waiting user 22 to un-assign a computerized session 44 which is currently assigned to another user 22. Such permission may be provided to the waiting user 22 under certain conditions such as when there are idle computerized sessions 44, when the waiting user 22 has accumulated enough credit points, etc. Along these lines, a list of idle computerized sessions 44 may be generated and the waiting user 22 may be prompted to terminate an idle computerized session 44 on the list.
As mentioned earlier, different users 22 may react differently when receiving such permission. In particular, the waiting user 22 may (i) patiently wait for a computerized session 44 to be assigned once resources become available (e.g., when another user 22 closes an existing computerized session 44), (ii) cancel the session request 50 and leave in hope of returning when there is an available computerized session 44, or (iii) use the provided permission to terminate an idle computerized session 44 in order to shorten the wait queue 52 and more quickly receive assignment of a computerized session 44.
As described above, improved techniques involve providing a user 22 with permission to terminate use of a computerized resource assigned to another user 22. Along these lines, all of a limited number of computerized sessions 44 may have been assigned to other users 22. In such a situation, a new user 22 attempting to access a computerized session 44 may be able to terminate assignment of a computerized session 44 to another user 22 under certain circumstances (e.g., when the computerized session 44 has been idle for a period of time). Such operation may provide a more satisfactory experience to waiting users 22 (e.g., users in a hurry are able to obtain quicker access). Additionally, such operation makes more efficient use of resources (e.g., the resources for the idle computerized session 44 may be reassigned to another user 22 more quickly).
While various embodiments of the invention have been particularly shown and described, it will be understood by those skilled in the art that various changes in form and details may be made therein without departing from the spirit and scope of the invention as defined by the appended claims.
For example, the computerized sessions 44 were described above as being virtual browser sessions 54 which allow users 22 to access un-trusted nodes 32 from a trusted network 24. It should be understood that the above-described techniques are suitable for managing access to other types of computerized sessions 44 as well. Examples include managing access to a limited number of online game sessions, remotely accessing cameras, managing positions in a reservation queue such as an electronic wait list of an airline, accessing a computerized processing engine and/or other limited resources and reservation services through a general web interface, and so on.
Additionally, it should be understood that the main control server 40 and the computerized resource server 42 of the server assembly 30 were shown as being separate machines. In other arrangements, the main control server 40 and the computerized resource server 42 are co-located in a single machine, or cloud distributed within the trusted network 24.
Furthermore, it should be understood that access to the server assembly 30 may be provided as a hosted service. For example, a corporation may hire a third-party to supply, operate and/or maintain all or portions of the server assembly 30. Such modifications and enhancements are intended to belong to various embodiments of the invention.

Claims (22)

What is claimed is:
1. In electronic circuitry, a method of managing access to a limited number of computerized sessions, the method comprising:
receiving, from a waiting user, a session request for a computerized session to be run on a server in a trusted network for interacting with an untrusted node outside the trusted network;
queuing the session request in a wait queue in response to all of the limited number of computerized sessions being currently assigned to other users, the method accumulating credit points for the waiting user for time spent by the waiting user waiting in the wait queue, the method allowing the waiting user to spend the waiting user's credit points to un-assign a computerized session which is currently assigned to another user if the waiting user has a sufficient number of credit points; and
while the session request is queued in the wait queue, providing permission to the waiting user to un-assign a computerized session which is currently assigned to another user;
wherein providing the permission to the waiting user to un-assign the computerized session which is currently assigned to another user includes generating a list of idle computerized sessions including a number of credit points needed to un-assign each idle computerized session, and prompting the waiting user to terminate an idle computerized session on the list of idle computerized sessions,
wherein the server runs a virtual machine platform that provides, as the limited number of computerized sessions, a limited number of virtual web interfaces running on virtual machines through which users are capable of accessing web sites outside a trusted network, the virtual machines operating on the server to provide destructible interfaces between the trusted network and nodes outside the trusted network and to protect user devices of the waiting users from malware arriving from outside the trusted network; and
wherein generating the list of idle computerized sessions includes identifying particular virtual web interfaces which have gone unused by users assigned to the particular virtual web interfaces for a predefined amount of time.
2. A method as in claim 1 wherein prompting the waiting user to terminate an idle computerized session on the list of idle computerized sessions includes:
supplying session access information to the waiting user, the session access information including a current position of the session request within the wait queue.
3. A method as in claim 2 wherein supplying the access information to the waiting user includes:
identifying multiple idle computerized sessions to the waiting user, the waiting user being permitted to terminate one of the multiple idle computerized sessions.
4. A method as in claim 3, further comprising:
receiving, from the waiting user, a terminate command to terminate assignment of a particular idle computerized session to another user, and
in response to the terminate command, terminating the assignment of the particular idle computerized session to the other user and decreasing the current number of credit points available to the waiting user.
5. A method as in claim 4, further comprising:
in response to termination of the assignment of the particular idle computerized session to the other user, changing the current position of the session request within the wait queue from an existing position to a new position.
6. A method as in claim 5 wherein the session request within the wait queue is the Xth session request in the wait queue immediately before changing the current position of the session request within the wait queue; and
wherein changing the current position of the session request in the wait queue includes adjusting the current position of the session request from being the Xth session request in the wait queue to being the (X-2)th session request in the wait queue.
7. A method as in claim 4, further comprising:
in response to termination of the assignment of the particular idle computerized session to the other user, sending a report message to the other user, the report message indicating that the waiting user terminated the assignment of the particular idle computerized session to the other user.
8. A method as in claim 4, further comprising:
in response to termination of the assignment of the particular idle computerized session to the other user, adjusting a termination history of the other user to record termination by the waiting user.
9. A method as in claim 4, further comprising:
in response to termination of the assignment of the particular idle computerized session to the other user, adjusting a termination history of the waiting user to record termination by the waiting user.
10. A method as in claim 3 wherein identifying the multiple idle computerized sessions to the waiting user includes:
identifying a first idle computerized session and a first credit point cost to terminate assignment of the first idle computerized session to a first other user, and
identifying a second idle computerized session and a second credit point cost to terminate assignment of the second idle computerized session to a second other user, the second credit point cost being different than the first credit point cost.
11. A method as in claim 10, further comprising:
prior identifying the multiple idle computerized sessions to the user, calculating, as the first credit point cost, a first termination price based on a termination history of the first other user and calculating, as the second credit point cost, a second termination price based on a termination history of the second other user.
12. A method as in claim 1 wherein prompting the waiting user to terminate an idle computerized session on the list of idle computerized sessions includes:
identifying an immune idle computerized session on the list of idle computerized sessions, the immune idle computerized session being immune from termination.
13. A method as in claim 1 wherein prompting the waiting user to terminate an idle computerized session on the list of idle computerized sessions includes:
displaying a table of assignment entries based on the list of idle computerized sessions, each assignment entry identifying (i) a respective user assigned an computerized sessions, (ii) a termination history of the respective user, (iii) an amount of time that the computerized session assigned to the respective user has been idle, and (iv) an indication whether the waiting user has permission to terminate assignment of the computerized session to the respective user.
14. A method as in claim 1 wherein providing permission to the waiting user to un-assign a computerized session which is currently assigned to another user includes displaying, on a graphical user interface to the waiting user, a current position of the waiting user in the wait queue, a total number of credit point which are available for use by the waiting user, an identification of a plurality of other users with computerized sessions which have been idle for a predefined amount of time, and a number of credit points needed to terminate each of the plurality of other users.
15. A method as in claim 14 wherein providing permission further includes displaying, on the graphical user interface, a number of times each of the plurality of other users has terminated a session of the waiting user.
16. A method as in claim 1 further including the virtual machine shredding the virtual web interface in response to detecting malware running in the virtual web interface to prevent the malware from reaching a user device inside the trusted network.
17. A method as in claim 1 wherein the method further includes a request for one of a browser session, a game session, and a remotely accessed camera session.
18. A method as in claim 1 wherein the method further includes a request for one of a session managing positions in a reservation queue, a session accessing a computerized processing engine, and a session on a reservation services system.
19. A client device, comprising:
a communications interface constructed and arranged to connect to a communications network;
a user interface; and
a controller coupled to the communications interface and the user interface, the controller being constructed and arranged to:
receive a command to obtain access to a computerized session to be run on a server in a trusted network for interacting with an untrusted node outside the trusted network from a user through the user interface,
after receiving the command, queue a session request in a wait queue on a server through the communications interface in response to all of a limited number of computerized sessions being currently assigned to other users, the controller accumulating credit points for the waiting user for time spent by the waiting user waiting in the wait queue, the controller allowing the waiting user to spend the accumulating credit points to un-assign a computerized session which is currently assigned to another user if the waiting user has a sufficient number of credit points; and
while the session request is queued in the wait queue, presenting permission to the waiting user through the user interface to un-assign a computerized session which is currently assigned to another user;
wherein the controller is constructed and arranged to provide the permission to the waiting user to un-assign the computerized session which is currently assigned to another user includes generating a list of idle computerized sessions and prompt the waiting user to terminate an idle computerized session on the list of idle computerized sessions, and
wherein the server runs a virtual machine platform that provides, as the limited number of computerized sessions, a limited number of virtual web interfaces running on virtual machines through which users are capable of accessing web sites outside a trusted network, the virtual machines operating on the server to provide destructible interfaces between the trusted network and nodes outside the trusted network and to protect user devices of the waiting users from malware arriving from outside the trusted network; and
wherein generating the list of idle computerized sessions includes identifying particular virtual web interfaces which have gone unused by users assigned to the particular virtual web interfaces for a predefined amount of time.
20. A computer program product having a non-transitory computer readable medium which stores a set of instructions for managing access to a limited number of computerized sessions, the set of instructions causing a client device to perform a method of:
receiving a command to obtain access to a computerized session to be run on a server in a trusted network for interacting with an untrusted node outside the trusted network from a user;
after receiving the command, queuing a session request in a wait queue on a server in response to all of a limited number of computerized sessions being currently assigned to other users, the waiting user accumulating credit points for time spent waiting in the wait queue; and
while the session request is queued in the wait queue, presenting permission to the waiting user to un-assign a computerized session which is currently assigned to another user;
wherein further providing the permission to the waiting user to un-assign the computerized session which is currently assigned to another user includes generating a list of idle computerized sessions including a number of credit points needed to un-assign each idle computerized session, and prompting the waiting user to terminate an idle computerized session on the list of idle computerized sessions, and
wherein the server runs a virtual machine platform that provides, as the limited number of computerized sessions, a limited number of virtual web interfaces running on virtual machines through which users are capable of accessing web sites outside a trusted network, the virtual machines operating on the server to provide destructible interfaces between the trusted network and nodes outside the trusted network and to protect user devices of the waiting users from malware arriving from outside the trusted network; and
wherein generating the list of idle computerized sessions includes identifying particular virtual web interfaces which have gone unused by users assigned to the particular virtual web interfaces for a predefined amount of time.
21. A server device, comprising:
a communications interface constructed and arranged to connect to a communications network;
a wait queue; and
a control circuit coupled to the communications interface and the wait queue, the control circuit being constructed and arranged to:
receive, from a waiting user, a session request for a computerized session,
queuing the session request in the wait queue in response to all of the limited number of computerized sessions being currently assigned to other users, and
while the session request is queued in the wait queue, providing permission to the waiting user to un-assign a computerized session which is currently assigned to another user;
wherein further providing the permission to the waiting user to un-assign the computerized session which is currently assigned to another user further includes generating a list of idle computerized sessions and prompting the waiting user to terminate an idle computerized session on the list of idle computerized sessions based upon the waiting user having accumulating sufficient credit points for time spent waiting in the wait queue, both for time spent waiting for the current computerized session and for time spent waiting for any previous computerized sessions, to un-assign a computerized session which is currently assigned to another user, and
wherein the server runs a virtual machine platform that provides, as the limited number of computerized sessions, a limited number of virtual web interfaces running on virtual machines through which users are capable of accessing web sites outside a trusted network, the virtual machines operating on the server to provide destructible interfaces between the trusted network and nodes outside the trusted network and to protect user devices of the waiting users from malware arriving from outside the trusted network; and
wherein generating the list of idle computerized sessions includes identifying particular virtual web interfaces which have gone unused by users assigned to the particular virtual web interfaces for a predefined amount of time.
22. A computer program product having a non-transitory computer readable medium which stores a set of instructions for managing access to a limited number of computerized sessions, the set of instructions causing a sever device to perform a method of:
receiving, from a waiting user, a session request for a computerized session to be run on the server in a trusted network for interacting with an untrusted node outside the trusted network;
queuing the session request in a wait queue in response to all of the limited number of computerized sessions being currently assigned to other users, the method accumulating credit points for the waiting user for time spent by the waiting user in the wait queue, the method allowing the waiting user to spend the waiting user's credit points to un-assign a computerized session which is currently assigned to another user if the waiting user has a sufficient number of credit points for that specific idle computerized session; and
while the session request is queued in the wait queue, providing permission to the waiting user to un-assign a computerized session which is currently assigned to another user;
wherein providing permission to the waiting user to un-assign the computerized session which is currently assigned to another user includes generating a list of idle computerized sessions and prompting the waiting user to terminate an idle computerized session on the list of idle computerized sessions, and
between the trusted network and nodes outside the trusted network and to protect user devices of the waiting users from malware arriving from outside the trusted network; and
wherein generating the list of idle computerized sessions includes identifying particular virtual web interfaces which have gone unused by users assigned to the particular virtual web interfaces for a predefined amount of time.
US13/337,442 2011-12-27 2011-12-27 Managing access to a limited number of computerized sessions Active 2033-02-13 US9154556B1 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
US13/337,442 US9154556B1 (en) 2011-12-27 2011-12-27 Managing access to a limited number of computerized sessions

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
US13/337,442 US9154556B1 (en) 2011-12-27 2011-12-27 Managing access to a limited number of computerized sessions

Publications (1)

Publication Number Publication Date
US9154556B1 true US9154556B1 (en) 2015-10-06

Family

ID=54203956

Family Applications (1)

Application Number Title Priority Date Filing Date
US13/337,442 Active 2033-02-13 US9154556B1 (en) 2011-12-27 2011-12-27 Managing access to a limited number of computerized sessions

Country Status (1)

Country Link
US (1) US9154556B1 (en)

Cited By (149)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20140165060A1 (en) * 2012-12-12 2014-06-12 Vmware, Inc. Methods and apparatus to reclaim resources in virtual computing environments
US20140228129A1 (en) * 2012-11-27 2014-08-14 Tencent Technology (Shenzhen) Company Limited Server data update method and system
US9985980B1 (en) 2015-12-15 2018-05-29 EMC IP Holding Company LLC Entropy-based beaconing detection
US10678945B2 (en) 2016-06-10 2020-06-09 OneTrust, LLC Consent receipt management systems and related methods
US10685140B2 (en) 2016-06-10 2020-06-16 OneTrust, LLC Consent receipt management systems and related methods
US10692033B2 (en) 2016-06-10 2020-06-23 OneTrust, LLC Data processing systems for identifying, assessing, and remediating data processing risks using data modeling techniques
US10706176B2 (en) 2016-06-10 2020-07-07 OneTrust, LLC Data-processing consent refresh, re-prompt, and recapture systems and related methods
US10706174B2 (en) 2016-06-10 2020-07-07 OneTrust, LLC Data processing systems for prioritizing data subject access requests for fulfillment and related methods
US10706447B2 (en) 2016-04-01 2020-07-07 OneTrust, LLC Data processing systems and communication systems and methods for the efficient generation of privacy risk assessments
US10706131B2 (en) 2016-06-10 2020-07-07 OneTrust, LLC Data processing systems and methods for efficiently assessing the risk of privacy campaigns
US10705801B2 (en) 2016-06-10 2020-07-07 OneTrust, LLC Data processing systems for identity validation of data subject access requests and related methods
US10708305B2 (en) 2016-06-10 2020-07-07 OneTrust, LLC Automated data processing systems and methods for automatically processing requests for privacy-related information
US10706379B2 (en) 2016-06-10 2020-07-07 OneTrust, LLC Data processing systems for automatic preparation for remediation and related methods
US10713387B2 (en) 2016-06-10 2020-07-14 OneTrust, LLC Consent conversion optimization systems and related methods
US10726158B2 (en) 2016-06-10 2020-07-28 OneTrust, LLC Consent receipt management and automated process blocking systems and related methods
US10740487B2 (en) 2016-06-10 2020-08-11 OneTrust, LLC Data processing systems and methods for populating and maintaining a centralized database of personal data
US10754981B2 (en) 2016-06-10 2020-08-25 OneTrust, LLC Data processing systems for fulfilling data subject access requests and related methods
US10762236B2 (en) 2016-06-10 2020-09-01 OneTrust, LLC Data processing user interface monitoring systems and related methods
US10769303B2 (en) 2016-06-10 2020-09-08 OneTrust, LLC Data processing systems for central consent repository and related methods
US10769301B2 (en) 2016-06-10 2020-09-08 OneTrust, LLC Data processing systems for webform crawling to map processing activities and related methods
US10769302B2 (en) 2016-06-10 2020-09-08 OneTrust, LLC Consent receipt management systems and related methods
US10776515B2 (en) 2016-06-10 2020-09-15 OneTrust, LLC Data processing systems for fulfilling data subject access requests and related methods
US10776517B2 (en) 2016-06-10 2020-09-15 OneTrust, LLC Data processing systems for calculating and communicating cost of fulfilling data subject access requests and related methods
US10776518B2 (en) * 2016-06-10 2020-09-15 OneTrust, LLC Consent receipt management systems and related methods
US10776514B2 (en) 2016-06-10 2020-09-15 OneTrust, LLC Data processing systems for the identification and deletion of personal data in computer systems
US10783256B2 (en) 2016-06-10 2020-09-22 OneTrust, LLC Data processing systems for data transfer risk identification and related methods
US10791150B2 (en) 2016-06-10 2020-09-29 OneTrust, LLC Data processing and scanning systems for generating and populating a data inventory
US10796020B2 (en) 2016-06-10 2020-10-06 OneTrust, LLC Consent receipt management systems and related methods
US10798133B2 (en) 2016-06-10 2020-10-06 OneTrust, LLC Data processing systems for data-transfer risk identification, cross-border visualization generation, and related methods
US10796260B2 (en) 2016-06-10 2020-10-06 OneTrust, LLC Privacy management systems and methods
US10803198B2 (en) 2016-06-10 2020-10-13 OneTrust, LLC Data processing systems for use in automatically generating, populating, and submitting data subject access requests
US10803199B2 (en) 2016-06-10 2020-10-13 OneTrust, LLC Data processing and communications systems and methods for the efficient implementation of privacy by design
US10803097B2 (en) 2016-06-10 2020-10-13 OneTrust, LLC Data processing systems for generating and populating a data inventory
US10803200B2 (en) 2016-06-10 2020-10-13 OneTrust, LLC Data processing systems for processing and managing data subject access in a distributed environment
US10805354B2 (en) 2016-06-10 2020-10-13 OneTrust, LLC Data processing systems and methods for performing privacy assessments and monitoring of new versions of computer code for privacy compliance
US10803202B2 (en) 2018-09-07 2020-10-13 OneTrust, LLC Data processing systems for orphaned data identification and deletion and related methods
US10839102B2 (en) 2016-06-10 2020-11-17 OneTrust, LLC Data processing systems for identifying and modifying processes that are subject to data subject access requests
US10846433B2 (en) 2016-06-10 2020-11-24 OneTrust, LLC Data processing consent management systems and related methods
US10848523B2 (en) 2016-06-10 2020-11-24 OneTrust, LLC Data processing systems for data-transfer risk identification, cross-border visualization generation, and related methods
US10846261B2 (en) 2016-06-10 2020-11-24 OneTrust, LLC Data processing systems for processing data subject access requests
US10853501B2 (en) 2016-06-10 2020-12-01 OneTrust, LLC Data processing and scanning systems for assessing vendor risk
US10867007B2 (en) 2016-06-10 2020-12-15 OneTrust, LLC Data processing systems for fulfilling data subject access requests and related methods
US10867072B2 (en) 2016-06-10 2020-12-15 OneTrust, LLC Data processing systems for measuring privacy maturity within an organization
US10873606B2 (en) 2016-06-10 2020-12-22 OneTrust, LLC Data processing systems for data-transfer risk identification, cross-border visualization generation, and related methods
US10878127B2 (en) 2016-06-10 2020-12-29 OneTrust, LLC Data subject access request processing systems and related methods
US10885485B2 (en) 2016-06-10 2021-01-05 OneTrust, LLC Privacy management systems and methods
US10896394B2 (en) 2016-06-10 2021-01-19 OneTrust, LLC Privacy management systems and methods
US10909265B2 (en) 2016-06-10 2021-02-02 OneTrust, LLC Application privacy scanning systems and related methods
US10909488B2 (en) 2016-06-10 2021-02-02 OneTrust, LLC Data processing systems for assessing readiness for responding to privacy-related incidents
US10929559B2 (en) 2016-06-10 2021-02-23 OneTrust, LLC Data processing systems for data testing to confirm data deletion and related methods
US10944725B2 (en) 2016-06-10 2021-03-09 OneTrust, LLC Data processing systems and methods for using a data model to select a target data asset in a data migration
US10949170B2 (en) 2016-06-10 2021-03-16 OneTrust, LLC Data processing systems for integration of consumer feedback with data subject access requests and related methods
US10949565B2 (en) 2016-06-10 2021-03-16 OneTrust, LLC Data processing systems for generating and populating a data inventory
US10970675B2 (en) 2016-06-10 2021-04-06 OneTrust, LLC Data processing systems for generating and populating a data inventory
US10970371B2 (en) 2016-06-10 2021-04-06 OneTrust, LLC Consent receipt management systems and related methods
US10997315B2 (en) 2016-06-10 2021-05-04 OneTrust, LLC Data processing systems for fulfilling data subject access requests and related methods
US10997318B2 (en) 2016-06-10 2021-05-04 OneTrust, LLC Data processing systems for generating and populating a data inventory for processing data access requests
US11004125B2 (en) 2016-04-01 2021-05-11 OneTrust, LLC Data processing systems and methods for integrating privacy information management systems with data loss prevention tools or other tools for privacy design
US11025675B2 (en) 2016-06-10 2021-06-01 OneTrust, LLC Data processing systems and methods for performing privacy assessments and monitoring of new versions of computer code for privacy compliance
US11023616B2 (en) 2016-06-10 2021-06-01 OneTrust, LLC Data processing systems for identifying, assessing, and remediating data processing risks using data modeling techniques
US11023842B2 (en) 2016-06-10 2021-06-01 OneTrust, LLC Data processing systems and methods for bundled privacy policies
US11030274B2 (en) 2016-06-10 2021-06-08 OneTrust, LLC Data processing user interface monitoring systems and related methods
US11038925B2 (en) 2016-06-10 2021-06-15 OneTrust, LLC Data processing systems for data-transfer risk identification, cross-border visualization generation, and related methods
US11057356B2 (en) 2016-06-10 2021-07-06 OneTrust, LLC Automated data processing systems and methods for automatically processing data subject access requests using a chatbot
US11074367B2 (en) 2016-06-10 2021-07-27 OneTrust, LLC Data processing systems for identity validation for consumer rights requests and related methods
US11087260B2 (en) 2016-06-10 2021-08-10 OneTrust, LLC Data processing systems and methods for customizing privacy training
US11100444B2 (en) 2016-06-10 2021-08-24 OneTrust, LLC Data processing systems and methods for providing training in a vendor procurement process
US11134086B2 (en) 2016-06-10 2021-09-28 OneTrust, LLC Consent conversion optimization systems and related methods
US11138299B2 (en) 2016-06-10 2021-10-05 OneTrust, LLC Data processing and scanning systems for assessing vendor risk
US11138242B2 (en) 2016-06-10 2021-10-05 OneTrust, LLC Data processing systems and methods for automatically detecting and documenting privacy-related aspects of computer software
US11144675B2 (en) 2018-09-07 2021-10-12 OneTrust, LLC Data processing systems and methods for automatically protecting sensitive data within privacy management systems
US11144622B2 (en) 2016-06-10 2021-10-12 OneTrust, LLC Privacy management systems and methods
US11146566B2 (en) 2016-06-10 2021-10-12 OneTrust, LLC Data processing systems for fulfilling data subject access requests and related methods
US11151233B2 (en) 2016-06-10 2021-10-19 OneTrust, LLC Data processing and scanning systems for assessing vendor risk
US11157600B2 (en) 2016-06-10 2021-10-26 OneTrust, LLC Data processing and scanning systems for assessing vendor risk
US11188615B2 (en) 2016-06-10 2021-11-30 OneTrust, LLC Data processing consent capture systems and related methods
US11188862B2 (en) 2016-06-10 2021-11-30 OneTrust, LLC Privacy management systems and methods
US11200341B2 (en) 2016-06-10 2021-12-14 OneTrust, LLC Consent receipt management systems and related methods
US11210420B2 (en) 2016-06-10 2021-12-28 OneTrust, LLC Data subject access request processing systems and related methods
US11222142B2 (en) 2016-06-10 2022-01-11 OneTrust, LLC Data processing systems for validating authorization for personal data collection, storage, and processing
US11222139B2 (en) 2016-06-10 2022-01-11 OneTrust, LLC Data processing systems and methods for automatic discovery and assessment of mobile software development kits
US11222309B2 (en) 2016-06-10 2022-01-11 OneTrust, LLC Data processing systems for generating and populating a data inventory
US11228620B2 (en) 2016-06-10 2022-01-18 OneTrust, LLC Data processing systems for data-transfer risk identification, cross-border visualization generation, and related methods
US11227247B2 (en) 2016-06-10 2022-01-18 OneTrust, LLC Data processing systems and methods for bundled privacy policies
US11238390B2 (en) 2016-06-10 2022-02-01 OneTrust, LLC Privacy management systems and methods
US11244367B2 (en) 2016-04-01 2022-02-08 OneTrust, LLC Data processing systems and methods for integrating privacy information management systems with data loss prevention tools or other tools for privacy design
US11277448B2 (en) 2016-06-10 2022-03-15 OneTrust, LLC Data processing systems for data-transfer risk identification, cross-border visualization generation, and related methods
US11295316B2 (en) 2016-06-10 2022-04-05 OneTrust, LLC Data processing systems for identity validation for consumer rights requests and related methods
US11294939B2 (en) 2016-06-10 2022-04-05 OneTrust, LLC Data processing systems and methods for automatically detecting and documenting privacy-related aspects of computer software
US11301796B2 (en) 2016-06-10 2022-04-12 OneTrust, LLC Data processing systems and methods for customizing privacy training
US11328092B2 (en) 2016-06-10 2022-05-10 OneTrust, LLC Data processing systems for processing and managing data subject access in a distributed environment
US11336697B2 (en) 2016-06-10 2022-05-17 OneTrust, LLC Data processing systems for data-transfer risk identification, cross-border visualization generation, and related methods
US11341447B2 (en) 2016-06-10 2022-05-24 OneTrust, LLC Privacy management systems and methods
US11343284B2 (en) 2016-06-10 2022-05-24 OneTrust, LLC Data processing systems and methods for performing privacy assessments and monitoring of new versions of computer code for privacy compliance
US11354435B2 (en) 2016-06-10 2022-06-07 OneTrust, LLC Data processing systems for data testing to confirm data deletion and related methods
US11354434B2 (en) 2016-06-10 2022-06-07 OneTrust, LLC Data processing systems for verification of consent and notice processing and related methods
US11366786B2 (en) 2016-06-10 2022-06-21 OneTrust, LLC Data processing systems for processing data subject access requests
US11366909B2 (en) 2016-06-10 2022-06-21 OneTrust, LLC Data processing and scanning systems for assessing vendor risk
US11373007B2 (en) 2017-06-16 2022-06-28 OneTrust, LLC Data processing systems for identifying whether cookies contain personally identifying information
US11392720B2 (en) 2016-06-10 2022-07-19 OneTrust, LLC Data processing systems for verification of consent and notice processing and related methods
US11397819B2 (en) 2020-11-06 2022-07-26 OneTrust, LLC Systems and methods for identifying data processing activities based on data discovery results
US11403377B2 (en) 2016-06-10 2022-08-02 OneTrust, LLC Privacy management systems and methods
US11410106B2 (en) 2016-06-10 2022-08-09 OneTrust, LLC Privacy management systems and methods
US11416109B2 (en) 2016-06-10 2022-08-16 OneTrust, LLC Automated data processing systems and methods for automatically processing data subject access requests using a chatbot
US11416798B2 (en) 2016-06-10 2022-08-16 OneTrust, LLC Data processing systems and methods for providing training in a vendor procurement process
US11418492B2 (en) 2016-06-10 2022-08-16 OneTrust, LLC Data processing systems and methods for using a data model to select a target data asset in a data migration
US11416589B2 (en) 2016-06-10 2022-08-16 OneTrust, LLC Data processing and scanning systems for assessing vendor risk
US11416590B2 (en) 2016-06-10 2022-08-16 OneTrust, LLC Data processing and scanning systems for assessing vendor risk
US11436373B2 (en) 2020-09-15 2022-09-06 OneTrust, LLC Data processing systems and methods for detecting tools for the automatic blocking of consent requests
US11438426B1 (en) * 2021-04-28 2022-09-06 Auryc, Inc. Systems and methods for intelligent session recording
US11438386B2 (en) 2016-06-10 2022-09-06 OneTrust, LLC Data processing systems for data-transfer risk identification, cross-border visualization generation, and related methods
US11444976B2 (en) 2020-07-28 2022-09-13 OneTrust, LLC Systems and methods for automatically blocking the use of tracking tools
US11442906B2 (en) 2021-02-04 2022-09-13 OneTrust, LLC Managing custom attributes for domain objects defined within microservices
US11461500B2 (en) 2016-06-10 2022-10-04 OneTrust, LLC Data processing systems for cookie compliance testing with website scanning and related methods
US11475165B2 (en) 2020-08-06 2022-10-18 OneTrust, LLC Data processing systems and methods for automatically redacting unstructured data from a data subject access request
US11475136B2 (en) 2016-06-10 2022-10-18 OneTrust, LLC Data processing systems for data transfer risk identification and related methods
US11481710B2 (en) 2016-06-10 2022-10-25 OneTrust, LLC Privacy management systems and methods
US11494515B2 (en) 2021-02-08 2022-11-08 OneTrust, LLC Data processing systems and methods for anonymizing data samples in classification analysis
US11520928B2 (en) 2016-06-10 2022-12-06 OneTrust, LLC Data processing systems for generating personal data receipts and related methods
US11526624B2 (en) 2020-09-21 2022-12-13 OneTrust, LLC Data processing systems and methods for automatically detecting target data transfers and target data processing
US11533315B2 (en) 2021-03-08 2022-12-20 OneTrust, LLC Data transfer discovery and analysis systems and related methods
US11544409B2 (en) 2018-09-07 2023-01-03 OneTrust, LLC Data processing systems and methods for automatically protecting sensitive data within privacy management systems
US11544667B2 (en) 2016-06-10 2023-01-03 OneTrust, LLC Data processing systems for generating and populating a data inventory
US11546661B2 (en) 2021-02-18 2023-01-03 OneTrust, LLC Selective redaction of media content
US11562078B2 (en) 2021-04-16 2023-01-24 OneTrust, LLC Assessing and managing computational risk involved with integrating third party computing functionality within a computing system
US11562097B2 (en) 2016-06-10 2023-01-24 OneTrust, LLC Data processing systems for central consent repository and related methods
US11586762B2 (en) 2016-06-10 2023-02-21 OneTrust, LLC Data processing systems and methods for auditing data request compliance
US11586700B2 (en) 2016-06-10 2023-02-21 OneTrust, LLC Data processing systems and methods for automatically blocking the use of tracking tools
US11601464B2 (en) 2021-02-10 2023-03-07 OneTrust, LLC Systems and methods for mitigating risks of third-party computing system functionality integration into a first-party computing system
US11620142B1 (en) 2022-06-03 2023-04-04 OneTrust, LLC Generating and customizing user interfaces for demonstrating functions of interactive user environments
US11625502B2 (en) 2016-06-10 2023-04-11 OneTrust, LLC Data processing systems for identifying and modifying processes that are subject to data subject access requests
US11636171B2 (en) 2016-06-10 2023-04-25 OneTrust, LLC Data processing user interface monitoring systems and related methods
US11651106B2 (en) 2016-06-10 2023-05-16 OneTrust, LLC Data processing systems for fulfilling data subject access requests and related methods
US11651402B2 (en) 2016-04-01 2023-05-16 OneTrust, LLC Data processing systems and communication systems and methods for the efficient generation of risk assessments
US11651104B2 (en) 2016-06-10 2023-05-16 OneTrust, LLC Consent receipt management systems and related methods
US11675929B2 (en) 2016-06-10 2023-06-13 OneTrust, LLC Data processing consent sharing systems and related methods
US11687528B2 (en) 2021-01-25 2023-06-27 OneTrust, LLC Systems and methods for discovery, classification, and indexing of data in a native computing system
US11727141B2 (en) 2016-06-10 2023-08-15 OneTrust, LLC Data processing systems and methods for synching privacy-related user consent across multiple computing devices
US11775348B2 (en) 2021-02-17 2023-10-03 OneTrust, LLC Managing custom workflows for domain objects defined within microservices
US11797528B2 (en) 2020-07-08 2023-10-24 OneTrust, LLC Systems and methods for targeted data discovery
US12045266B2 (en) 2016-06-10 2024-07-23 OneTrust, LLC Data processing systems for generating and populating a data inventory
US12052289B2 (en) 2016-06-10 2024-07-30 OneTrust, LLC Data processing systems for data-transfer risk identification, cross-border visualization generation, and related methods
US20240291893A1 (en) * 2023-02-23 2024-08-29 Cisco Technology, Inc. Secure access app connectors
US12118121B2 (en) 2016-06-10 2024-10-15 OneTrust, LLC Data subject access request processing systems and related methods
US12136055B2 (en) 2016-06-10 2024-11-05 OneTrust, LLC Data processing systems for identifying, assessing, and remediating data processing risks using data modeling techniques
US12153704B2 (en) 2021-08-05 2024-11-26 OneTrust, LLC Computing platform for facilitating data exchange among computing environments
US12265896B2 (en) 2020-10-05 2025-04-01 OneTrust, LLC Systems and methods for detecting prejudice bias in machine-learning models
US12299065B2 (en) 2016-06-10 2025-05-13 OneTrust, LLC Data processing systems and methods for dynamically determining data processing consent configurations
US12353405B2 (en) 2023-09-18 2025-07-08 OneTrust, LLC Systems and methods for targeted data discovery

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6707903B2 (en) 1999-12-15 2004-03-16 Avaya, Inc. Automated workflow method for assigning work items to resources
US20070165608A1 (en) * 2006-01-10 2007-07-19 Utbk, Inc. Systems and Methods to Prioritize a Queue
US20070219816A1 (en) * 2005-10-14 2007-09-20 Leviathan Entertainment, Llc System and Method of Prioritizing Items in a Queue
US7664125B1 (en) 2006-01-03 2010-02-16 Emc Corporation Indication forwarding in a distributed environment
US20100077118A1 (en) * 2005-04-29 2010-03-25 Steven Blackwell Virtual Media Systems, Methods and Devices
US8161274B2 (en) 2006-02-28 2012-04-17 Fujitsu Limited Command selection method and its apparatus

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6707903B2 (en) 1999-12-15 2004-03-16 Avaya, Inc. Automated workflow method for assigning work items to resources
US20100077118A1 (en) * 2005-04-29 2010-03-25 Steven Blackwell Virtual Media Systems, Methods and Devices
US20070219816A1 (en) * 2005-10-14 2007-09-20 Leviathan Entertainment, Llc System and Method of Prioritizing Items in a Queue
US7664125B1 (en) 2006-01-03 2010-02-16 Emc Corporation Indication forwarding in a distributed environment
US20070165608A1 (en) * 2006-01-10 2007-07-19 Utbk, Inc. Systems and Methods to Prioritize a Queue
US8161274B2 (en) 2006-02-28 2012-04-17 Fujitsu Limited Command selection method and its apparatus

Cited By (231)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20140228129A1 (en) * 2012-11-27 2014-08-14 Tencent Technology (Shenzhen) Company Limited Server data update method and system
US9529613B2 (en) * 2012-12-12 2016-12-27 Vmware, Inc. Methods and apparatus to reclaim resources in virtual computing environments
US9851989B2 (en) 2012-12-12 2017-12-26 Vmware, Inc. Methods and apparatus to manage virtual machines
US20140165060A1 (en) * 2012-12-12 2014-06-12 Vmware, Inc. Methods and apparatus to reclaim resources in virtual computing environments
US9985980B1 (en) 2015-12-15 2018-05-29 EMC IP Holding Company LLC Entropy-based beaconing detection
US10853859B2 (en) 2016-04-01 2020-12-01 OneTrust, LLC Data processing systems and methods for operationalizing privacy compliance and assessing the risk of various respective privacy campaigns
US12288233B2 (en) 2016-04-01 2025-04-29 OneTrust, LLC Data processing systems and methods for integrating privacy information management systems with data loss prevention tools or other tools for privacy design
US11651402B2 (en) 2016-04-01 2023-05-16 OneTrust, LLC Data processing systems and communication systems and methods for the efficient generation of risk assessments
US11244367B2 (en) 2016-04-01 2022-02-08 OneTrust, LLC Data processing systems and methods for integrating privacy information management systems with data loss prevention tools or other tools for privacy design
US11004125B2 (en) 2016-04-01 2021-05-11 OneTrust, LLC Data processing systems and methods for integrating privacy information management systems with data loss prevention tools or other tools for privacy design
US10706447B2 (en) 2016-04-01 2020-07-07 OneTrust, LLC Data processing systems and communication systems and methods for the efficient generation of privacy risk assessments
US10956952B2 (en) 2016-04-01 2021-03-23 OneTrust, LLC Data processing systems and communication systems and methods for the efficient generation of privacy risk assessments
US11240273B2 (en) 2016-06-10 2022-02-01 OneTrust, LLC Data processing and scanning systems for generating and populating a data inventory
US11343284B2 (en) 2016-06-10 2022-05-24 OneTrust, LLC Data processing systems and methods for performing privacy assessments and monitoring of new versions of computer code for privacy compliance
US10706379B2 (en) 2016-06-10 2020-07-07 OneTrust, LLC Data processing systems for automatic preparation for remediation and related methods
US10713387B2 (en) 2016-06-10 2020-07-14 OneTrust, LLC Consent conversion optimization systems and related methods
US11294939B2 (en) 2016-06-10 2022-04-05 OneTrust, LLC Data processing systems and methods for automatically detecting and documenting privacy-related aspects of computer software
US10740487B2 (en) 2016-06-10 2020-08-11 OneTrust, LLC Data processing systems and methods for populating and maintaining a centralized database of personal data
US10754981B2 (en) 2016-06-10 2020-08-25 OneTrust, LLC Data processing systems for fulfilling data subject access requests and related methods
US10762236B2 (en) 2016-06-10 2020-09-01 OneTrust, LLC Data processing user interface monitoring systems and related methods
US10769303B2 (en) 2016-06-10 2020-09-08 OneTrust, LLC Data processing systems for central consent repository and related methods
US10769301B2 (en) 2016-06-10 2020-09-08 OneTrust, LLC Data processing systems for webform crawling to map processing activities and related methods
US10769302B2 (en) 2016-06-10 2020-09-08 OneTrust, LLC Consent receipt management systems and related methods
US10776515B2 (en) 2016-06-10 2020-09-15 OneTrust, LLC Data processing systems for fulfilling data subject access requests and related methods
US10776517B2 (en) 2016-06-10 2020-09-15 OneTrust, LLC Data processing systems for calculating and communicating cost of fulfilling data subject access requests and related methods
US10776518B2 (en) * 2016-06-10 2020-09-15 OneTrust, LLC Consent receipt management systems and related methods
US10776514B2 (en) 2016-06-10 2020-09-15 OneTrust, LLC Data processing systems for the identification and deletion of personal data in computer systems
US10783256B2 (en) 2016-06-10 2020-09-22 OneTrust, LLC Data processing systems for data transfer risk identification and related methods
US10791150B2 (en) 2016-06-10 2020-09-29 OneTrust, LLC Data processing and scanning systems for generating and populating a data inventory
US10796020B2 (en) 2016-06-10 2020-10-06 OneTrust, LLC Consent receipt management systems and related methods
US10798133B2 (en) 2016-06-10 2020-10-06 OneTrust, LLC Data processing systems for data-transfer risk identification, cross-border visualization generation, and related methods
US10796260B2 (en) 2016-06-10 2020-10-06 OneTrust, LLC Privacy management systems and methods
US10803198B2 (en) 2016-06-10 2020-10-13 OneTrust, LLC Data processing systems for use in automatically generating, populating, and submitting data subject access requests
US10803199B2 (en) 2016-06-10 2020-10-13 OneTrust, LLC Data processing and communications systems and methods for the efficient implementation of privacy by design
US10803097B2 (en) 2016-06-10 2020-10-13 OneTrust, LLC Data processing systems for generating and populating a data inventory
US10803200B2 (en) 2016-06-10 2020-10-13 OneTrust, LLC Data processing systems for processing and managing data subject access in a distributed environment
US10805354B2 (en) 2016-06-10 2020-10-13 OneTrust, LLC Data processing systems and methods for performing privacy assessments and monitoring of new versions of computer code for privacy compliance
US12299065B2 (en) 2016-06-10 2025-05-13 OneTrust, LLC Data processing systems and methods for dynamically determining data processing consent configurations
US10839102B2 (en) 2016-06-10 2020-11-17 OneTrust, LLC Data processing systems for identifying and modifying processes that are subject to data subject access requests
US10846433B2 (en) 2016-06-10 2020-11-24 OneTrust, LLC Data processing consent management systems and related methods
US10848523B2 (en) 2016-06-10 2020-11-24 OneTrust, LLC Data processing systems for data-transfer risk identification, cross-border visualization generation, and related methods
US10846261B2 (en) 2016-06-10 2020-11-24 OneTrust, LLC Data processing systems for processing data subject access requests
US10853501B2 (en) 2016-06-10 2020-12-01 OneTrust, LLC Data processing and scanning systems for assessing vendor risk
US10705801B2 (en) 2016-06-10 2020-07-07 OneTrust, LLC Data processing systems for identity validation of data subject access requests and related methods
US10867007B2 (en) 2016-06-10 2020-12-15 OneTrust, LLC Data processing systems for fulfilling data subject access requests and related methods
US10867072B2 (en) 2016-06-10 2020-12-15 OneTrust, LLC Data processing systems for measuring privacy maturity within an organization
US10873606B2 (en) 2016-06-10 2020-12-22 OneTrust, LLC Data processing systems for data-transfer risk identification, cross-border visualization generation, and related methods
US10878127B2 (en) 2016-06-10 2020-12-29 OneTrust, LLC Data subject access request processing systems and related methods
US10885485B2 (en) 2016-06-10 2021-01-05 OneTrust, LLC Privacy management systems and methods
US10896394B2 (en) 2016-06-10 2021-01-19 OneTrust, LLC Privacy management systems and methods
US10909265B2 (en) 2016-06-10 2021-02-02 OneTrust, LLC Application privacy scanning systems and related methods
US10909488B2 (en) 2016-06-10 2021-02-02 OneTrust, LLC Data processing systems for assessing readiness for responding to privacy-related incidents
US10929559B2 (en) 2016-06-10 2021-02-23 OneTrust, LLC Data processing systems for data testing to confirm data deletion and related methods
US10944725B2 (en) 2016-06-10 2021-03-09 OneTrust, LLC Data processing systems and methods for using a data model to select a target data asset in a data migration
US10949170B2 (en) 2016-06-10 2021-03-16 OneTrust, LLC Data processing systems for integration of consumer feedback with data subject access requests and related methods
US10949544B2 (en) 2016-06-10 2021-03-16 OneTrust, LLC Data processing systems for data transfer risk identification and related methods
US10949567B2 (en) 2016-06-10 2021-03-16 OneTrust, LLC Data processing systems for fulfilling data subject access requests and related methods
US10949565B2 (en) 2016-06-10 2021-03-16 OneTrust, LLC Data processing systems for generating and populating a data inventory
US10706131B2 (en) 2016-06-10 2020-07-07 OneTrust, LLC Data processing systems and methods for efficiently assessing the risk of privacy campaigns
US10678945B2 (en) 2016-06-10 2020-06-09 OneTrust, LLC Consent receipt management systems and related methods
US10970675B2 (en) 2016-06-10 2021-04-06 OneTrust, LLC Data processing systems for generating and populating a data inventory
US10972509B2 (en) 2016-06-10 2021-04-06 OneTrust, LLC Data processing and scanning systems for generating and populating a data inventory
US10970371B2 (en) 2016-06-10 2021-04-06 OneTrust, LLC Consent receipt management systems and related methods
US10984132B2 (en) 2016-06-10 2021-04-20 OneTrust, LLC Data processing systems and methods for populating and maintaining a centralized database of personal data
US10997315B2 (en) 2016-06-10 2021-05-04 OneTrust, LLC Data processing systems for fulfilling data subject access requests and related methods
US10997318B2 (en) 2016-06-10 2021-05-04 OneTrust, LLC Data processing systems for generating and populating a data inventory for processing data access requests
US10997542B2 (en) 2016-06-10 2021-05-04 OneTrust, LLC Privacy management systems and methods
US10706174B2 (en) 2016-06-10 2020-07-07 OneTrust, LLC Data processing systems for prioritizing data subject access requests for fulfillment and related methods
US11025675B2 (en) 2016-06-10 2021-06-01 OneTrust, LLC Data processing systems and methods for performing privacy assessments and monitoring of new versions of computer code for privacy compliance
US11023616B2 (en) 2016-06-10 2021-06-01 OneTrust, LLC Data processing systems for identifying, assessing, and remediating data processing risks using data modeling techniques
US11023842B2 (en) 2016-06-10 2021-06-01 OneTrust, LLC Data processing systems and methods for bundled privacy policies
US11030563B2 (en) 2016-06-10 2021-06-08 OneTrust, LLC Privacy management systems and methods
US11030327B2 (en) 2016-06-10 2021-06-08 OneTrust, LLC Data processing and scanning systems for assessing vendor risk
US11030274B2 (en) 2016-06-10 2021-06-08 OneTrust, LLC Data processing user interface monitoring systems and related methods
US11038925B2 (en) 2016-06-10 2021-06-15 OneTrust, LLC Data processing systems for data-transfer risk identification, cross-border visualization generation, and related methods
US11036882B2 (en) 2016-06-10 2021-06-15 OneTrust, LLC Data processing systems for processing and managing data subject access in a distributed environment
US11036674B2 (en) 2016-06-10 2021-06-15 OneTrust, LLC Data processing systems for processing data subject access requests
US11036771B2 (en) 2016-06-10 2021-06-15 OneTrust, LLC Data processing systems for generating and populating a data inventory
US11057356B2 (en) 2016-06-10 2021-07-06 OneTrust, LLC Automated data processing systems and methods for automatically processing data subject access requests using a chatbot
US11062051B2 (en) 2016-06-10 2021-07-13 OneTrust, LLC Consent receipt management systems and related methods
US11070593B2 (en) 2016-06-10 2021-07-20 OneTrust, LLC Data processing systems for data-transfer risk identification, cross-border visualization generation, and related methods
US11068618B2 (en) 2016-06-10 2021-07-20 OneTrust, LLC Data processing systems for central consent repository and related methods
US11074367B2 (en) 2016-06-10 2021-07-27 OneTrust, LLC Data processing systems for identity validation for consumer rights requests and related methods
US11087260B2 (en) 2016-06-10 2021-08-10 OneTrust, LLC Data processing systems and methods for customizing privacy training
US11100444B2 (en) 2016-06-10 2021-08-24 OneTrust, LLC Data processing systems and methods for providing training in a vendor procurement process
US11100445B2 (en) 2016-06-10 2021-08-24 OneTrust, LLC Data processing systems for assessing readiness for responding to privacy-related incidents
US11113416B2 (en) 2016-06-10 2021-09-07 OneTrust, LLC Application privacy scanning systems and related methods
US11120161B2 (en) 2016-06-10 2021-09-14 OneTrust, LLC Data subject access request processing systems and related methods
US11122011B2 (en) 2016-06-10 2021-09-14 OneTrust, LLC Data processing systems and methods for using a data model to select a target data asset in a data migration
US11120162B2 (en) 2016-06-10 2021-09-14 OneTrust, LLC Data processing systems for data testing to confirm data deletion and related methods
US11126748B2 (en) 2016-06-10 2021-09-21 OneTrust, LLC Data processing consent management systems and related methods
US11134086B2 (en) 2016-06-10 2021-09-28 OneTrust, LLC Consent conversion optimization systems and related methods
US11138299B2 (en) 2016-06-10 2021-10-05 OneTrust, LLC Data processing and scanning systems for assessing vendor risk
US11138336B2 (en) 2016-06-10 2021-10-05 OneTrust, LLC Data processing systems for generating and populating a data inventory
US11138318B2 (en) 2016-06-10 2021-10-05 OneTrust, LLC Data processing systems for data transfer risk identification and related methods
US11138242B2 (en) 2016-06-10 2021-10-05 OneTrust, LLC Data processing systems and methods for automatically detecting and documenting privacy-related aspects of computer software
US11144670B2 (en) 2016-06-10 2021-10-12 OneTrust, LLC Data processing systems for identifying and modifying processes that are subject to data subject access requests
US12216794B2 (en) 2016-06-10 2025-02-04 OneTrust, LLC Data processing systems and methods for synching privacy-related user consent across multiple computing devices
US11144622B2 (en) 2016-06-10 2021-10-12 OneTrust, LLC Privacy management systems and methods
US11146566B2 (en) 2016-06-10 2021-10-12 OneTrust, LLC Data processing systems for fulfilling data subject access requests and related methods
US11151233B2 (en) 2016-06-10 2021-10-19 OneTrust, LLC Data processing and scanning systems for assessing vendor risk
US11157600B2 (en) 2016-06-10 2021-10-26 OneTrust, LLC Data processing and scanning systems for assessing vendor risk
US12204564B2 (en) 2016-06-10 2025-01-21 OneTrust, LLC Data processing systems and methods for automatically detecting and documenting privacy-related aspects of computer software
US11182501B2 (en) 2016-06-10 2021-11-23 OneTrust, LLC Data processing systems for fulfilling data subject access requests and related methods
US11277448B2 (en) 2016-06-10 2022-03-15 OneTrust, LLC Data processing systems for data-transfer risk identification, cross-border visualization generation, and related methods
US11188862B2 (en) 2016-06-10 2021-11-30 OneTrust, LLC Privacy management systems and methods
US11195134B2 (en) 2016-06-10 2021-12-07 OneTrust, LLC Privacy management systems and methods
US11200341B2 (en) 2016-06-10 2021-12-14 OneTrust, LLC Consent receipt management systems and related methods
US11210420B2 (en) 2016-06-10 2021-12-28 OneTrust, LLC Data subject access request processing systems and related methods
US11222142B2 (en) 2016-06-10 2022-01-11 OneTrust, LLC Data processing systems for validating authorization for personal data collection, storage, and processing
US11222139B2 (en) 2016-06-10 2022-01-11 OneTrust, LLC Data processing systems and methods for automatic discovery and assessment of mobile software development kits
US11222309B2 (en) 2016-06-10 2022-01-11 OneTrust, LLC Data processing systems for generating and populating a data inventory
US11228620B2 (en) 2016-06-10 2022-01-18 OneTrust, LLC Data processing systems for data-transfer risk identification, cross-border visualization generation, and related methods
US11227247B2 (en) 2016-06-10 2022-01-18 OneTrust, LLC Data processing systems and methods for bundled privacy policies
US10706176B2 (en) 2016-06-10 2020-07-07 OneTrust, LLC Data-processing consent refresh, re-prompt, and recapture systems and related methods
US11238390B2 (en) 2016-06-10 2022-02-01 OneTrust, LLC Privacy management systems and methods
US11244072B2 (en) 2016-06-10 2022-02-08 OneTrust, LLC Data processing systems for identifying, assessing, and remediating data processing risks using data modeling techniques
US10692033B2 (en) 2016-06-10 2020-06-23 OneTrust, LLC Data processing systems for identifying, assessing, and remediating data processing risks using data modeling techniques
US11244071B2 (en) 2016-06-10 2022-02-08 OneTrust, LLC Data processing systems for use in automatically generating, populating, and submitting data subject access requests
US11256777B2 (en) 2016-06-10 2022-02-22 OneTrust, LLC Data processing user interface monitoring systems and related methods
US11188615B2 (en) 2016-06-10 2021-11-30 OneTrust, LLC Data processing consent capture systems and related methods
US10708305B2 (en) 2016-06-10 2020-07-07 OneTrust, LLC Automated data processing systems and methods for automatically processing requests for privacy-related information
US10726158B2 (en) 2016-06-10 2020-07-28 OneTrust, LLC Consent receipt management and automated process blocking systems and related methods
US11301589B2 (en) 2016-06-10 2022-04-12 OneTrust, LLC Consent receipt management systems and related methods
US11301796B2 (en) 2016-06-10 2022-04-12 OneTrust, LLC Data processing systems and methods for customizing privacy training
US11308435B2 (en) 2016-06-10 2022-04-19 OneTrust, LLC Data processing systems for identifying, assessing, and remediating data processing risks using data modeling techniques
US11328092B2 (en) 2016-06-10 2022-05-10 OneTrust, LLC Data processing systems for processing and managing data subject access in a distributed environment
US11328240B2 (en) 2016-06-10 2022-05-10 OneTrust, LLC Data processing systems for assessing readiness for responding to privacy-related incidents
US11334682B2 (en) 2016-06-10 2022-05-17 OneTrust, LLC Data subject access request processing systems and related methods
US11336697B2 (en) 2016-06-10 2022-05-17 OneTrust, LLC Data processing systems for data-transfer risk identification, cross-border visualization generation, and related methods
US11334681B2 (en) 2016-06-10 2022-05-17 OneTrust, LLC Application privacy scanning systems and related meihods
US11341447B2 (en) 2016-06-10 2022-05-24 OneTrust, LLC Privacy management systems and methods
US11295316B2 (en) 2016-06-10 2022-04-05 OneTrust, LLC Data processing systems for identity validation for consumer rights requests and related methods
US11347889B2 (en) 2016-06-10 2022-05-31 OneTrust, LLC Data processing systems for generating and populating a data inventory
US11354435B2 (en) 2016-06-10 2022-06-07 OneTrust, LLC Data processing systems for data testing to confirm data deletion and related methods
US11354434B2 (en) 2016-06-10 2022-06-07 OneTrust, LLC Data processing systems for verification of consent and notice processing and related methods
US11361057B2 (en) 2016-06-10 2022-06-14 OneTrust, LLC Consent receipt management systems and related methods
US11366786B2 (en) 2016-06-10 2022-06-21 OneTrust, LLC Data processing systems for processing data subject access requests
US11366909B2 (en) 2016-06-10 2022-06-21 OneTrust, LLC Data processing and scanning systems for assessing vendor risk
US12190330B2 (en) 2016-06-10 2025-01-07 OneTrust, LLC Data processing systems for identity validation for consumer rights requests and related methods
US11392720B2 (en) 2016-06-10 2022-07-19 OneTrust, LLC Data processing systems for verification of consent and notice processing and related methods
US12164667B2 (en) 2016-06-10 2024-12-10 OneTrust, LLC Application privacy scanning systems and related methods
US11403377B2 (en) 2016-06-10 2022-08-02 OneTrust, LLC Privacy management systems and methods
US11409908B2 (en) 2016-06-10 2022-08-09 OneTrust, LLC Data processing systems and methods for populating and maintaining a centralized database of personal data
US11410106B2 (en) 2016-06-10 2022-08-09 OneTrust, LLC Privacy management systems and methods
US11416109B2 (en) 2016-06-10 2022-08-16 OneTrust, LLC Automated data processing systems and methods for automatically processing data subject access requests using a chatbot
US11416798B2 (en) 2016-06-10 2022-08-16 OneTrust, LLC Data processing systems and methods for providing training in a vendor procurement process
US11418516B2 (en) 2016-06-10 2022-08-16 OneTrust, LLC Consent conversion optimization systems and related methods
US11416576B2 (en) 2016-06-10 2022-08-16 OneTrust, LLC Data processing consent capture systems and related methods
US11416634B2 (en) 2016-06-10 2022-08-16 OneTrust, LLC Consent receipt management systems and related methods
US11418492B2 (en) 2016-06-10 2022-08-16 OneTrust, LLC Data processing systems and methods for using a data model to select a target data asset in a data migration
US11416589B2 (en) 2016-06-10 2022-08-16 OneTrust, LLC Data processing and scanning systems for assessing vendor risk
US11416590B2 (en) 2016-06-10 2022-08-16 OneTrust, LLC Data processing and scanning systems for assessing vendor risk
US11416636B2 (en) 2016-06-10 2022-08-16 OneTrust, LLC Data processing consent management systems and related methods
US12158975B2 (en) 2016-06-10 2024-12-03 OneTrust, LLC Data processing consent sharing systems and related methods
US12147578B2 (en) 2016-06-10 2024-11-19 OneTrust, LLC Consent receipt management systems and related methods
US11438386B2 (en) 2016-06-10 2022-09-06 OneTrust, LLC Data processing systems for data-transfer risk identification, cross-border visualization generation, and related methods
US12136055B2 (en) 2016-06-10 2024-11-05 OneTrust, LLC Data processing systems for identifying, assessing, and remediating data processing risks using data modeling techniques
US12118121B2 (en) 2016-06-10 2024-10-15 OneTrust, LLC Data subject access request processing systems and related methods
US11449633B2 (en) 2016-06-10 2022-09-20 OneTrust, LLC Data processing systems and methods for automatic discovery and assessment of mobile software development kits
US11461722B2 (en) 2016-06-10 2022-10-04 OneTrust, LLC Questionnaire response automation for compliance management
US11461500B2 (en) 2016-06-10 2022-10-04 OneTrust, LLC Data processing systems for cookie compliance testing with website scanning and related methods
US11468386B2 (en) 2016-06-10 2022-10-11 OneTrust, LLC Data processing systems and methods for bundled privacy policies
US11468196B2 (en) 2016-06-10 2022-10-11 OneTrust, LLC Data processing systems for validating authorization for personal data collection, storage, and processing
US12086748B2 (en) 2016-06-10 2024-09-10 OneTrust, LLC Data processing systems for assessing readiness for responding to privacy-related incidents
US11475136B2 (en) 2016-06-10 2022-10-18 OneTrust, LLC Data processing systems for data transfer risk identification and related methods
US11481710B2 (en) 2016-06-10 2022-10-25 OneTrust, LLC Privacy management systems and methods
US11488085B2 (en) 2016-06-10 2022-11-01 OneTrust, LLC Questionnaire response automation for compliance management
US12052289B2 (en) 2016-06-10 2024-07-30 OneTrust, LLC Data processing systems for data-transfer risk identification, cross-border visualization generation, and related methods
US11520928B2 (en) 2016-06-10 2022-12-06 OneTrust, LLC Data processing systems for generating personal data receipts and related methods
US12045266B2 (en) 2016-06-10 2024-07-23 OneTrust, LLC Data processing systems for generating and populating a data inventory
US12026651B2 (en) 2016-06-10 2024-07-02 OneTrust, LLC Data processing systems and methods for providing training in a vendor procurement process
US11960564B2 (en) 2016-06-10 2024-04-16 OneTrust, LLC Data processing systems and methods for automatically blocking the use of tracking tools
US11544667B2 (en) 2016-06-10 2023-01-03 OneTrust, LLC Data processing systems for generating and populating a data inventory
US11544405B2 (en) 2016-06-10 2023-01-03 OneTrust, LLC Data processing systems for verification of consent and notice processing and related methods
US11921894B2 (en) 2016-06-10 2024-03-05 OneTrust, LLC Data processing systems for generating and populating a data inventory for processing data access requests
US11551174B2 (en) 2016-06-10 2023-01-10 OneTrust, LLC Privacy management systems and methods
US11550897B2 (en) 2016-06-10 2023-01-10 OneTrust, LLC Data processing and scanning systems for assessing vendor risk
US11556672B2 (en) 2016-06-10 2023-01-17 OneTrust, LLC Data processing systems for verification of consent and notice processing and related methods
US11558429B2 (en) 2016-06-10 2023-01-17 OneTrust, LLC Data processing and scanning systems for generating and populating a data inventory
US11868507B2 (en) 2016-06-10 2024-01-09 OneTrust, LLC Data processing systems for cookie compliance testing with website scanning and related methods
US11562097B2 (en) 2016-06-10 2023-01-24 OneTrust, LLC Data processing systems for central consent repository and related methods
US11586762B2 (en) 2016-06-10 2023-02-21 OneTrust, LLC Data processing systems and methods for auditing data request compliance
US11586700B2 (en) 2016-06-10 2023-02-21 OneTrust, LLC Data processing systems and methods for automatically blocking the use of tracking tools
US11847182B2 (en) 2016-06-10 2023-12-19 OneTrust, LLC Data processing consent capture systems and related methods
US11727141B2 (en) 2016-06-10 2023-08-15 OneTrust, LLC Data processing systems and methods for synching privacy-related user consent across multiple computing devices
US11609939B2 (en) 2016-06-10 2023-03-21 OneTrust, LLC Data processing systems and methods for automatically detecting and documenting privacy-related aspects of computer software
US11675929B2 (en) 2016-06-10 2023-06-13 OneTrust, LLC Data processing consent sharing systems and related methods
US11651104B2 (en) 2016-06-10 2023-05-16 OneTrust, LLC Consent receipt management systems and related methods
US11625502B2 (en) 2016-06-10 2023-04-11 OneTrust, LLC Data processing systems for identifying and modifying processes that are subject to data subject access requests
US11636171B2 (en) 2016-06-10 2023-04-25 OneTrust, LLC Data processing user interface monitoring systems and related methods
US11645418B2 (en) 2016-06-10 2023-05-09 OneTrust, LLC Data processing systems for data testing to confirm data deletion and related methods
US11645353B2 (en) 2016-06-10 2023-05-09 OneTrust, LLC Data processing consent capture systems and related methods
US11651106B2 (en) 2016-06-10 2023-05-16 OneTrust, LLC Data processing systems for fulfilling data subject access requests and related methods
US10685140B2 (en) 2016-06-10 2020-06-16 OneTrust, LLC Consent receipt management systems and related methods
US11373007B2 (en) 2017-06-16 2022-06-28 OneTrust, LLC Data processing systems for identifying whether cookies contain personally identifying information
US11663359B2 (en) 2017-06-16 2023-05-30 OneTrust, LLC Data processing systems for identifying whether cookies contain personally identifying information
US11157654B2 (en) 2018-09-07 2021-10-26 OneTrust, LLC Data processing systems for orphaned data identification and deletion and related methods
US10963591B2 (en) 2018-09-07 2021-03-30 OneTrust, LLC Data processing systems for orphaned data identification and deletion and related methods
US10803202B2 (en) 2018-09-07 2020-10-13 OneTrust, LLC Data processing systems for orphaned data identification and deletion and related methods
US11144675B2 (en) 2018-09-07 2021-10-12 OneTrust, LLC Data processing systems and methods for automatically protecting sensitive data within privacy management systems
US11593523B2 (en) 2018-09-07 2023-02-28 OneTrust, LLC Data processing systems for orphaned data identification and deletion and related methods
US11947708B2 (en) 2018-09-07 2024-04-02 OneTrust, LLC Data processing systems and methods for automatically protecting sensitive data within privacy management systems
US11544409B2 (en) 2018-09-07 2023-01-03 OneTrust, LLC Data processing systems and methods for automatically protecting sensitive data within privacy management systems
US11797528B2 (en) 2020-07-08 2023-10-24 OneTrust, LLC Systems and methods for targeted data discovery
US11444976B2 (en) 2020-07-28 2022-09-13 OneTrust, LLC Systems and methods for automatically blocking the use of tracking tools
US11968229B2 (en) 2020-07-28 2024-04-23 OneTrust, LLC Systems and methods for automatically blocking the use of tracking tools
US11475165B2 (en) 2020-08-06 2022-10-18 OneTrust, LLC Data processing systems and methods for automatically redacting unstructured data from a data subject access request
US11436373B2 (en) 2020-09-15 2022-09-06 OneTrust, LLC Data processing systems and methods for detecting tools for the automatic blocking of consent requests
US11704440B2 (en) 2020-09-15 2023-07-18 OneTrust, LLC Data processing systems and methods for preventing execution of an action documenting a consent rejection
US11526624B2 (en) 2020-09-21 2022-12-13 OneTrust, LLC Data processing systems and methods for automatically detecting target data transfers and target data processing
US12265896B2 (en) 2020-10-05 2025-04-01 OneTrust, LLC Systems and methods for detecting prejudice bias in machine-learning models
US11397819B2 (en) 2020-11-06 2022-07-26 OneTrust, LLC Systems and methods for identifying data processing activities based on data discovery results
US12277232B2 (en) 2020-11-06 2025-04-15 OneTrust, LLC Systems and methods for identifying data processing activities based on data discovery results
US11615192B2 (en) 2020-11-06 2023-03-28 OneTrust, LLC Systems and methods for identifying data processing activities based on data discovery results
US12259882B2 (en) 2021-01-25 2025-03-25 OneTrust, LLC Systems and methods for discovery, classification, and indexing of data in a native computing system
US11687528B2 (en) 2021-01-25 2023-06-27 OneTrust, LLC Systems and methods for discovery, classification, and indexing of data in a native computing system
US11442906B2 (en) 2021-02-04 2022-09-13 OneTrust, LLC Managing custom attributes for domain objects defined within microservices
US11494515B2 (en) 2021-02-08 2022-11-08 OneTrust, LLC Data processing systems and methods for anonymizing data samples in classification analysis
US11601464B2 (en) 2021-02-10 2023-03-07 OneTrust, LLC Systems and methods for mitigating risks of third-party computing system functionality integration into a first-party computing system
US11775348B2 (en) 2021-02-17 2023-10-03 OneTrust, LLC Managing custom workflows for domain objects defined within microservices
US11546661B2 (en) 2021-02-18 2023-01-03 OneTrust, LLC Selective redaction of media content
US11533315B2 (en) 2021-03-08 2022-12-20 OneTrust, LLC Data transfer discovery and analysis systems and related methods
US11816224B2 (en) 2021-04-16 2023-11-14 OneTrust, LLC Assessing and managing computational risk involved with integrating third party computing functionality within a computing system
US11562078B2 (en) 2021-04-16 2023-01-24 OneTrust, LLC Assessing and managing computational risk involved with integrating third party computing functionality within a computing system
US11438426B1 (en) * 2021-04-28 2022-09-06 Auryc, Inc. Systems and methods for intelligent session recording
US12153704B2 (en) 2021-08-05 2024-11-26 OneTrust, LLC Computing platform for facilitating data exchange among computing environments
US11620142B1 (en) 2022-06-03 2023-04-04 OneTrust, LLC Generating and customizing user interfaces for demonstrating functions of interactive user environments
US20240291893A1 (en) * 2023-02-23 2024-08-29 Cisco Technology, Inc. Secure access app connectors
US12200068B2 (en) * 2023-02-23 2025-01-14 Cisco Technology, Inc. Secure access app connectors
US12353405B2 (en) 2023-09-18 2025-07-08 OneTrust, LLC Systems and methods for targeted data discovery

Similar Documents

Publication Publication Date Title
US9154556B1 (en) Managing access to a limited number of computerized sessions
US8875152B2 (en) System, method and computer program product for dynamically increasing resources utilized for processing tasks
US20130318533A1 (en) Methods and systems for presenting and assigning tasks
US11811773B2 (en) Providing access to content within a computing environment
US20120016681A1 (en) System, method and computer program product for analyzing monitored usage of a resource
US11546468B2 (en) System and method of automated routing and guidance based on continuous customer and customer service representative feedback
US11588937B2 (en) System and method of automated routing and guidance based on continuous customer and customer service representative feedback
CN110036623B (en) On-demand contact center generation
US11695834B1 (en) SaaS application recommendation, approval, and fulfillment in a SaaS management platform
KR101691288B1 (en) System and method for relaying delivery order using TTS
US20230095073A1 (en) System and method for mobile device active callback prioritization
EP3269098B1 (en) Large data management in communication applications through multiple mailboxes
US20130046822A1 (en) Method and system for managing a virtual actionable conversation
CN109684547A (en) Method and apparatus for handling information
WO2024228864A1 (en) Elastic license management in a saas management platform
US20140173012A1 (en) System and method for managing email send jobs
US20230139728A1 (en) System and method for mobile device active callback prioritization with predictive outcome scoring
JP7118305B1 (en) Apparatus, method and program for managing use of multiple applications in enterprise
US12142269B2 (en) Invokable automated agent for interactive workflows
CN111738468B (en) Data processing method, data processing device, computer system and medium
CN107909345A (en) The processing method and processing device of work order
CN111292061A (en) A method and device for actively triggering resource management
CN112395567A (en) User authority management method, device, equipment and medium
US20240370529A1 (en) Elastic License Management in a SaaS Management Platform
CN114841587A (en) Order processing method, device, electronic device and storage medium

Legal Events

Date Code Title Description
AS Assignment

Owner name: EMC CORPORATION, MASSACHUSETTS

Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNORS:DOTAN, YEDIDYA;FRIEDMAN, LAWRENCE N.;BIGER, AYELET;AND OTHERS;SIGNING DATES FROM 20111221 TO 20120124;REEL/FRAME:027616/0370

STCF Information on status: patent grant

Free format text: PATENTED CASE

AS Assignment

Owner name: CREDIT SUISSE AG, CAYMAN ISLANDS BRANCH, AS COLLATERAL AGENT, NORTH CAROLINA

Free format text: SECURITY AGREEMENT;ASSIGNORS:ASAP SOFTWARE EXPRESS, INC.;AVENTAIL LLC;CREDANT TECHNOLOGIES, INC.;AND OTHERS;REEL/FRAME:040134/0001

Effective date: 20160907

Owner name: THE BANK OF NEW YORK MELLON TRUST COMPANY, N.A., AS NOTES COLLATERAL AGENT, TEXAS

Free format text: SECURITY AGREEMENT;ASSIGNORS:ASAP SOFTWARE EXPRESS, INC.;AVENTAIL LLC;CREDANT TECHNOLOGIES, INC.;AND OTHERS;REEL/FRAME:040136/0001

Effective date: 20160907

Owner name: CREDIT SUISSE AG, CAYMAN ISLANDS BRANCH, AS COLLAT

Free format text: SECURITY AGREEMENT;ASSIGNORS:ASAP SOFTWARE EXPRESS, INC.;AVENTAIL LLC;CREDANT TECHNOLOGIES, INC.;AND OTHERS;REEL/FRAME:040134/0001

Effective date: 20160907

Owner name: THE BANK OF NEW YORK MELLON TRUST COMPANY, N.A., A

Free format text: SECURITY AGREEMENT;ASSIGNORS:ASAP SOFTWARE EXPRESS, INC.;AVENTAIL LLC;CREDANT TECHNOLOGIES, INC.;AND OTHERS;REEL/FRAME:040136/0001

Effective date: 20160907

AS Assignment

Owner name: EMC IP HOLDING COMPANY LLC, MASSACHUSETTS

Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNOR:EMC CORPORATION;REEL/FRAME:040203/0001

Effective date: 20160906

AS Assignment

Owner name: THE BANK OF NEW YORK MELLON TRUST COMPANY, N.A., T

Free format text: SECURITY AGREEMENT;ASSIGNORS:CREDANT TECHNOLOGIES, INC.;DELL INTERNATIONAL L.L.C.;DELL MARKETING L.P.;AND OTHERS;REEL/FRAME:049452/0223

Effective date: 20190320

Owner name: THE BANK OF NEW YORK MELLON TRUST COMPANY, N.A., TEXAS

Free format text: SECURITY AGREEMENT;ASSIGNORS:CREDANT TECHNOLOGIES, INC.;DELL INTERNATIONAL L.L.C.;DELL MARKETING L.P.;AND OTHERS;REEL/FRAME:049452/0223

Effective date: 20190320

MAFP Maintenance fee payment

Free format text: PAYMENT OF MAINTENANCE FEE, 4TH YEAR, LARGE ENTITY (ORIGINAL EVENT CODE: M1551); ENTITY STATUS OF PATENT OWNER: LARGE ENTITY

Year of fee payment: 4

AS Assignment

Owner name: THE BANK OF NEW YORK MELLON TRUST COMPANY, N.A., TEXAS

Free format text: SECURITY AGREEMENT;ASSIGNORS:CREDANT TECHNOLOGIES INC.;DELL INTERNATIONAL L.L.C.;DELL MARKETING L.P.;AND OTHERS;REEL/FRAME:053546/0001

Effective date: 20200409

AS Assignment

Owner name: WYSE TECHNOLOGY L.L.C., CALIFORNIA

Free format text: RELEASE BY SECURED PARTY;ASSIGNOR:CREDIT SUISSE AG, CAYMAN ISLANDS BRANCH;REEL/FRAME:058216/0001

Effective date: 20211101

Owner name: SCALEIO LLC, MASSACHUSETTS

Free format text: RELEASE BY SECURED PARTY;ASSIGNOR:CREDIT SUISSE AG, CAYMAN ISLANDS BRANCH;REEL/FRAME:058216/0001

Effective date: 20211101

Owner name: MOZY, INC., WASHINGTON

Free format text: RELEASE BY SECURED PARTY;ASSIGNOR:CREDIT SUISSE AG, CAYMAN ISLANDS BRANCH;REEL/FRAME:058216/0001

Effective date: 20211101

Owner name: MAGINATICS LLC, CALIFORNIA

Free format text: RELEASE BY SECURED PARTY;ASSIGNOR:CREDIT SUISSE AG, CAYMAN ISLANDS BRANCH;REEL/FRAME:058216/0001

Effective date: 20211101

Owner name: FORCE10 NETWORKS, INC., CALIFORNIA

Free format text: RELEASE BY SECURED PARTY;ASSIGNOR:CREDIT SUISSE AG, CAYMAN ISLANDS BRANCH;REEL/FRAME:058216/0001

Effective date: 20211101

Owner name: EMC IP HOLDING COMPANY LLC, TEXAS

Free format text: RELEASE BY SECURED PARTY;ASSIGNOR:CREDIT SUISSE AG, CAYMAN ISLANDS BRANCH;REEL/FRAME:058216/0001

Effective date: 20211101

Owner name: EMC CORPORATION, MASSACHUSETTS

Free format text: RELEASE BY SECURED PARTY;ASSIGNOR:CREDIT SUISSE AG, CAYMAN ISLANDS BRANCH;REEL/FRAME:058216/0001

Effective date: 20211101

Owner name: DELL SYSTEMS CORPORATION, TEXAS

Free format text: RELEASE BY SECURED PARTY;ASSIGNOR:CREDIT SUISSE AG, CAYMAN ISLANDS BRANCH;REEL/FRAME:058216/0001

Effective date: 20211101

Owner name: DELL SOFTWARE INC., CALIFORNIA

Free format text: RELEASE BY SECURED PARTY;ASSIGNOR:CREDIT SUISSE AG, CAYMAN ISLANDS BRANCH;REEL/FRAME:058216/0001

Effective date: 20211101

Owner name: DELL PRODUCTS L.P., TEXAS

Free format text: RELEASE BY SECURED PARTY;ASSIGNOR:CREDIT SUISSE AG, CAYMAN ISLANDS BRANCH;REEL/FRAME:058216/0001

Effective date: 20211101

Owner name: DELL MARKETING L.P., TEXAS

Free format text: RELEASE BY SECURED PARTY;ASSIGNOR:CREDIT SUISSE AG, CAYMAN ISLANDS BRANCH;REEL/FRAME:058216/0001

Effective date: 20211101

Owner name: DELL INTERNATIONAL, L.L.C., TEXAS

Free format text: RELEASE BY SECURED PARTY;ASSIGNOR:CREDIT SUISSE AG, CAYMAN ISLANDS BRANCH;REEL/FRAME:058216/0001

Effective date: 20211101

Owner name: DELL USA L.P., TEXAS

Free format text: RELEASE BY SECURED PARTY;ASSIGNOR:CREDIT SUISSE AG, CAYMAN ISLANDS BRANCH;REEL/FRAME:058216/0001

Effective date: 20211101

Owner name: CREDANT TECHNOLOGIES, INC., TEXAS

Free format text: RELEASE BY SECURED PARTY;ASSIGNOR:CREDIT SUISSE AG, CAYMAN ISLANDS BRANCH;REEL/FRAME:058216/0001

Effective date: 20211101

Owner name: AVENTAIL LLC, CALIFORNIA

Free format text: RELEASE BY SECURED PARTY;ASSIGNOR:CREDIT SUISSE AG, CAYMAN ISLANDS BRANCH;REEL/FRAME:058216/0001

Effective date: 20211101

Owner name: ASAP SOFTWARE EXPRESS, INC., ILLINOIS

Free format text: RELEASE BY SECURED PARTY;ASSIGNOR:CREDIT SUISSE AG, CAYMAN ISLANDS BRANCH;REEL/FRAME:058216/0001

Effective date: 20211101

AS Assignment

Owner name: SCALEIO LLC, MASSACHUSETTS

Free format text: RELEASE OF SECURITY INTEREST IN PATENTS PREVIOUSLY RECORDED AT REEL/FRAME (040136/0001);ASSIGNOR:THE BANK OF NEW YORK MELLON TRUST COMPANY, N.A., AS NOTES COLLATERAL AGENT;REEL/FRAME:061324/0001

Effective date: 20220329

Owner name: EMC IP HOLDING COMPANY LLC (ON BEHALF OF ITSELF AND AS SUCCESSOR-IN-INTEREST TO MOZY, INC.), TEXAS

Free format text: RELEASE OF SECURITY INTEREST IN PATENTS PREVIOUSLY RECORDED AT REEL/FRAME (040136/0001);ASSIGNOR:THE BANK OF NEW YORK MELLON TRUST COMPANY, N.A., AS NOTES COLLATERAL AGENT;REEL/FRAME:061324/0001

Effective date: 20220329

Owner name: EMC CORPORATION (ON BEHALF OF ITSELF AND AS SUCCESSOR-IN-INTEREST TO MAGINATICS LLC), MASSACHUSETTS

Free format text: RELEASE OF SECURITY INTEREST IN PATENTS PREVIOUSLY RECORDED AT REEL/FRAME (040136/0001);ASSIGNOR:THE BANK OF NEW YORK MELLON TRUST COMPANY, N.A., AS NOTES COLLATERAL AGENT;REEL/FRAME:061324/0001

Effective date: 20220329

Owner name: DELL MARKETING CORPORATION (SUCCESSOR-IN-INTEREST TO FORCE10 NETWORKS, INC. AND WYSE TECHNOLOGY L.L.C.), TEXAS

Free format text: RELEASE OF SECURITY INTEREST IN PATENTS PREVIOUSLY RECORDED AT REEL/FRAME (040136/0001);ASSIGNOR:THE BANK OF NEW YORK MELLON TRUST COMPANY, N.A., AS NOTES COLLATERAL AGENT;REEL/FRAME:061324/0001

Effective date: 20220329

Owner name: DELL PRODUCTS L.P., TEXAS

Free format text: RELEASE OF SECURITY INTEREST IN PATENTS PREVIOUSLY RECORDED AT REEL/FRAME (040136/0001);ASSIGNOR:THE BANK OF NEW YORK MELLON TRUST COMPANY, N.A., AS NOTES COLLATERAL AGENT;REEL/FRAME:061324/0001

Effective date: 20220329

Owner name: DELL INTERNATIONAL L.L.C., TEXAS

Free format text: RELEASE OF SECURITY INTEREST IN PATENTS PREVIOUSLY RECORDED AT REEL/FRAME (040136/0001);ASSIGNOR:THE BANK OF NEW YORK MELLON TRUST COMPANY, N.A., AS NOTES COLLATERAL AGENT;REEL/FRAME:061324/0001

Effective date: 20220329

Owner name: DELL USA L.P., TEXAS

Free format text: RELEASE OF SECURITY INTEREST IN PATENTS PREVIOUSLY RECORDED AT REEL/FRAME (040136/0001);ASSIGNOR:THE BANK OF NEW YORK MELLON TRUST COMPANY, N.A., AS NOTES COLLATERAL AGENT;REEL/FRAME:061324/0001

Effective date: 20220329

Owner name: DELL MARKETING L.P. (ON BEHALF OF ITSELF AND AS SUCCESSOR-IN-INTEREST TO CREDANT TECHNOLOGIES, INC.), TEXAS

Free format text: RELEASE OF SECURITY INTEREST IN PATENTS PREVIOUSLY RECORDED AT REEL/FRAME (040136/0001);ASSIGNOR:THE BANK OF NEW YORK MELLON TRUST COMPANY, N.A., AS NOTES COLLATERAL AGENT;REEL/FRAME:061324/0001

Effective date: 20220329

Owner name: DELL MARKETING CORPORATION (SUCCESSOR-IN-INTEREST TO ASAP SOFTWARE EXPRESS, INC.), TEXAS

Free format text: RELEASE OF SECURITY INTEREST IN PATENTS PREVIOUSLY RECORDED AT REEL/FRAME (040136/0001);ASSIGNOR:THE BANK OF NEW YORK MELLON TRUST COMPANY, N.A., AS NOTES COLLATERAL AGENT;REEL/FRAME:061324/0001

Effective date: 20220329

AS Assignment

Owner name: SCALEIO LLC, MASSACHUSETTS

Free format text: RELEASE OF SECURITY INTEREST IN PATENTS PREVIOUSLY RECORDED AT REEL/FRAME (045455/0001);ASSIGNOR:THE BANK OF NEW YORK MELLON TRUST COMPANY, N.A., AS NOTES COLLATERAL AGENT;REEL/FRAME:061753/0001

Effective date: 20220329

Owner name: EMC IP HOLDING COMPANY LLC (ON BEHALF OF ITSELF AND AS SUCCESSOR-IN-INTEREST TO MOZY, INC.), TEXAS

Free format text: RELEASE OF SECURITY INTEREST IN PATENTS PREVIOUSLY RECORDED AT REEL/FRAME (045455/0001);ASSIGNOR:THE BANK OF NEW YORK MELLON TRUST COMPANY, N.A., AS NOTES COLLATERAL AGENT;REEL/FRAME:061753/0001

Effective date: 20220329

Owner name: EMC CORPORATION (ON BEHALF OF ITSELF AND AS SUCCESSOR-IN-INTEREST TO MAGINATICS LLC), MASSACHUSETTS

Free format text: RELEASE OF SECURITY INTEREST IN PATENTS PREVIOUSLY RECORDED AT REEL/FRAME (045455/0001);ASSIGNOR:THE BANK OF NEW YORK MELLON TRUST COMPANY, N.A., AS NOTES COLLATERAL AGENT;REEL/FRAME:061753/0001

Effective date: 20220329

Owner name: DELL MARKETING CORPORATION (SUCCESSOR-IN-INTEREST TO FORCE10 NETWORKS, INC. AND WYSE TECHNOLOGY L.L.C.), TEXAS

Free format text: RELEASE OF SECURITY INTEREST IN PATENTS PREVIOUSLY RECORDED AT REEL/FRAME (045455/0001);ASSIGNOR:THE BANK OF NEW YORK MELLON TRUST COMPANY, N.A., AS NOTES COLLATERAL AGENT;REEL/FRAME:061753/0001

Effective date: 20220329

Owner name: DELL PRODUCTS L.P., TEXAS

Free format text: RELEASE OF SECURITY INTEREST IN PATENTS PREVIOUSLY RECORDED AT REEL/FRAME (045455/0001);ASSIGNOR:THE BANK OF NEW YORK MELLON TRUST COMPANY, N.A., AS NOTES COLLATERAL AGENT;REEL/FRAME:061753/0001

Effective date: 20220329

Owner name: DELL INTERNATIONAL L.L.C., TEXAS

Free format text: RELEASE OF SECURITY INTEREST IN PATENTS PREVIOUSLY RECORDED AT REEL/FRAME (045455/0001);ASSIGNOR:THE BANK OF NEW YORK MELLON TRUST COMPANY, N.A., AS NOTES COLLATERAL AGENT;REEL/FRAME:061753/0001

Effective date: 20220329

Owner name: DELL USA L.P., TEXAS

Free format text: RELEASE OF SECURITY INTEREST IN PATENTS PREVIOUSLY RECORDED AT REEL/FRAME (045455/0001);ASSIGNOR:THE BANK OF NEW YORK MELLON TRUST COMPANY, N.A., AS NOTES COLLATERAL AGENT;REEL/FRAME:061753/0001

Effective date: 20220329

Owner name: DELL MARKETING L.P. (ON BEHALF OF ITSELF AND AS SUCCESSOR-IN-INTEREST TO CREDANT TECHNOLOGIES, INC.), TEXAS

Free format text: RELEASE OF SECURITY INTEREST IN PATENTS PREVIOUSLY RECORDED AT REEL/FRAME (045455/0001);ASSIGNOR:THE BANK OF NEW YORK MELLON TRUST COMPANY, N.A., AS NOTES COLLATERAL AGENT;REEL/FRAME:061753/0001

Effective date: 20220329

Owner name: DELL MARKETING CORPORATION (SUCCESSOR-IN-INTEREST TO ASAP SOFTWARE EXPRESS, INC.), TEXAS

Free format text: RELEASE OF SECURITY INTEREST IN PATENTS PREVIOUSLY RECORDED AT REEL/FRAME (045455/0001);ASSIGNOR:THE BANK OF NEW YORK MELLON TRUST COMPANY, N.A., AS NOTES COLLATERAL AGENT;REEL/FRAME:061753/0001

Effective date: 20220329

MAFP Maintenance fee payment

Free format text: PAYMENT OF MAINTENANCE FEE, 8TH YEAR, LARGE ENTITY (ORIGINAL EVENT CODE: M1552); ENTITY STATUS OF PATENT OWNER: LARGE ENTITY

Year of fee payment: 8