Location-based anticipatory resource provisioning
First Claim
Patent Images
1. A method of anticipatory provisioning of resources for mobile users in an institutional space, the method comprising the steps of:
- providing a database storing records for a plurality of users, each of the records specifying, for one of the users, (i) data specifying a provisioning policy for the user including at least one location-based triggering event, (ii) data specifying session resources for the user, (iii) data indicative of a current location of the user, and (iv) data specifying a privilege level for the user;
in response to an electronically detected location-based triggering event of a first mobile user, the privilege level of the first user, and the provisioning policy stored in the database for the first mobile user, causing a first virtual desktop including the session resources specified for the first mobile user to be created, prior to receiving log-on credentials for the first mobile user, within a first hosted session at a server;
receiving, at a first network node, log-on credentials for the first mobile user;
upon acceptance of the log-on credentials for the first mobile user, providing network-based access for the first mobile user to the launched resources at the first network node;
receiving, at a second network node, log-on credentials for a second mobile user having a privilege level different from that of the first mobile user;
only after acceptance of the log-on credentials for the second mobile user, causing a second virtual desktop including the session resources specified for the second user to be created within a second hosted session at the server; and
providing network-based access for the second mobile user to the launched resources at the second network node.
7 Assignments
0 Petitions
Accused Products
Abstract
In various embodiments, the predicted location of a user within an institutional space is associated with a node at or near that location, and a virtual desktop is prepared before a user has actually logged on and authenticated. Although users are not accorded access to applications and sensitive data until they have properly authenticated themselves, the virtual desktop and associated data are assembled and retrieved in the background in order to eliminate delay following log-on.
12 Citations
26 Claims
-
1. A method of anticipatory provisioning of resources for mobile users in an institutional space, the method comprising the steps of:
-
providing a database storing records for a plurality of users, each of the records specifying, for one of the users, (i) data specifying a provisioning policy for the user including at least one location-based triggering event, (ii) data specifying session resources for the user, (iii) data indicative of a current location of the user, and (iv) data specifying a privilege level for the user; in response to an electronically detected location-based triggering event of a first mobile user, the privilege level of the first user, and the provisioning policy stored in the database for the first mobile user, causing a first virtual desktop including the session resources specified for the first mobile user to be created, prior to receiving log-on credentials for the first mobile user, within a first hosted session at a server; receiving, at a first network node, log-on credentials for the first mobile user; upon acceptance of the log-on credentials for the first mobile user, providing network-based access for the first mobile user to the launched resources at the first network node; receiving, at a second network node, log-on credentials for a second mobile user having a privilege level different from that of the first mobile user; only after acceptance of the log-on credentials for the second mobile user, causing a second virtual desktop including the session resources specified for the second user to be created within a second hosted session at the server; and providing network-based access for the second mobile user to the launched resources at the second network node. - View Dependent Claims (2, 3, 4, 5, 6, 7, 15, 16, 17, 18, 19, 20, 21)
-
-
8. A system for anticipatory provisioning of resources for mobile users in an institutional space, the system comprising:
-
a plurality of devices at different locations in the institutional space; a location server in operative communication with the devices via a network and including computer storage defining a user location database that itself includes records for a plurality of users, each of the records including, for one of the users, (i) data specifying a provisioning policy for the user including at least one location-based triggering event, (ii) data indicative of a current location of the user, and (iv) data specifying a privilege level for the user; a desktop server in operative communication with the devices and the location server via the network, the desktop server including (i) a user desktop database that itself includes records for a plurality of users, each of the records specifying, for one of the users, session resources for the user and data indicative of a state of a user'"'"'s previous session on one of the devices, (ii) a virtualization module for creating a virtual desktop including the session resources at the desktop server for remote session access and use at one of the devices via the network; and an authentication server for receiving user log-on credentials, wherein, the desktop server is configured to, upon detection by the location server of a location-based triggering event for a first user having a first privilege level, (i) responsively create the virtual desktop specified in the user desktop database for the first user, and (ii) thereafter, responsive to authentication of the first user to the authentication server via a first one of the devices, provide network-based access to the virtual desktop of the first user at the first device, and wherein the desktop server is configured to, only after authentication of a second user having a second privilege level different from the first privilege level to the authentication server via a second one of the devices, (i) responsively create the virtual desktop specified in the user desktop database for the second user, and (ii) provide network-based access to the virtual desktop of the second user at the second device. - View Dependent Claims (9, 10, 11, 12, 13, 14, 22, 23, 24, 25, 26)
-
Specification