On-prem and on-cloud

Category archive

Citrix Cloud

Citrix in-session watermark

in Citrix Cloud/Receiver/XenApp/XenDesktop by

The fact in VDI security designs is that people are the weakest links in your protection chain. How can you prevent insiders from simply taking the screen and leaking your most brilliant ideas to external sources? How can you trace a leak back to when it first happened?

Citrix In-session Watermark offers a solution for you. It adds traceable information on top of the VDI screen. This provides a deterrent to prevent people from stealing the screen. To take this one step further, even if the information is leaked, you can still easily trace back to follow the identity on the screenshot.

While XenApp & XenDesktop provides a great barrier to information theft for outside attackers, In-session Watermark is provides an additional layer of security against theft from inside users. To clarify, watermarks are primarily a deterrent to inside users – for trustworthy users, yes, who sometimes need a reminder to be honest, and also for malicious insiders who are working to steal intellectual property. Since users control their endpoints running Citrix Receiver, there are security advantages to implementing server-side protections, and this is where we implemented In-session Watermark.

The watermark is added to the image before it is transferred to the endpoint. Compare the approach for implementing Citrix In-session Watermark on server side to other solutions and offerings on the market. The Citrix In-session Watermark cannot be removed without killing the session. If a watermark solution were implemented using a user space process to draw the watermark, the malicious users can kill that process to remove the watermark, which is clearly not a sufficient deterrent.

In the Citrix solution, the watermark is added deep inside the HDX engine and if the user were to kill the process that draws the watermark, it would also kill the user’s session, which is a much more effective deterrent.

The benefits of embedding this security into the HDX engine also include better screen coverage. The Windows 10 start menu and UWP apps will be covered properly with Citrix Watermark while a user mode process might leave some of the screen uncovered.

More details can be read in the original Citrix article at: https://www.citrix.com/blogs/2017/12/04/a-new-option-to-protect-your-workspace-in-session-watermark/

Citrix Cloud for Citrix Service Providers (CSP)

in Citrix Cloud by

Citrix Cloud services are now available to Citrix Service Provider (CSP) partners, bringing a set of new options for CSPs to deliver digital workspace solutions for their customers.

Citrix Cloud provides CSPs new options for solution deployment and delivery by offering the breadth of the Citrix portfolio “as-a-service.” Citrix Cloud is a powerful delivery platform that enables partners to address a broad range of customer types and use cases. With a diverse set of digital workspace offerings spanning across apps, desktops, networking, security, mobility and productivity, partners can provide solutions to their customers without the infrastructure, expertise, time, and resources required by traditional on-premises deployments. The “any and many” cloud approach of Citrix Cloud gives partners flexibility to run customer workload in public cloud or use existing data centers and private clouds – or a mix of both.

Citrix Cloud enables Service Provider Partners with a diverse portfolio of cloud services

The following services are made available to CSPs via the Citrix Cloud:

  1.  XenApp and XenDesktop Service
  2. NetScaler Gateway Service
  3. Content Collaboration service (Sharefile)
  4. XenMobile Service
  5. The full solution (including all above four services is called Workspace Service).

Additional services built on the Citrix Cloud especially for service providers are the following:

  1. License Usage Insights Service (LUI) for managing service provider and customer Citrix licenses.
  2. Customer Dashboard includes basic features for customer managed from the CSP perspective.
  3. Smart Tools, which include various tools for planning, migration, scalability planning, support, ticketing and monitoring/alerts.
  4. Secure browser service

Any user who is registered in Citrix Account as CSP member can utilize the Citrix Cloud as trial.

Log in at citrix.cloud.com with the same credential you’ve been using for Citrix.com – no additional sign up required.

As an individual user or customer you can register for Citrix Cloud services from https://www.citrix.com/products/citrix-cloud/try.html. Especially for the XenApp and XenDesktop service, make sure you check the service prerequisites first:


Bear in mind that for EU customers, now Citrix Cloud is ready for business in Europe as well: https://www.citrix.com/blogs/2017/10/12/citrix-cloud-eu-region-is-now-open-for-business/


Citrix offers a traiing curriculum for Service Providers in order to get up to speed with offered Citrix Cloud services for CSPs. Training modules available at: https://www.citrix.com/blogs/2017/10/13/new-citrix-cloud-simulation-for-citrix-partners/


Go to Top