How is this different from Citrix / VMware Horizon?

Same shape — server-side desktops with a broker. We bring zero-trust by default, GPU on demand at hourly granularity, and a fixed-price model that's typically 35-55% lower TCO than Citrix at parity.

Does it work on Macs / Chromebooks / iPads?

Yes. Browser-based session client works on any modern OS. Native clients available for Windows / macOS / Linux / iOS / Android where useful.

Can users print / copy-paste / use USB?

Configurable per policy. Default for healthcare/finance: no clipboard from session-to-endpoint, no USB redirect, no local print. Loosened for engineering / dev workloads as needed.

What about latency on the road?

Adaptive codec degrades gracefully. We've supported productive sessions over 80ms+ links from international travel. Local apps stay local — the session is for corporate apps.

How fast can we roll it out?

Pilot of 10 users in one week. Production cutover for 500-user fleet typically 30-45 days including identity integration + image hardening.

VDI / RDS

Desktops that live in the cloud.
Data that never leaves.

Server-rendered desktops, conditional-access gated, GPU on demand. Identity verified at every session start, revoked at every session end. The endpoint sees pixels — never your data.

Book a pilot See pricing

Session trace

Five hops, one policy-enforced session.

Each hop is a policy decision point. The session opens only when every hop returns allow.

Session trace · policy hops

01 / 05

Hop 1 · User devicePolicy check

Is this device healthy enough to start a session?

Posture check via Entra ID: OS patch level, disk encryption, EDR present, jailbreak/root detection. Out-of-policy devices get a remediation page, not a session.

Device posture token · MFA assertion · session risk score

The session is allowed only when every hopreturns allow. Data never lands on the user's device.

Six tenets

What “no data on the endpoint” requires.

Each tenet is wired in as a default — not optional configuration.

No data on the endpoint

Apps run server-side. The endpoint sees pixels, not files. A lost laptop is just a lost piece of glass.

Identity-everywhere

Every session opens with MFA + Conditional Access + device posture. No standing access from a corporate laptop.

GPU on demand

L40S / H100 sessions for CAD, visualization, ML — released back to the pool when the user logs off.

Non-persistent + persistent

Fresh image every login for general workforce. Persistent desktops for engineers + dev workloads — same control plane.

Auditable per-session

Every login, every file access, every clipboard event logged at the session host. Six-year retention by default.

Bandwidth-aware

Adaptive codec — works on 4G phone, 25Mbps home internet, or gig fiber. No noticeable difference at the office.

Legacy VDI vs. Ultiblob

What changes when VDI ships with zero-trust defaults.

Legacy VDI deployment	Ultiblob VDI / RDS
Endpoint with corporate data sprawled across local disk	Endpoint with zero corporate data. Lost laptop = no incident.
Citrix licensing maze with per-feature upcharges	Per-named-user flat pricing including GPU pooling and recording.
Patch the OS on 500 endpoints monthly + hope they comply	Patch the golden image once. Every new session boots into the patched state.
VPN required to access internal apps	Zero-trust access — apps are accessed from the session host, not through a tunnel from the endpoint.

By vertical

FAQ

VDI / RDS, asked + answered.

How is this different from Citrix / VMware Horizon?: Same shape — server-side desktops with a broker. We bring zero-trust by default, GPU on demand at hourly granularity, and a fixed-price model that's typically 35-55% lower TCO than Citrix at parity.
Does it work on Macs / Chromebooks / iPads?
Can users print / copy-paste / use USB?
What about latency on the road?
How fast can we roll it out?

Stop carrying corporate data on the device

Pilot 10 users in one week.

We deploy a sandbox tenant, hook into your Entra ID, hand you the URL. Try it on a real workload before signing anything.

Book the pilot See pricing

Desktops that live in the cloud.
Data that never leaves.

Five hops, one policy-enforced session.

What “no data on the endpoint” requires.

No data on the endpoint

Identity-everywhere

GPU on demand

Non-persistent + persistent

Auditable per-session

Bandwidth-aware

What changes when VDI ships with zero-trust defaults.

Where VDI earns its keep.

Healthcare

Finance & tax

Engineering

VDI / RDS, asked + answered.

Pilot 10 users in one week.

Desktops that live in the cloud.Data that never leaves.

Five hops, one policy-enforced session.

What “no data on the endpoint” requires.

No data on the endpoint

Identity-everywhere

GPU on demand

Non-persistent + persistent

Auditable per-session

Bandwidth-aware

What changes when VDI ships with zero-trust defaults.

Where VDI earns its keep.

Healthcare

Finance & tax

Engineering

VDI / RDS, asked + answered.

Pilot 10 users in one week.

Desktops that live in the cloud.
Data that never leaves.