Embedding security posture in network traffic
First Claim
Patent Images
1. A method, comprising:
- registering a service node with a device management server to provide a service;
negotiating with the device management server regarding a data structure associated with security posture information, wherein the data structure includes a mapping of one or more security postures to corresponding posture values;
receiving from a mobile device a message that includes the security posture information;
validating the mobile device based on the security posture information; and
providing the mobile device with access to the service based at least in part on the validation.
3 Assignments
0 Petitions
Accused Products
Abstract
Embedding security posture in network traffic is disclosed. Security posture information is received. The security posture information is embedded into a message. The message including the security posture information is sent from a mobile device to a service node. The service node uses the security posture information to validate the mobile device to access a service. The service accesses the service based at least in part on the validation.
15 Citations
26 Claims
-
1. A method, comprising:
-
registering a service node with a device management server to provide a service; negotiating with the device management server regarding a data structure associated with security posture information, wherein the data structure includes a mapping of one or more security postures to corresponding posture values; receiving from a mobile device a message that includes the security posture information; validating the mobile device based on the security posture information; and providing the mobile device with access to the service based at least in part on the validation. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20)
-
-
21. A method, comprising:
-
registering a service node with a device management server to provide a service; negotiating with the device management server regarding a data structure associated with security posture information, wherein the data structure includes a mapping of one or more security postures to corresponding posture values; receiving from a mobile device a message that includes the security posture information; analyzing the security posture information; validating the mobile device based on the security posture information; and providing the mobile device access to the service based at least in part on the analysis of the security posture information. - View Dependent Claims (22, 23)
-
-
24. A method, comprising:
-
registering a service node with a device management server to provide a service; negotiating with the device management server regarding a data structure associated with security posture information, wherein the data structure includes a mapping of one or more security postures to corresponding posture values; receiving from a mobile device a message that includes the security posture information; analyzing the security posture information; validating the mobile device based on the security posture information; and denying the mobile device access to the service based at least in part on the analysis of the security posture information.
-
-
25. A system, comprising:
-
a processor; and a memory coupled with the processor, wherein the memory is configured to provide the processor with instructions which when executed cause the processor to; register a service node with a device management server to provide a service; negotiate with the device management server regarding a data structure associated with security posture information, wherein the data structure includes a mapping of one or more security postures to corresponding posture values; receive from a mobile device a message that includes the security posture information; validate the mobile device based on the security posture information; and provide the mobile device with access to the service based at least in part on the validation.
-
-
26. A computer program product, the computer program product being embodied in a tangible non-transitory computer readable storage medium and comprising computer instructions for:
-
registering a service node with a device management server to provide a service; negotiating with the device management server regarding a data structure associated with security posture information, wherein the data structure includes a mapping of one or more security postures to corresponding posture values; receiving from a mobile device a message that includes the security posture information; validating the mobile device based on the security posture information; providing the mobile device with access to the service based at least in part on the validation.
-
Specification