System and method for secure, policy-based access control for mobile computing devices

1. A system for hiding the adjudication for authorizing a client access request to a secure computing device resource, the system having hidden secure policy instructions, a hidden secure adjudication process and hidden secure condition and parameters for hidden permitted operations on the requested secure computing resource device, the system comprising:

• a hardened and hidden policy decision server having a secure persistent memory for storing hierarchical sets of policy instructions and parameters, and having a processor for applying at least one set of the hierarchical sets of policy instructions and parameters to the client access request and computing an adjudicated decision of authorized access or denial of access based on hidden permitted operations on the requested secure computing device resource;
  
  an encrypted back-channel for communicating the client access request to the policy decision server and for hiding the policy instructions, the adjudication process, and the conditions and parameters utilized by the processor in adjudicating the client access requests from the requesting client;
  
  an agent, hidden from the requesting client and coupled to the policy decision server by the encrypted back-channel for transmitting client access requests, including additional parameters needed to access the secure computing device resource as required by the policy instructions, to the policy decision server; and
  
  a policy enforcement server coupled to the agent for receiving adjudicated decisions from the policy decision server, secure computing device resource and having an intercepting server for intercepting client access requests, said policy enforcement server being coupled to the agent for transmitting the access requests thereto, and for receiving and transmitting policy decisions to the agent and for enforcing the adjudicated decision received from the agent.