Protecting sensitive data in a security area

US 10,306,465 B2
Filed: 07/18/2017
Issued: 05/28/2019
Est. Priority Date: 06/23/2015
Status: Active Grant

First Claim

Patent Images

1. A method for managing data security on a mobile device, comprising:

receiving data associated with a mobile device, the data comprising an identification (ID) of the mobile device and a location of the mobile device relative to one or more location sensor devices;

determining a path, relative to the one or more location sensor devices, through which the mobile device has traveled;

communicating an electronic security key to the mobile device based on determining that the path corresponds to a defined path associated with the mobile device;

updating the electronic security key based on a length of time remaining stationary;

receiving a communication from one or more location sensors that the mobile device has left a secure location;

generating an alert message to a system administrator;

reactivating a revoked electronic security key based on determining that the mobile device has returned to the secure location; and

invalidating the electronic key based on determining that the mobile device is not registered based on querying a registration database.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Managing data security on a mobile device. Data associated with a mobile device is received; the data includes an identification (ID) of the mobile device and a location of the mobile device relative to one or more location sensor devices. A path is determined, relative to the one or more location sensor devices, through which the mobile device has traveled. An electronic security key is communicated to the mobile device based on determining that the path corresponds to a defined path associated with the mobile device.

Citations

17 Claims

1. A method for managing data security on a mobile device, comprising:
- receiving data associated with a mobile device, the data comprising an identification (ID) of the mobile device and a location of the mobile device relative to one or more location sensor devices;
  
  determining a path, relative to the one or more location sensor devices, through which the mobile device has traveled;
  
  communicating an electronic security key to the mobile device based on determining that the path corresponds to a defined path associated with the mobile device;
  
  updating the electronic security key based on a length of time remaining stationary;
  
  receiving a communication from one or more location sensors that the mobile device has left a secure location;
  
  generating an alert message to a system administrator;
  
  reactivating a revoked electronic security key based on determining that the mobile device has returned to the secure location; and
  
  invalidating the electronic key based on determining that the mobile device is not registered based on querying a registration database.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The method of claim 1, further comprising:
    - updating the determined path based on receiving new data associated with the mobile device, the new data comprising the ID of the mobile device and a new location of the mobile device relative to the one or more location sensor devices.
  - 3. The method of claim 2, wherein communicating the electronic security key to the mobile device is performed after determining that a predefined length of time has passed since last updating the determined path.
  - 4. The method of claim 1, further comprising:
    - appending an electronic record associated with the mobile device in an electronic table to include information comprising one or more of the ID of the mobile device, the location of the mobile device, and a timestamp associated with the location of the mobile device.
  - 5. The method of claim 1, further comprising:
    - updating the electronic key to include one or both of the received data and new data associated with the mobile device, the new data comprising the ID of the mobile device and a new location of the mobile device relative to the one or more location sensor devices.
  - 6. The method of claim 1, wherein the electronic security key is one or both of:
    - an encryption key, whereby the mobile device encrypts data, prior to storing the data on a storage device of the mobile device, using the electronic security key; and
      
      a decryption key, whereby the mobile device decrypts data stored on a storage device of the mobile device using the electronic security key.
  - 7. The method of claim 1, wherein determining the path further comprises:
    - receiving data corresponding to, relative to the mobile device, one or more of speed of movement, frequency of remaining stationary, and length of time of remaining stationary.

8. A computer system for managing data security on a mobile device, comprising:
- a computer device having a processor and a tangible storage device; and
  
  a program embodied on the storage device for execution by the processor, the program having a plurality of program instructions comprising program instructions for;
  
  receiving data associated with a mobile device, the data comprising an identification (ID) of the mobile device and a location of the mobile device relative to one or more location sensor devices;
  
  determining a path, relative to the one or more location sensor devices, through which the mobile device has traveled;
  
  communicating an electronic security key to the mobile device based on determining that the path corresponds to a defined path associated with the mobile device;
  
  updating the electronic security key based on a length of time remaining stationary;
  
  receiving a communication from one or more location sensors that the mobile device has left a secure location;
  
  generating an alert message to a system administrator;
  
  reactivating a revoked electronic security key based on determining that the mobile device has returned to the secure location; and
  
  invalidating the electronic key based on determining that the mobile device is not registered based on querying a registration database.
- View Dependent Claims (9, 10, 11, 12)
- - 9. The computer system of claim 8, wherein the program instructions further comprise instructions for:
    - updating the determined path based on receiving new data associated with the mobile device, the new data comprising the ID of the mobile device and a new location of the mobile device relative to the one or more location sensor devices.
  - 10. The computer system of claim 9, wherein the program instructions for communicating the electronic security key to the mobile device are executed after executing the program instructions for determining that a predefined length of time has passed since last updating the determined path.
  - 11. The computer system of claim 8, wherein the program instructions further comprise instructions for:
    - appending an electronic record associated with the mobile device in an electronic table to include information comprising one or more of the ID of the mobile device, the location of the mobile device, and a timestamp associated with the location of the mobile device.
  - 12. The computer system of claim 8, wherein the electronic security key is one or both of:
    - an encryption key, whereby the mobile device encrypts data, prior to storing the data on a storage device of the mobile device, using the electronic security key; and
      
      a decryption key, whereby the mobile device decrypts data stored on a storage device of the mobile device using the electronic security key.

13. A computer program product for managing data security on a mobile device, comprising a non-transitory tangible storage device having program code embodied therewith, the program code executable by a processor of a computer to perform a method, the method comprising:
- receiving data associated with a mobile device, by the processor, the data comprising an identification (ID) of the mobile device and a location of the mobile device relative to one or more location sensor devices;
  
  determining a path, relative to the one or more location sensor devices, through which the mobile device has traveled;
  
  communicating an electronic security key to the mobile device based on determining that the path corresponds to a defined path associated with the mobile device;
  
  updating the electronic security key based on a length of time remaining stationary;
  
  receiving a communication from one or more location sensors that the mobile device has left a secure location;
  
  generating an alert message to a system administrator;
  
  reactivating a revoked electronic security key based on determining that the mobile device has returned to the secure location; and
  
  invalidating the electronic key, by the processor, based on determining that the mobile device is not registered based on querying a registration database.
- View Dependent Claims (14, 15, 16, 17)
- - 14. The computer program product of claim 13, wherein the method further comprises:
    - updating the determined path, by the processor, based on receiving new data associated with the mobile device, the new data comprising the ID of the mobile device and a new location of the mobile device relative to the one or more location sensor devices.
  - 15. The computer program product of claim 14, wherein communicating the electronic security key to the mobile device is performed, by the processor, after determining, by the processor, that a predefined length of time has passed since last updating the determined path.
  - 16. The computer program product of claim 13, wherein the method further comprises:
    - appending an electronic record associated with the mobile device in an electronic table, by the processor, to include information comprising one or more of the ID of the mobile device, the location of the mobile device, and a timestamp associated with the location of the mobile device.
  - 17. The computer program product of claim 13, wherein the electronic security key is one or both of:
    - an encryption key, whereby the mobile device encrypts data, prior to storing the data on a storage device of the mobile device, using the electronic security key; and
      
      a decryption key, whereby the mobile device decrypts data stored on a storage device of the mobile device using the electronic security key.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
International Business Machines Corporation
Original Assignee
International Business Machines Corporation
Inventors
Chen, Ye, Hao, Ruomeng, Jiang, Ting, Wang, Ning, Wei, Shu Xi, Zhang, Youmiao
Primary Examiner(s)
Pham, Luu T
Assistant Examiner(s)
Baum, Ronald

Application Number

US15/652,272
Publication Number

US 20170318459A1
Time in Patent Office

679 Days
Field of Search

713171
US Class Current
CPC Class Codes

H04W 12/04   Key management, e.g. using ...

H04W 12/30   Security of mobile devices;...

H04W 12/63   Location-dependent; Proximi...

H04W 12/71   Hardware identity

Protecting sensitive data in a security area

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

17 Claims

Specification

Solutions

Use Cases

Quick Links

Protecting sensitive data in a security area

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

17 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links