System for device-access policy enforcement
First Claim
Patent Images
1. An access policy enforcement system, comprising:
- an environment state detector for determining a present environment state from a plurality of predetermined environment states in which a computing device that is structured to provide one or more services to a second device is operating; and
an access gate structured to prohibit or allow access to selected of the one or more services based on the present environment state.
1 Assignment
0 Petitions
Accused Products
Abstract
Embodiments of the invention include an access policy enforcement system for a system that provides services to other devices. As a service-providing device changes environments, or mobile states, access to the device'"'"'s services is automatically and transparently limited or expanded. One aspect of the access policy determines the particular state in which the service-providing device is operating. Another aspect uses the determined state to dictate which services will be available to other devices.
-
Citations
30 Claims
-
1. An access policy enforcement system, comprising:
-
an environment state detector for determining a present environment state from a plurality of predetermined environment states in which a computing device that is structured to provide one or more services to a second device is operating; and
an access gate structured to prohibit or allow access to selected of the one or more services based on the present environment state. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A computer system for providing services to a second device, the computer system comprising:
-
a microprocessor structured to execute instructions that cause services to be provided to the second device;
a main memory coupled to the microprocessor and structured to store data and programs for use by the microprocessor;
a communication module coupled to the microprocessor and to the main memory, the communication module structured to transfer data between the computer and the second device; and
an access policy enforcement system operable on the computing device, the access policy enforcement system including;
an environment state detector for determining a present environment state from a plurality of predetermined environment states in which the computing device is operating, and an access gate structured to prohibit or allow access to one or more selected services based on the present environment state. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. A method for tailoring services, comprising:
-
determining a present operating environment state of a service provider;
comparing services presently offered by the service provider to those services appropriate for the present operating environment state; and
when the services presently offered by the service provider do not match the services appropriate for the present operating environment state, changing services offered by the service provider to those services appropriate for the present operating environment state. - View Dependent Claims (16, 17, 18, 19, 20)
-
-
21. A method for dynamically changing security levels, comprising:
-
making a first set of services provided by a device accessible when the device is operating at a first mobile state;
changing from the first mobile state to a second mobile state; and
making a second set of services accessible, the second set of services different from the first set of services. - View Dependent Claims (22, 23, 24, 25)
-
-
26. An article comprising a machine-accessible medium having associated data that, when accessed, results in a machine:
-
determining a present operating environment state of a service-providing machine;
comparing services presently offered by the service-providing machine to those services appropriate for the present operating environment state; and
when the services presently offered by the service-providing machine do not match the services appropriate for the present operating environment state, changing services offered by the service-providing machine to those services appropriate for the present operating environment state. - View Dependent Claims (27, 28)
-
-
29. An article comprising a machine-accessible medium having associated data that, when accessed, results in a machine:
-
making a first set of services accessible when operating the machine in a first mobile state;
changing from the first mobile state to a second mobile state; and
after changing to the second mobile state, changing a security level of the machine by making a second set of services accessible, the second set of services different from the first set of services. - View Dependent Claims (30)
-
Specification