Method and System for Maintaining and Distributing Wireless Applications

US 20080301231A1
Filed: 07/08/2008
Published: 12/04/2008
Est. Priority Date: 11/28/2001
Status: Abandoned Application

First Claim

Patent Images

1. A method in a computer-based environment for preparing content to be deployed on a target wireless device, comprising:

determining whether pre-provisioned content corresponding to the target wireless device exists;

where the pre-provisioned content exists, determining whether the pre-provisioned content is stored with a trusted third party host, and where the pre-provisioned content is stored with the trusted third party host, retrieving the pre-provisioned content from the trusted third party host, and providing the pre-provisioned content to the target wireless device without additional provisioning; and

where the pre-provisioned content is unavailable, selecting the content from remotely stored, untrusted applications and provisioning the content for the target wireless device;

wherein the provisioning comprises intercepting the content and inspecting the content, wherein the inspecting comprises at least one of examining the content to detect malicious code, determining whether the content contains banned code, and determining whether the content contains designated API;

verifying that the target wireless device supports execution of the content by comparing the device capabilities to the content requirements; and

providing the verified and provisioned content to the target wireless device.

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Computer- and network-based methods and systems for maintaining and provisioning wireless applications are provided. Example embodiments provide a Mobile Application System (MAS), which is a collection of interoperating server components that work individually and together in a secure fashion to provide applications and resources to mobile subscriber devices, such as wireless devices. Embodiments of the present invention can also be used to deploy applications and resources for wired subscriber devices. Application, resources, and other content is provisioned and verified by the MAS for authorized access by the subscriber, compatibility with a requesting subscriber device, and the security and billing policies of the carrier and system administrators of the MAS. In this manner, applications, resources, and other content can be downloaded to devices, such as wireless devices, with greater assurance of their ability to successfully execute. In one embodiment, content is provisioned by one or more of the steps of inspecting the content for malicious or banned code, optimizing the content for smaller size and greater speed, instrumentation of code that implements security, billing, and other carrier policies, and packaging of code for the intended subscriber device. Additional security is provided through application filters that are used to prevent applications that contain designated API from being downloaded to a subscriber'"'"'s device. In one embodiment, the MAS includes a Protocol Manager, Provisioning Manager, Cache, Deployment Manager, Billing Manager, Logging Manager, Administrator, and Heartbeat Monitor, which interoperate to provide the provisioning functions.

Citations

73 Claims

1. A method in a computer-based environment for preparing content to be deployed on a target wireless device, comprising:
- determining whether pre-provisioned content corresponding to the target wireless device exists;
  
  where the pre-provisioned content exists, determining whether the pre-provisioned content is stored with a trusted third party host, and where the pre-provisioned content is stored with the trusted third party host, retrieving the pre-provisioned content from the trusted third party host, and providing the pre-provisioned content to the target wireless device without additional provisioning; and
  
  where the pre-provisioned content is unavailable, selecting the content from remotely stored, untrusted applications and provisioning the content for the target wireless device;
  
  wherein the provisioning comprises intercepting the content and inspecting the content, wherein the inspecting comprises at least one of examining the content to detect malicious code, determining whether the content contains banned code, and determining whether the content contains designated API;
  
  verifying that the target wireless device supports execution of the content by comparing the device capabilities to the content requirements; and
  
  providing the verified and provisioned content to the target wireless device.
- View Dependent Claims (5, 13, 14, 23)
- - 5. The method of claim 1 wherein the provisioning comprises inspecting the content, wherein inspecting the content comprises an operation selected from the group consisting of deconstructing a structure of the content, checking for malicious code, checking for banned code, determining the applicable application of filters, and checking a number of activated threads.
  - 13. The method of claim 1 wherein the verifying that the device supports execution of the content further comprises identifying a device, accessing capabilities of the device from a device profile, accessing device requirements of the content, and determining whether resources required by the content are available according to the device profile.
  - 14. The method of claim 13 wherein the device profile contains information relevant to the capabilities of the device, wherein the information relevant to the capabilities of the device are selected from the group consisting of memory capacity, processor type, processing speed, and maximum size of a downloadable application.
  - 23. The method of claim 1 wherein the content preparation provides walled-garden provisioning.

2. (canceled)

3. (canceled)

4. (canceled)
- View Dependent Claims (11, 12, 15)
- - 11. The method of claim 4 wherein the provisioning comprises optimizing the content, wherein the optimizing comprises at least one of:
    - reducing the size of variable names;
      
      modifying instructions to more efficient instructions;
      
      mapping executable paths in code; and
      
      removing unused code.
  - 12. The method of claim 4 wherein the provisioning comprises instrumenting the content, wherein the instrumenting comprises inserting code that implements at least one of a billing policy, a usage policy, a notification, and an automatic content update mechanism.
  - 15. The method of claim 12 wherein the billing policy comprises at least one of subscription based billing, trial use, download based billing, transmission based billing, and prepaid billing.

6. (canceled)

7. (canceled)

8. (canceled)

9. (canceled)

10. (canceled)

16. (canceled)

17. (canceled)
- View Dependent Claims (18)
- - 18. The method of claim 17 wherein determining whether the requester is authorized determines whether the requestor has sufficient funds in a prepaid billing account to use the content.

19. (canceled)

20. (canceled)

21. (canceled)

22. (canceled)

24. (canceled)

25. (canceled)

26. (canceled)

27. (canceled)

28. (canceled)

29. (canceled)

30. A network-based transmission system operable in conjunction with at least one computer processor comprising:
- a provisioning manager operable to control the at least one computer processor and configured to determine whether pre-provisioned content corresponding to a requesting device exists and where pre-provisioned content exists, to determine whether the pre-provisioned content is stored with a trusted, third party application provider;
  
  a deployment manager operable to control the at least one computer processor and configured to retrieve an application, and where the pre-provisioned content is stored with the trusted, third party application provider to retrieve the pre-provisioned content from the trusted, third party application provider and to deploy the pre-provisioned content without additional provisioning, and otherwise from untrusted, third party hosts; and
  
  an inspector operable to control the at least one computer processor, wherein when the application is retrieved from an untrusted, third party host, the inspector from one of the group consisting of locally stored data repositories, trusted third party application providers, and untrusted, third party hosts; and
  
  an inspector, wherein when the application is retrieved from an untrusted, third party host, the inspector is configured to control the at least one computer processor to examine the application by a method selected from the group consisting of examining the application to detect malicious code, performing a class analysis of the application to verify that classes in the application conform to desired standards and applying application filters to the application.
- View Dependent Claims (32, 33, 35, 36, 39, 40)
- - 32. The transmission system of claim 30, further comprising at least one of an optimizer and an instrumentation analyzer, operable with the at least one computer processor, wherein the optimizer is configured to reduce a code size of the application when possible, and wherein the instrumentation analyzer is configured to modify code in the application according to specified policies.
  - 33. The transmission system of claim 30 wherein the desired standards are selected from the group consisting of number of API calls, type of API call, and frequency of API calls.
  - 35. The transmission system of claim 30 wherein the application filters comprise dynamically specifiable filters, operable with the at least one computer processor, wherein the dynamically specifiable filters specify a list of criteria to be filtered and a target.
  - 36. The transmission system of claim 32 wherein the instrumentation analyzer is configured to cause the at least one computer provessor to insert code into the application, the code being configured to implement at least one of a billing policy, usage policy, notification, and automated content update mechanism.
  - 39. The transmission system of claim 30, further comprising a provisioning manager is configured to cause the at least one computer processor to verify whether a target device supports execution of the application by a method selected from the group consisting of determining at least one of a user of the target device is authorized to receive the application, determining whether the target device supports an API used by the application, and determining whether the application has not been banned.
  - 40. The transmission system of claim 30, wherein the provisioning manager is configured to cause the at least one computer processor to verify whether a device supports execution of the application by identifying the device, accessing capabilities of the device from a device profile, accessing device requirements of the application, and determining whether resources required by the application are available according to the device profile.

31. (canceled)

34. (canceled)

37. (canceled)

38. (canceled)

41. (canceled)

42. (canceled)

43. (canceled)

44. (canceled)

45. A mobile applications system operable in conjunction with a computer processor, the mobile applications system comprising a system application operable to control the computer processor to determine whether pre-provisioned content corresponding to a target device exists, and where it does not, to prepare content for deployment on the target device, such that when the pre-provisioned content exists, the computer processor determined whether the pre-provisioned content is stored with a trusted, third party application provider and fetches the pre-provisioned content from the trusted, third party application provider, and when the pre-provisioned content does not exist, to fetch a retrieved application from an untrusted, third party host;
- wherein where the pre-provisioned content is stored with the trusted, third party application provider, the system application is configured to deliver the pre-provisioned content without additional provisioning; and
  
  otherwise to examine the retrieved application by a method selected from the group consisting of examining the retrieved application to detect malicious code, performing a class analysis of the retrieved application to verify that classes in the retrieved application conform to desired standards, and applying application filters to the retrieved application; and
  
  verifying that the target device supports execution of the retrieved application without executing the retrieved application on the device.

46. (canceled)

47. (canceled)

48. (canceled)

49. (canceled)

50. (canceled)

51. (canceled)

52. (canceled)

53. (canceled)

54. (canceled)

55. (canceled)

56. (canceled)

57. (canceled)

58. (canceled)

59. (canceled)

60. (canceled)

61. A computer-based content deployment system for one of delivering pre-provisioned content or provisioning retrieved content for a target device, operable with a computer and comprising:
- a verification manager that causes the computer to verify that the retrieved content is authorized and the target device supports resources needed by the content;
  
  a deployment manager coupled to and operational with both the verification manager and the computer, the deployment manager being configured to retrieve the content from at least trusted, third party application providers and untrusted, third party hosts;
  
  an inspector, coupled to and operational with the verification manager and deployment manager and the computer, wherein when the content is retrieved from an untrusted, third party host, the inspector examines the content by a method selected from the group consisting of examining the retrieved content to detect malicious code, performing a class analysis of the content to verify that classes in the content conform to desired standards, and applying application filters to the content; and
  
  a provisioning manager, operable with the computer and operable with and coupled to the verification manager, the deployment manager, and the inspector that, wherein the content is retrieved from one or more of the untrusted, third party hosts, provisions the content according to the target device by at least one of inspecting the content, optimizing the content, and instrumenting the content or determined whether pre-provisioned content exists, and where the pre-provisioned content exists, determined whether the pre-provisioned content is stored with a trusted, third party host, and where the pre-provisioned content is stored with the trusted, third party host, retrieves the pre-provisioned content from the trusted third party host without additional provisioning.
- View Dependent Claims (62, 63)
- - 62. The deployment system of claim 61 wherein the provisioning manager further comprises at least one of:
    - subscriber verifier;
      
      device verifier; and
      
      application verifier.
  - 63. The deployment system of claim 62 wherein the subscriber verifier causes the computer to determine whether a subscriber of a wireless carrier service is authorized to use the content.

64. (canceled)

65. (canceled)

66. (canceled)

67. (canceled)

68. (canceled)

69. (canceled)

70. (canceled)

71. (canceled)

72. (canceled)

73. (canceled)

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Mazin Ramadan, Samir Narendra Mehta, Zeyad Ramadan
Original Assignee
Mazin Ramadan, Samir Narendra Mehta, Zeyad Ramadan
Inventors
Mehta, Samir Narendra, Ramadan, Mazin, Ramadan, Zeyad

Application Number

US12/169,178
Publication Number

US 20080301231A1
Time in Patent Office

Days
Field of Search
US Class Current

709/204
CPC Class Codes

G06F 21/10   Protecting distributed prog...

G06F 2221/2117   User registration

G06F 2221/2135   Metering

G06F 2221/2137   Time limited access, e.g. t...

G06F 8/61   Installation

H04L 63/0227   Filtering policies mail mes...

H04L 67/04   specially adapted for termi...

H04L 67/303   Terminal profiles

H04L 67/34   involving the movement of s...

H04L 69/329   in the application layer [O...

H04M 15/68   Payment of value-added serv...

H04M 2215/0196   Payment of value-added serv...

H04M 2215/32   Involving wireless systems

H04W 12/03   Protecting confidentiality,...

H04W 12/037   of the control plane, e.g. ...

H04W 12/121   Wireless intrusion detectio...

H04W 12/37   Managing security policies ...

H04W 28/06   Optimizing the usage of the...

H04W 28/18   Negotiating wireless commun...

H04W 4/24   Accounting or billing

Method and System for Maintaining and Distributing Wireless Applications

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

Citations

73 Claims

Specification

Solutions

Use Cases

Quick Links

Method and System for Maintaining and Distributing Wireless Applications

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

73 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links