SYSTEM AND METHOD FOR PRIVILEGE MANAGEMENT AND REVOCATION
First Claim
1. A method for managing privileges in a system comprising electronic devices having applications resident on said electronic devices, comprising:
- monitoring electronic devices that are present in the system;
detecting a change in privileges available to said electronic devices; and
resetting said electronic devices in response to detection of a change in privileges.
2 Assignments
0 Petitions
Accused Products
Abstract
The present disclosure relates generally to the management of privileges associated with certain applications that are accessible by users of electronic equipment, such as, for example, networked computers, mobile wireless communications devices, and the like. In particular, the disclosure is directed to systems and methods for managing privileges associated with particular applications and for revoking these privileges in a timely and robust manner. For example, the device keeps track of which applications get access to which privileges. When policies or application control changes, the system detects which privileges have been revoked for which applications. This can be accomplished by simply comparing the old set of privileges with the new set of privileges. For each revoked privilege for a given application, the system determines if the application has ever accessed that privilege in the past. If an application has accessed a privilege that is now revoked at any time in the past, the device is reset. To ensure that privileges that may be passed between applications are not overlooked, the device is arranged to perform a reset if any revoked privilege accessible by the device is one that may be passed between applications.
-
Citations
21 Claims
-
1. A method for managing privileges in a system comprising electronic devices having applications resident on said electronic devices, comprising:
-
monitoring electronic devices that are present in the system; detecting a change in privileges available to said electronic devices; and resetting said electronic devices in response to detection of a change in privileges. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A system for managing privileges for a plurality of electronic devices having applications resident thereon, said system comprising at least one processor configured to:
-
monitor said plurality of electronic devices; detect a change in privileges available to said plurality of electronic devices; and reset each of said electronic devices in response to detection of a change in privileges. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. A computer-readable medium comprising instructions executable by a processor, wherein the instructions cause the process to perform acts of a method for managing privileges in a system comprising electronic devices having applications resident on said electronic devices, said acts comprising:
-
monitoring electronic devices that are present in the system; detecting a change in privileges available to said electronic devices; and resetting said electronic devices in response to detection of a change in privileges. - View Dependent Claims (16, 17, 18, 19, 20, 21)
-
Specification
-
- Resources
-
Current AssigneeBlackberry Limited
-
Original AssigneeResearch In Motion Limited (Blackberry Limited)
-
InventorsAdams, Neil P., Little, Herbert A.
-
Granted Patent
-
Time in Patent OfficeDays
-
Field of Search
-
US Class Current726/4
-
CPC Class CodesG06F 21/121 Restricting unauthorised ex...G06F 21/6218 to a system of files or obj...H04L 63/10 for controlling access to d...H04L 63/105 Multiple levels of securityH04L 63/1408 by monitoring network traff...H04L 63/20 for managing network securi...
