SAFE APPLICATION DISTRIBUTION AND EXECUTION IN A WIRELESS ENVIRONMENT
First Claim
1. A computer-readable medium containing computer-executable instructions for distributing an application for use on a wireless device communicating over a wireless network, comprising the steps of:
- receiving the application and a first identification information associated with the application, the application being independent of any act for performing wireless communication between the wireless device and the wireless network, the first identification information being used to confirm an identity of a source of the application;
determining that the application satisfies each criterion in a set of criteria, wherein at least one criterion in the set of criteria is established by a managing authority for a managed environment;
after the determining,assigning a set of permissions to the application, each permission in the set of permissions being associated with a respective criterion in the set of criteria; and
transmitting the application and the set of permissions to the wireless device.
1 Assignment
0 Petitions
Accused Products
Abstract
The present invention provides safe and secure application distribution and execution by providing systems and methods that test an application to ensure that it satisfies predetermined criteria associated with the environment in which it will execute. Furthermore, by using rules and permission lists, application removal, and a modification detection technique, such as digital signatures, the present invention provides mechanisms to safely distribute and execute tested, or untested, applications by determining whether the application has been modified, determining if it has permission to execute in a given wireless device environment, and removing the application should it be desirable to do so.
-
Citations
41 Claims
-
1. A computer-readable medium containing computer-executable instructions for distributing an application for use on a wireless device communicating over a wireless network, comprising the steps of:
-
receiving the application and a first identification information associated with the application, the application being independent of any act for performing wireless communication between the wireless device and the wireless network, the first identification information being used to confirm an identity of a source of the application; determining that the application satisfies each criterion in a set of criteria, wherein at least one criterion in the set of criteria is established by a managing authority for a managed environment; after the determining, assigning a set of permissions to the application, each permission in the set of permissions being associated with a respective criterion in the set of criteria; and transmitting the application and the set of permissions to the wireless device. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A system for processing and distributing an application for use on a wireless device communicating over a wireless network, comprising:
a server configured to; receive the application and a first identification information associated with the application, the application being independent of any act for performing wireless communication between the wireless device and the wireless network, the first identification information being used to confirm an identity of a source of the application; determine that the application satisfies each criterion in a set of criteria, wherein at least one criterion in the set of criteria is established by a managing authority for a managed environment; after the determination, assign a set of permissions to the application, each permission in the set of permissions being associated with a respective criterion in the set of criteria; and transmit the application and the set of permissions to the wireless device. - View Dependent Claims (8, 9)
-
10. A system for processing and distributing an application for use on a wireless device communicating over a wireless network, comprising:
a server means, comprising; means for receiving the application and a first identification information associated with the application, the application being independent of any act for performing wireless communication between the wireless device and the wireless network, the first identification information being used to confirm an identity of a source of the application; means for determining that the application satisfies each criterion in a set of criteria, wherein at least one criterion in the set of criteria is established by a managing authority for a managed environment; means for assigning a set of permissions to the application, each permission in the set of permissions being associated with a respective criterion in the set of criteria; and means for transmitting the application and the set of permissions to the wireless device.
-
11. A computer-readable medium containing computer-executable instructions for processing an application for execution on a wireless device communicating over a wireless network comprising the steps of:
-
receiving, from a server over the wireless network, a transmission comprising the application and a set of permissions; determining, based upon evaluating a rule previously stored in the wireless device on the set of permissions, whether to enable the application for execution on the wireless device; executing the application if the application has been enabled for execution; and disabling the application if the application has not been enabled for execution on the wireless device. - View Dependent Claims (12, 13, 14, 15, 16)
-
-
17. A wireless device which communicates over a wireless network and is capable of executing an application, comprising:
-
a wireless interface for receiving the application, a set of permissions, and an identification information, the application being independent of any act for performing wireless communication between the wireless device and the wireless network; and a computer platform coupled to the wireless interface, the computer platform comprising a storage for storing a previously defined rule, the application, the set of permissions, and the identification information, wherein the computer platform is configured to determine, based upon evaluating one or more rules against the set of permissions; whether to enable the application for execution on the wireless device; and whether to enable the application for execution in the wireless network; and further wherein the computer platform is configured to; execute the application if the application has been enabled for execution; and remove the application if the application has not been enabled for execution. - View Dependent Claims (18, 19)
-
-
20. A wireless device which communicates over a wireless network and is capable of executing an application, comprising:
-
a wireless interface means for receiving the application, a set of permissions, and an identification information, the application being independent of any act for performing wireless communication between the wireless device and the wireless network; and a computer platform means, coupled to the wireless interface means, the computer platform means comprising; a storage means for storing one or more previously defined rules, the application, the set of permissions, and the identification information; means for determining, based upon evaluating at least one rule against the set of permissions, whether to enable the application for execution on the wireless device and whether to enable the application for execution in the wireless network; and means for executing the application if the application has been enabled for execution on the wireless device and in the wireless network. - View Dependent Claims (21)
-
-
22. A computer-readable medium containing computer-executable instructions for processing and distributing an application for use on a wireless device communicating over a wireless network, comprising the steps of:
-
receiving the application and a first identification information associated with the application, the application being independent of any act for performing wireless communication between the wireless device and the wireless network, the first identification information being used to confirm an identity of a source of the application; certifying the application satisfies each criterion in a set of criteria, wherein each criterion is respectively associated with a wireless environment; after the certifying, assigning a set of permissions to the application, the set of permissions having a plurality of permissions each associated with a respective criterion in the set of criteria; and transmitting the application, the set of permissions, and a second identification information usable to confirm an identity of a server, to the wireless device. - View Dependent Claims (23, 24, 25)
-
-
26. A method for a server processing and distributing an application for use on a wireless device communicating over a wireless network, comprising:
-
receiving the application and a first identification information associated with the application, the application being independent of any act for performing wireless communication between the wireless device and the wireless network, the first identification information being used to confirm an identity of a source of the application; certifying the application satisfies each criterion in a set of criteria, wherein each criterion is respectively associated with a wireless environment; after the certifying, assigning a set of permissions to the application, the set of permissions having a plurality of permissions each associated with a respective criterion in the set of criteria; and transmitting the application, the set of permissions, and a second identification information usable to confirm an identity of the server, to the wireless device. - View Dependent Claims (27, 28, 29)
-
-
30. A system for processing and distributing an application for use on a wireless device communicating over a wireless network, comprising:
a server configured to; receive the application and a first identification information associated with the application, the application being independent of any act for performing wireless communication between the wireless device and the wireless network, the first identification information being used to confirm an identity of a source of the application; certify that the application satisfies each criterion in a set of criteria, wherein each criterion is respectively associated with a wireless environment; after the certify, assign a set of permissions to the application, the set of permissions having a plurality of permissions each associated with a respective criterion in the set of criteria, and transmit the application, the set of permissions, and a second identification information usable to confirm an identity of the server, to the wireless device over the carrier network and the infrastructure. - View Dependent Claims (31, 32)
-
33. A system for processing and distributing an application for use on a wireless device communicating over a wireless network, comprising:
a server means, comprising; means for receiving the application and a first identification information associated with the application, the application being independent of any act for performing wireless communication between the wireless device and the wireless network, the first identification information being used to confirm an identity of a source of the application; means for certifying the application satisfies each criterion in a set of criteria, wherein each criterion is respectively associated with a wireless environment; means for assigning a set of permissions to the application after the application has been certified by the means for certifying, the set of permissions having a plurality of permissions each associated with a respective criterion in the set of criteria; and means for transmitting the application, the set of permissions, and a second identification information usable to confirm an identity of the server, to the wireless device.
-
34. A computer-readable medium containing computer-executable instructions for processing an application for execution on a wireless device communicating over a wireless network, comprising the steps of:
-
receiving a transmission comprising the application, a set of permissions, and an identification information; determining, based upon evaluating a rule previously stored in the wireless device on the set of permissions, whether to enable the application for execution; and executing the application if the application has been enabled for execution. - View Dependent Claims (35, 36)
-
-
37. A method of processing an application for execution on a wireless device communicating over a wireless network, comprising:
-
Receiving a transmission comprising the application, a set of permissions, and an identification information; determining, based upon evaluating a rule previously stored in the wireless device on the set of permissions, whether to enable the application for execution; and executing the application if the application has been enabled for execution. - View Dependent Claims (38, 39)
-
-
40. A wireless device which communicates over a wireless network and is capable of executing an application, comprising:
-
a wireless interface for receiving the application, a set of permissions, and an identification information, the application being independent of any act for performing wireless communication between the wireless device and the wireless network; and a computer platform, coupled to the wireless interface, the computer platform comprising a storage for storing a previously defined rule, the application, the set of permissions, and the identification information, wherein the computer platform is configured to determine, based upon evaluating the rule on the set of permissions; whether to enable the application for execution; execute the application if the application has been enabled for execution; and remove the application if the application has not been enabled for execution.
-
-
41. A wireless device which communicates over a wireless network and is capable of executing an application, comprising:
-
a wireless interface means for receiving the application, a set of permissions, and an identification information, the application being independent of any act for performing wireless communication between the wireless device and the wireless network; and a computer platform means, coupled to the wireless interface, the computer platform means comprising; a storage means for storing a previously defined rule, the application, the set of permissions, and the identification information; and means for determining, based upon evaluating the rule on the set of permissions whether to enable the application for execution, execute the application if the application has been enabled for execution, and remove the application if the application has not been enabled for execution.
-
Specification