Secured Execution Environments and Methods

US 20110314534A1
Filed: 04/14/2011
Published: 12/22/2011
Est. Priority Date: 04/14/2010
Status: Abandoned Application

First Claim

Patent Images

1. A method of providing a secured portable execution environment device, the method comprising the following steps:

providing a user with access to a configuration server;

using the configuration server to present a device configuration interface through which the user can (a) select a plurality of applications, and (b) submit a user authentication token;

using the configuration server to store the selected ones of the applications in a memory of the portable execution environment device, wherein the portable execution environment device has a computing host interface;

storing an application launcher in the memory;

establishing a secured container within the memory; and

using the configuration server to configure the application launcher to (a) allow launching of any one of the selected ones of the applications in a volatile memory of a host computer system coupled to the computing host interface, and (b) access the secured container through the computing host interface, when the user authenticates its identity via the user authentication token; and

providing the portable execution environment device to the user.

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A secured portable execution environment device could be provided by a business as a fee-based service, where a user selects applications that he wishes to license and methods of securing and backing up the execution environment. The device could be provided as a portable flash drive, which could then be plugged into any computer with any operating system to access the execution environment saved on the drive. When the user executes an application launcher on the flash drive and authenticates his identity, the application launcher allows the user to access secure applications saved on the flash drive and secure data saved in the application launcher environment.

93 Citations

View as Search Results

20 Claims

1. A method of providing a secured portable execution environment device, the method comprising the following steps:
- providing a user with access to a configuration server;
  
  using the configuration server to present a device configuration interface through which the user can (a) select a plurality of applications, and (b) submit a user authentication token;
  
  using the configuration server to store the selected ones of the applications in a memory of the portable execution environment device, wherein the portable execution environment device has a computing host interface;
  
  storing an application launcher in the memory;
  
  establishing a secured container within the memory; and
  
  using the configuration server to configure the application launcher to (a) allow launching of any one of the selected ones of the applications in a volatile memory of a host computer system coupled to the computing host interface, and (b) access the secured container through the computing host interface, when the user authenticates its identity via the user authentication token; and
  
  providing the portable execution environment device to the user.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20)
- - 2. The method of claim 1, wherein the step of configuring the application launcher includes providing a key file encoded with the authentication token, wherein the key file is stored in the memory and is at least in part required for authentication.
  - 3. The method of claim 2, further comprising encoding the key file with a unique storage device ID of the portable execution environment device.
  - 4. The method of claim 1, further comprising mounting the secured container as a volume on the host computer system.
  - 5. The method of claim 1, encrypting an application data file required to launch at least one of the plurality of applications as the application data file is stored within the secured container.
  - 6. The method of claim 5, decrypting the application data file as the application data file is read by the application launcher.
  - 7. The method of claim 1, wherein the step of storing the selected ones of the applications includes placing the selected ones of the applications into hierarchical file structure having a limited separation between directories.
  - 8. The method of claim 7, wherein the directories of the file structure are separated from one other by no more than two directories.
  - 9. The method of claim 1, further comprising sending a notification to a device tracking server to indicate use of the secured container.
  - 10. The method of claim 9, wherein the notification includes at least one of an ID of the portable execution environment device, an IP address of the host computer system, and a time stamp.
  - 11. The method of claim 1, further comprising mirroring the selected ones of the applications in the secured container with a remote application server.
  - 12. The method of claim 11, further comprising synchronizing the selected ones of the applications with the remote application server when the user invokes the application launcher.
  - 13. The method of claim 1, wherein the portable execution environment device comprises a memory device selected from the group consisting of:
    - a flash drive, a solid state disk, a hard disk drive, and a cell phone.
  - 14. The method of claim 1, wherein the device configuration interface allows the user to select a plurality of target platforms, and wherein the step of configuring the application launcher allows launching of the applications and the application launcher in any of the selected ones of the platforms.
  - 15. The method of claim 1, wherein the step of configuring the application launcher includes providing a multi-platform application launching environment.
  - 16. The method of claim 1, wherein the step of configuring the application launcher includes allowing the user to move one of the selected ones of the applications from the secured container to a non-secured container.
  - 17. The method of claim 1, wherein the step of configuring the application launcher includes allowing the user to move a data file from the secured container to a non-secured container.
  - 18. The method of claim 17, wherein the non-secured container resides in the memory.
  - 19. The method of claim 1, wherein the step of establishing the secured container includes creating a nested container in the memory, wherein the selected ones of the applications reside within the nested container.
  - 20. The method of claim 1, wherein the step of establishing the secured container includes creating a hidden container in the memory, wherein the selected ones of the applications reside within the hidden container.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
James Lee
Original Assignee
James Lee
Inventors
James, Lee

Application Number

US13/087,355
Publication Number

US 20110314534A1
Time in Patent Office

Days
Field of Search
US Class Current

726/9
CPC Class Codes

G06F 21/53 by executing in a restricte...

Secured Execution Environments and Methods

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

93 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Secured Execution Environments and Methods

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

93 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links