SYSTEMS AND METHODS TO CONTROL DEVICE ENDPOINT BEHAVIOR USING PERSONAE AND POLICIES
First Claim
Patent Images
1. A method comprising:
- defining a plurality of personae for a device, each persona according variable access responsive to different access criteria;
applying a policy for each persona, each policy defining conditions for the different access criteria;
implementing a sandbox for each persona based on the policy of each persona;
according access to device resources responsive to access criteria.
3 Assignments
0 Petitions
Accused Products
Abstract
The creation of multiple personae in mobile devices. Access to personae is controlled based on the persona that is currently active. The creation or existence of different personae helps prevent data leakage or loss, in that any or all of the following characteristics, by way of example, may be manifested: business data and applications are firewalled from applications or other items associated with personal use; connectivity of the device is controlled; resources (such cameras, GPS, other sensors, etc.) on the device are controlled; data are protected even if removable storage or the device itself are lost.
-
Citations
20 Claims
-
1. A method comprising:
-
defining a plurality of personae for a device, each persona according variable access responsive to different access criteria; applying a policy for each persona, each policy defining conditions for the different access criteria; implementing a sandbox for each persona based on the policy of each persona; according access to device resources responsive to access criteria. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. An apparatus comprising:
-
one or more processors; and a computer readable storage medium having computer readable program code embodied therewith and executable by the one or more processors, the computer readable program code comprising; computer readable program code configured to define a plurality of personae for a device, each persona according variable access responsive to different access criteria; computer readable program code configured to apply a policy for each persona, each policy defining conditions for the different access criteria; computer readable program code configured to implement a sandbox for each persona based on the policy of each persona; computer readable program code configured to accord access to device resources responsive to access criteria. - View Dependent Claims (11)
-
-
12. A computer program product comprising:
-
a computer readable storage medium having computer readable program code embodied therewith, the computer readable program code comprising; computer readable program code configured to define a plurality of personae for a device, each persona according variable access responsive to different access criteria; computer readable program code configured to apply a policy for each persona, each policy defining conditions for the different access criteria; computer readable program code configured to implement a sandbox for each persona based on the policy of each persona; computer readable program code configured to accord access to device resources responsive to access criteria. - View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20)
-
Specification