SECURE MOBILE FRAMEWORK
First Claim
1. A method comprising:
- receiving, at a gateway associated with an enterprise, an authentication request from a remote device to access a service provided by the enterprise, wherein the request originates from an enterprise managed application running on the remote device;
generating a framework authentication token and a security policy based on the service provided by the enterprise that the remote device is requesting to access;
transmitting the framework authentication token and the security policy to the remote device, wherein the remote device ensures compliance with the security policy before generating a connection request to connect to the service; and
receiving, from the remote device, the connection request based on the framework authentication token and the security policy, wherein a service authenticator determines if the remote device is authorized to access the service.
4 Assignments
0 Petitions
Accused Products
Abstract
Systems and methods for a secure mobile framework to securely connect applications running on mobile devices to services within an enterprise are provided. Various embodiments provide mechanisms of securitizing data and communication between mobile devices and end point services accessed from a gateway of responsible authorization, authentication, anomaly detection, fraud detection, and policy management. Some embodiments provide for the integration of server and client side security mechanisms, binding of a user/application/device to an endpoint service along with multiple encryption mechanisms. For example, the secure mobile framework provides a secure container on the mobile device, secure files, a virtual file system partition, a multiple level authentication approach (e.g., to access a secure container on the mobile device and to access enterprise services), and a server side fraud detection system.
119 Citations
25 Claims
-
1. A method comprising:
-
receiving, at a gateway associated with an enterprise, an authentication request from a remote device to access a service provided by the enterprise, wherein the request originates from an enterprise managed application running on the remote device; generating a framework authentication token and a security policy based on the service provided by the enterprise that the remote device is requesting to access; transmitting the framework authentication token and the security policy to the remote device, wherein the remote device ensures compliance with the security policy before generating a connection request to connect to the service; and receiving, from the remote device, the connection request based on the framework authentication token and the security policy, wherein a service authenticator determines if the remote device is authorized to access the service. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A system comprising:
-
a gateway configured to provide remote devices access to services of an enterprise, wherein the remote devices have stored thereon one or more applications managed by the enterprise; an authenticator, accessible by the gateway, configured to determine if a user is authorized to access the enterprise and to construct policies regarding the management of the one or more applications; a token generator, accessible by the gateway, configured to generate one or more tokens for creating secure connections between the one or more applications managed by the enterprise and the services; and a communications module configured to communicate the policies to the remote devices. - View Dependent Claims (14, 15, 16, 17, 18, 19, 20)
-
-
21. A method comprising:
-
receiving, at a gateway, a request from an initiating device to establish a service connection between an enterprise managed application running on the initiating device and an enterprise service, wherein the request includes authentication credentials associated with an end-user; generating a framework authentication token; transmitting the framework authentication token to the initiating device, wherein upon receipt the initiating device initiates a service connection request based on the authentication token; and creating a secure connection between the enterprise service and the initiating device upon successful validation of the service connection request. - View Dependent Claims (22, 23, 24, 25)
-
Specification