MULTIPLE APPLICATION CONTAINERIZATION IN A SINGLE CONTAINER
First Claim
Patent Images
1. An apparatus, comprising:
- a multiple application container that comprises socket monitoring and redirect logic, virtual private network (VPN) logic, and file input/output (I/O) logic;
wherein the VPN logic establishes a VPN tunnel with a predefined associated network that is shared by a first set of two or more associated applications within the multiple application container;
wherein the VPN logic excludes from the VPN tunnel data traffic between the associated network and associated applications other than the first set of two or more associated applications and stored on the apparatus outside of the multiple application container;
wherein the socket monitoring and redirect logic redirects data traffic between the associated network and the first set of two or more associated applications within the multiple application container through the VPN tunnel; and
wherein the socket monitoring and redirect logic redirects file input and output traffic between an associated storage device and the first set of two or more associated applications within the multiple application container through the file I/O logic, the file I/O logic encrypting file output traffic using data representative of keys before writing to the associated storage device.
1 Assignment
0 Petitions
Accused Products
Abstract
Described in an example embodiment herein is a Multiple Application Container. Various embodiments of the Multiple Application Container may include, but are not limited to: (1) managed intranet access via a dedicated Virtual Private Network (VPN) tunnel shared amongst applications within the container, (2) managed file/data encryption, (3) native look and feel applications for the base Operating System (OS), (4) isolation from any non-OS based services on the device, and/or (5) Mobile Device Management (MDM) based capabilities, such as policy enforcement.
74 Citations
20 Claims
-
1. An apparatus, comprising:
-
a multiple application container that comprises socket monitoring and redirect logic, virtual private network (VPN) logic, and file input/output (I/O) logic; wherein the VPN logic establishes a VPN tunnel with a predefined associated network that is shared by a first set of two or more associated applications within the multiple application container; wherein the VPN logic excludes from the VPN tunnel data traffic between the associated network and associated applications other than the first set of two or more associated applications and stored on the apparatus outside of the multiple application container; wherein the socket monitoring and redirect logic redirects data traffic between the associated network and the first set of two or more associated applications within the multiple application container through the VPN tunnel; and wherein the socket monitoring and redirect logic redirects file input and output traffic between an associated storage device and the first set of two or more associated applications within the multiple application container through the file I/O logic, the file I/O logic encrypting file output traffic using data representative of keys before writing to the associated storage device. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. Logic encoded in a tangible non-transitory computer readable medium for execution by a processor, and when executed operable to:
-
establish a virtual private network (VPN) tunnel with a predefined associated network that is shared by a first set of two or more associated applications within in a multiple application container; exclude from the VPN tunnel data traffic between the associated network and associated applications other than the first set of two or more associated applications not within the multiple application container; redirect data traffic between the associated network and the first set of two or more associated applications within the multiple application container through the VPN tunnel; and redirect file input and output requests between an associated storage device and the first set of two or more associated applications within the multiple application container to a predefined encryption engine. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18)
-
-
19. A method, comprising:
-
establishing a virtual private network (VPN) tunnel with an associated network for a first set of two or more associated applications contained within a multiple application container; excluding from the VPN tunnel data traffic between the associated network and associated applications other than the first set of two or more associated applications outside of the multiple application container; redirecting data traffic between the associated network and the first set of two or more associated applications within the multiple application container through the VPN tunnel; receiving a file output request with data from a selected application of the first set of two or more associated applications within the multiple application container; and encrypting the data in the file output request prior to writing the data. - View Dependent Claims (20)
-
Specification