Controlling Device Access to Enterprise Resources in an Orchestration Framework for Connected Devices
First Claim
1. A method comprising:
- providing an orchestration framework configured to communicatively connect a plurality of client computing devices such that functionality associated with a computing activity is assignable to one or more of the client computing devices;
configuring each of the client computing devices with an agent of the orchestration framework, the agent begin configured to receive instructions to perform at least a portion of the computing activity;
informing a presence service of the orchestration framework that one or more of the client computing devices is available to be assigned at least a portion of the functionality associated with the computing activity;
receiving a request to transfer content from a first client computing device of the plurality of client computing devices to a second client computing device of the plurality of client computing devices while the first computing device and the second client computing device are communicatively connected via the orchestration framework;
identifying a first data vault at the first client computing device that stores the content;
determining whether the first data vault is encrypted or unencrypted; and
instructing the second client computing device to store the content based on whether the first data vault is a first encrypted data vault or a first unencrypted data vault.
7 Assignments
0 Petitions
Accused Products
Abstract
Aspects described herein allow multiple devices to function as a coherent whole, allowing each device to take on distinct functions that are complementary to one another. Aspects described herein also allow the devices function as a coherent whole when interconnected devices and their respective applications are configured to operate in various operation modes, when management policies are employed to control the operation of the interconnected devices and their respective applications, when transferring content between the interconnected devices and storing the content at those devices, when obtaining access credentials for the interconnected devices that enable the devices to access enterprise resources, when a policy agent applies management policies to control operation of and interaction between the interconnected devices, and when the interconnected devices are used to access an enterprise application store.
94 Citations
20 Claims
-
1. A method comprising:
-
providing an orchestration framework configured to communicatively connect a plurality of client computing devices such that functionality associated with a computing activity is assignable to one or more of the client computing devices; configuring each of the client computing devices with an agent of the orchestration framework, the agent begin configured to receive instructions to perform at least a portion of the computing activity; informing a presence service of the orchestration framework that one or more of the client computing devices is available to be assigned at least a portion of the functionality associated with the computing activity; receiving a request to transfer content from a first client computing device of the plurality of client computing devices to a second client computing device of the plurality of client computing devices while the first computing device and the second client computing device are communicatively connected via the orchestration framework; identifying a first data vault at the first client computing device that stores the content; determining whether the first data vault is encrypted or unencrypted; and instructing the second client computing device to store the content based on whether the first data vault is a first encrypted data vault or a first unencrypted data vault. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. An apparatus comprising:
-
at least one processor; and memory storing computer-readable instructions that, when executed by the at least one processor, cause the apparatus to communicatively connect a plurality of client computing devices through an orchestration framework such that functionality associated with a computing activity is assignable to one or more of the client computing devices, initiate a presence service of the orchestration framework, the presence service being configured to identify which of the client computing devices are available to be assigned at least a portion of the functionality associated with the computing activity, receive from an agent of the orchestration framework a notification that one of the client computing devices at which the agent resides is available to be assigned at least a portion of the functionality associated with the computing activity, the agent being configured to receive instructions to perform at least a portion of the computing activity, receive a request to transfer content from a first client computing device of the plurality of client computing devices to a second client computing device of the plurality of client computing devices while the first client computing device and the second client computing device are communicatively connected via the orchestration framework, identify a first data vault that stores the content at the first client computing device, and instruct the second client computing device to store the content based on whether the first data vault is a first encrypted data vault or a first unencrypted data vault. - View Dependent Claims (8, 9, 10, 11, 12, 13, 14, 15)
-
-
16. One or more non-transitory computer-readable media having instructions that, when executed, cause a computing device to:
-
communicatively connect to one or more client computing devices through an orchestration framework such that functionality associated with a computing activity is assignable to the computing device and the one or more client computing devices; inform a presence service of the orchestration framework that the computing device is available to be assigned at least a portion of the functionality associated with the computing activity; receive an indication of selected content to transfer to a selected client computing device of the one or more client computing devices while the computing device and the one or more client computing devices are communicatively connected via the orchestration framework wherein the selected content is stored at a first encrypted data vault of the computing device; display a list of client computing devices available for selection as the selected client computing device wherein the list of client computing devices includes one or more client computing devices that have an encrypted data vault and excludes any client computing devices that do not have an encrypted data vault; receive a selection of one of the client computing devices in the list of client computing devices as the selected client computing device; and initiate transfer of the selected content to the selected client computing device via the orchestration framework wherein receipt of the selected content at the selected client computing device causes the selected client computing device to store the selected content at a second encrypted data vault. - View Dependent Claims (17, 18, 19, 20)
-
Specification