ENTERPRISE APPLICATION MANAGEMENT WITH ENROLLMENT TOKENS
First Claim
1. A system for managing execution of applications associated with an enterprise, said system comprising:
- a memory area associated with a mobile computing device, said memory area storing an enrollment token signed with a certificate, the enrollment token including an enterprise identifier associated with an enterprise, the enterprise having a plurality of computing devices associated therewith, the memory area further storing an application having an enterprise identifier associated therewith; and
a processor programmed to;
receive a request from a user of the mobile computing device to execute the application stored in the memory area;
compare the enterprise identifier associated with the application with the enterprise identifier associated with the enrollment token stored in the memory area;
execute the application based on the comparison; and
intermittently validate the enrollment token stored in the memory area with a web service.
3 Assignments
0 Petitions
Accused Products
Abstract
Embodiments of the disclosure provide application management capabilities to enterprises. A computing device of a user, associated with the enterprise, receives an enrollment token signed with a certificate. The enrollment token includes an enterprise identifier associated with the enterprise. The computing device receives a package containing one or more applications. The package also includes an enterprise identifier. Installation and execution of one or more applications from the received package is accepted or rejected based on a comparison of the enterprise identifier from the enrollment token with the enterprise identifier from the received package or application. A web service provides validation services by monitoring the installation and execution of applications on the computing devices associated with the enterprise.
-
Citations
20 Claims
-
1. A system for managing execution of applications associated with an enterprise, said system comprising:
-
a memory area associated with a mobile computing device, said memory area storing an enrollment token signed with a certificate, the enrollment token including an enterprise identifier associated with an enterprise, the enterprise having a plurality of computing devices associated therewith, the memory area further storing an application having an enterprise identifier associated therewith; and a processor programmed to; receive a request from a user of the mobile computing device to execute the application stored in the memory area; compare the enterprise identifier associated with the application with the enterprise identifier associated with the enrollment token stored in the memory area; execute the application based on the comparison; and intermittently validate the enrollment token stored in the memory area with a web service. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A method comprising:
-
receiving, by a computing device, a token signed with a certificate, the token including an enterprise identifier associated with an enterprise, the enterprise having a plurality of computing devices associated therewith; receiving, by the computing device, a package containing one or more applications, the package further including an enterprise identifier; comparing the enterprise identifier from the token with the enterprise identifier from the package; and accepting or rejecting installation, by the computing device, of the received package of one or more applications based on the comparison. - View Dependent Claims (8, 9, 10, 11, 12, 13, 14)
-
-
15. One or more computer storage media embodying computer-executable components, said components comprising:
-
a memory component that when executed causes at least one processor to access an account state associated with an enterprise, the account state defining access by computing devices to applications associated with the enterprise; a communications interface component that when executed causes at least one processor to receive, from at least one computing device, a report describing installation and usage by the computing device of one or more of the applications, the report having an enterprise identifier associated therewith; and a usage component that when executed causes at least one processor to compare the report received by the communications interface component with the account state accessed by the memory component; and a state component that when executed causes at least one processor to modify the account state of the enterprise based on the comparison performed by the usage component. - View Dependent Claims (16, 17, 18, 19, 20)
-
Specification