×

METHOD AND SYSTEM FOR PROTECTING DATA FLOW AT A MOBILE DEVICE

  • US 20150256559A1
  • Filed: 05/20/2015
  • Published: 09/10/2015
  • Est. Priority Date: 06/29/2012
  • Status: Active Grant
First Claim
Patent Images

1. A data flow policy evaluation system for a mobile computing device embodied as executable instructions in one or more machine-accessible storage media, comprising:

  • a system call monitor to monitor system calls made by a plurality of security-wrapped software applications during execution of the security-wrapped software applications at the mobile computing device; and

    a data flow policy engine to generate policy decisions to enable the security-wrapped software applications to prevent the execution of system calls that would violate a data flow policy, wherein the data flow policy defines security labels, associates data flow policies with the security labels, and associates data objects with the security labels, and the data flow policy engine is configured to;

    associate an executing process of a security-wrapped software application with a security label if the process accesses a data object having the security label; and

    associate another executing process with the security label if the other executing process is in communication with the executing process.

View all claims
  • 0 Assignments
Timeline View
Assignment View
    ×
    ×