Administration of protection of data accessible by a mobile device
First Claim
Patent Images
1. A method for detecting a network location of a mobile computing device for use in protecting data accessible to the mobile device, the method comprising:
- setting a plurality of predefined network parameters corresponding to possible locations of a networked environment in which the mobile computing device may be operating;
by the mobile computing device, obtaining a set N of actual network parameters corresponding to the networked environment in which the mobile computing device is actually presently operating, the set N of actual network parameters corresponding to the predefined network parameters;
setting per each of the possible locations of the networked environment in which the mobile computing device may be operating a minimum subset M of the set N of actual network parameters that may be used to correctly identify the location of the mobile computing device, wherein M≦
N, N>
3 and M≧
2;
comparing the obtained said set N of actual network parameters to the plurality of predefined network parameters; and
only by the mobile computing device, determining a present location of the mobile computing device based on the comparing such that if the minimum subset M of the set N of actual parameters match a corresponding number of any of the network parameters of the predefined network parameters, concluding the present location of the mobile computing device has been successfully determined, and changing a security policy based on the determined present location; and
if the minimum subset M of the set N of actual parameters do not match the corresponding number of the any of the network parameters of the predefined network parameters, concluding the present location of the mobile computing device has not been successfully determined and setting the present location to a default location and a default security policy.
7 Assignments
0 Petitions
Accused Products
Abstract
The protection of data on a client mobile computing device by a server computer system such as within an enterprise network or on a separate mobile computing device is described. Security tools are described that provide different security policies to be enforced based on a location associated with a network environment in which a mobile device is operating. Methods for detecting the location of the mobile device are described. Additionally, the security tools may also provide for enforcing different policies based on security features. Examples of security features include the type of connection, wired or wireless, over which data is being transferred, the operation of anti-virus software, or the type of network adapter card. The different security policies provide enforcement mechanisms that may be tailored based upon the detected location and/or active security features associated with the mobile device. Examples of enforcement mechanisms are adaptive port blocking, file hiding and file encryption.
-
Citations
3 Claims
-
1. A method for detecting a network location of a mobile computing device for use in protecting data accessible to the mobile device, the method comprising:
-
setting a plurality of predefined network parameters corresponding to possible locations of a networked environment in which the mobile computing device may be operating; by the mobile computing device, obtaining a set N of actual network parameters corresponding to the networked environment in which the mobile computing device is actually presently operating, the set N of actual network parameters corresponding to the predefined network parameters; setting per each of the possible locations of the networked environment in which the mobile computing device may be operating a minimum subset M of the set N of actual network parameters that may be used to correctly identify the location of the mobile computing device, wherein M≦
N, N>
3 and M≧
2;comparing the obtained said set N of actual network parameters to the plurality of predefined network parameters; and only by the mobile computing device, determining a present location of the mobile computing device based on the comparing such that if the minimum subset M of the set N of actual parameters match a corresponding number of any of the network parameters of the predefined network parameters, concluding the present location of the mobile computing device has been successfully determined, and changing a security policy based on the determined present location; and if the minimum subset M of the set N of actual parameters do not match the corresponding number of the any of the network parameters of the predefined network parameters, concluding the present location of the mobile computing device has not been successfully determined and setting the present location to a default location and a default security policy. - View Dependent Claims (2, 3)
-
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneeApple Inc.
-
Original AssigneeNovell Incorporated (Open Text Corporation)
-
InventorsWright, Michael, Mims, Robert, Jacobson, Sterling K., Nault, Gabe, Smith, Merrill, Boucher, Peter, Wood, Jonathan
-
Primary Examiner(s)Simitoski; Michael J
-
Application NumberUS11/926,436Publication NumberTime in Patent Office442 DaysField of Search380/258, 726/11, 726/1, 379/15.03, 379/29.01, 379/32.01, 379/201.12, 455/456.1, 713/153US Class Current726/1CPC Class CodesG06F 21/32 using biometric data, e.g. ...G06F 21/554 involving event detection a...G06F 21/604 Tools and structures for ma...G06F 21/6218 to a system of files or obj...G06F 2221/2111 Location-sensitive, e.g. ge...G06F 2221/2141 Access rights, e.g. capabil...H04L 12/4604 LAN interconnection over a ...H04L 63/0272 Virtual private networksH04L 63/045 wherein the sending and rec...H04L 63/0492 by using a location-limited...H04L 63/08 for authentication of entit...H04L 63/105 Multiple levels of securityH04L 63/166 at the transport layerH04L 63/20 for managing network securi...H04L 67/52 specially adapted for the l...H04L 67/55 Push-based network servicesH04W 12/02 Protecting privacy or anony...H04W 12/06 AuthenticationH04W 12/08 Access securityH04W 12/12 Detection or prevention of ...View All
