System and method for providing secured access to mobile devices

US 8,132,236 B2
Filed: 03/19/2007
Issued: 03/06/2012
Est. Priority Date: 11/12/2001
Status: Active Grant

First Claim

Patent Images

1. A method for securing data on a computing device, the method comprising:

implementing, based on a policy of the computing device, one or more security features on the computing device to prevent access to a first resource of the computing device and allow access to a second resource of the computing device;

receiving a security code from a roaming device over a local, wireless communication port; and

using the security code to alter implementation of at least one of the security features by suspending or reducing one or more user actions user actions that would otherwise be required by the at least one of the security features in order to access the first resource of the computing device.

View all claims

9 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system and method for providing secured access of a mobile device is disclosed herein. Access to data included in the mobile device is permitted when the presence of an authentication device having the proper authentication information is received by the mobile device.

34 Citations

View as Search Results

41 Claims

1. A method for securing data on a computing device, the method comprising:
- implementing, based on a policy of the computing device, one or more security features on the computing device to prevent access to a first resource of the computing device and allow access to a second resource of the computing device;
  
  receiving a security code from a roaming device over a local, wireless communication port; and
  
  using the security code to alter implementation of at least one of the security features by suspending or reducing one or more user actions user actions that would otherwise be required by the at least one of the security features in order to access the first resource of the computing device.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
- - 2. The method of claim 1, wherein receiving a security code from a roaming device includes receiving, from the roaming device, at least one of (i) an identifier of the roaming device;
    - (ii) data corresponding to a password that would otherwise be required to be entered by the user to access the first resource on the computing device; and
      
      (iii) an encryption key.
  - 3. The method of claim 1, wherein receiving a security code from a roaming device includes receiving, from the roaming device, data corresponding to a password, and wherein using the security code includes programmatically entering the password for the at least one security feature.
  - 4. The method of claim 1, wherein the local, wireless communication port is either a Bluetooth port or a wireless Universal Serial Bus port.
  - 5. The method of claim 1, wherein receiving a security code from a roaming device includes receiving the security code in response to detecting the roaming device is in range for the local, wireless communication port.
  - 6. The method of claim 5, wherein receiving a security code from a roaming device includes (i) activating the computing device from an inactive state, (ii) attempting to communicate with the roaming device using the local, wireless communication port, and (iii) receiving the security code after attempting to communicate with the roaming device.
  - 7. The method of claim 6, wherein receiving the security code after attempting to communicate with the roaming device is performed only after determining the roaming device is in an active state of use.
  - 8. The method of claim 1, wherein implementing one or more security features on the computing device includes enabling a user to select the one or more security features through interaction with a user-interface provided on the computing device.
  - 9. The method of claim 1, wherein implementing one or more security features includes performing one or more of (i) denying access to data or an application on the computing device;
    - (ii) encrypting at least some of the data on the computing device; and
      
      (iii) maintaining the computing device in a state that is not operable to a user.
  - 10. The method of claim 9, wherein denying access to at least some data stored on the computing device includes implementing or maintaining in effect one or more security features on the computing device.
  - 11. The method of claim 1, wherein receiving a security code from a roaming device includes receiving, from the roaming device, data corresponding to a password that would otherwise be required to be entered by the user to access the first resource on the computing device.

12. A method for securing data on a first computing device, the method comprising:
- on the first computing device, establishing a pairing with a designated roaming device;
  
  in response to a security event, making a determination as to whether the designated roaming device is present in an area of the first computing device;
  
  denying access to first data stored on the first computing device and allowing access to second data stored on the first computing device, based on a policy of the computing device, if the determination is that the designated roaming device is not present in the area of the first computing device;
  
  elseproviding access to the first data stored on the first computing device, based on the policy of the computing device, if the determination is that the designated roaming device is present in the area of the first computing device.
- View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 32, 33, 34, 35)
- - 13. The method of claim 12, wherein making a determination as to whether the designated roaming device is present in an area of the first computing device includes determining whether the designated roaming device is detectable using a local wireless communication port.
  - 14. The method of claim 13, determining whether the designated roaming device is detectable includes identifying a device name or identifier of the designated roaming device using the local wireless communication port.
  - 15. The method of claim 13, wherein making a determination as to whether the designated roaming device is present in an area of the first computing device is performed in response to a user powering on the first computing device for use.
  - 16. The method of claim 13, wherein making a determination as to whether the designated roaming device is present in an area of the first computing device is performed in response to a user physically interacting with the designated roaming device.
  - 17. The method of claim 13, wherein making a determination as to whether the designated roaming device is present in an area of the first computing device is performed in response to one or more conditions that include a passage of time.
  - 18. The method of claim 12, wherein the first computing device is not equipped for cellular communications, and wherein the designated roaming device is equipped for cellular communications.
  - 19. The method of claim 12, further comprising:
    - designating the roaming device for the first computing device based on an identifier communicated by the roaming device; and
      
      making a determination as to whether a designated roaming device is present includes detecting the identifier.
  - 20. The method of claim 19, wherein designating the roaming device for the first computing device based on an identifier includes designating the roaming device based on a wireless transmission from the roaming device, and wherein detecting the identifier includes detecting the identifier by receiving the wireless transmission.
  - 21. The method of claim 20, wherein the wireless transmission is a short-range radio frequency transmission that is detectable over the area.
  - 22. The method of claim 12, wherein implementing a security feature includes performing any one or more of (i) denying a user access to a user account provided on the first computing device, (ii) requiring the user to enter a password to access the first data on the first computing device, (iii) maintaining an encrypted state of the first data on the first computing device, (iv) switching the first computing device to a non-operational state, (v) generating an audible indication, (vi) displaying a message on a screen of the first computing device, and (vii) destroying the first data on the first computing device.
  - 32. The computing system of claim 21, wherein the mobile computing device is a handheld device configured to fit into a person'"'"'s pocket.
  - 33. The computing system of claim 32, wherein the mobile computing device comprises a plurality of buttons.
  - 34. The computing system of claim 33, wherein the mobile computing device is configured to access the data stored in the memory.
  - 35. The computing system of claim 33, wherein the mobile computing device is configured for telephony communications and data communications.

23. A computing system for communicating between a laptop computer and a nearby mobile computing device, comprising:
- a laptop computer housing;
  
  a display coupled to the housing;
  
  a plurality of buttons coupled to the housing;
  
  a transceiver configured for wireless communication with the mobile computing device;
  
  a memory configured to store first data and second data; and
  
  a processor configured to detect the presence of the mobile computing device, wherein the processor is configured to restrict access by a user to the first data via the display and allow the user access to the second data via the display, based on a policy of the processor, when the mobile computing device is absent, and wherein the processor is configured, based on the policy of the processor, to allow the user to access the first data and the second data via the display when the mobile computing device is present.
- View Dependent Claims (24, 25, 26, 27, 28, 29, 30, 31, 36, 37)
- - 24. The computing system of claim 23, wherein the processor is configured to require the user to enter a password to protect the first data.
  - 25. The computing system of claim 24, wherein the processor is configured to allow access to the first data without a password when the mobile computing device is present.
  - 26. The computing system of claim 23, wherein the processor is configured to allow access to protected services when the mobile computing device is present.
  - 27. The computing system of claim 23, wherein the processor is configured to automatically detect the presence of the mobile computing device.
  - 28. The computing system of claim 23, wherein the transceiver is configured to communicate with the mobile computing device using a Bluetooth or IEEE 802.11 protocol.
  - 29. The computing system of claim 23, wherein the processor is configured to authenticate a communication from the mobile computing device and to allow access to the first data when the mobile computing device is present and the communication is authenticated.
  - 30. The computing system of claim 29, wherein the processor is configured to authenticate the communication using at least one digital certificate.
  - 31. The computing system of claim 23, further comprising the mobile computing device.
  - 36. The computing system of claim 23, wherein the processor is configured to detect the presence of the mobile computing device by transmitting a message to the mobile computing device to determine whether the mobile computing device is within communication range of the mobile device.
  - 37. The computing system of claim 23, wherein the processor is configured to periodically transmit data to the mobile computing device at a preset time period.

38. A computing system for communicating between a handheld computing device and a nearby laptop computer having memory and a display, comprising:
- a handheld computer having a housing configured to fit in a person'"'"'s pocket;
  
  a plurality of buttons coupled to the housing;
  
  a portable power source;
  
  a transceiver configured for wireless communication with the laptop computer; and
  
  a processor configured to send a message to the laptop computer to indicate the handheld computing device is present, the laptop computer being configured, based on a policy of the processor, to restrict access by a user to first data stored in the memory via the display and allow the user access to second data stored in the memory via the display until the message is received, the laptop computer being configured to allow the user access to the first data stored in the memory in response to receiving the message.
- View Dependent Claims (39, 40)
- - 39. The computing system of claim 38, the laptop computer being configured to require a user to enter a password to protect the first data.
  - 40. The computing system of claim 39, the laptop computer being configured to allow access to the first data without a password when the handheld computing device is present.

41. A method for securing data on a computing device with a roaming device, the method comprising:
- implementing, based on a policy of the roaming device, one or more security features on the computing device to prevent access to a first resource of the computing device and allow access to a second resource of the computing device;
  
  receiving a security code from the roaming device over a local, wireless communication port; and
  
  using the security code to alter implementation of at least one of the security features by suspending or reducing one or more user actions that would otherwise be required by the at least one of the security features in order to access the first resource of the computing device.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Qualcomm, Inc.
Original Assignee
Hewlett-Packard Development Company, L.P. (HP Inc.)
Inventors
Hawkins, Jeffrey C., Cousineau, Bernard Paul, Blight, David C., Wong, Yoon Kean
Primary Examiner(s)
Hoffman, Brandon

Application Number

US11/725,599
Publication Number

US 20070277230A1
Time in Patent Office

1,814 Days
Field of Search

None
US Class Current

726/4
CPC Class Codes

G06F 16/00   Information retrieval; Data...

G06F 21/629   to features or functions of...

G06F 2221/2143   Clearing memory, e.g. to pr...

G06F 7/58   Random or pseudo-random num...

H04L 63/08   for authentication of entit...

H04L 63/0853   using an additional device,...

H04L 9/3215   using a plurality of channe...

H04W 12/068   using credential vaults, e....

H04W 12/069   using certificates or pre-s...

H04W 4/21   for social networking appli...

System and method for providing secured access to mobile devices

First Claim

9 Assignments

0 Petitions

Accused Products

Abstract

34 Citations

41 Claims

Specification

Solutions

Use Cases

Quick Links

System and method for providing secured access to mobile devices

First Claim

9 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

34 Citations

41 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links