Cross domain notification
First Claim
Patent Images
1. A method for a mobile communication device to indicate activity across operating domains of the mobile communication device, the method comprising:
- establishing a plurality of operating domains for the mobile communication device each operating as an independent virtual machine, wherein at least one of the operating domains is a high-side domain and at least another of the operating domains is a low-side domain;
establishing a plurality of isolated regions of memory within a memory of the mobile communication device;
assigning each of the plurality of operating domains to one of the plurality of isolated regions of memory;
implementing a communication control module within the mobile communication device to enforce communication restrictions between software associated with each of the operating domains and user interface hardware of the mobile communication device;
providing a trusted indicator on the mobile communication device for indicating activity in the high-side domain, the activity including at least one of an incoming call, an incoming text, or a new email, the trusted indicator configured to activate a user notification to indicate the activity, wherein the trusted indicator is under exclusive control of software associated with the high-side domain;
providing an input on the mobile communication device for switching from the low-side domain to the high-side domain, the input configured as an input only device that is activated by user input; and
providing a trusted element for the mobile communication device that is independent of either the high-side domain or the low-side domain, the trusted element configured to;
receive a signal from the input for switching from the low-side domain to the high-side domain; and
perform user authentication for switching from the low-side domain to the high-side domain, the user authentication including providing output authentication information from the trusted element to an output device of the mobile communication device and receiving input authentication information at the trusted element from an input device of the mobile communication device.
5 Assignments
0 Petitions
Accused Products
Abstract
A commercial off-the-shelf smartphone is adapted, through software modifications only, to provide multiple operating domains or domains that provide differing levels of security and reliability. Each operating domain is isolated from the others. Detection of unauthorized modification is provided. Cross domain activity notification is provided.
-
Citations
14 Claims
-
1. A method for a mobile communication device to indicate activity across operating domains of the mobile communication device, the method comprising:
-
establishing a plurality of operating domains for the mobile communication device each operating as an independent virtual machine, wherein at least one of the operating domains is a high-side domain and at least another of the operating domains is a low-side domain; establishing a plurality of isolated regions of memory within a memory of the mobile communication device; assigning each of the plurality of operating domains to one of the plurality of isolated regions of memory; implementing a communication control module within the mobile communication device to enforce communication restrictions between software associated with each of the operating domains and user interface hardware of the mobile communication device; providing a trusted indicator on the mobile communication device for indicating activity in the high-side domain, the activity including at least one of an incoming call, an incoming text, or a new email, the trusted indicator configured to activate a user notification to indicate the activity, wherein the trusted indicator is under exclusive control of software associated with the high-side domain; providing an input on the mobile communication device for switching from the low-side domain to the high-side domain, the input configured as an input only device that is activated by user input; and providing a trusted element for the mobile communication device that is independent of either the high-side domain or the low-side domain, the trusted element configured to; receive a signal from the input for switching from the low-side domain to the high-side domain; and perform user authentication for switching from the low-side domain to the high-side domain, the user authentication including providing output authentication information from the trusted element to an output device of the mobile communication device and receiving input authentication information at the trusted element from an input device of the mobile communication device. - View Dependent Claims (2, 11, 12, 13, 14)
-
-
3. A mobile communication device configured to operate in multiple domains, the mobile communication device comprising:
-
a plurality of isolated regions of memory; a processing module configured to run in a plurality of operating domains, in the plurality of isolated regions of memory, each operating domain configured as an independent virtual machine, wherein at least one of the operating domains is a high-side domain and at least another of the operating domains is a low-side domain; wherein the processing module is configured to instantiate a communication control module to enforce communication restrictions between software associated with each of the operating domains and user interface hardware of the mobile communication device; a trusted indicator to provide an indication of activity in the high-side domain, the activity including at least one of an incoming call, and incoming text message, or a new email message, the trusted indicator configured to activate a user notification to indicate the activity, wherein the trusted indicator is under exclusive control of software associated with the high-side domain; an input for switching between the low-side domain and the high-side domain, the input configured as an input only device that is activated by user input; and a trusted element that is independent of either the high-side domain or the low-side domain, the trusted element configured to; receive a signal from the input for switching between the low-side domain and the high-side domain; and perform user authentication for switching from the low-side domain to the high-side domain, the user authentication including providing output authentication information from the trusted element to an output device of the mobile communication device and receiving input authentication information at the trusted element from an input device of the mobile communication device. - View Dependent Claims (4)
-
-
5. A method for switching between domains of a mobile communication device that has a plurality of operating domains, the method comprising:
-
providing a mobile communication device having a plurality of operating domains each operating as an independent virtual machine, wherein at least one of the operating domains is a high-side domain and at least one of the operating domains is a low-side domain; providing a memory having a plurality of isolated regions within the memory, wherein each of the plurality of operating domains is associated with a different one of the plurality of isolated regions within the memory; providing a communication control module within the mobile communication device to enforce communication restrictions between software associated with each of the plurality of operating domains and user interface hardware of the mobile communication device; providing a trusted indicator on the mobile communication to indicate activity in the high-side domain, the trusted indicator indicating at least one of an incoming call, an incoming text, or a new email directed to the high-side domain, the activity indicated by activating a user notification, wherein the trusted indicator is under exclusive control of software associated with the high-side domain; providing an input on the mobile communication device for switching from the low-side domain to the high-side domain, the input configured as an input only device that is activated by user input; providing a trusted element within the mobile communication device that is independent of either the high-side domain or the low-side domain, the trusted element configured to; receive a signal from the input for switching from the low-side domain to the high-side domain; and perform user authentication for switching from the low-side domain to the high-side domain, the user authentication including providing output authentication information from the trusted element to an output device of the mobile communication device and receiving input authentication information at the trusted element from an input device of the mobile communication device. - View Dependent Claims (6, 7, 8, 9, 10)
-
Specification