Cross domain notification
First Claim
1. A method of preparing a mobile communication device using a provisioning process such that a user can securely switch between operating domains of the mobile communication device, the method comprising:
- providing the mobile communication device having a plurality of operating domains each operating as an independent virtual machine, wherein at least one of the operating domains is a high-side domain and at least one of the operating domains is a low-side domain, the high-side domain being a secure domain and the low-side domain being an unsecure domain;
providing a trusted indicator at the mobile communication device to indicate activity associated with the high-side domain while the mobile communication device is operating in the low-side domain, the activity including at least one of an incoming call, an incoming text, or a new email message directed to the high-side domain, where existence of the activity is indicated by activating an external user notification;
providing an input on the mobile communication device for switching from the low-side domain to the high-side domain, the input configured as an input only device that is activated by a physical input from a user of the mobile communication device; and
providing a trusted element at the mobile communication device, the trusted element configured to;
receive a signal associated with the physical input for switching from the low-side domain to the high-side domain;
determine if user authentication is required for switching from the low-side domain to the high-side domain; and
if the user authentication is required, perform the user authentication during which the trusted element is configured to receive input authentication information from the user via an input device.
4 Assignments
0 Petitions
Accused Products
Abstract
A method for a mobile communication device to indicate activity associated with an operating domain includes establishing a plurality of operating domains for the mobile communication device each operating as an independent virtual machine. The method also includes providing a trusted indicator at the mobile communication device for indicating activity associated with a high-side domain. The method also includes providing an input on the mobile communication device for switching from a low-side domain to the high-side domain. The method also includes providing a trusted element for the mobile communication device that is independent of either the high-side domain or the low-side domain. The trusted element may be configured to receive a signal from the input for switching from the low-side domain to the high-side domain and to perform user authentication for switching from the low-side domain to the high-side domain.
52 Citations
8 Claims
-
1. A method of preparing a mobile communication device using a provisioning process such that a user can securely switch between operating domains of the mobile communication device, the method comprising:
-
providing the mobile communication device having a plurality of operating domains each operating as an independent virtual machine, wherein at least one of the operating domains is a high-side domain and at least one of the operating domains is a low-side domain, the high-side domain being a secure domain and the low-side domain being an unsecure domain; providing a trusted indicator at the mobile communication device to indicate activity associated with the high-side domain while the mobile communication device is operating in the low-side domain, the activity including at least one of an incoming call, an incoming text, or a new email message directed to the high-side domain, where existence of the activity is indicated by activating an external user notification; providing an input on the mobile communication device for switching from the low-side domain to the high-side domain, the input configured as an input only device that is activated by a physical input from a user of the mobile communication device; and providing a trusted element at the mobile communication device, the trusted element configured to; receive a signal associated with the physical input for switching from the low-side domain to the high-side domain; determine if user authentication is required for switching from the low-side domain to the high-side domain; and if the user authentication is required, perform the user authentication during which the trusted element is configured to receive input authentication information from the user via an input device. - View Dependent Claims (2, 3, 7)
-
-
4. A mobile communication device configured to securely switch between a plurality of operating domains, the mobile communication device comprising:
-
a processing module configured to run in the plurality of operating domains, each operating domain configured as an independent virtual machine, wherein at least one of the operating domains is a high-side domain and at least one of the operating domains is a low-side domain, the high-side domain being a secure domain and the low-side domain being an unsecure domain; a trusted indicator to provide an indication of activity associated with the high-side domain while the mobile communication device is operating in the low-side domain, the activity including at least one of an incoming call, an incoming text message, or a new email message directed to the high-side domain, the trusted indicator configured to activate an external user notification to indicate existence of the activity associated with the high-side domain; an input for switching from the low-side domain to the high-side domain, the input configured as an input only device that is activated by a physical input from a user of the mobile communication device; and a trusted element configured to; receive a signal associated with the physical input for switching from the low-side domain to the high-side domain; determine if user authentication is required for switching from the low-side domain to the high-side domain; and if the user authentication is required, perform the user authentication during which the trusted element is configured to receive input authentication information from the user via an input device. - View Dependent Claims (5, 6, 8)
-
Specification