System and method for preventing access to data on a compromised remote device
First Claim
1. A method for use in managing data held on a mobile device, the mobile device comprising a device data store for storing device data and a synchronization client, the synchronization client being a client of a synchronization server remote from the mobile device, the synchronization server being configured to perform a synchronization process with the synchronization client for the synchronization of at least some of said device data with corresponding server data held in a server data store, the mobile device being a client of a device management server remote from the mobile device, and the method comprising:
- storing said device data according to a plurality of data categories, each of the categories comprising either a first type of data or a second type of data, the first type of data comprising data items to be synchronized between the mobile device and the synchronization server according to said synchronization process, whereby values of data items of the first type are updated at, the mobile device in response to changes thereto at the server data store and the second type of data comprising data items which are not synchronized between the device data store and the server data store;
receiving, at the device management server, an indication that the mobile device has an unauthorized status, the indication originating from a source other than said mobile device;
the device, management server sending, responsive to receipt of said indication, a request to the mobile device to cease said synchronization process;
the mobile device receiving said request and, responsive thereto, preventing performance of said synchronization process.
4 Assignments
0 Petitions
Accused Products
Abstract
This invention discloses a system and method for selective erasure, encryption and or copying of data on a remote device if the remote device has been compromised or the level of authorization of a roaming user in charge of the remote device has been modified.
-
Citations
19 Claims
-
1. A method for use in managing data held on a mobile device, the mobile device comprising a device data store for storing device data and a synchronization client, the synchronization client being a client of a synchronization server remote from the mobile device, the synchronization server being configured to perform a synchronization process with the synchronization client for the synchronization of at least some of said device data with corresponding server data held in a server data store, the mobile device being a client of a device management server remote from the mobile device, and the method comprising:
-
storing said device data according to a plurality of data categories, each of the categories comprising either a first type of data or a second type of data, the first type of data comprising data items to be synchronized between the mobile device and the synchronization server according to said synchronization process, whereby values of data items of the first type are updated at, the mobile device in response to changes thereto at the server data store and the second type of data comprising data items which are not synchronized between the device data store and the server data store; receiving, at the device management server, an indication that the mobile device has an unauthorized status, the indication originating from a source other than said mobile device; the device, management server sending, responsive to receipt of said indication, a request to the mobile device to cease said synchronization process; the mobile device receiving said request and, responsive thereto, preventing performance of said synchronization process. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 14, 15)
-
-
9. A device management server for use in managing data held on a mobile device remote therefrom, the mobile device being a client of a synchronization server system and comprising a device data store configured to store device data, the synchronization server;
-
synchronization process with the mobile device, whereby at least a subset of the device data is synchronized with corresponding server data held in a server data store, wherein the device data is stored according to a plurality of categories, each of the categories comprising either a first type of data or a second type of data, the first type of data comprising data items to be synchronized between the mobile device and the synchronization server according to said synchronization process whereby values of data items of the first type are updated at the mobile device in response to changes thereto at the server data store, and the second type of data comprising data items which are not synchronized between the mobile device the synchronization server, wherein the device management server is configured to; receive an indication that the mobile device has an unauthorized status; and send, in response to receipt of said indication, a request to the mobile device to cease said synchronization process, wherein the request results in the mobile device preventing performance of said synchronization process. - View Dependent Claims (10, 11, 12, 16)
-
-
13. A mobile device for use in managing data held thereon, the mobile device being a client of a device management server and comprising:
-
a device data store for storing device data according to a plurality of categories, each of the categories comprising either a first type of data or a second type of data, the first type of data comprising data items to be synchronized between the mobile device and a synchronization server according to a synchronization process, whereby values of data items of the first type are updated at the mobile device in response to changes thereto at the server data store, the second type of data comprising data items which are not synchronized between the mobile device and the synchronization, wherein the mobile device is configured to; receive a request from the device management server to cease said synchronization process, the request being received in response to an indication that the mobile device has an unauthorized status, the indication originating from a source other than the mobile device; and responsive to receipt of said request, prevent performance of said synchronization process. - View Dependent Claims (17)
-
-
18. A non-transitory computer-readable storage medium having computer-readable instructions stored thereon, the computer-readable instructions when executed by a computing device causing the computing device to perform a method of managing data, the mobile device being a client of a device management server and comprising:
-
a device data store for storing device data according to a plurality of categories, each of the categories comprising either a first type of data or a second type of data, the first type of data comprising data items to be synchronized between the mobile device and a synchronization server according to a synchronization process whereby values of data items of the first type are updated at the mobile device in response to changes thereto at the server data store and the second type of data comprising data items which are not synchronized between the mobile device and the synchronization server, the method comprising; receiving a request from the device management server to cease said synchronization process, the request being received in response to an indication that the mobile device has an unauthorized status, the indication originating from a source other than the mobile device; and responsive to receipt of said request, preventing performance of said synchronization process.
-
-
19. A non-transitory computer-readable storage medium having computer-readable instructions stored thereon, the computer-readable instructions when executed by a server causing the server to perform a method for use in managing data held a mobile device remote therefrom, the mobile device being a client of a synchronization server system and comprising a device data store holding device data, the synchronization server being configured to perform a synchronization process with the mobile device whereby at least a subset of the device data is synchronized with corresponding server data held in a server data store,
wherein the device data is stored according to a plurality of categories, each of the categories comprising either a first type of data or a second type of data, the first type of data comprising data items to be synchronized between the mobile device and the synchronization server according to said synchronization process whereby values of data items of the first type are updated at the mobile device in response to changes thereto at the server data store, and the second type of data comprising data items which are not synchronized between the mobile device the synchronization server, the method comprising: -
receiving an indication that the mobile device has an unauthorized status, the indication originating from a source other than the mobile device; and sending, in response to receipt of said indication, a request to the mobile device to cease said synchronization process, wherein the request results in the mobile device preventing performance of said synchronization process.
-
Specification