System and method for ensuring compliance with organizational policies

US 8,713,173 B2
Filed: 08/02/2012
Issued: 04/29/2014
Est. Priority Date: 12/19/2008
Status: Active Grant

First Claim

Patent Images

1. A method for ensuring compliance with organizational policies, comprising the following computer-implemented steps:

monitoring one or more parameters of a managed computing device for compliance with one or more policies of an organization, wherein the organizational policies include limitations on the managed computing device, wherein the managed computing device has a work profile that includes settings, applications and programs associated with or owned by the organization and a personal profile that includes settings, applications and programs associated with a personal lifestyle of or owned by a user of the managed computing device;

detecting a non-conformance event at the managed computing device with respect to at least one organizational policy; and

in response to the detection of the non-conformance event, restricting operation of the work profile of the managed computing device by locking the settings, applications or programs associated with or owned by the organization without impacting the settings, applications and programs of the personal profile.

View all claims

4 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method for ensuring compliance with organizational policies is described herein. The method can include the step of monitoring one or more parameters of a managed computing device for compliance with one or more policies of an organization in which the organizational policies may include limitations on the managed computing device. The method can also include the step of detecting a non-conformance event at the managed computing device with respect to at least one organizational policy. In response to the detection of the non-conformance event, the operation of the managed computing device may be restricted with respect to features or data associated with the organization.

Citations

23 Claims

1. A method for ensuring compliance with organizational policies, comprising the following computer-implemented steps:
- monitoring one or more parameters of a managed computing device for compliance with one or more policies of an organization, wherein the organizational policies include limitations on the managed computing device, wherein the managed computing device has a work profile that includes settings, applications and programs associated with or owned by the organization and a personal profile that includes settings, applications and programs associated with a personal lifestyle of or owned by a user of the managed computing device;
  
  detecting a non-conformance event at the managed computing device with respect to at least one organizational policy; and
  
  in response to the detection of the non-conformance event, restricting operation of the work profile of the managed computing device by locking the settings, applications or programs associated with or owned by the organization without impacting the settings, applications and programs of the personal profile.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
- - 2. The method according to claim 1, wherein the organizational policies include one or more of the following:
    - password rules compliance;
      
      blacklisted application compliance;
      
      installation of default applications or bundle compliance;
      
      data roaming compliance;
      
      system modification compliance;
      
      or administrator control compliance.
  - 3. The method according to claim 2, wherein the non-conformance event comprises one or more of the following:
    - selecting an unauthorized password;
      
      downloading an unauthorized application;
      
      failing to install one or more default applications or bundles;
      
      roaming on an unauthorized network;
      
      modifying the managed computing device in an unauthorized manner;
      
      or blocking administrator control of the managed computing device.
  - 4. The method according to claim 1, wherein restricting operation of the managed computing device further comprises one or more of the following:
    - removing data from the managed computing device, removing wireless communication settings or credentials from the managed computing device;
      
      removing network settings or credentials from the managed computing device;
      
      removing a proxy configuration from the managed computing device;
      
      removing an email or messaging configuration from the managed computing device;
      
      disabling device configuration updates from the managed computing device;
      
      locking out one or more profiles of the managed computing device;
      
      or messaging a user of the managed computing device.
  - 5. The method according to claim 1, further comprising:
    - detecting a conformance event at the managed computing device with respect to at least one organizational policy; and
      
      in response to the detection of the conformance event, enabling an operation of the managed computing device with respect to features or data associated with the organization.
  - 6. The method according to claim 5, wherein the conformance event comprises one or more of the following:
    - selecting an authorized password;
      
      downloading an authorized application;
      
      installing a required set of default applications or bundles;
      
      operating on an authorized network;
      
      avoiding the unauthorized modification of the managed computing device;
      
      or permitting administrator control of the managed computing device.
  - 7. The method according to claim 1, further comprising:
    - detecting a conformance event at the managed computing device with respect to at least one organizational policy, wherein the conformance event corrects the non-conformance event; and
      
      in response to detecting the conformance event, removing the operational restriction of the managed computing device.
  - 8. The method according to claim 1, further comprising reporting the non-conformance event, wherein the non-conformance event has been previously assigned a severity level.
  - 9. The method according to claim 1, further comprising waiting a predetermined amount of time before restricting operation of the managed computing device with respect to features or data associated with the organization.
  - 10. The method according to claim 1, wherein an organizational policy is associated with an individual, a bundle or a node.

11. A method for ensuring compliance with organizational policies, comprising the following computer-implemented steps:
- setting one or more policies of an organization, wherein the organizational policies are applicable to a managed computing device associated with the organization and include limitations on the managed computing device, wherein the managed computing device has a work profile that includes settings, applications and programs associated with or owned by the organization and a personal profile that includes settings, applications and programs associated with a personal lifestyle of or owned by a user of the managed computing device;
  
  receiving a report of a non-conformance event at the managed computing device, wherein the non-conformance event indicates that the managed computing device is violating one or more organizational policies; and
  
  in response to the receipt of the reporting of the non-conformance event, restricting operation of the work profile of the managed computing device by locking the settings, applications or programs associated with or owned by the organization without impacting the settings, applications and programs of the personal profile.
- View Dependent Claims (12, 13, 14, 15)
- - 12. The method according to claim 11, wherein the organizational policies include one or more of the following:
    - password rules compliance;
      
      blacklisted application compliance;
      
      installation of default applications compliance;
      
      data roaming compliance;
      
      system modification compliance;
      
      or administrator control compliance.
  - 13. The method according to claim 12, wherein the non-conformance event comprises one or more of the following:
    - selecting an unauthorized password;
      
      downloading an unauthorized application;
      
      failing to install one or more default applications;
      
      roaming on an unauthorized network;
      
      modifying the managed computing device in an unauthorized manner;
      
      or blocking administrator control of the managed computing device.
  - 14. The method according to claim 12, further comprising:
    - receiving a report of a conformance event at the managed computing device, wherein the conformance event corrects the non-conformance event; and
      
      in response to the receipt of the report of the conformance event, removing the operational restriction of the managed computing device.
  - 15. The method according to claim 11, wherein an organizational policy is associated with an individual, a bundle or a node.

16. A managed computing device, comprising:
- a display configured to at least display messages;
  
  a communications stack configured to receive communication signals from and transmit communication signals to a management platform; and
  
  a processor, wherein the processor is communicatively coupled to the communications stack and the display and is operable to;
  
  monitor one or more parameters of the managed computing device for compliance with one or more policies of an organization, wherein the organizational policies include limitations on the managed computing device, wherein the managed computing device has a work profile that includes settings, applications and programs associated with or owned by the organization and a personal profile that includes settings, applications and programs associated with a personal lifestyle of or owned by a user of the managed computing device;
  
  detect a non-conformance event associated with the operation of the managed computing device, wherein the non-conformance event violates one or more organizational policies; and
  
  in response to the detection of the non-conformance event, restrict operation of the work profile of the managed computing device by locking the settings, applications or programs associated with or owned by the organization without impacting the settings, applications and programs of the personal profile.
- View Dependent Claims (17, 18, 19, 20, 21, 22, 23)
- - 17. The managed computing device according to claim 16, wherein the organizational policies include one or more of the following:
    - password rules compliance;
      
      blacklisted application compliance;
      
      installation of default applications or bundle compliance;
      
      data roaming compliance;
      
      system modification compliance;
      
      or administrator control compliance.
  - 18. The managed computing device according to claim 16, wherein the non-conformance event comprises one or more of the following:
    - selecting an unauthorized password;
      
      downloading an unauthorized application;
      
      failing to install one or more default applications or bundles;
      
      roaming on an unauthorized network;
      
      modifying the managed computing device in an unauthorized manner;
      
      or blocking administrator control of the managed computing device.
  - 19. The managed computing device according to claim 16, wherein the processor is operable to further restrict operation of the managed computing device by one or more of the following:
    - removing data from the managed computing device, removing wireless communication settings or credentials from the managed computing device;
      
      removing network settings or credentials from the managed computing device;
      
      removing a proxy configuration from the managed computing device;
      
      removing an email or messaging configuration from the managed computing device;
      
      disabling device configuration updates from the managed computing device;
      
      locking out one or more profiles of the managed computing device;
      
      or generating a message for a user of the managed computing device.
  - 20. The managed computing device according to claim 16, wherein the processor is further operable to:
    - detect a conformance event at the managed computing device with respect to at least one organizational policy; and
      
      in response to the detection of the conformance event, enable an operation of the managed computing device with respect to features or data associated with the organization.
  - 21. The managed computing device according to claim 20, wherein the operation that is enabled is the activation of configuration updates for the managed computing device.
  - 22. The managed computing device according to claim 16, wherein the processor is further operable to:
    - detect a conformance event at the managed computing device with respect to at least one organizational policy, wherein the conformance event corrects the non-conformance event; and
      
      in response to detecting the conformance event, remove the operational restriction of the managed computing device.
  - 23. The managed computing device according to claim 16, wherein an organizational policy is associated with an individual, a bundle or a node.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Samsung Electronics Co. Ltd.
Original Assignee
OpenPeak Inc.
Inventors
Dare, Robert M., Kacherov, Vadim, Goel, Parag, Watson, Gregory Paul
Primary Examiner(s)
LIN, WEN TAI

Application Number

US13/564,809
Publication Number

US 20120297444A1
Time in Patent Office

635 Days
Field of Search

None
US Class Current

709/224
CPC Class Codes

G06F 21/566   Dynamic detection, i.e. det...

G06F 21/577   Assessing vulnerabilities a...

G06Q 10/0631   Resource planning, allocati...

H04L 41/5009   Determining service level p...

H04L 41/5025   by proactively reacting to ...

H04L 43/08   Monitoring or testing based...

H04L 43/55   Testing of service level qu...

H04L 63/20   for managing network securi...

System and method for ensuring compliance with organizational policies

First Claim

4 Assignments

0 Petitions

Accused Products

Abstract

Citations

23 Claims

Specification

Solutions

Use Cases

Quick Links

System and method for ensuring compliance with organizational policies

First Claim

4 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

23 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links