Approach for managing access to data on client devices
First Claim
1. One or more non-transitory computer-readable media for managing access to a particular electronic document, the one or more non-transitory computer-readable media storing instructions which, when processed by one or more processors, causes:
- a device management system retrieving policy data for a particular electronic document, wherein the policy data specifies one or more policies that apply to the particular electronic document, wherein the one or more policies that apply to the particular electronic document specify that a) user authentication is required for a client device to receive the particular electronic document, and b) the client device must have one or more of one or more required hardware configuration attributes or one or more required software configuration attributes for the client device to receive the particular electronic document;
determining whether the client device to which the particular electronic document is to be downloaded currently supports the one or more required hardware configuration attributes or the one or more required software configuration attributes specified by the one or more policies that apply to the particular electronic document;
performing user authentication for the client device by;
determining an authorization level of a user of the client device,determining, based upon the one or more policies that apply to the particular electronic document, one or more attributes of electronic documents that are permitted to be downloaded to client device, anddetermining, based upon the authorization level of the user of the client device, the one or more attributes of electronic documents that are permitted to be downloaded to the client device and one or more attributes of the particular electronic document, whether the user is authorized to download the particular electronic document to the client device; and
in response to determining that both the user of the client device is authorized to download the particular electronic document to the client device and the client device to which the particular electronic document is to be downloaded currently supports the one or more required hardware configuration attributes or one or more required software configuration attributes specified by the one or more policies that apply to the particular electronic document, then transmitting the particular electronic document to the client device.
1 Assignment
0 Petitions
Accused Products
Abstract
A device management system is configured to manage access to electronic documents on client devices using policies. The policies specify one or more download and processing restrictions to be enforced with respect to the particular electronic document at client devices for example, particular hardware and software configurations that are required at client devices before data is permitted to be downloaded to those client devices. The policies may also specify other requirements that must be satisfied before data is permitted to be downloaded to those client devices, for example, user authentication.
86 Citations
20 Claims
-
1. One or more non-transitory computer-readable media for managing access to a particular electronic document, the one or more non-transitory computer-readable media storing instructions which, when processed by one or more processors, causes:
-
a device management system retrieving policy data for a particular electronic document, wherein the policy data specifies one or more policies that apply to the particular electronic document, wherein the one or more policies that apply to the particular electronic document specify that a) user authentication is required for a client device to receive the particular electronic document, and b) the client device must have one or more of one or more required hardware configuration attributes or one or more required software configuration attributes for the client device to receive the particular electronic document; determining whether the client device to which the particular electronic document is to be downloaded currently supports the one or more required hardware configuration attributes or the one or more required software configuration attributes specified by the one or more policies that apply to the particular electronic document; performing user authentication for the client device by; determining an authorization level of a user of the client device, determining, based upon the one or more policies that apply to the particular electronic document, one or more attributes of electronic documents that are permitted to be downloaded to client device, and determining, based upon the authorization level of the user of the client device, the one or more attributes of electronic documents that are permitted to be downloaded to the client device and one or more attributes of the particular electronic document, whether the user is authorized to download the particular electronic document to the client device; and in response to determining that both the user of the client device is authorized to download the particular electronic document to the client device and the client device to which the particular electronic document is to be downloaded currently supports the one or more required hardware configuration attributes or one or more required software configuration attributes specified by the one or more policies that apply to the particular electronic document, then transmitting the particular electronic document to the client device. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. An apparatus for managing access to a particular electronic document, the apparatus including a memory storing instructions which, when processed by one or more processors, cause:
-
a device management system retrieving policy data for a particular electronic document, wherein the policy data specifies one or more policies that apply to the particular electronic document, wherein the one or more policies that apply to the particular electronic document specify that a) user authentication is required for a client device to receive the particular electronic document, and b) the client device must have one or more of one or more required hardware configuration attributes or one or more required software configuration attributes for the client device to receive the particular electronic document; determining whether the client device to which the particular electronic document is to be downloaded currently supports the one or more required hardware configuration attributes or the one or more required software configuration attributes specified by the one or more policies that apply to the particular electronic document; performing user authentication for the client device; determining an authorization level of a user of the client device, determining, based upon the one or more policies that apply to the particular electronic document, one or more attributes of electronic documents that are permitted to be downloaded to client device, and determining, based upon the authorization level of the user of the client device, the one or more attributes of electronic documents that are permitted to be downloaded to the client device and one or more attributes of the particular electronic document, whether the user is authorized to download the particular electronic document to the client device; and in response to determining that both the user of the client device is authorized to download the particular electronic document to the client device and the client device to which the particular electronic document is to be downloaded currently supports the one or more required hardware configuration attributes or one or more required software configuration attributes specified by the one or more policies that apply to the particular electronic document, then transmitting the particular electronic document to the client device. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. A computer-implemented method for managing access to a particular electronic document, the computer-implemented method comprising:
-
a device management system retrieving policy data for a particular electronic document, wherein the policy data specifies one or more policies that apply to the particular electronic document, wherein the one or more policies that apply to the particular electronic document specify that a) user authentication is required for a client device to receive the particular electronic document, and b) the client device must have one or more of one or more required hardware configuration attributes or one or more required software configuration attributes for the client device to receive the particular electronic document; determining whether the client device to which the particular electronic document is to be downloaded currently supports the one or more required hardware configuration attributes or the one or more required software configuration attributes specified by the one or more policies that apply to the particular electronic document; performing user authentication for the client device by; determining an authorization level of a user of the client device, determining, based upon the one or more policies that apply to the particular electronic document, one or more attributes of electronic documents that are permitted to be downloaded to client device, and determining, based upon the authorization level of the user of the client device, the one or more attributes of electronic documents that are permitted to be downloaded to the client device and one or more attributes of the particular electronic document, whether the user is authorized to download the particular electronic document to the client device; and in response to determining that both the user of the client device is authorized to download the particular electronic document to the client device and the client device to which the particular electronic document is to be downloaded currently supports the one or more required hardware configuration attributes or one or more required software configuration attributes specified by the one or more policies that apply to the particular electronic document, then transmitting the particular electronic document to the client device. - View Dependent Claims (16, 17, 18, 19, 20)
-
Specification