System and method for third party creation of applications for mobile appliances

US 9,135,434 B2
Filed: 04/14/2011
Issued: 09/15/2015
Est. Priority Date: 04/19/2010
Status: Active Grant

First Claim

Patent Images

1. A method of providing a secure environment for compilation of an authorized application, the method comprising the steps of:

receiving, at a server, encrypted application data from a first party;

decrypting, at the server, the encrypted application data to produce decrypted application data;

receiving, at the server, encrypted authorization data from a second party, different from the first party;

decrypting, at the server, the encrypted authorization data to produce decrypted authorization data; and

providing the decrypted application data and the decrypted authorization data to a compiler adapted to compile an application authorized for an intended type of device,wherein the decrypted authorization data is indicative of authorization by a third party for the application to run on the intended type of device, andwherein the decrypted authorization data enables the application to run on a device of the intended type.

View all claims

6 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The creation of an application for any mobile appliance, for example Apple'"'"'s iPhone, requires several elements to be present at compile time. In the Apple example of an enterprise application where an entity wishes to develop applications internally for its staff, two of these elements are the source code and a digital certificate. These must be combined in the compiler so that the application may be properly authorized to run in the appliance. Where the owner of the source code and the owner of the digital certificate are not the same, serious concerns arise because each element must be secured. An intermediating system and method are described that allows each party to cooperate securely through a third party escrow service to produce the complied application while leaving no unwanted residue of the independent parts.

45 Citations

View as Search Results

18 Claims

1. A method of providing a secure environment for compilation of an authorized application, the method comprising the steps of:
- receiving, at a server, encrypted application data from a first party;
  
  decrypting, at the server, the encrypted application data to produce decrypted application data;
  
  receiving, at the server, encrypted authorization data from a second party, different from the first party;
  
  decrypting, at the server, the encrypted authorization data to produce decrypted authorization data; and
  
  providing the decrypted application data and the decrypted authorization data to a compiler adapted to compile an application authorized for an intended type of device,wherein the decrypted authorization data is indicative of authorization by a third party for the application to run on the intended type of device, andwherein the decrypted authorization data enables the application to run on a device of the intended type.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 17, 18)
- - 2. The method according to claim 1, wherein the decrypted authorization data comprises a digital certificate.
  - 3. The method according to claim 1, wherein the decrypted authorization data identifies an association with the second party.
  - 4. The method according to claim 1, wherein the decrypted application data and the decrypted authorization data are securely provided to the compiler for compilation.
  - 5. The method according to claim 1, wherein the encrypted application data is decrypted using a first decoding key associated with the first party and the encrypted authorization data is decrypted using a second decoding key associated with the second party.
  - 6. The method according to claim 1, wherein the step of providing the decrypted application data and the decrypted authorization data to the compiler for compilation is performed in response to a request from the compiler.
  - 7. The method according to claim 1, further comprising:
    - compiling the decrypted application data and the decrypted authorization data together to produce the authorized application.
  - 17. The method according to claim 1, wherein the third party is a vendor of the device.
  - 18. The method according to claim 1, wherein the appliance device is configured with an operating system associated with the third party.

8. A server for providing a secure environment for compilation of an authorized application, the server being configured to:
- receive encrypted application data from a first party;
  
  decrypt the encrypted application data to produce decrypted application data;
  
  receive encrypted authorization data from a second party, different from the first party;
  
  decrypt the encrypted authorization data to produce decrypted authorization data; and
  
  provide the decrypted application data and the decrypted authorization data to a compiler adapted to compile an application authorized for an intended type of device,wherein the decrypted authorization data is indicative of authorization by a third party for the application to run on the intended type of device, andwherein the decrypted authorization data enables the application to run on a device of the intended type.
- View Dependent Claims (9, 10, 11, 12, 13, 14)
- - 9. The server according to claim 8, wherein the decrypted authorization data comprises a digital certificate.
  - 10. The server according to claim 8, wherein the decrypted authorization data identifies an association with the second party.
  - 11. The server according to claim 8, further configured to:
    - securely provide the decrypted application data and the decrypted authorization data to the compiler for compilation.
  - 12. The server according to claim 8, further configured to:
    - decrypt the encrypted application data using a first decoding key associated with the first party and to decrypt the encrypted authorization data using a second decoding key associated with the second party.
  - 13. The server according to claim 8, further configured to provide the decrypted application data and the decrypted authorization data to the compiler for compilation in response to a request from the compiler.
  - 14. The server according to claim 8, further configured to:
    - compile the decrypted application data and the decrypted authorization data together to produce the authorized application.

15. A non-transitory, computer-readable storage medium comprising computer-readable instructions stored thereon, the computer-readable instructions, when executed by a server, cause the server to perform a method of providing a secure environment for compilation of an authorized application, the method comprising the steps of:
- receiving, at the server, encrypted application data from a first party;
  
  decrypting, at the server, the encrypted application data to produce decrypted application data;
  
  receiving, at the server, encrypted authorization data from a second party, different from the first party;
  
  decrypting, at the server, the encrypted authorization data to produce decrypted authorization data; and
  
  providing the decrypted application data and the decrypted authorization data to a compiler adapted to compile an application authorized for an intended type of device,wherein the decrypted authorization data is indicative of authorization by a third party for the application to run on the intended type of device, andwherein the decrypted authorization data enables the application to run on a device of the intended type.

16. A method of providing a secure environment for generation of authorized content, the method comprising the steps of:
- receiving, at a server, encrypted content data from a first party;
  
  decrypting, at the server, the encrypted content data to produce decrypted content data;
  
  receiving, at the server, encrypted authorization data from a second party different from the first party;
  
  decrypting, at the server, the encrypted authorization data to produce decrypted authorization data; and
  
  providing the decrypted content data and the decrypted authorization data to a compiler adapted to compile content authorized for an intended type of device,wherein the decrypted authorization data is indicative of authorization by a third party for the content to be accessed by the intended type of device, andwherein the decrypted authorization data enables the content to be accessed by a device of the intended type.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Malikie Innovations Limited (Key Patent Innovations Limited)
Original Assignee
AppCentral, Inc. (Blackberry Limited)
Inventors
Nagpal, Aashin, Singer, Kenneth Chul, Assenmacher, Holger
Primary Examiner(s)
Zecher, Dede
Assistant Examiner(s)
MCCOY, RICHARD ANTHONY

Application Number

US13/087,322
Publication Number

US 20110276805A1
Time in Patent Office

1,615 Days
Field of Search

713/189
US Class Current

1/1
CPC Class Codes

G06F 21/51   at application loading time...

G06F 2221/2107   File encryption

G06F 2221/2115   Third party

H04L 63/0823   using certificates cryptogr...

System and method for third party creation of applications for mobile appliances

First Claim

6 Assignments

0 Petitions

Accused Products

Abstract

45 Citations

18 Claims

Specification

Use Cases

Quick Links

Others

System and method for third party creation of applications for mobile appliances

First Claim

6 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

45 Citations

18 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others