×

Secure app ecosystem with key and data exchange according to enterprise information control policy

  • US 9,286,477 B2
  • Filed: 08/29/2012
  • Issued: 03/15/2016
  • Est. Priority Date: 08/29/2012
  • Status: Active Grant
First Claim
Patent Images

1. A computer implemented method for providing a secure ecosystem comprising at least a plurality of apps on a computing device, wherein the apps in the ecosystem securely exchange encrypted data according to an information control policy of an enterprise, without allowing unauthorized access from outside of the ecosystem, the method comprising:

  • creating, by an ecosystem agent on the computing device, an ecosystem directory, the ecosystem directory containing an entry for each specific app in the ecosystem, each entry comprising policy information concerning the specific app and identification information concerning the specific app, wherein the ecosystem agent is an app in the ecosystem;

    generating, by each specific ecosystem-ready app on the computing device, an asymmetric key pair, a public key of which the specific app shares only with apps in the ecosystem, and a private key of which the specific app does not share at all;

    securely communicating data between apps in the ecosystem, such that the communicated data cannot be accessed from outside of the ecosystem without authorization from within the ecosystem;

    wherein securely communicating data between apps in the ecosystem further comprises encrypting data with a first key by a providing app in the ecosystem, such that at least one receiving app in the ecosystem can decrypt the data with a second key;

    reading, by a first ecosystem app, a public key of a second ecosystem app, from the ecosystem directory;

    encrypting, by the first ecosystem app using the public key of the second ecosystem app, at least one from a group consisting of;

    a message to securely communicate to the second ecosystem app and a data object to securely share with the second ecosystem app;

    performing at least one from a group of steps consisting of;

    communicating the encrypted message from the first ecosystem app to the second ecosystem app and sharing the encrypted data object with the second ecosystem app by the first ecosystem; and

    decrypting, by the second ecosystem app, using a private key of the second ecosystem app, at least one from a group consisting of;

    the communicated message and the data object; and

    complying, by each specific app in the ecosystem, with enterprise information control policy.

View all claims
  • 5 Assignments
Timeline View
Assignment View
    ×
    ×