Automatic sanitization of data on a mobile device in a network environment
First Claim
1. A method of protecting objects on a mobile device, comprising:
- establishing a network connection from the mobile device to a central security system in a central network;
receiving a first message from the central security system authorizing a first grace window on the mobile device;
activating the first grace window based, at least in part, on the first message, wherein the first grace window defines a first period of time during which the mobile device can remain disconnected from the central security system without a sanitization policy being applied to the mobile device;
attempting to establish a new network connection to the central security system to receive a second message authorizing a second grace window, wherein the attempting occurs at least once prior to the expiration of the first grace window; and
if the second message is received from the central security system, activating the second grace window based, at least in part, on the second message, wherein the second grace window defines a second period of time during which the mobile device can remain disconnected from the central security system without the sanitization policy being applied to the mobile device, wherein the second period of time is based on a level of sensitivity of at least one object in a protected network that a user of the mobile device is authorized to access.
10 Assignments
0 Petitions
Accused Products
Abstract
A method is provided in one example embodiment and includes establishing a network connection to a central security system in a central network, receiving a message from the central security system, activating a grace window based on the message, and determining whether the grace window has expired. The method further includes deleting, when the grace window expires, one or more objects from the mobile device based on a sanitization policy. In specific embodiments, the network connection is terminated before the grace window expires, and the grace window expires unless the mobile device establishes another network connection with the central security system. In further embodiments, the method includes receiving the sanitization policy from the central security system. The sanitization policy identifies the one or more objects to be deleted from the mobile device when the grace window expires.
-
Citations
24 Claims
-
1. A method of protecting objects on a mobile device, comprising:
-
establishing a network connection from the mobile device to a central security system in a central network; receiving a first message from the central security system authorizing a first grace window on the mobile device; activating the first grace window based, at least in part, on the first message, wherein the first grace window defines a first period of time during which the mobile device can remain disconnected from the central security system without a sanitization policy being applied to the mobile device; attempting to establish a new network connection to the central security system to receive a second message authorizing a second grace window, wherein the attempting occurs at least once prior to the expiration of the first grace window; and
if the second message is received from the central security system, activating the second grace window based, at least in part, on the second message, wherein the second grace window defines a second period of time during which the mobile device can remain disconnected from the central security system without the sanitization policy being applied to the mobile device, wherein the second period of time is based on a level of sensitivity of at least one object in a protected network that a user of the mobile device is authorized to access. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. At least one non-transitory machine accessible storage medium having instructions stored thereon for protecting objects on a mobile device, the instructions when executed by a processor cause the processor to:
-
establish a network connection from the mobile device to a central security system in a central network; receive a first message from the central security system authorizing a first grace window on the mobile device; activate the first grace window based, at least in part, on the first message, wherein the first grace window is to define a first period of time during which the mobile device can remain disconnected from the central security system without a sanitization policy being applied to the mobile device; attempt to establish a new network connection to the central security system to receive a second message authorizing a second grace window, wherein the attempt is to occur at least once prior to the expiration of the first grace window; and if the second message is received from the central security system, activate the second grace window based, at least in part, on the second message, wherein the second grace window is to define a second period of time during which the mobile device can remain disconnected from the central security system without the sanitization policy being applied to the mobile device, wherein the second period of time is based on a level of sensitivity of at least one object in a protected network that a user of the mobile device is authorized to access. - View Dependent Claims (9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19)
-
-
20. An apparatus for protecting objects, the apparatus comprising:
-
a processor; and a sanitization module configured to execute on the processor to; establish a network connection to a central security system in a central network; receive a first message from the central security system authorizing a first grace window on the mobile device; activate the first grace window based, at least in part, on the first message, wherein the first grace window is to define a first period of time during which the mobile device can remain disconnected from the central security system without a sanitization policy being applied to the mobile device; attempt to establish a new network connection to the central security system to receive a second message authorizing a second grace window, wherein the attempt is to occur at least once prior to the expiration of the first grace window; and
if the second message is received from the central security system, activate the second grace window based, at least in part, on the second message, wherein the second grace window is to define a second period of time during which the mobile device can remain disconnected from the central security system without the sanitization policy being applied to the mobile device, wherein the second period of time is based on a level of sensitivity of at least one object in a protected network that a user of the mobile device is authorized to access. - View Dependent Claims (21, 22, 23, 24)
-
Specification