Methods and systems for implementing security policies on a mobile device

US 9,367,705 B2
Filed: 10/22/2012
Issued: 06/14/2016
Est. Priority Date: 10/22/2012
Status: Active Grant

First Claim

Patent Images

1. A wireless device comprising:

a non-volatile memory comprising a designation of a security type hard-coded in the non-volatile memory; and

a processor coupled to the non-volatile memory, the processor being configured to execute computer-readable instructions to cause the wireless device to;

determine, based on the security type, whether a received security policy governing behavior of one or more resources designated as personal is applicable to the one or more resources designated as personal;

if the security type is determined to indicate that the received security policy is not applicable to the one or more resources designated as personal, not apply the security policy to the one or more resources designated as personal; and

if the security type is determined to indicate that the received security policy is applicable to the one or more resources designated as personal, apply the security policy to the one or more resources designated as personal,wherein the wireless device is configurable to provide concurrent use for both personal and work purposes and the security type is one of the following;

a first security type, which indicates that no security policies are applicable to resources designated as personal;

a second security type, which indicates that at least one security policy is applicable to resources designated as personal;

ora third security type, which indicates that all security policies are applicable to resources designated as personal.

View all claims

4 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Methods and devices for implementing security policies on a wireless device. The wireless device may include a non-volatile memory comprising a security type hard-coded in the non-volatile memory. Based on the security type, it may be determined whether a received security policy governing behavior of one or more resources designated as personal is applicable to the one or more resources designated as personal. If the security type is determined to indicate that the received security policy is not applicable to the one or more resources designated as personal, the security policy may not be applied to the one or more resources designated as personal.

12 Citations

View as Search Results

18 Claims

1. A wireless device comprising:
- a non-volatile memory comprising a designation of a security type hard-coded in the non-volatile memory; and
  
  a processor coupled to the non-volatile memory, the processor being configured to execute computer-readable instructions to cause the wireless device to;
  
  determine, based on the security type, whether a received security policy governing behavior of one or more resources designated as personal is applicable to the one or more resources designated as personal;
  
  if the security type is determined to indicate that the received security policy is not applicable to the one or more resources designated as personal, not apply the security policy to the one or more resources designated as personal; and
  
  if the security type is determined to indicate that the received security policy is applicable to the one or more resources designated as personal, apply the security policy to the one or more resources designated as personal,wherein the wireless device is configurable to provide concurrent use for both personal and work purposes and the security type is one of the following;
  
  a first security type, which indicates that no security policies are applicable to resources designated as personal;
  
  a second security type, which indicates that at least one security policy is applicable to resources designated as personal;
  
  ora third security type, which indicates that all security policies are applicable to resources designated as personal.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. The device of claim 1 wherein the processor is further configured to execute computer-readable instructions to cause the device to, if the security type is determined to indicate that the received security policy is not applicable to the one or more resources designated as personal, apply the security policy only to any resources not designated as personal.
  - 3. The device of claim 1 wherein the security policy comprises at least one of:
    - a whole-device password policy;
      
      a whole-device encryption policy;
      
      a whole-device wipe policy;
      
      a personal data access policy;
      
      an email audit trail creation policy;
      
      ora messaging audit trail creation policy.
  - 4. The device of claim 1 wherein the security type is not changeable by any application executed by the processor.
  - 5. The device of claim 1 wherein the security type is hard-coded in a byte of the non-volatile memory.
  - 6. The device of claim 1, wherein the first security type is personal-liable, the second security type is corporate-liable and the third security type is regulated.

7. A method for applying a security policy to a wireless device, wherein the method is carried out by the wireless device comprising a security type hard-coded in a non-volatile memory, the method comprising:
- determining, using a processor coupled to the non-volatile memory, based on the security type hard-coded in a non-volatile memory, whether a received security policy governing behavior of one or more resources designated as personal is applicable to the one or more resources designated as personal;
  
  if the security type is determined to indicate that the received security policy is not applicable to the one or more resources designated as personal, not applying the security policy to the one or more resources designated as personal; and
  
  if the security type is determined to indicate that the received security policy is applicable to the one or more resources designated as personal, applying the security policy to the one or more resources designated as personal,wherein the wireless device is configurable to provide concurrent use for both personal and work purposes and the security type is one of the following;
  
  a first security type, which indicates that no security policies are applicable to resources designated as personal;
  
  a second security type, which indicates that at least one security policy is applicable to resources designated as personal;
  
  ora third security type, which indicates that all security policies are applicable to resources designated as personal.
- View Dependent Claims (8, 9, 10, 11, 12)
- - 8. The method of claim 7 further comprising if the security type is determined to indicate that the received security policy is not applicable to the one or more resources designated as personal, applying the security policy only to any resources not designated as personal.
  - 9. The method of claim 7 wherein the security policy comprises at least one of:
    - a whole-device password policy;
      
      a whole-device encryption policy;
      
      a whole-device wipe policy;
      
      a personal data access policy;
      
      an email audit trail creation policy;
      
      ora messaging audit trail creation policy.
  - 10. The method of claim 7 wherein the security type is not changeable by any application executed by the processor.
  - 11. The method of claim 7 wherein the security type is hard-coded in a byte of the non-volatile memory.
  - 12. The method of claim 7, wherein the first security type is personal-liable, the second security type is corporate-liable and the third security type is regulated.

13. A non-transitory computer readable medium comprising computer readable-instructions which, when executed by one or more processors of a wireless device, cause the one or more processors to be configured to:
- determine, using a processor coupled to the non-volatile memory, based on the security type hard-coded in a non-volatile memory, whether a received security policy governing behavior of one or more resources designated as personal is applicable to the one or more resources designated as personal;
  
  if the security type is determined to indicate that the received security policy is not applicable to the one or more resources designated as personal, not apply the security policy to the one or more resources designated as personal; and
  
  if the security type is determined to indicate that the received security policy is applicable to the one or more resources designated as personal, apply the security policy to the one or more resources designated as personal,wherein the wireless device is configurable to provide concurrent use for both personal and work purposes and the security type is one of the following;
  
  a first security type, which indicates that no security policies are applicable to resources designated as personal;
  
  a second security type, which indicates that at least one security policy is applicable to resources designated as personal;
  
  ora third security type, which indicates that all security policies are applicable to resources designated as personal.
- View Dependent Claims (14, 15, 16, 17, 18)
- - 14. The computer readable medium of claim 13 wherein the computer readable instructions are further configured to, if the security type is determined to indicate that the received security policy is not applicable to the one or more resources designated as personal, apply the security policy only to any resources not designated as personal.
  - 15. The computer readable medium of claim 13 wherein the security policy comprises at least one of:
    - a whole-device password policy;
      
      a whole-device encryption policy;
      
      a whole-device wipe policy;
      
      a personal data access policy;
      
      an email audit trail creation policy;
      
      ora messaging audit trail creation policy.
  - 16. The computer readable medium of claim 13 wherein the security type is not changeable by any application executed by the processor.
  - 17. The computer readable medium of claim 13 wherein the security type is hard-coded in a byte of the non-volatile memory.
  - 18. The computer readable medium of claim 13, wherein the first security type is personal-liable, the second security type is corporate-liable and the third security type is regulated.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Malikie Innovations Limited (Key Patent Innovations Limited)
Original Assignee
Blackberry Limited
Inventors
Ryerson, Christopher Maybee
Primary Examiner(s)
To, Baotran N

Application Number

US13/656,891
Publication Number

US 20140115653A1
Time in Patent Office

1,331 Days
Field of Search

726/1
US Class Current

1/1
CPC Class Codes

G06F 21/6245 Protecting personal data, e...

Methods and systems for implementing security policies on a mobile device

First Claim

4 Assignments

0 Petitions

Accused Products

Abstract

12 Citations

18 Claims

Specification

Use Cases

Quick Links

Others

Methods and systems for implementing security policies on a mobile device

First Claim

4 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

12 Citations

18 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others