Secure mobile framework
First Claim
1. A system comprising:
- a gateway server, providing remote devices with access to services of an enterprise, wherein each remote device has stored in memory one or more applications managed by the enterprise;
an authenticator, accessible by the gateway server, and including a processor configured to;
determine if a user of one of the remote devices is authorized to access the enterprise; and
construct policies regarding the management of the one or more applications, wherein the policies are based on the services that the user of the one of the remote devices is authorized to access on the one of the remote devices;
a token generator accessible by the gateway and including a processor configured to;
generate one or more tokens for creating secure connections between the one or more applications managed by the enterprise and the services, wherein the one or more tokens includes a user binding token comprising an amalgamated, unique representation of a user identifier of the user, a device identifier of the remote device of the user, an application family associated with the one or more applications, and a device type associated with the device identifier; and
a communications module including a processor configured to communicate the policies to the remote devices.
4 Assignments
0 Petitions
Accused Products
Abstract
Systems and methods for a secure mobile framework to securely connect applications running on mobile devices to services within an enterprise are provided. Various embodiments provide mechanisms of securitizing data and communication between mobile devices and end point services accessed from a gateway of responsible authorization, authentication, anomaly detection, fraud detection, and policy management. Some embodiments provide for the integration of server and client side security mechanisms, binding of a user/application/device to an endpoint service along with multiple encryption mechanisms. For example, the secure mobile framework provides a secure container on the mobile device, secure files, a virtual file system partition, a multiple level authentication approach (e.g., to access a secure container on the mobile device and to access enterprise services), and a server side fraud detection system.
49 Citations
12 Claims
-
1. A system comprising:
-
a gateway server, providing remote devices with access to services of an enterprise, wherein each remote device has stored in memory one or more applications managed by the enterprise; an authenticator, accessible by the gateway server, and including a processor configured to; determine if a user of one of the remote devices is authorized to access the enterprise; and construct policies regarding the management of the one or more applications, wherein the policies are based on the services that the user of the one of the remote devices is authorized to access on the one of the remote devices; a token generator accessible by the gateway and including a processor configured to;
generate one or more tokens for creating secure connections between the one or more applications managed by the enterprise and the services, wherein the one or more tokens includes a user binding token comprising an amalgamated, unique representation of a user identifier of the user, a device identifier of the remote device of the user, an application family associated with the one or more applications, and a device type associated with the device identifier; anda communications module including a processor configured to communicate the policies to the remote devices. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
Specification