Associating distinct security modes with distinct wireless authenticators

US 9,552,472 B2
Filed: 05/29/2013
Issued: 01/24/2017
Est. Priority Date: 05/29/2013
Status: Active Grant

First Claim

Patent Images

1. An authentication method comprising:

securing resources on a first device according to a first security mode, wherein the resources on the first device are grouped into a plurality of subsets of resources, each of the plurality of the subsets of resources includes a plurality of resources having a common management scheme, and the first security mode is one of a plurality of distinct security modes;

while securing resources on the first device according to the first security mode, detecting, at the first device, information encoded in a wireless authenticator device based on a wireless interaction between the first device and the wireless authenticator device, wherein the information includes one or more accessibility attributes and the one or more accessibility attributes includes a resource attribute and an authentication attribute, the resource attribute indicating whether external access to a plurality of resources having a common management scheme is granted or declined, the authentication attribute indicating an additional authentication mechanism that is required before allowing external access to the plurality of resources, and the additional authentication mechanism being independent of using the wireless authenticator device;

based on the one or more accessibility attributes, selecting a second security mode associated with the wireless authenticator device, wherein the second security mode is different than the first security mode; and

applying the selected second security mode at the first device, wherein applying the selected second security mode comprising securing the plurality of resource having the common management scheme according to the resource attribute.

View all claims

7 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

In some aspects, a first device detects information encoded in a wireless authenticator device based on a wireless interaction between the first device and the wireless authenticator device. The first device detects the information while securing resources on the first device according to a first security mode. Based on the detected information, the first device selects a second security mode associated with the wireless authenticator device. The first device then applies the selected second security mode. The selected second security mode is one of multiple distinct security modes. Each of the multiple distinct security modes is associated with a respective one of multiple wireless authenticator devices and defines accessibility attributes of the resources on the first device.

Citations

20 Claims

1. An authentication method comprising:
- securing resources on a first device according to a first security mode, wherein the resources on the first device are grouped into a plurality of subsets of resources, each of the plurality of the subsets of resources includes a plurality of resources having a common management scheme, and the first security mode is one of a plurality of distinct security modes;
  
  while securing resources on the first device according to the first security mode, detecting, at the first device, information encoded in a wireless authenticator device based on a wireless interaction between the first device and the wireless authenticator device, wherein the information includes one or more accessibility attributes and the one or more accessibility attributes includes a resource attribute and an authentication attribute, the resource attribute indicating whether external access to a plurality of resources having a common management scheme is granted or declined, the authentication attribute indicating an additional authentication mechanism that is required before allowing external access to the plurality of resources, and the additional authentication mechanism being independent of using the wireless authenticator device;
  
  based on the one or more accessibility attributes, selecting a second security mode associated with the wireless authenticator device, wherein the second security mode is different than the first security mode; and
  
  applying the selected second security mode at the first device, wherein applying the selected second security mode comprising securing the plurality of resource having the common management scheme according to the resource attribute.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
- - 2. The authentication method of claim 1, further comprising associating each of the plurality of distinct security modes with the respective one of the plurality of distinct wireless authenticator devices.
  - 3. The authentication method of claim 2, wherein associating each of the plurality of distinct security modes with the respective one of the plurality of distinct wireless authenticator devices is based at least in part on a location of the respective one of the plurality of distinct wireless authenticator devices.
  - 4. The authentication method of claim 1, wherein the security modes comprise one or more of a game security mode, a child security mode, a home security mode, or a work security mode.
  - 5. The authentication method of claim 1, wherein external access to the resources is declined when the resources are secured according to the first security mode, and external access to the resources is granted after applying the selected second security mode.
  - 6. The authentication method of claim 1, wherein the second security mode defines a timeout attribute, the timeout attribute indicates a time parameter for securing the resources according to the second security mode, the time parameter specifying a beginning and ending time for securing the resources, and the method further comprises securing the resources on the first device according to the second security mode and further according to the timeout attribute.
  - 7. The authentication method of claim 1, further comprising verifying receipt of the additional authentication mechanism before allowing external access to the resources.
  - 8. The authentication method of claim 7, wherein the additional authentication mechanism includes one or more of a personal identification number (PIN), a password, a Quick Response (QR) code, a barcode, a graphical authenticator, a gesture, biometric data, or another authenticator device.
  - 9. The authentication method of claim 1, wherein detecting information encoded in the wireless authenticator device comprises detecting proximity of the wireless authenticator device.
  - 10. The authentication method of claim 1, wherein the external access includes at least one of user access or access by a system external to the first device.

11. A device comprising:
- a communication interface operable to detect information encoded in a wireless authenticator device based on a wireless interaction between the communication interface and the wireless authenticator device; and
  
  one or more data processing apparatus operable to;
  
  secure resources on the device according to a first security mode, wherein the resources on the device are grouped into a plurality of subsets of resources, each of the plurality of the subsets of resources includes a plurality of resources having a common management scheme, and the first security mode is one of a plurality of distinct security modes;
  
  receive the detected information from the communication interface while securing resources of the device according to the first security mode, wherein the detected information includes one or more accessibility attributes and the one or more accessibility attributes include a resource attribute and an authentication attribute, the resource attribute indicating whether external access to a plurality of resources having a common management scheme is granted or declined, the authentication attribute indicating an additional authentication mechanism that is required before allowing external access to the plurality of resources, and the additional authentication mechanism being independent of using the wireless authenticator device;
  
  based on the one or more accessibility attributes, select a second security mode associated with the wireless authenticator device, wherein the second security mode is different than the first security mode; and
  
  apply the selected second security mode, wherein applying the selected second security mode comprising securing the plurality of resources having the common management scheme according to the resource attribute.
- View Dependent Claims (12, 13, 14, 15, 16)
- - 12. The device of claim 11, wherein the communication interface includes a Near Field Communication (NFC) interface and the one or more accessibility attributes are received over a NFC interface.
  - 13. The device of claim 11, wherein the communication interface includes a Quick Response (QR) code reader.
  - 14. The device of claim 11, wherein external access to the resources is declined when the resources are secured according to the first security mode, and external access to the resources is granted after applying the selected second security mode.
  - 15. The device of claim 11, wherein the one or more data processing apparatus are operable to verify receipt of the additional authentication mechanism before granting external access to the resources.
  - 16. The device of claim 11, wherein the external access includes at least one of user access or access by a system external to the device.

17. One or more non-transitory computer-readable media storing instructions that are operable when executed by one or more data processing apparatus to perform operations at a first device, the operations comprising:
- securing resources on the first device according to a first security mode, wherein the resources on the first device are grouped into a plurality of subsets of resources, each of the plurality of the subsets of resources includes a plurality of resources having a common management scheme, and the first security mode is one of a plurality of distinct security modes;
  
  while securing resources on the first device according to the first security mode, detecting information encoded in a wireless authenticator device based on a wireless interaction between the first device and the wireless authenticator device, wherein the information includes one or more accessibility attributes and the one or more accessibility attributes include a resource attribute and an authentication attribute, the resource attribute indicating whether external access to a plurality of resources having a common management scheme is granted or declined, the authentication attribute indicating an additional authentication mechanism that is required before allowing external access to the plurality of resources, and the additional authentication mechanism being independent of using the wireless authenticator device;
  
  based on the one or more accessibility attributes, selecting a second security mode associated with the wireless authenticator device, wherein the second security mode is different than the first security mode; and
  
  applying the selected second security mode, wherein applying the selected second security mode comprising securing the plurality of resources having the common management scheme according to the resource attribute.
- View Dependent Claims (18, 19, 20)
- - 18. The one or more computer-readable media of claim 17, wherein external access to the resources is declined when the resources are secured according to the first security mode, and external access to the resources is granted after applying the selected second security mode.
  - 19. The one or more computer-readable media of claim 17, wherein the operations comprise verifying receipt of the additional authentication mechanism before granting external access to the resources.
  - 20. The one or more computer-readable media of claim 17, wherein the external access includes at least one of user access or access by a system external to the first device.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Malikie Innovations Limited (Key Patent Innovations Limited)
Original Assignee
Blackberry Limited
Inventors
Adams, Neil Patrick, Sherkin, Alexander, Kumar, Surender
Primary Examiner(s)
Tran, Tri

Application Number

US13/904,698
Publication Number

US 20140359750A1
Time in Patent Office

1,336 Days
Field of Search

None
US Class Current

1/1
CPC Class Codes

G06F 21/35   communicating wirelessly

G06F 21/74   operating in dual or compar...

H04L 63/105   Multiple levels of security

H04L 67/52   specially adapted for the l...

H04W 12/06   Authentication

H04W 12/086   using security domains

H04W 4/02   Services making use of loca...

Associating distinct security modes with distinct wireless authenticators

First Claim

7 Assignments

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Associating distinct security modes with distinct wireless authenticators

First Claim

7 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links