Coerced encryption on connected devices
First Claim
1. A system, comprising:
- one or more processors;
memory; and
one or more programs, wherein the one or more programs are stored in the memory for execution by the one or more processors, the one or more programs comprising instructions for;
receiving, over a network from a personal computing device having a storage device, a first indication that disk encryption is disabled on the storage device;
wherein the storage device stores one or more content items that are currently unsynchronized with one or more corresponding content items hosted by an online content management service;
based on the first indication, withholding synchronization data from the personal computing device for synchronizing the one or more content items on the storage device with the one or more corresponding content items hosted by the online content management service until after a second indication is received over the network from the personal computing device that disk encryption is enabled on the storage device; and
after the second indication is received over the network from the personal computing device, sending the withheld synchronization data to the personal computing device for synchronizing the one or more content items on the storage device with the one or more corresponding content items hosted by the online content management service;
wherein the withheld synchronization data sent to the personal computing device is encrypted at the personal computing device using disk encryption enabled on the storage device.
3 Assignments
0 Petitions
Accused Products
Abstract
Techniques for coercing users to encrypt synchronized content stored at their personal computing devices. In some aspects, one or more computing devices receive, from a personal computing device, an indication of whether data stored in at least a portion of a storage device of the personal computing device is protected by disk encryption. In response to determining, based on the indication, that the portion of the storage device is not protected by encryption, synchronization data for synchronizing a copy of one or more synchronized content items stored in the portion of the storage device with another copy of the synchronized content items stored at one or more server computing devices is withheld from the personal computing device until disk encryption on the personal computing device is enabled so as to coerce the user to enable disk encryption on the personal computing device.
17 Citations
20 Claims
-
1. A system, comprising:
-
one or more processors; memory; and one or more programs, wherein the one or more programs are stored in the memory for execution by the one or more processors, the one or more programs comprising instructions for; receiving, over a network from a personal computing device having a storage device, a first indication that disk encryption is disabled on the storage device; wherein the storage device stores one or more content items that are currently unsynchronized with one or more corresponding content items hosted by an online content management service; based on the first indication, withholding synchronization data from the personal computing device for synchronizing the one or more content items on the storage device with the one or more corresponding content items hosted by the online content management service until after a second indication is received over the network from the personal computing device that disk encryption is enabled on the storage device; and after the second indication is received over the network from the personal computing device, sending the withheld synchronization data to the personal computing device for synchronizing the one or more content items on the storage device with the one or more corresponding content items hosted by the online content management service; wherein the withheld synchronization data sent to the personal computing device is encrypted at the personal computing device using disk encryption enabled on the storage device. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A method, comprising:
-
at one or more computing devices comprising one or more processors and memory storing one or more programs executed by the one or more processors to perform the method, performing the operations of; receiving, over a network from a personal computing device having a storage device, a first indication that disk encryption is disabled on the storage device; wherein the storage device stores one or more content items that are currently unsynchronized with one or more corresponding content items hosted by an online content management service; based on the first indication, withholding synchronization data from the personal computing device for synchronizing the one or more content items on the storage device with the one or more corresponding content items hosted by the online content management service until after a second indication is received over the network from the personal computing device that disk encryption is enabled on the storage device; and after the second indication is received over the network from the personal computing device, sending the withheld synchronization data to the personal computing device for synchronizing the one or more content items on the storage device with the one or more corresponding content items hosted by the online content management service; wherein the withheld synchronization data sent to the personal computing device is encrypted at the personal computing device using disk encryption enabled on the storage device. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20)
-
Specification