Controlling distribution of resources in a network

US 9,680,763 B2
Filed: 02/14/2012
Issued: 06/13/2017
Est. Priority Date: 02/14/2012
Status: Active Grant

First Claim

Patent Images

1. A computing device comprising at least one processor and at least one memory storing program code, the memory and program code being configured to, with the at least one processor, cause the computing device to at least:

receive, from a client device, a request to access a distribution service associated with a plurality of resources;

determine whether the client device is authorized to access the distribution service;

determine, in response to the determination that the client device is authorized to access the distribution service, one or more resources of the plurality of the resources that are approved for the provision to the client device by at least;

identifying one or more resource grouping identifiers associated with the client device or a user of the client device;

identifying, based at least in part on the identified one or more resource grouping identifiers, one or more particular resources associated with the one or more resource grouping identifiers, anddetermining, for each of the particular resources, whether the client device complies with one or more distribution rules respectively associated with the particular resources, wherein at least one of the distribution rules specifies that the received resources may be accessed only by authorized applications;

cause the one or more resources approved for the provision to the client device to be provided to the client device; and

responsive to detecting an attempt to access the received resources by an unauthorized application, blocking the access by the unauthorized application.

View all claims

6 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Disclosed are various embodiments for controlling distribution of data on a network. In one embodiment, a distribution service receives a request from a user on a client device to access the distribution service. In response, the distribution service determines whether the user and the client device are authorized to access the distribution service. The distribution service identifies which of the resources are accessible to the user and the client device pairing based on a plurality of resource grouping identifiers. The distribution service then determines whether the client device complies with a plurality of distribution rules associated with the identified resources. Upon determining that the client device is compliant, the distribution service transmits the resources related to the compliance.

Citations

22 Claims

1. A computing device comprising at least one processor and at least one memory storing program code, the memory and program code being configured to, with the at least one processor, cause the computing device to at least:
- receive, from a client device, a request to access a distribution service associated with a plurality of resources;
  
  determine whether the client device is authorized to access the distribution service;
  
  determine, in response to the determination that the client device is authorized to access the distribution service, one or more resources of the plurality of the resources that are approved for the provision to the client device by at least;
  
  identifying one or more resource grouping identifiers associated with the client device or a user of the client device;
  
  identifying, based at least in part on the identified one or more resource grouping identifiers, one or more particular resources associated with the one or more resource grouping identifiers, anddetermining, for each of the particular resources, whether the client device complies with one or more distribution rules respectively associated with the particular resources, wherein at least one of the distribution rules specifies that the received resources may be accessed only by authorized applications;
  
  cause the one or more resources approved for the provision to the client device to be provided to the client device; and
  
  responsive to detecting an attempt to access the received resources by an unauthorized application, blocking the access by the unauthorized application.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
- - 2. The computing device of claim 1, wherein the request to access the distribution service further identifies the client device;
    - andwherein determining whether the user is authorized to access the distribution service comprises determining whether the user and the client device pairing is authorized to access the distribution service.
  - 3. The computing device of claim 1, wherein the determination as to whether the user is authorized to access the distribution service is based on a plurality of authorization rules;
    - andwherein the authorization rules are based at least in part on a plurality of approved user credentials and a plurality of approved client device identifiers.
  - 4. The computing device of claim 1, wherein the distribution rules comprise at least one of a plurality of client device hardware requirements, a plurality of client device software requirements, a plurality of client device configuration requirements, a plurality of client device maintenance requirements, and a plurality of resource related requirements.
  - 5. The computing device of claim 1, wherein the resources are stored in a data store accessible to the distribution service.
  - 6. The computing device of claim 1, wherein the resource grouping identifiers are associated with at least one of a plurality of user credentials.
  - 7. The computing device of claim 1, wherein the resource grouping identifiers are associated with at least one of a plurality of user credentials and at least one of a plurality of client device identifiers.
  - 8. The computing device of claim 1, wherein the resources and distribution rules are stored in a data store accessible to the distribution service, and wherein the data store is encrypted according to an advanced encryption standard.

9. A method, comprising:
- transmitting, from a client device comprising at least one processor and at least one memory storing program code, a request to access a distribution service associated with a plurality of resources;
  
  receiving at the client device, one or more resources selected from the plurality of resources for provision to the client device, said resources being selected by the distribution service by at least;
  
  identifying one or more resource grouping identifiers associated with the client device or a user of the client device, andidentifying, based at least in part on the identified one or more resource grouping identifiers, one or more particular resources associated with the one or more resource grouping identifiers;
  
  receiving, at the client device, one or more distribution rules respectively associated with each of the received resources, wherein at least one of the distribution rules specifies that the received resources may be accessed only by authorized applications;
  
  determining, via the at least one processor of the client device, for at least one of the received resources, whether the client device complies with the one or more distribution rules associated with the at least one received resource;
  
  responsive to a determination that the client device compiles with the one or more distribution rules associated with the at least one received resource, causing the at least one received resource to be rendered via a display associated with the client device; and
  
  responsive to detecting an attempt to access the received resources by an unauthorized application, blocking the access by the unauthorized application.
- View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
- - 10. The method of claim 9, wherein the request to access the distribution service does not comprise an identification of any particular resource.
  - 11. The method of claim 9, wherein the request to access the distribution service identifies a pairing of a user of the client device and the client device.
  - 12. The method of claim 9, wherein the determination of whether the client device complies with the one or more distribution rules associated with the at least one resource is based at least in part on a client device profile associated with the client device.
  - 13. The method of claim 12, wherein the client device profile comprises a description of at least one hardware state of the client device, at least one software state of the client device, and at least one configuration state of the client device, and at least one maintenance record of the client device.
  - 14. The method of claim 9, wherein the distribution rules comprise at least one of:
    - one or more client device hardware requirements, one or more client device software requirements, one or more client device configuration requirements, one or more client device maintenance requirements, or one or more resource related requirements.
  - 15. The method of claim 9, wherein the resources and the distribution rules are received at the client device in an instance in which the user and the client device are authorized to access the resources.
  - 16. The method of claim 9, further comprising:
    - determining whether the received resources were modified on the client device;
      
      responsive to the determination that the received resources were modified, storing the modified resources in a memory accessible to the client device;
      
      receiving a request to transmit the modified resources to the distribution service; and
      
      causing the modified resources to be transmitted to the distribution service.

17. A non-transitory computer-readable medium embodying program code portions executable by a computing device, the program code portions being configured to, upon execution by the computing device, cause the computing device to at least:
- receive a request from a client device to access a distribution service associated with a plurality of resources;
  
  determine whether the client device is authorized to access the distribution service;
  
  determine, in response to the determination that the client device is authorized to access the distribution service, one or more resources of the plurality of resources that are approved for provision to the client device by at least;
  
  identifying one or more resource grouping identifiers associated with the client device or a user of the client device,identifying, based at least in part on the identified one or more resource grouping identifiers, one or more particular resources associated with the one or more resource grouping identifiers, anddetermining, for each of the particular resources, whether the client device complies with one or more distribution rules respectively associated with the particular resources, wherein at least one of the distribution rules specifies that the received resources may be accessed only by authorized applications;
  
  cause the one or more resources approved for provision to the client device to be provided to the client device; and
  
  responsive to detecting an attempt to access the received resources by an unauthorized application, blocking the access by the unauthorized application.
- View Dependent Claims (18, 19, 20, 21, 22)
- - 18. The non-transitory computer readable medium of claim 17, wherein the request comprises at least one of a plurality of user credentials, a plurality of client device identifiers, and an amount of data selected from a client device profile of the client device.
  - 19. The non-transitory computer readable medium of claim 18, wherein the computing device is further caused to determine whether a pairing of at least one of a plurality of user credentials and at least one of a plurality of device identifiers is authorized to access the resources based at least on a plurality of authorized rules.
  - 20. The non-transitory computer readable medium of claim 19, wherein the authorization rules are based at least in part on a plurality of approved user credentials and a plurality of approved client device identifiers.
  - 21. The non-transitory computer readable medium of claim 17, wherein the request comprises an amount of data selected from a client device profile of the client;
    - andwherein the client device profile comprises at least one hardware state of the client device, at least one software state of the client device, at least one configuration state of the client device, and at least one maintenance record of the client device.
  - 22. The non-transitory computer readable medium of claim 17, wherein the distribution rules comprise at least one of one or more client device hardware requirements, one or more client device software requirements, one or more client device configuration requirements, or one or more client device maintenance requirements, one or more resource related requirements.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Omnissa, LLC
Original Assignee
AirWatch LLC (Broadcom, Inc.)
Inventors
Marshall, John, Stuntebeck, Erich, Rykowski, Adam, Halebeed, Jyothiprakash
Primary Examiner(s)
SALAD, ABDULLAHI ELMI

Application Number

US13/396,356
Publication Number

US 20130212278A1
Time in Patent Office

1,946 Days
Field of Search

709226, 709229, 709225, 726 1- 2
US Class Current
CPC Class Codes

G06F 21/31   User authentication

G06F 21/6218   to a system of files or obj...

H04L 47/70   Admission control; Resource...

H04L 63/102   Entity profiles

Controlling distribution of resources in a network

First Claim

6 Assignments

0 Petitions

Accused Products

Abstract

Citations

22 Claims

Specification

Solutions

Use Cases

Quick Links

Controlling distribution of resources in a network

First Claim

6 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

22 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links