Embedding security posture in network traffic
First Claim
Patent Images
1. A method, comprising:
- receiving from a device management server security posture information that includes a posture value;
embedding the security posture information into a message;
sending the message including the security posture information from a mobile device to a service node, wherein the service node is configured to;
negotiate with the device management server regarding a data structure associated with the security posture information;
validate the mobile device to access a service using the security posture information, wherein the data structure includes a mapping of one or more security postures to corresponding posture values; and
in the event the security posture information does not validate the mobile device based on the posture value the service node is configured to communicate with the device management server to validate the mobile device; and
accessing the service based at least in part on the validation.
4 Assignments
0 Petitions
Accused Products
Abstract
Embedding security posture in network traffic is disclosed. Security posture information is received. The security posture information is embedded into a message. The message including the security posture information is sent from a mobile device to a service node. The service node uses the security posture information to validate the mobile device to access a service. The service accesses the service based at least in part on the validation.
28 Citations
27 Claims
-
1. A method, comprising:
-
receiving from a device management server security posture information that includes a posture value; embedding the security posture information into a message; sending the message including the security posture information from a mobile device to a service node, wherein the service node is configured to; negotiate with the device management server regarding a data structure associated with the security posture information; validate the mobile device to access a service using the security posture information, wherein the data structure includes a mapping of one or more security postures to corresponding posture values; and in the event the security posture information does not validate the mobile device based on the posture value the service node is configured to communicate with the device management server to validate the mobile device; and accessing the service based at least in part on the validation. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25)
-
-
26. A system, comprising:
-
a processor; and a memory coupled with the processor, wherein the memory is configured to provide the processor with instructions which when executed cause the processor to; receive from a device management server security posture information that includes a posture value; embed the security posture information into a message; send the message including the security posture information from a mobile device to a service node, wherein the service node is configured to; negotiate with the device management server regarding a data structure associated with the security posture information; validate the mobile device to access a service using the security posture information, wherein the data structure includes a mapping of one or more security postures to corresponding posture values; and in the event the security posture information does not validate the mobile device based on the posture value the service node is configured to communicate with the device management server to validate the mobile device; and access the service based at least in part on the validation.
-
-
27. A computer program product, the computer program product being embodied in a tangible non-transitory computer readable storage medium and comprising computer instructions for:
-
receiving from a device management server security posture information that includes a posture value; embedding the security posture information into a message; sending the message including the security posture information from a mobile device to a service node, wherein the service node is configured to; negotiate with the device management server regarding a data structure associated with the security posture information; validate the mobile device to access a service using the security posture information, wherein the data structure includes a mapping of one or more security postures to corresponding posture values; and in the event the security posture information does not validate the mobile device based on the posture value the service node is configured to communicate with the device management server to validate the mobile device; and accessing the service based at least in part on the validation.
-
Specification