Area-based location privacy management

US 9,807,604 B2
Filed: 07/19/2013
Issued: 10/31/2017
Est. Priority Date: 07/19/2013
Status: Expired due to Fees

First Claim

Patent Images

1. A mobile computing device for location privacy management, the mobile computing device comprising:

a policy-setting application to store a location access policy, wherein the location access policy comprises one or more predefined policy rules that identify whether an application is authorized to obtain the location of the mobile computing device, and wherein the predefined policy rules include a preset condition defined by a user;

a location management module to (i) determine, in response to storage of the location access policy, whether the application executed by the mobile computing device is authorized to obtain the location of the mobile computing device based on the application, a determined location, and the location access policy stored on the mobile computing device, and (ii) block the application from obtaining the location of the mobile computing device in response to a determination that the application is not authorized to obtain the location.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Technologies for location privacy management include a mobile computing device to determine whether an application is authorized to obtain the location of the mobile computing device based on a determined location and location access policy of the mobile computing device. The location access policy includes policy rules that identify whether the application is authorized to obtain the location of the mobile computing device. If the mobile computing device determines that the application is not authorized to obtain the location of the mobile computing device, the mobile computing device blocks the application from obtaining the location.

Citations

25 Claims

1. A mobile computing device for location privacy management, the mobile computing device comprising:
- a policy-setting application to store a location access policy, wherein the location access policy comprises one or more predefined policy rules that identify whether an application is authorized to obtain the location of the mobile computing device, and wherein the predefined policy rules include a preset condition defined by a user;
  
  a location management module to (i) determine, in response to storage of the location access policy, whether the application executed by the mobile computing device is authorized to obtain the location of the mobile computing device based on the application, a determined location, and the location access policy stored on the mobile computing device, and (ii) block the application from obtaining the location of the mobile computing device in response to a determination that the application is not authorized to obtain the location.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
- - 2. The mobile computing device of claim 1, wherein to determine whether the application is authorized to obtain the location of the mobile computing device comprises to determine whether an application is authorized to obtain a location of an access point.
  - 3. The mobile computing device of claim 2, wherein to determine whether the application is authorized to obtain the location of the access point comprises to determine whether an application is authorized to obtain at least one of a name, a unique identifier, or a received signal strength of an access point.
  - 4. The mobile computing device of claim 1, wherein the location management module is to determine, in response to an attempt by the application to perform a network scan for access points within a communication range of the mobile computing device, whether the application is authorized to obtain the location of the mobile computing device.
  - 5. The mobile computing device of claim 1, wherein the location management module is to determine whether the application is authorized to obtain the location of the mobile computing device in response to receipt of a request for the location of the mobile computing device by the application.
  - 6. The mobile computing device of claim 1, further comprising a communication module to transmit location data to the application in response to a determination that the application is authorized to obtain the location, wherein the location data identifies the location of the mobile computing device.
  - 7. The mobile computing device of claim 1, wherein the predefined policy rules identify a level of specificity at which the application is authorized to obtain the location of the mobile computing device.
  - 8. The mobile computing device of claim 7, wherein the location access policy comprises:
    - a first policy rule that identifies a first application as being authorized to obtain the location of the mobile computing device at a first level of specificity; and
      
      a second policy rule that identifies a second application as being authorized to obtain the location of the mobile computing device at a second level of specificity different from the first level of specificity.
  - 9. The mobile computing device of claim 8, wherein the location access policy comprises a third policy rule that identifies a third application that is not authorized to obtain the location of the mobile computing device.
  - 10. The mobile computing device of claim 7, wherein the location management module is to block the application from obtaining the location of the mobile computing device at a requested level of specificity in response to a determination that the application is not authorized to obtain the location at the requested level of specificity.
  - 11. The mobile computing device of claim 1, further comprising a communication module to transmit a default response to the application in response to a determination of the location management module to block the application from obtaining the location of the mobile computing device, wherein the default response is defined by the location access policy.

12. One or more non-transitory, machine readable storage media comprising a plurality of instructions stored thereon that, in response to execution by a mobile computing device, cause the mobile computing device to:
- store a location access policy, the location access policy comprising one or more predefined policy rules that identify whether an application is authorized to obtain the location of the mobile computing device, and wherein the predefined policy rules include a preset condition defined by a user;
  
  determine, in response to storing the location access policy, whether the application executed by the mobile computing device is authorized to obtain the location of the mobile computing device based on the application, a determined location, and the location access policy stored on the mobile computing device; and
  
  block the application from obtaining the location of the mobile computing device in response to a determination that the application is not authorized to obtain the location.
- View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20, 21, 22)
- - 13. The one or more non-transitory, machine readable storage media of claim 12, wherein to determine whether the application is authorized to obtain the location of the mobile computing device comprises to determine whether an application is authorized to obtain a location of an access point.
  - 14. The one or more non-transitory, machine readable storage media of claim 12, wherein to determine whether the application is authorized to obtain the location of the mobile computing device comprises to determine, in response to an attempt by the application to perform a network scan for access points within a communication range of the mobile computing device, whether the application is authorized to obtain the location of the mobile computing device.
  - 15. The one or more non-transitory, machine readable storage media of claim 12, wherein to determine whether the application is authorized to obtain the location of the mobile computing device comprises to determine whether the application is authorized to obtain the location of the mobile computing device in response to receipt of a request for the location of the mobile computing device by the application.
  - 16. The one or more non-transitory, machine readable storage media of claim 12, wherein to determine whether the application is authorized to obtain the location of the mobile computing device comprises to determine whether the application is authorized to obtain the location of the mobile computing device in response to a determination that the application is eligible for location-based services.
  - 17. The one or more non-transitory, machine readable storage media of claim 12, wherein the plurality of instructions further cause the mobile computing device to determine a location of the mobile computing device, the location being the determined location.
  - 18. The one or more non-transitory, machine readable storage media of claim 12, wherein the predefined policy rules identify a level of specificity at which the application is authorized to obtain the location of the mobile computing device.
  - 19. The one or more non-transitory, machine readable storage media of claim 18, wherein the location access policy comprises:
    - a first policy rule that identifies a first application as being authorized to obtain the location of the mobile computing device at a first level of specificity; and
      
      a second policy rule that identifies a second application as being authorized to obtain the location of the mobile computing device at a second level of specificity different from the first level of specificity.
  - 20. The one or more non-transitory, machine readable storage media of claim 19, wherein the location access policy comprises a third policy rule that identifies a third application that is not authorized to obtain the location of the mobile computing device.
  - 21. The one or more non-transitory, machine readable storage media of claim 18, wherein to block the application from obtaining the location of the mobile computing device comprises to block the application from obtaining the location of the mobile computing device at a requested level of specificity in response to a determination that the application is not authorized to obtain the location at the requested level of specificity.
  - 22. The one or more non-transitory, machine readable storage media of claim 12, wherein the plurality of instructions further cause the mobile computing device to transmit a default response to the application in response to a determination to block the application from obtaining the location of the mobile computing device, the default response being defined by the location access policy.

23. A method for managing location privacy on a mobile computing device, the method comprising:
- storing, by the mobile computing device, a location access policy, the location access policy comprising one or more predefined policy rules that identify whether an application is authorized to obtain the location of the mobile computing device, and wherein the predefined policy rules include a preset condition defined by a user;
  
  determining, by the mobile computing device in response to storing the location access policy, whether the application executed by the mobile computing device is authorized to obtain the location of the mobile computing device based on the application, a determined location, and the location access policy stored on the mobile computing device; and
  
  blocking, by the mobile computing device, the application from obtaining the location of the mobile computing device in response to determining that the application is not authorized to obtain the location.
- View Dependent Claims (24, 25)
- - 24. The method of claim 23, wherein determining whether the application is authorized to obtain the location of the mobile computing device comprises determining, in response to an attempt by the application to perform a network scan for access points within a communication range of the mobile computing device, whether the application is authorized to obtain the location of the mobile computing device.
  - 25. The method of claim 23, wherein the location access policy comprises:
    - a first policy rule identifying a first application as being authorized to obtain the location of the mobile computing device at a first level of specificity;
      
      a second policy rule identifying a second application as being authorized to obtain the location of the mobile computing device at a second level of specificity different from the first level of specificity; and
      
      a third policy rule identifying a third application that is not authorized to obtain the location of the mobile computing device.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Intel Corporation
Original Assignee
Intel Corporation
Inventors
Pan, Xiaoyong, Lipman, Justin, Huang, Yuhuan, Jiang, Yong, Ding, Ke, Nguyen, Dzinh J., Colby, Robert A.
Primary Examiner(s)
Ngo, Chuong A

Application Number

US14/129,641
Publication Number

US 20160255497A1
Time in Patent Office

1,565 Days
Field of Search
US Class Current
CPC Class Codes

H04B 17/318   Received signal strength

H04W 12/02   Protecting privacy or anony...

H04W 12/08   Access security

H04W 12/63   Location-dependent; Proximi...

H04W 4/02   Services making use of loca...

H04W 4/025   using location based inform...

H04W 4/029   Location-based management o...

H04W 72/566   of the information or infor...

H04W 88/08   Access point devices

Area-based location privacy management

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

25 Claims

Specification

Solutions

Use Cases

Quick Links

Area-based location privacy management

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

25 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links