Techniques for dynamic enpoint secure location awareness
First Claim
Patent Images
1. An article of manufacture comprising a non-transitory storage medium containing instructions that when executed enable a system to:
- determine that a mobile device has changed locations, the mobile device to comprise a platform security engine and a security component;
authenticate, by the platform security engine, with a remote server to establish secure communication with the remote server based on the determination that the mobile device has changed locations;
dynamically send a location query from the platform security engine to the remote server based on the determination that the mobile device has changed locations and in response to the establishment of secure communication with the remote server, the location query comprising a query of whether the mobile device is communicatively coupled to a private network or a public network;
receive a location response from the remote server in response to the location query;
determine, by the platform security engine, whether the mobile device is located in a secure location based on the location response; and
send, by the platform security engine, an indication of whether the mobile device is located in a secure location to the security component; and
set, by the security component, a security policy of the mobile device based on the indication.
1 Assignment
0 Petitions
Accused Products
Abstract
Techniques for dynamic endpoint secure location awareness may include dynamically sending a location query in response to a change in location for a mobile device. A location response may be received. The platform security engine may determine whether the mobile device is located in a secure location based on the location response. Other embodiments are described and claimed.
-
Citations
28 Claims
-
1. An article of manufacture comprising a non-transitory storage medium containing instructions that when executed enable a system to:
-
determine that a mobile device has changed locations, the mobile device to comprise a platform security engine and a security component; authenticate, by the platform security engine, with a remote server to establish secure communication with the remote server based on the determination that the mobile device has changed locations; dynamically send a location query from the platform security engine to the remote server based on the determination that the mobile device has changed locations and in response to the establishment of secure communication with the remote server, the location query comprising a query of whether the mobile device is communicatively coupled to a private network or a public network; receive a location response from the remote server in response to the location query; determine, by the platform security engine, whether the mobile device is located in a secure location based on the location response; and send, by the platform security engine, an indication of whether the mobile device is located in a secure location to the security component; and set, by the security component, a security policy of the mobile device based on the indication. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A method, comprising:
-
determining that a mobile device has changed locations, the mobile device to comprise a platform security engine and a security component; authenticating, by the platform security engine implemented by a microprocessor, with a remote server to establish secure communication with the remote server based on the determination that the mobile device has changed locations; dynamically sending a location query from the platform security engine to the remote server based on the determination that the mobile device has changed locations and in response to establishment of secure communication with the remote server, the location query comprising a query of whether the mobile device is communicatively coupled to a private network or a public network; receiving a location response from the remote server in response to the location query; determining, by the platform security engine, whether the mobile device is located in a secure location based on the location response; and sending an indication of whether the mobile device is located in a secure location from the platform security engine to the security component; and setting, by the security component implemented by the microprocessor, a security policy of the mobile device based on the indication. - View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20)
-
-
21. A mobile device, comprising:
-
a communications component to exchange one or more wireless communications;
a platform security engine implemented by a microprocessor operative to;determine, in response to a receipt of an event trigger, that the mobile device has changed locations; authenticate with a remote server to establish secure communication with the remote server based on the determination that the mobile device has changed locations; dynamically send a location query to the remote server based on the determination that the mobile device has changed locations and in response to the establishment of secure communication with the remote server, the location query comprising a query of whether the mobile device is communicatively coupled to a private network or a public network; receive a location response from the remote server in response to the location query; and determine whether the mobile device is located in a secure location based on the location response; and
a security component implemented by the microprocessor operative to;receive, from the platform security engine, an indication of whether the mobile device is located in a secure location; and set a security policy of the mobile device based on the indication. - View Dependent Claims (22, 23, 24, 25, 26, 27, 28)
-
Specification