Unified enterprise management of wireless devices in a controlled environment
First Claim
Patent Images
1. A method performed by a wireless device in a controlled environment, comprising:
- receiving a client control subsystem, a file, and configuration information from an enterprise management server associated with the controlled environment;
installing the client control subsystem on the wireless device;
transmitting, by the client control subsystem, a message to the enterprise management server in response to installing the client control subsystem, wherein the message indicates that the wireless device is authorized to access a network associated with the enterprise management server;
creating, by the client control subsystem, a plurality of containers based at least on the configuration information, wherein each of the containers in the plurality of containers comprises a file system, is associated with a profile associated with a user of the wireless device, and is associated with at least one execution rule that restricts or allows execution of files within the associated container based on at least one execution condition comprising at least one of a time-based restriction and a usage-based restriction;
organizing, by the client control subsystem, the file into a container of the plurality of containers based at least on the configuration information;
receiving a request to execute the file;
allowing, denying, or limiting execution of the file based at least on the profile associated with the user of the wireless device, the at least one execution rule, and the at least one execution condition associated with the container;
determining whether execution of the file requires transmitting data over the network;
tagging data that requires transmission with an identifier of the container in which the file is located and with an identifier of the at least one execution rule; and
receiving a signal, at the client control subsystem from the enterprise management server, to allow, deny, or limit execution of the file.
8 Assignments
0 Petitions
Accused Products
Abstract
A wireless device enterprise management system and a method for operating the management system in a controlled environment is disclosed. The enterprise management system includes implementing a container-based file system on wireless devices within the controlled environment. Enterprise management system manages and controls the organization of files into one or more containers on each wireless device. Each container is associated with one or more execution rules that allow or restrict execution of files that are located in the container.
-
Citations
20 Claims
-
1. A method performed by a wireless device in a controlled environment, comprising:
-
receiving a client control subsystem, a file, and configuration information from an enterprise management server associated with the controlled environment; installing the client control subsystem on the wireless device; transmitting, by the client control subsystem, a message to the enterprise management server in response to installing the client control subsystem, wherein the message indicates that the wireless device is authorized to access a network associated with the enterprise management server; creating, by the client control subsystem, a plurality of containers based at least on the configuration information, wherein each of the containers in the plurality of containers comprises a file system, is associated with a profile associated with a user of the wireless device, and is associated with at least one execution rule that restricts or allows execution of files within the associated container based on at least one execution condition comprising at least one of a time-based restriction and a usage-based restriction; organizing, by the client control subsystem, the file into a container of the plurality of containers based at least on the configuration information; receiving a request to execute the file; allowing, denying, or limiting execution of the file based at least on the profile associated with the user of the wireless device, the at least one execution rule, and the at least one execution condition associated with the container; determining whether execution of the file requires transmitting data over the network; tagging data that requires transmission with an identifier of the container in which the file is located and with an identifier of the at least one execution rule; and receiving a signal, at the client control subsystem from the enterprise management server, to allow, deny, or limit execution of the file. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A wireless device in a controlled environment, comprising:
-
a computer processor; a non-transitory computer-readable storage device with computer-executable instructions stored thereon that, when executed by the computer processor, causes the computer processor to perform operations comprising; receiving a client control subsystem, a file, and configuration information from an enterprise management server associated with the controlled environment; installing the client control subsystem on the wireless device; transmitting, by the client control subsystem, a message to the enterprise management server in response to installing the client control subsystem, wherein the message indicates that the wireless device is authorized to access a network associated with the enterprise management server; creating, by the client control subsystem, a plurality of containers based at least on the configuration information, wherein each of the containers in the plurality of containers comprises a file system, is associated with a profile associated with a user of the wireless device, and is associated with at least one execution rule that restricts or allows execution of files within the associated container based on at least one execution condition comprising at least one of a time-based restriction and a usage-based restriction; organizing, by the client control subsystem, the file into a container of the plurality of containers based at least on the configuration information; receiving a request to execute the file; allowing, denying, or limiting execution of the file based at least on the profile associated with the user of the wireless device, the at least one execution rule, and the at least one execution condition associated with the container; determining whether execution of the file requires transmitting data over the network; tagging data that requires transmission with an identifier of the container in which the file is located and with an identifier of the at least one execution rule; and receiving a signal, at the client control subsystem from the enterprise management server, to allow, deny, or limit execution of the file. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. A non-transitory computer-readable medium having instructions stored therein, which when executed by a processor in a wireless device, cause the processor to perform operations, the operations comprising:
-
receiving a client control subsystem, a file, and configuration information from an enterprise management server associated with a controlled environment; installing the client control subsystem on the wireless device; transmitting, by the client control subsystem, a message to the enterprise management server in response to installing the client control subsystem, wherein the message indicates that the wireless device is authorized to access a network associated with the enterprise management server; creating, by the client control subsystem, a plurality of containers based at least on the configuration information, wherein each of the containers in the plurality of containers comprises a file system, is associated with a profile associated with a user of the wireless device, and is associated with at least one execution rule that restricts or allows execution of files within the associated container based on at least one execution condition comprising at least one of a time-based restriction and a usage-based restriction; organizing, by the client control subsystem, the file into a container of the plurality of containers based at least on the configuration information; receiving a request to execute the file; allowing, denying, or limiting execution of the file based at least on the profile associated with the user of the wireless device, the at least one execution rule, and the at least one execution condition associated with the container; determining whether execution of the file requires transmitting data over the network; tagging data that requires transmission with an identifier of the container in which the file is located and with an identifier of the at least one execution rule; and receiving a signal, at the client control subsystem from the enterprise management server, to allow, deny, or limit execution of the file. - View Dependent Claims (16, 17, 18, 19, 20)
-
Specification