Secure traveler framework

US 9,934,543 B2
Filed: 07/17/2015
Issued: 04/03/2018
Est. Priority Date: 07/17/2015
Status: Active Grant

First Claim

Patent Images

1. A method comprising:

receiving, at a computing device and from a travel data source, travel data for a user;

receiving, at the computing device, a list of countries with a high level of cyber security threats;

based on a comparison of the travel data for the user to the list of countries with a high level of cyber security threats, determining, by the computing device, whether the user is scheduled to enter a country with a high level of cyber security threats;

in response to determining that the user is scheduled to enter the country with a high level of cyber security threats, determining a user device associated with the user;

receiving, at the computing device, a first data security scan of the user device, wherein the first data security scan is performed at the user device, and wherein the first data security scan of the user device occurs at a first time before the user enters the country with a high level of cyber security threats;

receiving, at the computing device, a second data security scan of the user device, wherein the second data security scan is performed at the user device, and wherein the second data security scan of the user device occurs at a second time after the user leaves the country with a high level of cyber security threats and in response to a determination that the user device entered the country with the high level of cyber security threats;

determining one or more data security issue of the user device based on a comparison of the first data security scan to the second data security scan;

based on the comparison of the first data security scan to the second data security scan, transmitting, from the computing device, a list of the one or more data security issue to remove from the user device; and

in response to transmitting the list, removing the one or more data security issue from the user device.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A user, such as an employee of an institution, may travel overseas where data or devices may be compromised. Described herein is a system and method for receiving travel data for the user from a travel data source and receiving a list of countries with a high level of security threats where data security may be an issue. Based on the travel data for the user and the list of countries with a high level of security threats, it may be determined whether the user is entering a country with a high level of security threats. If so, one or more user devices associated with the user may be determined, and data security scans of the devices may be generated before, during, and/or after travel. Data security issues may be determined based on a comparison of the scans. A report of the issues may optionally be generated.

26 Citations

View as Search Results

20 Claims

1. A method comprising:
- receiving, at a computing device and from a travel data source, travel data for a user;
  
  receiving, at the computing device, a list of countries with a high level of cyber security threats;
  
  based on a comparison of the travel data for the user to the list of countries with a high level of cyber security threats, determining, by the computing device, whether the user is scheduled to enter a country with a high level of cyber security threats;
  
  in response to determining that the user is scheduled to enter the country with a high level of cyber security threats, determining a user device associated with the user;
  
  receiving, at the computing device, a first data security scan of the user device, wherein the first data security scan is performed at the user device, and wherein the first data security scan of the user device occurs at a first time before the user enters the country with a high level of cyber security threats;
  
  receiving, at the computing device, a second data security scan of the user device, wherein the second data security scan is performed at the user device, and wherein the second data security scan of the user device occurs at a second time after the user leaves the country with a high level of cyber security threats and in response to a determination that the user device entered the country with the high level of cyber security threats;
  
  determining one or more data security issue of the user device based on a comparison of the first data security scan to the second data security scan;
  
  based on the comparison of the first data security scan to the second data security scan, transmitting, from the computing device, a list of the one or more data security issue to remove from the user device; and
  
  in response to transmitting the list, removing the one or more data security issue from the user device.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The method of claim 1, wherein the one or more data security issue of the user device comprises one or more of execution of a process on the user device, a change to metadata on the user device, or a change to a registry on the user device.
  - 3. The method of claim 1, further comprising:
    - generating a report identifying the one or more data security issue determined based on the comparison of the first data security scan to the second data security scan.
  - 4. The method of claim 1, further comprising:
    - in response to determining that the user device has a data security exception and before the user enters the country with a high level of cyber security threats, removing, by the computing device, the data security exception for the user device for a predetermined time period.
  - 5. The method of claim 4, wherein the predetermined time period comprises a duration of travel for the user or a duration that the user will be located in the country with a high level of cyber security threats.
  - 6. The method of claim 1, further comprising:
    - generating, by the computing device, an electronic pre-travel communication that provides data security training resources to the user; and
      
      placing the pre-travel communication in a communication queue to be sent to the user a predetermined time period prior to travel.
  - 7. The method of claim 1, further comprising:
    - generating, by the computing device, an electronic post-travel communication that provides a post-travel survey to the user; and
      
      placing the post-travel communication in a communication queue to be sent to the user a predetermined time period after travel or after the user is expected to leave the country with a high level of cyber security threats.

8. An apparatus, comprising:
- a processor; and
  
  memory storing computer-executable instructions that, when executed by the processor, cause the apparatus to;
  
  receive, from a travel data source, travel data for a user;
  
  receive a list of countries with a high level of cyber security threats;
  
  based on a comparison of the travel data for the user to the list of countries with a high level of cyber security threats, determine whether the user is scheduled to enter a country with a high level of cyber security threats;
  
  in response to determining that the user is scheduled to enter the country with a high level of cyber security threats, determine a user device associated with the user;
  
  receive a first data security scan of the user device, wherein the first data security scan is performed at the user device, and wherein the first data security scan of the user device occurs at a first time before the user enters the country with a high level of cyber security threats;
  
  receive a second data security scan of the user device, wherein the second data security scan is performed at the user device, and wherein the second data security scan of the user device occurs at a second time after the user leaves the country with a high level of cyber security threats and in response to a determination that the user device entered the country with the high level of cyber security threats;
  
  determine one or more data security issue of the user device based on a comparison of the first data security scan to the second data security scan;
  
  based on the comparison of the first data security scan to the second data security scan, transmit a list of the one or more data security issue to remove from the user device; and
  
  in response to transmitting the list, cause removal of the one or more data security issue from the user device.
- View Dependent Claims (9, 10, 11, 12, 13, 14)
- - 9. The apparatus of claim 8, wherein the one or more data security issue of the user device comprises one or more of execution of a process on the user device, a change to metadata on the user device, or a change to a registry on the user device.
  - 10. The apparatus of claim 8, wherein the memory stores additional computer-executable instructions that, when executed by the processor, cause the apparatus to:
    - generate a report identifying the one or more data security issue determined based on the comparison of the first data security scan to the second data security scan.
  - 11. The apparatus of claim 8, wherein the memory stores additional computer-executable instructions that, when executed by the processor, cause the apparatus to:
    - in response to determining that the user device has a data security exception and before the user enters the country with a high level of cyber security threats, remove the data security exception for the user device for a predetermined time period.
  - 12. The apparatus of claim 11, wherein the predetermined time period comprises a duration of travel for the user or a duration that the user will be located in the country with a high level of cyber security threats.
  - 13. The apparatus of claim 8, wherein the memory stores additional computer-executable instructions that, when executed by the processor, cause the apparatus to:
    - generate an electronic pre-travel communication that provides data security training resources to the user; and
      
      place the pre-travel communication in a communication queue to be sent to the user a predetermined time period prior to travel.
  - 14. The apparatus of claim 8, wherein the memory stores additional computer-executable instructions that, when executed by the processor, cause the apparatus to:
    - generate an electronic post-travel communication that provides a post-travel survey to the user; and
      
      place the post-travel communication in a communication queue to be sent to the user a predetermined time period after travel or after the user is expected to leave the country with a high level of cyber security threats.

15. A non-transitory computer-readable medium having instructions stored thereon that, when executed, cause a computing device to:
- receive, from a travel data source, travel data for a user;
  
  receive a list of countries with a high level of cyber security threats;
  
  based on a comparison of the travel data for the user to the list of countries with a high level of cyber security threats, determine whether the user is scheduled to enter a country with a high level of cyber security threats;
  
  in response to determining that the user is scheduled to enter the country with a high level of cyber security threats, determine a user device associated with the user;
  
  receive a first data security scan of the user device, wherein the first data security scan is performed at the user device, and wherein the first data security scan of the user device occurs at a first time before the user enters the country with a high level of cyber security threats;
  
  receive a second data security scan of the user device, wherein the second data security scan is performed at the user device, and wherein the second data security scan of the user device occurs at a second time after the user leaves the country with a high level of cyber security threats and in response to a determination that the user device entered the country with the high level of cyber security threats;
  
  determine one or more data security issue of the user device based on a comparison of the first data security scan to the second data security scan;
  
  based on the comparison of the first data security scan to the second data security scan, transmit a list of the one or more data security issue to remove from the user device; and
  
  in response to transmitting the list, cause removal of the one or more data security issue from the user device.
- View Dependent Claims (16, 17, 18, 19, 20)
- - 16. The non-transitory computer-readable medium of claim 15, having additional computer-readable instructions stored thereon that, when executed, cause the computing device to:
    - generate a report identifying the one or more data security issue determined based on the comparison of the first data security scan to the second data security scan.
  - 17. The non-transitory computer-readable medium of claim 15, having additional computer-readable instructions stored thereon that, when executed, cause the computing device to:
    - in response to determining that the user device has a data security exception and before the user enters the country with a high level of cyber security threats, remove the data security exception for the user device for a predetermined time period.
  - 18. The non-transitory computer-readable medium of claim 17, wherein the predetermined time period comprises a duration of travel for the user or a duration that the user will be located in the country with a high level of cyber security threats.
  - 19. The non-transitory computer-readable medium of claim 15, having additional computer-readable instructions stored thereon that, when executed, cause the computing device to:
    - generating, by the computing device, an electronic pre-travel communication that provides data security training resources to the user; and
      
      placing the pre-travel communication in a communication queue to be sent to the user a predetermined time period prior to travel.
  - 20. The non-transitory computer-readable medium of claim 15, having additional computer-readable instructions stored thereon that, when executed, cause the computing device to:
    - generate an electronic post-travel communication that provides a post-travel survey to the user; and
      
      place the post-travel communication in a communication queue to be sent to the user a predetermined time period after travel or after the user is expected to leave the country with a high level of cyber security threats.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Bank of America Corp.
Original Assignee
Bank of America Corp.
Inventors
Anderson, Hannah, Gillette, Melissa, Isola, Rahul, Wolf, Michael, Amisano, Peter, Webster, Timothy, Foley, Alexander
Primary Examiner(s)
DOLLY, KENDALL LYNN

Application Number

US14/802,615
Publication Number

US 20170017796A1
Time in Patent Office

991 Days
Field of Search
US Class Current
CPC Class Codes

G06F 21/552   involving long-term monitor...

G06F 2221/2111   Location-sensitive, e.g. ge...

G06Q 50/265   Personal security, identity...

G06Q 50/40   Business processes related ...

Secure traveler framework

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

26 Citations

20 Claims

Specification

Use Cases

Quick Links

Others

Secure traveler framework

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

26 Citations

20 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others