Administration of protection of data accessible by a mobile device
First Claim
1. A computer-implemented method for administering protection of data accessible by a mobile computing device comprising:
- defining one or more security policies by a server computer system for the mobile computing device based upon criteria, the criteria including a location associated with a network environment in which the mobile device is operating; and
sending over a network the one or more security policies to the mobile device.
8 Assignments
0 Petitions
Accused Products
Abstract
The administration of protection of data on a client mobile computing device by a server computer system such as within an enterprise network or on a separate mobile computing device is described. Security tools are described that provide different security policies to be enforced based on a location associated with a network environment in which a mobile device is operating. Methods for detecting the location of the mobile device are described. Additionally, the security tools may also provide for enforcing different policies based on security features. Examples of security features include the type of connection, wired or wireless, over which data is being transferred, the operation of anti-virus software, or the type of network adapter card.
The different security policies provide enforcement mechanisms that may be tailored based upon the detected location and/or active security features associated with the mobile device. Examples of enforcement mechanisms are adaptive port blocking, file hiding and file encryption.
-
Citations
39 Claims
-
1. A computer-implemented method for administering protection of data accessible by a mobile computing device comprising:
-
defining one or more security policies by a server computer system for the mobile computing device based upon criteria, the criteria including a location associated with a network environment in which the mobile device is operating; and
sending over a network the one or more security policies to the mobile device. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A computer-implemented method for providing protection of data accessible by a mobile computing device comprising:
-
defining one or more security policies by a server computer system for the mobile computing device based upon criteria, the criteria including a security feature associated with a network environment in which the mobile device is operating; and
sending over a network the one or more security policies to the mobile device. - View Dependent Claims (7, 8, 9)
-
-
10. A computer-implemented system for providing protection of data accessible by a client mobile computing device comprising:
-
a policy management module for managing one or more security policies for execution on the client mobile device, the security policies being defined based upon criteria, the criteria including a location associated with a network environment in which the mobile device is operating; and
a policy distribution module for sending over the network the one or more security policies to the mobile device, the policy distribution module having a communication interface with the policy management module for receiving information regarding policies. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18)
-
-
19. In a mobile computing device, a computer-implemented system for providing protection of data accessible by a mobile computing device comprising:
-
a location detection module for detecting the location associated with the network environment in which the mobile device is operating;
a policy setting module being communicatively coupled with the location detection module for communication of the detected location and being communicatively coupled over a network to a policy management module, the policy setting module determining a current security policy from the one or more security policies received from the policy management module based upon criteria including the detected location; and
a policy enforcement control module being communicatively coupled with the policy setting module for communication of the current security policy to be enforced, the enforcement control module comprising one or more enforcement mechanism modules for enforcing the current security policy. - View Dependent Claims (20, 21, 22, 23)
-
-
24. In a mobile computing device, a computer-implemented system for providing protection of data accessible by a mobile computing device comprising:
-
a security features module for determining whether one or more security features have an activity status of inactive or active in a communication session between the mobile device and another computer;
a policy setting module having a communication interface with the security features module for communication of the activity status of the one or more security features and being communicatively coupled over a network to a policy management module, the policy setting module determining a current security policy from the one or more security policies received from the policy management module based upon criteria including the activity status of the one or more security features; and
a policy enforcement control module being communicatively coupled with the policy setting module for communication of the current security policy to be enforced, the enforcement control module comprising one or more enforcement mechanism modules for enforcing the current security policy. - View Dependent Claims (25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36)
-
-
37. A system for remotely diagnosing one or more mobile devices comprising:
-
a monitoring module for monitoring diagnostic data received over a network from one or more remotely located mobile client devices;
a diagnosis module for analyzing the diagnostic data; and
a distribution module for transmitting support information to the one or more mobile devices.
-
-
38. A method for remotely diagnosing one or more mobile devices comprising:
-
monitoring diagnostic data received over a network from one or more mobile client devices;
analyzing the diagnostic data; and
transmitting support information to the one or more mobile devices.
-
-
39. A method for remotely diagnosing one or more mobile computing devices comprising:
-
one or more mobile computing devices transmitting diagnostic data over a network to the server computer system;
the mobile device receiving support information including instructions from the server computer system; and
the mobile device executing the instructions.
-
Specification