SECURE ELECTRONIC DEVICE APPLICATION CONNECTION TO AN APPLICATION SERVER

US 20140230041A1
Filed: 02/13/2013
Published: 08/14/2014
Est. Priority Date: 02/13/2013
Status: Active Grant

First Claim

Patent Images

1. A server configured to be located on an enterprise network behind one or more firewalls comprising:

a non-transitory memory;

a processor communicatively coupled to the non-transitory memory;

the processor configured to execute instructions to;

receive authentication information associated with a mobile device;

establish a secure tunnel between the server and mobile device through at least one firewall in response to verification of the authentication information, the secure tunnel providing the mobile device direct access to at least one application associated with the server; and

provide, to the mobile device, in response to a request from the mobile device, data associated with the at least one application associated with the server.

View all claims

5 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The present disclosure presents a system, method and apparatus for creating a secure tunnel between a mobile device and a server. The server can be configured to receive authentication information from the mobile device. The server can be further configured to establish a secure tunnel between the server and mobile device through at least one firewall in response to verification of the authentication information, the secure tunnel allowing the mobile device direct access to at least one application associated with the server. Additionally, the server can be configured to provide, to the mobile device, data associated with the at least one application.

Citations

23 Claims

1. A server configured to be located on an enterprise network behind one or more firewalls comprising:
- a non-transitory memory;
  
  a processor communicatively coupled to the non-transitory memory;
  
  the processor configured to execute instructions to;
  
  receive authentication information associated with a mobile device;
  
  establish a secure tunnel between the server and mobile device through at least one firewall in response to verification of the authentication information, the secure tunnel providing the mobile device direct access to at least one application associated with the server; and
  
  provide, to the mobile device, in response to a request from the mobile device, data associated with the at least one application associated with the server.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
- - 2. The server as recited in claim 1, wherein the received authentication information is generated by an electronic device located within the enterprise network.
  - 3. The server as recited in claim 1, wherein the received authentication information is generated by a mobile device management server located within the enterprise network.
  - 4. The server as recited in claim 1, wherein the data associated with the at least one application associated with the server is located on a storage device located on the server.
  - 5. The server as recited in claim 1, wherein the data associated with the at least one application associated with the server is located on a data storage device, within the enterprise network, that is securely coupled to the server.
  - 6. The server as recited in claim 1, wherein the processor is further configured to execute instructions to package the data, the packaging of the data for transmission includes encrypting the data.
  - 7. The server as recited in claim 6, wherein the secure tunnel is an endpoint to endpoint secure tunnel that allows for the packaged data to remain secure between the server and the mobile device by traveling along an encrypted secure tunnel.
  - 8. The server as recited in claim 1, wherein the authentication information is a mobile device identification number.
  - 9. The server as recited in claim 1, wherein the at least one application associated with the server is one of a database application, a file management application, or an analytic application.
  - 10. The server as recited in claim 1, wherein the at least one application comprises a single application and the processor is further configured to execute instructions to prevent the mobile device from accessing data on the enterprise network not associated with the single application.

11. (canceled)

12. A mobile device comprising:
- a non-transitory memory;
  
  a processor coupled to the non-transitory memory;
  
  the processor configured to execute instructions to;
  
  request, in response to receiving an input into the mobile device, receipt of data from a server via a secure tunnel, the data being associated with at least one application associated with the server;
  
  transmit authentication information to the server;
  
  receive the requested data, which was transmitted over the secure tunnel wherein the secure tunnel is between the mobile device and the server, which is located on an enterprise network behind one or more firewalls;
  
  the secure tunnel providing the mobile device direct access to at least one application associated with the server.
- View Dependent Claims (13, 14, 15, 16)
- - 13. The mobile device as recited in claim 12, wherein the authentication information is a mobile device identification number.
  - 14. The mobile device as recited in claim 12, wherein the authentication information is a mobile device identification number and login data.
  - 15. The mobile device as recited in claim 12, wherein the secure tunnel is an endpoint to endpoint secure tunnel that allows for the data to remain secure between the server and the mobile device by traveling along an encrypted secure tunnel.
  - 16. The mobile device as recited in claim 12, wherein the direct access to at least one application associated prevents the mobile device form accessing other data on the server.

17. (canceled)

18. (canceled)

19. A system comprising:
- a server;
  
  a firewall securely coupled to the server;
  
  a relay securely coupled to the firewall;
  
  a wireless network securely coupled to the relay;
  
  a mobile device securely coupled to the wireless network;
  
  the mobile device having authentication information stored thereon;
  
  the server securely coupled to the firewall and having instructions stored thereon to cause the server to;
  
  execute at least one application configured to allow the mobile device to access data associated with the at least one application;
  
  receive authentication information from the mobile device;
  
  establish a secure tunnel between the server and mobile device through at least one firewall and relay in response to verification of the authentication information, the secure tunnel allowing the mobile device direct access to the at least one application associated with the server; and
  
  provide, to the mobile device, data associated with the at least one application.
- View Dependent Claims (20, 21, 22, 23)
- - 20. The system as recited in claim 19, wherein the at least one application associated with the server is one of a database application, a file management application, or an analytic application.
  - 21. The system as recited in claim 19, wherein the secure tunnel is an endpoint to endpoint secure tunnel that allows for the data to remain secure between the server and the mobile device by traveling along an encrypted secure tunnel.
  - 22. The system as recited in claim 19, wherein the data associated with the at least one application associated with the server is located on a storage device located on the server.
  - 23. The system as recited in claim 19, wherein the authentication information is a mobile device identification number.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Malikie Innovations Limited (Key Patent Innovations Limited)
Original Assignee
Blackberry Limited
Inventors
OSTROWSKI, Gregg

Granted Patent

US 9,432,336 B2
Time in Patent Office

Days
Field of Search
US Class Current

726/11
CPC Class Codes

G06F 21/44   Program or device authentic...

G06F 21/606   by securing the transmissio...

H04L 63/0272   Virtual private networks

H04L 63/029   Firewall traversal, e.g. tu...

H04L 63/08   for authentication of entit...

H04L 63/166   at the transport layer

H04L 67/568   Storing data temporarily at...

H04W 12/069   using certificates or pre-s...

SECURE ELECTRONIC DEVICE APPLICATION CONNECTION TO AN APPLICATION SERVER

First Claim

5 Assignments

0 Petitions

Accused Products

Abstract

Citations

23 Claims

Specification

Solutions

Use Cases

Quick Links

SECURE ELECTRONIC DEVICE APPLICATION CONNECTION TO AN APPLICATION SERVER

First Claim

5 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

23 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links