Communications Device with Secure Data Path Processing Agents
First Claim
1. A communications device comprising:
- one or more communication input/output (I/O) ports, at least one of the one or more communication I/O ports being a wide area network port configured to connect the communications device to a wide area network;
memory configured to store a device communication activity policy;
a secure execution environment configured to be inaccessible to user application software;
one or more secure data path processing agents configured to;
execute in the secure execution environment,monitor a device data communications activity through at least one of the one or more communication I/O ports,generate a device data record comprising information about the device data communications activity through at least one of the one or more communication I/O ports, the information configured to assist a network element in determining whether the communications device is operating or has operated in accordance with the device communication activity policy, andsend the device data record to the network element over a trusted communication link between the one or more data path processing agents and the network element; and
a trusted data path between the one or more data path processing agents and the wide area network port.
2 Assignments
0 Petitions
Accused Products
Abstract
Secure device data records (DDRs) are provided. In some embodiments, a system for secure DDRs includes a processor of a wireless communication device for wireless communication with a wireless network, in which the processor is configured with a secure execution environment, and in which the secure execution environment is configured to: monitor service usage of the wireless communication device with the wireless network; and generate a plurality of device data records of the monitored service usage of the wireless communication device with the wireless network, in which each device data record is associated with a unique sequence order identifier; and a memory coupled to the processor and configured to provide the processor with instructions. In some embodiments, the secure execution environment is located in an application processor, in a modem processor, and/or in a subscriber identity module (SIM).
7 Citations
1 Claim
-
1. A communications device comprising:
-
one or more communication input/output (I/O) ports, at least one of the one or more communication I/O ports being a wide area network port configured to connect the communications device to a wide area network; memory configured to store a device communication activity policy; a secure execution environment configured to be inaccessible to user application software; one or more secure data path processing agents configured to; execute in the secure execution environment, monitor a device data communications activity through at least one of the one or more communication I/O ports, generate a device data record comprising information about the device data communications activity through at least one of the one or more communication I/O ports, the information configured to assist a network element in determining whether the communications device is operating or has operated in accordance with the device communication activity policy, and send the device data record to the network element over a trusted communication link between the one or more data path processing agents and the network element; and a trusted data path between the one or more data path processing agents and the wide area network port.
-
Specification