System and method for providing network security to mobile devices
First Claim
Patent Images
1. A mobile security system, comprising:
- a mobile security system processor;
a preboot memory for storing at least a portion of an operating system;
a runtime memory for receiving a copy of the at least a portion of the operating system from the preboot memory when the mobile security system is rebooted;
a connection mechanism for connecting to a data port of a mobile device and for communicating with the mobile device, the mobile device having a mobile device processor different than the mobile security system processor;
a network connection module for acting as a gateway to a network;
a security policy for protecting the mobile device from malicious content;
a security engine for executing the security policy in the runtime memory; and
a backup module capable of storing at least a portion of the boot sector of the mobile device should the boot sector of the mobile device become compromised.
2 Assignments
0 Petitions
Accused Products
Abstract
A small piece of hardware connects to a mobile device and filters out attacks and malicious code. Using the piece of hardware, a mobile device can be protected by greater security and possibly by the same level of security offered by its associated corporation/enterprise. In one embodiment, a mobile security system includes a connection mechanism for connecting to a data port of a mobile device and for communicating with the mobile device; a network connection module for acting as a gateway to a network; a security policy for determining whether to forward content intended for the mobile device to the mobile device; and a security engine for executing the security policy.
57 Citations
19 Claims
-
1. A mobile security system, comprising:
-
a mobile security system processor; a preboot memory for storing at least a portion of an operating system; a runtime memory for receiving a copy of the at least a portion of the operating system from the preboot memory when the mobile security system is rebooted; a connection mechanism for connecting to a data port of a mobile device and for communicating with the mobile device, the mobile device having a mobile device processor different than the mobile security system processor; a network connection module for acting as a gateway to a network; a security policy for protecting the mobile device from malicious content; a security engine for executing the security policy in the runtime memory; and a backup module capable of storing at least a portion of the boot sector of the mobile device should the boot sector of the mobile device become compromised. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
-
-
17. A method comprising:
-
storing at least a portion of an operating system in a preboot memory of a mobile security system having a mobile security system processor; receiving a copy of the at least a portion of the operating system from the preboot memory when the mobile security system is rebooted; receiving, via a network connection mechanism, a network connection request from a mobile device when the mobile device is outside of a trusted network, the mobile device having a mobile device processor different than the mobile security system processor; acting as a gateway to a network on behalf of the mobile device; receiving information intended for the mobile device from the network; protecting, based on a security policy, the mobile device from malicious content in accordance with a security policy; executing the security policy in the runtime memory; and storing at least a portion of the boot sector of the mobile device should the boot sector of the mobile device become compromised. - View Dependent Claims (19)
-
-
18. A system comprising:
-
means for storing at least a portion of an operating system in a preboot memory of a mobile security system having a mobile security system processor; means for receiving a copy of the at least a portion of the operating system from the preboot memory when the mobile security system is rebooted; means for acting as a gateway to a network on behalf of a mobile device when the mobile device is outside of a trusted network, the mobile device having a mobile device processor different than the mobile security system processor; means for receiving information intended for the mobile device from the network; means for protecting, based on a security policy, the mobile device from malicious content in accordance with a security policy; means for executing the security policy in the runtime memory; and means for storing at least a portion of the boot sector of the mobile device should the boot sector of the mobile device become compromised.
-
Specification