Method and devices for providing secure data backup from a mobile communication device to an external computing device
First Claim
1. A method performed by a mobile communication device of backing up data, the method comprising:
- receiving from an enterprise server a first information technology (IT) policy message which includes an encryption key for encrypting backup data;
receiving from the enterprise server a second IT policy message including a first IT policy rule, the first IT policy rule specifying data stored on the mobile communication device which is to be encrypted during a backup;
storing the encryption key in a protected portion of a hardware memory of the mobile communication device;
receiving a request to backup data stored on the mobile communication device;
encrypting data which is to be encrypted in accordance with the first IT policy rule using the encryption key stored in the protected portion of the hardware memory; and
transferring the encrypted data from the mobile communication device to an electronic device for storage.
4 Assignments
0 Petitions
Accused Products
Abstract
A method and devices for providing secure data backup from a mobile communication device to an external computing device is described. In one embodiment, there is provided a method of backing up data from a mobile communication device, the method comprising: receiving from an enterprise server an information technology (IT) policy message which includes an encryption key; storing the encryption key in a protected memory of the mobile communication device; receiving a request to backup data stored on the mobile communication device; encrypting the data using the encryption key stored in the protected memory; and transferring the encrypted data from the mobile communication device to an electronic device for storage.
41 Citations
20 Claims
-
1. A method performed by a mobile communication device of backing up data, the method comprising:
-
receiving from an enterprise server a first information technology (IT) policy message which includes an encryption key for encrypting backup data; receiving from the enterprise server a second IT policy message including a first IT policy rule, the first IT policy rule specifying data stored on the mobile communication device which is to be encrypted during a backup; storing the encryption key in a protected portion of a hardware memory of the mobile communication device; receiving a request to backup data stored on the mobile communication device; encrypting data which is to be encrypted in accordance with the first IT policy rule using the encryption key stored in the protected portion of the hardware memory; and transferring the encrypted data from the mobile communication device to an electronic device for storage. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
-
-
15. A mobile communication device, comprising:
-
a processor; a communication interface coupled to the processor; a hardware memory coupled to the processor, the hardware memory storing executable instructions that, when executed by the processor, cause the processor to; receive from an enterprise server an information technology (IT) policy message which includes an encryption key for encrypting backup data; receive from the enterprise server an IT policy message including a first IT policy rule, the first IT policy rule specifying data stored on the mobile communication device which is to be encrypted during a backup; store the encryption key in a protected portion of the hardware memory of the mobile communication device; receive a request to backup data stored on the mobile communication device; encrypt data which is to be encrypted in accordance with the first IT policy rule using the encryption key stored in the protected portion of the hardware memory; and transfer the encrypted data from the mobile communication device to an electronic device for storage.
-
-
16. A non-transitory machine readable medium having tangibly stored thereon executable instructions that, when executed by a processor of a mobile communication device, cause the mobile communication device to:
-
receive from an enterprise server an information technology (IT) policy message which includes an encryption key for encrypting backup data; receive from the enterprise server an IT policy message including a first IT policy rule, the first IT policy rule specifying data stored on the mobile communication device which is to be encrypted during a backup; store the encryption key in a protected portion of a hardware memory of the mobile communication device; receive a request to backup data stored on the mobile communication device; encrypt data which is to be encrypted in accordance with the first IT policy rule using the encryption key stored in the protected portion of the hardware memory; and transfer the encrypted data from the mobile communication device to an electronic device for storage.
-
-
17. A method performed by a mobile communication device of restoring backup data, the method comprising:
-
receiving from an enterprise server an information technology (IT) policy message which includes a decryption key for decrypting encrypted backup data; receiving from the enterprise server an IT policy message including a first IT policy rule, the first IT policy rule specifying data stored on the mobile communication device which is to be encrypted during a backup; storing the decryption key in a protected portion of a hardware memory of the mobile communication device; receiving a request to restore backup data from another electronic device to the mobile communication device; receiving backup data, including encrypted backup data, from the other electronic device; decrypting the encrypted data using the decryption key stored in the protected portion of the hardware memory; and storing the decrypted data in the hardware memory of the mobile communication device. - View Dependent Claims (18)
-
-
19. A mobile communication device, comprising:
-
a processor; a communication interface coupled to the processor; a hardware memory coupled to the processor, the hardware memory storing executable instructions that, when executed by the processor, cause the processor to; receive from an enterprise server an information technology (IT) policy message which includes a decryption key for decrypting encrypted backup data; receive from the enterprise server an IT policy message including a first IT policy rule, the first IT policy rule specifying data stored on the mobile communication device which is to be encrypted during a backup; store the decryption key in a protected portion of the hardware memory of the mobile communication device; receive a request to restore backup data from another electronic device to the mobile communication device; receive backup data, including encrypted backup data, from the other electronic device; decrypt the encrypted data using the decryption key stored in the protected portion of the hardware memory; and store the decrypted data in the hardware memory of the mobile communication device.
-
-
20. A non-transitory machine readable medium having tangibly stored thereon executable instructions that, when executed by a processor of a mobile communication device, cause the mobile communication device to:
-
receive from an enterprise server an information technology (IT) policy message which includes a decryption key for decrypting encrypted backup data; receive from the enterprise server an IT policy message including a first IT policy rule, the first IT policy rule specifying data stored on the mobile communication device which is to be encrypted during a backup; store the decryption key in a protected portion of a hardware memory of the mobile communication device; receive a request to restore backup data from another electronic device to the mobile communication device; receive backup data, including encrypted backup data, from the other electronic device; decrypt the encrypted data using the decryption key stored in the protected portion of the hardware memory; and store the decrypted data in the hardware memory of the mobile communication device.
-
Specification