Watermarking detection and management

US 9,665,723 B2
Filed: 08/15/2013
Issued: 05/30/2017
Est. Priority Date: 08/15/2013
Status: Active Grant

First Claim

Patent Images

1. A computer-implemented method, comprising:

causing, by a computing device that manages a user device enrolled with a remote service operated through the computing device through a network, a scan of memory of the user device or a remote storage device to identify at least one resource that has been made accessible to the user device;

determining, by the computing device, that a watermark template has been applied to the at least one resource, the watermark template comprising a plurality of data elements, at least a portion of the plurality of data elements added when the at least one resource was generated or modified, a first one of the plurality of data elements comprising a function performed on the user device that generated or modified the at least one resource and a second one of the plurality of data elements comprising a sensitivity level associated with the at least one resource;

in response to a determination that the watermark template has been applied to the at least one resource accessible to the user device;

identifying, by the computing device, at least one compliance rule according to the watermark template applied to the at least one resource, wherein the at least one compliance rule requires that the function performed on the user device comply with the sensitivity level associated with the at least one resource;

determining, by the computing device, that the user device does not comply with the at least one compliance rule in response to the function identified from the first one of the plurality of data elements not complying with the sensitivity level; and

in response to the user device not complying with the at least one compliance rule, performing, by the computing device, at least one remedial action in association with the at least one resource specified by the at least one compliance rule, the at least one remedial action comprising at least one of;

a denial of access to the at least one resource by the user device,a removal of the at least one resource from the memory of the user device, ora removal of the at least one resource from memory of the remote storage device.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method, system and non-transitory computer-readable medium product are provided for watermarking detection and management. In the context of a method, a method is provided that includes identifying at least one resource accessible to a user device and determining whether a watermark template is applied to the at least one resource accessible to the user device. The method further includes identifying at least one compliance rule and determining whether the at least one compliance rule is satisfied in response to a determination that the watermark template is applied to the at least one resource accessible to the user device. The method yet further includes performing at least one remedial action in response to a determination that the at least one compliance rule is not satisfied.

231 Citations

20 Claims

1. A computer-implemented method, comprising:
- causing, by a computing device that manages a user device enrolled with a remote service operated through the computing device through a network, a scan of memory of the user device or a remote storage device to identify at least one resource that has been made accessible to the user device;
  
  determining, by the computing device, that a watermark template has been applied to the at least one resource, the watermark template comprising a plurality of data elements, at least a portion of the plurality of data elements added when the at least one resource was generated or modified, a first one of the plurality of data elements comprising a function performed on the user device that generated or modified the at least one resource and a second one of the plurality of data elements comprising a sensitivity level associated with the at least one resource;
  
  in response to a determination that the watermark template has been applied to the at least one resource accessible to the user device;
  
  identifying, by the computing device, at least one compliance rule according to the watermark template applied to the at least one resource, wherein the at least one compliance rule requires that the function performed on the user device comply with the sensitivity level associated with the at least one resource;
  
  determining, by the computing device, that the user device does not comply with the at least one compliance rule in response to the function identified from the first one of the plurality of data elements not complying with the sensitivity level; and
  
  in response to the user device not complying with the at least one compliance rule, performing, by the computing device, at least one remedial action in association with the at least one resource specified by the at least one compliance rule, the at least one remedial action comprising at least one of;
  
  a denial of access to the at least one resource by the user device,a removal of the at least one resource from the memory of the user device, ora removal of the at least one resource from memory of the remote storage device.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
- - 2. The computer-implemented method of claim 1, wherein the remote storage device comprises a server communicatively coupled to the user device.
  - 3. The computer-implemented method of claim 2, wherein the server communicatively coupled to the user device comprises a proxy server or a file server.
  - 4. The computer-implemented method of claim 1, wherein the at least one compliance rule requires that the user device be associated with a certain enterprise.
  - 5. The computer-implemented method of claim 4, wherein the user device is associated with the certain enterprise if user account data associated with the user device indicates that a user of the user device is employed by the certain enterprise.
  - 6. The computer-implemented method of claim 4, wherein the user device is associated with the certain enterprise if user account data indicates that the user device is owned by the certain enterprise or managed by the certain enterprise through an enterprise mobility management service.
  - 7. The computer-implemented method of claim 4, further comprising determining, by the computing device, that the at least one watermark template was applied by a foreign device associated with a foreign enterprise, the foreign enterprise being different than the certain enterprise.
  - 8. The computer-implemented method of claim 1, wherein the at least one compliance rule requires that the watermark template specify an association between the at least one resource and an enterprise.
  - 9. The computer-implemented method of claim 1, wherein the at least one compliance rule requires that the watermark template specify a sensitivity level associated with the at least one resource.
  - 10. The computer-implemented method of claim 1, wherein determining, by the computing device, that the watermark template has been applied to the at least one resource comprises:
    - identifying, by the computing device, a file associated with the at least one resource containing metadata describing the at least one resource; and
      
      analyzing, by the computing device, the file to determine that the watermark template has been applied to the at least one resource using the metadata, wherein the metadata comprises the plurality of data elements.
  - 11. The computer-implemented method of claim 1, wherein the scan of the memory of the user device or the remote storage is caused in response to an onboarding process where the user device is enrolled with an enterprise mobility management service.

12. A system, comprising:
- at least one computing device comprising at least one hardware processor; and
  
  program instructions executable in the at least one computing device that, when executed, cause the at least one computing device to;
  
  scan memory of a user device or a remote storage device to identify at least one resource that has been made accessible to the user device;
  
  determine that a watermark template has been applied to the at least one resource, the watermark template comprising a plurality of data elements, at least a portion of the plurality of data elements added when the at least one resource was generated or modified, a first one of the plurality of data elements comprising a function performed on the user device that generated or modified the at least one resource and a second one of the plurality of data elements comprising a sensitivity level associated with the at least one resource;
  
  in response to a determination that the watermark template has been applied to the at least one resource accessible to the user device;
  
  identify at least one compliance rule according to the watermark template applied to the at least one resource, wherein the at least one compliance rule requires that the function performed on the user device comply with the sensitivity level associated with the at least one resource;
  
  determine that the user device does not comply with the at least one compliance rule in response to the function identified from the first one of the plurality of data elements not complying with the sensitivity level; and
  
  in response to the user device not complying with the at least one compliance rule, perform at least one remedial action in association with the at least one resource specified by the at least one compliance rule, the at least one remedial action comprising at least one of;
  
  a denial of access to the at least one resource by the user device,a removal of the at least one resource from the memory of the user device, ora removal of the at least one resource from memory of the remote storage device.
- View Dependent Claims (13, 14, 15, 16, 17)
- - 13. The system of claim 12, wherein the removal of the at least one resource from the memory of the user device or the remote storage device comprises deleting the at least one resource.
  - 14. The system of claim 12, wherein the at least one remedial action further comprises quarantining the at least one resource.
  - 15. The system of claim 12, wherein the removal of the at least one resource from the memory of the user device or the remote storage device comprises deleting only a portion of resource data residing in the memory of the user device or the remote storage device.
  - 16. The system of claim 12, wherein the at least one remedial action comprises transmitting at least one notification regarding the at least one resource.
  - 17. The system of claim 12, wherein determining that the watermark template has been applied to the at least one resource comprises:
    - identifying a file associated with the at least one resource containing metadata describing the at least one resource; and
      
      analyzing the file to determine that the watermark template has been applied to the at least one resource using the metadata, wherein the metadata comprises the plurality of data elements.

18. A non-transitory computer-readable medium having program code executable by at least one computing device stored thereon that, when executed, causes the at least one computing device to:
- scan memory of a user device or a remote storage device to identify at least one resource that has been made accessible to the user device;
  
  determine that a watermark template has been applied to the at least one resource, the watermark template comprising a plurality of data elements, at least a portion of the plurality of data elements added when the at least one resource was generated or modified, a first one of the plurality of data elements comprising a function performed on the user device that generated or modified the at least one resource and a second one of the plurality of data elements comprising a sensitivity level associated with the at least one resource;
  
  in response to a determination that the watermark template has been applied to the at least one resource accessible to the user device;
  
  identify at least one compliance rule according to the watermark template applied to the at least one resource, wherein the at least one compliance rule requires that the function performed on the user device comply with the sensitivity level associated with the at least one resource;
  
  determine that the user device does not comply with the at least one compliance rule in response to the function identified from the first one of the plurality of data elements not complying with the sensitivity level; and
  
  in response to the user device not complying with the at least one compliance rule, perform at least one remedial action in association with the at least one resource specified by the at least one compliance rule, the at least one remedial action comprising at least one of;
  
  a denial of access to the at least one resource by the user device,a removal of the at least one resource from the memory of the user device, ora removal of the at least one resource from memory of the remote storage device.
- View Dependent Claims (19, 20)
- - 19. The non-transitory computer-readable medium of claim 18, wherein the program code, when executed, further causes the at least one computing device to determine that the at least one watermark template was applied by a foreign device associated with a foreign enterprise.
  - 20. The non-transitory computer-readable medium of claim 18, wherein determining that the watermark template has been applied to the at least one resource comprises:
    - identifying a file associated with the at least one resource containing metadata describing the at least one resource; and
      
      analyzing the file to determine that the watermark template has been applied to the at least one resource using the metadata, wherein the metadata comprises the plurality of data elements.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
AirWatch LLC (Broadcom, Inc.)
Original Assignee
AirWatch LLC (Broadcom, Inc.)
Inventors
Dabbiere, Alan, Stuntebeck, Erich
Primary Examiner(s)
Traore, Fatoumata

Application Number

US13/967,947
Publication Number

US 20130332989A1
Time in Patent Office

1,384 Days
Field of Search

None
US Class Current
CPC Class Codes

G06F 21/10   Protecting distributed prog...

G06F 21/16   Program or content traceabi...

G06F 21/60   Protecting data

G06F 2221/2111   Location-sensitive, e.g. ge...

Watermarking detection and management

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

231 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Watermarking detection and management

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

231 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links