公开(公告)号：US10256979B2

公开(公告)日：2019-04-09

申请号：US14105950

申请日：2013-12-13

申请人： Lookout, Inc.

发明人： Kevin Patrick Mahaffey ,  Timothy Micheal Wyatt ,  Daniel Lee Evans ,  Emil Barker Ong ,  Timothy Strazzere ,  Matthew John Joseph LaMantia ,  Brian James Buck

IPC分类号： H04L29/06 ,  H04L9/32 ,  G06F8/70 ,  G06F8/60 ,  G06Q30/02 ,  G06F21/44 ,  H04L12/26 ,  G06F21/57 ,  G06F11/36

摘要： Authenticity of a new application being installed on a mobile device is evaluated to provide a result. The evaluation uses a plurality of inputs. In response to the result, an action is performed (e.g., on the mobile device itself and/or a server performing or assisting with the evaluation). For example, the evaluating may be done for an application that a user of the mobile device desires to install from an application marketplace. In another example, the action is sending of a notification to the mobile device, and the notification includes an assessment of authenticity of the new application.

公开(公告)号：US20130086682A1

公开(公告)日：2013-04-04

申请号：US13689588

申请日：2012-11-29

申请人： Lookout, Inc., a California Corporation

发明人： Kevin Patrick Mahaffey ,  James David Burgess ,  David Golombek ,  Timothy Michael Wyatt ,  Anthony McKay Lineberry ,  Kyle Barton ,  Daniel Lee Evans ,  David Luke Richardson ,  Ariel Salomon

IPC分类号： G06F21/56

CPC分类号： H04L63/1441 ,  G06F21/56 ,  G06F21/564 ,  G06F21/57 ,  H04L63/1433 ,  H04L63/20

摘要： A server receives from a mobile communication device information about a data object (e.g., application) on the device when the device cannot assess the data object. The server uses the information along with other information stored at the server to assess the data object. Based on the assessment, the device may be permitted to access the data object or the device may not be permitted to access the data object. The other information stored at the server can include data objects known to be bad, data objects known to be good, or both.

摘要翻译： 当设备不能评估数据对象时，服务器从移动通信设备接收关于设备上的数据对象（例如，应用）的信息。 服务器使用信息以及服务器上存储的其他信息来评估数据对象。 基于该评估，可以允许该设备访问数据对象，或者该设备可能不被允许访问该数据对象。 存储在服务器中的其他信息可以包括已知为坏的数据对象，已知好的数据对象或两者。

公开(公告)号：US09860263B2

公开(公告)日：2018-01-02

申请号：US15498325

申请日：2017-04-26

申请人： LOOKOUT, INC.

发明人： Kevin Patrick Mahaffey ,  James David Burgess ,  David Golombek ,  Timothy Micheal Wyatt ,  Anthony McKay Lineberry ,  Kyle Barton ,  Daniel Lee Evans ,  David Luke Richardson ,  Ariel Salomon

IPC分类号： H04L29/06 ,  G06F11/00 ,  G06F12/14 ,  G06F12/16 ,  G08B23/00

CPC分类号： G06F21/577 ,  G06F21/554 ,  H04L63/0227 ,  H04L63/123 ,  H04L63/1425 ,  H04L63/1433 ,  H04L63/166 ,  H04W12/02 ,  H04W12/12

摘要： A server receives from a mobile communication device information about a data object (e.g., application) on the device when the device cannot assess the data object. The server uses the information along with other information stored at the server to assess the data object. Based on the assessment, the device may be permitted to access the data object or the device may not be permitted to access the data object. The other information stored at the server can include data objects known to be bad, data objects known to be good, or both.

公开(公告)号：US20170230397A1

公开(公告)日：2017-08-10

申请号：US15498325

申请日：2017-04-26

申请人： LOOKOUT, INC.

发明人： Kevin Patrick Mahaffey ,  James David Burgess ,  David Golombek ,  Timothy Micheal Wyatt ,  Anthony McKay Lineberry ,  Kyle Barton ,  Daniel Lee Evans ,  David Luke Richardson ,  Ariel Salomon

IPC分类号： H04L29/06

CPC分类号： G06F21/577 ,  G06F21/554 ,  H04L63/0227 ,  H04L63/123 ,  H04L63/1425 ,  H04L63/1433 ,  H04L63/166 ,  H04W12/02 ,  H04W12/12

摘要： A server receives from a mobile communication device information about a data object (e.g., application) on the device when the device cannot assess the data object. The server uses the information along with other information stored at the server to assess the data object. Based on the assessment, the device may be permitted to access the data object or the device may not be permitted to access the data object. The other information stored at the server can include data objects known to be bad, data objects known to be good, or both.

公开(公告)号：US09344431B2

公开(公告)日：2016-05-17

申请号：US14688292

申请日：2015-04-16

申请人： LOOKOUT, INC.

发明人： Kevin Patrick Mahaffey ,  David Golombek ,  Daniel Lee Evans ,  David Luke Richardson ,  Timothy Micheal Wyatt ,  James David Burgess ,  Anthony McKay Lineberry ,  Kyle Barton

IPC分类号： H04L29/06 ,  G06F21/56 ,  H04L29/08 ,  G06F7/04 ,  G06F15/16 ,  G06F17/30 ,  G06F11/34

CPC分类号： H04L63/10 ,  G06F11/3409 ,  G06F21/564 ,  H04L63/08 ,  H04L67/32 ,  H04L67/42

摘要： Disclosed herein is a system and method for efficiently gathering information about applications for mobile communications devices (e.g., smartphones, netbooks, and tablets) and using that information to produce assessments of the applications. To gather information, a server may send a request for application data to a mobile communications device. In response, the server may receive some but not all of the first-requested application data. The server may then a second request for application data to a second mobile communications device that also has access to the application. The server may receive application data from the second mobile communications device, and store the received first- and second-requested application data. The server then uses the stored application data to assess the application.

摘要翻译： 本文公开了一种用于有效地收集关于移动通信设备（例如，智能电话，上网本和平板电脑）的应用的信息并使用该信息来产生应用的评估的系统和方法。 为了收集信息，服务器可以向移动通信设备发送应用数据请求。 作为响应，服务器可以接收一些但不是全部的第一请求的应用数据。 然后，服务器可以向也可以访问应用的第二移动通信设备的应用数据的第二请求。 服务器可以从第二移动通信设备接收应用数据，并存储接收的第一和第二请求的应用数据。 然后，服务器使用存储的应用程序数据来评估应用程序。

公开(公告)号：US20160099963A1

公开(公告)日：2016-04-07

申请号：US14973636

申请日：2015-12-17

申请人： LOOKOUT, INC.

发明人： Kevin Patrick Mahaffey ,  Brian James Buck ,  William Robinson ,  John G. Hering ,  James David Burgess ,  Timothy Micheal Wyatt ,  David Golombek ,  David Luke Richardson ,  Anthony McKay Lineberry ,  Kyle Barton ,  Daniel Lee Evans ,  Ariel Salomon ,  Jonathan Pantera Grubb ,  Bruce Wootton ,  Timothy Strazzere ,  Yogesh Swami

IPC分类号： H04L29/06 ,  G06F21/57 ,  G06F21/55

CPC分类号： G06F21/577 ,  G06F21/554 ,  H04L63/0227 ,  H04L63/123 ,  H04L63/1425 ,  H04L63/1433 ,  H04L63/166 ,  H04W12/02 ,  H04W12/12

摘要： Methods are provided for determining an enterprise risk level, for sharing security risk information between enterprises by identifying a security response by a first enterprise and then sharing the security response to a second enterprise when a relationship database profile for the first collection indicates the security response may be shared. Methods are also provided for determining whether to allow a request from an originating device where the request may have been initiated by a remote device.

摘要翻译： 提供了用于确定企业风险级别的方法，用于通过识别第一企业的安全响应，然后当第一集合的关系数据库配置文件指示安全响应时，向第二企业共享安全响应，来共享企业之间的安全风险信息。 被分享。 还提供了用于确定是否允许来自始发设备的请求可能由远程设备发起的请求的方法。

公开(公告)号：US11336458B2

公开(公告)日：2022-05-17

申请号：US16532304

申请日：2019-08-05

申请人： Lookout, Inc.

发明人： Kevin Patrick Mahaffey ,  Timothy Micheal Wyatt ,  Daniel Lee Evans ,  Emil Barker Ong ,  Timothy Strazzere ,  Matthew John Joseph LaMantia ,  Brian James Buck

IPC分类号： G06F11/00 ,  G06F12/14 ,  G06F12/16 ,  G06F21/57 ,  G06F8/60 ,  G06F11/36 ,  G06F8/70 ,  G06F21/44 ,  G08B23/00 ,  G06Q10/02 ,  H04L9/32 ,  H04L12/26 ,  G06Q30/02 ,  H04L43/04 ,  H04L43/06

摘要： Software applications to be installed on user devices are monitored. Authenticity of the applications is evaluated using trust factors. In some cases, the trust factors relate to security associated with a network being accessed by a user device. In response to the evaluation, an action is performed such as configuring or disabling execution of one or more components of an application.

公开(公告)号：US10419222B2

公开(公告)日：2019-09-17

申请号：US14301007

申请日：2014-06-10

申请人： Lookout, Inc.

发明人： Kevin Patrick Mahaffey ,  Timothy Micheal Wyatt ,  Daniel Lee Evans ,  Emil Barker Ong ,  Timothy Strazzere ,  Matthew John Joseph LaMantia ,  Brian James Buck

IPC分类号： H04L9/32 ,  G06F8/70 ,  G06F8/60 ,  G06Q30/02 ,  G06F21/44 ,  H04L12/26 ,  G06F21/57 ,  G06F11/36

摘要： Software applications to be installed on user devices are monitored. Authenticity of the applications is evaluated using a plurality of inputs to provide a result. The plurality of inputs may include trust factors. The trust factors may be used to generate a security evaluation. In response to the result, an action is performed such as providing a notification to a developer of a fraudulent version of an application or providing a security assessment for an application.

公开(公告)号：US09779253B2

公开(公告)日：2017-10-03

申请号：US15393089

申请日：2016-12-28

申请人： LOOKOUT, INC.

发明人： Kevin Patrick Mahaffey ,  Brian James Buck ,  William Robinson ,  John G. Hering ,  James David Burgess ,  Timothy Micheal Wyatt ,  David Golombek ,  David Luke Richardson ,  Anthony McKay Lineberry ,  Kyle Barton ,  Daniel Lee Evans ,  Ariel Salomon ,  Jonathan Pantera Grubb ,  Bruce Wootton ,  Timothy Strazzere ,  Yogesh Swami

IPC分类号： H04L29/06 ,  G06F21/57 ,  G06F21/55 ,  G06F11/00 ,  G06F12/00 ,  G06F12/14

CPC分类号： G06F21/577 ,  G06F21/554 ,  H04L63/0227 ,  H04L63/123 ,  H04L63/1425 ,  H04L63/1433 ,  H04L63/166 ,  H04W12/02 ,  H04W12/12

摘要： Methods and systems are provided for sharing security risk information between collections of computing devices, such as mobile communications devices, to improve the functioning of devices associated with the collections. The methods and systems disclosed may share security risk information by identifying a security risk response by a first collection and then providing the security risk response to a second collection when a relationship database profile for the first collection indicates the security response may be shared with the second collection. Methods and systems are also provided for determining whether to allow a request from an originating device where the request may have been initiated by a remote device.

公开(公告)号：US20150222636A1

公开(公告)日：2015-08-06

申请号：US14688292

申请日：2015-04-16

申请人： LOOKOUT, INC.

发明人： Kevin Patrick Mahaffey ,  David Golombek ,  Daniel Lee Evans ,  David Luke Richardson ,  Timothy Micheal Wyatt ,  James David Burgess ,  Anthony McKay Lineberry ,  Kyle Barton

IPC分类号： H04L29/06 ,  H04L29/08

CPC分类号： H04L63/10 ,  G06F11/3409 ,  G06F21/564 ,  H04L63/08 ,  H04L67/32 ,  H04L67/42

摘要： Disclosed herein is a system and method for efficiently gathering information about applications for mobile communications devices (e.g., smartphones, netbooks, and tablets) and using that information to produce assessments of the applications. To gather information, a server may send a request for application data to a mobile communications device. In response, the server may receive some but not all of the first-requested application data. The server may then a second request for application data to a second mobile communications device that also has access to the application. The server may receive application data from the second mobile communications device, and store the received first- and second-requested application data. The server then uses the stored application data to assess the application.

摘要翻译： 本文公开了一种用于有效地收集关于移动通信设备（例如，智能电话，上网本和平板电脑）的应用的信息并使用该信息来产生应用的评估的系统和方法。 为了收集信息，服务器可以向移动通信设备发送应用数据请求。 作为响应，服务器可以接收一些但不是全部的第一请求的应用数据。 然后，服务器可以向也可以访问应用的第二移动通信设备的应用数据的第二请求。 服务器可以从第二移动通信设备接收应用数据，并存储接收的第一和第二请求的应用数据。 然后，服务器使用存储的应用程序数据来评估应用程序。