公开(公告)号：US10454942B2

公开(公告)日：2019-10-22

申请号：US16287045

申请日：2019-02-27

Applicant: AirWatch LLC

Inventor： Alan Dabbiere ,  Erich Stuntebeck ,  Kar Fai Tse

IPC: H04L29/06 ,  G06F8/61 ,  G06F21/57 ,  G06F8/71

Abstract: Disclosed are various embodiments relating to managed clones of applications. In one embodiment, an application is received. If it is determined that the application should be managed, a managed clone of the application is generated. The managed clone of the application is configured for coexistence along with the application upon a client device under management. The managed clone of the application may then be deployed to the client device under management.

公开(公告)号：US10324745B2

公开(公告)日：2019-06-18

申请号：US15012820

申请日：2016-02-01

Applicant: AirWatch, LLC

Inventor： Kar Fai Tse ,  Ketan Bhardwaj ,  Erich Stuntebeck

IPC: G06F9/455 ,  G06F8/61 ,  G06F21/30 ,  H04L29/06

Abstract: Systems herein include thin clients that operate with managed profile-based virtual machines. This can allow users to utilize personal user devices in an enterprise environment without subjecting sensitive enterprise credentials to the user device. A management server can determine a profile associated with the user device. Based on the profile, a virtual machine can be instantiated at a thin server, remotely from the thin client. The profile-specific virtual machine can include a particular guest operating system, guest applications, security features, or functionality. The instance of the virtual machine can communicate graphics information from a guest application to the thin client, and the thin client can communicate user interface events to the instance for controlling the guest application.

公开(公告)号：US20190149654A1

公开(公告)日：2019-05-16

申请号：US16250363

申请日：2019-01-17

Applicant: AirWatch LLC

Inventor： Erich Peter Stuntebeck ,  Kar Fai Tse ,  Chen Lu

IPC: H04M1/725 ,  H04W64/00

Abstract: Disclosed are various embodiments for restricting usage of a mobile device when a user is driving a vehicle. In one embodiment, it is determined that a mobile device is in use by a driver of an active vehicle. A functionality of the mobile device is then restricted based at least in part on determining that the mobile device is in use by the driver of the active vehicle. For example, a touch screen of the mobile device may be disabled, and the use of a hands-free interface may be made mandatory.

公开(公告)号：US10257067B2

公开(公告)日：2019-04-09

申请号：US15787961

申请日：2017-10-19

Applicant: AirWatch LLC

Inventor： Kar Fai Tse ,  Erich Peter Stuntebeck ,  Chen Lu

IPC: H04L12/26 ,  H04L12/24 ,  H04L29/08

Abstract: Disclosed are various examples for facilitating network speed testing on behalf of a client device that is associated with an enterprise. In a client device that can be a managed device managed by a management service, a network testing profile can be obtained which specifies a testing schedule as well as a network testing endpoint with which network testing can be conducted. Results of the network speed test can be transmitted to the management service, which can determine if the network speed implicates a compliance rule associated with the client device or an enterprise with which the client device is associated.

公开(公告)号：US10127751B2

公开(公告)日：2018-11-13

申请号：US15216236

申请日：2016-07-21

Applicant: AirWatch LLC

Inventor： Kar Fai Tse

IPC: H04L29/06 ,  G07C9/00

Abstract: A method is disclosed for providing physical access credentials to a client device. The method may include receiving a request for a physical access credential, where the first request includes at least one user access credential and at least one physical access point identifier. The method may also include determining whether the request should be granted based at least in part on the at least one user access credential. The method may further include, in response to determining that the request should be granted, sending the physical access credential associated with the physical access point.

公开(公告)号：US20180302395A1

公开(公告)日：2018-10-18

申请号：US16014325

申请日：2018-06-21

Applicant: AirWatch LLC

Inventor： Kar Fai Tse ,  Chen Lu ,  Erich Stuntebeck

IPC: H04L29/06

Abstract: Disclosed are various approaches for implementing an application authentication wrapper. An authentication request, such as a Kerberos request, is created for authenticating the computing device. The authentication request is encrypted to generate an encrypted authentication request. The encrypted authentication request is then forwarded to a reverse proxy server. An encrypted authentication response is received from the reverse proxy server. The encrypted authentication response, such as a Kerberos response, is then decrypted to generate a corresponding authentication response, which is then forwarded to the computing device that generated the authentication request.

公开(公告)号：US09979814B2

公开(公告)日：2018-05-22

申请号：US15292299

申请日：2016-10-13

Applicant: AirWatch, LLC

Inventor： Chaoting Xuan ,  Ravish Chawla ,  Jianling Wang ,  Kar Fai Tse

IPC: H04M1/725 ,  H04L29/06 ,  H04W12/08 ,  H04W4/04

CPC classification number: H04M1/72577 ,  H04L63/107 ,  H04M1/6075 ,  H04M1/72552 ,  H04M1/72569 ,  H04W4/046 ,  H04W4/40 ,  H04W12/08

Abstract: Systems and methods are included for detecting driving based on user-specific models for driving detection, and restricting access to an application of the user device while a user is driving. A management agent installed on the user device can collect data from sensors in a user device and provide the data to a management server, which can build a user-specific model for driving detection for that user. The management agent can then use that user-specific model for detecting when the user is driving. When the agent determines that the user is driving, it can enforce a driving policy that limits access to applications and delay or modify notifications generated by applications.

公开(公告)号：US09311464B2

公开(公告)日：2016-04-12

申请号：US14462992

申请日：2014-08-19

Applicant: AirWatch, LLC

Inventor： Erich Stuntebeck ,  Kar Fai Tse

IPC: G06F21/00 ,  G06F21/31 ,  G01P15/02 ,  H04N5/232

CPC classification number: G06F21/30 ,  G01P13/00 ,  G01P15/0802 ,  G06F21/31 ,  H04N5/23206

Abstract: Authentication via accelerometer may be provided. Upon receiving a request to unlock a device, a user may perform an authentication movement that may be detected by an accelerometer on the device. If the authentication movement is determined to match an approved movement, the device may be unlocked.

Abstract translation: 可以提供通过加速度计的认证。 在接收到解锁设备的请求时，用户可以执行可由设备上的加速度计检测到的认证移动。 如果确定认证移动与批准的移动相匹配，则该设备可以被解锁。

公开(公告)号：US20160092685A1

公开(公告)日：2016-03-31

申请号：US14500031

申请日：2014-09-29

Applicant: AirWatch LLC

Inventor： Kar Fai Tse ,  Erich Peter Stuntebeck

IPC: G06F21/57

CPC classification number: G06F21/6218 ,  G06F2221/2111 ,  G06F2221/2149

Abstract: Disclosed are various embodiments for passive compliance violation notifications. In one embodiment, it is detected that that a policy violation with respect to use of a client device has occurred. It is then determined that the policy violation may be passive. A user notification of the policy violation is generated by the client device in response to determining that the policy violation may be passive. The frequency and/or intensity of this notification may depend upon an extent of the policy violation. If the policy violation is later determined to be active, additional actions may be performed, such as disabling access to or removing managed resources on the client device.

Abstract translation: 公开了被动合规违规通知的各种实施例。 在一个实施例中，检测到发生了关于使用客户端设备的策略违规。 然后确定政策违规可能是被动的。 响应于确定策略违规可能是被动的，客户端设备生成违反策略的用户通知。 此通知的频率和/或强度可能取决于违反政策的程度。 如果稍后确定策略冲突是活动的，则可能会执行其他操作，例如禁用对客户端设备的访问或删除托管资源。

公开(公告)号：US20160006768A1

公开(公告)日：2016-01-07

申请号：US14853578

申请日：2015-09-14

Applicant: AirWatch LLC

Inventor： Kar Fai Tse

IPC: H04L29/06

CPC classification number: G07C9/00309 ,  G07C9/00087 ,  G07C9/00571 ,  G07C2009/00769 ,  G07C2009/0088 ,  H04L63/08 ,  H04L63/10 ,  H04L63/20

Abstract: A method is disclosed for providing physical access credentials to a client device. The method may include receiving a request for a physical access credential, where the first request includes at least one user access credential and at least one physical access point identifier. The method may also include determining whether the request should be granted based at least in part on the at least one user access credential. The method may further include, in response to determining that the request should be granted, sending the physical access credential associated with the physical access point.

Abstract translation: 公开了一种用于向客户端设备提供物理访问凭证的方法。 该方法可以包括接收对物理访问凭证的请求，其中第一请求包括至少一个用户访问凭证和至少一个物理接入点标识符。 该方法还可以包括至少部分地基于至少一个用户访问凭证来确定是否应该授予请求。 该方法还可以包括响应于确定该请求应被授予，发送与物理接入点相关联的物理访问凭证。