公开(公告)号：US20140171023A1

公开(公告)日：2014-06-19

申请号：US14188345

申请日：2014-02-24

Applicant: BlackBerry Limited

Inventor： Russell N. Owen ,  Herbert A. Little ,  David P. Yach ,  Michael Shenfield

IPC: H04W12/08

CPC classification number: H04L63/10 ,  G06F21/6245 ,  H04L63/0428 ,  H04L63/0442 ,  H04L63/102 ,  H04L63/104 ,  H04L63/12 ,  H04L63/20 ,  H04W12/08

Abstract: Systems and methods for secure control of a wireless mobile communication device are disclosed. Each of a plurality of domains includes at least one wireless mobile communication device asset. When a request to perform an operation affecting at least one of the assets is received, it is determined whether the request is permitted by the domain that includes the at least one affected asset, by determining whether the entity with which the request originated has a trust relationship with the domain, for example. The operation is completed where it is permitted by the domain. Wireless mobile communication device assets include software applications, persistent data, communication pipes, and configuration data, properties or user or subscriber profiles.

Abstract translation: 公开了一种用于无线移动通信设备的安全控制的系统和方法。 多个域中的每一个包括至少一个无线移动通信设备资产。 当接收到执行影响至少一个资产的操作的请求时，通过确定发起请求的实体是否具有信任来确定该请求是否被包括至少一个受影响资产的域所允许 与域的关系，例如。 操作在域被允许的地方完成。 无线移动通信设备资产包括软件应用程序，持久数据，通信管道和配置数据，属性或用户或订户配置文件。

公开(公告)号：US09507920B2

公开(公告)日：2016-11-29

申请号：US14459785

申请日：2014-08-14

Applicant: BlackBerry Limited

Inventor： David P. Yach ,  Michael Steven Brown ,  Herbert Anthony Little

IPC: G06F21/00 ,  G06F21/10 ,  G06F21/12 ,  G06F21/51 ,  G06F21/62 ,  H04L9/32 ,  H04W4/00 ,  H04L29/06

CPC classification number: G06F21/10 ,  G06F21/121 ,  G06F21/51 ,  G06F21/629 ,  H04L9/321 ,  H04L9/3236 ,  H04L9/3247 ,  H04L63/067 ,  H04L63/0823 ,  H04L63/123 ,  H04L63/126 ,  H04L63/1483 ,  H04W4/60

Abstract: A novel code signing system, computer readable media, and method are provided. The code signing method includes receiving a code signing request from a requestor in order to gain access to one or more specific application programming interfaces (APIs). A digital signature is provided to the requestor. The digital signature indicates authorization by a code signing authority for code of the requestor to access the one or more specific APIs. In one example, the digital signature is provided by the code signing authority or a delegate thereof. In another example, the code signing request may include one or more of the following: code, an application, a hash of an application, an abridged version of the application, a transformed version of an application, a command, a command argument, and a library.

Abstract translation: 提供了一种新颖的代码签名系统，计算机可读介质和方法。 代码签名方法包括从请求者接收代码签名请求以便获得对一个或多个特定应用编程接口（API）的访问。 向请求者提供数字签名。 数字签名表示代码签名机构对请求者的代码进行访问的一个或多个特定API的授权。 在一个示例中，数字签名由代码签名机构或其代理提供。 在另一示例中，代码签名请求可以包括以下的一个或多个：代码，应用程序，应用程序的哈希，应用程序的简略版本，应用程序的转换版本，命令，命令参数和 图书馆。

公开(公告)号：US09503307B2

公开(公告)日：2016-11-22

申请号：US13935775

申请日：2013-07-05

Applicant: BLACKBERRY LIMITED

Inventor： David P. Yach ,  Herbert Anthony Little ,  Gerhard Dietrich Klassen

IPC: G06Q99/00 ,  H04L29/08 ,  G06F21/42 ,  G06F21/43 ,  G06Q20/38 ,  H04L9/32 ,  H04L29/06 ,  G06Q20/12 ,  G06F21/00

CPC classification number: H04L29/08 ,  G06F21/00 ,  G06F21/42 ,  G06F21/43 ,  G06Q20/1235 ,  G06Q20/3821 ,  H04L9/3215 ,  H04L9/3271 ,  H04L63/08 ,  H04L63/104 ,  H04L63/18 ,  H04L2209/80

Abstract: Authenticity of a proposed future or current participant in a multi-party dialog is checked by splitting an authenticity challenge query into at least two portions wherein none of the portions individually contains sufficient information to fully define the challenge query. These separated portions are then sent to another dialog participant over at least two different communication channels thus enhancing the probability that a successive challenge response is authentic. The authenticity challenge query and splitting thereof into plural portions may include formation of a logical combination (e.g., exclusive-OR) of first and second data strings (one of which may be a challenge question) to produce a resultant third data string where the separated and separately communicated portions include the first and third data strings as separate portions as being sent over respectively different communication channels.

公开(公告)号：US20150074752A1

公开(公告)日：2015-03-12

申请号：US14543324

申请日：2014-11-17

Applicant: BlackBerry Limited

Inventor： Russell N. Owen ,  Herbert A. Little ,  David P. Yach ,  Michael Shenfield

IPC: H04L29/06 ,  G06F21/62 ,  H04W12/08

CPC classification number: H04L63/10 ,  G06F21/6245 ,  H04L63/0428 ,  H04L63/0442 ,  H04L63/102 ,  H04L63/104 ,  H04L63/12 ,  H04L63/20 ,  H04W12/08

Abstract: Systems and methods for secure control of a wireless mobile communication device are disclosed. Each of a plurality of domains includes at least one wireless mobile communication device asset. When a request to perform an operation affecting at least one of the assets is received, it is determined whether the request is permitted by the domain that includes the at least one affected asset, by determining whether the entity with which the request originated has a trust relationship with the domain, for example. The operation is completed where it is permitted by the domain. Wireless mobile communication device assets include software applications, persistent data, communication pipes, and configuration data, properties or user or subscriber profiles.

Abstract translation: 公开了一种用于无线移动通信设备的安全控制的系统和方法。 多个域中的每一个包括至少一个无线移动通信设备资产。 当接收到执行影响至少一个资产的操作的请求时，通过确定发起请求的实体是否具有信任来确定包括至少一个受影响的资产的域是否允许该请求 与域的关系，例如。 操作在域被允许的地方完成。 无线移动通信设备资产包括软件应用程序，持久数据，通信管道和配置数据，属性或用户或订户配置文件。

公开(公告)号：US08893266B2

公开(公告)日：2014-11-18

申请号：US14188345

申请日：2014-02-24

Applicant: BlackBerry Limited

Inventor： Russell N. Owen ,  Herbert A. Little ,  David P. Yach ,  Michael Shenfield

IPC: G06F7/04 ,  H04L29/06 ,  H04L9/32 ,  H04W12/08

CPC classification number: H04L63/10 ,  G06F21/6245 ,  H04L63/0428 ,  H04L63/0442 ,  H04L63/102 ,  H04L63/104 ,  H04L63/12 ,  H04L63/20 ,  H04W12/08

Abstract: Systems and methods for secure control of a wireless mobile communication device are disclosed. Each of a plurality of domains includes at least one wireless mobile communication device asset. When a request to perform an operation affecting at least one of the assets is received, it is determined whether the request is permitted by the domain that includes the at least one affected asset, by determining whether the entity with which the request originated has a trust relationship with the domain, for example. The operation is completed where it is permitted by the domain. Wireless mobile communication device assets include software applications, persistent data, communication pipes, and configuration data, properties or user or subscriber profiles.

Abstract translation: 公开了一种用于无线移动通信设备的安全控制的系统和方法。 多个域中的每一个包括至少一个无线移动通信设备资产。 当接收到执行影响至少一个资产的操作的请求时，通过确定发起请求的实体是否具有信任来确定该请求是否被包括至少一个受影响资产的域所允许 与域的关系，例如。 操作在域被允许的地方完成。 无线移动通信设备资产包括软件应用程序，持久数据，通信管道和配置数据，属性或用户或订户配置文件。

公开(公告)号：US09391992B2

公开(公告)日：2016-07-12

申请号：US14543324

申请日：2014-11-17

Applicant: BlackBerry Limited

Inventor： Russell N. Owen ,  Herbert A. Little ,  David P. Yach ,  Michael Shenfield

IPC: H04L29/06 ,  G06F21/62 ,  H04W12/08

CPC classification number: H04L63/10 ,  G06F21/6245 ,  H04L63/0428 ,  H04L63/0442 ,  H04L63/102 ,  H04L63/104 ,  H04L63/12 ,  H04L63/20 ,  H04W12/08

Abstract: Systems and methods for secure control of a wireless mobile communication device are disclosed. Each of a plurality of domains includes at least one wireless mobile communication device asset. When a request to perform an operation affecting at least one of the assets is received, it is determined whether the request is permitted by the domain that includes the at least one affected asset, by determining whether the entity with which the request originated has a trust relationship with the domain, for example. The operation is completed where it is permitted by the domain. Wireless mobile communication device assets include software applications, persistent data, communication pipes, and configuration data, properties or user or subscriber profiles.

公开(公告)号：US09088878B2

公开(公告)日：2015-07-21

申请号：US13720423

申请日：2012-12-19

Applicant: BLACKBERRY LIMITED

Inventor： David P. Yach ,  Gary P. Mousseau ,  David Clark ,  Ronald Scotte Zinn ,  Michael Thomas Hardy ,  Nataliya Martsyna

IPC: H04W4/12 ,  H04L12/58

CPC classification number: H04W4/12 ,  H04L51/38

Abstract: A technique for use in communicating data messages to a mobile device with use of a host service in a communication system is described. The host service connects with a service node for establishing and maintaining an IP connection between the host service and the service node. The host service receives a data message for the mobile device, and determines whether the mobile device is logged on. In response to determining that the mobile device is logged on, the host service sends the data message to the mobile device without aid of the service node. Otherwise, the host service creates an enable message which identifies the mobile device and includes a subset of the data message, and sends it to the service node over the IP connection for subsequent forwarding to the mobile device in a wireless network.

Abstract translation: 描述了一种用于在通信系统中使用主机服务向移动设备传送数据消息的技术。 主机服务与服务节点连接，用于建立和维护主机服务与服务节点之间的IP连接。 主机服务接收移动设备的数据消息，并确定移动设备是否登录。 响应于确定移动设备登录，主机服务在没有服务节点的帮助的情况下将数据消息发送到移动设备。 否则，主机服务创建启用消息，其识别移动设备并且包括数据消息的子集，并通过IP连接将其发送到服务节点，以便随后在无线网络中转发到移动设备。