公开(公告)号：US20130124583A1

公开(公告)日：2013-05-16

申请号：US13398676

申请日：2012-02-16

申请人： Geordon Thomas Ferguson ,  Christopher Lyle Bender ,  Alberto Zubiri ,  Kenneth Cyril Schneider ,  Oliver Whitehouse ,  Christopher William Lewis Hobbs

发明人： Geordon Thomas Ferguson ,  Christopher Lyle Bender ,  Alberto Zubiri ,  Kenneth Cyril Schneider ,  Oliver Whitehouse ,  Christopher William Lewis Hobbs

IPC分类号： G06F17/30

CPC分类号： G06F17/30029 ,  G06F17/30171 ,  G06F17/30312 ,  G06F21/6218 ,  G06Q10/00 ,  G06Q10/109

摘要： In some implementations, a method for managing data in a user device includes pushing first metadata for a first resource in a first perimeter to a service external to the first perimeter. The first perimeter is configured to prevent external resources from accessing resources in the first perimeter. Second metadata for a second resource in a second perimeter is pushed to the external service. The external service is external to the second perimeter, the second perimeter being configured to prevent external resources from accessing resources in the second perimeter. Information is presented to the user based on a combination of the first metadata and the second metadata.

摘要翻译： 在一些实现中，用于管理用户设备中的数据的方法包括将第一周边中的第一资源的第一元数据推送到第一周边外部的服务。 第一个周边配置为防止外部资源访问第一个周边的资源。 第二个周边的第二个资源的第二个元数据被推送到外部服务。 外部服务在第二个周边外部，第二个周边配置为防止外部资源访问第二个周边的资源。 基于第一元数据和第二元数据的组合，向用户呈现信息。

公开(公告)号：US08799227B2

公开(公告)日：2014-08-05

申请号：US13398676

申请日：2012-02-16

申请人： Geordon Thomas Ferguson ,  Christopher Lyle Bender ,  Alberto Zubiri ,  Kenneth Cyril Schneider ,  Oliver Whitehouse ,  Christopher William Lewis Hobbs

发明人： Geordon Thomas Ferguson ,  Christopher Lyle Bender ,  Alberto Zubiri ,  Kenneth Cyril Schneider ,  Oliver Whitehouse ,  Christopher William Lewis Hobbs

IPC分类号： G06F7/00 ,  G06F17/30

CPC分类号： G06F17/30029 ,  G06F17/30171 ,  G06F17/30312 ,  G06F21/6218 ,  G06Q10/00 ,  G06Q10/109

摘要： In some implementations, a method for managing data in a user device includes pushing first metadata for a first resource in a first perimeter to a service external to the first perimeter. The first perimeter is configured to prevent external resources from accessing resources in the first perimeter. Second metadata for a second resource in a second perimeter is pushed to the external service. The external service is external to the second perimeter, the second perimeter being configured to prevent external resources from accessing resources in the second perimeter. Information is presented to the user based on a combination of the first metadata and the second metadata.

摘要翻译： 在一些实现中，用于管理用户设备中的数据的方法包括将第一周边中的第一资源的第一元数据推送到第一周边外部的服务。 第一个周边配置为防止外部资源访问第一个周边的资源。 第二个周边的第二个资源的第二个元数据被推送到外部服务。 外部服务在第二个周边外部，第二个周边配置为防止外部资源访问第二个周边的资源。 基于第一元数据和第二元数据的组合，向用户呈现信息。

公开(公告)号：US09613219B2

公开(公告)日：2017-04-04

申请号：US13293743

申请日：2011-11-10

申请人： Geordon Thomas Ferguson ,  Christopher Lyle Bender ,  Alberto Daniel Zubiri ,  Kenneth Cyril Schneider ,  Oliver Whitehouse ,  Christopher William Lewis Hobbs

发明人： Geordon Thomas Ferguson ,  Christopher Lyle Bender ,  Alberto Daniel Zubiri ,  Kenneth Cyril Schneider ,  Oliver Whitehouse ,  Christopher William Lewis Hobbs

IPC分类号： G06F21/60 ,  H04L29/06

CPC分类号： H04L63/20 ,  G06F21/604 ,  H04L63/0209 ,  H04L63/102 ,  H04L63/105 ,  H04W12/08

摘要： In some implementations, a method of managing access to resources in a single device including receiving, from a first resource assigned to a first perimeter, a request to access a second resource assigned to a second perimeter different from the first perimeter. The single device includes the first perimeter and the second perimeter. Whether access to the second resource is prohibited is determined based on a management policy for the first perimeter. The management policy defining one or more rules for accessing resources assigned to the second perimeter including the second resource.

公开(公告)号：US20130125198A1

公开(公告)日：2013-05-16

申请号：US13293743

申请日：2011-11-10

申请人： Geordon Thomas Ferguson ,  Christopher Lyle Bender ,  Alberto Daniel Zubiri ,  Kenneth Cyril Schneider ,  Oliver Whitehouse ,  Christopher William Lewis Hobbs

发明人： Geordon Thomas Ferguson ,  Christopher Lyle Bender ,  Alberto Daniel Zubiri ,  Kenneth Cyril Schneider ,  Oliver Whitehouse ,  Christopher William Lewis Hobbs

IPC分类号： G06F21/20

CPC分类号： H04L63/20 ,  G06F21/604 ,  H04L63/0209 ,  H04L63/102 ,  H04L63/105 ,  H04W12/08

摘要： In some implementations, a method of managing access to resources in a single device including receiving, from a first resource assigned to a first perimeter, a request to access a second resource assigned to a second perimeter different from the first perimeter. The single device includes the first perimeter and the second perimeter. Whether access to the second resource is prohibited is determined based on a management policy for the first perimeter. The management policy defining one or more rules for accessing resources assigned to the second perimeter including the second resource.

摘要翻译： 在一些实现中，管理对单个设备中的资源的访问的方法，包括从分配给第一周边的第一资源接收分配给不同于第一周界的第二周界的第二资源的请求。 单个装置包括第一周边和第二周边。 基于第一周边的管理策略确定是否禁止访问第二资源。 管理策略定义用于访问分配给包括第二资源的第二边界的资源的一个或多个规则。

公开(公告)号：US09563780B2

公开(公告)日：2017-02-07

申请号：US13293743

申请日：2011-11-10

申请人： Geordon Thomas Ferguson ,  Christopher Lyle Bender ,  Alberto Daniel Zubiri ,  Kenneth Cyril Schneider ,  Oliver Whitehouse ,  Christopher William Lewis Hobbs

发明人： Geordon Thomas Ferguson ,  Christopher Lyle Bender ,  Alberto Daniel Zubiri ,  Kenneth Cyril Schneider ,  Oliver Whitehouse ,  Christopher William Lewis Hobbs

IPC分类号： G06F21/60 ,  H04L29/06

摘要： In some implementations, a method of managing access to resources in a single device including receiving, from a first resource assigned to a first perimeter, a request to access a second resource assigned to a second perimeter different from the first perimeter. The single device includes the first perimeter and the second perimeter. Whether access to the second resource is prohibited is determined based on a management policy for the first perimeter. The management policy defining one or more rules for accessing resources assigned to the second perimeter including the second resource.

公开(公告)号：US20110179465A1

公开(公告)日：2011-07-21

申请号：US12828668

申请日：2010-07-01

申请人： Daniel Jonas Major ,  Oliver Whitehouse ,  Neil Patrick Adams ,  Christopher Lyle Bender ,  Van Quy Tu

发明人： Daniel Jonas Major ,  Oliver Whitehouse ,  Neil Patrick Adams ,  Christopher Lyle Bender ,  Van Quy Tu

IPC分类号： G06F21/00

CPC分类号： H04L63/20 ,  H04W12/08

摘要： An apparatus, and an associated method, facilitates security at a wireless device, such as a wireless device comprising a mobile computing platform. A security decision engine is provided that monitors for an event necessitating a security decision. When a security decision is required, request is made of a knowledge fetcher, provided by a trusted third-party, installed at the wireless device for the security decision. The knowledge fetcher obtains the security decision, such as by obtaining the security decision from a remote, trusted third-party server, and provides the security decision to the decision engine. Use is made of the security decision pursuant to a setting for which the security decision is needed.

摘要翻译： 一种装置和相关联的方法有助于诸如包括移动计算平台的无线设备之类的无线设备的安全性。 提供了一种安全决策引擎，用于监视需要进行安全决策的事件。 当需要安全决定时，请求安装在无线设备处的安全决定的由可信赖的第三方提供的知识提取器。 知识获取器获得安全决策，例如通过从远程可信第三方服务器获得安全决策，并向决策引擎提供安全决策。 根据需要进行安全决策的设置，使用安全决定。

公开(公告)号：US09264448B2

公开(公告)日：2016-02-16

申请号：US12828668

申请日：2010-07-01

申请人： Daniel Jonas Major ,  Oliver Whitehouse ,  Neil Patrick Adams ,  Christopher Lyle Bender ,  Van Quy Tu

发明人： Daniel Jonas Major ,  Oliver Whitehouse ,  Neil Patrick Adams ,  Christopher Lyle Bender ,  Van Quy Tu

IPC分类号： G06F21/22 ,  H04L29/06 ,  H04W12/08

CPC分类号： H04L63/20 ,  H04W12/08

摘要： An apparatus, and an associated method, facilitates security at a wireless device, such as a wireless device comprising a mobile computing platform. A security decision engine is provided that monitors for an event necessitating a security decision. When a security decision is required, request is made of a knowledge fetcher, provided by a trusted third-party, installed at the wireless device for the security decision. The knowledge fetcher obtains the security decision, such as by obtaining the security decision from a remote, trusted third-party server, and provides the security decision to the decision engine. Use is made of the security decision pursuant to a setting for which the security decision is needed.

摘要翻译： 一种装置和相关联的方法有助于诸如包括移动计算平台的无线设备之类的无线设备的安全性。 提供了一种安全决策引擎，用于监视需要进行安全决策的事件。 当需要安全决定时，请求安装在无线设备处的安全决定的由可信赖的第三方提供的知识提取器。 知识获取器获得安全决策，例如通过从远程可信第三方服务器获得安全决策，并向决策引擎提供安全决策。 根据需要进行安全决策的设置，使用安全决定。

公开(公告)号：US08839421B2

公开(公告)日：2014-09-16

申请号：US12806737

申请日：2010-08-19

申请人： Oliver Whitehouse ,  Michael Grant Kirkup ,  Christopher Lyle Bender ,  Michael Kenneth Brown

发明人： Oliver Whitehouse ,  Michael Grant Kirkup ,  Christopher Lyle Bender ,  Michael Kenneth Brown

IPC分类号： G06F12/14 ,  G06F21/56 ,  G06F21/53

CPC分类号： H04L63/145 ,  G06F21/53 ,  G06F21/56 ,  H04L63/14

摘要： Methods and systems for mitigating the effects of a malicious software application are disclosed. A dedicated module on the computing device receives from a malicious software detector a message indicating whether the application is malicious or has a malicious component. The dedicated module obtains a set of permissions to be granted to the application, and instructs software on the computing device that controls the permissions of the application to grant the set of permissions.

摘要翻译： 公开了用于减轻恶意软件应用的影响的方法和系统。 计算设备上的专用模块从恶意软件检测器接收指示该应用是恶意的还是具有恶意组件的消息。 专用模块获得要授予应用程序的一组权限，并指示控制应用程序权限的计算设备上的软件授予该权限集。

公开(公告)号：US20110214184A1

公开(公告)日：2011-09-01

申请号：US12806737

申请日：2010-08-19

申请人： Oliver Whitehouse ,  Michael Grant Kirkup ,  Christopher Lyle Bender ,  Michael Kenneth Brown

发明人： Oliver Whitehouse ,  Michael Grant Kirkup ,  Christopher Lyle Bender ,  Michael Kenneth Brown

IPC分类号： G06F21/00

CPC分类号： H04L63/145 ,  G06F21/53 ,  G06F21/56 ,  H04L63/14

摘要： Methods and systems for mitigating the effects of a malicious software application are disclosed. A dedicated module on the computing device receives from a malicious software detector a message indicating whether the application is malicious or has a malicious component. The dedicated module obtains a set of permissions to be granted to the application, and instructs software on the computing device that controls the permissions of the application to grant the set of permissions.

摘要翻译： 公开了用于减轻恶意软件应用的影响的方法和系统。 计算设备上的专用模块从恶意软件检测器接收指示该应用是恶意的还是具有恶意组件的消息。 专用模块获得要授予应用程序的一组权限，并指示控制应用程序权限的计算设备上的软件授予该权限集。

公开(公告)号：US08555379B1

公开(公告)日：2013-10-08

申请号：US11864810

申请日：2007-09-28

申请人： Oliver Whitehouse ,  Oliver Friedrichs ,  Elias Levy

发明人： Oliver Whitehouse ,  Oliver Friedrichs ,  Elias Levy

IPC分类号： H04L29/06

CPC分类号： H04L63/1483 ,  H04L63/1416 ,  H04L63/145 ,  H04L63/1491

摘要： A method and apparatus for monitoring communications from a communications device comprising monitoring communications from a communications device by storing a data acquisition address in a contact list of the communications device that identifies a location of a monitoring device. Further, when malicious software uses the contact list to send messages, a message is sent using the malicious software to the monitoring device using the data acquisition address.

摘要翻译： 一种用于监测来自通信设备的通信的方法和装置，包括通过将数据采集地址存储在识别监视设备的位置的通信设备的联系人列表中来监视来自通信设备的通信。 此外，当恶意软件使用联系人列表发送消息时，使用数据采集地址将使用恶意软件的消息发送到监视设备。