公开(公告)号：US09672338B1

公开(公告)日：2017-06-06

申请号：US14793022

申请日：2015-07-07

Applicant: MOBILE IRON, INC.

Inventor： Mansu Kim ,  Suresh Kumar Batchu

IPC: G06F17/00 ,  G06F21/31 ,  H04L29/06 ,  G06F9/445 ,  G06F21/62

CPC classification number: H04W12/08 ,  G06F8/61 ,  G06F21/10 ,  G06F21/31 ,  G06F21/604 ,  G06F21/6218 ,  H04L63/102 ,  H04L63/20

Abstract: Techniques to manage applications, such as mobile apps, across multiple management domains are disclosed. In various embodiments, a set of one or more application management policies to be enforced with respect to a mobile device is received from a management entity to which a scope of authority to manage applications with respect to the mobile device has been delegated. A management agent on the mobile device is used to enforce the one or more application management policies with respect to applications and application data that are within the scope of authority delegated to the management entity.

公开(公告)号：US20160057153A1

公开(公告)日：2016-02-25

申请号：US14929103

申请日：2015-10-30

Applicant: MOBILE IRON, INC.

Inventor： Mansu Kim ,  Joshua Sirota ,  Suresh Kumar Batchu

IPC: H04L29/06

CPC classification number: H04L63/102 ,  H04L63/10 ,  H04L63/108 ,  H04W12/06

Abstract: Securing access to one or more applications in an enterprise zone (e.g., a set of protected applications) is disclosed. A last activity time associated with a use of at least one mobile application in the protected subset may be retrieved from a shared storage location associated with a protected subset of two or more protected mobile applications. It may be determined that the last activity time is within a session expiration time period associated with the protected subset. Access to one or more applications in the protected subset may be allowed without credential verification based at least in part on the determination.

Abstract translation: 公开了对企业区域（例如，一组受保护的应用程序）中的一个或多个应用程序的访问权限。 与受保护子集中的至少一个移动应用的使用相关联的最后活动时间可以从与两个或多个受保护移动应用的受保护子集相关联的共享存储位置检索。 可以确定最后的活动时间在与受保护子集相关联的会话过期时间段内。 至少部分地基于确定，可以允许对被保护子集中的一个或多个应用的​​访问，而不进行凭证验证。

公开(公告)号：US20150319143A1

公开(公告)日：2015-11-05

申请号：US14690311

申请日：2015-04-17

Applicant: MOBILE IRON, INC.

Inventor： Mansu Kim ,  Joshua Sirota ,  Suresh Kumar Batchu

IPC: H04L29/06 ,  G06F9/54 ,  H04L9/08 ,  H04W12/04

CPC classification number: H04L63/0428 ,  G06F9/54 ,  G06F21/606 ,  G06F21/6281 ,  H04L9/08 ,  H04W12/04

Abstract: A secure mobile application connection bus is disclosed. First encryption information and an identifier associated with a data storage location on a mobile device are provided from a first application to a second application. Second encryption information associated with the second mobile application is retrieved from the data storage location. The second mobile application is configured to provide data to the data storage location. Data is transferred securely between the first mobile application and the second mobile application via the data storage location.

Abstract translation: 公开了一种安全的移动应用连接总线。 第一加密信息和与移动设备上的数据存储位置相关联的标识符从第一应用提供给第二应用。 从数据存储位置检索与第二移动应用相关联的第二加密信息。 第二移动应用被配置为向数据存储位置提供数据。 数据经由数据存储位置在第一移动应用和第二移动应用之间被安全地传送。

公开(公告)号：US20150201322A1

公开(公告)日：2015-07-16

申请号：US14563952

申请日：2014-12-08

Applicant: MOBILE IRON, INC.

Inventor： Mansu Kim ,  Benjamin Markines ,  Suresh Kumar Batchu

IPC: H04W8/18 ,  H04W8/02 ,  H04W48/04

CPC classification number: H04W28/16 ,  H04L47/20 ,  H04W8/02 ,  H04W8/12 ,  H04W8/22 ,  H04W28/0226

Abstract: Mobile device traffic management is disclosed. Information including a traffic management policy to be applied to data transferred between a mobile device and a node is received from a device management server. The device management server determines the traffic management policy based at least in part on roaming state information received from the mobile device. Data transferred between the mobile device and the node is processed based at least in part on the traffic management policy.

Abstract translation: 公开了移动设备流量管理。 从设备管理服务器接收包括应用于在移动设备和节点之间传送的数据的流量管理策略的信息。 设备管理服务器至少部分地基于从移动设备接收的漫游状态信息来确定流量管理策略。 至少部分地基于流量管理策略来处理在移动设备和节点之间传送的数据。

公开(公告)号：US20150169615A1

公开(公告)日：2015-06-18

申请号：US14569547

申请日：2014-12-12

Applicant: MOBILE IRON, INC.

Inventor： Suresh Kumar Batchu ,  Mansu Kim

IPC: G06F17/30

CPC classification number: G06F17/30557 ,  H04W4/50 ,  H04W4/60

Abstract: Application synchronization techniques are disclosed. An indication is received that a mobile app has performed an operation affecting mobile app data of the mobile app. At least a portion of the mobile app data is stored to a remote storage system based at least in part on the indication. The indication may be received by and the storing operation may be performed at least in part by a management code embedded in mobile app code comprising the mobile app.

Abstract translation: 公开了应用同步技术。 接到移动应用已经执行影响移动应用的移动应用数据的操作的指示。 移动应用数据的至少一部分至少部分地基于指示被存储到远程存储系统。 可以接收该指示，并且存储操作可以至少部分地由嵌入在包括移动应用的移动应用代码中的管理代码来执行。

公开(公告)号：US20150135288A1

公开(公告)日：2015-05-14

申请号：US14542279

申请日：2014-11-14

Applicant: MOBILE IRON, INC.

Inventor： Suresh Kumar Batchu ,  Mansu Kim

IPC: H04L29/06

CPC classification number: H04L63/08 ,  H04L63/04 ,  H04L63/0823 ,  H04L63/20

Abstract: A notification message gateway is disclosed. Notification data and application identification data is received. The application identification data is used to select an application credential associated with at least one application instance. The notification data and application credential are provided to a distribution node such that the notification data is provided to the application instance.

Abstract translation: 公开了通知消息网关。 收到通知数据和应用程序标识数据。 应用程序标识数据用于选择与至少一个应用程序实例相关联的应用程序凭据。 将通知数据和应用凭证提供给分发节点，使得通知数据被提供给应用实例。

公开(公告)号：US08949201B1

公开(公告)日：2015-02-03

申请号：US14179216

申请日：2014-02-12

Applicant: Mobile Iron, Inc.

Inventor： Suresh Kumar Batchu ,  Mansu Kim

IPC: G06F17/30

CPC classification number: G06F21/62 ,  G06F17/30117 ,  G06F17/30156 ,  G06F17/30303 ,  G06F21/60 ,  G06F21/6218 ,  G06F2221/2137 ,  G06F2221/2143 ,  G06F2221/2145

Abstract: Self-removal of enterprise application data (e.g., managed application data) is disclosed. It may be determined that a data removal condition has been satisfied. Based at least in part on the determination, data removal information may be generated for a plurality of applications including a managed set of mobile applications. The data removal information may be provided to at least a first application included in the plurality of applications. The first application may provide the data removal information to a data storage location accessible to at least a second application upon a data removal-related event.

Abstract translation: 公开了企业应用数据的自动移除（例如，被管理的应用数据）。 可以确定已经满足数据去除条件。 至少部分地基于确定，可以为包括管理的一组移动应用的多个应用生成数据删除信息。 数据去除信息可以被提供给包括在多个应用中的至少第一应用。 第一应用可以在数据删除相关事件时将数据移除信息提供给至少第二应用可访问的数据存储位置。

公开(公告)号：US10404684B1

公开(公告)日：2019-09-03

申请号：US14966511

申请日：2015-12-11

Applicant: MOBILE IRON, INC.

Inventor： Sudheer Babu Chittireddy ,  Mansu Kim

IPC: H04L9/00 ,  H04L29/06 ,  H04W60/04 ,  H04W8/20 ,  H04W12/06 ,  H04W12/08

Abstract: Techniques of the present disclosure register a device to a mobile device management (MDM) network to enable access of the MDM network. In some embodiments, a registration service receives a request to register a device as a device managed by an enterprise associated with the registration service. In response, the registration service sends a response redirecting the device to authenticate via an authentication service, where the device is configured via an authentication profile to authenticate via the authentication service. The device sends a token issued by the authentication service of the enterprise. The registration service provides access to the registration service based the received token, including by allowing the registration service to be used to register the device as a device managed at least in part by the enterprise. The present techniques improve security of communications by registering a device without requiring input of sensitive authentication information.

公开(公告)号：US10091127B2

公开(公告)日：2018-10-02

申请号：US15815434

申请日：2017-11-16

Applicant: MOBILE IRON, INC.

Inventor： Tom Chang ,  Mansu Kim

IPC: G06F15/173 ,  H04L12/911 ,  H04W4/50 ,  H04L29/08

Abstract: Embodiments of the present application relate to a method, apparatus, and system for enrolling a mobile device with an enterprise network. The method includes receiving, from a mobile device, a request to access an enrollment address. In response to receiving the request to access the enrollment address, determining whether the mobile device is pre-enrolled with the enterprise network, and in the event that the mobile device from which the request to access the enrollment address is received corresponds to the mobile device that is pre-enrolled with the enterprise network, pushing user-specific settings to the mobile device.

公开(公告)号：US10021101B2

公开(公告)日：2018-07-10

申请号：US15663445

申请日：2017-07-28

Applicant: MOBILE IRON, INC.

Inventor： Suresh Kumar Batchu ,  Mansu Kim

IPC: G06F21/44 ,  H04W12/08 ,  H04L29/06 ,  H04W12/10 ,  G06F21/57

CPC classification number: H04L63/0876 ,  G06F21/44 ,  G06F21/57 ,  G06F21/577 ,  H04L63/0272 ,  H04L63/0428 ,  H04L63/102 ,  H04W12/02 ,  H04W12/06 ,  H04W12/08 ,  H04W12/10

Abstract: Embedding security posture in network traffic is disclosed. Security posture information is received. The security posture information is embedded into a message. The message including the security posture information is sent from a mobile device to a service node. The service node uses the security posture information to validate the mobile device to access a service. The service accesses the service based at least in part on the validation.