公开(公告)号：US20150089673A1

公开(公告)日：2015-03-26

申请号：US14491483

申请日：2014-09-19

Applicant: Open Text S.A.

Inventor： Gregory Beckman ,  Robert Laird ,  Alain Gagne

IPC: G06F21/10 ,  G06F21/16

CPC classification number: H04L63/20 ,  G06F3/04817 ,  G06F8/65 ,  G06F21/10 ,  G06F21/16 ,  G06F21/6218 ,  G06F2221/2143 ,  H04L29/06 ,  H04L63/02 ,  H04L63/0428 ,  H04L63/10 ,  H04L63/105 ,  H04L67/02 ,  H04L67/10 ,  H04L67/28 ,  H04L67/2823 ,  H04L67/2857 ,  H04L67/42

Abstract: A managed container may have a managed cache storing content managed by or through an application gateway server computer. The managed container may receive a request for content from an application running in a secure shell provided by the managed container on a client device. The managed container may determine whether the client device is within a specified geographical location. If not, the managed container may deny or restrict the application access to the requested content. The access denial or restriction may continue until a connection is made to the application gateway server computer or until the client device has returned to within the specified geographical location. If the client device is within the specified geographical location, the managed container may provide or restore access to requested content. Embodiments of the managed container can therefore perform geofencing by disabling or limiting access to content based on predetermined secure/insecure designations.

Abstract translation: 受管容器可以具有存储由或通过应用网关服务器计算机管理的内容的管理缓存。 受管理的容器可以从在客户端设备上的被管理容器提供的安全shell中运行的应用程序接收对内容的请求。 被管理容器可以确定客户端设备是否在指定的地理位置内。 如果不是，被管理的容器可以拒绝或限制应用程序访问所请求的内容。 访问拒绝或限制可以继续，直到连接到应用网关服务器计算机，或者直到客户端设备已经返回到指定的地理位置。 如果客户端设备在指定的地理位置内，则受管容器可以提供或恢复对所请求内容的访问。 因此，受管容器的实施例可以通过基于预定的安全/不安全的指定来禁止或限制对内容的访问来执行地理围栏。

公开(公告)号：US20150089224A1

公开(公告)日：2015-03-26

申请号：US14491386

申请日：2014-09-19

Applicant: Open Text S.A.

Inventor： Gregory Beckman ,  Robert Laird ,  Alain Gagne

IPC: H04L29/08 ,  H04L29/06

CPC classification number: H04L63/20 ,  G06F3/04817 ,  G06F8/65 ,  G06F21/10 ,  G06F21/16 ,  G06F21/6218 ,  G06F2221/2143 ,  H04L29/06 ,  H04L63/02 ,  H04L63/0428 ,  H04L63/10 ,  H04L63/105 ,  H04L67/02 ,  H04L67/10 ,  H04L67/28 ,  H04L67/2823 ,  H04L67/2857 ,  H04L67/42

Abstract: Embodiments of an application gateway architecture may include an application gateway server computer communicatively connected to backend systems and client devices operating on different platforms. The application gateway server computer may include application programming interfaces and services configured for communicating with the backend systems and managed containers operating on the client devices. The application gateway server computer may provide applications that can be centrally managed and may extend the capabilities of the client devices, including the ability to authenticate across backend systems. A managed container may include a managed cache and may provide a secure shell for applications received from the application gateway server computer. The managed container may store the applications in the managed cache and control access to the managed cache according to rules propagated from at least one of the backend systems via the application gateway server computer.

Abstract translation: 应用网关架构的实施例可以包括通信地连接到在不同平台上操作的后端系统和客户端设备的应用网关服务器计算机。 应用网关服务器计算机可以包括应用程序编程接口和配置用于与后端系统通信的服务和在客户端设备上操作的被管理的容器。 应用网关服务器计算机可以提供可以被集中管理的应用，并且可以扩展客户端设备的能力，包括跨后端系统认证的能力。 受管容器可以包括管理缓存，并且可以为从应用网关服务器计算机接收的应用提供安全壳。 受管理的容器可以将应用存储在托管缓存中，并且根据从至少一个后端系统经由应用网关服务器计算机传播的规则来控制对被管理高速缓存的访问。

公开(公告)号：US20150089659A1

公开(公告)日：2015-03-26

申请号：US14491492

申请日：2014-09-19

Applicant: Open Text S.A.

Inventor： Gregory Beckman ,  Robert Laird ,  Alain Gagne

IPC: G06F21/62

CPC classification number: H04L63/20 ,  G06F3/04817 ,  G06F8/65 ,  G06F21/10 ,  G06F21/16 ,  G06F21/6218 ,  G06F2221/2143 ,  H04L29/06 ,  H04L63/02 ,  H04L63/0428 ,  H04L63/10 ,  H04L63/105 ,  H04L67/02 ,  H04L67/10 ,  H04L67/28 ,  H04L67/2823 ,  H04L67/2857 ,  H04L67/42

Abstract: A remote wipe message or notification may be sent from a server computer to one or more target client devices associated with a user. A managed container running on a target client device associated with the user and having a managed cache storing content managed by or through the server computer may, in response to the remote wipe message or notification, deleting the managed content or a portion thereof from its managed cache. The managed container may send back an acknowledgement or message to the server computer that it had completed the remote wipe. The remote wipe functionality can avoid having to deal with individual applications running on the client device and therefore can eliminate the complexity of having to deal with individual applications. Furthermore, the remote wipe can be done independently of the local operating system and without affecting non-managed information/applications on the client device.

Abstract translation: 远程擦除消息或通知可以从服务器计算机发送到与用户相关联的一个或多个目标客户端设备。 在与用户相关联的目标客户端设备上运行并且具有存储由或者通过服务器计算机管理的内容的管理缓存的受管理容器可以响应于远程擦除消息或通知，从被管理的内容中删除被管理内容或其一部分 缓存。 被管理的容器可能会向服务器计算机发回已完成远程擦除的确认或消息。 远程擦除功能可以避免必须处理在客户端设备上运行的各个应用程序，因此可以消除必须处理各个应用程序的复杂性。 此外，远程擦除可以独立于本地操作系统进行，并且不影响客户端设备上的非托管信息/应用程序。

公开(公告)号：US20150089577A1

公开(公告)日：2015-03-26

申请号：US14491451

申请日：2014-09-19

Applicant: Open Text S.A.

Inventor： Gregory Beckman ,  Robert Laird ,  Alain Gagne

IPC: H04L29/06 ,  G06F9/445 ,  H04L29/08 ,  G06F3/0481

CPC classification number: H04L63/20 ,  G06F3/04817 ,  G06F8/65 ,  G06F21/10 ,  G06F21/16 ,  G06F21/6218 ,  G06F2221/2143 ,  H04L29/06 ,  H04L63/02 ,  H04L63/0428 ,  H04L63/10 ,  H04L63/105 ,  H04L67/02 ,  H04L67/10 ,  H04L67/28 ,  H04L67/2823 ,  H04L67/2857 ,  H04L67/42

Abstract: A managed container may be configured to manage enterprise applications, manage enterprise information stored on a device, manage a protected storage area used by the managed container to store and reference the enterprise applications during execution, and manage a database storing enterprise rules related to management of the enterprise applications and the enterprise information. The managed container may communicate with an application gateway server to control download and update of the enterprise applications, the enterprise information, and the enterprise rules. The application gateway server may be coupled to a backend enterprise application. At least one of the enterprise applications may be configured to execute in conjunction with the backend enterprise application according to at least one of the enterprise rules, and is configured to, according to another one of the enterprise rules, manage the enterprise information associated with the backend enterprise application.

Abstract translation: 管理容器可以被配置为管理企业应用程序，管理存储在设备上的企业信息，管理受管理容器使用的受保护存储区域，以在执行期间存储和引用企业应用程序，并且管理存储与管理容器有关的企业规则的数据库 企业应用和企业信息。 管理容器可以与应用网关服务器通信，以控制企业应用的下载和更新，企业信息和企业规则。 应用网关服务器可以耦合到后端企业应用。 企业应用中的至少一个可以被配置为根据至少一个企业规则与后端企业应用一起执行，并且被配置为根据另一个企业规则来管理与 后端企业应用。