公开(公告)号：WO2015026389A3

公开(公告)日：2015-07-16

申请号：PCT/US2013078004

申请日：2013-12-27

Applicant: SEQUITUR LABS INC ,  HENDRICK MICHAEL THOMAS ,  REED MARK ,  SHCAFFNER DAN ,  ATTFIELD PHILIP ,  NARVAEZ JULIA ,  CHENARD PAUL

Inventor： HENDRICK MICHAEL THOMAS ,  REED MARK ,  SHCAFFNER DAN ,  ATTFIELD PHILIP ,  NARVAEZ JULIA ,  CHENARD PAUL

IPC: H04B5/00

CPC classification number: G06F21/629 ,  G06F21/82 ,  G06F2221/2111 ,  G06F2221/2149 ,  H04L67/125 ,  H04M1/72577 ,  H04M2250/04 ,  H04W4/008 ,  H04W4/021 ,  H04W4/043 ,  H04W4/14 ,  H04W12/08

Abstract: Systems and methods for using Near Field Communications1 (NFC) m\d other short-range wireless communications technologies in mobile device management and security. Uses of NFC devices of both passive and active types are presented herein, as "policy control points" (PCPs) within a policy-based system for mobile handset management, in situations where granular control of handset capabilities is required. Certain location-based, as well as non-location-specific variants of the invention are presented as examples.

Abstract translation: 使用近场通信1（NFC）在移动设备管理和安全方面采用其他短距离无线通信技术的系统和方法。 被动和主动类型的NFC设备的使用在这里被呈现在用于移动手持机管理的基于策略的系统中的“策略控制点”（PCP），在需要对手机能力进行细粒度控制的情况下。 作为示例呈现了本发明的某些基于位置的以及非位置特定变体。

公开(公告)号：WO2016010602A3

公开(公告)日：2016-03-17

申请号：PCT/US2015027561

申请日：2015-04-24

Applicant: SEQUITUR LABS INC

Inventor： ATTFIELD PHILIP ,  SCHAFFNER DANIEL ,  HENDRICK MICHAEL THOMAS

IPC: G06F17/00

CPC classification number: H04W12/08 ,  G06F21/44 ,  G06F21/57 ,  G06F21/62 ,  H04L63/0853 ,  H04L63/20

Abstract: Systems and methods are described for utilizing a secure environment on a mobile computing device for applying policy-based decision management in response to access requests from untrusted areas. A policy decision processor (PDP) within the secure environment provides a policy decision in response to an access query. A decision cache within the secure environment can be used to store policy decisions for faster resolution of access requests. Policy enforcement points (PEPs) are placed between external devices that are trying to access the device and the secured environment, where the PEPs are used to enforce the policy-based decision, and can be located either inside or outside the secure environment. Decision certificates can be formulated using validity information and timestamps, and used for validation policy certificates. Memory in non-secure areas can also be marked (colored) for use in performing trusted operations in order to optimize system resource usage.

Abstract translation: 描述了用于在移动计算设备上利用安全环境的系统和方法，用于响应于来自不受信任区域的访问请求而应用基于策略的决策管理。 安全环境内的策略决策处理器（PDP）提供响应于访问查询的策略决定。 安全环境中的决策缓存可用于存储策略决定以更快地解决访问请求。 策略执行点（PEP）放置在试图访问设备的外部设备和安全环境之间，PEP用于执行基于策略的决策，并且可以位于安全环境内部或外部。 可以使用有效性信息和时间戳制定决策证书，并用于验证策略证书。 非安全区域中的内存也可以被标记（彩色），用于执行信任操作，以优化系统资源的使用。