主权项 |
1. A computer-implemented method for establishing secure mobile communications, the method comprising:
establishing a virtual private network (VPN) between a mobile device and a server, wherein the mobile device includes at least a first application and a second application; associating a data port with the second application and the VPN; issuing a certificate to the second application; signing a data packet from the second application with a private key, the private key being associated with the certificate issued to the second application; blocking a transmission of at least a portion of data between the first application and the second application on the mobile device and the server; determining whether the first application on the mobile device is a trusted application or an untrusted application, wherein an application is determined to be a trusted application if a data port is associated with the application and the VPN, and a data packet from the application is signed with a private key, the private key being associated with a certificate issued to the application; upon determining the first application is an untrusted application, continuing to block the transmission of at least a portion of data between the untrusted application and the server; determining whether the second application on the mobile device is a trusted application or an untrusted application; and upon determining the second application is a trusted application, transmitting, via the data port, the signed data packet over the VPN. |