| 发明名称 | Access control to files based on source information | ||
| 摘要 | The present invention is a security tool for protection of data on a mobile computing device. The security tool provides a plurality of security policies to be enforced based on source information for the data and a location associated with a network environment in which a mobile device is operating. The security tool may be either located at the mobile computing device or at the server. The security tool includes a file access module for determining whether files are visible or accessible. The file access module comprises a tag generator, an association module, and a policy enforcement module. The tag generator creates source information for the file being accessed and the policy enforcement module determines what actions, if any, can be performed on the file and under what conditions such as location and network environment, type of file and other factors. | ||
| 申请公布号 | US9197668(B2) | 申请公布日期 | 2015.11.24 |
| 申请号 | US200611330530 | 申请日期 | 2006.01.11 |
| 申请人 | NOVELL, INC. | 发明人 | Boucher Peter;Wright Michael;Cranny Tim;Nault Gabe;Smith Merrill |
| 分类号 | H04L29/00;H04L29/06;G06F21/62;H04L9/32 | 主分类号 | H04L29/00 |
| 代理机构 | King & Schickli, PLLC | 代理人 | King & Schickli, PLLC |
| 主权项 | 1. A method for making data accessible by a mobile computing device, comprising: determining one of a plurality of network environments in which the mobile computing device is operating without regard to a physical geographic location of the mobile computing device; receiving a request to access a file; determining source information for the file including identifying privilege information relating to data in the file, wherein the privilege information defines specific access control limitations on the file including the limitations of whether the file can be stored and/or viewed on the mobile computing device and what persons have access rights to the file, wherein the identifying privilege information includes identifying a group or groups of persons with whom a user requesting to access the file is associated; controlling access to the data in the file based on the determined one network environment in which the mobile computing device is operating and the determined source information for the file; and allowing access to the data in the file provided only if the privilege information satisfies a predetermined security policy for the determined one network environment. | ||
| 地址 | Provo UT US | ||