P
USRE44746EExpiredUtilityPatentIndex 84

System and method for handling data transfers

Assignee: ADAMS NEIL PATRICKPriority: Apr 30, 2004Filed: Jun 7, 2012Granted: Feb 4, 2014
Est. expiryApr 30, 2024(expired)· nominal 20-yr term from priority
Inventors:ADAMS NEIL PATRICKLITTLE HERBERT ANTHONYKIRKUP MICHAEL GRANT
H04L 51/214H04L 51/58H04W 12/30H04W 12/63H04L 63/105H04L 51/04H04M 7/0078H04M 3/205H04L 63/107H04M 2203/609H04L 63/0428H04W 12/37H04W 12/033H04L 63/04H04W 12/08H04W 12/02
84
PatentIndex Score
6
Cited by
322
References
43
Claims

Abstract

Systems and methods for managing data transfers between a secure location and a less secure location. A data transfer checker operating on a mobile device determines whether an attempted data transfer between two locations is permitted. If it is not permitted, then the data transfer is prevented and the user may be notified of the data transfer prevention.

Claims

exact text as granted — not AI-modified
What is claimed is: 
     
       1. A method of handling data transfers on a device, comprising:
 receiving, from an application that accesses data associated with a first location, a request to open a connection with a second location; 
 retrieving, from a data store on the device, one or more data transfer settings responsive to receiving the request; 
 wherein the one or more data transfer settings are indicative of a security-related policy for data transfers, the security-related policy being associated with the first location; and 
 determining whether to permit the request or not permit the request based upon the one or more data transfer settings. 
 
     
     
       2. The method of  claim 1 , wherein the first location comprises a server, wherein the second location comprises a server, and wherein the request is to open the connection via a network. 
     
     
       3. The method of  claim 1 , wherein the application is a first application, wherein the second location comprises a second application, wherein the request is to open the connection for Inter-Process Communication (IPC) from the first application to the second application. 
     
     
       4. The method of  claim 1 , wherein the determining comprises using a level of security associated with the first location, and using a level of security associated with the second location. 
     
     
       5. The method of  claim 1 , wherein receiving the request comprises receiving a request to transfer data from the application running on the device to another application on the device. 
     
     
       6. The method of  claim 1 , wherein receiving the request comprises receiving a request to transfer data from the device to another device. 
     
     
       7. The method of  claim 1 , further comprising:
 receiving the one or more data transfer settings from a server via a wireless network. 
 
     
     
       8. A device, comprising:
 a data store that stores a data transfer setting, wherein the data transfer setting is indicative of a security-related policy for data transfers, the security-related policy being associated with a first location; and 
 a processor configured to perform operations comprising:
 receiving, from an application that accesses data associated with the first location, a request to open a connection with a second location; 
 retrieving, from the data store, the data transfer setting responsive to receiving the request; and 
 determining whether to permit the request or not permit the request based upon the data transfer setting. 
 
 
     
     
       9. The device of  claim 8 , wherein the first location comprises a server, wherein the second location comprises a server, and wherein the request is to open the connection via a network. 
     
     
       10. The device of  claim 8 , wherein the application is a first application, wherein the second location comprises a second application, wherein the request is to open the connection for Inter-Process Communication (IPC) from the first application to the second application. 
     
     
       11. The device of  claim 8 , wherein the determining comprises using a level of security associated with the first location, and using a level of security associated with the second location. 
     
     
       12. The device of  claim 8 , wherein receiving the request comprises receiving a request to transfer data from the application running on the device to another application on the device. 
     
     
       13. The device of  claim 8 , wherein receiving the request comprises receiving a request to transfer data from the device to another device. 
     
     
       14. The device of  claim 8 , the operations further comprising:
 receiving the data transfer setting from a server via a wireless network; and 
 storing the data transfer setting in the data store. 
 
     
     
       15. A computer storage device encoded with a computer program, the program comprising instructions that when executed by a communication device cause the communication device to perform operations comprising:
 receiving, from an application that accesses data associated with a first location, a request to open a connection with a second location; 
 retrieving, in response to receiving the request, one or more data transfer settings, which are indicative of a security-related policy for data transfers, the security-related policy being associated with the first location; and 
 determining whether to permit the request or not permit the request based upon the one or more data transfer settings. 
 
     
     
       16. The computer storage device of  claim 15 , wherein the first location comprises a server, wherein the second location comprises a server, and wherein the request is to open the connection via a network. 
     
     
       17. The computer storage device of  claim 15 , wherein the application is a first application, wherein the second location comprises a second application, wherein the request is to open the connection for Inter-Process Communication (IPC) from the first application to the second application. 
     
     
       18. The computer storage device of  claim 15 , wherein the determining comprises using a level of security associated with the first location, and using a level of security associated with the second location. 
     
     
       19. The computer storage device of  claim 15 , wherein receiving the request comprises receiving a request to transfer data from the application running on the communication device to another application on the communication device. 
     
     
       20. The computer storage device of  claim 15 , wherein receiving the request comprises receiving a request to transfer data from the communication device to another communication device. 
     
     
       21. The computer storage device of  claim 15 , the operations further comprising:
 receiving the one or more data transfer settings from a server via a wireless network. 
 
     
     
       22. A method of handling data transfers on a device, comprising:
 receiving, from an application that accesses data associated with a first location, a request to open a connection with a second location, wherein the request includes at least one of copying, cutting, or pasting data;   retrieving, from a data store on the device, one or more data transfer settings responsive to receiving the request;   wherein the one or more data transfer settings are indicative of a security-related policy for data transfers, the security-related policy being associated with the first location; and   determining whether to permit the request or not permit the request based upon the one or more data transfer settings.   
     
     
       23. A method of handling data transfers on a device, comprising:
 receiving a request associated with transferring data between a first application and a second application, the first application accessing data associated with a first network and the second application accessing data associated with a second network;   retrieving, from memory of the device, one or more data transfer settings in response to the request, the one or more data transfer settings indicative of a security-related policy for data transfers, the security-related policy associated with the first network; and   determining whether to execute the request based on the one or more data transfer settings.   
     
     
       24. The method of claim 23, wherein the request includes a request to cut data or copy data from the first application. 
     
     
       25. The method of claim 23, wherein the first network has a first security level higher than a second security level of the second network. 
     
     
       26. The method of claim 23, further comprising:
 determining that the request includes a request to transfer data from the first application to the second application;   determining a transfer from the first application to the second application violates the security-related policy; and   prohibiting the data transfer in response to the violation.   
     
     
       27. The method of claim 26, wherein the data transfer includes pasting data cut or copied from the first application to the second application or communicating using Inter-Process Communication (IPC) between the first application and the second application. 
     
     
       28. The method of claim 26, wherein prohibiting the data transfer comprises preventing the first application from establishing a connection with the first network while the second application is connected with the second network or preventing transfer of the data between a first service book associated with the first application and a second service book associated with the second application. 
     
     
       29. The method of claim 23, wherein determining whether to execute the request is further based on a level of security associated with the first application and a level of security associated with the second application. 
     
     
       30. A device, comprising:
 a data store that stores one or more data transfer settings indicative of a security-related policy for data transfers, the security-related policy associated with the first network; and   a processor configured to:
 receive a request associated with transferring data between a first application and a second application, the first application accessing data associated with a first network and the second application accessing data associated with a second network; 
 retrieve, from the data store, the one or more data transfer settings in response to the request; and 
 determine whether to execute the request based on the one or more data transfer settings. 
   
     
     
       31. The device of claim 30, wherein the request includes a request to cut data or copy data from the first application. 
     
     
       32. The device of claim 30, wherein the first network has a first security level higher than a second security level of the second network. 
     
     
       33. The device of claim 30, the device further configured to:
 determine that the request includes a request to transfer data from the first application to the second application;   determine a transfer from the first application to the second application violates the security-related policy; and   prohibit the data transfer in response to the violation.   
     
     
       34. The device of claim 33, wherein the data transfer includes pasting data cut or copied from the first application to the second application or communicating using Inter-Process Communication (IPC) between the first application and the second application. 
     
     
       35. The device of claim 33, wherein prohibiting the data transfer comprises preventing the first application from establishing a connection with the first network while the second application is connected with the second network or preventing transfer of the data between a first service book associated with the first application and a second service book associated with the second application. 
     
     
       36. The device of claim 30, wherein determining whether to execute the request is further based on a level of security associated with the first application and a level of security associated with the second application. 
     
     
       37. A computer program product encoded on a tangible, non-transitory storage medium, the product comprising computer readable instructions for causing one or more processors to perform operations comprising:
 receiving a request associated with transferring data between a first application and a second application, the first application accessing data associated with a first network and the second application accessing data associated with a second network;   retrieving, from memory of the device, one or more data transfer settings in response to the request, wherein the one or more data transfer settings are indicative of a security-related policy for data transfers, the security-related policy associated with the first network; and   determining whether to execute the request based on the one or more data transfer settings.   
     
     
       38. The computer program product of claim 37, wherein the request includes a request to cut data or copy data from the first application. 
     
     
       39. The computer program product of claim 37, wherein the first network has a first security level higher than a second security level of the second network. 
     
     
       40. The computer program product of claim 37, the operations further comprising:
 determining that the request includes a request to transfer data from the first application to the second application;   determining a transfer from the first application to the second application violates the security-related policy; and   prohibiting the data transfer in response to the violation.   
     
     
       41. The computer program product of claim 40, wherein the data transfer includes pasting data cut or copied from the first application to the second application or communicating using Inter-Process Communication (IPC) between the first application and the second application. 
     
     
       42. The computer program product of claim 40, wherein prohibiting the data transfer comprises preventing the first application from establishing a connection with the first network while the second application is connected with the second network or preventing transfer of the data between a first service book associated with the first application and a second service book associated with the second application. 
     
     
       43. The computer program product of claim 37, wherein determining whether to execute the request is further based on a level of security associated with the first application and a level of security associated with the second application.

Cited by (0)

No later patents cite this yet.

References (0)

No backward citations on record.