P
USRE46083EExpiredUtilityPatentIndex 52

System and method for handling data transfers

Assignee: BLACKBERRY LTDPriority: Apr 30, 2004Filed: Jan 24, 2014Granted: Jul 26, 2016
Est. expiryApr 30, 2024(expired)· nominal 20-yr term from priority
Inventors:LITTLE HERBERT ANTHONYADAMS NEIL PATRICKKIRKUP MICHAEL GRANT
H04L 51/14H04L 12/5855H04L 12/5895H04M 7/0078H04M 2203/609H04L 63/105H04L 63/04H04W 12/02H04M 3/205H04W 12/08H04L 51/214H04L 51/58H04W 12/30H04W 12/63H04L 63/107H04L 63/0428H04L 51/04H04W 12/37H04W 12/033
52
PatentIndex Score
0
Cited by
429
References
36
Claims

Abstract

Systems and methods for managing data transfers between a secure location and a less secure location. A data transfer checker operating on a mobile device determines whether an attempted data transfer between two locations is permitted. If it is not permitted, then the data transfer is prevented and the user may be notified of the data transfer prevention.

Claims

exact text as granted — not AI-modified
What is claimed is: 
     
       1. A method of handling data transfers on a device, comprising:
 receiving, from an application that accesses data associated with a first location, a request to open a connection with a second location;   retrieving, from a data store on the device, one or more data transfer settings responsive to receiving the request;   wherein the one or more data transfer settings are indicative of a security-related policy for data transfers associated with the first location; and   determining whether to permit the request or not permit the request based upon the one or more data transfer settings.   
     
     
       2. The method of  claim 1 , wherein the first location comprises a server, wherein the second location comprises a server, and wherein the request is to open the connection via a network. 
     
     
       3. The method of  claim 1 , wherein the application is a first application, wherein the second location comprises a second application, wherein the request is to open the connection for Inter-Process Communication (IPC) from the first application to the second application. 
     
     
       4. The method of  claim 1 , wherein the determining comprises using a level of security associated with the first location, and using a level of security associated with the second location. 
     
     
       5. The method of  claim 1 , wherein receiving the request comprises receiving a request to transfer data from the application running on the device to another application on the device to another device. 
     
     
       6. The method of  claim 1 , wherein receiving the request comprises receiving a request to transfer data from the device to another device. 
     
     
       7. The method of  claim 1 , further comprising:
 receiving the one or more data transfer settings from a server via a wireless network.   
     
     
       8. A device, comprising:
 a data store that stores a data transfer setting, wherein the data transfer setting is indicative of a security-related policy for data transfers associated with a first location; and;   a processor configured to performs operations comprising:
 receiving, from an application that accesses data associated with the first location, a request to open a connection with a second location; 
 retrieving, from the data store, the data transfer setting responsive to receiving the request; and 
 determining whether to permit the request or not permit the request based upon the data transfer setting. 
   
     
     
       9. The device of  claim 8 , wherein the first location comprises a server, wherein the second location comprises a server, and wherein the request is to open the connection via a network. 
     
     
       10. The device of  claim 8 , wherein the application is a first application, wherein the second location comprises a second application, wherein the request is to open the connection for Inter-Process Communication (IPC) from the first application to the second application. 
     
     
       11. The device of  claim 8 , wherein the determining comprises using a level of security associated with the first location, and using a level of security associated with the second location. 
     
     
       12. The device of  claim 8 , wherein receiving the request comprises receiving a request to transfer data from the application running on the device to another application on the device. 
     
     
       13. The device of  claim 8 , wherein receiving the request comprises receiving a request to transfer data from the device to another device. 
     
     
       14. The device of  claim 8 , the operations further comprising:
 receiving the data transfer setting from a server via a wireless network; and   storing the data transfer setting in the data store.   
     
     
       15. A computer storage device encoded with a computer program, the program comprising instructions that when executed by a communication device cause the communication device to perform operations comprising:
 receiving, from an application that accesses data associated with a first location, a request to open a connection with a second location;   retrieving, in response to receiving the request, once or more data transfer settings, which are indicative of a security-related policy for data transfers associated with the first location; and   determining whether to permit the request or not permit the request based upon the one or more data transfer settings.   
     
     
       16. The computer storage device of  claim 15 , wherein the first location comprises a server, wherein the second location comprises a server, and wherein the request is to open the connection via a network. 
     
     
       17. The computer storage device of  claim 15 , wherein the application is a first application, wherein the second location comprises a second application, wherein the request is to open the connection for Inter-Process Communication (IPC) from the first application to the second application. 
     
     
       18. The computer storage device of  claim 15 , wherein the determining comprises using a level of security associated with the first location, and using a level of security associated with the second location. 
     
     
       19. The computer storage device of  claim 15 , wherein receiving the request comprises receiving a request to transfer data from the application running on the communication device to another application on the communication device. 
     
     
       20. The computer storage device of  claim 15 , wherein receiving the request comprises receiving a request to transfer data from the communication device to another communication device. 
     
     
       21. The computer storage device of  claim 15 , the operations further comprising:
 receiving the one or more data transfer settings from a server via a wireless network.   
     
     
       22. A method of handling data transfers on a device, comprising:
 receiving a request to transfer data from a first application on the device to a second application on the device, the first application capable of accessing data associated with a first network and the second application capable of accessing data associated with a second network;   determining that the requested data transfer from the first application to the second application violates a security-related policy associated with the first application; and   prohibiting the requested data transfer in response to the determining.   
     
     
       23. The method of claim 22, wherein the first network has a first security level higher than a second security level of the second network. 
     
     
       24. The method of claim 22, wherein the data transfer includes pasting data cut or copied from the first application to the second application or communicating using Inter-Process Communication (IPC) between the first application and the second application. 
     
     
       25. The method of claim 22, wherein prohibiting the data transfer comprises preventing the first application from establishing a connection with the first network while the second application is connected with the second network or preventing transfer of the data between a first service book associated with the first application and a second service book associated with the second application. 
     
     
       26. The method of claim 22, wherein the determining is based on a level of security associated with the first application and a level of security associated with the second application. 
     
     
       27. A device, comprising:
 one or more processors configured to:
 receive a request to transfer data from a first application on the device to a second application on the device, the first application capable of accessing data associated with a first network and the second application capable of accessing data associated with a second network; 
 determine that the requested data transfer from the first application to the second application violates a security-related policy associated with the first application; and 
 prohibit the requested data transfer in response to the determination that the requested data transfer violates the security-related policy. 
   
     
     
       28. The device of claim 27, wherein the first network has a first security level higher than a second security level of the second network. 
     
     
       29. The device of claim 27, wherein the data transfer includes pasting data cut or copied from the first application to the second application or communicating using Inter-Process Communication (IPC) between the first application and the second application. 
     
     
       30. The device of claim 27, wherein the one or more processors configured to prohibit the data transfer comprises the one or more processors configured to prevent the first application from establishing a connection with the first network while the second application is connected with the second network or prevent transfer of the data between a first service book associated with the first application and a second service book associated with the second application. 
     
     
       31. The device of claim 27, wherein the determination is based on a level of security associated with the first application and a level of security associated with the second application. 
     
     
       32. A computer program product encoded on a non-transitory medium, the product comprising computer readable instructions for causing one or more processors to perform operations comprising:
 receiving a request to transfer data from a first application on the device to a second application on the device, the first application capable of accessing data associated with a first network and the second application capable of accessing data associated with a second network;   determining that the requested data transfer from the first application to the second application violates a security-related policy associated with the first application; and   prohibiting the requested data transfer in response to the determining.   
     
     
       33. The computer program product of claim 32, wherein the first network has a first security level higher than a second security level of the second network. 
     
     
       34. The computer program product of claim 32, wherein the data transfer includes pasting data cut or copied from the first application to the second application or communicating using Inter-Process Communication (IPC) between the first application and the second application. 
     
     
       35. The computer program product of claim 32, wherein the prohibiting the data transfer comprises preventing the first application from establishing a connection with the first network while the second application is connected with the second network or preventing transfer of the data between a first service book associated with the first application and a second service book associated with the second application. 
     
     
       36. The computer program product of claim 32, wherein the determining is based on a level of security associated with the first application and a level of security associated with the second application.

Cited by (0)

No later patents cite this yet.

References (0)

No backward citations on record.