What technology area does this patent fall under?

Primary CPC classification H04L63/0853. Mapped technology areas include Electricity.

When was this patent published?

Publication date Thu Nov 17 2016 00:00:00 GMT+0000 (Coordinated Universal Time) (A1). Legal status and post-grant events are not shown on this page.

What related patents are in patentsdb?

We list 2 related publications on this page (citations in our corpus or others sharing the same primary CPC).

Secondary device as key for authorizing access to resources

US2016337347A1 · US · A1

Patent metadata
Field	Value
Publication number	US-2016337347-A1
Application number	US-201615220331-A
Country	US
Kind code	A1
Filing date	Jul 26, 2016
Priority date	Mar 15, 2013
Publication date	Nov 17, 2016
Grant date	—

How to read this patent

A practical reading order for non-experts. Skip the full description unless you need deep technical detail.

Title
What the patent document calls the invention.
Abstract
A short plain-language summary of the technical disclosure.
Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
Key dates
Filing, priority, publication, and grant dates set the timeline.
First independent claim
The legal scope of protection — read this for what is actually claimed.
CPC / IPC classifications
Technology tags used to group this patent with similar filings.
Citations and related patents
Prior art links and similar publications in this corpus.

Abstract

Official abstract text for this publication.

A secondary device may be used to provide access to resources to a primary device. Upon receiving an authorization indication at a device, a registration key based on the authorization indication, a user identifier, and a property of the device may be created. Upon determining whether access to at least one resource is permitted according to the registration key the device may be permitted to access the at least one resource.

First claim

Opening claim text (preview).

What is claimed is: 1 . A method, comprising: causing a resource to be encrypted to create an encrypted version of the resource, the encrypted version of the resource being configured to be inaccessible by a primary client device, the encrypted version of the resource being configured to be decrypted using an authorization credential to create an unencrypted version of the resource, and the unencrypted version of the resource being configured to be accessible by the primary client device; causing the encrypted version of the resource to be provided to the primary client device; determining that the primary client device is authorized to access the unencrypted version of the resource based at least in part on a first distribution rule, the first distribution rule being associated with the primary client device; determining that a secondary client device is authorized to provide the primary client device with the unencrypted version of the resource based at least in part on a second distribution rule, the second distribution rule being associated with the secondary client device; and, causing the authorization credential to be provided to the secondary client device. 2 . The method of claim 1 , further comprising: identifying a request by the primary client device to access the resource. 3 . The method of claim 1 , further comprising: identifying a request by the secondary client device for authorization to provide the primary client device with the unencrypted version of the resource. 4 . The method of claim 1 , wherein the authorization credential comprises a decryption key. 5 . The method of claim 1 , wherein the first distribution rule specifies that the primary client device must be physically located within a particular threshold distance of the secondary client device. 6 . The method of claim 1 , wherein the first distribution rule specifies that the primary client device must be communicatively coupled to the secondary client device through a particular network. 7 . A non-transitory computer readable medium comprising executable instructions, which when executed by at least one processor, cause a computing device to at least: cause a resource to be encrypted to create an encrypted version of the resource, the encrypted version of the resource being configured to be inaccessible by a primary client device, the encrypted version of the resource being configured to be decrypted using an authorization credential to create an unencrypted version of the resource, and the unencrypted version of the resource being configured to be accessible by the primary client device; cause the encrypted version of the resource to be provided to the primary client device; determine that the primary client device is authorized to access the unencrypted version of the resource based at least in part on a first distribution rule, the first distribution rule being associated with the primary client device; determine that a secondary client device is authorized to provide the primary client device with the unencrypted version of the resource based at least in part on a second distribution rule, the second distribution rule being associated with the secondary client device; and, cause the authorization credential to be provided to the secondary client device. 8 . The non-transitory computer readable medium of claim 7 , further including executable instructions, which when executed by the at least one processor, cause the computing device to: identify a request by the primary client device to access the resource. 9 . The non-transitory computer readable medium of claim 7 , further including executable instructions, which when executed by the at least one processor, cause the computing device to: identify a request by the secondary client device for authorization to provide the primary client device with the unencrypted version of the resource. 10 . The non-transitory computer readable medium of claim 7 , wherein the first distribution rule specifies that the primary client device must comprise at least one of: a particular hardware component, a particular software component, or a particular device configuration. 11 . The non-transitory computer readable medium of claim 10 , further including executable instructions, which when executed by the at least one processor, cause the computing device to: identify information describing at least one aspect of the primary client device, the at least one aspect comprising at least one of: a hardware component of the primary client device, a software component of the primary client device, or a particular device configuration of the primary client device. 12 . The non-transitory computer readable medium of claim 7 , wherein the second distribution rule specifies that the secondary client device must comprise at least one of: a particular hardware component, a particular software component, or a particular device configuration. 13 . The non-transitory computer readable medium of claim 12 , further including executable instructions, which when executed by the at least one processor, cause the computing device to: identify information describing at least one aspect of the secondary client device, the at least one aspect comprising at least one of: a hardware component of the secondary client device, a software component of the secondary client device, or a particular device configuration of the secondary client device. 14 . A computing device, including: at least one processor; and, at least one memory comprising executable instructions, which when executed by the at least one processor, cause the computing device to at least: cause a resource to be encrypted to create an encrypted version of the resource, the encrypted version of the resource being configured to be inaccessible by a primary client device, the encrypted version of the resource being configured to be decrypted using an authorization credential to create an unencrypted version of the resource, and the unencrypted version of the resource being configured to be accessible by the primary client device; cause the encrypted version of the resource to be provided to the primary client device; determine that the primary client device is authorized to access the unencrypted version of the resource based at least in part on a first distribution rule, the first distribution rule being associated with the primary client device; determine that a secondary client device is authorized to provide the primary client device with the unencrypted version of the resource based at least in part on a second distribution rule, the second distribution rule being associated with the secondary client device; and, cause the authorization credential to be provided to the secondary client device. 15 . The computing device of claim 14 , further including executable instructions, which when executed by the at least one processor, cause the computing device to: identify a request for the primary client device to access the resource. 16 . The computing device of claim 14 , further including executable instructions, which when executed by the at least one processor, cause the computing device to: identify a request by the secondary client device for authorization to provide the primary client device with the unencrypted version of the resource. 17 . The computing device of claim 14 , wherein the first distribution rule specifies that the primary client device must be operated by an authorized user based at least in part on a user credential provided by a user of the pri

Assignees

Airwatch Llc

Inventors

Classifications

H04L63/0823
using certificates (cryptographic mechanisms or cryptographic arrangements for entity authentication involving certificates H04L9/3263) · CPC title
H04L63/0428
wherein the data content is protected, e.g. by encrypting or encapsulating the payload · CPC title
H04L63/107
wherein the security policies are location-dependent, e.g. entities privileges depend on current location or allowing specific operations only from locally connected terminals · CPC title
H04L63/0853Primary
using an additional device, e.g. smartcard, SIM or a different communication terminal (cryptographic mechanisms or cryptographic arrangements for entity authentication involving additional secure or trusted devices H04L9/3234) · CPC title
H04L63/062
for key distribution, e.g. centrally by trusted party (cryptographic mechanisms or cryptographic arrangements for key distribution involving a central third party H04L9/0819) · CPC title

Patent family

Related publications grouped by family.

View patent family 51534962

External sources

Frequently asked questions

Answers are generated from the same data shown on this page.

What does patent US2016337347A1 cover?: A secondary device may be used to provide access to resources to a primary device. Upon receiving an authorization indication at a device, a registration key based on the authorization indication, a user identifier, and a property of the device may be created. Upon determining whether access to at least one resource is permitted according to the registration key the device may be permitted to a…
Who is the assignee on this patent?: Airwatch Llc
What technology area does this patent fall under?: Primary CPC classification H04L63/0853. Mapped technology areas include Electricity.
When was this patent published?: Publication date Thu Nov 17 2016 00:00:00 GMT+0000 (Coordinated Universal Time) (A1). Legal status and post-grant events are not shown on this page.
What related patents are in patentsdb?: We list 2 related publications on this page (citations in our corpus or others sharing the same primary CPC).