Patent Grant
12019750
The present technology relates generally to network-based application distribution systems and more specifically to enhanced heuristics for scheduling updates and for batching notifications and authorization requests involving updates.
Online commerce using is quickly becoming a ubiquitous part of the modern economy. Additionally, computing devices have become much more compact, mobile, and streamlined. Along with these advances, consumers have grown accustomed to media and software applications that are intelligently designed, easily accessible, and hassle-free to use. Likewise, consumers have come to expect that the online marketplace will be streamlined and user-friendly as well.
An example of an online marketplace is a network-based application distribution system. Such a market offers software application from software developers as free and paid downloads. Downloaded applications can also be updated by software developers from time to time to fix bugs, update settings, add additional content and features, etc. However, many known application updating and authorization protocols are non-intuitive, tedious, or otherwise not user-friendly. Indeed, system operators must balance practical requirements with the level of hassle-free design and user-friendliness that consumers expect.
For example, in an application distribution system, system operators must ensure that users are who they claim to be before making a purchase or updating an application; otherwise, a fraudulent user or a careless user (i.e. an infant mashing buttons) can make purchases, change settings, or otherwise wreak havoc to a user's account or device. Therefore, system administrators must put authorization checks in place; however, these requests for authorization should not be so frequent or burdensome so as to discourage use of an application distribution system.
Also, when operating an application distribution system, it is ideal that users apply software updates in a timely manner. For example, a quick application update with a patch to fix a minor problem can prevent the old software from crashing a device. Indeed, outdated applications on client devices having software bugs can impart very large maintenance costs to an application distribution system that supports those applications and their updates. Consequently, it is in the best interest of the administrators of the application distribution system that users of the applications update them as soon as updates and bug fixes become available to them. On the other hand, the same administrators do not want to pester their users fearing the negative consequences of overwhelming the user or seemingly monitoring user activity.
Likewise, while keeping the general preference for users to update applications when updates become available, it is in the best interest of the application distribution system to keep users' cellular carrier costs low so as not to discourage their use of the system.
Many users do not bother to check their device for available updates and must be prompted; however, the users are oftentimes prompted to initiate updates at times which may cause them to either incur massive cellular charges, wait a very long time over a slow connection, or shift their attention away from a dangerous or business-sensitive task, i.e. while driving or while drafting an important email. Additionally, once a user is prompted to download and install updates and the user accepts, it is oftentimes the case that many of the updates require a user to accept the terms of a notification, chose update features, and authorize the installation of the updates. When a large number of updates are being installed at one time, these notifications and requests for authorization can become tedious.
Additional features and advantages of the disclosure will be set forth in the description which follows, and in part will be obvious from the description, or can be learned by practice of the herein disclosed principles. The features and advantages of the disclosure can be realized and obtained by means of the instruments and combinations particularly pointed out in the appended claims. These and other features of the disclosure will become more fully apparent from the following description and appended claims, or can be learned by practice of the principles set forth herein.
The present technology provides systems, computer-readable media, devices and methods for server-based user authentication, scheduling when a user receives update notifications, and batching notifications together. These and other features of the present technology provide users with a less tedious application update experience by streamlining the process and delivering the update notifications and prompts at a time when the users can easily dispatch the updates.
Some embodiments of the present technology involve server-side authentication of user accounts by using multiple authentication tokens. Some embodiments of the present technology involve a server sending users updates for applications installed on their devices when those updates become available. Some other embodiments involve sending the user an update statement that an update is available for download. Some embodiments of the present technology involve batching and sending notifications or requests for authentications that are required for each application update that is currently ready for download.
Some embodiments of the present technology involve only prompting users that updates are available upon determining that a threshold amount of updates are available or by determining that a requisite amount of time has passed with an update pending. Some embodiments of the present technology involve prompting a user when the threshold is reached. Some embodiments involve waiting to prompt users that updates are available until the client device becomes connected to an adequately efficient network, or a network whose use does not result in financial obligations to the user.
In response to users accepting the terms of the batched notifications and adequately authenticating themselves, some embodiments of the present technology involve downloading updates only when network conditions meet system or user requirements. Some embodiments of the present technology involve only downloading updates upon a device being connected to a Wi-Fi network. Some embodiments of the present technology involve a tiered scheme of network checks that attempts to optimize update download efficiency.
Some embodiments of the present technology involve enforcing situational settings that avoid update prompts from interrupting user's current tasks or from distracting a user while performing certain tasks, i.e. driving. Some embodiments of the present technology involve a user profile and an interface for setting user preferences and situational settings.
In order to describe the manner in which the above-recited and other advantages and features of the disclosure can be obtained, a more particular description of the principles briefly described above will be rendered by reference to specific embodiments thereof which are illustrated in the appended drawings. Understanding that these drawings depict only exemplary embodiments of the disclosure and are not therefore to be considered to be limiting of its scope, the principles herein are described and explained with additional specificity and detail through the use of the accompanying drawings in which:
Various embodiments of the disclosure are discussed in detail below. While specific implementations are discussed, it should be understood that this is done for illustration purposes only. A person skilled in the relevant art will recognize that other components and configurations may be used without parting from the spirit and scope of the disclosure. The present disclosure addresses the need in the art for a system for improving the efficiency and convenience of updating software onto a computing device by using improved notification, prompting and authorization heuristics.
A brief introductory description of a basic general purpose system or computing device, which can be employed to practice the concepts is illustrated in
With reference to
The system bus 110 may be any of several types of bus structures including a memory bus or memory controller, a peripheral bus, and a local bus using any of a variety of bus architectures. A basic input/output (BIOS) stored in ROM 140 or the like, may provide the basic routine that helps to transfer information between elements within the computing device 100, such as during start-up. The computing device 100 further includes storage devices 160 such as a hard disk drive, a magnetic disk drive, an optical disk drive, tape drive or the like. The storage device 160 can include software modules 162, 164, 166 for controlling the processor 120. Other hardware or software modules are contemplated. The storage device 160 is connected to the system bus 110 by a drive interface. The drives and the associated computer readable storage media provide nonvolatile storage of computer readable instructions, data structures, program modules and other data for the computing device 100. In one aspect, a hardware module that performs a particular function includes the software component stored in a non-transitory computer-readable medium in connection with the necessary hardware components, such as the processor 120, bus 110, display 170, and so forth, to carry out the function. The basic components are known to those of skill in the art and appropriate variations are contemplated depending on the type of device, such as whether the device 100 is a small, handheld computing device, a desktop computer, or a computer server.
Although the exemplary embodiment described herein employs the hard disk 160, it should be appreciated by those skilled in the art that other types of computer readable media which can store data that are accessible by a computer, such as magnetic cassettes, flash memory cards, digital versatile disks, cartridges, random access memories (RAMs) 150, read only memory (ROM) 140, a cable or wireless signal containing a bit stream and the like, may also be used in the exemplary operating environment. Non-transitory computer-readable storage media expressly exclude media such as energy, carrier signals, electromagnetic waves, and signals per se.
To enable user interaction with the computing device 100, an input device 190 represents any number of input mechanisms, such as a microphone for speech, a touch-sensitive screen for gesture or graphical input, keyboard, mouse, motion input, speech and so forth. An output device 170 can also be one or more of a number of output mechanisms known to those of skill in the art. In some instances, multimodal systems enable a user to provide multiple types of input to communicate with the computing device 100. The communications interface 180 generally governs and manages the user input and system output. There is no restriction on operating on any particular hardware arrangement and therefore the basic features here may easily be substituted for improved hardware or firmware arrangements as they are developed.
For clarity of explanation, the illustrative system embodiment is presented as including individual functional blocks including functional blocks labeled as a “processor” or processor 120. The functions these blocks represent may be provided through the use of either shared or dedicated hardware, including, but not limited to, hardware capable of executing software and hardware, such as a processor 120, that is purpose-built to operate as an equivalent to software executing on a general purpose processor. For example, the functions of one or more processors presented in
The logical operations of the various embodiments are implemented as: (1) a sequence of computer implemented steps, operations, or procedures running on a programmable circuit within a general use computer, (2) a sequence of computer implemented steps, operations, or procedures running on a specific-use programmable circuit; and/or (3) interconnected machine modules or program engines within the programmable circuits. The system 100 shown in
Having disclosed some components of a computing system, the disclosure now returns to a discussion of improving users' experiences with authenticating identity and receiving notifications and prompts for updating applications that are offered to a user account in an online application distribution store or market for installation on a computing device such as a personal computer, laptop, game console, smart phone, mobile phone, or tablet PC. The approaches set forth herein can improve the efficiency and convenience of updating software onto a computing device by using improved notification, prompting and authorization heuristics. First, a description of an exemplary application distribution system is given.
The broad overview of distribution system 200 includes server side 240 communicating with client side 290 via the Internet 250. As an example, the server side 240 can be represented to the user as an online store for the sale and distribution of applications. A device from client side 290 can communicate with the online store using an application management computer program stored on the device. In other examples, the Internet 250 can be replaced with other communication networks such as computer networks, telephone networks, Ethernet, local area networks, wired networks, wireless networks, and others.
Computing device 260 includes applications 261. Applications 261 can include applications that were purchased from distribution center 210 by a user of computing device 260. To purchase desired applications from distribution center 210, a user logs into user account. Logging into a user account can involve one or more requests for user authentication. Once logged in, the user may select a desired application to purchase. When the user agrees to pay the price of the application, the user's payment information is used to complete the transaction. Once the transaction is completed, the desired application is associated with user account, thus allowing the user to download the desired application and also updates of the desired application. Applications associated with user account can also be updated or re-downloaded onto other devices that are associated with user account. In this example, computing device 260, computing device 270, and computing device 280 are all associated with user account and thus, are configured to receive updates and re-downloads of all applications 281 that have been associated with user account. Moreover, computing device 280 can communicate with computing device 270 to transfer digital data and applications between the two devices. In one example, computing device 280 may be configured to be a central repository containing all applications 281 associated with user account that transfers selected applications to computing device 280, In this specification, the term “application” refers to a copy of a software program or application provided by a software provider. In other examples, other digital products besides software applications and software programs (such as system software, enterprise software, multimedia files, video files, audio files, and image files) on a computing device can also be associated with user account and distributed/re-distributed by distribution center 210.
Distribution center 210, which is coupled to applications database 220, is configured to sell, deliver, and maintain applications from applications database 220. Applications database 220 can be configured to store some or all of the applications available for distribution from server side 240. The applications can be sold, updated, and delivered, i.e. transmitted, to a device in client side 290 through the Internet 250. As such, distribution center 210 represents an online store for applications. For example, applications database 220 can receive a request from distribution center 210 for an application and in response to the request, transmits the requested application to distribution center 210, which subsequently transmits the application to the requesting device. The applications requested may be applications available for purchase or applications previously associated with a user account, i.e. previously purchased or pre-installed applications that have been adopted. In other examples, applications database 220 can directly transmit the requested application to the requesting device.
Users are sometimes prompted with request for authentication before gaining the ability to purchase new media items or applications, change account information, or update existing applications. Accordingly, some embodiments of the present technology involve improved heuristics for authenticating users.
Server-Based Authentication Enforcement
Some embodiments of the present technology involve a server-based approach for authenticating users. Referring again to
In some embodiments, when a user makes a purchase request from the distribution center 210, the authentication module 299 requires that the user enter identification information as well as a password. Upon the receipt of the appropriate authentication information, the distribution center 210 obtains access to the requested item from the applications database 220 and delivers the item to the user. Additionally, the authentication module 299 delivers one or more security tokens to the user, wherein the security tokens serve to provide authentication for future transactions with the distribution center 210.
In some embodiments of the present technology, the authentication module 299 can issue both a strong token to the user and a weak token to the user. In some embodiments of the present technology, a strong token allows a user to make sensitive changes, i.e. financial purchases with the distribution center 210 or changes to user buffing information in a user account without the user needing to provide authentication details again. Also, the strong token has a short expiration period, i.e. fifteen minutes. Verification of the weak token allows the user to perform tasks without the user needing to provide authentication details again, but does not allow the user to make any additional requests that would expose the user to financial liability or that would after his profile. The weak token can provide authorization to perform some interaction with the distribution system when the interaction only requires general, non-sensitive data. For example, in some embodiments of the present technology, a weak token can provide authorization to update an application—assuming the update is free and does not otherwise involve sensitive information or additional user prerequisites, i.e. age requirement. In some embodiments, the weak token can have a longer expiration period, i.e. six months; can be used for any non-financial action with the distribution center 210; and can be renewed upon each new, strong token-authenticated financial transaction. Accordingly, in these embodiments, the authentication module 299 requests validation of either the strong token or weak token from the client side 290 depending on the type of transaction that is subsequently requested. Likewise, in some embodiments, an administrator can change the types of events that require a strong or weak token.
Next, a request is made by the user through their computing device that involves sensitive information 304, such as financial information or private user data. In the method 300 of
According to the method 300 of
Additionally, a number of heuristics are available for making the purchase and update of applications more user-friendly while maintaining a threshold level of security. For example, in some embodiments of the present technology, the authentication module 299 can relax authentication requirements for those users who utilize a self-imposed passcode for deterring unauthorized use of a device. In some aspects of this embodiment, the computing device or server-side device can be programmed by default to utilize relaxed authentication requirements for users that have a passcode needed before operating the device. In one example, the computing device might not prompt a user for a password before making a purchase, or update of an application or editing a user account. In some aspects, a user can proactively change security settings in a computing device to indicate that he is satisfied with a passkey entry replacing the more secure authentication verifications to result in relaxed authentication requirements.
In some embodiments of the present technology, a mobile device equipped with geo-location capabilities can inform the authentication module 299 that the user is located in a safe environment, i.e. the user's home. Likewise, a client device can sense that a user is at home by detecting a home Wi-Fi address. In these examples, the client device can inform the authentication module 299 that the user is willing to relax authentication requirements while in that, relatively, secure location.
Notification Scheduling
As explained above, applications on a client device having software bugs can impart very large maintenance costs to an application distribution system that supports those applications and their updates. Consequently, it is in the best interest of the administrators of the application distribution system that users of the applications update them as soon as bug fixes become available to them. On the other hand, the same administrators do not want to pester their users fearing the negative consequences of seeming like Big Brother. Accordingly, the present technology provides solutions for informing users that updates and new content is available for their applications in a way that is not intrusive, that will not waste resources, and that will not require a user to interact with a device when they are busy with other important tasks or while performing actions that require the users' steadfast attention.
According to some embodiments of the present technology and referring again to
The method 400 shown in
The client device receives update statements by pulling from an application distribution system, an application distribution system pushing the statements to the client device, or in a hybrid push-pull scenario. In some embodiments of the present technology, an icon receives a badge when an update statement is available. One example of this badge can be found on various mobile and tablet devices made by Apple Inc. For example, an iPhone™ having substantially square icons representing applications can include a small circular badge place in one corner. One example of this badge of this type being used for a different purpose can be seen on the phone application wherein a small badge lists a number that corresponds to a number of notifications from that application to a user. Also, the badge can take the shape of a sash that spans across the corner of an application icon and can have text located therein to convey the status of the update.
In some embodiments, the badge can be displayed over each application that has an update available. In some embodiments, a cumulative badge can be displayed over an application specific for managing app updates such as the App Store App℠ on Apple Inc's iPhone®.
When a new update statement is received, the method 400 checks to see whether the update has been blacklisted 402. Various reasons might cause an update to be blacklisted that will be apparent to those with ordinary skill in the art having the benefit of this disclosure; however, in some embodiments, as explained below, an update is blacklisted if a user proactively tells the device never to apply the update, or to not apply an update for this version, or for a period of time.
As explained above, a developer of an application distribution system does not want to pester the clients of the application distribution system. Accordingly, in some embodiments of the present technology, the application distribution system only prompts clients when a certain threshold of applications available for update is reached. In some embodiments, prompts from the application distribution system comprise a dialog box or other menu that requires a user's reply before proceeding. Therefore, the method 400 continues by checking whether or not a threshold of update statements has been reached 403.
In some embodiments of the present technology, the threshold is reached when requisite number of updates is available. In some other embodiments, the threshold is reached when a requisite percentage of the total number of applications currently installed on the computing device has an update available. In some other embodiments, the threshold is reached when a requisite amount of time has passed, i.e. a certain number of days, from when the update notification was received. In some embodiments, the threshold is reached when a combination of these circumstances is present. For example, in some embodiments, a user is notified when at least five update notifications have been available for over thirty days. Although specific example embodiments are disclosed herein, it will be readily apparent to those with ordinary skill in the art having the benefit of this disclosure that any update percentages, amounts, number of days, etc. can be used as thresholds, as well as various other metrics.
Additionally, as explained above, the application distribution system has an interest in keeping the cellular carrier costs associated with data usage by the client devices to a minimum to prevent users avoiding updates due to incurred costs. Accordingly, some embodiments of the present technology involve making a decision of whether or not to prompt a user about updates depending on whether the client device is presently connected to a Wi-Fi network. Similarly, the application distribution system has an interest in keeping update download time short to prevent users from skipping updates so they can enjoy other device features without having to wait. Consequently, some embodiments of the present technology involve making a decision whether or not to prompt a user about the presence of updates depending on network speed—whether it is Wi-Fi vs. cellular or X-generation cellular vs. Y-generation cellular. Accordingly, if a threshold has been reached in step 402, the method 400 continues with checking network conditions and network preference settings 404.
It will be apparent to those with ordinary skill in the art having the benefit of this disclosure that a wide variety of methods exist for checking network conditions and enforcing network preferences.
First, before downloading and installing application updates on a client device, the system determines whether the client device is currently connected to a Wi-Fi network 501. If so, the system optionally checks if the device is currently connected to a power source 502. For example, some updates and system backup procedures can be very lengthy and can be disrupted if not allowed to completely finish. Accordingly, in some embodiments, the client device may need to be plugged in to ensure that the battery life is not depleted during an update or backup. In some other embodiments, a user can indicate that downloads only occur when the client's computing device is deemed idle for a requisite time. In some embodiments, system settings are configured such that a device will consider itself idle under certain conditions, i.e. when the device is plugged in at nighttime and is not interacted with for over one hour. The method 500 then proceeds 503 to initiate the update.
Again, the system determines whether the client device is currently connected to a Wi-Fi network 501. If the client device is not connected to Wi-Fi, the method waits 504 and iteratively checks whether a threshold period of ti has passed 505. Upon reaching a threshold period of time, the system determines whether the download size of an update (or other network activity) would involve requiring a client device to expend cellular network time that would bring the user's plan over a carrier-imposed data limit 506. Indeed, exceeding data limits would result in financial liability and, most likely, reduced performance. In some embodiments of the present technology, if the download system settings require that a data limit is not exceeded, the method 500 then waits until Wi-Fi is detected before initiating a download.
In some embodiments of the present technology, updates can be determined to be important by a server administrator or if the metadata associated with the update indicates it is important for security reasons. In these embodiments, the server can push the update through, despite the client's computing device not being connected to Wi-Fi, based on an administrator assuming that users would rather expend some data airtime in order to install an important update. Likewise, the heuristic that determines when to forego the Wi-Fi requirement can allow for dynamic time and context thresholds based on another factor such as how many applications have updates pending.
If a data limit ill not be exceeded (or if system settings permit exceeded limits), the system determines whether a first network type, i.e. a 4th Generation Cellular network, is detected 507. If so, the method 500 proceeds to optional step 502 and goes forward with the update process. If not, the method 500 performs a process of successive network checks 510, 513, 516; waiting periods 508, 511, 514; and waiting period threshold checks 509, 512, 515 until a network is detected that can perform the update process consistent with the system settings.
Referring again to
In some embodiments of the present technology, prompting a user 406 involves presenting a dialog box with three options for responding to the question of whether to update the applications now: “Yes,” “Not Now,” or “Never.”
If a user responds to the dialog box with “Never,” the method 400 checks 407 whether or not one or more of the updates are critical. An example of a critical update is an update to the operating system or an essential security patch. If an update is critical, the method 400 continues with presenting 408 the user with another dialog box informing the user why the update cannot be ignored. If the updates are not critical, the updates are blacklisted 409 and the method ends 490.
If, in response to the method 400 prompting a user 406, the user responds with “Wait,” the method 400 waits 410 a certain amount of time before re-checking network conditions, situational setting, and re-prompting the user. Finally, if the user responds with “Yes,” the method 400 proceeds. Optionally, the method 400 involves determining whether a device is plugged in 498 before proceeding with an update.
Once the update is initiated 411, the method 400 monitors the update progress and determines if the update experiences an interruption 412. If the update does not, the update finishes and the method 400 ends. If the update experiences an interruption, the update process is paused 413 and network conditions are re-checked, situational setting are re-checked, and the user is again prompted.
In some embodiments of the present technology, a user pre-pays for a series of updates and the updates are then automatically downloaded and installed. According to these embodiments, new episodes that become available for subscriptions to periodicals, i.e. magazines, newspapers, podcasts, etc, will not cause a user prompt.
In some embodiments, the various threshold, network, and situational concerns vary depending on how often a user uses a particular application or how often an entire user base uses a particular application. In some embodiments of the present technology, a user sets preferences on a first device and then all devices tied to that user's account enforces those settings. Likewise, if multiple accounts use a single device, the device can enforce multiple settings. In some other embodiments, a different set of preferences are required for a system backup than those required for an application update. Those with ordinary skill in the art having the benefit of this disclosure will readily appreciate that many other methods are contemplated for scheduling notifications and carrying out update downloads and installations.
Also as explained above, once a user is prompted to download and install updates and the user accepts it is oftentimes the case that many of the updates require a user to accept the terms of a notification, chose update features, and authorize the installation of the updates. When a large number of updates are being installed at one time, these notifications and requests for authorization can become tedious. Accordingly, some embodiments of the present technology involve batching notifications and requests for authorization, and avoiding duplicates thereof.
Batching Notification and Authorization Requests
As discussed above, it is in the best interest of the application distribution system to avoid annoying its users with tedious request for feedback. Additionally, the present technology avoids a first download ending without a user noticing and a subsequent download sitting idle while the system waits for a user's acquiescence to a notification.
Consequently, some embodiments of the present technology involve batching notifications relating to application updates and requests for authorizations to download and install application updates. Examples of notifications and requests for authorization include notifications relating to an application using a lot of data, requests for a user to verify that he is above a certain age, requests for a system password, requests for an application password, requests for verification that an application will not be used while driving, etc.
Next, the batch of requests for user feedback is serially presented to the user 605 and the user responds in turn. In some embodiments, the answers to the requests for feedback are recorded on a server side of an application distribution system 606 and the download process proceeds 607 according to the user's answers. Finally, the updates are installed 608.
This method 600 avoids a fragmented update process as follows: Suppose the requests for feedback are presented periodically after each individual application update finishes, rather than serially before a group of updates begin. If a user is distracted from the update process after the first individual application update finishes, he might return to find that the entire process has been stalled while the system waits for him to answer a request for feedback. On the other hand, since the method 600 asks for all user input serially in the beginning of the process 605, the system does not wait for additional feedback and the update process can complete without further user interaction being required.
Some other embodiments of the present technology involve, batching notifications relating to application updates and requests for authorizations to download and install application updates across multiple devices and across multiple accounts.
Accordingly, although the invention has been described in detail with reference to particular preferred embodiments, persons possessing ordinary skill in the art to which this invention pertains will appreciate that various modifications and enhancements may be made without departing from the spirit and scope of the claims that follow.
This application is a Continuation of U.S. application Ser. No. 16/510,113, filed on Jul. 12, 2019, entitled “Authentication and Notification Heuristics,” which is a Continuation of U.S. application Ser. No. 15/646,073, filed on Jul. 10, 2017, entitled “Authentication and Notification Heuristics,” which is a Continuation of U.S. application Ser. No. 14/738,536, filed on Jun. 12, 2015, entitled “Authentication and Notification Heuristics,” which is a Divisional of U.S. application Ser. No. 13/488,356, filed on Jun. 4, 2012, entitled “Authentication and Notification Heuristics,” the content of which is incorporated herein by reference in its entirety.
| Number | Name | Date | Kind |
|---|---|---|---|
| 4750119 | Cohen et al. | Jun 1988 | A |
| 5253165 | Leiseca et al. | Oct 1993 | A |
| 5535383 | Gower | Jul 1996 | A |
| 5627973 | Armstrong et al. | May 1997 | A |
| 5752128 | Yamashita | May 1998 | A |
| 5765152 | Erickson | Jun 1998 | A |
| 5835911 | Nakagawa et al. | Nov 1998 | A |
| 5884280 | Yoshioka et al. | Mar 1999 | A |
| 6055513 | Katz et al. | Apr 2000 | A |
| 6067531 | Hoyt et al. | May 2000 | A |
| 6085253 | Blackwell et al. | Jul 2000 | A |
| 6151643 | Cheng et al. | Nov 2000 | A |
| 6167567 | Chiles et al. | Dec 2000 | A |
| 6226618 | Downs et al. | May 2001 | B1 |
| 6233682 | Fritsch | May 2001 | B1 |
| 6256668 | Slivka et al. | Jul 2001 | B1 |
| 6263313 | Milsted et al. | Jul 2001 | B1 |
| 6275954 | Herman et al. | Aug 2001 | B1 |
| 6338044 | Cook et al. | Jan 2002 | B1 |
| 6341353 | Herman et al. | Jan 2002 | B1 |
| 6345256 | Milsted et al. | Feb 2002 | B1 |
| 6363486 | Knapton, III | Mar 2002 | B1 |
| 6385596 | Wiser et al. | May 2002 | B1 |
| 6389592 | Ayres et al. | May 2002 | B1 |
| 6493721 | Getchius et al. | Dec 2002 | B1 |
| 6494762 | Bushmitch et al. | Dec 2002 | B1 |
| 6546555 | Hjelsvold et al. | Apr 2003 | B1 |
| 6549922 | Srivastava et al. | Apr 2003 | B1 |
| 6587837 | Spagna et al. | Jul 2003 | B1 |
| 6591420 | McPherson et al. | Jul 2003 | B1 |
| 6658476 | Van | Dec 2003 | B1 |
| 6691149 | Yokota et al. | Feb 2004 | B1 |
| 6731312 | Robbin | May 2004 | B2 |
| 6735572 | Landesmann | May 2004 | B2 |
| 6754895 | Bartel et al. | Jun 2004 | B1 |
| 6873992 | Thomas | Mar 2005 | B1 |
| 6874003 | Morohashi | Mar 2005 | B2 |
| 6910049 | Fenton et al. | Jun 2005 | B2 |
| 6938005 | Iverson et al. | Aug 2005 | B2 |
| 6963851 | Szabo et al. | Nov 2005 | B1 |
| 7073193 | Marsh | Jul 2006 | B2 |
| 7076445 | Cartwright | Jul 2006 | B1 |
| 7096464 | Weinmann | Aug 2006 | B1 |
| 7130807 | Mikurak | Oct 2006 | B1 |
| 7168012 | Clauss et al. | Jan 2007 | B2 |
| 7209892 | Galuten et al. | Apr 2007 | B1 |
| 7275243 | Gibbons et al. | Sep 2007 | B2 |
| 7308413 | Tota et al. | Dec 2007 | B1 |
| 7330718 | Liu et al. | Feb 2008 | B2 |
| 7383233 | Singh et al. | Jun 2008 | B1 |
| 7512622 | Volk et al. | Mar 2009 | B2 |
| 7624046 | Galuten et al. | Nov 2009 | B2 |
| 7685512 | Hanson et al. | Mar 2010 | B2 |
| 7729946 | Chu | Jun 2010 | B2 |
| 7739256 | Powell | Jun 2010 | B2 |
| 7756920 | Muller et al. | Jul 2010 | B2 |
| 7827162 | Suitts et al. | Nov 2010 | B2 |
| 7844548 | Robbin et al. | Nov 2010 | B2 |
| 7860830 | Mirrashidi et al. | Dec 2010 | B2 |
| 7962634 | Cortos et al. | Jun 2011 | B2 |
| 7987449 | Marolia et al. | Jul 2011 | B1 |
| 8015237 | Muller et al. | Sep 2011 | B2 |
| 8219827 | Nicolson et al. | Jul 2012 | B2 |
| 8935393 | Jackson et al. | Jan 2015 | B1 |
| 20010021926 | Schneck et al. | Sep 2001 | A1 |
| 20010037207 | Dejaeger | Nov 2001 | A1 |
| 20010044786 | Ishibashi | Nov 2001 | A1 |
| 20010054046 | Mikhailov et al. | Dec 2001 | A1 |
| 20020002541 | Williams | Jan 2002 | A1 |
| 20020032658 | Oki et al. | Mar 2002 | A1 |
| 20020047899 | Son et al. | Apr 2002 | A1 |
| 20020049844 | Nishikawa | Apr 2002 | A1 |
| 20020073177 | Clark et al. | Jun 2002 | A1 |
| 20020077986 | Kobata et al. | Jun 2002 | A1 |
| 20020078211 | Natarajan et al. | Jun 2002 | A1 |
| 20020082857 | Skordin et al. | Jun 2002 | A1 |
| 20020087440 | Blair et al. | Jul 2002 | A1 |
| 20020090934 | Mitchelmore | Jul 2002 | A1 |
| 20020091584 | Clark et al. | Jul 2002 | A1 |
| 20020099661 | Kii et al. | Jul 2002 | A1 |
| 20020099696 | Prince | Jul 2002 | A1 |
| 20020099801 | Ishii | Jul 2002 | A1 |
| 20020107803 | Lisanke et al. | Aug 2002 | A1 |
| 20020110149 | Roberts et al. | Aug 2002 | A1 |
| 20020112171 | Ginter et al. | Aug 2002 | A1 |
| 20020116293 | Lao et al. | Aug 2002 | A1 |
| 20020124182 | Bacso et al. | Sep 2002 | A1 |
| 20020143612 | Barik et al. | Oct 2002 | A1 |
| 20020143782 | Headings et al. | Oct 2002 | A1 |
| 20020152267 | Lennon | Oct 2002 | A1 |
| 20020152278 | Pontenzone et al. | Oct 2002 | A1 |
| 20020165811 | Ishii et al. | Nov 2002 | A1 |
| 20020186844 | Levy et al. | Dec 2002 | A1 |
| 20020198843 | Wang et al. | Dec 2002 | A1 |
| 20030005173 | Shah et al. | Jan 2003 | A1 |
| 20030037242 | Yasuna et al. | Feb 2003 | A1 |
| 20030065717 | Saito et al. | Apr 2003 | A1 |
| 20030074465 | Tang et al. | Apr 2003 | A1 |
| 20030115144 | Stefik et al. | Jun 2003 | A1 |
| 20030120593 | Bansal et al. | Jun 2003 | A1 |
| 20030120928 | Cato et al. | Jun 2003 | A1 |
| 20030135424 | Davis et al. | Jul 2003 | A1 |
| 20030149742 | Bollerud | Aug 2003 | A1 |
| 20030182188 | Duchow | Sep 2003 | A1 |
| 20030192029 | Hughes | Oct 2003 | A1 |
| 20030225619 | Dokken et al. | Dec 2003 | A1 |
| 20030236886 | Oren et al. | Dec 2003 | A1 |
| 20040012618 | Finney | Jan 2004 | A1 |
| 20040015427 | Camelio | Jan 2004 | A1 |
| 20040015445 | Heaven et al. | Jan 2004 | A1 |
| 20040034601 | Kreuzer | Feb 2004 | A1 |
| 20040039754 | Harple | Feb 2004 | A1 |
| 20040044949 | Rowe | Mar 2004 | A1 |
| 20040133605 | Chang et al. | Jul 2004 | A1 |
| 20040136698 | Mock | Jul 2004 | A1 |
| 20040143760 | Alkove et al. | Jul 2004 | A1 |
| 20040148229 | Maxwell | Jul 2004 | A1 |
| 20040148598 | Kita et al. | Jul 2004 | A1 |
| 20040153968 | Ching et al. | Aug 2004 | A1 |
| 20040167858 | Erickson | Aug 2004 | A1 |
| 20040172339 | Snelgrove et al. | Sep 2004 | A1 |
| 20040181459 | Wright | Sep 2004 | A1 |
| 20040203755 | Brunet et al. | Oct 2004 | A1 |
| 20040205028 | Verosub et al. | Oct 2004 | A1 |
| 20040210481 | Quinlan et al. | Oct 2004 | A1 |
| 20040215534 | Gautier et al. | Oct 2004 | A1 |
| 20040215733 | Gondhalekar et al. | Oct 2004 | A1 |
| 20040254883 | Kondrk et al. | Dec 2004 | A1 |
| 20040254949 | Amirthalingam | Dec 2004 | A1 |
| 20040267552 | Gilliam et al. | Dec 2004 | A1 |
| 20040267608 | Mansfield Jr. | Dec 2004 | A1 |
| 20040268451 | Robbin et al. | Dec 2004 | A1 |
| 20050015765 | Covell et al. | Jan 2005 | A1 |
| 20050021478 | Gautier et al. | Jan 2005 | A1 |
| 20050034164 | Sano et al. | Feb 2005 | A1 |
| 20050038813 | Apparao et al. | Feb 2005 | A1 |
| 20050046705 | Smith | Mar 2005 | A1 |
| 20050050218 | Sheldon | Mar 2005 | A1 |
| 20050050345 | Dowdy et al. | Mar 2005 | A1 |
| 20050080743 | Ostrover et al. | Apr 2005 | A1 |
| 20050080788 | Murata | Apr 2005 | A1 |
| 20050132359 | McGuire et al. | Jun 2005 | A1 |
| 20050144635 | Boortz | Jun 2005 | A1 |
| 20050165656 | Frederick et al. | Jul 2005 | A1 |
| 20050182792 | Israel et al. | Aug 2005 | A1 |
| 20050197946 | Williams et al. | Sep 2005 | A1 |
| 20050216472 | Leon et al. | Sep 2005 | A1 |
| 20050240529 | Thomas | Oct 2005 | A1 |
| 20050267894 | Camahan | Dec 2005 | A1 |
| 20050278375 | Mitchko et al. | Dec 2005 | A1 |
| 20050283394 | McGloin et al. | Dec 2005 | A1 |
| 20060008256 | Khedouri et al. | Jan 2006 | A1 |
| 20060015489 | Probst et al. | Jan 2006 | A1 |
| 20060041748 | Lockhart et al. | Feb 2006 | A1 |
| 20060046703 | Liu et al. | Mar 2006 | A1 |
| 20060048132 | Chen et al. | Mar 2006 | A1 |
| 20060062426 | Levy et al. | Mar 2006 | A1 |
| 20060063590 | Abassi et al. | Mar 2006 | A1 |
| 20060074754 | Toyohara et al. | Apr 2006 | A1 |
| 20060107046 | Raley et al. | May 2006 | A1 |
| 20060112101 | Young | May 2006 | A1 |
| 20060143264 | Payne et al. | Jun 2006 | A1 |
| 20060161604 | Lobo | Jul 2006 | A1 |
| 20060167751 | Maruyama | Jul 2006 | A1 |
| 20060167816 | Wang et al. | Jul 2006 | A1 |
| 20060212722 | Ginter et al. | Sep 2006 | A1 |
| 20060218246 | Fawcett | Sep 2006 | A1 |
| 20060229929 | Hughes | Oct 2006 | A1 |
| 20060242640 | Pauly et al. | Oct 2006 | A1 |
| 20060272026 | Niwano et al. | Nov 2006 | A1 |
| 20060277096 | Levitus | Dec 2006 | A1 |
| 20060287966 | Srinivasaraghavan et al. | Dec 2006 | A1 |
| 20070011156 | Maron | Jan 2007 | A1 |
| 20070011178 | Dumitru et al. | Jan 2007 | A1 |
| 20070011709 | Katz et al. | Jan 2007 | A1 |
| 20070028269 | Nezu et al. | Feb 2007 | A1 |
| 20070033531 | Marsh | Feb 2007 | A1 |
| 20070050467 | Borrett et al. | Mar 2007 | A1 |
| 20070073694 | Picault et al. | Mar 2007 | A1 |
| 20070083471 | Robbin et al. | Apr 2007 | A1 |
| 20070106522 | Collins | May 2007 | A1 |
| 20070108274 | Boardman et al. | May 2007 | A1 |
| 20070157192 | Hoefler | Jul 2007 | A1 |
| 20070192352 | Levy | Aug 2007 | A1 |
| 20070208670 | Quoc | Sep 2007 | A1 |
| 20070220051 | Brentano et al. | Sep 2007 | A1 |
| 20070261088 | Phillips et al. | Nov 2007 | A1 |
| 20070265969 | Horwat et al. | Nov 2007 | A1 |
| 20070266028 | Muller et al. | Nov 2007 | A1 |
| 20070266047 | Cortes et al. | Nov 2007 | A1 |
| 20080040379 | Suitts et al. | Feb 2008 | A1 |
| 20080071614 | Mebruer | Mar 2008 | A1 |
| 20080114860 | Keys et al. | May 2008 | A1 |
| 20080120199 | Pirnack et al. | May 2008 | A1 |
| 20080133594 | Fotinatos et al. | Jun 2008 | A1 |
| 20080140493 | DeAngelis | Jun 2008 | A1 |
| 20080140537 | Powell | Jun 2008 | A1 |
| 20080147530 | Kwan et al. | Jun 2008 | A1 |
| 20080147558 | Kraus | Jun 2008 | A1 |
| 20080155552 | Kim | Jun 2008 | A1 |
| 20080195651 | Rachmiel et al. | Aug 2008 | A1 |
| 20080214163 | Onyon et al. | Sep 2008 | A1 |
| 20080249946 | Candelore | Oct 2008 | A1 |
| 20080288405 | John | Nov 2008 | A1 |
| 20080301058 | Campbell et al. | Dec 2008 | A1 |
| 20090037287 | Baitalmal et al. | Feb 2009 | A1 |
| 20090063543 | Martin et al. | Mar 2009 | A1 |
| 20090138117 | Bagwell et al. | May 2009 | A1 |
| 20090177989 | Ma et al. | Jul 2009 | A1 |
| 20090187417 | Lidestri | Jul 2009 | A1 |
| 20090198830 | Zhang et al. | Aug 2009 | A1 |
| 20090240552 | Yang et al. | Sep 2009 | A1 |
| 20090259502 | Erlewine et al. | Oct 2009 | A1 |
| 20090260060 | Smith et al. | Oct 2009 | A1 |
| 20090276332 | Gharabally et al. | Nov 2009 | A1 |
| 20090276333 | Cortes et al. | Nov 2009 | A1 |
| 20090276433 | Fosback et al. | Nov 2009 | A1 |
| 20090307201 | Dunning et al. | Dec 2009 | A1 |
| 20090307682 | Gharabally et al. | Dec 2009 | A1 |
| 20090307683 | Gharabally | Dec 2009 | A1 |
| 20100088692 | Rathi | Apr 2010 | A1 |
| 20100115443 | Richstein | May 2010 | A1 |
| 20100185859 | Unagami et al. | Jul 2010 | A1 |
| 20100205274 | Gharabally et al. | Aug 2010 | A1 |
| 20100218179 | Balascio | Aug 2010 | A1 |
| 20100235254 | Mirrashidi et al. | Sep 2010 | A1 |
| 20100251099 | Makower et al. | Sep 2010 | A1 |
| 20100285821 | Smeeding et al. | Nov 2010 | A1 |
| 20100299219 | Cortes et al. | Nov 2010 | A1 |
| 20110023001 | Giffel | Jan 2011 | A1 |
| 20110035579 | Miura et al. | Feb 2011 | A1 |
| 20110060776 | Suitts et al. | Mar 2011 | A1 |
| 20110137518 | Abe | Jun 2011 | A1 |
| 20110189991 | Krause et al. | Aug 2011 | A1 |
| 20110214111 | Vidal | Sep 2011 | A1 |
| 20110228770 | Dholakia et al. | Sep 2011 | A1 |
| 20120016904 | Mahajan et al. | Jan 2012 | A1 |
| 20120084766 | Shanmugam | Apr 2012 | A1 |
| 20130086202 | Connelly et al. | Apr 2013 | A1 |
| 20130326606 | Kelly et al. | Dec 2013 | A1 |
| 20140372353 | Yamamoto et al. | Dec 2014 | A1 |
| 20150277893 | Kelly et al. | Oct 2015 | A1 |
| 20150371532 | e Silva et al. | Dec 2015 | A1 |
| 20180052681 | Pereira et al. | Feb 2018 | A1 |
| 20180189048 | Bala | Jul 2018 | A1 |
| Entry |
|---|
| Author Unknown, “Android Enterprise Security White Paper”, Retrieved From https://static.googleusercontent.com/media/www.android.com/en//static/2016/pdfs/enterprise/Android_Enterprise_Security_White_Paper_2019.pdf, Published Jan. 2020 (Year: 2020). |
| Number | Date | Country | |
|---|---|---|---|
| 20220237296 A1 | Jul 2022 | US |
| Number | Date | Country | |
|---|---|---|---|
| Parent | 13488356 | Jun 2012 | US |
| Child | 14738536 | US |
| Number | Date | Country | |
|---|---|---|---|
| Parent | 16510113 | Jul 2019 | US |
| Child | 17723104 | US | |
| Parent | 15646073 | Jul 2017 | US |
| Child | 16510113 | US | |
| Parent | 14738536 | Jun 2015 | US |
| Child | 15646073 | US |
