People are increasingly utilizing portable computing devices to perform various tasks, such as viewing a personal calendar, managing business contacts, checking email messages, taking photos, playing video games, or checking the weather. Many applications on a computing device (e.g., work calendar, personal email, business contacts) enable a user to access confidential information or information that the user would like to protect. At the same time, many other applications on the computing device (e.g., camera, calculator, navigator) provide functions that do not contain or give access to any confidential information that the user would care to protect. Thus, while having an overall password lock may secure access to all data on the computing device, the user may find it inconvenient to always have to unlock the overall device using the password even when accessing applications that do not contain any confidential information.
Further, while the user may want to lend the computing device to others to share applications that do not contain confidential information (e.g., video games, navigation information, photos), the user might feel uncomfortable when there is no way to protect or limit access to applications that may contain confidential information once the overall password is unlocked. Some conventional approaches enable a user to provide different passwords to protect each of a number of different applications or sources of data on the device, but the user might not appreciate having to enter a specific password each time the user wants to access one of these applications or sources.
Various embodiments in accordance with the present disclosure will be described with reference to the drawings, in which:
Systems and methods in accordance with various embodiments of the present disclosure may overcome one or more of the aforementioned and other deficiencies experienced in conventional approaches for protecting information, data, or other functionality or content on a computing device. In particular, certain embodiments provide for the selective protection of confidential information or other content on a mobile device using a common unlock or access mechanism. Approaches in accordance with various embodiments enable a user to have convenient access to specific content (e.g., non-confidential information or standard applications) on a mobile device, while controlling access to other selected content (e.g., confidential information or pay-for-use services) using a single device access or unlock mechanism (e.g., a PIN, password, or gesture input).
More specifically, at least some embodiments do not rely on an overall password to restrict access to applications that contain confidential information. Instead, a user is allowed to access all applications that are not “locked” without having to, for example, enter a password. Only when a user attempts to access a “locked” application or protected content, for example, will he or she be prompted to enter a password or otherwise provide authentication. In this way, the user's overall interaction with the mobile device is improved.
While the device of some embodiments may restrict access to various applications that are within the same environment, some embodiments may restrict access to different types of data within one or more applications. For instance, a user's email application may pool emails from the user's personal email account (e.g., Gmail® account) and the user's work email account (e.g., corporate Exchange account, etc.). The device of some embodiments may require the user to “unlock” a particular type of content (e.g., emails retrieved from the work server) when the user attempts to access the particular type of content. The device may allow the user to access other types of data within the application without having to provide authentication.
Moreover, in certain embodiments, the user may specify which applications and/or which types of data within applications to “lock” or require authentication before the user may access the contents of those “locked” applications and/or data. In some embodiments, the user may adjust the security level privileges (e.g., the applications and/or data to lock, the manner of authentication that is required) through a preference setting on the device.
Various other applications, processes and uses are presented below with respect to the various embodiments.
In some situations, the user may find it inconvenient to have an overall password lock protecting all the content on the device. The user may want targeted protection protecting only those applications that may contain confidential or sensitive information. At the same time, the user may want to have quick and easy access to other applications without always having to unlock the device. For instance, the user may not want to have to unlock the device when he just wants to use the camera function to quickly snap a shot of a bird flying by. In another instance, the user may want to use the calculator function to quickly calculate tip for a cab driver upon arrival of his destination. Because, in many instances, functions that the user would like to access are not functions that contain sensitive or confidential information, it can be extremely inconvenient for the user to have to unlock the device every time he wants to access these functions.
Further, in some situations, the user may want a friend or family member to be able to access certain applications on the user's device without worrying about exposing confidential or sensitive information (e.g., personal or work emails, business contacts, work calendar, etc.) that may be stored on or accessible through certain applications on the device. For instance, the user may want a friend to use the navigator on the user's device to give the user driving directions to a destination. By inputting the pin to unlock the overall password, the user would not only be providing access to those applications that do not have any confidential information, but also to those applications that the user may not want the friend to have access.
Hence, as explained above, a user may find an overall password (e.g., a mobile phone operating system password) that locks/unlocks all applications on an electronic device to be inconvenient in at least in some scenarios. Moreover, aside from the overall password, application-specific passwords, such as a password for an email application, may not offer the protection a user desires. First, an application-specific password only protects the content of the particular application. Second, not all applications have built-in password protection and the user has no way of guarding the content of those applications once the overall password has been unlocked.
Different from the overall password in conventional systems that locks/unlocks all applications on an electronic device and the application-specific password that protects only the application-at-issue, certain embodiments use a customizable security feature that allows a user to selectively shield one or more applications, functions, types of data, or other such content that she or he would like to secure or control access.
Unlike the overall password that has to lock/unlock all applications at once, the customizable security feature offers greater flexibility and enables a user to secure, for example, only specific programs. Further, in contrast to the application-specific password, the protection offered by the customizable security feature is not limited to specific applications only and can secure multiple applications at once. In this way, the customizable security feature offers a user the benefit associated with the overall password (e.g., allows the user to secure multiple applications with one password) without the downside (e.g., forces the user to either lock or unlock all applications at once). Furthermore, the customizable security features offers protection to applications that do not have built-in application passwords and adds an additional layer of security for applications that already employ application-specific passwords.
In some embodiments, the customizable security feature can be an operating system level security feature. In certain embodiments, the customizable security feature is an application level security feature. In one example, regardless of whether customizable security feature is implemented at an operating system level or at an application level, it is designed in such a way so that it has the capability to secure one or more applications on the electronic device.
The customizable security feature, in one example, is an operating system level password protection that enables a user to lock/unlock one or more applications on an electronic device. In another example, the customizable security feature is an application level biometric-based authentication mechanism (e.g., voice recognition) that enables a user to lock/unlock one or more applications on a mobile phone. In yet another example, the customizable security feature is a cross-application pin that can be utilized to lock/unlock multiple applications. As explained in greater detail below, while the customizable security feature can be utilized to lock/unlock one or more applications, its application is not so limited. Indeed, the customizable security feature can be used to lock specific confidential content within one or more applications. For example, the customizable security feature can be used to lock all work-related email messages within an email application while leaving non-work-related email messages unlocked.
Certain embodiments enable selective content protection in a single environment. Some embodiments provide a single environment that password protects some applications and not others. In order to access the password protected applications and data in the single environment, the user must show that he has been given the authority to access the protected applications and data (e.g., through entering a valid pin, through different biometric recognition techniques, such as fingerprint recognition, facial recognition using VeriFace®, signature detection, retinal scan, etc.). On the other hand, the device does not require the user to unlock those applications in the single environment that are not password protected. This enables the user to quickly and conveniently access those applications that do not contain any confidential or sensitive information while providing sufficient protection to those applications and data that may contain confidential information from unauthorized users.
For instance, the device of some embodiments password protects applications such as personal and work email messages but leave the camera application unprotected, enabling the user to pick up the device, start the application, and snatch a photo without wasting the time and energy to unlock the application.
Further, some embodiments enable the user to configure the application and/or data on the device that are locked and unlocked. The user may identify applications or types of data on his device that he wants to shield from unauthorized users, such as friends or family members. In this way, certain embodiments of the invention allow the user to do away with the inconvenient overall password lock while extending protection to applications that the user wants to keep confidential.
The electronic device of some embodiments generates a display that includes multiple icons and lock indicators that indicate which applications are password protected.
Some embodiments lock applications for various reasons. One reason may be that, in order to enable a user to access particular applications, a security policy of the application requires the user to enter a security pin. For example, the Microsoft® Exchange Server protocol includes a security policy that mandates users to enter a security pin to access an exchange account on the mobile device. Another reason may be to prevent unauthorized users from accessing those applications that may contain confidential or sensitive information. For example, the user may not want his coworkers to see his personal photos, or his friends to have access to his company directory. Therefore, password protecting applications and/or data helps to prevent unauthorized users from accessing those applications and/or data.
Some embodiments leave a number of other applications that may not contain confidential information unlocked. In this example, several icons 220 including the settings icon, the camera icon, the Internet icon, the phone icon, the navigator icon, and the calculator icons are left unlocked. Different embodiments may have a different set of unlocked applications. The user may access these unlocked applications without entering a pin, thereby saving the user from having to unlock the overall password lock. Further, this allows the user to lend his device to others to allow them to use the unlocked applications without worrying that others would have access to the confidential information on the device.
As mentioned above, the user of the device may configure the security settings on the applications (e.g., through a preferences setting on the device). Some embodiments allow the user to designate the applications that require security protection and those that do not require security protections and are accessible by anyone. Further, some embodiments allow the user to customize the device such that the user may lock a different set of applications when lending the device to different persons. In one example, the user may want to restrict access to a first set of applications (e.g., personal calendar and personal photos) when lending the device to a coworker. In another example, the user may want to restrict access to a second set of applications (e.g., company directory and work email) when lending the device to a friend.
A setup such as the one described in
Moreover, the device of some embodiments provides additional layers of security to further protect certain types of sensitive content. For instance, the user's email account may receive emails from different server accounts (e.g., personal Gmail® account, multiple work accounts, etc.). Some embodiments may create an additional security layer within the email application for work-related emails that are retrieved from, e.g., a company's exchange server. In such cases, even after the user correctly entered a first password and gained access to the email application, when the user tries to read a work-related email retrieved from the company's exchange server, the email application will prompt the user to enter a second password before displaying the content of the email message.
While the device of some embodiments is capable of locking different applications, the device is also capable of locking different types of data within an application. Some embodiments allow a user to access certain applications without requiring the user to input a password, but require the user to authenticate his identity when the user wants to access certain types of data within the application.
In addition, instead of categorizing data by their source, some embodiments may categorize data based on particular groups of people. For instance, the email application may require the user to provide a valid pin when the user tries to access email messages from certain pre-defined email addresses (e.g., family@ abc.com, goodfriend@def.com). As shown, the user has input a four-digit pin in the entry field 525 as indicated by the asterisks.
While the email application may require the user to enter a valid pin to access the content of certain types of emails (e.g., work emails), other applications such as a calendar application may also require the user to enter a valid pin to access certain types of entries within the user's calendar.
The user may determine his general schedule without having access to the details of each of the events listed on his calendar. In some instances, the user may have a unified calendar account, whereby the unified calendar account is the product of syncing many of the user's calendars, such as the user's work schedule, personal schedule, class schedule, workout schedule, etc. As described above, the different types of schedules may be classified using the metadata of each piece of data. The device of some embodiments may then categorize some types of data (e.g., using their metadata) as confidential. In this example, the device has categorized work schedule as confidential information, thereby requiring user authentication before displaying the contents of work schedule entries.
As described above, the valid pin may unlock an entire category or type of data. For instance, upon verifying a pin for work schedule category, the device of some embodiments allows the user to access all of the events that fall within the work schedule category. In some embodiments, the valid pin may unlock only the particular event while requiring the user to enter the pin again if the user wants to access the content of another event within the same category.
Also, in some embodiments, an application may allow a user to use one password to protect one category of data within the application. In certain embodiments, an application may allow a user to use different passwords to protect and prevent unauthorized access to different categories of data. For instance, the user may be involved in multiple projects, each project containing confidential information that the user may want to protect. The user may set different passwords for each project, thereby requiring different valid passwords to be able to access the different applications.
In this example, the calendar shows that the user has scheduled events from 7-8 am, 10-3 pm, 3-5:30 pm, and 5:30-8 pm, with the event details from 10-3 pm and 3-5:30 pm blocked out. As shown, the 10-3 pm and 3-5:30 pm entries 720 and 725 each have a lock indicator displayed in each entry, indicating their locked status. Further, the entries 720 and 725 each have a different shading, indicating that the different entries require the user to enter different pins to access the contents of each entry. Different embodiments may display the entries as requiring different passwords differently. For example, in some embodiments, the application may display entries requiring one password as having a black border and entries requiring another password as having a blue border.
Here, similar to
Although in some embodiments, content is categorized by the physical source of the content (i.e., different servers), some embodiments categorize content by the type of sources such as companies (e.g., Facebook®, Twitter®, Foursquare®, etc.), persons (e.g., family members, co-workers, etc.), and any other factors one may use to categorize different types of data. This enables the user of the device to lock content from a particular type of source (e.g., LinkedIn® messages) in a particular application that pools content from multiple sources of data (e.g., a “social networking application” that encompasses all messages and/or texts from multiple social networking entities of which the user is a member).
In some embodiments, the device does not allow the user to alter the security settings for particular applications. In one instance, the box 815 drawn around the email application indicates that the security setting for this application may not be changed. Specifically, the email application will always require the user to enter a pin. In another instance, the box 820 drawn around the help function indicates that the user may not be able to alter the security settings to this function. Specifically, the help function will always be available to the user without requiring the user to enter a pin.
Further, in another embodiment, the user may configure the security settings of applications in a different way. In one example, the user may be able to visually drag icons of one or more applications (e.g., email, SMS, calendar, contacts) into a “secure” folder. Once an application has been dragged into the “secure” folder, the application will prompt the user to enter a pin (e.g., a cross-application pin that can lock one or more applications) before the user can access its contents. The user could create multiple “secure” folders so that access to a first “secure” folder requires a first pin and access to a second “secure” folder requires a second pin. In one instance, applications that are outside of the one or more secure folders are always available to users and are not pin protected.
The process 900 next receives (at 910) selection to access the content of one of the applications. In some embodiments, the user selects to access an application on the device by selecting (e.g., through a touchpad, through a keystroke input, cursor controller operation, etc.) an icon representing the application. Some embodiments enable the user to select to access a group of applications (e.g., via an icon representing a group of applications). This allows the user to gain access to the group of applications upon unlocking a group pin. For instance, instead of selecting a single application, the user may select an icon representing a number of applications (e.g., work email account, corporate contacts, work calendar account) to unlock the group of applications all at once.
The process 900 then determines (at 915) whether the application is a protected application. Some embodiments determine whether the application is a protected application by analyzing the security settings of the application. As described above in
Next, the process 900 verifies (at 920) whether the user has the authority to access the content of the application when the application is a protected application. Upon determining that the application is a protected application, some embodiments verify whether the user has the authority to access the content of the application by verifying the validity of a pin entered by the user and/or by using biometrics recognition techniques (e.g., fingerprint recognition, facial recognition, voice recognition, retinal scan, etc.). In some embodiments, the application is protected by an operating system level pin or a cross-application pin that can lock/unlock one or more applications.
Some embodiments require the user to perform an input (e.g., fingerprinting, speaking a word) to determine whether the user has authorized access to the contents of the application. In some embodiments, the device provides a pop-up window with an entry field allowing the user to enter a pin for verification. As mentioned above, this verification may be performed by comparing the received input with data stored locally on the device or remotely at a remote server. After the device verifies that the user has the authority to access content of the application, the device then displays the contents of the application.
Although process 900 specifically refers to unlocking access to contents of an application, the process may also apply to unlocking access to contents of a certain type of data within an application. For example, the user may designate family photos within the photos application as being locked and therefore require the user to authenticate his identity when he tries to access the contents of the family photos. As another example, the user may designate work-related calendar entries within the user's calendar that includes the user's personal and work schedules as requiring a valid pin in order for the user to obtain access to the contents of the work-related calendar entries.
The process 1000 then receives (at 1010) selection identifying a set of applications as locked applications. Some embodiments enable the user of the device to identify the set of applications to lock on the device (e.g., through a configurable setting such as that shown in
Next, the process 1000 designates (at 1015) the set of applications as locked applications. The device of some embodiments designates the set of applications as locked applications by tagging the applications with metadata such that the device would know if someone attempts to access one of the locked applications. Some embodiments may generate and/or update a list or a lookup table that keeps track of the applications that are locked and unlocked. Moreover, in one embodiment, the operating system of a mobile device includes functionalities that keep track of which applications are locked and which applications are not locked. In some embodiments, the device also displays a lock indicator along with each locked application to indicate to the user the locked status of the application. Some embodiments do not provide the user any visual indicators indicating that the application is locked.
The process 1000 then receives (at 1020) selection to access one of the locked applications. In some embodiments, the user selects one of the locked applications by clicking on a locked application (e.g., by a cursor controller operation, by touch screen, etc.). The process 1000 determines (at 1025) whether the user has the authority to access the contents of the locked application. Some embodiments determine whether the user has the authority to access contents of the locked application by using pin validation. More specifically, in some embodiments, the device displays a pop-up window with an entry field that allows the user to enter a pin to verify that the user has the authority to access the contents of the locked applications. Some embodiments may automatically identify whether the user is an authorized user by performing biometrics identification techniques. As mentioned above, these biometrics identification techniques include facial recognition, iris recognition, fingerprint recognition, etc. Different embodiments may determine whether the user has the authority to access the contents of the application differently.
The process 1000 then displays (at 1030) the contents of the locked applications upon determining that the user has the authority to access the contents of the locked application. Some embodiments further lock or enable a user to lock certain types of data within the application. In some embodiments, the device does not lock the individual application, but lock a certain type of data within the application. For example, the user may want his work emails to be confidential and therefore locked whereas he may want to keep his personal emails unlocked and therefore easily accessible without requiring the user to unlock a password lock.
In this example, the portable computing device 1100 has a display screen 1102 (e.g., a liquid crystal display (LCD) element) operable to display image content to one or more users or viewers of the device. In at least some embodiments, the display screen provides for touch or swipe-based input using, for example, capacitive or resistive touch technology. Such a display element can be used to, for example, enable a user to provide input by pressing on an area of the display corresponding to an image of a button, such as a right or left mouse button, touch point, etc.
The example portable computing device can include one or more image capture elements for purposes such as conventional image and/or video capture. As discussed elsewhere herein, the image capture elements can also be used for purposes such as to determine motion and receive gesture input. While the computing device in this example includes one image capture element 1104 on the “front” of the device and one image capture element 1110 on the “back” of the device, it should be understood that image capture elements could also, or alternatively, be placed on the sides or corners of the device, and that there can be any appropriate number of capture elements of similar or different types. Each image capture element may be, for example, a camera, a charge-coupled device (CCD), a motion detection sensor, or an infrared sensor, or can utilize another image capturing technology. The computing device can also include at least one microphone 1106 or other audio capture element capable of capturing audio data, such as may be used to receive user input in certain embodiments. In some devices there may be only one microphone, while in other devices there might be at least one microphone on each side and/or corner of the device, or in other appropriate locations.
The device 1100 in this example also includes at least one motion- or position-determining element 1108 operable to provide information such as a position, direction, motion, or orientation of the device. These elements can include, for example, accelerometers, inertial sensors, electronic gyroscopes, electronic compasses, and GPS elements. Various types of motion or changes in orientation can be used to provide input to the device. The example device also includes at least one communication mechanism 1114, such as may include at least one wired or wireless component operable to communicate with one or more electronic devices. The device also includes a power system 1116, such as may include a battery operable to be recharged through conventional plug-in approaches, or through other approaches such as capacitive charging through proximity with a power mat or other such device. Various other elements and/or combinations are possible as well within the scope of various embodiments.
In order to provide functionality such as that described with respect to
The example device also includes one or more wireless components 1214 operable to communicate with one or more electronic devices within a communication range of the particular wireless channel. The wireless channel can be any appropriate channel used to enable devices to communicate wirelessly, such as Bluetooth, cellular, or Wi-Fi channels. It should be understood that the device can have one or more conventional wired communications connections as known in the art. The example device includes various power components 1216 known in the art for providing power to a computing device, which can include capacitive charging elements for use with a power pad or similar device as discussed elsewhere herein. The example device also can include at least one touch- and/or pressure-sensitive element 1218, such as a touch sensitive material around a casing of the device, at least one region capable of providing squeeze-based input to the device, etc. In some embodiments this material can be used to determine motion, such as of the device or a user's finger, for example, while in other embodiments the material will be used to provide specific inputs or commands.
In some embodiments, a device can include the ability to activate and/or deactivate detection and/or command modes, such as when receiving a command from a user or an application, or retrying to determine an audio input or video input, etc.
The example device includes an authentication element 1210 for verifying that a user has authority to access certain applications and/or data on the example device. The authentication element, in one example, is a biometric device. The biometric device could be a voice recognition device, a facial recognition device, an iris scan recognition device, a retinal scan recognition device, a fingerprint recognition device, or a device that includes one or more of the foregoing functionalities. Also, while pin or password-based authentication could be performed by, for example, processing unit 1202 and memory 1204, in one instance, the pin or password-based authentication can also be performed by the authentication element 1210.
As discussed, different approaches can be implemented in various environments in accordance with the described embodiments. For example,
The illustrative environment includes at least one application server 1308 and a data store 1310. It should be understood that there can be several application servers, layers or other elements, processes or components, which may be chained or otherwise configured, which can interact to perform tasks such as obtaining data from an appropriate data store. As used herein, the term “data store” refers to any device or combination of devices capable of storing, accessing and retrieving data, which may include any combination and number of data servers, databases, data storage devices and data storage media, in any standard, distributed or clustered environment. The application server 1308 can include any appropriate hardware and software for integrating with the data store 1310 as needed to execute aspects of one or more applications for the client device and handling a majority of the data access and business logic for an application. The application server provides access control services in cooperation with the data store and is able to generate content such as text, graphics, audio and/or video to be transferred to the user, which may be served to the user by the Web server 1306 in the form of HTML, XML or another appropriate structured language in this example. The handling of all requests and responses, as well as the delivery of content between the client device 1302 and the application server 1308, can be handled by the Web server 1306. It should be understood that the Web and application servers are not required and are merely example components, as structured code discussed herein can be executed on any appropriate device or host machine as discussed elsewhere herein.
The data store 1310 can include several separate data tables, databases or other data storage mechanisms and media for storing data relating to a particular aspect. For example, the data store illustrated includes mechanisms for storing content (e.g., production data) 1312 and user information 1316, which can be used to serve content for the production side. The data store is also shown to include a mechanism for storing log or session data 1314. It should be understood that there can be many other aspects that may need to be stored in the data store, such as page image information and access rights information, which can be stored in any of the above listed mechanisms as appropriate or in additional mechanisms in the data store 1310. The data store 1310 is operable, through logic associated therewith, to receive instructions from the application server 1308 and obtain, update or otherwise process data in response thereto. In one example, a user might submit a search request for a certain type of item. In this case, the data store might access the user information to verify the identity of the user and can access the catalog detail information to obtain information about items of that type. The information can then be returned to the user, such as in a results listing on a Web page that the user is able to view via a browser on the user device 1302. Information for a particular item of interest can be viewed in a dedicated page or window of the browser.
Each server typically will include an operating system that provides executable program instructions for the general administration and operation of that server and typically will include computer-readable medium storing instructions that, when executed by a processor of the server, allow the server to perform its intended functions. Suitable implementations for the operating system and general functionality of the servers are known or commercially available and are readily implemented by persons having ordinary skill in the art, particularly in light of the disclosure herein.
The environment in one embodiment is a distributed computing environment utilizing several computer systems and components that are interconnected via communication links, using one or more computer networks or direct connections. However, it will be appreciated by those of ordinary skill in the art that such a system could operate equally well in a system having fewer or a greater number of components than are illustrated in
The various embodiments can be further implemented in a wide variety of operating environments, which in some cases can include one or more user computers or computing devices which can be used to operate any of a number of applications. User or client devices can include any of a number of general purpose personal computers, such as desktop or laptop computers running a standard operating system, as well as cellular, wireless and handheld devices running mobile software and capable of supporting a number of networking and messaging protocols. Such a system can also include a number of workstations running any of a variety of commercially-available operating systems and other known applications for purposes such as development and database management. These devices can also include other electronic devices, such as dummy terminals, thin-clients, gaming systems and other devices capable of communicating via a network.
Most embodiments utilize at least one network that would be familiar to those skilled in the art for supporting communications using any of a variety of commercially-available protocols, such as TCP/IP, OSI, FTP, UPnP, NFS, CIFS and AppleTalk. The network can be, for example, a local area network, a wide-area network, a virtual private network, the Internet, an intranet, an extranet, a public switched telephone network, an infrared network, a wireless network and any combination thereof.
In embodiments utilizing a Web server, the Web server can run any of a variety of server or mid-tier applications, including HTTP servers, FTP servers, CGI servers, data servers, Java servers and business application servers. The server(s) may also be capable of executing programs or scripts in response requests from user devices, such as by executing one or more Web applications that may be implemented as one or more scripts or programs written in any programming language, such as Java®, C, C# or C++ or any scripting language, such as Perl, Python or TCL, as well as combinations thereof. The server(s) may also include database servers, including without limitation those commercially available from Oracle®, Microsoft®, Sybase® and IBM®.
The environment can include a variety of data stores and other memory and storage media as discussed above. These can reside in a variety of locations, such as on a storage medium local to (and/or resident in) one or more of the computers or remote from any or all of the computers across the network. In a particular set of embodiments, the information may reside in a storage-area network (SAN) familiar to those skilled in the art. Similarly, any necessary files for performing the functions attributed to the computers, servers or other network devices may be stored locally and/or remotely, as appropriate. Where a system includes computerized devices, each such device can include hardware elements that may be electrically coupled via a bus, the elements including, for example, at least one central processing unit (CPU), at least one input device (e.g., a mouse, keyboard, controller, touch-sensitive display element or keypad) and at least one output device (e.g., a display device, printer or speaker). Such a system may also include one or more storage devices, such as disk drives, optical storage devices and solid-state storage devices such as random access memory (RAM) or read-only memory (ROM), as well as removable media devices, memory cards, flash cards, etc.
Such devices can also include a computer-readable storage media reader, a communications device (e.g., a modem, a network card (wireless or wired), an infrared communication device) and working memory as described above. The computer-readable storage media reader can be connected with, or configured to receive, a computer-readable storage medium representing remote, local, fixed and/or removable storage devices as well as storage media for temporarily and/or more permanently containing, storing, transmitting and retrieving computer-readable information. The system and various devices also typically will include a number of software applications, modules, services or other elements located within at least one working memory device, including an operating system and application programs such as a client application or Web browser. It should be appreciated that alternate embodiments may have numerous variations from that described above. For example, customized hardware might also be used and/or particular elements might be implemented in hardware, software (including portable software, such as applets) or both. Further, connection to other computing devices such as network input/output devices may be employed.
Storage media and computer readable media for containing code, or portions of code, can include any appropriate media known or used in the art, including storage media and communication media, such as but not limited to volatile and non-volatile, removable and non-removable media implemented in any method or technology for storage and/or transmission of information such as computer readable instructions, data structures, program modules or other data, including RAM, ROM, EEPROM, flash memory or other memory technology, CD-ROM, digital versatile disk (DVD) or other optical storage, magnetic cassettes, magnetic tape, magnetic disk storage or other magnetic storage devices or any other medium which can be used to store the desired information and which can be accessed by a system device. Based on the disclosure and teachings provided herein, a person of ordinary skill in the art will appreciate other ways and/or methods to implement the various embodiments.
The specification and drawings are, accordingly, to be regarded in an illustrative rather than a restrictive sense. It will, however, be evident that various modifications and changes may be made thereunto without departing from the broader spirit and scope of the invention as set forth in the claims.
This application is a continuation of U.S. application Ser. No. 13/170,180, filed Jun. 27, 2011, entitled “CONTENT PROTECTION ON AN ELECTRONIC DEVICE”; which is hereby expressly incorporated herein by reference in its entirety.
Number | Name | Date | Kind |
---|---|---|---|
5544360 | Lewak et al. | Aug 1996 | A |
6633981 | Davis | Oct 2003 | B1 |
9076008 | Moy | Jul 2015 | B1 |
20020174010 | Rice, III | Nov 2002 | A1 |
20020178229 | Sinha | Nov 2002 | A1 |
20030097596 | Muratov | May 2003 | A1 |
20050138110 | Redlich | Jun 2005 | A1 |
20070016958 | Bodepudi et al. | Jan 2007 | A1 |
20070073694 | Picault et al. | Mar 2007 | A1 |
20080162603 | Garg | Jul 2008 | A1 |
20080215509 | Charlton | Sep 2008 | A1 |
20080320588 | Lipetz | Dec 2008 | A1 |
20090160609 | Lin et al. | Jun 2009 | A1 |
20090241072 | Chaudhri et al. | Sep 2009 | A1 |
20100122313 | Ivgi | May 2010 | A1 |
20100169394 | Hahn | Jul 2010 | A1 |
20100199108 | Abzarian | Aug 2010 | A1 |
20100212002 | Michener | Aug 2010 | A1 |
20100275032 | Bhangi | Oct 2010 | A1 |
20110023128 | Furuya | Jan 2011 | A1 |
20110302211 | Kilday et al. | Dec 2011 | A1 |
Entry |
---|
iPhoneHeat, “How to Password Protect/Lock Applications on iPhone with LockDown,” posted Jul. 20, 2009, 5 pages, Retrieved Jun. 11, 2013, Online: http://www.iphoneheat.com/2009/07/how-to-password-protect-applications-on-iphone/. |
Bassi, Megha, “Review: Lockdown Pro Password Protects Your iPhone Apps and Folders,” posted Jun. 2, 2011, 7 pages, Retrieved Jun. 11, 2013, Online: http://www.simonblog.com/2011/06/02/review-lockdown-pro-password-protects-your-iphone-apps-and-folders/. |
Wells, Antonio, “App Protector Android App Review,” AndroidTapp.com, posted Mar. 26, 2010, 5 pages, Retrieved Jun. 11, 2013, Online: http://www.androidtapp.com/app-protector/. |
Wells, Antonio, “Protector Android App Review,” AndroidTapp.com, posted Mar. 15, 2010, 4 pages, Retrieved Jun. 11, 2013, Online: http://www.androidtapp.com/protector/. |
Johnston, Casey, “Ask Ars: Where should I store my passwords?” Ars Technica, posted on Mar. 7, 2011, Retrieved Jun. 12, 2013, Online: http://arstechnica.com/security/2011/03/ask-ars-where-should-i-store-my-passwords/. |
Number | Date | Country | |
---|---|---|---|
Parent | 13170180 | Jun 2011 | US |
Child | 14792470 | US |