公开(公告)号：US20160125184A1

公开(公告)日：2016-05-05

申请号：US14611063

申请日：2015-01-30

Applicant: LOOKOUT, INC.

Inventor： Kevin Patrick Mahaffey ,  David Golombek ,  David Luke Richardson ,  Timothy Micheal Wyatt ,  James David Burgess ,  John G. Herring

IPC: G06F21/56 ,  H04L29/06 ,  H04W12/10

CPC classification number: G06F21/562 ,  G06F21/564 ,  G06F2221/034 ,  H04L63/1416 ,  H04W12/10 ,  H04W12/12 ,  H04W12/1208

Abstract: A system and method identifies mobile applications that are likely to have an adverse effect on a mobile network if accessed by mobile communication devices. In an implementation, a server monitors behavioral data relating to a mobile application and applies a model to determine if the application is likely to have an adverse effect on a mobile network when accessed by a plurality of mobile devices. A mobile device, computer device, or server, may monitor behavioral data, apply a model to the data, and create a disposition. They may aggregate behavioral data or disposition information from multiple devices. They may transmit or make available the disposition information to a subscriber through a web interface, API, email, or other mechanism. After identifying that an application may have an adverse effect, they may enact corrective actions, such as generating device or network configuration data.

Abstract translation: 如果由移动通信设备访问，系统和方法识别可能对移动网络有不利影响的移动应用。 在实现中，服务器监视与移动应用相关的行为数据，并且应用模型来确定当由多个移动设备访问时该应用是否可能对移动网络产生不利影响。 移动设备，计算机设备或服务器可以监视行为数据，将模型应用于数据并创建配置。 他们可能聚合来自多个设备的行为数据或处理信息。 他们可以通过Web界面，API，电子邮件或其他机制向用户发送或提供处理信息。 在识别出应用程序可能产生不利影响后，他们可能会采取纠正措施，例如生成设备或网络配置数据。

公开(公告)号：US20140189808A1

公开(公告)日：2014-07-03

申请号：US13837321

申请日：2013-03-15

Applicant: LOOKOUT, INC.

Inventor： Kevin Patrick Mahaffey ,  David Luke Richardson ,  Ariel Salomon ,  R. Tyler Croy ,  Samuel Alexander Walker ,  Brian James Buck ,  Sergio Ivan Marcin Gorrino ,  David Golombek

IPC: H04L29/06

CPC classification number: H04L63/0853 ,  H04L63/083 ,  H04W12/06

Abstract: Embodiments are directed to a system and method for authenticating a user of a client computer making a request to a server computer providing access to a network resource through an authentication platform that issues a challenge in response to the request requiring authentication of the user identity through a reply from the client computer, determining one or more items of context information related to at least one of the user, the request, and the client computer, and determining a disposition of the request based on the reply and the one or more items of context information. The reply includes a user password and may be provided by an authorizing client device coupled to the client computer over a wireless communications link.

Abstract translation: 实施例涉及一种用于认证客户端计算机的用户的系统和方法，该客户端计算机向服务器计算机提供访问，该服务器计算机通过认证平台提供对网络资源的访问，所述验证平台响应于需要通过用户身份认证的请求而发出挑战 从客户端计算机的答复，确定与用户，请求和客户端计算机中的至少一个有关的一个或多个上下文信息项，以及基于回复和一个或多个上下文条件来确定请求的处理 信息。 答复包括用户密码，并且可以由通过无线通信链路耦合到客户端计算机的授权客户端设备提供。

公开(公告)号：US20130086682A1

公开(公告)日：2013-04-04

申请号：US13689588

申请日：2012-11-29

Applicant: Lookout, Inc., a California Corporation

Inventor： Kevin Patrick Mahaffey ,  James David Burgess ,  David Golombek ,  Timothy Michael Wyatt ,  Anthony McKay Lineberry ,  Kyle Barton ,  Daniel Lee Evans ,  David Luke Richardson ,  Ariel Salomon

IPC: G06F21/56

CPC classification number: H04L63/1441 ,  G06F21/56 ,  G06F21/564 ,  G06F21/57 ,  H04L63/1433 ,  H04L63/20

Abstract: A server receives from a mobile communication device information about a data object (e.g., application) on the device when the device cannot assess the data object. The server uses the information along with other information stored at the server to assess the data object. Based on the assessment, the device may be permitted to access the data object or the device may not be permitted to access the data object. The other information stored at the server can include data objects known to be bad, data objects known to be good, or both.

Abstract translation: 当设备不能评估数据对象时，服务器从移动通信设备接收关于设备上的数据对象（例如，应用）的信息。 服务器使用信息以及服务器上存储的其他信息来评估数据对象。 基于该评估，可以允许该设备访问数据对象，或者该设备可能不被允许访问该数据对象。 存储在服务器中的其他信息可以包括已知为坏的数据对象，已知好的数据对象或两者。

公开(公告)号：US09779253B2

公开(公告)日：2017-10-03

申请号：US15393089

申请日：2016-12-28

Applicant: LOOKOUT, INC.

Inventor： Kevin Patrick Mahaffey ,  Brian James Buck ,  William Robinson ,  John G. Hering ,  James David Burgess ,  Timothy Micheal Wyatt ,  David Golombek ,  David Luke Richardson ,  Anthony McKay Lineberry ,  Kyle Barton ,  Daniel Lee Evans ,  Ariel Salomon ,  Jonathan Pantera Grubb ,  Bruce Wootton ,  Timothy Strazzere ,  Yogesh Swami

IPC: H04L29/06 ,  G06F21/57 ,  G06F21/55 ,  G06F11/00 ,  G06F12/00 ,  G06F12/14

CPC classification number: G06F21/577 ,  G06F21/554 ,  H04L63/0227 ,  H04L63/123 ,  H04L63/1425 ,  H04L63/1433 ,  H04L63/166 ,  H04W12/02 ,  H04W12/12

Abstract: Methods and systems are provided for sharing security risk information between collections of computing devices, such as mobile communications devices, to improve the functioning of devices associated with the collections. The methods and systems disclosed may share security risk information by identifying a security risk response by a first collection and then providing the security risk response to a second collection when a relationship database profile for the first collection indicates the security response may be shared with the second collection. Methods and systems are also provided for determining whether to allow a request from an originating device where the request may have been initiated by a remote device.

公开(公告)号：US20150222636A1

公开(公告)日：2015-08-06

申请号：US14688292

申请日：2015-04-16

Applicant: LOOKOUT, INC.

Inventor： Kevin Patrick Mahaffey ,  David Golombek ,  Daniel Lee Evans ,  David Luke Richardson ,  Timothy Micheal Wyatt ,  James David Burgess ,  Anthony McKay Lineberry ,  Kyle Barton

IPC: H04L29/06 ,  H04L29/08

CPC classification number: H04L63/10 ,  G06F11/3409 ,  G06F21/564 ,  H04L63/08 ,  H04L67/32 ,  H04L67/42

Abstract: Disclosed herein is a system and method for efficiently gathering information about applications for mobile communications devices (e.g., smartphones, netbooks, and tablets) and using that information to produce assessments of the applications. To gather information, a server may send a request for application data to a mobile communications device. In response, the server may receive some but not all of the first-requested application data. The server may then a second request for application data to a second mobile communications device that also has access to the application. The server may receive application data from the second mobile communications device, and store the received first- and second-requested application data. The server then uses the stored application data to assess the application.

Abstract translation: 本文公开了一种用于有效地收集关于移动通信设备（例如，智能电话，上网本和平板电脑）的应用的信息并使用该信息来产生应用的评估的系统和方法。 为了收集信息，服务器可以向移动通信设备发送应用数据请求。 作为响应，服务器可以接收一些但不是全部的第一请求的应用数据。 然后，服务器可以向也可以访问应用的第二移动通信设备的应用数据的第二请求。 服务器可以从第二移动通信设备接收应用数据，并存储接收的第一和第二请求的应用数据。 然后，服务器使用存储的应用程序数据来评估应用程序。

公开(公告)号：US20130318568A1

公开(公告)日：2013-11-28

申请号：US13958434

申请日：2013-08-02

Applicant: LOOKOUT INC.

Inventor： Kevin Patrick Mahaffey ,  David Golombek ,  Daniel Lee Evans ,  David Luke Richardson ,  Timothy Micheal Wyatt ,  James David Burgess ,  Anthony McKay Lineberry ,  Kyle Barton

IPC: H04L29/06

CPC classification number: H04L63/10 ,  G06F11/3409 ,  G06F21/564 ,  H04L63/08 ,  H04L67/32 ,  H04L67/42

Abstract: A server receives from a mobile communication device application data identifying a data object accessible by the mobile communication device. The server uses at least some of the application data to assess the data object. The application data can include, for example, behavioral data, metadata, parts of the data object, information indicating the data object is installed on the mobile communication device, or combinations of these.

Abstract translation: 服务器从移动通信设备接收识别移动通信设备可访问的数据对象的应用程序数据。 服务器至少使用一些应用数据来评估数据对象。 应用数据可以包括例如行为数据，元数据，数据对象的部分，指示数据对象的信息安装在移动通信设备上，或者这些的组合。

公开(公告)号：US09860263B2

公开(公告)日：2018-01-02

申请号：US15498325

申请日：2017-04-26

Applicant: LOOKOUT, INC.

Inventor： Kevin Patrick Mahaffey ,  James David Burgess ,  David Golombek ,  Timothy Micheal Wyatt ,  Anthony McKay Lineberry ,  Kyle Barton ,  Daniel Lee Evans ,  David Luke Richardson ,  Ariel Salomon

IPC: H04L29/06 ,  G06F11/00 ,  G06F12/14 ,  G06F12/16 ,  G08B23/00

CPC classification number: G06F21/577 ,  G06F21/554 ,  H04L63/0227 ,  H04L63/123 ,  H04L63/1425 ,  H04L63/1433 ,  H04L63/166 ,  H04W12/02 ,  H04W12/12

Abstract: A server receives from a mobile communication device information about a data object (e.g., application) on the device when the device cannot assess the data object. The server uses the information along with other information stored at the server to assess the data object. Based on the assessment, the device may be permitted to access the data object or the device may not be permitted to access the data object. The other information stored at the server can include data objects known to be bad, data objects known to be good, or both.

公开(公告)号：US20170230397A1

公开(公告)日：2017-08-10

申请号：US15498325

申请日：2017-04-26

Applicant: LOOKOUT, INC.

Inventor： Kevin Patrick Mahaffey ,  James David Burgess ,  David Golombek ,  Timothy Micheal Wyatt ,  Anthony McKay Lineberry ,  Kyle Barton ,  Daniel Lee Evans ,  David Luke Richardson ,  Ariel Salomon

IPC: H04L29/06

CPC classification number: G06F21/577 ,  G06F21/554 ,  H04L63/0227 ,  H04L63/123 ,  H04L63/1425 ,  H04L63/1433 ,  H04L63/166 ,  H04W12/02 ,  H04W12/12

Abstract: A server receives from a mobile communication device information about a data object (e.g., application) on the device when the device cannot assess the data object. The server uses the information along with other information stored at the server to assess the data object. Based on the assessment, the device may be permitted to access the data object or the device may not be permitted to access the data object. The other information stored at the server can include data objects known to be bad, data objects known to be good, or both.

公开(公告)号：US09344431B2

公开(公告)日：2016-05-17

申请号：US14688292

申请日：2015-04-16

Applicant: LOOKOUT, INC.

Inventor： Kevin Patrick Mahaffey ,  David Golombek ,  Daniel Lee Evans ,  David Luke Richardson ,  Timothy Micheal Wyatt ,  James David Burgess ,  Anthony McKay Lineberry ,  Kyle Barton

IPC: H04L29/06 ,  G06F21/56 ,  H04L29/08 ,  G06F7/04 ,  G06F15/16 ,  G06F17/30 ,  G06F11/34

CPC classification number: H04L63/10 ,  G06F11/3409 ,  G06F21/564 ,  H04L63/08 ,  H04L67/32 ,  H04L67/42

Abstract: Disclosed herein is a system and method for efficiently gathering information about applications for mobile communications devices (e.g., smartphones, netbooks, and tablets) and using that information to produce assessments of the applications. To gather information, a server may send a request for application data to a mobile communications device. In response, the server may receive some but not all of the first-requested application data. The server may then a second request for application data to a second mobile communications device that also has access to the application. The server may receive application data from the second mobile communications device, and store the received first- and second-requested application data. The server then uses the stored application data to assess the application.

Abstract translation: 本文公开了一种用于有效地收集关于移动通信设备（例如，智能电话，上网本和平板电脑）的应用的信息并使用该信息来产生应用的评估的系统和方法。 为了收集信息，服务器可以向移动通信设备发送应用数据请求。 作为响应，服务器可以接收一些但不是全部的第一请求的应用数据。 然后，服务器可以向也可以访问应用的第二移动通信设备的应用数据的第二请求。 服务器可以从第二移动通信设备接收应用数据，并存储接收的第一和第二请求的应用数据。 然后，服务器使用存储的应用程序数据来评估应用程序。

公开(公告)号：US20160099963A1

公开(公告)日：2016-04-07

申请号：US14973636

申请日：2015-12-17

Applicant: LOOKOUT, INC.

Inventor： Kevin Patrick Mahaffey ,  Brian James Buck ,  William Robinson ,  John G. Hering ,  James David Burgess ,  Timothy Micheal Wyatt ,  David Golombek ,  David Luke Richardson ,  Anthony McKay Lineberry ,  Kyle Barton ,  Daniel Lee Evans ,  Ariel Salomon ,  Jonathan Pantera Grubb ,  Bruce Wootton ,  Timothy Strazzere ,  Yogesh Swami

IPC: H04L29/06 ,  G06F21/57 ,  G06F21/55

CPC classification number: G06F21/577 ,  G06F21/554 ,  H04L63/0227 ,  H04L63/123 ,  H04L63/1425 ,  H04L63/1433 ,  H04L63/166 ,  H04W12/02 ,  H04W12/12

Abstract: Methods are provided for determining an enterprise risk level, for sharing security risk information between enterprises by identifying a security response by a first enterprise and then sharing the security response to a second enterprise when a relationship database profile for the first collection indicates the security response may be shared. Methods are also provided for determining whether to allow a request from an originating device where the request may have been initiated by a remote device.

Abstract translation: 提供了用于确定企业风险级别的方法，用于通过识别第一企业的安全响应，然后当第一集合的关系数据库配置文件指示安全响应时，向第二企业共享安全响应，来共享企业之间的安全风险信息。 被分享。 还提供了用于确定是否允许来自始发设备的请求可能由远程设备发起的请求的方法。