公开(公告)号：US10509910B2

公开(公告)日：2019-12-17

申请号：US16443682

申请日：2019-06-17

Applicant: LOOKOUT, INC.

Inventor： Kevin Patrick Mahaffey ,  John G. Hering ,  James David Burgess ,  Brian James Buck ,  William Robinson

IPC: G06F21/57 ,  H04L29/06 ,  H04W12/12 ,  G06F21/55 ,  H04W12/02 ,  H04W12/00

Abstract: A software component, upon receiving a request for access to a provider having a plurality of service levels, determines the current security state of the requesting device. The security state of the requesting device varies according to severity levels of device security events. The software component compares that security state to a policy associated with the provider. The software component then allows the requesting device access to the provider services where the device's current security state meets or exceeds the security state required for the service.

公开(公告)号：US20180206124A1

公开(公告)日：2018-07-19

申请号：US15920305

申请日：2018-03-13

Applicant: LOOKOUT, INC.

Inventor： Kevin Patrick Mahaffey ,  John G. Hering ,  James David Burgess ,  Vance Grkov ,  David Luke Richardson ,  Ayan Mandal ,  Cherry Mangat ,  Brian James Buck ,  William Robinson

IPC: H04W12/08 ,  G06F21/31 ,  G06F21/88 ,  H04W4/02 ,  H04L29/06 ,  H04M15/00 ,  H04W4/021 ,  H04W12/12 ,  H04W4/90 ,  H04W8/24 ,  H04W48/02

CPC classification number: H04W12/08 ,  G06F21/316 ,  G06F21/88 ,  H04L63/0861 ,  H04L63/14 ,  H04M15/58 ,  H04M15/7652 ,  H04W4/021 ,  H04W4/025 ,  H04W4/027 ,  H04W4/029 ,  H04W4/90 ,  H04W8/245 ,  H04W12/00508 ,  H04W12/1206 ,  H04W48/02

Abstract: A method is provided for comparing a usage of a mobile communications device to a stored pattern of usage. When a measure associated with a difference between the usage and the stored usage pattern exceeds a threshold, the mobile communications device is caused to emit a sound encoded with information that may be decoded by another electronic device.

公开(公告)号：US09955352B2

公开(公告)日：2018-04-24

申请号：US14937781

申请日：2015-11-10

Applicant: LOOKOUT, INC.

Inventor： Kevin Patrick Mahaffey ,  John G. Hering ,  James David Burgess ,  Vance Grkov ,  David Luke Richardson ,  Ayan Mandal ,  Cherry Mangat ,  Brian James Buck ,  William Robinson

IPC: H04M1/66 ,  H04W12/08 ,  H04M15/00 ,  H04L29/06 ,  H04W4/02 ,  H04W12/12 ,  G06F21/31 ,  G06F21/88 ,  H04W8/24 ,  H04W4/22 ,  H04W48/02

CPC classification number: H04W12/08 ,  G06F21/316 ,  G06F21/88 ,  H04L63/0861 ,  H04L63/14 ,  H04M15/58 ,  H04M15/7652 ,  H04W4/02 ,  H04W4/021 ,  H04W4/025 ,  H04W4/027 ,  H04W4/90 ,  H04W8/245 ,  H04W12/12 ,  H04W48/02

Abstract: A method is provided for evaluating the usage of a mobile communications device that itself provides access to a resource. In the method, a detected usage of the mobile communications device is compared to a stored usage pattern of an authorized user. When a measure associated with the difference between the detected usage and the stored usage pattern exceeds a threshold, it is concluded that the mobile communications device is being used by an unauthorized user. In response to this conclusion, a restriction is placed on an ability of the mobile communications device to access the resource.

公开(公告)号：US09779253B2

公开(公告)日：2017-10-03

申请号：US15393089

申请日：2016-12-28

Applicant: LOOKOUT, INC.

Inventor： Kevin Patrick Mahaffey ,  Brian James Buck ,  William Robinson ,  John G. Hering ,  James David Burgess ,  Timothy Micheal Wyatt ,  David Golombek ,  David Luke Richardson ,  Anthony McKay Lineberry ,  Kyle Barton ,  Daniel Lee Evans ,  Ariel Salomon ,  Jonathan Pantera Grubb ,  Bruce Wootton ,  Timothy Strazzere ,  Yogesh Swami

IPC: H04L29/06 ,  G06F21/57 ,  G06F21/55 ,  G06F11/00 ,  G06F12/00 ,  G06F12/14

CPC classification number: G06F21/577 ,  G06F21/554 ,  H04L63/0227 ,  H04L63/123 ,  H04L63/1425 ,  H04L63/1433 ,  H04L63/166 ,  H04W12/02 ,  H04W12/12

Abstract: Methods and systems are provided for sharing security risk information between collections of computing devices, such as mobile communications devices, to improve the functioning of devices associated with the collections. The methods and systems disclosed may share security risk information by identifying a security risk response by a first collection and then providing the security risk response to a second collection when a relationship database profile for the first collection indicates the security response may be shared with the second collection. Methods and systems are also provided for determining whether to allow a request from an originating device where the request may have been initiated by a remote device.

公开(公告)号：US20150222636A1

公开(公告)日：2015-08-06

申请号：US14688292

申请日：2015-04-16

Applicant: LOOKOUT, INC.

Inventor： Kevin Patrick Mahaffey ,  David Golombek ,  Daniel Lee Evans ,  David Luke Richardson ,  Timothy Micheal Wyatt ,  James David Burgess ,  Anthony McKay Lineberry ,  Kyle Barton

IPC: H04L29/06 ,  H04L29/08

CPC classification number: H04L63/10 ,  G06F11/3409 ,  G06F21/564 ,  H04L63/08 ,  H04L67/32 ,  H04L67/42

Abstract: Disclosed herein is a system and method for efficiently gathering information about applications for mobile communications devices (e.g., smartphones, netbooks, and tablets) and using that information to produce assessments of the applications. To gather information, a server may send a request for application data to a mobile communications device. In response, the server may receive some but not all of the first-requested application data. The server may then a second request for application data to a second mobile communications device that also has access to the application. The server may receive application data from the second mobile communications device, and store the received first- and second-requested application data. The server then uses the stored application data to assess the application.

Abstract translation: 本文公开了一种用于有效地收集关于移动通信设备（例如，智能电话，上网本和平板电脑）的应用的信息并使用该信息来产生应用的评估的系统和方法。 为了收集信息，服务器可以向移动通信设备发送应用数据请求。 作为响应，服务器可以接收一些但不是全部的第一请求的应用数据。 然后，服务器可以向也可以访问应用的第二移动通信设备的应用数据的第二请求。 服务器可以从第二移动通信设备接收应用数据，并存储接收的第一和第二请求的应用数据。 然后，服务器使用存储的应用程序数据来评估应用程序。

公开(公告)号：US20130318568A1

公开(公告)日：2013-11-28

申请号：US13958434

申请日：2013-08-02

Applicant: LOOKOUT INC.

Inventor： Kevin Patrick Mahaffey ,  David Golombek ,  Daniel Lee Evans ,  David Luke Richardson ,  Timothy Micheal Wyatt ,  James David Burgess ,  Anthony McKay Lineberry ,  Kyle Barton

IPC: H04L29/06

CPC classification number: H04L63/10 ,  G06F11/3409 ,  G06F21/564 ,  H04L63/08 ,  H04L67/32 ,  H04L67/42

Abstract: A server receives from a mobile communication device application data identifying a data object accessible by the mobile communication device. The server uses at least some of the application data to assess the data object. The application data can include, for example, behavioral data, metadata, parts of the data object, information indicating the data object is installed on the mobile communication device, or combinations of these.

Abstract translation: 服务器从移动通信设备接收识别移动通信设备可访问的数据对象的应用程序数据。 服务器至少使用一些应用数据来评估数据对象。 应用数据可以包括例如行为数据，元数据，数据对象的部分，指示数据对象的信息安装在移动通信设备上，或者这些的组合。

公开(公告)号：US20230247428A1

公开(公告)日：2023-08-03

申请号：US18299340

申请日：2023-04-12

Applicant: Lookout, Inc.

Inventor： Kevin Patrick Mahaffey ,  John G. Hering ,  James David Burgess ,  Vance Grkov ,  David Luke Richardson ,  Ayan Mandal ,  Cherry Mangat ,  Brian James Buck ,  William Robinson

IPC: H04W12/08 ,  H04M15/00 ,  H04W4/029 ,  H04L9/40 ,  H04W4/021 ,  H04W4/02 ,  G06F21/31 ,  G06F21/88 ,  H04W12/12 ,  H04W12/126 ,  H04W12/30

CPC classification number: H04W12/08 ,  H04M15/58 ,  H04M15/7652 ,  H04W4/029 ,  H04L63/14 ,  H04W4/021 ,  H04W4/025 ,  G06F21/316 ,  G06F21/88 ,  H04W12/12 ,  H04W12/126 ,  H04W12/30 ,  H04L63/0861 ,  H04W4/90

Abstract: A method is provided for evaluating the usage of a mobile communications device that itself provides access to a resource. In the method, a detected usage of the mobile communications device is compared to a stored usage pattern of an authorized user. When a measure associated with the difference between the detected usage and the stored usage pattern exceeds a threshold, it is concluded that the mobile communications device is being used by an unauthorized user. In response to this conclusion, a restriction is placed on an ability of the mobile communications device to access the resource.

公开(公告)号：US11641583B2

公开(公告)日：2023-05-02

申请号：US17472077

申请日：2021-09-10

Applicant: LOOKOUT, INC.

Inventor： Kevin Patrick Mahaffey ,  John G. Hering ,  James David Burgess ,  Vance Grkov ,  David Luke Richardson ,  Ayan Mandal ,  Cherry Mangat ,  Brian James Buck ,  William Robinson

IPC: H04W12/08 ,  H04W12/12 ,  H04W12/30 ,  H04M15/00 ,  H04W4/029 ,  H04L9/40 ,  H04W4/021 ,  H04W4/02 ,  G06F21/31 ,  G06F21/88 ,  H04W12/126 ,  H04W4/90 ,  H04W48/02 ,  H04W8/24 ,  H04W12/68

Abstract: A method is provided for evaluating the usage of a mobile communications device that itself provides access to a resource. In the method, a detected usage of the mobile communications device is compared to a stored usage pattern of an authorized user. When a measure associated with the difference between the detected usage and the stored usage pattern exceeds a threshold, it is concluded that the mobile communications device is being used by an unauthorized user. In response to this conclusion, a restriction is placed on an ability of the mobile communications device to access the resource.

公开(公告)号：US09407640B2

公开(公告)日：2016-08-02

申请号：US14634115

申请日：2015-02-27

Applicant: LOOKOUT, INC.

Inventor： Kevin Patrick Mahaffey ,  John G. Hering ,  James David Burgess

IPC: H04L29/06 ,  G06F21/30 ,  G06F21/31 ,  G06F21/57 ,  H04W12/08 ,  G06F15/16 ,  G06F17/30 ,  G06F7/04

CPC classification number: H04L63/10 ,  G06F21/30 ,  G06F21/31 ,  G06F21/577 ,  G06F2221/2129 ,  H04L63/102 ,  H04L63/1416 ,  H04L2463/102 ,  H04W12/08

Abstract: Methods for assessing the current security state of a mobile communications device to determine access to specific tasks is presented. A security component on a server is configured to receive a request to access services from a mobile communications device for a specific task. The security component on the server is further configured to determine whether a security state for the mobile communications device is acceptable for access to the services. Based on the security state for the mobile device being determined to be acceptable for access to the services, access to the services is granted and a determination is whether the security state is acceptable for access to the specific task requested. Based on the security state being determined to be acceptable for access to the specific task requested, access to the specific task requested is granted by the server security component.

Abstract translation: 介绍了评估移动通信设备当前安全状态以确定访问特定任务的方法。 服务器上的安全组件被配置为从特定任务的移动通信设备接收访问服务的请求。 服务器上的安全组件还被配置为确定用于移动通信设备的安全状态是否可接受用于访问服务的安全状态。 基于移动设备被确定为可接受的服务的安全状态，允许对服务的访问，并确定安全状态是否可接受以访问所请求的特定任务。 基于安全状态被确定为可接受以访问所请求的特定任务，对服务器安全组件授予对所请求的特定任务的访问。

公开(公告)号：US20160125184A1

公开(公告)日：2016-05-05

申请号：US14611063

申请日：2015-01-30

Applicant: LOOKOUT, INC.

Inventor： Kevin Patrick Mahaffey ,  David Golombek ,  David Luke Richardson ,  Timothy Micheal Wyatt ,  James David Burgess ,  John G. Herring

IPC: G06F21/56 ,  H04L29/06 ,  H04W12/10

CPC classification number: G06F21/562 ,  G06F21/564 ,  G06F2221/034 ,  H04L63/1416 ,  H04W12/10 ,  H04W12/12 ,  H04W12/1208

Abstract: A system and method identifies mobile applications that are likely to have an adverse effect on a mobile network if accessed by mobile communication devices. In an implementation, a server monitors behavioral data relating to a mobile application and applies a model to determine if the application is likely to have an adverse effect on a mobile network when accessed by a plurality of mobile devices. A mobile device, computer device, or server, may monitor behavioral data, apply a model to the data, and create a disposition. They may aggregate behavioral data or disposition information from multiple devices. They may transmit or make available the disposition information to a subscriber through a web interface, API, email, or other mechanism. After identifying that an application may have an adverse effect, they may enact corrective actions, such as generating device or network configuration data.

Abstract translation: 如果由移动通信设备访问，系统和方法识别可能对移动网络有不利影响的移动应用。 在实现中，服务器监视与移动应用相关的行为数据，并且应用模型来确定当由多个移动设备访问时该应用是否可能对移动网络产生不利影响。 移动设备，计算机设备或服务器可以监视行为数据，将模型应用于数据并创建配置。 他们可能聚合来自多个设备的行为数据或处理信息。 他们可以通过Web界面，API，电子邮件或其他机制向用户发送或提供处理信息。 在识别出应用程序可能产生不利影响后，他们可能会采取纠正措施，例如生成设备或网络配置数据。