IN2014CN00388A - - Google Patents

Info

Publication number
IN2014CN00388A
IN2014CN00388A IN388CHN2014A IN2014CN00388A IN 2014CN00388 A IN2014CN00388 A IN 2014CN00388A IN 388CHN2014 A IN388CHN2014 A IN 388CHN2014A IN 2014CN00388 A IN2014CN00388 A IN 2014CN00388A
Authority
IN
India
Prior art keywords
secure
data
mobile device
methods
devices
Prior art date
Application number
Other languages
English (en)
Inventor
Charles C Kelly
Joshua R Davis
Original Assignee
Qualcomm Inc
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Qualcomm Inc filed Critical Qualcomm Inc
Publication of IN2014CN00388A publication Critical patent/IN2014CN00388A/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/02Protecting privacy or anonymity, e.g. protecting personally identifiable information [PII]
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/52Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems during program execution, e.g. stack integrity ; Preventing unwanted data erasure; Buffer overflow
    • G06F21/53Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems during program execution, e.g. stack integrity ; Preventing unwanted data erasure; Buffer overflow by executing in a restricted environment, e.g. sandbox or secure virtual machine
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/08Access security
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/08Access security
    • H04W12/082Access security using revocation of authorisation
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/30Security of mobile devices; Security of mobile applications
    • H04W12/35Protecting application or service provisioning, e.g. securing SIM application provisioning
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/30Security of mobile devices; Security of mobile applications
    • H04W12/37Managing security policies for mobile devices or for controlling mobile applications
IN388CHN2014 2011-08-10 2012-08-10 IN2014CN00388A (fr)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US13/207,134 US8949929B2 (en) 2011-08-10 2011-08-10 Method and apparatus for providing a secure virtual environment on a mobile device
PCT/US2012/050440 WO2013023179A1 (fr) 2011-08-10 2012-08-10 Procédé et appareil pour fournir un environnement virtuel sécurisé à un appareil mobile

Publications (1)

Publication Number Publication Date
IN2014CN00388A true IN2014CN00388A (fr) 2015-04-03

Family

ID=46750474

Family Applications (1)

Application Number Title Priority Date Filing Date
IN388CHN2014 IN2014CN00388A (fr) 2011-08-10 2012-08-10

Country Status (7)

Country Link
US (1) US8949929B2 (fr)
EP (1) EP2742710B1 (fr)
JP (1) JP6014671B2 (fr)
KR (1) KR101571641B1 (fr)
CN (2) CN110598395A (fr)
IN (1) IN2014CN00388A (fr)
WO (1) WO2013023179A1 (fr)

Families Citing this family (91)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8650620B2 (en) 2010-12-20 2014-02-11 At&T Intellectual Property I, L.P. Methods and apparatus to control privileges of mobile device applications
US9339727B2 (en) 2011-06-15 2016-05-17 Microsoft Technology Licensing, Llc Position-based decision to provide service
US8843764B2 (en) 2011-07-15 2014-09-23 Cavium, Inc. Secure software and hardware association technique
US8700709B2 (en) 2011-07-29 2014-04-15 Microsoft Corporation Conditional location-based reminders
US20130045729A1 (en) * 2011-08-17 2013-02-21 Microsoft Corporation Location-based promotion of applications
US8918841B2 (en) * 2011-08-31 2014-12-23 At&T Intellectual Property I, L.P. Hardware interface access control for mobile applications
US8898459B2 (en) 2011-08-31 2014-11-25 At&T Intellectual Property I, L.P. Policy configuration for mobile device applications
US9489541B2 (en) * 2011-09-09 2016-11-08 Nvidia Corporation Content protection via online servers and code execution in a secure operating system
US10165007B2 (en) * 2011-09-15 2018-12-25 Microsoft Technology Licensing, Llc Securing data usage in computing devices
US9280377B2 (en) 2013-03-29 2016-03-08 Citrix Systems, Inc. Application with multiple operation modes
US9215225B2 (en) * 2013-03-29 2015-12-15 Citrix Systems, Inc. Mobile device locking with context
US9143529B2 (en) 2011-10-11 2015-09-22 Citrix Systems, Inc. Modifying pre-existing mobile applications to implement enterprise security policies
US8832799B2 (en) * 2011-10-31 2014-09-09 Motorola Mobility Llc Methods and apparatuses for hybrid desktop environment data usage authentication
US8893261B2 (en) 2011-11-22 2014-11-18 Vmware, Inc. Method and system for VPN isolation using network namespaces
KR101947651B1 (ko) * 2012-03-21 2019-02-13 삼성전자주식회사 보안 모바일 웹 클라이언트 및 웹 서버 시스템
US20130254906A1 (en) * 2012-03-22 2013-09-26 Cavium, Inc. Hardware and Software Association and Authentication
TW201349009A (zh) 2012-04-13 2013-12-01 Ologn Technologies Ag 用於數位通信之安全區
CA3118235A1 (fr) 2012-04-13 2013-10-17 Ologn Technologies Ag Appareils, procedes et systemes pour transactions securisees automatisees
TW201403375A (zh) 2012-04-20 2014-01-16 歐樂岡科技公司 用於安全購買之安全區
CN103596170A (zh) * 2012-08-17 2014-02-19 中兴通讯股份有限公司 一种利用用户识别卡对终端进行加密的方法和系统
US9774658B2 (en) 2012-10-12 2017-09-26 Citrix Systems, Inc. Orchestration framework for connected devices
US8726343B1 (en) 2012-10-12 2014-05-13 Citrix Systems, Inc. Managing dynamic policies and settings in an orchestration framework for connected devices
US8910239B2 (en) 2012-10-15 2014-12-09 Citrix Systems, Inc. Providing virtualized private network tunnels
US9971585B2 (en) 2012-10-16 2018-05-15 Citrix Systems, Inc. Wrapping unmanaged applications on a mobile device
US20140108793A1 (en) 2012-10-16 2014-04-17 Citrix Systems, Inc. Controlling mobile device access to secure data
US20140109072A1 (en) 2012-10-16 2014-04-17 Citrix Systems, Inc. Application wrapping for application management framework
ES2955491T3 (es) 2012-11-02 2023-12-01 Variable Inc Sistema y método implementados por ordenador para detección, almacenamiento y comparación de colores
US20140173692A1 (en) * 2012-12-15 2014-06-19 Sudharshan Srinivasan Bring your own device system using a mobile accessory device
US20140282543A1 (en) * 2013-03-15 2014-09-18 Ologn Technologies Ag Secure zone on a virutal machine for digital communications
CA3234925A1 (fr) 2013-03-15 2014-09-18 Ologn Technologies Ag Systemes, procedes et appareils de stockage et de fourniture securises d'informations de paiement
US9413736B2 (en) * 2013-03-29 2016-08-09 Citrix Systems, Inc. Providing an enterprise application store
US10284627B2 (en) 2013-03-29 2019-05-07 Citrix Systems, Inc. Data management for an application with multiple operation modes
US9985850B2 (en) * 2013-03-29 2018-05-29 Citrix Systems, Inc. Providing mobile device management functionalities
US9355223B2 (en) 2013-03-29 2016-05-31 Citrix Systems, Inc. Providing a managed browser
KR102095912B1 (ko) * 2013-05-15 2020-04-02 삼성전자 주식회사 보안 기능 운용 방법 및 이를 지원하는 전자 장치
WO2014204363A1 (fr) * 2013-06-19 2014-12-24 Telefonaktiebolaget L M Ericsson (Publ) Procédé et circuit intégré pour exécuter une application sécurisée dans un environnement d'exécution sécurisé
EP3028210B1 (fr) 2013-08-02 2020-01-08 OLogN Technologies AG Serveur sécurisé dans un système avec des machines virtuelles
US9674323B1 (en) * 2013-08-29 2017-06-06 Variable, Inc. Modular multi-functional device, method, and system
EP2851833B1 (fr) 2013-09-20 2017-07-12 Open Text S.A. Architecture de passerelle d'application avec promulgations de politique et de règles de sécurité multiples niveaux
US10824756B2 (en) 2013-09-20 2020-11-03 Open Text Sa Ulc Hosted application gateway architecture with multi-level security policy and rule promulgations
US9674225B2 (en) 2013-09-20 2017-06-06 Open Text Sa Ulc System and method for updating downloaded applications using managed container
US9218494B2 (en) 2013-10-16 2015-12-22 Citrix Systems, Inc. Secure client drive mapping and file storage system for mobile device management type security
US9342331B2 (en) * 2013-10-21 2016-05-17 International Business Machines Corporation Secure virtualized mobile cellular device
US9729551B1 (en) * 2013-11-26 2017-08-08 Mobile Iron, Inc. Virtual mailbox
US9785794B2 (en) * 2013-12-12 2017-10-10 Citrix Systems, Inc. Securing sensitive data on a mobile device
US8886933B1 (en) * 2013-12-17 2014-11-11 Google Inc. Streamlined provisioning and configuration of computing devices
WO2015099698A1 (fr) * 2013-12-24 2015-07-02 Intel Corporation Protection de contenu pour données à la demande (daas)
US9311484B2 (en) 2014-01-09 2016-04-12 International Business Machines Corporation Enhanced security and resource utilization in a multi-operating system environment
US9697374B2 (en) * 2014-02-19 2017-07-04 Microsoft Technology Licensing, Llc Data proxy service
US9760710B2 (en) * 2014-02-28 2017-09-12 Sap Se Password recovering for mobile applications
WO2015143554A1 (fr) * 2014-03-24 2015-10-01 TrustPoint Innovation Technologies, Ltd. Gestion et distribution de politiques de sécurité dans un système de communication
US9521116B2 (en) * 2014-06-11 2016-12-13 Verizon Patent And Licensing Inc. Apparatus, method, and system for securing a public wireless network
US9715597B2 (en) * 2014-09-25 2017-07-25 Mcafee, Inc. Data verification using enclave attestation
US9785999B2 (en) * 2014-10-02 2017-10-10 Coupa Software Incorporated Providing access to a networked application without authentication
US9507951B2 (en) * 2014-10-20 2016-11-29 Intel Corporation Technologies for secure input and display of virtual touch user interfaces
CN104331667B (zh) * 2014-10-24 2018-10-26 宇龙计算机通信科技(深圳)有限公司 基于双系统的数据保存方法及系统
US9767324B2 (en) 2014-11-22 2017-09-19 Intel Corporation Transparent execution of secret content
CN105762928B (zh) * 2014-12-15 2019-07-26 国家电网公司 一种储能电站监控系统
CN107873079B (zh) 2015-05-01 2019-08-02 变量公司 智能对准系统和用于彩色感测装置的方法
BR102015015270B1 (pt) * 2015-06-24 2022-11-29 Samsung Eletrônica Da Amazônia Ltda Método para fornecer um modo de segurança para aplicações de dispositivos móveis
US11593075B2 (en) 2015-11-03 2023-02-28 Open Text Sa Ulc Streamlined fast and efficient application building and customization systems and methods
KR102088290B1 (ko) * 2016-01-07 2020-03-12 한국전자통신연구원 보안 영역 기반의 신뢰서비스 제공 방법 및 이를 이용한 장치
US10419401B2 (en) * 2016-01-08 2019-09-17 Capital One Services, Llc Methods and systems for securing data in the public cloud
US11797706B2 (en) * 2016-02-09 2023-10-24 Health2047, Inc. Mobile device network traffic modification and user based restrictions on data access
DE102016210788B4 (de) * 2016-02-18 2023-06-07 Volkswagen Aktiengesellschaft Komponente zur Verarbeitung eines schützenswerten Datums und Verfahren zur Umsetzung einer Sicherheitsfunktion zum Schutz eines schützenswerten Datums in einer solchen Komponente
US11388037B2 (en) 2016-02-25 2022-07-12 Open Text Sa Ulc Systems and methods for providing managed services
US10498726B2 (en) * 2016-03-22 2019-12-03 International Business Machines Corporation Container independent secure file system for security application containers
US9769131B1 (en) 2016-08-02 2017-09-19 Architecture Technology Corporation Fast reconfiguring environment for mobile computing devices
US10592639B2 (en) 2016-09-06 2020-03-17 Intel Corporation Blockchain-based shadow images to facilitate copyright protection of digital content
GB2555569B (en) * 2016-10-03 2019-06-12 Haddad Elias Enhanced computer objects security
US10574689B1 (en) * 2016-10-06 2020-02-25 Hoyos Vsn Corp. Mitigating mobile OS intrusions from user space applications using secure services and biometric identification
US10733284B2 (en) * 2016-10-06 2020-08-04 Samsung Electronics Co., Ltd. Trusted execution environment secure element communication
JP2018106455A (ja) * 2016-12-27 2018-07-05 株式会社ケイエスジェイ 組み込み機器
TWI673667B (zh) * 2017-01-25 2019-10-01 楊建綱 內建智慧安全行動裝置
WO2018151851A1 (fr) * 2017-02-16 2018-08-23 Tenta, Llc Système et procédé d'établissement de réseaux privés virtuels cryptés simultanés à partir d'un dispositif informatique unique
WO2018151847A1 (fr) * 2017-02-16 2018-08-23 Tenta, Llc Système et procédé permettant de créer un point d'accès sans fil de réseau privé virtuel crypté
US11122013B2 (en) * 2017-02-16 2021-09-14 Emerald Cactus Ventures, Inc. System and method for encrypting data interactions delineated by zones
CN110463163B (zh) * 2017-03-28 2022-08-05 Netapp股份有限公司 用于提供对会话服务器的按需唤醒访问的方法及系统
GB2561396B (en) 2017-04-13 2020-07-15 Barclays Execution Services Ltd Data security using two operating environments operating in parallel
CN107229863A (zh) * 2017-06-12 2017-10-03 济南浪潮高新科技投资发展有限公司 一种安全运行环境虚拟方法
KR20190044815A (ko) * 2017-10-23 2019-05-02 삼성전자주식회사 보안 서비스 제어를 위한 시스템 및 그의 동작 방법
CN110362976B (zh) * 2018-04-11 2021-05-07 旭景科技股份有限公司 生物识别安全装置
CN110765439B (zh) * 2018-08-17 2023-01-31 安天科技集团股份有限公司 一种移动存储加密认证的方法、装置及存储介质
US10746599B2 (en) 2018-10-30 2020-08-18 Variable, Inc. System and method for spectral interpolation using multiple illumination sources
US11586750B2 (en) * 2019-03-21 2023-02-21 Blackberry Limited Managing access to protected data file content
FR3100901B1 (fr) * 2019-09-12 2021-08-27 Stmicroelectronics Grand Ouest Sas Système de protection de la mémoire
US11012326B1 (en) * 2019-12-17 2021-05-18 CloudFit Software, LLC Monitoring user experience using data blocks for secure data access
CN111756718B (zh) * 2020-06-15 2022-09-30 深信服科技股份有限公司 终端及访问方法、系统、服务器和计算机可读存储介质
US11716355B1 (en) 2020-11-24 2023-08-01 Wells Fargo Bank, N.A. Company controlled virtual computer over a network
FR3128040B1 (fr) * 2021-10-08 2023-10-27 Cyferall Application de sécurité pour un dispositif informatique, système de sécurité et architecture de sécurité correspondante
CN114900332A (zh) * 2022-04-12 2022-08-12 深圳市乐凡信息科技有限公司 虚拟环境的数据传输方法、装置、设备及存储介质

Family Cites Families (29)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20040163087A1 (en) * 2003-02-14 2004-08-19 Carl Sandland Computer program code and method for delivering external data to a process running on a virtual machine
US8074266B2 (en) * 2004-08-20 2011-12-06 Mitsubishi Electric Corporation Memory card, data exchange system, and data exchange method
EP1811387A4 (fr) * 2004-08-25 2016-04-13 Nec Corp Dispositif de communication d'informations et procede de commande d'environnement d'execution de programme
CN100388666C (zh) * 2004-12-09 2008-05-14 腾讯科技(深圳)有限公司 一种数据传输过程的控制方法及系统
US8060683B2 (en) * 2004-12-17 2011-11-15 International Business Machines Corporation System, method and program to preserve a cache of a virtual machine
US7823214B2 (en) * 2005-01-07 2010-10-26 Apple Inc. Accessory authentication for electronic devices
US7693838B2 (en) * 2005-11-12 2010-04-06 Intel Corporation Method and apparatus for securely accessing data
US7984109B2 (en) 2006-02-24 2011-07-19 Qualcomm Incorporated System and method for storing and accessing data files at wireless devices
US7779252B2 (en) 2006-03-21 2010-08-17 Harris Corporation Computer architecture for a handheld electronic device with a shared human-machine interface
GB2440170B8 (en) 2006-07-14 2014-07-16 Vodafone Plc Digital rights management
US8126506B2 (en) * 2007-02-14 2012-02-28 Nuance Communications, Inc. System and method for securely managing data stored on mobile devices, such as enterprise mobility data
JP4987555B2 (ja) * 2007-04-27 2012-07-25 株式会社東芝 情報処理装置、および情報処理システム
US8769268B2 (en) 2007-07-20 2014-07-01 Check Point Software Technologies, Inc. System and methods providing secure workspace sessions
WO2009013673A2 (fr) * 2007-07-20 2009-01-29 Nxp B.V. Dispositif équipé d'une machine virtuelle sécurisée
US8554176B2 (en) * 2007-09-18 2013-10-08 Qualcomm Incorporated Method and apparatus for creating a remotely activated secure backup service for mobile handsets
US9003173B2 (en) 2007-09-28 2015-04-07 Microsoft Technology Licensing, Llc Multi-OS (operating system) boot via mobile device
JP2009169841A (ja) * 2008-01-18 2009-07-30 Panasonic Corp 情報処理装置および携帯電話装置
JP2009223776A (ja) * 2008-03-18 2009-10-01 Univ Of Tsukuba 情報処理システム及び情報処理システム用プログラム並びにクライアント装置のアクセス制御方法
KR101331032B1 (ko) * 2008-07-30 2013-11-19 삼성전자주식회사 가상화 환경과 결합된 어플리케이션 실행 방법
US8468535B1 (en) * 2008-09-23 2013-06-18 Gogrid, LLC Automated system and method to provision and allocate hosting resources
US9026918B2 (en) * 2008-10-16 2015-05-05 Accenture Global Services Limited Enabling a user device to access enterprise data
JP2010097567A (ja) * 2008-10-20 2010-04-30 Hitachi Ltd デバイス接続制御方法
JP2010257289A (ja) * 2009-04-27 2010-11-11 Nec Corp 通信装置、通信装置の制御方法、およびプログラム
US8107927B2 (en) 2009-06-18 2012-01-31 T-Mobile Usa, Inc. Dedicated memory partitions for users of a shared mobile device
US8302094B2 (en) * 2009-06-26 2012-10-30 Vmware, Inc. Routing a physical device request using transformer stack to an equivalent physical device in a virtualized mobile device
WO2011007017A1 (fr) 2009-07-13 2011-01-20 Zitralia Seguridad Informática, S.L. Dispositif électronique de génération d'un environnement sécurisé
EP3002683B1 (fr) * 2009-12-14 2017-07-12 Citrix Systems Inc. Procédés et systèmes de communication entre des machines virtuelles fiables ou non fiables
US8307169B2 (en) * 2011-03-10 2012-11-06 Safenet, Inc. Protecting guest virtual machine memory
US10503343B2 (en) * 2011-07-06 2019-12-10 Microsoft Technology Licensing, Llc Integrated graphical user interface

Also Published As

Publication number Publication date
JP6014671B2 (ja) 2016-10-25
EP2742710B1 (fr) 2020-09-23
CN110598395A (zh) 2019-12-20
CN103733663A (zh) 2014-04-16
US20130042295A1 (en) 2013-02-14
JP2014525612A (ja) 2014-09-29
KR20140058623A (ko) 2014-05-14
KR101571641B1 (ko) 2015-11-24
US8949929B2 (en) 2015-02-03
EP2742710A1 (fr) 2014-06-18
WO2013023179A1 (fr) 2013-02-14

Similar Documents

Publication Publication Date Title
IN2014CN00388A (fr)
AU2018256568A1 (en) Systems and methods for software based encryption
WO2012016091A3 (fr) Protection des documents grâce à des règles et à un chiffrement
EP4236203A3 (fr) Sécurité de données utilisant des clés fournies à la demande
EP2565862A4 (fr) Système de traitement pour cryptage, dispositif de génération de clés, dispositif de cryptage, dispositif de décryptage, système de traitement de signatures, dispositif de signature et dispositif d'authentification
WO2017034642A3 (fr) Chiffrement de chemin complet optimisable dans un environnement de virtualisation
EP3118771A4 (fr) Procédé et dispositif de gestion de données confidentielles et procédé et système d'authentification de sécurité
WO2011083343A3 (fr) Système et procédé pour mettre en oeuvre une politique informatique
GB2534470A (en) Method and apparatus for managing access to electronic content
GB2496354B (en) A method and system of providing authentication of user access to a computer resource via a mobile device using multiple separate security factors
EP2884690A4 (fr) Dispositif de génération de clé de rechiffrement, dispositif de rechiffrement, dispositif de chiffrement, dispositif de déchiffrement et programme
GB2506066A (en) Zero sign-on authentication
WO2014009813A3 (fr) Système de stockage sécurisé et utilisations dudit système
WO2016122747A3 (fr) Stockage de données chiffrées à sécurité renforcée
EP3627843A3 (fr) Systèmes et procédés permettant d'effectuer des e/s de transport
EP2882132A4 (fr) Dispositif de génération de clé secrète partagée, dispositif de chiffrement, dispositif de déchiffrement, procédé de génération de clé secrète partagée, procédé de chiffrement, procédé de déchiffrement, et programme
PH12018550176A1 (en) Using hardware based secure isolated region to prevent piracy and cheating on electronic devices
EP2947810A4 (fr) Système de cryptage, dispositif de génération de clé de recryptage, dispositif de recryptage, procédé de cryptage et programme de cryptage
WO2013130561A3 (fr) Procédé de fonctionnement d'un dispositif informatique, dispositif informatique et programme informatique
SG11201405579RA (en) Re-encrypted data verification program, re-encryption apparatus and re-encryption system
EP2874344A4 (fr) Dispositif de terminal utilisateur et procédé de cryptage pour cryptage dans un environnement d'informatique en nuage
MX356293B (es) Sistemas y métodos con seguridad de programa de criptografía y resistencia a uso indebido.
EP3079103A4 (fr) Système de consultation électronique et de vérification d'authenticité, de validité et de restriction de documents, utilisant une technologie de lecture de données par mise à proximité
EP2835997A4 (fr) Procédé de cryptage de données de téléphone cellulaire et procédé de décryptage
ZA201209349B (en) Method and system for secure order management system data encryption,decryption,and segmentation