KR101351570B1 - Apparatus and method for managing customized application - Google Patents
Apparatus and method for managing customized application Download PDFInfo
- Publication number
- KR101351570B1 KR101351570B1 KR1020100018864A KR20100018864A KR101351570B1 KR 101351570 B1 KR101351570 B1 KR 101351570B1 KR 1020100018864 A KR1020100018864 A KR 1020100018864A KR 20100018864 A KR20100018864 A KR 20100018864A KR 101351570 B1 KR101351570 B1 KR 101351570B1
- Authority
- KR
- South Korea
- Prior art keywords
- application
- customized
- system library
- client
- execution
- Prior art date
Links
Images
Landscapes
- Engineering & Computer Science (AREA)
- Theoretical Computer Science (AREA)
- Software Systems (AREA)
- General Engineering & Computer Science (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Computer Hardware Design (AREA)
- Stored Programmes (AREA)
Abstract
It effectively manages various customized applications according to clients and provides technology with security and efficiency in executing and editing customized applications. An apparatus for managing a customized application according to an embodiment of the present disclosure may include: an application supply unit configured to generate a customized application by combining a plurality of prestored application data according to client information; and a client terminal by generating a virtual execution environment to execute the customized application on a server. And a filtering unit for controlling whether one or more of execution and editing of the customized application is allowed according to the client information.
Description
The present invention relates to a technique for managing a customized application according to a client or a specific client group. More specifically, the present invention relates to a method for distributing a customized application to a client terminal and allowing generation, execution, and management in a server. The present invention also relates to a technology for controlling whether to allow execution and editing of a customized application according to a client's authority.
The present invention is derived from research conducted as part of the IT growth engine technology development project of the Ministry of Knowledge Economy. [Control Number: 2007-S-015-03, Assignment Name: Development of SaaS-based Mobile Personalized Office Environment Development Technology]
There is an increasing need for technology that creates a mobile personal computing environment that is similar to a traditional desktop environment, providing a customized computing environment anytime, anywhere. In a mobile personal computing environment, technology for the ability to deploy and manage software on a client-by-client basis is important.
Mobile personal computing environments, virtual devices, software device technologies, and client / server based software streaming technologies have moved to removable storage, and the like. The technology stores a host OS (operating system), a virtual machine, and various applications in removable storage. With a bootable computer, you can run a variety of applications with just one removable storage device.
Virtual device or software device technology is also a form of software distribution and management. The minimum system software (OS, file system, application server) necessary for operating the software and the software is provided to the client by using a mobile storage device or wired / wireless communication in a form already installed.
There is also client / server based software streaming technology. The technique allows an application to be created and run as if it were installed on a host computer. However, the actual application is a technology that is stored only in removable storage.
However, the related arts are general software distribution and management techniques, and it is difficult to manage a customized application in which a plurality of application programs and an add-on or plug-in and client information combined therewith are combined. There was this. In addition, the conventional technologies are not limited to the editing function for the application, there has been a security problem in a company that requires the security of information.
In order to solve the above-mentioned problems, an object of the present invention is to efficiently manage a customized application according to the characteristics of a task, a computing environment, and an individual preference. It is also an object of the customization application to be executed and edited in the server so that the system of the client terminal is not affected. In addition, the objective is to maintain the security of the application and client system by placing restrictions on the access to the client terminal system from the application and the execution and editing of the application itself.
In order to achieve the object of the present invention, a customized application management apparatus includes an application supply unit for generating a customized application by combining a plurality of previously stored application data according to client information, and the customized application is executed on a server. And an application execution unit for generating and supplying a virtual execution environment to the client terminal, and a filtering unit for controlling whether one or more of execution and editing of the customized application is allowed according to the client information.
The apparatus may further include an application storage unit for updating and storing application data in real time.
The filtering unit may further include a system library filter, which controls the system library function call and return of the call result of the client terminal at the time of execution of the customized application.
The customization application may be divided into a plurality of application data included in the customization application after execution ends.
The virtual execution environment generated by the application execution unit is constructed by extracting one or more of a file, a registry, and a shared component necessary for executing the customized application and delivering the same to the client terminal.
The application data may include one or more of a plurality of application programs, files necessary for executing the application program, a registry, and a shared component, an add-on or plug-in program that can be combined with the application program, and a previously stored customized application. .
The client information may include client-specific application data configuration information for assembling the customized application and client-specific execution and editing authority information for the customized application.
According to another embodiment of the present disclosure, a method of managing a customized application may include: generating a customized application by combining a plurality of prestored application data according to client information, and an application execution unit configured to execute a virtual execution environment so that the customized application is executed on a server. Generating and supplying to the client terminal, and controlling whether to allow execution or editing of the customized application according to the client information.
Further configuration of the customized application management method is the same as the description of the customized application management apparatus.
The apparatus and method for managing a customized application according to an embodiment of the present invention manages application data in real time, and can immediately create and use a customized application for each client according to a use request of a client terminal. As a result, the client can effectively use the client-specific application in the mobile computing environment.
Customized applications are run and edited on the server through a virtual execution environment. Therefore, there is no need to install and delete on the client terminal. There is also an effect that can contribute to the stability of the client terminal system.
In addition, control over execution and editing of the customized application is made based on the client information. Therefore, there is an effect that can solve the security problems that may occur by tampering with the customized application. Similarly, access to the system library function of the client terminal in the customized application also allows the security of the client terminal by allowing only when the condition before and after the function call is satisfied.
1 is a block diagram of an apparatus for managing a customized application according to an embodiment of the present invention.
2 schematically illustrates an execution form of a customized application.
3 is a block diagram illustrating a detailed configuration of a filtering unit.
4 is a block diagram illustrating a function of a filtering unit for controlling an application access.
5 is a block diagram illustrating the functionality of a system library filter to control access to a system library.
6 is a flowchart of a customized application management method according to an embodiment of the present invention.
7 is a flowchart showing the functional flow of a system library filter.
Hereinafter, a customized application management apparatus according to an exemplary embodiment of the present invention will be described with reference to FIG. 1.
1 is a block diagram of an apparatus for managing a customized application according to an embodiment of the present invention.
Referring to FIG. 1, the apparatus for managing a customized application according to an exemplary embodiment of the present disclosure may include an
The
The
The
The plurality of application data in the embodiment of the present invention includes all data for generating a customized application.
For example, the application data may include a plurality of application programs. An application program refers to a basic application that performs a predetermined function and is executable through a system operating system (OS). A program designed for general use by an individual or an organization (for example, a company), including document preparation, accounting, and technical analysis.
The application data may include files, registry, and shared components required for the execution of the application program. The file required for executing the application program may include a guest OS or a driving file. The registry and shared component includes information of application data to be described below, shared information about the application program, and all information that may be included in the registry and shared component.
The application data may include an add-on or plug-in program that can be combined into an application program. An add-on or plug-in program refers to a program that extends or changes a function of a basic application program for a specific purpose. For example, a program that allows a technical analysis program to be combined with a document writing program, or a program having an additional function of making an application program available according to authority information (for example, location, time, and user) may be added. It can be included in an on or plug-in program. In addition, any commonly known add-on or plug-in program may be included.
Application data may also include customized applications that are already stored. For example, if a company wants to continuously use and distribute one customized application, it is not necessary to create a customized application every time a request of the
The client information used to generate the customized application may include configuration information of application data for the combination of the customized application. Different clients may have different add-on or plug-in programs to be combined in a particular application. Accordingly, when the
By using the client information in the generation of the customized application, the present invention has the effect of effectively managing the customized application for each client. In other words, customized applications are instantly assembled according to client information. Or, if a customized application corresponding to the client information is already stored, the customized application is simply uploaded. Through this, there is an effect that can effectively manage the customized application in response to various needs of each client.
The
In the embodiment of the present invention, the server includes all devices for supplying information through data transmission and reception with the
Therefore, the function of the virtual execution environment generated by the
The virtual execution environment is thus constructed by sending only a minimal file to the
The file that the
The
According to an embodiment of the present disclosure, the customization application may be divided into a plurality of application data included in the customization application and stored when the execution is terminated in the
In addition, when the editing authority of the application is granted according to the client, the client may select whether to divide and manage the customized application again or to store the generated customized application as it is.
The
First, the
Accordingly, the client information according to the embodiment of the present invention may include information on execution and editing authority for the customized application, in addition to the configuration information of the application data for the combination of the above-described customized application.
Execution authority information for the customized application is generally the same as the meaning of the authority information used in the digital right management (DRM) technology. That is, for example, an execution restriction based on a client, a restriction on a use time, a restriction on a use location, or an execution restriction on a terminal. By controlling the execution of the customized application according to the execution authority information included in the client information, it is possible to enhance the security of the customized application that can be used professionally according to the purpose, and to efficiently manage the customized application. .
The editing authority information for the customization application is information for suppressing indiscriminate editing of the customization application, in addition to the authority for selecting whether or not to keep the customization application after the execution mentioned above.
For example, when combining a plurality of application data in one application program, it is necessary to create a customized application by combining only specific application data for each company. In addition, if an add-on or plug-in combined with a customized application is required for the information security of an enterprise, there is a need to restrict editing of the customized application.
Therefore, editing authority information for the customized application is set in the client information. For example, by classifying administrators and users by client, administrators can have editing rights for customized applications, and users can delete editing rights for customized applications. Through this, there is an effect that can restrict indiscriminate editing and change of the customized application.
Therefore, in the
The customized application management apparatus according to an embodiment of the present invention may further include an
In the case of a client having an editing authority, the customization application may be edited, and thus the plurality of application data stored in the
2 schematically illustrates an execution form of a customized application. In the following description, the description of parts that overlap with the description of FIG. 1 will be omitted.
Referring to FIG. 2, the
According to an exemplary embodiment of the present invention, a filtering unit (not shown) exists between the
3 is a block diagram illustrating a detailed configuration of a filtering unit. In the following description, the description of parts that overlap with the description of FIGS. 1 and 2 will be omitted.
Referring to FIG. 3, the
The
In FIG. 3, a plurality of application data are stored in the
4 is a block diagram illustrating a function of a filtering unit for controlling an application access. In the following description, portions overlapping with the description of FIGS. 1 to 3 will be omitted.
Referring to FIG. 4, the
Although FIG. 4 is shown to supply the customized application Y + α directly, it will be obvious that it is actually executed by the application execution unit (not shown) as mentioned above.
5 is a block diagram illustrating the functionality of a system library filter to control access to a system library. In the following description, portions overlapping with the description of FIGS. 1 to 4 will be omitted.
Referring to FIG. 5, the
In more detail, the
For example, assume that functions a, b, and c mean directory creation functions for different system libraries. In addition, it is assumed that the
In addition, the
For example, function a was called. The result of calling function a was to create a directory in a specific system library. Therefore, the condition after the function call may be whether or not the above directory is normally created. If the directory is not created normally due to lack of storage capacity, the condition after the call to function a is not satisfied, and thus the result of the function a call is not returned. On the contrary, if the directory is created normally, the result of calling the function a is determined by determining that the call number condition of the function a is satisfied.
The
6 is a flowchart of a customized application management method according to an embodiment of the present invention. In the following description, portions that overlap with the description of FIGS. 1 to 5 will be omitted.
Referring to FIG. 6, the method for managing a customized application according to an embodiment of the present invention follows the following flow.
First, a request for execution and editing (hereinafter, referred to as access to a customized application) for a customized application from a client terminal is received by the filtering unit (S601). The filtering unit analyzes an access request and client information of the client terminal to analyze an access type and an access right to the customized application (S602), and determines whether the access type is included in the access right (S603). To perform.
If the access right includes the type of access requested by the client (that is, execution or editing), the filtering unit performs a step S604 of allowing access to the customized application. In operation S605, the client terminal uses the customization application. On the other hand, if the access authority does not include the type of access requested by the client, the filtering unit performs a step (S606) of denying access to the customized application.
In step S605, a series of steps for supplying the client terminal with a virtual execution environment that can use the customized application is performed based on the execution or editing request for the customized application of the client.
That is, in step S605, the application supply unit generates a customized application by combining a plurality of pre-stored application data according to the client information; The application executing unit generates a virtual execution environment so that the customized application is executed in the server and supplies the generated virtual environment to the client terminal.
The description of the additional functions (or function execution steps) for the above-described application supply unit, application execution unit, and filtering unit is the same as that described with reference to FIGS. 1 to 5.
Further, in addition to all the steps performed in FIG. 6, the embodiment of the present invention further includes the step of storing the application data in real time according to the editing result of the client, and supplying the application data to the application supply unit. Can be.
7 is a flowchart showing the functional flow of a system library filter. In the following description, portions that overlap with the description of FIGS. 1 to 6 will be omitted.
Referring to FIG. 7, the system library filter performs the following function when the customization application calls the system library function of the client terminal.
First, the system library filter determines whether a precondition for calling a system library function exists (S700). If the precondition exists, the step S701 of processing the precondition may be performed if the precondition for the function call can be processed.
After performing step S701, the system library filter performs step S702 of determining whether a condition for calling a system library function is satisfied. If the condition before the function call is satisfied, or if the condition before the function call is not present, the system library filter performs a step S703 of allowing the customization application to call the system library function.
If the condition before the function call is not satisfied, step S708 of returning an error message for the function call during the execution of the customized application is performed.
When the system library function is called, the system library filter performs a step of determining whether a post condition exists for the function call (S704), and if the condition exists after the function call, processes the post condition (S705). Perform. Thereafter, the system library filter determines whether the post condition for the system library function call is satisfied (S706).
If the condition is satisfied after the function call, step S707 of returning the system library function call result is performed in the course of executing the customized application. If the condition is not satisfied after the function call, the step S708 returns an error message.
Description of the above-described customized application management apparatus and method according to an embodiment of the present invention should be used only for descriptive purposes, and do not limit the claims. In addition, in addition to the embodiment of the present invention, it will be obvious that the equivalent invention having the same function as the present invention will also belong to the scope of the present invention.
100, 201: Application Supply
102, 200, and 303: application execution unit
101, 304: application storage
103, 302: filtering unit
104, 202, 305, 402, 502: client terminal
300, 501: system library filter
301, 401: application access filter
a, b, c, d: application data
500, 400: application (or customized application)
Claims (20)
An application execution unit generating a virtual execution environment so that the customization application is executed in a server and supplying the virtual execution environment to a client terminal; And
And a filtering unit for controlling whether to allow at least one of execution and editing of the customized application according to the client information.
Wherein the filtering unit comprises:
And a system library filter configured to control a system library function call of the client terminal and a return of the call result when the customized application is executed when the customization application is executed.
And an application storage unit configured to update and store the application data in real time according to the editing result of the client and to supply the application data to the application supply unit.
The system library filter,
And the system library function call is allowed when the system library function is called, only when the condition before the function call is satisfied in the customized application.
The system library filter,
And upon completion of the system library function call to the customization application, deliver the system library function call result to the client terminal only if a condition after the function call is satisfied.
The customization application,
And after the execution is completed, the application application is divided into a plurality of the application data included in the customization application.
The application execution unit,
And at least one of a file, a registry, and a shared component required for executing the customization application included in the customization application and supplied to the client terminal.
The application data,
And at least one of a plurality of application programs, files necessary for executing the application program, a registry, and a shared component, an add-on or plug-in program that can be combined with the application program, and a previously stored customized application. Customized application management device.
The application supply unit,
And the application data are combined based on the configuration information of the client-specific customization application included in the client information.
The client information,
And a configuration information of the application data for the combination of the customized application, and execution and edit authority information for the customized application.
Generating, by an application execution unit, a virtual execution environment so that the customized application is executed on a server and supplying the virtual execution environment to a client terminal;
Controlling, by the system library filter, a system library function call and return of a call result of the client terminal of the customized application when the customization application is executed; And
And a filtering unit controlling whether to allow execution or editing of the customized application according to the client information.
And storing and updating the application data in real time according to the editing result of the client, and supplying the application data to the application supply unit.
The controlling of the system library function call and the return of the system library function call result may include:
And when the system library function is called, allowing the system library function to be called by the customized application only if the system library filter satisfies a pre-function call condition.
The controlling of the system library function call and the return of the system library function call result may include:
And, upon completion of the system library function call to the customization application, delivering the system library function call result to the client terminal only if a condition after the function call is satisfied.
The customization application,
After the execution is finished, the customized application management method, characterized in that divided into a plurality of the application data included in the customized application.
Generating and supplying the virtual execution environment to the client terminal,
And extracting, by the application execution unit, one or more of a file, a registry, and a shared component required for the execution of the customization application included in the customization application and supplying the same to the client terminal.
The application data,
And at least one of a plurality of application programs, files necessary for executing the application program, a registry, and a shared component, an add-on or plug-in program that can be combined with the application program, and a previously stored customized application. How to manage customized applications.
Generating the customization application,
And combining the application data based on the configuration information of the client-specific customization application included in the client information.
The client information,
And configuration information of the application data for the combination of the customized application, and execution and editing authority information for the customized application.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US12/970,438 US20110154374A1 (en) | 2009-12-18 | 2010-12-16 | Apparatus and method for managing customized application |
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
KR1020090126724 | 2009-12-18 | ||
KR20090126724 | 2009-12-18 |
Publications (2)
Publication Number | Publication Date |
---|---|
KR20110070661A KR20110070661A (en) | 2011-06-24 |
KR101351570B1 true KR101351570B1 (en) | 2014-01-16 |
Family
ID=44402139
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
KR1020100018864A KR101351570B1 (en) | 2009-12-18 | 2010-03-03 | Apparatus and method for managing customized application |
Country Status (1)
Country | Link |
---|---|
KR (1) | KR101351570B1 (en) |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20050229174A1 (en) * | 2003-03-06 | 2005-10-13 | Sap Aktiengesellschaft | Methods and systems for generating an application consistent with a profile |
KR20070074421A (en) * | 2006-01-09 | 2007-07-12 | 김성훈 | A system for modular and authentication streaming application software |
KR20090066011A (en) * | 2007-12-18 | 2009-06-23 | 한국전자통신연구원 | System and method for providing portable sw with streaming |
-
2010
- 2010-03-03 KR KR1020100018864A patent/KR101351570B1/en not_active IP Right Cessation
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20050229174A1 (en) * | 2003-03-06 | 2005-10-13 | Sap Aktiengesellschaft | Methods and systems for generating an application consistent with a profile |
KR20070074421A (en) * | 2006-01-09 | 2007-07-12 | 김성훈 | A system for modular and authentication streaming application software |
KR20090066011A (en) * | 2007-12-18 | 2009-06-23 | 한국전자통신연구원 | System and method for providing portable sw with streaming |
Also Published As
Publication number | Publication date |
---|---|
KR20110070661A (en) | 2011-06-24 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US10313394B2 (en) | Automated multi-level federation and enforcement of information management policies in a device network | |
US10146950B2 (en) | Systems for modular document editing | |
US9654428B2 (en) | Systems and methods for supporting social productivity using a history buffer | |
CN100410882C (en) | System and method for centralized software management in virtual machines | |
US9075955B2 (en) | Managing permission settings applied to applications | |
US8296198B2 (en) | Method and system for distribution of information | |
US20130311598A1 (en) | Cloud-based data item sharing and collaboration among groups of users | |
EP2880837A2 (en) | Automated multi-level federation and enforcement of information management policies in a device network | |
CN109716319B (en) | Policy-based hydration behavior in cloud storage synchronization | |
CN104317610A (en) | Method and device for automatic installation and deployment of hadoop platform | |
CN101944107B (en) | Document management method | |
CN104050216A (en) | File system manager for customized resource allocation | |
CN106201614A (en) | A kind of universal method and system that multiple similar software can be carried out chain type upgrading | |
US11126460B2 (en) | Limiting folder and link sharing | |
CN110673911A (en) | Cross-equipment editing system for digital files | |
CN112685091A (en) | Service request processing method, device, equipment and medium based on big data | |
US20140189170A1 (en) | Information processing apparatus, setting information management method and recording medium | |
KR20100059073A (en) | Web pc providing system for interlocking with pc and web pc providing method thereof | |
US20110154374A1 (en) | Apparatus and method for managing customized application | |
JP2016066355A (en) | Web application generating system, control method of web application generating system, program for web application generating system, web application generating device, control method of web application generating device, and program for web application generating device | |
KR101351570B1 (en) | Apparatus and method for managing customized application | |
US20160162233A1 (en) | Electronic apparatus, management system, and recording medium | |
CN101836231A (en) | Personalizable cards shared via a computerized card service | |
JP2007233635A (en) | Information management system, information management method, and computer program | |
US20090151001A1 (en) | Method and apparatus for operating rights |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
A201 | Request for examination | ||
E902 | Notification of reason for refusal | ||
E701 | Decision to grant or registration of patent right | ||
GRNT | Written decision to grant | ||
LAPS | Lapse due to unpaid annual fee |