WO2016179860A1 - Method and apparatus for protecting position information in multi-operating system terminal, and terminal - Google Patents

Method and apparatus for protecting position information in multi-operating system terminal, and terminal Download PDF

Info

Publication number
WO2016179860A1
WO2016179860A1 PCT/CN2015/080290 CN2015080290W WO2016179860A1 WO 2016179860 A1 WO2016179860 A1 WO 2016179860A1 CN 2015080290 W CN2015080290 W CN 2015080290W WO 2016179860 A1 WO2016179860 A1 WO 2016179860A1
Authority
WO
WIPO (PCT)
Prior art keywords
location information
operating system
application
terminal
unit
Prior art date
Application number
PCT/CN2015/080290
Other languages
French (fr)
Chinese (zh)
Inventor
钟焰涛
傅文治
蒋罗
Original Assignee
宇龙计算机通信科技(深圳)有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 宇龙计算机通信科技(深圳)有限公司 filed Critical 宇龙计算机通信科技(深圳)有限公司
Publication of WO2016179860A1 publication Critical patent/WO2016179860A1/en

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • G06F21/6218Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
    • G06F21/6245Protecting personal data, e.g. for financial or medical purposes
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2111Location-sensitive, e.g. geographical location, GPS

Definitions

  • the present invention relates to the field of mobile communications, and in particular, to a method, an apparatus, and a terminal for protecting location information in a multi-operating system terminal.
  • the invention provides a method, a device and a terminal for protecting location information in a multi-operating system terminal, which are used to solve the problem that the storage and use of the location information of the terminal in the prior art are not secure.
  • the present invention provides a method for protecting location information in a multi-operating system terminal, the method comprising:
  • the first operating system acquires location information of the terminal
  • the first operating system After receiving the request for acquiring the location information of an application in the second operating system, the first operating system sends the location information to the application;
  • the security level of the first operating system is higher than the security level of the second operating system.
  • the step of the first operating system acquiring the location information of the terminal specifically includes:
  • the first operating system acquires location information of the terminal by using a GPS
  • the first operating system acquires location information of the terminal by interacting with the base station;
  • the first operating system interacts with the network server to obtain location information of the terminal through wifi.
  • the method further includes :
  • the method further includes :
  • the application is authenticated, and after the authentication is passed, the location information is sent to the application.
  • the method further includes :
  • the present invention also provides a device for protecting location information in a multi-operating system terminal, including:
  • the device is set in the first operating system
  • An obtaining unit configured to acquire location information of the terminal
  • a receiving unit configured to receive a request for acquiring the location information of an application in the second operating system, and after receiving the request, trigger the sending unit;
  • the sending unit is configured to send the location information to the application
  • the security level of the first operating system is higher than the security level of the second operating system.
  • the acquiring unit is configured to acquire the location information of the terminal by using the GPS, or obtain the location information of the terminal by interacting with the base station, or obtain the location information of the terminal by using the wifi to interact with the network server.
  • the device further comprises: a determining unit;
  • the receiving unit is configured to: receive a request for acquiring the location information sent by an application in the second operating system, and trigger the determining unit after receiving the request;
  • the determining unit is specifically configured to: determine whether the application is already registered, and if yes, trigger the sending unit; otherwise, trigger the registration unit;
  • the registration unit is configured to trigger the application to register.
  • the device further comprises: an authentication unit;
  • the receiving unit is configured to: receive a request for acquiring the location information sent by an application in the second operating system, and trigger the authentication unit after receiving the request;
  • the authentication unit is configured to authenticate the application, and after the authentication is passed, trigger the sending unit, otherwise end.
  • the device further comprises: a prompting unit;
  • the receiving unit is configured to receive a request for acquiring the location information sent by an application in the second operating system, and trigger the prompting unit after receiving the request;
  • the prompting unit is configured to send a prompt to the user whether to send the location information, and after receiving the confirmation of the user, trigger the sending unit.
  • the present invention provides a terminal, where the terminal is installed with a first operating system and a second operating system, wherein a memory of the first operating system stores a set of program codes, and the An operating system processor is configured to invoke program code stored in a memory of the first operating system to perform the following operations:
  • the first operating system After receiving the request for acquiring the location information of an application in the second operating system, the first operating system sends the location information to the application;
  • the security level of the first operating system is higher than the security level of the second operating system.
  • the step of the step of acquiring, by the processor of the first operating system, the location information of the terminal include:
  • the wifi is used to interact with the web server to obtain the location information of the terminal.
  • the step of receiving the request for acquiring the location information of an application in the second operating system before the step of the processor of the first operating system sending the location information to the application , also do the following:
  • the step of receiving the request for acquiring the location information of an application in the second operating system before the step of the processor of the first operating system sending the location information to the application , also do the following:
  • the application is authenticated, and after the authentication is passed, the location information is sent to the application.
  • the step of receiving the request for acquiring the location information of an application in the second operating system before the step of the processor of the first operating system sending the location information to the application , also do the following:
  • the present invention acquires and stores the location information of the terminal through an operating system with a high security level. Other operating systems need to apply to the first operating system to obtain location information. Since the security level of the first operating system is higher, the current operating system is effectively avoided. There is a problem that the storage and use of the location information of the terminal in the technology is not secure.
  • FIG. 1 is a schematic flowchart of a method for protecting location information in a multi-operating system terminal according to an embodiment of the present invention
  • FIG. 3 is a schematic flowchart of an application acquiring location information in an embodiment of the present invention.
  • FIG. 4 is a schematic structural diagram of a device for protecting location information in a multi-operating system terminal according to an embodiment of the present invention
  • FIG. 5 is a schematic structural diagram of a terminal in an embodiment of the present invention.
  • the present invention provides a method, a device, and a terminal for protecting location information in a multi-operating system terminal, and the present invention provides a method, a device, and a terminal for protecting location information in a multi-operating system terminal.
  • the invention is described in further detail. It is understood that the specific embodiments described herein are merely illustrative of the invention and are not intended to limit the invention.
  • the embodiment of the invention provides a method for protecting location information in a multi-operating system terminal.
  • the method includes:
  • the first operating system acquires location information of the terminal.
  • the first operating system After receiving the request for acquiring the location information of an application in the second operating system, the first operating system sends the location information to the application.
  • the security level of the first operating system is higher than the security level of the second operating system.
  • the present invention acquires and stores the location information of the terminal through the first operating system with a high security level. Other operating systems need to apply to the first operating system to obtain the location information, thereby effectively avoiding the storage of the location information of the terminal in the prior art. Use unsafe questions.
  • the first operating system first acquires location information of the terminal, and after receiving the request for acquiring the location information by an application in the second operating system, the first operating system directly sends the location to the application.
  • location information a person skilled in the art can also perform the following settings as needed. Specifically, when the first operating system receives the request for acquiring the location information of an application in the second operating system, the location of the terminal is acquired. Information and send location information to the requesting application.
  • the method described in the embodiment of the present invention includes multiple operating systems.
  • the embodiment of the present invention uses only two systems, a standard private domain (PPD system) and a secure enterprise domain (SED system), as an example.
  • PPD system standard private domain
  • SED system secure enterprise domain
  • the first operating system of the present invention is a security domain system
  • the second operating system is a standard system. The purpose is that the security level of the first operating system is higher than the security level of the second operating system.
  • the present invention acquires the location information of the terminal by the operating system with high security level, and the operating system saves the location information, other operating systems can obtain the location information only under the authorized conditions, thereby being to a certain extent Improve the security of the user's location information.
  • the steps of the embodiment S101 of the present invention specifically include:
  • the first operating system acquires the location information of the terminal by using the GPS, that is, the first operating system acquires the location information of the terminal by using the GPS function provided by the terminal;
  • the first operating system acquires location information of the terminal by interacting with the base station, that is, the first operating system of the terminal sends a request for acquiring the location to the base station, and the base station locates the terminal, and sends specific positioning information to the terminal.
  • the first operating system interacts with the network server to obtain the location information of the terminal through the wifi, that is, the terminal accesses the Internet through the wifi, sends a request for obtaining the location to the network server, and the network server according to the address of the wifi, and the wifi
  • the address information is sent to the first operating system of the terminal.
  • the steps of the embodiment S102 of the present invention specifically include:
  • the first operating system After receiving a request for obtaining the location information by an application in the second operating system, through a series of steps of determining and authenticating, and in the case of passing, the first operating system sends the application to the application again. Location information.
  • the first operating system before the step of the first operating system sending the location information to the application, determining whether the application is an already registered application, and if not, triggering the application to register, if The first operating system authenticates the application, and after the authentication is passed, sends a prompt to the user whether to send the location information, and after obtaining the user's confirmation, sends the location to the application. information.
  • the above-described steps of determining whether to register, the authentication step, and the step of transmitting a prompt to the user may be other order relationships.
  • the present invention can further improve the security of the location information of the terminal, thereby better protecting the privacy of the user and improving the user experience.
  • FIG. 2 is a schematic flowchart of application registration in the embodiment of the present invention. The steps of registering the application of the present invention will be described in detail below with reference to FIG. 2:
  • the application sends a registration request to the security system.
  • the security system sends a prompt to the user that the application is to be registered
  • the security system registers registration information of the application.
  • FIG. 3 is a schematic flow chart of an application acquiring location information according to an embodiment of the present invention, and the following is a Figure 3 illustrates the steps of obtaining the location information by the application of the present invention:
  • the application sends a request for acquiring location information to the security system.
  • the security system verifies whether the application is registered, if not registered, proceeds to S303, otherwise, proceeds to S304;
  • the present invention acquires the location information of the terminal by the operating system with high security level, and the operating system saves the location information, other operating systems can obtain the location information only under the authorized conditions, thereby being to a certain extent Improve the security of the user's location information.
  • An embodiment of the present invention provides a device for protecting location information in a multi-operating system terminal.
  • the device is disposed in a first operating system, where the device specifically includes an acquiring unit 41, a receiving unit 42, and a sending unit. 43, the specific functions of each unit are as follows:
  • the obtaining unit 41 is configured to acquire location information of the terminal.
  • the receiving unit 42 is configured to receive a request for acquiring the location information of an application in the second operating system, and after receiving the request, triggering the sending unit 43;
  • the sending unit 43 is configured to send the location information to the application
  • the security level of the first operating system is higher than the security level of the second operating system.
  • the present invention acquires and stores the location information of the terminal through the first operating system with a high security level. Other operating systems need to apply to the first operating system to obtain the location information, thereby effectively avoiding the storage of the location information of the terminal in the prior art. Use unsafe questions.
  • the acquiring unit 41 is specifically configured to acquire location information of the terminal by using GPS, or obtain location information of the terminal by interacting with the base station, or by using wifi. Interact with the web server to obtain the location information of the terminal.
  • the apparatus according to the embodiment of the present invention further includes: a judging unit, in the case where the judging unit is provided, the relationship of each unit of the apparatus according to the present invention is as follows:
  • the receiving unit 42 is specifically configured to receive a request for acquiring the location information sent by an application in the second operating system, and after receiving the request, trigger the determining unit;
  • the determining unit is specifically configured to: determine whether the application is already registered, and if yes, trigger the sending unit; otherwise, trigger the registration unit;
  • the registration unit is configured to trigger the application to register.
  • the invention can ensure the security of the location information of the terminal from the initial stage by limiting the registration of the application, that is, only the approved application can obtain the location information of the terminal.
  • the apparatus according to the embodiment of the present invention further includes: an authentication unit; in the case where the authentication unit is provided, the relationship of each unit of the apparatus according to the present invention is as follows:
  • the receiving unit 42 is specifically configured to receive a request for acquiring the location information sent by an application in the second operating system, and trigger the authentication unit after receiving the request;
  • the authentication unit is configured to authenticate the application, and after the authentication is passed, the sending unit 43 is triggered, otherwise it ends.
  • the present invention can further ensure the security of the location information of the terminal by limiting the authentication of the application.
  • the apparatus according to the embodiment of the present invention further includes: a prompting unit; in the case where the prompting unit is provided, the relationship of each unit of the apparatus according to the present invention is as follows:
  • the receiving unit 42 is specifically configured to receive a request for acquiring the location information sent by an application in the second operating system, and trigger the prompting unit after receiving the request;
  • the prompting unit is configured to send a prompt to the user whether to send the location information, and after obtaining the confirmation of the user, trigger the sending unit 43.
  • the present invention sends a request to the user
  • the information is displayed, and when the user is confirmed, the location information is sent to the requesting application, and the security of the location information of the terminal can be further ensured.
  • the determining unit, the authenticating unit and the prompting unit can further improve the security of the location information of the terminal, thereby better protecting the privacy of the user and improving the user experience.
  • a person skilled in the art may choose to set one or more units of the judgment unit, the authentication unit, and the prompt unit.
  • the embodiment of the present invention provides a terminal, where the terminal includes any device described in the device embodiment, and the terminal in the embodiment of the present invention may be used to obtain terminal location information such as a mobile phone, a computer, and a tablet computer. terminal.
  • terminal location information such as a mobile phone, a computer, and a tablet computer. terminal.
  • the first operating system of the terminal 5 may include: at least one processor 51, such as a CPU, at least one communication bus 52, and a memory 53; the processor 51 of the first operating system may be combined with FIG.
  • the memory 53 of the first operating system may be a high-speed RAM memory or a non-volatile memory, such as at least one disk storage.
  • a program code is stored in the memory 53 of the first operating system, and the processor 51 of the first operating system is used to invoke program code stored in the memory 53 of the first operating system for performing the following operations. :
  • the first operating system After receiving the request for acquiring the location information of an application in the second operating system, the first operating system sends the location information to the application;
  • the step of acquiring the location information of the terminal by the processor 51 of the first operating system specifically includes:
  • the wifi is used to interact with the web server to obtain the location information of the terminal.
  • the step of the processor 51 of the first operating system sending the location information to the application Previously, the following actions were also taken:
  • the step of the processor 51 of the first operating system sending the location information to the application Previously, the following actions were also taken:
  • the application is authenticated, and after the authentication is passed, the location information is sent to the application.
  • the step of the processor 51 of the first operating system sending the location information to the application Previously, the following actions were also taken:
  • the present invention acquires and stores the location information of the terminal through the first operating system with a high security level. Other operating systems need to apply to the first operating system to obtain the location information, thereby effectively avoiding the storage of the location information of the terminal in the prior art. Use unsafe questions.
  • the present invention further provides a step of determining whether to register, an authentication step, and a step of sending a prompt to the user, which can further improve the security of the location information of the terminal, thereby better protecting the privacy of the user and improving the user experience. .

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Health & Medical Sciences (AREA)
  • Bioethics (AREA)
  • General Health & Medical Sciences (AREA)
  • Software Systems (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Databases & Information Systems (AREA)
  • Medical Informatics (AREA)
  • Mobile Radio Communication Systems (AREA)
  • Telephonic Communication Services (AREA)
  • Telephone Function (AREA)

Abstract

Disclosed are a method and apparatus for protecting position information in a multi-operating system terminal, and a terminal. The method comprises: a first operating system acquires position information about a terminal; and the first operating system sends, after receiving a request, sent by a certain application program in a second operating system, for acquiring the position information, the position information to the application program, wherein the security level of the first operating system is higher than that of the second operating system. A first operating system with high security level acquires and saves position information about a terminal, and other operating systems need to apply the first operating system for acquiring the position information, such that the present invention effectively avoids the problem of insecure storage and usage of position information about a terminal in the prior art.

Description

一种多操作系统终端中位置信息的保护方法、装置及终端Method, device and terminal for protecting location information in multi-operating system terminal
本申请要求于2015年05月14日提交中国专利局,申请号为CN 201510244579.0、发明名称为“一种多操作系统终端中位置信息的保护方法、装置及终端”的中国专利申请的优先权,其全部内容通过引用结合在本申请中。This application claims the priority of the Chinese patent application filed on May 14, 2015, the Chinese Patent Application No. CN 201510244579.0, the invention titled "protection method, device and terminal for location information in a multi-operating system terminal". The entire contents of this application are incorporated herein by reference.
技术领域Technical field
本发明涉及移动通讯领域,特别是涉及一种多操作系统终端中位置信息的保护方法、装置及终端。The present invention relates to the field of mobile communications, and in particular, to a method, an apparatus, and a terminal for protecting location information in a multi-operating system terminal.
背景技术Background technique
目前许多智能手机的应用软件都存在有意或无意收集用户的位置信息的现象,但实际上只有少数应用程序,如导航等,需要使用用户的位置信息。并且位置信息涉及的用户个人隐私,万一用户的位置信息被泄露,轻的可能会遭受广告信息骚扰,重的还可能会被不法分子利用,对用户进行跟踪或人身伤害等。虽然现有的终端在存储和使用位置信息时,会询问用户是否同意,但事实上用户很难阻止不相关软件恶意收集位置信息的行为。At present, many smartphone applications have intentional or unintentional collection of user location information, but in reality only a few applications, such as navigation, need to use the user's location information. And the location information involves the privacy of the user. In case the user's location information is leaked, the light may be harassed by the advertisement information, and the heavy one may be used by the criminals to track the user or personal injury. Although the existing terminal asks the user whether to agree when storing and using the location information, it is actually difficult for the user to prevent the unrelated software from maliciously collecting the location information.
发明内容Summary of the invention
本发明提供了一种多操作系统终端中位置信息的保护方法、装置及终端,用以解决现有技术中终端的位置信息的存储和使用不安全的问题。The invention provides a method, a device and a terminal for protecting location information in a multi-operating system terminal, which are used to solve the problem that the storage and use of the location information of the terminal in the prior art are not secure.
一方面,本发明提供一种多操作系统终端中位置信息的保护方法,该方法包括:In one aspect, the present invention provides a method for protecting location information in a multi-operating system terminal, the method comprising:
第一操作系统获取终端的位置信息;The first operating system acquires location information of the terminal;
当接收到第二操作系统中某应用程序的获取该位置信息的请求后,所述第一操作系统向所述应用程序发送所述位置信息;After receiving the request for acquiring the location information of an application in the second operating system, the first operating system sends the location information to the application;
其中,所述第一操作系统的安全级别高于所述第二操作系统的安全级别。The security level of the first operating system is higher than the security level of the second operating system.
优选地,所述第一操作系统获取终端的位置信息的步骤具体包括: Preferably, the step of the first operating system acquiring the location information of the terminal specifically includes:
所述第一操作系统通过GPS获取终端的位置信息;The first operating system acquires location information of the terminal by using a GPS;
或者or
所述第一操作系统通过与基站交互获取终端的位置信息;The first operating system acquires location information of the terminal by interacting with the base station;
或者or
所述第一操作系统通过wifi与网络服务器交互获取终端的位置信息。The first operating system interacts with the network server to obtain location information of the terminal through wifi.
优选地,所述当接收到第二操作系统中某应用程序的获取该位置信息的请求后的步骤之后,所述第一操作系统向所述应用程序发送所述位置信息的步骤之前,还包括:Preferably, after the step of receiving the request for acquiring the location information of an application in the second operating system, before the step of sending the location information by the first operating system to the application, the method further includes :
判断所述应用程序是否是已经注册的应用程序,如果是,则向所述应用程序发送所述位置信息,否则,触发所述应用程序进行注册。Determining whether the application is an already registered application, and if so, transmitting the location information to the application; otherwise, triggering the application to register.
优选地,所述当接收到第二操作系统中某应用程序的获取该位置信息的请求后的步骤之后,所述第一操作系统向所述应用程序发送所述位置信息的步骤之前,还包括:Preferably, after the step of receiving the request for acquiring the location information of an application in the second operating system, before the step of sending the location information by the first operating system to the application, the method further includes :
对所述应用程序进行鉴权,鉴权通过后,向所述应用程序发送所述位置信息。The application is authenticated, and after the authentication is passed, the location information is sent to the application.
优选地,所述当接收到第二操作系统中某应用程序的获取该位置信息的请求后的步骤之后,所述第一操作系统向所述应用程序发送所述位置信息的步骤之前,还包括:Preferably, after the step of receiving the request for acquiring the location information of an application in the second operating system, before the step of sending the location information by the first operating system to the application, the method further includes :
向用户发送是否发送所述位置信息的提示,并在得到用户的确认后,向所述应用程序发送所述位置信息。Sending a prompt to the user whether to send the location information, and sending the location information to the application after obtaining the user's confirmation.
另一方面,本发明还提供了一种多操作系统终端中位置信息的保护装置,包括:In another aspect, the present invention also provides a device for protecting location information in a multi-operating system terminal, including:
该装置设置在第一操作系统中,The device is set in the first operating system,
获取单元,用于获取终端的位置信息;An obtaining unit, configured to acquire location information of the terminal;
接收单元,用于接收第二操作系统中某应用程序的获取该位置信息的请求,并在接收到该请求后,触发发送单元;a receiving unit, configured to receive a request for acquiring the location information of an application in the second operating system, and after receiving the request, trigger the sending unit;
所述发送单元,用于向所述应用程序发送所述位置信息;The sending unit is configured to send the location information to the application;
其中,所述第一操作系统的安全级别高于所述第二操作系统的安全级别。 The security level of the first operating system is higher than the security level of the second operating system.
优选地,所述获取单元具体用于,通过GPS获取终端的位置信息,或者,通过与基站交互获取终端的位置信息,或者,通过wifi与网络服务器交互获取终端的位置信息。Preferably, the acquiring unit is configured to acquire the location information of the terminal by using the GPS, or obtain the location information of the terminal by interacting with the base station, or obtain the location information of the terminal by using the wifi to interact with the network server.
优选地,该装置还包括:判断单元;Preferably, the device further comprises: a determining unit;
所述接收单元具体用于,接收所述第二操作系统中某应用程序发送来的获取所述位置信息的请求,并在接收到该请求后,触发所述判断单元;The receiving unit is configured to: receive a request for acquiring the location information sent by an application in the second operating system, and trigger the determining unit after receiving the request;
所述判断单元具体用于,判断所述应用程序是否是已经注册,如果是,则触发所述发送单元,否则,触发注册单元;The determining unit is specifically configured to: determine whether the application is already registered, and if yes, trigger the sending unit; otherwise, trigger the registration unit;
所述注册单元,用于触发所述应用程序进行注册。The registration unit is configured to trigger the application to register.
优选地,该装置还包括:鉴权单元;Preferably, the device further comprises: an authentication unit;
所述接收单元具体用于,接收所述第二操作系统中某应用程序发送来的获取所述位置信息的请求,并在接收到该请求后,触发所述鉴权单元;The receiving unit is configured to: receive a request for acquiring the location information sent by an application in the second operating system, and trigger the authentication unit after receiving the request;
所述鉴权单元,用于对所述应用程序进行鉴权,鉴权通过后,触发所述发送单元,否则结束。The authentication unit is configured to authenticate the application, and after the authentication is passed, trigger the sending unit, otherwise end.
优选地,该装置还包括:提示单元;Preferably, the device further comprises: a prompting unit;
所述接收单元具体用于,接收所述第二操作系统中某应用程序发送来的获取所述位置信息的请求,并在接收到该请求后,触发所述提示单元;The receiving unit is configured to receive a request for acquiring the location information sent by an application in the second operating system, and trigger the prompting unit after receiving the request;
所述提示单元,用于向用户发送是否发送所述位置信息的提示,并在得到用户的确认后,触发发送单元。The prompting unit is configured to send a prompt to the user whether to send the location information, and after receiving the confirmation of the user, trigger the sending unit.
再一方面,本发明还提供了一种终端,所述终端上安装有第一操作系统和第二操作系统,其中,所述第一操作系统的存储器中存储一组程序代码,且所述第一操作系统的处理器用于调用所述第一操作系统的存储器中存储的程序代码,执行以下操作:In still another aspect, the present invention provides a terminal, where the terminal is installed with a first operating system and a second operating system, wherein a memory of the first operating system stores a set of program codes, and the An operating system processor is configured to invoke program code stored in a memory of the first operating system to perform the following operations:
获取终端的位置信息Get the location information of the terminal
当接收到第二操作系统中某应用程序的获取该位置信息的请求后,所述第一操作系统向所述应用程序发送所述位置信息;After receiving the request for acquiring the location information of an application in the second operating system, the first operating system sends the location information to the application;
其中,所述第一操作系统的安全级别高于所述第二操作系统的安全级别。The security level of the first operating system is higher than the security level of the second operating system.
优选地,所述第一操作系统的处理器获取终端的位置信息的步骤具体包 括:Preferably, the step of the step of acquiring, by the processor of the first operating system, the location information of the terminal include:
通过GPS获取终端的位置信息;或者,Obtaining the location information of the terminal through GPS; or,
通过与基站交互获取终端的位置信息;或者,Obtaining location information of the terminal by interacting with the base station; or
通过wifi与网络服务器交互获取终端的位置信息。The wifi is used to interact with the web server to obtain the location information of the terminal.
优选地,所述当接收到第二操作系统中某应用程序的获取该位置信息的请求后的步骤之后,所述第一操作系统的处理器向所述应用程序发送所述位置信息的步骤之前,还执行以下操作:Preferably, after the step of receiving the request for acquiring the location information of an application in the second operating system, before the step of the processor of the first operating system sending the location information to the application , also do the following:
判断所述应用程序是否是已经注册的应用程序,如果是,则向所述应用程序发送所述位置信息,否则,触发所述应用程序进行注册。Determining whether the application is an already registered application, and if so, transmitting the location information to the application; otherwise, triggering the application to register.
优选地,所述当接收到第二操作系统中某应用程序的获取该位置信息的请求后的步骤之后,所述第一操作系统的处理器向所述应用程序发送所述位置信息的步骤之前,还执行以下操作:Preferably, after the step of receiving the request for acquiring the location information of an application in the second operating system, before the step of the processor of the first operating system sending the location information to the application , also do the following:
对所述应用程序进行鉴权,鉴权通过后,向所述应用程序发送所述位置信息。The application is authenticated, and after the authentication is passed, the location information is sent to the application.
优选地,所述当接收到第二操作系统中某应用程序的获取该位置信息的请求后的步骤之后,所述第一操作系统的处理器向所述应用程序发送所述位置信息的步骤之前,还执行以下操作:Preferably, after the step of receiving the request for acquiring the location information of an application in the second operating system, before the step of the processor of the first operating system sending the location information to the application , also do the following:
向用户发送是否发送所述位置信息的提示,并在得到用户的确认后,向所述应用程序发送所述位置信息。Sending a prompt to the user whether to send the location information, and sending the location information to the application after obtaining the user's confirmation.
本发明有益效果如下:The beneficial effects of the present invention are as follows:
本发明通过安全级别高的操作系统获取和保存终端的位置信息,其他的操作系统需要向第一操作系统申请,才能获得位置信息,由于第一操作系统的安全级别更高,从而有效避免了现有技术中终端的位置信息的存储和使用不安全的问题。The present invention acquires and stores the location information of the terminal through an operating system with a high security level. Other operating systems need to apply to the first operating system to obtain location information. Since the security level of the first operating system is higher, the current operating system is effectively avoided. There is a problem that the storage and use of the location information of the terminal in the technology is not secure.
附图说明DRAWINGS
通过阅读下文优选实施方式的详细描述,各种其他的优点和益处对于本领域普通技术人员将变得清楚明了。附图仅用于示出优选实施方式的目 的,而并不认为是对本发明的限制。而且在整个附图中,用相同的参考符号表示相同的部件。在附图中:Various other advantages and benefits will become apparent to those skilled in the art from a The drawings are only for the purpose of illustrating the preferred embodiment It is not considered to be a limitation of the invention. Throughout the drawings, the same reference numerals are used to refer to the same parts. In the drawing:
图1是本发明实施例中多操作系统终端中位置信息的保护方法的流程示意图;1 is a schematic flowchart of a method for protecting location information in a multi-operating system terminal according to an embodiment of the present invention;
图2是本发明实施例中应用程序注册的流程示意图;2 is a schematic flowchart of application registration in an embodiment of the present invention;
图3是本发明实施例中应用程序获取位置信息的流程示意图;3 is a schematic flowchart of an application acquiring location information in an embodiment of the present invention;
图4是本发明实施例中多操作系统终端中位置信息的保护装置的结构示意图;4 is a schematic structural diagram of a device for protecting location information in a multi-operating system terminal according to an embodiment of the present invention;
图5是本发明实施例中终端的结构示意图。FIG. 5 is a schematic structural diagram of a terminal in an embodiment of the present invention.
具体实施方式detailed description
下面将参照附图更详细地描述本公开的示例性实施例。虽然附图中显示了本公开的示例性实施例,然而应当理解,可以以各种形式实现本公开而不应被这里阐述的实施例所限制。相反,提供这些实施例是为了能够更透彻地理解本公开,并且能够将本公开的范围完整的传达给本领域的技术人员。Exemplary embodiments of the present disclosure will be described in more detail below with reference to the accompanying drawings. While the embodiments of the present invention have been shown in the drawings, the embodiments Rather, these embodiments are provided so that this disclosure will be more fully understood and the scope of the disclosure will be fully disclosed.
为了解决现有技术终端的位置信息的存储和使用不安全的问题,本发明提供了一种多操作系统终端中位置信息的保护方法、装置及终端,以下结合附图以及几个实施例,对本发明进行进一步详细说明。应当理解,此处所描述的具体实施例仅仅用以解释本发明,并不限定本发明。The present invention provides a method, a device, and a terminal for protecting location information in a multi-operating system terminal, and the present invention provides a method, a device, and a terminal for protecting location information in a multi-operating system terminal. The invention is described in further detail. It is understood that the specific embodiments described herein are merely illustrative of the invention and are not intended to limit the invention.
方法实施例Method embodiment
本发明实施例提供了一种多操作系统终端中位置信息的保护方法,参见图1,该方法包括:The embodiment of the invention provides a method for protecting location information in a multi-operating system terminal. Referring to FIG. 1, the method includes:
S101、第一操作系统获取终端的位置信息;S101. The first operating system acquires location information of the terminal.
S102、当接收到第二操作系统中某应用程序的获取该位置信息的请求后,所述第一操作系统向所述应用程序发送所述位置信息; S102. After receiving the request for acquiring the location information of an application in the second operating system, the first operating system sends the location information to the application.
其中,所述第一操作系统的安全级别高于所述第二操作系统的安全级别。The security level of the first operating system is higher than the security level of the second operating system.
本发明通过安全级别高的第一操作系统获取和保存终端的位置信息,其他的操作系统需要向第一操作系统申请,才能获得位置信息,有效避免了现有技术中终端的位置信息的存储和使用不安全的问题。The present invention acquires and stores the location information of the terminal through the first operating system with a high security level. Other operating systems need to apply to the first operating system to obtain the location information, thereby effectively avoiding the storage of the location information of the terminal in the prior art. Use unsafe questions.
本发明实施例是第一操作系统先获取终端的位置信息,当接收到第二操作系统中某应用程序的获取该位置信息的请求后,所述第一操作系统直接向所述应用程序发送所述位置信息,本领域的技术人员也可以根据需要进行以下的设置,具体为,当第一操作系统接收到第二操作系统中某应用程序的获取该位置信息的请求后,再获取终端的位置信息,并将位置信息发送给请求的应用程序。In the embodiment of the present invention, the first operating system first acquires location information of the terminal, and after receiving the request for acquiring the location information by an application in the second operating system, the first operating system directly sends the location to the application. For the location information, a person skilled in the art can also perform the following settings as needed. Specifically, when the first operating system receives the request for acquiring the location information of an application in the second operating system, the location of the terminal is acquired. Information and send location information to the requesting application.
本发明实施例所述的方法中包括多个操作系统,本发明实施例仅以标准系统(Personal Private Domain,PPD系统)和安全域系统(Secure Enterprise Domain,SED系统)两个系统为例对本发明进行解释和说明,本领域的技术人员可以根据本发明将本发明所述的方法应用到其他多个操作系统的终端上。需要说明的是本发明所述的第一操作系统为安全域系统,第二操作系统为标准系统,宗旨是,第一操作系统的安全级别高于所述第二操作系统的安全级别。The method described in the embodiment of the present invention includes multiple operating systems. The embodiment of the present invention uses only two systems, a standard private domain (PPD system) and a secure enterprise domain (SED system), as an example. To explain and explain, those skilled in the art can apply the method of the present invention to terminals of other multiple operating systems according to the present invention. It should be noted that the first operating system of the present invention is a security domain system, and the second operating system is a standard system. The purpose is that the security level of the first operating system is higher than the security level of the second operating system.
由于本发明是由安全级别高的操作系统来获取终端的位置信息,并由该操作系统来保存该位置信息,其他的操作系统只有在授权的条件下,才能得到该位置信息,从而在一定程度上提高用户的位置信息的安全度。Since the present invention acquires the location information of the terminal by the operating system with high security level, and the operating system saves the location information, other operating systems can obtain the location information only under the authorized conditions, thereby being to a certain extent Improve the security of the user's location information.
本发明实施例S101的步骤具体包括:The steps of the embodiment S101 of the present invention specifically include:
所述第一操作系统通过GPS获取终端的位置信息,即,第一操作系统通过终端自带的GPS功能来获取终端的位置信息;The first operating system acquires the location information of the terminal by using the GPS, that is, the first operating system acquires the location information of the terminal by using the GPS function provided by the terminal;
或者or
所述第一操作系统通过与基站交互获取终端的位置信息,即,终端的第一操作系统通过向基站发送获取位置的请求,由基站对终端进行定位,并将具体的定位信息发送给终端的第一操作系统; The first operating system acquires location information of the terminal by interacting with the base station, that is, the first operating system of the terminal sends a request for acquiring the location to the base station, and the base station locates the terminal, and sends specific positioning information to the terminal. First operating system;
或者or
所述第一操作系统通过wifi与网络服务器交互获取终端的位置信息,即,终端通过wifi上网,通过向网络服务器发送获取位置的请求,并由网络服务器根据该wifi的地址,并将该wifi的地址信息发送给终端的第一操作系统。The first operating system interacts with the network server to obtain the location information of the terminal through the wifi, that is, the terminal accesses the Internet through the wifi, sends a request for obtaining the location to the network server, and the network server according to the address of the wifi, and the wifi The address information is sent to the first operating system of the terminal.
当然本领域的技术人员也可以根据实际需要通过其他方法来获取位置信息,如,由用户自行在第一操作系统中设定位置信息,等等。Of course, those skilled in the art can also obtain location information by other methods according to actual needs, for example, the user sets the location information in the first operating system by itself, and the like.
本发明实施例S102的步骤具体包括:The steps of the embodiment S102 of the present invention specifically include:
当接收到第二操作系统中某应用程序的获取该位置信息的请求后,通过一系列的判断和鉴权的步骤,并在通过的情况下,第一操作系统再向所述应用程序发送所述位置信息。After receiving a request for obtaining the location information by an application in the second operating system, through a series of steps of determining and authenticating, and in the case of passing, the first operating system sends the application to the application again. Location information.
具体实施时,在第一操作系统向所述应用程序发送所述位置信息的步骤之前,先判断所述应用程序是否是已经注册的应用程序,如果否,则触发所述应用程序进行注册,如果是,第一操作系统对所述应用程序进行鉴权,鉴权通过后,再向用户发送是否发送所述位置信息的提示,并在得到用户的确认后,向所述应用程序发送所述位置信息。In a specific implementation, before the step of the first operating system sending the location information to the application, determining whether the application is an already registered application, and if not, triggering the application to register, if The first operating system authenticates the application, and after the authentication is passed, sends a prompt to the user whether to send the location information, and after obtaining the user's confirmation, sends the location to the application. information.
上述的判断是否注册的步骤、鉴权步骤以及向用户发送提示的步骤之间也可以是其他的顺序关系。The above-described steps of determining whether to register, the authentication step, and the step of transmitting a prompt to the user may be other order relationships.
本发明通过上述的判断是否注册的步骤、鉴权步骤以及向用户发送提示的步骤可以进一步的提高终端的位置信息的安全性,从而更好的保护了用户的隐私,提高了用户体验。Through the above steps of determining whether to register, the authentication step, and the step of sending a prompt to the user, the present invention can further improve the security of the location information of the terminal, thereby better protecting the privacy of the user and improving the user experience.
图2是本发明实施例中应用程序注册的流程示意图,下面将结合图2对本发明的应用程序注册的步骤进行详细的说明:2 is a schematic flowchart of application registration in the embodiment of the present invention. The steps of registering the application of the present invention will be described in detail below with reference to FIG. 2:
S201、应用程序向安全系统发出注册请求;S201. The application sends a registration request to the security system.
S202、安全系统向用户发出该应用程序要进行注册的提示;S202. The security system sends a prompt to the user that the application is to be registered;
S203、判断用户是否同意,如果是,则进入S204,否则,进入S205;S203, determining whether the user agrees, if yes, then proceeds to S204, otherwise, proceeds to S205;
S204、安全系统登记该应用程序的注册信息;S204. The security system registers registration information of the application.
S205、结束。S205, the end.
图3是本发明实施例中应用程序获取位置信息的流程示意图,下面结 合图3对本发明的应用程序获取位置信息的步骤进行说明:3 is a schematic flow chart of an application acquiring location information according to an embodiment of the present invention, and the following is a Figure 3 illustrates the steps of obtaining the location information by the application of the present invention:
S301、应用程序向安全系统发出获取位置信息的请求;S301. The application sends a request for acquiring location information to the security system.
S302、安全系统验证该应用程序是否注册,如果未注册,则进入S303,否则,进入S304;S302, the security system verifies whether the application is registered, if not registered, proceeds to S303, otherwise, proceeds to S304;
S303、触发应用程序进行注册;S303. Trigger an application to register;
S304、将获取的位置信息发送给应用程序。S304. Send the acquired location information to the application.
由于本发明是由安全级别高的操作系统来获取终端的位置信息,并由该操作系统来保存该位置信息,其他的操作系统只有在授权的条件下,才能得到该位置信息,从而在一定程度上提高用户的位置信息的安全度。Since the present invention acquires the location information of the terminal by the operating system with high security level, and the operating system saves the location information, other operating systems can obtain the location information only under the authorized conditions, thereby being to a certain extent Improve the security of the user's location information.
装置实施例Device embodiment
本发明实施例提供了一种多操作系统终端中位置信息的保护装置,参见图4,该装置设置在第一操作系统中,该装置具体包括相互耦合的获取单元41、接收单元42和发送单元43,具体的各个单元的功能如下:An embodiment of the present invention provides a device for protecting location information in a multi-operating system terminal. Referring to FIG. 4, the device is disposed in a first operating system, where the device specifically includes an acquiring unit 41, a receiving unit 42, and a sending unit. 43, the specific functions of each unit are as follows:
获取单元41,用于获取终端的位置信息;The obtaining unit 41 is configured to acquire location information of the terminal.
接收单元42,用于接收第二操作系统中某应用程序的获取该位置信息的请求,并在接收到该请求后,触发发送单元43;The receiving unit 42 is configured to receive a request for acquiring the location information of an application in the second operating system, and after receiving the request, triggering the sending unit 43;
所述发送单元43,用于向所述应用程序发送所述位置信息;The sending unit 43 is configured to send the location information to the application;
其中,所述第一操作系统的安全级别高于所述第二操作系统的安全级别。The security level of the first operating system is higher than the security level of the second operating system.
本发明通过安全级别高的第一操作系统获取和保存终端的位置信息,其他的操作系统需要向第一操作系统申请,才能获得位置信息,有效避免了现有技术中终端的位置信息的存储和使用不安全的问题。The present invention acquires and stores the location information of the terminal through the first operating system with a high security level. Other operating systems need to apply to the first operating system to obtain the location information, thereby effectively avoiding the storage of the location information of the terminal in the prior art. Use unsafe questions.
具体的,本发明实施例还提供了以下的优选的实施方案,所述获取单元41具体用于,通过GPS获取终端的位置信息,或者,通过与基站交互获取终端的位置信息,或者,通过wifi与网络服务器交互获取终端的位置信息。Specifically, the embodiment of the present invention further provides the following preferred embodiments. The acquiring unit 41 is specifically configured to acquire location information of the terminal by using GPS, or obtain location information of the terminal by interacting with the base station, or by using wifi. Interact with the web server to obtain the location information of the terminal.
当然本领域的技术人员也可以根据实际需要通过其他方法来获取位置 信息,如,由用户自行在第一操作系统中设定位置信息,等等。Of course, those skilled in the art can also obtain the location by other methods according to actual needs. Information, such as setting location information by the user in the first operating system, and the like.
优选地,本发明实施例所述的装置还包括:判断单元,在设有判断单元的情况下,本发明所述的装置的各个单元的关系如下:Preferably, the apparatus according to the embodiment of the present invention further includes: a judging unit, in the case where the judging unit is provided, the relationship of each unit of the apparatus according to the present invention is as follows:
所述接收单元42具体用于,接收所述第二操作系统中某应用程序发送来的获取所述位置信息的请求,并在接收到该请求后,触发所述判断单元;The receiving unit 42 is specifically configured to receive a request for acquiring the location information sent by an application in the second operating system, and after receiving the request, trigger the determining unit;
所述判断单元具体用于,判断所述应用程序是否是已经注册,如果是,则触发所述发送单元,否则,触发注册单元;The determining unit is specifically configured to: determine whether the application is already registered, and if yes, trigger the sending unit; otherwise, trigger the registration unit;
所述注册单元,用于触发所述应用程序进行注册。The registration unit is configured to trigger the application to register.
本发明通过对应用程序进行注册的限制,可以从初始阶段就保证终端的位置信息的安全性,即只有经过认可的应用程序才有可能获取到终端的位置信息。The invention can ensure the security of the location information of the terminal from the initial stage by limiting the registration of the application, that is, only the approved application can obtain the location information of the terminal.
优选地,本发明实施例所述的装置还包括:鉴权单元;在设有鉴权单元的情况下,本发明所述的装置的各个单元的关系如下:Preferably, the apparatus according to the embodiment of the present invention further includes: an authentication unit; in the case where the authentication unit is provided, the relationship of each unit of the apparatus according to the present invention is as follows:
所述接收单元42具体用于,接收所述第二操作系统中某应用程序发送来的获取所述位置信息的请求,并在接收到该请求后,触发所述鉴权单元;The receiving unit 42 is specifically configured to receive a request for acquiring the location information sent by an application in the second operating system, and trigger the authentication unit after receiving the request;
所述鉴权单元,用于对所述应用程序进行鉴权,鉴权通过后,触发所述发送单元43,否则结束。The authentication unit is configured to authenticate the application, and after the authentication is passed, the sending unit 43 is triggered, otherwise it ends.
与设有判断单元的目的相类似,本发明通过对应用程序进行鉴权的限制,可以进一步保证终端的位置信息的安全性。Similar to the purpose of providing the judging unit, the present invention can further ensure the security of the location information of the terminal by limiting the authentication of the application.
优选地,本发明实施例所述的装置还包括:提示单元;在设有提示单元的情况下,本发明所述的装置的各个单元的关系如下:Preferably, the apparatus according to the embodiment of the present invention further includes: a prompting unit; in the case where the prompting unit is provided, the relationship of each unit of the apparatus according to the present invention is as follows:
所述接收单元42具体用于,接收所述第二操作系统中某应用程序发送来的获取所述位置信息的请求,并在接收到该请求后,触发所述提示单元;The receiving unit 42 is specifically configured to receive a request for acquiring the location information sent by an application in the second operating system, and trigger the prompting unit after receiving the request;
所述提示单元,用于向用户发送是否发送所述位置信息的提示,并在得到用户的确认后,触发发送单元43。The prompting unit is configured to send a prompt to the user whether to send the location information, and after obtaining the confirmation of the user, trigger the sending unit 43.
与设有判断单元和鉴权单元的目的相类似,本发明通过向用户发送提 示信息,并在得到用户确认的情况下,再将位置信息发送给发出请求的应用程序,可以更进一步保证终端的位置信息的安全性。Similar to the purpose of providing the judging unit and the authentication unit, the present invention sends a request to the user The information is displayed, and when the user is confirmed, the location information is sent to the requesting application, and the security of the location information of the terminal can be further ensured.
本发明实施例通过判断单元、鉴权单元和提示单元可以进一步的提高终端的位置信息的安全性,从而更好的保护了用户的隐私,提高了用户体验。具体实施时,本领域的技术人员可以选择设置判断单元、鉴权单元和提示单元中的某一个单元或多个单元。The determining unit, the authenticating unit and the prompting unit can further improve the security of the location information of the terminal, thereby better protecting the privacy of the user and improving the user experience. In a specific implementation, a person skilled in the art may choose to set one or more units of the judgment unit, the authentication unit, and the prompt unit.
本发明装置实施例的相关部分可参照方法实施例部分进行理解,在此不再赘述。The relevant parts of the device embodiment of the present invention can be understood by referring to the method embodiment, and details are not described herein again.
终端实施例Terminal embodiment
本发明实施例提供了一种终端,该终端包括装置实施例中所述的任意一种装置,本发明实施例所述的终端可以是手机、电脑以及平板电脑等各种可获取终端位置信息的终端。本发明实施例中的相关内容可参照装置实施例和方法实施例部分进行理解,在此不再赘述。The embodiment of the present invention provides a terminal, where the terminal includes any device described in the device embodiment, and the terminal in the embodiment of the present invention may be used to obtain terminal location information such as a mobile phone, a computer, and a tablet computer. terminal. The related content in the embodiment of the present invention can be understood by referring to the device embodiment and the method embodiment, and details are not described herein again.
终端实施例Terminal embodiment
是本发明实施例提供了一种终端,所述终端上安装有第一操作系统和第二操作系统,所述第一操作系统的安全级别高于所述第二操作系统的安全级别。如图5所示,该终端5的第一操作系统可以包括:至少一个处理器51,例如CPU,至少一个通信总线52以及存储器53;所述第一操作系统的处理器51可以结合图4所示的多操作系统终端中位置信息的保护装置;所述第一操作系统的存储器53可以是高速RAM存储器,也可以是非易失性存储器(non-volatile memory),例如至少一个磁盘存储器。所述第一操作系统的存储器53中存储一组程序代码,且所述第一操作系统的处理器51用于调用所述第一操作系统的存储器53中存储的程序代码,用于执行以下操作:The embodiment of the present invention provides a terminal, where the first operating system and the second operating system are installed, and the security level of the first operating system is higher than the security level of the second operating system. As shown in FIG. 5, the first operating system of the terminal 5 may include: at least one processor 51, such as a CPU, at least one communication bus 52, and a memory 53; the processor 51 of the first operating system may be combined with FIG. The protection device of the location information in the multi-operating system terminal; the memory 53 of the first operating system may be a high-speed RAM memory or a non-volatile memory, such as at least one disk storage. a program code is stored in the memory 53 of the first operating system, and the processor 51 of the first operating system is used to invoke program code stored in the memory 53 of the first operating system for performing the following operations. :
获取终端的位置信息Get the location information of the terminal
当接收到第二操作系统中某应用程序的获取该位置信息的请求后,所述第一操作系统向所述应用程序发送所述位置信息; After receiving the request for acquiring the location information of an application in the second operating system, the first operating system sends the location information to the application;
优选地,所述第一操作系统的处理器51获取终端的位置信息的步骤具体包括:Preferably, the step of acquiring the location information of the terminal by the processor 51 of the first operating system specifically includes:
通过GPS获取终端的位置信息;或者,Obtaining the location information of the terminal through GPS; or,
通过与基站交互获取终端的位置信息;或者,Obtaining location information of the terminal by interacting with the base station; or
通过wifi与网络服务器交互获取终端的位置信息。The wifi is used to interact with the web server to obtain the location information of the terminal.
优选地,所述当接收到第二操作系统中某应用程序的获取该位置信息的请求后的步骤之后,所述第一操作系统的处理器51向所述应用程序发送所述位置信息的步骤之前,还执行以下操作:Preferably, after the step of receiving the request for acquiring the location information by an application in the second operating system, the step of the processor 51 of the first operating system sending the location information to the application Previously, the following actions were also taken:
判断所述应用程序是否是已经注册的应用程序,如果是,则向所述应用程序发送所述位置信息,否则,触发所述应用程序进行注册。Determining whether the application is an already registered application, and if so, transmitting the location information to the application; otherwise, triggering the application to register.
优选地,所述当接收到第二操作系统中某应用程序的获取该位置信息的请求后的步骤之后,所述第一操作系统的处理器51向所述应用程序发送所述位置信息的步骤之前,还执行以下操作:Preferably, after the step of receiving the request for acquiring the location information by an application in the second operating system, the step of the processor 51 of the first operating system sending the location information to the application Previously, the following actions were also taken:
对所述应用程序进行鉴权,鉴权通过后,向所述应用程序发送所述位置信息。The application is authenticated, and after the authentication is passed, the location information is sent to the application.
优选地,所述当接收到第二操作系统中某应用程序的获取该位置信息的请求后的步骤之后,所述第一操作系统的处理器51向所述应用程序发送所述位置信息的步骤之前,还执行以下操作:Preferably, after the step of receiving the request for acquiring the location information by an application in the second operating system, the step of the processor 51 of the first operating system sending the location information to the application Previously, the following actions were also taken:
向用户发送是否发送所述位置信息的提示,并在得到用户的确认后,向所述应用程序发送所述位置信息。Sending a prompt to the user whether to send the location information, and sending the location information to the application after obtaining the user's confirmation.
本发明至少能够带来以下的有益效果:The present invention can at least bring about the following beneficial effects:
本发明通过安全级别高的第一操作系统获取和保存终端的位置信息,其他的操作系统需要向第一操作系统申请,才能获得位置信息,有效避免了现有技术中终端的位置信息的存储和使用不安全的问题。并且,本发明还设有判断是否注册的步骤、鉴权步骤以及向用户发送提示的步骤,可以进一步的提高终端的位置信息的安全性,从而更好的保护了用户的隐私,提高了用户体验。The present invention acquires and stores the location information of the terminal through the first operating system with a high security level. Other operating systems need to apply to the first operating system to obtain the location information, thereby effectively avoiding the storage of the location information of the terminal in the prior art. Use unsafe questions. Moreover, the present invention further provides a step of determining whether to register, an authentication step, and a step of sending a prompt to the user, which can further improve the security of the location information of the terminal, thereby better protecting the privacy of the user and improving the user experience. .
显然,本领域的技术人员可以对本发明进行各种改动和变型而不脱离 本发明的精神和范围。这样,倘若本发明的这些修改和变型属于本发明权利要求及其等同技术的范围之内,则本发明也意图包含这些改动和变型在内。 Obviously, those skilled in the art can make various modifications and variations to the present invention without departing from the invention. The spirit and scope of the invention. Thus, it is intended that the present invention cover the modifications and modifications of the invention

Claims (15)

  1. 一种多操作系统终端中位置信息的保护方法,其特征在于,包括:A method for protecting location information in a multi-operating system terminal, comprising:
    第一操作系统获取终端的位置信息;The first operating system acquires location information of the terminal;
    当接收到第二操作系统中某应用程序的获取该位置信息的请求后,所述第一操作系统向所述应用程序发送所述位置信息;After receiving the request for acquiring the location information of an application in the second operating system, the first operating system sends the location information to the application;
    其中,所述第一操作系统的安全级别高于所述第二操作系统的安全级别。The security level of the first operating system is higher than the security level of the second operating system.
  2. 如权利要求1所述的方法,其特征在于,所述第一操作系统获取终端的位置信息的步骤具体包括:The method of claim 1, wherein the step of acquiring the location information of the terminal by the first operating system specifically includes:
    所述第一操作系统通过GPS获取终端的位置信息;The first operating system acquires location information of the terminal by using a GPS;
    或者or
    所述第一操作系统通过与基站交互获取终端的位置信息;The first operating system acquires location information of the terminal by interacting with the base station;
    或者or
    所述第一操作系统通过wifi与网络服务器交互获取终端的位置信息。The first operating system interacts with the network server to obtain location information of the terminal through wifi.
  3. 如权利要求1或2所述的方法,其特征在于,所述当接收到第二操作系统中某应用程序的获取该位置信息的请求后的步骤之后,所述第一操作系统向所述应用程序发送所述位置信息的步骤之前,还包括:The method according to claim 1 or 2, wherein the first operating system sends the application to the application after receiving the request of the application in the second operating system to obtain the location information Before the step of sending the location information by the program, the method further includes:
    判断所述应用程序是否是已经注册的应用程序,如果是,则向所述应用程序发送所述位置信息,否则,触发所述应用程序进行注册。Determining whether the application is an already registered application, and if so, transmitting the location information to the application; otherwise, triggering the application to register.
  4. 如权利要求1或2所述的方法,其特征在于,所述当接收到第二操作系统中某应用程序的获取该位置信息的请求后的步骤之后,所述第一操作系统向所述应用程序发送所述位置信息的步骤之前,还包括:The method according to claim 1 or 2, wherein the first operating system sends the application to the application after receiving the request of the application in the second operating system to obtain the location information Before the step of sending the location information by the program, the method further includes:
    对所述应用程序进行鉴权,鉴权通过后,向所述应用程序发送所述位置信息。The application is authenticated, and after the authentication is passed, the location information is sent to the application.
  5. 如权利要求1或2所述的方法,其特征在于,所述当接收到第二操作系统中某应用程序的获取该位置信息的请求后的步骤之后,所述第一操作系统 向所述应用程序发送所述位置信息的步骤之前,还包括:The method according to claim 1 or 2, wherein the first operating system after receiving the request for acquiring the location information of an application in the second operating system Before the step of sending the location information to the application, the method further includes:
    向用户发送是否发送所述位置信息的提示,并在得到用户的确认后,向所述应用程序发送所述位置信息。Sending a prompt to the user whether to send the location information, and sending the location information to the application after obtaining the user's confirmation.
  6. 一种多操作系统终端中位置信息的保护装置,其特征在于,包括:该装置设置在第一操作系统中,A device for protecting location information in a multi-operating system terminal, comprising: the device is disposed in a first operating system,
    获取单元,用于获取终端的位置信息;An obtaining unit, configured to acquire location information of the terminal;
    接收单元,用于接收第二操作系统中某应用程序的获取该位置信息的请求,并在接收到该请求后,触发发送单元;a receiving unit, configured to receive a request for acquiring the location information of an application in the second operating system, and after receiving the request, trigger the sending unit;
    所述发送单元,用于向所述应用程序发送所述位置信息;The sending unit is configured to send the location information to the application;
    其中,所述第一操作系统的安全级别高于所述第二操作系统的安全级别。The security level of the first operating system is higher than the security level of the second operating system.
  7. 如权利要求6所述的装置,其特征在于,The device of claim 6 wherein:
    所述获取单元具体用于,通过GPS获取终端的位置信息,或者,通过与基站交互获取终端的位置信息,或者,通过wifi与网络服务器交互获取终端的位置信息。The acquiring unit is specifically configured to acquire the location information of the terminal by using the GPS, or obtain the location information of the terminal by interacting with the base station, or obtain the location information of the terminal by using the wifi to interact with the network server.
  8. 如权利要求6或7所述的装置,其特征在于,还包括:判断单元;The device according to claim 6 or 7, further comprising: a determining unit;
    所述接收单元具体用于,接收所述第二操作系统中某应用程序发送来的获取所述位置信息的请求,并在接收到该请求后,触发所述判断单元;The receiving unit is configured to: receive a request for acquiring the location information sent by an application in the second operating system, and trigger the determining unit after receiving the request;
    所述判断单元具体用于,判断所述应用程序是否是已经注册,如果是,则触发所述发送单元,否则,触发注册单元;The determining unit is specifically configured to: determine whether the application is already registered, and if yes, trigger the sending unit; otherwise, trigger the registration unit;
    所述注册单元,用于触发所述应用程序进行注册。The registration unit is configured to trigger the application to register.
  9. 如权利要求6或7所述的装置,其特征在于,还包括:鉴权单元;The device according to claim 6 or 7, further comprising: an authentication unit;
    所述接收单元具体用于,接收所述第二操作系统中某应用程序发送来的获取所述位置信息的请求,并在接收到该请求后,触发所述鉴权单元;The receiving unit is configured to: receive a request for acquiring the location information sent by an application in the second operating system, and trigger the authentication unit after receiving the request;
    所述鉴权单元,用于对所述应用程序进行鉴权,鉴权通过后,触发所述发送单元,否则结束。 The authentication unit is configured to authenticate the application, and after the authentication is passed, trigger the sending unit, otherwise end.
  10. 如权利要求6或7所述的装置,其特征在于,还包括:提示单元;The device according to claim 6 or 7, further comprising: a prompting unit;
    所述接收单元具体用于,接收所述第二操作系统中某应用程序发送来的获取所述位置信息的请求,并在接收到该请求后,触发所述提示单元;The receiving unit is configured to receive a request for acquiring the location information sent by an application in the second operating system, and trigger the prompting unit after receiving the request;
    所述提示单元,用于向用户发送是否发送所述位置信息的提示,并在得到用户的确认后,触发发送单元。The prompting unit is configured to send a prompt to the user whether to send the location information, and after receiving the confirmation of the user, trigger the sending unit.
  11. 一种终端,其特征在于,所述终端上安装有第一操作系统和第二操作系统,其中,所述第一操作系统的存储器中存储一组程序代码,且所述第一操作系统的处理器用于调用所述第一操作系统的存储器中存储的程序代码,执行以下操作:A terminal, wherein a first operating system and a second operating system are installed on the terminal, wherein a program of the first operating system stores a set of program codes, and the processing of the first operating system The program is used to invoke the program code stored in the memory of the first operating system, and performs the following operations:
    获取终端的位置信息Get the location information of the terminal
    当接收到第二操作系统中某应用程序的获取该位置信息的请求后,所述第一操作系统向所述应用程序发送所述位置信息;After receiving the request for acquiring the location information of an application in the second operating system, the first operating system sends the location information to the application;
    其中,所述第一操作系统的安全级别高于所述第二操作系统的安全级别。The security level of the first operating system is higher than the security level of the second operating system.
  12. 如权利要求11所述的终端,其特征在于,所述第一操作系统的处理器获取终端的位置信息的步骤具体包括:The terminal according to claim 11, wherein the step of the processor of the first operating system acquiring the location information of the terminal specifically includes:
    通过GPS获取终端的位置信息;或者,Obtaining the location information of the terminal through GPS; or,
    通过与基站交互获取终端的位置信息;或者,Obtaining location information of the terminal by interacting with the base station; or
    通过wifi与网络服务器交互获取终端的位置信息。The wifi is used to interact with the web server to obtain the location information of the terminal.
  13. 如权利要求11或12所述的终端,其特征在于,所述当接收到第二操作系统中某应用程序的获取该位置信息的请求后的步骤之后,所述第一操作系统的处理器向所述应用程序发送所述位置信息的步骤之前,还执行以下操作:The terminal according to claim 11 or 12, wherein after the step of receiving a request for acquiring the location information of an application in the second operating system, the processor of the first operating system Before the step of sending the location information by the application, the following operations are also performed:
    判断所述应用程序是否是已经注册的应用程序,如果是,则向所述应用程序发送所述位置信息,否则,触发所述应用程序进行注册。Determining whether the application is an already registered application, and if so, transmitting the location information to the application; otherwise, triggering the application to register.
  14. 如权利要求11或12所述的终端,其特征在于,所述当接收到第二操作系统中某应用程序的获取该位置信息的请求后的步骤之后,所述第一操作系统的处理器向所述应用程序发送所述位置信息的步骤之前,还执行以下操作:The terminal according to claim 11 or 12, wherein after the step of receiving a request for acquiring the location information of an application in the second operating system, the processor of the first operating system Before the step of sending the location information by the application, the following operations are also performed:
    对所述应用程序进行鉴权,鉴权通过后,向所述应用程序发送所述位置信 息。And authenticating the application, after the authentication is passed, sending the location letter to the application interest.
  15. 如权利要求11或12所述的终端,其特征在于,所述当接收到第二操作系统中某应用程序的获取该位置信息的请求后的步骤之后,所述第一操作系统的处理器向所述应用程序发送所述位置信息的步骤之前,还执行以下操作:The terminal according to claim 11 or 12, wherein after the step of receiving a request for acquiring the location information of an application in the second operating system, the processor of the first operating system Before the step of sending the location information by the application, the following operations are also performed:
    向用户发送是否发送所述位置信息的提示,并在得到用户的确认后,向所述应用程序发送所述位置信息。 Sending a prompt to the user whether to send the location information, and sending the location information to the application after obtaining the user's confirmation.
PCT/CN2015/080290 2015-05-14 2015-05-29 Method and apparatus for protecting position information in multi-operating system terminal, and terminal WO2016179860A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201510244579.0 2015-05-14
CN201510244579.0A CN106295380A (en) 2015-05-14 2015-05-14 The guard method of positional information in a kind of multiple operating system terminal, device and terminal

Publications (1)

Publication Number Publication Date
WO2016179860A1 true WO2016179860A1 (en) 2016-11-17

Family

ID=57248368

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2015/080290 WO2016179860A1 (en) 2015-05-14 2015-05-29 Method and apparatus for protecting position information in multi-operating system terminal, and terminal

Country Status (2)

Country Link
CN (1) CN106295380A (en)
WO (1) WO2016179860A1 (en)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111698762A (en) * 2019-03-14 2020-09-22 成都鼎桥通信技术有限公司 Wifi information acquisition method and device

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102572091A (en) * 2010-12-22 2012-07-11 Lg电子株式会社 Mobile terminal and method of sharing information therein
US8463253B2 (en) * 2007-06-21 2013-06-11 Verizon Patent And Licensing Inc. Flexible lifestyle portable communications device
CN104102358A (en) * 2014-07-18 2014-10-15 北京奇虎科技有限公司 Privacy information protecting method and privacy information protecting device
CN104184738A (en) * 2014-09-01 2014-12-03 宇龙计算机通信科技(深圳)有限公司 Information sharing method and information sharing device of terminal and terminal

Family Cites Families (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN100527888C (en) * 2003-01-31 2009-08-12 高通股份有限公司 Location based service (LBS) system, method and apparatus for triggering of mobile station LBS applications
US20080127354A1 (en) * 2006-11-28 2008-05-29 Microsoft Corporation Condition based authorization model for data access
CN104239814B (en) * 2014-09-17 2017-10-20 上海斐讯数据通信技术有限公司 A kind of mobile office safety method and system
CN104268478B (en) * 2014-09-22 2017-08-11 宇龙计算机通信科技(深圳)有限公司 A kind of data interactive method and device of multisystem terminal
CN104268454A (en) * 2014-09-28 2015-01-07 酷派软件技术(深圳)有限公司 Management method and device of application program of terminal

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8463253B2 (en) * 2007-06-21 2013-06-11 Verizon Patent And Licensing Inc. Flexible lifestyle portable communications device
CN102572091A (en) * 2010-12-22 2012-07-11 Lg电子株式会社 Mobile terminal and method of sharing information therein
CN104102358A (en) * 2014-07-18 2014-10-15 北京奇虎科技有限公司 Privacy information protecting method and privacy information protecting device
CN104184738A (en) * 2014-09-01 2014-12-03 宇龙计算机通信科技(深圳)有限公司 Information sharing method and information sharing device of terminal and terminal

Also Published As

Publication number Publication date
CN106295380A (en) 2017-01-04

Similar Documents

Publication Publication Date Title
US9961088B2 (en) Systems and methods for geolocation-based authentication and authorization
CN107222485B (en) Authorization method and related equipment
CN105306204B (en) Security verification method, device and system
WO2017067227A1 (en) Third party account number authorisation method, device, server, and system
US9032493B2 (en) Connecting mobile devices, internet-connected vehicles, and cloud services
CN109460373B (en) Data sharing method, terminal equipment and storage medium
WO2019047513A1 (en) Internet defense method and authentication server
US20110239281A1 (en) Method and apparatus for authentication of services
JP2016521899A (en) Two-factor authentication
US9680841B2 (en) Network authentication method for secure user identity verification using user positioning information
CN109474600B (en) Account binding method, system, device and equipment
TW201525748A (en) Password resetting method, device having password resetting function, system having password resetting function
WO2017076216A1 (en) Server, mobile terminal, and internet real name authentication system and method
CN105592005B (en) Security verification method, device and system
CN105577619B (en) Client login method, client and system
US20230186304A1 (en) Transaction Validation Service
US9235696B1 (en) User authentication using a portable mobile device
US11196736B2 (en) Systems and methods for location-aware two-factor authentication
CN104392168A (en) Application program verification method
JP2010079795A (en) Client authentication system
CN107995214B (en) Website login method and related equipment
WO2016179860A1 (en) Method and apparatus for protecting position information in multi-operating system terminal, and terminal
CN107770143B (en) Method and device for verifying client validity
JP2014154131A (en) Authentication system and authentication method
KR102102222B1 (en) User equipment and service device, system comprising the same and control method thereof

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 15891563

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

32PN Ep: public notification in the ep bulletin as address of the adressee cannot be established

Free format text: NOTING OF LOSS OF RIGHTS PURSUANT TO RULE 112(1) EPC (EPO FORM 1205A DATED 11/04/2018)

122 Ep: pct application non-entry in european phase

Ref document number: 15891563

Country of ref document: EP

Kind code of ref document: A1