CN102521549A - Security pre-judgment device and method for application program - Google Patents
Security pre-judgment device and method for application program Download PDFInfo
- Publication number
- CN102521549A CN102521549A CN2011103843547A CN201110384354A CN102521549A CN 102521549 A CN102521549 A CN 102521549A CN 2011103843547 A CN2011103843547 A CN 2011103843547A CN 201110384354 A CN201110384354 A CN 201110384354A CN 102521549 A CN102521549 A CN 102521549A
- Authority
- CN
- China
- Prior art keywords
- application program
- security
- terminal
- weights
- application
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Abstract
The invention discloses a security pre-judgment device for an application program. The security pre-judgment device comprises an information extraction module, a parameter acquisition module, a judgment module and a processing module, wherein the information extraction module is used for acquiring the information on the operating authorization for operations required for being operated on a terminal after the application program is installed in the terminal prior to downloading/installing the application program, the parameter acquisition module is used for generating an overall security weight of the application program according to a security weight corresponding to the operating authorization needed by the application program and a preset computing formula, the judgment module is used for judging the size between the overall security weight of the application program and a preset terminal security threshold and generating a judgment result, and the processing module is used for outputting the judgment result for the security of the application program judged by the judgment module. The invention further discloses a security pre-judgment method for the application program. With the adoption of the security pre-judgment device and the method for the application program, the technical problem that the security evaluation cannot be carried out by combining with the information of the application program in the prior art is solved, and thus, the security evaluation can be more reasonable.
Description
Technical field
The present invention relates to the application program downloading field, relate in particular to a kind of application security anticipation device and method.
Background technology
In the existing portable terminal; The user uses the market from the third party can the down load application program; When application program is used in being installed to user terminal, application program can be under user's mandate corresponding acquisition some to terminal internal information operation permission, like authority of the authority that obtains mobile phone contact information, the authority of calling and the information of transmission or the like; For ensureing individual privacy; Communication, account number safety need the security of application programs to make requirement, but the user can't confirm generally that when down load application application under to be downloaded is as far as terminal safety whether in the prior art; In addition, the user also can run into when installation application and can't confirm that this application is to the terminal problem of safety whether.When management and application program, the user generally through two kinds of methods judge whether to download/required application is installed, a kind of is according to downloading ranking list for downloading foundation, another kind is that fail-safe software through 360 authentications such as third party such as grade is for according to determining whether download/installation.
In realizing process of the present invention, the inventor finds that there is following problem at least in prior art: some information that do not make full use of to be downloaded/set up applications itself are carried out safety assessment to determine whether download or install, have certain risk.
Summary of the invention
Technical matters to be solved by this invention is, provides a kind of and is used to judge whether the application program of to be downloaded/installation meets the application security anticipation device and method that the preset safety standard in terminal also can provide reference proposition for the user.
In order to solve the problems of the technologies described above; On the one hand; Embodiments of the invention provide a kind of application security anticipation device; This device comprises: information extraction modules is used for obtaining before the download/set up applications this application program in the information that is being installed to the required operating right that the terminal is operated in back, terminal; Parameter acquisition module is used for the general safety weights that the corresponding safe weights of the required operating right of basis and said application program and preset computing formula generate this application program; Judge module is used to judge the general safety weights and the terminal security threshold value of presetting of said application program and generate result of determination; Processing module is used to export the result of determination of said judge module to said applications security.
Said parameter acquisition module is used for: the general safety weights that will obtain this application program with the required corresponding safe weights addition of operating right of said application program; Perhaps; The particular combination of forming for the different operation authority that the terminal is operated is provided with weight factor; And when the required authority of said application program comprises this particular combination; Said weight factor is multiplied each other respectively and with the corresponding safe weights of operating right of forming this particular combination, and and sue for peace with the required corresponding safe weights of other operating rights of said application program and to obtain the general safety weights of this application program.
Said information extraction modules is obtained the information of the required operating right that the terminal is operated of this application program through the configuration file in the application program.
Said device also comprises the preset parameter module, is used to dispose said terminal security threshold value and said safe weights.
Said device also comprises monitoring module, and said monitoring module is used to obtain the result of determination of said judge module application programs safety, and said result of determination is fed back to the terminal.
On the other hand; Embodiments of the invention provide a kind of application security pre-judging method, said method comprising the steps of: obtain the information that this application program is being installed to the required operating right that the terminal is operated in back in the terminal before the download/set up applications; Generate the general safety weights of this application program according to safe weights corresponding and preset computing formula with said application program action required authority; The size of the terminal security threshold value of judging the general safety weights of said application program and presetting also generates result of determination; Output is to the result of determination of said applications security.
The method that generates the general safety weights of said application program specifically comprises: the general safety weights that will the safe weights addition corresponding with said application program action required authority obtain this application program; Perhaps; The particular combination of forming for the different operation authority that the terminal is operated is provided with weight factor; And when the required authority of said application program comprises this particular combination; Said weight factor is multiplied each other respectively and with the corresponding safe weights of operating right of forming this particular combination, and and sue for peace with the required corresponding safe weights of other operating rights of said application program and to obtain the general safety weights of this application program.
The information of the operating right that said application program is required is obtained through the configuration file in the application program.
Before the information of the operating right that obtains said application program, also comprise said terminal security threshold value of configuration and said safe weights.
Said method also comprises the result of determination of obtaining the application programs security, and said result of determination is fed back to the terminal.
Adopt the technical scheme of a kind of application security anticipation device and method provided by the invention; The user is before download/set up applications; Obtain the information of this application program required operating right that the terminal is operated in back in being installed to the terminal through the configuration file in the application program; The safe condition of the corresponding safe weights of the required operating right of foundation and said application program and preset this application program of terminal security threshold determination, and result of determination fed back to the user with for referencial use.
The present invention has overcome the technical matters that the information that can't combine application program itself in the prior art is carried out safety assessment, has reached the technique effect that the secure reference suggestion can be provided for the user according to the preset voluntarily terminal security threshold value of user.
Description of drawings
In order to be illustrated more clearly in the embodiment of the invention or technical scheme of the prior art; To do to introduce simply to the accompanying drawing of required use in embodiment or the description of the Prior Art below; Obviously, the accompanying drawing in describing below only is some embodiments of the present invention, for those of ordinary skills; Under the prerequisite of not paying creative work property, can also obtain other accompanying drawing according to these accompanying drawings.
Fig. 1 is the structural representation of first embodiment of a kind of application security anticipation of the present invention device;
Fig. 2 is the structural representation of second embodiment of a kind of application security anticipation of the present invention device;
Fig. 3 is the process flow diagram of first embodiment of a kind of application security pre-judging method of the present invention;
Fig. 4 is the process flow diagram of second embodiment of a kind of application security pre-judging method of the present invention.
Embodiment
To combine the accompanying drawing in the embodiment of the invention below, the technical scheme in the embodiment of the invention is carried out clear, intactly description, obviously, described embodiment only is the present invention's part embodiment, rather than whole embodiment.Based on the embodiment among the present invention, those of ordinary skills are not making the every other embodiment that is obtained under the creative work prerequisite, all belong to the scope of the present invention's protection.
With reference to accompanying drawing embodiments of the invention are described below.Referring to Fig. 1, be the structural representation of a kind of application security anticipation device first embodiment among the present invention.As shown in Figure 1, this device comprises:
Information extraction modules 1 is used for obtaining before the download/set up applications this application program in the information that is being installed to the required operating right that the terminal is operated in back, terminal;
Parameter acquisition module 2 is used for the general safety weights that basis safe weights corresponding with said application program action required authority and preset computing formula generate this application program;
Judge module 3, the size of the general safety weights that are used to judge said application program and preset terminal security threshold value also generates result of determination;
Processing module 4 is used to export the result of determination of said judge module to said applications security.
The terminal that the embodiment of the invention provides; Through the required operating right that the terminal is operated of application program and with the terminal in preset security strategy the to be downloaded/application program of installing is carried out safety assessment; It is more reasonable to make for the safety judgement of application program, reduces and downloads risk.
Referring to Fig. 2, be the terminal provided by the invention second example structure synoptic diagram.In a last embodiment, terminal provided by the invention basic structure has been described, in the present embodiment, with the 26S Proteasome Structure and Function of more concrete each module of description.The terminal that present embodiment provides is as shown in Figure 2, comprising:
Information extraction modules 1 is used for obtaining before the down load application program this application program in the information that is being installed to the required operating right that the terminal is operated in back, terminal.Further, above-mentioned information extraction modules 1 is obtained the information of the required operating right that the terminal is operated of this application program through the configuration file in the application program.
With the Android system is example; In the application program under the Android system; Configuration file is AndroidManifest.xml, and the developer has shown the various authorities that application program had in the AndroidManifest.xml file, and authority sign is nearly 100 multinomial.The user is in the terminal during set up applications; If accept the authority of AndroidManifest.xml; Then this application program just can obtain the authority that defines among the AndroidManifest.xml in the terminal legally; As obtaining the authority of mobile phone contact information, even obtain to call, send authority of information or the like.Therefore, above-mentioned information extraction modules 1 can get access to the information of the required operating right that the terminal is operated of application program through the AndroidManifest.xml file.
Parameter acquisition module 2 is used for the general safety weights that basis safe weights corresponding with above-mentioned application program action required authority and preset computing formula generate this application program.Under this embodiment, above-mentioned parameter acquisition module 2 is through will the safe weights addition corresponding with application program action required authority obtaining the general safety weights of this application program.
Because the diversity of the operating right that the terminal is operated, simple safe weights addition or subtract each other the security that possibly be able to not reflect an application program very really.When separately some operation is carried out at the terminal; Safety effects to the terminal is also little, but acts on the terminal and possibly serious safety problem will occur when several operations combine, and all is very common operation on the terminal separately such as reading and writing of files or accesses network; But when possessing above-mentioned two operating rights to the terminal simultaneously; Then possibly cause userspersonal information's leakage, simultaneously, according to the particular community of application program; As whether from the application program manufacturer of trusted etc., application programs is carried out security and is judged.So the combination and the application program association attributes setting weight factor that should be some specific operating rights are calculated.By on can know that parameter acquisition module 2 also can adopt another kind to be used for the computing formula of computing whole safety weights.Concrete; The particular combination that parameter acquisition module 2 is formed for the different operation authority that the terminal is operated is provided with weight factor; And when the required authority of above-mentioned application program comprises this particular combination; Weight factor is multiplied each other respectively and with the corresponding safe weights of operating right of forming this particular combination, and and sue for peace with the required corresponding safe weights of other operating rights of application program and to obtain the general safety weights of this application program.
A kind of application security anticipation device provided by the invention, the computing formula that is used to obtain the general safety weights can be various, includes but not limited to above-mentioned two kinds of computing method, specifically can be provided with the security requirement at terminal according to the user.
Further, this device also comprises preset parameter module 6, is used to dispose above-mentioned terminal security threshold value and above-mentioned safe weights.The present technique scheme in device, introduce a kind of through application program required the operating right at terminal is carried out the mechanism of safety assessment; Be specially to each safe weights of operating right definition the terminal; The scope of these safe weights can define voluntarily, such as can in 0 to 10 scope, setting, and the corresponding different security authority of the value that varies in size; Numerical value is big more, and the security of this operating right is important more.This parameter Prefabricated block 6 just is provided with the safe weights size of each operating right to the safety requirements of different operation authority according to the user.The user can be provided with corresponding operating right according to the demand for security of oneself, as the preset safe weights that read the address list authority are set to 8 in 0 to 10 scope, and the preset safe weights of access SD card authority are set to 5 etc.Simultaneously, also need for the terminal criterion of a terminal security threshold value as applications security be set through preset parameter module 6, for example the setting terminal secure threshold is 50.
Judge module 3, the size of the general safety weights that are used to judge said application program and preset terminal security threshold value also generates result of determination.Under this embodiment, judge module 3 judges that the security of application program is low when judging the general safety weights greater than the terminal security threshold value, and when judging the general safety weights less than the terminal security threshold value, the security of judging application program is high.
Above-mentioned judge module 3 is used for the safe weights sum of each operating right of present embodiment is made comparisons with the terminal security threshold value of setting through above-mentioned parameter preset module 6; If above-mentioned general safety weights are greater than 50; Then judge module 3 judges that application program is dangerous; If above-mentioned general safety weights are less than 50, then judge module 3 judges that application program is a safety.
Further, preset parameter module 6 can be a plurality of terminal security threshold values of terminal configuration, with the security that the realizes application programs refinement more of classifying.Concrete; Setting a terminal security upper threshold is 50; Set in addition under the terminal security threshold value and be limited to 20; With reference to the determination methods of above-mentioned judge module 3, compare with terminal security upper threshold and terminal security threshold value lower limit safety standard and general safety weights respectively as the terminal, then the general safety weights will be lower than the general safety weights less than 50 application program greater than the security of 50 application program; In like manner, the general safety weights will be lower than the general safety weights less than 20 application program greater than the security of 20 application program.Therefore, can be divided into the general safety weights greater than 50 o'clock " dangerous " by the security size this moment with application program, and " safer " and the general safety weights of general safety weights between 20-50 are less than 20 " safety ".The refinement more so that security of application programs is classified.
Processing module 4 is used to export the result of determination of 3 pairs of said applications securities of said judge module.
Under this embodiment, above-mentioned processing module 4 is through ejecting dialog box to export above-mentioned result of determination on the display screen at terminal.Certainly, processing module 4 includes but not limited to the dialog box mode when exporting the security result of determination of application programs to the user, also can adopt other can cause the mode that the user notes, such as vibrations, jingle bell etc.The terminal can be according to the result of determination of processing module 4 outputs; The download suggestion that further demonstration can be for reference on the display screen at terminal, the download suggestion of demonstration include but not limited to " but secure download ", " this application is dangerous ", " not recommending to download " etc.
Under this kind embodiment of a kind of application security anticipation device provided by the invention, this device also comprises the monitoring module 5 of the result of determination that is used to obtain judge module 3 application programs securities.Monitoring module 5 obtains the security result of determination of application programs in real time, and result of determination is fed back to the terminal, so that supply the terminal to carry out subsequent operation.Under this embodiment, when the result of determination that obtains when being dangerous, can in the terminal, be provided with and eject prompting, whether the inquiry user will continue to download this application program judging under unsafe situation.
In order to optimize user experience; The employed terminal of user also can increase some optional functions to application security anticipation device provided by the invention; For example in the terminal, increase device to application security anticipation device and open switch, the user can open switch through this device and select voluntarily whether will carry out safe judgement to the application program of to be downloaded/installation, also can in the terminal, increase and download alarm set; When the user chooses application program to prepare to download; Download alarm set and eject whether opening application program safety anticipation device of dialog box inquiry user, same, also can in the terminal, increase the installation alarm set; When the user chooses application program prepare to install, alarm set is installed is ejected whether opening application program safety anticipation device of dialog box inquiry user.
Fig. 3 is the process flow diagram of a kind of application security pre-judging method first embodiment among the present invention.As shown in Figure 3, this method may further comprise the steps:
S300: obtain the information that this application program is being installed to the required operating right that the terminal is operated in back in the terminal before the download/set up applications;
S301: the general safety weights that generate this application program according to safe weights corresponding and preset computing formula with said application program action required authority;
S302: the size of the general safety weights of judging said application program and preset terminal security threshold value also generates result of determination;
S303: output is to the result of determination of said applications security.
The method that the embodiment of the invention provides; Through the required operating right that the terminal is operated of application program and with the terminal in preset security strategy the to be downloaded/application program of installing is carried out safety assessment; It is more reasonable to make for the safety judgement of application program, reduces and downloads risk.
Referring to Fig. 4, for the verification method second embodiment schematic flow sheet provided by the invention, in a last embodiment, the basic implementing procedure of this method has been described clearly, in the present embodiment, with the implementing procedure of more concrete this verification method of elaboration.As shown in Figure 4, this method may further comprise the steps:
S401: obtain the information that this application program is being installed to the required operating right that the terminal is operated in back in the terminal before the download/set up applications.Further, obtain the information of the required operating right that the terminal is operated of this application program in this method through the configuration file in the application program.
With the Android system is example; In the application program under the Android system; Configuration file is AndroidManifest.xml, and the developer has shown the various authorities that application program had in the AndroidManifest.xml file, and authority sign is nearly 100 multinomial.The user is in the terminal during set up applications; If accept the authority of AndroidManifest.xml; Then this application program just can obtain the authority that defines among the AndroidManifest.xml in the terminal legally; As obtaining the authority of mobile phone contact information, even obtain to call, send authority of information or the like.Therefore, in step S401, can get access to the information of the required operating right that the terminal is operated of application program through the AndroidManifest.xml file.
S402: the general safety weights that generate this application program according to safe weights corresponding and preset computing formula with said application program action required authority.Under this embodiment, the method that generates the general safety weights of said application program is specially: the general safety weights that will the safe weights addition corresponding with application program action required authority obtain this application program.
Because the diversity of the operating right that the terminal is operated, simple safe weights addition or subtract each other the security that possibly be able to not reflect an application program very really.When separately some operation is carried out at the terminal; Safety effects to the terminal is also little, but acts on the terminal and possibly serious safety problem will occur when several operations combine, and all is very common operation on the terminal separately such as reading and writing of files or accesses network; But when possessing above-mentioned two operating rights to the terminal simultaneously; Then possibly cause userspersonal information's leakage, so the combination setting weight factor that should be some specific operating rights is calculated.By on can know that parameter acquisition module also can adopt another kind to be used for the computing formula of computing whole safety weights.Concrete; The method that generates the general safety weights of application program specifically comprises: the particular combination that parameter acquisition module is formed for the different operation authority that the terminal is operated is provided with weight factor; And when the required authority of above-mentioned application program comprises this particular combination; Weight factor is multiplied each other respectively and with the corresponding safe weights of operating right of forming this particular combination, and and sue for peace with the required corresponding safe weights of other operating rights of application program and to obtain the general safety weights of this application program.
A kind of application security pre-judging method provided by the invention, the computing formula that is used to obtain the general safety weights can be various, includes but not limited to above-mentioned two kinds of computing method, specifically can be provided with the security requirement at terminal according to the user.
Further, before step S401, this method also comprises step S400: corresponding safe weights and the above-mentioned terminal security threshold value of each operating right in the setting terminal.The present technique scheme in device, introduce a kind of through application program required the operating right at terminal is carried out the mechanism of safety assessment; Be specially to each safe weights of operating right definition the terminal; The scope of these safe weights can define voluntarily, such as can in 0 to 10 scope, setting, and the corresponding different security authority of the value that varies in size; Numerical value is big more, and the security of this operating right is important more.In step S400, the safety requirements of different operation authority just is provided with the safe weights size of each operating right according to the user.The user can be provided with corresponding operating right according to the demand for security of oneself, as the preset safe weights that read the address list authority are set to 8 in 0 to 10 scope, and the preset safe weights of access SD card authority are set to 5 etc.Simultaneously, also need be for the terminal is provided with the criterion of a terminal security threshold value as applications security in step S400, for example the setting terminal secure threshold is 50.
S403: judge the general safety weights of said application program and the size of the terminal security threshold value of presetting; When judging the general safety weights greater than the terminal security threshold value; Go to step S404, when judging the general safety weights, go to step S405 less than the terminal security threshold value;
S404: the security of judging said application program is low;
S405: the security of judging said application program is for high;
S407: output is to the result of determination of said applications security.
In step S403; The safe weights sum of each operating right in the present embodiment is made comparisons with the terminal security threshold value of in step S400, setting, if above-mentioned general safety weights greater than 50, then go to step S404; Judge that application program is dangerous; If above-mentioned general safety weights less than 50, then go to step S405, judge module 3 judges that application program is a safety.
Further, in step S400, can be a plurality of terminal security threshold values of terminal configuration, with the security that the realizes application programs refinement more of classifying.Concrete; Setting a terminal security upper threshold is 50; Set in addition under the terminal security threshold value and be limited to 20; With reference to the determination methods among the above-mentioned steps S403, compare with terminal security upper threshold and terminal security threshold value lower limit safety standard and general safety weights respectively as the terminal, then the general safety weights will be lower than the general safety weights less than 50 application program greater than the security of 50 application program; In like manner, the general safety weights will be lower than the general safety weights less than 20 application program greater than the security of 20 application program.Therefore; Can be divided into the general safety weights greater than 50 o'clock " dangerous " by the security size this moment with application program; " safer " and the general safety weights of general safety weights between 20-50 are less than 20 " safety ", the refinement more so that security of application programs is classified.
Under this embodiment, among the above-mentioned steps S407 through on the display screen at terminal, ejecting dialog box to export above-mentioned result of determination.Certainly, mode from the security result of determination of application programs to the user that export includes but not limited to the dialog box mode, also can adopt other can cause the mode that the user notes, such as vibrations, jingle bell etc.The terminal can be according to the result of determination of exporting among the step S407; The download suggestion that further demonstration can be for reference on the display screen at terminal, the download suggestion of demonstration include but not limited to " but secure download ", " this application is dangerous ", " not recommending to download " etc.
Under this kind embodiment of a kind of application security pre-judging method provided by the invention, before step S407, also comprise the step S406 of the result of determination of obtaining the application programs security.In step S406, obtain the security result of determination of application programs in real time, and result of determination is fed back to the terminal, so that supply the terminal to carry out subsequent operation.Under this embodiment, when the result of determination that obtains when being dangerous, can in the terminal, be provided with and eject prompting, whether the inquiry user will continue to download this application program judging under unsafe situation.
In order to optimize user experience; The employed terminal of user also can increase some optional functions to application security pre-judging method provided by the invention; For example increase safety is judged the unlatching switch in the terminal, and the user can judge that safely opening switch selects whether will carry out safe judgement to the application program of to be downloaded/installation voluntarily, also can increase and download alarm set through this in the terminal; When the user chooses application program to prepare to download; Whether application programs is carried out the security judgement to download alarm set ejection dialog box inquiry user, and is same, also can in the terminal, increase alarm set is installed; When the user chose the application program preparation to install, alarm set ejection dialog box inquiry user is installed, and whether application programs was carried out the security judgement.
Adopt the technical scheme of a kind of application security anticipation device and method provided by the invention; The user is before download/set up applications; Obtain the information of this application program required operating right that the terminal is operated in back in being installed to the terminal through the configuration file in the application program; The safe condition of the corresponding safe weights of the required operating right of foundation and said application program and preset this application program of terminal security threshold determination, and result of determination is fed back to the user do download/installation reference.The embodiment of the invention has following advantage or beneficial effect: overcome the technical matters that the information that can't combine application program itself in the prior art is carried out safety assessment, reached the technique effect that reference proposition can be provided for the user according to the preset voluntarily terminal security threshold value of user.
Device embodiment described above only is schematic; Wherein said unit as the separating component explanation can or can not be physically to separate also; The parts that show as the unit can be or can not be physical locations also; Promptly can be positioned at a place, perhaps also can be distributed on a plurality of NEs.Can realize the purpose of present embodiment scheme according to the needs selection some or all of module wherein of reality.Those of ordinary skills promptly can understand and implement under the situation of not paying performing creative labour.
Through the description of above embodiment, those skilled in the art can be well understood to each embodiment and can realize by the mode that software adds essential general hardware platform, can certainly pass through hardware.Based on such understanding; The part that technique scheme contributes to prior art in essence in other words can be come out with the embodied of software product; This computer software product can be stored in the computer-readable recording medium, like ROM/RAM, magnetic disc, CD etc., comprises that some instructions are with so that a computer equipment (can be a personal computer; Server, perhaps network equipment etc.) carry out the described method of some part of each embodiment or embodiment.
Above-described embodiment does not constitute the qualification to this technical scheme protection domain.The modification of being done within any spirit and principle at above-mentioned embodiment, be equal to replacement and improvement etc., all should be included within the protection domain of this technical scheme.
Claims (10)
1. application security anticipation device is characterized in that this device comprises:
Information extraction modules is used for obtaining before the download/set up applications this application program in the information that is being installed to the required operating right that the terminal is operated in back, terminal;
Parameter acquisition module is used for the general safety weights that the corresponding safe weights of the required operating right of basis and said application program and preset computing formula generate this application program;
Judge module, the size of the general safety weights that are used to judge said application program and preset terminal security threshold value also generates result of determination;
Processing module is used to export the result of determination of said judge module to said applications security.
2. application security anticipation device as claimed in claim 1 is characterized in that said parameter acquisition module is used for: the general safety weights that will obtain this application program with the required corresponding safe weights addition of operating right of said application program;
Perhaps; The particular combination of forming for the different operation authority that the terminal is operated is provided with weight factor; And when the required authority of said application program comprises this particular combination; Said weight factor is multiplied each other respectively and with the corresponding safe weights of operating right of forming this particular combination, and and sue for peace with the required corresponding safe weights of other operating rights of said application program and to obtain the general safety weights of this application program.
3. application security anticipation device as claimed in claim 2 is characterized in that, said information extraction modules is obtained the information of the required operating right that the terminal is operated of this application program through the configuration file in the application program.
4. application security anticipation device as claimed in claim 3 is characterized in that said device also comprises the preset parameter module, is used to dispose said terminal security threshold value and said safe weights.
5. application security anticipation device as claimed in claim 4 is characterized in that said device also comprises monitoring module, and said monitoring module is used to obtain the result of determination of said judge module application programs safety, and said result of determination is fed back to the terminal.
6. an application security pre-judging method is characterized in that, said method comprising the steps of:
Obtain the information that this application program is being installed to the required operating right that the terminal is operated in back in the terminal before the download/set up applications;
Generate the general safety weights of this application program according to safe weights corresponding and preset computing formula with said application program action required authority;
The size of the terminal security threshold value of judging the general safety weights of said application program and presetting also generates result of determination;
Output is to the result of determination of said applications security.
7. application security anticipation device as claimed in claim 6 is characterized in that, the method that generates the general safety weights of said application program specifically comprises:
The general safety weights that will the safe weights addition corresponding obtain this application program with said application program action required authority;
Perhaps; The particular combination of forming for the different operation authority that the terminal is operated is provided with weight factor; And when the required authority of said application program comprises this particular combination; Said weight factor is multiplied each other respectively and with the corresponding safe weights of operating right of forming this particular combination, and and sue for peace with the required corresponding safe weights of other operating rights of said application program and to obtain the general safety weights of this application program.
8. application security pre-judging method as claimed in claim 7 is characterized in that the information of the operating right that said application program is required is obtained through the configuration file in the application program.
9. application security pre-judging method as claimed in claim 8 is characterized in that, before the information of the operating right that obtains said application program, also comprises said terminal security threshold value of configuration and said safe weights.
10. application security pre-judging method as claimed in claim 9 is characterized in that said method also comprises the result of determination of obtaining the application programs security, and said result of determination is fed back to the terminal.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2011103843547A CN102521549A (en) | 2011-11-28 | 2011-11-28 | Security pre-judgment device and method for application program |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2011103843547A CN102521549A (en) | 2011-11-28 | 2011-11-28 | Security pre-judgment device and method for application program |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN102521549A true CN102521549A (en) | 2012-06-27 |
Family
ID=46292460
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2011103843547A Pending CN102521549A (en) | 2011-11-28 | 2011-11-28 | Security pre-judgment device and method for application program |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN102521549A (en) |
Cited By (15)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103036900A (en) * | 2012-12-26 | 2013-04-10 | 珠海市魅族科技有限公司 | Control method of data transmission permission and server |
| CN103177217A (en) * | 2013-04-08 | 2013-06-26 | 腾讯科技(深圳)有限公司 | File scan method, file scan system, client-side and server |
| CN103823702A (en) * | 2014-03-10 | 2014-05-28 | 联想(北京)有限公司 | Application installation method and electronic equipment |
| CN103927156A (en) * | 2013-01-16 | 2014-07-16 | 珠海市君天电子科技有限公司 | Sample behavior triggering method and device |
| CN104318153A (en) * | 2014-09-30 | 2015-01-28 | 北京金和软件股份有限公司 | Online monitoring system for mobile equipment downloading mobile applications |
| CN104346566A (en) * | 2013-07-31 | 2015-02-11 | 腾讯科技(深圳)有限公司 | Method, device, terminal, server and system for detecting privacy authority risks |
| CN104380302A (en) * | 2012-06-07 | 2015-02-25 | 迈可菲公司 | Evaluating whether to block or allow installation of a software application |
| CN104767876A (en) * | 2015-03-03 | 2015-07-08 | 中国联合网络通信集团有限公司 | Safety software processing method and user terminal |
| CN105117544A (en) * | 2015-08-21 | 2015-12-02 | 李涛 | Android platform App risk assessment method based on mobile cloud computing and Android platform App risk assessment device based on mobile cloud computing |
| CN105631338A (en) * | 2014-10-31 | 2016-06-01 | 重庆重邮信科通信技术有限公司 | Application security authentication method and terminal |
| CN105740715A (en) * | 2016-01-29 | 2016-07-06 | 广东欧珀移动通信有限公司 | Safety assessment method and terminal equipment |
| CN106030527A (en) * | 2014-02-12 | 2016-10-12 | 赛门铁克公司 | Systems and methods for informing users about applications available for download |
| US9471782B2 (en) | 2013-04-08 | 2016-10-18 | Tencent Technology (Shenzhen) Company Limited | File scanning method and system, client and server |
| CN112270014A (en) * | 2020-10-16 | 2021-01-26 | 维沃移动通信有限公司 | Application program control method and device and electronic equipment |
| CN113158236A (en) * | 2021-03-30 | 2021-07-23 | 中电数据服务有限公司 | Method for evaluating personal information protection capability of application software in real-time running state |
Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1618198A (en) * | 2003-05-17 | 2005-05-18 | 微软公司 | Mechanism for evaluating safety and risk |
| CN101137156A (en) * | 2007-10-18 | 2008-03-05 | 中兴通讯股份有限公司 | Information protecting method of mobile terminal |
-
2011
- 2011-11-28 CN CN2011103843547A patent/CN102521549A/en active Pending
Patent Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1618198A (en) * | 2003-05-17 | 2005-05-18 | 微软公司 | Mechanism for evaluating safety and risk |
| CN101137156A (en) * | 2007-10-18 | 2008-03-05 | 中兴通讯股份有限公司 | Information protecting method of mobile terminal |
Cited By (22)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104380302A (en) * | 2012-06-07 | 2015-02-25 | 迈可菲公司 | Evaluating whether to block or allow installation of a software application |
| CN104380302B (en) * | 2012-06-07 | 2017-10-20 | 迈可菲公司 | Assessment is prevention or allows the installation of software application |
| CN103036900B (en) * | 2012-12-26 | 2015-09-23 | 魅族科技(中国)有限公司 | A kind of control method of data transmission permission and server |
| CN103036900A (en) * | 2012-12-26 | 2013-04-10 | 珠海市魅族科技有限公司 | Control method of data transmission permission and server |
| CN103927156A (en) * | 2013-01-16 | 2014-07-16 | 珠海市君天电子科技有限公司 | Sample behavior triggering method and device |
| CN103177217A (en) * | 2013-04-08 | 2013-06-26 | 腾讯科技(深圳)有限公司 | File scan method, file scan system, client-side and server |
| CN103177217B (en) * | 2013-04-08 | 2015-08-26 | 腾讯科技(深圳)有限公司 | A kind of file scanning method, system and client and server |
| US9471782B2 (en) | 2013-04-08 | 2016-10-18 | Tencent Technology (Shenzhen) Company Limited | File scanning method and system, client and server |
| CN104346566A (en) * | 2013-07-31 | 2015-02-11 | 腾讯科技(深圳)有限公司 | Method, device, terminal, server and system for detecting privacy authority risks |
| CN106030527A (en) * | 2014-02-12 | 2016-10-12 | 赛门铁克公司 | Systems and methods for informing users about applications available for download |
| CN103823702A (en) * | 2014-03-10 | 2014-05-28 | 联想(北京)有限公司 | Application installation method and electronic equipment |
| CN103823702B (en) * | 2014-03-10 | 2018-04-27 | 联想(北京)有限公司 | One kind applies installation method and electronic equipment |
| CN104318153B (en) * | 2014-09-30 | 2017-06-23 | 北京金和软件股份有限公司 | It is a kind of to monitor the system that mobile device downloads Mobile solution on-line |
| CN104318153A (en) * | 2014-09-30 | 2015-01-28 | 北京金和软件股份有限公司 | Online monitoring system for mobile equipment downloading mobile applications |
| CN105631338A (en) * | 2014-10-31 | 2016-06-01 | 重庆重邮信科通信技术有限公司 | Application security authentication method and terminal |
| CN104767876A (en) * | 2015-03-03 | 2015-07-08 | 中国联合网络通信集团有限公司 | Safety software processing method and user terminal |
| CN105117544A (en) * | 2015-08-21 | 2015-12-02 | 李涛 | Android platform App risk assessment method based on mobile cloud computing and Android platform App risk assessment device based on mobile cloud computing |
| CN105117544B (en) * | 2015-08-21 | 2018-09-28 | 李涛 | Android platform App methods of risk assessment and device based on mobile cloud computing |
| CN105740715A (en) * | 2016-01-29 | 2016-07-06 | 广东欧珀移动通信有限公司 | Safety assessment method and terminal equipment |
| CN112270014A (en) * | 2020-10-16 | 2021-01-26 | 维沃移动通信有限公司 | Application program control method and device and electronic equipment |
| CN112270014B (en) * | 2020-10-16 | 2022-06-10 | 维沃移动通信有限公司 | Application program control method and device and electronic equipment |
| CN113158236A (en) * | 2021-03-30 | 2021-07-23 | 中电数据服务有限公司 | Method for evaluating personal information protection capability of application software in real-time running state |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN102521549A (en) | Security pre-judgment device and method for application program | |
| CN103597494B (en) | Method and apparatus for the use of numerals authority of management document | |
| CN100578522C (en) | Electronic device, update method for same and integrated circuit | |
| CN102404706B (en) | Method for managing tariff safety and mobile terminal | |
| CN105843653B (en) | A kind of safety applications collocation method and device | |
| CN107645482A (en) | A kind of risk control method and device for business operation | |
| CN109766700A (en) | Access control method and device, the storage medium, electronic device of file | |
| CN110011848B (en) | Mobile operation and maintenance auditing system | |
| CN106569853B (en) | Software upgrading test method for double-core electric energy meter | |
| CN104036194B (en) | Vulnerability detection method and device for revealing private data in application program | |
| CN107979467A (en) | Verification method and device | |
| CN104364791A (en) | PC security using BIOS/(U)EFI extensions | |
| CN106357807A (en) | Data processing method, device and system | |
| CN101047701B (en) | System and method for ensuring safety operation of applied program | |
| CN101305377A (en) | Communication terminal device, server terminal device, and communication system using the same | |
| CN105260665A (en) | Information protection method and device | |
| CN114499919B (en) | Method and system for modeling engineering machinery communication security network threat | |
| CN115080956A (en) | Detection method and system based on violation permission of installed application program of mobile terminal | |
| CN107122664B (en) | Safety protection method and device | |
| CN111222181B (en) | AI model supervision method, system, server and storage medium | |
| CN107948973B (en) | Equipment fingerprint generation method applied to IOS (input/output system) for security risk control | |
| CN103116848B (en) | The method of secured electronic charging, equipment and system | |
| CN105653989B (en) | A kind of information leakage preventing method and device | |
| CN110990802A (en) | Method and device for carrying out batch authorization on mysql user permission information | |
| CN110378120A (en) | Application programming interfaces attack detection method, device and readable storage medium storing program for executing |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C12 | Rejection of a patent application after its publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20120627 |