CN103729599A - Data invoking processing method and device - Google Patents
Data invoking processing method and device Download PDFInfo
- Publication number
- CN103729599A CN103729599A CN201310530869.2A CN201310530869A CN103729599A CN 103729599 A CN103729599 A CN 103729599A CN 201310530869 A CN201310530869 A CN 201310530869A CN 103729599 A CN103729599 A CN 103729599A
- Authority
- CN
- China
- Prior art keywords
- data
- access request
- application
- virtual
- data access
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/51—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems at application loading time, e.g. accepting, rejecting, starting or inhibiting executable software based on integrity or source reliability
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Software Systems (AREA)
- Theoretical Computer Science (AREA)
- Computer Hardware Design (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Storage Device Security (AREA)
- Information Transfer Between Computers (AREA)
Abstract
The embodiment of the invention discloses a data invoking processing method and device, and relates to the technical field of mobile terminals. The data invoking processing method comprises the steps that a data access request sent by an application is received; whether the data corresponding to the data access request are permitted to be accessed is judged; when the data corresponding to the data access request are not permitted to be accessed, virtual data are obtained according to the data access request; the virtual data are sent to the application so that the application can execute a next procedure by using the virtual data. The data invoking processing method and device are suitable for the mobile terminals.
Description
Technical field
The present invention relates to technical field of mobile terminals, particularly a kind of disposal route of data call and device.
Background technology
Along with the development of mobile terminal, various application programs are also all arisen at the historic moment.Be applied as user the service of various content and forms is provided, for user provides convenience.User, use in the process of application, application sometimes needs calling party to be stored in the data in terminal, for example, shares the photo of user terminal, or the address list of calling party etc.During data in application access terminal, terminal is considered for the security standpoint of protection privacy of user data, can be sent prompting to user.User can select to allow or forbid the corresponding data of application access.When user selects to allow, apply normally visit data; When user selects to forbid, application cannot get data.
In prior art, at least there are the following problems: when user forbids application access data; that the mode of forbidding by pressure is carried out; although this kind of processing mode effectively protected user's data security; but application can not get corresponding data; may cause application function abnormal; or cause application crashes to exit, even cause user terminal to crash.
Summary of the invention
A kind of disposal route and device of data call are provided, can solve when application call data, because of the application abnormal problem of forbidding that application access corresponding data causes, improve user and experience.
First aspect, provides a kind of disposal route of data call, comprising:
Receive the data access request that application sends;
Judge whether data corresponding to described data access request allow accessed;
When data corresponding to described data access request do not allow when accessed, to obtain virtual data according to described data access request;
To described application, send described virtual data, so that described application is used described virtual data to carry out next step flow process.
Second aspect, provides a kind for the treatment of apparatus of data call, comprising:
Receiving element, the data access request sending for receiving application;
Judging unit, for judging whether data corresponding to described data access request allow accessed;
The first data capture unit, when accessed, does not obtain virtual data according to described data access request for not allowing when data corresponding to described data access request;
Transmitting element, for sending described virtual data to described application, so that described application is used described virtual data to carry out next step flow process.
During data in prior art in application access terminal, terminal is considered for the security standpoint of protection privacy of user data, can send the prompting that whether allows access to user; When user forbids application access data, because application can not get corresponding data, may cause application function abnormal, or cause application crashes to exit, even cause user terminal to crash.Compared with prior art, in the embodiment of the present invention, terminal receives the data access request that application sends; Judge whether data corresponding to described data access request allow accessed; When data corresponding to described data access request do not allow when accessed, to obtain virtual data according to described data access request; To described application, send described virtual data, so that described application is used described virtual data to carry out next step flow process.By obtaining virtual data for application, can either guarantee privacy of user data security, can guarantee that again the function of application program is normally moved, improve the stability of application program, improve user and experience.
Accompanying drawing explanation
In order to be illustrated more clearly in the technical scheme in the embodiment of the present invention, to the accompanying drawing of required use in embodiment or description of the Prior Art be briefly described below, apparently, accompanying drawing in the following describes is only some embodiments of the present invention, for those of ordinary skills, do not paying under the prerequisite of creative work, can also obtain according to these accompanying drawings other accompanying drawing.
The process flow figure of the data call that Fig. 1 provides for one embodiment of the invention;
The process flow figure of the data call that Fig. 2 provides for further embodiment of this invention;
The treating apparatus structural representation of the data call that Fig. 3, Fig. 4 provide for further embodiment of this invention.
Embodiment
Below in conjunction with the accompanying drawing in the embodiment of the present invention, the technical scheme in the embodiment of the present invention is clearly and completely described, obviously, described embodiment is only the present invention's part embodiment, rather than whole embodiment.Embodiment based in the present invention, those of ordinary skills, not making all other embodiment that obtain under creative work prerequisite, belong to the scope of protection of the invention.
For making the advantage of technical solution of the present invention clearer, below in conjunction with drawings and Examples, the present invention is elaborated.
One embodiment of the invention provides a kind of disposal route of data call, is applied to mobile terminal, by data access manager, the data access request of application is processed, and as shown in Figure 1, described method comprises:
101, data access manager receives the data access request that application sends.
102, data access manager judges whether data corresponding to data access request allow accessed.
103, when data corresponding to data access request do not allow when accessed, data access manager obtains virtual data according to data access request.
For example, describedly according to described data access request, obtain virtual data and comprise:
Data access manager is resolved described data access request, obtains the data type of data corresponding to described data access request;
Data access manager is constructed at least one virtual data identical with described data type.
Further, after at least one virtual data identical with described data type of described structure, described method also comprises:
Data access manager random choose in described at least one virtual data identical with described data type goes out a virtual data as the virtual data that sends to described application.
Optionally, describedly according to described data access request, obtain virtual data and can also comprise: the virtual data of data access manager preset different types of data in database;
After obtaining the data type of data corresponding to described data access request, from database, select corresponding virtual data to send to described application.
104, data access manager sends virtual data to application, so that application is used virtual data to carry out next step flow process.
Wherein, the content of the content of described virtual data data corresponding from described data access request is different.
Further, described method also comprises:
When data corresponding to described data access request allow when accessed, data access manager obtains the data of described correspondence by data fetch interface; Terminal sends the data of described correspondence to described application.
During data in prior art in application access terminal, terminal is considered for the security standpoint of protection privacy of user data, can send the prompting that whether allows access to user; When user forbids application access data, because application can not get corresponding data, may cause application function abnormal, or cause application crashes to exit, even cause user terminal to crash.Compared with prior art, in the embodiment of the present invention, terminal receives the data access request that application sends; Judge whether data corresponding to described data access request allow accessed; When data corresponding to described data access request do not allow when accessed, to obtain virtual data according to described data access request; To described application, send described virtual data, so that described application is used described virtual data to carry out next step flow process.By obtaining virtual data for application, can either guarantee privacy of user data security, can guarantee that again the function of application program is normally moved, improve the stability of application program, improve user and experience.
Further embodiment of this invention provides a kind of disposal route of data call, to pass through Virtual User datacycle in mobile terminal, when the number of users in application access terminal is rejected, for applying the virtual data that coupling is provided, guarantee the normal operation of application, as shown in Figure 2, described method comprises:
201, application program, when needs visit data, is initiated data access request.
For example, in the request of access that, application program sends, carry memory address and the data type of data.Wherein, data access request can comprise multiple operation, for example, can be opening operation, deletion action and replicate run etc.
202, the data access manager in terminal, after receiving the data access request of application program transmission, judges whether authorized these data of access of this application program, if these data of the uncommitted access of this application program, execution step 203; If authorized these data of access of this application program, execution step 207.
Wherein, under the default situations of mobile terminal system; in order to protect the data-privacy safety of mobile phone users; the scope of activities of application software only limits to the space that system is its distribution; do not have authority to carry out certain operations to other programs or operating system; for example, delete, copy and replace the operations such as data of other programs or operating system.User can carry out the authority for some data of application program open visit by system setting.
For example, in Android system, during application access data, data access request is processed by linux kernel, and linux kernel provides service interface to complete corresponding operation by system call to user's state process.In linux kernel, the system call relevant with file access authority mainly comprises following five interfaces:
The system call of sys_read () for reading file;
Sys_write () is the system call of written document;
Sys_unlink () is the system call of deleted file;
Sys_rename () is the system call of revised file name;
Sys_create () is the system call of new files;
The system call of sys_open () for opening file.
203, terminal is sent access interception prompting at screen interface to user.
In this step, due to these data of the uncommitted access of application, terminal is when finding that application wants to access these data, in order to protect user's data security, to user, send prompting, by user, determine whether to allow these data of application access, when user does not allow these data of application access, execution step 204; When user allows these data of application access, execution step 207.
204, when receiving user's disable access indication, terminal is by data access manager constructing virtual data.
It should be noted that, if receive user's disable access indication in prior art, data access manager can constructing virtual data, but directly refuse to application program return data; Application program cannot get any data feedback; For some application program, in the time cannot obtaining data feedback, can cause application exception to report an error, or application program directly finish process by force, even can cause cell phone system dysfunction.
The impact bringing in order to reduce the problems referred to above, when receiving user's disable access indication, can pass through data access manager constructing virtual data, this virtual data does not have substantial content, its amount of capacity can be 1kb, and this virtual data only need to meet the data that the data that will access with data access request belong to same type.
For example, the data access request that data access manager is initiated application program in step 201 is resolved, and obtains the data type in data access request; The virtual data that data access manager structure is identical with the data type obtaining; Wherein, the virtual data of structure can be for one or more, and the data type of virtual data is identical with the data type of the data that data access request will be accessed, but the data content that its content will be accessed from data access request is different.After having constructed virtual data, can from the virtual data of structure, select a virtual data at random and feed back to application program.
Optionally, can also be in the database of terminal the virtual data of preset different types of data;
The data access request that data access manager is initiated application program in step 201 is resolved, and after obtaining the data type in data access request, selects corresponding virtual data to send to described application according to data type from database.
205, terminal is returned to the virtual data of structure to application by data access manager.
206, application program is used virtual data to carry out next step flow process.
For example, application program is wanted the photo in the photograph album of user in access terminal, a picture identical with picture data type of data access manager structure, and application program, after getting this picture, is used normal treatment scheme to process this picture.For example, at Application Program Interface, show this picture, the picture of wherein showing can be a blank picture.
207, terminal is used open data fetch interface reading out data by data access manager.
208, terminal is returned to the data that read to application by data access manager.
209, application program usage data is carried out next step flow process.
During data in prior art in application access terminal, terminal is considered for the security standpoint of protection privacy of user data, can send the prompting that whether allows access to user; When user forbids application access data, because application can not get corresponding data, may cause application function abnormal, or cause application crashes to exit, even cause user terminal to crash.Compared with prior art, in the embodiment of the present invention, terminal receives the data access request that application sends; Judge whether data corresponding to described data access request allow accessed; When data corresponding to described data access request do not allow when accessed, to obtain virtual data according to described data access request; To described application, send described virtual data, so that described application is used described virtual data to carry out next step flow process.By being application construction virtual data, can either guarantee privacy of user data security, can guarantee that again the function of application program is normally moved, improve the stability of application program, improve user and experience.
Further embodiment of this invention provides a kind for the treatment of apparatus 30 of data call, and as shown in Figure 3, described device 30 comprises:
Receiving element 31, the data access request sending for receiving application;
Judging unit 32, for judging whether data corresponding to described data access request that described receiving element 31 receives allow accessed;
The first data capture unit 33, when accessed, does not obtain virtual data according to described data access request for not allowing when data corresponding to the described judging unit 32 described data access request of judgement;
Transmitting element 34, the described virtual data obtaining for send described the first data capture unit 33 to described application, so that described application is used described virtual data to carry out next step flow process.
Further, as shown in Figure 4, described the first data capture unit 33 comprises:
Further, as shown in Figure 4, described device 30 can also comprise:
Choose unit 35, for going out a virtual data as the virtual data that sends to described application at described at least one virtual data random choose identical with described data type.
Wherein, the content of the content of described virtual data data corresponding from described data access request is different.
Further, as shown in Figure 4, described device 30 can also comprise:
The second data capture unit 36, for allowing when data corresponding to described data access request when accessed, obtains the data of described correspondence by data fetch interface;
Described transmitting element 34 is also for sending the data of described correspondence to described application.
During data in prior art in application access terminal, terminal is considered for the security standpoint of protection privacy of user data, can send the prompting that whether allows access to user; When user forbids application access data, because application can not get corresponding data, may cause application function abnormal, or cause application crashes to exit, even cause user terminal to crash.Compared with prior art, in the embodiment of the present invention, terminal receives the data access request that application sends; Judge whether data corresponding to described data access request allow accessed; When data corresponding to described data access request do not allow when accessed, to obtain virtual data according to described data access request; To described application, send described virtual data, so that described application is used described virtual data to carry out next step flow process.By obtaining virtual data for application, can either guarantee privacy of user data security, can guarantee that again the function of application program is normally moved, improve the stability of application program, improve user and experience.
The above-mentioned embodiment of the method providing can be provided the treating apparatus of the data call that the embodiment of the present invention provides, and concrete function is realized and referred to the explanation in embodiment of the method, does not repeat them here.Disposal route and the device of the data call that the embodiment of the present invention provides go for mobile terminal, but are not limited only to this.
One of ordinary skill in the art will appreciate that all or part of flow process realizing in above-described embodiment method, to come the hardware that instruction is relevant to complete by computer program, described program can be stored in a computer read/write memory medium, this program, when carrying out, can comprise as the flow process of the embodiment of above-mentioned each side method.Wherein, described storage medium can be magnetic disc, CD, read-only store-memory body (Read-Only Memory, ROM) or random store-memory body (Random Access Memory, RAM) etc.
The above; be only the specific embodiment of the present invention, but protection scope of the present invention is not limited to this, is anyly familiar with those skilled in the art in the technical scope that the present invention discloses; the variation that can expect easily or replacement, within all should being encompassed in protection scope of the present invention.Therefore, protection scope of the present invention should be as the criterion with the protection domain of claim.
Claims (10)
1. a disposal route for data call, is characterized in that, comprising:
Receive the data access request that application sends;
Judge whether data corresponding to described data access request allow accessed;
When data corresponding to described data access request do not allow when accessed, to obtain virtual data according to described data access request;
To described application, send described virtual data, so that described application is used described virtual data to carry out next step flow process.
2. method according to claim 1, is characterized in that, describedly according to described data access request, obtains virtual data and comprises:
Resolve described data access request, obtain the data type of data corresponding to described data access request;
Construct at least one virtual data identical with described data type.
3. method according to claim 2, is characterized in that, after at least one virtual data identical with described data type of described structure, described method also comprises:
In described at least one virtual data identical with described data type, random choose goes out a virtual data as the virtual data that sends to described application.
4. according to the method described in claim 1-3 any one, it is characterized in that, the content of the data that the content of described virtual data is corresponding from described data access request is different.
5. method according to claim 1, is characterized in that, described method also comprises:
When data corresponding to described data access request allow when accessed, by data fetch interface, obtain the data of described correspondence;
To described application, send the data of described correspondence.
6. a treating apparatus for data call, is characterized in that, comprising:
Receiving element, the data access request sending for receiving application;
Judging unit, for judging whether data corresponding to described data access request allow accessed;
The first data capture unit, when accessed, does not obtain virtual data according to described data access request for not allowing when data corresponding to described data access request;
Transmitting element, for sending described virtual data to described application, so that described application is used described virtual data to carry out next step flow process.
7. device according to claim 6, is characterized in that, described the first data capture unit comprises:
Resolution unit, for resolving described data access request, obtains the data type of data corresponding to described data access request;
Tectonic element, for constructing at least one virtual data identical with described data type.
8. device according to claim 7, is characterized in that, described device also comprises:
Choose unit, for going out a virtual data as the virtual data that sends to described application at described at least one virtual data random choose identical with described data type.
9. according to the device described in claim 6-8 any one, it is characterized in that, the content of the data that the content of described virtual data is corresponding from described data access request is different.
10. device according to claim 7, is characterized in that, described device also comprises:
The second data capture unit, for allowing when data corresponding to described data access request when accessed, obtains the data of described correspondence by data fetch interface;
Described transmitting element is also for sending the data of described correspondence to described application.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310530869.2A CN103729599A (en) | 2013-10-31 | 2013-10-31 | Data invoking processing method and device |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310530869.2A CN103729599A (en) | 2013-10-31 | 2013-10-31 | Data invoking processing method and device |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN103729599A true CN103729599A (en) | 2014-04-16 |
Family
ID=50453670
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201310530869.2A Pending CN103729599A (en) | 2013-10-31 | 2013-10-31 | Data invoking processing method and device |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103729599A (en) |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105187662A (en) * | 2015-09-28 | 2015-12-23 | 努比亚技术有限公司 | Device and method for adaptively filtering personal privacy information and mobile terminal |
| WO2018072436A1 (en) * | 2016-10-21 | 2018-04-26 | 中兴通讯股份有限公司 | Privilege management method, device and terminal |
| CN109656696A (en) * | 2018-12-03 | 2019-04-19 | 华南师范大学 | A kind of processing method that data API is efficiently called |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1455899A (en) * | 2000-07-25 | 2003-11-12 | 有限会社信息安全 | Secret information recorded medium, protection method, protection storing method and system for information access alarming system |
| CN101166156A (en) * | 2006-10-20 | 2008-04-23 | 佳能株式会社 | Document management system and document management method |
| CN102004886A (en) * | 2010-11-15 | 2011-04-06 | 上海安纵信息科技有限公司 | Data anti-leakage method based on operating system virtualization principle |
| CN102685136A (en) * | 2012-05-18 | 2012-09-19 | 深信服网络科技(深圳)有限公司 | Multi-network environment isolation method and terminal |
| CN102821094A (en) * | 2012-07-09 | 2012-12-12 | 深圳市深信服电子科技有限公司 | Method and system for secure data processing in virtual desktop |
-
2013
- 2013-10-31 CN CN201310530869.2A patent/CN103729599A/en active Pending
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1455899A (en) * | 2000-07-25 | 2003-11-12 | 有限会社信息安全 | Secret information recorded medium, protection method, protection storing method and system for information access alarming system |
| CN101166156A (en) * | 2006-10-20 | 2008-04-23 | 佳能株式会社 | Document management system and document management method |
| CN102004886A (en) * | 2010-11-15 | 2011-04-06 | 上海安纵信息科技有限公司 | Data anti-leakage method based on operating system virtualization principle |
| CN102685136A (en) * | 2012-05-18 | 2012-09-19 | 深信服网络科技(深圳)有限公司 | Multi-network environment isolation method and terminal |
| CN102821094A (en) * | 2012-07-09 | 2012-12-12 | 深圳市深信服电子科技有限公司 | Method and system for secure data processing in virtual desktop |
Cited By (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105187662A (en) * | 2015-09-28 | 2015-12-23 | 努比亚技术有限公司 | Device and method for adaptively filtering personal privacy information and mobile terminal |
| CN105187662B (en) * | 2015-09-28 | 2020-03-27 | 努比亚技术有限公司 | Device and method for adaptively filtering personal privacy information and mobile terminal |
| WO2018072436A1 (en) * | 2016-10-21 | 2018-04-26 | 中兴通讯股份有限公司 | Privilege management method, device and terminal |
| CN107979684A (en) * | 2016-10-21 | 2018-05-01 | 中兴通讯股份有限公司 | Right management method, device and terminal |
| CN109656696A (en) * | 2018-12-03 | 2019-04-19 | 华南师范大学 | A kind of processing method that data API is efficiently called |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US10404708B2 (en) | System for secure file access | |
| US20150081644A1 (en) | Method and system for backing up and restoring a virtual file system | |
| US20120239634A1 (en) | Method and apparatus for accessing database and database application system | |
| CN102981835A (en) | Android application program permanent Root permission acquiring method | |
| CN102081721A (en) | Data control device and data control method | |
| US10152383B2 (en) | Expedited device backup, wipe, and enrollment | |
| CN111382011B (en) | File data access method and device and computer readable storage medium | |
| CN102930892A (en) | Multifunctional safe U disk | |
| CN112651040A (en) | Permission application method, component, device and computer readable storage medium | |
| CN105225111A (en) | A kind of method and apparatus of online payment checking | |
| CN103729599A (en) | Data invoking processing method and device | |
| CN110807191B (en) | Safe operation method and device of application program | |
| CN107368738B (en) | Root prevention method and Root prevention device for intelligent equipment | |
| CN113553618A (en) | File security protection method and device | |
| CN111159298B (en) | Service request processing method and device, electronic equipment and storage medium | |
| CN110879764B (en) | Bitmap setting method, device and equipment and readable storage medium | |
| CN106203121B (en) | Kernel address prevents malicious modification method, apparatus and terminal | |
| CN105913247A (en) | Space management method for ESIM card and space management device | |
| CN107704337A (en) | Method, mobile terminal and the device with store function of factory reset | |
| CN107392010B (en) | Root operation execution method and device, terminal equipment and storage medium | |
| CN113127258A (en) | Data backup method, device, equipment and medium | |
| CN109828950A (en) | Data protection method, management system, server and readable storage medium | |
| CN113656355A (en) | File processing method and device, nonvolatile storage medium and processor | |
| CN110990802B (en) | Method and device for carrying out batch authorization on mysql user permission information | |
| CN104866761B (en) | A kind of high security Android intelligent terminal |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20140416 |
|
| RJ01 | Rejection of invention patent application after publication |