CN104133670B - A kind of safe GUI generation methods of intelligent terminal based on virtual isolation technology - Google Patents
A kind of safe GUI generation methods of intelligent terminal based on virtual isolation technology Download PDFInfo
- Publication number
- CN104133670B CN104133670B CN201410305234.7A CN201410305234A CN104133670B CN 104133670 B CN104133670 B CN 104133670B CN 201410305234 A CN201410305234 A CN 201410305234A CN 104133670 B CN104133670 B CN 104133670B
- Authority
- CN
- China
- Prior art keywords
- virtual machine
- application
- application program
- security
- safety
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Landscapes
- User Interface Of Digital Computer (AREA)
- Stored Programmes (AREA)
Abstract
The invention discloses a kind of safe GUI generation methods of intelligent terminal based on virtual isolation technology.This method is:1) system is divided into monitor of virtual machine the virtual machine of multiple isolation, including one is provided with the system virtual machine of safety label module and the application virtual machine of different level of securitys;2) package manager is divided into and runs on the front end bag erector in application virtual machine and the safe class manager in system virtual machine;3) when an application program is installed, the parsing information of the application program is sent to safety label module by package manager, increases security level information, is expanded to security solution information (sLevel, sSign);4) safe class manager is installed the front end bag erector that installation instruction is sent in correspondence level of security application virtual machine according to the sLevel values;5) system virtual machine carries out interface drafting on the GUI of system virtual machine according to the sSign to the application program.
Description
Technical field:
The invention belongs to terminal security field, the system safety of terminal is related generally to, be more specifically related to one kind to be based on
Intelligent terminal system safe GUI (graphic user interface) generation method of virtual isolation technology.The method is based on virtual isolation skill
Art, is that intelligent terminal system increased safety starter and apply interior safety instruction, to the original user mutual of intelligent terminal
System is extended, and gives the safe enhanced schemes of GUI of intelligent terminal operation system.
Background technology:
The people's acquisition information that greatly enrich that becomes increasingly abundant of popularization and the intelligent terminal application of intelligent terminal
Mode, be that the daily Working Life of people brings great convenience.But miscellaneous Malware also gives intelligent terminal
Equipment brings great potential safety hazard.Attacker, so as to obtain unlawful interests, causes user by Malware user cheating
Suffer huge loss.The attack pattern of Malware mainly has two kinds:Other programs are destroyed using leak and by deception
User's steal information.Malware constrains the popularization of intelligent terminal, and is directly connected to the property safety of people and leads to
Letter safety.The security study of intelligent terminal system is significant for limitation Malware.GUI in intelligent terminal system
System as in system directly with the part of user mutual, ensure intelligent terminal system security in occupy critical role.
Current Android operation system relies primarily on application market, License Management and application isolation, and to carry out preventing malice soft
Part.Wherein application market can to a certain extent ensure the security of application by review mechanism.But due to by a large amount of
The influence in third party market, and the safety guarantee of the hysteresis quality application market offer for the treatment of safety problem itself is extremely limited.
Permissive mechanism can to a certain extent remind the access rights that user's application needs, but it has license and manages in actual applications
Reason and user are difficult to the problem for understanding.Effective data safety safeguard is provided using isolation, but for Android
The component of itself is shared without the effective isolation scheme of offer.
Relative to traditional PC, miscellaneous open source operating system brings safely more problems for mobile Internet
And hidden danger, the subject matter of these operating systems is that they can not effectively be isolated in the multiple run on same physical machine
Program.When certain component of a system is invaded, operating system is difficult to protect the user application sum of other parts
According to not encroached on.Such case be due to architecture design defect caused by, such as the operating system API of overcomplicated is dangerous
Graphic user interface (GUI) design and single kernel knot for being used.At present, the safety measure of mainstream operation system use is
Known System Security Vulnerability issue patch is updated, but this measure is not only difficult to cover large-scale user, and
And it is largely effective.Because this kind of security patch can only protection system by the system vulnerability infringement of known, main flow, for
New leak effect is extremely limited.
At present, the virtual isolation technology for being widely used in server and desktop end allows to be protected by creating the container of isolation
Card system safety.Virtual isolation technology is run by the way that program is isolated in different virtual machines, and application program is effectively ensured
Isolation.Xen has been used widely as the monitor of virtual machine of current main flow in server end, and desktop end is based on Xen's
SOS Qubes also gets the attention.Used as the SOS of desktop end, Qubes realizes a set of base
In the safe GUI of virtual isolation technology, the mechanism of application security hierarchical management and display is provided the user, greatly lifting
The security of user privacy information.There is scientific research institution of enterprise that virtual isolation technology is transplanted on intelligent terminal at present
Guarantee system safety, including XenARM and Emmbedded Xen monitor of virtual machine projects.These schemes are only realized at one
Multiple operating systems are run on intelligent terminal, its problem for existing does not provide the separation and display of graphical interface of user mainly
Scheme.
The content of the invention
For the technical problem that prior art is present, it is an object of the invention to provide a kind of based on virtual isolation technology
The safe GUI generation methods of intelligent terminal.The safe GUI for meeting intelligent terminal feature is this method propose, is intelligent terminal
System provides special protection.The method is related to three below link:(1) according to intelligent terminal interactive features,
The safe GUI schemes of android system architecture design;(2) the safety label module that design is realized based on Android package managers;
(3) secure display controller that design is realized based on Android display systems.
The technical scheme is that:
A kind of safe GUI generation methods of intelligent terminal based on virtual isolation technology, its step is:
1) system is divided into monitor of virtual machine the virtual machine of multiple isolation, including a system virtual machine and different safety
Some application virtual machines of rank;The system virtual machine is that each application virtual machine sets up mutually isolated file system
System;Safety label module is provided with the system virtual machine;
2) package manager is divided into the front end bag erector that runs in the application virtual machine and empty positioned at the system
Safe class manager in plan machine;Front end bag erector is communicated with safe class manager by shared drive;
3) when an application program is installed, the parsing information of the application program is sent to the safety by the package manager
Mark module;
4) the safety label module is that the parsing information increases security level information, is expanded to security solution letter
Breath:Represent the sLevel of safe class data value and point to the identifier sSign that safe class marks image resource;
5) installation instruction is sent to correspondence level of security application void by the safe class manager according to the sLevel values
Front end bag erector in plan machine, installs to the application program;
6) system virtual machine according to identifier sSign on the graphic user interface GUI of the system virtual machine
Interface drafting is carried out to the application program.
Further, a secure display controller is set in the system virtual machine, for receiving application security grade
Modification information;The system virtual machine carries out interface drafting to the application program again according to amended safe class, and
In the application program from current application virtual machine (vm) migration to the application virtual machine of correspondence level of security.
Further, when an application program a moves to Another Application virtual machine B from an application virtual machine A, its migration side
Method is:
31) the safe class device sends migration by shared drive to the front end bag erector in application virtual machine A
Instruction;
32) the front end bag erector obtains the document location of application program a in application virtual machine A and deletes the application
The mount message of program a;
33) package manager is to the file that application program a is migrated in application virtual machine B, and is existed by front end bag erector
Application program a is registered in application virtual machine B.
Further, the secure display controller includes safety starter and safety display service two parts;The safety
Starter is used to list mounted application program, and before user performs start-up operation prompting application program safe class,
And provide a user with the entrance that application safe class is set;Safety when the safety display service runs for application program
Information alert, shows the security information of application program.
Further, the safety display service carries out the method for security information prompting and is:
51) during user launches application, the safety starter sends current application program to the security service of bottom
Title;
52) security service according to safety from the title of the application program to the safety label module polls application program
Rank;
53) security level information that the security service will be received is to window manager, by window manager by the safety
Class information is plotted to a new figure layer;The new figure layer is located on original display interface.
Further, will bond drive Binder point for run on the Binder front-end drivens in the application virtual machine with
And the Binder rear ends run in the system virtual machine drive;The Binder front-end drivens are responsible for leading to application program
Letter, and data are passed into the Binder rear ends driving by the monitor of virtual machine.
Further, the system virtual machine is to the method that the application program carries out interface drafting:
71) window manager in the application virtual machine will draw the application program content to be shown be sent to should answer
With the Binder front-end drivens on virtual machine;
72) display data that the Binder front-end drivens will be transmitted is by sharing that the monitor of virtual machine is provided
Memory mechanism is passed to and driven positioned at the Binder rear ends of system virtual machine;
73) the Binder rear ends drive and for the display data to pass to the system virtual machine completion interface drafting.
Compared with prior art, the positive effect of the present invention:
For intelligent terminal system safety problem, the present invention is devised based on Xen monitor of virtual machine and android system
The safe GUI schemes realized, its advantage is as follows:
1) safety label module is introduced in android system, on the basis of the original bag management systems of compatible Android
On, it is concept that system increased level of security.The level of security that safety label module is proposed is as virtual machine in application framework
Layer it is abstract, be effectively connected to the virtual isolation mech isolation test of bottom and the display system of safe GUI, be virtual isolation technology in GUI
Layer represent there is provided good support.
2) transplantation Projects of the display subsystem Surface of Android on Xen is devised.Lead between the process of Android
The Binder mechanism (mechanism of attachment) that letter is based primarily upon bottom realizes that it is a kind of proprietary interprocess communication of android system
Mechanism.In android system, Binder mechanism is realized as a kind of special character type equipment, positioned at/dev/
binder.To bond and drive (Binder drivings) to be divided into the Binder front-end drivens that run in application virtual machine and run on
Binder rear ends in system virtual machine drive, and the Binder front-end drivens in application virtual machine are responsible for leading to application program
Letter, and data are passed into the Binder rear ends driving in GUI domains by monitor of virtual machine.Binder rear ends drive logical
Cross monitor of virtual machine and receive data, and pass to the display service in safe GUI domains, realize Surface subsystems
The interdomain transfer of display data.
3) on the basis of the original starter of android system, the peace of function is pointed out and set in design with safe class
Full starter.Safety starter remains the basic display pattern of the primary starters of Android and the original operation of user is practised
It is used, and the safety prompting function before the rescue bag information realization that is provided based on safety label module is started.
4) carried for android system provides the safety in application based on described safety instruction service and clean boot
Show so that user can obtain safety instruction in application in the whole life cycle in terminal.
Brief description of the drawings
Fig. 1 is safe GUI reference models figure;
Fig. 2 is enforceable safe GUI illustratons of model;
Fig. 3 is expanding packet management system Organization Chart;
Fig. 4 is the establishing method figure for installing application stage safe class;
Fig. 5 is the establishing method figure of safe class after installing;
Fig. 6 is to apply the transition graph between virtual machine;
Fig. 7 is secure display controller figure;
Fig. 8 is drafting interface flow chart;
Fig. 9 is clean boot machine interface figure;
Figure 10 is the interior safety instruction Organization Chart of application based on system service;
Figure 11 is the interior safety instruction figure of application based on system service.
Specific embodiment
The present invention is explained in further detail below in conjunction with the accompanying drawings;The present invention relates to three below link:(1) basis
Intelligent terminal interactive features, the safe GUI schemes of android system architecture design;(2) design assures reason based on Android
The safety label module that device is realized;(3) secure display controller that design is realized based on Android display systems.
(1) the safe GUI based on Xen monitor of virtual machine;
At present, the virtual isolation technology for being widely used in server and desktop end allows to be protected by creating the container of isolation
Card system safety.These containers for being referred to as virtual machine can be provided than more preferable isolation between operating system process.
The safe GUI uses virtual isolation technology, and application and system user graphical interfaces are realized from system architecture aspect
Isolation, it is ensured that system figure interface subsystem is not influenceed by Malware invasion, meanwhile, realize towards intelligent terminal
Safe GUI prompting users point out using safe class, protect the personal secrets of user.
Safe GUI reference models after the improvement are as shown in Figure 1.Framework mainly includes three levels:It is hardware layer, virtual
Monitor unit layer and virtual machine layer.
Wherein, hardware layer is mainly the display device of intelligent terminal.System is divided into multiple isolation by monitor of virtual machine
Virtual machine, virtual machine is divided into system virtual machine and application virtual machine, and system virtual machine is mainly responsible for system resource and should
With the authority of virtual machine, only system virtual machine possesses the authority of direct access hardware devices, and other application virtual machine is depended on
System virtual machine comes and hardware communications.Application virtual machine is used to run application program, and a system can have multiple applications virtual
Machine, they are endowed different level of securitys.The application of safety is run in safe virtual machine, and non-security application is according to it
Safe class is run in different non-security virtual machines.
The system virtual machine for running safe GUI is referred to as safe GUI domains, and it has the power that direct access hardware devices drive
Limit.The isolation mech isolation test that safe GUI domains are provided using monitor of virtual machine, itself is isolated with application virtual machine, even if using void
Plan machine is destroyed by Malware, and system remains able to ensure the safety in safe GUI domains.
One enforceable safe GUI system framework is as shown in Figure 2.System uses XenARM as monitor of virtual machine,
Android system is used as guest operating system.During safe GUI run on into the management domain Dom0 of XenARM, only Dom0 possesses
Directly access hardware authority, system using XenARM provide application virtual machine DomU and system virtual machine Dom0 between and should
With the isolation between virtual machine.
(2) towards the safety label module of android system;
The prompting of safe class and setting function depend on the safety label module of realization in Android GUI systems.
The application message that safety label module will be run in different level of security virtual machines is supplied to secure display controller.Safety label
Module mainly realizes two functions:Safety label is carried out during using installation to the application, and in application positioned at the whole of terminal
Safety label is managed in life cycle.
One specific embodiment of the safety label module is that the package manager for extending android system is realized
Safety label function.The package manager of safety label module is added to be referred to as extending package manager.Safety label module adds safety
After class information, for the data that the safety instruction in safe GUI provides bottom are supported.Research will add safety level information
Bag management information is referred to as rescue bag management information, and while extra security information is provided, compatibility is original to be directed to for it
The operation of Android package managers.Rescue bag management information is based on the machines such as the safety that safe GUI is designed for the enhancing of security
System realization, support is provided for GUI provides different display modes for different application programs.
The framework for extending package manager is as shown in Figure 3:It mainly includes front end bag erector and safe class manager two
Part.Front end bag erector is located in application virtual machine, is responsible for the installation and startup of application program;Safe class manager is located at
In GUI domains (i.e. system virtual machine), the setting of the safe class for being responsible for being applied in each application domain, modification and inquire about.
Front end bag erector is communicated with safe class manager by shared drive.
The flow that extension package manager installs application is as shown in Figure 4:1) peace of extension package manager parsing Android applications
File is filled to obtain package informatin (PackageInfo) and parsing information (ResolveInfo) of application;2) safety label module
For parsing information (ResolveInfo) increases security level information (SecureLevel) correlation values, safe solution is expanded to
Analysis information (SecureResolveInfo), Subsequent secure mark module reads security solution information, is shown in system user interface
GUI.Extending security level information (SecureLevel) structure for adding includes two parts:Represent safe class data value
SLevel and sensing safe class mark the identifier sSign of image resource.Wherein sLevel is by user according to application
Trusting degree is specified, and sSign provides unified display mode by system according to different level of securitys.3) front end bag erector will
Using be installed to correspondence level of security virtual machine in.Front end bag erector in specified application virtual machine is by shared interior
Deposit and communicated with system virtual machine, after the installation instruction of reception system virtual machine, the peace of application program is completed in application virtual machine
Dress and registration.Install and installed with bag erector in a common android system with the process of registration application and registration application
Process it is identical.
The realization of expanding packet manager administration application safe class is as shown in Figure 5.After application program is installed, can be any
Stage changes the safe class of application program.User is carried out by the graphical interfaces based on expanding packet management system to safe class
Modification.After modification, extension package manager migration application is moved in the virtual machine of correspondence level of security, and system uses new safety
Grade is come the safety instruction before the application startup for supporting safe GUI and when running.
The extension package manager migration application is what the management domain Dom0 based on Xen monitor of virtual machine was realized.Such as Fig. 6
Shown system virtual machine is that different application domains establishes mutually isolated file system, and each application domain can only be in corresponding text
Operated in part system.Dom0 possesses the authority for reading and writing all application domain file system as management domain, the migration of application by
The extension package manager for running on Dom0 is realized using file system.
Flow using migration is as follows:1) the safe class manager of extension package manager is received and sent out by secure display controller
The application level of security change instruction for going out;2) shared drive the answering to application place that safe class manager is provided by Xen
Instruction is sent with the front end bag erector in virtual machine;3) bag erector in front end obtains application correspondence in correspondence application virtual machine
Document location and delete the mount message of the application;4) extension package manager in intended application virtual machine to migrating application program
File, and the application program is registered in intended application virtual machine by front end bag erector.
(3) the safety display realized based on Android display systems;
The application resource of end-user interface is displayed in PC ends and is mainly display system based on desktop, in intelligent terminal
Equipment is then mainly based on application launcher.The secure display controller of safe GUI is the main part of whole safe GUI.It is also
The security information for being responsible for providing a user with a set of safe graphical interfaces pointing out user to apply.
Position of the secure display controller in safe GUI is as shown in Figure 7.Secure display controller bottom is depended on
The display subsystem of safety label module and Android in GUI domains is realized.Safety label module is provided for secure display controller
The support of safe class associative operation, and the display subsystem of Android is responsible for entering from the application in different virtual machine
The drafting at row interface.
The display function of bottom is provided by the display subsystem (Surface subsystems) of Android in android system.
Safe GUI subsystem configurations after the extension are as shown in Figure 8.Safe GUI display subsystems after extension run on should
With in virtual machine and two, GUI domains virtual machine.The drawing of all UI components in Activity, will be real on one piece of caching
It is existing, its operation is realized based on Surface types.This block caching is operated by the variable of a Surface type.One
Secondary typical drafting interface flow is as shown in Figure 8:
The display data of Android Application Program Interface components is passed to Surface sessions by 1.Window.
2.Surface sessions are communicated with the Binder front ends in application virtual machine, the display number that will be transmitted
Forwarded according to by Binder.
3.Binder front-end drivens are passed in GUI domains display data using the shared drive mechanism that Xen is provided
Binder rear ends drive.
4.Binder rear ends drive and for display data to pass to SurfaceFlinger, SurfaceFlinger by each
The data transmitted in Surface are mixed, then are transferred in FrameBuffer and are shown, are completed interface and are drawn.
The secure display controller includes safety starter and safety display service two parts in itself.Starter be user with
The major part of system interaction, its basic function is to list the application of installation, and when user performs start-up operation, opening should
Use program.The current existing starters of Android have had perfect basic function.Safety starter starts premise in application
Show the safe class of application, and provide a user with the entrance that application safe class is set, this is accomplished by original with reference to Android
On the basis of starter is realized, increase the support to safe class.When the safe display service of system is mainly used in using operation
Security information prompting because indication range during using operation is taken over by the Activity components applied, therefore realize opening
One system service shows the security information of application.
1) safety starter
Android system starter is the main part with user mutual in Android graphical interface systems, and it is main
With two basic functions:List mounted application program and start application program.The display portion of starter is mainly born
The icon and title that application has been installed with grid layout displaying are blamed, these information are provided by the package manager in Android.Together
When, in the application program in clicking on interface, starter starts application program by the Intent mechanism of Android, by screen
Show and give the corresponding component treatment of application program.Android primary starter have comparatively perfect displaying and
Start the basic function of application, but it is not for the related mechanism of the safety instruction applied, and is also display safety letter
Breath provides the support of display control.
The safety starter increases safety instruction work(on the basis of basic displaying and startup application program is completed
Energy.Meanwhile, used as the part that secure display controller system top is contacted with user, safety starter has also been provided the user and set
Put using the function of level of security.The purpose for providing level of security setting function is for user dynamically changes in use
Level of security provides facility.In user in actual use, its understanding to application security changes over time.
Therefore, compared to permissive mechanism, the level of security that can dynamically change more meets the process of cognition of user.Level of security sets work(
The system bag management service that energy bottom is based on extension is realized, is carried to setting SecureResolveInfo in safety label module
The graphical interfaces interface of confession.
One enforceable safety starter graphical interfaces is as shown in Figure 9.The realization with reference to the existing starters of Android
Display and interactive mode, based on safety label module provide safety instruction.Safety starter takes full advantage of original in display
There is the display space of starter, the background colour for changing application name distinguishes the application for possessing different safety class.Safe level
Not She Zhi interface include application selection interface and application level of security set interface two parts.Using selection interface and starter
Displaying function is similar to, and mainly provides the user the list of application program in system;Using the setting showing interface of level of security
Available high, normal, basic three level of securitys, correspond to the non-security of virtual machine layer respectively, and Generally Recognized as safe and three applications of safety are virtual
Machine.
2) interior safety instruction is applied
Safety instruction is placed in current existing system UI, it is impossible to reach in the whole life cycle after application starts
The purpose of user is pointed out, therefore also needs to adjust the compatibility of safe GUI.Therefore, the system design is a kind of new
Display mode, invention devises a set of interior safety instruction of the application based on system service.
The interior safety instruction framework of application based on system service is as shown in Figure 10.The realization of security service depends on safety to open
The support of dynamic device, safety label module and window manager.Prompting to be particularly shown flow as follows:1) user starts application journey
During sequence, safety starter sends the essential informations such as the title of current application program to the security service of bottom;2) security service is obtained
After getting the essential information of application program, to the level of security of the safety label module polls application program;3) by level of security
The label information of information passes to window manager, and content to a new figure layer is drawn by window management.New figure layer is located at
On original display interface, to ensure that it will not be capped and distorts.
The interior safety instruction of the application based on system service is as shown in figure 11.Be drawn on for safety instruction by security service
Unite between title bar and Application Program Interface component, and employ the color consistent with safety starter and answered to identify currently to run
Safe class.
Claims (7)
1. safe GUI generation methods of a kind of intelligent terminal based on virtual isolation technology, its step is:
1) system is divided into monitor of virtual machine the virtual machine of multiple isolation, including a system virtual machine and different level of securitys
Some application virtual machines;The system virtual machine is that each application virtual machine sets up mutually isolated file system;Institute
State and be provided with safety label module in system virtual machine;
2) package manager is divided into the front end bag erector that runs in the application virtual machine and positioned at the system virtual machine
In safe class manager;Front end bag erector is communicated with safe class manager by shared drive;
3) when an application program is installed, the parsing information of the application program is sent to the peace by the safe class manager
All mark module;
4) the safety label module is that the parsing information increases security level information, is expanded to security solution information:Table
Show the sLevel of safe class data value and point to the identifier sSign that safe class marks image resource;
5) installation instruction is sent to correspondence level of security application virtual machine by the safe class manager according to the sLevel values
In front end bag erector, the application program is installed;
6) system virtual machine according to identifier sSign on the graphic user interface GUI of the system virtual machine to this
Application program carries out interface drafting.
2. the method for claim 1 a, it is characterised in that secure display controller is set in the system virtual machine, is used for
Receive the modification information of application security grade;The system virtual machine is according to amended safe class again to the application
Program carries out interface drafting, and virtual to the application of correspondence level of security from current application virtual machine (vm) migration in the application program
Machine.
3. method as claimed in claim 1 or 2, it is characterised in that when an application program a is moved to separately from an application virtual machine A
During one application virtual machine B, its moving method is:
31) the safe class manager sends migration by shared drive to the front end bag erector in application virtual machine A
Instruction;
32) the front end bag erector obtains the document location of application program a in application virtual machine A and deletes the application program
The mount message of a;
33) safe class manager is to the file that application program a is migrated in application virtual machine B, and by front end bag erector
Application program a is registered in application virtual machine B.
4. method as claimed in claim 2, it is characterised in that the secure display controller includes that safety starter and safety are aobvious
Show service two parts;The safety starter is used to list mounted application program, and performs start-up operation premise in user
Show the safe class of application program, and provide a user with the entrance that application safe class is set;The safety display service is used
Security information prompting when application program is run, shows the security information of application program.
5. method as claimed in claim 4, it is characterised in that the method that the safety display service carries out security information prompting
For:
51) during user launches application, the safety starter sends the name of current application program to the security service of bottom
Claim;
52) security service according to safe level from the title of the application program to the safety label module polls application program
Not;
53) security level information that the security service will be received is to window manager, by window manager by the level of security
Information is plotted to a new figure layer;The new figure layer is located on original display interface.
6. the method for claim 1, it is characterised in that will bonding drive Binder points it is virtual to run on the application
Binder front-end drivens in machine and the Binder rear ends run in the system virtual machine drive;The Binder front ends
Drive and be responsible for and interapplication communications, and data are passed into the Binder rear ends by the monitor of virtual machine and drive.
7. method as claimed in claim 6, it is characterised in that the system virtual machine carries out interface drafting to the application program
Method be:
71) window manager in the application virtual machine will draw the application program content to be shown and be sent to application void
The Binder front-end drivens on plan machine;
72) shared drive that the display data that the Binder front-end drivens will be transmitted is provided by the monitor of virtual machine
Mechanism is passed to and driven positioned at the Binder rear ends of system virtual machine;
73) the Binder rear ends drive and for the display data to pass to the system virtual machine completion interface drafting.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410305234.7A CN104133670B (en) | 2014-06-30 | 2014-06-30 | A kind of safe GUI generation methods of intelligent terminal based on virtual isolation technology |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410305234.7A CN104133670B (en) | 2014-06-30 | 2014-06-30 | A kind of safe GUI generation methods of intelligent terminal based on virtual isolation technology |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN104133670A CN104133670A (en) | 2014-11-05 |
| CN104133670B true CN104133670B (en) | 2017-06-09 |
Family
ID=51806357
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201410305234.7A Expired - Fee Related CN104133670B (en) | 2014-06-30 | 2014-06-30 | A kind of safe GUI generation methods of intelligent terminal based on virtual isolation technology |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104133670B (en) |
Families Citing this family (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104834613B (en) * | 2015-04-30 | 2018-01-26 | 捷鼎国际股份有限公司 | To access the computer system of virtual machine and method |
| CN105376741B (en) * | 2015-10-28 | 2019-01-08 | 浪潮(北京)电子信息产业有限公司 | A method of improving mobile terminal safety |
| CN106815518B (en) * | 2015-11-30 | 2020-08-25 | 华为技术有限公司 | Application installation method and electronic equipment |
| CN106375371B (en) * | 2016-08-22 | 2019-11-22 | 四川安嵌科技有限公司 | A kind of method and system of cross-domain access service |
| CN106155753A (en) * | 2016-08-22 | 2016-11-23 | 广东欧珀移动通信有限公司 | A kind of application program installation method, device and terminal |
| CN109298895B (en) * | 2017-07-24 | 2021-04-23 | 杭州盈高科技有限公司 | APP management method and device on mobile equipment |
| CN110618847A (en) * | 2018-06-20 | 2019-12-27 | 华为技术有限公司 | User interface display method and terminal equipment |
| CN113626149B (en) * | 2021-08-03 | 2024-05-10 | 浙江中电远为科技有限公司 | Business secret protection method and system based on terminal virtualization |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101377745A (en) * | 2007-08-28 | 2009-03-04 | 张玉昆 | Virtual computer system and method for implementing data sharing between each field |
| CN101764703A (en) * | 2009-09-16 | 2010-06-30 | 深圳市震有科技有限公司 | Network element management system based on virtual technology |
| CN101976200A (en) * | 2010-10-15 | 2011-02-16 | 浙江大学 | Virtual machine system for input/output equipment virtualization outside virtual machine monitor |
| CN102103518A (en) * | 2011-02-23 | 2011-06-22 | 运软网络科技(上海)有限公司 | System for managing resources in virtual environment and implementation method thereof |
| CN102110009A (en) * | 2009-12-28 | 2011-06-29 | 中国移动通信集团公司 | Method for deploying application in virtual platform and virtual platform manager |
Family Cites Families (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JP5440273B2 (en) * | 2010-03-09 | 2014-03-12 | 富士通株式会社 | Snapshot management method, snapshot management device, and program |
-
2014
- 2014-06-30 CN CN201410305234.7A patent/CN104133670B/en not_active Expired - Fee Related
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101377745A (en) * | 2007-08-28 | 2009-03-04 | 张玉昆 | Virtual computer system and method for implementing data sharing between each field |
| CN101764703A (en) * | 2009-09-16 | 2010-06-30 | 深圳市震有科技有限公司 | Network element management system based on virtual technology |
| CN102110009A (en) * | 2009-12-28 | 2011-06-29 | 中国移动通信集团公司 | Method for deploying application in virtual platform and virtual platform manager |
| CN101976200A (en) * | 2010-10-15 | 2011-02-16 | 浙江大学 | Virtual machine system for input/output equipment virtualization outside virtual machine monitor |
| CN102103518A (en) * | 2011-02-23 | 2011-06-22 | 运软网络科技(上海)有限公司 | System for managing resources in virtual environment and implementation method thereof |
Also Published As
| Publication number | Publication date |
|---|---|
| CN104133670A (en) | 2014-11-05 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN104133670B (en) | A kind of safe GUI generation methods of intelligent terminal based on virtual isolation technology | |
| CN104102882B (en) | Protection method and device for privacy data of application program | |
| CN104704448B (en) | Reverse Seamless integration- between local and remote computing environment | |
| CN103413089B (en) | Mobile terminal and the method realizing dual system thereof | |
| CN103229156B (en) | Automatically configuring of docking system in multiple operating system environment | |
| CN106713003B (en) | Virtual node creating method and device based on network topological graph | |
| CN102347941B (en) | A kind of safety applications control method based on open platform | |
| CN103150312B (en) | A kind of method and apparatus opening outer chain in network application | |
| CN104954451B (en) | The access control method of USB device under a kind of virtualized environment | |
| CN102033943B (en) | Multiwindow browse method and system based on mobile communication equipment terminal | |
| CN113157362B (en) | Android multi-window display method applied to Linux | |
| CN102566931B (en) | Method and device for displaying suspended window | |
| US8726365B2 (en) | Multi mode operation using user interface lock | |
| CN103679007B (en) | A kind of manage the method for application program authority, device and mobile device | |
| CN103002445A (en) | Safe mobile electronic equipment for providing application services | |
| CN107229526A (en) | Message treatment method, device, storage medium and computer equipment in group session | |
| CN106815518B (en) | Application installation method and electronic equipment | |
| CN106462713B (en) | The interface display method and terminal of terminal | |
| EP3678021A1 (en) | User interface display method and terminal device | |
| CN109635581A (en) | A kind of data processing method, equipment, system and storage medium | |
| CN106685741A (en) | Dynamic management method for cloud mainframe network interface | |
| CN108566643A (en) | APP access control methods, system, terminal device and storage medium | |
| CN111931135A (en) | Method and device for adding watermark | |
| CN109067809B (en) | Authority configuration method, device, equipment and storage medium of security component | |
| CN109783165A (en) | Based on the mobile communications device and its input method switching method for virtualizing mobile framework |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20170609 Termination date: 20190630 |
|
| CF01 | Termination of patent right due to non-payment of annual fee |