CN106557691A - The device of third party's SDK methods, device and reinforcing installation kit in monitoring application - Google Patents
The device of third party's SDK methods, device and reinforcing installation kit in monitoring application Download PDFInfo
- Publication number
- CN106557691A CN106557691A CN201610892446.9A CN201610892446A CN106557691A CN 106557691 A CN106557691 A CN 106557691A CN 201610892446 A CN201610892446 A CN 201610892446A CN 106557691 A CN106557691 A CN 106557691A
- Authority
- CN
- China
- Prior art keywords
- application
- monitoring
- api
- situation
- dynamic proxy
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/52—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems during program execution, e.g. stack integrity ; Preventing unwanted data erasure; Buffer overflow
- G06F21/54—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems during program execution, e.g. stack integrity ; Preventing unwanted data erasure; Buffer overflow by adding security routines or objects to programs
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F8/00—Arrangements for software engineering
- G06F8/60—Software deployment
- G06F8/61—Installation
Landscapes
- Engineering & Computer Science (AREA)
- Software Systems (AREA)
- Computer Security & Cryptography (AREA)
- Theoretical Computer Science (AREA)
- General Engineering & Computer Science (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Computer Hardware Design (AREA)
- Debugging And Monitoring (AREA)
Abstract
The invention discloses third party's SDK methods, device in a kind of monitoring application and reinforcing the device of installation kit, wherein methods described includes:In the running of application, the situation of the third party SDK calling system API in the plug-in unit monitoring application is monitored;The monitoring plug-in unit is the plug-in unit in the application;The monitoring plug-in unit judges whether the situation of exception call system API according to the situation of the third party SDK calling system API for monitoring;If it does, the monitoring plug-in unit reports the situation of exception call system API to server.The technical scheme can cause whether network operator monitoring the used third party SDK of application of application performs abnormal system API Calls, so as to occur exception call system API in third party SDK situation when take measures in time, used third party SDK or exploitation function originally by performed by third party SDK is changed, so as to solve the safety problem brought by third party SDK.
Description
Technical field
The present invention relates to information security field, and in particular to third party's SDK methods, device in a kind of monitoring application and plus
Gu the device of installation kit.
Background technology
Functionally all there is overlap, such as message push etc. in many applications.Therefore occur in that application developer to these
The function of lap is developed, there is provided the third party SDK (Software that can be inserted in other application installation kit
Development Kit, SDK).By taking message push function as an example, if application newly developed needs to use be somebody's turn to do
Function, it is possible to which selection is not developed to the function but selects to use third party SDK.But so also occur in that some are asked
Topic:If the operation that third party SDK is performed in running there should be the scope of operation beyond which, for example, realize that message is pushed
The third party SDK of function collects user privacy information on backstage, can so bring great safety problem, and use the third party
The developer and network operator of SDK is but known nothing to this.
The content of the invention
In view of the above problems, it is proposed that the present invention so as to provide one kind overcome the problems referred to above or at least in part solve on
State the third party's SDK methods in the monitoring application of problem, device and reinforce the device of installation kit.
According to one aspect of the present invention, there is provided a kind of third party's SDK methods in monitoring application, including:
In the running of application, the feelings of the third party SDK calling system API in the plug-in unit monitoring application are monitored
Condition;The monitoring plug-in unit is the plug-in unit in the application;
The monitoring plug-in unit judges whether abnormal tune according to the situation of the third party SDK calling system API for monitoring
With the situation of system API;
If it does, the monitoring plug-in unit reports the situation of exception call system API to server.
Alternatively, the situation of the API of the third party's SDK calling systems in the monitoring application includes:
The corresponding dynamic proxy object of service broker's object formation present in process for the application so that described
During using sending API Calls request to service broker's object, by described dynamic proxy object acquisition service request;
The situation of the third party SDK calling system API that the basis is monitored, judges whether exception call system
The situation of API includes:Judge the dynamic proxy object acquisition to API Calls request be whether exception call request.
Alternatively, the corresponding dynamic proxy object of service broker's object formation present in the process for the application
Including:
Determine the type of service broker's object;
According to the corresponding dynamic proxy object of type structure of service broker's object.
Alternatively, the corresponding dynamic proxy object of service broker's object formation present in the process for the application
Including:
According to JAVA reflect call-by mechanism, be the application process present in service broker's object formation move accordingly
State agent object.
Alternatively, it is described judge the dynamic proxy object acquisition to API Calls request be whether exception call request
Including:
The API Calls request for needing to send when the application runs is preserved in pre-set list;
Judge the dynamic proxy object acquisition to API Calls ask whether in pre-set list, if it is not, then judging institute
It is exception call request to state the API Calls request that dynamic proxy object acquisition arrives.
Alternatively, it is described judge the dynamic proxy object acquisition to API Calls request be whether exception call request
Including:
Preset abnormal API Calls request list, judges that whether API Calls request that the dynamic proxy object acquisition arrives exists
In the preset abnormal API Calls request list, the API Calls request that the dynamic proxy object acquisition is arrived if so, then is judged
Ask for exception call.
Alternatively, the corresponding dynamic proxy object of service broker's object formation present in the process for the application
Including:
While new service broker's object is created in the process of the application, it is service broker's object of the new establishment
Construction dynamic proxy object.
According to another aspect of the present invention, there is provided the third party's SDK devices in a kind of monitoring application, wherein, the device
It is the plug-in unit using in, including:
Monitoring unit, is suitable in the running of application, monitors the third party SDK calling system API in the application
Situation;
Judging unit, is suitable to the situation according to the third party SDK calling system API for monitoring, judges whether exception
The situation of calling system API;
Reporting unit, is suitable to after the judging unit judges the situation that there is exception call system API, on server
Report the situation of exception call system API.
Alternatively, the monitoring unit, is suitable for service broker's object formation present in the process of the application corresponding
Dynamic proxy object so that it is described application to service broker's object send API Calls ask when, by the dynamic generation
The reason object acquisition service request;
The judging unit, be suitable to judge the dynamic proxy object acquisition to API Calls request whether be abnormal tune
With request.
Alternatively, the monitoring unit, is adapted to determine that the type of service broker's object;According to the service broker couple
The corresponding dynamic proxy object of type structure of elephant.
Alternatively, the monitoring unit, be suitable to according to JAVA reflect call-by mechanism, be the application process present in
The corresponding dynamic proxy object of service broker's object formation.
Alternatively, the device is further included:
Memory element, is suitable to store pre-set list, and preserving in the pre-set list when application runs needs what is sent
API Calls are asked;
The judging unit, is suitable to judge that whether the API Calls that the dynamic proxy object acquisition is arrived are asked in preset row
In table, if it is not, then judging that the API Calls request that the dynamic proxy object acquisition is arrived is asked for exception call.
Alternatively, the device is further included:
Memory element, is suitable to store preset abnormal API Calls request list;
The judging unit, is suitable to judge that whether the API Calls that the dynamic proxy object acquisition is arrived are asked described pre-
Put in abnormal API Calls request list, if so, then judge that the API Calls that the dynamic proxy object acquisition is arrived are asked as abnormal
Call request.
Alternatively, the monitoring unit, while being suitable to create new service broker's object in the process of the application,
For service broker's object formation dynamic proxy object of the new establishment.
According to another aspect of the present invention, there is provided a kind of device of reinforcing installation kit, including:
Packaged unit, is suitable to the device as described in above-mentioned any one is bundled in the installation kit of application.
From the foregoing, technical scheme, by preset monitoring plug-in unit monitoring the 3rd in application installation package
Square SDK calling systems API situations, judge whether the situation of exception call system API.The technical scheme can cause application
Network operator monitoring application used third party SDK whether perform abnormal system API Calls, so as in third party SDK
Taken measures during the situation for exception call system API occur in time, used third party SDK or exploitation are changed originally by the 3rd
Function performed by square SDK, so as to solve the safety problem brought by third party SDK.
Described above is only the general introduction of technical solution of the present invention, in order to better understand the technological means of the present invention,
And can be practiced according to the content of description, and in order to allow the above and other objects of the present invention, feature and advantage can
Become apparent, below especially exemplified by the specific embodiment of the present invention.
Description of the drawings
By the detailed description for reading hereafter preferred implementation, various other advantages and benefit are common for this area
Technical staff will be clear from understanding.Accompanying drawing is only used for the purpose for illustrating preferred implementation, and is not considered as to the present invention
Restriction.And in whole accompanying drawing, it is denoted by the same reference numerals identical part.In the accompanying drawings:
Fig. 1 shows that the flow process of the third party's SDK methods in a kind of monitoring application according to an embodiment of the invention is shown
It is intended to;
Fig. 2 shows that the structure of the third party's SDK devices in a kind of monitoring application according to an embodiment of the invention is shown
It is intended to;And
Fig. 3 shows a kind of structural representation of the device of reinforcement application installation kit according to an embodiment of the invention.
Specific embodiment
The exemplary embodiment of the disclosure is more fully described below with reference to accompanying drawings.Although the disclosure is shown in accompanying drawing
Exemplary embodiment, it being understood, however, that may be realized in various forms the disclosure and should not be by embodiments set forth here
Limited.On the contrary, there is provided these embodiments are able to be best understood from the disclosure, and can be by the scope of the present disclosure
Complete conveys to those skilled in the art.
Fig. 1 shows that the flow process of the third party's SDK methods in a kind of monitoring application according to an embodiment of the invention is shown
It is intended to, as shown in figure 1, the method includes:
Step S110, in the running of application, monitors the third party SDK calling system API in plug-in unit monitoring application
Situation;Monitoring plug-in unit is the plug-in unit using in.
Step S120, monitoring plug-in unit are judged whether according to the situation of the third party SDK calling system API for monitoring
The situation of exception call system API.
Step S130, if it does, monitoring plug-in unit reports the situation of exception call system API to server.
It can be seen that, the method shown in Fig. 1 monitors third party SDK by preset monitoring plug-in unit in application installation package and calls
System API situation, judges whether the situation of exception call system API.The technical scheme can cause the network operator of application
Whether monitoring the used third party SDK of application performs abnormal system API Calls, abnormal to occur in third party SDK
Taken measures during the situation of calling system API in time, used third party SDK or exploitation are changed originally by third party SDK institutes
The function of execution, so as to solve the safety problem brought by third party SDK.
In one embodiment of the invention, the third party's SDK calling systems in the method shown in Fig. 1, in monitoring application
The situation of API include:It is the corresponding dynamic proxy object of service broker's object formation present in the process applied so that
During using sending API Calls request to service broker's object, by the dynamic proxy object acquisition service request;According to what is monitored
The situation of third party SDK calling system API, judges whether that the situation of exception call system API includes:Judge dynamic proxy
Object acquisition to API Calls request be whether exception call request.
By taking Android system as an example, its inter-process communication mechanisms is Binder mechanism.When application needs calling system service, i.e.,
When calling corresponding API (Application Programming Interface, application programming interface), can be to system
Service manager (Service Manager) inquire about called service, after inquiring, system can be in the process of application
One service broker's object of middle establishment, any request of the hereafter application to the service can all be transmitted directly to the service broker couple
As.That is, the API Calls request of the application can all be sent to corresponding service broker's object, therefore only need to obtain this
A little API Calls requests are it may determine that whether which is exception call request.In the present embodiment, take as service broker's object structure
Make the mode of corresponding dynamic proxy object so that when application sends API Calls request to service broker's object, by dynamic generation
The reason object acquisition service request.
Dynamic proxy can provide the normal access to former object, and access request further can be located
Reason.Both need in the present embodiment to ensure that API Calls request is sent to corresponding service broker's object, ensure again to obtain
Get API Calls to ask so as to judge which, the demand can capitally be realized using dynamic proxy.Specifically, being should
The corresponding dynamic proxy object of service broker's object formation present in process includes:Determine the class of service broker's object
Type;According to the corresponding dynamic proxy object of type structure of service broker's object.This is that, due to each API of correspondence, system is created
The service broker for building is different to liking, it is therefore desirable to determine that the type of agent object could construct corresponding dynamic proxy pair
As.
In one embodiment of the invention, in said method, it is service broker's object structure present in the process applied
Making corresponding dynamic proxy object includes:Call-by mechanism is reflected according to JAVA, is service broker couple present in the process applied
As constructing corresponding dynamic proxy object.
JAVA reflections call-by mechanism is referred to:To any one class, wonder it has which attribute and method, for any one
Individual object, wants to call its any one method, is possible to.Just applied " for any one in the present embodiment
Service broker's object, wants to call its any one method, is possible to " this technical foundation, such that it is able to pass through
Dynamic proxy object is built for service broker's object, is got and is asked using the transmission API Calls to service broker's object.
In one embodiment of the invention, in said method, judge the API Calls request that dynamic proxy object acquisition is arrived
Whether it is that exception call request includes:The API Calls request for sending is needed when application operation is preserved in pre-set list;Judge dynamic
Whether the API Calls that state agent object gets are asked in pre-set list, if it is not, then judging what dynamic proxy object acquisition was arrived
API Calls request is asked for exception call.
The required API for calling of the generally all clear and definite application oneself developed of application developer, so if during application operation
The API Calls of transmission are asked not in the pre-set list, and the third party SDK with regard to extremely possibly using is adjusted to API without authorization
With, can be judged as exception call ask.
In one embodiment of the invention, in said method, judge the API Calls request that dynamic proxy object acquisition is arrived
Whether it is that exception call request includes:Preset abnormal API Calls request list, judges that the API that dynamic proxy object acquisition is arrived is adjusted
With request whether in preset abnormal API Calls request list, the API Calls that dynamic proxy object acquisition is arrived if so, then are judged
Ask to ask for exception call.
For example, the API Calls such as note, call request can all cause user to produce communication cost;The API that address list is accessed is adjusted
Privacy of user, etc. can be obtained with request, different degrees of safety problem can be all brought.Therefore in the present embodiment using preset
The mode of abnormal API Calls request list, if whether the API Calls that dynamic proxy object acquisition is arrived are asked in preset exception
Exception call request is regarded as in API Calls request list just.
In one embodiment of the invention, in said method, it is service broker's object structure present in the process applied
Making corresponding dynamic proxy object includes:While new service broker's object is created in the process of application, it is the new establishment
Service broker's object formation dynamic proxy object.This ensures that there the monitoring to the request of whole API Calls.
Fig. 2 shows that the structure of the third party's SDK devices in a kind of monitoring application according to an embodiment of the invention is shown
Be intended to, wherein, the device be using in plug-in unit, monitoring application in third party SDK devices 200 include:
Monitoring unit 210, is suitable in the running of application, the third party SDK calling system API's in monitoring application
Situation.
Judging unit 220, is suitable to the situation according to the third party SDK calling system API for monitoring, judges whether different
The situation of normal calling system API.
Reporting unit 230, is suitable to after judging unit judges the situation that there is exception call system API, on server
The situation of report exception call system API.
It can be seen that, the device shown in Fig. 2, cooperating by each unit, preset monitoring plug-in unit in application installation package
Monitoring third party's SDK calling system API situations, judge whether the situation of exception call system API.The technical scheme can be with
So that whether network operator monitoring the used third party SDK of application of application performs abnormal system API Calls, so as to the
Being taken measures during the situation of exception call system API in time occurs in tripartite SDK, changes used third party SDK or exploitation is former
This function by performed by third party SDK, so as to solve the safety problem brought by third party SDK.
In one embodiment of the invention, in the device shown in Fig. 2, monitoring unit 210 is suitable in the process of application
The corresponding dynamic proxy object of service broker's object formation of presence so that send API Calls to service broker's object in application
During request, by the dynamic proxy object acquisition service request;Judging unit 220, is suitable to judge what dynamic proxy object acquisition was arrived
Whether API Calls request is exception call request.
In one embodiment of the invention, in said apparatus, monitoring unit 210 is adapted to determine that service broker's object
Type;According to the corresponding dynamic proxy object of type structure of service broker's object.
In one embodiment of the invention, in said apparatus, monitoring unit 210 is suitable to call machine according to JAVA reflections
System, is the corresponding dynamic proxy object of service broker's object formation present in the process applied.
In one embodiment of the invention, said apparatus also include:240 (not shown) of memory element, is suitable to deposit
Storage pre-set list, needs the API Calls request for sending when application operation is preserved in pre-set list;Judging unit 220, is further adapted for sentencing
Disconnected dynamic proxy object acquisition to API Calls ask whether in pre-set list, if it is not, then judging dynamic proxy object acquisition
The API Calls request arrived is asked for exception call.
In one embodiment of the invention, said apparatus also include:240 (not shown) of memory element, is suitable to deposit
Store up preset abnormal API Calls request list;Judging unit, be suitable to judge dynamic proxy object acquisition to API Calls request be
It is no in preset abnormal API Calls request list, if so, then judge that the API Calls that dynamic proxy object acquisition arrives are asked as different
Normal call request.
In one embodiment of the invention, in said apparatus, monitoring unit 210 is suitable to create in the process of application
While new service broker's object, it is service broker's object formation dynamic proxy object of the new establishment.
It should be noted that the specific implementation of above-mentioned each device embodiment is concrete with aforementioned corresponding method embodiment
Embodiment is identical, will not be described here.
Fig. 3 shows a kind of structural representation of device for reinforcing installation kit according to an embodiment of the invention, such as Fig. 3
Shown, the device 300 for reinforcing installation kit includes:
Packaged unit 310, is suitable to 200 dozens, third party SDK devices in the monitoring application in such as above-mentioned any embodiment
Wrap in the installation kit of application.
In sum, technical scheme, monitors third party by preset monitoring plug-in unit in application installation package
SDK calling system API situations, judge whether the situation of exception call system API.The technical scheme can cause application
Whether network operator monitoring the used third party SDK of application performs abnormal system API Calls, to go out in third party SDK
Taken measures during the situation of existing exception call system API in time, used third party SDK or exploitation are changed originally by third party
Function performed by SDK, so as to solve the safety problem brought by third party SDK.
It should be noted that:
Algorithm and display be not inherently related to any certain computer, virtual bench or miscellaneous equipment provided herein.
Various fexible units can also be used together based on teaching in this.As described above, construct required by this kind of device
Structure be obvious.Additionally, the present invention is also not for any certain programmed language.It is understood that, it is possible to use it is various
Programming language realizes the content of invention described herein, and the description done to language-specific above is to disclose this
Bright preferred forms.
In description mentioned herein, a large amount of details are illustrated.It is to be appreciated, however, that the enforcement of the present invention
Example can be put into practice in the case where not having these details.In some instances, known method, structure is not been shown in detail
And technology, so as not to obscure the understanding of this description.
Similarly, it will be appreciated that in order to simplify the disclosure and help understand one or more in each inventive aspect, exist
Above to, in the description of the exemplary embodiment of the present invention, each feature of the present invention is grouped together into single enforcement sometimes
In example, figure or descriptions thereof.However, should the method for the disclosure be construed to reflect following intention:I.e. required guarantor
The more features of feature is expressly recited in each claim by the application claims ratio of shield.More precisely, such as following
Claims it is reflected as, inventive aspect is less than all features of single embodiment disclosed above.Therefore,
Thus the claims for following specific embodiment are expressly incorporated in the specific embodiment, wherein each claim itself
All as the separate embodiments of the present invention.
Those skilled in the art are appreciated that can be carried out adaptively to the module in the equipment in embodiment
Change and they are arranged in one or more different from embodiment equipment.Can be the module or list in embodiment
Unit or component are combined into a module or unit or component, and can be divided in addition multiple submodule or subelement or
Sub-component.In addition at least some in such feature and/or process or unit is excluded each other, can adopt any
Combine to all features disclosed in this specification (including adjoint claim, summary and accompanying drawing) and so disclosed
Where all processes or unit of method or equipment are combined.Unless expressly stated otherwise, this specification (includes adjoint power
Profit is required, summary and accompanying drawing) disclosed in each feature can it is identical by offers, be equal to or the alternative features of similar purpose carry out generation
Replace.
Although additionally, it will be appreciated by those of skill in the art that some embodiments described herein include other embodiments
In some included features rather than further feature, but the combination of the feature of different embodiments means in of the invention
Within the scope of and form different embodiments.For example, in the following claims, embodiment required for protection appoint
One of meaning can in any combination mode using.
The present invention all parts embodiment can be realized with hardware, or with one or more processor operation
Software module realize, or with combinations thereof realize.It will be understood by those of skill in the art that can use in practice
Microprocessor or digital signal processor (DSP) are realizing the third party SDK in monitoring application according to embodiments of the present invention
The some or all functions of some or all parts in the device of device and reinforcing installation kit.The present invention can also be realized
It is for performing some or all equipment of method as described herein or program of device (for example, computer program
And computer program).Such program for realizing the present invention can be stored on a computer-readable medium, or can have
There is the form of one or more signal.Such signal can be downloaded from internet website and be obtained, or in carrier signal
Upper offer, or provided with any other form.
It should be noted that above-described embodiment the present invention will be described rather than limits the invention, and ability
Field technique personnel can design alternative embodiment without departing from the scope of the appended claims.In the claims,
Any reference markss between bracket should not be configured to limitations on claims.Word "comprising" is not excluded the presence of not
Element listed in the claims or step.Word "a" or "an" before element does not exclude the presence of multiple such
Element.The present invention can come real by means of the hardware for including some different elements and by means of properly programmed computer
It is existing.If in the unit claim for listing equipment for drying, several in these devices can be by same hardware branch
To embody.The use of word first, second, and third does not indicate that any order.These words can be explained and be run after fame
Claim.
Embodiment of the invention discloses that a kind of third party's SDK methods in A1, monitoring application, wherein, the method includes:
In the running of application, the feelings of the third party SDK calling system API in the plug-in unit monitoring application are monitored
Condition;The monitoring plug-in unit is the plug-in unit in the application;
The monitoring plug-in unit judges whether abnormal tune according to the situation of the third party SDK calling system API for monitoring
With the situation of system API;
If it does, the monitoring plug-in unit reports the situation of exception call system API to server.
A2, the method as described in A1, wherein, the feelings of the API for monitoring the third party's SDK calling systems in the application
Condition includes:
The corresponding dynamic proxy object of service broker's object formation present in process for the application so that described
During using sending API Calls request to service broker's object, by described dynamic proxy object acquisition service request;
The situation of the third party SDK calling system API that the basis is monitored, judges whether exception call system
The situation of API includes:Judge the dynamic proxy object acquisition to API Calls request be whether exception call request.
A3, the method as described in A2, wherein, service broker's object formation phase present in the process for the application
The dynamic proxy object answered includes:
Determine the type of service broker's object;
According to the corresponding dynamic proxy object of type structure of service broker's object.
A4, the method as described in A2, wherein, service broker's object formation phase present in the process for the application
The dynamic proxy object answered includes:
According to JAVA reflect call-by mechanism, be the application process present in service broker's object formation move accordingly
State agent object.
A5, the method as described in A2, wherein, it is described judge the dynamic proxy object acquisition to API Calls request be
It is no to include for exception call request:
The API Calls request for needing to send when the application runs is preserved in pre-set list;
Judge the dynamic proxy object acquisition to API Calls ask whether in pre-set list, if it is not, then judging institute
It is exception call request to state the API Calls request that dynamic proxy object acquisition arrives.
A6, the method as described in A2, wherein, it is described judge the dynamic proxy object acquisition to API Calls request be
It is no to include for exception call request:
Preset abnormal API Calls request list, judges that whether API Calls request that the dynamic proxy object acquisition arrives exists
In the preset abnormal API Calls request list, the API Calls request that the dynamic proxy object acquisition is arrived if so, then is judged
Ask for exception call.
A7, the method as described in A2, wherein, service broker's object formation phase present in the process for the application
The dynamic proxy object answered includes:
While new service broker's object is created in the process of the application, it is service broker's object of the new establishment
Construction dynamic proxy object.
Embodiments of the invention also disclose B8, the third party's SDK devices in a kind of monitoring application, wherein, the device is
Plug-in unit in the application, including:
Monitoring unit, is suitable in the running of application, monitors the third party SDK calling system API in the application
Situation;
Judging unit, is suitable to the situation according to the third party SDK calling system API for monitoring, judges whether exception
The situation of calling system API;
Reporting unit, is suitable to after the judging unit judges the situation that there is exception call system API, on server
Report the situation of exception call system API.
B9, the device as described in B8, wherein,
The monitoring unit, is suitable for the corresponding dynamic generation of service broker's object formation present in the process of the application
Reason object so that when the application sends API Calls request to service broker's object, obtained by the dynamic proxy object
Take the service request;
The judging unit, be suitable to judge the dynamic proxy object acquisition to API Calls request whether be abnormal tune
With request.
B10, the device as described in B9, wherein,
The monitoring unit, is adapted to determine that the type of service broker's object;According to the class of service broker's object
Type constructs corresponding dynamic proxy object.
B11, the device as described in B9, wherein,
The monitoring unit, be suitable to according to JAVA reflect call-by mechanism, be the application process present in service generation
The corresponding dynamic proxy object of reason object formation.
B12, the device as described in B9, wherein, the device is further included:
Memory element, is suitable to store pre-set list, and preserving in the pre-set list when application runs needs what is sent
API Calls are asked;
The judging unit, is suitable to judge that whether the API Calls that the dynamic proxy object acquisition is arrived are asked in preset row
In table, if it is not, then judging that the API Calls request that the dynamic proxy object acquisition is arrived is asked for exception call.
B13, the device as described in B9, wherein, the device is further included:
Memory element, is suitable to store preset abnormal API Calls request list;
The judging unit, is suitable to judge that whether the API Calls that the dynamic proxy object acquisition is arrived are asked described pre-
Put in abnormal API Calls request list, if so, then judge that the API Calls that the dynamic proxy object acquisition is arrived are asked as abnormal
Call request.
B14, the device as described in B9, wherein,
The monitoring unit, while being suitable to create new service broker's object in the process of the application, is that this is new
Service broker's object formation dynamic proxy object of establishment.
Embodiments of the invention also disclose C15, a kind of device of reinforcing installation kit, wherein, the device includes:
Packaged unit, is suitable to the device as any one of B8-B14 is bundled in the installation kit of application.
Claims (10)
1. a kind of third party's SDK methods during monitoring is applied, wherein, the method includes:
In the running of application, the situation of the third party SDK calling system API in the plug-in unit monitoring application is monitored;Institute
It is the plug-in unit in the application to state monitoring plug-in unit;
The monitoring plug-in unit judges whether exception call system according to the situation of the third party SDK calling system API for monitoring
The situation of system API;
If it does, the monitoring plug-in unit reports the situation of exception call system API to server.
2. the API of third party SDK calling systems the method for claim 1, wherein in the monitoring application
Situation includes:
The corresponding dynamic proxy object of service broker's object formation present in process for the application so that in the application
When sending API Calls request to service broker's object, by described dynamic proxy object acquisition service request;
The situation of the third party SDK calling system API that the basis is monitored, judges whether exception call system API
Situation includes:Judge the dynamic proxy object acquisition to API Calls request be whether exception call request.
3. method as claimed in claim 2, wherein, service broker's object formation present in the process for the application
Corresponding dynamic proxy object includes:
Determine the type of service broker's object;
According to the corresponding dynamic proxy object of type structure of service broker's object.
4. method as claimed in claim 2, wherein, service broker's object formation present in the process for the application
Corresponding dynamic proxy object includes:
Call-by mechanism is reflected according to JAVA, be the application process present in service broker's object formation corresponding dynamic generation
Reason object.
5. method as claimed in claim 2, wherein, the API Calls request for judging that the dynamic proxy object acquisition is arrived
Whether it is that exception call request includes:
The API Calls request for needing to send when the application runs is preserved in pre-set list;
Judge the dynamic proxy object acquisition to API Calls ask whether in pre-set list, if it is not, then judging described dynamic
The API Calls request that state agent object gets is asked for exception call.
6. method as claimed in claim 2, wherein, the API Calls request for judging that the dynamic proxy object acquisition is arrived
Whether it is that exception call request includes:
Preset abnormal API Calls request list, judges that whether the API Calls that the dynamic proxy object acquisition is arrived are asked described
In preset abnormal API Calls request list, if so, then judge that the API Calls that the dynamic proxy object acquisition is arrived are asked as different
Normal call request.
7. method as claimed in claim 2, wherein, service broker's object formation present in the process for the application
Corresponding dynamic proxy object includes:
While new service broker's object is created in the process of the application, it is service broker's object formation of the new establishment
Dynamic proxy object.
8. the third party's SDK devices during a kind of monitoring is applied, wherein, the device is the plug-in unit in the application, including:
Monitoring unit, is suitable in the running of application, monitors the feelings of the third party SDK calling system API in the application
Condition;
Judging unit, is suitable to the situation according to the third party SDK calling system API for monitoring, judges whether exception call
The situation of system API;
Reporting unit, is suitable to after the judging unit judges the situation that there is exception call system API, reports institute to server
State the situation of exception call system API.
9. device as claimed in claim 8, wherein,
The monitoring unit, is suitable for the corresponding dynamic proxy pair of service broker's object formation present in the process of the application
As so that when the application sends API Calls request to service broker's object, should by the dynamic proxy object acquisition
Service request;
The judging unit, be suitable to judge the dynamic proxy object acquisition to API Calls request whether be that exception call please
Ask.
10. it is a kind of reinforce installation kit device, wherein, the device includes:
Packaged unit, is suitable to the device as any one of claim 8-9 is bundled in the installation kit of application.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201610892446.9A CN106557691A (en) | 2016-10-12 | 2016-10-12 | The device of third party's SDK methods, device and reinforcing installation kit in monitoring application |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201610892446.9A CN106557691A (en) | 2016-10-12 | 2016-10-12 | The device of third party's SDK methods, device and reinforcing installation kit in monitoring application |
Publications (1)
Publication Number | Publication Date |
---|---|
CN106557691A true CN106557691A (en) | 2017-04-05 |
Family
ID=58418450
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201610892446.9A Pending CN106557691A (en) | 2016-10-12 | 2016-10-12 | The device of third party's SDK methods, device and reinforcing installation kit in monitoring application |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN106557691A (en) |
Cited By (8)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN108763921A (en) * | 2018-05-29 | 2018-11-06 | 北京迪诺益佳信息科技有限公司 | A kind of method of application software and SDK management and control |
CN109802842A (en) * | 2017-11-16 | 2019-05-24 | 华为软件技术有限公司 | The generation method and relevant device of applied topology |
CN110545441A (en) * | 2019-09-09 | 2019-12-06 | 广州华多网络科技有限公司 | live broadcast method, user equipment and server |
CN110955887A (en) * | 2019-10-15 | 2020-04-03 | 浙江省北大信息技术高等研究院 | Abnormal behavior detection method and device |
CN112052447A (en) * | 2020-08-06 | 2020-12-08 | 北京智游网安科技有限公司 | Isolation method, device, terminal and storage medium for software development kit |
CN112596823A (en) * | 2020-12-23 | 2021-04-02 | 支付宝(杭州)信息技术有限公司 | Safety control method and device and electronic equipment |
CN113377643A (en) * | 2021-07-02 | 2021-09-10 | 四川新网银行股份有限公司 | SDK monitoring and tracking method and device and readable storage medium |
CN113591079A (en) * | 2020-04-30 | 2021-11-02 | 中移互联网有限公司 | Method and device for acquiring abnormal application installation package and electronic equipment |
Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN103186740A (en) * | 2011-12-27 | 2013-07-03 | 北京大学 | Automatic detection method for Android malicious software |
CN103927244A (en) * | 2014-04-15 | 2014-07-16 | 南威软件股份有限公司 | Plug-in scheduling process monitoring method implemented based on dynamic proxy |
CN104281440A (en) * | 2013-07-03 | 2015-01-14 | 中国移动通信集团公司 | Interface realizing method and system and interface client-side host |
CN104992081A (en) * | 2015-06-24 | 2015-10-21 | 华中科技大学 | Security enhancement method for third-party code of Android application program |
-
2016
- 2016-10-12 CN CN201610892446.9A patent/CN106557691A/en active Pending
Patent Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN103186740A (en) * | 2011-12-27 | 2013-07-03 | 北京大学 | Automatic detection method for Android malicious software |
CN104281440A (en) * | 2013-07-03 | 2015-01-14 | 中国移动通信集团公司 | Interface realizing method and system and interface client-side host |
CN103927244A (en) * | 2014-04-15 | 2014-07-16 | 南威软件股份有限公司 | Plug-in scheduling process monitoring method implemented based on dynamic proxy |
CN104992081A (en) * | 2015-06-24 | 2015-10-21 | 华中科技大学 | Security enhancement method for third-party code of Android application program |
Non-Patent Citations (1)
Title |
---|
张源: "安卓平台安全性增强关键技术的研究", 《中国知网》 * |
Cited By (14)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN109802842A (en) * | 2017-11-16 | 2019-05-24 | 华为软件技术有限公司 | The generation method and relevant device of applied topology |
CN109802842B (en) * | 2017-11-16 | 2021-12-03 | 华为技术有限公司 | Application topology generation method and related equipment |
CN108763921A (en) * | 2018-05-29 | 2018-11-06 | 北京迪诺益佳信息科技有限公司 | A kind of method of application software and SDK management and control |
CN108763921B (en) * | 2018-05-29 | 2019-04-02 | 北京迪诺益佳信息科技有限公司 | A kind of method of application software and SDK control |
CN110545441A (en) * | 2019-09-09 | 2019-12-06 | 广州华多网络科技有限公司 | live broadcast method, user equipment and server |
CN110545441B (en) * | 2019-09-09 | 2021-06-18 | 广州三人行壹佰教育科技有限公司 | Live broadcast method, user equipment and server |
CN110955887A (en) * | 2019-10-15 | 2020-04-03 | 浙江省北大信息技术高等研究院 | Abnormal behavior detection method and device |
CN110955887B (en) * | 2019-10-15 | 2022-05-06 | 杭州未名信科科技有限公司 | Abnormal behavior detection method and device |
CN113591079A (en) * | 2020-04-30 | 2021-11-02 | 中移互联网有限公司 | Method and device for acquiring abnormal application installation package and electronic equipment |
CN113591079B (en) * | 2020-04-30 | 2023-08-15 | 中移互联网有限公司 | Method and device for acquiring abnormal application installation package and electronic equipment |
CN112052447A (en) * | 2020-08-06 | 2020-12-08 | 北京智游网安科技有限公司 | Isolation method, device, terminal and storage medium for software development kit |
CN112596823A (en) * | 2020-12-23 | 2021-04-02 | 支付宝(杭州)信息技术有限公司 | Safety control method and device and electronic equipment |
CN113377643A (en) * | 2021-07-02 | 2021-09-10 | 四川新网银行股份有限公司 | SDK monitoring and tracking method and device and readable storage medium |
CN113377643B (en) * | 2021-07-02 | 2023-08-25 | 四川新网银行股份有限公司 | SDK monitoring and tracking method and device and readable storage medium |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN106557691A (en) | The device of third party's SDK methods, device and reinforcing installation kit in monitoring application | |
CN105005532B (en) | A kind of system and method for automatic test application programming interfaces stability | |
US8707275B2 (en) | Simulation environment for distributed programs | |
CN102195970B (en) | Based on the debugging of client session | |
CN104834602B (en) | A kind of program dissemination method, device and program delivery system | |
CN109376088B (en) | Automatic test system and automatic test method | |
CN104899142A (en) | Remote mock testing method and device | |
CN106649640A (en) | Instant search method and device | |
CN105429813A (en) | Monitoring method and client for docker | |
CN110909083A (en) | Consensus method and system for verifiable random function on block chain | |
CN106845270A (en) | A kind of seamless browsing method and device | |
CN106407061A (en) | Northbound interface testing device and northbound interface testing method | |
CN107438097B (en) | Network request processing method and device | |
CN109669785A (en) | Page sharing method, device, server and the storage medium of terminal applies | |
CN109933407B (en) | Block chain DAPP virtual machine, data processing method and computing equipment | |
EP3188071B1 (en) | Application accessing control method and device | |
CN113795001B (en) | Method and device for sending system short message based on SPI | |
CN105574406A (en) | Progress monitoring method and device | |
CN107179740B (en) | The Compilation Method and embedded system of Embedded PLC | |
CN111984543B (en) | Instruction testing method, device and system | |
CN104572980B (en) | Data processing method and device | |
CN113778850A (en) | Data processing method and device, electronic equipment and computer readable medium | |
CN106557310A (en) | A kind of remote desktop management method and system | |
CN111143224A (en) | Pile service implementation method, device, equipment and computer storage medium | |
JP4401425B1 (en) | Service processing apparatus, system, program, and recording medium |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
RJ01 | Rejection of invention patent application after publication | ||
RJ01 | Rejection of invention patent application after publication |
Application publication date: 20170405 |