CN106709292A - Terminal permission control method and system - Google Patents
Terminal permission control method and system Download PDFInfo
- Publication number
- CN106709292A CN106709292A CN201510443986.4A CN201510443986A CN106709292A CN 106709292 A CN106709292 A CN 106709292A CN 201510443986 A CN201510443986 A CN 201510443986A CN 106709292 A CN106709292 A CN 106709292A
- Authority
- CN
- China
- Prior art keywords
- authority
- terminal
- information
- attribute
- control
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Withdrawn
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Theoretical Computer Science (AREA)
- Computer Hardware Design (AREA)
- Software Systems (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Storage Device Security (AREA)
- Lock And Its Accessories (AREA)
Abstract
The invention discloses a terminal permission control method. A terminal stores a first attribute for first permission; the first permission at least includes system permission and/or application permission of the terminal; and the first attribute is used for describing enable and disable conditions of the first permission. The method comprises the steps of obtaining first information of the terminal, wherein the first information is information used for describing an environment in which the terminal is located; based on the obtained first information and the first attribute, stored in the terminal, for the first permission, obtaining a permission control policy; and executing enable or disable operation for the first permission when it is determined that the first permission needs to be subjected to state adjustment according to the permission control policy.
Description
Technical field
The invention belongs to intelligent terminal field, more particularly to a kind of control method and system to terminal authorization.
Background technology
With developing rapidly for mobile Internet, intelligent terminal has been popularized, based on intelligent terminal it is various should
With also more and more, these applications include:Office software, financing software, social software, Games Software etc.
Deng.It is miscellaneous to apply while work, life and the communication way of people is greatly changed,
In the deep user that annoyings, such as Working Life cannot be separated, and security incident takes place frequently etc..For example:User
The System Privileges and/or application permission of the intelligent terminal for being used are not necessarily applied to all environment or occasion,
Generally when user is in different environment, System Privileges and/or application permission to its intelligent terminal have not
Same operates with authority limitation, and existing intelligent terminal cannot be according to the change of environment come automatic adaptability
Adjust these authorities.
Therefore, how to be tried one's best raising security while functional diversity, the ease for use of intelligent terminal is ensured,
Or preferably peace can be provided while with good diversity, the application of ease for use and correlation function
Quan Xing, is technical problem urgently to be resolved hurrily at present.
The content of the invention
To solve existing technical problem, the embodiment of the present invention provides a kind of controlling party to terminal authorization
Method and system.
A kind of control method to terminal authorization is the embodiment of the invention provides, is stored with the terminal and is directed to
First attribute of the first authority, System Privileges and/or application power of first authority at least including the terminal
Limit, first attribute is used to describe the opening and closing condition of first authority, and the method includes:
The first information of the terminal is obtained, the first information is for describing the terminal local environment
Information;
For the first of the first authority described in the first information and the terminal storage based on acquisition
Attribute, obtains control of authority strategy;
When determining to need to carry out first authority state adjustment according to the control of authority strategy, pin is performed
Operation is turned on and off to the first authority.
In a feasible pattern, it is described based on obtain the first information and terminal storage for first power
First attribute of limit, obtains control of authority strategy, including:
The first information for obtaining is compared with first attribute for being directed to the first authority, institute is judged
The opening and closing the condition whether first information meets first authority described by first attribute is stated,
And the current state of the first authority according to the terminal, judge whether to need to carry out shape to first authority
State is adjusted;
The control of authority strategy generated based on judged result, whether the control of authority policy depiction is to institute
Stating the first authority carries out state adjustment.
In a feasible pattern, the first information is the temporal information and/or positional information of the terminal, institute
The opening and closing condition for stating the first authority be the permission time range that first authority is opened and closed and/
Or allow position range;
The first information by acquisition is compared with the first attribute for the first authority, judges the first letter
Whether breath meets the opening and closing condition of the first authority described by the first attribute, including:
The unlatching of temporal information and/or positional information with first authority of the terminal that will be obtained and pass
The condition of closing is compared, and judges whether the temporal information and/or positional information of the terminal belong to first power
Limit the permission time range and/or permission position range for opening and closing.
In a feasible pattern, perform for the first authority be turned on and off operation after, methods described is also
Including:
When the terminal is triggered produces the state adjust instruction for first authority, described the is judged
Whether one authority is configured with safety certification strategy, if configured with safety certification strategy, then based on the peace
After full certification policy execution safety certification passes through, performed to first authority by the state adjust instruction
State is adjusted;If being configured without safety certification strategy, performed to described the by the state adjust instruction
The state adjustment of one authority.
In a feasible pattern, before the first information of the acquisition terminal, methods described also includes:
When the terminal is triggered produces the first attribute to set instruction, being weighed for described first for setting is obtained
First attribute of limit;
Wherein, the mode for setting the first attribute for first authority is following at least one:
First authority is selected from the System Privileges and/or application permission of the terminal, and is described first
The corresponding opening and closing condition of priority assignation;Or,
After the opening and closing condition of authority is set, selected from the System Privileges and/or application permission of the terminal
Select the first authority described at least one of the execution opening and closing condition.
The embodiment of the present invention additionally provides a kind of control system of terminal authorization, and the system includes:Initialization
Unit, first information obtaining unit, strategy control unit and control of authority unit;
The initialization unit, for storing the first attribute for the first authority, first authority is at least
System Privileges and/or application permission including the terminal, first attribute are used to describe first authority
Opening and closing condition;
The first information obtaining unit, the first information for obtaining the terminal, the first information is
Information for describing the terminal local environment;
The strategy control unit, for based on the first information and the terminal storage for obtaining
First attribute for being directed to the first authority, obtains control of authority strategy, and in the control of authority Policy Table
Levy needs carries out notifying control of authority unit when state is adjusted to first authority;
The control of authority unit, the first authority is directed to for being performed according to the notice of the strategy control unit
Be turned on and off operation.
In a feasible pattern, the strategy control unit is based on the first information and the terminal storage for obtaining
The first attribute for the first authority, obtain control of authority strategy, including:
The first information for obtaining is compared with first attribute for being directed to the first authority, institute is judged
The opening and closing the condition whether first information meets first authority described by first attribute is stated,
And the current state of the first authority according to the terminal, judge whether to need to carry out shape to first authority
State is adjusted;
The control of authority strategy generated based on judged result, whether the control of authority policy depiction is to institute
Stating the first authority carries out state adjustment.
In a feasible pattern, the first information is the temporal information and/or positional information of the terminal, institute
The opening and closing condition for stating the first authority be the permission time range that first authority is opened and closed and/
Or allow position range;
With the first attribute for the first authority be compared the first information of acquisition by the strategy control unit,
Judge whether the first information meets the opening and closing condition of the first authority described by the first attribute, including:
The unlatching of temporal information and/or positional information with first authority of the terminal that will be obtained and pass
The condition of closing is compared, and judges whether the temporal information and/or positional information of the terminal belong to first power
Limit the permission time range and/or permission position range for opening and closing.
In a feasible pattern, the control of authority unit is further used for, and is produced for described being triggered
During the state adjust instruction of the first authority, judge whether first authority is configured with safety certification strategy, such as
Fruit is configured with safety certification strategy, then after being passed through based on the safety certification strategy execution safety certification, press
The state adjust instruction performs the state adjustment to first authority;If being configured without safety certification plan
Slightly, then performed by the state adjust instruction and the state of first authority is adjusted.
In a feasible pattern, the system also includes setting unit, in the first attribute of generation that is triggered
When instruction is set, the first attribute for first authority is set;
Wherein, the mode for setting the first attribute for first authority is following at least one:
First authority is selected from the System Privileges and/or application permission of the terminal, and is described first
The corresponding opening and closing condition of priority assignation;Or,
After the opening and closing condition of authority is set, selected from the System Privileges and/or application permission of the terminal
Select the first authority described at least one of the execution opening and closing condition.
A kind of control method and system to terminal authorization that the present invention is provided, by being the first priority assignation the
One attribute, and the first information based on the intelligent terminal for obtaining, judge whether to need to carry out shape to the first authority
State is adjusted, and when judging to need adjustment, be turned on and off the first authority by self adaptation.Thus, it is possible to
Change being turned on and off come the authority of automatic accommodation first according to local environment, is ensureing intelligence
Tried one's best while functional diversity, the ease for use of terminal raising security, or with good diversity,
More preferable security can be provided while the application of ease for use and correlation function.
Brief description of the drawings
Fig. 1 is the control method schematic flow sheet to terminal authorization of the embodiment of the present invention one;
Fig. 2 is the structural representation of the control system to terminal authorization of the embodiment of the present invention two;
Fig. 3 is the control method schematic flow sheet to terminal authorization of the embodiment of the present invention three;
Fig. 4 is the control method schematic flow sheet to terminal authorization of the embodiment of the present invention four;
Fig. 5 is the control method schematic flow sheet to terminal authorization of the embodiment of the present invention five.
Specific embodiment
The technical solution of the present invention is further elaborated with specific embodiment below in conjunction with the accompanying drawings.
Embodiment one
A kind of control method to terminal authorization that the embodiment of the present invention one is provided, as shown in figure 1, wherein,
The first attribute being stored with the terminal for the first authority, first authority at least includes the terminal
System Privileges and/or application permission, first attribute is used to describe the opening and closing of first authority
Condition;Methods described mainly includes:
Step 101, obtains the first information of the terminal, and the first information is for describing the terminal
The information of local environment.
In the embodiment of the present invention, the System Privileges refer to intelligent terminal operating system (such as Android system,
IOS, windows operating systems of apple etc.) various functions operate with authority, such as intelligence
WLAN (wifi) authority, mobile data link authority, secure digital (SD, the Secure of energy terminal
Digital) file of card deletes authority etc.;The application permission refers to the application journey of installation in intelligent terminal
Sequence operates with authority, such as:Application program operates with authority, the behaviour of a certain function of application program
Make access right etc..
In the embodiment of the present invention, intelligent terminal prestores the first attribute for the first authority, described first
Attribute includes:Opening and closing condition for the System Privileges of intelligent terminal, and/or for intelligent terminal
Opening and closing condition of application permission etc..Wherein, for intelligent terminal System Privileges unlatching and pass
Condition is closed, such as:For intelligent terminal wifi using operating right opening and closing condition, for intelligence
The file of the SD card of terminal deletes the opening and closing condition of authority, the camera function for intelligent terminal
Opening and closing condition, the opening and closing condition of sound-recording function etc. for intelligent terminal;For intelligence
The opening and closing condition of the application permission of terminal, such as:For intelligent terminal game class application unlatching and
Closedown condition, for opening and closing condition of video call function in the social class application of intelligent terminal etc.
Deng.
That is, first attribute for the first authority of the embodiment of the present invention is to pre-set and be stored in
Intelligent terminal, the setting and the operation for preserving are before step 101, can specifically to include:
When the terminal is triggered produces the first attribute to set instruction, being weighed for described first for setting is obtained
First attribute of limit;
Wherein, the mode for setting the first attribute for first authority is following at least one:
First authority is selected from the System Privileges and/or application permission of the terminal, and is described first
The corresponding opening and closing condition of priority assignation;Or,
After the opening and closing condition of authority is set, selected from the System Privileges and/or application permission of the terminal
Select the first authority described at least one of the execution opening and closing condition.
First attribute sets the physical button that instruction can be intelligent terminal and is triggered or virtual functional key
When being triggered, produced by the intelligent terminal;After triggering produces the first attribute to set instruction, intelligence is eventually
End provides the setting interface of the first attribute, and the selection of the first authority and its setting of the first attribute are carried out for user.
The embodiment of the present invention is not limited the specific set-up mode or process of the first attribute, and provided above is only this
Two kinds of embodiments of inventive embodiments, above two embodiment also may be used in combination.
Wherein, for selecting the first authority from the System Privileges and/or application permission of terminal, and it is the first power
Limit sets corresponding this mode of opening and closing condition.For example:Select the mobile data of the intelligent terminal
Link authority, and be the corresponding opening and closing condition of the mobile data link priority assignation;Again for example:
The file of the SD card of the intelligent terminal is selected to delete authority, and for the file deletion authority of the SD card sets
Put corresponding opening and closing condition;Also for example:The using for game class application of the intelligent terminal is selected to grasp
Make authority, and for the use operating right of the game class application sets corresponding opening and closing condition;Again
For example:The video call function in certain social class application of the intelligent terminal is selected, and is the social class
Video call function in sets corresponding opening and closing condition.
For after the opening and closing condition for setting authority, being selected from the System Privileges and/or application permission of terminal
Select at least one first this modes of authority for performing opening and closing condition.For example:Authority is set first
Opening and closing condition, then reselection be applicable the authority of above-mentioned condition, the authority includes the text of SD card
Part deletes the video call function in authority, the use operating right of certain game class application, certain social class application
Etc..That is, the file of the above-mentioned SD card of selection deletes authority, using for certain game class application grasping
Make the video call function in authority, certain social class application, be suitable for above-mentioned same opening and closing bar
Part.
After setting and storing the first attribute for the first authority, intelligent terminal can periodic or non-week
The acquisition of phase property is used to describe the first information of its local environment, and the first information can be intelligent terminal institute
Temporal information residing for the positional information, or intelligent terminal at place, can also be ring residing for intelligent terminal
The noise coefficient in border, is possibly even luminous intensity of intelligent terminal local environment etc..The embodiment of the present invention
The type and content to the first information are not limited, and can be extended according to actual needs;Equally, originally
Acquisition pattern of the inventive embodiments also not to the first information is limited, every suitable for the embodiment of the present invention
First information acquisition pattern should belong to embodiment of the present invention scope of the claimed.
Step 102, based on obtain the first information and the terminal storage described in be directed to first
First attribute of authority, obtains control of authority strategy.
In one embodiment, step 102 includes:
The first information for obtaining is compared with first attribute for being directed to the first authority, institute is judged
The opening and closing the condition whether first information meets first authority described by first attribute is stated,
And the current state of the first authority according to the terminal, judge whether to need to carry out shape to first authority
State is adjusted;
The control of authority strategy generated based on judged result, whether the control of authority policy depiction is to institute
Stating the first authority carries out state adjustment.
That is, judging that the first information meets the first power of the unlocking condition of the first authority and intelligent terminal
When limit is currently opening, without state adjustment;Judge the first information meet the first authority unlocking condition,
And the first authority of intelligent terminal currently be closed mode when, it is necessary to state adjust;Judge that the first information meets
, it is necessary to state is adjusted when the closedown condition of the first authority and the first authority of intelligent terminal are currently opening
It is whole;Judge that the first information meets the first authority of the closedown condition of the first authority and intelligent terminal currently to close
During closed state, without state adjustment.
In addition, in one embodiment, the first information can be temporal information and/or the position of the terminal
Confidence ceases, when the opening and closing condition of first authority is the permission that first authority is opened and closed
Between scope and/or allow position range;
The first information by acquisition is compared with the first attribute for the first authority, judges the first letter
Whether breath meets the opening and closing condition of the first authority described by the first attribute, including:
The unlatching of temporal information and/or positional information with first authority of the terminal that will be obtained and pass
The condition of closing is compared, and judges whether the temporal information and/or positional information of the terminal belong to first power
Limit the permission time range and/or permission position range for opening and closing.
That is, when judging that the temporal information and/or positional information of terminal belong to the permission of the first authority unlatching
Between scope and/or when allowing the first authority of position range and intelligent terminal to be currently opening, without shape
State is adjusted;Judge that the temporal information and/or positional information of terminal belong to the permission time range of the first authority unlatching
And/or, it is necessary to state is adjusted when to allow the first authority of position range and intelligent terminal be currently closed mode;
Judge that the temporal information and/or positional information of terminal belong to the permission time range of the first authority closing and/or permit
Perhaps, it is necessary to state is adjusted when the first authority of position range and intelligent terminal is currently opening;Judge
The temporal information and/or positional information of terminal belong to the permission time range of the first authority closing and/or allow position
When the first authority for putting scope and intelligent terminal is currently closed mode, without state adjustment.
Step 103, determines to need to carry out state adjustment to first authority according to the control of authority strategy
When, perform and be turned on and off operation for the first authority.
According to control of authority strategy, when it is determined that needing to close the first authority, perform for the first power
The shutoff operation of limit;When it is determined that needing to open the first authority, the unlatching for the first authority is performed
Operation.Wherein, for the opening and closing operational control of System Privileges and/or application permission, the present invention is implemented
Example is not limited, and any control mode suitable for the embodiment of the present invention in practical application should belong to this
Inventive embodiments scope of the claimed.
In one embodiment, perform for the first authority be turned on and off operation after, methods described is also
Including:
When the terminal is triggered produces the state adjust instruction for first authority, described the is judged
Whether one authority is configured with safety certification strategy, if configured with safety certification strategy, then based on the peace
After full certification policy execution safety certification passes through, performed to first authority by the state adjust instruction
State is adjusted;If being configured without safety certification strategy, performed to described the by the state adjust instruction
The state adjustment of one authority.
That is, the embodiment of the present invention is also supported to manually adjust the first rights state, when user's triggering
When manual state adjustment is carried out to certain first authority, intelligent terminal produces the state for first authority
Adjust instruction;If intelligent terminal is provided with the safety adjusted for the first authority manual mode in advance recognized
Card strategy, then need after certification passes through, and could press adjust instruction execution and the state of first authority is adjusted
It is whole;If intelligent terminal is configured without the safety certification plan for the first authority manual mode adjustment in advance
Slightly, then state adjustment of the adjust instruction execution to first authority can be pressed without certification.Wherein, intelligence
Terminal can provide the operation interface of safety certification, and the input of information is authenticated for user, to be collected complete
After the authentication information of user input, the authentication information based on user input carries out safety certification.
Embodiment two
The control method of the terminal authorization of the correspondence embodiment of the present invention, the embodiment of the present invention two additionally provides one kind
The control system of terminal authorization, as shown in figure 5, the system includes:The initialization unit 10, first information
Obtaining unit 20, strategy control unit 30 and control of authority unit 40;Wherein,
The initialization unit 10, for storing the first attribute for the first authority, first authority is extremely
Include the System Privileges and/or application permission of the terminal less, first attribute is used to describe first power
The opening and closing condition of limit;
The first information obtaining unit 20, the first information for obtaining the terminal, the first information
It is the information for describing the terminal local environment;
The strategy control unit 30, for based on the first information and the terminal storage for obtaining
First attribute for being directed to the first authority, control of authority strategy is obtained, and in the control of authority strategy
Characterizing needs that first authority is carried out to notify control of authority unit 40 when state is adjusted;
The control of authority unit 40, for being performed for the according to the notice of the strategy control unit 30
One authority be turned on and off operation.
In one embodiment, the system also includes setting unit 50, for belonging in the generation first that is triggered
Property set instruction when, set for first authority the first attribute;
Wherein, the mode for setting the first attribute for first authority is following at least one:
First authority is selected from the System Privileges and/or application permission of the terminal, and is described first
The corresponding opening and closing condition of priority assignation;Or,
After the opening and closing condition of authority is set, selected from the System Privileges and/or application permission of the terminal
Select the first authority described at least one of the execution opening and closing condition.
First attribute sets the physical button that instruction can be intelligent terminal and is triggered or virtual functional key
When being triggered, produced by the setting unit 50 of the intelligent terminal;Produce the first attribute to set in triggering to refer to
After order, the setting unit 50 of intelligent terminal provides the setting interface of the first attribute, and the first authority is carried out for user
Selection and its first attribute setting.The embodiment of the present invention is not to the specific set-up mode or mistake of the first attribute
Cheng Jinhang is limited, and provided above is only two kinds of embodiments of the embodiment of the present invention, and above two can be implemented
Mode also may be used in combination.
In one embodiment, the strategy control unit 30 is based on the first information for obtaining and terminal is deposited
First attribute for the first authority of storage, obtains control of authority strategy, including:
The first information for obtaining is compared with first attribute for being directed to the first authority, institute is judged
The opening and closing the condition whether first information meets first authority described by first attribute is stated,
And the current state of the first authority according to the terminal, judge whether to need to carry out shape to first authority
State is adjusted;
The control of authority strategy generated based on judged result, whether the control of authority policy depiction is to institute
Stating the first authority carries out state adjustment.
That is, judging that the first information meets the first power of the unlocking condition of the first authority and intelligent terminal
When limit is currently opening, without state adjustment;Judge the first information meet the first authority unlocking condition,
And the first authority of intelligent terminal currently be closed mode when, it is necessary to state adjust;Judge that the first information meets
, it is necessary to state is adjusted when the closedown condition of the first authority and the first authority of intelligent terminal are currently opening
It is whole;Judge that the first information meets the first authority of the closedown condition of the first authority and intelligent terminal currently to close
During closed state, without state adjustment.
In one embodiment, the first information is the temporal information and/or positional information of the terminal, institute
The opening and closing condition for stating the first authority be the permission time range that first authority is opened and closed and/
Or allow position range;
The strategy control unit 30 carries out the first information of acquisition with the first attribute for the first authority
Compare, judge whether the first information meets the opening and closing condition of the first authority described by the first attribute,
Including:
The unlatching of temporal information and/or positional information with first authority of the terminal that will be obtained and pass
The condition of closing is compared, and judges whether the temporal information and/or positional information of the terminal belong to first power
Limit the permission time range and/or permission position range for opening and closing.
That is, when judging that the temporal information and/or positional information of terminal belong to the permission of the first authority unlatching
Between scope and/or when allowing the first authority of position range and intelligent terminal to be currently opening, without shape
State is adjusted;Judge that the temporal information and/or positional information of terminal belong to the permission time range of the first authority unlatching
And/or, it is necessary to state is adjusted when to allow the first authority of position range and intelligent terminal be currently closed mode;
Judge that the temporal information and/or positional information of terminal belong to the permission time range of the first authority closing and/or permit
Perhaps, it is necessary to state is adjusted when the first authority of position range and intelligent terminal is currently opening;Judge
The temporal information and/or positional information of terminal belong to the permission time range of the first authority closing and/or allow position
When the first authority for putting scope and intelligent terminal is currently closed mode, without state adjustment.
In one embodiment, the control of authority unit 40 is further used for, and is produced for institute being triggered
When stating the state adjust instruction of the first authority, judge whether first authority is configured with safety certification strategy,
If configured with safety certification strategy, then after being passed through based on the safety certification strategy execution safety certification,
Performed by the state adjust instruction and the state of first authority is adjusted;If being configured without safety certification
Strategy, then performed by the state adjust instruction and the state of first authority adjusted.
That is, the embodiment of the present invention is also supported to manually adjust the first rights state, when user's triggering
When manual state adjustment is carried out to certain first authority, the control of authority unit 40 of intelligent terminal is produced and is directed to institute
State the state adjust instruction of the first authority;If the setting unit 50 of intelligent terminal is previously provided with for described
First authority manual mode adjustment safety certification strategy, then control of authority unit 40 need after certification passes through,
State adjustment of the adjust instruction execution to first authority could be pressed;If the setting unit 50 of intelligent terminal
The safety certification strategy for the first authority manual mode adjustment is not provided with advance, then control of authority list
Unit 40 can press state adjustment of the adjust instruction execution to first authority without certification.Wherein, intelligence is whole
End can provide the operation interface of safety certification, and the input of information, complete use to be collected are authenticated for user
After the authentication information of family input, the authentication information based on user input carries out safety certification.
The embodiments of the present invention, by being first the first attribute of priority assignation, and based on the intelligence for obtaining eventually
The first information at end, judges whether to need to carry out the first authority state adjustment, and when judging to need adjustment,
Be turned on and off first authority by self adaptation.The intelligent terminal of the embodiment of the present invention can be according to local environment
Change carry out automatic accommodation first authority and be turned on and off so that, ensureing intelligent terminal
Tried one's best while functional diversity, ease for use raising security, or with good diversity, easy-to-use
More preferable security can be provided while the application of property and correlation function.
It should be noted that the first information of the embodiment of the present invention is used to describe the environment letter residing for intelligent terminal
Breath, can be the location of intelligent terminal information, or the temporal information residing for intelligent terminal, also
Can be the noise coefficient of intelligent terminal local environment, be possibly even the light intensity of intelligent terminal local environment
Degree etc..The embodiment of the present invention is not limited the type and content of the first information, can be according to actual need
It is extended;Equally, acquisition pattern of the embodiment of the present invention also not to the first information is limited, every
Suitable for the first information acquisition pattern of the embodiment of the present invention, should to belong to the embodiment of the present invention claimed
Scope.
Below so that the first information is the location of terminal information and/or temporal information as an example, the present invention is implemented
The control method to terminal authorization of example is further elaborated on.
Embodiment three
In view of in actual applications, terminal user in different geographical position, such as in workplace, family
Front yard place or strange position, unlatching and/or closing demand to System Privileges and/or application permission in terminal are
Different;Also, unlatching and/or closing custom of the terminal user to terminal system authority and/or application permission
Having certain rule can be followed, i.e. authority of the terminal user generally in same position region is opened and/or closed
Custom is identical;Application is so adaptively adjusted according to the rule and system operates with authority, can be with
The many manually operated of user is saved, user time, lifting operation experience is saved.
The control method of the terminal authorization based on geographical position change of the embodiment of the present invention three, as shown in figure 3,
The method mainly includes:
Step 301, initiation parameter configuration.
The configurating terminal user often position range of activity, automatic control of authority switch, automatic control of authority
The relevant parameters such as involved application, complete to be set for the first attribute of the first authority.
After setting and preserving the first attribute (the opening and closing condition of the first authority) for the first authority,
Above-mentioned parameter configuration is initialized.That is, by after the initialization, terminal can be informed in
Positioned at where in the range of when which authority should belong to the state of being turned on and off.
Step 302, terminal monitoring change in location.
In the embodiment of the present invention, can be demarcated using the basic function for combining the terminals such as map, position positioning
The position reference reference point of automatic encryption, position range is determined on the basis of reference point by effective radius,
Position range can be the region in effective radius, or the region outside radius, or multiple areas
The union or common factor in domain.Certainly, also can be real using the method for other monitoring position of terminal scopes, the present invention
Apply example and do not do and illustrate one by one.
Whether step 303, the manual binding authority of terminal judges, in this way, goes to step 308, such as no, goes to
Step 304.
I.e. whether terminal judges are triggered and produce the state adjust instruction (manually adjusting) of authority, in this way, go to
Step 308, it is such as no, go to step 304.
Step 304~305, the currently used authority of monitor terminal judges whether authority meets the current institute of terminal
The position range at place, in this way, goes to step 309, such as no, goes to step 306.
That is monitor terminal currently used authority is turned on and off state, if the position being presently in terminal
The requirement for putting the rights state corresponding to scope is consistent, if be consistent, goes to step 309, if do not corresponded,
Go to step 306.For example:It is required that terminal user's Administrative Area close take pictures and sound-recording function, other when
Between open and take pictures and sound-recording function, then the power for being changed by monitoring position of terminal and being taken pictures with sound-recording function
Whether limit, judges the position range that terminal the is presently in state phase taken pictures with sound-recording function current with terminal
Symbol.
Step 306, calculates control of authority strategy, will the position range that is presently in of terminal it is initial with above-mentioned
The parameter of change is compared, and with the authority of the adjustment that determines to be currently needed for doing well, and is generated accordingly with this
Control of authority strategy.
Step 307, judges whether to need automatic authority to limit, and in this way, goes to step 308, such as no, goes to
Step 309.
I.e. whether terminal judges currently need to be limited based on the automatic authority of the control of authority strategy execution.
Step 308, as needed binding authority.
The step of being gone to for step 303 308, terminal is according to the manually operated execution of user to corresponding authority
State adjustment;
The step of being gone to for step 307 308, terminal is according to control of authority strategy execution to corresponding authority
State is adjusted.
Example IV
In view of in actual applications, terminal user is right in different time ranges, such as daytime, night
The unlatching of System Privileges and/or application permission in terminal and/or closing demand are different;Also, terminal makes
User is to the unlatching of terminal system authority and/or application permission and/or closing custom has certain rule can to follow,
I.e. terminal user is generally opened in the authority of same time range and/or closing custom is identical;So basis should
Rule come be adaptively adjusted application and system many manual behaviour for operating with authority, user being saved
Make, save user time, lifting operation experience.
The control method of the terminal authorization based on geographical position change of the embodiment of the present invention four, as shown in figure 4,
The method mainly includes:
Step 401, initiation parameter configuration.
The time range of configurating terminal user, automatic control of authority switch, involved by automatic control of authority
Using etc. relevant parameter, complete for the first authority the first attribute set.
After setting and preserving the first attribute (the opening and closing condition of the first authority) for the first authority,
Above-mentioned parameter configuration is initialized.That is, by after the initialization, terminal can be informed in
Positioned at when in the range of when which authority should belong to the state of being turned on and off.
Step 402, terminal monitoring time change.
Whether step 403, the manual binding authority of terminal judges, in this way, goes to step 408, such as no, goes to
Step 404.
I.e. whether terminal judges are triggered and produce the state adjust instruction (manually adjusting) of authority, in this way, go to
Step 408, it is such as no, go to step 404.
Step 404~405, the currently used authority of monitor terminal judges whether authority meets the current institute of terminal
The time range at place, in this way, goes to step 409, such as no, goes to step 406.
That is monitor terminal currently used authority is turned on and off state, if with terminal be presently in when
Between the requirement of rights state corresponding to scope be consistent, if be consistent, go to step 409, if do not corresponded,
Go to step 406.For example:It is required that terminal is closed in user's work hours take pictures and sound-recording function, other when
Between open and take pictures and sound-recording function, then by monitoring terminal time change and the power taken pictures with sound-recording function
Whether limit, judges the time range that terminal the is presently in state phase taken pictures with sound-recording function current with terminal
Symbol.
Step 406, calculates control of authority strategy, will the time range that is presently in of terminal it is initial with above-mentioned
The parameter of change is compared, and with the authority of the adjustment that determines to be currently needed for doing well, and is generated accordingly with this
Control of authority strategy.
Step 407, judges whether to need automatic authority to limit, and in this way, goes to step 408, such as no, goes to
Step 409.
I.e. whether terminal judges currently need to be limited based on the automatic authority of the control of authority strategy execution.
Step 408, as needed binding authority.
The step of being gone to for step 403 408, terminal is according to the manually operated execution of user to corresponding authority
State adjustment;
The step of being gone to for step 407 408, terminal is according to control of authority strategy execution to corresponding authority
State is adjusted.
Step 409, every authority of normal using terminal.
Embodiment five
In view of in actual applications, terminal user in different time and position range, in terminal
The unlatching of System Privileges and/or application permission and/or closing demand are different;Also, terminal user is to end
The unlatching of end system authority and/or application permission and/or closing custom has certain rule can to follow, i.e., terminal makes
(i.e. terminal user would generally scope at a fixed time generally in same time range and position range for user
Activity has certain rule to follow in specific position range, and such as working time, in unit, comes off duty and exist later
Family in) authority open and/or close custom it is identical;So be adaptively adjusted according to the rule application and
System operates with authority, can save user many manually operated, saves user time, lifting behaviour
Experience.
The control method of the terminal authorization based on geographical position change of the embodiment of the present invention five, as shown in figure 5,
The method mainly includes:
Step 501, initiation parameter configuration.
The time range of configurating terminal user, moving position scope, automatic control of authority switch, automatic power
The relevant parameters such as the application involved by limit control, complete to be set for the first attribute of the first authority.
After setting and preserving the first attribute (the opening and closing condition of the first authority) for the first authority,
Above-mentioned parameter configuration is initialized.That is, by after the initialization, terminal can be informed in
Positioned at when scope, in position range when which authority should belong to the state of being turned on and off.
Step 502, terminal monitoring position and time change.
Whether step 503, the manual binding authority of terminal judges, in this way, goes to step 509, such as no, goes to
Step 504.
I.e. whether terminal judges are triggered and produce the state adjust instruction (manually adjusting) of authority, in this way, go to
Step 509, it is such as no, go to step 504.
Step 504~505, the currently used authority of monitor terminal judges whether authority meets the current institute of terminal
The time range at place, in this way, goes to step 506, such as no, goes to step 507.
That is monitor terminal currently used authority is turned on and off state, if with terminal be presently in when
Between the requirement of rights state corresponding to scope be consistent, if be consistent, go to step 506, if do not corresponded,
Go to step 507.
Step 506, judges whether authority meets the position range that terminal is presently in, and in this way, goes to step
510, it is such as no, go to step 507.
That is monitor terminal currently used authority is turned on and off state, if the position being presently in terminal
The requirement for putting the rights state corresponding to scope is consistent, if be consistent, goes to step 510, if do not corresponded,
Go to step 507.
Step 507, calculates control of authority strategy, will the terminal time range, the position range that are presently in
Parameter with above-mentioned initialization is compared, with the authority of the adjustment that determines to be currently needed for doing well, and with this
Generate corresponding control of authority strategy.
Step 508, judges whether to need automatic authority to limit, and in this way, goes to step 509, such as no, goes to
Step 510.
I.e. whether terminal judges currently need to be limited based on the automatic authority of the control of authority strategy execution.
Step 509, as needed binding authority.
The step of being gone to for step 503 509, terminal is according to the manually operated execution of user to corresponding authority
State adjustment;The authority especially sensitive for user, if manually adjusting state, can carry out user's body
Part authentification of message, to ensure security.
The step of being gone to for step 508 509, terminal is according to control of authority strategy execution to corresponding authority
State is adjusted.
Step 510, every authority of normal using terminal.
It should be noted that step 505 and 506 execution sequence can also be overturned in practical application, i.e., first
Judge whether authority meets the position range that terminal is presently in, then judge whether authority meets the current institute of terminal
The time range at place.
In sum, the embodiment of the present invention is by being first the first attribute of priority assignation, and the intelligence based on acquisition
The first information of energy terminal, judges whether to need to carry out the first authority state adjustment, and is judging to need to adjust
When whole, be turned on and off the first authority by self adaptation.The intelligent terminal of the embodiment of the present invention can be according to institute
The change of place's environment carrys out being turned on and off for the authority of automatic accommodation first, so that, ensureing intelligence
Tried one's best while functional diversity, the ease for use of terminal raising security, or with good diversity,
More preferable security can be provided while the application of ease for use and correlation function.
It should be understood by those skilled in the art that, embodiments of the invention can be provided as method, system or meter
Calculation machine program product.Therefore, the present invention can using hardware embodiment, software implementation or combine software and
The form of the embodiment of hardware aspect.And, the present invention can be used and wherein include calculating at one or more
Computer-usable storage medium (the including but not limited to magnetic disk storage and optical storage of machine usable program code
Device etc.) on implement computer program product form.
The present invention is with reference to method according to embodiments of the present invention, equipment (system) and computer program product
Flow chart and/or block diagram describe.It should be understood that flow chart and/or side can be realized by computer program instructions
The knot of flow in each flow and/or square frame and flow chart and/or block diagram and/or square frame in block diagram
Close.Can provide these computer program instructions to all-purpose computer, special-purpose computer, Embedded Processor or
The processor of other programmable data processing devices is producing a machine so that by computer or other can
The instruction of the computing device of programming data processing equipment is produced for realizing in one flow of flow chart or multiple
The device of the function of being specified in one square frame of flow and/or block diagram or multiple square frames.
These computer program instructions may be alternatively stored in can guide computer or other programmable data processing devices
In the computer-readable memory for working in a specific way so that storage is in the computer-readable memory
Instruction is produced includes the manufacture of command device, and the command device is realized in one flow of flow chart or multiple streams
The function of being specified in one square frame of journey and/or block diagram or multiple square frames.
These computer program instructions can be also loaded into computer or other programmable data processing devices, made
Obtain and series of operation steps performed on computer or other programmable devices to produce computer implemented treatment,
So as to the instruction performed on computer or other programmable devices is provided for realizing in one flow of flow chart
Or specified in multiple one square frame of flow and/or block diagram or multiple square frames function the step of.
The above, only presently preferred embodiments of the present invention is not intended to limit protection model of the invention
Enclose.
Claims (10)
1. a kind of control method to terminal authorization, it is characterised in that be stored with for first in the terminal
First attribute of authority, first authority at least System Privileges and/or application permission including the terminal,
First attribute is used to describe the opening and closing condition of first authority, and the method includes:
The first information of the terminal is obtained, the first information is for describing the terminal local environment
Information;
For the first of the first authority described in the first information and the terminal storage based on acquisition
Attribute, obtains control of authority strategy;
When determining to need to carry out first authority state adjustment according to the control of authority strategy, pin is performed
Operation is turned on and off to the first authority.
2. the control method of terminal authorization according to claim 1, it is characterised in that described based on acquisition
The first information and terminal storage the first attribute for the first authority, obtain control of authority strategy,
Including:
The first information for obtaining is compared with first attribute for being directed to the first authority, institute is judged
The opening and closing the condition whether first information meets first authority described by first attribute is stated,
And the current state of the first authority according to the terminal, judge whether to need to carry out shape to first authority
State is adjusted;
The control of authority strategy generated based on judged result, whether the control of authority policy depiction is to institute
Stating the first authority carries out state adjustment.
3. the control method of terminal authorization according to claim 2, it is characterised in that the first information
It is the temporal information and/or positional information of the terminal, the opening and closing condition of first authority is described
Permission time range and/or allow position range that first authority is opened and closed;
The first information by acquisition is compared with the first attribute for the first authority, judges the first letter
Whether breath meets the opening and closing condition of the first authority described by the first attribute, including:
The unlatching of temporal information and/or positional information with first authority of the terminal that will be obtained and pass
The condition of closing is compared, and judges whether the temporal information and/or positional information of the terminal belong to first power
Limit the permission time range and/or permission position range for opening and closing.
4. according to claim 1,2 or 3 terminal authorization control method, it is characterised in that holding
The hand-manipulating of needle to the first authority be turned on and off operation after, methods described also includes:
When the terminal is triggered produces the state adjust instruction for first authority, described the is judged
Whether one authority is configured with safety certification strategy, if configured with safety certification strategy, then based on the peace
After full certification policy execution safety certification passes through, performed to first authority by the state adjust instruction
State is adjusted;If being configured without safety certification strategy, performed to described the by the state adjust instruction
The state adjustment of one authority.
5. according to claim 1,2 or 3 terminal authorization control method, it is characterised in that in institute
Before stating the first information for obtaining terminal, methods described also includes:
When the terminal is triggered produces the first attribute to set instruction, being weighed for described first for setting is obtained
First attribute of limit;
Wherein, the mode for setting the first attribute for first authority is following at least one:
First authority is selected from the System Privileges and/or application permission of the terminal, and is described first
The corresponding opening and closing condition of priority assignation;Or,
After the opening and closing condition of authority is set, selected from the System Privileges and/or application permission of the terminal
Select the first authority described at least one of the execution opening and closing condition.
6. a kind of control system of terminal authorization, it is characterised in that the system includes:Initialization unit,
First information obtaining unit, strategy control unit and control of authority unit;
The initialization unit, for storing the first attribute for the first authority, first authority is at least
System Privileges and/or application permission including the terminal, first attribute are used to describe first authority
Opening and closing condition;
The first information obtaining unit, the first information for obtaining the terminal, the first information is
Information for describing the terminal local environment;
The strategy control unit, for based on the first information and the terminal storage for obtaining
First attribute for being directed to the first authority, obtains control of authority strategy, and in the control of authority Policy Table
Levy needs carries out notifying control of authority unit when state is adjusted to first authority;
The control of authority unit, the first authority is directed to for being performed according to the notice of the strategy control unit
Be turned on and off operation.
7. the control system of terminal authorization according to claim 6, it is characterised in that the policy control
Unit is based on first attribute for the first authority of the first information and terminal storage for obtaining, and is weighed
Limit control strategy, including:
The first information for obtaining is compared with first attribute for being directed to the first authority, institute is judged
The opening and closing the condition whether first information meets first authority described by first attribute is stated,
And the current state of the first authority according to the terminal, judge whether to need to carry out shape to first authority
State is adjusted;
The control of authority strategy generated based on judged result, whether the control of authority policy depiction is to institute
Stating the first authority carries out state adjustment.
8. the control system of terminal authorization according to claim 7, it is characterised in that the first information
It is the temporal information and/or positional information of the terminal, the opening and closing condition of first authority is described
Permission time range and/or allow position range that first authority is opened and closed;
With the first attribute for the first authority be compared the first information of acquisition by the strategy control unit,
Judge whether the first information meets the opening and closing condition of the first authority described by the first attribute, including:
The unlatching of temporal information and/or positional information with first authority of the terminal that will be obtained and pass
The condition of closing is compared, and judges whether the temporal information and/or positional information of the terminal belong to first power
Limit the permission time range and/or permission position range for opening and closing.
9. according to claim 6,7 or 8 terminal authorization control system, it is characterised in that it is described
Control of authority unit is further used for, when the generation that is triggered is directed to the state adjust instruction of first authority,
Judge whether first authority is configured with safety certification strategy, if configured with safety certification strategy, then exist
After being passed through based on the safety certification strategy execution safety certification, performed to described by the state adjust instruction
The state adjustment of the first authority;If being configured without safety certification strategy, held by the state adjust instruction
State adjustment of the row to first authority.
10. according to claim 6,7 or 8 terminal authorization control system, it is characterised in that it is described
System also includes setting unit, for when the first attribute of generation that is triggered sets instruction, setting for described in
First attribute of the first authority;
Wherein, the mode for setting the first attribute for first authority is following at least one:
First authority is selected from the System Privileges and/or application permission of the terminal, and is described first
The corresponding opening and closing condition of priority assignation;Or,
After the opening and closing condition of authority is set, selected from the System Privileges and/or application permission of the terminal
Select the first authority described at least one of the execution opening and closing condition.
Priority Applications (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201510443986.4A CN106709292A (en) | 2015-07-24 | 2015-07-24 | Terminal permission control method and system |
PCT/CN2016/073752 WO2017016211A1 (en) | 2015-07-24 | 2016-02-14 | Terminal right control method, system and storage medium |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201510443986.4A CN106709292A (en) | 2015-07-24 | 2015-07-24 | Terminal permission control method and system |
Publications (1)
Publication Number | Publication Date |
---|---|
CN106709292A true CN106709292A (en) | 2017-05-24 |
Family
ID=57885646
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201510443986.4A Withdrawn CN106709292A (en) | 2015-07-24 | 2015-07-24 | Terminal permission control method and system |
Country Status (2)
Country | Link |
---|---|
CN (1) | CN106709292A (en) |
WO (1) | WO2017016211A1 (en) |
Cited By (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN107465662A (en) * | 2017-07-04 | 2017-12-12 | 深信服科技股份有限公司 | Mobile terminal policy management method, mobile terminal and computer-readable recording medium |
CN107862201A (en) * | 2017-10-26 | 2018-03-30 | 深信服科技股份有限公司 | Authority control method, electric terminal and computer-readable recording medium |
CN108513007A (en) * | 2018-03-27 | 2018-09-07 | 维沃移动通信有限公司 | A kind of method and mobile terminal of control offline mode |
CN109005507A (en) * | 2018-09-26 | 2018-12-14 | 中国联合网络通信集团有限公司 | Control method, system and the terminal device of quiescing |
CN109145580A (en) * | 2018-08-31 | 2019-01-04 | 北京奇虎科技有限公司 | Software right management method, calculates equipment and computer storage medium at device |
CN111562535A (en) * | 2020-04-07 | 2020-08-21 | 国网上海市电力公司 | Coordination method and system for improving verification speed of electric energy meter |
Citations (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN102427492A (en) * | 2011-11-08 | 2012-04-25 | 华为终端有限公司 | Method and mobile device for automatically setting service function |
Family Cites Families (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN1633192A (en) * | 2003-12-25 | 2005-06-29 | 仁宝电脑工业股份有限公司 | Method and system for automatic management of situation mode for wireless portable electronic apparatus |
CN102137514A (en) * | 2010-01-25 | 2011-07-27 | 宏碁股份有限公司 | Method for determining call notification mode and portable communication device applying same |
CN101986677A (en) * | 2010-10-22 | 2011-03-16 | 浙江大学 | Position related mobile game operation limiting method |
-
2015
- 2015-07-24 CN CN201510443986.4A patent/CN106709292A/en not_active Withdrawn
-
2016
- 2016-02-14 WO PCT/CN2016/073752 patent/WO2017016211A1/en active Application Filing
Patent Citations (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN102427492A (en) * | 2011-11-08 | 2012-04-25 | 华为终端有限公司 | Method and mobile device for automatically setting service function |
Cited By (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN107465662A (en) * | 2017-07-04 | 2017-12-12 | 深信服科技股份有限公司 | Mobile terminal policy management method, mobile terminal and computer-readable recording medium |
CN107862201A (en) * | 2017-10-26 | 2018-03-30 | 深信服科技股份有限公司 | Authority control method, electric terminal and computer-readable recording medium |
CN108513007A (en) * | 2018-03-27 | 2018-09-07 | 维沃移动通信有限公司 | A kind of method and mobile terminal of control offline mode |
CN109145580A (en) * | 2018-08-31 | 2019-01-04 | 北京奇虎科技有限公司 | Software right management method, calculates equipment and computer storage medium at device |
CN109005507A (en) * | 2018-09-26 | 2018-12-14 | 中国联合网络通信集团有限公司 | Control method, system and the terminal device of quiescing |
CN111562535A (en) * | 2020-04-07 | 2020-08-21 | 国网上海市电力公司 | Coordination method and system for improving verification speed of electric energy meter |
Also Published As
Publication number | Publication date |
---|---|
WO2017016211A1 (en) | 2017-02-02 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN106709292A (en) | Terminal permission control method and system | |
US20200304999A1 (en) | Integrated physical and logical security management via a portable device | |
CN104050743B (en) | A kind of set up defences supervisory system and the method for gate control system | |
CN105608772B (en) | A kind of intelligent unlocking method and apparatus | |
CN104036195B (en) | Information processing method and device | |
DE102017106316B4 (en) | System for controlling a robot configured to perform a customer service task comprising a physical action at a deployment site | |
DE102017106293A1 (en) | Commands and controls for a robot through a contact center with external control | |
CN109067747A (en) | A kind of vehicle safety control method and server | |
CN104182704B (en) | The method to set up of security strategy, the setting device of security strategy and terminal | |
CN105631311A (en) | Application program authority management method and device as well as terminal | |
CN109712293A (en) | Control method, mobile terminal and the readable storage medium storing program for executing of smart lock | |
CN104539467A (en) | Terminal equipment management system and method based on cloud server | |
CN108171851A (en) | A kind of intelligent door lock system and control method with scanning function | |
CN109920114A (en) | A kind of control method for door lock and system based on geographical location | |
CN105812629A (en) | Camera system used for smart household appliance and control method thereof | |
CN108021802A (en) | A kind of system resource access control method, terminal and computer-readable recording medium | |
CN108537927A (en) | A kind of lockset terminal and district management control lockset terminal method | |
KR101640927B1 (en) | Method for providing door locking or unloking service | |
CN108710795A (en) | Information cuing method, device, mobile terminal and storage medium | |
CN105868648B (en) | Mobile terminal and data processing method and device for mobile terminal guest mode | |
CN106559399A (en) | A kind of the Internet mobile terminal synthesis managing and control system | |
CN107481471A (en) | Terminal alarms method, apparatus and computer-readable recording medium | |
CN108307463B (en) | Mode switching method, system and access control system | |
CN109493483A (en) | Intelligent lock system and alarm method, device, equipment, computer storage medium | |
CN107391982A (en) | A kind of method for managing user right and user authority management system based on intelligent terminal |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
WW01 | Invention patent application withdrawn after publication |
Application publication date: 20170524 |
|
WW01 | Invention patent application withdrawn after publication |