CN106709292A - Terminal permission control method and system - Google Patents

Terminal permission control method and system Download PDF

Info

Publication number
CN106709292A
CN106709292A CN201510443986.4A CN201510443986A CN106709292A CN 106709292 A CN106709292 A CN 106709292A CN 201510443986 A CN201510443986 A CN 201510443986A CN 106709292 A CN106709292 A CN 106709292A
Authority
CN
China
Prior art keywords
authority
terminal
information
attribute
control
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Withdrawn
Application number
CN201510443986.4A
Other languages
Chinese (zh)
Inventor
黄勤波
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
ZTE Corp
Original Assignee
ZTE Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by ZTE Corp filed Critical ZTE Corp
Priority to CN201510443986.4A priority Critical patent/CN106709292A/en
Priority to PCT/CN2016/073752 priority patent/WO2017016211A1/en
Publication of CN106709292A publication Critical patent/CN106709292A/en
Withdrawn legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Storage Device Security (AREA)
  • Lock And Its Accessories (AREA)

Abstract

The invention discloses a terminal permission control method. A terminal stores a first attribute for first permission; the first permission at least includes system permission and/or application permission of the terminal; and the first attribute is used for describing enable and disable conditions of the first permission. The method comprises the steps of obtaining first information of the terminal, wherein the first information is information used for describing an environment in which the terminal is located; based on the obtained first information and the first attribute, stored in the terminal, for the first permission, obtaining a permission control policy; and executing enable or disable operation for the first permission when it is determined that the first permission needs to be subjected to state adjustment according to the permission control policy.

Description

A kind of control method and system to terminal authorization
Technical field
The invention belongs to intelligent terminal field, more particularly to a kind of control method and system to terminal authorization.
Background technology
With developing rapidly for mobile Internet, intelligent terminal has been popularized, based on intelligent terminal it is various should With also more and more, these applications include:Office software, financing software, social software, Games Software etc. Deng.It is miscellaneous to apply while work, life and the communication way of people is greatly changed, In the deep user that annoyings, such as Working Life cannot be separated, and security incident takes place frequently etc..For example:User The System Privileges and/or application permission of the intelligent terminal for being used are not necessarily applied to all environment or occasion, Generally when user is in different environment, System Privileges and/or application permission to its intelligent terminal have not Same operates with authority limitation, and existing intelligent terminal cannot be according to the change of environment come automatic adaptability Adjust these authorities.
Therefore, how to be tried one's best raising security while functional diversity, the ease for use of intelligent terminal is ensured, Or preferably peace can be provided while with good diversity, the application of ease for use and correlation function Quan Xing, is technical problem urgently to be resolved hurrily at present.
The content of the invention
To solve existing technical problem, the embodiment of the present invention provides a kind of controlling party to terminal authorization Method and system.
A kind of control method to terminal authorization is the embodiment of the invention provides, is stored with the terminal and is directed to First attribute of the first authority, System Privileges and/or application power of first authority at least including the terminal Limit, first attribute is used to describe the opening and closing condition of first authority, and the method includes:
The first information of the terminal is obtained, the first information is for describing the terminal local environment Information;
For the first of the first authority described in the first information and the terminal storage based on acquisition Attribute, obtains control of authority strategy;
When determining to need to carry out first authority state adjustment according to the control of authority strategy, pin is performed Operation is turned on and off to the first authority.
In a feasible pattern, it is described based on obtain the first information and terminal storage for first power First attribute of limit, obtains control of authority strategy, including:
The first information for obtaining is compared with first attribute for being directed to the first authority, institute is judged The opening and closing the condition whether first information meets first authority described by first attribute is stated, And the current state of the first authority according to the terminal, judge whether to need to carry out shape to first authority State is adjusted;
The control of authority strategy generated based on judged result, whether the control of authority policy depiction is to institute Stating the first authority carries out state adjustment.
In a feasible pattern, the first information is the temporal information and/or positional information of the terminal, institute The opening and closing condition for stating the first authority be the permission time range that first authority is opened and closed and/ Or allow position range;
The first information by acquisition is compared with the first attribute for the first authority, judges the first letter Whether breath meets the opening and closing condition of the first authority described by the first attribute, including:
The unlatching of temporal information and/or positional information with first authority of the terminal that will be obtained and pass The condition of closing is compared, and judges whether the temporal information and/or positional information of the terminal belong to first power Limit the permission time range and/or permission position range for opening and closing.
In a feasible pattern, perform for the first authority be turned on and off operation after, methods described is also Including:
When the terminal is triggered produces the state adjust instruction for first authority, described the is judged Whether one authority is configured with safety certification strategy, if configured with safety certification strategy, then based on the peace After full certification policy execution safety certification passes through, performed to first authority by the state adjust instruction State is adjusted;If being configured without safety certification strategy, performed to described the by the state adjust instruction The state adjustment of one authority.
In a feasible pattern, before the first information of the acquisition terminal, methods described also includes:
When the terminal is triggered produces the first attribute to set instruction, being weighed for described first for setting is obtained First attribute of limit;
Wherein, the mode for setting the first attribute for first authority is following at least one:
First authority is selected from the System Privileges and/or application permission of the terminal, and is described first The corresponding opening and closing condition of priority assignation;Or,
After the opening and closing condition of authority is set, selected from the System Privileges and/or application permission of the terminal Select the first authority described at least one of the execution opening and closing condition.
The embodiment of the present invention additionally provides a kind of control system of terminal authorization, and the system includes:Initialization Unit, first information obtaining unit, strategy control unit and control of authority unit;
The initialization unit, for storing the first attribute for the first authority, first authority is at least System Privileges and/or application permission including the terminal, first attribute are used to describe first authority Opening and closing condition;
The first information obtaining unit, the first information for obtaining the terminal, the first information is Information for describing the terminal local environment;
The strategy control unit, for based on the first information and the terminal storage for obtaining First attribute for being directed to the first authority, obtains control of authority strategy, and in the control of authority Policy Table Levy needs carries out notifying control of authority unit when state is adjusted to first authority;
The control of authority unit, the first authority is directed to for being performed according to the notice of the strategy control unit Be turned on and off operation.
In a feasible pattern, the strategy control unit is based on the first information and the terminal storage for obtaining The first attribute for the first authority, obtain control of authority strategy, including:
The first information for obtaining is compared with first attribute for being directed to the first authority, institute is judged The opening and closing the condition whether first information meets first authority described by first attribute is stated, And the current state of the first authority according to the terminal, judge whether to need to carry out shape to first authority State is adjusted;
The control of authority strategy generated based on judged result, whether the control of authority policy depiction is to institute Stating the first authority carries out state adjustment.
In a feasible pattern, the first information is the temporal information and/or positional information of the terminal, institute The opening and closing condition for stating the first authority be the permission time range that first authority is opened and closed and/ Or allow position range;
With the first attribute for the first authority be compared the first information of acquisition by the strategy control unit, Judge whether the first information meets the opening and closing condition of the first authority described by the first attribute, including:
The unlatching of temporal information and/or positional information with first authority of the terminal that will be obtained and pass The condition of closing is compared, and judges whether the temporal information and/or positional information of the terminal belong to first power Limit the permission time range and/or permission position range for opening and closing.
In a feasible pattern, the control of authority unit is further used for, and is produced for described being triggered During the state adjust instruction of the first authority, judge whether first authority is configured with safety certification strategy, such as Fruit is configured with safety certification strategy, then after being passed through based on the safety certification strategy execution safety certification, press The state adjust instruction performs the state adjustment to first authority;If being configured without safety certification plan Slightly, then performed by the state adjust instruction and the state of first authority is adjusted.
In a feasible pattern, the system also includes setting unit, in the first attribute of generation that is triggered When instruction is set, the first attribute for first authority is set;
Wherein, the mode for setting the first attribute for first authority is following at least one:
First authority is selected from the System Privileges and/or application permission of the terminal, and is described first The corresponding opening and closing condition of priority assignation;Or,
After the opening and closing condition of authority is set, selected from the System Privileges and/or application permission of the terminal Select the first authority described at least one of the execution opening and closing condition.
A kind of control method and system to terminal authorization that the present invention is provided, by being the first priority assignation the One attribute, and the first information based on the intelligent terminal for obtaining, judge whether to need to carry out shape to the first authority State is adjusted, and when judging to need adjustment, be turned on and off the first authority by self adaptation.Thus, it is possible to Change being turned on and off come the authority of automatic accommodation first according to local environment, is ensureing intelligence Tried one's best while functional diversity, the ease for use of terminal raising security, or with good diversity, More preferable security can be provided while the application of ease for use and correlation function.
Brief description of the drawings
Fig. 1 is the control method schematic flow sheet to terminal authorization of the embodiment of the present invention one;
Fig. 2 is the structural representation of the control system to terminal authorization of the embodiment of the present invention two;
Fig. 3 is the control method schematic flow sheet to terminal authorization of the embodiment of the present invention three;
Fig. 4 is the control method schematic flow sheet to terminal authorization of the embodiment of the present invention four;
Fig. 5 is the control method schematic flow sheet to terminal authorization of the embodiment of the present invention five.
Specific embodiment
The technical solution of the present invention is further elaborated with specific embodiment below in conjunction with the accompanying drawings.
Embodiment one
A kind of control method to terminal authorization that the embodiment of the present invention one is provided, as shown in figure 1, wherein, The first attribute being stored with the terminal for the first authority, first authority at least includes the terminal System Privileges and/or application permission, first attribute is used to describe the opening and closing of first authority Condition;Methods described mainly includes:
Step 101, obtains the first information of the terminal, and the first information is for describing the terminal The information of local environment.
In the embodiment of the present invention, the System Privileges refer to intelligent terminal operating system (such as Android system, IOS, windows operating systems of apple etc.) various functions operate with authority, such as intelligence WLAN (wifi) authority, mobile data link authority, secure digital (SD, the Secure of energy terminal Digital) file of card deletes authority etc.;The application permission refers to the application journey of installation in intelligent terminal Sequence operates with authority, such as:Application program operates with authority, the behaviour of a certain function of application program Make access right etc..
In the embodiment of the present invention, intelligent terminal prestores the first attribute for the first authority, described first Attribute includes:Opening and closing condition for the System Privileges of intelligent terminal, and/or for intelligent terminal Opening and closing condition of application permission etc..Wherein, for intelligent terminal System Privileges unlatching and pass Condition is closed, such as:For intelligent terminal wifi using operating right opening and closing condition, for intelligence The file of the SD card of terminal deletes the opening and closing condition of authority, the camera function for intelligent terminal Opening and closing condition, the opening and closing condition of sound-recording function etc. for intelligent terminal;For intelligence The opening and closing condition of the application permission of terminal, such as:For intelligent terminal game class application unlatching and Closedown condition, for opening and closing condition of video call function in the social class application of intelligent terminal etc. Deng.
That is, first attribute for the first authority of the embodiment of the present invention is to pre-set and be stored in Intelligent terminal, the setting and the operation for preserving are before step 101, can specifically to include:
When the terminal is triggered produces the first attribute to set instruction, being weighed for described first for setting is obtained First attribute of limit;
Wherein, the mode for setting the first attribute for first authority is following at least one:
First authority is selected from the System Privileges and/or application permission of the terminal, and is described first The corresponding opening and closing condition of priority assignation;Or,
After the opening and closing condition of authority is set, selected from the System Privileges and/or application permission of the terminal Select the first authority described at least one of the execution opening and closing condition.
First attribute sets the physical button that instruction can be intelligent terminal and is triggered or virtual functional key When being triggered, produced by the intelligent terminal;After triggering produces the first attribute to set instruction, intelligence is eventually End provides the setting interface of the first attribute, and the selection of the first authority and its setting of the first attribute are carried out for user. The embodiment of the present invention is not limited the specific set-up mode or process of the first attribute, and provided above is only this Two kinds of embodiments of inventive embodiments, above two embodiment also may be used in combination.
Wherein, for selecting the first authority from the System Privileges and/or application permission of terminal, and it is the first power Limit sets corresponding this mode of opening and closing condition.For example:Select the mobile data of the intelligent terminal Link authority, and be the corresponding opening and closing condition of the mobile data link priority assignation;Again for example: The file of the SD card of the intelligent terminal is selected to delete authority, and for the file deletion authority of the SD card sets Put corresponding opening and closing condition;Also for example:The using for game class application of the intelligent terminal is selected to grasp Make authority, and for the use operating right of the game class application sets corresponding opening and closing condition;Again For example:The video call function in certain social class application of the intelligent terminal is selected, and is the social class Video call function in sets corresponding opening and closing condition.
For after the opening and closing condition for setting authority, being selected from the System Privileges and/or application permission of terminal Select at least one first this modes of authority for performing opening and closing condition.For example:Authority is set first Opening and closing condition, then reselection be applicable the authority of above-mentioned condition, the authority includes the text of SD card Part deletes the video call function in authority, the use operating right of certain game class application, certain social class application Etc..That is, the file of the above-mentioned SD card of selection deletes authority, using for certain game class application grasping Make the video call function in authority, certain social class application, be suitable for above-mentioned same opening and closing bar Part.
After setting and storing the first attribute for the first authority, intelligent terminal can periodic or non-week The acquisition of phase property is used to describe the first information of its local environment, and the first information can be intelligent terminal institute Temporal information residing for the positional information, or intelligent terminal at place, can also be ring residing for intelligent terminal The noise coefficient in border, is possibly even luminous intensity of intelligent terminal local environment etc..The embodiment of the present invention The type and content to the first information are not limited, and can be extended according to actual needs;Equally, originally Acquisition pattern of the inventive embodiments also not to the first information is limited, every suitable for the embodiment of the present invention First information acquisition pattern should belong to embodiment of the present invention scope of the claimed.
Step 102, based on obtain the first information and the terminal storage described in be directed to first First attribute of authority, obtains control of authority strategy.
In one embodiment, step 102 includes:
The first information for obtaining is compared with first attribute for being directed to the first authority, institute is judged The opening and closing the condition whether first information meets first authority described by first attribute is stated, And the current state of the first authority according to the terminal, judge whether to need to carry out shape to first authority State is adjusted;
The control of authority strategy generated based on judged result, whether the control of authority policy depiction is to institute Stating the first authority carries out state adjustment.
That is, judging that the first information meets the first power of the unlocking condition of the first authority and intelligent terminal When limit is currently opening, without state adjustment;Judge the first information meet the first authority unlocking condition, And the first authority of intelligent terminal currently be closed mode when, it is necessary to state adjust;Judge that the first information meets , it is necessary to state is adjusted when the closedown condition of the first authority and the first authority of intelligent terminal are currently opening It is whole;Judge that the first information meets the first authority of the closedown condition of the first authority and intelligent terminal currently to close During closed state, without state adjustment.
In addition, in one embodiment, the first information can be temporal information and/or the position of the terminal Confidence ceases, when the opening and closing condition of first authority is the permission that first authority is opened and closed Between scope and/or allow position range;
The first information by acquisition is compared with the first attribute for the first authority, judges the first letter Whether breath meets the opening and closing condition of the first authority described by the first attribute, including:
The unlatching of temporal information and/or positional information with first authority of the terminal that will be obtained and pass The condition of closing is compared, and judges whether the temporal information and/or positional information of the terminal belong to first power Limit the permission time range and/or permission position range for opening and closing.
That is, when judging that the temporal information and/or positional information of terminal belong to the permission of the first authority unlatching Between scope and/or when allowing the first authority of position range and intelligent terminal to be currently opening, without shape State is adjusted;Judge that the temporal information and/or positional information of terminal belong to the permission time range of the first authority unlatching And/or, it is necessary to state is adjusted when to allow the first authority of position range and intelligent terminal be currently closed mode; Judge that the temporal information and/or positional information of terminal belong to the permission time range of the first authority closing and/or permit Perhaps, it is necessary to state is adjusted when the first authority of position range and intelligent terminal is currently opening;Judge The temporal information and/or positional information of terminal belong to the permission time range of the first authority closing and/or allow position When the first authority for putting scope and intelligent terminal is currently closed mode, without state adjustment.
Step 103, determines to need to carry out state adjustment to first authority according to the control of authority strategy When, perform and be turned on and off operation for the first authority.
According to control of authority strategy, when it is determined that needing to close the first authority, perform for the first power The shutoff operation of limit;When it is determined that needing to open the first authority, the unlatching for the first authority is performed Operation.Wherein, for the opening and closing operational control of System Privileges and/or application permission, the present invention is implemented Example is not limited, and any control mode suitable for the embodiment of the present invention in practical application should belong to this Inventive embodiments scope of the claimed.
In one embodiment, perform for the first authority be turned on and off operation after, methods described is also Including:
When the terminal is triggered produces the state adjust instruction for first authority, described the is judged Whether one authority is configured with safety certification strategy, if configured with safety certification strategy, then based on the peace After full certification policy execution safety certification passes through, performed to first authority by the state adjust instruction State is adjusted;If being configured without safety certification strategy, performed to described the by the state adjust instruction The state adjustment of one authority.
That is, the embodiment of the present invention is also supported to manually adjust the first rights state, when user's triggering When manual state adjustment is carried out to certain first authority, intelligent terminal produces the state for first authority Adjust instruction;If intelligent terminal is provided with the safety adjusted for the first authority manual mode in advance recognized Card strategy, then need after certification passes through, and could press adjust instruction execution and the state of first authority is adjusted It is whole;If intelligent terminal is configured without the safety certification plan for the first authority manual mode adjustment in advance Slightly, then state adjustment of the adjust instruction execution to first authority can be pressed without certification.Wherein, intelligence Terminal can provide the operation interface of safety certification, and the input of information is authenticated for user, to be collected complete After the authentication information of user input, the authentication information based on user input carries out safety certification.
Embodiment two
The control method of the terminal authorization of the correspondence embodiment of the present invention, the embodiment of the present invention two additionally provides one kind The control system of terminal authorization, as shown in figure 5, the system includes:The initialization unit 10, first information Obtaining unit 20, strategy control unit 30 and control of authority unit 40;Wherein,
The initialization unit 10, for storing the first attribute for the first authority, first authority is extremely Include the System Privileges and/or application permission of the terminal less, first attribute is used to describe first power The opening and closing condition of limit;
The first information obtaining unit 20, the first information for obtaining the terminal, the first information It is the information for describing the terminal local environment;
The strategy control unit 30, for based on the first information and the terminal storage for obtaining First attribute for being directed to the first authority, control of authority strategy is obtained, and in the control of authority strategy Characterizing needs that first authority is carried out to notify control of authority unit 40 when state is adjusted;
The control of authority unit 40, for being performed for the according to the notice of the strategy control unit 30 One authority be turned on and off operation.
In one embodiment, the system also includes setting unit 50, for belonging in the generation first that is triggered Property set instruction when, set for first authority the first attribute;
Wherein, the mode for setting the first attribute for first authority is following at least one:
First authority is selected from the System Privileges and/or application permission of the terminal, and is described first The corresponding opening and closing condition of priority assignation;Or,
After the opening and closing condition of authority is set, selected from the System Privileges and/or application permission of the terminal Select the first authority described at least one of the execution opening and closing condition.
First attribute sets the physical button that instruction can be intelligent terminal and is triggered or virtual functional key When being triggered, produced by the setting unit 50 of the intelligent terminal;Produce the first attribute to set in triggering to refer to After order, the setting unit 50 of intelligent terminal provides the setting interface of the first attribute, and the first authority is carried out for user Selection and its first attribute setting.The embodiment of the present invention is not to the specific set-up mode or mistake of the first attribute Cheng Jinhang is limited, and provided above is only two kinds of embodiments of the embodiment of the present invention, and above two can be implemented Mode also may be used in combination.
In one embodiment, the strategy control unit 30 is based on the first information for obtaining and terminal is deposited First attribute for the first authority of storage, obtains control of authority strategy, including:
The first information for obtaining is compared with first attribute for being directed to the first authority, institute is judged The opening and closing the condition whether first information meets first authority described by first attribute is stated, And the current state of the first authority according to the terminal, judge whether to need to carry out shape to first authority State is adjusted;
The control of authority strategy generated based on judged result, whether the control of authority policy depiction is to institute Stating the first authority carries out state adjustment.
That is, judging that the first information meets the first power of the unlocking condition of the first authority and intelligent terminal When limit is currently opening, without state adjustment;Judge the first information meet the first authority unlocking condition, And the first authority of intelligent terminal currently be closed mode when, it is necessary to state adjust;Judge that the first information meets , it is necessary to state is adjusted when the closedown condition of the first authority and the first authority of intelligent terminal are currently opening It is whole;Judge that the first information meets the first authority of the closedown condition of the first authority and intelligent terminal currently to close During closed state, without state adjustment.
In one embodiment, the first information is the temporal information and/or positional information of the terminal, institute The opening and closing condition for stating the first authority be the permission time range that first authority is opened and closed and/ Or allow position range;
The strategy control unit 30 carries out the first information of acquisition with the first attribute for the first authority Compare, judge whether the first information meets the opening and closing condition of the first authority described by the first attribute, Including:
The unlatching of temporal information and/or positional information with first authority of the terminal that will be obtained and pass The condition of closing is compared, and judges whether the temporal information and/or positional information of the terminal belong to first power Limit the permission time range and/or permission position range for opening and closing.
That is, when judging that the temporal information and/or positional information of terminal belong to the permission of the first authority unlatching Between scope and/or when allowing the first authority of position range and intelligent terminal to be currently opening, without shape State is adjusted;Judge that the temporal information and/or positional information of terminal belong to the permission time range of the first authority unlatching And/or, it is necessary to state is adjusted when to allow the first authority of position range and intelligent terminal be currently closed mode; Judge that the temporal information and/or positional information of terminal belong to the permission time range of the first authority closing and/or permit Perhaps, it is necessary to state is adjusted when the first authority of position range and intelligent terminal is currently opening;Judge The temporal information and/or positional information of terminal belong to the permission time range of the first authority closing and/or allow position When the first authority for putting scope and intelligent terminal is currently closed mode, without state adjustment.
In one embodiment, the control of authority unit 40 is further used for, and is produced for institute being triggered When stating the state adjust instruction of the first authority, judge whether first authority is configured with safety certification strategy, If configured with safety certification strategy, then after being passed through based on the safety certification strategy execution safety certification, Performed by the state adjust instruction and the state of first authority is adjusted;If being configured without safety certification Strategy, then performed by the state adjust instruction and the state of first authority adjusted.
That is, the embodiment of the present invention is also supported to manually adjust the first rights state, when user's triggering When manual state adjustment is carried out to certain first authority, the control of authority unit 40 of intelligent terminal is produced and is directed to institute State the state adjust instruction of the first authority;If the setting unit 50 of intelligent terminal is previously provided with for described First authority manual mode adjustment safety certification strategy, then control of authority unit 40 need after certification passes through, State adjustment of the adjust instruction execution to first authority could be pressed;If the setting unit 50 of intelligent terminal The safety certification strategy for the first authority manual mode adjustment is not provided with advance, then control of authority list Unit 40 can press state adjustment of the adjust instruction execution to first authority without certification.Wherein, intelligence is whole End can provide the operation interface of safety certification, and the input of information, complete use to be collected are authenticated for user After the authentication information of family input, the authentication information based on user input carries out safety certification.
The embodiments of the present invention, by being first the first attribute of priority assignation, and based on the intelligence for obtaining eventually The first information at end, judges whether to need to carry out the first authority state adjustment, and when judging to need adjustment, Be turned on and off first authority by self adaptation.The intelligent terminal of the embodiment of the present invention can be according to local environment Change carry out automatic accommodation first authority and be turned on and off so that, ensureing intelligent terminal Tried one's best while functional diversity, ease for use raising security, or with good diversity, easy-to-use More preferable security can be provided while the application of property and correlation function.
It should be noted that the first information of the embodiment of the present invention is used to describe the environment letter residing for intelligent terminal Breath, can be the location of intelligent terminal information, or the temporal information residing for intelligent terminal, also Can be the noise coefficient of intelligent terminal local environment, be possibly even the light intensity of intelligent terminal local environment Degree etc..The embodiment of the present invention is not limited the type and content of the first information, can be according to actual need It is extended;Equally, acquisition pattern of the embodiment of the present invention also not to the first information is limited, every Suitable for the first information acquisition pattern of the embodiment of the present invention, should to belong to the embodiment of the present invention claimed Scope.
Below so that the first information is the location of terminal information and/or temporal information as an example, the present invention is implemented The control method to terminal authorization of example is further elaborated on.
Embodiment three
In view of in actual applications, terminal user in different geographical position, such as in workplace, family Front yard place or strange position, unlatching and/or closing demand to System Privileges and/or application permission in terminal are Different;Also, unlatching and/or closing custom of the terminal user to terminal system authority and/or application permission Having certain rule can be followed, i.e. authority of the terminal user generally in same position region is opened and/or closed Custom is identical;Application is so adaptively adjusted according to the rule and system operates with authority, can be with The many manually operated of user is saved, user time, lifting operation experience is saved.
The control method of the terminal authorization based on geographical position change of the embodiment of the present invention three, as shown in figure 3, The method mainly includes:
Step 301, initiation parameter configuration.
The configurating terminal user often position range of activity, automatic control of authority switch, automatic control of authority The relevant parameters such as involved application, complete to be set for the first attribute of the first authority.
After setting and preserving the first attribute (the opening and closing condition of the first authority) for the first authority, Above-mentioned parameter configuration is initialized.That is, by after the initialization, terminal can be informed in Positioned at where in the range of when which authority should belong to the state of being turned on and off.
Step 302, terminal monitoring change in location.
In the embodiment of the present invention, can be demarcated using the basic function for combining the terminals such as map, position positioning The position reference reference point of automatic encryption, position range is determined on the basis of reference point by effective radius, Position range can be the region in effective radius, or the region outside radius, or multiple areas The union or common factor in domain.Certainly, also can be real using the method for other monitoring position of terminal scopes, the present invention Apply example and do not do and illustrate one by one.
Whether step 303, the manual binding authority of terminal judges, in this way, goes to step 308, such as no, goes to Step 304.
I.e. whether terminal judges are triggered and produce the state adjust instruction (manually adjusting) of authority, in this way, go to Step 308, it is such as no, go to step 304.
Step 304~305, the currently used authority of monitor terminal judges whether authority meets the current institute of terminal The position range at place, in this way, goes to step 309, such as no, goes to step 306.
That is monitor terminal currently used authority is turned on and off state, if the position being presently in terminal The requirement for putting the rights state corresponding to scope is consistent, if be consistent, goes to step 309, if do not corresponded, Go to step 306.For example:It is required that terminal user's Administrative Area close take pictures and sound-recording function, other when Between open and take pictures and sound-recording function, then the power for being changed by monitoring position of terminal and being taken pictures with sound-recording function Whether limit, judges the position range that terminal the is presently in state phase taken pictures with sound-recording function current with terminal Symbol.
Step 306, calculates control of authority strategy, will the position range that is presently in of terminal it is initial with above-mentioned The parameter of change is compared, and with the authority of the adjustment that determines to be currently needed for doing well, and is generated accordingly with this Control of authority strategy.
Step 307, judges whether to need automatic authority to limit, and in this way, goes to step 308, such as no, goes to Step 309.
I.e. whether terminal judges currently need to be limited based on the automatic authority of the control of authority strategy execution.
Step 308, as needed binding authority.
The step of being gone to for step 303 308, terminal is according to the manually operated execution of user to corresponding authority State adjustment;
The step of being gone to for step 307 308, terminal is according to control of authority strategy execution to corresponding authority State is adjusted.
Example IV
In view of in actual applications, terminal user is right in different time ranges, such as daytime, night The unlatching of System Privileges and/or application permission in terminal and/or closing demand are different;Also, terminal makes User is to the unlatching of terminal system authority and/or application permission and/or closing custom has certain rule can to follow, I.e. terminal user is generally opened in the authority of same time range and/or closing custom is identical;So basis should Rule come be adaptively adjusted application and system many manual behaviour for operating with authority, user being saved Make, save user time, lifting operation experience.
The control method of the terminal authorization based on geographical position change of the embodiment of the present invention four, as shown in figure 4, The method mainly includes:
Step 401, initiation parameter configuration.
The time range of configurating terminal user, automatic control of authority switch, involved by automatic control of authority Using etc. relevant parameter, complete for the first authority the first attribute set.
After setting and preserving the first attribute (the opening and closing condition of the first authority) for the first authority, Above-mentioned parameter configuration is initialized.That is, by after the initialization, terminal can be informed in Positioned at when in the range of when which authority should belong to the state of being turned on and off.
Step 402, terminal monitoring time change.
Whether step 403, the manual binding authority of terminal judges, in this way, goes to step 408, such as no, goes to Step 404.
I.e. whether terminal judges are triggered and produce the state adjust instruction (manually adjusting) of authority, in this way, go to Step 408, it is such as no, go to step 404.
Step 404~405, the currently used authority of monitor terminal judges whether authority meets the current institute of terminal The time range at place, in this way, goes to step 409, such as no, goes to step 406.
That is monitor terminal currently used authority is turned on and off state, if with terminal be presently in when Between the requirement of rights state corresponding to scope be consistent, if be consistent, go to step 409, if do not corresponded, Go to step 406.For example:It is required that terminal is closed in user's work hours take pictures and sound-recording function, other when Between open and take pictures and sound-recording function, then by monitoring terminal time change and the power taken pictures with sound-recording function Whether limit, judges the time range that terminal the is presently in state phase taken pictures with sound-recording function current with terminal Symbol.
Step 406, calculates control of authority strategy, will the time range that is presently in of terminal it is initial with above-mentioned The parameter of change is compared, and with the authority of the adjustment that determines to be currently needed for doing well, and is generated accordingly with this Control of authority strategy.
Step 407, judges whether to need automatic authority to limit, and in this way, goes to step 408, such as no, goes to Step 409.
I.e. whether terminal judges currently need to be limited based on the automatic authority of the control of authority strategy execution.
Step 408, as needed binding authority.
The step of being gone to for step 403 408, terminal is according to the manually operated execution of user to corresponding authority State adjustment;
The step of being gone to for step 407 408, terminal is according to control of authority strategy execution to corresponding authority State is adjusted.
Step 409, every authority of normal using terminal.
Embodiment five
In view of in actual applications, terminal user in different time and position range, in terminal The unlatching of System Privileges and/or application permission and/or closing demand are different;Also, terminal user is to end The unlatching of end system authority and/or application permission and/or closing custom has certain rule can to follow, i.e., terminal makes (i.e. terminal user would generally scope at a fixed time generally in same time range and position range for user Activity has certain rule to follow in specific position range, and such as working time, in unit, comes off duty and exist later Family in) authority open and/or close custom it is identical;So be adaptively adjusted according to the rule application and System operates with authority, can save user many manually operated, saves user time, lifting behaviour Experience.
The control method of the terminal authorization based on geographical position change of the embodiment of the present invention five, as shown in figure 5, The method mainly includes:
Step 501, initiation parameter configuration.
The time range of configurating terminal user, moving position scope, automatic control of authority switch, automatic power The relevant parameters such as the application involved by limit control, complete to be set for the first attribute of the first authority.
After setting and preserving the first attribute (the opening and closing condition of the first authority) for the first authority, Above-mentioned parameter configuration is initialized.That is, by after the initialization, terminal can be informed in Positioned at when scope, in position range when which authority should belong to the state of being turned on and off.
Step 502, terminal monitoring position and time change.
Whether step 503, the manual binding authority of terminal judges, in this way, goes to step 509, such as no, goes to Step 504.
I.e. whether terminal judges are triggered and produce the state adjust instruction (manually adjusting) of authority, in this way, go to Step 509, it is such as no, go to step 504.
Step 504~505, the currently used authority of monitor terminal judges whether authority meets the current institute of terminal The time range at place, in this way, goes to step 506, such as no, goes to step 507.
That is monitor terminal currently used authority is turned on and off state, if with terminal be presently in when Between the requirement of rights state corresponding to scope be consistent, if be consistent, go to step 506, if do not corresponded, Go to step 507.
Step 506, judges whether authority meets the position range that terminal is presently in, and in this way, goes to step 510, it is such as no, go to step 507.
That is monitor terminal currently used authority is turned on and off state, if the position being presently in terminal The requirement for putting the rights state corresponding to scope is consistent, if be consistent, goes to step 510, if do not corresponded, Go to step 507.
Step 507, calculates control of authority strategy, will the terminal time range, the position range that are presently in Parameter with above-mentioned initialization is compared, with the authority of the adjustment that determines to be currently needed for doing well, and with this Generate corresponding control of authority strategy.
Step 508, judges whether to need automatic authority to limit, and in this way, goes to step 509, such as no, goes to Step 510.
I.e. whether terminal judges currently need to be limited based on the automatic authority of the control of authority strategy execution.
Step 509, as needed binding authority.
The step of being gone to for step 503 509, terminal is according to the manually operated execution of user to corresponding authority State adjustment;The authority especially sensitive for user, if manually adjusting state, can carry out user's body Part authentification of message, to ensure security.
The step of being gone to for step 508 509, terminal is according to control of authority strategy execution to corresponding authority State is adjusted.
Step 510, every authority of normal using terminal.
It should be noted that step 505 and 506 execution sequence can also be overturned in practical application, i.e., first Judge whether authority meets the position range that terminal is presently in, then judge whether authority meets the current institute of terminal The time range at place.
In sum, the embodiment of the present invention is by being first the first attribute of priority assignation, and the intelligence based on acquisition The first information of energy terminal, judges whether to need to carry out the first authority state adjustment, and is judging to need to adjust When whole, be turned on and off the first authority by self adaptation.The intelligent terminal of the embodiment of the present invention can be according to institute The change of place's environment carrys out being turned on and off for the authority of automatic accommodation first, so that, ensureing intelligence Tried one's best while functional diversity, the ease for use of terminal raising security, or with good diversity, More preferable security can be provided while the application of ease for use and correlation function.
It should be understood by those skilled in the art that, embodiments of the invention can be provided as method, system or meter Calculation machine program product.Therefore, the present invention can using hardware embodiment, software implementation or combine software and The form of the embodiment of hardware aspect.And, the present invention can be used and wherein include calculating at one or more Computer-usable storage medium (the including but not limited to magnetic disk storage and optical storage of machine usable program code Device etc.) on implement computer program product form.
The present invention is with reference to method according to embodiments of the present invention, equipment (system) and computer program product Flow chart and/or block diagram describe.It should be understood that flow chart and/or side can be realized by computer program instructions The knot of flow in each flow and/or square frame and flow chart and/or block diagram and/or square frame in block diagram Close.Can provide these computer program instructions to all-purpose computer, special-purpose computer, Embedded Processor or The processor of other programmable data processing devices is producing a machine so that by computer or other can The instruction of the computing device of programming data processing equipment is produced for realizing in one flow of flow chart or multiple The device of the function of being specified in one square frame of flow and/or block diagram or multiple square frames.
These computer program instructions may be alternatively stored in can guide computer or other programmable data processing devices In the computer-readable memory for working in a specific way so that storage is in the computer-readable memory Instruction is produced includes the manufacture of command device, and the command device is realized in one flow of flow chart or multiple streams The function of being specified in one square frame of journey and/or block diagram or multiple square frames.
These computer program instructions can be also loaded into computer or other programmable data processing devices, made Obtain and series of operation steps performed on computer or other programmable devices to produce computer implemented treatment, So as to the instruction performed on computer or other programmable devices is provided for realizing in one flow of flow chart Or specified in multiple one square frame of flow and/or block diagram or multiple square frames function the step of.
The above, only presently preferred embodiments of the present invention is not intended to limit protection model of the invention Enclose.

Claims (10)

1. a kind of control method to terminal authorization, it is characterised in that be stored with for first in the terminal First attribute of authority, first authority at least System Privileges and/or application permission including the terminal, First attribute is used to describe the opening and closing condition of first authority, and the method includes:
The first information of the terminal is obtained, the first information is for describing the terminal local environment Information;
For the first of the first authority described in the first information and the terminal storage based on acquisition Attribute, obtains control of authority strategy;
When determining to need to carry out first authority state adjustment according to the control of authority strategy, pin is performed Operation is turned on and off to the first authority.
2. the control method of terminal authorization according to claim 1, it is characterised in that described based on acquisition The first information and terminal storage the first attribute for the first authority, obtain control of authority strategy, Including:
The first information for obtaining is compared with first attribute for being directed to the first authority, institute is judged The opening and closing the condition whether first information meets first authority described by first attribute is stated, And the current state of the first authority according to the terminal, judge whether to need to carry out shape to first authority State is adjusted;
The control of authority strategy generated based on judged result, whether the control of authority policy depiction is to institute Stating the first authority carries out state adjustment.
3. the control method of terminal authorization according to claim 2, it is characterised in that the first information It is the temporal information and/or positional information of the terminal, the opening and closing condition of first authority is described Permission time range and/or allow position range that first authority is opened and closed;
The first information by acquisition is compared with the first attribute for the first authority, judges the first letter Whether breath meets the opening and closing condition of the first authority described by the first attribute, including:
The unlatching of temporal information and/or positional information with first authority of the terminal that will be obtained and pass The condition of closing is compared, and judges whether the temporal information and/or positional information of the terminal belong to first power Limit the permission time range and/or permission position range for opening and closing.
4. according to claim 1,2 or 3 terminal authorization control method, it is characterised in that holding The hand-manipulating of needle to the first authority be turned on and off operation after, methods described also includes:
When the terminal is triggered produces the state adjust instruction for first authority, described the is judged Whether one authority is configured with safety certification strategy, if configured with safety certification strategy, then based on the peace After full certification policy execution safety certification passes through, performed to first authority by the state adjust instruction State is adjusted;If being configured without safety certification strategy, performed to described the by the state adjust instruction The state adjustment of one authority.
5. according to claim 1,2 or 3 terminal authorization control method, it is characterised in that in institute Before stating the first information for obtaining terminal, methods described also includes:
When the terminal is triggered produces the first attribute to set instruction, being weighed for described first for setting is obtained First attribute of limit;
Wherein, the mode for setting the first attribute for first authority is following at least one:
First authority is selected from the System Privileges and/or application permission of the terminal, and is described first The corresponding opening and closing condition of priority assignation;Or,
After the opening and closing condition of authority is set, selected from the System Privileges and/or application permission of the terminal Select the first authority described at least one of the execution opening and closing condition.
6. a kind of control system of terminal authorization, it is characterised in that the system includes:Initialization unit, First information obtaining unit, strategy control unit and control of authority unit;
The initialization unit, for storing the first attribute for the first authority, first authority is at least System Privileges and/or application permission including the terminal, first attribute are used to describe first authority Opening and closing condition;
The first information obtaining unit, the first information for obtaining the terminal, the first information is Information for describing the terminal local environment;
The strategy control unit, for based on the first information and the terminal storage for obtaining First attribute for being directed to the first authority, obtains control of authority strategy, and in the control of authority Policy Table Levy needs carries out notifying control of authority unit when state is adjusted to first authority;
The control of authority unit, the first authority is directed to for being performed according to the notice of the strategy control unit Be turned on and off operation.
7. the control system of terminal authorization according to claim 6, it is characterised in that the policy control Unit is based on first attribute for the first authority of the first information and terminal storage for obtaining, and is weighed Limit control strategy, including:
The first information for obtaining is compared with first attribute for being directed to the first authority, institute is judged The opening and closing the condition whether first information meets first authority described by first attribute is stated, And the current state of the first authority according to the terminal, judge whether to need to carry out shape to first authority State is adjusted;
The control of authority strategy generated based on judged result, whether the control of authority policy depiction is to institute Stating the first authority carries out state adjustment.
8. the control system of terminal authorization according to claim 7, it is characterised in that the first information It is the temporal information and/or positional information of the terminal, the opening and closing condition of first authority is described Permission time range and/or allow position range that first authority is opened and closed;
With the first attribute for the first authority be compared the first information of acquisition by the strategy control unit, Judge whether the first information meets the opening and closing condition of the first authority described by the first attribute, including:
The unlatching of temporal information and/or positional information with first authority of the terminal that will be obtained and pass The condition of closing is compared, and judges whether the temporal information and/or positional information of the terminal belong to first power Limit the permission time range and/or permission position range for opening and closing.
9. according to claim 6,7 or 8 terminal authorization control system, it is characterised in that it is described Control of authority unit is further used for, when the generation that is triggered is directed to the state adjust instruction of first authority, Judge whether first authority is configured with safety certification strategy, if configured with safety certification strategy, then exist After being passed through based on the safety certification strategy execution safety certification, performed to described by the state adjust instruction The state adjustment of the first authority;If being configured without safety certification strategy, held by the state adjust instruction State adjustment of the row to first authority.
10. according to claim 6,7 or 8 terminal authorization control system, it is characterised in that it is described System also includes setting unit, for when the first attribute of generation that is triggered sets instruction, setting for described in First attribute of the first authority;
Wherein, the mode for setting the first attribute for first authority is following at least one:
First authority is selected from the System Privileges and/or application permission of the terminal, and is described first The corresponding opening and closing condition of priority assignation;Or,
After the opening and closing condition of authority is set, selected from the System Privileges and/or application permission of the terminal Select the first authority described at least one of the execution opening and closing condition.
CN201510443986.4A 2015-07-24 2015-07-24 Terminal permission control method and system Withdrawn CN106709292A (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
CN201510443986.4A CN106709292A (en) 2015-07-24 2015-07-24 Terminal permission control method and system
PCT/CN2016/073752 WO2017016211A1 (en) 2015-07-24 2016-02-14 Terminal right control method, system and storage medium

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201510443986.4A CN106709292A (en) 2015-07-24 2015-07-24 Terminal permission control method and system

Publications (1)

Publication Number Publication Date
CN106709292A true CN106709292A (en) 2017-05-24

Family

ID=57885646

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201510443986.4A Withdrawn CN106709292A (en) 2015-07-24 2015-07-24 Terminal permission control method and system

Country Status (2)

Country Link
CN (1) CN106709292A (en)
WO (1) WO2017016211A1 (en)

Cited By (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107465662A (en) * 2017-07-04 2017-12-12 深信服科技股份有限公司 Mobile terminal policy management method, mobile terminal and computer-readable recording medium
CN107862201A (en) * 2017-10-26 2018-03-30 深信服科技股份有限公司 Authority control method, electric terminal and computer-readable recording medium
CN108513007A (en) * 2018-03-27 2018-09-07 维沃移动通信有限公司 A kind of method and mobile terminal of control offline mode
CN109005507A (en) * 2018-09-26 2018-12-14 中国联合网络通信集团有限公司 Control method, system and the terminal device of quiescing
CN109145580A (en) * 2018-08-31 2019-01-04 北京奇虎科技有限公司 Software right management method, calculates equipment and computer storage medium at device
CN111562535A (en) * 2020-04-07 2020-08-21 国网上海市电力公司 Coordination method and system for improving verification speed of electric energy meter

Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102427492A (en) * 2011-11-08 2012-04-25 华为终端有限公司 Method and mobile device for automatically setting service function

Family Cites Families (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1633192A (en) * 2003-12-25 2005-06-29 仁宝电脑工业股份有限公司 Method and system for automatic management of situation mode for wireless portable electronic apparatus
CN102137514A (en) * 2010-01-25 2011-07-27 宏碁股份有限公司 Method for determining call notification mode and portable communication device applying same
CN101986677A (en) * 2010-10-22 2011-03-16 浙江大学 Position related mobile game operation limiting method

Patent Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102427492A (en) * 2011-11-08 2012-04-25 华为终端有限公司 Method and mobile device for automatically setting service function

Cited By (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107465662A (en) * 2017-07-04 2017-12-12 深信服科技股份有限公司 Mobile terminal policy management method, mobile terminal and computer-readable recording medium
CN107862201A (en) * 2017-10-26 2018-03-30 深信服科技股份有限公司 Authority control method, electric terminal and computer-readable recording medium
CN108513007A (en) * 2018-03-27 2018-09-07 维沃移动通信有限公司 A kind of method and mobile terminal of control offline mode
CN109145580A (en) * 2018-08-31 2019-01-04 北京奇虎科技有限公司 Software right management method, calculates equipment and computer storage medium at device
CN109005507A (en) * 2018-09-26 2018-12-14 中国联合网络通信集团有限公司 Control method, system and the terminal device of quiescing
CN111562535A (en) * 2020-04-07 2020-08-21 国网上海市电力公司 Coordination method and system for improving verification speed of electric energy meter

Also Published As

Publication number Publication date
WO2017016211A1 (en) 2017-02-02

Similar Documents

Publication Publication Date Title
CN106709292A (en) Terminal permission control method and system
US20200304999A1 (en) Integrated physical and logical security management via a portable device
CN104050743B (en) A kind of set up defences supervisory system and the method for gate control system
CN105608772B (en) A kind of intelligent unlocking method and apparatus
CN104036195B (en) Information processing method and device
DE102017106316B4 (en) System for controlling a robot configured to perform a customer service task comprising a physical action at a deployment site
DE102017106293A1 (en) Commands and controls for a robot through a contact center with external control
CN109067747A (en) A kind of vehicle safety control method and server
CN104182704B (en) The method to set up of security strategy, the setting device of security strategy and terminal
CN105631311A (en) Application program authority management method and device as well as terminal
CN109712293A (en) Control method, mobile terminal and the readable storage medium storing program for executing of smart lock
CN104539467A (en) Terminal equipment management system and method based on cloud server
CN108171851A (en) A kind of intelligent door lock system and control method with scanning function
CN109920114A (en) A kind of control method for door lock and system based on geographical location
CN105812629A (en) Camera system used for smart household appliance and control method thereof
CN108021802A (en) A kind of system resource access control method, terminal and computer-readable recording medium
CN108537927A (en) A kind of lockset terminal and district management control lockset terminal method
KR101640927B1 (en) Method for providing door locking or unloking service
CN108710795A (en) Information cuing method, device, mobile terminal and storage medium
CN105868648B (en) Mobile terminal and data processing method and device for mobile terminal guest mode
CN106559399A (en) A kind of the Internet mobile terminal synthesis managing and control system
CN107481471A (en) Terminal alarms method, apparatus and computer-readable recording medium
CN108307463B (en) Mode switching method, system and access control system
CN109493483A (en) Intelligent lock system and alarm method, device, equipment, computer storage medium
CN107391982A (en) A kind of method for managing user right and user authority management system based on intelligent terminal

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
WW01 Invention patent application withdrawn after publication

Application publication date: 20170524

WW01 Invention patent application withdrawn after publication