CN106855921A - Application rights management method when being run based on embedded television service-Engine Web - Google Patents
Application rights management method when being run based on embedded television service-Engine Web Download PDFInfo
- Publication number
- CN106855921A CN106855921A CN201510906170.0A CN201510906170A CN106855921A CN 106855921 A CN106855921 A CN 106855921A CN 201510906170 A CN201510906170 A CN 201510906170A CN 106855921 A CN106855921 A CN 106855921A
- Authority
- CN
- China
- Prior art keywords
- web
- application
- runtime
- user
- authority
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000007726 management method Methods 0.000 title claims abstract description 17
- 238000009434 installation Methods 0.000 claims abstract description 53
- 230000004044 response Effects 0.000 claims abstract description 24
- 238000000034 method Methods 0.000 claims abstract description 15
- 230000006837 decompression Effects 0.000 claims abstract description 10
- 238000001629 sign test Methods 0.000 claims abstract description 10
- 238000012795 verification Methods 0.000 claims description 3
- 238000012360 testing method Methods 0.000 claims description 2
- 230000004224 protection Effects 0.000 abstract description 7
- 238000005516 engineering process Methods 0.000 description 2
- 230000009286 beneficial effect Effects 0.000 description 1
- 230000008901 benefit Effects 0.000 description 1
- 230000008859 change Effects 0.000 description 1
- 238000001514 detection method Methods 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 238000010586 diagram Methods 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 230000008569 process Effects 0.000 description 1
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/10—Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
- G06F21/12—Protecting executable software
- G06F21/121—Restricting unauthorised execution of programs
- G06F21/128—Restricting unauthorised execution of programs involving web programs, i.e. using technology especially used in internet, generally interacting with a web browser, e.g. hypertext markup language [HTML], applets, java
Landscapes
- Engineering & Computer Science (AREA)
- Software Systems (AREA)
- Computer Security & Cryptography (AREA)
- Theoretical Computer Science (AREA)
- Multimedia (AREA)
- Technology Law (AREA)
- Computer Hardware Design (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Storage Device Security (AREA)
Abstract
The invention provides the application rights management method run based on embedded television service-Engine Web, methods described includes:After the page end of a Web application to be installed receives response, initiate to ask to operating system, after operating system receives request, access Web Runtime;Web Runtime complete download, decompression and the sign test applied to Web;And the Manifest files to decompressing are parsed, the authority that will be parsed submits to user to be audited, and the response according to user decides whether to continue the installation of the web application;When mounted web application is started, calling system API, the then page end that Web is applied can initiate corresponding call request to operating system;Operating system is received after request, to be made and match authority to be applied in the permissions list that Web Runtime are stated in the middle of the Manifest files, and the auditing result of result and user according to matching decides whether to start the web application.The method of the present invention provides rights management for Web application runtime environments, improves safety protection level.
Description
Technical field
The present invention relates to intelligent television service field, more particularly to based on embedded television service-Engine Web operations
Application rights management method.
Background technology
With the development and the issue of HTML 5 of Web technologies, the demand of Web applications is also lifted therewith.Web should
It is a kind of application program by network access with (Web App), it is generally carried in the environment of browser support,
Using browser supporting language (such as JavaScript) and a kind of application program for depending on Web browser to render.
The prevalence of Web applications gives the credit to the popularization of web browser, and convenient Consumer's Experience, and it may not necessarily be downloaded
Installation can just be realized updating and safeguarding, with the inherent attribute for supporting cross operating system.
However, increasing with Web application demands, the safety problem of Web applications is also increasingly apparent, user for
The requirement of Web applications more wishes locally applied the same with traditional, for answering that different manufacturers application store provides
With, due security information can be before the use obtained, and while application operation, operating system can
Authority to applying is monitored, so that for important system resource provides a certain degree of protection.
The content of the invention
Lack complete authority during it is an object of the invention to overcoming existing embedded television service-Engine Web to run
A kind of problem of detection means, there is provided application rights management side when being run based on embedded television service-Engine Web
Method, the method provides rights management for the Web application runtime environments of embedded television service-Engine, user is existed
Installed on intelligent television Web using when can in advance learn the authority of the application, and the energy in the running of application
It is enough that some protections are carried out to system, system is achieved good security protection.
To achieve the above object, the invention provides the application permission run based on embedded television service-Engine Web
Management method, methods described includes:
After the page end of a Web application to be installed receives response, initiate to ask to operating system, operation system
After system receives request, Web Runtime are accessed;Web Runtime complete download to Web applications, decompress and test
Sign;And the Manifest files to decompressing are parsed, the authority that will be parsed submits to user to be audited, according to
The response of user decides whether to continue the installation of the web application;
When the mounted web application of startup, calling system API, then the page end of Web applications can be to operation
System initiates corresponding call request;Operating system is received after request, makes Web Runtime in the Manifest
Authority to be applied is matched in the permissions list of statement in the middle of file, the auditing result of result and user according to matching,
Decide whether to start the web application.
In above-mentioned technical proposal, methods described is specifically included:
Step 1) after the page end of a Web application for pre-installation receives response, initiate to ask to operating system,
After operating system receives request, by calling the api interface of inside, Web Runtime are accessed;
Step 2), by Runtime main threads one new installation thread of startup, completion is to Web for Web Runtime
The download of application program installation kit, decompression and sign test;And the Manifest files to decompressing are parsed, and will be parsed
The authority for going out submits to user's examination & verification, installs thread and is suspended;When Web Runtime receive the response from user
After, if what is received is the response for allowing to install, Runtime main threads can reawake installation thread, after
Continuous installation procedure, completes the installation of Web applications;If what is received is the response for not allowing to install, no longer carry out
Install;
Step 3) start the web application for installing, calling system API, the then page end that Web is applied
Corresponding call request can be initiated to operating system;
Step 4) after operating system receives call request, make Web Runtime in the middle of the Manifest files
Authority to be applied is matched in the permissions list of statement, if the match is successful, request is allowed to;If it fails,
This authority is then submitted to user;If user allows, the request is allowed to, while this new authority is added
In entering the permissions list in the middle of Manifest files;Otherwise, positive closing web application.
In above-mentioned technical proposal, the step 2) specifically include:
Step 201) after Web Runtime are asked from operating system, can be opened by Runtime main threads
Move a new installation thread;
Step 202) Runtime main threads one new installation thread of establishment, then complete right in thread is installed
The download of the installation kit of Web applications and decompression;
Step 203) Web application installation kit decompression finish after, Web Runtime are first to the signature in installation kit
Sign test work is carried out, the integrality of installation kit is verified;After sign test is finished, the Manifest files pressed out to solution
Parsed, so as to obtain corresponding rights field;
Step 204) Web application runtime environments and operating system carries out Socket communications, corresponding rights field
Pass to operating system;
Step 205) after operating system receives rights field, the field is explained turns into the intelligible authority name of user
Claim and content, the authority name and content intact are then submitted into user and are reviewed, allow user decide whether after
It is continuous to install;
Step 206) after Web Runtime receive the response from user, if what is received allows installation
Respond, then Runtime main threads will reawake installation thread, continue installation procedure, complete the installation of application;
If what is received is the response for not allowing to install, terminate the installation of application.
In above-mentioned technical proposal, the step 4) specifically include:
Step 401) after operating system receives call request, the request message sent is parsed first, obtain
Whole treats request permissions, and No. ID of application and authority are then delivered to Web Runtime by predetermined mode;
Step 402) after Web Runtime receive No. ID of application and authority, first check that the ID of application whether there is,
Then No. ID corresponding permissions list of application is obtained from database;
Step 403) Web Runtime are matched the permissions list of acquisition with authority to be asked, if matching
Success, then request passes through, and application call API will not be blocked, and be transferred to step 405);Otherwise, it is transferred to step 404);
Step 404) this authority is submitted to user by Web Runtime, if user allows, application call
API is not blocked, and by the permissions list in the middle of this new authority addition Manifest file, is transferred to step
405);If user does not allow, the positive closing web application;
Step 405) complete start the web application the advantage of the invention is that:
The method of the present invention provides rights management for the Web application runtime environments of embedded television service-Engine, makes
User installed on intelligent television Web using when can in advance learn the authority of the application, and in the operation of application
Some protections can be carried out in journey to system, system is achieved good security protection.
Brief description of the drawings
Fig. 1 is the stream of application rights management method when being run based on embedded television service-Engine Web of the invention
Cheng Tu;
Fig. 2 is the peace in the application rights management method when present invention is run based on embedded television service-Engine Web
Dress process schematic;
During Fig. 3 is application rights management method when being run based on embedded television service-Engine Web of the invention
Start-up course schematic diagram.
Specific embodiment
Present disclosure is described in further detail below in conjunction with the accompanying drawings.
As shown in figure 1, application rights management method when being run based on embedded television service-Engine Web, described
Method includes:
Step 1) after the page end of a Web application for pre-installation receives response, initiate to ask to operating system,
After operating system receives request, by calling the api interface of inside, Web application runtime environments (Web is accessed
Runtime);
Step 2), by Runtime main threads one new installation thread of startup, completion is to Web for Web Runtime
The download of application program installation kit, decompression and sign test;And the Manifest files to decompressing are parsed, and will be parsed
The authority for going out submits to user's examination & verification, installs thread and is suspended;When Web Runtime receive the response from user
After, if what is received is the response for allowing to install, Runtime main threads can reawake installation thread, after
Continuous installation procedure, completes the installation of Web applications;If what is received is the response for not allowing to install, no longer carry out
Install;
As shown in Fig. 2 the step 2) specifically include:
Step 201) after Web Runtime are asked from operating system, can be opened by Runtime main threads
Move a new installation thread;
In the present embodiment, operating system is Android operation system, and after request is received, it can call correlation
Jni interfaces come call corresponding C++ methods in Web Runtime indirectly, so as to open installation thread;
Step 202) Runtime main threads one new installation thread of establishment, then complete right in thread is installed
The download of the installation kit of Web applications and decompression;
Step 203) Web application installation kit decompression finish after, Web Runtime are first to the signature in installation kit
Sign test work is carried out, the integrality of installation kit is verified;After sign test is finished, the Manifest files pressed out to solution
Parsed, so as to obtain corresponding rights field;
The Manifest files are each extension, a JSON form necessary to installable Web applications
File, be manifest.json, the inside provides the Web using the important information of some of itself.
In the present embodiment, the form of rights field is as follows in the middle of Manifest files:
Step 204) Web application runtime environments and operating system carries out Socket communications, corresponding rights field
Pass to operating system;
Step 205) after operating system receives rights field, the field is explained turns into the intelligible authority name of user
Claim and content, the authority name and content intact are then submitted into user and are reviewed, allow user decide whether after
It is continuous to install;
Step 206) after Web Runtime receive the response from user, if what is received allows installation
Respond, then Runtime main threads will reawake installation thread, continue installation procedure, complete the installation of application;
If what is received is the response for not allowing to install, terminate the installation of application.
Step 3) start mounted web application, calling system API, the then page end meeting of Web applications
Corresponding call request is initiated to operating system;
Step 4) after operating system receives call request, make Web Runtime in the middle of the Manifest files
Authority to be applied is matched in the permissions list of statement, if the match is successful, request is allowed to;If it fails,
This authority is then submitted to user;If user allows, the request is allowed to, while this new authority is added
In entering the permissions list in the middle of Manifest files;Otherwise, positive closing web application.
As shown in figure 3, the step 4) specifically include:
Step 401) after operating system receives call request, the request message sent is parsed first, obtain
Whole treats request permissions, and No. ID of application and authority are then delivered to Web Runtime by predetermined mode;
In the present embodiment, the predetermined mode is the mode of jni.
Step 402) after Web Runtime receive No. ID of application and authority, first check that the ID of application whether there is,
Then No. ID corresponding permissions list of application is obtained from database;
Step 403) Web Runtime are matched the permissions list of acquisition with authority to be asked, if matching
Success, then request passes through, and application call API will not be blocked, and be transferred to step 405);Otherwise, it is transferred to step 404);
Step 404) this authority is submitted to user by Web Runtime, if user allows, application call
API is not blocked, and by the permissions list in the middle of this new authority addition Manifest file, is transferred to step
405);If user does not allow, the positive closing web application;
Step 405) complete to start the web application.
Above-described specific embodiment, has carried out entering one to the purpose of the present invention, technical scheme and beneficial effect
Step is described in detail, be should be understood that and be the foregoing is only specific embodiment of the invention, is not used to
Protection scope of the present invention is limited, all any modifications within the spirit and principles in the present invention, made, is equally replaced
Change, improve, should be included within the scope of the present invention.
Claims (4)
1. the application rights management method run based on embedded television service-Engine Web, methods described is included:
After the page end of a Web application to be installed receives response, initiate to ask to operating system, operation system
After system receives request, Web Runtime are accessed;Web Runtime complete download to Web applications, decompress and test
Sign;And the Manifest files to decompressing are parsed, the authority that will be parsed submits to user to be audited, according to
The response of user decides whether to continue the installation of the web application;
When the mounted web application of startup, calling system API, then the page end of Web applications can be to operation
System initiates corresponding call request;Operating system is received after request, makes Web Runtime in the Manifest
Authority to be applied is matched in the permissions list of statement in the middle of file, the auditing result of result and user according to matching,
Decide whether to start the web application.
2. it is according to claim 1 based on embedded television service-Engine Web operation application rights management side
Method, it is characterised in that methods described is specifically included:
Step 1) after the page end of a Web application for pre-installation receives response, initiate to ask to operating system,
After operating system receives request, by calling the api interface of inside, Web Runtime are accessed;
Step 2), by Runtime main threads one new installation thread of startup, completion is to Web for Web Runtime
The download of application program installation kit, decompression and sign test;And the Manifest files to decompressing are parsed, and will be parsed
The authority for going out submits to user's examination & verification, installs thread and is suspended;When Web Runtime receive the response from user
After, if what is received is the response for allowing to install, Runtime main threads can reawake installation thread, after
Continuous installation procedure, completes the installation of Web applications;If what is received is the response for not allowing to install, no longer carry out
Install;
Step 3) start the web application for installing, calling system API, the then page end that Web is applied
Corresponding call request can be initiated to operating system;
Step 4) after operating system receives call request, make Web Runtime in the middle of the Manifest files
Authority to be applied is matched in the permissions list of statement, if the match is successful, request is allowed to;If it fails,
This authority is then submitted to user;If user allows, the request is allowed to, while this new authority is added
In entering the permissions list in the middle of Manifest files;Otherwise, positive closing web application.
3. it is according to claim 2 based on embedded television service-Engine Web operation application rights management side
Method, it is characterised in that the step 2) specifically include:
Step 201) after Web Runtime are asked from operating system, can be opened by Runtime main threads
Move a new installation thread;
Step 202) Runtime main threads one new installation thread of establishment, then complete right in thread is installed
The download of the installation kit of Web applications and decompression;
Step 203) Web application installation kit decompression finish after, Web Runtime are first to the signature in installation kit
Sign test work is carried out, the integrality of installation kit is verified;After sign test is finished, the Manifest files pressed out to solution
Parsed, so as to obtain corresponding rights field;
Step 204) Web application runtime environments and operating system carries out Socket communications, corresponding rights field
Pass to operating system;
Step 205) after operating system receives rights field, the field is explained turns into the intelligible authority name of user
Claim and content, the authority name and content intact are then submitted into user and are reviewed, allow user decide whether after
It is continuous to install;
Step 206) after Web Runtime receive the response from user, if what is received allows installation
Respond, then Runtime main threads will reawake installation thread, continue installation procedure, complete the installation of application;
If what is received is the response for not allowing to install, terminate the installation of application.
4. it is according to claim 3 based on embedded television service-Engine Web operation application rights management side
Method, it is characterised in that the step 4) specifically include:
Step 401) after operating system receives call request, the request message sent is parsed first, obtain
Whole treats request permissions, and No. ID of application and authority are then delivered to Web Runtime by predetermined mode;
Step 402) after Web Runtime receive No. ID of application and authority, first check that the ID of application whether there is,
Then No. ID corresponding permissions list of application is obtained from database;
Step 403) Web Runtime are matched the permissions list of acquisition with authority to be asked, if matching
Success, then request passes through, and application call API will not be blocked, and be transferred to step 405);Otherwise, it is transferred to step 404);
Step 404) this authority is submitted to user by Web Runtime, if user allows, application call
API is not blocked, and by the permissions list in the middle of this new authority addition Manifest file, is transferred to step
405);If user does not allow, the positive closing web application;
Step 405) complete to start the web application.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201510906170.0A CN106855921A (en) | 2015-12-09 | 2015-12-09 | Application rights management method when being run based on embedded television service-Engine Web |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201510906170.0A CN106855921A (en) | 2015-12-09 | 2015-12-09 | Application rights management method when being run based on embedded television service-Engine Web |
Publications (1)
Publication Number | Publication Date |
---|---|
CN106855921A true CN106855921A (en) | 2017-06-16 |
Family
ID=59132664
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201510906170.0A Pending CN106855921A (en) | 2015-12-09 | 2015-12-09 | Application rights management method when being run based on embedded television service-Engine Web |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN106855921A (en) |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN107368736A (en) * | 2017-07-03 | 2017-11-21 | 青岛海信电器股份有限公司 | Information access method, device and computer-readable recording medium |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN103049692A (en) * | 2012-11-19 | 2013-04-17 | 北京小米科技有限责任公司 | Application installation method, device and facility |
CN103870306A (en) * | 2014-02-21 | 2014-06-18 | 北京奇虎科技有限公司 | Method and device for installing application program on basis of intelligent terminal equipment |
EP2746978A1 (en) * | 2011-08-19 | 2014-06-25 | ZTE Corporation | License control method and system thereof |
-
2015
- 2015-12-09 CN CN201510906170.0A patent/CN106855921A/en active Pending
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
EP2746978A1 (en) * | 2011-08-19 | 2014-06-25 | ZTE Corporation | License control method and system thereof |
CN103049692A (en) * | 2012-11-19 | 2013-04-17 | 北京小米科技有限责任公司 | Application installation method, device and facility |
CN103870306A (en) * | 2014-02-21 | 2014-06-18 | 北京奇虎科技有限公司 | Method and device for installing application program on basis of intelligent terminal equipment |
Non-Patent Citations (1)
Title |
---|
梁陈剑: "《JDBC 3.0数据库开发与设计》", 31 March 2003, 北京希望电子出版社 * |
Cited By (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN107368736A (en) * | 2017-07-03 | 2017-11-21 | 青岛海信电器股份有限公司 | Information access method, device and computer-readable recording medium |
CN107368736B (en) * | 2017-07-03 | 2020-06-09 | 海信视像科技股份有限公司 | Information access method, device and computer readable storage medium |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US10069832B2 (en) | Ephemeral applications | |
US20150288676A1 (en) | Mobile terminal-based automatic logon processing method and system | |
CN103399792A (en) | Implementation scheme of Android-based plug-in applications | |
CN103744686B (en) | Control method and the system of installation is applied in intelligent terminal | |
CN103473498B (en) | Application security verification method and terminal | |
US9830432B2 (en) | Software revalidation and invalidation | |
CN105634745A (en) | Security authentication method and device for application installation | |
CN105528225A (en) | Application loading method and loading apparatus | |
CN105843653A (en) | TA (trusted application) configuration method and device | |
CN105825131B (en) | A kind of computer safety start means of defence based on UEFI | |
CN104298915A (en) | Installation package tampering preventing method | |
CN104765629A (en) | System application installation method and device | |
WO2014150737A2 (en) | Method and system for enabling the federation of unrelated applications | |
CN104503752A (en) | Method and device for controlling webpage to call system functions in intelligent equipment | |
CN106775876B (en) | Method for quickly starting application by android system | |
CN106874040A (en) | Realize that PC ends software is mourned in silence the system and method for upgrading based on Windows services | |
CN107203379A (en) | A kind of Android customized application APP preset, installation method | |
CN105931042A (en) | Application authority management method and intelligent POS terminal | |
CN105791249A (en) | Third-party application processing method, device and system | |
CN106855921A (en) | Application rights management method when being run based on embedded television service-Engine Web | |
CN105786551A (en) | Application program operation access control method and system | |
CN104506520A (en) | MIPS (Million Instructions Per Second) platform Web access strategy control method | |
CN106547564A (en) | A kind of Android applications automatic update method and system based on reflex mechanism | |
CN110727936B (en) | Method and device for authorizing application | |
CN106775879A (en) | Installation method and its system are exempted from VR applications based on Android system client |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
RJ01 | Rejection of invention patent application after publication |
Application publication date: 20170616 |
|
RJ01 | Rejection of invention patent application after publication |