CN107104955B - Application publishing method and application publishing system - Google Patents
Application publishing method and application publishing system Download PDFInfo
- Publication number
- CN107104955B CN107104955B CN201710229244.0A CN201710229244A CN107104955B CN 107104955 B CN107104955 B CN 107104955B CN 201710229244 A CN201710229244 A CN 201710229244A CN 107104955 B CN107104955 B CN 107104955B
- Authority
- CN
- China
- Prior art keywords
- application
- emm
- security
- server
- client
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/04—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
- H04L63/0428—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/06—Protocols specially adapted for file transfer, e.g. file transfer protocol [FTP]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/08—Protocols specially adapted for terminal emulation, e.g. Telnet
Abstract
The embodiment of the invention provides an application issuing method and an application issuing system, which are used for generating application safety application information by an EMM server according to an application safety protection instruction and issuing the application safety application information at an EMM client so that the consistency of applications used by a user through the EMM client is ensured. The method provided by the embodiment of the invention comprises the following steps: the EMM server receives the application file of the application and the application safety protection instruction, carries out safety processing on the application file according to the application safety protection instruction to obtain the safety application information of the application, and issues the safety application information to the EMM client, so that a user can use the application through the safety application information of the EMM client.
Description
Technical Field
The invention relates to the technical field of mobile internet, in particular to an application issuing method and an application issuing system.
Background
With the development of mobile internet, more and more enterprise office systems are migrated to mobile terminals, and various industries have their own applications on the mobile terminal side. Due to the complexity of the environment of the mobile terminal, the security of the application is also subject to scrutiny, such as the possibility that the handset may be hacked for interception, the application may be tampered with, the application data may be compromised passively or actively, and so on. In addition, as applications grow more and more, their distribution and management also becomes increasingly complex.
To ensure the security of the application, the following solutions exist in the Enterprise Mobility Management (EMM) system: 1. an application encapsulation technology is adopted, and functions of authority management, data encryption and the like are added to the application; 2. a remote release technology, such as a Virtual Desktop Infrastructure (VDI), is adopted, a mobile operating system is deployed in a virtualization server, an application is installed in the virtualization server, and a remote access application with a built-in application identifier is generated for a user to access.
Although the application encapsulation technology and the remote release technology are adopted to improve the application security, when a user acquires an application or uses the application, the user does not know which technology the application is processed by the EMM system, because the problem of operating system compatibility may exist after the application is encrypted by adopting the application encapsulation technology, and the user cannot use the application offline by adopting the remote release technology, the user experience on the application consistency is poor.
Disclosure of Invention
The embodiment of the invention provides an application issuing method and an application issuing system, which are used for generating application safety application information by an EMM server according to an application safety protection instruction and issuing the application safety application information at an EMM client so that the consistency of applications used by a user through the EMM client is ensured.
The first aspect of the present invention provides an application distribution method, used in an application distribution system, where the application distribution system includes an EMM server and an EMM client, and includes:
the EMM server receives an application file and an application security protection instruction of an application;
the EMM server carries out security processing on the application file according to the application security protection instruction to obtain the security application information of the application;
the EMM server issues the security application information to an EMM client so that a user uses the application through the security application information of the EMM client.
With reference to the first aspect of the present invention, in a first implementation manner of the first aspect of the present invention, the security application information is a security application file,
the EMM server performs security processing on the application file according to the application security protection instruction to obtain security application information, and the method comprises the following steps:
the EMM server calls an application encapsulation service according to the application security protection instruction;
and the EMM server unpacks the application file according to the application encapsulation service and adds a preset security SDK to generate the security application file of the application.
With reference to the first aspect of the present invention, in a second implementation manner of the first aspect of the present invention, the secure application information is a remote access client,
the EMM server performs security processing on the application file according to the application security protection instruction to obtain security application information, and the method comprises the following steps:
the EMM server calls a remote issuing service according to the application security protection instruction;
the EMM server installs the application file to a remote server according to a remote release service and obtains an access ID of the application;
and the EMM server generates the remote access client of the application according to a preset remote access client and the access ID.
With reference to the first aspect, the first implementation manner of the first aspect, or the second implementation manner of the first aspect, in a third implementation manner of the first aspect of the present invention, the issuing, by the EMM server, the security application information before the EMM client further includes:
and the EMM server receives an EMM policy corresponding to the application and sets the application authority of the application according to the EMM policy.
With reference to the third implementation manner of the first aspect of the present invention, in a fourth implementation manner of the first aspect of the present invention, the issuing, by the EMM server, the security application information after an EMM client further includes:
the EMM server receives the EMM strategy updating instruction of the application, and updates the EMM strategy of the application according to the EMM strategy updating instruction to obtain a new EMM strategy;
the EMM server modifies the application rights of the application according to the new EMM policy.
A second aspect of the present invention provides an application distribution system, including:
the system comprises an enterprise mobile management EMM server and an EMM client, wherein the EMM server comprises an application issuing module and an application security processing module;
the application issuing module is used for receiving application files of the application and application safety protection instructions;
the application security processing module is used for carrying out security processing on the application file according to the application security protection instruction to obtain the security application information of the application;
the application issuing module is used for issuing the security application information to an EMM client so that a user uses the application through the security application information of the EMM client.
With reference to the second aspect of the present invention, in the first embodiment of the second aspect of the present invention, the security application information is a security application file,
the application security processing module comprises:
the application encapsulation calling unit is used for calling application encapsulation service according to the application safety protection instruction;
and the application packaging service unit is used for unpacking the application file according to the application packaging service and adding a preset safety SDK to generate the safety application file of the application.
With reference to the second aspect of the present invention, in a second embodiment of the second aspect of the present invention, the secure application information is a remote access client,
the application security processing module comprises:
the remote issuing and calling unit is used for calling remote issuing service according to the application safety protection instruction;
the remote release service unit is used for installing the application file to a remote server according to remote release service and acquiring the access ID of the application;
and the remote release service unit is also used for generating the remote access client of the application according to a preset remote access client and the access ID.
With reference to the second aspect, the first embodiment of the second aspect, or the second embodiment of the second aspect, in a third embodiment of the second aspect of the present invention, the EMM server further includes:
and the EMM policy module is used for receiving the EMM policy corresponding to the application and setting the application authority of the application according to the EMM policy.
In combination with the third embodiment of the second aspect of the present invention, in the fourth embodiment of the second aspect of the present invention,
the EMM strategy module is also used for receiving an EMM strategy updating instruction of the application and updating the EMM strategy of the application according to the EMM strategy updating instruction to obtain a new EMM strategy;
the EMM policy module is further configured to modify the application rights of the application according to the new EMM policy.
According to the technical scheme, the embodiment of the invention has the following advantages:
the application issuing system comprises an EMM server and an EMM client, wherein the EMM server receives an application file of an application and an application security protection instruction, performs security processing on the application file according to the application security protection instruction to obtain security application information of the application, and issues the security application information to the EMM client, so that a user uses the application through the security application information of the EMM client. Because the applied security application information is obtained after the EMM server uniformly processes the application file through the application security protection instruction and is issued through the EMM client, the problem that in the prior art, when a user acquires the application or uses the application, the user does not know which technology the application is processed through, and accordingly the consistent experience is poor is solved, and therefore the application consistent experience of the user is improved.
Drawings
In order to more clearly illustrate the technical solutions of the embodiments of the present invention, the following briefly introduces the embodiments and the drawings used in the description of the prior art, and it is obvious that the drawings in the following description are only some embodiments of the present invention, and those skilled in the art can also obtain other drawings according to the drawings without creative efforts.
FIG. 1 is a schematic diagram of a system architecture provided by the present invention;
FIG. 2 is a flowchart illustrating an embodiment of an application publishing method provided by the present invention;
FIG. 3 is a schematic structural diagram of an embodiment of an application publishing system provided by the present invention;
fig. 4 is a schematic structural diagram of another embodiment of an application distribution system provided in the present invention;
fig. 5 is a schematic structural diagram of another embodiment of the application distribution system provided in the present invention.
Detailed Description
The embodiment of the invention provides an application issuing method and an application issuing system, which are used for generating application safety application information by an EMM server according to an application safety protection instruction and issuing the application safety application information at an EMM client so that the consistency of applications used by a user through the EMM client is ensured.
In order to make the technical solutions of the present invention better understood, the technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the drawings in the embodiments of the present invention, and it is obvious that the described embodiments are only a part of the embodiments of the present invention, and not all of the embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.
The following are detailed by specific examples, respectively.
The system architecture of the application of the invention is shown in fig. 1, wherein, the application publishing platform is used for uploading application files; the Application issuing system adopts EMM technology, EMM can provide comprehensive Management for enterprise Mobile informatization, the main functions comprise four dimensions of Mobile Device Management (MDM), Mobile User Management (MUM), Mobile Application Management (MAM) and Mobile Content Management (MCM), the main equipment comprises an EMM server and an EMM client, the EMM server is mainly used for processing the application and implementing the management function, the EMM client is mainly used for issuing the application and displaying the function, the issuing of the general application is realized through an enterprise application store on the EMM client, therefore, the EMM client needs to acquire data of the enterprise application store through a network or other means; the user equipment may establish a data connection with the EMM client, obtaining data of the application from the EMM client.
Referring to fig. 2, an embodiment of the present invention provides an application publishing method, including:
201. the EMM server receives an application file and an application security protection instruction of an application;
in this embodiment, when an enterprise user needs to release a new application or update an old version of an application, an application file of the new application or an application file of the old version of the application may be uploaded to an EMM server through an application upload platform shown in fig. 1 or in another manner, the EMM server receives the application file and an application security protection instruction corresponding to the application, the application security protection instruction may be obtained according to an application security protection type provided by the enterprise user, the application security protection type may be application encapsulation or remote release, and the application security protection instruction may also be issued by an administrator of an application release system.
202. The EMM server performs security processing on the application file according to the application security protection instruction to obtain the security application information of the application;
in this embodiment, the EMM server invokes a corresponding service function of application security protection according to the application security protection instruction, performs security processing on the application file, and obtains security application information of the application after the processing.
203. The EMM server issues the secure application information to the EMM client.
In the embodiment, the EMM server issues the applied security application information to the EMM client, specifically, the EMM server sends the security application information to the EMM client, the EMM client displays the security application information in the enterprise application store, and after a user is connected with the EMM client through a user terminal, the user can see the security application information of the application in the enterprise application store on the EMM client, so that the security application information of the EMM client can be acquired, and the application can be used after the security application information of the application is acquired.
In the embodiment of the invention, the EMM server receives the application file of the application and the application security protection instruction, performs security processing on the application file according to the application security protection instruction to obtain the security application information of the application, and issues the security application information to the EMM client, so that a user uses the application through the security application information of the EMM client.
Optionally, in some embodiments of the present invention, the security application information is a security application file,
the EMM server performs security processing on the application file according to the application security protection instruction to obtain security application information, and the method comprises the following steps:
the EMM server calls an application encapsulation service according to the application security protection instruction;
and the EMM server unpacks the application file according to the application encapsulation service and adds a preset security SDK to generate the applied security application file.
In the embodiment of the invention, the most common application security protection technologies are application encapsulation and remote access technologies, and if the application security protection technology is selected, the EMM server firstly calls the application encapsulation service according to an application security protection instruction, specifically, the application encapsulation service exists in a functional component mode in the EMM server, the calling of the application encapsulation service is actually an interface for calling the application encapsulation service component, the application file is unpacked through the application encapsulation service, and the preset security SDK is added to generate the security application file, and the preset security SDK has the function that after the security application file is installed on user equipment, the preset security SDK starts to work, so that the authority control and data protection functions of the application are provided for a manager, and the application security can be improved.
Optionally, in some embodiments of the invention, the secure application information is a remote access client,
the EMM server performs security processing on the application file according to the application security protection instruction to obtain security application information, and the method comprises the following steps:
the EMM server calls a remote release service according to the application security protection instruction;
the EMM server installs the application file to a remote server according to the remote release service and obtains an access ID of the application;
and the EMM server generates the remote access client of the application according to the preset remote access client and the access ID.
In the embodiment of the invention, taking the security protection of an application as an example of a remote access technology, an EMM server calls a remote release service first according to an application security protection instruction, specifically, the remote release service exists in the EMM server in a functional component mode, the calling of the remote release service is actually an interface for calling a component of the remote release service, an application file is installed to the remote server through the remote release service, the remote server can be virtual equipment or entity equipment, the remote server can be in the EMM server or in the application release system but not in the EMM server, or not in the application release system but connected with the EMM server, the security SDK is automatically injected when the remote server installs the application file, the remote server provides an application access ID, the EMM server obtains the application access ID, if the user wants to use the application, the user needs to establish connection with a remote server through a remote access client of the application to acquire image information during application running so as to achieve the same experience of using the application on a user terminal, the remote access client is generated according to a preset remote access client and an access ID, and the EMM server adopts a remote access technology to improve the safety of the application.
Optionally, in some embodiments of the present invention, the issuing, by the EMM server, the security application information before the EMM client further includes:
and the EMM server receives an EMM strategy corresponding to the application and sets the application authority of the application according to the EMM strategy.
In the embodiment of the invention, before the EMM server issues the security application information to the EMM client, the application authority needs to be set, an EMM strategy corresponding to the application is generally set by an administrator, the EMM server receives the EMM strategy corresponding to the application, and the application authority of the application is adjusted according to the EMM strategy.
Optionally, in some embodiments of the present invention, the EMM server issues the security application information after the EMM client, and further includes:
the EMM server receives an EMM strategy updating instruction of the application, and updates the EMM strategy of the application according to the EMM strategy updating instruction to obtain a new EMM strategy;
the EMM server modifies the application rights of the application according to the new EMM policy.
In the embodiment of the invention, when the EMM strategy is implemented, if the application authority needs to be changed, the EMM server receives an EMM strategy updating instruction of the application, updates the EMM strategy of the application according to the EMM strategy updating instruction to obtain a new EMM strategy, and modifies the application authority according to the new EMM strategy, for example, the source EMM strategy prohibits a user from using a clipboard, and the new EMM strategy allows the user to use the clipboard, the EMM server receives the EMM strategy updating instruction of the application, and updates the source EMM strategy into the new EMM strategy, which is used for using the clipboard when the application is used.
The above embodiment introduces the application publishing method, and the application publishing system is explained below.
Referring to fig. 3, an embodiment of the present invention provides an application distribution system, including:
the EMM server 301 comprises an EMM server 301 and an EMM client 302, wherein the EMM server 301 comprises an application release module 3011 and an application security processing module 3012;
the application issuing module 3011 is configured to receive an application file and an application security protection instruction of an application;
the application security processing module 3012 is configured to perform security processing on the application file according to the application security protection instruction, so as to obtain security application information of the application;
an application issuing module 3011, configured to issue the security application information to the EMM client 302, so that the user uses the application through the security application information of the EMM client 302.
In the embodiment of the present invention, the application issuing module 3011 in the EMM server 301 receives an application file of an application and an application security protection instruction, the application security processing module 3012 performs security processing on the application file according to the application security protection instruction to obtain security application information of the application, the application issuing module 3011 issues the security application information to the EMM client 302, so that a user uses the application through the security application information of the EMM client 302, since the application security information is obtained by the application security processing module 3012 after uniformly processing the application files by applying the security protection instruction, and is issued by the EMM client 302, it is avoided that in the prior art, when a user acquires an application or uses an application, he does not know which technique the application is processed by, therefore, the problem of poor consistency experience is caused, and therefore the application consistency experience of the user is improved.
Alternatively, as shown in fig. 4, in some embodiments of the present invention, the security application information is a security application file,
the application security processing module 3012 includes:
an application encapsulation calling unit 401, configured to call an application encapsulation service according to the application security protection instruction;
the application encapsulation service unit 402 is configured to unpack the application file according to the application encapsulation service, and add a preset secure SDK to generate an applied secure application file.
In the embodiment of the invention, the most common application security protection technologies are application encapsulation and remote access technologies, and assuming that the application encapsulation technology is selected for the application security protection, the application encapsulation invoking unit 401 in the application security processing module 3012 invokes the application encapsulation service according to the application security protection instruction, specifically, the application encapsulation service exists in the EMM server 301 as a functional component, the calling application encapsulation service is actually an interface to the calling application encapsulation service component, the application encapsulation service unit 402 unpacks the application files, and adding a preset safety SDK to generate a safety application file, wherein the preset safety SDK has the function that after the safety application file is installed on the user equipment, the preset security SDK starts working and provides the authority control and data protection functions of the application for the manager, and the like, so that the safety of the application can be improved.
Alternatively, as shown in fig. 4, in some embodiments of the invention, the secure application information is a remote access client,
the application security processing module 3012 includes:
a remote issue invoking unit 403, configured to invoke a remote issue service according to the application security protection instruction;
a remote publishing service unit 404, configured to install the application file to a remote server according to a remote publishing service, and obtain an access ID of the application;
the remote publishing service unit 404 is further configured to generate a remote access client of the application according to a preset remote access client and the access ID.
In the embodiment of the present invention, taking the security protection of an application as an example of a remote access technology, a remote issuing invoking unit 403 in an application security processing module 3012 invokes a remote issuing service first according to an application security protection instruction, specifically, the remote issuing service exists in a manner of a functional component in an EMM server 301, the invoking of the remote issuing service actually invokes an interface of a component of the remote issuing service, the remote issuing service unit 404 installs an application file to a remote server, the remote server may be a virtual device or an entity device, the remote server may be in an EMM server, or may be in an application issuing system but not in an EMM server, or may not be in the application issuing system but connected to the EMM server, while the remote server installs the application file, a secure SDK is automatically injected, the remote server provides an access ID of the application, the EMM server obtains the access ID of the application, if a user wants to use the application, the user needs to establish connection with the remote server through a remote access client of the application to obtain image information when the application runs so as to achieve the same experience of using the application on a user terminal, the remote access client is generated according to the preset remote access client and the access ID, and the EMM server adopts a remote access technology to improve the safety of the application.
Optionally, as shown in fig. 5, in some embodiments of the present invention, the EMM server 301 further includes:
and the EMM policy module 501 is configured to receive an EMM policy corresponding to the application, and set an application right of the application according to the EMM policy.
In the embodiment of the present invention, before the application issuing module 3011 issues the security application information to the EMM client 302, the application authority needs to be set, generally, an administrator makes an EMM policy corresponding to the application, the EMM policy module 501 receives the EMM policy corresponding to the application, and adjusts the application authority according to the EMM policy, for example, the EMM policy made by the administrator is to prohibit a user from using a clipboard, so that when the user uses an application corresponding to a security application file generated by an application encapsulation service, and uses an application of a remote server through a remote access client, the clipboard function is disabled, thereby implementing unified management of the application authority.
Alternatively, as shown in FIG. 5, in some embodiments of the invention; ,
the EMM policy module 501 is further configured to receive an EMM policy update instruction of an application, and update the EMM policy of the application according to the EMM policy update instruction to obtain a new EMM policy;
the EMM policy module 501 is further configured to modify the application rights of the application according to the new EMM policy.
In the embodiment of the present invention, when the EMM policy has started to be implemented, if the application authority needs to be changed, the EMM policy module 501 receives an EMM policy update instruction of the application, updates the EMM policy of the application according to the EMM policy update instruction to obtain a new EMM policy, and modifies the application authority according to the new EMM policy, for example, the source EMM policy prohibits the user from using the clipboard, and the new EMM policy allows the user to use the clipboard, the EMM server receives the EMM policy update instruction of the application, and updates the source EMM policy to the new EMM policy for using the clipboard when the application is used.
It is clear to those skilled in the art that, for convenience and brevity of description, the specific working processes of the above-described systems, apparatuses and units may refer to the corresponding processes in the foregoing method embodiments, and are not described herein again.
In the several embodiments provided in the present application, it should be understood that the disclosed system, apparatus and method may be implemented in other manners. For example, the above-described apparatus embodiments are merely illustrative, and for example, the division of the units is only one logical division, and other divisions may be realized in practice, for example, a plurality of units or components may be combined or integrated into another system, or some features may be omitted, or not executed. In addition, the shown or discussed mutual coupling or direct coupling or communication connection may be an indirect coupling or communication connection through some interfaces, devices or units, and may be in an electrical, mechanical or other form.
The units described as separate parts may or may not be physically separate, and parts displayed as units may or may not be physical units, may be located in one place, or may be distributed on a plurality of network units. Some or all of the units can be selected according to actual needs to achieve the purpose of the solution of the embodiment.
In addition, functional units in the embodiments of the present invention may be integrated into one processing unit, or each unit may exist alone physically, or two or more units are integrated into one unit. The integrated unit can be realized in a form of hardware, and can also be realized in a form of a software functional unit.
The integrated unit, if implemented in the form of a software functional unit and sold or used as a stand-alone product, may be stored in a computer readable storage medium. Based on such understanding, the technical solution of the present invention may be embodied in the form of a software product, which is stored in a storage medium and includes instructions for causing a computer device (which may be a personal computer, a server, or a network device) to execute all or part of the steps of the method according to the embodiments of the present invention. And the aforementioned storage medium includes: a U-disk, a removable hard disk, a Read-only Memory (ROM), a Random Access Memory (RAM), a magnetic disk or an optical disk, and other various media capable of storing program codes.
The above-mentioned embodiments are only used for illustrating the technical solutions of the present invention, and not for limiting the same; although the present invention has been described in detail with reference to the foregoing embodiments, it will be understood by those of ordinary skill in the art that: the technical solutions described in the foregoing embodiments may still be modified, or some technical features may be equivalently replaced; and such modifications or substitutions do not depart from the spirit and scope of the corresponding technical solutions of the embodiments of the present invention.
Claims (8)
1. An application issuing method is used for an application issuing system, the application issuing system comprises an enterprise mobile management EMM server and an EMM client, and the application issuing method is characterized by comprising the following steps:
the EMM server receives an application file of an application and an application security protection instruction, wherein the application security protection instruction is obtained according to an application protection type;
the EMM server carries out security processing on the application file according to the application security protection instruction to obtain the security application information of the application;
the EMM server distributes the security application information to an EMM client so that a user uses the application through the security application information of the EMM client;
the secure application information is a remote access client, the EMM server performs secure processing on the application file according to the application security protection instruction to obtain secure application information, and the secure application information comprises:
the EMM server calls a remote issuing service according to the application security protection instruction;
the EMM server installs the application file to a remote server according to a remote release service and obtains an access ID of the application;
and the EMM server generates the remote access client of the application according to a preset remote access client and the access ID.
2. The application issuing method according to claim 1, wherein said secure application information is a secure application file,
the EMM server performs security processing on the application file according to the application security protection instruction to obtain security application information, and the method comprises the following steps:
the EMM server calls an application encapsulation service according to the application security protection instruction;
and the EMM server unpacks the application file according to the application encapsulation service, and adds a preset security Software Development Kit (SDK) to generate the security application file of the application.
3. The application distribution method according to any one of claims 1 to 2, wherein the EMM server distributes the secure application information before an EMM client, further comprising:
and the EMM server receives an EMM policy corresponding to the application and sets the application authority of the application according to the EMM policy.
4. The application distribution method according to claim 3, wherein the EMM server distributes the secure application information after an EMM client, further comprising:
the EMM server receives the EMM strategy updating instruction of the application, and updates the EMM strategy of the application according to the EMM strategy updating instruction to obtain a new EMM strategy;
the EMM server modifies the application rights of the application according to the new EMM policy.
5. An application publication system, comprising:
the system comprises an enterprise mobile management EMM server and an EMM client, wherein the EMM server comprises an application issuing module and an application security processing module;
the application issuing module is used for receiving an application file of an application and an application safety protection instruction, and the application safety protection instruction is obtained according to an application protection type;
the application security processing module is used for carrying out security processing on the application file according to the application security protection instruction to obtain the security application information of the application;
the application issuing module is used for issuing the security application information to an EMM client so that a user uses the application through the security application information of the EMM client;
the security application information is a remote access client, and the application security processing module comprises:
the remote issuing and calling unit is used for calling remote issuing service according to the application safety protection instruction;
the remote release service unit is used for installing the application file to a remote server according to remote release service and acquiring the access ID of the application;
and the remote release service unit is also used for generating the remote access client of the application according to a preset remote access client and the access ID.
6. The application publishing system according to claim 5, wherein the secure application information is a secure application file,
the application security processing module comprises:
the application encapsulation calling unit is used for calling application encapsulation service according to the application safety protection instruction;
and the application packaging service unit is used for unpacking the application file according to the application packaging service and adding a preset security Software Development Kit (SDK) to generate the security application file of the application.
7. The application distribution system according to any of claims 5 to 6, wherein the EMM server further comprises:
and the EMM policy module is used for receiving the EMM policy corresponding to the application and setting the application authority of the application according to the EMM policy.
8. The application publication system of claim 7,
the EMM strategy module is also used for receiving an EMM strategy updating instruction of the application and updating the EMM strategy of the application according to the EMM strategy updating instruction to obtain a new EMM strategy;
the EMM policy module is further configured to modify the application rights of the application according to the new EMM policy.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710229244.0A CN107104955B (en) | 2017-04-10 | 2017-04-10 | Application publishing method and application publishing system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710229244.0A CN107104955B (en) | 2017-04-10 | 2017-04-10 | Application publishing method and application publishing system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN107104955A CN107104955A (en) | 2017-08-29 |
| CN107104955B true CN107104955B (en) | 2020-09-11 |
Family
ID=59675282
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201710229244.0A Active CN107104955B (en) | 2017-04-10 | 2017-04-10 | Application publishing method and application publishing system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN107104955B (en) |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102520994A (en) * | 2011-12-06 | 2012-06-27 | 北京航空航天大学 | Method and system for steaming loading virtual files |
| CN102681912A (en) * | 2011-03-01 | 2012-09-19 | 株式会社日立制作所 | Improving network efficiency for continuous remote copy |
| CN104838630A (en) * | 2012-10-10 | 2015-08-12 | 思杰系统有限公司 | Policy-based application management |
Family Cites Families (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102571940B (en) * | 2011-12-26 | 2015-10-21 | Tcl集团股份有限公司 | Application program remote installation system, method, intelligent terminal, application server |
| CN102591667B (en) * | 2012-01-16 | 2015-05-27 | 深圳市同洲电子股份有限公司 | Method and device for remote publishing application |
| US8725124B2 (en) * | 2012-03-05 | 2014-05-13 | Enterproid Hk Ltd | Enhanced deployment of applications |
| CN103139609B (en) * | 2013-02-01 | 2016-07-06 | 深圳市深信服电子科技有限公司 | The method and apparatus that remote application video playback is optimized |
| CN105530293B (en) * | 2015-12-02 | 2019-07-02 | 深信服科技股份有限公司 | Using dissemination method and device |
-
2017
- 2017-04-10 CN CN201710229244.0A patent/CN107104955B/en active Active
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102681912A (en) * | 2011-03-01 | 2012-09-19 | 株式会社日立制作所 | Improving network efficiency for continuous remote copy |
| CN102520994A (en) * | 2011-12-06 | 2012-06-27 | 北京航空航天大学 | Method and system for steaming loading virtual files |
| CN104838630A (en) * | 2012-10-10 | 2015-08-12 | 思杰系统有限公司 | Policy-based application management |
Also Published As
| Publication number | Publication date |
|---|---|
| CN107104955A (en) | 2017-08-29 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US20210144213A1 (en) | Application Customization | |
| US10951625B2 (en) | Cross-application identity and access management | |
| CN109413043B (en) | Method and device for realizing dynamic configuration of database, electronic equipment and storage medium | |
| US9569240B2 (en) | Method and system to provision and manage a computing application hosted by a virtual instance of a machine | |
| JP2019526843A (en) | Dynamic access to hosted applications | |
| US10708329B2 (en) | Application streaming using access and execution environments | |
| CA3108718C (en) | Computing system providing enterprise mobility management metadata anonymity policy enforcement and related methods | |
| EP3241141A1 (en) | Containerizing web applications for managed execution | |
| EP3158493A1 (en) | Enabling user entropy encryption in non-compliant mobile applications | |
| US9606774B2 (en) | Wrapping an application with field-programmable business logic | |
| US8676939B2 (en) | Dynamic configuration of applications deployed in a cloud | |
| US20160350148A1 (en) | Thin client system, server device, policy management device, control method, and non-transitory computer readable recording medium | |
| US20180107493A1 (en) | Synchronous control method and device via external apparatus | |
| CN107689943B (en) | Data encryption method, user terminal, server and system | |
| JPWO2015049825A1 (en) | Terminal authentication registration system, terminal authentication registration method and program | |
| JP2021535521A (en) | Local map account on virtual desktop | |
| CN107679831B (en) | Method and related device for calling ERP function | |
| CN107104955B (en) | Application publishing method and application publishing system | |
| WO2023185514A1 (en) | Message transmission methods and apparatuses, storage medium and electronic device | |
| US20170118197A1 (en) | Sharing data between sandboxed applications with certificates | |
| CN104820803A (en) | Method of sharing data among corporation mobile applications | |
| CN108958771A (en) | Update method, device, server and the storage medium of application program | |
| US11483221B2 (en) | Launcher application with connectivity detection for shared mobile devices | |
| CN113297589A (en) | Method, device and system for setting cluster permission | |
| CN115225281A (en) | Identity authentication method, device, equipment and readable storage medium |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |