KR20160097815A - An apparatus for displaying area of applicatioin requiring control - Google Patents

Abstract

Provided is a method of displaying an area of an application requiring the control of a mobile device under a bring your own device (BYOD) environment. According to the method, a request for the execution of the application is detected to determine whether the application requires the control of the mobile device. The application is executed in response to the determination that the application requires the control of the mobile device and the determination that an authority of executing the application belongs to a user of the mobile device. A control policy corresponding to the application is applied to the mobile device. A security layer is displayed to represent that the application is executed at the boundary of an area where the application is executed. Accordingly, the user of the mobile device can intuitively recognize the control environment or an authority and control policy applied to the mobile device.

Description

Field of the Invention < RTI ID = 0.0 > [0001] < / RTI >

The present invention relates to an apparatus and method for displaying an area of a control request application, and more particularly, to an apparatus and method for displaying an area of an application requiring control of a mobile device in a BYOD (Bring your own device) environment .

The current society has been introduced as a new information society with steady technological innovation and scientific development, and smart work is spreading not only in developed countries but also in government and private companies in developing countries, and most documents are electronically managed and transmitted .

In recent years, smart phones that are equipped with a high-performance processor and a large-capacity memory and can be freely installed and used by users are rapidly spreading.

Smartphone integrates data communication functions such as schedule management, fax transmission and reception, and Internet access to mobile phone functions. Unlike conventional mobile phones that use only a given function, It can be installed, added or deleted as desired, can be directly connected to the Internet using wireless Internet, can be connected in various ways using various browsing programs, users can create desired applications, It is rapidly spreading in the mobile phone market because it can implement an interface suitable for various applications through the application, and can share applications between smart phones having the same operating system (OS).

In accordance with the spread of smart phones, almost all tasks and services in general life such as office work, settlement service, certificate issuance, banking, and electronic commerce have been performed through online and computerized environments. In such online and computerized environments, digital content is subject to the generation, viewing, storage, editing, and transmission of information. In this case, the digital contents may mean various types of digital information including images, text, multimedia, and the like, for example, digital documents, moving pictures, and the like.

In addition, as a result of the current IT industry, various computer devices have been introduced to various computer devices through various mobile devices such as smart phones and tablet PCs. A variety of ultra-small devices are on the market, ranging from Apple's i-Watch, Google's Glasses to ultra-small cameras and recorders.

As mobile information communication devices such as notebook computers, tablet PCs, smart phones, and micro devices have become widespread, BYOD (Bring your own device) environment, which utilizes the personal mobile information communication devices of employees, It is spreading rapidly. According to VMware's 2013 Research on the Asia Pacific Business Environment, which was first introduced by Intel in February 2009, VMware, a virtualization and cloud solution provider on February 21, 2013, To the company was 93 percent. As such, the BYOD environment is being applied more and more, and there is an interpretation that it is evolving into the so-called 'BYOD ecosystem establishment' stage where personal life and business contacts are increased and devices are diversified.

By creating such a BYOD work environment, there is no inconvenience that employees have to carry a plurality of devices separately for business and personal purposes, thereby improving productivity and reducing the cost of purchasing equipment from the company. However, it is difficult to maintain security of an enterprise because an individual performs his / her business with his / her own device, and privacy may be violated if security is enhanced. In other words, as more and more people are working on personal smart devices, there is a growing concern about corporate information leakage, and there are predictions that they will be the main targets of cyber terrorism.

"As the BYOD family grows, it will cause new cyber security problems such as corporate data loss and financial risk," said Dell SonicWALL, a security company. "The more sophisticated viruses will emerge through SNS such as Facebook and Twitter, It will be extended to all companies through cloud services without distinguishing between large and small businesses. "

In conclusion, business systems through electronic documents provide convenience to us, but unfortunately the internal information of the company is being leaked by a third party. Due to the increasing hacking technique, government agencies and private companies The internal information of the organization can be leaked and the resilience of an institution can be determined. In particular, since the BYOD environment in which a personal mobile information communication device is used for a business of a company is not restricted to a server due to various device changes and work environment changes, Based security is required.

As described above, in the BYOD environment, a control for a mobile device is required for a mobile security and a security solution. In particular, a control of a mobile device may be required for an application that is authorized only to a specific group of users.

However, in the past, when it is desired to execute an application that is authorized only to a specific group of users in the mobile device, it is determined whether or not the application can be executed by the authority. When a plurality of applications are executed redundantly, It is difficult for the user of the mobile device to judge the applied control environment, the authority, and the control policy because the separate indication is not performed immediately.

SUMMARY OF THE INVENTION Accordingly, it is a first object of the present invention to solve the above-mentioned problems and provide a method of controlling a mobile device, including the steps of: determining whether an application to be controlled is executed and / And / or an icon to display an area of the application requesting control of the mobile device in the BYOD environment, which allows the user of the mobile device to intuitively recognize the control environment, authority, and control policy applied to the mobile device And a method for providing the same.

It is a second object of the present invention to solve the above-mentioned problems, and it is an object of the present invention to provide a mobile device and a method for controlling the same, And / or an icon to display an area of the application requesting control of the mobile device in the BYOD environment, which allows the user of the mobile device to intuitively recognize the control environment, authority, and control policy applied to the mobile device And to provide a device for such a device.

It should be understood, however, that the present invention is not limited to the above-described embodiments, but may be variously modified without departing from the spirit and scope of the invention.

According to an aspect of the present invention, there is provided a method of displaying an area of an application that requires control of a mobile device, the method comprising: detecting a request for execution of the application; Determining whether a request is made; Determining whether an execution right for the application is present to the user of the mobile device in response to the determination that the application requires control of the mobile device; Executing the application and applying a control policy corresponding to the application to the mobile device in response to a determination that the execution right is present to the user of the mobile device; And displaying a security layer indicating that the application is being executed on a border of an execution region of the application.

According to an exemplary embodiment, the step of displaying the security layer may further display a control policy applied to the mobile device.

According to an exemplary embodiment, the security layers may be displayed in different colors for a plurality of applications to which different security policies are applied.

According to an exemplary embodiment, the security layer may be displayed with a different thickness for a plurality of applications to which different security policies are applied.

According to one embodiment, the security layer may be displayed in a thicker thickness in proportion to the level of the security policy.

According to an aspect of the present invention, there is provided an apparatus for displaying an area of an application that requires control of a mobile device, the apparatus including: an input unit for receiving a request for execution of an application; In response to the request, determining whether the application requires control of the mobile device, and in response to determining that the application requires control of the mobile device and determining that the user of the mobile device is present, A control unit for executing the application and applying a control policy corresponding to the application to the mobile device; And a display unit for displaying a security layer indicating that the application is being executed in a border of an execution region of the application.

According to one embodiment, the display unit may further display a control policy applied to the mobile device.

According to an exemplary embodiment, the security layers may be displayed in different colors for a plurality of applications to which different security policies are applied.

According to an exemplary embodiment, the security layer may be displayed with a different thickness for a plurality of applications to which different security policies are applied.

According to one embodiment, the security layer may be displayed in a thicker thickness in proportion to the level of the security policy.

According to a method and apparatus for displaying an area of an application that requires control of a mobile device in a BYOD environment according to an embodiment of the present invention, when an application to be controlled is executed, whether the application is running and / Alternatively, the control policy may be displayed as a frame and / or an icon on a screen of the display unit of the mobile device.

Accordingly, since the user of the mobile device can intuitively recognize the control environment, authority, and control policy applied to the mobile device, even when an application requiring one or more control and one or more conventional applications are simultaneously executed, The control environment of the mobile device, the authority of the user of the mobile device, or the control policy currently applied according to the application in the active state can be easily recognized without any effort by the user.

However, the effects of the present invention are not limited thereto, and various modifications may be made without departing from the spirit and scope of the present invention.

1 is a flowchart of a method for displaying an area of an application that requires control of a mobile device according to an embodiment of the present invention.
FIG. 2 is an exemplary view of a mobile device in which an application area is displayed according to the method of FIG.
3 is an illustration of a mobile device in which a security layer is displayed in a different color according to another embodiment of the present invention.
4 is an exemplary view of a mobile device in which a security layer is displayed at a different thickness according to another embodiment of the present invention.
5 is a block diagram showing a configuration of an apparatus for displaying an area of an application requiring control of the mobile device according to an embodiment of the present invention.

For the embodiments of the invention disclosed herein, specific structural and functional descriptions are set forth for the purpose of describing an embodiment of the invention only, and it is to be understood that the embodiments of the invention may be practiced in various forms, The present invention should not be construed as limited to the embodiments described in Figs.

The present invention is capable of various modifications and various forms, and specific embodiments are illustrated in the drawings and described in detail in the text. It is to be understood, however, that the invention is not intended to be limited to the particular forms disclosed, but on the contrary, is intended to cover all modifications, equivalents, and alternatives falling within the spirit and scope of the invention.

The terminology used in this application is used only to describe a specific embodiment and is not intended to limit the invention. The singular expressions include plural expressions unless the context clearly dictates otherwise. In the present application, the terms "comprise", "having", and the like are intended to specify the presence of stated features, integers, steps, operations, elements, components, or combinations thereof, , Steps, operations, components, parts, or combinations thereof, as a matter of principle.

Unless otherwise defined, all terms used herein, including technical or scientific terms, have the same meaning as commonly understood by one of ordinary skill in the art to which this invention belongs. Terms such as those defined in commonly used dictionaries should be construed as meaning consistent with meaning in the context of the relevant art and are not to be construed as ideal or overly formal in meaning unless expressly defined in the present application .

Hereinafter, preferred embodiments of the present invention will be described in detail with reference to the accompanying drawings. The same reference numerals are used for the same constituent elements in the drawings and redundant explanations for the same constituent elements are omitted.

A method of displaying an area of an application that requires control of the mobile device

FIG. 1 is a flow chart of a method for displaying an area of an application requiring control of the mobile device according to an embodiment of the present invention. FIG. 2 is an exemplary diagram of a mobile device displaying an area of an application according to the method of FIG. to be. Hereinafter, a method of displaying an area of an application that requires control of the mobile device according to an embodiment of the present invention will be described in detail with reference to FIGS. 1 and 2. FIG.

The mobile device may be various devices used by the user. Examples of the device include a notebook computer, a mobile phone, a tablet PC, a navigation device, a smart phone, a PDA (personal digital assistant) Multimedia Player) or DVB (Digital Video Broadcasting). Of course, this is merely an example and should be construed as including not only the above-mentioned examples but also devices that are currently developed, commercialized, or capable of all communication to be developed in the future.

Referring to FIGS. 1 and 2, a method of displaying an area of an application that requires control of the mobile device 200 according to an embodiment of the present invention includes first sensing a request for execution of the application, (Step < RTI ID = 0.0 > S110). ≪ / RTI > In the BYOD environment, not all applications require control over the mobile device 200, but may require control over the mobile device 200, for example, for security reasons, especially in the case of applications related to business. Thus, upon sensing a request for execution of an application, it may first determine whether the application requires control of the mobile device 200.

Then, if it is determined that the application requires control of the mobile device 200, in response to this determination, the user of the mobile device 200 may determine whether an execution right for the application is present (step < RTI ID = 0.0 > S120). It is possible to allow execution of the application only for a specific group of users without permitting the execution of the application for all the users. In addition to whether or not the user belongs to a specific group, Or to grant execution rights to. Accordingly, the user of the mobile device 200 can determine whether or not the execution right for the application requested to be executed exists.

In response to this determination, if the user of the mobile device has the right to execute, the application may be executed and a control policy corresponding to the application may be applied to the mobile device 200 (step S130 ). As determined in the preceding steps S110 to S120, the application is an application that requires control of the mobile device 200, and corresponds to an application to which execution rights are assigned only to a specific user. For such an important application, various specific requirements May be corresponded to the control policy. For example, the control policy may be applied to the mobile device 200 to prevent the operation of certain hardware, such as cameras and microphones, to prohibit the function of capturing screens, to block access to external communication networks , But this is merely exemplary of the control policy and is not limited to such an example.

When the execution of the application and the application of the corresponding control policy are completed, a security layer 211 indicating that the application is running is displayed on the border of the execution region of the application displayed on the display unit 210 of the mobile device 200 can do. 1 and 2, the step of displaying the security layer (step S140) may further display the control policy applied to the mobile device 200 in the control policy display area 213, The control policy may be displayed in the form of an icon.

Accordingly, since the user of the mobile device 200 intuitively recognizes the control environment, the authority, and the control policy applied to the mobile device 200, an application requiring at least one control and one or more conventional applications are simultaneously executed The control environment of the mobile device 200, the authority of the user of the mobile device 200, or the currently applied control policy, which are changed depending on the application currently in the execution and activation state, can do.

If execution and / or activation of an application that requires control of the mobile device 200 is terminated and a generic application is executed or activated, the indication of the security layer 211 may disappear, May be changed to a policy corresponding to the general application.

3 is an illustration of a mobile device in which a security layer is displayed in a different color according to another embodiment of the present invention. Referring to FIG. 3, the security layer 211 displayed on the display unit 210 of the mobile device 200 may be displayed in different colors for a plurality of applications to which different security policies are applied. That is, when the first application to which the first security policy is applied is executed, the security layer 211a of the first color may be displayed as shown in FIG. 3A, When the applied second application is executed, a security layer 211b of the second color may be displayed as shown in FIG. 3 (b). Thus, a user of the mobile device 200 may more readily perceive the current security policy based on a different colored security layer 211a or 211b.

4 is an exemplary view of a mobile device in which a security layer is displayed at a different thickness according to another embodiment of the present invention. 4, the security layer 211 displayed on the display unit 210 of the mobile device 200 may be displayed with a different thickness for a plurality of applications to which different security policies are applied. That is, when the first application to which the first security policy is applied is executed, a security layer 211c of the first thickness may be displayed as shown in FIG. 3A, When the applied second application is executed, a security layer 211d of a second thickness can be displayed as shown in FIG. 3 (b).

Furthermore, the security layer 211 may be displayed in a thicker thickness in proportion to the level of the security policy. That is, when a second application to which a higher-level security policy including a stronger constraint is executed is executed, the security layer of the first application to which a lower- A thicker security layer 211d may be displayed. Thus, the user of the mobile device 200 may more readily perceive the level of the current security policy based on the thickness of the security layer 211c or 211d.

Apparatus for displaying an area of an application requesting control of a mobile device

5 is a block diagram showing a configuration of an apparatus for displaying an area of an application requiring control of the mobile device according to an embodiment of the present invention. Hereinafter, a configuration of an apparatus for displaying an area of an application that requires control of the mobile device according to an embodiment of the present invention will be described in detail with reference to FIG.

5, an apparatus (hereinafter referred to as a mobile device 200) for displaying an area of an application requiring control of the mobile device according to an embodiment of the present invention includes a display unit 210, a control unit 220, an input unit 230, and a storage unit 240.

First, the input unit 230 may receive a request for execution of an application. The control unit 220 determines whether the application requests control of the mobile device 200 in response to the request and determines whether the application requests control of the mobile device 200 and determines whether the application requests control of the mobile device 200. [ Execute the application in response to a determination that an execution right exists to the user, and apply a control policy corresponding to the application to the mobile device. The display unit 210 may display a security layer 211 indicating that the application is being executed on the border of the execution region of the application. Meanwhile, the storage unit 240 may store information on a security policy corresponding to the application. Further, the display unit 210 may further display a control policy applied to the mobile device 200. [

Meanwhile, the security layer 211 may be displayed in different colors for a plurality of applications to which different security policies are applied, and may be displayed in different thicknesses for a plurality of applications to which different security policies are applied, It may be displayed as a thicker thickness in proportion to the level of the security policy.

In this regard, in a more detailed operation of an apparatus for displaying an area of an application requiring control of the mobile device according to an embodiment of the present invention, an application that requires control of the mobile device according to an embodiment of the present invention described above May be performed according to a method of displaying an area of the image.

Those skilled in the art will appreciate that the various illustrative logical blocks, modules, circuits, and algorithm steps described in connection with the exemplary embodiments disclosed herein may be implemented as electronic hardware, computer software, or combinations of both. To clearly illustrate this interchangeability of hardware and software, various illustrative components, blocks, modules, circuits, and steps have been described above generally in terms of their functionality. Whether such functionality is implemented in hardware or software depends upon the particular application and design constraints imposed on the overall system. Skilled artisans may implement the described functionality in varying ways for each particular application, but such implementation decisions should not be interpreted as causing a departure from the scope of the present invention.

The methods, sequences, and / or algorithms described in connection with the exemplary embodiments disclosed herein may be embodied directly in hardware, in a software module executed by a processor, or in a combination of the two. The software module may reside in a RAM memory, a flash memory, a ROM memory, an EPROM memory, an EEPROM memory, a register, a hard disk, a removable disk, a CD-ROM, or any other form of storage medium known in the art. An exemplary storage medium is coupled to the processor such that the processor can read information from, and write information to, the storage medium. Alternatively, the storage medium may be integral to the processor.

While the present invention has been particularly shown and described with reference to exemplary embodiments thereof, it will be understood by those of ordinary skill in the art that various changes in form and details may be made therein without departing from the spirit and scope of the invention as defined by the following claims. It will be understood.

200: Mobile device
210:
211: Security Layer
213: Control policy display area
220:
230: Input unit
240:

Claims (10)

A method of displaying an area of an application requiring control of a mobile device,
Detecting a request for execution of the application and determining whether the application requires control of the mobile device;
Determining whether an execution right for the application is present to the user of the mobile device in response to the determination that the application requires control of the mobile device;
Executing the application and applying a control policy corresponding to the application to the mobile device in response to a determination that the execution right is present to the user of the mobile device; And
And displaying a security layer on the border of the execution region of the application, the security layer indicating that the application is being executed. The method according to claim 1,
Wherein the step of displaying the security layer further displays a control policy applied to the mobile device. The method according to claim 1,
Wherein the security layer is displayed in a different color for a plurality of applications to which different security policies are applied. The method according to claim 1,
Wherein the security layer is represented by a different thickness for a plurality of applications to which different security policies are applied. 5. The method of claim 4,
Wherein the security layer is displayed with a thicker thickness in proportion to the level of the security policy. An apparatus for displaying an area of an application requiring control of a mobile device,
An input for receiving a request for execution of an application;
Determining, in response to the request, whether the application requires control of the mobile device; and in response to determining that the application requires control of the mobile device, A control unit for executing an application and applying a control policy corresponding to the application to the mobile device; And
And a display unit for displaying a security layer indicating that the application is being executed in a border of an execution area of the application. The method according to claim 6,
Wherein the display unit further displays a control policy applied to the mobile device. The method according to claim 6,
Wherein the security layer displays an area of the control request application, which is displayed in a different color for a plurality of applications to which different security policies are applied. The method according to claim 6,
Wherein the security layer displays an area of the control request application, which is displayed at a different thickness for a plurality of applications to which different security policies are applied. 10. The method of claim 9,
Wherein the security layer is displayed with a thicker thickness in proportion to the level of the security policy.

Images