WO2019001510A1 - Application information processing and downloading method, server, client and terminal device - Google Patents

Application information processing and downloading method, server, client and terminal device Download PDF

Info

Publication number
WO2019001510A1
WO2019001510A1 PCT/CN2018/093330 CN2018093330W WO2019001510A1 WO 2019001510 A1 WO2019001510 A1 WO 2019001510A1 CN 2018093330 W CN2018093330 W CN 2018093330W WO 2019001510 A1 WO2019001510 A1 WO 2019001510A1
Authority
WO
WIPO (PCT)
Prior art keywords
application
client
information
server
upgrade
Prior art date
Application number
PCT/CN2018/093330
Other languages
French (fr)
Chinese (zh)
Inventor
梅小虎
帅朝春
张俊
林志泳
李东蔚
Original Assignee
Oppo广东移动通信有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Oppo广东移动通信有限公司 filed Critical Oppo广东移动通信有限公司
Publication of WO2019001510A1 publication Critical patent/WO2019001510A1/en

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/06Protocols specially adapted for file transfer, e.g. file transfer protocol [FTP]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/14Session management
    • H04L67/146Markers for unambiguous identification of a particular session, e.g. session cookie or URL-encoding

Definitions

  • the present application belongs to the field of application information processing technologies, and in particular, to an application information processing and downloading method, a server, a client, and a terminal device.
  • the embodiments of the present application provide an application information processing and downloading method, a server, a client, and a terminal device, so as to solve the problem that the prior art is difficult to ensure that the downloaded application is a non-disguised application, thereby causing security risks of the user's property information. problem.
  • a first aspect of the embodiments of the present application provides an application information processing method, including:
  • the information of the application is encrypted and sent to the client, so that the client decrypts the received information of the application, according to the decrypted
  • the information of the application downloads a corresponding application, and the information of the application includes a download address of the application.
  • a second aspect of the embodiment of the present application provides an application downloading method, including:
  • the information of the encrypted application is decrypted according to a pre-stored decryption algorithm, and the corresponding application is downloaded according to the downloaded download address of the decrypted application.
  • a third aspect of the embodiments of the present application provides a server, including:
  • the application query instruction receiving unit is configured to receive an application query instruction sent by the client, where the application query instruction carries a unique identifier of the application;
  • a specified application determining unit configured to determine whether an application corresponding to the unique identifier of the application is a specified application, where the specified application is an application related to user property information;
  • An information encryption unit configured to: after the application corresponding to the unique identifier of the application is a specified application, encrypt the information of the application and send the information to the client, so that the client decrypts the received information of the application. Then, the corresponding application is downloaded according to the decrypted information of the application, where the information of the application includes the download address of the application.
  • a fourth aspect of the embodiment of the present application provides a client, including:
  • the application query instruction sending unit is configured to send an application query instruction to the server, where the application query instruction carries a unique identifier of the application;
  • the encrypted information receiving unit is configured to receive information about the encrypted application sent by the server, where the information of the application includes a download address of the application;
  • the information decryption unit is configured to decrypt the information of the encrypted application according to a pre-stored decryption algorithm, and download the corresponding application according to the downloaded download address of the decrypted application.
  • a fifth aspect of the embodiments of the present application provides a terminal device including a memory, a processor, and a computer program stored in the memory and operable on the processor, when the processor executes the computer program The steps of the method as described in any one of the application information processing methods are implemented.
  • a sixth aspect of the embodiments of the present application provides a computer readable storage medium storing a computer program, the computer program being executed by a processor to implement any one of the application information processing methods The steps of the method.
  • a seventh aspect of the present application provides a computer program product comprising a computer program that, when executed by one or more processors, implements the application information processing method referred to in the first aspect of the present application.
  • FIG. 1 is a flowchart of an application information processing method according to an embodiment of the present application.
  • FIG. 2 is a schematic structural diagram of a mobile terminal according to an embodiment of the present application.
  • FIG. 3 is a flowchart of an application downloading method provided by an embodiment of the present application.
  • FIG. 4 is a schematic structural diagram of a server according to an embodiment of the present application.
  • FIG. 5 is a schematic structural diagram of a client according to an embodiment of the present disclosure.
  • FIG. 6 is a schematic diagram of a terminal device according to an embodiment of the present application.
  • FIG. 1 is a flowchart of an application information processing method according to an embodiment of the present application.
  • the embodiment of the present application is mainly described from the server side, and the details are as follows:
  • Step S11 Receive an application query instruction sent by the client, where the application query instruction carries a unique identifier of the application.
  • FIG. 2 shows a schematic diagram of a mobile terminal including a memory 201, a processor 202, an input device 203, an output device 204, and a bus 205.
  • the server refers to a server that provides legitimate application download information, such as an official server, an application store server, or a legitimate partner server.
  • the identifier of the application is used to uniquely identify the application, including an application name, an application icon, and an application package name.
  • Step S12 Determine whether an application corresponding to the unique identifier of the application is a specified application, and the specified application is an application related to user property information.
  • the designated application is mainly an application involving user property information, such as banking-related applications, applications related to stocks and funds, payment-related payment-related applications (such as Taobao, WeChat).
  • the application of the query is determined to be the specified application, otherwise, the application of the query is determined not to be the specified application.
  • step S13 when the application corresponding to the unique identifier of the application is a specified application, the information of the application is encrypted and sent to the client, so that the client downloads the corresponding application according to the received information of the application.
  • the information about the application includes the download address of the application.
  • the method before the sending the information of the application to the client, includes: combining hardware configuration of the server and/or the client (such as the mobile terminal), the amount of information after encryption, and the network transmission speed.
  • Encryption algorithm for example, setting the hardware configuration of the server and/or the client (such as the mobile terminal) itself, the amount of encrypted information, and the correspondence between the network transmission speed and different encryption algorithms, when the server and/or the client (such as The hardware configuration of the mobile terminal itself, the size of the encrypted information, and the network transmission speed meet the conditions, and select a conditional corresponding encryption algorithm as an algorithm for encrypting the application information, when the server and/or the client (such as the mobile terminal) itself
  • the encryption algorithm corresponding to the condition 2 is selected as the algorithm for encrypting the application information, and so on, and is not limited herein.
  • the higher the hardware configuration of the server and/or the client (such as the mobile terminal) itself the more
  • the server can determine the hardware configuration of the client itself by sending a hardware configuration acquisition request to the client to obtain its own hardware configuration from the client when receiving the application query instruction sent by the client.
  • the server counts the frequency of the application downloaded by the client from the server and/or the size of the downloaded application, and estimates the hardware configuration of the client itself according to the statistical result. Specifically, when the frequency of the downloaded application is higher and/or the size of the downloaded application is larger, the hardware configuration of the client itself is estimated to be higher, and vice versa, the hardware configuration of the client itself is estimated to be lower.
  • the information of the application further includes indication information of the download channel.
  • the step S13 includes:
  • the indication information of the download channel is, for example, a download identifier corresponding to “XX high-speed download”. Specifically, in order to facilitate the improvement of the encryption speed, the same encryption algorithm may be used to encrypt the download address of the application and the indication information of the download channel.
  • A2 Send the encrypted downloading address of the application and the indication information of the download channel to the client, so that the client downloads the corresponding application from the download address of the application by using the indication information of the download channel.
  • the encrypted downloading address of the application and the indication information of the download channel may be sent to the client through the ftps encryption protocol.
  • the application information processing method further includes:
  • An encryption algorithm that modifies information of the application mainly refers to replacing the original encryption algorithm of the server with a new anti-interference encryption algorithm.
  • the server may directly send the upgrade prompt to the client after generating the client upgrade package, or send the upgrade prompt to the client after the client accesses again. It should be noted that in the second case, if the client accesses the server again, the server updates the encryption algorithm multiple times during the period when the client does not access the server, that is, multiple clients are generated.
  • the upgrade package sends the latest client upgrade package to the client regardless of whether the client has obtained the client upgrade package.
  • the application query instruction sent by the client is received, where the application query instruction carries the unique identifier of the application, and determines whether the application corresponding to the unique identifier of the application is a specified application, and the specified application is information related to the user property.
  • the application when the application corresponding to the unique identifier of the application is a specified application, encrypts the information of the application and sends the information to the client, so that the client decrypts the received information of the application, according to the The decrypted information of the application downloads a corresponding application, and the information of the application includes a download address of the application.
  • the application corresponding to the unique identifier of the application is a specified application
  • the information of the application is encrypted and sent to the client
  • the specified application is an application related to the user property information, so that the sending to the client includes downloading
  • the application information of the address is more secure, thereby ensuring that the application downloaded by the client is a non-disguised application, thereby improving the security of the user property information.
  • FIG. 3 is a flowchart of an application downloading method provided by an embodiment of the present application.
  • the embodiment of the present application is mainly described from the client side, and the details are as follows:
  • Step S31 Send an application query instruction to the server, where the application query instruction carries a unique identifier of the application.
  • the user can click the “query button” displayed on the screen of the client (such as the mobile terminal) to issue an application query instruction after inputting the information such as the application keyword, and the client forwards the received application query instruction to the server.
  • the client such as the mobile terminal
  • Step S32 Receive information of the encrypted application sent by the server, where the information of the application includes a download address of the application.
  • Step S33 decrypting the information of the encrypted application according to a pre-stored decryption algorithm, and downloading the corresponding application according to the downloaded download address of the decrypted application.
  • the client obtains the decryption algorithm of the information of the application from the server, and stores the decryption algorithm. After receiving the information of the encrypted application sent by the server, the client decrypts the information of the encrypted application according to the stored decryption algorithm. After obtaining the download address of the application included in the information of the application, the corresponding application is downloaded from the download address.
  • the application downloading method further includes:
  • C2 Obtain a client upgrade package from the server according to the upgrade prompt, where the client upgrade package includes a decryption algorithm corresponding to the modified encryption algorithm of the server. It should be noted that in the second case, if the client accesses the server again, the server updates the encryption algorithm multiple times during the period when the client does not access the server, that is, multiple clients are generated. Upgrade package, regardless of whether the client has obtained the client upgrade package, the latest client upgrade package will be obtained from the server.
  • the application query instruction is sent to the server, where the application query instruction carries the unique identifier of the application, and receives the information of the encrypted application sent by the server, where the information of the application includes the download address of the application, according to the pre-stored
  • the decryption algorithm decrypts the information of the encrypted application, and downloads the corresponding application according to the downloaded address of the decrypted application. Since the download address obtained by the client is encrypted, and the encrypted download address has higher anti-interference than the unencrypted download address, the client can ensure that the downloaded application is downloaded when the application is downloaded from the decrypted download address. Camouflage applications, thereby improving the security of user property information.
  • FIG. 4 is a schematic structural diagram of a server provided by an embodiment of the present application. For convenience of description, only parts related to the embodiment of the present application are shown.
  • the server includes an application query instruction receiving unit 41, a designated application determining unit 42, and an information encrypting unit 43. among them:
  • the application query instruction receiving unit 41 is configured to receive an application query instruction sent by the client, where the application query instruction carries a unique identifier of the application.
  • the identifier of the application is used to uniquely identify the application, including an application name, an application icon, and an application package name.
  • the specified application determining unit 42 is configured to determine whether the application corresponding to the unique identifier of the application is a specified application, and the specified application is an application involving user property information.
  • the designated application is mainly an application involving user property information, such as banking-related applications, applications related to stocks and funds, payment-related payment-related applications (such as Taobao, WeChat).
  • the information encryption unit 43 is configured to: after the application corresponding to the unique identifier of the application is a specified application, encrypt the information of the application and send the information to the client, so that the client performs the received information about the application. After decryption, the corresponding application is downloaded according to the decrypted information of the application, and the information of the application includes the download address of the application.
  • the server further includes: an encryption algorithm selecting unit, configured to select a corresponding encryption algorithm by combining hardware configuration of the server and/or the client (such as the mobile terminal), the amount of information after encryption, and the network transmission speed.
  • an encryption algorithm selecting unit configured to select a corresponding encryption algorithm by combining hardware configuration of the server and/or the client (such as the mobile terminal), the amount of information after encryption, and the network transmission speed.
  • the server can determine the hardware configuration of the client itself by sending a hardware configuration acquisition request to the client to obtain its own hardware configuration from the client when receiving the application query instruction sent by the client.
  • the server counts the frequency of the application downloaded by the client from the server and/or the size of the downloaded application, and estimates the hardware configuration of the client itself according to the statistical result. Specifically, when the frequency of the downloaded application is higher and/or the size of the downloaded application is larger, the hardware configuration of the client itself is estimated to be higher, and vice versa, the hardware configuration of the client itself is estimated to be lower.
  • the information of the application further includes indication information of the download channel.
  • the information encryption unit 43 includes:
  • the download address encryption module is configured to encrypt the download address of the application and the indication information of the download channel.
  • the downloading address sending module is configured to send the encrypted downloading address of the application and the indication information of the download channel to the client, so that the client downloads from the downloading address of the application by using the indication information of the download channel.
  • the corresponding application Specifically, in order to increase security, the encrypted downloading address of the application and the indication information of the download channel may be sent to the client through the ftps encryption protocol.
  • the server further includes:
  • the encryption algorithm modification unit is configured to modify an encryption algorithm of the information of the application and determine a corresponding decryption algorithm.
  • a client upgrade package generating unit is configured to generate a client upgrade package including the decryption algorithm.
  • an upgrade prompt sending unit configured to send an upgrade prompt to the client, so that the client obtains the client upgrade package and performs an upgrade operation.
  • the server may directly send the upgrade prompt to the client after generating the client upgrade package, or send the upgrade prompt to the client after the client accesses again.
  • the information of the application is encrypted and sent to the client, and the specified application is an application involving user property information, thereby
  • the information sent to the client including the download address is more secure, thereby ensuring that the application downloaded by the client is a non-disguised application, thereby improving the security of the user's property information.
  • FIG. 5 is a schematic structural diagram of a client provided by an embodiment of the present application. For the convenience of description, only parts related to the embodiment of the present application are shown.
  • the client includes an application query instruction transmitting unit 51, an encrypted information receiving unit 52, and an information decrypting unit 53. among them:
  • the application query instruction sending unit 51 is configured to send an application query instruction to the server, where the application query instruction carries a unique identifier of the application.
  • the encrypted information receiving unit 52 is configured to receive information of the encrypted application sent by the server, where the information of the application includes a download address of the application.
  • the information decryption unit 53 is configured to decrypt the information of the encrypted application according to a pre-stored decryption algorithm, and download the corresponding application according to the downloaded download address of the application.
  • the client further includes:
  • the upgrade prompt receiving unit is configured to receive an upgrade prompt sent by the server. Specifically, if the server directly sends an upgrade prompt to the client after generating the client upgrade package, the client is in a working state (such as being powered on), whether the client is in a screen startup state or a black screen state, Receiving the upgrade prompt sent by the server; if the server sends the upgrade prompt after receiving the application query command sent by the client again, the client will access the server, for example, when the application store is opened, the server sends the upgrade Upgrade tips.
  • the client upgrade package obtaining unit is configured to obtain a client upgrade package from the server according to the upgrade prompt, where the client upgrade package includes a decryption algorithm corresponding to the modified encryption algorithm of the server.
  • an upgrade unit configured to perform a corresponding upgrade operation according to the client upgrade package, and replace the original decryption algorithm with a decryption algorithm corresponding to the modified encryption algorithm of the server.
  • the client since the download address obtained by the client is encrypted, and the anti-interference of the encrypted download address is higher than the unencrypted download address, the client can download the application from the decrypted download address.
  • the application that is guaranteed to be downloaded is a non-disguised application, thereby improving the security of the user's property information.
  • FIG. 6 is a schematic diagram of a terminal device according to an embodiment of the present application.
  • the terminal device 6 of this embodiment includes a processor 60, a memory 61, and a computer program 62 stored in the memory 61 and operable on the processor 60.
  • the processor 60 executes the computer program 62, the steps in the foregoing embodiments of the respective application information processing methods are implemented, such as steps S11 to S13 shown in FIG.
  • the processor 60 implements the following steps by running the above-described computer program 62 stored in the memory 61:
  • the information of the application is encrypted and sent to the client, so that the client decrypts the received information of the application, according to the decrypted
  • the information of the application downloads a corresponding application, and the information of the application includes a download address of the application.
  • the information of the application further includes indication information of the download channel.
  • the information of the application is encrypted and sent to the client, so that the client decrypts the received information of the application, according to the The decrypted application of the application downloads the corresponding application, including:
  • the processor 60 also implements the following steps by running the computer program 62 stored in the memory 61:
  • the method includes:
  • the corresponding encryption algorithm is selected in combination with the hardware configuration of the server and/or the client itself, the amount of information after encryption, and the network transmission speed.
  • the hardware configuration of the client itself is determined by:
  • a hardware configuration acquisition request is sent to the client to obtain its own hardware configuration from the client.
  • the hardware configuration of the client itself is determined by:
  • the frequency of the application downloaded by the client from the server itself and/or the size of the downloaded application are counted, and the hardware configuration of the client itself is estimated according to the statistical result.
  • the processor 60 when executing the computer program 62, implements the functions of the various modules/units in the various apparatus embodiments described above, such as the functions of the units 41-44 shown in FIG.
  • the computer program 62 can be partitioned into one or more modules/units that are stored in the memory 61 and executed by the processor 60 to complete This application.
  • the one or more modules/units may be a series of computer program instruction segments capable of performing a particular function, the instruction segments being used to describe the execution of the computer program 62 in the terminal device 6.
  • the computer program 62 can be divided into an application query instruction receiving unit, a specified application determining unit, and an information encryption unit, and the specific functions of each unit are as follows:
  • the application query instruction receiving unit is configured to receive an application query instruction sent by the client, where the application query instruction carries a unique identifier of the application;
  • a specified application determining unit configured to determine whether an application corresponding to the unique identifier of the application is a specified application, where the specified application is an application related to user property information;
  • An information encryption unit configured to: after the application corresponding to the unique identifier of the application is a specified application, encrypt the information of the application and send the information to the client, so that the client decrypts the received information of the application. Then, the corresponding application is downloaded according to the decrypted information of the application, where the information of the application includes the download address of the application.
  • the terminal device 6 may be a computing device such as a desktop computer, a notebook, a palmtop computer, and a cloud server.
  • the terminal device may include, but is not limited to, a processor 60 and a memory 61. It will be understood by those skilled in the art that FIG. 6 is only an example of the terminal device 6, and does not constitute a limitation of the terminal device 6, and may include more or less components than those illustrated, or combine some components or different components.
  • the terminal device may further include an input/output device, a network access device, a bus, and the like.
  • the processor 60 may be a central processing unit (CPU), or may be another general-purpose processor, a digital signal processor (DSP), an application specific integrated circuit (ASIC), Field-Programmable Gate Array (FPGA) or other programmable logic device, discrete gate or transistor logic device, discrete hardware components, etc.
  • the general purpose processor may be a microprocessor or the processor or any conventional processor or the like.
  • the memory 61 may be an internal storage unit of the terminal device 6, such as a hard disk or a memory of the terminal device 6.
  • the memory 61 may also be an external storage device of the terminal device 6, for example, a plug-in hard disk equipped on the terminal device 6, a smart memory card (SMC), and a secure digital (SD). Card, flash card, etc. Further, the memory 61 may also include both an internal storage unit of the terminal device 6 and an external storage device.
  • the memory 61 is used to store the computer program and other programs and data required by the terminal device.
  • the memory 61 can also be used to temporarily store data that has been output or is about to be output.
  • each functional unit and module in the foregoing system may be integrated into one processing unit, or each unit may exist physically separately, or two or more units may be integrated into one unit, and the integrated unit may be implemented by hardware.
  • Formal implementation can also be implemented in the form of software functional units.
  • the specific names of the respective functional units and modules are only for the purpose of facilitating mutual differentiation, and are not intended to limit the scope of protection of the present application.
  • the disclosed device/terminal device and method may be implemented in other manners.
  • the device/terminal device embodiments described above are merely illustrative.
  • the division of the modules or units is only a logical function division.
  • there may be another division manner for example, multiple units.
  • components may be combined or integrated into another system, or some features may be omitted or not performed.
  • the mutual coupling or direct coupling or communication connection shown or discussed may be an indirect coupling or communication connection through some interface, device or unit, and may be in electrical, mechanical or other form.
  • the units described as separate components may or may not be physically separated, and the components displayed as units may or may not be physical units, that is, may be located in one place, or may be distributed to multiple network units. Some or all of the units may be selected according to actual needs to achieve the purpose of the solution of the embodiment.
  • each functional unit in each embodiment of the present application may be integrated into one processing unit, or each unit may exist physically separately, or two or more units may be integrated into one unit.
  • the above integrated unit can be implemented in the form of hardware or in the form of a software functional unit.
  • the integrated modules/units if implemented in the form of software functional units and sold or used as separate products, may be stored in a computer readable storage medium. Based on such understanding, the present application implements all or part of the processes in the foregoing embodiments, and may also be completed by a computer program to instruct related hardware.
  • the computer program may be stored in a computer readable storage medium. The steps of the various method embodiments described above may be implemented when the program is executed by the processor.
  • the computer program comprises computer program code, which may be in the form of source code, object code form, executable file or some intermediate form.
  • the computer readable medium may include any entity or device capable of carrying the computer program code, a recording medium, a USB flash drive, a removable hard disk, a magnetic disk, an optical disk, a computer memory, a read-only memory (ROM). , random access memory (RAM, Random Access Memory), electrical carrier signals, telecommunications signals, and software distribution media. It should be noted that the content contained in the computer readable medium may be appropriately increased or decreased according to the requirements of legislation and patent practice in a jurisdiction, for example, in some jurisdictions, according to legislation and patent practice, computer readable media Does not include electrical carrier signals and telecommunication signals.

Abstract

The present application is applicable to the technical field of application information, and provides an application information processing and downloading method, a server, a client and a terminal device, comprising: receiving an application query instruction sent by the client, wherein the application query instruction carries a unique application identifier; determining whether an application corresponding to the unique application identifier is a specified application, wherein the specified application is an application related to user property information; when the application corresponding to the unique application identifier is the specified application, encrypting information about the application and sending same to the client, so that after decrypting the received information about the application, the client downloads a corresponding application according to the decrypted information about the application, wherein the information about the application includes a download address of the application. By means of the method, the security of the user property information can be improved.

Description

应用信息处理及下载方法、服务器、客户端及终端设备Application information processing and downloading method, server, client and terminal device 技术领域Technical field
本申请属于应用信息处理技术领域,尤其涉及应用信息处理及下载方法、服务器、客户端及终端设备。The present application belongs to the field of application information processing technologies, and in particular, to an application information processing and downloading method, a server, a client, and a terminal device.
背景技术Background technique
目前,通过移动终端(如手机)安装的与财产有关的应用实现资金转账、支付越来越流行。At present, fund transfer and payment are becoming more and more popular through property-related applications installed by mobile terminals such as mobile phones.
由于与财产有关的应用涉及到用户敏感的财产信息安全,因此,若一些非法的应用市场和伪装应用一旦被安装,将对用户的财产信息产生严重的安全隐患。Since property-related applications involve the security of user-sensitive property information, if some illegal application markets and camouflage applications are installed, they will pose serious security risks to the user's property information.
故,需要提供一种新的方法以解决上述问题。Therefore, it is necessary to provide a new method to solve the above problems.
发明内容Summary of the invention
有鉴于此,本申请实施例提供了应用信息处理及下载方法、服务器、客户端及终端设备,以解决现有技术难以保证下载的应用为非伪装应用,从而使用户的财产信息存在安全隐患的问题。In view of this, the embodiments of the present application provide an application information processing and downloading method, a server, a client, and a terminal device, so as to solve the problem that the prior art is difficult to ensure that the downloaded application is a non-disguised application, thereby causing security risks of the user's property information. problem.
本申请实施例的第一方面提供了一种应用信息处理方法,包括:A first aspect of the embodiments of the present application provides an application information processing method, including:
接收客户端发送的应用查询指令,所述应用查询指令携带应用的唯一标识;Receiving an application query instruction sent by the client, where the application query instruction carries a unique identifier of the application;
判断所述应用的唯一标识对应的应用是否为指定应用,所述指定应用为涉及用户财产信息的应用;Determining whether the application corresponding to the unique identifier of the application is a specified application, where the specified application is an application involving user property information;
在所述应用的唯一标识对应的应用为指定应用时,加密所述应用的信息后发送至客户端,以使所述客户端对接收到的所述应用的信息进行解密后,根据解密后的所述应用的信息下载对应的应用,所述应用的信息包括应用的下载地址。When the application corresponding to the unique identifier of the application is a specified application, the information of the application is encrypted and sent to the client, so that the client decrypts the received information of the application, according to the decrypted The information of the application downloads a corresponding application, and the information of the application includes a download address of the application.
本申请实施例的第二方面提供了一种应用下载方法,包括:A second aspect of the embodiment of the present application provides an application downloading method, including:
发送应用查询指令至服务器,所述应用查询指令携带应用的唯一标识;Sending an application query instruction to the server, where the application query instruction carries a unique identifier of the application;
接收所述服务器发送的加密的应用的信息,所述应用的信息包括应用的下载地址;Receiving information of the encrypted application sent by the server, where the information of the application includes a download address of the application;
根据预先存储的解密算法解密所述加密的应用的信息,根据解密得到的应用的下载地址下载对应的应用。The information of the encrypted application is decrypted according to a pre-stored decryption algorithm, and the corresponding application is downloaded according to the downloaded download address of the decrypted application.
本申请实施例的第三方面提供了一种服务器,包括:A third aspect of the embodiments of the present application provides a server, including:
应用查询指令接收单元,用于接收客户端发送的应用查询指令,所述应用查询指令携带应用的唯一标识;The application query instruction receiving unit is configured to receive an application query instruction sent by the client, where the application query instruction carries a unique identifier of the application;
指定应用判断单元,用于判断所述应用的唯一标识对应的应用是否为指定应用,所述指定应用为涉及用户财产信息的应用;a specified application determining unit, configured to determine whether an application corresponding to the unique identifier of the application is a specified application, where the specified application is an application related to user property information;
信息加密单元,用于在所述应用的唯一标识对应的应用为指定应用时,加密所述应用 的信息后发送至客户端,以使所述客户端对接收到的所述应用的信息进行解密后,根据解密后的所述应用的信息下载对应的应用,所述应用的信息包括应用的下载地址。An information encryption unit, configured to: after the application corresponding to the unique identifier of the application is a specified application, encrypt the information of the application and send the information to the client, so that the client decrypts the received information of the application. Then, the corresponding application is downloaded according to the decrypted information of the application, where the information of the application includes the download address of the application.
本申请实施例的第四方面提供了一种客户端,包括:A fourth aspect of the embodiment of the present application provides a client, including:
应用查询指令发送单元,用于发送应用查询指令至服务器,所述应用查询指令携带应用的唯一标识;The application query instruction sending unit is configured to send an application query instruction to the server, where the application query instruction carries a unique identifier of the application;
加密的信息接收单元,用于接收所述服务器发送的加密的应用的信息,所述应用的信息包括应用的下载地址;The encrypted information receiving unit is configured to receive information about the encrypted application sent by the server, where the information of the application includes a download address of the application;
信息解密单元,用于根据预先存储的解密算法解密所述加密的应用的信息,根据解密得到的应用的下载地址下载对应的应用。The information decryption unit is configured to decrypt the information of the encrypted application according to a pre-stored decryption algorithm, and download the corresponding application according to the downloaded download address of the decrypted application.
本申请实施例的第五方面提供了一种终端设备,包括存储器、处理器以及存储在所述存储器中并可在所述处理器上运行的计算机程序,所述处理器执行所述计算机程序时实现如应用信息处理方法任一项所述方法的步骤。A fifth aspect of the embodiments of the present application provides a terminal device including a memory, a processor, and a computer program stored in the memory and operable on the processor, when the processor executes the computer program The steps of the method as described in any one of the application information processing methods are implemented.
本申请实施例的第六方面提供了一种计算机可读存储介质,所述计算机可读存储介质存储有计算机程序,所述计算机程序被处理器执行时实现如应用信息处理方法任一项所述方法的步骤。A sixth aspect of the embodiments of the present application provides a computer readable storage medium storing a computer program, the computer program being executed by a processor to implement any one of the application information processing methods The steps of the method.
本申请实第七方面提供一种计算机程序产品,所述计算机程序产品包括计算机程序,所述计算机程序被一个或多个处理器执行时实现本申请第一方面提及的应用信息处理方法。A seventh aspect of the present application provides a computer program product comprising a computer program that, when executed by one or more processors, implements the application information processing method referred to in the first aspect of the present application.
附图说明DRAWINGS
为了更清楚地说明本申请实施例或现有技术中的技术方案,下面将对实施例或现有技术描述中所需要使用的附图作简单地介绍,显而易见地,下面描述中的附图仅仅是本申请的一些实施例,对于本领域普通技术人员来讲,在不付出创造性劳动性的前提下,还可以根据这些附图获得其他的附图。In order to more clearly illustrate the embodiments of the present application or the technical solutions in the prior art, the drawings to be used in the embodiments or the prior art description will be briefly described below. Obviously, the drawings in the following description are only It is a certain embodiment of the present application, and other drawings can be obtained according to the drawings without any creative labor for those skilled in the art.
图1是本申请实施例提供的一种应用信息处理方法的流程图;1 is a flowchart of an application information processing method according to an embodiment of the present application;
图2是本申请实施例提供的一种移动终端的结构示意图;2 is a schematic structural diagram of a mobile terminal according to an embodiment of the present application;
图3是本申请实施例提供的一种应用下载方法的流程图;3 is a flowchart of an application downloading method provided by an embodiment of the present application;
图4是本申请实施例提供的一种服务器的结构示意图;4 is a schematic structural diagram of a server according to an embodiment of the present application;
图5是本申请实施例提供的一种客户端的结构示意图;FIG. 5 is a schematic structural diagram of a client according to an embodiment of the present disclosure;
图6是本申请实施例提供的终端设备的示意图。FIG. 6 is a schematic diagram of a terminal device according to an embodiment of the present application.
具体实施方式Detailed ways
为使得本申请的发明目的、特征、优点能够更加的明显和易懂,下面将结合本申请实 施例中的附图,对本申请实施例中的技术方案进行清楚、完整地描述,显然,所描述的实施例仅仅是本申请一部分实施例,而非全部实施例。基于本申请中的实施例,本领域普通技术人员在没有做出创造性劳动前提下所获得的所有其他实施例,都属于本申请保护的范围。In order to make the object, the features and the advantages of the present invention more obvious and easy to understand, the technical solutions in the embodiments of the present application will be clearly and completely described in conjunction with the drawings in the embodiments of the present application. The embodiments are only a part of the embodiments of the present application, and not all of them. All other embodiments obtained by a person of ordinary skill in the art based on the embodiments of the present application without departing from the inventive scope are the scope of the present application.
为了说明本申请所述的技术方案,下面通过具体实施例来进行说明。In order to explain the technical solutions described in the present application, the following description will be made by way of specific embodiments.
图1示出了本申请实施例提供的一种应用信息处理方法的流程图,本申请实施例主要从服务端侧进行描写,详述如下:FIG. 1 is a flowchart of an application information processing method according to an embodiment of the present application. The embodiment of the present application is mainly described from the server side, and the details are as follows:
步骤S11,接收客户端发送的应用查询指令,所述应用查询指令携带应用的唯一标识。Step S11: Receive an application query instruction sent by the client, where the application query instruction carries a unique identifier of the application.
具体地,用户可在输入应用关键字等信息后点击移动终端屏幕上显示的“查询按钮”发出应用查询指令,移动终端再将该查询指令转发至服务器,以使该服务器接收应用查询指令。其中,图2示出了一种移动终端的示意图,该移动终端包括存储器201、处理器202、输入设备203、输出设备204、总线205。Specifically, the user can click the “query button” displayed on the screen of the mobile terminal to issue an application query instruction after inputting the information such as the application keyword, and the mobile terminal forwards the query instruction to the server, so that the server receives the application query instruction. 2 shows a schematic diagram of a mobile terminal including a memory 201, a processor 202, an input device 203, an output device 204, and a bus 205.
其中,该服务器是指提供合法应用下载信息的服务器,比如官方服务器、应用商店的服务器或合法合作商的服务器。The server refers to a server that provides legitimate application download information, such as an official server, an application store server, or a legitimate partner server.
其中,应用的标识用于唯一标识应用,包括应用名称、应用图标、应用包名等任一种。The identifier of the application is used to uniquely identify the application, including an application name, an application icon, and an application package name.
步骤S12,判断所述应用的唯一标识对应的应用是否为指定应用,所述指定应用为涉及用户财产信息的应用。Step S12: Determine whether an application corresponding to the unique identifier of the application is a specified application, and the specified application is an application related to user property information.
其中,该指定应用主要为涉及用户财产信息的应用,比如与银行有关的应用,与股票和基金有关的应用、与支付有关的支付类应用(如淘宝、微信)等。Among them, the designated application is mainly an application involving user property information, such as banking-related applications, applications related to stocks and funds, payment-related payment-related applications (such as Taobao, WeChat).
具体地,通过将应用的唯一标识与预存储的指定应用的唯一标识比较,若相同,判定查询的应用为指定应用,否则,判定查询的应用不为指定应用。Specifically, by comparing the unique identifier of the application with the pre-stored unique identifier of the specified application, if the same, the application of the query is determined to be the specified application, otherwise, the application of the query is determined not to be the specified application.
步骤S13,在所述应用的唯一标识对应的应用为指定应用时,加密所述应用的信息后发送至客户端,以使所述客户端根据接收的所述应用的信息下载对应的应用,所述应用的信息包括应用的下载地址。In step S13, when the application corresponding to the unique identifier of the application is a specified application, the information of the application is encrypted and sent to the client, so that the client downloads the corresponding application according to the received information of the application. The information about the application includes the download address of the application.
具体地,在所述加密所述应用的信息后发送至客户端之前,包括:结合服务器和/或客户端(如移动终端)本身的硬件配置、加密后的信息量大小、网络传输速度选择相应的加密算法,例如,设置服务器和/或客户端(如移动终端)本身的硬件配置、加密后的信息量大小以及网络传输速度与不同加密算法的对应关系,当服务器和/或客户端(如移动终端)本身的硬件配置、加密后的信息量大小以及网络传输速度符合条件一时,选择条件一对应的加密算法作为加密应用的信息的算法,当服务器和/或客户端(如移动终端)本身的硬件配置、加密后的信息量大小以及网络传输速度符合条件二时,选择条件二对应的加密算法作为加密应用的信息的算法,其他以此类推,此处不作限定。当然,服务器和/或客户端(如 移动终端)本身的硬件配置越高,其能实现的加密算法也越复杂,带来的安全性也越高。Specifically, before the sending the information of the application to the client, the method includes: combining hardware configuration of the server and/or the client (such as the mobile terminal), the amount of information after encryption, and the network transmission speed. Encryption algorithm, for example, setting the hardware configuration of the server and/or the client (such as the mobile terminal) itself, the amount of encrypted information, and the correspondence between the network transmission speed and different encryption algorithms, when the server and/or the client (such as The hardware configuration of the mobile terminal itself, the size of the encrypted information, and the network transmission speed meet the conditions, and select a conditional corresponding encryption algorithm as an algorithm for encrypting the application information, when the server and/or the client (such as the mobile terminal) itself When the hardware configuration, the amount of encrypted information, and the network transmission speed meet the condition 2, the encryption algorithm corresponding to the condition 2 is selected as the algorithm for encrypting the application information, and so on, and is not limited herein. Of course, the higher the hardware configuration of the server and/or the client (such as the mobile terminal) itself, the more complicated the encryption algorithm that can be implemented, and the higher the security.
其中,服务端可通过以下方式确定客户端本身的硬件配置:在接收到客户端发送的应用查询指令时,发送硬件配置获取请求至客户端,以从所述客户端获取其自身的硬件配置。The server can determine the hardware configuration of the client itself by sending a hardware configuration acquisition request to the client to obtain its own hardware configuration from the client when receiving the application query instruction sent by the client.
或者,or,
服务器统计客户端从该服务器下载的应用的频率和/或下载的应用的大小,根据统计结果估算客户端本身的硬件配置。具体地,当下载的应用的频率越高和/或下载的应用的大小越大时,估算该客户端本身的硬件配置越高,反之,估算该客户端本身的硬件配置越低。The server counts the frequency of the application downloaded by the client from the server and/or the size of the downloaded application, and estimates the hardware configuration of the client itself according to the statistical result. Specifically, when the frequency of the downloaded application is higher and/or the size of the downloaded application is larger, the hardware configuration of the client itself is estimated to be higher, and vice versa, the hardware configuration of the client itself is estimated to be lower.
可选地,所述应用的信息还包括下载通道的指示信息,此时,所述步骤S13包括:Optionally, the information of the application further includes indication information of the download channel. In this case, the step S13 includes:
A1、加密所述应用的下载地址和下载通道的指示信息。其中,下载通道的指示信息如“XX高速下载”对应的下载标识等。具体地,为了便于提高加密速度,可采用同一种加密算法加密所述应用的下载地址和下载通道的指示信息。A1. Encrypt the download address of the application and the indication information of the download channel. The indication information of the download channel is, for example, a download identifier corresponding to “XX high-speed download”. Specifically, in order to facilitate the improvement of the encryption speed, the same encryption algorithm may be used to encrypt the download address of the application and the indication information of the download channel.
A2、将加密后的所述应用的下载地址和下载通道的指示信息发送至客户端,以使所述客户端通过所述下载通道的指示信息从所述应用的下载地址下载对应的应用。具体地,为了增加安全性,可通过ftps加密协议,将加密后的所述应用的下载地址和下载通道的指示信息发送至客户端。A2: Send the encrypted downloading address of the application and the indication information of the download channel to the client, so that the client downloads the corresponding application from the download address of the application by using the indication information of the download channel. Specifically, in order to increase security, the encrypted downloading address of the application and the indication information of the download channel may be sent to the client through the ftps encryption protocol.
可选地,为了增加加密后的应用的信息的抗干扰性,则在加密算法的使用时长达到时长阈值后,或者,在加密算法的使用时长没有达到时长阈值,但是加密后的应用的信息被破解,则需要更改该加密算法,此时,所述应用信息处理方法还包括:Optionally, in order to increase the anti-interference of the information of the encrypted application, after the usage duration of the encryption algorithm reaches the duration threshold, or the duration of the encryption algorithm does not reach the duration threshold, the information of the encrypted application is If the hacking is performed, the cryptographic algorithm needs to be changed. In this case, the application information processing method further includes:
B1、修改所述应用的信息的加密算法。这里的修改主要是指采用新的抗干扰性更强的加密算法替换服务器原有的加密算法。B1. An encryption algorithm that modifies information of the application. The modification here mainly refers to replacing the original encryption algorithm of the server with a new anti-interference encryption algorithm.
B2、根据与修改后的加密算法对应的解密算法生成客户端升级包。B2. Generate a client upgrade package according to a decryption algorithm corresponding to the modified encryption algorithm.
B3、发送升级提示至所述客户端,以使所述客户端获取所述客户端升级包并执行升级操作。具体地,服务器可在生成客户端升级包后直接发送升级提示至客户端,也可在客户端再次访问后才发送升级提示至客户端。需要指出的是,在第2种情况中,若客户端再次访问服务器的间隔时间较长,在客户端没有访问服务器的时间段内,服务器更新了多次加密算法,即生成了多个客户端升级包,则无论客户端是否获取过客户端升级包,都将最新的客户端升级包发送给客户端。B3. Send an upgrade prompt to the client, so that the client obtains the client upgrade package and performs an upgrade operation. Specifically, the server may directly send the upgrade prompt to the client after generating the client upgrade package, or send the upgrade prompt to the client after the client accesses again. It should be noted that in the second case, if the client accesses the server again, the server updates the encryption algorithm multiple times during the period when the client does not access the server, that is, multiple clients are generated. The upgrade package sends the latest client upgrade package to the client regardless of whether the client has obtained the client upgrade package.
本申请实施例中,接收客户端发送的应用查询指令,所述应用查询指令携带应用的唯一标识,判断所述应用的唯一标识对应的应用是否为指定应用,所述指定应用为涉及用户财产信息的应用,在所述应用的唯一标识对应的应用为指定应用时,加密所述应用的信息后发送至客户端,以使所述客户端对接收到的所述应用的信息进行解密后,根据解密后的所述应用的信息下载对应的应用,所述应用的信息包括应用的下载地址。由于在所述应用 的唯一标识对应的应用为指定应用时,加密所述应用的信息后发送至客户端,而所述指定应用为涉及用户财产信息的应用,因此,使得发送至客户端的包括下载地址的应用的信息更安全,进而保证客户端下载的应用为非伪装应用,从而提高了用户财产信息的安全性。In the embodiment of the present application, the application query instruction sent by the client is received, where the application query instruction carries the unique identifier of the application, and determines whether the application corresponding to the unique identifier of the application is a specified application, and the specified application is information related to the user property. The application, when the application corresponding to the unique identifier of the application is a specified application, encrypts the information of the application and sends the information to the client, so that the client decrypts the received information of the application, according to the The decrypted information of the application downloads a corresponding application, and the information of the application includes a download address of the application. When the application corresponding to the unique identifier of the application is a specified application, the information of the application is encrypted and sent to the client, and the specified application is an application related to the user property information, so that the sending to the client includes downloading The application information of the address is more secure, thereby ensuring that the application downloaded by the client is a non-disguised application, thereby improving the security of the user property information.
图3示出了本申请实施例提供的一种应用下载方法的流程图,本申请实施例主要从客户端侧进行描写,详述如下:FIG. 3 is a flowchart of an application downloading method provided by an embodiment of the present application. The embodiment of the present application is mainly described from the client side, and the details are as follows:
步骤S31,发送应用查询指令至服务器,所述应用查询指令携带应用的唯一标识。Step S31: Send an application query instruction to the server, where the application query instruction carries a unique identifier of the application.
具体地,用户可在输入应用关键字等信息后点击客户端(如移动终端)屏幕上显示的“查询按钮”发出应用查询指令,该客户端再将接收的应用查询指令转发至服务器。Specifically, the user can click the “query button” displayed on the screen of the client (such as the mobile terminal) to issue an application query instruction after inputting the information such as the application keyword, and the client forwards the received application query instruction to the server.
步骤S32,接收所述服务器发送的加密的应用的信息,所述应用的信息包括应用的下载地址。Step S32: Receive information of the encrypted application sent by the server, where the information of the application includes a download address of the application.
步骤S33,根据预先存储的解密算法解密所述加密的应用的信息,根据解密得到的应用的下载地址下载对应的应用。Step S33, decrypting the information of the encrypted application according to a pre-stored decryption algorithm, and downloading the corresponding application according to the downloaded download address of the decrypted application.
具体地,客户端从服务器获取应用的信息的解密算法,并存储该解密算法,当客户端接收到服务器发送的加密的应用的信息后,根据其存储的解密算法解密该加密的应用的信息,得到应用的信息包括的应用的下载地址后,从该下载地址下载对应的应用。Specifically, the client obtains the decryption algorithm of the information of the application from the server, and stores the decryption algorithm. After receiving the information of the encrypted application sent by the server, the client decrypts the information of the encrypted application according to the stored decryption algorithm. After obtaining the download address of the application included in the information of the application, the corresponding application is downloaded from the download address.
可选地,为了增加加密后的应用的信息的抗干扰性,则在加密算法的使用时长达到时长阈值后,或者,在加密算法的使用时长没有达到时长阈值,但是加密后的应用的信息被破解,则服务器需要更改该加密算法,此时,所述应用下载方法还包括:Optionally, in order to increase the anti-interference of the information of the encrypted application, after the usage duration of the encryption algorithm reaches the duration threshold, or the duration of the encryption algorithm does not reach the duration threshold, the information of the encrypted application is If the server needs to change the encryption algorithm, the application downloading method further includes:
C1、接收所述服务器发送的升级提示。具体地,若服务器在生成客户端升级包后直接发送升级提示至客户端,则客户端在可工作状态(如处于通电状态),不论该客户端是处于屏幕启动状态还是处于黑屏状态,其都会接收到服务器发送的升级提示;若服务器是在再次接收到客户端发送的应用查询指令后再发送升级提示,则该客户端将在访问该服务器,如打开应用商店时,接收到该服务器发送的升级提示。C1. Receive an upgrade prompt sent by the server. Specifically, if the server directly sends an upgrade prompt to the client after generating the client upgrade package, the client is in a working state (such as being powered on), whether the client is in a screen startup state or a black screen state, Receiving the upgrade prompt sent by the server; if the server sends the upgrade prompt after receiving the application query command sent by the client again, the client will access the server, for example, when the application store is opened, the server sends the upgrade Upgrade tips.
C2、根据所述升级提示从所述服务器获取客户端升级包,所述客户端升级包包括与所述服务器修改后的加密算法对应的解密算法。需要指出的是,在第2种情况中,若客户端再次访问服务器的间隔时间较长,在客户端没有访问服务器的时间段内,服务器更新了多次加密算法,即生成了多个客户端升级包,则无论客户端是否获取过客户端升级包,从服务器获取的将是最新的客户端升级包。C2: Obtain a client upgrade package from the server according to the upgrade prompt, where the client upgrade package includes a decryption algorithm corresponding to the modified encryption algorithm of the server. It should be noted that in the second case, if the client accesses the server again, the server updates the encryption algorithm multiple times during the period when the client does not access the server, that is, multiple clients are generated. Upgrade package, regardless of whether the client has obtained the client upgrade package, the latest client upgrade package will be obtained from the server.
C3、根据所述客户端升级包执行相应的升级操作,并与所述服务器修改后的加密算法对应的解密算法替换原有的解密算法。具体地,当获取新的解密算法后,删除原有的解密算法,并存储该新的解密算法。C3. Perform a corresponding upgrade operation according to the client upgrade package, and replace the original decryption algorithm with a decryption algorithm corresponding to the modified encryption algorithm of the server. Specifically, after acquiring a new decryption algorithm, the original decryption algorithm is deleted, and the new decryption algorithm is stored.
本申请实施例中,发送应用查询指令至服务器,所述应用查询指令携带应用的唯一标识,接收所述服务器发送的加密的应用的信息,所述应用的信息包括应用的下载地址,根据预先存储的解密算法解密所述加密的应用的信息,根据解密得到的应用的下载地址下载对应的应用。由于客户端获取的下载地址是经过加密的,而加密的下载地址的抗干扰性高于未加密的下载地址,因此,客户端从解密得到的下载地址下载应用时,能够保证其下载的应用是非伪装应用,从而提高了用户财产信息的安全性。In the embodiment of the present application, the application query instruction is sent to the server, where the application query instruction carries the unique identifier of the application, and receives the information of the encrypted application sent by the server, where the information of the application includes the download address of the application, according to the pre-stored The decryption algorithm decrypts the information of the encrypted application, and downloads the corresponding application according to the downloaded address of the decrypted application. Since the download address obtained by the client is encrypted, and the encrypted download address has higher anti-interference than the unencrypted download address, the client can ensure that the downloaded application is downloaded when the application is downloaded from the decrypted download address. Camouflage applications, thereby improving the security of user property information.
与上述的应用信息处理方法对应,图4示出了本申请实施例提供的服务器的结构示意图,为了便于说明,仅示出了与本申请实施例相关的部分。Corresponding to the application information processing method described above, FIG. 4 is a schematic structural diagram of a server provided by an embodiment of the present application. For convenience of description, only parts related to the embodiment of the present application are shown.
该服务器包括:应用查询指令接收单元41、指定应用判断单元42、信息加密单元43。其中:The server includes an application query instruction receiving unit 41, a designated application determining unit 42, and an information encrypting unit 43. among them:
应用查询指令接收单元41,用于接收客户端发送的应用查询指令,所述应用查询指令携带应用的唯一标识。The application query instruction receiving unit 41 is configured to receive an application query instruction sent by the client, where the application query instruction carries a unique identifier of the application.
其中,应用的标识用于唯一标识应用,包括应用名称、应用图标、应用包名等任一种。The identifier of the application is used to uniquely identify the application, including an application name, an application icon, and an application package name.
指定应用判断单元42,用于判断所述应用的唯一标识对应的应用是否为指定应用,所述指定应用为涉及用户财产信息的应用。The specified application determining unit 42 is configured to determine whether the application corresponding to the unique identifier of the application is a specified application, and the specified application is an application involving user property information.
其中,该指定应用主要为涉及用户财产信息的应用,比如与银行有关的应用,与股票和基金有关的应用、与支付有关的支付类应用(如淘宝、微信)等。Among them, the designated application is mainly an application involving user property information, such as banking-related applications, applications related to stocks and funds, payment-related payment-related applications (such as Taobao, WeChat).
信息加密单元43,用于在所述应用的唯一标识对应的应用为指定应用时,加密所述应用的信息后发送至客户端,以使所述客户端对接收到的所述应用的信息进行解密后,根据解密后的所述应用的信息下载对应的应用,所述应用的信息包括应用的下载地址。The information encryption unit 43 is configured to: after the application corresponding to the unique identifier of the application is a specified application, encrypt the information of the application and send the information to the client, so that the client performs the received information about the application. After decryption, the corresponding application is downloaded according to the decrypted information of the application, and the information of the application includes the download address of the application.
具体地,所述服务器还包括:加密算法选择单元,用于结合服务器和/或客户端(如移动终端)本身的硬件配置、加密后的信息量大小、网络传输速度选择相应的加密算法,Specifically, the server further includes: an encryption algorithm selecting unit, configured to select a corresponding encryption algorithm by combining hardware configuration of the server and/or the client (such as the mobile terminal), the amount of information after encryption, and the network transmission speed.
其中,服务端可通过以下方式确定客户端本身的硬件配置:在接收到客户端发送的应用查询指令时,发送硬件配置获取请求至客户端,以从所述客户端获取其自身的硬件配置。The server can determine the hardware configuration of the client itself by sending a hardware configuration acquisition request to the client to obtain its own hardware configuration from the client when receiving the application query instruction sent by the client.
或者,or,
服务器统计客户端从该服务器下载的应用的频率和/或下载的应用的大小,根据统计结果估算客户端本身的硬件配置。具体地,当下载的应用的频率越高和/或下载的应用的大小越大时,估算该客户端本身的硬件配置越高,反之,估算该客户端本身的硬件配置越低。The server counts the frequency of the application downloaded by the client from the server and/or the size of the downloaded application, and estimates the hardware configuration of the client itself according to the statistical result. Specifically, when the frequency of the downloaded application is higher and/or the size of the downloaded application is larger, the hardware configuration of the client itself is estimated to be higher, and vice versa, the hardware configuration of the client itself is estimated to be lower.
可选地,所述应用的信息还包括下载通道的指示信息,此时,所述信息加密单元43包括:Optionally, the information of the application further includes indication information of the download channel. In this case, the information encryption unit 43 includes:
下载地址加密模块,用于加密所述应用的下载地址和下载通道的指示信息。The download address encryption module is configured to encrypt the download address of the application and the indication information of the download channel.
下载地址发送模块,用于将加密后的所述应用的下载地址和下载通道的指示信息发送至客户端,以使所述客户端通过所述下载通道的指示信息从所述应用的下载地址下载对应的应用。具体地,为了增加安全性,可通过ftps加密协议,将加密后的所述应用的下载地址和下载通道的指示信息发送至客户端。The downloading address sending module is configured to send the encrypted downloading address of the application and the indication information of the download channel to the client, so that the client downloads from the downloading address of the application by using the indication information of the download channel. The corresponding application. Specifically, in order to increase security, the encrypted downloading address of the application and the indication information of the download channel may be sent to the client through the ftps encryption protocol.
为了增加加密后的应用的信息的抗干扰性,则在加密算法的使用时长达到时长阈值后,或者,在加密算法的使用时长没有达到时长阈值,但是加密后的应用的信息被破解,则需要更改该加密算法,此时,所述服务器还包括:In order to increase the anti-interference of the information of the encrypted application, after the duration of the encryption algorithm reaches the duration threshold, or the duration of the encryption algorithm does not reach the duration threshold, but the information of the encrypted application is cracked, it is required. Changing the encryption algorithm, at this time, the server further includes:
加密算法修改单元,用于修改所述应用的信息的加密算法并确定对应的解密算法。The encryption algorithm modification unit is configured to modify an encryption algorithm of the information of the application and determine a corresponding decryption algorithm.
客户端升级包生成单元,用于生成包括所述解密算法的客户端升级包。A client upgrade package generating unit is configured to generate a client upgrade package including the decryption algorithm.
升级提示发送单元,用于发送升级提示至所述客户端,以使所述客户端获取所述客户端升级包并执行升级操作。具体地,服务器可在生成客户端升级包后直接发送升级提示至客户端,也可在客户端再次访问后才发送升级提示至客户端。And an upgrade prompt sending unit, configured to send an upgrade prompt to the client, so that the client obtains the client upgrade package and performs an upgrade operation. Specifically, the server may directly send the upgrade prompt to the client after generating the client upgrade package, or send the upgrade prompt to the client after the client accesses again.
本申请实施例中,由于在所述应用的唯一标识对应的应用为指定应用时,加密所述应用的信息后发送至客户端,而所述指定应用为涉及用户财产信息的应用,因此,使得发送至客户端的包括下载地址的应用的信息更安全,进而保证客户端下载的应用为非伪装应用,从而提高了用户财产信息的安全性。In the embodiment of the present application, when the application corresponding to the unique identifier of the application is a specified application, the information of the application is encrypted and sent to the client, and the specified application is an application involving user property information, thereby The information sent to the client including the download address is more secure, thereby ensuring that the application downloaded by the client is a non-disguised application, thereby improving the security of the user's property information.
与上述的应用下载方法对应,图5示出了本申请实施例提供的一种客户端的结构示意图,为了便于说明,仅示出了与本申请实施例相关的部分。Corresponding to the above-mentioned application downloading method, FIG. 5 is a schematic structural diagram of a client provided by an embodiment of the present application. For the convenience of description, only parts related to the embodiment of the present application are shown.
该客户端包括:应用查询指令发送单元51、加密的信息接收单元52、信息解密单元53。其中:The client includes an application query instruction transmitting unit 51, an encrypted information receiving unit 52, and an information decrypting unit 53. among them:
应用查询指令发送单元51,用于发送应用查询指令至服务器,所述应用查询指令携带应用的唯一标识。The application query instruction sending unit 51 is configured to send an application query instruction to the server, where the application query instruction carries a unique identifier of the application.
加密的信息接收单元52,用于接收所述服务器发送的加密的应用的信息,所述应用的信息包括应用的下载地址。The encrypted information receiving unit 52 is configured to receive information of the encrypted application sent by the server, where the information of the application includes a download address of the application.
信息解密单元53,用于根据预先存储的解密算法解密所述加密的应用的信息,根据解密得到的应用的下载地址下载对应的应用。The information decryption unit 53 is configured to decrypt the information of the encrypted application according to a pre-stored decryption algorithm, and download the corresponding application according to the downloaded download address of the application.
可选地,为了增加加密后的应用的信息的抗干扰性,则在加密算法的使用时长达到时长阈值后,或者,在加密算法的使用时长没有达到时长阈值,但是加密后的应用的信息被破解,则服务器需要更改该加密算法,此时,所述客户端还包括:Optionally, in order to increase the anti-interference of the information of the encrypted application, after the usage duration of the encryption algorithm reaches the duration threshold, or the duration of the encryption algorithm does not reach the duration threshold, the information of the encrypted application is If the server needs to change the encryption algorithm, the client further includes:
升级提示接收单元,用于接收所述服务器发送的升级提示。具体地,若服务器在生成客户端升级包后直接发送升级提示至客户端,则客户端在可工作状态(如处于通电状态),不论该客户端是处于屏幕启动状态还是处于黑屏状态,其都会接收到服务器发送的升级提 示;若服务器是在再次接收到客户端发送的应用查询指令后再发送升级提示,则该客户端将在访问该服务器,如打开应用商店时,接收到该服务器发送的升级提示。The upgrade prompt receiving unit is configured to receive an upgrade prompt sent by the server. Specifically, if the server directly sends an upgrade prompt to the client after generating the client upgrade package, the client is in a working state (such as being powered on), whether the client is in a screen startup state or a black screen state, Receiving the upgrade prompt sent by the server; if the server sends the upgrade prompt after receiving the application query command sent by the client again, the client will access the server, for example, when the application store is opened, the server sends the upgrade Upgrade tips.
客户端升级包获取单元,用于根据所述升级提示从所述服务器获取客户端升级包,所述客户端升级包包括与所述服务器修改后的加密算法对应的解密算法。The client upgrade package obtaining unit is configured to obtain a client upgrade package from the server according to the upgrade prompt, where the client upgrade package includes a decryption algorithm corresponding to the modified encryption algorithm of the server.
升级单元,用于根据所述客户端升级包执行相应的升级操作,并与所述服务器修改后的加密算法对应的解密算法替换原有的解密算法。And an upgrade unit, configured to perform a corresponding upgrade operation according to the client upgrade package, and replace the original decryption algorithm with a decryption algorithm corresponding to the modified encryption algorithm of the server.
本申请实施例中,由于客户端获取的下载地址是经过加密的,而加密的下载地址的抗干扰性高于未加密的下载地址,因此,客户端从解密得到的下载地址下载应用时,能够保证其下载的应用是非伪装应用,从而提高了用户财产信息的安全性。In the embodiment of the present application, since the download address obtained by the client is encrypted, and the anti-interference of the encrypted download address is higher than the unencrypted download address, the client can download the application from the decrypted download address. The application that is guaranteed to be downloaded is a non-disguised application, thereby improving the security of the user's property information.
应理解,上述实施例中各步骤的序号的大小并不意味着执行顺序的先后,各过程的执行顺序应以其功能和内在逻辑确定,而不应对本申请实施例的实施过程构成任何限定。It should be understood that the size of the sequence of the steps in the above embodiments does not mean that the order of execution is performed. The order of execution of each process should be determined by its function and internal logic, and should not be construed as limiting the implementation process of the embodiments of the present application.
图6是本申请一实施例提供的终端设备的示意图。如图6所示,该实施例的终端设备6包括:处理器60、存储器61以及存储在所述存储器61中并可在所述处理器60上运行的计算机程序62。所述处理器60执行所述计算机程序62时实现上述各个应用信息处理方法实施例中的步骤,例如图1所示的步骤S11至S13。具体地,处理器60通过运行存储在存储器61的上述计算机程序62时实现以下步骤:FIG. 6 is a schematic diagram of a terminal device according to an embodiment of the present application. As shown in FIG. 6, the terminal device 6 of this embodiment includes a processor 60, a memory 61, and a computer program 62 stored in the memory 61 and operable on the processor 60. When the processor 60 executes the computer program 62, the steps in the foregoing embodiments of the respective application information processing methods are implemented, such as steps S11 to S13 shown in FIG. Specifically, the processor 60 implements the following steps by running the above-described computer program 62 stored in the memory 61:
接收客户端发送的应用查询指令,所述应用查询指令携带应用的唯一标识;Receiving an application query instruction sent by the client, where the application query instruction carries a unique identifier of the application;
判断所述应用的唯一标识对应的应用是否为指定应用,所述指定应用为涉及用户财产信息的应用;Determining whether the application corresponding to the unique identifier of the application is a specified application, where the specified application is an application involving user property information;
在所述应用的唯一标识对应的应用为指定应用时,加密所述应用的信息后发送至客户端,以使所述客户端对接收到的所述应用的信息进行解密后,根据解密后的所述应用的信息下载对应的应用,所述应用的信息包括应用的下载地址。When the application corresponding to the unique identifier of the application is a specified application, the information of the application is encrypted and sent to the client, so that the client decrypts the received information of the application, according to the decrypted The information of the application downloads a corresponding application, and the information of the application includes a download address of the application.
假设上述为第一种可能的实施方式,则在第一种可能的实施方式作为基础而提供的第二种可能的实施方式中,Assuming that the above is a first possible implementation, in a second possible implementation provided on the basis of the first possible implementation,
所述应用的信息还包括下载通道的指示信息,此时,所述加密所述应用的信息后发送至客户端,以使所述客户端对接收到的所述应用的信息进行解密后,根据解密后的所述应用的信息下载对应的应用,包括:The information of the application further includes indication information of the download channel. At this time, the information of the application is encrypted and sent to the client, so that the client decrypts the received information of the application, according to the The decrypted application of the application downloads the corresponding application, including:
加密所述应用的下载地址和下载通道的指示信息;Encrypting the download address of the application and the indication information of the download channel;
将加密后的所述应用的下载地址和下载通道的指示信息发送至客户端,以使所述客户端通过所述下载通道的指示信息从所述应用的下载地址下载对应的应用。Sending the encrypted download address of the application and the indication information of the download channel to the client, so that the client downloads the corresponding application from the download address of the application through the indication information of the download channel.
在第一种可能的实施方式或第二种可能的实现方式作为基础而提供的第三种可能的实 施方式中,处理器60通过运行存储在存储器61的上述计算机程序62时还实现以下步骤:In a third possible implementation provided on the basis of the first possible embodiment or the second possible implementation, the processor 60 also implements the following steps by running the computer program 62 stored in the memory 61:
修改所述应用的信息的加密算法并确定对应的解密算法;Modifying an encryption algorithm of the information of the application and determining a corresponding decryption algorithm;
生成包括所述解密算法的客户端升级包;Generating a client upgrade package including the decryption algorithm;
发送升级提示至所述客户端,以使所述客户端获取所述客户端升级包并执行升级操作。Sending an upgrade prompt to the client, so that the client obtains the client upgrade package and performs an upgrade operation.
在第一种可能的实施方式作为基础而提供的第四种可能的实施方式中,在所述加密所述应用的信息后发送至客户端之前,包括:In a fourth possible implementation manner provided by the first possible implementation manner, after the information of the application is encrypted and sent to the client, the method includes:
结合服务器和/或客户端本身的硬件配置、加密后的信息量大小、网络传输速度选择相应的加密算法。The corresponding encryption algorithm is selected in combination with the hardware configuration of the server and/or the client itself, the amount of information after encryption, and the network transmission speed.
在第四种可能的实施方式作为基础而提供的第五种可能的实施方式中,通过以下方式确定客户端本身的硬件配置:In a fifth possible implementation provided by the fourth possible implementation as a basis, the hardware configuration of the client itself is determined by:
在接收到客户端发送的应用查询指令时,发送硬件配置获取请求至客户端,以从所述客户端获取其自身的硬件配置。Upon receiving the application query instruction sent by the client, a hardware configuration acquisition request is sent to the client to obtain its own hardware configuration from the client.
在第四种可能的实施方式作为基础而提供的第六种可能的实施方式中,通过以下方式确定客户端本身的硬件配置:In a sixth possible implementation provided by the fourth possible implementation as a basis, the hardware configuration of the client itself is determined by:
统计客户端从服务器自身下载的应用的频率和/或下载的应用的大小,根据统计结果估算客户端本身的硬件配置。The frequency of the application downloaded by the client from the server itself and/or the size of the downloaded application are counted, and the hardware configuration of the client itself is estimated according to the statistical result.
或者,所述处理器60执行所述计算机程序62时实现上述各装置实施例中各模块/单元的功能,例如图4所示单元41至44的功能。示例性的,所述计算机程序62可以被分割成一个或多个模块/单元,所述一个或者多个模块/单元被存储在所述存储器61中,并由所述处理器60执行,以完成本申请。所述一个或多个模块/单元可以是能够完成特定功能的一系列计算机程序指令段,该指令段用于描述所述计算机程序62在所述终端设备6中的执行过程。例如,所述计算机程序62可以被分割成应用查询指令接收单元、指定应用判断单元、信息加密单元,各单元具体功能如下:Alternatively, the processor 60, when executing the computer program 62, implements the functions of the various modules/units in the various apparatus embodiments described above, such as the functions of the units 41-44 shown in FIG. Illustratively, the computer program 62 can be partitioned into one or more modules/units that are stored in the memory 61 and executed by the processor 60 to complete This application. The one or more modules/units may be a series of computer program instruction segments capable of performing a particular function, the instruction segments being used to describe the execution of the computer program 62 in the terminal device 6. For example, the computer program 62 can be divided into an application query instruction receiving unit, a specified application determining unit, and an information encryption unit, and the specific functions of each unit are as follows:
应用查询指令接收单元,用于接收客户端发送的应用查询指令,所述应用查询指令携带应用的唯一标识;The application query instruction receiving unit is configured to receive an application query instruction sent by the client, where the application query instruction carries a unique identifier of the application;
指定应用判断单元,用于判断所述应用的唯一标识对应的应用是否为指定应用,所述指定应用为涉及用户财产信息的应用;a specified application determining unit, configured to determine whether an application corresponding to the unique identifier of the application is a specified application, where the specified application is an application related to user property information;
信息加密单元,用于在所述应用的唯一标识对应的应用为指定应用时,加密所述应用的信息后发送至客户端,以使所述客户端对接收到的所述应用的信息进行解密后,根据解密后的所述应用的信息下载对应的应用,所述应用的信息包括应用的下载地址。An information encryption unit, configured to: after the application corresponding to the unique identifier of the application is a specified application, encrypt the information of the application and send the information to the client, so that the client decrypts the received information of the application. Then, the corresponding application is downloaded according to the decrypted information of the application, where the information of the application includes the download address of the application.
所述终端设备6可以是桌上型计算机、笔记本、掌上电脑及云端服务器等计算设备。所述终端设备可包括,但不仅限于,处理器60、存储器61。本领域技术人员可以理解,图 6仅仅是终端设备6的示例,并不构成对终端设备6的限定,可以包括比图示更多或更少的部件,或者组合某些部件,或者不同的部件,例如所述终端设备还可以包括输入输出设备、网络接入设备、总线等。The terminal device 6 may be a computing device such as a desktop computer, a notebook, a palmtop computer, and a cloud server. The terminal device may include, but is not limited to, a processor 60 and a memory 61. It will be understood by those skilled in the art that FIG. 6 is only an example of the terminal device 6, and does not constitute a limitation of the terminal device 6, and may include more or less components than those illustrated, or combine some components or different components. For example, the terminal device may further include an input/output device, a network access device, a bus, and the like.
所称处理器60可以是中央处理单元(Central Processing Unit,CPU),还可以是其他通用处理器、数字信号处理器(Digital Signal Processor,DSP)、专用集成电路(Application Specific Integrated Circuit,ASIC)、现成可编程门阵列(Field-Programmable Gate Array,FPGA)或者其他可编程逻辑器件、分立门或者晶体管逻辑器件、分立硬件组件等。通用处理器可以是微处理器或者该处理器也可以是任何常规的处理器等。The processor 60 may be a central processing unit (CPU), or may be another general-purpose processor, a digital signal processor (DSP), an application specific integrated circuit (ASIC), Field-Programmable Gate Array (FPGA) or other programmable logic device, discrete gate or transistor logic device, discrete hardware components, etc. The general purpose processor may be a microprocessor or the processor or any conventional processor or the like.
所述存储器61可以是所述终端设备6的内部存储单元,例如终端设备6的硬盘或内存。所述存储器61也可以是所述终端设备6的外部存储设备,例如所述终端设备6上配备的插接式硬盘,智能存储卡(Smart Media Card,SMC),安全数字(Secure Digital,SD)卡,闪存卡(Flash Card)等。进一步地,所述存储器61还可以既包括所述终端设备6的内部存储单元也包括外部存储设备。所述存储器61用于存储所述计算机程序以及所述终端设备所需的其他程序和数据。所述存储器61还可以用于暂时地存储已经输出或者将要输出的数据。The memory 61 may be an internal storage unit of the terminal device 6, such as a hard disk or a memory of the terminal device 6. The memory 61 may also be an external storage device of the terminal device 6, for example, a plug-in hard disk equipped on the terminal device 6, a smart memory card (SMC), and a secure digital (SD). Card, flash card, etc. Further, the memory 61 may also include both an internal storage unit of the terminal device 6 and an external storage device. The memory 61 is used to store the computer program and other programs and data required by the terminal device. The memory 61 can also be used to temporarily store data that has been output or is about to be output.
所属领域的技术人员可以清楚地了解到,为了描述的方便和简洁,仅以上述各功能单元、模块的划分进行举例说明,实际应用中,可以根据需要而将上述功能分配由不同的功能单元、模块完成,即将所述装置的内部结构划分成不同的功能单元或模块,以完成以上描述的全部或者部分功能。实施例中的各功能单元、模块可以集成在一个处理单元中,也可以是各个单元单独物理存在,也可以两个或两个以上单元集成在一个单元中,上述集成的单元既可以采用硬件的形式实现,也可以采用软件功能单元的形式实现。另外,各功能单元、模块的具体名称也只是为了便于相互区分,并不用于限制本申请的保护范围。上述系统中单元、模块的具体工作过程,可以参考前述方法实施例中的对应过程,在此不再赘述。It will be clearly understood by those skilled in the art that, for convenience and brevity of description, only the division of each functional unit and module described above is exemplified. In practical applications, the above functions may be assigned to different functional units according to needs. The module is completed by dividing the internal structure of the device into different functional units or modules to perform all or part of the functions described above. Each functional unit and module in the embodiment may be integrated into one processing unit, or each unit may exist physically separately, or two or more units may be integrated into one unit, and the integrated unit may be implemented by hardware. Formal implementation can also be implemented in the form of software functional units. In addition, the specific names of the respective functional units and modules are only for the purpose of facilitating mutual differentiation, and are not intended to limit the scope of protection of the present application. For the specific working process of the unit and the module in the foregoing system, reference may be made to the corresponding process in the foregoing method embodiment, and details are not described herein again.
在上述实施例中,对各个实施例的描述都各有侧重,某个实施例中没有详述或记载的部分,可以参见其它实施例的相关描述。In the above embodiments, the descriptions of the various embodiments are different, and the parts that are not detailed or described in the specific embodiments may be referred to the related descriptions of other embodiments.
本领域普通技术人员可以意识到,结合本文中所公开的实施例描述的各示例的单元及算法步骤,能够以电子硬件、或者计算机软件和电子硬件的结合来实现。这些功能究竟以硬件还是软件方式来执行,取决于技术方案的特定应用和设计约束条件。专业技术人员可以对每个特定的应用来使用不同方法来实现所描述的功能,但是这种实现不应认为超出本申请的范围。Those of ordinary skill in the art will appreciate that the elements and algorithm steps of the various examples described in connection with the embodiments disclosed herein can be implemented in electronic hardware or a combination of computer software and electronic hardware. Whether these functions are performed in hardware or software depends on the specific application and design constraints of the solution. A person skilled in the art can use different methods to implement the described functions for each particular application, but such implementation should not be considered to be beyond the scope of the present application.
在本申请所提供的实施例中,应该理解到,所揭露的装置/终端设备和方法,可以通过其它的方式实现。例如,以上所描述的装置/终端设备实施例仅仅是示意性的,例如,所述模块或单元的划分,仅仅为一种逻辑功能划分,实际实现时可以有另外的划分方式,例如多个单元或组件可以结合或者可以集成到另一个系统,或一些特征可以忽略,或不执行。另一点,所显示或讨论的相互之间的耦合或直接耦合或通讯连接可以是通过一些接口,装置或单元的间接耦合或通讯连接,可以是电性,机械或其它的形式。In the embodiments provided by the present application, it should be understood that the disclosed device/terminal device and method may be implemented in other manners. For example, the device/terminal device embodiments described above are merely illustrative. For example, the division of the modules or units is only a logical function division. In actual implementation, there may be another division manner, for example, multiple units. Or components may be combined or integrated into another system, or some features may be omitted or not performed. In addition, the mutual coupling or direct coupling or communication connection shown or discussed may be an indirect coupling or communication connection through some interface, device or unit, and may be in electrical, mechanical or other form.
所述作为分离部件说明的单元可以是或者也可以不是物理上分开的,作为单元显示的部件可以是或者也可以不是物理单元,即可以位于一个地方,或者也可以分布到多个网络单元上。可以根据实际的需要选择其中的部分或者全部单元来实现本实施例方案的目的。The units described as separate components may or may not be physically separated, and the components displayed as units may or may not be physical units, that is, may be located in one place, or may be distributed to multiple network units. Some or all of the units may be selected according to actual needs to achieve the purpose of the solution of the embodiment.
另外,在本申请各个实施例中的各功能单元可以集成在一个处理单元中,也可以是各个单元单独物理存在,也可以两个或两个以上单元集成在一个单元中。上述集成的单元既可以采用硬件的形式实现,也可以采用软件功能单元的形式实现。In addition, each functional unit in each embodiment of the present application may be integrated into one processing unit, or each unit may exist physically separately, or two or more units may be integrated into one unit. The above integrated unit can be implemented in the form of hardware or in the form of a software functional unit.
所述集成的模块/单元如果以软件功能单元的形式实现并作为独立的产品销售或使用时,可以存储在一个计算机可读取存储介质中。基于这样的理解,本申请实现上述实施例方法中的全部或部分流程,也可以通过计算机程序来指令相关的硬件来完成,所述的计算机程序可存储于一计算机可读存储介质中,该计算机程序在被处理器执行时,可实现上述各个方法实施例的步骤。其中,所述计算机程序包括计算机程序代码,所述计算机程序代码可以为源代码形式、对象代码形式、可执行文件或某些中间形式等。所述计算机可读介质可以包括:能够携带所述计算机程序代码的任何实体或装置、记录介质、U盘、移动硬盘、磁碟、光盘、计算机存储器、只读存储器(ROM,Read-Only Memory)、随机存取存储器(RAM,Random Access Memory)、电载波信号、电信信号以及软件分发介质等。需要说明的是,所述计算机可读介质包含的内容可以根据司法管辖区内立法和专利实践的要求进行适当的增减,例如在某些司法管辖区,根据立法和专利实践,计算机可读介质不包括电载波信号和电信信号。The integrated modules/units, if implemented in the form of software functional units and sold or used as separate products, may be stored in a computer readable storage medium. Based on such understanding, the present application implements all or part of the processes in the foregoing embodiments, and may also be completed by a computer program to instruct related hardware. The computer program may be stored in a computer readable storage medium. The steps of the various method embodiments described above may be implemented when the program is executed by the processor. Wherein, the computer program comprises computer program code, which may be in the form of source code, object code form, executable file or some intermediate form. The computer readable medium may include any entity or device capable of carrying the computer program code, a recording medium, a USB flash drive, a removable hard disk, a magnetic disk, an optical disk, a computer memory, a read-only memory (ROM). , random access memory (RAM, Random Access Memory), electrical carrier signals, telecommunications signals, and software distribution media. It should be noted that the content contained in the computer readable medium may be appropriately increased or decreased according to the requirements of legislation and patent practice in a jurisdiction, for example, in some jurisdictions, according to legislation and patent practice, computer readable media Does not include electrical carrier signals and telecommunication signals.
以上所述实施例仅用以说明本申请的技术方案,而非对其限制;尽管参照前述实施例对本申请进行了详细的说明,本领域的普通技术人员应当理解:其依然可以对前述各实施例所记载的技术方案进行修改,或者对其中部分技术特征进行等同替换;而这些修改或者替换,并不使相应技术方案的本质脱离本申请各实施例技术方案的精神和范围,均应包含在本申请的保护范围之内。The above-mentioned embodiments are only used to explain the technical solutions of the present application, and are not limited thereto; although the present application has been described in detail with reference to the foregoing embodiments, those skilled in the art should understand that they can still implement the foregoing embodiments. The technical solutions described in the examples are modified or equivalently replaced with some of the technical features; and the modifications or substitutions do not deviate from the spirit and scope of the technical solutions of the embodiments of the present application, and should be included in Within the scope of protection of this application.

Claims (20)

  1. 一种应用信息处理方法,其特征在于,包括:An application information processing method, comprising:
    接收客户端发送的应用查询指令,所述应用查询指令携带应用的唯一标识;Receiving an application query instruction sent by the client, where the application query instruction carries a unique identifier of the application;
    判断所述应用的唯一标识对应的应用是否为指定应用,所述指定应用为涉及用户财产信息的应用;Determining whether the application corresponding to the unique identifier of the application is a specified application, where the specified application is an application involving user property information;
    在所述应用的唯一标识对应的应用为指定应用时,加密所述应用的信息后发送至客户端,以使所述客户端对接收到的所述应用的信息进行解密后,根据解密后的所述应用的信息下载对应的应用,所述应用的信息包括应用的下载地址。When the application corresponding to the unique identifier of the application is a specified application, the information of the application is encrypted and sent to the client, so that the client decrypts the received information of the application, according to the decrypted The information of the application downloads a corresponding application, and the information of the application includes a download address of the application.
  2. 如权利要求1所述的应用信息处理方法,其特征在于,所述应用的信息还包括下载通道的指示信息,此时,所述加密所述应用的信息后发送至客户端,以使所述客户端对接收到的所述应用的信息进行解密后,根据解密后的所述应用的信息下载对应的应用,包括:The application information processing method according to claim 1, wherein the information of the application further includes indication information of the download channel, and at this time, the information of the application is encrypted and sent to the client, so that the After decrypting the received information of the application, the client downloads the corresponding application according to the decrypted information of the application, including:
    加密所述应用的下载地址和下载通道的指示信息;Encrypting the download address of the application and the indication information of the download channel;
    将加密后的所述应用的下载地址和下载通道的指示信息发送至客户端,以使所述客户端通过所述下载通道的指示信息从所述应用的下载地址下载对应的应用。Sending the encrypted download address of the application and the indication information of the download channel to the client, so that the client downloads the corresponding application from the download address of the application through the indication information of the download channel.
  3. 如权利要求1或2所述的应用信息处理方法,其特征在于,所述应用信息处理方法还包括:The application information processing method according to claim 1 or 2, wherein the application information processing method further comprises:
    修改所述应用的信息的加密算法并确定对应的解密算法;Modifying an encryption algorithm of the information of the application and determining a corresponding decryption algorithm;
    生成包括所述解密算法的客户端升级包;Generating a client upgrade package including the decryption algorithm;
    发送升级提示至所述客户端,以使所述客户端获取所述客户端升级包并执行升级操作。Sending an upgrade prompt to the client, so that the client obtains the client upgrade package and performs an upgrade operation.
  4. 如权利要求1所述的应用信息处理方法,其特征在于,在所述加密所述应用的信息后发送至客户端之前,包括:The application information processing method according to claim 1, wherein before the encrypting the information of the application and sending the information to the client, the method includes:
    结合服务器和/或客户端本身的硬件配置、加密后的信息量大小、网络传输速度选择相应的加密算法。The corresponding encryption algorithm is selected in combination with the hardware configuration of the server and/or the client itself, the amount of information after encryption, and the network transmission speed.
  5. 如权利要求4所述的应用信息处理方法,其特征在于,通过以下方式确定客户端本身的硬件配置:The application information processing method according to claim 4, wherein the hardware configuration of the client itself is determined by:
    在接收到客户端发送的应用查询指令时,发送硬件配置获取请求至客户端,以从所述客户端获取其自身的硬件配置。Upon receiving the application query instruction sent by the client, a hardware configuration acquisition request is sent to the client to obtain its own hardware configuration from the client.
  6. 如权利要求4所述的应用信息处理方法,其特征在于,通过以下方式确定客户端本身的硬件配置:The application information processing method according to claim 4, wherein the hardware configuration of the client itself is determined by:
    统计客户端从服务器自身下载的应用的频率和/或下载的应用的大小,根据统计结果估算客户端本身的硬件配置。The frequency of the application downloaded by the client from the server itself and/or the size of the downloaded application are counted, and the hardware configuration of the client itself is estimated according to the statistical result.
  7. 一种应用下载方法,其特征在于,包括:An application downloading method, comprising:
    发送应用查询指令至服务器,所述应用查询指令携带应用的唯一标识;Sending an application query instruction to the server, where the application query instruction carries a unique identifier of the application;
    接收所述服务器发送的加密的应用的信息,所述应用的信息包括应用的下载地址;Receiving information of the encrypted application sent by the server, where the information of the application includes a download address of the application;
    根据预先存储的解密算法解密所述加密的应用的信息,根据解密得到的应用的下载地址下载对应的应用。The information of the encrypted application is decrypted according to a pre-stored decryption algorithm, and the corresponding application is downloaded according to the downloaded download address of the decrypted application.
  8. 如权利要求7所述的应用下载方法,其特征在于,所述应用下载方法还包括:The application downloading method according to claim 7, wherein the application downloading method further comprises:
    接收所述服务器发送的升级提示;Receiving an upgrade prompt sent by the server;
    根据所述升级提示从所述服务器获取客户端升级包,所述客户端升级包包括与所述服务器修改后的加密算法对应的解密算法;Obtaining a client upgrade package from the server according to the upgrade prompt, where the client upgrade package includes a decryption algorithm corresponding to the modified encryption algorithm of the server;
    根据所述客户端升级包执行相应的升级操作,并与所述服务器修改后的加密算法对应的解密算法替换原有的解密算法。Performing a corresponding upgrade operation according to the client upgrade package, and replacing the original decryption algorithm with a decryption algorithm corresponding to the modified encryption algorithm of the server.
  9. 一种服务器,其特征在于,包括:A server, comprising:
    应用查询指令接收单元,用于接收客户端发送的应用查询指令,所述应用查询指令携带应用的唯一标识;The application query instruction receiving unit is configured to receive an application query instruction sent by the client, where the application query instruction carries a unique identifier of the application;
    指定应用判断单元,用于判断所述应用的唯一标识对应的应用是否为指定应用,所述指定应用为涉及用户财产信息的应用;a specified application determining unit, configured to determine whether an application corresponding to the unique identifier of the application is a specified application, where the specified application is an application related to user property information;
    信息加密单元,用于在所述应用的唯一标识对应的应用为指定应用时,加密所述应用的信息后发送至客户端,以使所述客户端对接收到的所述应用的信息进行解密后,根据解密后的所述应用的信息下载对应的应用,所述应用的信息包括应用的下载地址。An information encryption unit, configured to: after the application corresponding to the unique identifier of the application is a specified application, encrypt the information of the application and send the information to the client, so that the client decrypts the received information of the application. Then, the corresponding application is downloaded according to the decrypted information of the application, where the information of the application includes the download address of the application.
  10. 如权利要求9所述的服务器,其特征在于,所述应用的信息还包括下载通道的指示信息,此时,所述信息加密单元包括:The server according to claim 9, wherein the information of the application further includes indication information of the download channel, and the information encryption unit comprises:
    下载地址加密模块,用于加密所述应用的下载地址和下载通道的指示信息;The download address encryption module is configured to encrypt the download address of the application and the indication information of the download channel;
    下载地址发送模块,用于将加密后的所述应用的下载地址和下载通道的指示信息发送至客户端,以使所述客户端通过所述下载通道的指示信息从所述应用的下载地址下载对应的应用。The downloading address sending module is configured to send the encrypted downloading address of the application and the indication information of the download channel to the client, so that the client downloads from the downloading address of the application by using the indication information of the download channel. The corresponding application.
  11. 如权利要求9或10所述的服务器,其特征在于,所述服务器还包括:The server according to claim 9 or 10, wherein the server further comprises:
    加密算法修改单元,用于修改所述应用的信息的加密算法并确定对应的解密算法;An encryption algorithm modification unit, configured to modify an encryption algorithm of the application information and determine a corresponding decryption algorithm;
    客户端升级包生成单元,用于生成包括所述解密算法的客户端升级包;a client upgrade package generating unit, configured to generate a client upgrade package including the decryption algorithm;
    升级提示发送单元,用于发送升级提示至所述客户端,以使所述客户端获取所述客户端升级包并执行升级操作。And an upgrade prompt sending unit, configured to send an upgrade prompt to the client, so that the client obtains the client upgrade package and performs an upgrade operation.
  12. 一种客户端,其特征在于,包括:A client, comprising:
    应用查询指令发送单元,用于发送应用查询指令至服务器,所述应用查询指令携带应 用的唯一标识;The application query instruction sending unit is configured to send an application query instruction to the server, where the application query instruction carries a unique identifier of the application;
    加密的信息接收单元,用于接收所述服务器发送的加密的应用的信息,所述应用的信息包括应用的下载地址;The encrypted information receiving unit is configured to receive information about the encrypted application sent by the server, where the information of the application includes a download address of the application;
    信息解密单元,用于根据预先存储的解密算法解密所述加密的应用的信息,根据解密得到的应用的下载地址下载对应的应用。The information decryption unit is configured to decrypt the information of the encrypted application according to a pre-stored decryption algorithm, and download the corresponding application according to the downloaded download address of the decrypted application.
  13. 如权利要求12所述的客户端,其特征在于,所述客户端还包括:The client of claim 12, wherein the client further comprises:
    升级提示接收单元,用于接收所述服务器发送的升级提示;An upgrade prompt receiving unit, configured to receive an upgrade prompt sent by the server;
    客户端升级包获取单元,用于根据所述升级提示从所述服务器获取客户端升级包,所述客户端升级包包括与所述服务器修改后的加密算法对应的解密算法;a client upgrade package obtaining unit, configured to acquire a client upgrade package from the server according to the upgrade prompt, where the client upgrade package includes a decryption algorithm corresponding to the modified encryption algorithm of the server;
    升级单元,用于根据所述客户端升级包执行相应的升级操作,并与所述服务器修改后的加密算法对应的解密算法替换原有的解密算法。And an upgrade unit, configured to perform a corresponding upgrade operation according to the client upgrade package, and replace the original decryption algorithm with a decryption algorithm corresponding to the modified encryption algorithm of the server.
  14. 一种终端设备,包括存储器、处理器以及存储在所述存储器中并可在所述处理器上运行的计算机程序,其特征在于,所述处理器执行所述计算机程序时实现以下步骤。A terminal device comprising a memory, a processor, and a computer program stored in the memory and operable on the processor, wherein the processor performs the following steps when the computer program is executed.
    接收客户端发送的应用查询指令,所述应用查询指令携带应用的唯一标识;Receiving an application query instruction sent by the client, where the application query instruction carries a unique identifier of the application;
    判断所述应用的唯一标识对应的应用是否为指定应用,所述指定应用为涉及用户财产信息的应用;Determining whether the application corresponding to the unique identifier of the application is a specified application, where the specified application is an application involving user property information;
    在所述应用的唯一标识对应的应用为指定应用时,加密所述应用的信息后发送至客户端,以使所述客户端对接收到的所述应用的信息进行解密后,根据解密后的所述应用的信息下载对应的应用,所述应用的信息包括应用的下载地址。When the application corresponding to the unique identifier of the application is a specified application, the information of the application is encrypted and sent to the client, so that the client decrypts the received information of the application, according to the decrypted The information of the application downloads a corresponding application, and the information of the application includes a download address of the application.
  15. 如权利要求14所述的终端设备,其特征在于,所述应用的信息还包括下载通道的指示信息,此时,所述加密所述应用的信息后发送至客户端,以使所述客户端对接收到的所述应用的信息进行解密后,根据解密后的所述应用的信息下载对应的应用,包括:The terminal device according to claim 14, wherein the information of the application further includes indication information of the download channel, and at this time, the information of the application is encrypted and sent to the client, so that the client After decrypting the received information of the application, downloading the corresponding application according to the decrypted information of the application, including:
    加密所述应用的下载地址和下载通道的指示信息;Encrypting the download address of the application and the indication information of the download channel;
    将加密后的所述应用的下载地址和下载通道的指示信息发送至客户端,以使所述客户端通过所述下载通道的指示信息从所述应用的下载地址下载对应的应用。Sending the encrypted download address of the application and the indication information of the download channel to the client, so that the client downloads the corresponding application from the download address of the application through the indication information of the download channel.
  16. 如权利要求14或15所述的终端设备,其特征在于,所述处理器执行所述计算机程序时还包括实现以下步骤:The terminal device according to claim 14 or 15, wherein the processor further comprises the following steps when executing the computer program:
    修改所述应用的信息的加密算法并确定对应的解密算法;Modifying an encryption algorithm of the information of the application and determining a corresponding decryption algorithm;
    生成包括所述解密算法的客户端升级包;Generating a client upgrade package including the decryption algorithm;
    发送升级提示至所述客户端,以使所述客户端获取所述客户端升级包并执行升级操作。Sending an upgrade prompt to the client, so that the client obtains the client upgrade package and performs an upgrade operation.
  17. 如权利要求14所述的终端设备,其特征在于,在所述加密所述应用的信息后发送至客户端之前,包括:The terminal device according to claim 14, wherein before the encrypting the information of the application and sending the information to the client, the method includes:
    结合服务器和/或客户端本身的硬件配置、加密后的信息量大小、网络传输速度选择相应的加密算法。The corresponding encryption algorithm is selected in combination with the hardware configuration of the server and/or the client itself, the amount of information after encryption, and the network transmission speed.
  18. 如权利要求17所述的终端设备,其特征在于,通过以下方式确定客户端本身的硬件配置:The terminal device according to claim 17, wherein the hardware configuration of the client itself is determined by:
    在接收到客户端发送的应用查询指令时,发送硬件配置获取请求至客户端,以从所述客户端获取其自身的硬件配置。Upon receiving the application query instruction sent by the client, a hardware configuration acquisition request is sent to the client to obtain its own hardware configuration from the client.
  19. 一种计算机可读存储介质,所述计算机可读存储介质存储有计算机程序,其特征在于,所述计算机程序被处理器执行时实现如权利要求1至6任一项所述方法的步骤。A computer readable storage medium storing a computer program, wherein the computer program is executed by a processor to implement the steps of the method of any one of claims 1 to 6.
  20. 一种计算机程序产品,所述计算机程序产品包括计算机程序,其特征在于,所述计算机程序被一个或多个处理器执行时实现权利要求1至6任一项所述方法的步骤。A computer program product comprising a computer program, characterized in that the computer program, when executed by one or more processors, implements the steps of the method of any one of claims 1 to 6.
PCT/CN2018/093330 2017-06-28 2018-06-28 Application information processing and downloading method, server, client and terminal device WO2019001510A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201710505582.2 2017-06-28
CN201710505582.2A CN107295085B (en) 2017-06-28 2017-06-28 Application message processing and method for down loading, server, client and terminal device

Publications (1)

Publication Number Publication Date
WO2019001510A1 true WO2019001510A1 (en) 2019-01-03

Family

ID=60098895

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2018/093330 WO2019001510A1 (en) 2017-06-28 2018-06-28 Application information processing and downloading method, server, client and terminal device

Country Status (2)

Country Link
CN (1) CN107295085B (en)
WO (1) WO2019001510A1 (en)

Families Citing this family (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107295085B (en) * 2017-06-28 2019-07-12 Oppo广东移动通信有限公司 Application message processing and method for down loading, server, client and terminal device
CN108241517B (en) * 2018-02-23 2021-02-02 武汉斗鱼网络科技有限公司 Software upgrading method, client and electronic equipment
CN108959904A (en) * 2018-06-14 2018-12-07 平安科技(深圳)有限公司 Terminal device applies login method and terminal device
CN110059273B (en) * 2019-03-14 2022-04-12 深圳市物联天下技术有限公司 Method for displaying rich media on mobile terminal and mobile terminal
CN112291268B (en) * 2020-11-26 2023-05-26 度小满科技(北京)有限公司 Information transmission method, device, equipment and storage medium
CN112733092B (en) * 2020-12-30 2022-12-23 五八有限公司 Information processing method and device

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103685515A (en) * 2013-12-13 2014-03-26 北京奇虎科技有限公司 Method and system for downloading application
CN105516246A (en) * 2015-11-25 2016-04-20 魅族科技(中国)有限公司 Method for preventing application program downloading hijacking and server
CN106020858A (en) * 2016-04-29 2016-10-12 乐视控股(北京)有限公司 Method, terminal and system for downloading and installation of application program
CN107295085A (en) * 2017-06-28 2017-10-24 广东欧珀移动通信有限公司 Application message processing and method for down loading, server, client and terminal device

Family Cites Families (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8359657B2 (en) * 2010-03-30 2013-01-22 Sandcastles Technology Inc. Method and apparatus for enabling secure distribution of digital content
CN105656957B (en) * 2014-11-12 2019-10-25 腾讯科技(武汉)有限公司 Using the method, apparatus and system of interior downloading third-party application
CN105302617A (en) * 2015-11-25 2016-02-03 魅族科技(中国)有限公司 Method and sever for downloading application program
CN106815518B (en) * 2015-11-30 2020-08-25 华为技术有限公司 Application installation method and electronic equipment
CN106682491B (en) * 2017-01-23 2020-06-16 百度在线网络技术(北京)有限公司 Application downloading method and device

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103685515A (en) * 2013-12-13 2014-03-26 北京奇虎科技有限公司 Method and system for downloading application
CN105516246A (en) * 2015-11-25 2016-04-20 魅族科技(中国)有限公司 Method for preventing application program downloading hijacking and server
CN106020858A (en) * 2016-04-29 2016-10-12 乐视控股(北京)有限公司 Method, terminal and system for downloading and installation of application program
CN107295085A (en) * 2017-06-28 2017-10-24 广东欧珀移动通信有限公司 Application message processing and method for down loading, server, client and terminal device

Also Published As

Publication number Publication date
CN107295085A (en) 2017-10-24
CN107295085B (en) 2019-07-12

Similar Documents

Publication Publication Date Title
WO2019001510A1 (en) Application information processing and downloading method, server, client and terminal device
CN108241517B (en) Software upgrading method, client and electronic equipment
US9735962B1 (en) Three layer key wrapping for securing encryption keys in a data storage system
US9912645B2 (en) Methods and apparatus to securely share data
EP3308522B1 (en) System, apparatus and method for multi-owner transfer of ownership of a device
US8447970B2 (en) Securing out-of-band messages
JP5576983B2 (en) Secure boot and configuration of subsystems from non-local storage
KR101572799B1 (en) Secure printing between printer and print client device
US10999327B2 (en) Policy deployment method, apparatus, system and computing system of trusted server
US20150095652A1 (en) Encryption and decryption processing method, apparatus, and device
WO2016053729A1 (en) Method and system for secure management of computer applications
EP2767111B1 (en) Method of transferring the control of a security module from a first entity to a second entity
EP3405868A1 (en) Methods and apparatus to selectively provide cached and presently compiled applications
TW201330577A (en) Data protection system and method based on cloud storage
CN110661748B (en) Log encryption method, log decryption method and log encryption device
CN112823503B (en) Data access method, data access device and mobile terminal
KR20090095635A (en) Method for the secure storing of program state data in an electronic device
US10970264B2 (en) Supporting secure layer extensions for communication protocols
US11128452B2 (en) Encrypted data sharing with a hierarchical key structure
CN108965486A (en) A kind of document down loading method, system, server and storage medium
CN112400299A (en) Data interaction method and related equipment
WO2020000765A1 (en) Off-line data storage method and apparatus, computer device and storage medium
US20190018982A1 (en) Storing data securely in a database
CN105450597B (en) A kind of information transferring method and device
CN114422237B (en) Data transmission method and device, electronic equipment and medium

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 18824937

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 18824937

Country of ref document: EP

Kind code of ref document: A1