WO2020057573A1

WO2020057573A1 - Electronic device control method and apparatus, electronic device, and storage medium

Info

Publication number: WO2020057573A1
Application number: PCT/CN2019/106552
Authority: WO
Inventors: 滕文星
Original assignee: 中兴通讯股份有限公司
Priority date: 2018-09-20
Filing date: 2019-09-19
Publication date: 2020-03-26
Also published as: CN109460655B; CN109460655A

Abstract

An electronic device control method and apparatus, an electronic device, and a storage medium. The electronic device control method comprises: acquiring a permission configuration request that acts on a first screen (S110); according to the permission configuration request, configuring a second permission range corresponding to a second screen on the basis of a first permission range corresponding to the first screen, the second permission range being smaller than the first permission range (S120); acquiring an operation request (S130); if the operation request acts on the first screen, responding to or rejecting the operation request according to the first permission range (S140); if the operation request acts on the second screen, responding to or rejecting the operation request according to the second permission range (S150).

Description

Control method and device for electronic equipment, electronic equipment and storage medium

Cross-reference to related applications

This application is based on a Chinese patent application with an application number of 201811099492.9 and an application date of September 20, 2018, and claims the priority of the Chinese patent application. The entire contents of the Chinese patent application are incorporated herein by reference.

Technical field

The present application relates to the field of electronic technology, but is not limited to the field of electronic technology, and in particular, to a method and device for controlling an electronic device, an electronic device, and a storage medium.

Background technique

To meet different display needs, electronic devices have appeared, for example, dual-screen devices including two screens.

When the electronic device is displayed, it may be divided into a first screen and a second screen. The users using the first screen and the second screen may be different users. However, in the related art, when a single-system device supports multi-screen display, there are security issues such as easy leakage of information.

Summary of the Invention

The embodiments of the present application are expected to provide an electronic device control method and device, an electronic device, and a storage medium.

The technical solution of this application is implemented as follows:

An embodiment of the present application provides a method for controlling an electronic device, including:

Obtain a permission setting request acting on the first screen;

Setting a second permission range corresponding to the second screen on the basis of the first permission range corresponding to the first screen according to the permission setting request, wherein the second permission range is smaller than the first permission range;

Get operation request;

If the operation request acts on the first screen, responding or rejecting the operation request according to the first authority range;

If the operation request acts on the second screen, respond or reject the operation request according to the second authority range.

An electronic equipment safety control device,

The device includes:

A first obtaining module, configured to obtain a permission setting request acting on the first screen;

A setting module, configured to set a second permission range corresponding to the second screen on the basis of the first permission range corresponding to the first screen according to the permission setting request, wherein the second permission range is smaller than the first permission range;

A second acquisition module, configured to acquire an operation request;

A first execution module, configured to respond or reject the operation request according to the first authority range if the operation request acts on the first screen;

A second execution module is configured to respond or reject the operation request according to the second authority range if the operation request acts on the second screen.

An electronic device includes:

First screen

At least one second screen;

The processor is respectively connected to the first screen and the second screen, and is configured to obtain at least a permission setting request acting on the first screen; and according to the permission setting request, in a first permission range corresponding to the first screen On the basis, a second permission range corresponding to the second screen is set, wherein the second permission range is smaller than the first permission range; an operation request is obtained; if the operation request acts on the first screen, according to the first screen, A permission range responds or rejects the operation request; if the operation request acts on the second screen, responds or rejects the operation request according to the second permission range.

A computer storage medium stores a computer program. After the computer program is executed, the foregoing electronic device control method can be implemented.

According to the technical solution provided in the embodiment of the present application, the second permission range of the second screen is set on the basis of the first permission range corresponding to the first screen according to the permission setting request acting on the first screen; The second authority range is smaller than the first authority range. In this way, when the operation request is obtained, the corresponding operation request may be responded or rejected based on the corresponding authority range according to the screen on which the operation request functions. In this way, when the primary user uses the first screen, the second permission range of the second screen can be set to avoid abuse by other users when using the second screen, thereby reducing the first screen and the second screen using the same permission at the same time. The problem of insufficient security of the electronic device caused by the abuse of the second screen improves the use security of the electronic device and the security of the information stored in the electronic device.

BRIEF DESCRIPTION OF THE DRAWINGS

FIG. 1 is a schematic flowchart of a first electronic device control method according to an embodiment of the present application; FIG.

2 is a schematic flowchart of a second electronic device control method according to an embodiment of the present application;

3 is a schematic flowchart of a third electronic device control method according to an embodiment of the present application;

4 is a schematic flowchart of a fourth electronic device control method according to an embodiment of the present application;

5 is a schematic structural diagram of an electronic device control apparatus according to an embodiment of the present application;

6 is a schematic structural diagram of an electronic device according to an embodiment of the present application;

7 is a schematic flowchart of a fourth electronic device control method according to an embodiment of the present application;

8 is a schematic flowchart of a fifth electronic device control method according to an embodiment of the present application;

9 is a schematic flowchart of a sixth electronic device control method according to an embodiment of the present application;

10 is a schematic structural diagram of a security center device according to an embodiment of the present application;

FIG. 11 is a schematic structural diagram of a security center system according to an embodiment of the present application.

detailed description

The technical solution of the present application will be further described in detail below with reference to the accompanying drawings and specific embodiments of the specification.

As shown in FIG. 1, this embodiment provides a method for controlling an electronic device, including:

Step S110: Obtain a permission setting request acting on the first screen;

Step S120: Set a second permission range corresponding to the second screen on the basis of the first permission range corresponding to the first screen according to the permission setting request, where the second permission range is smaller than the first permission range;

Step S130: obtaining an operation request;

Step S140: if the operation request acts on the first screen, respond or reject the operation request according to the first authority range;

Step S150: If the operation request acts on the second screen, respond or reject the operation request according to the second authority range.

The electronic device described in this embodiment may be an electronic device including at least two screens. In some embodiments, the electronic device may also be an electronic device including 3 or 4 screens.

Taking a dual-screen device as an example, a first screen and a second surface of the first electronic device are each provided with a screen; and the second surface is an opposite surface of the first surface.

If it includes more than two screens, at least one second screen is located on the opposite side of the first screen.

The screen may be various types of screens, for example, an electronic ink display screen, a liquid crystal display screen, an organic light emitting diode OLED display screen, and the like.

In this embodiment, the electronic device may be various types of electronic devices, such as a fixed device or a mobile device. The mobile device may include a vehicle-mounted mobile device or a person-mounted mobile device. The human-mounted mobile device may include a mobile phone or a tablet computer.

The electronic device includes a first screen and at least one second screen.

The electronic device in this embodiment may be a single-system device or a multi-system device. If the electronic device is a single-system device, the electronic device runs only one operating system, and the permission ranges of the first screen and at least one second screen of the electronic device are set in the operating system. If the electronic device is a multi-system device, the electronic device can run multiple operating systems. In this embodiment, the first permission range and the second permission range are set in the same operating system; that is, configuration The first screen with the first permission range and the second screen with the second permission range currently open the same operating system.

The operating system may be various operating systems, such as an Android operating system, an IOS operating system, a Windows operating system, and the like.

The first screen and the second screen may be different screens, and the first screen and the second screen are two independent screens. The independence of the two independent screens can be reflected in that the control logic of the first screen and the second screen are completely independent; one of the screens can be lit individually, or multiple screens can be lit at the same time. In some embodiments, the first screen and the second screen are not different areas of a screen. The display areas of the first screen and the second screen are different, for example, the first screen and the second screen are distributed on different surfaces of a multi-screen display device.

The first screen and the second screen may be the same type of screen, or may be different types of screens. For example, the first screen and the second screen may each be a liquid crystal display, an electronic ink display, an organic light emitting diode (OLED) display, or the like. In still other embodiments, in order to meet different display requirements of the electronic device, the first screen and the second screen may be different types of screens. Different types of screens can be: screens with different display principles; or screens with different specific attributes. For example, the first screen may be a liquid crystal display or an OLED display; the second screen may be an electronic ink display. E-ink display is different from LCD and OLED display. Screens with different specific attributes, for example, the first screen is a hard screen with a small flexibility coefficient, and the second screen may be a flexible display with a large flexibility coefficient. Hard screens need to maintain a specific posture, for example, they cannot bend or bend very little; flexible displays can bend. If the electronic device is a wearable device such as a smart watch, a hard screen can be provided on the dial; a flexible display is provided on the watch band. In addition to the flexibility coefficient, the specific attribute may be an attribute such as a power consumption parameter. Different types of screens have different power consumption. For example, the same area and the same resolution of the LCD display may consume more power than the electronic ink display.

In short, in some embodiments, the first screen and the second screen may be different screens; the electronic device at this time may be a multi-screen device.

The first screen and the second screen may be two independent physical screens, or may be different screen areas of the same physical screen. For example, two different display areas facing different directions in the flexible display screen can also be regarded as the first screen and the second screen in this application.

In other embodiments, the first screen and the second screen may be screen areas located in different screens; for example, the electronic device is a flexible display device, and the flexible display device included in the flexible display device may be folded. The display surfaces of the two different regions may face different display surfaces, and the user views the display of the first screen and the second screen on different sides of the screen.

In short, in this embodiment, the display surfaces of the first screen and the second screen are facing different directions, for example, facing in opposite directions or the angle between the two display surfaces is greater than or equal to zero, for example, If the specific angle is greater than u, the specific angle may be between 90 degrees and 270 degrees; of course, this is only an example of a specific angle, and the specific implementation is not limited to this.

In some embodiments, the first screen may be a main screen, and the second screen is a sub screen; the main screen is a main display screen of an electronic device, and the sub screen may be a screen of a different main screen. In some embodiments, the secondary screen of the electronic device may be a secondary screen displayed on a secondary main screen.

The difference between the primary screen and the secondary screen may be reflected in at least one of the following:

The setting position is different, the main screen is located on the front side of the electronic device (for example, the A side), and the front side is the side that is viewed and used by the user for the longest; the auxiliary screen is set on the reverse side of the electronic device, and the reverse side is the back side of the front side;

The system settings are different. The operating system sets the corresponding screen as the primary screen, and the primary screen may set a lot of priorities relative to the secondary screen. For example, the device automatically lights up the main screen during the startup process; whether the secondary screen needs to be lit after startup may need to be detected by operating instructions acting on the main screen to determine. As another example, during the startup process of the electronic device, the main screen is preferentially lit, and then the secondary screen is lit. In some embodiments, according to the energy storage situation of the current device, if the lighting of the current device is lower than a specific value, the secondary screen is automatically closed to save display power consumption, extend the standby time of the electronic device, and maintain the normal display.

In some embodiments, the specific screens corresponding to the primary screen and the secondary screen may be switched according to user settings.

The first screen has a first permission range; the second screen has a second permission range. The first authority range is greater than the second authority range, and may include:

The first permission range includes more permissions than the second permission range. In this way, the permission set corresponding to the first screen is larger than the permission set corresponding to the second screen; thus, the information security and The device's use permission can be removed from the second permission range.

In some embodiments, the permission level of the first permission range may be higher than the permission level of the second permission range; thus, for the same permission, the first screen has a higher permission level; for example, a web page View permission as an example, a high permission level can view all web content, while a low permission level can only view specified content;

In other embodiments, the permission priority of the first permission range may be higher than the permission priority of the second permission range; thus, for the same permission, the operation request acting on the first screen has a higher For example, using a smart home control application on an electronic device, the first screen detects an operation request to control the air conditioner to turn on and set the target temperature to A, and the second screen detects a control air conditioner to turn on and set the target temperature Is an operation request of B; according to the authority priority of the first screen being higher than the authority priority of the second screen, the electronic device sends an opening instruction to the air conditioner at this time with a target temperature of A.

In some embodiments, the first permission range may be: a permission range including all permissions of the electronic device; and the second permission range may be: a permission range including part of the permissions of the electronic device. At this time, the first authority range defaults to the authority range of the electronic device.

In short, the difference between the first authority range and the second authority range may be expressed in any one of the above three aspects. In this way, through the permission difference setting of the first screen and the second screen, the authority of the second screen when using the electronic device can be controlled, thereby improving the use security information of the electronic device and the information security of the information stored in the electronic device.

Because the first permission range and the second permission range are set, so that the second screen no longer has all the permissions of the electronic device. If an operation request acting on the second screen is detected, it is necessary to Two permission scopes, determine whether to respond to the operation request. For example, if the permission used by the operation request is within the second permission range, the operation request is responded, otherwise the operation request is not responded. Failure to respond to the operation request is to reject the operation request.

The operation request may correspond to various operations acting on the screen, for example, touch operations such as clicking, sliding, pressing, and dragging of controls, or various operation requests acting on the screen detected by a mouse or an eye tracker.

For example, the operation request may include: detecting an operation request corresponding to a cursor operation such as clicking or dragging a display control on the second screen indicated by the cursor. The cursor operation may be a cursor operation based on a mouse assist or a cursor operation based on a touch pad that is not overlapped with the second screen;

For example, the operation request may include: an operation request detected by using a line of sight positioning operation; for example, an operation of a display control acting on the second screen through a through-hole positioning or an eye tracker.

In some embodiments, as shown in FIG. 2, the method further includes:

Step S100: Determine whether the application conditions of the second authority range are met;

The step S150 may include: if the application condition is satisfied and the operation request acts on the second screen, responding or rejecting the operation request according to the second authority range.

In some embodiments, as shown in FIG. 2, the method further includes:

Step S160: If the application conditions are not met, respond to or reject an operation request acting on the second screen according to the first authority range.

As such, in some specific cases, based on user input or built-in instructions of the electronic device, it can be determined as to whether the application conditions of the second permission range are met, and if the response of the operation request of the second screen is restricted according to the second permission range, Otherwise, the second screen also enjoys the first permission range, so it is convenient to meet different operating needs. For example, if the non-main user using the second screen is a user trusted by the main user, the user input can be used to indicate that the electronic device currently does not meet the application conditions of the second permission range, thereby avoiding the second permission range limiting the operation request response of the second screen The inconvenience caused; thus improving the user experience again.

In some embodiments, the first screen and the second screen are different physical screens facing different directions; the step S100 may include: determining whether to launch a secure application environment; An application condition of the second permission range.

For example, it is determined whether the application meets the application according to whether the currently connected network of the electronic device is a preset network, for example, according to whether the currently connected hotspot of the electronic device is a hotspot of a home network configured in the electronic device or a hotspot of an office area. condition. If the non-security hotspot in the public area to which the electronic device is currently connected can be considered as an application condition that satisfies the second permission range.

For another example, the first screen and the second screen are different display areas of the same physical screen;

The step S100 may include: according to whether the current posture of the physical screen is a preset posture, and if the current posture of the physical screen is a preset posture that causes the first screen and the second screen to face different directions, Determining an application condition that satisfies the second permission range.

If the first screen and the second screen do not face different directions due to the current posture, it means that the first screen and the second screen are both under the supervision of the main user, there is no need to start the second permission range to restrict the operation request response of the second screen . If the current posture makes the first screen and the second screen face different directions, it can be considered that the application conditions of the second permission range are met.

In some embodiments, the step S100 may further include: determining whether the electronic device is in a safe mode, and if it is in the safe mode, it may be considered that the application condition of the second permission range is satisfied. For example, based on user operations, based on the type of network that the electronic device is currently connected to, or based on the current posture of the electronic device, if the electronic device automatically enters safe mode, the electronic device can detect the operation acting on the second screen according to the electronic device. Whether the security mode is entered determines whether an application condition of the second permission range is satisfied. If the electronic device is provided with identification information indicating that the safe mode is entered, the processor of the electronic device may consider that the current electronic device is in the safe mode and meets the application conditions of the second authority range.

In some embodiments, the step S150 may include:

Querying a permission identifier of a permission included in the second permission range according to the identification information carried in the operation request;

If the identification information is included in the permission identifier, respond to the operation request; and / or, if the identification information is not included in the permission identifier, reject the operation request.

The identification information corresponding to the operation request may include at least one of the following:

An application identifier of an application to which the operation request acts;

An operation identifier of the operation requested by the operation request;

The operation type identifier of the operation requested by the operation request.

The second authority range is provided with identification information that an operation request acting on the second screen can be responded to. In this way, by querying the second permission range with the identification information, it can be determined whether the operation corresponding to the operation request can be responded.

For example, the same type of operation request may correspond to different specific operations. For example, a payment operation in a payment application may include a password-free payment operation and a password payment operation. The password-free payment operation and the password payment operation are different specific payment operations of payment-type operations, and the operation identifiers are different. The operation identifiers of the two specific payment operations may be included in the first permission range corresponding to the first screen, but the operation identifiers of the password payment operation may be included in the second permission range corresponding to the second screen.

For example, operation types can be divided according to the functions implemented by the operations, such as reading operations, image acquisition operations, audio acquisition operations, information sharing operations of social applications, call operations, instant messaging operations, payment operations, shopping operations, and system upgrade Operation, application installation operation, application deletion operation, etc. The above are examples of different types of operations, and the specific implementation is not limited to any of the above.

In some embodiments, the step S150 may include:

Displaying the application icon of the first type of application on the display page of the second screen according to the application display permission of the second permission range; or the step S150 may include: displaying the permission according to the application of the second permission range , Shielding the display of the second type of application on the second screen.

The display page may be the desktop, application folder page, or management page number of the second screen, but is not limited to these pages.

The operation request corresponds to identification information, and the identification information may be one or more of an application identification of an application generated by the operation request, a type identification of an operation type, and an operation identification of the operation.

Query the second permission range of the second screen according to the identification information corresponding to the operation request, and determine whether to respond to the operation request according to the result of the query.

If the second permission range includes the identification information, it can be considered that the second permission range corresponding to the second screen includes the permission to respond to the operation request, and therefore responds to the operation request. If the second permission range does not include the identification information, it can be considered that the second permission range does not include the permission to respond to the operation request, and the operation request is rejected.

If responding to the operation request, the electronic device executes the operation request. If the effect of the operation request response needs to be displayed, the effect is displayed on the second screen.

If the operation request is rejected, the electronic device blocks the operation request, that is, the operation request is not executed.

In some embodiments, the applications of the electronic device may be divided into a first type of application and a second type of application. The second type of application is an application other than the first type of application in the electronic device.

The first type of application and the second type of application have at least one of the following differences:

The security level is different, for example, the security level of the first type of application is lower than the second type of application;

The application type is not required. For example, the first type of application can be some multimedia applications, more of the same type of public information output application, and little or no user's personal information; and the second type of application may be social applications, payment, etc. Applications, such as applications that may involve the user's private information.

The determination of the application type may be determined by the processor of the electronic device by analyzing the application identifier, or may be determined according to the attribute configuration of the application.

For example, the payment application may include applications of various banks, mobile payment applications such as Alipay or WeChat, wealth management applications of various wealth management companies, for example, applications of stock transactions and / or fund transactions, and the like.

The social application may include: various applications that use various communication technologies to socialize, for example, applications that use instant messaging technology to socialize, typically, such as WeChat.

Of course, the above is only an example of the difference between the first type of application and the second type of application, and the specific implementation is not limited to any of the above.

In some embodiments, the electronic device can automatically determine which applications are installed in the electronic device are the first type of application according to the security level, application type, and other parameters defined by the second permission range. In this way, the user's attention can be reduced to setting whether each application Applications that belong to the second scope of operation.

Since the first type of application is displayed only on the second screen, the device owner does not want the second type of application operated by the second screen to be directly hidden, so it is equivalent to not giving an opportunity to let Others use the second screen to operate the second-type application with a high security level, thereby preventing various security issues caused by other people operating the second-type application through the second screen.

In some embodiments, the first type of application includes at least one of the following:

Entertainment applications that provide entertainment services;

Search applications that provide information search;

Multimedia information collection applications that provide multimedia information collection;

Application store applications that provide application installation services;

and / or,

The second type of application includes at least one of the following:

Payment applications that provide online payment services;

Shopping applications that provide online shopping services;

Email applications that provide email services;

Social applications that provide social services;

Information logging applications that provide information logging;

Provides security control applications for equipment security control.

For example, the entertainment application may include:

Audio entertainment applications, such as various song listening applications;

Video entertainment applications, for example, various video applications, and the video applications herein may include: conventional video applications (eg, Tencent Video, iQiyi Video), and the like. In some embodiments, the video application may further include a short video application, for example, Douyu video, and the like. The videos that can be provided by conventional video applications can be videos of various video durations, and short video applications can be: applications that provide videos with video durations less than a specific value.

In some embodiments, video applications can also be divided into: active sharing video applications and centralized push video applications. For example, centralized push videos come from a relatively fixed number of video providers; and active sharing video applications can be: Video application that every user can actively share.

The entertainment application may further include a game application on which a user can participate in various electronic games, for example, a stand-alone game, a networked online game, and the like.

The search application may be an application corresponding to a search engine, for example, Baidu Search, Google Search, and the like.

The multimedia information collection application may include: an audio collection application (for example, various camera applications), an audio collection application (for example, various song recording applications), and the like.

In some embodiments, the application agrees on an application, such as an APP store application. You can find installation packages for various applications on the application store applications for application installation, upgrade, or update.

Of course, the above is only an example of the first type of application, and the specific implementation is not limited to the above one.

The payment application can be used for applications such as electronic payments, remittances, and transfers that provide valued expenditures such as currency, stocks, funds, etc., such as Alipay applications, bank applications, and the like.

Shopping apps Apps that can purchase goods and / or services over the Internet, such as Taobao, JD.com, and Meituan. Goods can include: clothing, electronic equipment, daily necessities, school supplies, catering, etc. Services can include: aviation services, railway services, travel services, hotel services, on-site cleaning services, etc.

Mail applications that provide email services may include: mail applications based on different types of mail protocols. The mail application may be distinguished according to its content attributes by including an office mail application, a private mail application, and the like.

Recording applications may include, but are not limited to:

Applications for information memos, such as memo applications;

Application for note taking, for example, Youdao note taking application;

Used for scheduling applications, schedule information applications.

Provide security control applications for device security control, such as anti-virus software applications, firewall applications, etc.

The above is only an illustration of the second type of application, and the specific implementation is not limited to this.

The setting of the first type of application and the second type of application may be performed based on the detection of user input, or may be performed by the electronic device based on the security in the process of providing services by the application, based on the application identification and * / or attribute configuration. Set.

In some embodiments, as shown in FIG. 3, if the operation request acts on the second screen, responding to the operation request according to the second authority range further includes:

Step S151: if the operation request acts on the second screen, and the second permission range includes a predetermined permission corresponding to the operation request;

Step S152: query the permission attribute of the predetermined permission;

Step S153: Perform a predetermined operation according to the permission attribute.

In this way, by setting the permission attribute, even when it is allowed to respond to the operation request of the second screen, the response of the second screen to the operation request can be further limited or monitored, thereby improving the security of the electronic device again.

In some embodiments, the step S153 may include at least one of the following:

If the permission attribute includes a first screen monitoring attribute, the monitoring information is displayed on the first screen according to a response status acting on the operation request, wherein the monitoring information includes status information that the operation request is responded to ;

If the permission attribute includes a first screen notification attribute, displaying notification information of an operation request acting on the second screen on the first screen according to the operation request, wherein the notification information is used to notify An operation request acting on the second screen.

In some embodiments, in some embodiments, determining the operation attribute of the first type of application according to the application operation permission of the second screen includes:

Determining whether the first type of application has a first screen notification attribute according to the application operation permission of the second screen; wherein the first screen notification attribute is used to perform a first predetermined operation on the first type of application When an operation notification is displayed on the first screen;

Determining whether the first type of application has a first screen monitoring attribute according to the application operation permission of the second screen, wherein the first screen monitoring attribute is used to perform a second predetermined operation on the first type of application When monitoring information is displayed on the first screen;

Determining whether the first type of application has editing restriction permission according to the application operation permission of the second screen, wherein the editing restriction permission is used to prohibit the first type of application from responding to the action of the second screen Edit operation request;

Determining whether the first type of application has access restriction permission according to the application operation permission of the second screen, wherein the access restriction permission is used to prohibit the first type of application from responding to the action of the second screen Access operation request.

In some embodiments, the second screen displays a first type of application. In this way, the second screen provides an interface for using the first type of application. In this way, the holder of the electronic device is informed of which applications are currently used by users of the second screen.

In some other embodiments, some functions of the first type of application may not belong to the second permission range or belong to the second permission range, which requires a higher level of security. The first screen needs to output a notification to enable the electronic device. The holders know. At this time, it can be achieved by setting the first screen notification property of the first type of application. For example, when a first-type application set with a first-screen notification attribute is started or when a specific operation is performed, an operation notification is displayed on the first screen. For example, a notification is displayed on the first screen that the corresponding first-type application is started, or that the first-type application performs a specific operation.

In some embodiments, the first type of application may be provided with a first screen monitoring attribute. After the first screen monitoring attribute is set, the first type of application is started or operated, and corresponding monitoring information is generated, and the monitoring information is displayed on the first screen periodically or irregularly, or on the first screen The predetermined area of is displayed continuously. The continuous display here may include: during the opening time of the first type of application, the monitoring information of the first type of application is kept displayed in the predetermined area until the first type of application is closed. The predetermined area may be a specific display position of the first screen, or a specific application interface with a movable display position. For example, the application interface may be a floating window, and the floating window may be located at the uppermost layer of the first screen display. The desktop or application interface of the first screen displayed by the lower layer does not interfere with the display of the floating window. Ensure that users of electronic equipment can view monitoring information through floating windows at any time.

If a first-type application is set with the first-screen monitoring attribute, the operating system of the electronic device, the monitoring application, or the application itself will monitor the information of the first-type application,

The monitoring information includes but is not limited to the following information:

An application log having a first screen monitoring attribute application; the application log may include: an operation log of each operation performed by the corresponding application, and the operation log may include: an execution time of the operation and parameters of the operation. For example, the parameters of the operation may include: the number of operations, and a parameter value carried. For example, a video application is taken as an example for description. The operation log may include: an operation log for playing a video. The specific content may include: a video identifier (for example, a name, a uniform resource location identifier) of the video played on the second screen, and a start and end time of the play. , User account information used for playback;

Based on the information converted by the application log, the application log has a specific format and may not be convenient for ordinary users to read. By filtering the information of the application log, only the content of interest of the holder of the electronic device is selected for conversion into natural language output.

The above is an example of monitoring information, and the specific implementation is not limited to any of the above.

In some embodiments, as shown in FIG. 4, the method further includes:

Step S170: if the operation authority corresponding to the operation request acting on the second screen is outside the second authority range, display inquiry information on the first screen;

Step S180: respond or reject the operation request based on the operation instruction acting on the inquiry information.

If an operation request acting on the second screen is outside the scope of the second authority, in order to reduce that the operation request that must be responded to is accidentally killed, in this embodiment, the inquiry information is displayed on the first screen. It is displayed that an operation instruction acting on the inquiry information can be obtained, and whether to respond can be determined based on the operation instruction, thereby further improving the intelligence of the electronic device and the satisfaction degree of the user.

For example, the query information can be popped up in the form of a dialog box, and a control indicating "agree" or "disagree" is displayed on the dialog box, so that the user can give a corresponding consent or disagreement through a single click or one-time operation The input of information simplifies user operations.

In some embodiments, the query information includes at least one of the following:

First query information, wherein the first query information is used to query whether the second screen is allowed to launch the requested application this time;

Second query information for querying whether to switch to the first screen to start the requested application;

The third query information is used for querying that the requested application is approved to be launched on the second screen this time and thereafter.

The first inquiry information is equivalent to a single inquiry information, and the operation of the first screen detection is only used to remove the consent or disapproval for the current startup.

The second query information can be directly switched to the first screen for activation, so that it is convenient for monitoring by the user who uses the first screen.

The third query information can be used for the setting of the second screen startup enabled or prohibited this time and later; in this way, the holder of the electronic device does not need to specifically set the second permission range, and performs the setting during the use of the electronic device , Simplifying user operations and improving user experience.

In some embodiments, the method further includes: updating the second authority range according to the operation instruction.

In some embodiments, the updating the second permission range according to the operation instruction may include: if the operation instruction is a first consent instruction, adding a preset permission to the second permission range.

If the operation indication is detected, it is necessary to agree to the second screen to respond to the corresponding operation request, indicating that the primary user is assured that the non-primary user of the second screen is using it. For the second authority range, if an operation instruction indicating consent based on the query information is detected in this embodiment, the second authority range may be directly updated. In this way, users do not need to specifically set or update the second permission range, which improves the user experience again.

In some embodiments, the step S180 may include at least one of the following:

If the operation instruction is a second consent instruction, using a second screen to respond to the operation request;

If the operation instruction is a third consent instruction, use the first screen to respond to the operation request.

For example, in some embodiments, the step S120 may further include:

Detecting the application operation request indicates the application state of starting the application. If the application has been started on the first screen or another second screen, it is determined whether to respond to the operation request according to the application parameters of the application.

The application status may include at least one of the following: activated; not activated; a screen that is activated.

If the application parameter indicates that the application can only open one application interface, the operation request is rejected.

Taking a social application as an example, a social application may only run one account, and only one application interface may be opened. If the application has been activated on the first screen, it may directly determine to reject the operation request.

If the application parameter indicates that the application can open multiple application interfaces and the permission of the application is within the second permission range, it can respond to the operation request. Taking the office application as an example, the office application can open multiple application interfaces and display different files. In this way, they do not conflict with each other, so the request can be responded accordingly.

In some embodiments, the step S110 may include: obtaining an application startup request acting on the application icon displayed on the second screen;

The step S120 may include: if the second screen does not have permission to launch the application requested by the application launch request, displaying query information on the first screen;

And launching the application corresponding to the application identifier according to the consent indication for starting the requested application on the second screen, and displaying the application interface of the launched application on the second screen, wherein the consent indication is based on action It is formed by the operation of the inquiry information.

In some embodiments, the step S120 may include: according to the permission setting request, setting a second corresponding to a different application mode of the second screen based on a first permission range corresponding to the first screen. Scope of authority.

In still other embodiments, the application mode includes at least one of the following: a child mode; an elderly mode; an ordinary adult mode.

Depending on the application mode, the second permission range of the second screen may be different.

In some embodiments, before the acquiring the operation request acting on the second screen, the method further includes:

Select application mode based on user attributes;

Determining the second authority range of the second screen according to the application mode.

For example, the application mode is selected based on at least one of the user's age, gender, professional characteristics, education level, and hobbies.

In some embodiments, the selecting an application mode according to a user attribute includes:

Depending on the age of the user, select child mode, elderly mode or adult mode.

Children mode may not be able to watch certain types of videos, such as violent videos, for multimedia applications used in the second screen.

The elderly mode may require applications allowed on the second screen. For example, some applications are disturbing for the elderly. By banning the use of these applications, user satisfaction can be improved.

The adult mode may be a common mode other than the child mode and the elderly mode.

According to the gender of the user, a normal game application startup mode, a specific game application startup mode, a game application prohibition startup mode, and the like are selected.

The normal game application launch mode allows the launch of all game applications. Certain game application launch modes may only allow launch of specific games. The game application is prohibited from the launch mode, and the second screen is not allowed to launch and / or display the game application. In still other embodiments, if the operation request is rejected, the method further includes: outputting a rejection prompt through a corresponding second screen. The rejection prompt may include: prompting that the corresponding operation request is rejected. In other embodiments, the rejection prompt may further include: the reason why the operation request is rejected; and a distinction to indicate that the operation request is rejected for other reasons. For example, some operation requests are that the device does not have the ability to display, but not the ability to display the rejection caused by the second permission range corresponding to the second screen being disallowed. In this embodiment, a distinction is made by the reason for rejection in the rejection prompt.

In some embodiments, the electronic device is configured with at least a security mode, and the security mode is based on a second permission range to respond to an operation request acting on or corresponding to the second screen.

In other embodiments, the electronic device may also be configured with a normal mode. In the normal mode, the permission range between the first screen and the second screen may be the same. For example, the second screen is in the normal mode. The authority range may also be equal to the first authority range.

In some other embodiments, the responding to or rejecting the operation request according to the second permission range of the second screen includes:

When the security mode is turned on, respond to the operation request according to the second authority range.

If the electronic device is in the security mode, it responds to the operation request according to the second authority range; otherwise, it can respond to the operation request acting on the second screen according to other configurations of the electronic device.

The step S120 may include: querying the second permission range according to an application identifier corresponding to an application operation request;

If the second permission range includes the permission of the application corresponding to the application identifier, start the application corresponding to the application identifier, and display the application interface of the started application on the second screen.

In some embodiments, the main page of the second screen may display all applications of the electronic device without distinguishing between the first type of application and the second type of application, but the use right of the second screen is limited, so in this embodiment Or obtain an application launch request that displays an application icon acting on the second screen. In step S120, it is necessary to determine whether it is possible to respond to the launch request. If the privilege of the launch request is included in the second privilege range, the electronic device starts Application, and the application interface of the application is displayed on the second screen.

In some embodiments, the determining the second permission range of the second screen according to a setting operation acting on the first screen includes at least one of the following:

Determining a security mode of the second screen according to a setting operation acting on the first screen;

Determining a first type of application that can be displayed on the second screen according to a setting operation acting on the first screen;

Determining an operation attribute when the first type of application is displayed on the second screen according to a setting operation acting on the first screen.

The above is only an example of setting the second authority range, and the specific implementation is not limited to any of the above descriptions.

As shown in FIG. 5, this embodiment provides an electronic device control apparatus, where the apparatus includes:

A first obtaining module 110 configured to obtain a permission setting request acting on a first screen;

The setting module 120 is configured to set a second permission range corresponding to the second screen based on the first permission range corresponding to the first screen according to the permission setting request, wherein the second permission range is smaller than the first permission range Scope of authority

A second obtaining module 130 configured to obtain an operation request;

The first execution module 140 is configured to respond or reject the operation request according to the first authority range if the operation request acts on the first screen;

The second execution module 150 is configured to respond or reject the operation request according to the second authority range if the operation request acts on the second screen.

In some embodiments, the first acquisition module 110, the setting module 120, the second acquisition module 130, the first execution module 140, and the second execution module 150 may correspond to a program module. After the program module is processed, it can be implemented. Obtain the operation request acting on the second screen, and respond to the operation request or the aggregation operation request according to the second authority range of the second screen.

In some embodiments, the apparatus further includes:

A determining module configured to determine whether an application condition of the second authority range is satisfied;

The second execution module 150 is configured to respond or reject the operation request according to the second authority range if the application condition is satisfied and the operation request acts on the second screen.

The determining module is configured to respond to or reject an operation request acting on the second screen according to the first authority range if the application condition is not satisfied.

In some embodiments, the first screen and the second screen are different physical screens facing different directions;

The determining module is configured to determine whether to launch a secure application environment; and if the secure application environment is enabled, determine an application condition that satisfies the second permission range.

In some embodiments, the first screen and the second screen are different display areas of the same physical screen; the determining module is configured to determine whether the current posture of the physical screen is a preset posture, and if the The current posture of the physical screen is a preset posture that makes the first screen and the second screen face different directions, and it is determined that the application conditions of the second permission range are satisfied.

In some embodiments, the second execution module 150 is configured to query a permission identifier of a permission included in the second permission range according to the identification information carried in the operation request; if the identification information is included in the permission Within the identification, responding to the operation request; and / or, if the identification information is not included in the permission identification, rejecting the operation request.

In some embodiments, the identification information carried in the operation request may include at least one of the following:

An operation identifier of the operation requested by the operation request;

In some embodiments, the second execution module 150 is configured to display the permissions according to the applications of the second permission range, and display the application icons of the first type of application on the display page of the second screen; or The application display permission of the second permission range is described, and the display of the second type of application on the second screen is blocked.

The first type of application includes at least one of the following:

Entertainment applications that provide entertainment services;

Search applications that provide information search;

Application store applications that provide application installation services;

and / or,

The second type of application includes at least one of the following:

Payment applications that provide online payment services;

Shopping applications that provide online shopping services;

Email applications that provide email services;

Social applications that provide social services;

Information logging applications that provide information logging;

Provides security control applications for equipment security control.

In some embodiments, the second execution module 150 is configured to: if the operation request acts on the second screen, and the second permission range includes a predetermined permission corresponding to the operation request; query the reservation A permission attribute of the permission; performing a predetermined operation according to the permission attribute.

The second execution module 150 is configured to execute at least one of the following:

In some embodiments, the apparatus further includes:

An inquiry module configured to display inquiry information on the first screen if the operation authority corresponding to the operation request acting on the second screen is outside the second authority range;

The third execution module is configured to respond to or reject an operation request based on an operation instruction acting on the inquiry information.

In some embodiments, the apparatus further includes:

An update module is configured to update the second authority range according to the operation instruction.

In some embodiments, the update module is configured to add a preset permission to the second permission range if the operation instruction is a first consent instruction.

In some embodiments, the third execution module is configured to execute at least one of the following:

In some embodiments, the setting module 120 is configured to set a second permission corresponding to a different application mode of the second screen based on a first permission range corresponding to the first screen according to the permission setting request. range.

In some embodiments, the application mode includes at least one of the following: a child mode; an elderly mode; an ordinary adult mode.

As shown in FIG. 6, this embodiment provides an electronic device, including:

First screen 101;

At least one second screen 102;

The processor 103 is connected to the first screen 101 and the second screen 102, respectively, and is configured to execute any one of the above-mentioned electronic device control methods; for example, it may execute FIG. 1 to FIG. 7 and FIG. 7 to FIG. One or more of the methods shown.

In some embodiments, the processor 103 is at least configured to obtain a permission setting request acting on the first screen 101; according to the permission setting request, setting a second on the basis of the first permission range corresponding to the first screen 101 A second permission range corresponding to the screen 102, wherein the second permission range is smaller than the first permission range; obtaining an operation request; if the operation request acts on the first screen 101, according to the first permission range Respond or reject the operation request; if the operation request acts on the second screen 102, respond or reject the operation request according to the second authority range.

The processor 103 may be various types of processors 103 and may be various types of processors 103. The processor 103 may be: a central processor 103, a microprocessor 103, a digital signal processor 103, and an application processor 103 , Programmable devices, etc.

The first screen 101 and the second screen 102 may be different screens. For the relationship between the first screen 101 and the second screen 102, reference may be made to the foregoing embodiment, which will not be repeated here.

The processor 103 may be connected to the first screen 101 and the second screen 102 through various buses, and is configured to respond to an operation request acting on the second screen 102 and a second authority range of the second screen 102. Respond to or reject the operation request.

The first screen 101 and the second screen 102 may be located on opposite sides of the electronic device. For example, the first screen 101 is located on a first surface of the electronic device; at least one of the second screens 102 is located on a second surface of the electronic device; the second surface is an opposite side of the first surface.

If the first screen 101 is the main screen, the main screen is located on the front of the electronic device, and if the second screen 102 is the secondary screen, at least one secondary screen is located on the reverse side of the electronic device. If the electronic device includes multiple secondary screens, some secondary screens may even be located on the side of the electronic device.

In this embodiment, the electronic device may be a device with a single operating system.

The electronic device may perform any one or more of the foregoing electronic device control methods, thereby ensuring the device use security of the electronic device and the information security of the stored information.

In some embodiments, a computer storage medium is also provided. The computer storage medium stores a computer program. After the computer program is executed, the method for controlling an electronic device provided by one or more of the foregoing technical solutions can be implemented. Perform one or more of the methods shown in FIGS. 1 to 4 and 7 to 9.

The computer storage medium may be various types of storage media, and the storage medium may be a non-transitory storage medium.

Several specific examples are provided below in combination with any of the above embodiments:

Example 1:

This application provides a permission management method for a dual-screen terminal. The application includes a management module (whether the management mode can be turned on in the settings, you can set sensitive information sources, set the default secondary screen to use the launcher group and manage the launcher group to add secondary screens), the launcher setting module, and sensitive information collection Module (install sensitive applications or use), monitoring module, if the user has not set or omitted to set certain and leaked information, you need to prompt the relevant information to the main screen.

The application scenarios of the methods provided in this application can be as follows:

The mobile phone is used as an example of the aforementioned electronic device. The mobile phone holder uses the main screen of the dual screen. The dual screen mobile phone supports single system dual screen operation. Non-holder users need to use the secondary screen to perform certain unique behaviors. These behaviors include Watch movies, play games, etc.

Due to the foldable nature of the dual screen, mobile phone holders may not be able to know the behavior of non-holder users. At this time, mobile phone holders set the security function of the secondary screen through the security center system to limit the behavior of the secondary screen. An application that can only be used by a given user, and authorized and monitored when the user opens the application. This can ensure that the mobile phone holder's mobile phone is securely managed, preventing information leakage and users from artificially damaging the system.

This application also describes a permission management method in dual-screen AB mode. The management scheme of this management method is as follows:

Step 1: Set whether to enable the security mode of the dual-screen application in the management module. And you can set which screen is the primary screen and which is the secondary screen.

Step 2: If the security mode of the dual-screen application is enabled, a default primary screen and secondary screen permission range is given. The settings provide ways to add, delete, and modify permissions and application ranges to avoid information leakage. For example, the application of leaking host information includes and is not limited to SMS, WeChat, diary, photos, Weibo, Tmall, JD. Take a setting example: the main screen is the full range of permissions, and the secondary screen is the limit of the range of permissions.

The setting content of the permission range of the secondary screen may include but is not limited to:

1) Set applications that do not need to be displayed on the secondary screen, such as Jingdong, Taobao, Alipay and other money-related applications;

2) The secondary screen can display applications that need to be opened on the main screen. For example, the newly installed application needs to be opened on the home screen to determine whether it is necessary to install;

3) An application that can be opened, but it is a controlled application. The controlled methods include providing a monitoring screen on the home screen and providing text prompts on the home screen to indicate the current user's operation mode;

4) You can open the application, but only have the viewing right and no editing rights. For example, you can open the address book, but you cannot add, delete, or modify photos. You can view photos, but you cannot provide delete and modify functions. Set to add and delete related applications, including long-press drag and drop is not limited to long-click drag and drop to modify related permissions.

Step 3: After setting the relevant permission range in the management module, the related application icons can be displayed on the secondary screen to indicate which ones are unavailable. The owner can pass identity authentication to confirm the owner's identity and edit the application icon. Specifically, you can add a menu for each icon of the launcher and provide 4 options for management. After the setting is completed, the setting will be saved in the database. For example, the secondary screen distinguishes and displays the application icons of the first-type application or the second-type application. The distinguishing display here may include: using different display parameters to distinguish the display. For example, the display parameters include, but are not limited to, display colors, such as The application icons of the second type of applications are gray icons, and the application icons of the first type of applications are colored icons. As another example, the first-type application and the second-type application are displayed with different display brightnesses.

Step 4: Although the related applications are set, it is inevitable that users will have the opportunity to use the information related to the mobile phone owner, and you can set the way of monitoring sensitive information. By setting permission application monitoring in the PMS, if a new application is installed, it can be monitored through AMS.

Example 2:

This embodiment provides a method for setting permissions for a dual-screen device. Please refer to FIG. 7. The method for setting permissions for a dual-screen device provided in this example may include:

Step S101: Set whether the secondary screen has the security mode enabled on the primary screen;

Step S102: The set options are saved in the database for use by the secondary screen; the options here are the options for configuring the foregoing second permission range;

Step S103: The secondary screen displays the desktop according to the settings of the main screen. For example, only the application icons that need to display the authorized applications are displayed, or the application icons that distinguish between the authorized and non-permitted applications are displayed. When the secondary screen operation clicks on an application (Application, APP), the Activity Management Service (AMS) system identifies the operation of the secondary screen, interrupts the application loading, and gives a confirmation message to the main screen for the main screen user to perform information confirm.

Step S104: The main screen displays the confirmation information of the secondary screen application. After detecting the confirmation operation on the primary screen, the AMS restores the related application initialization and loads the secondary screen. At this time, the secondary screen performs APP initialization.

The method for setting the secondary screen on the main screen in this embodiment includes setting whether to enable the scheduling mode S101. It should be noted that the secondary screen has no permission to access this setting by default. If the secondary screen enters this setting, the setting interface should be displayed on the main screen for setting. . If you turn on safe mode, you can set several aspects:

(1) You can set which security applications need to be displayed on the secondary screen. This should include one or more sets of default minimum subset applications. The default applications can be distinguished by functions and permissions for specific groups of people, such as by function. It is divided into entertainment applications, including applications related to watching movies and playing games, such as a child mode for a specific group of people, an elderly mode, which is not only a limitation of the application, but also involves a change in the style of the launcher. For another example, all applications without dangerous permissions are the smallest subset. If a new application is installed, it is out of security by default. For example, the font of the desktop in the elderly mode may be larger than that in the normal adult mode.

(2) The security application can be displayed on the secondary screen. You can set key information related to the use of the reminder. Open an application on the secondary screen. AMS intercepts the opening and disappears. It confirms that it is the secondary screen ID2 by the ID of the primary and secondary screen. Suspend the current application process, call the security monitoring application, set the property of the main screen ID1, and display a prompt interface on the main screen. The main screen user needs to confirm the prompt interface, including and not limited to: 1) Whether the application is being displayed , 2) Whether to switch to the main screen display, 3) Whether to confirm the option every time. The application S104 can be opened on the secondary screen if and only if the user selects Yes is displayed and does not need to switch to the primary screen. If you choose to confirm each time, you need to start the next time you start the application again, otherwise you only need to call it once. When the application is displayed and switched to the main screen, AMS immediately ends the application instance of ID2 and restarts an application instance of ID1. If you choose not to display the application, AMS should stop displaying the application and give a secondary screen prompt before stopping information.

(3) After the setting items are set, they are saved to the local machine S102 through the database, and the operation of the secondary screen refresh is triggered, and the application group S103 in the safe mode is displayed.

Example 3:

Here is a concrete example of how the Security Center works.

Take the successful setting of secondary screen permissions as an example. As shown in FIG. 8, firstly, the secondary screen cannot be provided with a security center; this ensures that non-owner users set the security center through the secondary screen, which results in security issues caused by the permission range of the secondary screen being changed.

Before setting permissions on the home screen, perform home screen identity authentication, including methods that are not limited to entering passwords, gesture graphics, or fingerprints. After successful authentication, you need to return the authentication result and return the last setting result. Default setting.

The main screen needs to enable the security mode, and as a part of the database, you need to set the default application group and whether to notify the main screen. After exiting the settings, you need to notify the secondary screen desktop to refresh the interface timing.

After being set in the above manner, the secondary screen turns on the security mode. The secondary screen turns on the security mode and the notification main screen mode is taken as an example.

In this way, if the home screen and the security center have an information interaction meeting, it is determined that the home screen identity authentication is passed, and the home screen identity authentication may be: identity authentication based on the user operation of the home screen. For example, the main screen displays an opening interface opened in the security mode, in which user input information can be collected, including but not limited to the user's biological information, such as fingerprint information and / or iris information. In other embodiments, a password input by a user may also be collected in the interface, and the password may include: a password input in a text form or a string form, and a gesture graphic password input by a user through a graphic displayed on the interface. Wait.

After the identity of the main screen is verified, the main screen can request the security mode of the secondary screen to be turned on; the security center returns the setting result to the main screen based on the request. The main screen will set whether the default application combination notifies the main screen to inform the security center, and the security center returns the setting result to the main screen based on this. After completing the settings, the main screen can tell the Security Center to close the settings. The Security Center refreshes the interface of the secondary screen based on the settings for interaction with the main screen. For example, through this refresh, application icons that do not have the operation permission on the secondary screen are displayed, or application icons that distinguish between authorized and non-permitted applications are displayed. In some embodiments, You can also adjust the interface display style of the secondary screen according to the current mode; including but not limited to: the font, font size, page background color, etc. of the display font of the secondary screen.

Figure 9 shows that when the secondary screen clicks on an application, AMS first suspends the application, and then accesses the database of the security center to query whether it can be opened. When the database returns to open the application when the home screen authorization is required, The result is returned to AMS. AMS will call the built-in security application to display the main screen notification interface. When the main screen user sees the notification interface and selects the option to drop off the secondary screen application and the option displayed on the secondary screen, the result is returned to AMS, which is responsible for End the security application and resume the secondary screen application. Referring to FIG. 9, a method for performing an application operation according to the second permission range of the secondary screen may include:

The secondary screen detects the operation of clicking the application, and sends an operation request of the clicked application to the AMS;

AMS asks the security center if it needs to ask the home screen;

The security center informs the AMS whether it is necessary to query the home screen based on the result of the query. For example, as shown in FIG. 9, the query needs to be returned. In another case, the query can also be returned.

AMS returns the suspended application that needs to be queried based on the security center. The suspended application here may include: pausing the launch of the clicked application on the secondary screen, for example, pressing the start request triggered by the application into the pending queue, The AMS initiates a notification interface and asks whether the primary screen allows the secondary screen to launch the corresponding application.

The main screen agrees to launch the corresponding application on the secondary screen;

The secondary screen recovery application starts and displays the application interface of the application. The resume startup here may include: reading the application startup request from the queue, and responding to the startup request. If the main screen does not agree, the startup request located in the queue may be discarded, or the startup request located in the queue is being met. It can be automatically discarded under certain conditions.

Example 4:

This embodiment provides a security center device for an electronic device. See FIG. 10. The wireless routing device includes a setting module 401, a database 402, and a monitoring center 403. The setting module 401 provides an entry and a method for setting a secondary screen permission on the main screen. 402 needs to save the content of the related settings, and the monitoring center 403 is used to monitor the action of opening the application on the secondary screen and make corresponding prompts.

The monitoring center 403 includes the monitoring of application opening, the application requiring permissions, the application deletion, and the database change monitoring. First, the database change is monitored and the secondary screen needs to be notified to refresh. Second, the application is opened and the application needs to be stopped. Notify the main screen; when the application is deleted again, you need to notify the database to delete the settings made for the application; in addition, monitor the permissions required by the application and change the settings related to the default group in the settings.

Example 5:

11, this embodiment discloses a security center system, which includes a security center device 501 and a terminal 502 module. The security center device is composed of a setting module 5011, a database 5012, and a monitoring center 5013. The terminal 502 is composed of AMS 5021, PMS 5022, the main screen interface 5023, the secondary screen interface 5024 is composed of four parts. The main screen interface 5023 is used to call the setting module 5011 of the security center device 501 and interact with the database 5012 to set security permissions. The operation of the secondary screen interface 5024 will be monitored by the monitoring center 5013 and contact AMS 5021, the package management service. (Packet Management Service, PMS) 5022 manages the operation of the secondary screen. If the main screen interface 5023 needs to be notified, the main screen interface 5023 is required for user authorization and operation.

In this way, the electronic device provided in the embodiment of the present application can set permissions for special groups. For example, the primary screen can be set to the child mode and the elderly mode to simplify the user interface (UI). Not only is security guaranteed, but also It also allows mobile phones to better meet the needs of a variety of people.

When setting the secondary screen permissions, you can set read-only permissions for certain applications. For example, the contact person may be tampered with by the customer. When setting, add such an item. When the monitoring center monitors the secondary screen to open a similar application, it combines read-only permissions with the AMS during the initialization of activities. Judge, load different components and component properties, so as not to allow users to easily add, delete and modify the application.

For new installation applications, there may be problems of information leakage and damage to the system. At this time, it is not allowed to open by default, but a setting can be added to open new application permissions. If authorization is required, you can use the home screen authorization method. deal with. Once the home screen is not authorized, you cannot authorize some of the ways to feel the permissions.

The secondary screen also supports the holder's permission to manually drag or select a menu to control whether the application is separate or not by entering a password on the secondary screen.

In the several embodiments provided in this application, it should be understood that the disclosed device and method may be implemented in other ways. The device embodiments described above are only schematic. For example, the division of the unit is only a logical function division. In actual implementation, there may be another division manner, such as multiple units or components may be combined, or Can be integrated into another system, or some features can be ignored or not implemented. In addition, the displayed or discussed components are coupled, or directly coupled, or communicated with each other through some interfaces. The indirect coupling or communication connection of the device or unit may be electrical, mechanical, or other forms. of.

The units described above as separate components may or may not be physically separated, and the components displayed as units may or may not be physical units, which may be located in one place or distributed to multiple network units; Some or all of the units may be selected according to actual needs to achieve the objective of the solution of this embodiment.

In addition, the functional units in the embodiments of the present application may be all integrated into one processing module, or each unit may be separately used as a unit, or two or more units may be integrated into one unit; the above integration The unit can be implemented in the form of hardware, or in the form of hardware plus software functional units.

A person of ordinary skill in the art may understand that all or part of the steps of the foregoing method embodiments may be completed by a program instructing related hardware. The foregoing program may be stored in a computer-readable storage medium. When the program is executed, the program is executed. Including the steps of the above method embodiment; and the foregoing storage medium includes: a mobile storage device, a read-only memory (ROM, Read-Only Memory), a random access memory (RAM, Random Access Memory), a magnetic disk or an optical disk, etc. A medium on which program code can be stored.

The above is only a specific implementation of this application, but the scope of protection of this application is not limited to this. Any person skilled in the art can easily think of changes or replacements within the technical scope disclosed in this application. It should be covered by the protection scope of this application. Therefore, the protection scope of this application shall be subject to the protection scope of the claims.

Claims

An electronic device control method includes:

Obtain a permission setting request acting on the first screen;

Setting a second permission range corresponding to the second screen on the basis of the first permission range corresponding to the first screen according to the permission setting request, wherein the second permission range is smaller than the first permission range;

Get operation request;

If the operation request acts on the first screen, responding or rejecting the operation request according to the first authority range;

If the operation request acts on the second screen, respond or reject the operation request according to the second authority range.
The method according to claim 1, further comprising:

Determining whether the application conditions of the second authority range are met;

If the operation request acts on the second screen, responding or rejecting the operation request acting on the second screen according to the second authority range includes:

If the application condition is satisfied and the operation request acts on the second screen, respond to or reject the operation request according to the second authority range.
The method according to claim 2, wherein:

The determining whether the second permission range application condition is met includes:

If the application condition is not satisfied, respond to or reject an operation request acting on the second screen according to the first authority range.
The method according to claim 2, wherein:

The first screen and the second screen are different physical screens facing different directions;

The determining whether the application conditions of the second permission range are met includes:

Determine whether to launch a secure application environment;

If the secure application environment is started, it is determined that the application conditions of the second permission range are met.
The method according to claim 2, wherein:

The first screen and the second screen are different display areas of the same physical screen;

The determining whether the application conditions of the second permission range are met includes:

According to whether the current posture of the physical screen is a preset posture,

If the current posture of the physical screen is a preset posture that causes the first screen and the second screen to face different directions, it is determined that an application condition of the second permission range is satisfied.
The method according to claim 1, wherein:

If the operation request acts on the second screen, responding or rejecting the operation request according to the second authority range includes:

Querying a permission identifier of a permission included in the second permission range according to the identification information carried in the operation request;

The responding or rejecting the operation request according to the second authority range includes:

If the identification information is included in the permission identification, responding to the operation request;

and / or,

If the identification information is not included in the permission identification, the operation request is rejected.
The method according to claim 6, wherein:

The identification information carried in the operation request may include at least one of the following:

An application identifier of an application to which the operation request acts;

An operation identifier of the operation requested by the operation request;

The operation type identifier of the operation requested by the operation request.
The method according to claim 1, wherein:

If the operation request acts on the second screen, responding to the operation request according to the second authority range includes:

Displaying the application icon of the first type of application on the display page of the second screen according to the application display permission of the second permission range;

or,

If the operation request acts on the second screen, rejecting the operation request according to the second authority range includes:

According to the application display permission of the second permission range, the display of the second type of application on the second screen is blocked.
The method according to claim 8, wherein the first type of application comprises at least one of the following:

Entertainment applications that provide entertainment services;

Search applications that provide information search;

Multimedia information collection applications that provide multimedia information collection;

Application store applications that provide application installation services;

and / or,

The second type of application includes at least one of the following:

Payment applications that provide online payment services;

Shopping applications that provide online shopping services;

Email applications that provide email services;

Social applications that provide social services;

Information logging applications that provide information logging;

Provides security control applications for equipment security control.
The method according to claim 1, wherein:

If the operation request acts on the second screen, responding to the operation request according to the second authority range further includes:

If the operation request acts on the second screen, and the second permission range includes a predetermined permission corresponding to the operation request;

Querying a permission attribute of the predetermined permission;

Performing a predetermined operation according to the permission attribute.
The method according to claim 10, wherein the performing a predetermined operation according to the permission attribute comprises at least one of the following:

If the permission attribute includes a first screen monitoring attribute, the monitoring information is displayed on the first screen according to a response status acting on the operation request, wherein the monitoring information includes status information that the operation request is responded to ;

If the permission attribute includes a first screen notification attribute, displaying notification information of an operation request acting on the second screen on the first screen according to the operation request, wherein the notification information is used to notify An operation request acting on the second screen.
The method according to claim 1, further comprising:

If the operation authority corresponding to the operation request acting on the second screen is outside the second authority range, displaying inquiry information on the first screen;

Responding or rejecting an operation request based on an operation instruction acting on the inquiry information.
The method according to claim 12, wherein the method further comprises:

Updating the second authority range according to the operation instruction.
The method according to claim 13, wherein the updating the second permission range according to the operation instruction comprises:

If the operation instruction is a first consent instruction, adding a preset permission to the second permission range.
The method according to claim 12, wherein:

The response to the operation request based on the operation instruction acting on the inquiry information includes:

If the operation instruction is a second consent instruction, using a second screen to respond to the operation request;

If the operation instruction is a third consent instruction, use the first screen to respond to the operation request.
The method according to claim 1, wherein:

The setting the second permission range corresponding to the second screen on the basis of the first permission range corresponding to the first screen according to the permission setting request includes:

According to the permission setting request, a second permission range corresponding to a different application mode of the second screen is set on the basis of the first permission range corresponding to the first screen.
The method according to claim 16, wherein the application mode comprises at least one of the following:

Child mode

Elderly mode

Normal adult mode.
An electronic device control device includes:

A first obtaining module configured to obtain a permission setting request acting on the first screen;

A setting module configured to set a second permission range corresponding to the second screen on the basis of the first permission range corresponding to the first screen according to the permission setting request, wherein the second permission range is smaller than the first permission range;

A second obtaining module configured to obtain an operation request;

A first execution module configured to respond or reject the operation request according to the first authority range if the operation request acts on the first screen;

The second execution module is configured to respond or reject the operation request according to the second authority range if the operation request acts on the second screen.
An electronic device includes:

First screen

At least one second screen;

The processor is respectively connected to the first screen and the second screen, and is configured to obtain at least a permission setting request acting on the first screen; and according to the permission setting request, in a first permission range corresponding to the first screen On the basis, a second permission range corresponding to the second screen is set, wherein the second permission range is smaller than the first permission range; an operation request is obtained; if the operation request acts on the first screen, according to the first screen, A permission range responds or rejects the operation request; if the operation request acts on the second screen, responds or rejects the operation request according to the second permission range.
The electronic device according to claim 19, wherein the first screen is located on a first surface of the electronic device;

At least one said second screen is located on a second surface of said electronic device;

The second surface is the opposite of the first surface.
A computer storage medium stores a computer program; after the computer program is executed, the method provided in any one of claims 1 to 17 can be implemented.