[go: up one dir, main page]
More Web Proxy on the site http://driver.im/

CN107180184A - Application program right management method, device and computer-readable recording medium - Google Patents

Application program right management method, device and computer-readable recording medium Download PDF

Info

Publication number
CN107180184A
CN107180184A CN201710449474.8A CN201710449474A CN107180184A CN 107180184 A CN107180184 A CN 107180184A CN 201710449474 A CN201710449474 A CN 201710449474A CN 107180184 A CN107180184 A CN 107180184A
Authority
CN
China
Prior art keywords
application
authority
application program
program
genuine
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201710449474.8A
Other languages
Chinese (zh)
Inventor
罗晓明
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Nubia Technology Co Ltd
Original Assignee
Nubia Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Nubia Technology Co Ltd filed Critical Nubia Technology Co Ltd
Priority to CN201710449474.8A priority Critical patent/CN107180184A/en
Publication of CN107180184A publication Critical patent/CN107180184A/en
Pending legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/44Program or device authentication
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2141Access rights, e.g. capability lists, access control lists, access tables, access matrices

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Telephone Function (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

The invention discloses application program right management method, device and computer-readable recording medium;Methods described includes:When receiving the request of the authority application from application program, inquire about whether the application program is in trial status;If the application program is in trial status, the authority of application is asked the authority application to carry out non-genuine mandate.Apply the technical scheme of the present invention, the leakage of user privacy information, lifting system security can be avoided on the premise of application program normal usage function is ensured.

Description

Application program right management method, device and computer-readable recording medium
Technical field
The invention belongs to mobile communication technology field, more particularly to a kind of application program right management method, device and Computer-readable recording medium.
Background technology
Appearance with mobile terminals such as developing rapidly for modern communication technology, particularly mobile phones allows people to use Mobile terminal is linked up whenever and wherever possible, additionally it is possible to easily check various news, read electronic books, play music and Weather forecast information etc. is received, therefore mobile terminal has become daily necessities indispensable in people's life etc..Thereupon , the safety problem of mobile terminal also becomes one of user's focus of attention.
The application program applied to mobile terminal on the market, is particularly applied to the application journey of android system at present Sequence is numerous due to originating, therefore security is whard to control.For example, the third party developer of some malice can pretend popular application, Implantation obtains the program of privacy of user wherein, to steal user profile.Although the system of mobile terminal is in itself to obtaining user The behavior of privacy has permission control, if do not authorized, and corresponding behavior can not be carried out.But user does not know that malicious application is pseudo- Dress, in order that be often not added with the function of the application program identification carry out authorize, ultimately result in privacy leakage, or even produce Economic loss.
The content of the invention
It is a primary object of the present invention to propose application program right management method, device and computer-readable storage medium Matter, can avoid the leakage of user privacy information, lifting system safety on the premise of application program normal usage function is ensured Property.
To achieve the above object, a kind of application program right management method that the present invention is provided, methods described includes:
When receiving the request of the authority application from application program, whether the application program is inquired about in shape on probation State;
If the application program is in trial status, asks the authority application authority of application to carry out non-genuine and award Power.
Wherein, after the step of whether the inquiry application program is in trial status, to the authority application Before the step of authority of request application carries out non-genuine mandate, methods described also includes:
Whether the authority for judging the authority application request application is sensitive permission;
If the determination result is YES, then the step for asking the authority application authority of application to carry out non-genuine mandate is performed Suddenly.
Wherein, ask the authority of application to carry out non-genuine mandate the authority application, specifically include:
Virtual non-genuine authority information simultaneously returns to the application program.
Wherein, before the step of authority application of the reception from application program is asked, methods described also includes:
The use state of the application program is demarcated in advance, and the use state includes:Trial status or non-trial status.
Wherein, the step of use state of the default application program, is specifically included:
The use state of the application program is set when installing the application program;Or,
After the application program is installed, set to set the use state of the application program by system.
In addition, to achieve the above object, the present invention also proposes a kind of application program management device, described device includes storage Device, processor and it is stored in the application program rights management program that can be run on the memory and on the processor, institute State application program rights management program and perform following steps:
When receiving the request of the authority application from application program, whether the application program is inquired about in shape on probation State;
If the application program is in trial status, asks the authority application authority of application to carry out non-genuine and award Power.
Wherein, after the step of whether the inquiry application program is in trial status is performed, to the authority Before the step of authority of application request application carries out non-genuine mandate, the processor is additionally operable to run the application program power Management program is limited, to realize following steps:
Whether the authority for judging the authority application request application is sensitive permission;
If the determination result is YES, then the step for asking the authority application authority of application to carry out non-genuine mandate is performed Suddenly.
Wherein, the step of authority to authority application request application carries out non-genuine mandate is being performed, it is described Processor is additionally operable to run the application program rights management program, to realize following steps:
Whether the authority for judging the authority application request application is sensitive permission;
If the determination result is YES, then the step for asking the authority application authority of application to carry out non-genuine mandate is performed Suddenly.
Wherein, the processor is additionally operable to run the application program rights management program, to realize following steps:
The use state of the application program is demarcated in advance, and the use state includes:Trial status or non-trial status.
In addition, present invention also offers a kind of computer-readable recording medium, the computer-readable recording medium storage There is application program rights management program, realized when the application program rights management program is by least one computing device The step of stating the application program right management method described in any one.
The beneficial effects of the invention are as follows:
The technical scheme of the embodiment of the present invention, when receiving the request of the authority application after application program, inquiry Whether the application program is in trial status.If application program is the application program in trial status, to the power The authority of limit application request application carries out non-genuine mandate.I other words, application program right management method of the invention, if being in When the application requests of trial status obtain the corresponding authority of user, then non-genuine mandate is carried out to the authority, so as to protect On the premise of demonstrate,proving the function that user can normally use the application program, additionally it is possible to protect the personal secrets of user, lifting user's Usage experience.
Brief description of the drawings
Fig. 1 is the hardware architecture diagram for the mobile terminal for realizing each embodiment of the invention;
Fig. 2 is the wireless communication system schematic diagram of mobile terminal as shown in Figure 1;
Fig. 3 is the schematic flow sheet of the first embodiment of the application program right management method of the present invention;
Fig. 4 is the user mutual schematic diagram of the present invention;
Fig. 5 is the schematic flow sheet of the second embodiment of the application program right management method of the present invention;
Fig. 6 is the schematic flow sheet of the 3rd embodiment of the application program right management method of the present invention;
Fig. 7 is the user mutual schematic diagram of the present invention;
Fig. 8 is the user mutual schematic diagram of the present invention;
Fig. 9 is the structural representation of the embodiment of the application program rights management device of the present invention;
Figure 10 is the block schematic illustration of the embodiment of the application program right management method of the present invention;
Figure 11 is the block schematic illustration of the embodiment of the application program right management method of the present invention;
Figure 12 is the block schematic illustration of the embodiment of the application program right management method of the present invention;
The realization, functional characteristics and advantage of the object of the invention will be described further referring to the drawings in conjunction with the embodiments.
Embodiment
It should be appreciated that the specific embodiments described herein are merely illustrative of the present invention, it is not intended to limit the present invention.
In follow-up description, the suffix using such as " module ", " part " or " unit " for representing element is only Be conducive to the explanation of the present invention, itself there is no a specific meaning.Therefore, " module ", " part " or " unit " can be mixed Ground is used.
The application program right management method provided in the present invention, can apply to various terminals and computer-readable deposits Storage media.Wherein, terminal can be implemented in a variety of manners.For example, terminal described in the present invention can include such as mobile phone, Tablet personal computer, notebook computer, palm PC, personal digital assistant (Personal Digital Assistant, PDA), just Prompt formula media player (Portable Media Player, PMP), guider, wearable device, Intelligent bracelet, pedometer Deng mobile terminal, and the fixed terminal such as numeral TV, desktop computer.
It will be illustrated in subsequent descriptions by taking mobile terminal as an example, it will be appreciated by those skilled in the art that except special Outside element for moving purpose, construction according to the embodiment of the present invention can also apply to the terminal of fixed type.
Referring to Fig. 1, its hardware architecture diagram for a kind of mobile terminal of realization each embodiment of the invention, the shifting Dynamic terminal 100 can include:RF (Radio Frequency, radio frequency) unit 101, WiFi module 102, audio output unit 103rd, A/V (audio/video) input block 104, sensor 105, display unit 106, user input unit 107, interface unit 108th, the part such as memory 109, processor 110 and power supply 111.It will be understood by those skilled in the art that shown in Fig. 1 Mobile terminal structure does not constitute the restriction to mobile terminal, and mobile terminal can be included than illustrating more or less parts, Either combine some parts or different parts arrangement.
The all parts of mobile terminal are specifically introduced with reference to Fig. 1:
Radio frequency unit 101 can be used for receiving and sending messages or communication process in, the reception and transmission of signal, specifically, by base station Downlink information receive after, handled to processor 110;In addition, up data are sent into base station.Generally, radio frequency unit 101 Including but not limited to antenna, at least one amplifier, transceiver, coupler, low-noise amplifier, duplexer etc..In addition, penetrating Frequency unit 101 can also be communicated by radio communication with network and other equipment.Above-mentioned radio communication can use any communication Standard or agreement, including but not limited to GSM (Global System of Mobile communication, global system for mobile telecommunications System), GPRS (General Packet Radio Service, general packet radio service), CDMA2000 (Code Division Multiple Access 2000, CDMA 2000), WCDMA (Wideband Code Division Multiple Access, WCDMA), TD-SCDMA (Time Division-Synchronous Code Division Multiple Access, TD SDMA), FDD-LTE (Frequency Division Duplexing-Long Term Evolution, FDD Long Term Evolution) and TDD-LTE (Time Division Duplexing-Long Term Evolution, time division duplex Long Term Evolution) etc..
WiFi belongs to short range wireless transmission technology, and mobile terminal can help user's transmitting-receiving electricity by WiFi module 102 Sub- mail, browse webpage and access streaming video etc., it has provided the user wireless broadband internet and accessed.Although Fig. 1 shows Go out WiFi module 102, but it is understood that, it is simultaneously not belonging to must be configured into for mobile terminal, completely can be according to need To be omitted in the essential scope for do not change invention.
Audio output unit 103 can be in call signal reception pattern, call mode, record mould in mobile terminal 1 00 When under the isotypes such as formula, speech recognition mode, broadcast reception mode, it is that radio frequency unit 101 or WiFi module 102 are received or The voice data stored in memory 109 is converted into audio signal and is output as sound.Moreover, audio output unit 103 The audio output related to the specific function that mobile terminal 1 00 is performed can also be provided (for example, call signal receives sound, disappeared Breath receives sound etc.).Audio output unit 103 can include loudspeaker, buzzer etc..
A/V input blocks 104 are used to receive audio or video signal.A/V input blocks 104 can include graphics processor (Graphics Processing Unit, GPU) 1041 and microphone 1042,1041 pairs of graphics processor is in video acquisition mode Or the view data progress of the static images or video obtained in image capture mode by image capture apparatus (such as camera) Reason.Picture frame after processing may be displayed on display unit 106.Picture frame after being handled through graphics processor 1041 can be deposited Storage is transmitted in memory 109 (or other storage mediums) or via radio frequency unit 101 or WiFi module 102.Mike Wind 1042 can connect in telephone calling model, logging mode, speech recognition mode etc. operational mode via microphone 1042 Quiet down sound (voice data), and can be voice data by such acoustic processing.Audio (voice) data after processing can To be converted to the form output that mobile communication base station can be sent to via radio frequency unit 101 in the case of telephone calling model. Microphone 1042 can implement various types of noises and eliminate (or suppression) algorithm to eliminate (or suppression) in reception and send sound The noise produced during frequency signal or interference.
Mobile terminal 1 00 also includes at least one sensor 105, such as optical sensor, motion sensor and other biographies Sensor.Specifically, optical sensor includes ambient light sensor and proximity transducer, wherein, ambient light sensor can be according to environment The light and shade of light adjusts the brightness of display panel 1061, and proximity transducer can close when mobile terminal 1 00 is moved in one's ear Display panel 1061 and/or backlight.As one kind of motion sensor, accelerometer sensor can detect in all directions (general For three axles) size of acceleration, size and the direction of gravity are can detect that when static, the application available for identification mobile phone posture (such as horizontal/vertical screen switching, dependent game, magnetometer pose calibrating), Vibration identification correlation function (such as pedometer, percussion) etc.; The fingerprint sensor that can also configure as mobile phone, pressure sensor, iris sensor, molecule sensor, gyroscope, barometer, The other sensors such as hygrometer, thermometer, infrared ray sensor, will not be repeated here.
Display unit 106 is used for the information for showing the information inputted by user or being supplied to user.Display unit 106 can be wrapped Display panel 1061 is included, liquid crystal display (Liquid Crystal Display, LCD), Organic Light Emitting Diode can be used Forms such as (Organic Light-Emitting Diode, OLED) configures display panel 1061.
User input unit 107 can be used for the numeral or character information for receiving input, and produce the use with mobile terminal The key signals input that family is set and function control is relevant.Specifically, user input unit 107 may include contact panel 1071 with And other input equipments 1072.Contact panel 1071, also referred to as touch-screen, collect touch operation of the user on or near it (such as user is using any suitable objects such as finger, stylus or annex on contact panel 1071 or in contact panel 1071 Neighbouring operation), and corresponding attachment means are driven according to formula set in advance.Contact panel 1071 may include touch detection Two parts of device and touch controller.Wherein, touch detecting apparatus detects the touch orientation of user, and detects touch operation band The signal come, transmits a signal to touch controller;Touch controller receives touch information from touch detecting apparatus, and by it It is converted into contact coordinate, then gives processor 110, and the order sent of reception processing device 110 and can be performed.In addition, can To realize contact panel 1071 using polytypes such as resistance-type, condenser type, infrared ray and surface acoustic waves.Except contact panel 1071, user input unit 107 can also include other input equipments 1072.Specifically, other input equipments 1072 can be wrapped Include but be not limited to physical keyboard, in function key (such as volume control button, switch key etc.), trace ball, mouse, action bars etc. One or more, do not limit herein specifically.
Further, contact panel 1071 can cover display panel 1061, detect thereon when contact panel 1071 or After neighbouring touch operation, processor 110 is sent to determine the type of touch event, with preprocessor 110 according to touch thing The type of part provides corresponding visual output on display panel 1061.Although in Fig. 1, contact panel 1071 and display panel 1061 be input and the output function that mobile terminal is realized as two independent parts, but in certain embodiments, can By contact panel 1071 and the input that is integrated and realizing mobile terminal of display panel 1061 and output function, not do specifically herein Limit.
Interface unit 108 is connected the interface that can pass through as at least one external device (ED) with mobile terminal 1 00.For example, External device (ED) can include wired or wireless head-band earphone port, external power source (or battery charger) port, wired or nothing Line FPDP, memory card port, the port for connecting the device with identification module, audio input/output (I/O) end Mouth, video i/o port, ear port etc..Interface unit 108 can be used for receiving the input from external device (ED) (for example, number It is believed that breath, electric power etc.) and the input received is transferred to one or more elements in mobile terminal 1 00 or can be with For transmitting data between mobile terminal 1 00 and external device (ED).
Memory 109 can be used for storage software program and various data.Memory 109 can mainly include storing program area And storage data field, wherein, application program (the such as sound that storing program area can be needed for storage program area, at least one function Sound playing function, image player function etc.) etc.;Storage data field can be stored uses created data (such as according to mobile phone Voice data, phone directory etc.) etc..In addition, memory 109 can include high-speed random access memory, it can also include non-easy The property lost memory, for example, at least one disk memory, flush memory device or other volatile solid-state parts.
Processor 110 is the control centre of mobile terminal, utilizes each of various interfaces and the whole mobile terminal of connection Individual part, by operation or performs and is stored in software program and/or module in memory 109, and calls and be stored in storage Data in device 109, perform the various functions and processing data of mobile terminal, so as to carry out integral monitoring to mobile terminal.Place Reason device 110 may include one or more processing units;It is preferred that, processor 110 can integrated application processor and modulatedemodulate mediate Device is managed, wherein, application processor mainly handles operating system, user interface and application program etc., and modem processor is main Handle radio communication.It is understood that above-mentioned modem processor can not also be integrated into processor 110.
Mobile terminal 1 00 can also include the power supply 111 (such as battery) powered to all parts, it is preferred that power supply 111 Can be logically contiguous by power-supply management system and processor 110, so as to realize management charging by power-supply management system, put The function such as electricity and power managed.
Although Fig. 1 is not shown, mobile terminal 1 00 can also will not be repeated here including bluetooth module etc..
For the ease of understanding the embodiment of the present invention, the communications network system that the mobile terminal of the present invention is based on is entered below Row description.
Referring to Fig. 2, Fig. 2 is a kind of communications network system Organization Chart provided in an embodiment of the present invention, the communication network system Unite as the LTE system of universal mobile communications technology, UE (User Equipment, use of the LTE system including communicating connection successively Family equipment) 201, E-UTRAN (Evolved UMTS Terrestrial Radio Access Network, evolved UMTS lands Ground wireless access network) 202, EPC (Evolved Packet Core, evolved packet-based core networks) 203 and operator IP operation 204。
Specifically, UE201 can be above-mentioned terminal 100, and here is omitted.
E-UTRAN202 includes eNodeB2021 and other eNodeB2022 etc..Wherein, eNodeB2021 can be by returning Journey (backhaul) (such as X2 interface) is connected with other eNodeB2022, and eNodeB2021 is connected to EPC203, ENodeB2021 can provide UE201 to EPC203 access.
EPC203 can include MME (Mobility Management Entity, mobility management entity) 2031, HSS (Home Subscriber Server, home subscriber server) 2032, other MME2033, SGW (Serving Gate Way, Gateway) 2034, PGW (PDN Gate Way, grouped data network gateway) 2035 and PCRF (Policy and Charging Rules Function, policy and rate functional entity) 2036 etc..Wherein, MME2031 be processing UE201 and There is provided carrying and connection management for the control node of signaling between EPC203.HSS2032 is all to manage for providing some registers Such as function of attaching position register (not shown) etc, and some are preserved about the use such as service features, data rate The special information in family.All customer data can be transmitted by SGW2034, and PGW2035 can provide UE 201 IP Address is distributed and other functions, and PCRF2036 is strategy and the charging control strategic decision-making of business data flow and IP bearing resources Point, it selects and provided available strategy and charging control decision-making with charge execution function unit (not shown) for strategy.
IP operation 204 can include internet, Intranet, IMS (IP Multimedia Subsystem, IP multimedia System) or other IP operations etc..
Although above-mentioned be described by taking LTE system as an example, those skilled in the art it is to be understood that the present invention not only Suitable for LTE system, be readily applicable to other wireless communication systems, such as GSM, CDMA2000, WCDMA, TD-SCDMA with And following new network system etc., do not limit herein.
Based on above-mentioned mobile terminal hardware configuration and communications network system, each embodiment of the inventive method is proposed.
As shown in figure 3, being the schematic flow sheet of the first embodiment of the application program right management method of the present invention.Its In, the application program right management method can be used for the mobile terminals such as smart mobile phone, tablet personal computer, PDA.
As shown in figure 3, the application program right management method comprises the following steps:
Step 301:Receive the authority application request from application program.
Step 302:Inquire about whether the application program is in trial status.
Step 303:If the application program is in trial status, the authority of application is asked the authority application to carry out Non-genuine mandate.
The executive agent of the application program right management method of the embodiment of the present invention is smart mobile phone, tablet personal computer, PDA etc. Mobile terminal.It should be noted that the mobile terminal can install qualified various application programs, such as all kinds of instant messagings Application program (wechat, QQ), all kinds of recreational application programs (cruel I, iqiyi.com, Tengxun's video), (Baidu is new for various information softwares News, news headlines, know) and other class third party applications, it is numerous to list herein.
In the prior art, after application program is started, it is required whether application program needs inquiry oneself to have been provided with The authority wanted, if it is, walking primary flow, is operated according to normal flow.If application program finds that oneself does not possess institute The authority needed, then the application program need to apply for corresponding authority, allow user to confirm.For example, controlling mould by authority application Block is to the primary corresponding authority of authority management module application of system framework.Now, mobile terminal, which can export to allow, authorizes corresponding authority Prompting, as shown in Figure 4.If user confirms to authorize corresponding authority, application program can obtain corresponding authority, subsequently into The normal workflow of application program.If user, which disagrees, authorizes corresponding authority application information, do and do not obtain using needs Branch's flow processing of corresponding authority.
User does not authorize corresponding authority:If designing preferable valid application program, User refuses after some authorities, and application program can do fault-tolerant processing, and the individual event subfunction for being simply related to these authorities is closed, User can also continue to be used without other functions of these authorities.But if being malicious application, it is not obtaining power In the case of limit, it may directly terminate program, not allow user to be continuing with.So, the content that user is applied by these Attract, can be authorized because of direct all authority applications to application program for wanting to be not added with identification being continuing with.Control of authority Perform practically no function, finally enable malicious application to steal privacy of user.To ensure the safety of user privacy information, it is proposed that The application program right management method of the present invention.
In the application, the use state of application program includes trial status and non-trial status.It generally, it is believed that in non- The application program of trial status is security application, and it will not steal the privacy information of user.And answering in trial status It can not ensure that it may steal the privacy information of user with the security of program.Specifically, it is guarantee application program energy It is enough normally to use, while the safety of user privacy information is ensure that again, the application program right management method that the present invention is provided, When receiving the request of the authority application from application program, (such as Figure 10 is a kind of signal of the system framework 1000 of embodiment Figure, when the authority application control module 1002 in Figure 10 receives the authority application request that third-party application 1001 is sent), can be with The use state of the application program is inquired about by the primary authority management module 1003 of system framework, to judge that the application program is It is no to be in trial status.If inquiry application is in trial status, due to the security of the application program in trial status It can not ensure, while to ensure that user can normally use the function of the application program, it is therefore desirable to pass through authority application control The authority of 1002 pairs of authority application request applications of module carries out non-genuine mandate, as shown in Figure 10, to ensure that user's is true Privacy information is not compromised, it is ensured that the security of user privacy information.
It should be noted that when the authority for asking authority application application carries out non-genuine mandate, now application program The authority of acquisition is not just the real data of user in mobile terminal, for example, can pass through the system framework 1100 shown in Figure 11 Schematic diagram illustrate.The virtualization of function data message of authority limitation function proxy module 1102 in Figure 11, and return Virtual data information 1104 gives application program (such as third-party application 1011), if truly being authorized, transparent being delivered to is The system primary flow 1103 of framework, as shown in figure 11.Such as, if application program is wanted to intercept and capture the short message of user, then when short When letter arrives, determine some application program and be in trial status, then when transmitting short message to the application program, skip the application Program.Again such as:Third-party application is wanted to obtain associated person information, then during its inquiring contactor information, return to its empty list, Or virtual contacts list.
Application program right management method provided in an embodiment of the present invention, is receiving the authority after application program During application request, inquire about whether the application program is in trial status.If application program is the application in trial status Program, then ask the authority of application to carry out non-genuine mandate the authority application.I other words, application program authority of the invention Management method, if the application requests in trial status obtain the corresponding authority of user, non-real is carried out to the authority It is real to authorize, so that on the premise of ensureing that user normally can use the function of the application program, additionally it is possible to protect the privacy of user Safety, lifts the usage experience of user.
As shown in figure 5, being the schematic flow sheet of the second embodiment of the application program right management method of the present invention.Its In, the application program right management method can be used for the mobile terminals such as smart mobile phone, tablet personal computer, PDA.
As shown in figure 5, the application program right management method comprises the following steps:
Step 501:Receive the authority application request from application program.
Step 502:Inquire about whether the application program is in trial status.If in trial status, into step 503, if in non-trial status, directly exiting flow.
Step 503:Whether the authority for judging the authority application request application is sensitive permission.If sensitive permission, then Into step 504, if judging between right and wrong sensitive permission, flow is directly exited.
Step 504:The authority of application is asked the authority application to carry out non-genuine mandate.
It should be noted that the present embodiment and the difference of the embodiment shown in Fig. 3 are:
The application program is being inquired after trial status, is asking the authority application authority progress of application non- True to authorize, whether the authority for also judging authority application request application is sensitive permission.Usually, authority can be divided into sensitivity Authority and non-sensitive authority.Belong to sensitive permission on those information, user can be with self-defined.Usually, use will can be related to The authority application of family information is set to sensitive permission, will access short message, and the priority assignation for reading contact person is sensitive permission, by one A little priority assignations for not being related to user privacy information are non-sensitive authority, for example, will access network, and access the priority assignation of SD card For non-sensitive authority.
Whether increase authority is that the purpose of sensitive permission is:The program of trial status is in for those, if its application Authority is non-sensitive permission, then still can truly be authorized in the way of prior art.So, gone again without mobile terminal Carry out the virtual of non-genuine authority information, it is possible to reduce CPU load.If the authority for judging application is sensitive permission, need Carry out non-genuine mandate.
The application program right management method of the embodiment of the present invention, is receiving the authority application after application program During request, inquire about whether the application program is in trial status.If application program is the application program in trial status, Whether the authority for also judging the application program is sensitive permission, if sensitive permission, then asks Shen to the authority application Authority please carries out non-genuine mandate.I other words, application program right management method of the invention, if receiving in shape on probation The application requests of state obtain the corresponding authority of user and judge the authority when being sensitive permission, carry out non-genuine mandate, from And on the premise of ensureing that user normally can use the function of the application program, additionally it is possible to the personal secrets of user are protected, are lifted The usage experience of user.
Fig. 6 is the schematic flow sheet of the 3rd embodiment of the application program right management method of the present invention.Wherein, the application Program authority management method can be used for the mobile terminals such as smart mobile phone, tablet personal computer, PDA.
As shown in fig. 6, the application program right management method comprises the following steps:
Step 600:The use state of the application program is demarcated in advance, and the use state includes:Trial status is non- Trial status.
Step 601:Receive the authority application request from application program.
Step 602:Inquire about whether the application program is in trial status.If in trial status, into step 603, if in non-trial status, directly exiting flow.
Step 603:Whether the authority for judging the authority application request application is sensitive permission.If sensitive permission, then Into step 604, if judging between right and wrong sensitive permission, flow is directly exited.
Step 604:The authority of application is asked the authority application to carry out non-genuine mandate.
The present embodiment is distinguished as with the embodiment shown in Fig. 5:Before step 601 is performed, also demarcation in advance is described should With the use state of program.Wherein, use state includes trial status and non-trial status.Description is preceding as described in trial status Face has been described above, and will not be repeated here.Specifically, in the use state of advance Analysis program, application can be installed It just can be set, or demarcated during subsequent use when program.
For example, when the application is installed, installing the interface of application program, user can be to the not clear application journey in source Sequence selects " on probation " function, as shown in Figure 7.Another is that is, user is applying journey during subsequently using application program After sequence is installed, the application program rights management interface that system is set is entered at any time, user passes through application program rights management circle Face, the use state of the application program is set to " try out ", as shown in Figure 8.User can cancel in specific interface at any time to be tried With mark, the use state of application program is reset.
The schematic diagram of the system framework 1200 of the embodiment of the present invention as shown in figure 12.The global design of the embodiment of the present invention Can be so:Record which application is in trial status by logging modle 1203 on probation.The note of logging modle 1203 on probation Record can be set in two UI interfaces.One is the interface 1206 for installing application program, and user can be not clear to source here Application selection " on probation " function;One is the application rights management interface 1207 in setting, and user is after application is installed, at any time Into the interface, whether modification continues " to try out ", and the result at UI interfaces is activated in logging modle on probation.By being built in mobile phone Authority application control module 1202 in system framework carries out corresponding authority application.As shown in figure 12, when third-party application 1201 When whether possessing certain option to framework application authority, or inquiry, authority application control module 1202 is had an effect, first the module Can be from " logging modle 1203 " on probation obtains information, and whether the application for inquiring about present application/search access right is labeled as shape on probation The application of state, and calling system corresponding function 1205.If not, walking the primary rights management flow of framework;If it is, according to Shen The different of authority please carry out different disposal, for non-sensitive authority, walk primary rights management flow, give true mandate.It is right In sensitive permission, carry out non-genuine mandate, tell using having obtained the mandate, but and untrue obtained to framework authorize, only It is that information is marked.Meanwhile, pass through the authority limitation function proxy module 1204 being equally built in cell phone system framework It is made whether the mandate of authenticity.When application call needs the framework functions of authority, if desired be before passed through Non-sensitive authority, then walk primary flow.If what is carried out before the authority of demand is non-genuine mandate, in the module Call the Virtual Realization of each function.
The application program right management method of the embodiment of the present invention, pre-sets the use state of application program, and connecing When receiving the authority application request after application program, inquire about whether the application program is in trial status.If should It is the application program in trial status with program, whether the authority for also judging the application program is sensitive permission, if Sensitive permission, then ask the authority of application to carry out non-genuine mandate the authority application.I other words, application program of the invention Right management method, obtains the corresponding authority of user and judges the authority if receiving the application requests in trial status When being sensitive permission, non-genuine mandate is carried out, so that on the premise of ensureing that user normally can use the function of the application program, The personal secrets of user can also be protected, the usage experience of user is lifted.
It is above-mentioned that application program authority management method is described in detail, below, will be to being weighed using the application program The device and computer-readable recording medium for limiting management method are described.It should be noted that application program rights management Device can be for example mobile terminal, be described below by taking mobile terminal as an example.
As shown in figure 9, the structural representation of the embodiment for the mobile terminal that the present invention is provided, the mobile terminal 900 includes: Memory 901, processor 902.Wherein, the application program rights management program for the social networking application that is stored with memory 901 simultaneously can To be run on processor 902.During application program rights management program on the run memory 901 of processor 902, perform as follows Step:
When receiving the request of the authority application from application program, whether the application program is inquired about in shape on probation State;If the application program is in trial status, the authority of application is asked the authority application to carry out non-genuine mandate.
The mobile terminal of the embodiment of the present invention can be the mobile terminals such as smart mobile phone, tablet personal computer, PDA.Need explanation , the mobile terminal can install qualified various application programs, such as all kinds of instant messaging application programs (wechat, QQ), all kinds of recreational application programs (cruel I, iqiyi.com, Tengxun's video), various information softwares (Baidu's news, news headlines, are known ) and other class application programs, it is numerous to list herein.
In the prior art, after application program is started, it is required whether application program needs inquiry oneself to have been provided with The authority wanted, if it is, being operated according to normal flow.If application program finds oneself do not possess required authority, Then the application program needs to apply for corresponding authority, allows user to confirm.Now, mobile terminal, which can export to allow, authorizes corresponding authority Prompting, as shown in Figure 4.If user confirm authorize corresponding authority, application program can obtain corresponding authority, subsequently into should With the normal workflow of program.If user, which disagrees, authorizes corresponding authority application information, done using needs and do not obtain phase Answer branch's flow processing of authority.
User does not authorize corresponding authority:If designing preferable valid application program, User refuses after some authorities, and application program can do fault-tolerant processing, and the individual event subfunction for being simply related to these authorities is closed, User can also continue to be used without other functions of these authorities.But if being malicious application, it is not obtaining power In the case of limit, it may directly terminate program, not allow user to be continuing with.So, the content that user is applied by these Attract, can be authorized because of direct all authority applications to application program for wanting to be not added with identification being continuing with.Control of authority Perform practically no function, finally enable malicious application to steal privacy of user.To ensure the safety of user privacy information, it is proposed that The mobile terminal of the present invention.
In the application, the use state of application program includes trial status and non-trial status.It generally, it is believed that in non- The application program of trial status is security application, and it will not steal the privacy information of user.And answering in trial status It can not ensure that it may steal the privacy information of user with the security of program.Specifically, it is guarantee application program energy Enough normally to use, while ensure that the safety of user privacy information again, the mobile terminal that the present invention is provided comes from receiving During the authority application request of application program, the use state of the application program is also inquired about, to judge whether the application program is located In trial status.If inquiry application is in trial status, because the security of the application program in trial status can not Ensure, while to ensure that user can normally use the function of the application program, it is therefore desirable to the authority application is asked to apply Authority carry out non-genuine mandate, to ensure that the true privacy information of user is not compromised, it is ensured that the safety of user privacy information Property.
It should be noted that when the authority for asking authority application application carries out non-genuine mandate, now application program The authority of acquisition is not just the real data of user in mobile terminal, data message that for example can be virtual, and returns to application Program.Such as, if application program is wanted to intercept and capture the short message of user, then when short message arrives, determine some and apply journey Sequence is in trial status, then when transmitting short message to the application program, skips the application program.Again such as:Third-party application is thought Obtain associated person information, then during its inquiring contactor information, return to its empty list, or virtual contacts list.
Mobile terminal provided in an embodiment of the present invention, when receiving the request of the authority application after application program, Inquire about whether the application program is in trial status.If application program is the application program in trial status, to institute The authority for stating authority application request application carries out non-genuine mandate.I other words, mobile terminal of the invention, if in trial status Application requests obtain user corresponding authority when, then to the authority carry out non-genuine mandate so that ensure user's energy On the premise of normally using the function of the application program, additionally it is possible to protect the personal secrets of user, the usage experience of user is lifted.
It should be noted that the application program rights management program of the embodiment of the present invention is performing the inquiry application program Whether be in trial status the step of after, to the authority application ask application authority carry out non-genuine mandate the step of it Before, the application program rights management program run on processor 902 also realizes following steps:Judge the authority application request Shen Whether authority please is sensitive permission;If the determination result is YES, then perform and ask the authority application authority of application to carry out The step of non-genuine mandate.
I other words, the application program is being inquired after trial status, asks the authority application power of application Limit carries out non-genuine mandate, and whether the authority for also judging authority application request application is sensitive permission.Usually, can be by authority It is divided into sensitive permission and non-sensitive authority.Belong to sensitive permission on those information, user can be with self-defined.Usually, can be with The authority application for being related to user profile is set to sensitive permission, short message will be accessed, it is sensitivity to read the priority assignation of contact person Authority, the priority assignation that some are not related to user privacy information is non-sensitive authority, for example, will access network, accesses SD card Priority assignation is non-sensitive authority.
Whether increase authority is that the purpose of sensitive permission is:The program of trial status is in for those, if its application Authority is non-sensitive permission, then still can truly be authorized in the way of prior art.So, gone again without mobile terminal Carry out the virtual of non-genuine authority information, it is possible to reduce CPU load.If the authority for judging application is sensitive permission, need Carry out non-genuine mandate.
The mobile terminal of the embodiment of the present invention, when receiving the request of the authority application after application program, inquiry Whether the application program is in trial status.If application program is the application program in trial status, also judge to answer Whether it is sensitive permission with the authority of program application, if sensitive permission, then the authority for asking application to the authority application is entered Row non-genuine mandate 7 i other words, mobile terminal of the invention is used if receiving application requests in trial status and obtaining The corresponding authority at family and when to judge the authority be sensitive permission, carries out non-genuine mandate, so as to ensure that user can normally use On the premise of the function of the application program, additionally it is possible to protect the personal secrets of user, the usage experience of user is lifted.
It should be noted that the application program rights management program run on the processor 902 of the embodiment of the present invention is also real Existing following steps:The use state of the application program is demarcated in advance.
Wherein, use state includes trial status and non-trial status.Description is above being retouched as described in trial status State, will not be repeated here.Specifically, in the use state of advance Analysis program, can install application program when Time just can be set, or be demarcated during subsequent use.
For example, when the application is installed, installing the interface of application program, user can be to the not clear application journey in source Sequence selects " on probation " function, as shown in Figure 7.Another is that is, user is applying journey during subsequently using application program After sequence is installed, the application program rights management interface that system is set is entered at any time, user passes through application program rights management circle Face, the use state of the application program is set to " try out ", as shown in Figure 8.User can cancel in specific interface at any time to be tried With mark, the use state of application program is reset.
The mobile terminal of the embodiment of the present invention, pre-sets the use state of application program, and carry out self-application receiving When authority application after program is asked, inquire about whether the application program is in trial status.If application program is to be in The application program of trial status, whether the authority for also judging the application program is sensitive permission, if sensitive permission, then right The authority of the authority application request application carries out non-genuine mandate.I other words, mobile terminal of the invention is in if receiving The application requests of trial status obtain the corresponding authority of user and judge the authority when being sensitive permission, carry out non-genuine and award Power, so that on the premise of ensureing that user normally can use the function of the application program, additionally it is possible to protect the personal secrets of user, Lift the usage experience of user.
Correspondingly, the embodiment of the present invention additionally provides a kind of computer-readable recording medium, the computer-readable storage Media storage has application program rights management program, when the application program rights management program is by least one computing device Realize following steps:
When receiving the request of the authority application from application program, whether the application program is inquired about in shape on probation State;
If the application program is in trial status, asks the authority application authority of application to carry out non-genuine and award Power.
Wherein, after the step of whether the inquiry application program is in trial status, to the authority application Before the step of authority of request application carries out non-genuine mandate, methods described also includes:
Whether the authority for judging the authority application request application is sensitive permission;
If the determination result is YES, then the step for asking the authority application authority of application to carry out non-genuine mandate is performed Suddenly.
Wherein, the authority for asking the authority application application carries out non-genuine mandate, specifically includes:
Virtual non-genuine authority information simultaneously returns to the application program.
Wherein, before the step of authority application of the reception from application program is asked, methods described also includes:
The use state of the application program is demarcated in advance, and the use state includes:Trial status or non-trial status.
Wherein, the step of use state of the default application program, is specifically included:
The use state of the application program is set when installing the application program;Or,
After the application program is installed, set to set the use state of the application program by system.
The computer-readable recording medium of the embodiment of the present invention, please receiving the authority application after application program When asking, inquire about whether the application program is in trial status.If application program is the application program in trial status, The authority of application is asked the authority application to carry out non-genuine mandate.I other words, computer-readable recording medium of the invention, If the application requests in trial status obtain the corresponding authority of user, non-genuine mandate is carried out to the authority, from And on the premise of ensureing that user normally can use the function of the application program, additionally it is possible to the personal secrets of user are protected, are lifted The usage experience of user.
It should be noted that herein, term " comprising ", "comprising" or its any other variant are intended to non-row His property is included, so that process, method, article or device including a series of key elements not only include those key elements, and And also including other key elements being not expressly set out, or also include for this process, method, article or device institute inherently Key element.In the absence of more restrictions, the key element limited by sentence "including a ...", it is not excluded that including this Also there is other identical element in process, method, article or the device of key element.
The embodiments of the present invention are for illustration only, and the quality of embodiment is not represented.
Through the above description of the embodiments, those skilled in the art can be understood that above-described embodiment side Method can add the mode of required general hardware platform to realize by software, naturally it is also possible to by hardware, but in many cases The former is more preferably embodiment.Understood based on such, technical scheme is substantially done to prior art in other words Going out the part of contribution can be embodied in the form of software product, and the computer software product is stored in a storage medium In (such as ROM/RAM, magnetic disc, CD), including some instructions are to cause a station terminal equipment (can be mobile phone, computer, clothes It is engaged in device, air conditioner, or network equipment etc.) perform method described in each embodiment of the invention.
The preferred embodiments of the present invention are these are only, are not intended to limit the scope of the invention, it is every to utilize this hair Equivalent structure or equivalent flow conversion that bright specification and accompanying drawing content are made, or directly or indirectly it is used in other related skills Art field, is included within the scope of the present invention.

Claims (10)

1. a kind of application program right management method, applied to mobile terminal, it is characterised in that methods described includes:
When receiving the request of the authority application from application program, inquire about whether the application program is in trial status;
If the application program is in trial status, the authority of application is asked the authority application to carry out non-genuine mandate.
2. application program right management method as claimed in claim 1, it is characterised in that in the inquiry application program Whether be in trial status the step of after, to the authority application ask application authority carry out non-genuine mandate the step of it Before, methods described also includes:
Whether the authority for judging the authority application request application is sensitive permission;
If the determination result is YES, then the step of performing the authority progress non-genuine mandate for asking the authority application application.
3. application program right management method as claimed in claim 1, it is characterised in that described to ask the authority application The authority of application carries out non-genuine mandate, specifically includes:
Virtual non-genuine authority information simultaneously returns to the application program.
4. application program right management method as claimed any one in claims 1 to 3, it is characterised in that received described Before the step of authority application from application program is asked, methods described also includes:
The use state of the application program is demarcated in advance, and the use state includes:Trial status or non-trial status.
5. application program right management method as claimed in claim 4, it is characterised in that the default application program The step of use state, specifically include:
The use state of the application program is set when installing the application program;Or,
After the application program is installed, set to set the use state of the application program by system.
6. a kind of application program rights management device, it is characterised in that described device includes memory, processor and is stored in institute State the application program rights management program that can be run on memory and on the processor, the application program rights management journey Sequence performs following steps:
When receiving the request of the authority application from application program, inquire about whether the application program is in trial status;
If the application program is in trial status, the authority of application is asked the authority application to carry out non-genuine mandate.
7. device as claimed in claim 6, it is characterised in that whether performing the inquiry application program on probation After the step of state, before the step of asking the authority application authority progress non-genuine mandate of application, the processing Device is additionally operable to run the application program rights management program, to realize following steps:
Whether the authority for judging the authority application request application is sensitive permission;
If the determination result is YES, then the step of performing the authority progress non-genuine mandate for asking the authority application application.
8. device as claimed in claim 7, it is characterised in that performing the authority for asking to apply to the authority application The step of carrying out non-genuine mandate, the processor is additionally operable to run the application program rights management program, as follows to realize Step:
Whether the authority for judging the authority application request application is sensitive permission;
If the determination result is YES, then the step of performing the authority progress non-genuine mandate for asking the authority application application.
9. the device as any one of claim 6 to 8, it is characterised in that the processor is additionally operable to should described in operation Program authority management program is used, to realize following steps:
The use state of the application program is demarcated in advance, and the use state includes:Trial status or non-trial status.
10. a kind of computer-readable recording medium, it is characterised in that the computer-readable recording medium storage has application program Rights management program, claim 1 to 5 is realized when the application program rights management program is by least one computing device Any one of application program right management method the step of.
CN201710449474.8A 2017-06-14 2017-06-14 Application program right management method, device and computer-readable recording medium Pending CN107180184A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201710449474.8A CN107180184A (en) 2017-06-14 2017-06-14 Application program right management method, device and computer-readable recording medium

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201710449474.8A CN107180184A (en) 2017-06-14 2017-06-14 Application program right management method, device and computer-readable recording medium

Publications (1)

Publication Number Publication Date
CN107180184A true CN107180184A (en) 2017-09-19

Family

ID=59836328

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201710449474.8A Pending CN107180184A (en) 2017-06-14 2017-06-14 Application program right management method, device and computer-readable recording medium

Country Status (1)

Country Link
CN (1) CN107180184A (en)

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108173839A (en) * 2017-12-26 2018-06-15 北京奇虎科技有限公司 Right management method and system
CN108965601A (en) * 2018-07-24 2018-12-07 努比亚技术有限公司 Short message read method, mobile terminal and computer readable storage medium
CN110084047A (en) * 2019-03-20 2019-08-02 努比亚技术有限公司 A kind of access right control method, terminal and computer readable storage medium
CN110457921A (en) * 2019-08-01 2019-11-15 维沃移动通信有限公司 Right management method and terminal device
CN110619221A (en) * 2019-08-09 2019-12-27 深圳市轱辘汽车维修技术有限公司 Virtual authorization method, device, terminal equipment and storage medium

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101655892A (en) * 2009-09-22 2010-02-24 成都市华为赛门铁克科技有限公司 Mobile terminal and access control method
CN105574402A (en) * 2015-12-21 2016-05-11 联想(北京)有限公司 Control method and electronic equipment

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101655892A (en) * 2009-09-22 2010-02-24 成都市华为赛门铁克科技有限公司 Mobile terminal and access control method
CN105574402A (en) * 2015-12-21 2016-05-11 联想(北京)有限公司 Control method and electronic equipment

Cited By (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108173839A (en) * 2017-12-26 2018-06-15 北京奇虎科技有限公司 Right management method and system
CN108173839B (en) * 2017-12-26 2021-07-09 北京奇虎科技有限公司 Authority management method and system
CN108965601A (en) * 2018-07-24 2018-12-07 努比亚技术有限公司 Short message read method, mobile terminal and computer readable storage medium
CN110084047A (en) * 2019-03-20 2019-08-02 努比亚技术有限公司 A kind of access right control method, terminal and computer readable storage medium
CN110457921A (en) * 2019-08-01 2019-11-15 维沃移动通信有限公司 Right management method and terminal device
CN110619221A (en) * 2019-08-09 2019-12-27 深圳市轱辘汽车维修技术有限公司 Virtual authorization method, device, terminal equipment and storage medium
CN110619221B (en) * 2019-08-09 2023-10-31 深圳市轱辘车联数据技术有限公司 Virtual authorization method, device, terminal equipment and storage medium

Similar Documents

Publication Publication Date Title
CN110084047A (en) A kind of access right control method, terminal and computer readable storage medium
CN107508892A (en) A kind of page access method, server and computer-readable recording medium
CN108052302A (en) Association display methods, terminal and the computer readable storage medium of double-sided screen
CN107133092A (en) Multi-thread synchronization processing method, terminal and computer-readable recording medium
CN107770369A (en) Control method, device and the computer-readable recording medium of mobile terminal
CN107517494A (en) A kind of display methods of terminal battery electricity quantity, terminal and computer-readable recording medium
CN107527200A (en) A kind of payment management method, mobile terminal and computer-readable recording medium
CN107343083A (en) One kind lifting game experiencing method, apparatus and computer-readable recording medium
CN107180184A (en) Application program right management method, device and computer-readable recording medium
CN109800602A (en) Method for secret protection, mobile terminal and computer readable storage medium
CN107734128A (en) One kind swindle number identification method and equipment
CN110191465A (en) Authority control method, mobile terminal and computer readable storage medium
CN107040541A (en) A kind of Ad blocking method, device and computer-readable medium
CN107181700A (en) Control method, mobile terminal and the storage medium of application program for mobile terminal
CN106953989A (en) Incoming call reminding method and device, terminal, computer-readable recording medium
CN108172161A (en) Display methods, mobile terminal and computer readable storage medium based on flexible screen
CN108833690A (en) authority control method, terminal and computer readable storage medium
CN107896287A (en) Phone number risk monitoring method and mobile terminal
CN107613130A (en) A kind of application management method, mobile terminal and computer-readable recording medium
CN107247606A (en) Application management method, device and computer-readable recording medium
CN107273433A (en) A kind of file scanning method, equipment and computer-readable recording medium
CN108601004A (en) NFC uses bootstrap technique, mobile terminal and computer readable storage medium
CN107194217A (en) User data access control method, equipment and computer-readable recording medium
CN107347117A (en) A kind of message management method, mobile terminal and computer-readable recording medium
CN107770356A (en) A kind of communication establishing method, equipment and computer-readable recording medium

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication
RJ01 Rejection of invention patent application after publication

Application publication date: 20170919