Security cloud service framework for hardening in the field code of mobile software applications
First Claim
1. A method, comprising:
- receiving, by a cloud service framework, an application via a user interface over a network;
translating, by the cloud service framework, the application from a first level of code to a second level of code different than the first level of code;
generating, by the cloud service framework, a representation of the code of the application, the representation defines specific states of the application and stimuli needed to cause a transition from one application state to another application state;
determining, by the cloud service framework, changes to code of the application based at least in part on the representation, wherein the changes to the code preclude the application from performing one or more unwanted behaviors; and
instrumenting, by a static instrumentation unit within the cloud service framework, the application with the changes to the code to create an instrumented application that does not perform the one or more unwanted behaviors.
5 Assignments
0 Petitions
Accused Products
Abstract
A method for hardening in the field code of mobile software applications is described that includes receiving, by a cloud service framework, an application via a user interface over a network. The method also includes generating, by the cloud service framework, a representation of the code of the application and determining, by the cloud service framework, changes to code of the application based at least in part on the representation, wherein the changes to the code preclude the application from performing one or more unwanted behaviors. The method also includes instrumenting, by a static instrumentation unit within the cloud service framework, the application with the changes to the code to create an instrumented application that does not perform the one or more unwanted behaviors.
451 Citations
30 Claims
-
1. A method, comprising:
-
receiving, by a cloud service framework, an application via a user interface over a network; translating, by the cloud service framework, the application from a first level of code to a second level of code different than the first level of code; generating, by the cloud service framework, a representation of the code of the application, the representation defines specific states of the application and stimuli needed to cause a transition from one application state to another application state; determining, by the cloud service framework, changes to code of the application based at least in part on the representation, wherein the changes to the code preclude the application from performing one or more unwanted behaviors; and instrumenting, by a static instrumentation unit within the cloud service framework, the application with the changes to the code to create an instrumented application that does not perform the one or more unwanted behaviors. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A security cloud service system for hardening an application, the system comprising:
-
one or more hardware processors associated with cloud storage; and a cloud storage medium communicatively coupled to the one or more hardware processors, and having stored thereon; a central intelligence unit configured to (i) receive the application via a user interface over a network, (ii) translate the application from a first level of code to a second level of code different than the first level of code, (iii) identify one or more unwanted behaviors of the application based at least in part on an analysis of a representation of the application, and (iv) determine changes to code of the application, wherein the changes to the code preclude the application from performing the one or more unwanted behaviors, and a static instrumentation engine in communication with the central intelligence unit, the static instrumentation engine being configured to (i) generate the representation of the application that defines specific states of the application and stimuli needed to cause a transition from one application state to another application state, and (ii) based on the representation, instrument the application with the changes to the code so that the application is precluded from performing the one or more unwanted behaviors. - View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20, 21)
-
-
22. A non-transitory computer-readable medium having stored thereon logic, the logic being executable by one or more processors to perform operations including:
-
receiving, by a cloud service framework, an application via a user interface over a network; translating, by the cloud service framework, the application from a first level of code to a second level of code different than the first level of code; generating, by the cloud service framework, a representation of the code of the application, the representation defines specific states of the application and stimuli needed to cause a transition from one application state to another application state; determining, by the cloud service framework, changes to code of the application based at least in part on the representation, wherein the changes to the code preclude the application from performing one or more unwanted behaviors; and instrumenting, by a static instrumentation unit within the cloud service framework, the application with the changes to the code to create an instrumented application that does not perform the one or more unwanted behaviors. - View Dependent Claims (23, 24, 25, 26, 27, 28, 29, 30)
-
Specification