Apparatus and method for protecting information in communication system

US 10,380,378 B2
Filed: 07/22/2016
Issued: 08/13/2019
Est. Priority Date: 09/24/2015
Status: Active Grant

First Claim

Patent Images

1. A method for protecting information in a mobile device in a communication system, the method comprising:

in response to the mobile device detecting that an application will be installed in the mobile device or detecting that the application is being initially run by the mobile device, acquiring, by the mobile device, a database security analysis result of a database corresponding to application, the database security analysis result being a result of performing a database security analyzing operation for protecting the database; and

outputting, on a display of the mobile device, the database security analysis result for the application,wherein the database is generated in the mobile device in response to installing the application, andwherein the database includes personal user information related to running the application.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The present disclosure relates to a sensor network, machine type communication (MTC), machine-to-machine (M2M) communication, and technology for internet of things (IoT). The present disclosure may be applied to intelligent services based on the above technologies, such as smart home, smart building, smart city, smart car, connected car, health care, digital education, smart retail, security and safety services. A method, communication device, and server for protecting information in a communication device in a communication system are provided. The method includes acquiring a database security analysis result for an application (App) upon detecting that the App is run, and outputting the database security analysis result for the App.

21 Citations

View as Search Results

12 Claims

1. A method for protecting information in a mobile device in a communication system, the method comprising:
- in response to the mobile device detecting that an application will be installed in the mobile device or detecting that the application is being initially run by the mobile device, acquiring, by the mobile device, a database security analysis result of a database corresponding to application, the database security analysis result being a result of performing a database security analyzing operation for protecting the database; and
  
  outputting, on a display of the mobile device, the database security analysis result for the application,wherein the database is generated in the mobile device in response to installing the application, andwherein the database includes personal user information related to running the application.
- View Dependent Claims (2, 3, 4, 5, 11)
- - 2. The method of claim 1, wherein the acquiring of the database security analysis result for the application comprises:
    - transmitting a database security analysis result request message, which requests the database security analysis result for the application, to a server; and
      
      receiving a database security analysis response message, which includes the database security analysis result for the application, from the server.
  - 3. The method of claim 1, wherein the acquiring of the database security analysis result for the application comprises:
    - transmitting a database security analysis result request message, which requests the database security analysis result for the application, to a server;
      
      receiving a database security analysis response message, which indicates that the database security analysis result for the application is not stored in the server, from the server; and
      
      performing the database security analyzing operation for the application to acquire the database security analysis result for the application.
  - 4. The method of claim 3, wherein the performing of the database security analyzing operation for the application comprises:
    - if a specific type of information access authority related to a specific type of information access is included in authorities which are requested in the application, detecting that the database for the application is generated;
      
      detecting that the application reads a specific type of information included in the database included in the mobile device; and
      
      performing the database security analyzing operation for the database to acquire the database security analysis result for the application.
  - 5. The method of claim 1, further comprising:
    - transmitting the database security analysis result for the application to a server.
  - 11. The method of claim 1, wherein the personal user information comprises at least one of system preferences, a searching record, an alarm, a Wi-Fi list, a picture, an image file, contact information, call history, a text message, a schedule, or an e-mail.

6. A mobile device in a communication system, the mobile device comprising:
- a display; and
  
  a hardware processor configured to;
  
  in response to detecting that an application will be installed in the mobile device or detecting that the application is being initially run by the mobile device, acquire a database security analysis result of a database corresponding to application, the database security analysis result being a result of performing a database security analyzing operation for protecting the database, andcontrol the display to output the database security analysis result for the application,wherein the database is generated in the mobile device in response to installing the application, andwherein the database includes personal user information related to running the application.
- View Dependent Claims (7, 8, 9, 10, 12)
- - 7. The mobile device of claim 6, wherein the hardware processor is further configured to:
    - control the mobile device to transmit a database security analysis result request message, which requests the database security analysis result for the application, to a server; and
      
      control the mobile device to receive a database security analysis response message, which includes the database security analysis result for the application, from the server.
  - 8. The mobile device of claim 6, wherein the hardware processor is further configured to:
    - control the mobile device to transmit a database security analysis result request message, which requests the database security analysis result for the application, to a server;
      
      control the mobile device to receive a database security analysis response message, which indicates that the database security analysis result for the application is not available at the server, from the server; and
      
      perform the database security analyzing operation for the application to acquire the database security analysis result for the application.
  - 9. The mobile device of claim 8, wherein the hardware processor is further configured to:
    - if a specific type of information access authority related to a specific type of information access is included in authorities which are requested in the application, detect that the database for the application is generated;
      
      detect that the application reads a specific type of information included in the database included in the mobile device; and
      
      perform the database security analyzing operation for the database to acquire the database security analysis result for the application.
  - 10. The mobile device of claim 6, wherein the hardware processor is further configured to control the mobile device to transmit the database security analysis result for the application to a server.
  - 12. The mobile device of claim 6, wherein the personal user information comprises at least one of system preferences, a searching record, an alarm, a Wi-Fi list, a picture, an image file, contact information, call history, a text message, a schedule, or an e-mail.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Samsung Electronics Co. Ltd.
Original Assignee
Samsung Electronics Co. Ltd.
Inventors
Lee, Bo-Young, Kim, Sung-Kee
Primary Examiner(s)
Cribbs, Malcolm

Application Number

US15/216,947
Publication Number

US 20170091484A1
Time in Patent Office

1,117 Days
Field of Search

None
US Class Current
CPC Class Codes

G06F 16/951   Indexing; Web crawling tech...

G06F 21/554   involving event detection a...

G06F 21/566   Dynamic detection, i.e. det...

G06F 21/577   Assessing vulnerabilities a...

G06F 21/6218   to a system of files or obj...

G06F 21/6245   Protecting personal data, e...

G06F 21/6281   at program execution time, ...

G06F 2221/034   Test or assess a computer o...

H04L 63/04   for providing a confidentia...

H04L 63/1408   by monitoring network traff...

H04L 63/1416   Event detection, e.g. attac...

H04L 63/1433   Vulnerability analysis

H04L 63/145   the attack involving the pr...

Apparatus and method for protecting information in communication system

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

21 Citations

12 Claims

Specification

Solutions

Use Cases

Quick Links

Apparatus and method for protecting information in communication system

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

21 Citations

12 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links