Evaluating Whether to Block or Allow Installation of a Software Application
First Claim
1. A method, comprising:
- receiving a request to install an application on a programmable device; and
deciding whether to install the application, comprising;
determining a risk level of the application responsive to a set of permissions requested by the application, comprising;
determining one or more characteristics of the application;
evaluating the set of permissions requested by the application in relation to the one or more determined characteristics of the application; and
assigning a risk level responsive to the evaluation; and
blocking installation of the application if the risk level exceeds a predetermined risk threshold,wherein the determined characteristics comprise at least one characteristic not contained in a manifest associated with the application.
1 Assignment
0 Petitions
Accused Products
Abstract
A programmable device for which an application is to be installed analyzes permissions requested by the application and other application information to assist the user in deciding whether to allow installation of the application. The analysis may either block or allow the installation, or may provide a calculated risk level to the user and request a decision. Application information, such as a category of application, typical permissions requested by similar applications, and trustworthiness of the application source, in addition to whitelists and blacklists may be employed as part of the analysis and evaluation of the permissions. As a result, the user need not be burdened with overly technical information and may make a better informed decision on installation.
57 Citations
27 Claims
-
1. A method, comprising:
-
receiving a request to install an application on a programmable device; and deciding whether to install the application, comprising; determining a risk level of the application responsive to a set of permissions requested by the application, comprising; determining one or more characteristics of the application; evaluating the set of permissions requested by the application in relation to the one or more determined characteristics of the application; and assigning a risk level responsive to the evaluation; and blocking installation of the application if the risk level exceeds a predetermined risk threshold, wherein the determined characteristics comprise at least one characteristic not contained in a manifest associated with the application. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
-
-
17. A system, comprising:
-
a processor; a storage subsystem, coupled to the processor; an application database stored on the storage subsystem comprising;
information associated with applications configured for installation on a programmable client device; andsoftware stored on the storage subsystem comprising instructions that when executed cause the processor to; receive a request from the programmable client device responsive to an attempt to install an application on the programmable client device; determine one or more characteristics of the application; evaluate a set of permissions requested by the application in relation to the one or more determined characteristics of the application; and transmit a risk determination to the programmable client device responsive to evaluating the set of permissions, wherein the one or more determined characteristics comprise at least one characteristic not contained in a manifest associated with the application. - View Dependent Claims (18, 19, 20, 21)
-
-
22. A programmable device comprising:
-
a programmable control device; an operating system configured to control the programmable control device; a storage subsystem, coupled to the programmable control device; and software stored on the storage subsystem comprising instructions that when executed by the programmable control device cause the programmable control device to; evaluate a set of permissions requested by an application to be installed on the programmable device in relation to one or more determined characteristics of the application, to determine a risk level of the application; and block installation of the application if risk level exceeds a predetermined risk threshold, wherein the determined characteristics comprise at least one characteristic not contained in a manifest associated with the application. - View Dependent Claims (23, 24, 25, 26)
-
-
27. The programmable device of claim wherein the software further comprises instructions that when executed cause the programmable control device to:
send information about the application to a remote server.
Specification