Method and apparatus for providing dynamic security management
First Claim
1. A method of providing a dynamic security management in an apparatus, the apparatus comprising:
- a platform for running an application;
a security manager for handling access of the application to functions existing in the apparatus;
an application interface between the platform and the application;
a set of access permissions stored in the apparatus and used by the security manager for controlling access of the application to functions through the application interface the method comprising;
configuring at least one processor to perform the functions of;
downloading into the apparatus an object containing additional access permissions and other permission information to be associated with security policy contained in the downloaded object as well as access permissions already existing in the apparatus, wherein the permissions are applicable to at least one function, the object comprising new routines and/or new functions;
verifying the object and the associated permissions linked to the existing access permissions;
providing the security with a hierarchical structure including the access permissions in the security policy and the object containing additional access permissions and other permission information; and
installing the access permissions together with the existing permissions, the object enhancing the application interface with the new routines and/or new functions.
3 Assignments
0 Petitions
Accused Products
Abstract
Methods and devices provide dynamic security management in an apparatus, such as a mobile telephone terminal. The apparatus includes a platform for running an application; a security manager for handling access of the application to functions existing in the apparatus; an application interface (API) between the platform and the application; a set of access permissions stored in the apparatus and used by the security manager for controlling access of the application to functions through the application interface. Methods can include downloading into the apparatus an object containing access permissions applicable to at least one function; verifying the object; and installing the access permissions together with the existing permissions.
16 Citations
35 Claims
-
1. A method of providing a dynamic security management in an apparatus, the apparatus comprising:
- a platform for running an application;
a security manager for handling access of the application to functions existing in the apparatus;
an application interface between the platform and the application;
a set of access permissions stored in the apparatus and used by the security manager for controlling access of the application to functions through the application interface the method comprising;configuring at least one processor to perform the functions of; downloading into the apparatus an object containing additional access permissions and other permission information to be associated with security policy contained in the downloaded object as well as access permissions already existing in the apparatus, wherein the permissions are applicable to at least one function, the object comprising new routines and/or new functions; verifying the object and the associated permissions linked to the existing access permissions; providing the security with a hierarchical structure including the access permissions in the security policy and the object containing additional access permissions and other permission information; and installing the access permissions together with the existing permissions, the object enhancing the application interface with the new routines and/or new functions. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
- a platform for running an application;
-
14. A method of providing a dynamic security management in an apparatus, the apparatus comprising:
- a platform for running an application;
a security manager for handling access of the application to functions existing in the apparatus;
an application interface between the platform and the application;
a set of access permissions stored in the apparatus and used by the security manager for controlling access of the application to functions through the application interface, the method comprising;configuring at least one processor to perform the functions of; storing the access permissions in a security policy; downloading into the apparatus an object containing additional access permissions and other permission information to be associated with security policy contained in the downloaded object as well as the access permissions already existing in the security policy, wherein the permissions are applicable to at least one function and the object includes new routines and/or new functions; verifying the object and the associated permissions linked to the existing access permissions; providing the security policy with a hierarchical structure including the access permissions in the security policy and the object containing additional access permissions and other permission information so that the object enhances the application interface with the new routines and/or new functions; and installing the access permissions together with the existing permissions. - View Dependent Claims (15, 16, 17)
- a platform for running an application;
-
18. An apparatus with dynamic security management comprising:
-
a platform for running an application; a security manager for handling access of the application to functions existing in the apparatus; an application interface between the platform and the application; a set of access permissions stored in the apparatus and used by the security manager for controlling access of the application to functions through the application interface wherein the apparatus is configured to download an object containing additional access permissions and other permission information to be associated with security policy contained in the downloaded objects as well as access permissions already existing in the apparatus, wherein the permissions are applicable to at least one function, the object comprising new routines and/or new functions; to verify the object and the associated permissions linked to the existing access permissions; to provide the security policy with a hierarchical structure including the access permissions in the security policy and the object containing additional access permissions and other permission information; and to install the access permissions together with the existing permissions, the object enhancing the application interface with the new routines and/or new functions. - View Dependent Claims (19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31)
-
-
32. An apparatus for providing a dynamic security management comprising:
-
a platform for running an application; a security manager for handling access of the application to functions existing in the apparatus; an application interface between the platform and the application; a set of access permissions stored in the apparatus and used by the security manager for controlling access of the application to functions through the application interface, wherein the apparatus is configured to download an object containing additional access permissions to be associated with security policy contained in the downloaded objects as well as access permissions already existing in the apparatus, wherein the permissions are applicable to at least one function, said object comprising new routines and/or new functions; to verify the object and the associated permissions linked to the existing access permissions; to provide the security policy with a hierarchical structure including the access permissions in the security policy and the object containing additional access permissions and other permission information; and to install the access permissions together with the existing permissions;
said object enhancing the application interface with the new routines and/or new functions. - View Dependent Claims (33, 34, 35)
-
Specification