Securing and managing apps on a device
First Claim
1. A method of securing an app for execution on a device using a security program, the method comprising:
- generating Java class files for an app security program, said generating dictated by a plurality of app security policies;
replacing Java class files for the app with the Java class files for the app security program, wherein the Java class files for the app that are being replaced function as a proxy between the app and a device operating system;
creating a security-wrapped app upon completion of said replacing of Java class files for the app;
preparing the security-wrapped app for execution on the device; and
re-signing the security-wrapped app with a new key.
3 Assignments
0 Petitions
Accused Products
Abstract
Apps are secured or security-wrapped either before they are downloaded onto a device, such as a smartphone or tablet device, or after they are downloaded but before they are allowed to access the device operating system and cause any potential damage to the device. An app provider, such as an employer or a cellphone provider, can secure its apps before consumers download an app from their app store or marketplace. The app is secured before it is allowed to access the operating system of the device, thereby preventing the app from malicious behavior. Core object code of the app is obtained and the digital signature is removed. App object code is substituted with security program object code, thereby creating a security-wrapped app. The security-wrapped app is prepared for execution on the device and is re-signed with a new key.
113 Citations
26 Claims
-
1. A method of securing an app for execution on a device using a security program, the method comprising:
-
generating Java class files for an app security program, said generating dictated by a plurality of app security policies; replacing Java class files for the app with the Java class files for the app security program, wherein the Java class files for the app that are being replaced function as a proxy between the app and a device operating system; creating a security-wrapped app upon completion of said replacing of Java class files for the app; preparing the security-wrapped app for execution on the device; and re-signing the security-wrapped app with a new key. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 25, 26)
-
-
16. A method of preventing an app from damaging a device, the method comprising:
-
generating Java class files for a security program, said generating dictated by a plurality of app security policies; replacing Java class files for the app with Java class files for the app security program, wherein the Java class files for the app that are being replaced function as a proxy between the app and a device operating system; creating a security-wrapped app upon completion of said replacing of Java class files for the app; executing the security-wrapped app on the device; applying a security check to a call made by the security-wrapped app to the device operating system; and as instructed by the security check to said call, performing one of (a) allowing the call to pass to the device operating system; (b) enhancing the call; (c) blocking the call; and (d) terminating the security-wrapped app. - View Dependent Claims (17, 18, 19, 20, 21, 22)
-
-
23. A method of securing an app for execution on a device using a security program, the method comprising:
-
generating Java class files for an app security program, said generating dictated by a plurality of app security policies; replacing Java class files for the app with the Java class files for the app security program, wherein the Java class files for the app that are being replaced function as a filter between the app and a device operating system; creating a security-wrapped app upon completion of said replacing of Java class files for the app; preparing the security-wrapped app for execution on the device; and re-signing the security-wrapped app with a new key.
-
-
24. A method of preventing an app from damaging a device, the method comprising:
-
generating Java class files for a security program, said generating dictated by a plurality of app security policies; replacing Java class files for the app with Java class files for the app security program, wherein the Java class files for the app that are being replaced function as a filter between the app and a device operating system; creating a security-wrapped app upon completion of said replacing of Java class files for the app; executing the security-wrapped app on the device; applying a security check to a call made by the security-wrapped app to the device operating system; and as instructed by the security check to said call, performing one of (a) allowing the call to pass to the device operating system; (b) enhancing the call; (c) blocking the call; and (d) terminating the security-wrapped app.
-
Specification