System and method for controlling access to data using API for users with disabilities
First Claim
1. A method for controlling data access using accessibility API, the method comprising:
- registering by a processor of a user device a security application as an accessibility service, wherein the security application comprises a library of accessibility application programming interface (API) functions, an interception module, a categorization module and an access control module;
executing by the processor the security application and one or more user applications;
intercepting, by the interception module of the security application using the accessibility API functions, data accessed by a user application being executed on the user device;
determining, by the categorization module of the security application, a category of intercepted data;
intercepting, by the interception module using the accessibility API functions, one or more events of user'"'"'s interaction with a user interface of the user application on the user device;
determining, by the access control module of the security application, an access control policy that specifies whether to allow or prohibit user'"'"'s access to the intercepted data based on the category of intercepted data and types of intercepted events; and
controlling, by the access control module using the accessibility API functions, access of the user application to the intercepted data based on the determined access control policy.
1 Assignment
0 Petitions
Accused Products
Abstract
Disclosed are systems and methods for controlling access to data on mobile devices using an accessibility API for users with disabilities. An exemplary method comprises: registering on a mobile device a security application as a service for users with disabilities, wherein the security application provides an accessibility API for the users with disabilities that comprises a plurality of accessibility API functions; intercepting, using the accessibility API, data accessed by a user application being executed on the user device; determining, by the security application, a category of intercepted data; intercepting, using the accessibility API, events of execution of the user application on the user device; determining, by the security application, an access control policy for accessing the intercepted data based on the category of intercepted data and intercepted events; and controlling, using the accessibility API, access of the user application to the intercepted data based on the determined access control policy.
33 Citations
21 Claims
-
1. A method for controlling data access using accessibility API, the method comprising:
-
registering by a processor of a user device a security application as an accessibility service, wherein the security application comprises a library of accessibility application programming interface (API) functions, an interception module, a categorization module and an access control module; executing by the processor the security application and one or more user applications; intercepting, by the interception module of the security application using the accessibility API functions, data accessed by a user application being executed on the user device; determining, by the categorization module of the security application, a category of intercepted data; intercepting, by the interception module using the accessibility API functions, one or more events of user'"'"'s interaction with a user interface of the user application on the user device; determining, by the access control module of the security application, an access control policy that specifies whether to allow or prohibit user'"'"'s access to the intercepted data based on the category of intercepted data and types of intercepted events; and controlling, by the access control module using the accessibility API functions, access of the user application to the intercepted data based on the determined access control policy. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A system for controlling data access using accessibility API, the system comprising:
a hardware processor of a user device configured to; register on the user device a security application as an accessibility service, wherein the security application comprises a library of accessibility application programming interface (API) functions, an interception module, a categorization module and an access control module; execute on the user device the security application and one or more user applications; intercept, by the interception module of the security application using the accessibility API functions, data accessed by a user application being executed on the user device; determine, by the categorization module of the security application, a category of intercepted data; intercept, by the interception module using the accessibility API functions, one or more events of user'"'"'s interaction with a user interface of the user application on the user device; determine, by the access control module of the security application, an access control policy that specifies whether to allow or prohibit user'"'"'s access to the intercepted data based on the category of intercepted data and types of intercepted events; and control, by the access control module using the accessibility API functions, access of the user application to the intercepted data based on the determined access control policy. - View Dependent Claims (10, 11, 12, 13, 14, 15)
-
16. A non-transitory computer readable medium storing computer executable instructions for controlling data access using accessibility API, including instructions for:
-
registering on a user device a security application as an accessibility service, wherein the security application comprises a library of accessibility application programming interface (API) functions, an interception module, a categorization module and an access control module; intercepting, by the interception module of the security application using the accessibility API functions, data accessed by a user application being executed on the user device; determining, by the categorization module of the security application, a category of intercepted data; intercepting, by the interception module using the accessibility API functions, one or more events of user'"'"'s interaction with a user interface of the user application on the user device; determining, by the access control module of the security application, an access control policy that specifies whether to allow or prohibit user'"'"'s access to the intercepted data based on the category of intercepted data and types of intercepted events; and controlling, by the access control module using the accessibility API functions, access of the user application to the intercepted data based on the determined access control policy. - View Dependent Claims (17, 18, 19, 20, 21)
-
Specification