×

Systems and methods to enforce security policies on the loading, linking, and execution of native code by mobile applications running inside of virtual machines

  • US 9,609,020 B2
  • Filed: 04/08/2013
  • Issued: 03/28/2017
  • Est. Priority Date: 01/06/2012
  • Status: Expired due to Fees
First Claim
Patent Images

1. A method of enforcing policies associated with the loading, linking and/or execution of native code by an application, the method comprising:

  • executing an application, through the use of a computer processor, in a first process on a device running inside of a virtual machine, wherein the application includes calls accessing native code;

    executing a policy engine, through the use of a computer processor, in a second process on the device;

    receiving a request for one or more of loading, linking, or execution of a native code library from the executing application, wherein the request is communicated by the application to the policy engine via a local cross-process communication mechanism, and wherein the request is received after the application has been assembled and begun executing;

    determining by the policy engine whether the request from the application is allowed based on a policy;

    permitting the requested access by loading, linking, or execution of the native code library upon determining that the application is allowed to access the native library; and

    determining, by the virtual machine, whether the request from the application is allowed based on a local policy separate from the policy applied by the policy engine, and permitting the requested access only if both the local policy and policy engine determine that the application is allowed to access the native library.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×