Method and apparatus for privacy-oriented code optimization

US 9,792,432 B2
Filed: 11/09/2012
Issued: 10/17/2017
Est. Priority Date: 11/09/2012
Status: Active Grant

First Claim

Patent Images

1. A method for optimizing an application with less access to privacy data stored on a user device, comprising:

processing, by an apparatus, one or more code segments, one or more execution logs associated with the one or more code segments, or a combination thereof to determine at least one privacy intrusion signature when developing the one or more code segments for the application being developed for the user device;

calculating, by the apparatus, a privacy score for the at least one privacy intrusion signature based, at least in part, on one or more intrusiveness levels of the one or more code segments using one or more re-accesses frequencies, one or more granularity levels, or a combination thereof associated with the privacy data stored on the user device accessed by the one or more code segments;

calculating, by the apparatus, a privacy score for one or more alternate code segments associated with one or more application programming interface functions that are available to the user device for executing the application in place of the at least one privacy intrusion signature; and

determining, by the apparatus, one or more recommendations of at least one of the alternate code segments for the developing based, at least in part, on that the privacy score of the at least one privacy intrusion signature is lower than a privacy score of the at least one of the alternate code segments.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Methods and apparatuses are provided for automatically optimizing application program code for minimized access to privacy data. A privacy-oriented code optimizing module process and/or facilitate a processing one or more code segments, one or more execution logs associated with the one or more code segments, or a combination thereof to determine at least one privacy intrusion signature associated with the one or more code segments. Further, the privacy-oriented code optimizing module determines one or more recommendations for one or more alternate code segments based, at least in part, on the at least one privacy intrusion signature.

Citations

20 Claims

1. A method for optimizing an application with less access to privacy data stored on a user device, comprising:
- processing, by an apparatus, one or more code segments, one or more execution logs associated with the one or more code segments, or a combination thereof to determine at least one privacy intrusion signature when developing the one or more code segments for the application being developed for the user device;
  
  calculating, by the apparatus, a privacy score for the at least one privacy intrusion signature based, at least in part, on one or more intrusiveness levels of the one or more code segments using one or more re-accesses frequencies, one or more granularity levels, or a combination thereof associated with the privacy data stored on the user device accessed by the one or more code segments;
  
  calculating, by the apparatus, a privacy score for one or more alternate code segments associated with one or more application programming interface functions that are available to the user device for executing the application in place of the at least one privacy intrusion signature; and
  
  determining, by the apparatus, one or more recommendations of at least one of the alternate code segments for the developing based, at least in part, on that the privacy score of the at least one privacy intrusion signature is lower than a privacy score of the at least one of the alternate code segments.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. A method of claim 1, further comprising:
    - determining one or more code patterns in the one or more code segments,wherein the one or more code patterns are associated with privacy data stored on the user device accessed by the application; and
      
      wherein the at least one privacy intrusion signature is based, at least in part, on the one or more code patterns.
  - 3. A method of claim 2, wherein the one or more alternate code segments cause, at least in part, one or more alterations in the processing of the privacy data, collecting of the privacy data, storing of the privacy data, accessing of the privacy data, parsing of the privacy data, granularity of the privacy data, or a combination thereof.
  - 4. A method of claim 1, further comprising:
    - initiating a simulation of an execution of the one or more code segments to generate the one or more execution logs;
      
      determining one or more access patterns in the one or more execution logs,wherein the one or more access patterns are associated with one or more privacy data accesses; and
      
      wherein the at least one privacy intrusion signature is based, at least in part, on the one or more access patterns.
  - 5. A method of claim 1, further comprising:
    - determining one or more reference code segments based, at least in part, on one or more characteristics of the one or more code segments; and
      
      processing the one or more reference code segments to cause, at least in part, a generation of one or more reference privacy intrusion signatures.
  - 6. A method of claim 5, further comprising:
    - initiating a comparison of the at least one privacy intrusion signature against the one or more reference privacy intrusion signatures; and
      
      determining the one or more alternate code segments based, at least in part, on the comparison.
  - 7. A method of claim 1, wherein the one or more recommendations are determined based, at least in part, on one or more privacy rules associated with one or more users, one or more service providers, one or more content providers, or a combination thereof.
  - 8. A method of claim 1, further comprising:
    - determining one or more potential privacy issues associated with the one or more code segments, based, at least in part, on an identification of one or more function calls accessing privacy data stored on the user device; and
      
      initiating a presentation of a user interface comprising one or more indicators, one or more messages, or a combination thereof for indicating the one or more potential privacy issues and the associated one or more code segments.
  - 9. A method of claim 8, further comprising:
    - initiating a presentation of the one or more alternate code segments associated with the one or more code segments; and
      
      determining one or more inputs received at the user device to substantially automatically replace the one or more code segments with the one or more alternate code segments.

10. An apparatus for optimizing an application with less access to privacy data stored on a user device, comprising:
- at least one processor; and
  
  at least one memory including computer program code for one or more programs,the at least one memory and the computer program code configured to, with the at least one processor, cause the apparatus to perform at least the following,process one or more code segments, one or more execution logs associated with the one or more code segments, or a combination thereof to determine at least one privacy intrusion signature when developing the one or more code segments for the application being developed for the user devices;
  
  calculate a privacy score for the at least one privacy intrusion signature based, at least in part, on one or more intrusiveness levels of the one or more code segments using one or more re-accesses frequencies, one or more granularity levels, or a combination thereof associated with the privacy data stored on the user device accessed by the one or more code segments;
  
  calculate a privacy score for one or more alternate code segments associated with one or more application programming interface functions that are available to the user device for executing the application in place of the at least one privacy intrusion signature; and
  
  determine one or more recommendations of at least one of the alternate code segments for the developing based, at least in part, on that the privacy score of the at least one privacy intrusion signature is lower than a privacy score of the at least one of the alternate code segments.
- View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18)
- - 11. An apparatus of claim 10, wherein the apparatus is further caused to:
    - determine one or more code patterns in the one or more code segments,wherein the one or more code patterns are associated with privacy data stored on the user device accessed by the application; and
      
      wherein the at least one privacy intrusion signature is based, at least in part, on the one or more code patterns.
  - 12. An apparatus of claim 11, wherein the one or more alternate code segments cause, at least in part, one or more alterations in the processing of the privacy data, collecting of the privacy data, storing of the privacy data, accessing of the privacy data, parsing of the privacy data, granularity of the privacy data, or a combination thereof.
  - 13. An apparatus of claim 10, wherein the apparatus is further caused to:
    - initiate a simulation of an execution of the one or more code segments to generate the one or more execution logs;
      
      determine one or more access patterns in the one or more execution logs,wherein the one or more access patterns are associated with one or more privacy data accesses; and
      
      wherein the at least one privacy intrusion signature is based, at least in part, on the one or more access patterns.
  - 14. An apparatus of claim 10, wherein the apparatus is further caused to:
    - determine one or more reference code segments based, at least in part, on one or more characteristics of the one or more code segments; and
      
      process the one or more reference code segments to cause, at least in part, a generation of one or more reference privacy intrusion signatures.
  - 15. An apparatus of claim 14, wherein the apparatus is further caused to:
    - initiate a comparison of the at least one privacy intrusion signature against the one or more reference privacy intrusion signatures; and
      
      determine the one or more alternate code segments based, at least in part, on the comparison.
  - 16. An apparatus of claim 10, wherein the one or more recommendations are determined based, at least in part, on one or more privacy rules associated with one or more users, one or more service providers, one or more content providers, or a combination thereof.
  - 17. An apparatus of claim 10, wherein the apparatus is further caused to:
    - determine one or more potential privacy issues associated with the one or more code segments, based, at least in part, on an identification of one or more function calls accessing privacy data stored on the user device; and
      
      initiate a presentation of a user interface comprising one or more indicators, one or more messages, or a combination thereof for indicating the one or more potential privacy issues and the associated one or more code segments.
  - 18. An apparatus of claim 17, wherein the apparatus is further caused to:
    - initiate a presentation of the one or more alternate code segments associated with the one or more code segments; and
      
      determine one or more inputs received at the user device to substantially automatically replace the one or more code segments with the one or more alternate code segments.

19. A method for optimizing an application with less access to privacy data stored on a user device, comprising:
- processing, by an apparatus, one or more code segments, one or more execution logs associated with the one or more code segments, or a combination thereof to determine at least one privacy intrusion signature when developing the one or more code segments for the application being developed for the user device;
  
  calculating, by the apparatus, a privacy score for the at least one privacy intrusion signature based, at least in part, on one or more intrusiveness levels of the one or more code segments using one or more re-accesses frequencies, one or more granularity levels, or a combination thereof associated with the privacy data stored on the user device accessed by the one or more code segments;
  
  calculating, by the apparatus, a privacy score for one or more alternate code segments associated with one or more application programming interface functions that are available to the user device for executing the application in place of the at least one privacy intrusion signature; and
  
  determining, by the apparatus, one or more recommendations of at least one of the alternate code segments for the developing based, at least in part, on that the privacy score of the at least one privacy intrusion signature is higher than a privacy score of the at least one of the alternate code segments.

20. An apparatus for optimizing an application with less access to privacy data stored on a user device, comprising:
- at least one processor; and
  
  at least one memory including computer program code for one or more programs,the at least one memory and the computer program code configured to, with the at least one processor, cause the apparatus to perform at least the following,process one or more code segments, one or more execution logs associated with the one or more code segments, or a combination thereof to determine at least one privacy intrusion signature when developing the one or more code segments for the application being developed for the user devices;
  
  calculate a privacy score for the at least one privacy intrusion signature based, at least in part, on one or more intrusiveness levels of the one or more code segments using one or more re-accesses frequencies, one or more granularity levels, or a combination thereof associated with the privacy data stored on the user device accessed by the one or more code segments;
  
  calculate a privacy score for one or more alternate code segments associated with one or more application programming interface functions that are available to the user device for executing the application in place of the at least one privacy intrusion signature; and
  
  determine one or more recommendations of at least one of the alternate code segments for the developing based, at least in part, on that the privacy score of the at least one privacy intrusion signature is higher than a privacy score of the at least one of the alternate code segments.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Nokia Technologies Oy (Nokia Corporation)
Original Assignee
Nokia Technologies Oy (Nokia Corporation)
Inventors
Bilogrevic, Igor, Huguenin, Kevin
Primary Examiner(s)
Armouche, Hadi
Assistant Examiner(s)
Zarrineh, Shahriar

Application Number

US13/673,410
Publication Number

US 20140137264A1
Time in Patent Office

1,803 Days
Field of Search

726 23, 726 27, 379 31
US Class Current
CPC Class Codes

G06F 21/10   Protecting distributed prog...

G06F 21/54   by adding security routines...

G06F 21/60   Protecting data

Method and apparatus for privacy-oriented code optimization

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Method and apparatus for privacy-oriented code optimization

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links