System and method for controlling access to data of a user device using a security application that provides accessibility services
First Claim
1. A method for controlling access to data of a user device using a security application installed as an accessibility service on the user device, the method comprising:
- executing, by a processor of the user device, the security application and one or more user applications;
intercepting, by an interception module of the security application using a plurality of accessibility application program interface (API) functions, data accessed by a user application being executed on the user device;
determining, by a categorization module of the security application, a category of intercepted data;
intercepting, by the interception module using the accessibility API functions, one or more events of user'"'"'s interaction with a user interface of the user application on the user device; and
determining, by an access control module of the security application, an access control policy that specifies and controls whether to allow a user'"'"'s access to the intercepted data based on the category of intercepted data and types of intercepted events.
1 Assignment
0 Petitions
Accused Products
Abstract
Disclosed are systems and methods for controlling access to data of a user device using a security application that provides accessibility services. An exemplary method comprises: executing, on the user device, the security application and one or more user applications; intercepting, by an interception module of the security application using a plurality of accessibility API functions, data accessed by a user application being executed on the user device; determining, by a categorization module of the security application, a category of intercepted data; intercepting, by the interception module using the accessibility API functions, one or more events of user'"'"'s interaction with a user interface of the user application; and determining, by an access control module of the security application, an access control policy that specifies and controls whether to allow a user'"'"'s access to the intercepted data based on the category of intercepted data and types of intercepted events.
-
Citations
20 Claims
-
1. A method for controlling access to data of a user device using a security application installed as an accessibility service on the user device, the method comprising:
-
executing, by a processor of the user device, the security application and one or more user applications; intercepting, by an interception module of the security application using a plurality of accessibility application program interface (API) functions, data accessed by a user application being executed on the user device; determining, by a categorization module of the security application, a category of intercepted data; intercepting, by the interception module using the accessibility API functions, one or more events of user'"'"'s interaction with a user interface of the user application on the user device; and determining, by an access control module of the security application, an access control policy that specifies and controls whether to allow a user'"'"'s access to the intercepted data based on the category of intercepted data and types of intercepted events. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A system for controlling access to data of a user device using a security application installed as an accessibility service on the user device, the system comprising:
a hardware processor of the user device configured to; execute the security application and one or more user applications; intercept, via an interception module of the security application using a plurality of accessibility application program interface (API) functions, data accessed by a user application being executed on the user device; determine, via a categorization module of the security application, a category of intercepted data; intercept, via the interception module using the accessibility API functions, one or more events of user'"'"'s interaction with a user interface of the user application on the user device; and determine, via an access control module of the security application, an access control policy that specifies and controls whether to allow a user'"'"'s access to the intercepted data based on the category of intercepted data and types of intercepted events. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
15. A non-transitory computer readable medium storing computer executable instructions for controlling access to data of a user device using a security application installed as an accessibility service on the user device, including instructions for:
-
executing, by a processor of the user device, the security application and one or more user applications; intercepting, by an interception module of the security application using a plurality of accessibility application program interface (API) functions, data accessed by a user application being executed on the user device; determining, by a categorization module of the security application, a category of intercepted data; intercepting, by the interception module using the accessibility API functions, one or more events of user'"'"'s interaction with a user interface of the user application on the user device; and determining, by an access control module of the security application, an access control policy that specifies and controls whether to allow a user'"'"'s access to the intercepted data based on the category of intercepted data and types of intercepted events. - View Dependent Claims (16, 17, 18, 19, 20)
-
Specification