×

Fine-grained user control over usages of sensitive system resources having private data with applications in privacy enforcement

  • US 9,940,478 B2
  • Filed: 06/18/2015
  • Issued: 04/10/2018
  • Est. Priority Date: 02/24/2015
  • Status: Active Grant
First Claim
Patent Images

1. A computer-readable storage medium comprising computer-readable code embodied thereon, wherein execution of the computer-readable code by at least one processor causes an apparatus to perform:

  • accessing, by the apparatus, a permission that is to be revoked for an application, wherein the permission involves access to private data of a user via an application programming interface of an operating system;

    determining, in the application, one or more program points from among program locations involving access to the private data of the user via the application programming interface, wherein the determining comprises performing constraint inference process on the code in the application to determine a plurality of constraints on paths through the code, wherein the constraints prevent the application from transitioning into those of the program locations that are considered to be bad locations;

    for each selected one of the one or more program points, rewriting code in the application to replace a source statement, at the selected program point, that accesses the private data with another statement that allocates a mock object or value based on a type of an actual value returned by the source statement, wherein the mock object or value does not expose the private data of the user;

    packaging, by the apparatus, the application with the rewritten code as an output application able to be subsequently executed by the user; and

    outputting the application with the rewritten code for use by the user.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×