SECURE EXECUTION OF UNSECURED APPS ON A DEVICE
First Claim
1. A method of securing an app on a mobile device, the method comprising:
- unbundling an app into a first plurality of modules, wherein a module is a segment of app code for a particular function;
determining which module from the first plurality of modules perform high security functions, thereby creating a second plurality of modules;
loading the second plurality of modules performing the high security functions to a trusted execution environment; and
re-bundling the app so that the app has the first plurality of modules and the second plurality of modules;
executing the app wherein the high security functions execute so that break points cannot be inserted into the app code.
3 Assignments
0 Petitions
Accused Products
Abstract
An app is secured on a mobile device by being deconstructed or unbundled into multiple modules, where a module is a segment of app code that performs a particular function. It is then determined which modules from the multiple modules perform some type of security function, for example, a function dealing with confidential or security-related data. These modules, forming a group of modules, are loaded into a trusted execution environment. The app is then re-bundled so that it has the first plurality of modules and the second plurality of modules. The app executes in a manner where the high security functions execute so that break points cannot be inserted into the app code. The re-bundling is done automatically in an app security wrapping process. Security constraints are added to the app.
162 Citations
7 Claims
-
1. A method of securing an app on a mobile device, the method comprising:
-
unbundling an app into a first plurality of modules, wherein a module is a segment of app code for a particular function; determining which module from the first plurality of modules perform high security functions, thereby creating a second plurality of modules; loading the second plurality of modules performing the high security functions to a trusted execution environment; and re-bundling the app so that the app has the first plurality of modules and the second plurality of modules; executing the app wherein the high security functions execute so that break points cannot be inserted into the app code. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
Specification
-
- Resources
-
Current AssigneeBlue Cedar Networks, Inc.
-
Original AssigneeMocana Corporation (DigiCert Incorporated)
-
InventorsBLAISDELL, James
-
Granted Patent
-
Time in Patent OfficeDays
-
Field of Search
-
US Class Current726/28
-
CPC Class CodesG06F 21/52 during program execution, e...H04W 12/12 Detection or prevention of ...H04W 12/37 Managing security policies ...
