Controlling Incoming Data Processing Requests

摘要

Aspects described herein relate to controlling incoming data processing requests or messages and whether the incoming data processing requests are allowed to reach destination applications unmodified. The destination application may be a secure application operating within a secure application wrapper, and the secure application wrapper may determine whether and how much of the request or message is allowed to pass into a managed partition or through the secure application wrapper to reach the secure application for processing.

主权项

1. A method, comprising:
receiving, by a secure application wrapper implemented on a computing device comprising a processor, a message containing data, the message indicating an action to perform on the data and a destination application within the secure application wrapper on the computing device; determining, by the secure application wrapper, whether the action corresponds to receiving data from another application to process in the destination application; responsive to determining that the action corresponds to receiving data from another application to process in the destination application, determining, by the secure application wrapper, an application source of the data; determining, by the secure application wrapper, a security level associated with the application source of the data; and determining, by the secure application wrapper and based on the security level associated with the application source of the data, whether to allow the message to pass unmodified to the destination application to process the data according to the action.