Method and system for application-based policy monitoring and enforcement on a mobile device

摘要

A method and system for application-based monitoring and enforcement of security, privacy, performance and/or other policies on a mobile device includes incorporating monitoring and policy enforcement code into a previously un-monitored software application package that is installable on a mobile device, and executing the monitoring and policy enforcement code during normal use of the software application by a user of the mobile device.

主权项

1. A method comprising:
detecting, during execution of a software application by a mobile device on which an operating system is running, as a result of a non-operating system software routine comprising redirecting code interfacing with the software application after a user-initiated launch of the software application and prior to the execution of the software application, the software application initiating a system call to the operating system, the redirecting code enabling the detecting of the initiating of the system call by replacing an address associated with the system call with an address of intercepting code; and prior to execution of the system call by the operating system: determining, by executing the intercepting code to pass an argument of the system call to application monitoring code, whether the software application is attempting to perform a potentially unauthorized activity; and determining, by executing the application monitoring code to evaluate the argument of the system call, whether to execute the system call in response to determining whether the software application is attempting to perform a potentially unauthorized activity.