Secure execution of unsecured apps on a device

摘要

Given the volume of apps being developed and downloaded, performing operations to enable security for mobile devices, such as locating relevant classes and substituting different classes, can become very inefficient when done to a very high number of apps. In the invention, a device is enabled with an app security enforcement layer. The consumer can download unsecured apps and have the app execute on the phone in a secure manner, where potential data loss to the device, such as a smart phone or tablet, is minimized. To make the security wrapping process more efficient, an app template containing markers is created. This template is merged with data in an active user policy or is used to randomize or obfuscate the code to add more security. The process of security wrapping an app becomes more efficient.

主权项

1. A method of securing an app for execution on a device using a security program, the method comprising:
obtaining core object code of the app, wherein a digital signature is removed from the app and said core object code of the app is stored in a data storage component; generating Java class files for an app security program, said generating dictated by a plurality of app security policies and wherein said generating is performed by a processor; replacing Java class files for the app with the Java class files for the app security program, wherein the Java class files for the app that are being replaced function as a proxy between the app and a device operating system and wherein a security-wrapped app is created and wherein said replacing is performed by the processor; creating an app template; preparing the security-wrapped app for execution on the device, said preparing performed by the processor; modifying the app template; and re-signing the security-wrapped app with a new key, wherein a user policy to control and secure access to data is implemented on the device.