Enhancing container security by performing container vulnerability reduction based on static analysis of dynamically loaded symbols and system call blocking
US-2024220632-A1 · Jul 4, 2024 · US
Apparatus and method for processing application package in portable terminal
US9330253B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-9330253-B2 |
| Application number | US-201213452776-A |
| Country | US |
| Kind code | B2 |
| Filing date | Apr 20, 2012 |
| Priority date | Apr 25, 2011 |
| Publication date | May 3, 2016 |
| Grant date | May 3, 2016 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
An apparatus and method for improving the security of an application package from a user abnormally acquiring a system supreme authority in a portable terminal are provided. The apparatus includes an application manager for, at application package generation, collecting data for package generation, performing a compiling process for the collected data, encrypting an execution file of the application package among the compiled data, and packaging the compiled data comprising the encrypted execution file.
First claim
Opening claim text (preview).
What is claimed is: 1. A portable terminal apparatus, the apparatus comprising: a memory configured to store at least one of a non-encrypted application package comprising a non-encrypted execution file or an encrypted application package comprising an encrypted execution file; and a controller coupled to the memory and configured to: if an application package stored in the memory is selected, determine whether the selected application package is encrypted using a file extension of an execution file comprised in the selected application package, if the selected application package is non-encrypted, execute the selected application package using the execution file comprised in the selected application package, if the selected application package is encrypted, decrypt the encrypted execution file and execute the selected application package using the decrypted execution file comprised in the selected application package, wherein the encrypted application package comprises a changed file extension according to the encrypted execution file, and upon generation of the application package, collect data for the generation of the application package, perform a compiling process for the collected data, encrypt the execution file of the application package among the compiled data, change the file extension of the encrypted execution file, and generate the application package comprising the encrypted execution file. 2. The portable terminal apparatus of claim 1 , wherein the encrypted execution file comprises at least one of a source code, a resource, an asset, and a manifest, which are necessary for the application package generation. 3. The portable terminal apparatus of claim 1 , wherein the controller is further configured to decrypt the encrypted execution file using authentication information. 4. The portable terminal apparatus of claim 3 , wherein, when the authentication information is information inaccessible to the application package, the controller is further configured to restrict an execution of the application package. 5. The portable terminal apparatus of claim 1 , wherein the controller is further configured to generate authentication information permitting access to the encrypted execution file. 6. A method for processing an application package in a portable terminal, the method comprising: storing at least one of a non-encrypted application package comprising a non-encrypted execution file or an encrypted application package comprising an encrypted execution file, if an application package stored in a memory is selected, determining whether the selected application package is encrypted using a file extension of an execution file comprised in the selected application package, if the selected application package is non-encrypted, executing the selected application package using the execution file comprised in the selected application package, if the selected application package is encrypted, decrypting the encrypted execution file and executing the selected application package using the decrypted execution file comprised in the selected application package, wherein the encrypted application package comprises a changed file extension according to the encrypted execution file, and upon generation of the application package, collecting data for the generation of the application package, performing a compiling process for the collected data, encrypting the execution file of the application package among the compiled data, changing the file extension of the encrypted execution file, and generating the application package comprising the encrypted execution file. 7. The method of claim 6 , wherein the encrypted execution file comprises at least one of a source code, a resource, an asset, and a manifest, which are necessary for the application package generation. 8. The method of claim 6 , wherein decrypting the encrypted execution file comprises: decrypting the encrypted execution file using authentication information. 9. The method of claim 8 further comprising: when the authentication information is information inaccessible to the application package, restricting an execution of the application package. 10. The method of claim 6 , further comprising generating authentication information permitting access to the encrypted execution file. 11. A non-transitory computer readable medium embodying a computer program, the computer program comprising computer readable program code that when executed causes at least one processing device to store at least one of a non-encrypted application package comprising a non-encrypted execution file or an encrypted application package comprising an encrypted execution file, if an application package stored in a memory is selected, determining whether the selected application package is encrypted using a file extension of an execution file comprised in the selected application package, if the selected application package is non-encrypted, executing the selected application package using the execution file comprised in the selected application package, if the selected application package is encrypted, decrypting the encrypted execution file and executing the selected application package using the decrypted execution file comprised in the selected application package, wherein the encrypted application package comprises a changed file extension according to the encrypted execution file, upon generation of the application package, collect data for the generation of the application package and perform a compiling process for the collected data, encrypt the execution file of the application package among the compiled data, and change a format of the encrypted execution file including the file extension, package the compiled data comprising the encrypted execution file, and wherein, when an application package is executed, the execution file of the executed application package is identified as encrypted based on the format of the execution file. 12. The non-transitory computer readable medium of claim 11 , wherein the computer program further comprises computer readable program code that when executed causes at least one processing device to determine whether the execution file of an application package intended for execution has been encrypted, provide the encrypted execution file to the encryption unit, and decrypt the encrypted execution file. 13. The non-transitory computer readable medium of claim 12 , wherein the computer program further comprises computer readable program code that when executed causes at least one processing device to drive the decrypted execution file and drive the application package. 14. The non-transitory computer readable medium of claim 12 , wherein the computer program further comprises computer readable program code that when executed causes at least one processing device to generate authentication information permitting access to the encrypted execution file. 15. The non-transitory computer readable medium of claim 12 , wherein, after acquiring previously stored authentication information, the computer program further comprises computer readable program code that when executed causes at least one processing device to identify whether the acquired authentication information is information accessible to the application package. 16. The non-transitory computer readable medium of claim 15 , wherein, when the acquired authentication information is information inaccessible to the application package, the computer program further comprises computer readable program code that when executed causes at least one processing dev
Assignees
Inventors
Classifications
- G06F21/51Primary
at application loading time, e.g. accepting, rejecting, starting or inhibiting executable software based on integrity or source reliability · CPC title
Protecting distributed programs or content, e.g. vending or licensing of copyrighted material (protection in video systems or pay television H04N7/16) {; Digital rights management [DRM]} · CPC title
by manipulating the program code, e.g. source code, compiled code, interpreted code, machine code · CPC title
to assure secure computing or processing of information · CPC title
- H04B1/40Primary
Circuits · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US9330253B2 cover?
- An apparatus and method for improving the security of an application package from a user abnormally acquiring a system supreme authority in a portable terminal are provided. The apparatus includes an application manager for, at application package generation, collecting data for package generation, performing a compiling process for the collected data, encrypting an execution file of the applic…
- Who is the assignee on this patent?
- Lee Sang-Cheol, Lee Seung-Hwan, Samsung Electronics Co Ltd
- What technology area does this patent fall under?
- Primary CPC classification G06F21/51. Mapped technology areas include Physics.
- When was this patent published?
- Publication date Tue May 03 2016 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 8 related publications on this page (citations in our corpus or others sharing the same primary CPC).