Browse Prior Art Database

A security method and apparatus for container-assembly based mobile application in cloud environment

IP.com Disclosure Number: IPCOM000248289D
Publication Date: 2016-Nov-15

Publishing Venue

The IP.com Prior Art Database

Abstract

With the development of smart phone, mobile applications are more and more closely to the people’s daily life. A statistic presents average 30+ applications are installed on each mobile device with lots of private user data stored in mobile. More applications mean more security issue and conflict such as information leakage by rogue security software, application data leakage.. The mobile storage limitation and big storage occupation of application also became a big problem. More and more end user need a system/solution to resolve the above application private data security and usage problems.

This text was extracted from a PDF file.
This is the abbreviated version, containing approximately 50% of the total text.

Page 01 of 11

A security method and apparatus for container-assembly based mobile application in cloud environment

Core Idea: The core idea is to generate a container-assembly based system, it will

Automatically split the application into three layer: Authentication layer, Application data layer and Pure application layer.

Authentication layer: isolate and store the user authorization data for group management in local mobile container.

Application data layer: isolate and store the application user data in separate mobile container for protection.

Pure app layer: isolate and store the application nature package for merging and reuse

Offer end user a flexibility selection to delete the split application nature package and upload it into a container based cloud system for fast downloading and reuse to reduce mobile storage problem

Merge the authentication data, user data and application package to run as a whole software when the user start and use the application

Unify multiple applications login with an unified password by authentication data layer to enhance the security and the convenient of authentication

Claim points:

A container-assembly based system that has an authentication layer to isolate and store the authentication data from application

A container-assembly based system that has an authentication layer to unify multiple applications login with an unified password

A container-assembly based system that has an application data layer to isolate and store the application user data from application

A container-assembly based system that has an pure app layer to isolate and store the application nature package from application

1


Page 02 of 11

A container-assembly based system that can allow user to upload the split nature application package into a cloud system container for fast downloading and reuse

A container-assembly based system that can merge the authentication data, user data and application package to run as a whole software.

Note: The method applies to the applications need user and password authorization. (Not for the non-authorization applications as well as certification authorization applications)

2


Page 03 of 11

Mobile end user either can download the server kit standalone or trigger the kit download process when download Apps. This container server kit will help to:

3


Page 04 of 11

Enable Group authentication


Disassembly Mobile App into three containers and assembly 3 containers into one Mobile App
The kit includes:
A server which is a type of long-running program called a daemon process
A REST Application Program Interface which specifies interfaces that programs can use to talk to the daemon and instruct it what to do A command line interface(CLI) client.

4


Page 05 of 11

Group authentication

5


Page 06 of 11

The applications authentication are managed at Group level via Embedded mobile container kit.


1. Group Pre-definer


End users (usually they are the mobile device owner) defines a dedicated group according to their prefe...