CN101287227B - Mobile communication terminal and method for preventing rollback of software security grade - Google Patents
Mobile communication terminal and method for preventing rollback of software security grade Download PDFInfo
- Publication number
- CN101287227B CN101287227B CN2008101123696A CN200810112369A CN101287227B CN 101287227 B CN101287227 B CN 101287227B CN 2008101123696 A CN2008101123696 A CN 2008101123696A CN 200810112369 A CN200810112369 A CN 200810112369A CN 101287227 B CN101287227 B CN 101287227B
- Authority
- CN
- China
- Prior art keywords
- terminal
- software
- security
- level
- mobile phone
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
- 238000010295 mobile communication Methods 0.000 title claims abstract description 24
- 238000000034 method Methods 0.000 title claims abstract description 19
- 230000000593 degrading effect Effects 0.000 abstract 2
- 238000005336 cracking Methods 0.000 description 4
- 230000008569 process Effects 0.000 description 3
- 238000010586 diagram Methods 0.000 description 2
- 238000003825 pressing Methods 0.000 description 2
- 230000000750 progressive effect Effects 0.000 description 2
- 230000009286 beneficial effect Effects 0.000 description 1
- 238000004891 communication Methods 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 238000005516 engineering process Methods 0.000 description 1
- 230000006870 function Effects 0.000 description 1
- 230000006872 improvement Effects 0.000 description 1
- 230000007246 mechanism Effects 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 238000012545 processing Methods 0.000 description 1
- GOLXNESZZPUPJE-UHFFFAOYSA-N spiromesifen Chemical compound CC1=CC(C)=CC(C)=C1C(C(O1)=O)=C(OC(=O)CC(C)(C)C)C11CCCC1 GOLXNESZZPUPJE-UHFFFAOYSA-N 0.000 description 1
Images
Landscapes
- Mobile Radio Communication Systems (AREA)
Abstract
The present invention provides a mobile communication terminal and a method for preventing the degrading of the security level of software. The method includes that the security level of the terminal is stored in a memory of the mobile communication terminal and the terminal security level is the upmost software security level ever used by the terminal; after the terminal is started up, the security level of the software in the terminal and the terminal security level are compared and if the security level of the software in the terminal is lower than the terminal security level, the software is prohibited to operate. If the security level of the software installed on the terminal is higher or equal to the security level of the terminal, the software is allowed to run, and the security level of the software is used as the security level of the terminal to be written in the memory of the terminal. The mobile communication terminal and the method for preventing the degrading of the security level of software can effectively prevent hackers from downloading the software version with low security level from the terminal and then declassifying the software and increase the use security of the terminals such as the mobile phone.
Description
Technical field
The present invention relates to the fail safe of mobile communication terminal, particularly about a kind of mobile communication terminal and prevent the method for rollback of software security grade.
Background technology
In the development process of the software (as operating system software) of mobile communication terminals such as mobile phone, Personal Handyphone System, PDA, along with some prevent the adding of the safety function that mobile communication terminal is cracked, the level of security of software can progressively improve.But the software security grade of lowest version is lower, easier cracking.Therefore, in the prior art, the hacker might install other software version of low level security earlier in order to crack mobile phone on the mobile phone that high level of security software has been installed, utilize again other software of low level security of installing carry out mobile phone etc. crack.Therefore, even other cell phone software of higher security level is arranged at present, but the fail safe of mobile phone still is difficult to guarantee.
Summary of the invention
In view of this, one of purpose of the present invention is to provide a kind of mobile communication terminal, the fail safe that improves mobile communication terminal by the level of security rollback of forbidding mobile communication terminal softwares such as mobile phone.
Another object of the present invention is to provide a kind of method that prevents rollback of software security grade of mobile communication terminal, to improve the safety in utilization of terminal.
To achieve these goals, the embodiment of the invention provides a kind of mobile communication terminal, and this mobile communication terminal comprises:
Terminal security rank memory cell is used for the storage terminal level of security, and this terminal security rank is this terminal the highest used software security grade; And
The running software control unit, the level of security and the terminal security rank that are used for opening after (as pressing the start key) installed software on this terminal relatively in terminal, if the level of security of installed software is lower than described terminal security rank on this terminal, then forbid this running software.If described running software control unit is judged the level of security of installed software on this terminal and is greater than or equal to described terminal security rank, then allow this running software, and write in the memory of terminal as the terminal security rank with the level of security of this software.
The embodiment of the invention also provides a kind of method that prevents rollback of software security grade of mobile communication terminal, and this method comprises:
Storage terminal level of security in the memory of mobile communication terminal, this terminal security rank are this terminal the highest used software security grade; And
Terminal is opened after (as pressing the start key) level of security and the terminal security rank of installed software on this terminal relatively, if the level of security of installed software is lower than described terminal security rank on this terminal, then forbids this running software.If the level of security of installed software is greater than or equal to described terminal security rank on this terminal, then allows this running software, and write in the memory of terminal as the terminal security rank with the level of security of this software.
The mobile communication terminal of the embodiment of the invention and prevent the method for rollback of software security grade can prevent effectively that the hacker from downloading other software version of low level security earlier and cracking in terminal, improves the fail safe that terminal such as mobile phone is used.
Description of drawings
Accompanying drawing described herein is used to provide further understanding of the present invention, constitutes the application's a part, does not constitute limitation of the invention.In the accompanying drawings:
Fig. 1 is the structural representation of existing mobile phone;
Fig. 2 is the structural representation of mobile phone of the present invention;
Fig. 3 prevents the schematic flow sheet of cell phone software level of security rollback for the realization of the embodiment of the invention;
Mobile phone screen schematic diagram when Fig. 4 can't open for the mobile phone of one embodiment of the invention;
Mobile phone screen schematic diagram when Fig. 5 can't open for the mobile phone of another embodiment of the present invention.
Embodiment
For making the purpose, technical solutions and advantages of the present invention clearer, specific embodiments of the invention are elaborated below in conjunction with accompanying drawing.At this, illustrative examples of the present invention and explanation thereof are used to explain the present invention, but not as a limitation of the invention.
Be that the present invention will be described for example below with the mobile phone.
The spirit of present embodiment is to provide a kind of mechanism, behind the software of the too high level of security of mobile phone-downloaded, download other software of low level security once more and then do not allow to move other software of this low level security, if this software is mobile phone operating system software, then mobile phone can not be started shooting.Can prevent effectively that like this hacker from downloading other software version of low level security earlier and cracking in mobile phone.
For the rollback of the level of security of realizing preventing cell phone software (for example being mobile phone operating system software), the present invention need write down this mobile phone the highest used software security grade in mobile phone.This highest level of security can be recorded in the memory of mobile phone, can not be repeated erasable after this memory is preferably in and has write, for example described memory can be one-time programming (OTP, One Time Programmable) memory, this otp memory is a kind ofly can not be repeated erasable memory, and each bit can only be write once.
Simultaneously, for convenience, in the present embodiment, software security grade represents to write on the level of security of this software version in the software.The mobile phone level of security is represented to write in the mobile phone otp memory, mobile phone the highest used software security grade.
Write down the mobile phone level of security in mobile phone after, the realization of present embodiment prevents that the follow-up flow process of cell phone software (for example being mobile phone operating system software) level of security rollback can be with reference to Fig. 3.As shown in Figure 3, this flow process is specially:
Whether step 303 judges software security grade less than the mobile phone level of security, be then to enter step 307, otherwise progressive step 304.
Whether step 304 judges software security grade greater than the mobile phone level of security, is then progressive step 305, otherwise enters step 306.
As mentioned above as can be known, after mobile phone was started shooting and operated, at first comparison software level of security and mobile phone level of security if software security grade is greater than or equal to the mobile phone level of security, then write mobile phone to software security grade, and normal boot-strap; If software security grade is lower than the mobile phone level of security, then controlling mobile phone can not normal boot-strap.So, just realized preventing the rollback of cell phone software level of security, thereby realized use control, prevented that effectively the hacker from downloading other software version of low level security earlier and cracking in terminal, improved the fail safe of terminal uses such as mobile phone software with different level of securitys.
In order to realize the method that prevents rollback of software security grade as above, the structure of the mobile phone in the present embodiment as shown in Figure 2, the structure (structure of existing mobile phone as shown in Figure 1) of this mobile phone except having existing mobile phone, as parts such as central processing unit, display, input part, wireless communication module, message module, also be provided with: terminal security rank memory cell (as otp memory) is used for the memory mobile phone level of security; And
The running software control unit is used for after mobile phone is opened the level of security and the terminal security rank of installed software on this terminal relatively, if the level of security of installed software is lower than described terminal security rank on this terminal, then forbids the mobile phone normal boot-strap.If described running software control unit is judged the level of security of installed software on this terminal and is greater than or equal to described terminal security rank, then allow this running software, make the mobile phone normal boot-strap, and write in the OPT memory of terminal as the terminal security rank with the level of security of this software.
As above only be that example describes the present invention, but the present invention is not limited to mobile phone, and can also is other mobile communication terminals such as PDA, Personal Handyphone System with the mobile phone.
One of ordinary skill in the art will appreciate that all or part of step that realizes in the foregoing description method can instruct relevant hardware to finish by program, this program can be stored in the computer read/write memory medium, such as ROM/RAM, magnetic disc, CD etc.
Above-described specific embodiment; purpose of the present invention, technical scheme and beneficial effect are further described; institute is understood that; the above only is specific embodiments of the invention; and be not intended to limit the scope of the invention; within the spirit and principles in the present invention all, any modification of being made, be equal to replacement, improvement etc., all should be included within protection scope of the present invention.
Claims (6)
1. the method that prevents rollback of software security grade of a mobile communication terminal is characterized in that, this method comprises:
Storage terminal level of security in the memory of mobile communication terminal, this terminal security rank are this terminal the highest used software security grade;
The relatively level of security and the terminal security rank of installed software on this terminal after terminal is opened, if the level of security of this installed software is lower than described terminal security rank, then this software operation that is under an embargo; If the level of security of installed software is greater than or equal to described terminal security rank on this terminal, then allows this running software, and write in the memory of terminal as the terminal security rank with the level of security of this software.
2. method according to claim 1 is characterized in that:
Described software is operating system software.
3. method according to claim 1 is characterized in that:
Described memory is the one-time programming otp memory.
4. a mobile communication terminal comprises the terminal body, it is characterized in that, this terminal also comprises:
Terminal security rank memory cell is used for the storage terminal level of security, and this terminal security rank is this terminal the highest used software security grade; And
The running software control unit is used for after terminal is opened the level of security and the terminal security rank of installed software on this terminal relatively, if the level of security of installed software is lower than described terminal security rank on this terminal, then forbids this running software; Be greater than or equal to described terminal security rank if judge the level of security of installed software on this terminal, then allow this running software, and write in the memory of terminal as the terminal security rank with the level of security of this software.
5. mobile communication terminal according to claim 4 is characterized in that:
Described software is operating system software.
6. mobile communication terminal according to claim 4 is characterized in that:
Described memory is the one-time programming otp memory.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2008101123696A CN101287227B (en) | 2008-05-22 | 2008-05-22 | Mobile communication terminal and method for preventing rollback of software security grade |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2008101123696A CN101287227B (en) | 2008-05-22 | 2008-05-22 | Mobile communication terminal and method for preventing rollback of software security grade |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN101287227A CN101287227A (en) | 2008-10-15 |
| CN101287227B true CN101287227B (en) | 2011-11-09 |
Family
ID=40059145
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2008101123696A Expired - Fee Related CN101287227B (en) | 2008-05-22 | 2008-05-22 | Mobile communication terminal and method for preventing rollback of software security grade |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101287227B (en) |
Families Citing this family (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2014000696A1 (en) * | 2012-06-28 | 2014-01-03 | 北京奇虎科技有限公司 | Security detection method and system for android application program |
| CN102779257B (en) * | 2012-06-28 | 2015-10-07 | 北京奇虎科技有限公司 | A kind of safety detection method of Android application program and system |
| US8978160B2 (en) * | 2012-09-12 | 2015-03-10 | GM Global Technology Operations LLC | Method for selective software rollback |
| CN112463721A (en) * | 2020-12-18 | 2021-03-09 | 中国计量大学上虞高等研究院有限公司 | High-reliability offline protection system and configuration method of embedded SoC software |
Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1913701A (en) * | 2005-08-08 | 2007-02-14 | 北京三星通信技术研究有限公司 | Method for providing different safety class service to different user in mobile communication system |
| CN101115249A (en) * | 2006-07-27 | 2008-01-30 | 三星电子株式会社 | Event processing device and method for mobile communication terminal |
-
2008
- 2008-05-22 CN CN2008101123696A patent/CN101287227B/en not_active Expired - Fee Related
Patent Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1913701A (en) * | 2005-08-08 | 2007-02-14 | 北京三星通信技术研究有限公司 | Method for providing different safety class service to different user in mobile communication system |
| CN101115249A (en) * | 2006-07-27 | 2008-01-30 | 三星电子株式会社 | Event processing device and method for mobile communication terminal |
Also Published As
| Publication number | Publication date |
|---|---|
| CN101287227A (en) | 2008-10-15 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| KR101206740B1 (en) | Mobile terminal for controling execution of application and method thereof | |
| US8281169B2 (en) | Method and system for power management for a handheld mobile electronic device executing-in-place an application kernel from execute-in-place non-volatile memory (XIP NVM) | |
| US8225393B2 (en) | Apparatus for restricting access to application module in mobile wireless device and method of restricting access to application module using the same | |
| US20170124355A1 (en) | System processing method, system processing device and terminal | |
| CN101287227B (en) | Mobile communication terminal and method for preventing rollback of software security grade | |
| CN104516806A (en) | Power consumption information detection result display method and system for mobile terminal | |
| KR20040015704A (en) | System and method for temporary application component deletion and reload on a wireless device | |
| WO2013184799A1 (en) | Evaluating whether to block or allow installation of a software application | |
| CN104461749A (en) | Application program synchronization method and device of multi-system terminal and terminal | |
| CN103905641B (en) | A kind of method preventing mobile phone flow from escaping | |
| US20130198872A1 (en) | Method for component access control and electronic device | |
| CN107748685A (en) | Application program launching control method, device, terminal device and storage medium | |
| CN103218552B (en) | Based on method for managing security and the device of user behavior | |
| CN102567135B (en) | Refreshing/recovering method and electronic equipment | |
| CN105843653A (en) | TA (trusted application) configuration method and device | |
| CN102810139B (en) | Secure data operation method and communication terminal | |
| CN105573837A (en) | Method and device for controlling multi-system mobile terminal | |
| CN101610500A (en) | Mobile phone data retrieving method, mobile phone and mobile phone data retrieving system | |
| US9245112B2 (en) | Apparatus and method for managing entitlements to program code | |
| CN106326018A (en) | Data access method and terminal | |
| CN103428370B (en) | Mobile phone and multi-user control method thereof | |
| CN102135857A (en) | Control method for opening application and terminal thereof | |
| CN106951771B (en) | Mobile terminal using method of android operating system | |
| CN104462890A (en) | Application authority management method under Android platform | |
| CN114546501B (en) | Method for starting Linux operating system in physical read-only disk |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CF01 | Termination of patent right due to non-payment of annual fee | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20111109 Termination date: 20200522 |