阅读说明：本技术 一种应用程序管控方法、装置、电子设备和存储介质 (Application program control method and device, electronic equipment and storage medium ) 是由 冯超 于 2021-08-20 设计创作，主要内容包括：本发明实施例公开了一种应用程序管控方法、装置、电子设备和存储介质；可以获取目标应用程序所在的目标电子设备的目标设备信息以及目标应用程序的目标程序信息,根据目标设备信息,确定目标设备信息对应的应用程序管控策略,应用程序管控策略包括对至少一种应用程序的权限管控策略,根据目标程序信息,从应用程序管控策略中的权限管控策略中,选择目标应用程序对应的目标权限管控策略,根据目标权限管控策略,管控目标应用程序对目标电子设备的使用权限；可以无需用户手动对电子设备上的每个应用程序的权限进行管控,在电子设备的用户可以正常使用应用程序的基础上,自动管控电子设备中安装的应用程序的权限。(The embodiment of the invention discloses an application program control method, an application program control device, electronic equipment and a storage medium; the method comprises the steps that target device information of target electronic equipment where a target application program is located and target program information of the target application program can be obtained, application program control strategies corresponding to the target device information are determined according to the target device information, the application program control strategies comprise authority control strategies for at least one application program, the target authority control strategies corresponding to the target application program are selected from the authority control strategies in the application program control strategies according to the target program information, and the use authority of the target electronic equipment by the target application program is controlled according to the target authority control strategies; the authority of each application program on the electronic equipment can be controlled without manual operation of a user, and the authority of the application program installed in the electronic equipment is automatically controlled on the basis that the user of the electronic equipment can normally use the application program.)

1. An application management and control method is characterized by comprising the following steps:

acquiring target equipment information of target electronic equipment where a target application program is located and target program information of the target application program;

determining an application program management and control strategy corresponding to the target device information according to the target device information, wherein the application program management and control strategy comprises a permission management and control strategy for at least one application program;

according to the target program information, selecting a target authority control strategy corresponding to the target application program from authority control strategies in the application program control strategies;

and controlling the use permission of the target application program to the target electronic equipment according to the target permission control strategy.

2. The method according to claim 1, wherein before determining, according to the device information, an application management policy corresponding to the device information, the method further includes:

acquiring authority setting information of each application program in each electronic device and device information of each electronic device, wherein at least one application program is deployed in the electronic device;

classifying the permission setting information according to the equipment information of each electronic equipment to obtain application program control information corresponding to each equipment information;

and performing information analysis based on the application program management and control information corresponding to the equipment information to obtain an application program management and control strategy corresponding to the equipment information.

3. The method according to claim 2, wherein before performing information analysis based on the application management and control information corresponding to each piece of device information to obtain the application management and control policy corresponding to each piece of device information, the method further includes:

acquiring running record information of each application program when the application program runs in each electronic device;

classifying the operation record information according to the equipment information of each electronic equipment to obtain application program operation information corresponding to each equipment information;

the information analysis is performed based on the application program management and control information corresponding to each piece of device information to obtain an application program management and control policy corresponding to each piece of device information, and the method includes:

and performing information analysis based on application program management and control information and application program running information corresponding to the equipment information to obtain an application program management and control strategy corresponding to the equipment information.

4. The method for managing and controlling the application programs according to claim 1, wherein the target electronic device is logged in a target user account, and before managing and controlling the usage right of the target electronic device by the target application program according to the target right management policy, the method further comprises:

acquiring historical program control information of the target user account, wherein the historical program control information comprises authority control information of the target user to at least one application program;

the controlling the use authority of the target application program on the target electronic equipment according to the target authority control strategy comprises the following steps:

and controlling the use permission of the target application program to the target electronic equipment based on the historical program control information and the target permission control strategy.

5. The application management and control method according to claim 1, wherein the target application includes at least one application installed in the target electronic device;

selecting a target authority control policy corresponding to the target application program from authority control policies in the application program control policies according to the target program information, including:

selecting a target authority control strategy corresponding to each target application program from authority control strategies in the application program control strategies according to target program information corresponding to each target application program;

the controlling the use authority of the target application program on the target electronic equipment according to the target authority control strategy comprises the following steps:

and controlling the use permission of each target application program on the target electronic equipment according to the target permission control strategy corresponding to each target application program.

6. The application management and control method according to claim 1, further comprising:

acquiring program permission closing information and permission use information of the target application program in the target electronic equipment, wherein the program permission closing information is used for indicating the permission that the application program cannot be used;

and based on the permission closing information and the permission using information, the use permission of the target application program to the target electronic equipment is controlled again.

7. The application management and control method according to claim 1, further comprising:

acquiring resource occupation information of the target electronic equipment and required resource information of the target application program;

and analyzing based on the resource occupation information and the required resource information, and controlling the use permission of the target application program to the target electronic equipment again according to an analysis result.

8. An application management and control apparatus, comprising:

the information acquisition unit is used for acquiring target device information of a target electronic device where a target application program is located and target program information of the target application program;

the policy determining unit is configured to determine, according to the target device information, an application management and control policy corresponding to the target device information, where the application management and control policy includes a permission management and control policy for at least one application;

the policy selection unit is used for selecting a target authority control policy corresponding to the target application program from authority control policies in the application program control policies according to the target program information;

and the authority control unit is used for controlling the use authority of the target application program on the target electronic equipment according to the target authority control strategy.

9. An electronic device comprising a memory and a processor; the memory stores an application program, and the processor is configured to execute the application program in the memory to perform the steps of the application program management method according to any one of claims 1 to 7.

10. A computer readable storage medium storing a plurality of instructions, the instructions being suitable for being loaded by a processor to execute the steps of the application management method according to any one of claims 1 to 7.

Technical Field

The invention relates to the technical field of communication, in particular to an application program control method and device, electronic equipment and a storage medium.

Background

With the rapid development of current economy, users of electronic devices are more and more. People can install application programs with various functions in the electronic equipment to perform operations such as communication, entertainment, information recording and the like.

Currently, for an application installed on an electronic device, an application provider generally defaults to opening a right to use a resource of the electronic device in the electronic device or a user manually controls the right of the application. Some users may not know the authority of some applications, and when the authority of the application program is closed, some functions of the application program may not be used, or the authority of the application program is blindly opened, so that the application program may infringe user privacy and the like, and user experience is affected.

Disclosure of Invention

The embodiment of the invention provides an application program control method and device, electronic equipment and a storage medium, which can automatically control the authority of an application program installed in the electronic equipment on the basis that a user of the electronic equipment can normally use the application program without manually controlling the authority of each application program on the electronic equipment by the user.

The embodiment of the invention provides an application program control method, which comprises the following steps:

acquiring target equipment information of target electronic equipment where a target application program is located and target program information of the target application program;

determining an application program management and control strategy corresponding to the target device information according to the target device information, wherein the application program management and control strategy comprises a permission management and control strategy for at least one application program;

according to the target program information, selecting a target authority control strategy corresponding to the target application program from authority control strategies in the application program control strategies;

and controlling the use permission of the target application program to the target electronic equipment according to the target permission control strategy.

Correspondingly, an embodiment of the present invention provides an application management and control apparatus, including:

the information acquisition unit is used for acquiring target device information of a target electronic device where a target application program is located and target program information of the target application program;

the policy determining unit is configured to determine, according to the target device information, an application management and control policy corresponding to the target device information, where the application management and control policy includes a permission management and control policy for at least one application;

the policy selection unit is used for selecting a target authority control policy corresponding to the target application program from authority control policies in the application program control policies according to the target program information;

and the authority control unit is used for controlling the use authority of the target application program on the target electronic equipment according to the target authority control strategy.

Optionally, before the policy determining unit, a policy generating unit is further included, configured to obtain permission setting information of each application program in each electronic device and device information of each electronic device, where at least one application program is deployed in the electronic device;

classifying the permission setting information according to the equipment information of each electronic equipment to obtain application program control information corresponding to each equipment information;

and performing information analysis based on the application program management and control information corresponding to the equipment information to obtain an application program management and control strategy corresponding to the equipment information.

Optionally, the policy generating unit further includes an operation information obtaining unit, configured to obtain operation record information of each application program when the application program runs in each electronic device;

classifying the operation record information according to the equipment information of each electronic equipment to obtain application program operation information corresponding to each equipment information;

the policy generation unit is configured to perform information analysis based on application management and control information and application running information corresponding to each piece of device information, and obtain an application management and control policy corresponding to each piece of device information.

Optionally, before the permission management and control unit, the application management and control device provided in the embodiment of the present invention further includes a historical management and control information obtaining unit, configured to obtain historical program management and control information of the target user account, where the historical program management and control information includes permission management and control information of the target user on at least one application program;

and the permission management and control unit is used for managing and controlling the use permission of the target application program on the target electronic equipment based on the historical program management and control information and the target permission management and control strategy.

Optionally, the target application includes at least one application installed in the target electronic device, and the policy selection unit is configured to select, according to target program information corresponding to each target application, a target permission management policy corresponding to each target application from permission management policies in the application management policies;

the permission control unit is configured to control, according to the target permission control policy corresponding to each target application program, usage permission of each target application program on the target electronic device.

Optionally, the application management and control apparatus further includes an authority closing unit, configured to obtain program authority closing information and authority use information of the target application in the target electronic device, where the program authority closing information is used to indicate an authority that the application is not available;

and based on the permission closing information and the permission using information, the use permission of the target application program to the target electronic equipment is controlled again.

Optionally, the application program management and control apparatus provided in the embodiment of the present invention further includes a second permission management and control unit, configured to acquire resource occupation information of the target electronic device and required resource information of the target application program;

and analyzing based on the resource occupation information and the required resource information, and controlling the use permission of the target application program to the target electronic equipment again according to an analysis result.

Correspondingly, the embodiment of the invention also provides the electronic equipment, which comprises a memory and a processor; the memory stores application programs, and the processor is configured to run the application programs in the memory to perform the steps in any one of the application program management and control methods provided by the embodiments of the present invention.

In addition, an embodiment of the present invention further provides a computer-readable storage medium, where a plurality of instructions are stored, and the instructions are suitable for being loaded by a processor to perform steps in any one of the application management and control methods provided by the embodiments of the present invention.

By adopting the scheme of the embodiment of the invention, the target device information of the target electronic device where the target application program is located and the target program information of the target application program can be obtained, the application program control strategy corresponding to the target device information is determined according to the target device information, the application program control strategy comprises the authority control strategy for at least one application program, the target authority control strategy corresponding to the target application program is selected from the authority control strategies in the application program control strategy according to the target program information, and the use authority of the target electronic device by the target application program is controlled according to the target authority control strategy; because application program management and control policies corresponding to different device information are preset, and the application program management and control policies comprise at least one authority management and control policy for an application program, when a user of a target electronic device installs or starts to use the target application program, the authority of each application program on the electronic device can be managed and controlled without manual operation of the user, and the authority of the application program installed in the electronic device is automatically managed and controlled on the basis that the user of the electronic device can use the application program normally.

Drawings

In order to more clearly illustrate the technical solutions in the embodiments of the present invention, the drawings needed to be used in the description of the embodiments will be briefly introduced below, and it is obvious that the drawings in the following description are only some embodiments of the present invention, and it is obvious for those skilled in the art to obtain other drawings based on these drawings without creative efforts.

Fig. 1 is a schematic view of a scenario of an application management and control method according to an embodiment of the present invention;

fig. 2 is a flowchart of an application management and control method according to an embodiment of the present invention;

FIG. 3 is a schematic diagram illustrating cooperation of modules when an application manages and controls according to an embodiment of the present invention;

fig. 4 is a schematic technical implementation diagram of an application management and control method according to an embodiment of the present invention;

fig. 5 is a schematic structural diagram of an application management and control apparatus according to an embodiment of the present invention;

fig. 6 is another schematic structural diagram of an application management and control apparatus according to an embodiment of the present invention;

fig. 7 is a schematic structural diagram of an electronic device according to an embodiment of the present invention.

Detailed Description

The technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the drawings in the embodiments of the present invention, and it is obvious that the described embodiments are only a part of the embodiments of the present invention, and not all of the embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.

The embodiment of the invention provides an application program management and control method, an application program management and control device, electronic equipment and a computer readable storage medium. Specifically, the embodiment of the present invention provides an application management and control method suitable for an application management and control apparatus, which may be integrated in an electronic device.

The electronic device may be a terminal or other devices, including but not limited to a mobile terminal and a fixed terminal, for example, the mobile terminal includes but is not limited to a smart phone, a smart watch, a tablet computer, a notebook computer, a smart car, and the like, wherein the fixed terminal includes but is not limited to a desktop computer, a smart television, and the like.

The electronic device may also be a device such as a server, and the server may be an independent physical server, a server cluster or a distributed system formed by a plurality of physical servers, or a cloud server providing basic cloud computing services such as a cloud service, a cloud database, cloud computing, a cloud function, cloud storage, a Network service, cloud communication, a middleware service, a domain name service, a security service, a Content Delivery Network (CDN), and a big data and artificial intelligence platform, but is not limited thereto.

The application program management and control method of the embodiment of the invention can be realized by a server, and can also be realized by a terminal and the server together.

The following describes the method by taking an example in which the terminal and the server implement the application management and control method together.

As shown in fig. 1, the application management and control system provided by the embodiment of the present invention includes a terminal 10, a server 20, and the like; the terminal 10 and the server 20 are connected via a network, for example, a wired or wireless network connection, and the terminal 10 may exist as a terminal that transmits the target device information and the target program information to the server 20.

Among them, the terminal 10 may be a terminal that uploads target device information and target program information, and transmits the target device information and the target program information to the server 20.

The server 20 may be configured to obtain target device information of a target electronic device where a target application is located and target program information of the target application, determine an application management and control policy corresponding to the target device information according to the target device information, where the application management and control policy includes a permission management and control policy for at least one application, and select, according to the target device information, a target permission management and control policy corresponding to the target application from permission management and control policies in the application management and control policies.

The server 20 may send the target authority management policy to the terminal 10, and the terminal 10 may manage the usage authority of the target electronic device by the target application according to the target authority management policy.

The following are detailed below. It should be noted that the following description of the embodiments is not intended to limit the preferred order of the embodiments.

The embodiment of the present invention will be described from the perspective of an application management and control apparatus, which may be specifically integrated in a server or a terminal.

As shown in fig. 2, a specific process of the application management and control method of the embodiment may be as follows:

201. target device information of a target electronic device where a target application program is located and target program information of the target application program are obtained.

The target application is an application that needs to be managed, for example, the target application may be an application that is just installed in the target electronic device, or each application installed in the target electronic device may be managed as the target application when the application is started or run.

The target electronic device is an electronic device installed with a target application program, and may be, for example, a smart phone, a notebook computer, a smart television, and the like.

Specifically, the target device information may be a device model of the target electronic device, identification information of the target electronic device, and the like, for example, the target device information corresponding to a certain Mobile phone may be a device model of the Mobile phone and/or an IMEI (International Mobile Equipment Identity) code of the Mobile phone, and the like.

Optionally, the target program information of the target application program may be a version number of the target application program, a name of a right to be acquired, a right behavior performed when the right is specifically used, and the like.

202. And determining an application program management and control strategy corresponding to the target device information according to the target device information, wherein the application program management and control strategy comprises a permission management and control strategy for at least one application program.

The application management policy may include a permission management policy for one or more applications, for example, the application management policy may include permission management policies for an application a, an application B, and an application C.

The authority control policy may be a specific authority control instruction for turning on or turning off a certain authority or certain authorities. By executing the permission management instruction of a certain application program, the electronic device can control whether the application program can use the resource in the electronic device.

It can be understood that, a technician or an application management and control user may determine, in advance, permission setting policies for different applications in electronic devices of different models according to setting conditions of the applications in other electronic devices.

Therefore, before step 202, the method may further include:

acquiring authority setting information of each application program in each electronic device and device information of each electronic device, wherein at least one application program is deployed in the electronic device;

classifying the permission setting information according to the equipment information of each electronic equipment to obtain application program control information corresponding to each equipment information;

and performing information analysis based on the application program management and control information corresponding to the equipment information to obtain an application program management and control strategy corresponding to the equipment information.

Specifically, as shown in fig. 3, the permission setting information of each application program in each electronic device and the device information of each electronic device may be collected and reported through the client module, for example, the permission setting information may include a permission name for opening each application program, a permission behavior executed by using a permission, an operation package name called when using the permission, a version number of the application program, and the like, and the device information may include information such as a model of each electronic device. The client module can send the authority setting information of each application program in each electronic device and the device information of each electronic device to the big data analysis module for further processing.

The client module can be arranged in each electronic device. For example, each electronic device in which the application management client is installed may be a client module.

The big data analysis module can analyze the permission setting information of most users to the application program according to the permission setting information of each application program in each electronic device reported by the client and the device information of each electronic device and the model of the electronic device, and obtain an application program control strategy which is friendly to the users and customized for the users.

The big data analysis module may be disposed in the terminal, or may be disposed in the server, which is not limited in this respect. For example, the big data analysis module may be disposed in the same electronic device as the client module, or the big data analysis module may be disposed in a different electronic device than the client module, and so on.

Before the step of performing information analysis based on the application management and control information corresponding to each piece of device information to obtain the application management and control policy corresponding to each piece of device information, the method may further include:

acquiring running record information of each application program when the application program runs in each electronic device;

classifying the operation record information according to the equipment information of each electronic equipment to obtain application program operation information corresponding to each equipment information;

the information analysis is performed based on the application program management and control information corresponding to each piece of device information to obtain an application program management and control policy corresponding to each piece of device information, and the method includes:

and performing information analysis based on application program management and control information and application program running information corresponding to the equipment information to obtain an application program management and control strategy corresponding to the equipment information.

The running record information may include occupation conditions of resources such as a memory of the electronic device when each application runs, calling times of information such as pictures and texts stored in the electronic device and/or use conditions of the information such as the called pictures and texts, and the like.

Specifically, the big data analysis module can be used for sequencing the occupation ratio or the occupation amount of system resources in the starting process according to the application lists of all the applications, analyzing the influence of the behavior of each application on the safety of information in the electronic equipment and the resource consumption of the electronic equipment, obtaining authority control strategies for different application programs in the electronic equipment of different types, and generating application program control strategies corresponding to information of each equipment.

203. And selecting a target authority control strategy corresponding to the target application program from authority control strategies in the application program control strategies according to the target program information.

In some embodiments, there may be only one application that needs to be managed, and in other embodiments, at least two or all applications in the target electronic device may be managed at the same time.

That is, the target application includes at least one application installed in the target electronic device, and step 203 may include:

selecting a target authority control strategy corresponding to each target application program from authority control strategies in the application program control strategies according to target program information corresponding to each target application program;

correspondingly, the step of "controlling the usage right of the target electronic device by the target application program according to the target right control policy" may specifically include:

and controlling the use permission of each target application program on the target electronic equipment according to the target permission control strategy corresponding to each target application program.

Specifically, as shown in fig. 3, the cloud policy configuration module may obtain the corresponding optimal policy from the big data analysis module according to the device information of the electronic device, and issue the permission management and control policy to the electronic device. The electronic equipment can correspondingly set the permissions of a plurality of application programs installed on the machine according to the permission control strategy issued by the cloud policy configuration module.

In some optional examples, when a plurality of applications need to be managed and controlled simultaneously, a new completely new management and control policy for managing and controlling the plurality of applications may be generated based on the authority management and control policy corresponding to each application.

That is, the step "controlling the usage right of each target application to the target electronic device according to the target right control policy corresponding to each target application" may include:

generating a program overall management and control strategy according to the target authority management and control strategy corresponding to each target application program;

and controlling the use permission of each target application program to the target electronic equipment based on the program overall control strategy.

It can be understood that the overall program management and control policy may be obtained by directly splicing the target permission management and control policies, or by adjusting the target permission management and control policies corresponding to some or some target applications.

204. And controlling the use permission of the target application program to the target electronic equipment according to the target permission control strategy.

In order to make the authority control on the application program more conform to the use habit of the user, the authority of the target application program can be controlled by combining the authority setting of the user on various application programs in the past. Therefore, when the target electronic device logs in a target user account, before the step "manage and control the usage right of the target application program to the target electronic device according to the target right management and control policy", the application program management and control method provided by the embodiment of the present invention may further include:

acquiring historical program control information of the target user account, wherein the historical program control information comprises authority control information of the target user to at least one application program;

correspondingly, step 204 may include:

and controlling the use permission of the target application program to the target electronic equipment based on the historical program control information and the target permission control strategy.

For example, the target permission management policy only allows the target application to open permissions a and B, but the historical program management information of the target user indicates that the target user also opens permission C for other applications. At this time, the authority C of the target application program may also be opened.

It will be appreciated that some applications may use the rights to obtain sensitive information of the user after the rights have been opened, and some of their rights may be disabled for these applications. The application program management and control method provided by the embodiment of the invention further comprises the following steps:

acquiring program permission closing information and permission use information of the target application program in the target electronic equipment, wherein the program permission closing information is used for indicating the permission that the application program cannot be used;

and based on the permission closing information and the permission using information, the use permission of the target application program to the target electronic equipment is controlled again.

Wherein the program right closing information may indicate which rights of which applications need to be closed. The permission use information is the permission used by the target application program.

Specifically, as shown in fig. 3, the manual inspection module may analyze and verify the authority used by the illegal application through a technical means, and deploy an instruction for disabling some authorities of a certain application in the message channel, so that the client machine may disable the instruction in real time to take effect in real time.

It can be understood that the authority control in the manual inspection module is performed based on factors such as customer complaints, generally speaking, if the management risk is not large, the authority control in the manual inspection module will take effect once being deployed, and the first time response to the compliance policy control is achieved.

In addition, the configuration result of the manual inspection module can be synchronously sent to the cloud policy configuration module to take effect, and all clients can request the latest configuration when the cloud policy is updated.

In some optional embodiments, the application management and control method in the embodiments of the present invention may further include:

acquiring resource occupation information of the target electronic equipment and required resource information of the target application program;

and analyzing based on the resource occupation information and the required resource information, and controlling the use permission of the target application program to the target electronic equipment again according to an analysis result.

The resource occupation information may include information that the target electronic device has used the memory resource, an application program using the memory resource, and the like. The required resource information of the target application program may include the amount of resources that the target application program needs to occupy to open all the permissions or the amount of resources that the target application program needs to open each permission, and the like.

When more rights can be opened for the target application by the remaining available resources in the target electronic device, some rights can be continuously opened for the target application.

As shown in fig. 4, through appopmanager (application management and control client), a technician may set permissions OP _ AUTO _ START (background self-boot permission) and OP _ ASSOC _ START (associated boot permission) of an application on a terminal to MODE _ allowed, in MODE _ allowed MODE, default so that the application is not allowed to be self-booted and associated to be self-booted, and then may read a default permission list at the time of boot initialization to give the application a self-boot permission, where some applications have self-boot and anti-self-boot permissions. The method includes the steps that a Tguard (application permission setting module) acquires a list set through getPackasForOps (int [ ] ops), wherein the list set is internally provided with an application set with incoming permissions, if the list set is empty, a set of all permissions of all applications is acquired, the Tguard can show the permissions of some applications to a user, and then the user can change the permissions of the application program through an interface setMode on a display interface of the electronic device, wherein the setMode interface can receive permission setting related information generated by the user through changing and transmit the permission setting related information to an application program control device, wherein getPackasForOps (int [ ] ops) is a method for acquiring the list set and can acquire the permission set of each application on a current terminal.

As can be seen from the above, in the embodiment of the present invention, target device information of a target electronic device where a target application is located and target program information of the target application may be obtained, an application management and control policy corresponding to the target device information is determined according to the target device information, where the application management and control policy includes a permission management and control policy for at least one application, a target permission management and control policy corresponding to the target application is selected from permission management and control policies in the application management and control policy according to the target program information, and a usage permission of the target electronic device by the target application is managed and controlled according to the target permission management and control policy; because application program management and control policies corresponding to different device information are preset, and the application program management and control policies comprise at least one authority management and control policy for an application program, when a user of a target electronic device installs or starts to use the target application program, the authority of each application program on the electronic device can be managed and controlled without manual operation of the user, and the authority of the application program installed in the electronic device is automatically managed and controlled on the basis that the user of the electronic device can use the application program normally.

In order to better implement the method, correspondingly, an embodiment of the present invention further provides an application management and control apparatus.

Referring to fig. 5, the apparatus may include:

an information obtaining unit 501, configured to obtain target device information of a target electronic device where a target application is located and target program information of the target application;

a policy determining unit 502, configured to determine, according to the target device information, an application management and control policy corresponding to the target device information, where the application management and control policy may include a permission management and control policy for at least one application;

a policy selecting unit 503, configured to select, according to the target program information, a target permission management and control policy corresponding to the target application program from permission management and control policies in the application program management and control policies;

the permission management unit 504 may be configured to manage, according to the target permission management policy, the usage permission of the target electronic device by the target application.

In some optional embodiments, before the policy determining unit 502, a policy generating unit 505 may be further included, and configured to obtain permission setting information of each application program in each electronic device and device information of each electronic device, where at least one application program is deployed in the electronic device;

classifying the permission setting information according to the equipment information of each electronic equipment to obtain application program control information corresponding to each equipment information;

and performing information analysis based on the application program management and control information corresponding to the equipment information to obtain an application program management and control strategy corresponding to the equipment information.

In some optional embodiments, the policy generating unit 505 may further include an operation information acquiring unit, configured to acquire operation record information of each application program when the application program operates in each electronic device;

classifying the operation record information according to the equipment information of each electronic equipment to obtain application program operation information corresponding to each equipment information;

the policy generating unit 505 may be configured to perform information analysis based on application management and control information and application running information corresponding to each piece of device information, so as to obtain an application management and control policy corresponding to each piece of device information.

As shown in fig. 6, in some optional embodiments, before the permission management unit 504, the application management apparatus according to this embodiment of the present invention may further include a history management information obtaining unit 506, which may be configured to obtain history management information of the target user account, where the history management information may include permission management information of the target user for at least one application;

the permission management unit 504 may be configured to manage the usage permission of the target electronic device by the target application based on the historical program management information and the target permission management policy.

In some optional embodiments, the target application may include at least one application installed in the target electronic device, and the policy selection unit 503 may be configured to select, according to target program information corresponding to each target application, a target permission management policy corresponding to each target application from permission management policies in the application management policies;

the permission management and control unit 504 may be configured to manage, according to the target permission management and control policy corresponding to each target application, usage permission of each target application to the target electronic device.

In some optional embodiments, the application management and control apparatus may further include an authority closing unit 507, which may be configured to obtain program authority closing information and authority usage information of the target application in the target electronic device, where the program authority closing information may be used to indicate an authority that the application is not available;

and based on the permission closing information and the permission using information, the use permission of the target application program to the target electronic equipment is controlled again.

In some optional embodiments, the application management and control apparatus provided in the embodiment of the present invention may further include a second permission management and control unit 508, which is configured to obtain resource occupation information of the target electronic device and required resource information of the target application;

and analyzing based on the resource occupation information and the required resource information, and controlling the use permission of the target application program to the target electronic equipment again according to an analysis result.

As can be seen from the above, by using an application management and control apparatus, target device information of a target electronic device where a target application is located and target program information of the target application may be obtained, an application management and control policy corresponding to the target device information is determined according to the target device information, where the application management and control policy includes a permission management and control policy for at least one application, a target permission management and control policy corresponding to the target application is selected from permission management and control policies in the application management and control policies according to the target device information, and a usage permission of the target electronic device by the target application is controlled according to the target permission management and control policy; because application program management and control policies corresponding to different device information are preset, and the application program management and control policies comprise at least one authority management and control policy for an application program, when a user of a target electronic device installs or starts to use the target application program, the authority of each application program on the electronic device can be managed and controlled without manual operation of the user, and the authority of the application program installed in the electronic device is automatically managed and controlled on the basis that the user of the electronic device can use the application program normally.

In addition, an embodiment of the present invention further provides an electronic device, where the electronic device may be a terminal or a server, and as shown in fig. 7, a schematic structural diagram of the electronic device according to the embodiment of the present invention is shown, specifically:

the electronic device may include Radio Frequency (RF) circuitry 701, memory 702 including one or more computer-readable storage media, input unit 703, display unit 704, sensor 705, audio circuitry 706, Wireless Fidelity (WiFi) module 707, processor 708 including one or more processing cores, and power supply 709. Those skilled in the art will appreciate that the terminal structure shown in fig. 7 is not intended to be limiting and may include more or fewer components than those shown, or some components may be combined, or a different arrangement of components. Wherein:

the RF circuit 701 may be used for receiving and transmitting signals during a message transmission or communication process, and in particular, for receiving downlink information of a base station and then sending the received downlink information to the one or more processors 708 for processing; in addition, data relating to uplink is transmitted to the base station. In general, the RF circuitry 701 includes, but is not limited to, an antenna, at least one Amplifier, a tuner, one or more oscillators, a Subscriber Identity Module (SIM) card, a transceiver, a coupler, a Low Noise Amplifier (LNA), a duplexer, and the like. In addition, RF circuit 701 may also communicate with networks and other devices via wireless communications. The wireless communication may use any communication standard or protocol, including but not limited to Global System for Mobile communications (GSM), General Packet Radio Service (GPRS), Code Division Multiple Access (CDMA), Wideband Code Division Multiple Access (WCDMA), Long Term Evolution (LTE), email, Short Message Service (SMS), and the like.

The memory 702 may be used to store software programs and modules, and the processor 708 executes various functional applications and data processing by operating the software programs and modules stored in the memory 702. The memory 702 may mainly include a program storage area and a data storage area, wherein the program storage area may store an operating system, an application program required by at least one function (such as a sound playing function, an image playing function, etc.), and the like; the storage data area may store data (such as audio data, a phonebook, etc.) created according to the use of the terminal, etc. Further, the memory 702 may include high speed random access memory, and may also include non-volatile memory, such as at least one magnetic disk storage device, flash memory device, or other volatile solid state storage device. Accordingly, the memory 702 may also include a memory controller to provide the processor 708 and the input unit 703 access to the memory 702.

The input unit 703 may be used to receive input numeric or character information and generate keyboard, mouse, joystick, optical or trackball signal inputs related to user settings and function control. In particular, in a particular embodiment, the input unit 703 may include a touch-sensitive surface as well as other input devices. The touch-sensitive surface, also referred to as a touch display screen or a touch pad, may collect touch operations by a user (e.g., operations by a user on or near the touch-sensitive surface using a finger, a stylus, or any other suitable object or attachment) thereon or nearby, and drive the corresponding connection device according to a predetermined program. Alternatively, the touch sensitive surface may comprise two parts, a touch detection means and a touch controller. The touch detection device detects the touch direction of a user, detects a signal brought by touch operation and transmits the signal to the touch controller; the touch controller receives touch information from the touch sensing device, converts the touch information into touch point coordinates, sends the touch point coordinates to the processor 708, and can receive and execute commands sent by the processor 708. In addition, touch sensitive surfaces may be implemented using various types of resistive, capacitive, infrared, and surface acoustic waves. The input unit 703 may include other input devices in addition to the touch-sensitive surface. In particular, other input devices may include, but are not limited to, one or more of a physical keyboard, function keys (such as volume control keys, switch keys, etc.), a trackball, a mouse, a joystick, and the like.

The display unit 704 may be used to display information input by or provided to the user and various graphical user interfaces of the terminal, which may be made up of graphics, text, icons, video, and any combination thereof. The Display unit 704 may include a Display panel, and optionally, the Display panel may be configured in the form of a Liquid Crystal Display (LCD), an Organic Light-Emitting Diode (OLED), or the like. Further, the touch-sensitive surface may overlay the display panel, and when a touch operation is detected on or near the touch-sensitive surface, the touch operation is communicated to the processor 708 to determine the type of touch event, and the processor 708 provides a corresponding visual output on the display panel according to the type of touch event. Although in FIG. 7 the touch-sensitive surface and the display panel are two separate components to implement input and output functions, in some embodiments the touch-sensitive surface may be integrated with the display panel to implement input and output functions.

The terminal may also include at least one sensor 705, such as a light sensor, motion sensor, and other sensors. Specifically, the light sensor may include an ambient light sensor that may adjust the brightness of the display panel according to the brightness of ambient light, and a proximity sensor that may turn off the display panel and/or the backlight when the terminal is moved to the ear. As one of the motion sensors, the gravity acceleration sensor can detect the magnitude of acceleration in each direction (generally, three axes), can detect the magnitude and direction of gravity when the mobile phone is stationary, and can be used for applications of recognizing the posture of the mobile phone (such as horizontal and vertical screen switching, related games, magnetometer posture calibration), vibration recognition related functions (such as pedometer and tapping), and the like; as for other sensors such as a gyroscope, a barometer, a hygrometer, a thermometer, and an infrared sensor, which can be configured in the terminal, detailed description is omitted here.

Audio circuitry 706, a speaker, and a microphone may provide an audio interface between the user and the terminal. The audio circuit 706 can transmit the electrical signal converted from the received audio data to a loudspeaker, and the electrical signal is converted into a sound signal by the loudspeaker and output; on the other hand, the microphone converts the collected sound signal into an electric signal, which is received by the audio circuit 706 and converted into audio data, which is then processed by the audio data output processor 708, and then transmitted to, for example, another terminal via the RF circuit 701, or the audio data is output to the memory 702 for further processing. The audio circuitry 706 may also include an earbud jack to provide communication of peripheral headphones with the terminal.

WiFi belongs to short-distance wireless transmission technology, and the terminal can help a user to send and receive e-mails, browse webpages, access streaming media and the like through the WiFi module 707, and provides wireless broadband internet access for the user. Although fig. 7 shows the WiFi module 707, it is understood that it does not belong to the essential constitution of the terminal, and may be omitted entirely as needed within the scope not changing the essence of the invention.

The processor 708 is a control center of the terminal, connects various parts of the entire handset using various interfaces and lines, and performs various functions of the terminal and processes data by operating or executing software programs and/or modules stored in the memory 702 and calling data stored in the memory 702, thereby performing overall monitoring of the handset. Optionally, processor 708 may include one or more processing cores; preferably, the processor 708 may integrate an application processor, which primarily handles operating systems, user interfaces, applications, etc., and a modem processor, which primarily handles wireless communications. It will be appreciated that the modem processor described above may not be integrated into processor 708.

The terminal also includes a power source 709 (e.g., a battery) for powering the various components, which may preferably be logically coupled to the processor 708 via a power management system that may be configured to manage charging, discharging, and power consumption. The power supply 709 may also include any component of one or more dc or ac power sources, recharging systems, power failure detection circuitry, power converters or inverters, power status indicators, and the like.

Although not shown, the terminal may further include a camera, a bluetooth module, and the like, which will not be described herein. Specifically, in this embodiment, the processor 708 in the terminal loads the executable file corresponding to the process of one or more application programs into the memory 702 according to the following instructions, and the processor 708 runs the application programs stored in the memory 702, thereby implementing various functions as follows:

acquiring target equipment information of target electronic equipment where a target application program is located and target program information of the target application program;

determining an application program management and control strategy corresponding to the target device information according to the target device information, wherein the application program management and control strategy comprises a permission management and control strategy for at least one application program;

according to the target program information, selecting a target authority control strategy corresponding to the target application program from authority control strategies in the application program control strategies;

and controlling the use permission of the target application program to the target electronic equipment according to the target permission control strategy.

It will be understood by those skilled in the art that all or part of the steps of the methods of the above embodiments may be performed by instructions or by associated hardware controlled by the instructions, which may be stored in a computer readable storage medium and loaded and executed by a processor.

To this end, the embodiment of the present invention provides a computer-readable storage medium, in which a plurality of instructions are stored, and the instructions can be loaded by a processor to execute the steps in any one of the application management and control methods provided by the embodiment of the present invention. For example, the instructions may perform the steps of:

acquiring target equipment information of target electronic equipment where a target application program is located and target program information of the target application program;

determining an application program management and control strategy corresponding to the target device information according to the target device information, wherein the application program management and control strategy comprises a permission management and control strategy for at least one application program;

according to the target program information, selecting a target authority control strategy corresponding to the target application program from authority control strategies in the application program control strategies;

and controlling the use permission of the target application program to the target electronic equipment according to the target permission control strategy.

The above operations can be implemented in the foregoing embodiments, and are not described in detail herein.

Wherein the computer-readable storage medium may include: read Only Memory (ROM), Random Access Memory (RAM), magnetic or optical disks, and the like.

Since the instructions stored in the computer-readable storage medium may execute the steps in any application program management and control method provided in the embodiments of the present invention, beneficial effects that can be achieved by any application program management and control method provided in the embodiments of the present invention may be achieved, which are detailed in the foregoing embodiments and will not be described herein again.

According to an aspect of the application, there is also provided a computer program product or a computer program comprising computer instructions stored in a computer readable storage medium. The processor of the electronic device reads the computer instructions from the computer-readable storage medium, and the processor executes the computer instructions, so that the electronic device executes the method provided in the various alternative implementations in the above embodiments.

The application management and control method, the application management and control device, the electronic device and the storage medium provided by the embodiment of the invention are described in detail, a specific example is applied in the description to explain the principle and the implementation of the invention, and the description of the embodiment is only used for helping to understand the method and the core idea of the invention; meanwhile, for those skilled in the art, according to the idea of the present invention, there may be variations in the specific embodiments and the application scope, and in summary, the content of the present specification should not be construed as a limitation to the present invention.