Abstract: The present disclosure discloses a method and apparatus for loading a kernel module. A specific embodiment of the method comprises: detecting an instruction for loading a to-be-loaded kernel module into a target kernel; determining, in response to detecting the instruction, whether identifier information is included in the to-be-loaded kernel module, the identifier information being used to represent loading the to-be-loaded kernel module into the target kernel; and loading, in response to determining the identifier information being included in the to-be-loaded kernel module, the to-be-loaded kernel module into the target kernel. This embodiment improves the applicability of the to-be-loaded kernel module.

Abstract: A hot update method, an operating system, a terminal device, and a storage medium are provided according to embodiments. The method includes: receiving startup information of a system process sent by a hot update agent thread; checking a hot patch corresponding to the system process, in response to the startup information; and sending a patch processing request to the hot update agent thread, so as to request the hot update agent thread to invoke a patch repairing framework in response to the patch processing request. The embodiments can implement hot update of the framework and protect the security of the entire Framework layer and the APP layer.

Abstract: A hot update method, an operating system, a terminal device, and a storage medium are provided according to embodiments. The method includes: receiving startup information of a system process sent by a hot update agent thread; checking a hot patch corresponding to the system process, in response to the startup information; and sending a patch processing request to the hot update agent thread, so as to request the hot update agent thread to invoke a patch repairing framework in response to the patch processing request. The embodiments can implement hot update of the framework and protect the security of the entire Framework layer and the APP layer.

Abstract: The present disclosure discloses a method and an apparatus for repairing a kernel vulnerability.

Abstract: The application provides a method, a device, and a server for checking a defective function that are applied to the defective functions in multiple versions. The method comprises: determining a preset defective function; checking whether there is an exception in a parameter of the preset defective functions; returning information indicating the exception of the parameter to an upper-layer function for calling the preset defective function, in a case that there is the exception of the parameter; and executing the preset defective function in a case that there is no exception of the parameter. In the technical solution of the embodiment of present application, filtering out a preset defective function in which there is an exception in a parameter is performed, and the preset defective function may be executed in a case that there is no exception of the parameter, and thus repairing of the kernel or application may be performed without obtaining the source code of the preset defective function.

Abstract: A method and apparatus for preventing an application from being deciphered are provided. In an embodiment of the method first virtual machine instructions corresponding to the application and to be parsed by a first virtual machine are obtained; a portion of the first virtual machine instructions is selected, and the portion of the first virtual machine instructions is converted into second virtual machine instructions to be parsed by a second virtual machine; and an executable file corresponding to the application is generated based on unconverted first virtual machine instructions in the first virtual machine instructions and on the second virtual machine instructions.

Abstract: The present disclosure discloses a method and apparatus for loading a kernel module. A specific embodiment of the method comprises: detecting an instruction for loading a to-be-loaded kernel module into a target kernel; determining, in response to detecting the instruction, whether identifier information is included in the to-be-loaded kernel module, the identifier information being used to represent loading the to-be-loaded kernel module into the target kernel; and loading, in response to determining the identifier information being included in the to-be-loaded kernel module, the to-be-loaded kernel module into the target kernel. This embodiment improves the applicability of the to-be-loaded kernel module.

Abstract: This application discloses at least a kernel repair method and apparatus. An embodiment of the method includes: loading a patch for repairing a to-be-repaired object function in a kernel, the patch being written in a memory-safe language subset of a non-memory-safe language or a memory-safe language; executing the patch using a memory-safe language engine; receiving a call request for calling a repair interface to repair the object function during the executing of the patch, wherein the repair interface is an interface provided by the memory-safe language engine and used for repairing a function; and executing the requested repair interface to repair the object function. As such, the hot patching and security of a kernel can be achieved.

Abstract: The present disclosure discloses a method and an apparatus for repairing a kernel vulnerability.

Abstract: This application discloses at least a kernel repair method and apparatus. An embodiment of the method includes: loading a patch for repairing a to-be-repaired object function in a kernel, the patch being written in a memory-safe language subset of a non-memory-safe language or a memory-safe language; executing the patch using a memory-safe language engine; receiving a call request for calling a repair interface to repair the object function during the executing of the patch, wherein the repair interface is an interface provided by the memory-safe language engine and used for repairing a function; and executing the requested repair interface to repair the object function. As such, the hot patching and security of a kernel can be achieved.

Abstract: The present application discloses a method and apparatus for preventing an application from being deciphered. An embodiment of the method includes: obtaining first virtual machine instructions corresponding to the application and to be parsed by a first virtual machine; selecting a portion of the first virtual machine instructions, and converting the portion of the first virtual machine instructions into second virtual machine instructions to be parsed by a second virtual machine; and generating an executable file corresponding to the application based on unconverted first virtual machine instructions in the first virtual machine instructions and on the second virtual machine instructions.

Abstract: Systems and method for receiving mobile device usage data from mobile electronic devices using security applications with enhanced access privileges. The mobile device usage data includes user-specific and application usage data. Application classification databases are searched for application characteristics of applications available for download from multiple marketplaces. Using the application characteristics, a weighted application relationship graph that includes relationship scores for application pairs that describe the degree to which applications in each of the application pairs are related to, is generated. Based on the mobile device usage and the relationship scores, a list of recommended applications can be generated for a particular user. The list of recommended applications includes the applications determined to be associated with at least one of the applications installed on the user's mobile device with a relationship score greater than a threshold.

Abstract: In one embodiment, a method determines a permission list from an application and generates a set of potential behaviors. The potential behaviors are associated with actions that the application allows when executing on a mobile device where the potential behaviors are determined without execution of the application. The method then determines functional category information regarding a functional category from a set of application marketplaces that contain the application and determines application description information for the application. A required behavior list is generated including a set of required behaviors from the functional category information and the application description information. The method compares the required behaviors to the potential behaviors to determine a set of security related behaviors. The security related behaviors are behaviors found in the potential behaviors, but not in the required behaviors. A security rating is determined based on the set of security related behaviors.

Abstract: In one embodiment, a method searches a plurality of application marketplaces for applications where each application marketplace includes a plurality of applications available for download to a mobile device. The method then compares a set of applications in different marketplaces to determine certified instances of applications and uncertified instances of applications. Information is stored for the certified instances of the applications that are found in different marketplaces in a database. The method indexes the information for the certified instances of the applications in the database and stores an index based on the indexing. The index is used to provide a search result for a search query for an application.