Abstract: A mobile device fetches a policy definition library from a policy server responsive to occurrence of a defined event associated with an application package. The policy definition library contains policies defining resources of the mobile device that the application package is permitted to access. The mobile device executes the wrapped application package containing application executable code and application wrapper executable code that is called by each execution of an agnostic wrapper function residing at each of a plurality of locations in the application executable code. Responsive to execution of the agnostic wrapper function at any of the plurality of locations in the application executable code, the mobile device executes the application wrapper executable code to control whether access by the application executable code is granted to resources of the mobile device based on the policies contained in the policy definition library.

Abstract: A method on a processor of an application wrapper computer includes, for each of a plurality of features of an application program in an application package, associating a wrapper component with the feature, identifying a location of the feature in the application program, and identifying from a portion of the application program at the location whether the feature will have an operational error during execution responsive to a request from the feature for access to a resource of a user device being blocked by the wrapper component. For each of the plurality of features, the method further responds to an operational error being identified by identifying content of an acceptable response to the request to avoid the operational error, and modifying the wrapper component to provide the content of the acceptable response to the request when the wrapper component is blocking the request from accessing the resource.

Abstract: A mobile device fetches a policy definition library from a policy server responsive to occurrence of a defined event associated with an application package. The policy definition library contains policies defining resources of the mobile device that the application package is permitted to access. The mobile device executes the wrapped application package containing application executable code and application wrapper executable code that is called by each execution of an agnostic wrapper function residing at each of a plurality of locations in the application executable code. Responsive to execution of the agnostic wrapper function at any of the plurality of locations in the application executable code, the mobile device executes the application wrapper executable code to control whether access by the application executable code is granted to resources of the mobile device based on the policies contained in the policy definition library.

Abstract: Systems and methods for generating secure passwords, personal identification numbers (PINs), and other user credentials using touch-aware devices are described. In some cases, an end user of a computing device may use a touch-sensitive interface (e.g., a touchscreen) to indirectly enter user credentials for accessing protected information or a protected computing resource using the computing device. The end user may indirectly enter the user credentials by entering information that is different from the actual user credentials. In one example, the touch-sensitive interface may display a plurality of numbers and paths connecting the plurality of numbers and the end user of the computing device may select a sequence of numbers of the plurality of numbers using a touch gesture. The computing device may generate a user credential different from the sequence of numbers using the sequence of numbers selected by the end user.

Abstract: Systems and methods for generating secure passwords, personal identification numbers (PINs), and other user credentials using touch-aware devices are described. In some cases, an end user of a computing device may use a touch-sensitive interface (e.g., a touchscreen) to indirectly enter user credentials for accessing protected information or a protected computing resource using the computing device. The end user may indirectly enter the user credentials by entering information that is different from the actual user credentials. In one example, the touch-sensitive interface may display a plurality of numbers and paths connecting the plurality of numbers and the end user of the computing device may select a sequence of numbers of the plurality of numbers using a touch gesture. The computing device may generate a user credential different from the sequence of numbers using the sequence of numbers selected by the end user.

Abstract: A method on a processor of an application wrapper computer includes, for each of a plurality of features of an application program in an application package, associating a wrapper component with the feature, identifying a location of the feature in the application program, and identifying from a portion of the application program at the location whether the feature will have an operational error during execution responsive to a request from the feature for access to a resource of a user device being blocked by the wrapper component. For each of the plurality of features, the method further responds to an operational error being identified by identifying content of an acceptable response to the request to avoid the operational error, and modifying the wrapper component to provide the content of the acceptable response to the request when the wrapper component is blocking the request from accessing the resource.