CN-115146270-B - Privacy monitoring method, device, equipment and medium based on code development

Abstract

The application discloses a privacy monitoring method, device, equipment and medium based on code development, wherein the privacy monitoring method based on code development comprises the steps of obtaining a project code development request, enabling a detection tool kit to be activated based on the project code development request so that the detection tool comprises at least one project privacy collectable interface corresponding to the obtained development project, monitoring project codes on a development interface based on all project privacy collectable interfaces to obtain monitoring results, and displaying warning information that the system interface is not available on the development interface if a called system interface does not belong to any project privacy collectable interface. The method can control the call of the system interface with the privacy information from the source, effectively forbids the overscope acquisition of the user privacy information, and improves the development efficiency and the legality of the APP project.

Inventors

• WANG SHUIBING
• ZHOU TAO
• XIE WEIXIONG
• ZHAO YANXIANG
• LIN WEIFENG

Assignees

• 深圳市网安计算机安全检测技术有限公司

Dates

Publication Date

20260505

Application Date

20220704

Claims (6)

1. 1. A privacy monitoring method based on code development, comprising: The method comprises the steps of obtaining a business privacy collectable confirmation request, determining whether a business privacy collectable interface exceeds class or not based on a business type collectable standard corresponding to a business type, obtaining a super class item if the business privacy collectable interface exceeds class, sending reminding information to a development terminal based on the super class item, and confirming that the development terminal sends a privacy collecting application request to a supervision terminal or locks the super class item from the project privacy collectable interface; The method comprises the steps of receiving a request for monitoring a privacy law text corresponding to any service type issued by a designated issuing standard end, synchronizing an collectable standard of the service type corresponding to the service type based on the updated privacy law text appearing in the privacy law text, and obtaining a code development monitoring request, wherein the code development monitoring request comprises a development project; Activating a detection tool package based on the code development monitoring request, so that the detection tool comprises at least one project privacy collectable interface corresponding to the development project; Monitoring project codes on a development interface based on all the project privacy collectable interfaces to obtain monitoring results; If the called system interface does not belong to any project privacy collectable interface, displaying warning information which is not available for the system interface on the development interface, accumulating the use times of the interface corresponding to the system interface, and if the use times of the interface meet a warning threshold, adding the system interface into a development notice electronic book.
2. 2. The code development-based privacy monitoring method of claim 1, further comprising, prior to the obtaining the code development monitoring request: acquiring a development language corresponding to a development system, and packaging a detection tool kit corresponding to the privacy monitoring method based on code development based on the development language; and calling the detection tool kit into the development system so that the detection tool kit is started when the development system develops the development project.
3. 3. The code development-based privacy monitoring method of claim 1, further comprising: Acquiring a privacy statement generation request, wherein the privacy statement generation request comprises a development project, and the development project comprises a development state; And if the development state of the development project is development completion, generating privacy statement text corresponding to the development project based on all the project privacy collectable interfaces corresponding to the development project.
4. 4. A privacy monitoring device based on code development, comprising: The system comprises a development request module, a development request acquisition module, a private code acquisition module, a development request monitoring module and a development request monitoring module, wherein the development request module is used for acquiring a service privacy acquirable confirmation request which comprises a service type and a project privacy acquirable interface, determining whether the project privacy acquirable interface is super-class based on a service type acquirable standard corresponding to the service type, acquiring a super-class item if the project privacy acquirable interface is super-class, sending reminding information to a development terminal based on the super-class item and used for confirming that the development terminal sends a privacy acquisition application request to a supervision terminal or locks the super-class item from the project privacy acquirable interface, updating the service type acquirable standard if the service type acquirable standard is updated to acquire an updating result, adjusting the locking condition of the project privacy acquirable interface corresponding to a development project based on the updating result and sending the adjusting result to the development terminal, monitoring private code acquisition standard corresponding to any service type of a specified issuing standard terminal, synchronizing the service type corresponding to the development code acquirable standard based on the updated private code acquisition standard; The activation detection tool package module is used for activating a detection tool package based on the code development monitoring request so that the detection tool comprises at least one project privacy collectable interface corresponding to the development project; the monitoring project code module is used for monitoring the project codes on the development interface based on all the project privacy collectable interfaces to obtain monitoring results; The system comprises a display warning information module, a development interface and a warning information module, wherein the display warning information module is used for displaying warning information which is unavailable to the system interface on the development interface if the called system interface does not belong to any project privacy collectable interface, accumulating the use times of the interfaces corresponding to the system interface, and adding the system interface into a development notice electronic book if the use times of the interfaces meet a warning threshold.
5. 5. A computer device comprising a memory, a processor and a computer program stored in the memory and executable on the processor, wherein the processor implements the code-based development of privacy monitoring method of any one of claims 1 to 3 when the computer program is executed.
6. 6. A computer readable medium storing a computer program, wherein the computer program when executed by a processor implements the code development-based privacy monitoring method of any one of claims 1 to 3.

Description

Privacy monitoring method, device, equipment and medium based on code development Technical Field The present invention relates to the field of network information security technologies, and in particular, to a privacy monitoring method, apparatus, device, and medium based on code development. Background When some apps are installed, people are often asked whether to allow permission to ask for location, send notifications, access device photos, address books, make phone calls, etc. In order to make it possible to use the App normally, the user has to choose "allow" or "accept" which results in that part of the user's personal information, or even some personal information not related to the use of the App, is also collected illegally by the App platform. For example, weather forecast, which is independent of communication functions, requires users to authorize users to use address books, and banking applications collect sensitive information such as family and marriage history. The use of App inevitably requires user information, but cannot exceed necessary limits. Although relevant departments in recent years continuously find and deal with various illegal apps, refine various privacy policies and regulations and play a role of a certain frightening, the actions of collecting and using personal information and the like in an App out-of-range still are serious. At present, the collection and security of APP privacy contents are all subjected to compliance inspection after development is completed, or are checked by a supervision department after being put on shelf to an application market so as to find out illegal conditions and carry out rectification after reporting, thereby bringing inconvenience for secondary development or code rewriting to developers and reducing development efficiency and influencing APP reputation. Disclosure of Invention The embodiment of the invention provides a privacy monitoring method, device, equipment and medium based on code development, which are used for solving the problems that APP is checked by a supervision department to find out illegal conditions and is changed after being notified, secondary development or code rewriting is inconvenient for developers, development efficiency is reduced, and APP reputation is influenced. A privacy monitoring method based on code development, comprising: Acquiring a project code development request, wherein the project code request comprises a development project; Activating a detection tool package based on the project code development request, so that the detection tool comprises at least one project privacy collectable interface corresponding to the acquired development project; Monitoring project codes on a development interface based on all project privacy collectable interfaces to obtain monitoring results; if the called system interface does not belong to any project privacy collectable interface, displaying warning information which is not available by the system interface on the development interface. Further, before the code development monitoring request is acquired, the method further comprises: acquiring a development language corresponding to a development system, and packaging a detection tool kit corresponding to a privacy monitoring method based on code development based on the development language; the detection toolkit is tuned into the development system so that the detection toolkit is started when the development system develops the development project. Further, before the code development monitoring request is acquired, the method further comprises: monitoring privacy legal text corresponding to any service type issued by the designated issuing standard end; Based on the updated privacy legal text appearing in the privacy legal text, the service type corresponding to the service type can acquire the standard for synchronization. Further, before the code development monitoring request is acquired, the method further comprises: acquiring a service privacy collectable confirmation request, wherein the service privacy collectable confirmation request comprises a service type and an item privacy collectable interface; Determining whether the project privacy collectable interfaces are superclass or not based on the business type collectable standard corresponding to the business type; If the project privacy can acquire the interface superclass, acquiring the superclass item; And sending reminding information to the development terminal based on the superclass item, wherein the reminding information is used for confirming that the development terminal sends a privacy acquisition application request to the supervision terminal or locking the superclass item from the project privacy collectable interface. Further, after locking the superclass item from the item privacy collectable interface, further comprising: if the service type can be updated by the acquisition standard, acquiring an updating result; based on the upd