堆栈内存溢出
  简体   繁体   English

强大的安全预防措施,防止Android应用程序被破解

[英]Strong security precautions for an Android app to prevent it from being cracked

 原文  2010-11-18 20:06:53       android/ security

问题描述

Can you suggest me any good anti-crack approaches (other than a code obfuscation), considering that the paid apps on the Market are easily cracked, and the same goes for a basic server check after a PayPal transaction? 考虑到Market上的付费应用很容易被破解,并且在PayPal交易后进行基本服务器检查时,您能建议我任何好的反破解方法(代码混淆除外)吗?

My idea is to have one (very important for the app) Java object saved on the server, and passed to the app each time when it starts. 我的想法是在服务器上保存一个Java对象(对于应用程序而言非常重要),并在每次启动时将其传递给应用程序。 Do you think that this sounds good ? 您认为这听起来不错吗?

Note that it is more like of a theoretical question, as I am not going to implement it in an app, I am more like seeking the knowledge for this rather than a concrete solution to a problem. 请注意,这更像一个理论问题,因为我不会在应用程序中实现它,我更喜欢为此寻求知识,而不是问题的具体解决方案。

Any ideas would be appreciated, even ones that you are not very sure if they are good or not. 任何想法都将不胜感激,甚至您不确定它们是否好。 Remember, the question is for Android apps. 请记住,这个问题是针对Android应用的。 Thanks. 谢谢。

EDIT: I know that there can't be an unbreakable client side application, I am asking for a good option to prevent it other than a obfuscation 编辑:我知道不可能有一个牢不可破的客户端应用程序,我要求一个好的选择来防止它,除了混淆

1 个解决方案

解决方案1
 5 已采纳  2010-11-18 20:16:04

No. Code stored on the server and provided for execution on the device can be grabbed and stored elsewhere such as locally. 不能。存储在服务器上并提供给设备执行的代码可以被抓取并存储在其他地方,例如本地。 (And that's probably going to be as hard for you to implement as it will be for the attacker to patch around) (这可能对您来说很难实施,而对于攻击者来说却很难解决)

Ultimately, you have to face the fact that preventing run authorization just isn't possible on a general purpose computing platform. 最终,您必须面对一个事实,即在通用计算平台上无法阻止运行授权。

Unless you move actual functionality to execution on a server requiring an individually authorized account, all you can hope for with regard to code running on the user owned device is to achieve a higher than average shade of difficulty. 除非您将实际功能移至需要单独授权帐户的服务器上执行,否则您希望在用户拥有的设备上运行的代码的所有困难都超过了平均水平。

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 如何防止Android的应用内购买商品被破解 - How to prevent Android's in-app purchase items being cracked 如何防止我的Android应用程序被破解? (AntiLVL) - How to prevent my android apps from being cracked? (AntiLVL) Android App LVL保护破解 - Android App LVL protection cracked Android检测盗版/破解应用 - Android detect pirated/cracked app Android App 防止被修改 - Android App prevent from being modified 如何防止应用程序在Android中缓存 - How to prevent app from being cached in android Android:防止应用被杀死 - Android: Prevent app from being killed 预防盗版的基本预防措施? - Basic precautions to prevent piracy? 如何从破解APK转到java代码? 一键式工具破解了我的应用程序 - How to go from cracked APK to java code? 1-click tool cracked my app 有什么办法可以防止Android应用被删除? - Is there any way to prevent an Android app from being removed?
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM