Research And Implementation Of Android Application Software Protection Technology

In recent years,Android platform has attracted a large number of manufacturers and developers because of its open source nature and has become one of the world's most widely used mobile operating system,but it is also the case,Android platform has become an important target for crackers.Now Android applications is facing with reverse analysis,malicious code and adware implantation problems which infringed the intellectual property rights of developers and users.Because Android system's released time is short,the related software protection technology is still in its infancy.In recent years,Android platform has attracted a large number of manufacturers and developers because of its open source nature and has become one of the world's most widely used mobile operating system,but it is also the case,Android platform has become an important target for crackers.Now Android applications is facing with reverse analysis,malicious code and adware implantation problems which infringed the intellectual property rights of developers and users.Because Android system's released time is short,the related software protection technology is still in its infancy.Base on the research of traditional software protection technology,this thesis analyzed Android application security technology and proposed an effective software encryption strategy.Combined with needs of application copyright protection,this thesis implemented a set of Android application protection system based on encryption,integrity verification and signature verification.The system can effectively secure Android applications,resist reverse engineering.The main work and achievements of this thesis can be concluded as follows:1)Base on the analysis of Android system architecture and security model,this thesis analyzed the security threats faced by the Android applications.Due to shortage of the Android security model for Android application protection,this thesis analyzed the Android applications'demands in authentication,confidentiality and integrity,and explored the Android Software main protection scheme,analyzed the advantages and disadvantages of each other.2)On the protection of Android applications,through the analysis of Android Dex file structure and packing technology to point out the possibility of the performance optimization.And from the reverse aspect,through the key field of byte code file encryption,shorten the program encryption and decryption time,made it more suitable for mobile platform.And through the direct modification of the byte code file,the encrypted file is embedded in the executable program which will hide the encryption file and improve its security.3)Aiming at the disadvantage that the original SO Packing technology may generate temporary files into mobile's external storage when executing,This paper proposed a self-designed memory loading program based on native program loading mechanism,the program can effectively resist static analysis,and by adding specific anti dynamic analysis module this program can to resist dynamic analysis in some degree.4)Finally based on the software packing technique above,combined with the Android Software in authentication,confidentiality and integrity requirements,this paper proposed an Android application software protection system,and implemented a comprehensive test for all modules,which can proved the effectiveness of the system.