From an example of a popular Android system, the main code of the Android system is all Java, and the Java code is very standard. You can refer to all the documents and various reverse tools, so it is easy to be cracked. However, the code for C++ is not so rich. One of the difficult points of C++ is that it will give up more or lose more details in the process of compilation than in the process of Java.
Now that we know this, if we have a way to convert a code from Java to C++, wouldn't it be harder to crack? This is a plan I want to share with you today.
If we do the translation at the source level, we need to handle everything that compiles it, syntax, lexical, even a single quote needs our control, but Java translation is not a great place. The source code is uncertain, let's see if we can do it on Java bytecode? Java bytecode is based on a station.
Java code, converting the core part into C++ code, it can improve a lot of security, you can convert all or only one function, which is very helpful in improving security.
In a Java Native program, or in a Dalvik, the virtual machine has a limit on the objects that can be referenced. We cannot set 10,000 objects. The virtual machine has a maximum limit of 250 objects. If this loop runs to 250, or even 300, the virtual machine needs to handle the garbage collection function, and the function inside requires to overwrite the object, and the functions applied in the code generated in our function are very limited.
What we are talking about today is the technical implementation of a security enhancement solution, which is quite different from reinforcement. Our point is not magic, our solution is to convert it, I convert it into another way, originally electrical energy, I convert it into light energy that will emit light, we can convert it into chemical energy, today's solution Inside, Java speaks C++ as a special instance of it.
In the whole process, we will introduce a dynamic security protection, because the method introduced in the last point just now, we can push a basic version, and then push a small thing after finding one. Part of the code is replaced here, which can achieve the dynamic upgrade, or even that once it is found that a hacker is attacking our code, another version of the program can be pushed to achieve the purpose of directly confronting him.
Pan Xiaobo, head of the Security Lab of Sixty-Six Technology, shared the theme of "App Security Enhancement".
In addition , for the reverse cracking problem of APP, here you can also use a more convenient way to solve it, that is to use a third-party software Security hardening services. For example, Haiyunan ( www.secidea.com ) is currently providing free APP security hardening services. Its latest shellless hardening technology in the industry can effectively solve the compatibility problems caused by previous packaging methods. Register and submit, and you can complete the reinforcement protection against reverse cracking with one click.