CNNIC's 52nd "Statistical Report on China's Internet Development Status" shows that as of June 2023, the number of Internet users in my country has reached 1.079 billion, of which the number of online shopping users has reached 884 million, an increase of 38.8 million from December 2022.
According to data from the National Bureau of Statistics, in the first half of 2023, national online retail sales reached 7.16 trillion yuan, a year-on-year increase of 13.1%. Among them, online retail sales of physical goods were 6.06 trillion yuan, an increase of 10.8%, accounting for 26.6% of the total retail sales of consumer goods. As an important format of the digital economy, online shopping continues to play a positive role in boosting consumption growth.
In order to expand sales channels, achieve multi-channel sales and increase exposure, many e-commerce companies expand through SDK. The e-commerce SDK integrates with the SDK of social media and content creator platforms to form a closed loop of product exposure and purchase; small programs can also be developed and integrated with the SDK of platforms such as WeChat and Alipay so that users can directly browse and browse on these platforms. Purchase items. In addition, e-commerce companies can provide their own SDKs to third-party developers, and developers can easily introduce the functions of the e-commerce platform into their applications to provide better shopping experiences and services.
When e-commerce SDK expands sales channels, it also needs to consider issues such as user experience and data security to ensure a smooth transaction process and good user satisfaction. Therefore, SDK is an important consumption entrance for e-commerce, and its security is self-evident.
Due to the particularity of the SDK, there is no signature verification logic like the App. Moreover, most SDKs are written in Java language, and the decompilation threshold is low. Once the SDK is attacked, sensitive data such as user personal information, account passwords, etc. will be leaked, and the core data and key codes of e-commerce companies will be stolen.
In order to ensure the security of the SDK, Vipshop introduces Dingxiang Security SDK. Dingxiang Security SDK is based on unique virtual machine source code protection technology, supports debugging, hook, simulator, multi-open, root/jailbreak and other malicious environment detection, and integrates anti-call and anti-injection technology. In addition, Dingxiang Security SDK encryption and decryption key information is seamlessly integrated into the encryption and decryption algorithm, allowing the encrypted data to be bound to the device, achieving ultra-high security of one machine and one encryption.
The security SDK can provide data encryption and transmission security functions to ensure that sensitive information is protected during data transmission between the e-commerce SDK and the back-end server, preventing it from being intercepted or tampered with by hackers. At the same time, the operation logs and abnormal behaviors of the e-commerce SDK are analyzed to help identify potential security risks or abnormal activities, and effectively prevent unauthorized access and malicious behaviors. Monitor and intercept malware and virus attacks in real time, protect the security of user equipment and data, and facilitate e-commerce business development.