APK signature authentication method and APK signature authentication system

A signature authentication and signature information technology, which is applied in transmission systems, digital transmission systems, user identity/authority verification, etc., can solve problems such as error reporting and APK file installation failure, and achieve the effect of reducing maintenance costs

Active Publication Date: 2016-03-09
FUJIAN LANDI COMML TECH CO LTD
View PDF2 Cites 24 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] The above technical solutions can be executed normally before the Android 5.0 system, but after the Android 5.0 system, because the tail data will be verified during the APK decompression process, if the original APK signature + tail data length is not equal to the source file length, an error will be reported , causing the APK file to fail to install

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • APK signature authentication method and APK signature authentication system
  • APK signature authentication method and APK signature authentication system
  • APK signature authentication method and APK signature authentication system

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0117] Please refer to figure 2 , Embodiment 1 of the present invention is:

[0118] An APK signature verification method is provided, and the method may specifically include:

[0119] S1: The signing server of acquirer 1 invokes the encryption device to generate the first public-private key pair and the second public-private key pair. The signing server of acquirer 1 uses the first private key to sign the second public key to generate the working public key of acquirer 1. The key certificate AcquirerWCRT distributes the first public key to CA servers of different manufacturers;

[0120] S2: The signing server of the acquirer 1 takes the original APK file and the signature description information of the acquirer 1 together as the signed data SourceData; calculates the hash for the signed data SourceData to obtain the first hash value HASH1; The value HASH1 is filled according to the signature filling method of PKCS#1_V1.5, and the filled data PAD_data is obtained;

[0121]...

Embodiment 2

[0144] On the basis of Embodiment 1, the method of restoring the original APK file in step S5 may also be to extract the original APK file directly from the obtained binary data of the signed APK file.

[0145] The safe storage medium in step S3 is the signature card storing the second private key, which is held by the authorized staff of the acquirer 1 .

[0146] The "compressed file content source data" described in step S51 records the content information of all compressed files; its data organization structure corresponds to each file and consists of three parts: fileheader, filedata, and datadescriptor; Fileheader: used to identify the file filedata: the source data of the corresponding compressed file; datadescriptor: used to mark the end of the file compression, this structure will only appear when the third bit of the general flag field in the corresponding header is set to 1, immediately after the compressed file after the source data. This data descriptor is only us...

Embodiment 3

[0151] see Figure 8 , embodiment three provided by the present invention is:

[0152] An APK signature authentication system, including an acquirer 1 server and a terminal 2 device server, the acquirer 1 server includes a secure storage module 11, a signature execution module 12 and a signature organization module 13; the terminal 2 device server includes a first An acquisition module 21, a second acquisition module 22, a third acquisition module 23, a signature verification module 24, and an installation execution module 25, wherein the third acquisition module 23 includes a deletion restoration unit and / or an extraction unit;

[0153] The safe storage module 11 is used to store the working public key certificate of the acquirer 1 and the corresponding private key of the working public key certificate;

[0154] The signature execution module 12 is used to sign the original APK file and the signature description information of the acquirer 1 to obtain the signature informati...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention provides an APK signature authentication method and an APK signature authentication system. The method comprises the following steps: an original APK file and an acquiring mechanism are signed based on signing description information to get signature information; the signature information is inserted under an META-INF directory inside the original APK file, and a signed APK file is generated; a terminal acquires the signed APK file; the terminal acquires the signature information in the signed APK file; the terminal acquires the original APK file; and the terminal verifies whether the signature information and the original APK file are legitimate, and the terminal installs the original APK file after the signature information and the original APK file pass verification. The signed file is stored under the META-INF directory, the original APK file is restored when a manufacturer verifies the signed APK file, and thus, the APK file passes verification of the manufacturer. Meanwhile, a native signature verification mechanism of a terminal operating system for the original APK file is not affected, unified APK signature is realized, and the compatibility of the terminal operating system is improved.

Description

technical field [0001] The invention relates to the field of signature authentication, in particular to an APK signature authentication method and system thereof. Background technique [0002] Android Android system is an open source operating system based on Linux architecture developed by Google, and the installation programs on it are all in APK (Android Package) format. The APK file format is actually a zip compressed file format, which is mainly divided into three parts, namely the compressed file content source data, the compressed directory source data and the directory end identification structure. [0003] In the field of financial payment, the acquiring institution generally purchases the intelligent terminal equipment of the payment terminal manufacturer, and the acquiring system centrally manages the payment terminal, including downloading parameters, downloading keys, accepting, processing or forwarding transaction requests from payment terminals, And send tran...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06H04L9/32
CPCH04L9/3247H04L63/0823H04L9/32H04L9/40
Inventor 陈菲菲孟陆强陈祖勋彭波涛颜剑明陈恩
Owner FUJIAN LANDI COMML TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap