Method for guaranteeing security of source of web application in mobile terminal

Abstract

The invention discloses a method for guaranteeing the security of the source of a web application in a mobile terminal. The method includes the following steps that: as for a web application stored on an application server, encryption processing is performed on a configuration file, the MD5 abstract value of a source code file is solve and is stored, and the web application and the MD5 abstract value are downloaded through the mobile terminal; the configuration file is decrypted, if the configuration file is successfully decrypted, the web application is installed; after the web application is installed, every time a user starts the web application, MD5 abstract value solving is performed on the source code file, an obtained MD5 abstract value is compared with the downloaded MD5 abstract value, if the obtained MD5 abstract value is consistent with the downloaded MD5 abstract value, the application is started, otherwise, the application is not started. According to the method of the invention, the configuration file of the web application is encrypted, so that malicious behavior of network phishing can be prevented; when the application is started, the obtained MD5 abstract value is compared with the downloaded MD5 abstract value, so that the source code file of the web application can be prevented from being maliciously tampered; and therefore, the security of the source of the web application in the mobile terminal can be guaranteed.

Description

technical field [0001] The invention belongs to the technical field of mobile terminal security, and more specifically relates to a method for ensuring source security of web applications in a mobile terminal. Background technique [0002] Compared with native mobile terminal applications such as Android App and iOS App, web applications have outstanding advantages such as standardization, ease of use, and platform independence, so they are increasingly deployed on mobile terminals to provide users with application services. However, since a typical web application consists of application source code (including HTML source code, CSS source code, JavaScript source code, and resource files) and its configuration files, at this stage the program source code and application configuration files are stored in the The mobile terminal is analyzed and executed by the web engine on the mobile terminal, and there are security risks such as malicious tampering and phishing. Therefore, ...

AI Technical Summary

Problems solved by technology

However, since a typical web application consists of application source code (including HTML source code, CSS source code, JavaScript source code, and resource files) and its configuration files, at this stage the program source code and application configuration files are stored in the The mobile terminal is analyzed and executed by the web engine on the mobile terminal, and there are security risks such as malicious tampering and phishing

Images